Does Review Deck have any unpatched vulnerabilities?

No. All known vulnerabilities in Review Deck have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Review Deck compatible with WordPress 6.9.4?

According to WordPress.org data, Review Deck 1.0.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Review Deck compatible with PHP 8.0+?

Review Deck requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Review Deck updated?

Review Deck was last updated on Feb 9, 2026. Frequent updates are generally a positive security signal.

What is Review Deck's security score?

Review Deck has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Review Deck Security & Risk Analysis

wordpress.org/plugins/review-deck

Manage and display customer reviews using shortcodes. Includes form, list, slider, masonry, column, summary, and floating widget display options.

10 active installs v1.0.7 PHP 8.0+ WP 5.8+ Updated Feb 9, 2026

client-reviewscustomer-reviewsreviewswebsite-reviewswordpress-reviews

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Review Deck Safe to Use in 2026?

Generally Safe

Score 100/100

Review Deck has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "review-deck" plugin v1.0.7 exhibits a generally good security posture, with no recorded vulnerabilities or CVEs. The static analysis indicates a strong adherence to security best practices, as evidenced by a high percentage of properly escaped outputs, a significant use of prepared statements for SQL queries, and the presence of nonce and capability checks on most entry points. This suggests the developers are conscious of common WordPress security pitfalls.

However, the taint analysis reveals a notable concern: 9 out of 17 analyzed flows have unsanitized paths, with 8 classified as high severity. This indicates a potential for attackers to inject malicious data that is not properly validated or sanitized before being processed, which could lead to various vulnerabilities depending on the context. While there are no directly exploitable critical issues flagged by the taint analysis, these high-severity unsanitized flows represent a significant risk that warrants investigation and remediation.

In conclusion, the plugin's lack of historical vulnerabilities is a positive sign, and its implementation of security features like prepared statements and output escaping is commendable. Nevertheless, the high number of unsanitized taint flows is a critical weakness that outweighs the otherwise strong security foundation. Addressing these unsanitized paths should be the highest priority to ensure the plugin's security.

Key Concerns

High severity unsanitized taint flows
Unsanitized paths in taint flows
SQL queries not using prepared statements

Vulnerabilities

None known

Review Deck Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Review Deck Code Analysis

Dangerous Functions

Raw SQL Queries

105

114 prepared

Unescaped Output

103

1185 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

52% prepared219 total queries

Output Escaping

92% escaped1288 total outputs

Data Flows

9 unsanitized

Data Flow Analysis

17 flows9 with unsanitized paths

get_product_reviews (includes\integrations\class-rvdk-woocommerce-ajax.php:53)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Review Deck Attack Surface

Entry Points23

Unprotected0

AJAX Handlers 15

authwp_ajax_rvdk_dismiss_review_noticeincludes\class-rvdk-review-notice.php:25

authwp_ajax_rvdk_review_clickedincludes\class-rvdk-review-notice.php:26

authwp_ajax_rvdk_import_wc_reviewsincludes\integrations\class-rvdk-woocommerce-ajax.php:13

authwp_ajax_rvdk_delete_imported_reviewsincludes\integrations\class-rvdk-woocommerce-ajax.php:14

authwp_ajax_rvdk_get_product_reviewsincludes\integrations\class-rvdk-woocommerce-ajax.php:15

authwp_ajax_rvdk_save_product_assignmentincludes\integrations\class-rvdk-woocommerce.php:94

authwp_ajax_rvdk_wc_load_more_reviewsincludes\integrations\class-rvdk-woocommerce.php:114

noprivwp_ajax_rvdk_wc_load_more_reviewsincludes\integrations\class-rvdk-woocommerce.php:115

authwp_ajax_rvdk_wc_submit_reviewincludes\integrations\class-rvdk-woocommerce.php:116

noprivwp_ajax_rvdk_wc_submit_reviewincludes\integrations\class-rvdk-woocommerce.php:117

authwp_ajax_rvdk_wc_search_reviewsincludes\integrations\class-rvdk-woocommerce.php:118

noprivwp_ajax_rvdk_wc_search_reviewsincludes\integrations\class-rvdk-woocommerce.php:119

authwp_ajax_rvdk_wc_sort_reviewsincludes\integrations\class-rvdk-woocommerce.php:120

noprivwp_ajax_rvdk_wc_sort_reviewsincludes\integrations\class-rvdk-woocommerce.php:121

authwp_ajax_rvdk_save_column_visibilityincludes\rvdk-controller.php:291

Shortcodes 8

[wp_rvdk_form] includes\rvdk-controller.php:346

[wp_rvdk_summary] includes\rvdk-controller.php:347

[wp_rvdk_lists] includes\rvdk-controller.php:348

[wp_rvdk_widget] includes\rvdk-controller.php:349

[wp_rvdk_slider] includes\rvdk-controller.php:350

[wp_rvdk_masonry] includes\rvdk-controller.php:351

[wp_rvdk_column] includes\rvdk-controller.php:352

[rvdk_badge] includes\rvdk-controller.php:353

WordPress Hooks 50

actioninitincludes\blocks\class-rvdk-blocks.php:37

actionenqueue_block_editor_assetsincludes\blocks\class-rvdk-blocks.php:38

actionadmin_initincludes\class-rvdk-review-notice.php:22

actionadmin_noticesincludes\class-rvdk-review-notice.php:23

actionadmin_enqueue_scriptsincludes\class-rvdk-review-notice.php:24

actionwoocommerce_after_single_product_summaryincludes\integrations\class-rvdk-woocommerce.php:70

filterwoocommerce_product_tabsincludes\integrations\class-rvdk-woocommerce.php:75

actionwoocommerce_order_status_completedincludes\integrations\class-rvdk-woocommerce.php:80

filterwoocommerce_account_menu_itemsincludes\integrations\class-rvdk-woocommerce.php:85

actionwoocommerce_account_my-reviews_endpointincludes\integrations\class-rvdk-woocommerce.php:86

actioninitincludes\integrations\class-rvdk-woocommerce.php:87

actionadd_meta_boxesincludes\integrations\class-rvdk-woocommerce.php:91

actionrvdk_review_status_changedincludes\integrations\class-rvdk-woocommerce.php:97

actionrvdk_review_deletedincludes\integrations\class-rvdk-woocommerce.php:98

filterwoocommerce_get_catalog_ordering_argsincludes\integrations\class-rvdk-woocommerce.php:103

filterwoocommerce_catalog_orderbyincludes\integrations\class-rvdk-woocommerce.php:104

actionwoocommerce_after_shop_loop_item_titleincludes\integrations\class-rvdk-woocommerce.php:109

filterwoocommerce_product_get_rating_htmlincludes\integrations\class-rvdk-woocommerce.php:110

actionwp_enqueue_scriptsincludes\integrations\class-rvdk-woocommerce.php:124

actioninitincludes\integrations\woocommerce-loader.php:29

actionadmin_initincludes\integrations\woocommerce-loader.php:34

filterrvdk_settings_tabsincludes\integrations\woocommerce-loader.php:40

actionrvdk_settings_panel_woocommerceincludes\integrations\woocommerce-loader.php:46

actionrvdk_send_review_requestincludes\integrations\woocommerce-loader.php:51

actionadmin_initincludes\integrations\woocommerce-loader.php:56

filterlocaleincludes\rvdk-controller.php:13

actioninitincludes\rvdk-controller.php:16

filterset-screen-optionincludes\rvdk-controller.php:283

actionadmin_menuincludes\rvdk-controller.php:287

actionadmin_enqueue_scriptsincludes\rvdk-controller.php:288

actionload-toplevel_page_rvdk-reviewsincludes\rvdk-controller.php:289

actionload-toplevel_page_rvdk-reviewsincludes\rvdk-controller.php:290

actioninitincludes\rvdk-controller.php:293

filterplugin_row_metaincludes\rvdk-controller.php:298

filterplugin_row_metaincludes\rvdk-controller.php:299

actionwp_enqueue_scriptsincludes\rvdk-controller.php:303

actionwp_headincludes\rvdk-controller.php:304

actionwp_footerincludes\rvdk-controller.php:305

actionwoocommerce_after_shop_loop_item_titleincludes\rvdk-controller.php:312

actionwoocommerce_single_product_summaryincludes\rvdk-controller.php:313

filterwoocommerce_product_tabsincludes\rvdk-controller.php:314

actioninitincludes\rvdk-controller.php:315

filterscreen_settingsincludes\rvdk-controller.php:795

filterwp_mail_fromincludes\rvdk-controller.php:2017

filterwp_mail_from_nameincludes\rvdk-controller.php:2021

filterwp_mail_fromincludes\rvdk-controller.php:2049

filterwp_mail_from_nameincludes\rvdk-controller.php:2053

filterwp_mail_fromincludes\rvdk-controller.php:2095

filterwp_mail_from_nameincludes\rvdk-controller.php:2099

actionbefore_woocommerce_initreview-deck.php:35

Scheduled Events 1

rvdk_send_review_request

Maintenance & Trust

Review Deck Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 9, 2026

PHP min version8.0

Downloads266

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Review Deck Alternatives

Customer Reviews for WooCommerce

customer-reviews-woocommerce

Customer Reviews for WooCommerce plugin helps you get more sales with social proof. Set up automated review reminders and increase conversion rate.

80K 19 CVEs

WP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets

wp-social-reviews

Add Facebook feeds, Instagram feeds, TikTok feeds, Facebook reviews, WhatsApp Chat, Messenger chat, Testimonial, and others using a single dashboard.

30K 3 CVEs

Photo Reviews for WooCommerce

woo-photo-reviews

100

Let customers attach photos to reviews, enhanced with filterable grids and overall ratings. Auto-send review reminders and coupon emails

10K No CVEs

ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema

reviewx

Drive woocommerce business growth with social proof: gather product reviews with multicriteria ratings, auto-reminder emails, discounts, and more.

9K 9 CVEs

Customer Reviews Collector for WooCommerce

customer-reviews-collector-for-woocommerce

Collect reviews on Google, Facebook, Yelp, Trustindex and other platforms automatically, with the help of our system.

5K 1 CVE

Developer Profile

Review Deck Developer Profile

artiosmedia

8 plugins · 5K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

14 days

View full developer profile

Detection Fingerprints

How We Detect Review Deck

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/review-deck/assets/css/rvdk-frontend.css/wp-content/plugins/review-deck/assets/js/rvdk-frontend.js

Version Parameters

review-deck/assets/css/rvdk-frontend.css?ver=review-deck/assets/js/rvdk-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

rvdk-reviews-listrvdk-review-form-containerrvdk-reviews-sliderrvdk-trust-badgervdk-product-reviews

Data Attributes

data-rvdk-page-iddata-rvdk-per-pagedata-rvdk-sort-orderdata-rvdk-show-formdata-rvdk-per-rowdata-rvdk-autoplay+3 more

Shortcode Output

[review_deck_reviews_list[review_deck_review_form[review_deck_reviews_slider[review_deck_trust_badge

FAQ