Does RSVPMaker have any unpatched vulnerabilities?

No. All known vulnerabilities in RSVPMaker have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is RSVPMaker compatible with WordPress 7.0?

According to WordPress.org data, RSVPMaker 11.8.6 has been tested up to WordPress 7.0. Check the plugin's changelog for the latest compatibility information.

Is RSVPMaker compatible with PHP 5.6+?

RSVPMaker requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is RSVPMaker updated?

RSVPMaker was last updated on Mar 7, 2026. Frequent updates are generally a positive security signal.

What is RSVPMaker's security score?

RSVPMaker has a WP-Safety security score of 81/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

RSVPMaker Security & Risk Analysis

wordpress.org/plugins/rsvpmaker

Event and email marketing. Register guests and collect payment by PayPal or Stripe. Send invitations and newsletters.

300 active installs v11.8.6 PHP 5.6+ WP 5.2+ Updated Mar 7, 2026

calendaremaileventmarketingrsvp

B · Generally Safe

CVEs total17

Unpatched0

Last CVEMay 19, 2025

Plugin page Download

Safety Verdict

Is RSVPMaker Safe to Use in 2026?

Mostly Safe

Score 81/100

RSVPMaker is generally safe to use. 17 past CVEs were resolved. Keep it updated.

17 known CVEsLast CVE: May 19, 2025Updated 27d ago

Risk Assessment

The rsvpmaker plugin exhibits a mixed security posture. While it employs numerous nonces and capability checks, and the vast majority of its SQL queries use prepared statements, significant concerns arise from its attack surface and taint analysis. The presence of 5 unprotected AJAX handlers creates a substantial entry point for unauthorized actions. The high number of flows with unsanitized paths, including 29 critical taint flows, strongly suggests the potential for severe vulnerabilities like Cross-Site Scripting (XSS) and Server-Side Request Forgery (SSRF) if input is not rigorously validated and sanitized before use. The plugin's historical vulnerability record is concerning, with a significant number of past critical and high-severity CVEs, including issues related to deserialization, SQL injection, and XSS. The fact that the last known vulnerability was very recent (2025-05-19) indicates a recurring need for security diligence. The bundling of libraries like Guzzle and Stripe PHP also presents a potential risk if these are not kept up-to-date, though their specific version status isn't provided.

In conclusion, while some security best practices are in place, the combination of a large unprotected attack surface, critical taint flows indicating potential code execution or data leakage risks, and a history of severe vulnerabilities necessitates a cautious approach. The plugin has demonstrated weaknesses in input sanitization and authorization, which have led to critical security issues in the past. Aggressive patching and remediation of the identified taint flows and unprotected AJAX endpoints are strongly recommended.

Key Concerns

Unprotected AJAX handlers
Critical severity taint flows
High severity taint flows
Unsanitized paths in taint analysis
Critical historical CVEs
High historical CVEs
Deserialization of Untrusted Data history
Cross-Site Scripting history
SQL Injection history
Server-Side Request Forgery history
Dangerous functions (unserialize, passthru)
Low output escaping percentage

Vulnerabilities

RSVPMaker Security Vulnerabilities

CVEs by Year

1 CVE in 2018

2018

1 CVE in 2019

2019

1 CVE in 2020

2020

1 CVE in 2021

2021

3 CVEs in 2022

2022

7 CVEs in 2023

2023

3 CVEs in 2025

2025

Patched Has unpatched

Severity Breakdown

Critical

High

Medium

Low

17 total CVEs

CVE-2025-48278medium · 6.5Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMarker <= 11.5.6 - Authenticated (Contributor+) SQL Injection

May 19, 2025 Patched in 11.5.7 (11d)

CVE-2025-31552high · 7.5Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMarker <= 11.6.7 - Unauthenticated SQL Injection

Mar 31, 2025 Patched in 11.6.8 (263d)

CVE-2025-24600medium · 5.3Missing Authorization

RSVPMarker <= 11.4.5 - Missing Authorization

Jan 24, 2025 Patched in 11.4.6 (5d)

CVE-2023-25054critical · 9.8Deserialization of Untrusted Data

RSVPMaker <= 10.6.6 - Unauthenticated PHP Object Injection

Sep 5, 2023 Patched in 10.6.7 (140d)

CVE-2023-41652critical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMarker <= 10.6.6 - Unauthenticated SQL Injection

Sep 1, 2023 Patched in 10.6.7 (144d)

CVE-2023-27616high · 7.2Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

RSVPMaker <= 10.6.5 - Unauthenticated Stored Cross-Site Scripting via 'email'

Aug 17, 2023 Patched in 10.6.6 (159d)

CVE-2023-27617medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

RSVPMarker <= 10.6.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via admin settings

Aug 17, 2023 Patched in 10.6.7 (159d)

CVE-2023-29095high · 7.2Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 10.5.4 - Authenticated (Administrator+) SQL Injection via 'resend'

Jul 5, 2023 Patched in 10.5.5 (202d)

CVE-2023-25047high · 7.2Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 9.9.3 - Authenticated (Admin+) SQL Injection via 'delete' parameter

Feb 13, 2023 Patched in 9.9.4 (344d)

CVE-2023-25045high · 7.2Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 9.9.3 - Authenticated (Admin+) SQL Injection via $email value

Feb 13, 2023 Patched in 9.9.4 (344d)

CVE-2022-1768critical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 9.3.2 - Unauthenticated SQL Injection

May 17, 2022 Patched in 9.3.3 (616d)

CVE-2022-1505critical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 9.2.6 - Unauthenticated SQL Injection

Apr 27, 2022 Patched in 9.2.7 (636d)

CVE-2022-1453critical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 9.2.5 - Unauthenticated SQL Injection

Apr 26, 2022 Patched in 9.2.6 (637d)

CVE-2021-24371low · 2.7Server-Side Request Forgery (SSRF)

RSVPMaker <= 8.7.2 - Server-Side Request Forgery

Jun 29, 2021 Patched in 8.7.4 (938d)

WF-da6eb803-3e2a-4ff1-9b93-6f109e8d0714-rsvpmakercritical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 7.8.1 - Unauthenticated SQL Injection via 'event_count'

Aug 22, 2020 Patched in 7.8.2 (1249d)

CVE-2019-15646critical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker <= 6.1.9 - SQL Injection

Apr 28, 2019 Patched in 6.2 (1731d)

CVE-2018-21004critical · 9.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

RSVPMaker < 5.6.4 - SQL Injection

Nov 8, 2018 Patched in 5.6.4 (1902d)

Code Analysis

Analyzed Mar 16, 2026

RSVPMaker Code Analysis

Dangerous Functions

Raw SQL Queries

594 prepared

Unescaped Output

477

1319 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$details = unserialize($row->details);paypal-rest.php:64

unserialize$details = unserialize($vars['details']);paypal-rest.php:218

unserialize$details = unserialize($row["details"]);rsvpmaker-admin.php:1831

unserialize$data = unserialize($row->meta_value);rsvpmaker-admin.php:2376

unserialize$data = unserialize($row->meta_value);rsvpmaker-admin.php:2398

unserialize$thours = unserialize($row->meta_value);rsvpmaker-admin.php:2792

unserialize$coupons = unserialize($meta_info->meta_value);rsvpmaker-admin.php:3033

unserializeupdate_post_meta($target_id,$meta_key,unserialize($meta_info->meta_value));rsvpmaker-admin.php:3039

unserialize$details = unserialize($details);rsvpmaker-api-endpoints.php:447

unserialize$profile = unserialize( $row['details'] );rsvpmaker-display.php:1508

unserializeprintf('<tr><td>%s</td><td>%s</td></tr>',esc_html($post->post_title),sizeof(unserialize($row->meta_vrsvpmaker-email.php:755

unserialize$rsvpdata = unserialize($rsvp['details']);rsvpmaker-email.php:3716

unserialize$rsvpdata = unserialize($rsvp['details']);rsvpmaker-email.php:3772

unserialize$mail = unserialize($saved);rsvpmaker-group-email.php:139

unserialize$recipients = unserialize($batchrow->meta_value);rsvpmaker-group-email.php:203

unserialize$contact = unserialize( $details );rsvpmaker-plugabble.php:724

unserialize$contact = unserialize( $details, array('allowed_classes' => false) );rsvpmaker-plugabble.php:1068

unserialize$details = unserialize( $row['details'] );rsvpmaker-plugabble.php:2456

unserialize$details = unserialize( $row['details'] );rsvpmaker-plugabble.php:2495

unserialize$details = unserialize( $row['details'] );rsvpmaker-plugabble.php:2589

unserialize$details = unserialize( $srow['details'] );rsvpmaker-plugabble.php:2634

unserialize$details = unserialize( $details );rsvpmaker-plugabble.php:2690

unserialize$details = unserialize( $row['details'] );rsvpmaker-plugabble.php:2878

unserialize$unpaid_record = unserialize($unp->meta_value);rsvpmaker-plugabble.php:5928

unserialize$recipients = unserialize($batchrow->meta_value);rsvpmaker-postmark.php:290

unserialize$unpaid_record = unserialize($unp->meta_value);rsvpmaker-report.php:155

unserialize$unpaid_record = unserialize($unpaid->meta_value);rsvpmaker-report.php:183

unserialize$details = unserialize( $row['details'] );rsvpmaker-report.php:610

unserialize$details = unserialize( $row['details'] );rsvpmaker-report.php:646

unserialize$per = unserialize( $custom_fields['_per'][0] );rsvpmaker-report.php:1155

unserialize$vars = unserialize( $row->meta_value );rsvpmaker-stripe.php:605

unserialize$values = unserialize($row->meta_value);rsvpmaker-util.php:5841

passthrupassthru( 'composer update', $returnStatus );stripe-php\build.php:16

passthrupassthru( "./vendor/bin/phpunit -c $config", $returnStatus );stripe-php\build.php:22

Bundled Libraries

GuzzleStripe PHP

SQL Query Safety

96% prepared617 total queries

Output Escaping

73% escaped1796 total outputs

Data Flows

52 unsanitized

Data Flow Analysis

25 flows52 with unsanitized paths

rsvpmaker_paypay_button_embed (paypal-rest.php:313)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

5 unprotected

RSVPMaker Attack Surface

Entry Points59

Unprotected5

AJAX Handlers 5

authwp_ajax_rsvpmaker_datersvpmaker-actions.php:109

authwp_ajax_rsvpmaker_metarsvpmaker-actions.php:110

authwp_ajax_rsvpmaker_dateformatrsvpmaker-actions.php:111

authwp_ajax_rsvpmaker_dismissed_notice_handlerrsvpmaker-actions.php:112

authwp_ajax_rsvpmaker_templatersvpmaker-actions.php:113

Shortcodes 54

[rsvpmaker_paypal_button_invoice] paypal-rest.php:139

[rsvpmaker_paypal_choice] paypal-rest.php:145

[rsvpmaker_paypay_button] paypal-rest.php:370

[rsvpmaker_submission] rsvpmaker-admin.php:4552

[rsvpautorenew_test] rsvpmaker-display.php:4

[rsvpmaker_embed_form] rsvpmaker-display.php:6

[rsvpmaker_form] rsvpmaker-display.php:8

[event_listing] rsvpmaker-display.php:10

[rsvpmaker_upcoming] rsvpmaker-display.php:12

[rsvpmaker_calendar] rsvpmaker-display.php:14

[rsvpmaker_timed] rsvpmaker-display.php:16

[rsvpmaker_looking_ahead] rsvpmaker-display.php:18

[ylchat] rsvpmaker-display.php:20

[rsvpmaker_next] rsvpmaker-display.php:22

[rsvpmaker_one] rsvpmaker-display.php:24

[rsvpdateblock] rsvpmaker-display.php:26

[rsvpmaker_daily_schedule] rsvpmaker-display.php:28

[rsvpmaker_email_content] rsvpmaker-display.php:30

[rsvpmaker_upcoming_email] rsvpmaker-display.php:32

[rsvpmaker_recent_blog_posts] rsvpmaker-display.php:34

[rsvpcount] rsvpmaker-display.php:36

[embed_dateblock] rsvpmaker-display.php:38

[rsvp_report_shortcode] rsvpmaker-display.php:40

[rsvpguests] rsvpmaker-display.php:42

[rsvpprofiletable] rsvpmaker-display.php:44

[rsvpnote] rsvpmaker-display.php:46

[rsvpfield] rsvpmaker-display.php:48

[rsvpmaker_formchimp] rsvpmaker-display.php:50

[rsvpmaker_stripe_checkout] rsvpmaker-display.php:52

[RSVPMaker_chimpshort] rsvpmaker-display.php:54

[rsvptitle] rsvpmaker-display.php:58

[rsvpdate] rsvpmaker-display.php:60

[datetime] rsvpmaker-display.php:62

[event_title_link] rsvpmaker-display.php:64

[future_rsvp_links] rsvpmaker-display.php:2946

[timezone_converter] rsvpmaker-display.php:2967

[rsvpmaker_multi_event] rsvpmaker-display.php:3082

[rsvpmaker_template_inline_test] rsvpmaker-email.php:1620

[rsvpmailer_preview] rsvpmaker-email.php:4029

[json_explorer] rsvpmaker-email.php:4674

[rsvpmail_editors_note] rsvpmaker-email.php:6108

[rsvpmail_editors_note_title] rsvpmaker-email.php:6109

[rsvpmail_archive] rsvpmaker-email.php:6350

[rsvpmaker_contact_form_output] rsvpmaker-form.php:756

[rsvpmaker_contact_form_shortcode] rsvpmaker-form.php:793

[hosts_and_subs_test] rsvpmaker-group-email.php:1130

[postmark_forwarder_tester] rsvpmaker-postmark.php:1389

[rsvpmaker_future_event_titles] rsvpmaker-util.php:452

[rsvpmaker_date_test] rsvpmaker-util.php:999

[rsvpmaker_youtube_email_test] rsvpmaker-util.php:4137

[custom:rsvpmaker_youtube] rsvpmaker-util.php:4182

[rsvpmaker_numbered] rsvpmaker-util.php:4870

[theme_features_test] rsvpmaker-util.php:4962

[rsvpmailer_bot_shortcode] rsvpmaker-util.php:5117

WordPress Hooks 217

actionenqueue_block_editor_assetsadmin\admin.php:97

actioninitadmin\admin.php:99

actionadmin_enqueue_scriptsadmin\admin.php:101

actionwp_enqueue_scriptsadmin\admin.php:173

actionadd_meta_boxesadmin\admin.php:213

actioninitadmin\init.php:20

filterblock_categories_alladmin\init.php:23

actionenqueue_block_editor_assetsadmin\init.php:207

filteradmin_body_classadmin\rsvpmaker-fake-editor.php:10

filterscreen_options_show_screenadmin\rsvpmaker-fake-editor.php:25

actioninitclass-ical.php:12

filterparse_requestclass-ical.php:15

filterwxr_export_skip_postmetaexport.php:450

actionadmin_initrsvpmaker-actions.php:2

actioninitrsvpmaker-actions.php:3

actioninitrsvpmaker-actions.php:4

actioninitrsvpmaker-actions.php:5

actioninitrsvpmaker-actions.php:6

actioninitrsvpmaker-actions.php:8

actioninitrsvpmaker-actions.php:9

actioninitrsvpmaker-actions.php:10

actionadmin_initrsvpmaker-actions.php:11

actionadmin_bar_menursvpmaker-actions.php:13

actionadmin_enqueue_scriptsrsvpmaker-actions.php:15

actionadmin_headrsvpmaker-actions.php:16

actionadmin_initrsvpmaker-actions.php:18

actionadmin_initrsvpmaker-actions.php:19

actionadmin_initrsvpmaker-actions.php:21

actionadmin_initrsvpmaker-actions.php:22

actionadmin_initrsvpmaker-actions.php:23

actionadmin_initrsvpmaker-actions.php:24

actionadmin_initrsvpmaker-actions.php:25

actionadmin_initrsvpmaker-actions.php:26

actionadmin_initrsvpmaker-actions.php:29

actionadmin_initrsvpmaker-actions.php:30

actionadmin_menursvpmaker-actions.php:32

actionadmin_menursvpmaker-actions.php:33

actionadmin_menursvpmaker-actions.php:35

actionadmin_menursvpmaker-actions.php:36

actionadmin_noticesrsvpmaker-actions.php:38

actioncurrent_screenrsvpmaker-actions.php:40

actionexport_wprsvpmaker-actions.php:41

actionimport_endrsvpmaker-actions.php:42

actionlog_paypalrsvpmaker-actions.php:43

actionmanage_posts_extra_tablenavrsvpmaker-actions.php:44

actionplugins_loadedrsvpmaker-actions.php:46

actionrsvp_daily_reminder_eventrsvpmaker-actions.php:48

actionrsvpmaker_cron_email_previewrsvpmaker-actions.php:49

actionrsvpmaker_cron_emailrsvpmaker-actions.php:50

actionrsvpmaker_email_list_okayrsvpmaker-actions.php:52

actionrsvpmaker_replay_emailrsvpmaker-actions.php:53

actionrsvpmaker_send_reminder_emailrsvpmaker-actions.php:54

actionsave_postrsvpmaker-actions.php:56

actionsc_after_chargersvpmaker-actions.php:58

actiontemplate_redirectrsvpmaker-actions.php:60

actionpost_updatedrsvpmaker-actions.php:62

actionuser_registerrsvpmaker-actions.php:77

actionwprsvpmaker-actions.php:78

actionwprsvpmaker-actions.php:79

actionthe_postrsvpmaker-actions.php:80

actionshutdownrsvpmaker-actions.php:81

actionwp_enqueue_scriptsrsvpmaker-actions.php:85

actioninitrsvpmaker-actions.php:87

actionwprsvpmaker-actions.php:97

actionwp_headrsvpmaker-actions.php:100

actionwp_print_scriptsrsvpmaker-actions.php:103

actionwp_dashboard_setuprsvpmaker-actions.php:106

actioninitrsvpmaker-actions.php:115

actionquick_edit_custom_boxrsvpmaker-actions.php:117

actionmanage_posts_custom_columnrsvpmaker-actions.php:118

actionmanage_posts_custom_columnrsvpmaker-actions.php:119

actionexport_wprsvpmaker-actions.php:121

actionimport_endrsvpmaker-actions.php:122

actionadmin_initrsvpmaker-actions.php:162

filterget_the_excerptrsvpmaker-actions.php:175

filterwp_headersrsvpmaker-actions.php:177

filterdefault_titlersvpmaker-admin.php:5

filtermanage_posts_columnsrsvpmaker-admin.php:6

filterwp_insert_post_datarsvpmaker-admin.php:54

filterwp_unique_post_slugrsvpmaker-admin.php:73

actionrsvpmaker_create_update_reminderrsvpmaker-admin.php:187

actionadmin_menursvpmaker-admin.php:452

actionadmin_headrsvpmaker-admin.php:1063

filterposts_fieldsrsvpmaker-admin.php:1512

filterposts_joinrsvpmaker-admin.php:1513

filterposts_groupbyrsvpmaker-admin.php:1514

filterposts_wherersvpmaker-admin.php:1515

filterposts_orderbyrsvpmaker-admin.php:1516

filterposts_joinrsvpmaker-admin.php:1523

filterposts_groupbyrsvpmaker-admin.php:1524

filterposts_wherersvpmaker-admin.php:1531

filterposts_orderbyrsvpmaker-admin.php:1532

filterposts_wherersvpmaker-admin.php:1536

filterposts_orderbyrsvpmaker-admin.php:1537

filterposts_wherersvpmaker-admin.php:1541

filterposts_orderbyrsvpmaker-admin.php:1542

filterpre_get_postsrsvpmaker-admin.php:1546

filterposts_orderbyrsvpmaker-admin.php:1547

filterdisable_months_dropdownrsvpmaker-admin.php:1553

filterdefault_titlersvpmaker-admin.php:2312

filterdefault_contentrsvpmaker-admin.php:2333

filtermanage_rsvpmaker_template_posts_columnsrsvpmaker-admin.php:4554

filtermanage_rsvpmaker_posts_columnsrsvpmaker-admin.php:4566

actionrest_api_initrsvpmaker-api-endpoints.php:3360

filterthe_contentrsvpmaker-display.php:68

filterthe_contentrsvpmaker-display.php:71

filterthe_contentrsvpmaker-display.php:85

filterposts_fieldsrsvpmaker-display.php:188

filterposts_distinctrsvpmaker-display.php:189

filterposts_joinrsvpmaker-display.php:190

filterposts_wherersvpmaker-display.php:191

filterposts_orderbyrsvpmaker-display.php:192

filterrest_rsvpmaker_queryrsvpmaker-display.php:377

filterposts_requestrsvpmaker-display.php:387

filterposts_fieldsrsvpmaker-display.php:475

filterposts_joinrsvpmaker-display.php:476

filterposts_groupbyrsvpmaker-display.php:477

filterposts_wherersvpmaker-display.php:478

filterposts_orderbyrsvpmaker-display.php:479

filterposts_wherersvpmaker-display.php:859

filterposts_groupbyrsvpmaker-display.php:860

filterposts_distinctrsvpmaker-display.php:861

filterget_previous_post_joinrsvpmaker-display.php:1380

filterget_next_post_joinrsvpmaker-display.php:1381

filterget_previous_post_sortrsvpmaker-display.php:1393

filterget_next_post_sortrsvpmaker-display.php:1394

filterget_previous_post_wherersvpmaker-display.php:1416

filterget_next_post_wherersvpmaker-display.php:1418

filterposts_joinrsvpmaker-display.php:1536

filterposts_groupbyrsvpmaker-display.php:1538

filterposts_distinctrsvpmaker-display.php:1540

filterposts_fieldsrsvpmaker-display.php:1542

filterposts_wherersvpmaker-display.php:1544

filterposts_orderbyrsvpmaker-display.php:1546

filterposts_requestrsvpmaker-display.php:1550

filterposts_joinrsvpmaker-display.php:1556

filterposts_groupbyrsvpmaker-display.php:1558

filterposts_distinctrsvpmaker-display.php:1560

filterposts_fieldsrsvpmaker-display.php:1562

filterposts_wherersvpmaker-display.php:1564

filterposts_orderbyrsvpmaker-display.php:1566

filterposts_requestrsvpmaker-display.php:1570

filterjetpack_relatedposts_filter_optionsrsvpmaker-display.php:2011

actionpre_get_postsrsvpmaker-display.php:2162

filterpre_get_postsrsvpmaker-display.php:2178

filterthe_timersvpmaker-display.php:2526

filterget_the_archive_titlersvpmaker-display.php:2540

actionwp_footerrsvpmaker-display.php:2947

actionpre_get_search_formrsvpmaker-display.php:2976

filterpre_render_blockrsvpmaker-display.php:2999

actionpre_get_postsrsvpmaker-display.php:3001

filterquery_loop_block_query_varsrsvpmaker-display.php:3037

filterwp_mail_content_typersvpmaker-email.php:131

actionadmin_initrsvpmaker-email.php:961

actionrsvpmailer_delayed_sendrsvpmaker-email.php:1687

actionadmin_noticesrsvpmaker-email.php:2524

filterpost_row_actionsrsvpmaker-email.php:3163

filterposts_wherersvpmaker-email.php:3241

filterrsvpmaker_cron_activersvpmaker-email.php:3295

actionrsvp_nonpayment_deletersvpmaker-email.php:3655

actionrsvp_payment_reminderrsvpmaker-email.php:3825

filterwp_lazy_loading_enabledrsvpmaker-email.php:4288

filterlazy_load_is_enabledrsvpmaker-email.php:4295

actionenqueue_block_editor_assetsrsvpmaker-email.php:4407

actionadmin_initrsvpmaker-email.php:4917

actionrsvpmail_latest_post_promo_checkrsvpmaker-email.php:5608

actionrsvpmailer_post_promorsvpmaker-email.php:5745

actiontransition_post_statusrsvpmaker-email.php:5845

actionadmin_headrsvpmaker-email.php:5988

actionwp_headrsvpmaker-email.php:6155

actionwp_footerrsvpmaker-email.php:6156

actionwp_footerrsvpmaker-email.php:6327

actionset_current_userrsvpmaker-form.php:614

actionrsvpmaker_relay_init_hookrsvpmaker-group-email.php:59

filtercron_schedulesrsvpmaker-group-email.php:861

filterwp_titlersvpmaker-plugabble.php:3478

filterpost_updated_messagesrsvpmaker-plugabble.php:5470

actionsave_postrsvpmaker-plugabble.php:5479

filtermap_meta_caprsvpmaker-plugabble.php:5483

actionrsvpmaker_postmark_chunked_batchesrsvpmaker-postmark.php:276

actioninitrsvpmaker-postmark.php:342

actionrsvpmaker_postmark_suppressionsrsvpmaker-postmark.php:972

filteroption_postmark_settingsrsvpmaker-postmark.php:1054

filterwp_privacy_personal_data_exportersrsvpmaker-privacy.php:16

filterwp_privacy_personal_data_erasersrsvpmaker-privacy.php:149

filterqckply_qckply_clone_postsrsvpmaker-quick-playground.php:23

filterqckply_clone_customrsvpmaker-quick-playground.php:116

filterqckply_settings_to_copyrsvpmaker-quick-playground.php:160

filterqckply_settings_contentrsvpmaker-quick-playground.php:170

filterqckply_clone_save_postsrsvpmaker-quick-playground.php:181

filterqckply_new_settingsrsvpmaker-quick-playground.php:210

actionqckply_form_demo_contentrsvpmaker-quick-playground.php:223

filterqckply_custom_clone_receiverrsvpmaker-quick-playground.php:250

actionstripe_balance_history_cronrsvpmaker-stripe.php:771

filterthe_contentrsvpmaker-types.php:242

actionsave_postrsvpmaker-util.php:95

actionadmin_initrsvpmaker-util.php:185

filterdefault_titlersvpmaker-util.php:261

filterdefault_contentrsvpmaker-util.php:263

actionrsvpmaker_add_timestampsrsvpmaker-util.php:621

actionrsvpmaker_update_table_continuersvpmaker-util.php:1436

actionupdated_optionrsvpmaker-util.php:1470

actionadmin_initrsvpmaker-util.php:2030

filtermailpoet_newsletter_shortcodersvpmaker-util.php:4079

filterwp_nav_menursvpmaker-util.php:4694

actionadmin_initrsvpmaker-util.php:4758

filterrsvpmaker-admin-heading-helprsvpmaker-util.php:5039

actionwprsvpmaker-util.php:5166

filterthe_contentrsvpmaker-util.php:5710

filterwp_import_existing_postrsvpmaker-util.php:5852

actionshutdownrsvpmaker-util.php:6074

filterqueryrsvpmaker-util.php:6078

filteroption_rsvpmaker_postmarkrsvpmaker.php:383

actionrest_api_initrsvpmaker.php:576

filtersingle_template_hierarchyrsvpmaker.php:864

filtercustom_menu_orderrsvpmaker.php:1038

filtermenu_orderrsvpmaker.php:1039

Scheduled Events 27

rsvpmaker_create_update_reminder

rsvpmaker_relay_init_hook

rsvpmaker_replay_email

rsvpmaker_send_reminder_email

rsvpmaker_after_payment

rsvpmail_latest_post_promo_check

rsvpmaker_cron_email

rsvpmaker_cron_email_preview

rsvpmaker_cron_email

rsvpmaker_cron_email_preview

rsvpmaker_relay_init_hook

rsvpmailer_delayed_send

rsvpmaker_cron_email

rsvpmaker_cron_email_preview

rsvpmaker_cron_email

rsvpmaker_cron_email_preview

rsvpmaker_relay_init_hook

rsvp_nonpayment_delete

rsvp_payment_reminder

rsvpmailer_post_promo

rsvpmaker_relay_init_hook

rsvp_payment_reminder

rsvp_daily_reminder_event

rsvpmaker_relay_init_hook

rsvpmaker_postmark_chunked_batches

rsvpmaker_postmark_suppressions

stripe_balance_history_cron

Maintenance & Trust

RSVPMaker Maintenance & Trust

Maintenance Signals

WordPress version tested7.0

Last updatedMar 7, 2026

PHP min version5.6

Downloads294K

Community Trust

Rating92/100

Number of ratings11

Active installs300

Alternatives

RSVPMaker Alternatives

Registrations for the Events Calendar – Event Registration Plugin

registrations-for-the-events-calendar

Collect and manage event registrations with a customizable form and email template. The best event registration plugin for The Events Calendar.

8K 7 CVEs

Add to Calendar Button

add-to-calendar-button

100

Create beautiful buttons, where people can add events to their calendars. Highly customizable. As shortcode or via a convenient block.

3K 1 CVE

RSVP and Event Management

rsvp

Simple Event Registration & RSVP Management for WordPress

3K 5 CVEs

Events Maker by dFactory

events-maker

Fully featured event management system including recurring events, locations management, full calendar, iCal feed/files, google maps and more.

1K 1 unpatched

GreenRope Analytics

greenrope-analytics

100

Enables you to add GreenRope analytics and tracking to every page of your WordPress site.

100 No CVEs

Developer Profile

RSVPMaker Developer Profile

davidfcarr

10 plugins · 490 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

527 days

View full developer profile

Detection Fingerprints

How We Detect RSVPMaker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/rsvpmaker/rsvpmaker.css/wp-content/plugins/rsvpmaker/js/rsvpmaker-public.js/wp-content/plugins/rsvpmaker/js/rsvpmaker-admin.js/wp-content/plugins/rsvpmaker/css/rsvpmaker-admin.css

Script Paths

/wp-content/plugins/rsvpmaker/js/rsvpmaker-public.js/wp-content/plugins/rsvpmaker/js/rsvpmaker-admin.js

Version Parameters

rsvpmaker.css?ver=rsvpmaker-public.js?ver=rsvpmaker-admin.js?ver=rsvpmaker-admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

rsvpmakerrsvp-form-sectionrsvp-confirmation-messagersvpmaker_attendee_listrsvpmaker-attendees

HTML Comments

<!-- wp:rsvpmaker/formfield<!-- wp:rsvpmaker/guests<!-- wp:rsvpmaker/formnote<!-- /wp:rsvpmaker/formfield+2 more

Data Attributes

data-rsvpmaker-post-iddata-rsvpmaker-event-slugdata-rsvpmaker-nonce

JS Globals

rsvpmaker_ajax_objectRSVPmakerPublicRSVPmakerAdmin

REST Endpoints

/wp-json/rsvpmaker/v1/submit/wp-json/rsvpmaker/v1/event/wp-json/rsvpmaker/v1/payment

Shortcode Output

[rsvpfield[rsvpprofiletable[rsvpguests[rsvpnote]

FAQ

RSVPMaker Security & Risk Analysis

Is RSVPMaker Safe to Use in 2026?

Mostly Safe

Key Concerns

RSVPMaker Security Vulnerabilities

CVEs by Year

Severity Breakdown

RSVPMaker Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

RSVPMaker Attack Surface

AJAX Handlers 5

Shortcodes 54

Scheduled Events 27

RSVPMaker Maintenance & Trust

Maintenance Signals

Community Trust

RSVPMaker Alternatives

Registrations for the Events Calendar – Event Registration Plugin

Add to Calendar Button

RSVP and Event Management

Events Maker by dFactory

GreenRope Analytics

RSVPMaker Developer Profile

How We Detect RSVPMaker

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about RSVPMaker