Does SaleGen Marketing Toolkit have any unpatched vulnerabilities?

No. All known vulnerabilities in SaleGen Marketing Toolkit have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SaleGen Marketing Toolkit compatible with WordPress 6.9.4?

According to WordPress.org data, SaleGen Marketing Toolkit 1.1.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is SaleGen Marketing Toolkit compatible with PHP 7.4+?

SaleGen Marketing Toolkit requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SaleGen Marketing Toolkit updated?

SaleGen Marketing Toolkit was last updated on Unknown. Frequent updates are generally a positive security signal.

What is SaleGen Marketing Toolkit's security score?

SaleGen Marketing Toolkit has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SaleGen Marketing Toolkit Security & Risk Analysis

wordpress.org/plugins/salegen-marketing-toolkit

Form, Popup, Email Marketing Builder with built-in Contacts CRM. Capture leads and send campaigns without third-party services.

10 active installs v1.1.4 PHP 7.4+ WP 5.8+ Updated Unknown

contactscrmemailformpopup

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SaleGen Marketing Toolkit Safe to Use in 2026?

Generally Safe

Score 100/100

SaleGen Marketing Toolkit has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The Salegen Marketing Toolkit plugin v1.1.4 exhibits a generally good security posture, with a strong emphasis on using prepared statements for SQL queries and proper output escaping, both of which are well above average. The presence of a significant number of nonce and capability checks suggests an awareness of common WordPress security practices for protecting functionalities. Furthermore, the plugin has no recorded vulnerability history, indicating a relatively stable and secure past.

However, the static analysis did reveal one critical taint flow with an unsanitized path, which represents a significant security concern that warrants immediate attention. While the attack surface appears to be zero in terms of unprotected entry points, this single unsanitized path could potentially be exploited under specific conditions to achieve arbitrary file access or manipulation. The plugin also performs file operations and makes external HTTP requests, which, while not inherently insecure, are areas that can become vulnerabilities if not handled with extreme care.

In conclusion, the plugin demonstrates a solid foundation in secure coding practices regarding database queries and output handling, and its clean vulnerability history is a positive sign. The primary concern lies with the identified critical taint flow, which overshadows the otherwise strong security indicators and requires investigation and remediation to ensure the plugin's overall security.

Key Concerns

Critical severity taint flow with unsanitized path
One file operation detected
Two external HTTP requests detected

Vulnerabilities

None known

SaleGen Marketing Toolkit Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

SaleGen Marketing Toolkit Code Analysis

Dangerous Functions

Raw SQL Queries

268 prepared

Unescaped Output

162

851 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

82% prepared325 total queries

Output Escaping

84% escaped1013 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<view> (modules\eca\view.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

SaleGen Marketing Toolkit Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 58

actionwpsgen_contact_updatedcore\Frame.php:161

actionwpsgen_contact_updatedcore\Frame.php:163

filtersafe_style_csscore\Helper.php:100

actionphpmailer_initcore\Helper.php:206

filterwp_mail_fromcore\Helper.php:217

filterwp_mail_from_namecore\Helper.php:218

actionwp_mail_failedcore\Helper.php:225

actionwpsgen_install_addoncore\Installer.php:27

actionwpsgen_deactivation_addoncore\Installer.php:28

actionwpsgen_deactivationcore\Installer.php:29

filtersanitize_text_fieldcore\Request.php:27

actionadmin_enqueue_scriptsmodules\contact\module.php:18

filterwpsgen_module_pagesmodules\contact\module.php:19

filterwpsgen_module_tabmodules\contact\module.php:20

filterwpsgen_module_navigationmodules\contact\module.php:21

actionadmin_enqueue_scriptsmodules\contact\submodules\contact_field\module.php:14

filterwpsgen_module_pagesmodules\contact\submodules\contact_field\module.php:15

filterwpsgen_module_tabmodules\contact\submodules\contact_field\module.php:16

filterwpsgen_module_navigationmodules\contact\submodules\contact_field\module.php:17

actionadmin_enqueue_scriptsmodules\contact\submodules\contact_tag\module.php:14

filterwpsgen_module_pagesmodules\contact\submodules\contact_tag\module.php:15

filterwpsgen_module_tabmodules\contact\submodules\contact_tag\module.php:16

filterwpsgen_module_navigationmodules\contact\submodules\contact_tag\module.php:17

actionadmin_menumodules\dashboard\module.php:14

actionadmin_enqueue_scriptsmodules\dashboard\module.php:16

actionadmin_enqueue_scriptsmodules\dashboard\module.php:17

filterwpsgen_module_pagesmodules\dashboard\module.php:18

filterwpsgen_module_tabmodules\dashboard\module.php:19

filterwpsgen_module_navigationmodules\dashboard\module.php:20

actionphpmailer_initmodules\eca\model.php:2043

filterwp_mail_frommodules\eca\model.php:2054

filterwp_mail_from_namemodules\eca\model.php:2055

actionwp_mail_failedmodules\eca\model.php:2062

actionadmin_enqueue_scriptsmodules\eca\module.php:14

filterwpsgen_module_pagesmodules\eca\module.php:15

filterwpsgen_module_tabmodules\eca\module.php:16

filterwpsgen_module_navigationmodules\eca\module.php:17

actioninitmodules\eca\module.php:26

actioninitmodules\eca\module.php:27

actioninitmodules\eca\module.php:28

actioninitmodules\eca\module.php:29

filtercron_schedulesmodules\eca\module.php:30

filtercron_schedulesmodules\eca\module.php:31

filtercron_schedulesmodules\eca\module.php:32

actioninitmodules\eca\module.php:38

actioninitmodules\eca\module.php:39

actionadmin_enqueue_scriptsmodules\form\module.php:14

filterwpsgen_module_pagesmodules\form\module.php:15

filterwpsgen_module_tabmodules\form\module.php:16

filterwpsgen_module_navigationmodules\form\module.php:17

actionadmin_enqueue_scriptsmodules\popup\module.php:14

filterwpsgen_module_pagesmodules\popup\module.php:15

filterwpsgen_module_tabmodules\popup\module.php:16

filterwpsgen_module_navigationmodules\popup\module.php:17

filtertiny_mce_before_initmodules\popup\module.php:22

actionwp_enqueue_scriptsmodules\popup\module.php:25

actionwp_footermodules\popup\module.php:26

actionplugins_loadedsalegen-marketing-toolkit.php:34

Scheduled Events 3

wpsgen_cron_eca_runEcaFlowCron

wpsgen_cron_eca_runEcaApplyChainToContactsCron

wpsgen_cron_eca_runEcaSendEmailCron

Maintenance & Trust

SaleGen Marketing Toolkit Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version7.4

Downloads462

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

SaleGen Marketing Toolkit Alternatives

Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce

sender-net-automated-emails

Sender is an all-in-one email & SMS marketing platform designed keeping the challenges of ecommerce and small businesses in mind.

5K 2 CVEs

Getsitecontrol — Email Marketing Plugin | Popup Maker, Automations & Newsletters

getsitecontrol

100

Complete email marketing toolset with a powerful popup builder on board. Generate leads with email opt-in forms, send professional newsletters, build …

1K No CVEs

Gravity Forms Klaviyo Add-On

gf-klaviyo-add-on

Gravity Forms Klaviyo Add-On seamlessly integrates Gravity Forms with Klaviyo, enabling powerful email marketing automation.

1K No CVEs

Ultimate WP Mail

ultimate-wp-mail

Custom email and SMS notifications. Automatic send actions. WPForms SMS integration. WooCommerce notifications for purchases, abandoned cart and more!

800 1 unpatched

Gist All-In-One Marketing – Live Chat, Popups, Email

marketing-automation-by-convertfox

A free all-in-one marketing plugin that allows you to easily use popups, live chat, site tracking and email marketing on your WordPress site.

600 No CVEs

Developer Profile

SaleGen Marketing Toolkit Developer Profile

wpSaleGen

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SaleGen Marketing Toolkit

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/salegen-marketing-toolkit/core/assets/css/wpsgen-common.css/wp-content/plugins/salegen-marketing-toolkit/core/assets/css/wpsgen-switch.css/wp-content/plugins/salegen-marketing-toolkit/core/assets/js/wpsgen-common.js

Version Parameters

salegen-marketing-toolkit/core/assets/css/wpsgen-common.css?ver=salegen-marketing-toolkit/core/assets/css/wpsgen-switch.css?ver=salegen-marketing-toolkit/core/assets/js/wpsgen-common.js?ver=

HTML / DOM Fingerprints

CSS Classes

wpsgenSwitchWrapperwpsgenSwitch

Data Attributes

data-namedata-valuedata-typedata-labeldata-required

FAQ