Does SAR Friendly SMTP have any unpatched vulnerabilities?

No. All known vulnerabilities in SAR Friendly SMTP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SAR Friendly SMTP compatible with WordPress 6.8.5?

According to WordPress.org data, SAR Friendly SMTP 1.2.6 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is SAR Friendly SMTP compatible with PHP 7.0+?

SAR Friendly SMTP requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SAR Friendly SMTP updated?

SAR Friendly SMTP was last updated on May 16, 2025. Frequent updates are generally a positive security signal.

What is SAR Friendly SMTP's security score?

SAR Friendly SMTP has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SAR Friendly SMTP Security & Risk Analysis

wordpress.org/plugins/sar-friendly-smtp

A friendly SMTP plugin for WordPress. No third-party, simply using WordPress native possibilities.

2K active installs v1.2.6 PHP 7.0+ WP 4.9+ Updated May 16, 2025

emailnotificationsphpmailersendmailsmtp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SAR Friendly SMTP Safe to Use in 2026?

Generally Safe

Score 100/100

SAR Friendly SMTP has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

Based on the provided static analysis and vulnerability history, the sar-friendly-smtp plugin v1.2.6 exhibits a strong security posture. The code analysis reveals no dangerous functions, SQL queries are exclusively handled with prepared statements, and all output is properly escaped. Crucially, there are no identified taint flows or file operations, indicating a low risk of code injection or arbitrary file manipulation. The presence of nonce and capability checks on the single identified entry point further reinforces its security. The plugin also boasts a clean vulnerability history with zero known CVEs, suggesting a history of secure development and maintenance. However, it is important to note that the absence of any analysis results in certain categories (like taint analysis or attack surface details) might be due to the plugin's simplicity or limitations in the analysis tool's scope. While the current data points to a secure plugin, continuous vigilance and regular updates are always recommended for any software.

Vulnerabilities

None known

SAR Friendly SMTP Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

SAR Friendly SMTP Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

65 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped65 total outputs

Attack Surface

SAR Friendly SMTP Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionplugins_loadedsar-friendly-smtp.php:87

actionadmin_enqueue_scriptssar-friendly-smtp.php:97

actionphpmailer_initsar-friendly-smtp.php:117

actionadmin_menusar-friendly-smtp.php:188

actionadmin_initsar-friendly-smtp.php:189

actionadmin_initsar-friendly-smtp.php:675

Maintenance & Trust

SAR Friendly SMTP Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 16, 2025

PHP min version7.0

Downloads36K

Community Trust

Rating92/100

Number of ratings46

Active installs2K

Alternatives

SAR Friendly SMTP Alternatives

SMTP Mailer

smtp-mailer

100

Configure a SMTP server to send email from your WordPress site. Configure the wp_mail() function to use SMTP instead of the PHP mail() function.

70K No CVEs

ActiveCampaign Postmark for WordPress

postmark-approved-wordpress-plugin

The officially-supported ActiveCampaign Postmark plugin for Wordpress.

50K No CVEs

WPO365 | MICROSOFT 365 GRAPH MAILER

wpo365-msgraphmailer

Send WordPress emails from a M365 / Exchange Online Mailbox using Microsoft Graph, leveraging OAuth for authentication which is more secure than SMTP

10K 1 CVE

Configure SMTP

configure-smtp

Configure SMTP mailing in WordPress, including support for sending email via SSL/TLS (such as Gmail).

7K 1 CVE

MailerSend – Official SMTP Integration

mailersend-official-smtp-integration

100

Improve your deliverability and avoid the spam box with MailerSend’s SMTP server. Check your analytics to improve your emails for better conversion!

2K No CVEs

Developer Profile

SAR Friendly SMTP Developer Profile

Samuel Aguilera

14 plugins · 98K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SAR Friendly SMTP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sar-friendly-smtp/css/sar-fsmtp-styles.css

Version Parameters

sar-friendly-smtp/css/sar-fsmtp-styles.css?ver=

HTML / DOM Fingerprints

HTML Comments

<!-- This program is free software: you can redistribute it and/or modify
 it under the terms of the GNU General Public License version 3 as published by
 the Free Software Foundation. -->

<!-- This program is distributed in the hope that it will be useful,
 but WITHOUT ANY WARRANTY; without even the implied warranty of
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 GNU General Public License for more details. -->

<!-- You should have received a copy of the GNU General Public License
 along with this program.  If not, see <http://www.gnu.org/licenses/>. -->

FAQ