Does Simple Customer CRM Plugin have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Customer CRM Plugin have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Customer CRM Plugin compatible with WordPress 5.3.21?

According to WordPress.org data, Simple Customer CRM Plugin 1.0.0 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

Is Simple Customer CRM Plugin compatible with PHP 5.2.4+?

Simple Customer CRM Plugin requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simple Customer CRM Plugin updated?

Simple Customer CRM Plugin was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Simple Customer CRM Plugin's security score?

Simple Customer CRM Plugin has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Customer CRM Plugin Security & Risk Analysis

wordpress.org/plugins/simple-customer-crm

Simple Customer CRM plugin will help to capture the customer data using customer form.

0 active installs v1.0.0 PHP 5.2.4+ WP 4.9.4+ Updated Unknown

simple-customer-crm-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Customer CRM Plugin Safe to Use in 2026?

Generally Safe

Score 100/100

Simple Customer CRM Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "simple-customer-crm" plugin v1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and generally performing well on output escaping, with 78% of outputs properly handled. The absence of known CVEs and a clean vulnerability history is also a strong indicator of responsible development. However, significant concerns arise from its attack surface. The presence of two AJAX handlers, both lacking authentication checks, presents a substantial risk. This means unauthenticated users could potentially interact with these handlers, leading to unintended actions or information disclosure.

Taint analysis shows no critical or high-severity flows, which is reassuring. The lack of file operations and external HTTP requests further reduces potential attack vectors. Despite the good SQL and output escaping practices, the unprotected AJAX endpoints are the most prominent vulnerability. The absence of capability checks on any entry points is also a notable weakness, as it means permissions are not being properly enforced.

Overall, while the plugin avoids common pitfalls like raw SQL and outdated libraries, the unprotected AJAX handlers are a critical security flaw that needs immediate attention. The vulnerability history is clean, suggesting recent attention to security, but this does not negate the risks posed by the current code analysis. The plugin has strengths in data handling but is weak in access control for its interactive elements.

Key Concerns

AJAX handlers without auth checks
AJAX handlers without capability checks
Unescaped output

Vulnerabilities

None known

Simple Customer CRM Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Simple Customer CRM Plugin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

78% escaped18 total outputs

Attack Surface

2 unprotected

Simple Customer CRM Plugin Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 2

authwp_ajax_submitCustomerFormsimple-customer-crm.php:52

noprivwp_ajax_submitCustomerFormsimple-customer-crm.php:53

Shortcodes 1

[sccrm] simple-customer-crm.php:35

WordPress Hooks 9

actionwp_enqueue_scriptssimple-customer-crm.php:34

actioninitsimple-customer-crm.php:36

actioninitsimple-customer-crm.php:37

actionadd_meta_boxes_sccrm_customersimple-customer-crm.php:39

actionsave_postsimple-customer-crm.php:40

filtermanage_edit-sccrm_customer_columnssimple-customer-crm.php:43

filtermanage_edit-sccrm_customer_sortable_columnssimple-customer-crm.php:45

actionmanage_sccrm_customer_posts_custom_columnsimple-customer-crm.php:47

filterpost_row_actionssimple-customer-crm.php:50

Maintenance & Trust

Simple Customer CRM Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedUnknown

PHP min version5.2.4

Downloads951

Community Trust

Rating100/100

Number of ratings2

Active installs0

Alternatives

Simple Customer CRM Plugin Alternatives

No alternatives data available yet.

Developer Profile

Simple Customer CRM Plugin Developer Profile

tristup

2 plugins · 70 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Customer CRM Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-customer-crm/css/bootstrap.min.css/wp-content/plugins/simple-customer-crm/css/main.css/wp-content/plugins/simple-customer-crm/js/jquery.validate.js/wp-content/plugins/simple-customer-crm/js/main.js

Script Paths

/wp-content/plugins/simple-customer-crm/js/main.js

Version Parameters

simple-customer-crm/css/bootstrap.min.css?ver=simple-customer-crm/css/main.css?ver=simple-customer-crm/js/jquery.validate.js?ver=simple-customer-crm/js/main.js?ver=

HTML / DOM Fingerprints

JS Globals

sccrmsettings

FAQ