Does Push7 Subscribe button have any unpatched vulnerabilities?

No. All known vulnerabilities in Push7 Subscribe button have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Push7 Subscribe button compatible with WordPress 4.7.32?

According to WordPress.org data, Push7 Subscribe button 1.1.1 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Push7 Subscribe button updated?

Push7 Subscribe button was last updated on Sep 19, 2016. Frequent updates are generally a positive security signal.

What is Push7 Subscribe button's security score?

Push7 Subscribe button has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Push7 Subscribe button Security & Risk Analysis

wordpress.org/plugins/simple-push-subscribe-button

Easy setup Push7 Subscribe Button, and inject Jetpack

70 active installs v1.1.1 PHP + WP 4.2+ Updated Sep 19, 2016

desktop-notificationsnotificationspush-notificationweb-push

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Push7 Subscribe button Safe to Use in 2026?

Generally Safe

Score 85/100

Push7 Subscribe button has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The `simple-push-subscribe-button` plugin v1.1.1 exhibits a generally good security posture based on the provided static analysis. The absence of dangerous functions, SQL injection vulnerabilities (all queries use prepared statements), file operations, and external HTTP requests are significant strengths. Furthermore, the plugin has no recorded vulnerability history, which suggests a consistent track record of security. However, there are areas for improvement. A notable concern is the low percentage of properly escaped output (45%), indicating a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is outputted without sufficient sanitization. The absence of nonce checks on the single shortcode, while not directly identified as an attack vector in this analysis, could be a missed opportunity for basic protection against certain types of attacks.

Key Concerns

Output escaping is only 45% proper
No nonce checks on shortcode

Vulnerabilities

None known

Push7 Subscribe button Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Push7 Subscribe button Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

45% escaped29 total outputs

Attack Surface

Push7 Subscribe button Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[push7-sb] push7-subscribe-button.php:175

WordPress Hooks 16

actionadmin_headinc\admin\class.admin.php:54

actionadmin_enqueue_scriptsinc\admin\class.admin.php:55

actionadmin_menuinc\admin\class.admin.php:56

actionadmin_initinc\admin\class.admin.php:57

actionjetpack_modules_loadedinc\class.sharedaddy.php:15

filtersharing_servicesinc\class.sharedaddy.php:54

actionwp_enqueue_scriptsinc\socialbuzz\class.base.php:108

actionwp_headinc\socialbuzz\class.base.php:109

filterthe_contentinc\socialbuzz\class.base.php:110

actionwp_footerinc\socialbuzz\class.base.php:111

actionwp_enqueue_scriptspush7-subscribe-button.php:65

actioninitpush7-subscribe-button.php:66

actionwidgets_initpush7-subscribe-button.php:67

actioninitpush7-subscribe-button.php:68

actionadmin_menupush7-subscribe-button.php:71

actionplugins_loadedpush7-subscribe-button.php:324

Maintenance & Trust

Push7 Subscribe button Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedSep 19, 2016

PHP min version

Downloads7K

Community Trust

Rating0/100

Number of ratings0

Active installs70

Alternatives

Push7 Subscribe button Alternatives

Push Notifications for WP – Self Hosted Web Push Notifications

push-notification

100

Push Notifications for WP - Self Hosted Web Push Notifications makes it easy to send Web Push notifications to your users for FREE with 2 minutes setu …

6K No CVEs

SendPulse Free Web Push

sendpulse-web-push

Web push notifications for your website. Available in Chrome (Android and desktop), Firefox (Android and desktop) and Safari (desktop).

600 2 CVEs

AlertWise: Mobile & Web Push Notification Service

alertwise

100

AlertWise is a powerful push notification plugin; that helps you engage users in real time.

10 No CVEs

EPush Notifications

free-web-push-notification

Web push notification services are the best way to deliver time boud content to customers about your offerings even they are out of your browser.

10 No CVEs

PushNinja by 500apps – Push Notification Plugin To Send Real-time Notifications

pushninja

100

PushNinja is the best way to connect with your customers after they leave your website. Engage your customers, send automated push notifications and a …

0 No CVEs

Developer Profile

Push7 Subscribe button Developer Profile

John LeBlanc

8 plugins · 430 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Push7 Subscribe button

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-push-subscribe-button/css/front.css/wp-content/plugins/simple-push-subscribe-button/js/push7sb.js

Script Paths

https://push.app.push7.jp/static/button/p7.js

HTML / DOM Fingerprints

CSS Classes

p7-b

Data Attributes

data-p7iddata-p7c

Shortcode Output

<div class="p7-b" data-p7id=

FAQ