Does Software License Manager have any unpatched vulnerabilities?

No. All known vulnerabilities in Software License Manager have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Software License Manager compatible with WordPress 6.9.4?

According to WordPress.org data, Software License Manager 4.5.8 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Software License Manager compatible with PHP 7.4.0+?

Software License Manager requires PHP 7.4.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Software License Manager updated?

Software License Manager was last updated on Dec 2, 2025. Frequent updates are generally a positive security signal.

What is Software License Manager's security score?

Software License Manager has a WP-Safety security score of 98/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Software License Manager Security Review

Name: Software License Manager
Rating: 4.6 (35 reviews)

Safety Verdict

Is Software License Manager Safe to Use in 2026?

Generally Safe

Score 98/100

Software License Manager has a strong security track record. Known vulnerabilities have been patched promptly.

4 known CVEsLast CVE: Sep 13, 2021Updated 4mo ago

Risk Assessment

The "software-license-manager" plugin version 4.5.8 exhibits a generally good security posture with several strengths. The static analysis shows a commendable effort in using prepared statements for most SQL queries (79%) and properly escaping a high percentage of outputs (98%). The presence of nonce and capability checks is also a positive indicator. However, the presence of two flows with unsanitized paths, one of which is rated as high severity, is a significant concern that warrants immediate attention. Additionally, the plugin has a history of four known CVEs, with one high and three medium severity vulnerabilities, indicating a past susceptibility to common web attack vectors like CSRF and XSS. Although there are no currently unpatched CVEs, this history suggests a need for continued vigilance and thorough security reviews of future updates.

Key Concerns

High severity taint flow with unsanitized path
Two flows with unsanitized paths
History of high severity vulnerabilities
History of medium severity vulnerabilities
File operations detected
External HTTP requests detected

Vulnerabilities

4

Software License Manager Security Vulnerabilities

CVEs by Year

4 CVEs in 2021

2021

Patched Has unpatched

Severity Breakdown

High

1

Medium

3

4 total CVEs

CVE-2021-24711medium · 4.3Cross-Site Request Forgery (CSRF)

Software License Manager <= 4.5.0 - Cross-Site Request Forgery leading to Arbitrary Domain Deletion

Sep 13, 2021 Patched in 4.5.1 (862d)

WF-8a95633f-b5e1-4a92-b566-90fb05a289ce-software-license-managermedium · 5.5Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Software License Manager <= 4.4.9 - Authenticated (Admin+) Stored Cross-Site Scripting

Aug 31, 2021 Patched in 4.5.0 (875d)

CVE-2021-24560medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Software License Manager <= 4.4.7 - Reflected Cross-Site Scripting

Aug 11, 2021 Patched in 4.4.8 (895d)

CVE-2021-20782high · 8.8Cross-Site Request Forgery (CSRF)

Software License Manager < 4.4.6 - Cross-Site Request Forgery

Jul 8, 2021 Patched in 4.4.6 (929d)

Code Analysis

Analyzed Mar 16, 2026

Software License Manager Code Analysis

Dangerous Functions

0

Raw SQL Queries

8

30 prepared

Unescaped Output

2

128 escaped

Nonce Checks

8

Capability Checks

1

File Operations

5

External Requests

1

Bundled Libraries

0

SQL Query Safety

79% prepared38 total queries

Output Escaping

98% escaped130 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

11 flows2 with unsanitized paths

search_box (menu\slm-list-licenses-class.php:126)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Software License Manager Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 1

authwp_ajax_slm_delete_domainslm_plugin_core.php:51

Shortcodes 1

[emember_show_slm_license_key] includes\slm-third-party-integration.php:310

WordPress Hooks 11

actionslm_daily_cron_eventincludes\slm-init-time-tasks.php:9

filtereStore_notification_email_body_filterincludes\slm-third-party-integration.php:6

filtereStore_squeeze_form_email_body_filterincludes\slm-third-party-integration.php:7

filtereStore_addon_product_settings_filterincludes\slm-third-party-integration.php:161

actioneStore_new_product_addedincludes\slm-third-party-integration.php:162

actioneStore_product_updatedincludes\slm-third-party-integration.php:163

actioneStore_product_deletedincludes\slm-third-party-integration.php:164

actionadmin_menumenu\slm-admin-init.php:8

filterplugin_action_linksslm_bootstrap.php:62

actioninitslm_plugin_core.php:25

actionplugins_loadedslm_plugin_core.php:26

Scheduled Events 1

slm_daily_cron_event

Maintenance & Trust

Software License Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 2, 2025

PHP min version7.4.0

Downloads60K

Community Trust

Rating92/100

Number of ratings35

Active installs900

Alternatives

Software License Manager Alternatives

License Manager for WooCommerce

license-manager-for-woocommerce

A

95

Easily sell and manage software license keys through your WooCommerce shop

6K 4 CVEs

Digital License Manager

digital-license-manager

A

99

Efficiently sell and manage software license keys / codes on your WooCommerce webshop

700 1 CVE

Enwikuna License Manager for WooCommerce

enwikuna-license-manager

A

100

Enwikuna License Manager is a great and simple solution to easily sell and manage licenses through your WooCommerce store.

20 No CVEs

Serial Numbers – Ultimate License Manager for Selling, Licensing & Securely Delivering Digital Content with WooCommerce

wc-serial-numbers

A

99

An easy way to sell digital products and manage licenses with WooCommerce.

1K 2 CVEs

Serial Numbers & License Keys for WooCommerce

serial-numbers-license-keys-for-woocommerce

A

100

Sell license keys, serial numbers, and gift cards for Simple and Variable WooCommerce products with automatic assignment and secure storage.

10 No CVEs

Developer Profile

Software License Manager Developer Profile

mra13

15 plugins · 210K total installs

76

trust score

Avg Security Score

95/100

Avg Patch Time

629 days

View full developer profile

Detection Fingerprints

How We Detect Software License Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/software-license-manager/css/jquery-ui.css/wp-content/plugins/software-license-manager/js/wplm-custom-admin.js

Script Paths

/wp-content/plugins/software-license-manager/js/wplm-custom-admin.js

HTML / DOM Fingerprints

Data Attributes

data-slm-settingsdata-slm-product-id

JS Globals

window.wp_lic_mgr_plugin_obj

Shortcode Output

[slm_display_license_form]

FAQ

Software License Manager Security & Risk Analysis