Does Spritz have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Spritz compatible with WordPress 6.7.5?

According to WordPress.org data, Spritz 1.0.4 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Spritz compatible with PHP 8.3+?

Spritz requires PHP 8.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Spritz updated?

Spritz was last updated on Dec 27, 2024. Frequent updates are generally a positive security signal.

What is Spritz's security score?

Spritz has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Spritz Security & Risk Analysis

wordpress.org/plugins/spritz

Spritz reminds you to review or refresh your WordPress posts on a regular basis.

0 active installs v1.0.4 PHP 8.3+ WP 6.6+ Updated Dec 27, 2024

admincollaborationeditorialmanagementworkflow

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Spritz Safe to Use in 2026?

Generally Safe

Score 92/100

Spritz has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'spritz' v1.0.4 plugin exhibits a strong security posture based on the static analysis and vulnerability history provided. The absence of dangerous functions, file operations, and external HTTP requests, coupled with 100% usage of prepared statements for SQL queries and proper output escaping, indicates a well-written codebase that adheres to secure development practices. The presence of nonce and capability checks further reinforces this, limiting potential unauthorized access and actions. The zero recorded CVEs, both historical and current, and the lack of any recorded vulnerability types suggest a consistently secure development history, which is a significant strength. However, the static analysis did not include taint analysis flows, meaning that potential vulnerabilities related to untrusted data being processed without proper sanitization in complex scenarios might have been missed. While the current data is highly positive, the absence of taint analysis results leaves a small blind spot in the assessment.

Vulnerabilities

None known

Spritz Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Spritz Release Timeline

v1.0.4Current

Code Analysis

Analyzed Apr 16, 2026

Spritz Code Analysis

Dangerous Functions

Raw SQL Queries

13 prepared

Unescaped Output

76 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared13 total queries

Output Escaping

100% escaped76 total outputs

Attack Surface

Spritz Attack Surface

Entry Points3

Unprotected0

Shortcodes 3

[spritz_post_status] src/wordpress/App.php:220

[spritz_post_note] src/wordpress/App.php:221

[spritz_post_nextreviewdate] src/wordpress/App.php:222

WordPress Hooks 8

actionadd_meta_boxessrc/wordpress/App.php:214

actionsave_postsrc/wordpress/App.php:215

actionadmin_menusrc/wordpress/App.php:216

actionspritz_presave_spritz_entitysrc/wordpress/App.php:217

actionspritz_cron_tasksrc/wordpress/App.php:218

filtersubmenu_filesrc/wordpress/App.php:219

actionadmin_menusrc/wordpress/controller/SettingsController.php:84

actionadmin_initsrc/wordpress/controller/SettingsController.php:85

Scheduled Events 1

spritz_cron_task

Maintenance & Trust

Spritz Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedDec 27, 2024

PHP min version8.3

Downloads662

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Spritz Alternatives

Peter’s Post Notes

peters-post-notes

Add notes to the "edit post" and "edit page" sidebars. Collaborators can also share notes on the WordPress dashboard.

3K No CVEs

Team Collaboration & Content Workflow Plugin for WordPress Editorial Teams – Multicollab

commenting-feature

100

This plugin serves the commenting feature like Google Docs within the Gutenberg Editor!

300 No CVEs

Quick Edit Notes

quick-edit-notes

Add internal notes to posts and pages directly from the Quick Edit interface and block editor in WordPress.

40 No CVEs

andW Work Notes

andw-work-notes

100

クライアント指示やサイト更新に関する作業メモを記録・管理するWordPressプラグインです。

0 No CVEs

Request Flow Pro

request-flow-pro

100

A powerful WordPress solution for managing approval workflows with modern UI, email notifications, and comprehensive request tracking.

0 No CVEs

Developer Profile

Spritz Developer Profile

TolstoyDotCom

1 plugin · 0 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Spritz

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/spritz/src/wordpress/display/spritz-table-listing.js/wp-content/plugins/spritz/src/wordpress/display/spritz-table-history.js/wp-content/plugins/spritz/assets/css/spritz.css/wp-content/plugins/spritz/assets/js/spritz.js

Script Paths

/wp-content/plugins/spritz/src/wordpress/display/spritz-table-listing.js/wp-content/plugins/spritz/src/wordpress/display/spritz-table-history.js/wp-content/plugins/spritz/assets/js/spritz.js

HTML / DOM Fingerprints

CSS Classes

spritz-tablespritz-state

HTML Comments

Data Attributes

data-spritz-post-iddata-spritz-next-state

JS Globals

spritz_ajax_object

REST Endpoints

/wp-json/spritz/v1/settings/wp-json/spritz/v1/states/wp-json/spritz/v1/posts

FAQ