Does SSO OAuth for Discord by path digital have any unpatched vulnerabilities?

No. All known vulnerabilities in SSO OAuth for Discord by path digital have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SSO OAuth for Discord by path digital compatible with WordPress 6.3.8?

According to WordPress.org data, SSO OAuth for Discord by path digital 3.1.3 has been tested up to WordPress 6.3.8. Check the plugin's changelog for the latest compatibility information.

Is SSO OAuth for Discord by path digital compatible with PHP 5.4+?

SSO OAuth for Discord by path digital requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SSO OAuth for Discord by path digital updated?

SSO OAuth for Discord by path digital was last updated on Nov 5, 2023. Frequent updates are generally a positive security signal.

What is SSO OAuth for Discord by path digital's security score?

SSO OAuth for Discord by path digital has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SSO OAuth for Discord by path digital Security & Risk Analysis

wordpress.org/plugins/sso-oauth-discord-by-path-digital

Discord OAuth for your Website. Hide your website content with Discord SSO and make it only available for your server members.

10 active installs v3.1.3 PHP 5.4+ WP 4.0+ Updated Nov 5, 2023

discorddiscord-loginloginoauthsso

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is SSO OAuth for Discord by path digital Safe to Use in 2026?

Generally Safe

Score 85/100

SSO OAuth for Discord by path digital has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The 'sso-oauth-discord-by-path-digital' plugin v3.1.3 exhibits a mixed security posture. It demonstrates strong adherence to some security best practices, notably the complete absence of dangerous functions, all SQL queries utilizing prepared statements, and a relatively high percentage of properly escaped output. The plugin also implements nonce and capability checks, indicating an awareness of fundamental WordPress security mechanisms. However, the presence of two AJAX handlers without authentication checks represents a significant concern, creating an unprotected attack surface that could be exploited by unauthenticated users.

Taint analysis revealed two flows with unsanitized paths, which, while not classified as critical or high severity in this report, warrant careful investigation. The absence of any known vulnerabilities or CVEs is a positive indicator, suggesting a generally stable and secure codebase historically. Nonetheless, the unprotected AJAX endpoints remain the most immediate and actionable risk identified in this analysis.

In conclusion, while the plugin has strengths in its careful handling of database operations and output escaping, the unprotected AJAX endpoints introduce a clear security weakness. The absence of historical vulnerabilities is reassuring, but it does not mitigate the risks presented by the current code's attack surface. Addressing the unprotected AJAX handlers should be a priority to improve the plugin's overall security.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Output not properly escaped

Vulnerabilities

None known

SSO OAuth for Discord by path digital Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

SSO OAuth for Discord by path digital Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

145 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

79% escaped183 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

4 flows2 with unsanitized paths

render_menu (admin\class-admin-menu.php:13)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

SSO OAuth for Discord by path digital Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 2

authwp_ajax_ban_userpathdigital-discord-oauth.php:67

authwp_ajax_force_logoutpathdigital-discord-oauth.php:68

Shortcodes 1

[pd_logout] pathdigital-discord-oauth.php:89

WordPress Hooks 26

actionadmin_noticesadmin\class-admin-notice.php:27

actionadmin_noticesadmin\class-admin-notice.php:32

actionadmin_noticesadmin\class-admin.php:29

actionadmin_noticesadmin\class-admin.php:37

actionadmin_noticesadmin\class-admin.php:51

actionadmin_noticesadmin\class-admin.php:59

actionadmin_menupathdigital-discord-oauth.php:61

actionadmin_enqueue_scriptspathdigital-discord-oauth.php:62

actionadmin_enqueue_scriptspathdigital-discord-oauth.php:63

actionadmin_initpathdigital-discord-oauth.php:64

actionadd_meta_boxespathdigital-discord-oauth.php:65

actionsave_postpathdigital-discord-oauth.php:66

actionwp_headpathdigital-discord-oauth.php:76

actioninitpathdigital-discord-oauth.php:77

actioninitpathdigital-discord-oauth.php:78

actionwppathdigital-discord-oauth.php:79

actionwp_enqueue_scriptspathdigital-discord-oauth.php:80

actionwp_enqueue_scriptspathdigital-discord-oauth.php:81

filterthe_contentpathdigital-discord-oauth.php:82

filterthe_contentpathdigital-discord-oauth.php:83

filterwp_nav_menu_objectspathdigital-discord-oauth.php:84

filterwp_nav_menu_objectspathdigital-discord-oauth.php:85

filterwidget_display_callbackpathdigital-discord-oauth.php:86

filterpage_templatepathdigital-discord-oauth.php:87

filtertemplate_includepathdigital-discord-oauth.php:88

actionplugins_loadedpathdigital-discord-oauth.php:562

Maintenance & Trust

SSO OAuth for Discord by path digital Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8

Last updatedNov 5, 2023

PHP min version5.4

Downloads4K

Community Trust

Rating96/100

Number of ratings9

Active installs10

Alternatives

SSO OAuth for Discord by path digital Alternatives

miniOrange Discord Integration

miniorange-discord-integration

Enable Discord login and integration with WordPress to implement features like Role Mapping, Attribute Mapping, User Profile Registration & Restri …

100 1 unpatched

Login for Google Apps

google-apps-login

100

Simple secure login and user management through your Google Workspace for WordPress (using oAuth2 and MFA if enabled).

10K 1 CVE

OAuth Single Sign On – SSO (OAuth Client)

miniorange-login-with-eve-online-google-facebook

WordPress SSO (Single Sign On) with Azure, Azure B2C, Cognito, Okta, Classlink, Discord, Clever, Keycloak, OAuth & OpenID Providers [24/7 SUPPORT].

7K 10 CVEs

Log in with Google

100

Minimal plugin that allows WordPress users to log in using Google.

6K No CVEs

Tim's Nextcloud SSO OAuth2

tims-nextcloud-sso-oauth2

100

Enables you to login to your WordPress site with your Nextcloud account with OAuth2

300 No CVEs

Developer Profile

SSO OAuth for Discord by path digital Developer Profile

path digital

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SSO OAuth for Discord by path digital

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sso-oauth-discord-by-path-digital/css/style.css/wp-content/plugins/sso-oauth-discord-by-path-digital/js/script.js

Script Paths

/wp-content/plugins/sso-oauth-discord-by-path-digital/js/script.js

Version Parameters

sso-oauth-discord-by-path-digital/style.css?ver=sso-oauth-discord-by-path-digital/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

pd-discord-oauth-login

HTML Comments

JS Globals

pd_discord_oauth_vars

Shortcode Output

[pd_logout]

FAQ