
TruVISIBILITY All-In-One Marketing Suite Security & Risk Analysis
wordpress.org/plugins/truvisibility-all-in-one-marketing-suiteThe TruVISIBILITY Plugin integrates your website with their all-in-one Marketing Suite featuring a CRM, Email Automation, Forms, & Live Chat/Chatbots.
Is TruVISIBILITY All-In-One Marketing Suite Safe to Use in 2026?
Generally Safe
Score 100/100TruVISIBILITY All-In-One Marketing Suite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'truvisibility-all-in-one-marketing-suite' plugin v1.2.6 demonstrates a generally strong security posture, with no recorded vulnerabilities or critical code issues. The static analysis reveals excellent practices in handling SQL queries and output escaping, both of which are 100% secure. The absence of dangerous functions, file operations, and external HTTP requests also contributes positively to its security. However, the plugin does present a few areas for concern. There is one AJAX handler and one REST API route that lack proper authentication and permission checks, respectively. While the taint analysis showed no unsanitized paths, the presence of unprotected entry points, coupled with zero nonce checks, indicates a potential for unauthorized access or manipulation if these endpoints were to be exploited.
The vulnerability history is notably clean, with zero known CVEs and no previously recorded vulnerabilities. This pattern suggests a diligent approach to security by the developers or a lack of past exploitation attempts. Despite the strengths in SQL and output handling, the unprotected AJAX and REST API endpoints are the primary security weaknesses. The lack of nonce checks further exacerbates this risk, as it bypasses a common WordPress security mechanism. Overall, the plugin is in good shape, but these unprotected entry points and the absence of nonce checks represent a moderate risk that should be addressed to achieve a robust security profile.
Key Concerns
- AJAX handler without auth check
- REST API route without permission callback
- No nonce checks on entry points
TruVISIBILITY All-In-One Marketing Suite Security Vulnerabilities
TruVISIBILITY All-In-One Marketing Suite Release Timeline
TruVISIBILITY All-In-One Marketing Suite Code Analysis
SQL Query Safety
Output Escaping
TruVISIBILITY All-In-One Marketing Suite Attack Surface
AJAX Handlers 1
REST API Routes 15
Shortcodes 1
WordPress Hooks 18
Maintenance & Trust
TruVISIBILITY All-In-One Marketing Suite Maintenance & Trust
Maintenance Signals
Community Trust
TruVISIBILITY All-In-One Marketing Suite Alternatives
HubSpot All-In-One Marketing – Forms, Popups, Live Chat
leadin
The CRM, Sales, and Marketing WordPress plugin to grow your business better. Capture and engage web visitors with free live chat, forms, CRM, email ma …
Gravity Forms Klaviyo Add-On
gf-klaviyo-add-on
Gravity Forms Klaviyo Add-On seamlessly integrates Gravity Forms with Klaviyo, enabling powerful email marketing automation.
SALESmanago & Leadoo
salesmanago
AI-powered Customer Engagement Platform for impact-hungry eCommerce marketing teams
Chat & Forms Integration for OkoCRM (Unofficial)
chat-and-forms-integration-for-okocrm
Unofficial WordPress integration providing a simple way to embed OkoCRM chat and form widgets.
Newsletter – Send awesome emails from WordPress
newsletter
An email marketing tool for your blog: subscription forms to create your lists with unlimited subscribers and newsletters.
TruVISIBILITY All-In-One Marketing Suite Developer Profile
2 plugins · 10 total installs
How We Detect TruVISIBILITY All-In-One Marketing Suite
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/truvisibility-all-in-one-marketing-suite/admin/css/truvisibility-platform-admin.min.css/wp-content/plugins/truvisibility-all-in-one-marketing-suite/admin/js/truvisibility-platform-admin-editor.js/wp-content/plugins/truvisibility-all-in-one-marketing-suite/admin/js/truvisibility-platform-admin.jshttps://forms.truvisibility.com/static/scripts/embed.jshttps://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.jshttps://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.jstruvisibility-platform-admin.min.css?ver=truvisibility-platform-admin-editor.js?ver=truvisibility-platform-admin.js?ver=HTML / DOM Fingerprints
truvisibility-platform-connectable-itemtruvisibility-platform-connectable-items<!-- TruVISIBILITY All-In-One Marketing Suite -->data-truvisibility-form-idwindow.truvisibility_platform_config[truvisibility_form