Does WP Courseware for WishList Member have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Courseware for WishList Member have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Courseware for WishList Member compatible with WordPress 5.8.13?

According to WordPress.org data, WP Courseware for WishList Member 1.4 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

How often is WP Courseware for WishList Member updated?

WP Courseware for WishList Member was last updated on Sep 9, 2021. Frequent updates are generally a positive security signal.

What is WP Courseware for WishList Member's security score?

WP Courseware for WishList Member has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Courseware for WishList Member Security & Risk Analysis

wordpress.org/plugins/wishlist-member-addon-for-wp-courseware

This plugin adds integration between WishList Member and WP Courseware which allows you to associate course(s) to membership levels for automatic enro …

200 active installs v1.4 PHP + WP 4.8+ Updated Sep 9, 2021

learning-management-systemselling-online-courses

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Courseware for WishList Member Safe to Use in 2026?

Generally Safe

Score 85/100

WP Courseware for WishList Member has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The security posture of the "wishlist-member-addon-for-wp-courseware" plugin v1.4 shows a mixed bag of good practices and potential concerns. On the positive side, there are no known CVEs, a lack of dangerous functions, and all SQL queries are properly prepared, indicating careful database interaction. The absence of file operations and external HTTP requests further reduces the attack surface. However, the static analysis reveals significant areas for improvement. The low percentage of properly escaped output (25%) is a concern, potentially leading to cross-site scripting (XSS) vulnerabilities if user-supplied data is rendered directly without sufficient sanitization. Additionally, the taint analysis identified one high-severity flow with unsanitized paths, suggesting that an attacker might be able to manipulate file paths or directory traversals, which could have severe security implications depending on the context.

Key Concerns

High severity taint flow with unsanitized paths
Low percentage of properly escaped output
No nonce checks
No capability checks

Vulnerabilities

None known

WP Courseware for WishList Member Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WP Courseware for WishList Member Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

25% escaped8 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

retroactive_assignment (wp-courseware-wishlist-member.php:119)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WP Courseware for WishList Member Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 14

filterwpcw_extensions_ignore_new_userclass_members.inc.php:54

filterwpcw_extensions_menu_itemsclass_members.inc.php:57

filterwpcw_extensions_access_control_overrideclass_members.inc.php:60

actionadmin_noticesclass_members.inc.php:408

actionadmin_noticesclass_members.inc.php:427

actioninitwp-courseware-wishlist-member.php:19

actionwishlistmember_add_user_levelswp-courseware-wishlist-member.php:105

actionwishlistmember_remove_user_levelswp-courseware-wishlist-member.php:106

actionwishlistmember_unapprove_user_levelswp-courseware-wishlist-member.php:107

actionwishlistmember_approve_user_levelswp-courseware-wishlist-member.php:108

actionwishlistmember_unconfirm_user_levelswp-courseware-wishlist-member.php:109

actionwishlistmember_confirm_user_levelswp-courseware-wishlist-member.php:110

actionwishlistmember_cancel_user_levelswp-courseware-wishlist-member.php:111

actionwishlistmember_uncancel_user_levelswp-courseware-wishlist-member.php:112

Maintenance & Trust

WP Courseware for WishList Member Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedSep 9, 2021

PHP min version

Downloads13K

Community Trust

Rating100/100

Number of ratings2

Active installs200

Alternatives

WP Courseware for WishList Member Alternatives

WP Courseware for S2Member

s2member-addon-for-wp-courseware

This plugin adds integration between S2Member and WP Courseware which allows you to associate course(s) to membership levels for automatic enrollment.

90 No CVEs

WP Courseware for Easy Digital Downloads

easy-digital-downloads-addon-for-wp-courseware

This plugin adds integration between Easy Digital Downloads and WP Courseware which allows you to associate course(s) to digital products for automati …

30 No CVEs

WP Courseware for OptimizeMember

om-addon-for-wp-courseware

This plugin adds integration between OptimizeMember and WP Courseware which allows you to associate course(s) to membership levels for automatic enrol …

20 No CVEs

WP Courseware for Magic Members

magic-member-addon-for-wp-courseware

This plugin adds integration between Magic Members and WP Courseware which allows you to associate course(s) to membership levels for automatic enroll …

10 No CVEs

WP Courseware for MemberSonic

membersonic-addon-for-wp-courseware

This plugin adds integration between MemberSonic and WP Courseware which allows you to associate course(s) to products for automatic enrollment.

10 No CVEs

Developer Profile

WP Courseware for WishList Member Developer Profile

flyplugins

16 plugins · 2K total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Courseware for WishList Member

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wishlist-member-addon-for-wp-courseware/css/wpmem-style.css/wp-content/plugins/wishlist-member-addon-for-wp-courseware/css/style.css

Script Paths

/wp-content/plugins/wishlist-member-addon-for-wp-courseware/js/wpmem-scripts.js

Version Parameters

wishlist-member-addon-for-wp-courseware/css/wpmem-style.css?ver=wishlist-member-addon-for-wp-courseware/css/style.css?ver=wishlist-member-addon-for-wp-courseware/js/wpmem-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

wlm_member_notice

HTML Comments

Data Attributes

data-wpmem-level

JS Globals

WPCW_members_wishlist_ajaxurl

FAQ