Does WoPo Notepad have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WoPo Notepad compatible with WordPress 5.7.15?

According to WordPress.org data, WoPo Notepad 1.0.0 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is WoPo Notepad compatible with PHP 7.1+?

WoPo Notepad requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WoPo Notepad updated?

WoPo Notepad was last updated on Jul 7, 2021. Frequent updates are generally a positive security signal.

What is WoPo Notepad's security score?

WoPo Notepad has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WoPo Notepad Security & Risk Analysis

wordpress.org/plugins/wopo-notepad

Microsoft Notepad clone for website

10 active installs v1.0.0 PHP 7.1+ WP 5.2+ Updated Jul 7, 2021

notepadonlineweb-appwindows-xpwopo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WoPo Notepad Safe to Use in 2026?

Generally Safe

Score 85/100

WoPo Notepad has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "wopo-notepad" plugin version 1.0.0 exhibits a generally good security posture based on the static analysis. It demonstrates an absence of dangerous functions, SQL injection vulnerabilities through prepared statements, and external HTTP requests. The fact that there are no known CVEs associated with this plugin, either past or present, further contributes to a perception of relative security. However, there are some areas that warrant caution. The presence of a shortcode, even though it's the only identified entry point, combined with a complete lack of capability checks or nonce checks across all entry points, signifies a potential for privilege escalation or unauthorized actions if the shortcode's functionality can be manipulated.

Key Concerns

Missing capability checks on entry points
Missing nonce checks on entry points
Unescaped output

Vulnerabilities

None known

WoPo Notepad Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WoPo Notepad Release Timeline

No version history available.

Code Analysis

Analyzed Apr 16, 2026

WoPo Notepad Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

50% escaped2 total outputs

Attack Surface

WoPo Notepad Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[wopo-notepad] wopo-notepad.php:38

WordPress Hooks 1

actionwp_enqueue_scriptswopo-notepad.php:21

Maintenance & Trust

WoPo Notepad Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedJul 7, 2021

PHP min version7.1

Downloads1K

Community Trust

Rating80/100

Number of ratings2

Active installs10

Alternatives

WoPo Notepad Alternatives

WoPo Minesweeper

wopo-minesweeper

Minesweeper Game

50 No CVEs

WoPo Solitaire

wopo-solitaire-web-based-game-online

Solitaire Game

20 No CVEs

WoPo Sound Recorder

wopo-sound-recorder

Microsoft Sound Recorder clone for website

0 No CVEs

WooCommerce

woocommerce

Everything you need to launch an online store in days and keep it growing for years. From your first sale to millions in revenue, Woo is with you.

7.0M 43 CVEs

Security Optimizer – The All-In-One Protection Plugin

sg-security

Secure your WordPress site from brute-force attacks, threats, malware, and bots. Free to use and easy to set up.

1.0M 5 CVEs

Developer Profile

WoPo Notepad Developer Profile

WoPo Web

14 plugins · 320 total installs

trust score

Avg Security Score

88/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WoPo Notepad

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wopo-notepad/assets/css/XP.css/wp-content/plugins/wopo-notepad/assets/css/main.css/wp-content/plugins/wopo-notepad/assets/js/main.js

Script Paths

/wp-content/plugins/wopo-notepad/assets/js/main.js

Version Parameters

wopo-notepad/assets/css/XP.css?ver=wopo-notepad/assets/css/main.css?ver=wopo-notepad/assets/js/main.js?ver=

HTML / DOM Fingerprints

CSS Classes

wopo_notepad_windowtitle-bartitle-bar-texttitle-bar-controlsbtn-minimizebtn-maximizebtn-closewindow-body

Data Attributes

id="wopo_notepad_window"id="wopo_notepad"

JS Globals

wopoSolitaire

Shortcode Output

<div id="wopo_notepad_window" class="window"><div class="title-bar"><div class="title-bar-text">WoPo Notepad</div><div class="title-bar-controls">

FAQ