Does WoW Guild have any unpatched vulnerabilities?

No. All known vulnerabilities in WoW Guild have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WoW Guild compatible with WordPress 2.7.1?

According to WordPress.org data, WoW Guild 1.5 has been tested up to WordPress 2.7.1. Check the plugin's changelog for the latest compatibility information.

How often is WoW Guild updated?

WoW Guild was last updated on Unknown. Frequent updates are generally a positive security signal.

What is WoW Guild's security score?

WoW Guild has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WoW Guild Security & Risk Analysis

wordpress.org/plugins/wow-guild

Easily displays your Guild's Roster from the armory

10 active installs v1.5 PHP + WP 2.6+ Updated Unknown

armoryguildwidgetworld-of-warcraftwow

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WoW Guild Safe to Use in 2026?

Generally Safe

Score 100/100

WoW Guild has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "wow-guild" v1.5 plugin presents a mixed security posture. On the positive side, it has no recorded vulnerabilities (CVEs) and utilizes prepared statements for all SQL queries, indicating good practice in database interaction. The attack surface is also minimal, with only one shortcode and no AJAX handlers or REST API routes that are exposed without authentication checks. However, significant concerns arise from the static analysis. The most critical finding is that 100% of its outputs are not properly escaped, which poses a high risk for Cross-Site Scripting (XSS) vulnerabilities. Additionally, the taint analysis revealed a flow with an unsanitized path, suggesting a potential for other types of vulnerabilities that could be exploited, even though it's not classified as critical or high severity in this specific scan. The absence of nonce and capability checks for any entry points, coupled with the untrusted external HTTP request, further amplifies the risk profile.

Key Concerns

0% of outputs properly escaped
1 unsanitized path in taint analysis
0 nonce checks
0 capability checks
1 external HTTP request without auth

Vulnerabilities

None known

WoW Guild Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WoW Guild Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped49 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<get_guild> (js\get_guild.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WoW Guild Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[wowguild] wow-guild.php:209

WordPress Hooks 2

actionwp_headwow-guild.php:46

actionwidgets_initwow-guild.php:208

Maintenance & Trust

WoW Guild Maintenance & Trust

Maintenance Signals

WordPress version tested2.7.1

Last updatedUnknown

PHP min version

Downloads6K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

WoW Guild Alternatives

Warcraft Bundle

warcraft-bundle

100

Warcraft Bundle for WordPress. World of Warcraft collection pages and widgets for WordPress.

10 No CVEs

WoW Armory

wow-armory

Easily displays your character's stats from the Armory.

10 No CVEs

WoWpi Guild

wowpi-guild

You want a proper World of Warcraft's guild website but you don't know how? Look no further. This is the plugin for your guild's needs.

10 No CVEs

WoW Progress

wow-progress

100

A widget that helps to display guild raid progress.

30 No CVEs

WOW Recruitment Widget

wow-recruit-widget

A widget that helps to display recruitment message of a World of Warcraft guild, also can be used for other games that have different classes.

20 No CVEs

Developer Profile

WoW Guild Developer Profile

SeiferTim

2 plugins · 20 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WoW Guild

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wow-guild/js/guild.js/wp-content/plugins/wow-guild/css/style.css/wp-content/plugins/wow-guild/ajax-loader.gif

Script Paths

http://www.wowhead.com/widgets/power.js

Version Parameters

wow-guild/js/guild.js?ver=wow-guild/css/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

guild_displayguild_gnameguild_realmguild_realmtypeguild_shownoguild_noguild_link

Data Attributes

id="guild-name="widget_wow_guild[

JS Globals

getGuild(

FAQ

WoW Guild Security & Risk Analysis

Is WoW Guild Safe to Use in 2026?

Generally Safe

Key Concerns

WoW Guild Security Vulnerabilities

WoW Guild Code Analysis

Output Escaping

Data Flow Analysis

WoW Guild Attack Surface

Shortcodes 1

WoW Guild Maintenance & Trust

Maintenance Signals

Community Trust

WoW Guild Alternatives

Warcraft Bundle

WoW Armory

WoWpi Guild

WoW Progress

WOW Recruitment Widget

WoW Guild Developer Profile

How We Detect WoW Guild

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about WoW Guild