Does WP Chimp have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Chimp compatible with WordPress 5.3.21?

According to WordPress.org data, WP Chimp 0.7.4 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

Is WP Chimp compatible with PHP 5.6+?

WP Chimp requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Chimp updated?

WP Chimp was last updated on Aug 9, 2019. Frequent updates are generally a positive security signal.

What is WP Chimp's security score?

WP Chimp has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Chimp Security & Risk Analysis

wordpress.org/plugins/wp-chimp

Lean MailChimp subscription form plugin for WordPress

20 active installs v0.7.4 PHP 5.6+ WP 5.0+ Updated Aug 9, 2019

formgutenbergmailchimpsubscriptionwidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Chimp Safe to Use in 2026?

Generally Safe

Score 85/100

WP Chimp has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The wp-chimp plugin version 0.7.4 exhibits a generally strong security posture, with a low attack surface and excellent adherence to output escaping and capability checks. The static analysis indicates that all identified entry points are protected, and there are no critical or high-severity taint flows, suggesting a good level of sanitization for the analyzed data. The absence of any known CVEs in its vulnerability history further contributes to this positive assessment, implying a history of secure development and maintenance. The code also makes good use of prepared statements for the majority of its SQL queries and includes nonce checks. However, the presence of file operations and external HTTP requests, while not inherently problematic, represent potential areas for scrutiny, as these can sometimes be vectors for vulnerabilities if not implemented with extreme care. Despite these minor potential concerns, the plugin appears to be well-secured based on the provided data.

Vulnerabilities

None known

WP Chimp Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP Chimp Release Timeline

v0.7.4Current

v0.7.3

v0.7.2

v0.7.1

v0.7.0

v0.5.0

v0.4.0

v0.3.0

v0.2.1

v0.2.0

v0.1.0

Code Analysis

Analyzed Mar 16, 2026

WP Chimp Code Analysis

Dangerous Functions

Raw SQL Queries

7 prepared

Unescaped Output

142 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

35% prepared20 total queries

Output Escaping

95% escaped149 total outputs

Attack Surface

WP Chimp Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[wp-chimp] src\subscription-form\class-subscription-form.php:174

WordPress Hooks 33

actionadmin_enqueue_scriptssrc\admin\class-admin.php:43

actionadmin_menusrc\admin\partials\class-menu.php:41

actioncurrent_screensrc\admin\partials\class-menu.php:42

filteradmin_footer_textsrc\admin\partials\class-menu.php:44

actionadmin_initsrc\admin\partials\class-tab-advanced.php:74

actionadded_optionsrc\admin\partials\class-tab-advanced.php:75

actionupdated_optionsrc\admin\partials\class-tab-advanced.php:76

filterdefault_option_wp_chimp_settings_advanced_listssrc\admin\partials\class-tab-advanced.php:78

filteroption_wp_chimp_settings_advanced_listssrc\admin\partials\class-tab-advanced.php:79

actionadmin_enqueue_scriptssrc\admin\partials\class-tab-mailchimp.php:76

actionadmin_enqueue_scriptssrc\admin\partials\class-tab-mailchimp.php:77

actionadmin_initsrc\admin\partials\class-tab-mailchimp.php:79

actionadded_optionsrc\admin\partials\class-tab-mailchimp.php:80

actionupdated_optionsrc\admin\partials\class-tab-mailchimp.php:81

filterdefault_option_wp_chimp_settings_mailchimpsrc\admin\partials\class-tab-mailchimp.php:83

filteroption_wp_chimp_settings_mailchimpsrc\admin\partials\class-tab-mailchimp.php:84

actionadmin_enqueue_scriptssrc\core\class-inline-state.php:37

actionplugins_loadedsrc\core\class-languages.php:42

actionadmin_noticessrc\core\class-plugin.php:100

actionrest_api_initsrc\core\endpoints\class-rest-lists-controller.php:49

actionrest_api_initsrc\core\endpoints\class-rest-ping-controller.php:53

actionrest_api_initsrc\core\endpoints\class-rest-subscription-forms-controller.php:45

actionrest_api_initsrc\core\endpoints\class-rest-sync-lists-controller.php:48

actionswitch_blogsrc\core\lists\class-database-table.php:70

actionadmin_initsrc\core\lists\class-database-table.php:71

actionadmin_noticessrc\core\lists\class-database-table.php:72

actioninitsrc\subscription-form\class-subscription-form.php:47

actioninitsrc\subscription-form\class-subscription-form.php:48

actioninitsrc\subscription-form\class-subscription-form.php:49

actionwidgets_initsrc\subscription-form\class-subscription-form.php:50

actionwp_enqueue_scriptssrc\subscription-form\class-subscription-form.php:51

actionenqueue_block_editor_assetssrc\subscription-form\class-subscription-form.php:52

actionenqueue_block_editor_assetssrc\subscription-form\class-subscription-form.php:53

Maintenance & Trust

WP Chimp Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedAug 9, 2019

PHP min version5.6

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

WP Chimp Alternatives

Embed Sendy

embed-sendy

Embed Sendy subscription form, through a widget, shortcode, or as a Gutenberg block.

100 No CVEs

WOW Mailchimp Widget

wow-mailchimp-widget

This plugin is Mailchimp newsletter widget. And can be used as subscription form in all supported widget areas of theme. Use you API Key and List Id t …

0 No CVEs

Icegram Collect – Easy Form, Lead Collection and Subscription plugin

icegram-rainmaker

Get readymade contact forms, email subscription forms and custom forms for your website. Choose from beautiful templates and get started within second …

3K 3 CVEs

Forms for Mailchimp by Optin Cat – Grow Your MailChimp List

mailchimp-wp

Forms for Mailchimp by Optin Cat helps you grow your MailChimp list. Create popups, inline forms, sidebar widgets & more.

2K 3 CVEs

Newsletter Subscription Form – User Subscriptions Form, Capture Email

newsletter-subscription-form

100

Newsletter Subscription Form for WordPress is the ultimate lead generation, customer acquisition and email marketing plugin to grow and engage your ma …

1K No CVEs

Developer Profile

WP Chimp Developer Profile

Thoriq Firdaus

2 plugins · 40 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Chimp

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-chimp/assets/css/admin.css/wp-content/plugins/wp-chimp/assets/css/tab-mailchimp.css/wp-content/plugins/wp-chimp/assets/js/react-content-loader.js/wp-content/plugins/wp-chimp/assets/js/clipboard.js/wp-content/plugins/wp-chimp/assets/js/tab-mailchimp.js

Version Parameters

wp-chimp/assets/css/admin.css?ver=wp-chimp/assets/css/tab-mailchimp.css?ver=wp-chimp/assets/js/react-content-loader.js?ver=wp-chimp/assets/js/clipboard.js?ver=wp-chimp/assets/js/tab-mailchimp.js?ver=

HTML / DOM Fingerprints

CSS Classes

wp-chimp-subscription-formwp-chimp-settings

FAQ