Does WP Customer Feedback have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Customer Feedback compatible with WordPress 4.2.39?

According to WordPress.org data, WP Customer Feedback 1.3.0 has been tested up to WordPress 4.2.39. Check the plugin's changelog for the latest compatibility information.

How often is WP Customer Feedback updated?

WP Customer Feedback was last updated on Apr 22, 2015. Frequent updates are generally a positive security signal.

What is WP Customer Feedback's security score?

WP Customer Feedback has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Customer Feedback Security & Risk Analysis

wordpress.org/plugins/wp-customer-feedback

Give users a quick and easy way to provide feedback. Feedback is sent directly to you, away from competitors eyes. Increases leads and conversions.

50 active installs v1.3.0 PHP + WP 3.5+ Updated Apr 22, 2015

customercustomer-feedbackfeedbackreviewuser-feedback

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Customer Feedback Safe to Use in 2026?

Generally Safe

Score 85/100

WP Customer Feedback has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The wp-customer-feedback plugin v1.3.0 presents a mixed security posture. While it exhibits good practices such as using prepared statements for all SQL queries and having no recorded vulnerabilities or dangerous functions, there are significant concerns regarding its attack surface. Two out of the three identified entry points, specifically AJAX handlers, lack authentication checks. This leaves them open to potential exploitation by unauthenticated users, which is a substantial risk. The absence of taint analysis flows suggests that either no such flows were detected or the analysis itself was limited, making it difficult to assess risks related to data handling. The complete lack of vulnerability history is a positive indicator, implying the developers have a history of addressing security issues, but it does not negate the immediate risks identified in the static analysis.

Key Concerns

AJAX handlers without auth checks
Output escaping only 50% proper
No nonce checks on AJAX handlers
No capability checks on entry points

Vulnerabilities

None known

WP Customer Feedback Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP Customer Feedback Release Timeline

v1.3.0Current

v1.2.1

v1.2.0

v1.1.1

v1.1.0

v1.0.1

v0.1.1

Code Analysis

Analyzed Mar 16, 2026

WP Customer Feedback Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

50% escaped2 total outputs

Attack Surface

2 unprotected

WP Customer Feedback Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 2

authwp_ajax_process_form_datawp-customer-feedback.php:38

noprivwp_ajax_process_form_datawp-customer-feedback.php:39

Shortcodes 1

[get-feedback] wp-customer-feedback.php:37

WordPress Hooks 3

actionadmin_menuadmin-page.php:10

actionadmin_enqueue_scriptsadmin-page.php:11

actionwp_enqueue_scriptswp-customer-feedback.php:40

Maintenance & Trust

WP Customer Feedback Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39

Last updatedApr 22, 2015

PHP min version

Downloads6K

Community Trust

Rating86/100

Number of ratings3

Active installs50

Alternatives

WP Customer Feedback Alternatives

Mopinion Feedback Form

mopinion-feedback-form

Easy add feedback buttons and feedback forms to your website with the Mopinion.com Wordpress Plugin. Easy install, fast user insights.

100 1 unpatched

Simple Feature Requests Free – User Feedback Board

simple-feature-requests

100

Collect and manage user feedback using your existing WordPress website. Prioritize the product features important to you and your customers.

100 No CVEs

TargetBay Product and Site Reviews

targetbay-product-and-site-reviews

Generate tons of product reviews for your WooCommerce site with TargetBay

40 No CVEs

Inline Feedback Widget

inline-feedback-widget

100

Collect user feedback with a lightweight widget. Connect your workspace, configure visibility, and start gathering insights in seconds.

0 No CVEs

Order Feedback For WooCommerce

order-feedback-woo

Order Feedback For WooCommerce lets you boost customer satisfaction by providing them a feedback form to share their order experiences.

0 No CVEs

Developer Profile

WP Customer Feedback Developer Profile

Adrian Gray

1 plugin · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Customer Feedback

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-customer-feedback/css/feedback.css/wp-content/plugins/wp-customer-feedback/js/feedback.js

Script Paths

/wp-content/plugins/wp-customer-feedback/js/admin.js

Version Parameters

wp-customer-feedback/css/feedback.css?ver=wp-customer-feedback/js/feedback.js?ver=1.3.0

HTML / DOM Fingerprints

CSS Classes

endualcf-admin-imputendualcf-admin-labelendualcf-text-inputwistia-popover

Data Attributes

data-wistia-popover

JS Globals

endual

Shortcode Output

[get-feedback]

FAQ