Does WP Plugin Showroom have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Plugin Showroom have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Plugin Showroom compatible with WordPress 5.7.15?

According to WordPress.org data, WP Plugin Showroom 1.1.2 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is WP Plugin Showroom compatible with PHP 5.6+?

WP Plugin Showroom requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Plugin Showroom updated?

WP Plugin Showroom was last updated on Unknown. Frequent updates are generally a positive security signal.

What is WP Plugin Showroom's security score?

WP Plugin Showroom has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Plugin Showroom Security & Risk Analysis

wordpress.org/plugins/wp-plugin-showroom

The "WP Plugin Showroom" Plugin is a very easy way to show Wordpres plugins in a showroom. You can show a wp plugin in a post or site.

0 active installs v1.1.2 PHP 5.6+ WP 5.3+ Updated Unknown

postshortcodeshowroomsitewp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Plugin Showroom Safe to Use in 2026?

Generally Safe

Score 100/100

WP Plugin Showroom has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The wp-plugin-showroom v1.1.2 plugin exhibits a mixed security posture. On the positive side, there are no recorded vulnerabilities (CVEs) and no indications of dangerous functions or file operations. The absence of external HTTP requests and bundled libraries also reduces potential attack vectors. However, significant concerns arise from the static analysis. The plugin has one AJAX handler that lacks authentication checks, presenting a clear pathway for unauthenticated attackers to interact with the plugin's functionality. Furthermore, all three SQL queries are executed without prepared statements, which is a critical flaw that opens the door to SQL injection vulnerabilities. While taint analysis shows no immediate exploitable flows, the raw SQL queries are a severe risk that would likely be exposed by such analysis if the data were more complex.

Key Concerns

AJAX handler without authentication check
SQL queries without prepared statements
Lack of nonce checks on AJAX

Vulnerabilities

None known

WP Plugin Showroom Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Plugin Showroom Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared3 total queries

Output Escaping

67% escaped3 total outputs

Attack Surface

1 unprotected

WP Plugin Showroom Attack Surface

Entry Points2

Unprotected1

AJAX Handlers 1

authwp_ajax_plgshow_trash_bufferinc\plgshow-setting.php:113

Shortcodes 1

[plgshow] inc\plgshow-shortcode.php:25

WordPress Hooks 9

actionplugins_loadedinc\plgshow-admin.php:36

actionadmin_enqueue_scriptsinc\plgshow-admin.php:39

actionenqueue_block_assetsinc\plgshow-init.php:31

actioninitinc\plgshow-init.php:88

actionadmin_menuinc\plgshow-setting.php:39

actionwp_enqueue_scriptsinc\plgshow-user.php:25

filterplgshow_api_parserinc\plgshow-user.php:40

actioninitwp-plugin-showroom.php:41

filterplugin_row_metawp-plugin-showroom.php:62

Maintenance & Trust

WP Plugin Showroom Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedUnknown

PHP min version5.6

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

WP Plugin Showroom Alternatives

Projects showroom

projects-showroom

The "projects-showroom" Plugin is a very easy way to show your projects in a showwroom. You create a shortcode and copy-paste the shortcode …

0 No CVEs

Apollo13 Framework Extensions

apollo13-framework-extensions

Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.

20K 6 CVEs

WP Smart Preloader

wp-smart-preloader

A Plugin to add awesome collection of Loaders and Spinners. Delightful and performance-focused Pure CSS animations.

6K 1 CVE

Wp Post Views – WordPress Post views counter

wp-post-views

100

Wordpress Post views counter

4K No CVEs

Sync Post With Other Site

sync-post-with-other-site

Allows user to sync Posts, Pages and Custom Post Type with multiple websites.

3K 2 CVEs

Developer Profile

WP Plugin Showroom Developer Profile

Triopsi

7 plugins · 60 total installs

trust score

Avg Security Score

94/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Plugin Showroom

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-plugin-showroom/assets/css/plgshow-admin-style.css/wp-content/plugins/wp-plugin-showroom/assets/js/plgshow-admin.js/wp-content/plugins/wp-plugin-showroom/assets/css/plgshow-block-style.css/wp-content/plugins/wp-plugin-showroom/assets/js/plgshow-blocks.js

Script Paths

/wp-content/plugins/wp-plugin-showroom/assets/js/plgshow-admin.js/wp-content/plugins/wp-plugin-showroom/assets/js/plgshow-blocks.js

HTML / DOM Fingerprints

CSS Classes

plgshow-block-editor-style

Data Attributes

data-block="plgshow-wp/plg-showroom"

JS Globals

plgshow

Shortcode Output

[plgshow slug=

FAQ