Does WP Poker Tournaments have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Poker Tournaments have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Poker Tournaments compatible with WordPress 3.6.1?

According to WordPress.org data, WP Poker Tournaments 1.0.2 has been tested up to WordPress 3.6.1. Check the plugin's changelog for the latest compatibility information.

How often is WP Poker Tournaments updated?

WP Poker Tournaments was last updated on Jan 12, 2014. Frequent updates are generally a positive security signal.

What is WP Poker Tournaments's security score?

WP Poker Tournaments has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Poker Tournaments Security & Risk Analysis

wordpress.org/plugins/wp-poker-tournaments

Poker tournaments and freerolls for your website

10 active installs v1.0.2 PHP + WP 3.5.1+ Updated Jan 12, 2014

affiliateaffiliate-marketingaffiliate-pluginpokerpoker-texas-holdem

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is WP Poker Tournaments Safe to Use in 2026?

Generally Safe

Score 85/100

WP Poker Tournaments has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The wp-poker-tournaments plugin, version 1.0.2, exhibits a mixed security posture. While it has a clean vulnerability history with no known CVEs, the static analysis reveals several areas for concern. The presence of the `unserialize` function without apparent safeguards is a significant risk, as it can lead to remote code execution if attacker-controlled data is unserialized. The taint analysis, though limited, identified flows with unsanitized paths, which could be exploited if these paths interact with sensitive functions. Furthermore, a low percentage of output escaping (39%) suggests potential for cross-site scripting (XSS) vulnerabilities where dynamic data is displayed without proper sanitization.

The plugin's limited attack surface and use of prepared statements for SQL queries are positive signs. However, the lack of nonce checks and capability checks across its entry points, combined with the identified `unserialize` usage and unsanitized taint flows, creates exploitable weaknesses. The vulnerability history of zero CVEs could indicate either a well-secured plugin or a lack of extensive security auditing and discovery, making the code analysis findings particularly important. Overall, while the plugin appears to have a good track record, the identified code-level issues warrant attention to prevent potential security incidents.

Key Concerns

Dangerous function: unserialize used
Flows with unsanitized paths
Low output escaping percentage (39%)
No nonce checks
No capability checks

Vulnerabilities

None known

WP Poker Tournaments Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Poker Tournaments Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

7 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$pokertournaments_active_hall = unserialize(get_option( 'pokertournaments_active_hall' ));shortcodes\shortcodes.php:22

unserialize$links = unserialize(get_option('pokertournaments_affil_link'));shortcodes\shortcodes.php:42

unserialize$time_offset = unserialize(get_option('pokertournaments_time_offset'));shortcodes\shortcodes.php:44

unserialize$pokertournaments_active_hall = unserialize(get_option( 'pokertournaments_active_hall' ));shortcodes\shortcodes.php:164

unserialize$links = unserialize(get_option('pokertournaments_affil_link'));shortcodes\shortcodes.php:182

unserialize$time_offset = unserialize(get_option('pokertournaments_time_offset'));shortcodes\shortcodes.php:184

unserialize$pokertournaments_active_hall = unserialize(get_option( 'pokertournaments_active_hall' ));views\admin.php:114

unserialize$pokertournaments_affil_link = unserialize(get_option( 'pokertournaments_affil_link' ));views\admin.php:115

unserialize$pokertournaments_time_offset = unserialize(get_option( 'pokertournaments_time_offset' ));views\admin.php:116

SQL Query Safety

100% prepared1 total queries

Output Escaping

39% escaped18 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

wp_pokertournaments_freerolls (shortcodes\shortcodes.php:19)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WP Poker Tournaments Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[poker-freerolls] shortcodes\shortcodes.php:11

[poker-tournaments] shortcodes\shortcodes.php:12

WordPress Hooks 12

actionadmin_enqueue_scriptsclass-wp-pokertournaments-admin.php:50

actionadmin_enqueue_scriptsclass-wp-pokertournaments-admin.php:51

actionadmin_menuclass-wp-pokertournaments-admin.php:54

actionadmin_initclass-wp-pokertournaments-admin.php:66

actioninitclass-wp-pokertournaments.php:57

actionwpmu_new_blogclass-wp-pokertournaments.php:60

actionwp_enqueue_scriptsclass-wp-pokertournaments.php:63

actionwp_enqueue_scriptsclass-wp-pokertournaments.php:64

actioninitclass-wp-pokertournaments.php:67

actioninitclass-wp-pokertournaments.php:69

actionplugins_loadedwp-pokertournaments.php:40

actionplugins_loadedwp-pokertournaments.php:41

Maintenance & Trust

WP Poker Tournaments Maintenance & Trust

Maintenance Signals

WordPress version tested3.6.1

Last updatedJan 12, 2014

PHP min version

Downloads3K

Community Trust

Rating80/100

Number of ratings4

Active installs10

Alternatives

WP Poker Tournaments Alternatives

AffiliateX – Amazon Affiliate Plugin

affiliatex

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs

YITH WooCommerce Affiliates

yith-woocommerce-affiliates

YITH WooCommerce Affiliates allows you to create affiliate profiles and grant your affiliates earnings each time someone purchases from their link.

7K 1 CVE

Coupon Plugin

coupon-lite

A powerful coupon plugin for affiliate marketers and bloggers to create responsive and customizable coupon and deal boxes in WordPress.

300 1 unpatched

WC Affiliate – WooCommerce Affiliate Plugin

wc-affiliate

The most complete WooCommerce affiliate plugin - unlimited affiliates, real-time tracking, flexible commissions. Free to start.

200 4 CVEs

Shopper – Affiliate Link Management, 25000+ Brand Partnerships & Creative Product Displays

shopper

The ultimate affiliate plugin: manage links, 25K+ brand partnerships, high converting displays, link break alerts & more to boost your earnings.

60 1 CVE

Developer Profile

WP Poker Tournaments Developer Profile

Musilek

2 plugins · 110 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Poker Tournaments

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-poker-tournaments/css/admin.css/wp-content/plugins/wp-poker-tournaments/js/admin.js

Script Paths

/wp-content/plugins/wp-poker-tournaments/js/admin.js

Version Parameters

wp-poker-tournaments/css/admin.css?ver=wp-poker-tournaments/js/admin.js?ver=

HTML / DOM Fingerprints

JS Globals

WP_Pokertournaments

FAQ