WP-Safety

WP Rollback – Rollback Plugins and Themes Security & Risk Analysis

wordpress.org/plugins/wp-rollback

Rollback (or forward) any WordPress.org plugin, theme, or block like a boss.

300K active installs v3.1.0 PHP 7.4+ WP 6.5+ Updated Mar 19, 2026
downgradepluginsrevertrollbackversion
99
A · Safe
CVEs total2
Unpatched0
Last CVEJun 28, 2015
Plugin page Download
Safety Verdict

Is WP Rollback – Rollback Plugins and Themes Safe to Use in 2026?

Generally Safe

Score 99/100

WP Rollback – Rollback Plugins and Themes has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

2 known CVEsLast CVE: Jun 28, 2015Updated 2mo ago
Risk Assessment

The static analysis of wp-rollback v3.0.12 reveals a strong security posture from a code perspective. There are no identified entry points that lack authentication checks, no dangerous functions used, and all SQL queries are prepared. Output escaping is consistently applied, and there are no file operations or external HTTP requests to consider. The presence of a nonce check is also a positive indicator of secure coding practices.

Key Concerns

  • Known historical vulnerabilities (1 High, 1 Medium)
  • History of XSS and CSRF vulnerabilities
Vulnerabilities
2 published

WP Rollback – Rollback Plugins and Themes Security Vulnerabilities

CVEs by Year

2 CVEs in 2015
2015
Patched Has unpatched

Severity Breakdown

High
1
Medium
1

2 total CVEs

CVE-2015-9342medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

WP Rollback < 1.2.3 - Cross-Site Scripting

Jun 28, 2015 Patched in 1.2.3 (3131d)
CVE-2015-9343high · 8.8Cross-Site Request Forgery (CSRF)

Rollback < 1.2.3 - Cross-Site Request Forgery

Jun 28, 2015 Patched in 1.2.3 (3131d)
Version History

WP Rollback – Rollback Plugins and Themes Release Timeline

v3.1.0Current116 files changed
v3.0.1227 files changed
v3.0.1154 files changed
v3.0.109 files changed
v3.0.916 files changed
v3.0.86 files changed
v3.0.76 files changed
v3.0.648 files changed
v3.0.517 files changed
v3.0.433 files changed
v3.0.313 files changed
v3.0.217 files changed
v3.0.125 files changed
v3.0.0238 files changed
v2.0.77 files changed
v2.0.63 files changed
v2.0.57 files changed
v2.0.45 files changed
v2.0.35 files changed
v2.0.2
Code Analysis
Analyzed Mar 16, 2026

WP Rollback – Rollback Plugins and Themes Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
3 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped3 total outputs
Attack Surface

WP Rollback – Rollback Plugins and Themes Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 2
actionadmin_enqueue_scriptssrc\PluginSetup\PluginScripts.php:32
actionplugins_loadedwp-rollback.php:44
Maintenance & Trust

WP Rollback – Rollback Plugins and Themes Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 19, 2026
PHP min version7.4
Downloads4.5M

Community Trust

Rating98/100
Number of ratings213
Active installs300K
Alternatives

WP Rollback – Rollback Plugins and Themes Alternatives

WP Downgrade | Specific Core Version

WP Downgrade | Specific Core Version

wp-downgrade

A
85

Automatically downgrad or update to any WordPress version you want directly from the backend.

100K 1 CVE
Downgrade

Downgrade

downgrade

A
85

Downgrade WordPress

100 No CVEs
Version Hopper

Version Hopper

version-hopper

A
100

Easily switch between versions of your WordPress plugins and themes directly from the admin dashboard.

0 No CVEs
Core Rollback

Core Rollback

core-rollback

A
100

Seamless rollback of WordPress Core to latest release or any outdated, secure release using the Core Update API and core update methods.

10K No CVEs
PlugVersions – Easily roll back to previous versions of your plugins.

PlugVersions – Easily roll back to previous versions of your plugins.

plugversions

A
98

Retains up to three versions when you update a plugin. It works with premium and custom plugins too.

1K 1 CVE
Developer Profile

WP Rollback – Rollback Plugins and Themes Developer Profile

Devin Walker

3 plugins · 302K total installs

73
trust score
Avg Security Score
92/100
Avg Patch Time
2338 days
View full developer profile
Detection Fingerprints

How We Detect WP Rollback – Rollback Plugins and Themes

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-rollback/resources/css/admin.css/wp-content/plugins/wp-rollback/resources/js/dist/admin.js
Script Paths
/wp-content/plugins/wp-rollback/resources/js/dist/admin.js
Version Parameters
wp-rollback/resources/css/admin.css?ver=wp-rollback/resources/js/dist/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
wp-rollback-buttonwp-rollback-rollback-button
Data Attributes
data-rollback-urldata-rollback-nonce
JS Globals
wpRollback
REST Endpoints
/wp-json/wp-rollback/v1/rollback
FAQ

Frequently Asked Questions about WP Rollback – Rollback Plugins and Themes