Source evidence

Security Issue – vulnerable to SQL Injection

UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds · support · 2025-12-26T09:22:00+00:00

UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin evidence original source source API

mixedsentiment

highseverity

0.95relevance

3replies

Evidence linked to opportunitycommercial context

Proof Health

Open evidence

Commercial opportunities need traceable source links before they are treated as build-worthy.

5 / 34 rows with source links

14.7% of this page's analysis has direct source links.

0 build-decision rows missing links

0 rows here require auditable proof before promotion.

29 rows with no attached evidence

0 rows have source counts but still need direct links.

Conversation

support

Peter resolved

Hi, I would like to bring to your attention about the vulnerability issue on the current version of this plugin. see screenshot here https://www.awesomescreenshot.com/image/58063404?key=7b7be92fafbe0f30d11084a2e98428b8 and also patchstack link below here for the issue https://patchstack.com/database/wordpress/plugin/userfeedback-lite/vulnerability/wordpress-user-feedback-plugin-1-10-1-sql-injection-vulnerability The page I need help with: [ log in to see the link] Hi Peter, I’ve raised this issue with Patchstack since Patchstack says it’s fixed in 1.10.1 which is the latest version of the plugin. I’m unclear whether there is an issue with the plugin or with the message. Thank you. Hi @onjomax and @karenkisswpwebsites , Thanks for reaching out and for sharing those details! I’ll go ahead and mark this post as resolved since this is addressed in our latest release, but should you need further help, please let us know. Thanks!

Commercial Context

Opportunity

automation and reporting layer

Analytics reporting and automation assurance for turning WordPress activity into automated reporting and handoffs

Buyer: agencies, operators, and marketing teams

Wedge: verify analytics tracking, report freshness, automation handoffs, and client-visible metrics

Proof Blocked card complete market

Analysis

heuristic-v1

Summary: Security Issue – vulnerable to SQL Injection: users show security, bugs, performance pain that may indicate a product gap.

Evidence quote: Security Issue – vulnerable to SQL Injection Hi, I would like to bring to your attention about the vulnerability issue on the current version of this plugin.

Affected feature: security

security bugs performance missing feature

Plugin

API

UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds

200.0K active installs · 4.4M downloads · rating 96.0

analytics feedback surveys user feedback website feedback

Comments

3 shown

karenkisswp 2025-12-28T00:45:00+00:00

Hi Peter, I’ve raised this issue with Patchstack since Patchstack says it’s fixed in 1.10.1 which is the latest version of the plugin. I’m unclear whether there is an issue with the plugin or with the message.

Peter 2025-12-29T09:27:00+00:00

Thank you.

Michelle D. 2026-01-02T23:07:00+00:00

Hi @onjomax and @karenkisswpwebsites , Thanks for reaching out and for sharing those details! I’ll go ahead and mark this post as resolved since this is addressed in our latest release, but should you need further help, please let us know. Thanks!