Findings
- Seems to connect to api.polldaddy.com via HTTP instead of HTTPS
- Makes HTTP requests using fsockopen(), fwrite(), fread(), etc instead of using higher-level functions
- No other issues found
Plugin inspection:
Polldaddy Polls & Ratings
No issues found
Last revised:
Confidence: Medium
This plugin has been given a short, targeted code review.
We didn't find anything worrying in this plugin. It's probably safe. Read more about this recommendation.
Warnings
This recommendation applies to version 2.0.28 of this plugin, but the most recent version is 3.1.1. These findings may no longer be correct.
Failure criteria
- Failure to use available core functionality
- Unsafe file or network IO
Read more about our failure criteria.