Does Vertical Timeline Widget for Elementor have any unpatched vulnerabilities?

No. All known vulnerabilities in Vertical Timeline Widget for Elementor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Vertical Timeline Widget for Elementor compatible with WordPress 6.9.4?

According to WordPress.org data, Vertical Timeline Widget for Elementor 2.7.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Vertical Timeline Widget for Elementor compatible with PHP 7.2+?

Vertical Timeline Widget for Elementor requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Vertical Timeline Widget for Elementor updated?

Vertical Timeline Widget for Elementor was last updated on Jan 29, 2026. Frequent updates are generally a positive security signal.

What is Vertical Timeline Widget for Elementor's security score?

Vertical Timeline Widget for Elementor has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Vertical Timeline Widget for Elementor Security & Risk Analysis

wordpress.org/plugins/3r-elementor-timeline-widget

Use a vertical timeline widget for Elementor to showcase your journey, story, milestones, or roadmap directly inside Elementor.

10K active installs v2.7.2 PHP 7.2+ WP 5.2+ Updated Jan 29, 2026

elementorelementor-timelinetimelinevertical-timelinewidget

A · Safe

CVEs total1

Unpatched0

Last CVEDec 4, 2023

Plugin page Download

Safety Verdict

Is Vertical Timeline Widget for Elementor Safe to Use in 2026?

Generally Safe

Score 100/100

Vertical Timeline Widget for Elementor has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 4, 2023Updated 2mo ago

Risk Assessment

The plugin '3r-elementor-timeline-widget' v2.7.2 exhibits a generally strong security posture based on the static analysis. The absence of dangerous functions, SQL injection risks through prepared statements, file operations, and external HTTP requests is commendable. Crucially, all identified entry points, including AJAX handlers, are protected by nonce checks, and there are no unescaped outputs flagged as critical. This indicates good development practices in sanitizing input and output and securing critical functionalities.

However, the static analysis does reveal a concerning lack of capability checks across all entry points. While nonce checks provide a basic layer of protection against CSRF attacks, they do not prevent authenticated users from accessing functionalities they shouldn't have permission for. The vulnerability history, which includes a medium severity CVE for missing authorization in the past, reinforces this concern. The plugin has a history of authorization issues, and the current lack of capability checks suggests this could be a recurring weakness. Therefore, while the plugin has made improvements, the absence of proper authorization checks remains a notable security risk.

Key Concerns

Missing capability checks on entry points
Past medium severity CVE for missing authorization
Some output not properly escaped

Vulnerabilities

Vertical Timeline Widget for Elementor Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2023-49755medium · 4.3Missing Authorization

Elementor Timeline Widget <= 2.2 - Missing Authorization to Notice Dismissal

Dec 4, 2023 Patched in 2.3 (136d)

Code Analysis

Analyzed Mar 16, 2026

Vertical Timeline Widget for Elementor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

9 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

69% escaped13 total outputs

Attack Surface

Vertical Timeline Widget for Elementor Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_twae_hide_upgrade_notice_editorinit.php:108

WordPress Hooks 6

actionelementor/preview/enqueue_stylesinit.php:22

actionwp_enqueue_scriptsinit.php:23

actionelementor/editor/after_enqueue_stylesinit.php:24

actionelementor/editor/after_enqueue_scriptsinit.php:38

actionelementor/widgets/widgets_registeredinit.php:74

filterplugin_row_metainit.php:96

Maintenance & Trust

Vertical Timeline Widget for Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 29, 2026

PHP min version7.2

Downloads165K

Community Trust

Rating96/100

Number of ratings26

Active installs10K

Alternatives

Vertical Timeline Widget for Elementor Alternatives

Timeline Widget For Elementor (Elementor Timeline, Vertical & Horizontal Timeline)

timeline-widget-addon-for-elementor

100

Highlight your company’s history, milestones, and key events directly inside Elementor using stunning vertical and horizontal timelines.

70K 1 CVE

Timeline for WP Elementor

timeline-for-wp-elementor

Timeline for WP Elementor is a powerful tool for creating timelines in WordPress websites. With Timeline for WP Elementor , you can easily create …

20 No CVEs

Nuvora Timeline for Elementor

nuvora-timeline-for-elementor

100

A beautiful animated timeline widget for Elementor with multiple color schemes and customization options.

0 No CVEs

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 22 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Developer Profile

Vertical Timeline Widget for Elementor Developer Profile

Satinder Singh

4 plugins · 11K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

136 days

View full developer profile

Detection Fingerprints

How We Detect Vertical Timeline Widget for Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/3r-elementor-timeline-widget/assets/css/twe-editor.css/wp-content/plugins/3r-elementor-timeline-widget/assets/js/twe-editor.js/wp-content/plugins/3r-elementor-timeline-widget/assets/css/style.css

Script Paths

/wp-content/plugins/3r-elementor-timeline-widget/assets/js/twe-editor.js

Version Parameters

3r-elementor-timeline-widget/assets/css/twe-editor.css?ver=3r-elementor-timeline-widget/assets/js/twe-editor.js?ver=3r-elementor-timeline-widget/assets/css/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

twae-upgrade-notice

JS Globals

twae_ajax_obj

FAQ