Does About Us Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in About Us Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is About Us Widget compatible with WordPress 4.4.34?

According to WordPress.org data, About Us Widget 1.0.0 has been tested up to WordPress 4.4.34. Check the plugin's changelog for the latest compatibility information.

How often is About Us Widget updated?

About Us Widget was last updated on Jun 8, 2016. Frequent updates are generally a positive security signal.

What is About Us Widget's security score?

About Us Widget has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

About Us Widget Security & Risk Analysis

wordpress.org/plugins/about-us-widget

Easy installation - No settings needed, just add the link of your image, write desciption and paste link to your about us page or any page.

60 active installs v1.0.0 PHP + WP 3.9+ Updated Jun 8, 2016

abouteasysimplewidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is About Us Widget Safe to Use in 2026?

Generally Safe

Score 85/100

About Us Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "about-us-widget" plugin v1.0.0 exhibits a strong security posture in several key areas. The static analysis reveals no known entry points like AJAX handlers, REST API routes, or shortcodes that could be exploited. Furthermore, the code demonstrates good practices with 100% of SQL queries utilizing prepared statements and a complete absence of file operations or external HTTP requests. The lack of any recorded historical vulnerabilities further suggests a history of secure development or minimal exposure.

However, a significant concern arises from the output escaping. With 27 total outputs, only 15% are properly escaped. This indicates a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, where malicious code could be injected into the plugin's output and executed by users' browsers. The absence of nonce checks and capability checks on potential entry points, even though there are none identified, also leaves a hypothetical door open for future weaknesses if new entry points are introduced without proper security measures. The lack of taint analysis results is also worth noting, as it might indicate limited or no taint analysis was performed on the plugin's code.

In conclusion, while the plugin has strengths in its limited attack surface and secure database practices, the poor output escaping is a critical weakness that needs immediate attention to mitigate XSS risks. The absence of historical vulnerabilities is positive, but the current code quality in output handling requires improvement to maintain a robust security profile.

Key Concerns

Low percentage of properly escaped output
No nonce checks detected
No capability checks detected

Vulnerabilities

None known

About Us Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

About Us Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

15% escaped27 total outputs

Attack Surface

About Us Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionplugins_loadedauw.php:43

actionplugins_loadedauw.php:46

actionadmin_enqueue_scriptsauw.php:49

actionwp_enqueue_scriptsauw.php:52

actionwidgets_initauw.php:55

Maintenance & Trust

About Us Widget Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34

Last updatedJun 8, 2016

PHP min version

Downloads10K

Community Trust

Rating100/100

Number of ratings3

Active installs60

Alternatives

About Us Widget Alternatives

WP Anywhere Widgets

wp-anywhere-widgets

100

Create and display widgets anywhere on your site with WP Anywhere Widgets—simple, flexible, and code-free!

700 No CVEs

Podamibe Simple Footer Widget Area

podamibe-simple-footer-widget-area

Podamibe Simple footer widget area helps you to create your own footer section for your website with the help of pre-built or other widgets.

3K No CVEs

Footer Mega Grid Columns – For Legacy / Classic / Old Widget Screen

footer-mega-grid-columns

100

Footer Mega Grid Columns register a footer widget area for theme and allow you to add and display footer widgets in grid view with multiple columns.

2K No CVEs

RS Author Info Box

rs-author-info-box

100

A simple and lightweight widget to display an author's name, profile image, short description, and social media links in any sidebar or widget area.

2K No CVEs

WDV About Me Widget

wdv-about-me-widget

With this plugin you can add 'WDV About Me Widget' widget to your theme. You can add you data or your firm data.

1K No CVEs

Developer Profile

About Us Widget Developer Profile

fervillz

3 plugins · 170 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect About Us Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/about-us-widget/assets/css/front-end.css/wp-content/plugins/about-us-widget/assets/css/auw-admin.css

HTML / DOM Fingerprints

CSS Classes

auw-widget

FAQ