Does Accordion Shortcode have any unpatched vulnerabilities?

No. All known vulnerabilities in Accordion Shortcode have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Accordion Shortcode compatible with WordPress 3.3.2?

According to WordPress.org data, Accordion Shortcode 1.2.1 has been tested up to WordPress 3.3.2. Check the plugin's changelog for the latest compatibility information.

How often is Accordion Shortcode updated?

Accordion Shortcode was last updated on Sep 19, 2012. Frequent updates are generally a positive security signal.

What is Accordion Shortcode's security score?

Accordion Shortcode has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Accordion Shortcode Security & Risk Analysis

wordpress.org/plugins/accordion-shortcode

Lets you easily add accordions into your posts and pages using the accordion shortcode

500 active installs v1.2.1 PHP + WP 3.3+ Updated Sep 19, 2012

accordionshortcode

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Accordion Shortcode Safe to Use in 2026?

Generally Safe

Score 85/100

Accordion Shortcode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The accordion-shortcode plugin version 1.2.1 exhibits a generally strong security posture, primarily due to the absence of critical vulnerabilities in its history and the use of prepared statements for all SQL queries. The static analysis reveals a limited attack surface with only two shortcodes as entry points, and importantly, none of these are exposed without authentication. The lack of dangerous functions, file operations, and external HTTP requests further contributes to a positive security outlook. However, a significant concern arises from the complete lack of output escaping. With 10 identified output points and 0% properly escaped, this presents a high risk for cross-site scripting (XSS) vulnerabilities. The absence of nonce checks and capability checks on its entry points, although not currently exploited by any known vulnerabilities, represent potential weaknesses that could be leveraged if malicious code were introduced or if the plugin were to interact with more sensitive functionalities in the future. The clean vulnerability history is a positive indicator, but the identified output escaping issue requires immediate attention to mitigate XSS risks.

Key Concerns

Unescaped output
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Accordion Shortcode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Accordion Shortcode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped10 total outputs

Attack Surface

Accordion Shortcode Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[accordion] accordion-shortcode.php:29

[accordions] accordion-shortcode.php:30

WordPress Hooks 2

actioninitaccordion-shortcode.php:32

actionwp_footeraccordion-shortcode.php:33

Maintenance & Trust

Accordion Shortcode Maintenance & Trust

Maintenance Signals

WordPress version tested3.3.2

Last updatedSep 19, 2012

PHP min version

Downloads38K

Community Trust

Rating96/100

Number of ratings8

Active installs500

Alternatives

Accordion Shortcode Alternatives

Meks Flexible Shortcodes

meks-flexible-shortcodes

Add some cool elements to your post/page content with flexible shortcodes.

10K 3 CVEs

Tabby Responsive Tabs

tabby-responsive-tabs

100

Create responsive tabs inside your posts, pages or custom post content by adding simple shortcodes inside the post editor.

10K No CVEs

Responsive Tabs

responsive-tabs

A responsive & clean way to display your content. Create new tabs in no-time (custom type) and copy-paste the shortcode into any post/page.

5K 5 CVEs

Accordions – Responsive Accordion & FAQ Plugin for WordPress

accordions-wp

Responsive, lightweight, and fully customizable accordion plugin for WordPress. Perfect for FAQs, content organization, and improving user experience.

1K 3 CVEs

FAQly – Ultimate FAQ

faqly-ultimate-faq

100

FAQly – Ultimate FAQ Plugin: A plugin to manage FAQs and display them as an accordion using a shortcode.

1K No CVEs

Developer Profile

Accordion Shortcode Developer Profile

ctltwp

15 plugins · 6K total installs

trust score

Avg Security Score

84/100

Avg Patch Time

34 days

View full developer profile

Detection Fingerprints

How We Detect Accordion Shortcode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/accordion-shortcode/accordion.js

Script Paths

/wp-content/plugins/accordion-shortcode/accordion.js

Version Parameters

accordion-shortcode?ver=

HTML / DOM Fingerprints

CSS Classes

accordian-shortcode-contentaccordion-shortcode-contentaccordions-shortcode

Data Attributes

data-autoHeightdata-disableddata-activedata-clearStyledata-collapsibledata-fillSpace

JS Globals

accordion_shortcode

Shortcode Output

<h3 id=""><a href="#"></a></h3>

FAQ