WP-Safety

Attach Font Awesome Security & Risk Analysis

wordpress.org/plugins/attach-font-awesome

This plugin add font awesome library to the front of wordpress site and you can put font awesome css classes anywhere in your contents.

10 active installs v0.1 PHP + WP 4.0+ Updated Jul 3, 2017
fontfont-awesomefont-iconiconicons
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Attach Font Awesome Safe to Use in 2026?

Generally Safe

Score 85/100

Attach Font Awesome has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The attach-font-awesome plugin version 0.1 exhibits a generally low risk profile based on the provided static analysis. Its primary strength lies in the absence of identified CVEs and a minimal attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed. The code also demonstrates good practices by exclusively using prepared statements for its SQL queries and avoiding file operations and external HTTP requests. However, a significant concern is the complete lack of output escaping, meaning any data rendered by the plugin is not sanitized, opening the door to Cross-Site Scripting (XSS) vulnerabilities. While there are no explicit taint flows identified, the absence of output escaping is a critical weakness that could be exploited if user-supplied data is ever processed and displayed.

Key Concerns

  • All outputs are unescaped
Vulnerabilities
None known

Attach Font Awesome Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Attach Font Awesome Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
10
0 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped10 total outputs
Attack Surface

Attach Font Awesome Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 4
actionadmin_initattach-font-awesome.php:28
actionadmin_menuattach-font-awesome.php:29
actionadmin_enqueue_scriptsattach-font-awesome.php:30
actionwp_headattach-font-awesome.php:33
Maintenance & Trust

Attach Font Awesome Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28
Last updatedJul 3, 2017
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Attach Font Awesome Alternatives

Coothemes Icons

Coothemes Icons

coothemes-icons

A
85

Easily and quickly use 2,000+ beautifully designed SVG font icons on your website

10 No CVEs
WPBatch icons Shortcode

WPBatch icons Shortcode

wpbatch-icons-shortcode

A
85

Best, Easiest and Most Stylish icons Using Shortcode

10 No CVEs
WP Font Awesome

WP Font Awesome

wp-font-awesome

A
91

This plugin allows you to easily embed Font Awesome icon to your site with simple shortcodes.

10K 2 CVEs
Dicode Icons Pack

Dicode Icons Pack

dicode-icons-pack

A
100

Dicode Icons Pack by Designinvento provides ability to add custom font icons to your website from all time top icon libraries.

700 No CVEs
Cf7 Icons and Labels

Cf7 Icons and Labels

cf7-icons-and-labels

A
85

This plugin can be used to add font awesome icons and labels to the Contact Form 7.

600 No CVEs
Developer Profile

Attach Font Awesome Developer Profile

afshintalebi

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Attach Font Awesome

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/attach-font-awesome/css/font-awesome.min.css
Script Paths
/wp-content/plugins/attach-font-awesome/js/scripts.js

HTML / DOM Fingerprints

Data Attributes
id="atchfaLoadLocalType"id="atchfaLoadCdnType"id="atchfaCdnVersionContainter"
FAQ

Frequently Asked Questions about Attach Font Awesome