WP-Safety

Automatic Block Inserter Security & Risk Analysis

wordpress.org/plugins/automatic-block-inserter

This plugin allows you to easily insert blocks into specific post areas as well as above or below specific block types.

50 active installs v1.0.8 PHP 5.7+ WP 5.8.3+ Updated Jan 22, 2026
blockreusable
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Automatic Block Inserter Safe to Use in 2026?

Generally Safe

Score 100/100

Automatic Block Inserter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The "automatic-block-inserter" plugin v1.0.8 exhibits a strong security posture based on the provided static analysis. The absence of identified dangerous functions, SQL queries without prepared statements, unescaped output, file operations, external HTTP requests, and taint flows suggests diligent coding practices. Furthermore, the lack of any recorded vulnerabilities, including unpatched CVEs across all severity levels, indicates a mature and secure development history for this plugin.

While the static analysis reveals an extremely small attack surface with no identified entry points requiring authentication, the absence of nonce and capability checks on AJAX handlers and REST API routes (though there are none listed) is a potential area for future concern should such endpoints be introduced. The presence of the Freemius SDK, while common for plugin licensing and updates, warrants a check for its specific version's security status as bundled libraries can sometimes introduce vulnerabilities if not maintained. Overall, this plugin appears highly secure in its current state, with the primary, albeit currently theoretical, concern being the lack of robust authorization checks on potential future entry points.

Key Concerns

  • Bundled Freemius SDK v1.0
  • No nonce checks on potential AJAX/REST API
  • No capability checks on potential AJAX/REST API
Vulnerabilities
None known

Automatic Block Inserter Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Automatic Block Inserter Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Freemius1.0
Attack Surface

Automatic Block Inserter Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 15
actionenqueue_block_editor_assetsincludes\automatic-block-inserter-assets.php:23
actioninitincludes\automatic-block-inserter-core.php:30
actionautomatic_block_inserter_after_post_type_registerincludes\automatic-block-inserter-position.php:43
actionwpincludes\automatic-block-inserter-renderer.php:22
filterthe_contentincludes\automatic-block-inserter-renderer.php:85
actioninitincludes\licensing\automatic-block-inserter-licensing.php:32
filteradmin_noticesincludes\licensing\automatic-block-inserter-licensing.php:33
filterconnect-header_on-updateincludes\licensing\automatic-block-inserter-licensing.php:35
filterconnect_message_on_updateincludes\licensing\automatic-block-inserter-licensing.php:36
filterconnect-headerincludes\licensing\automatic-block-inserter-licensing.php:38
filterconnect_messageincludes\licensing\automatic-block-inserter-licensing.php:39
filterthe_contentincludes\renderers\automatic-block-inserter-block-type-renderer.php:88
filterthe_contentincludes\renderers\automatic-block-inserter-block-type-renderer.php:98
filterrender_block_dataincludes\renderers\automatic-block-inserter-block-type-renderer.php:154
filterthe_contentincludes\renderers\automatic-block-inserter-post-area-renderer.php:60
Maintenance & Trust

Automatic Block Inserter Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedJan 22, 2026
PHP min version5.7
Downloads1K

Community Trust

Rating100/100
Number of ratings2
Active installs50
Alternatives

Automatic Block Inserter Alternatives

Reusable Blocks Extended

Reusable Blocks Extended

reusable-blocks-extended

A
100

Extend Gutenberg Reusable Blocks feature with a complete admin panel, widgets, shortcodes and PHP functions.

20K 1 CVE
Reusable Content Blocks

Reusable Content Blocks

reusable-content-blocks

A
85

Reusable Content Blocks plugin allows you to insert contents (pages, posts, custom post types) created with WPBakery Page Builder into other contents, …

4K No CVEs
Blocks

Blocks

blocks

A
100

Simple and flexible content management block with a [shortcode]. This can be used for reusable text or widgets.

700 1 CVE
Reusable Blocks Admin Menu Option

Reusable Blocks Admin Menu Option

reusable-blocks-admin-menu-option

A
85

This plugin will add an option to the WordPress admin menu for quick access to the Manage Reusable Blocks page.

400 No CVEs
Block Widget

Block Widget

block-widget

A
85

Include a reusable block by use of widget.

300 No CVEs
Developer Profile

Automatic Block Inserter Developer Profile

Small Plugins

7 plugins · 590 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Automatic Block Inserter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/automatic-block-inserter/dist/app.js/wp-content/plugins/automatic-block-inserter/dist/app.css
Script Paths
/wp-content/plugins/automatic-block-inserter/freemius/start.php
Version Parameters
automatic-block-inserter/dist/app.css?ver=

HTML / DOM Fingerprints

Data Attributes
data-block-inserter
JS Globals
automaticBlockInserter
REST Endpoints
/wp-json/automatic-block-inserter/v1/block/wp-json/automatic-block-inserter/v1/block/(?P<id>\d+)
FAQ

Frequently Asked Questions about Automatic Block Inserter