AWEOS WP Lock Security & Risk Analysis
wordpress.org/plugins/aweos-wp-lockLock your Website from external access if your website is under construction. Only admins can see the website. You can also define a timespan.
Is AWEOS WP Lock Safe to Use in 2026?
Generally Safe
Score 99/100AWEOS WP Lock has a strong security track record. Known vulnerabilities have been patched promptly.
The 'aweos-wp-lock' plugin, version 1.4.9, exhibits a generally good security posture based on the static analysis. The absence of any identified dangerous functions, raw SQL queries, file operations, or external HTTP requests is a strong indicator of secure coding practices. Furthermore, the presence of nonce and capability checks on its entry points, along with 100% of SQL queries using prepared statements, significantly reduces common attack vectors. The limited attack surface, with no unprotected AJAX handlers or REST API routes, also contributes positively to its security. However, the plugin does have a concerning past vulnerability, specifically a medium-severity Cross-site Scripting (XSS) vulnerability, which was recently patched. While there are no currently unpatched vulnerabilities, this history suggests that the plugin is not immune to security flaws. The static analysis also indicates that 64% of output is properly escaped, which, while not ideal, is not as critical as unescaped input or vulnerable functions.
Key Concerns
- Medium severity vulnerability in history
- Not all output is properly escaped
AWEOS WP Lock Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
AWEOS WP Lock <= 1.4.8 - Authenticated (Administrator+) Stored Cross-Site Scripting
AWEOS WP Lock Code Analysis
Output Escaping
Data Flow Analysis
AWEOS WP Lock Attack Surface
AJAX Handlers 2
WordPress Hooks 14
Scheduled Events 1
Maintenance & Trust
AWEOS WP Lock Maintenance & Trust
Maintenance Signals
Community Trust
AWEOS WP Lock Alternatives
TL Coming Soon – Maintenance Mode & Under Construction
tl-coming-soon
Coming Soon, Maintenance Mode and Under Construction plugin for WordPress.
CMP – Coming Soon & Maintenance Plugin by NiteoThemes
cmp-coming-soon-maintenance
Beautiful Coming soon, Maintenance or Landing page on your website, packed with premium features for free.
Ultimate Coming Soon & Maintenance
ultimate-coming-soon
Best Coming Soon, Under Construction, Maintenance Mode, and Landing Page for your website get advanced features for free.
Coming Soon & Maintenance Mode by Colorlib
colorlib-coming-soon-maintenance
Create a coming soon page or maintenance mode screen with 15 responsive templates, countdown timer, MailChimp subscribe form, and social media links.
WP Maintenance Mode & Site Under Construction
wp-maintenance-mode-site-under-construction
WP plugin for Under Construction, Maintenance Mode & Coming Soon Pages. Enable with one click & show a landing page to visitors easily.
AWEOS WP Lock Developer Profile
10 plugins · 6K total installs
How We Detect AWEOS WP Lock
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/aweos-wp-lock/js/admin.js/wp-content/plugins/aweos-wp-lock/styles/backend-style.css/wp-content/plugins/aweos-wp-lock/js/admin.jsaweos-wp-lock/js/admin.js?ver=1.0.0aweos-wp-lock/styles/backend-style.css?ver=HTML / DOM Fingerprints
warning-permanentlywarning-messagewarning-controlswarning-buttonright_marginlock-tablesave_button_spanactive+1 more<!-- NEW --><!-- Handler-Aktion vor template_redirect ausführen, um Cache-Löschung zu ermöglichen --><!-- WP Rocket Cache bei manuellen und automatischen Änderungen leeren --><!-- Bestehende Cache-Löschung für manuelle Änderungen beibehalten -->+5 morev-showid="wplock-mode"id="wplock-eFor"id="wplock-eForI"id="wplock-dFor"id="wplock-dForI"+16 morewplock_ajaxwplock_ajax.ajaxurlwplock_ajax.nonceoptioneForeForI+7 more