Awesome Clock Widget Security & Risk Analysis
wordpress.org/plugins/awesome-clock-widgetHere is a short description of the plugin. This should be no more than 150 characters. No markup here.
Is Awesome Clock Widget Safe to Use in 2026?
Generally Safe
Score 85/100Awesome Clock Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'awesome-clock-widget' plugin v2.0 presents a mixed security posture. On the positive side, the plugin demonstrates good practices by having no known CVEs, no external HTTP requests, no file operations, and all SQL queries utilizing prepared statements. The attack surface is minimal, with only one shortcode identified and no unprotected entry points. However, a significant concern arises from the lack of output escaping, as 100% of the identified outputs are not properly escaped. This could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly rendered on the page. Additionally, the absence of nonce and capability checks, while not directly flagged as an issue given the current entry points, represents a missed opportunity for robust security that could become a problem if the plugin's functionality expands or is integrated into more sensitive contexts. The vulnerability history being clear is a strong indicator of a well-maintained codebase, but the lack of output escaping should not be overlooked.
Key Concerns
- Output not properly escaped
- Missing nonce checks
- Missing capability checks
Awesome Clock Widget Security Vulnerabilities
Awesome Clock Widget Code Analysis
Output Escaping
Awesome Clock Widget Attack Surface
Shortcodes 1
WordPress Hooks 1
Maintenance & Trust
Awesome Clock Widget Maintenance & Trust
Maintenance Signals
Community Trust
Awesome Clock Widget Alternatives
Akismet Anti-spam: Spam Protection
akismet
The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.
![Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]](https://ps.w.org/disable-comments/assets/icon-128x128.png){kind=icon}
Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]
disable-comments
Allows administrators to globally disable comments on their site. Comments can be disabled according to post type. Multisite friendly.
Antispam Bee
antispam-bee
Sophisticated antispam plugin for effective daily comment and trackback spam-fighting. Built with data protection and privacy in mind.
Spam protection, Honeypot, Anti-Spam by CleanTalk
cleantalk-spam-protect
Blocks spam comments, fake users, contact form spam and more. No impact on SEO. Privacy focused. CAPTCHA free, premium Antispam plugin.
Captcha Code
captcha-code-authentication
GDPR compatible captcha anti-spam protection for login form, comments form, registration form & lost password form. Eliminate spam with captcha.
Awesome Clock Widget Developer Profile
13 plugins · 370 total installs
How We Detect Awesome Clock Widget
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/awesome-clock-widget/js/moment.js/wp-content/plugins/awesome-clock-widget/js/moment-timezone-with-data.min.js/wp-content/plugins/awesome-clock-widget/js/script.js/wp-content/plugins/awesome-clock-widget/css/style.cssjs/moment.jsjs/moment-timezone-with-data.min.jsjs/script.jsHTML / DOM Fingerprints
world_clock_widgetdisplaydigitsampmid="world_clock_widget"var wc_format =<div id="world_clock_widget" class="<div class="display"><div class="digits"><span class="ampm">