WP-Safety

Azeen Core Security & Risk Analysis

wordpress.org/plugins/azeen-core

support for special content types in your website, such as a service Block, client, and team member.

0 active installs v1.0.0 PHP + WP 4.7+ Updated Jun 26, 2019
clientssiteoriginteam-memberswidgetwidgets
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Azeen Core Safe to Use in 2026?

Generally Safe

Score 85/100

Azeen Core has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The azeen-core plugin version 1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and ensuring a high percentage of output is properly escaped, significantly reducing the risk of SQL injection and cross-site scripting (XSS) vulnerabilities. The absence of known CVEs and a clean vulnerability history further contributes to a seemingly stable security profile.

However, there are notable concerns that warrant attention. The plugin exposes a considerable attack surface through 14 AJAX handlers, with a significant portion (7 handlers) lacking authentication checks. This opens up potential avenues for unauthorized actions if these handlers are not adequately protected by other means. Additionally, the taint analysis revealed one flow with unsanitized paths, which, although not categorized as critical or high severity in this analysis, still represents a potential risk that could be exploited if specific conditions are met.

In conclusion, while the plugin benefits from robust database and output sanitization, and a lack of historical vulnerabilities, the substantial number of unauthenticated AJAX endpoints and the identified unsanitized path flow are critical weaknesses. These issues expose the plugin to potential unauthorized access and exploitation, necessitating careful review and potential remediation to enhance its overall security.

Key Concerns

  • Unprotected AJAX handlers
  • Flows with unsanitized paths
  • Limited capability checks found
Vulnerabilities
None known

Azeen Core Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Azeen Core Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
6 prepared
Unescaped Output
48
412 escaped
Nonce Checks
8
Capability Checks
1
File Operations
15
External Requests
3
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

100% prepared6 total queries

Output Escaping

90% escaped460 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths
ajax_demo_data (inc\demo\demos.php:270)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
7 unprotected

Azeen Core Attack Surface

Entry Points14
Unprotected7

AJAX Handlers 14

authwp_ajax_azeen_ajax_get_demo_datainc\demo\demos.php:63
authwp_ajax_azeen_ajax_required_plugins_activateinc\demo\demos.php:64
authwp_ajax_azeen_ajax_get_import_datainc\demo\demos.php:67
authwp_ajax_azeen_ajax_import_xmlinc\demo\demos.php:70
authwp_ajax_azeen_ajax_import_theme_settingsinc\demo\demos.php:73
authwp_ajax_azeen_ajax_import_widgetsinc\demo\demos.php:76
authwp_ajax_azeen_ajax_reset_modsinc\demo\demos.php:79
authwp_ajax_azeen_after_importinc\demo\demos.php:82
authwp_ajax_kirki_dynamic_cssinc\kirki\modules\css\class-kirki-modules-css.php:171
noprivwp_ajax_kirki_dynamic_cssinc\kirki\modules\css\class-kirki-modules-css.php:172
authwp_ajax_kirki_fonts_google_all_getinc\kirki\modules\webfonts\class-kirki-fonts-google.php:83
noprivwp_ajax_kirki_fonts_google_all_getinc\kirki\modules\webfonts\class-kirki-fonts-google.php:84
authwp_ajax_kirki_fonts_standard_all_getinc\kirki\modules\webfonts\class-kirki-fonts-google.php:85
noprivwp_ajax_kirki_fonts_standard_all_getinc\kirki\modules\webfonts\class-kirki-fonts-google.php:86
WordPress Hooks 98
filterkirki/configinc\customizer\kirki-customizer.php:22
actioninitinc\demo\azeen-demos.php:94
actionadmin_menuinc\demo\classes\class-install-demos.php:21
filterimport_post_meta_keyinc\demo\classes\importers\class-wordpress-importer.php:103
filterhttp_request_timeoutinc\demo\classes\importers\class-wordpress-importer.php:104
filterwoocommerce_enable_setup_wizardinc\demo\demos.php:37
filterwoocommerce_show_admin_noticeinc\demo\demos.php:38
filterwoocommerce_prevent_automatic_wizard_redirectinc\demo\demos.php:39
actionadmin_initinc\demo\demos.php:42
actionadmin_enqueue_scriptsinc\demo\demos.php:45
filterupload_mimesinc\demo\demos.php:48
actionadmin_footerinc\demo\demos.php:51
actioncustomize_controls_print_footer_scriptsinc\kirki\controls\class-kirki-controls.php:54
actionafter_setup_themeinc\kirki\core\class-kirki-init.php:32
actionwp_loadedinc\kirki\core\class-kirki-init.php:33
filterkirki_control_typesinc\kirki\core\class-kirki-init.php:34
actioncustomize_registerinc\kirki\core\class-kirki-init.php:36
actioncustomize_registerinc\kirki\core\class-kirki-init.php:37
actioncustomize_registerinc\kirki\core\class-kirki-init.php:38
actioncustomize_registerinc\kirki\core\class-kirki-init.php:122
actioncustomize_registerinc\kirki\core\class-kirki-init.php:123
actioncustomize_registerinc\kirki\core\class-kirki-init.php:124
actioncustomize_registerinc\kirki\core\class-kirki-init.php:125
actionplugins_loadedinc\kirki\core\class-kirki-l10n.php:44
filteroverride_load_textdomaininc\kirki\core\class-kirki-l10n.php:50
actionafter_setup_themeinc\kirki\core\class-kirki-modules.php:45
actionafter_setup_themeinc\kirki\core\class-kirki-modules.php:46
actioncustomize_controls_print_footer_scriptsinc\kirki\core\class-kirki-sections.php:25
filterhttp_request_argsinc\kirki\core\class-kirki-util.php:25
filterkirki_values_get_valueinc\kirki\core\class-kirki-values.php:28
filterkirki_configinc\kirki\deprecated\filters.php:4
filterkirki_control_typesinc\kirki\deprecated\filters.php:8
filterkirki_section_typesinc\kirki\deprecated\filters.php:12
filterkirki_section_types_excludeinc\kirki\deprecated\filters.php:16
filterkirki_control_types_excludeinc\kirki\deprecated\filters.php:20
filterkirki_controlsinc\kirki\deprecated\filters.php:24
filterkirki_fieldsinc\kirki\deprecated\filters.php:28
filterkirki_modulesinc\kirki\deprecated\filters.php:32
filterkirki_panel_typesinc\kirki\deprecated\filters.php:36
filterkirki_setting_typesinc\kirki\deprecated\filters.php:40
filterkirki_variableinc\kirki\deprecated\filters.php:44
filterkirki_values_get_valueinc\kirki\deprecated\filters.php:48
actioninitinc\kirki\deprecated\filters.php:52
filterkirki_enqueue_google_fontsinc\kirki\deprecated\filters.php:82
filterkirki_styles_arrayinc\kirki\deprecated\filters.php:86
filterkirki_dynamic_css_methodinc\kirki\deprecated\filters.php:90
filterkirki_postmessage_scriptinc\kirki\deprecated\filters.php:94
filterkirki_fonts_allinc\kirki\deprecated\filters.php:98
filterkirki_fonts_standard_fontsinc\kirki\deprecated\filters.php:102
filterkirki_fonts_backup_fontsinc\kirki\deprecated\filters.php:106
filterkirki_fonts_google_fontsinc\kirki\deprecated\filters.php:110
filterkirki_googlefonts_load_methodinc\kirki\deprecated\filters.php:114
actioncustomize_save_afterinc\kirki\modules\css\class-kirki-css-to-file.php:41
actioninitinc\kirki\modules\css\class-kirki-modules-css.php:97
actionwp_enqueue_scriptsinc\kirki\modules\css\class-kirki-modules-css.php:141
actionenqueue_block_editor_assetsinc\kirki\modules\css\class-kirki-modules-css.php:142
actioncustomize_save_afterinc\kirki\modules\css\class-kirki-modules-css.php:147
actionwp_enqueue_scriptsinc\kirki\modules\css\class-kirki-modules-css.php:162
actionwp_enqueue_scriptsinc\kirki\modules\css\class-kirki-modules-css.php:170
actionwp_enqueue_scriptsinc\kirki\modules\css\class-kirki-modules-css.php:177
actionadmin_enqueue_scriptsinc\kirki\modules\css\class-kirki-modules-css.php:180
actioninitinc\kirki\modules\css-vars\class-kirki-modules-css-vars.php:55
actionwp_headinc\kirki\modules\css-vars\class-kirki-modules-css-vars.php:56
actionadmin_headinc\kirki\modules\css-vars\class-kirki-modules-css-vars.php:57
actioncustomize_preview_initinc\kirki\modules\css-vars\class-kirki-modules-css-vars.php:58
filterkirki_section_typesinc\kirki\modules\custom-sections\class-kirki-modules-custom-sections.php:43
filterkirki_panel_typesinc\kirki\modules\custom-sections\class-kirki-modules-custom-sections.php:46
actioncustomize_registerinc\kirki\modules\custom-sections\class-kirki-modules-custom-sections.php:49
actioncustomize_controls_enqueue_scriptsinc\kirki\modules\custom-sections\class-kirki-modules-custom-sections.php:52
actioncustomize_controls_print_scriptsinc\kirki\modules\customizer-branding\class-kirki-modules-customizer-branding.php:42
actioncustomize_controls_print_stylesinc\kirki\modules\customizer-styling\class-kirki-modules-customizer-styling.php:42
actioncustomize_controls_enqueue_scriptsinc\kirki\modules\field-dependencies\class-kirki-modules-field-dependencies.php:40
actionadmin_initinc\kirki\modules\gutenberg\class-kirki-modules-gutenberg.php:95
actionafter_setup_themeinc\kirki\modules\gutenberg\class-kirki-modules-gutenberg.php:139
actionenqueue_block_editor_assetsinc\kirki\modules\gutenberg\class-kirki-modules-gutenberg.php:140
actionenqueue_block_editor_assetsinc\kirki\modules\gutenberg\class-kirki-modules-gutenberg.php:141
filterblock_editor_settingsinc\kirki\modules\gutenberg\class-kirki-modules-gutenberg.php:142
actioncustomize_controls_enqueue_scriptsinc\kirki\modules\icons\class-kirki-modules-icons.php:48
actioninitinc\kirki\modules\loading\class-kirki-modules-loading.php:33
actionwp_footerinc\kirki\modules\loading\class-kirki-modules-loading.php:69
actionwp_headinc\kirki\modules\loading\class-kirki-modules-loading.php:70
actioncustomize_preview_initinc\kirki\modules\post-meta\class-kirki-modules-post-meta.php:46
actioncustomize_controls_enqueue_scriptsinc\kirki\modules\post-meta\class-kirki-modules-post-meta.php:47
actionwp_enqueue_scriptsinc\kirki\modules\post-meta\class-kirki-modules-post-meta.php:67
actioncustomize_preview_initinc\kirki\modules\postmessage\class-kirki-modules-postmessage.php:49
actioncustomize_controls_print_footer_scriptsinc\kirki\modules\preset\class-kirki-modules-preset.php:40
actioncustomize_registerinc\kirki\modules\selective-refresh\class-kirki-modules-selective-refresh.php:34
actioncustomize_controls_print_footer_scriptsinc\kirki\modules\tooltips\class-kirki-modules-tooltips.php:49
actionwp_headinc\kirki\modules\webfont-loader\class-kirki-modules-webfont-loader.php:51
actionadmin_enqueue_scriptsinc\kirki\modules\webfont-loader\class-kirki-modules-webfont-loader.php:52
actionwp_headinc\kirki\modules\webfonts\class-kirki-modules-webfonts-async.php:69
actionwp_headinc\kirki\modules\webfonts\class-kirki-modules-webfonts-async.php:70
actionadmin_enqueue_scriptsinc\kirki\modules\webfonts\class-kirki-modules-webfonts-async.php:73
actionadmin_enqueue_scriptsinc\kirki\modules\webfonts\class-kirki-modules-webfonts-async.php:74
filterwp_resource_hintsinc\kirki\modules\webfonts\class-kirki-modules-webfonts-async.php:76
actionwp_footerinc\kirki\modules\webfonts\class-kirki-modules-webfonts-local.php:67
actionadmin_footerinc\kirki\modules\webfonts\class-kirki-modules-webfonts-local.php:68
actionwp_loadedinc\kirki\modules\webfonts\class-kirki-modules-webfonts.php:54
Maintenance & Trust

Azeen Core Maintenance & Trust

Maintenance Signals

WordPress version tested5.1.22
Last updatedJun 26, 2019
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Azeen Core Alternatives

Aazeen extension

Aazeen extension

aazeen-extension

A
85

support for special content types in your website, such as a service Block, client, and team member.

10 No CVEs
Unicon extensions

Unicon extensions

unicon-extensions

A
85

support for special content types in your website, such as a service Block, client, and team member.

70 No CVEs
Promote extensions

Promote extensions

promote-extensions

A
85

support for special content types in your website, such as a service Block, client, and team member,counter.

60 No CVEs
Livemesh SiteOrigin Widgets

Livemesh SiteOrigin Widgets

livemesh-siteorigin-widgets

A
96

A collection of premium quality widgets for use in any widgetized area or in SiteOrigin page builder. SiteOrigin Widgets Bundle is required.

20K 2 CVEs
Ultimate Addons for SiteOrigin

Ultimate Addons for SiteOrigin

addon-so-widgets-bundle

A
85

An ultimate collection of addons for SiteOrigin. SiteOrigin Widgets Bundle is required.

7K No CVEs
Developer Profile

Azeen Core Developer Profile

Md Mosaober Hasan

2 plugins · 300 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Azeen Core

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/azeen-core/assets/css/azeen-core-style.css/wp-content/plugins/azeen-core/assets/js/azeen-core-script.js
Script Paths
/wp-content/plugins/azeen-core/assets/js/azeen-core-script.js
Version Parameters
azeen-core/assets/css/azeen-core-style.css?ver=azeen-core/assets/js/azeen-core-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
azeen-core-wrapper
Data Attributes
data-azeen-core-id
JS Globals
window.azeenCore
Shortcode Output
[azeen_section][/azeen_section][azeen_button][/azeen_button]
FAQ

Frequently Asked Questions about Azeen Core