Does Better Block Editor (BBE) have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Better Block Editor (BBE) compatible with WordPress 6.9.4?

According to WordPress.org data, Better Block Editor (BBE) 1.4.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Better Block Editor (BBE) compatible with PHP 7.4+?

Better Block Editor (BBE) requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Better Block Editor (BBE) updated?

Better Block Editor (BBE) was last updated on Mar 27, 2026. Frequent updates are generally a positive security signal.

What is Better Block Editor (BBE)'s security score?

Better Block Editor (BBE) has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Better Block Editor (BBE) Security & Risk Analysis

wordpress.org/plugins/better-block-editor

Better Block Editor (BBE) — responsive layout controls, on-scroll animations, and pre-made site templates for Block Editor.

4K active installs v1.4.1 PHP 7.4+ WP 6.8+ Updated Mar 27, 2026

animationblock-editorpage-builderresponsivetemplates

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Better Block Editor (BBE) Safe to Use in 2026?

Generally Safe

Score 100/100

Better Block Editor (BBE) has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "better-block-editor" v1.3.0 plugin exhibits a generally good security posture with several strengths. The analysis indicates diligent use of prepared statements for all SQL queries, a robust output escaping rate of 90%, and comprehensive nonce and capability checks. The absence of any recorded CVEs, critical or high severity taint flows, and dangerous functions is also a positive indicator.

However, a significant concern arises from the presence of one unprotected AJAX handler. This creates a direct entry point for unauthenticated attackers to interact with the plugin, potentially leading to unintended actions or information disclosure depending on the handler's functionality. While the overall attack surface is relatively small, this single unprotected endpoint represents a clear vulnerability that needs immediate attention.

In conclusion, while the plugin demonstrates strong development practices in many areas, the single unprotected AJAX handler is a notable weakness. The lack of past vulnerabilities is reassuring but does not negate the current risk posed by the identified unprotected entry point. Addressing this specific issue would significantly enhance the plugin's security.

Key Concerns

Unprotected AJAX handler

Vulnerabilities

None known

Better Block Editor (BBE) Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Better Block Editor (BBE) Release Timeline

v1.4.1Current

v1.4.0

v1.3.0

v1.2.2

v1.2.1

v1.2.0

v1.1.0

v1.0.1.2

v1.0.1.1

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Better Block Editor (BBE) Code Analysis

Dangerous Functions

Raw SQL Queries

12 prepared

Unescaped Output

196 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared12 total queries

Output Escaping

90% escaped218 total outputs

Attack Surface

1 unprotected

Better Block Editor (BBE) Attack Surface

Entry Points7

Unprotected1

AJAX Handlers 5

authwp_ajax_wpbbe_import_demoModules\DemoContent\AjaxHandlers\ImportContentAjaxHandler.php:33

authwp_ajax_wpbbe_keep_contentModules\DemoContent\AjaxHandlers\KeepContentAjaxHandler.php:27

authwp_ajax_wpbbe_remove_contentModules\DemoContent\AjaxHandlers\RemoveContentAjaxHandler.php:28

authwp_ajax_wpbbe_install_bb_themeModules\DemoContent\AjaxHandlers\ThemeInstallAjaxHandler.php:25

authwp_ajax_custom_paste_download_image_batchModules\PartialImport\Module.php:40

REST API Routes 2

POST/wp-json/wpbbe/v1/fse-fontModules\DemoContent\FontDownloaderRestAPI.php:53

GET/wp-json/wpbbe/v1/fse-fontsModules\DemoContent\FontDownloaderRestAPI.php:63

WordPress Hooks 84

actionenqueue_block_editor_assetsBase\ModuleBase.php:178

actionenqueue_block_assetsBase\ModuleBase.php:189

actionwp_enqueue_scriptsBase\ModuleBase.php:200

filterrender_blockBase\ResponsiveBlockModuleBase.php:32

actionwpbbe/initCore\ModulesManager.php:92

actionadmin_enqueue_scriptsCore\Settings.php:226

actionenqueue_block_editor_assetsModules\AnimationOnScroll\Module.php:60

filterrender_blockModules\AnimationOnScroll\Module.php:69

filterwpbbe_script_dataModules\BlockEditorForceApiV3\Module.php:24

filterrender_blockModules\ButtonHoverColors\Module.php:30

filterrender_blockModules\ColumnsResponsive\Module.php:33

filterrender_blockModules\ColumnsResponsive\Module.php:34

filterwpbbe_script_dataModules\ContactForm7Block\Module.php:152

filterwp_import_tagsModules\DemoContent\AjaxHandlers\ImportContentAjaxHandler.php:256

filterwp_import_categoriesModules\DemoContent\AjaxHandlers\ImportContentAjaxHandler.php:257

filterwp_import_termsModules\DemoContent\AjaxHandlers\ImportContentAjaxHandler.php:258

filterthemes_apiModules\DemoContent\AjaxHandlers\ThemeInstallAjaxHandler.php:57

filterupload_dirModules\DemoContent\FontDownloader.php:104

actionrest_api_initModules\DemoContent\FontDownloaderRestAPI.php:44

filterimport_post_meta_keyModules\DemoContent\Importers\ContentImporter.php:110

filterhttp_request_timeoutModules\DemoContent\Importers\ContentImporter.php:111

filterwp_insert_term_dataModules\DemoContent\Importers\ContentImporter.php:169

filterimport_post_meta_keyModules\DemoContent\Importers\ContentImporter.php:234

filterwp_import_existing_postModules\DemoContent\Importers\ContentImporter.php:240

filterintermediate_image_sizes_advancedModules\DemoContent\Importers\ContentImporter.php:493

filterwp_unique_filenameModules\DemoContent\Importers\ContentImporter.php:585

filterwp_import_parseModules\DemoContent\Importers\ContentImporter.php:1290

filterwp_revisions_to_keepModules\DemoContent\Importers\FSEImporter.php:77

filterwp_import_post_data_rawModules\DemoContent\Importers\FSEImporter.php:342

filterwp_import_post_termsModules\DemoContent\Importers\FSEImporter.php:343

filterimport_post_meta_keyModules\DemoContent\Importers\Library\wordpress-importer.php:79

filterhttp_request_timeoutModules\DemoContent\Importers\Library\wordpress-importer.php:80

actionadmin_menuModules\DemoContent\Module.php:59

actionadmin_enqueue_scriptsModules\DemoContent\Module.php:62

actionadmin_noticesModules\DemoContent\Module.php:65

filterwp_import_post_metaModules\DemoContent\Trackers\ContentTracker.php:93

filterwp_import_term_metaModules\DemoContent\Trackers\ContentTracker.php:94

filterwpbbe_is_manageable_module_enabledModules\DesignSystemCore\Module.php:34

filterwpbbe_script_dataModules\DesignSystemCore\Module.php:38

actionrest_api_initModules\DesignSystemCore\Module.php:40

actionadmin_initModules\DesignSystemCore\Module.php:42

actionadmin_noticesModules\DesignSystemCore\Module.php:49

actionenqueue_block_editor_assetsModules\DesignSystemCore\Module.php:124

filterblock_editor_settings_allModules\DesignSystemParts\Module.php:36

filterwp_theme_json_data_themeModules\DesignSystemParts\Module.php:38

filterwpbbe_design_system_partsModules\DesignSystemParts\Module.php:40

actionrest_api_initModules\DesignSystemParts\Module.php:41

actionenqueue_block_assetsModules\EditorCssStore\Module.php:56

filterrender_blockModules\FlexItemPreventShrinking\Module.php:28

actionenqueue_block_assetsModules\GlobalCallback\Module.php:52

filterrender_blockModules\NavigationHoverColors\Module.php:30

filterrender_blockModules\NavigationResponsive\Module.php:31

filterwpbbe_script_dataModules\PartialImport\Module.php:38

actionenqueue_block_editor_assetsModules\Settings\Module.php:38

actionwp_enqueue_scriptsModules\StyleEngine\Module.php:21

actionwp_footerModules\StyleEngine\Module.php:22

filterrender_blockModules\TextStyleFromElement\Module.php:45

actionload-upload.phpModules\UploadSVG\Module.php:34

actionload-post-new.phpModules\UploadSVG\Module.php:35

actionload-post.phpModules\UploadSVG\Module.php:36

actionload-site-editor.phpModules\UploadSVG\Module.php:37

filterwp_handle_sideload_prefilterModules\UploadSVG\Module.php:39

filterwp_handle_upload_prefilterModules\UploadSVG\Module.php:40

filterwp_prepare_attachment_for_jsModules\UploadSVG\Module.php:41

filterwp_get_attachment_image_srcModules\UploadSVG\Module.php:42

filteradmin_post_thumbnail_htmlModules\UploadSVG\Module.php:43

actionget_image_tagModules\UploadSVG\Module.php:44

filterwp_generate_attachment_metadataModules\UploadSVG\Module.php:45

filterupload_mimesModules\UploadSVG\Module.php:46

filterwp_get_attachment_metadataModules\UploadSVG\Module.php:47

filterwp_calculate_image_srcset_metaModules\UploadSVG\Module.php:48

filterpre_move_uploaded_fileModules\UploadSVG\Module.php:68

filterupload_mimesModules\UploadSVG\Module.php:228

filterwp_check_filetype_and_extModules\UploadSVG\Module.php:229

actionenqueue_block_editor_assetsModules\Visibility\Module.php:59

filterrender_blockModules\Visibility\Module.php:68

actionadmin_initModules\WelcomeGuide\Module.php:29

actionadmin_noticesModules\WelcomeGuide\Module.php:66

actionenqueue_block_editor_assetsModules\WelcomeGuide\Module.php:109

actioninitplugin.php:36

actionadmin_initplugin.php:39

actionrest_api_initplugin.php:40

actionadmin_menuplugin.php:41

filterplugin_row_metaplugin.php:55

Maintenance & Trust

Better Block Editor (BBE) Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 27, 2026

PHP min version7.4

Downloads23K

Community Trust

Rating100/100

Number of ratings10

Active installs4K

Alternatives

Better Block Editor (BBE) Alternatives

Responsive Blocks – Page Builder for Blocks & Patterns

responsive-block-editor-addons

50+ blocks to create rich sections in the Gutenberg editor. Use professional starter block patterns & templates to create websites within minutes.

4K 10 CVEs

Grigora's Kit For Website Building

grigora-kit

Your only requirement to create a beautiful website. Import from many prebuilt templates, or build with scratch from blocks.

200 No CVEs

Gutenwave Blocks – Gutenberg Page Builder Blocks for Block Editor & FSE

gutenwave-blocks

100

Build stunning websites with Gutenberg. Free responsive blocks, starter templates & full site editing support in one lightweight plugin.

40 No CVEs

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs

Page Builder by SiteOrigin

siteorigin-panels

Build responsive page layouts using the widgets you know and love using this simple drag and drop page builder.

500K 8 CVEs

Developer Profile

Better Block Editor (BBE) Developer Profile

Dream Theme

1 plugin · 4K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Better Block Editor (BBE)

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/better-block-editor/dist/blocks/block-animation.js/wp-content/plugins/better-block-editor/dist/blocks/block-advanced-link.js/wp-content/plugins/better-block-editor/dist/blocks/block-background.js/wp-content/plugins/better-block-editor/dist/blocks/block-button.js/wp-content/plugins/better-block-editor/dist/blocks/block-divider.js/wp-content/plugins/better-block-editor/dist/blocks/block-gallery.js/wp-content/plugins/better-block-editor/dist/blocks/block-heading.js/wp-content/plugins/better-block-editor/dist/blocks/block-icon.js+38 more

Script Paths

Version Parameters

better-block-editor/dist/blocks/block-animation.js?ver=better-block-editor/dist/blocks/block-advanced-link.js?ver=better-block-editor/dist/blocks/block-background.js?ver=better-block-editor/dist/blocks/block-button.js?ver=better-block-editor/dist/blocks/block-divider.js?ver=better-block-editor/dist/blocks/block-gallery.js?ver=better-block-editor/dist/blocks/block-heading.js?ver=better-block-editor/dist/blocks/block-icon.js?ver=better-block-editor/dist/blocks/block-image.js?ver=better-block-editor/dist/blocks/block-layout.js?ver=better-block-editor/dist/blocks/block-map.js?ver=better-block-editor/dist/blocks/block-post-list.js?ver=better-block-editor/dist/blocks/block-separator.js?ver=better-block-editor/dist/blocks/block-slider.js?ver=better-block-editor/dist/blocks/block-social-share.js?ver=better-block-editor/dist/blocks/block-table.js?ver=better-block-editor/dist/blocks/block-tabs.js?ver=better-block-editor/dist/blocks/block-testimonial.js?ver=better-block-editor/dist/blocks/block-video.js?ver=better-block-editor/dist/editor/editor-content.js?ver=better-block-editor/dist/editor/editor.js?ver=better-block-editor/dist/editor/common.js?ver=better-block-editor/dist/view/view.js?ver=better-block-editor/dist/blocks/block-animation.css?ver=better-block-editor/dist/blocks/block-advanced-link.css?ver=better-block-editor/dist/blocks/block-background.css?ver=better-block-editor/dist/blocks/block-button.css?ver=better-block-editor/dist/blocks/block-divider.css?ver=better-block-editor/dist/blocks/block-gallery.css?ver=better-block-editor/dist/blocks/block-heading.css?ver=better-block-editor/dist/blocks/block-icon.css?ver=better-block-editor/dist/blocks/block-image.css?ver=better-block-editor/dist/blocks/block-layout.css?ver=better-block-editor/dist/blocks/block-map.css?ver=better-block-editor/dist/blocks/block-post-list.css?ver=better-block-editor/dist/blocks/block-separator.css?ver=better-block-editor/dist/blocks/block-slider.css?ver=better-block-editor/dist/blocks/block-social-share.css?ver=better-block-editor/dist/blocks/block-table.css?ver=better-block-editor/dist/blocks/block-tabs.css?ver=better-block-editor/dist/blocks/block-testimonial.css?ver=better-block-editor/dist/blocks/block-video.css?ver=better-block-editor/dist/editor/editor-content.css?ver=better-block-editor/dist/editor/editor.css?ver=better-block-editor/dist/editor/common.css?ver=better-block-editor/dist/view/view.css?ver=

HTML / DOM Fingerprints

CSS Classes

wp-block-bbe-animationwp-block-bbe-advanced-linkwp-block-bbe-backgroundwp-block-bbe-buttonwp-block-bbe-dividerwp-block-bbe-gallerywp-block-bbe-headingwp-block-bbe-icon+11 more

Data Attributes

data-bbe-animationdata-bbe-backgrounddata-bbe-layout

JS Globals

window.wpBBE

REST Endpoints

/wp-json/wpbbe/v1

FAQ