Does Block Enhancements – Extended styling for the Block Editor have any unpatched vulnerabilities?

No. All known vulnerabilities in Block Enhancements – Extended styling for the Block Editor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Block Enhancements – Extended styling for the Block Editor compatible with WordPress 6.9.4?

According to WordPress.org data, Block Enhancements – Extended styling for the Block Editor 1.2.11 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Block Enhancements – Extended styling for the Block Editor compatible with PHP 7.0+?

Block Enhancements – Extended styling for the Block Editor requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Block Enhancements – Extended styling for the Block Editor Security & Risk Analysis

wordpress.org/plugins/block-enhancements

Add icon, responsive spacing, typography, alignment, shadow, transform, transition, color, hover style to blocks. Lightweight, fast, and clean.

600 active installs v1.2.11 PHP 7.0+ WP 6.5+ Updated Jan 20, 2026

blocksbuttonhovericonresponsive

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Block Enhancements – Extended styling for the Block Editor Safe to Use in 2026?

Generally Safe

Score 100/100

Block Enhancements – Extended styling for the Block Editor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The 'block-enhancements' plugin version 1.2.11 demonstrates a strong security posture based on the provided static analysis. It exhibits good practices by not exposing dangerous functions, utilizing prepared statements for all SQL queries, and properly escaping all output. Furthermore, the plugin adheres to security best practices by implementing capability checks on its two REST API routes, meaning there are no immediately obvious unprotected entry points into the plugin's functionality. The absence of any recorded vulnerabilities, critical taint flows, or raw SQL queries further reinforces this positive assessment.

Key Concerns

No nonce checks on AJAX handlers
No nonce checks on REST API

Vulnerabilities

None known

Block Enhancements – Extended styling for the Block Editor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Block Enhancements – Extended styling for the Block Editor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped8 total outputs

Attack Surface

Block Enhancements – Extended styling for the Block Editor Attack Surface

Entry Points2

Unprotected0

REST API Routes 2

GET/wp-json/block-enhancements/v1/getIconLibrary/includes\icon-library.php:79

GET/wp-json/blockenhancements/v1/getDocs/includes\settings.php:453

WordPress Hooks 18

actioninitblock-enhancements.php:146

actionenqueue_block_editor_assetsblock-enhancements.php:149

actionrest_api_initincludes\icon-library.php:27

actionenqueue_block_editor_assetsincludes\icon-library.php:30

actionadmin_menuincludes\settings.php:34

actionadmin_enqueue_scriptsincludes\settings.php:37

actioninitincludes\settings.php:40

actionblock_enhancements_activateincludes\settings.php:43

actionadmin_initincludes\settings.php:46

actionrest_api_initincludes\settings.php:52

actionin_admin_headerincludes\settings.php:55

actionadmin_footer_textincludes\settings.php:58

actioninitincludes\style.php:125

filterrender_blockincludes\style.php:128

filterblock_editor_settings_allincludes\style.php:131

filterblock_enhancements_block_classincludes\style.php:134

filterrender_blockincludes\style.php:137

filterrender_block_dataincludes\style.php:140

Maintenance & Trust

Block Enhancements – Extended styling for the Block Editor Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 20, 2026

PHP min version7.0

Downloads11K

Community Trust

Rating96/100

Number of ratings8

Active installs600

Alternatives

Block Enhancements – Extended styling for the Block Editor Alternatives

Responsive Social Sharing Icons

responsive-social-sharing-icons

A very attractive social sharing plugin to share on popular social networks such as Facebook, Google, Twitter, LinkedIn, Pinterest, Email

70 No CVEs

Iconic Button

iconic-button

100

Create beautiful, accessible icon buttons for WordPress. WCAG 2.1 Level AA compliant, performance-optimized, Gutenberg native.

0 No CVEs

AddToAny Share Buttons

add-to-any

Share buttons for WordPress including the AddToAny button, Facebook, Bluesky, Mastodon, WhatsApp, Pinterest, Reddit, many more, and follow icons too.

300K 3 CVEs

Social Icons Widget & Block – Social Media Icons & Share Buttons

social-icons-widget-by-wpzoom

Social media icons plugin for WordPress - Add 400+ social icons and share buttons. Gutenberg block, widget & Elementor support. GDPR compliant.

100K 3 CVEs

MaxButtons – Create buttons

maxbuttons

Maxbuttons is the best and easiest button plugin for WordPress. Within minutes you can create beautiful buttons, share buttons and social icons.

80K 13 CVEs

Developer Profile

Block Enhancements – Extended styling for the Block Editor Developer Profile

Phi Phan

8 plugins · 27K total installs

100

trust score

Avg Security Score

100/100

Avg Patch Time

6 days

View full developer profile

Detection Fingerprints

How We Detect Block Enhancements – Extended styling for the Block Editor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/block-enhancements/build/index.js

Script Paths