WP-Safety

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Security & Risk Analysis

wordpress.org/plugins/blockart-blocks

Enhance the power of your WordPress editor with the dynamic Gutenberg blocks by BlockArt Blocks. Build any layout imaginable.

10K active installs v2.2.15 PHP 7.4+ WP 5.5+ Updated Feb 2, 2026
block-editoreditorgutenberggutenberg-blockspage-builder
96
A · Safe
CVEs total3
Unpatched0
Last CVEJan 27, 2026
Download
Safety Verdict

Is BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Safe to Use in 2026?

Generally Safe

Score 96/100

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Jan 27, 2026Updated 2mo ago
Risk Assessment

The "blockart-blocks" v2.2.15 plugin exhibits a generally good security posture, with a high percentage of properly escaped outputs and a significant number of capability checks. The static analysis reveals a small attack surface, with no unprotected entry points, and no critical or high-severity taint analysis findings. This suggests that the developers are likely following some secure coding practices, particularly regarding input validation and output sanitization, and that direct code execution vulnerabilities stemming from unhandled input are not immediately apparent.

However, the plugin's vulnerability history is a notable concern. With three previously disclosed medium-severity vulnerabilities, all of which were Cross-Site Scripting (XSS) related, it indicates a recurring pattern of weaknesses in handling user-supplied data that could be rendered in the browser. Although these vulnerabilities are reported as currently unpatched, the presence of past XSS issues necessitates vigilance, as similar vulnerabilities could reappear if not rigorously addressed. The last reported vulnerability in 2026 is unusual and may be a data entry error, but the history of three medium-severity XSS flaws remains a significant indicator of potential risks.

Despite the positive aspects of the current static analysis, the historical trend of XSS vulnerabilities cannot be overlooked. While the code itself currently appears to be well-hardened against common entry point exploits, the past indicates a potential for flaws that could be introduced or re-introduced. Therefore, while the immediate risk based on the static analysis is moderate, ongoing monitoring and a thorough review of past vulnerability fixes are recommended.

Key Concerns

  • Multiple medium severity XSS vulnerabilities in history
  • Low percentage of prepared statements for SQL queries
  • Presence of file operations without clear context
Vulnerabilities
3

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
1 CVE in 2025
2025
1 CVE in 2026
2026
Patched Has unpatched

Severity Breakdown

Medium
3

3 total CVEs

CVE-2025-14283medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.2.14 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jan 27, 2026 Patched in 2.2.15 (10d)
CVE-2025-13697medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.2.13 - Authenticated (Contributor+) Stored Cross-Site Scripting via `timestamp` Attribute

Dec 1, 2025 Patched in 2.2.14 (1d)
CVE-2024-35704medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jun 6, 2024 Patched in 2.1.6 (7d)
Code Analysis
Analyzed Mar 16, 2026

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Code Analysis

Dangerous Functions
0
Raw SQL Queries
4
3 prepared
Unescaped Output
3
50 escaped
Nonce Checks
1
Capability Checks
8
File Operations
4
External Requests
2
Bundled Libraries
0

SQL Query Safety

43% prepared7 total queries

Output Escaping

94% escaped53 total outputs
Attack Surface

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_blockart_review_notice_dismissincludes\Review.php:39
WordPress Hooks 35
actioninitincludes\Activation.php:28
actionadmin_menuincludes\Admin.php:36
filteradmin_footer_textincludes\Admin.php:37
filterupdate_footerincludes\Admin.php:38
actionin_admin_headerincludes\Admin.php:39
actionadmin_initincludes\Admin.php:40
actioninitincludes\BlockArt.php:53
filterupload_mimesincludes\BlockArt.php:54
filterwp_check_filetype_and_extincludes\BlockArt.php:55
actionwp_enqueue_scriptsincludes\BlockArt.php:56
actioninitincludes\Blocks.php:116
filterpre_render_blockincludes\Blocks.php:120
filterwp_headincludes\Blocks.php:121
actionwp_enqueue_scriptsincludes\Blocks.php:122
actioncustomize_save_afterincludes\Blocks.php:124
actionrest_after_save_widgetincludes\Blocks.php:125
actionafter_switch_themeincludes\Blocks.php:126
actionsave_postincludes\Blocks.php:127
actiondelete_postincludes\Blocks.php:128
actionblockart_responsive_breakpoints_changedincludes\Blocks.php:129
actionenqueue_block_editor_assetsincludes\Blocks.php:132
actionblockart_initincludes\MaintenanceMode.php:29
actiontemplate_redirectincludes\MaintenanceMode.php:41
filtertemplate_includeincludes\MaintenanceMode.php:42
actionrest_api_initincludes\RestApi\RestApi.php:36
actionadmin_headincludes\Review.php:37
actionadmin_noticesincludes\Review.php:38
actioninitincludes\ScriptStyle.php:61
actioninitincludes\ScriptStyle.php:62
filterwp_handle_uploadincludes\ScriptStyle.php:63
actionwp_headincludes\ScriptStyle.php:70
actionenqueue_block_editor_assetsincludes\ScriptStyle.php:76
actionadmin_enqueue_scriptsincludes\ScriptStyle.php:77
actionblockart_version_updateincludes\Update.php:25
actionblockart_delete_fonts_folderincludes\WebFontLoader.php:134

Scheduled Events 1

blockart_delete_fonts_folder
Maintenance & Trust

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 2, 2026
PHP min version7.4
Downloads300K

Community Trust

Rating98/100
Number of ratings16
Active installs10K
Alternatives

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Alternatives

GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

gutenkit-blocks-addon

A
93

GutenKit – Ultimate no-code Gutenberg blocks to design stunning web pages and visually stunning posts in WordPress block editor.

70K 3 CVEs
Nexter Blocks – Gutenberg Blocks, Page Builder & AI Website Builder

Nexter Blocks – Gutenberg Blocks, Page Builder & AI Website Builder

the-plus-addons-for-block-editor

A
95

90+ Gutenberg Blocks & AI Website Builder with 1000+ Templates. Complete Page Builder, Popup Builder, Mega Menu, Form Builder & More. No Code.

10K 8 CVEs
Kenta Blocks – Responsive Blocks and block templates library

Kenta Blocks – Responsive Blocks and block templates library

kenta-blocks

A
98

Kenta Blocks is a set of responsive blocks with powerful options and pre-designed templates library.

3K 2 CVEs
Grids: Layout builder for WordPress

Grids: Layout builder for WordPress

grids

A
100

The most advanced page and layout builder for Gutenberg and the new Block Editor, with columns, rows and responsive controls.

2K No CVEs
Thim Blocks

Thim Blocks

thim-blocks

A
99

Thim Blocks is a plugin which supports users to build theme with Gutenberg .

300 1 CVE
Developer Profile

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Developer Profile

BlockArt

2 plugins · 17K total installs

98
trust score
Avg Security Score
97/100
Avg Patch Time
6 days
View full developer profile
Detection Fingerprints

How We Detect BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/blockart-blocks/assets/css/blockart.css/wp-content/plugins/blockart-blocks/assets/css/blockart.min.css/wp-content/plugins/blockart-blocks/assets/js/blockart.js/wp-content/plugins/blockart-blocks/assets/js/blockart.min.js
Script Paths
/wp-content/plugins/blockart-blocks/assets/js/blockart.js/wp-content/plugins/blockart-blocks/assets/js/blockart.min.js
Version Parameters
blockart-blocks/style.css?ver=blockart-blocks/frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes
blockart-blockblockart-blocks-content
Data Attributes
data-blockart-block-settings
JS Globals
blockartData
REST Endpoints
/wp-json/blockart-blocks/v1/blocks
FAQ

Frequently Asked Questions about BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library