Does Blocks Monster have any unpatched vulnerabilities?

No. All known vulnerabilities in Blocks Monster have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Blocks Monster compatible with WordPress 6.7.5?

According to WordPress.org data, Blocks Monster 1.16.1 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Blocks Monster compatible with PHP 5.6+?

Blocks Monster requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Blocks Monster updated?

Blocks Monster was last updated on Mar 10, 2026. Frequent updates are generally a positive security signal.

What is Blocks Monster's security score?

Blocks Monster has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Blocks Monster Security & Risk Analysis

wordpress.org/plugins/blocks-monster

Blocks Monster is the #1 library of reusable blocks with 2,745+ downloads 🚀

10 active installs v1.16.1 PHP 5.6+ WP 4.4+ Updated Mar 10, 2026

blockselementorelementor-blocksgutenberggutenberg-blocks

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Blocks Monster Safe to Use in 2026?

Generally Safe

Score 100/100

Blocks Monster has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 24d ago

Risk Assessment

Based on the static analysis and vulnerability history, the 'blocks-monster' plugin v1.16.1 appears to have a strong security posture. The plugin demonstrates good practices by avoiding dangerous functions and using prepared statements for all SQL queries. The high percentage of properly escaped output also indicates a good effort to prevent cross-site scripting vulnerabilities. Furthermore, the absence of any recorded CVEs, past or present, suggests a history of responsible development and patching.

However, there are a few areas that warrant attention. The lack of capability checks and the presence of non-trivial file operations without explicit mention of authorization mechanisms raise potential concerns. While the static analysis didn't identify any specific taint flows or vulnerabilities, the absence of a comprehensive taint analysis (0 flows analyzed) means that complex or subtle vulnerabilities might be missed. The large number of file operations also increases the potential attack surface, especially if not properly secured.

Overall, the plugin shows promising security foundations with its SQL handling and output escaping. The lack of known vulnerabilities is a significant positive. The primary areas for improvement lie in ensuring robust authorization for file operations and potentially enhancing the scope of security analysis to catch more intricate vulnerabilities. Despite these points, the current evidence points to a generally secure plugin with a low immediate risk.

Key Concerns

No capability checks found
Significant number of file operations
Limited taint analysis scope

Vulnerabilities

None known

Blocks Monster Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Blocks Monster Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

136 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

88% escaped155 total outputs

Attack Surface

Blocks Monster Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 60

actionelementor/widgets/registerincludes\elementor\class-elementor.php:34

actionelementor/elements/categories_registeredincludes\elementor\class-elementor.php:35

actioninitincludes\gutenberg\blocks\apple-app-store\index.php:23

actionenqueue_block_assetsincludes\gutenberg\blocks\apple-app-store\index.php:24

actioninitincludes\gutenberg\blocks\button\index.php:23

actioninitincludes\gutenberg\blocks\column\index.php:23

actioninitincludes\gutenberg\blocks\copy-to-clipboard\index.php:23

actioninitincludes\gutenberg\blocks\emoji\index.php:23

actioninitincludes\gutenberg\blocks\form\index.php:23

actioninitincludes\gutenberg\blocks\form-input\index.php:23

actioninitincludes\gutenberg\blocks\google-play-store\index.php:23

actionenqueue_block_assetsincludes\gutenberg\blocks\google-play-store\index.php:24

actioninitincludes\gutenberg\blocks\group\index.php:23

actioninitincludes\gutenberg\blocks\heading\index.php:23

actioninitincludes\gutenberg\blocks\icon\index.php:23

actioninitincludes\gutenberg\blocks\icon\index.php:24

actionadd_meta_boxesincludes\gutenberg\blocks\icon\index.php:25

actionsave_postincludes\gutenberg\blocks\icon\index.php:26

actionsave_postincludes\gutenberg\blocks\icon\index.php:27

filtermanage_bm-icon_posts_columnsincludes\gutenberg\blocks\icon\index.php:28

actionmanage_bm-icon_posts_custom_columnincludes\gutenberg\blocks\icon\index.php:29

actionrest_api_initincludes\gutenberg\blocks\icon\index.php:30

actioninitincludes\gutenberg\blocks\image\index.php:23

actioninitincludes\gutenberg\blocks\link\index.php:23

actioninitincludes\gutenberg\blocks\logo\index.php:23

actioninitincludes\gutenberg\blocks\post-template\index.php:23

actioninitincludes\gutenberg\blocks\post-title\index.php:23

actioninitincludes\gutenberg\blocks\posts-query\index.php:23

actioninitincludes\gutenberg\blocks\query\index.php:23

actioninitincludes\gutenberg\blocks\section\index.php:23

actioninitincludes\gutenberg\blocks\site-logo\index.php:23

actioninitincludes\gutenberg\blocks\site-tagline\index.php:23

actioninitincludes\gutenberg\blocks\site-title\index.php:23

actioninitincludes\gutenberg\blocks\slide\index.php:23

actioninitincludes\gutenberg\blocks\slide-thumb\index.php:23

actioninitincludes\gutenberg\blocks\slide-thumbs\index.php:23

actioninitincludes\gutenberg\blocks\slider\index.php:23

actioninitincludes\gutenberg\blocks\slider-next\index.php:23

actioninitincludes\gutenberg\blocks\slider-pagination\index.php:23

actioninitincludes\gutenberg\blocks\slider-previous\index.php:23

actioninitincludes\gutenberg\blocks\slider-scrollbar\index.php:23

actioninitincludes\gutenberg\blocks\slides\index.php:23

actioninitincludes\gutenberg\blocks\social-share\index.php:23

actioninitincludes\gutenberg\blocks\term-title\index.php:23

actioninitincludes\gutenberg\blocks\terms-list\index.php:23

actioninitincludes\gutenberg\blocks\text\index.php:23

filterblock_categories_allincludes\gutenberg\class-gutenberg.php:63

actionenqueue_block_assetsincludes\gutenberg\class-gutenberg.php:69

actionadmin_menuincludes\gutenberg\class-gutenberg.php:72

actionadmin_initincludes\gutenberg\class-gutenberg.php:73

actionadmin_initincludes\gutenberg\class-gutenberg.php:74

actionenqueue_block_assetsincludes\gutenberg\controls\class-controls.php:41

actionrender_blockincludes\gutenberg\controls\class-controls.php:42

actionrender_blockincludes\gutenberg\controls\class-controls.php:43

actionwp_headincludes\gutenberg\controls\class-controls.php:44

actioninitincludes\gutenberg\controls\class-controls.php:45

actionsave_postincludes\gutenberg\controls\class-controls.php:46

actionrest_api_initincludes\gutenberg\controls\class-controls.php:47

actionwp_enqueue_scriptsincludes\gutenberg\controls\class-controls.php:48

filterupload_mimesincludes\gutenberg\controls\class-controls.php:49

Maintenance & Trust

Blocks Monster Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedMar 10, 2026

PHP min version5.6

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Blocks Monster Alternatives

ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin

woolentor-addons

ShopLentor – More than a WooCommerce builder. A complete growth plugin to boost conversions, UX, and sales for your store.

90K 24 CVEs

WDesignKit – Elementor & Gutenberg Starter Templates, Patterns, Cloud Workspace & Widget Builder

wdesignkit

3000+ Elementor Templates, Gutenberg Templates, Widgets Builder for Elementor, Gutenberg & Bricks, Cloud Workspace & Figma Files, 160+ Widgets Library

30K 3 CVEs

WP Blog Post Layouts

wp-blog-post-layouts

Versatile plugin specially designed to create beautiful posts layouts. Fully compatible with Gutenberg and Elementor. Comes with advanced features suc …

10K 1 CVE

FancyPost – Post Blocks, Grids & Sliders for Block Editor and Elementor

post-block

FancyPost provides advanced post blocks, grids, layouts, carousels, and sliders for Block Editor & Elementor. Includes featured posts and sliders.

600 1 unpatched

Blocks to Shortcode – Use blocks everywhere: in page templates, Elementor, etc.

blocks-to-shortcode

100

Easily convert blocks into shortcodes and reuse them anywhere on your site - in posts, pages, widgets, templates, and page builders like Elementor.

300 No CVEs

Developer Profile

Blocks Monster Developer Profile

blocksmonster

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Blocks Monster

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/blocks-monster/includes/elementor/blocks/blockquote/style.css/wp-content/plugins/blocks-monster/includes/elementor/blocks/countdown/jquery.countdown.js/wp-content/plugins/blocks-monster/includes/elementor/blocks/countdown/style.css

Script Paths

/wp-content/plugins/blocks-monster/includes/elementor/blocks/countdown/jquery.countdown.js

Version Parameters

blocks-monster-el-blockquoteblocks-monster-el-countdownblocks_monster-el-countdown-jquery

HTML / DOM Fingerprints

CSS Classes

blocks_monster-blockblocks_monster-blockquoteblocks_monster-block-contentblocks_monster-blockquote-boxblocks_monster-blockquote-messageblocks_monster-blockquote-authorblocks_monster-iconblocks_monster-icon-countdown

Data Attributes

data-settings

FAQ