Does Brizy – Page Builder have any unpatched vulnerabilities?

No. All known vulnerabilities in Brizy – Page Builder have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Brizy – Page Builder compatible with WordPress 6.9.4?

According to WordPress.org data, Brizy – Page Builder 2.8.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Brizy – Page Builder compatible with PHP 7.2.24+?

Brizy – Page Builder requires PHP 7.2.24 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Brizy – Page Builder updated?

Brizy – Page Builder was last updated on Mar 13, 2026. Frequent updates are generally a positive security signal.

What is Brizy – Page Builder's security score?

Brizy – Page Builder has a WP-Safety security score of 81/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Brizy – Page Builder Security & Risk Analysis

wordpress.org/plugins/brizy

A page builder that is fast & easy, Brizy is a next-gen website builder that anyone can use. No designer or developer skills required.

70K active installs v2.8.2 PHP 7.2.24+ WP 4.5+ Updated Mar 13, 2026

brizyeditorpage-buildervisual-editorwebsite-builder

B · Generally Safe

CVEs total29

Unpatched0

Last CVEDec 12, 2025

Plugin page Download

Safety Verdict

Is Brizy – Page Builder Safe to Use in 2026?

Mostly Safe

Score 81/100

Brizy – Page Builder is generally safe to use. 29 past CVEs were resolved. Keep it updated.

29 known CVEsLast CVE: Dec 12, 2025Updated 21d ago

Risk Assessment

The Brizy plugin v2.8.4 exhibits a mixed security posture. While it demonstrates some good security practices, such as a high percentage of SQL queries using prepared statements and a significant number of capability checks, several concerning areas are highlighted by the static analysis. The presence of two unprotected AJAX handlers represents a direct attack surface that could be exploited by unauthenticated users. The use of the `unserialize` function, noted 10 times, is a known risk for potential remote code execution if not handled with extreme care, especially when dealing with user-supplied input. Furthermore, only 41% of output is properly escaped, indicating a potential for cross-site scripting (XSS) vulnerabilities in various parts of the plugin.

The vulnerability history is a significant concern, with 29 known CVEs in total, including a past critical vulnerability. The common vulnerability types listed – including exposure of private information, missing authorization, path traversal, and XSS – suggest recurring security weaknesses in how the plugin handles user input and authorization. While there are currently no unpatched CVEs, the historical prevalence of severe vulnerabilities indicates a need for ongoing vigilance and prompt updates. The plugin's last vulnerability was in December 2025, which is in the future, suggesting the provided data might be speculative or represent planned disclosures.

In conclusion, Brizy v2.8.4 has strengths in its use of prepared statements and capability checks. However, the unprotected AJAX endpoints, extensive use of `unserialize`, limited output escaping, and a history of numerous and severe vulnerabilities create a notable risk profile. Users should be aware of the potential for authorization bypass, XSS, and potentially more severe issues due to the `unserialize` function. Continued monitoring and timely updates are crucial to mitigate these risks.

Key Concerns

Unprotected AJAX handlers found
Dangerous function 'unserialize' used 10 times
Low percentage of properly escaped output (41%)
Significant vulnerability history (29 CVEs)
Past critical vulnerability recorded
Common vulnerability types indicate recurring issues
Flow with unsanitized paths found in taint analysis

Vulnerabilities

Brizy – Page Builder Security Vulnerabilities

CVEs by Year

3 CVEs in 2020

2020

2 CVEs in 2021

2021

2 CVEs in 2022

2022

2 CVEs in 2023

2023

14 CVEs in 2024

2024

6 CVEs in 2025

2025

Patched Has unpatched

Severity Breakdown

Critical

High

Medium

Low

29 total CVEs

CVE-2025-0969medium · 6.5Exposure of Private Personal Information to an Unauthorized Actor

Brizy – Page Builder <= 2.7.16 - Authenticated (Contributor+) Sensitive Information Exposure via get_users Function

Dec 12, 2025 Patched in 2.7.17 (1d)

CVE-2025-58594medium · 4.3Missing Authorization

Brizy <= 2.7.12 - Missing Authorization

Sep 3, 2025 Patched in 2.7.13 (7d)

CVE-2025-4370medium · 5.3Missing Authorization

Brizy <= 2.6.20 - Missing Authorization to Unauthenticated Limited File Upload

Jul 28, 2025 Patched in 2.6.21 (1d)

CVE-2025-32198medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy <= 2.7.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Apr 4, 2025 Patched in 2.7.8 (221d)

CVE-2024-10322medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.6.8 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

Feb 12, 2025 Patched in 2.6.9 (1d)

CVE-2024-10960critical · 9.9Unrestricted Upload of File with Dangerous Type

Brizy – Page Builder <= 2.6.4 - Authenticated (Contributor+) Arbitrary File Upload via storeUploads

Feb 11, 2025 Patched in 2.6.5 (1d)

CVE-2024-6254medium · 4.3Improper Input Validation

Brizy – Page Builder <= 2.5.1 - Cross-Site Request Forgery

Aug 7, 2024 Patched in 2.5.2 (1d)

CVE-2024-3242high · 8.8Unrestricted Upload of File with Dangerous Type

Brizy – Page Builder <= 2.4.44 - Authenticated (Contributor+) Arbitrary File Upload

Jul 17, 2024 Patched in 2.4.45 (1d)

CVE-2024-1937high · 7.1Missing Authorization

Brizy – Page Builder <= 2.4.44 - Missing Authorization to Authenticated (Contributor+) Post Modification

Jul 15, 2024 Patched in 2.4.45 (1d)

CVE-2024-1164medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.43 - Authenticated(Contributor+) Stored Cross-Site Scripting via Form Functionality

Jun 4, 2024 Patched in 2.4.44 (1d)

CVE-2024-2087high · 7.2Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.43 - Unauthenticated Stored Cross-Site Scripting via Form

Jun 4, 2024 Patched in 2.4.44 (1d)

CVE-2024-3667high · 7.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.43 - Authenticated (Contributor+) Store Cross-Site Scripting via Widget Link To URL

Jun 4, 2024 Patched in 2.4.44 (1d)

CVE-2024-1161medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Attributes

Jun 4, 2024 Patched in 2.4.44 (1d)

CVE-2024-3711medium · 4.3Missing Authorization

Brizy – Page Builder <= 2.4.43 - Missing Authorization

May 22, 2024 Patched in 2.4.44 (1d)

CVE-2024-1940high · 7.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.41 - Authenticated(Contributor+) Stored Cross-Site Scripting

May 6, 2024 Patched in 2.4.42 (30d)

CVE-2024-1296medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.40 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 23, 2024 Patched in 2.4.41 (20d)

CVE-2024-1293medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.40 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 23, 2024 Patched in 2.4.41 (99d)

CVE-2024-1165medium · 4.3Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Brizy – Page Builder <= 2.4.39 - Authenticated (Contributor+) Directory Traversal

Feb 23, 2024 Patched in 2.4.41 (1d)

CVE-2024-1311high · 8.8Unrestricted Upload of File with Dangerous Type

Brizy – Page Builder <= 2.4.40 - Authenticated (Contributor+) Arbitrary File Upload

Feb 23, 2024 Patched in 2.4.41 (259d)

CVE-2024-1291medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy – Page Builder <= 2.4.40 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 23, 2024 Patched in 2.4.41 (99d)

CVE-2023-51396medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy <= 2.4.29 - Cross-Site Scripting

Nov 6, 2023 Patched in 2.4.30 (78d)

CVE-2023-2897low · 3.7Use of Less Trusted Source

Brizy Page Builder <= 2.4.18 - IP Address Spoofing to Protection Mechanism Bypass

May 31, 2023 Patched in 2.4.19 (237d)

CVE-2022-2040medium · 5.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy Page Builder <= 2.4.1 - Authenticated Stored Cross-Site Scripting via Element URL

Jun 21, 2022 Patched in 2.4.2 (581d)

CVE-2022-2041medium · 5.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy Page Builder <= 2.4.1 - Authenticated Stored Cross-Site Scripting via Element Content

Jun 21, 2022 Patched in 2.4.2 (581d)

CVE-2021-38344medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy - Page Builder <= 2.3.11 - Stored Cross-Site Scripting

Oct 13, 2021 Patched in 2.3.12 (832d)

CVE-2021-38346high · 8.8Unrestricted Upload of File with Dangerous Type

Brizy Page Builder <= 2.3.11 - Authenticated File Upload and Path Traversal

Oct 13, 2021 Patched in 2.3.12 (832d)

CVE-2021-38345high · 7.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Brizy Page Builder <= 2.3.11 - Incorrect Authorization Checks Allowing Post Modification

Oct 13, 2020 Patched in 1.0.126 (1197d)

CVE-2020-36714high · 7.4Improper Authorization

Brizy < 1.0.126 - Authorization Bypass to Settings Updates

Jun 3, 2020 Patched in 1.0.126 (1329d)

WF-ba98a282-39ee-4a84-b988-ecfc0c4cd297-brizymedium · 6.5Missing Authorization

Brizy - Page Builder < 1.0.114 - Missing Authorization to Settings Update

Mar 5, 2020 Patched in 1.0.114 (1419d)

Code Analysis

Analyzed Mar 16, 2026

Brizy – Page Builder Code Analysis

Dangerous Functions

Raw SQL Queries

95 prepared

Unescaped Output

185

127 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$projectData = unserialize( $projectData['api_project'] );admin\migrations\project-to-custom-post-migration.php:36

unserialize$vars = unserialize( $data );admin\serializable.php:17

unserialize$this->data = unserialize( $serialized );editor\accounts\abstract-account.php:109

unserialize$vars = unserialize( $data );editor\api\access-token.php:96

unserialize$this->data = unserialize( $data );editor\api\page.php:48

unserialize$this->data = unserialize( $data );editor\api\project.php:19

unserialize$unserialize = unserialize( $serialized );editor\forms\field.php:33

unserialize$this->data = unserialize( $serialized );editor\forms\folder.php:29

unserialize$vars = unserialize( $data );editor\forms\form.php:35

unserialize$unserialize = unserialize( $serialized );editor\forms\group.php:29

Bundled Libraries

Select2

SQL Query Safety

79% prepared121 total queries

Output Escaping

41% escaped312 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

enable_brizy_for_post (admin\main.php:435)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Brizy – Page Builder Attack Surface

Entry Points6

Unprotected2

AJAX Handlers 6

authwp_ajax_brizy-dismiss-noticeadmin\feedback.php:9

authwp_ajax_brizy-send-feedbackadmin\feedback.php:10

authwp_ajax_brizy_replace_urladmin\settings.php:44

authwp_ajax_wpml-ls-save-settingscompatibilities\wpml.php:12

authwp_ajax_icl_msync_confirmcompatibilities\wpml.php:13

authwp_ajax_brizy-import-demoimport\main.php:15

WordPress Hooks 291

actionwp_loadedadmin\blocks\main.php:37

actionbrizy_preview_modeadmin\blocks\main.php:39

filterbrizy_editor_configadmin\blocks\main.php:65

filterbrizy_editor_configadmin\blocks\main.php:66

filterbrizy_supported_post_typesadmin\blocks\main.php:186

actionbrizy_asset_manager_before_aggregate_stylesadmin\blocks\presenter.php:6

actionbrizy_asset_manager_before_aggregate_scriptsadmin\blocks\presenter.php:7

actionbrizy-updatedadmin\cloud\client.php:58

actionhttp_api_curladmin\cloud\client.php:794

actionrequests-fsockopen.before_sendadmin\cloud\client.php:796

filtercron_schedulesadmin\cloud\cron.php:30

actionwp_loadedadmin\cloud-deprecated.php:39

actionwp_loadedadmin\cloud.php:72

filterbrizy_get_saved_blockadmin\cloud.php:141

filterbrizy_get_saved_blocksadmin\cloud.php:142

actionbrizy_saved_block_deleteadmin\cloud.php:143

filterbrizy_get_layoutadmin\cloud.php:145

filterbrizy_get_layoutsadmin\cloud.php:146

actionbrizy_layout_deleteadmin\cloud.php:147

actionadmin_noticesadmin\feedback.php:11

actionadmin_enqueue_scriptsadmin\feedback.php:12

actionadmin_footeradmin\feedback.php:13

actionadmin_noticesadmin\flash.php:36

actionnetwork_admin_noticesadmin\flash.php:37

actionshutdownadmin\flash.php:38

actionwp_loadedadmin\fonts\main.php:40

filterupload_mimesadmin\fonts\main.php:41

filterwp_check_filetype_and_extadmin\fonts\main.php:42

actionadmin_menuadmin\form-entries.php:31

actionadmin_footeradmin\form-entries.php:34

actionadmin_initadmin\form-entries.php:35

filterpost_row_actionsadmin\form-entries.php:37

filterbrizy_form_submit_dataadmin\form-entries.php:48

actionadmin_menuadmin\getting-started.php:14

actionnetwork_admin_menuadmin\getting-started.php:15

filteradmin_footer_textadmin\getting-started.php:51

filterupdate_footeradmin\getting-started.php:55

filterupload_mimesadmin\json\main.php:44

filterwp_check_filetype_and_extadmin\json\main.php:46

actionwp_loadedadmin\layouts\main.php:28

filterbrizy_supported_post_typesadmin\layouts\main.php:29

actionadmin_enqueue_scriptsadmin\main.php:26

actionenqueue_block_editor_assetsadmin\main.php:27

actionenqueue_block_assetsadmin\main.php:28

actionadmin_post__brizy_admin_editor_enableadmin\main.php:30

actionadmin_post__brizy_admin_editor_disableadmin\main.php:34

actionadmin_post__brizy_change_templateadmin\main.php:38

actionedit_form_after_titleadmin\main.php:42

actionbefore_delete_postadmin\main.php:47

filterpage_row_actionsadmin\main.php:48

filterpost_row_actionsadmin\main.php:49

filteradmin_body_classadmin\main.php:50

actionadmin_headadmin\main.php:51

actionadmin_headadmin\main.php:52

filterdisplay_post_statesadmin\main.php:55

filtersave_postadmin\main.php:57

filteradmin_post_thumbnail_htmladmin\main.php:58

filterthe_editoradmin\main.php:181

actionadmin_bar_initadmin\membership\membership.php:21

actionadmin_bar_menuadmin\membership\membership.php:29

actionwp_headadmin\membership\membership.php:30

actionnetwork_admin_menuadmin\network-settings.php:19

actionbrizy_network_settings_render_tabsadmin\network-settings.php:20

actionbrizy_network_settings_render_contentadmin\network-settings.php:21

actionrest_request_before_callbacksadmin\panel-post-content.php:16

filtercontent_edit_preadmin\panel-post-content.php:17

actionbrizy_after_enabled_for_postadmin\popups\main.php:21

actionbrizy_preview_modeadmin\popups\main.php:22

actionadmin_menuadmin\popups\main.php:24

actionbrizy_preview_enqueue_postadmin\popups\main.php:29

actionwp_footeradmin\popups\main.php:30

filterbody_classadmin\popups\main.php:31

filterbrizy_supported_post_typesadmin\popups\main.php:127

actionwp_restore_post_revisionadmin\post\revision-manager.php:20

actionsave_postadmin\post\revision-manager.php:23

actionadmin_menuadmin\settings.php:39

actionadmin_menuadmin\settings.php:41

actionadmin_menuadmin\settings.php:42

actionadmin_menuadmin\settings.php:43

actionsubmenu_fileadmin\settings.php:46

actioncurrent_screenadmin\settings.php:47

actionbrizy_settings_role_capability_rowadmin\settings.php:48

actionbrizy_settings_post_type_rowadmin\settings.php:49

actionbrizy_settings_submitadmin\settings.php:50

actionbrizy_settings_render_tabsadmin\settings.php:51

actionbrizy_settings_render_contentadmin\settings.php:52

filterpost_updated_messagesadmin\stories\main.php:26

actionadmin_initadmin\stories\main.php:27

filterbrizy_supported_post_typesadmin\stories\main.php:71

filterupload_mimesadmin\svg\main.php:43

filterwp_check_filetype_and_extadmin\svg\main.php:44

filterwp_prepare_attachment_for_jsadmin\svg\main.php:45

filterwp_handle_upload_prefilteradmin\svg\main.php:46

filterwp_handle_sideload_prefilteradmin\svg\main.php:47

filterbrizy_editor_configadmin\symbols\api.php:53

actionwp_loadedadmin\templates.php:31

filterpost_updated_messagesadmin\templates.php:46

actionadd_meta_boxesadmin\templates.php:47

actiontransition_post_statusadmin\templates.php:48

filterpost_row_actionsadmin\templates.php:50

actionadmin_enqueue_scriptsadmin\templates.php:51

filtersave_postadmin\templates.php:52

filterpre_post_updateadmin\templates.php:53

actionadmin_noticesadmin\templates.php:54

actionwpadmin\templates.php:63

filterbrizy_supported_post_typesadmin\templates.php:247

filtertemplate_includeadmin\templates.php:420

filterbrizy_asset_manager_postadmin\templates.php:449

filterbody_classadmin\templates.php:459

actionbrizy_template_contentadmin\templates.php:461

actionwp_enqueue_scriptsadmin\templates.php:462

filterthe_contentadmin\templates.php:463

filterget_the_excerptadmin\templates.php:464

filterget_the_excerptadmin\templates.php:465

filterupload_diradmin\upload-dir.php:6

actionplugins_loadedbrizy.php:41

actioninitbrizy.php:42

actionupgrader_process_completebrizy.php:43

actionactivated_pluginbrizy.php:44

actionadmin_noticesbrizy.php:52

filterbrizy_asset_enqueue_postcompatibilities\astra-addon.php:11

actionwpcompatibilities\autoptimize.php:6

filterautoptimize_filter_js_noptimizecompatibilities\autoptimize.php:16

filterautoptimize_filter_css_noptimizecompatibilities\autoptimize.php:17

filterautoptimize_filter_noptimizecompatibilities\autoptimize.php:18

actionbbp_template_includecompatibilities\bbpress.php:6

actionbbp_get_forum_contentcompatibilities\bbpress.php:7

actionbrizy_settings_post_typescompatibilities\bbpress.php:8

actionadmin_noticescompatibilities\brizy-pro-compatibility.php:7

actionbrizy_allow_plugin_includedcompatibilities\brizy-pro-compatibility.php:8

actionwp_loadedcompatibilities\brizy-pro-compatibility.php:17

actionsite_transient_update_pluginscompatibilities\brizy-pro-compatibility.php:20

actionwpcompatibilities\bunnynet.php:6

filteroption_bunnycdn_fonts_enabledcompatibilities\bunnynet.php:11

filteroption_bunnycdn_cdn_statuscompatibilities\bunnynet.php:12

actiontemplate_redirectcompatibilities\complianz-gpdr.php:10

actionshutdowncompatibilities\complianz-gpdr.php:11

actionthe_contentcompatibilities\events-manager.php:8

actioninitcompatibilities\fast-velocity-minify.php:9

filterthe_contentcompatibilities\gutenberg.php:6

actionadmin_print_scripts-edit.phpcompatibilities\gutenberg.php:7

actionadmin_initcompatibilities\gutenberg.php:8

actionadmin_footercompatibilities\gutenberg.php:9

actionadmin_headcompatibilities\gutenberg.php:10

filtergutenberg_can_edit_post_typecompatibilities\gutenberg.php:58

actionplugins_loadedcompatibilities\init.php:7

actionafter_setup_themecompatibilities\init.php:8

actioninitcompatibilities\jetpack.php:8

actionlitespeed_initcompatibilities\lite-speed.php:9

actionwpcompatibilities\live-composer-page-builder.php:8

actionbrizy_before_send_assetcompatibilities\nc-easywp.php:7

actionplugins_loadedcompatibilities\page-optimize.php:6

actioninitcompatibilities\page-optimize.php:7

filterpage_optimize_bailcompatibilities\page-optimize.php:19

filterjs_do_concatcompatibilities\page-optimize.php:23

filtercss_do_concatcompatibilities\page-optimize.php:24

filterscript_loader_tagcompatibilities\page-optimize.php:26

filterstyle_loader_tagcompatibilities\page-optimize.php:28

actionafter_setup_themecompatibilities\perfmatters.php:9

actionoption_perfmatters_optionscompatibilities\perfmatters.php:17

actionplugins_loadedcompatibilities\phastpress.php:8

filterphastpress_disablecompatibilities\phastpress.php:17

actionbrizy_post_loop_argscompatibilities\polylang.php:8

filterpll_home_url_white_listcompatibilities\polylang.php:9

filterRCB/Blocker/Enabledcompatibilities\real-cookie-banner.php:6

filterRCB/Banner/ShouldLoadAssetscompatibilities\real-cookie-banner.php:7

actionplugins_loadedcompatibilities\real-cookie-banner.php:9

actioninitcompatibilities\real-cookie-banner.php:10

actionadmin_initcompatibilities\real-cookie-banner.php:11

filterRCB/Blocker/Enabledcompatibilities\real-cookie-banner.php:33

filterDevOwl/RealCookieBanner/Blocker/Enabledcompatibilities\real-cookie-banner.php:34

filterRCB/Banner/ShouldLoadAssetscompatibilities\real-cookie-banner.php:36

actionwp_enqueue_scriptscompatibilities\real-cookie-banner.php:38

actionadmin_enqueue_scriptscompatibilities\real-cookie-banner.php:39

filterrewrite_rules_arraycompatibilities\seo-press.php:6

filteroption_siteground_optimizer_optimize_htmlcompatibilities\sg-optimizer.php:10

filteroption_siteground_optimizer_optimize_javascriptcompatibilities\sg-optimizer.php:11

filteroption_siteground_optimizer_optimize_csscompatibilities\sg-optimizer.php:12

filteroption_siteground_optimizer_optimize_javascript_asynccompatibilities\sg-optimizer.php:13

filteroption_siteground_optimizer_lazyload_imagescompatibilities\sg-optimizer.php:14

filteroption_siteground_optimizer_combine_csscompatibilities\sg-optimizer.php:15

actionbrizy_before_send_assetcompatibilities\sg-optimizer.php:18

actioninitcompatibilities\squirrly-seo.php:6

filtersq_load_buffercompatibilities\squirrly-seo.php:11

filterthe_contentcompatibilities\tfuse.php:6

actionwp_headcompatibilities\the-events-calendar.php:8

actionloop_startcompatibilities\the-events-calendar.php:9

actiontribe_events_views_v2_should_hijack_page_templatecompatibilities\the-events-calendar.php:15

actiontribe_events_views_v2_should_hijack_page_templatecompatibilities\the-events-calendar.php:21

actionbrizy_contentcompatibilities\tp-add-on-language-by-get-parameter.php:8

filtertrp_home_urlcompatibilities\tp-add-on-language-by-get-parameter.php:13

actionbrizy_toolbar_linkcompatibilities\translate-press.php:10

actiontrp_translated_htmlcompatibilities\translate-press.php:11

actionbrizy_create_editor_config_beforecompatibilities\translate-press.php:12

actionbrizy_create_editor_config_aftercompatibilities\translate-press.php:13

actionbrizy_before_send_assetcompatibilities\translate-press.php:14

filtertrp_enable_dynamic_translationcompatibilities\translate-press.php:15

filtertrp_home_urlcompatibilities\translate-press.php:28

filtertrp_home_urlcompatibilities\translate-press.php:51

actionwbcr/factory/populate_option_js_optimizecompatibilities\webcraftic-clearfy.php:8

actionwoocommerce_checkout_terms_and_conditionscompatibilities\woocommerce.php:7

actionwp_enqueue_scriptscompatibilities\woocommerce.php:10

filterbrizy_template_content_compiledcompatibilities\woocommerce.php:11

filterwp_import_postscompatibilities\wordpress-importer.php:6

filterwp_import_existing_postcompatibilities\wordpress-importer.php:7

filterwp_import_post_metacompatibilities\wordpress-importer.php:8

actiontemplate_redirectcompatibilities\wordpress-mu-domain-mapping.php:8

actionwpcompatibilities\wp-copyright-protection.php:10

filterthe_contentcompatibilities\wp-job-manager.php:8

filteroption_wpo_minify_configcompatibilities\wp-optimize.php:9

filtersite_option_wpo_minify_configcompatibilities\wp-optimize.php:10

actiontemplate_includecompatibilities\wp-themes.php:8

actioninitcompatibilities\wp-ultimo.php:6

filterbrizy_editor_configcompatibilities\wp-ultimo.php:15

actionwp_insert_postcompatibilities\wpml.php:9

actionwp_insert_postcompatibilities\wpml.php:10

actionpre_get_postscompatibilities\wpml.php:11

actionbrizy_create_editor_config_beforecompatibilities\wpml.php:14

filterbrizy_contentcompatibilities\wpml.php:15

actionbrizy_create_editor_config_aftercompatibilities\wpml.php:113

actionwpml_should_filter_preview_langcompatibilities\wpml.php:131

filterwp_loadedcompatibilities\wtc.php:9

filterwpseo_twitter_imagecompatibilities\yoast-seo.php:8

filterpre_term_linkcontent\placeholders\unique-page-url.php:40

filterthe_contentcontent\providers\free-provider.php:190

actionwp_footereditor\auth-modal.php:11

actionwp_get_nav_menu_itemseditor\editor\editor.php:1270

actionwp_mail_failededitor\forms\abstract-integration.php:120

filterbrizy_form_submit_dataeditor\forms\api.php:73

actionphpmailer_initeditor\forms\smtp-integration.php:56

actionwp_mail_failededitor\forms\smtp-integration.php:57

filterhttp_request_argseditor\http\client.php:24

actionrest_api_initeditor\rest-extend.php:14

actionrest_api_initeditor\rest-extend.php:33

filtersafe_style_csseditor\trait\sanitize.php:16

filtersafecss_filter_attr_allow_csseditor\trait\sanitize.php:26

filtersafe_style_csseditor\trait\sanitize.php:46

filtersafecss_filter_attr_allow_csseditor\trait\sanitize.php:56

actioniniteditor.php:89

actioniniteditor.php:90

actioniniteditor.php:91

actioniniteditor.php:92

actioniniteditor.php:93

actioniniteditor.php:94

actioniniteditor.php:95

actionwpeditor.php:96

actioniniteditor.php:101

actionwp_loadededitor.php:102

actionwp_print_scriptseditor.php:103

filterwp_revisions_to_keepeditor.php:108

actionwp_dashboard_setupeditor.php:187

filterbrizy_contenteditor.php:194

filterimport_post_meta_keyimport\importer.php:70

filterhttp_request_timeoutimport\importer.php:71

filterupload_mimesimport\importer.php:72

actionadmin_menuimport\main.php:14

actionadmin_enqueue_scriptsimport\main.php:16

filterhttp_request_argsimport\main.php:19

filterscreen_options_show_screenimport\main.php:28

actiontemplate_redirectmaintenance-mode.php:30

actionadmin_bar_menumaintenance-mode.php:34

actionadmin_headmaintenance-mode.php:35

actionwp_headmaintenance-mode.php:36

actionwppublic\abstract-proxy.php:30

filterquery_varspublic\abstract-proxy.php:31

actionwp_enqueue_scriptspublic\asset-enqueue-manager.php:45

actionwp_enqueue_scriptspublic\asset-enqueue-manager.php:46

filterwp_enqueue_scriptspublic\asset-enqueue-manager.php:47

filterwp_enqueue_scriptspublic\asset-enqueue-manager.php:48

filterwp_enqueue_scriptspublic\asset-enqueue-manager.php:49

filterscript_loader_tagpublic\asset-enqueue-manager.php:50

filterstyle_loader_tagpublic\asset-enqueue-manager.php:51

actionwp_headpublic\asset-enqueue-manager.php:52

actionwp_footerpublic\asset-enqueue-manager.php:53

actionadmin_action_in-front-editorpublic\main.php:55

filtertemplate_includepublic\main.php:57

filtershow_admin_barpublic\main.php:58

filterbody_classpublic\main.php:59

actionwp_enqueue_scriptspublic\main.php:60

filterthe_contentpublic\main.php:61

actionbrizy_template_contentpublic\main.php:62

actionpost_password_requiredpublic\main.php:63

actiontemplate_includepublic\main.php:79

filterbody_classpublic\main.php:84

actionadmin_bar_menupublic\main.php:86

actionwp_enqueue_scriptspublic\main.php:87

filterthe_contentpublic\main.php:88

filterthe_excerptpublic\main.php:89

filterget_the_excerptpublic\main.php:90

actionbrizy_template_contentpublic\main.php:91

actionadmin_noticessystem-checks.php:26

Maintenance & Trust

Brizy – Page Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 13, 2026

PHP min version7.2.24

Downloads6.4M

Community Trust

Rating94/100

Number of ratings957

Active installs70K

Alternatives

Brizy – Page Builder Alternatives

Page Builder by SiteOrigin

siteorigin-panels

Build responsive page layouts using the widgets you know and love using this simple drag and drop page builder.

500K 8 CVEs

Zion Builder – Website Builder for Speed & Creativity

zionbuilder

Building websites just got easier! Zion Builder is a visual website builder with powerful design features to help you build interactive websites.

1K 2 CVEs

Nimble Page Builder

nimble-builder

Simple and smart companion that allows you to insert sections into any existing page, create landing pages or entire websites including header and foo …

30K 1 CVE

aThemes Blocks

athemes-blocks

100

Extend the Gutenberg Block Editor with additional functionality.

7K No CVEs

StylePress for Elementor

full-site-builder-for-elementor

Use Elementor to design your complete website. Reuse header/footer on all pages. No theme required.

700 1 unpatched

Developer Profile

Brizy – Page Builder Developer Profile

themefusecom

2 plugins · 70K total installs

trust score

Avg Security Score

83/100

Avg Patch Time

270 days

View full developer profile

Detection Fingerprints

How We Detect Brizy – Page Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/brizy/admin/assets/css/admin.css/wp-content/plugins/brizy/admin/assets/js/admin.js/wp-content/plugins/brizy/admin/feedback/assets/css/feedback.css/wp-content/plugins/brizy/admin/feedback/assets/js/feedback.js/wp-content/plugins/brizy/admin/getting-started/assets/css/getting-started.css/wp-content/plugins/brizy/admin/getting-started/assets/js/getting-started.js/wp-content/plugins/brizy/admin/integrations/assets/css/integrations.css/wp-content/plugins/brizy/admin/integrations/assets/js/integrations.js+34 more

Script Paths

/wp-content/plugins/brizy/admin/assets/js/admin.js/wp-content/plugins/brizy/admin/feedback/assets/js/feedback.js/wp-content/plugins/brizy/admin/getting-started/assets/js/getting-started.js/wp-content/plugins/brizy/admin/integrations/assets/js/integrations.js/wp-content/plugins/brizy/admin/license/assets/js/license.js/wp-content/plugins/brizy/admin/plugin-settings/assets/js/plugin-settings.js+12 more

Version Parameters

brizy/assets/css/admin.css?ver=brizy/admin/feedback/assets/css/feedback.css?ver=brizy/admin/feedback/assets/js/feedback.js?ver=brizy/admin/getting-started/assets/css/getting-started.css?ver=brizy/admin/getting-started/assets/js/getting-started.js?ver=brizy/admin/integrations/assets/css/integrations.css?ver=brizy/admin/integrations/assets/js/integrations.js?ver=brizy/admin/license/assets/css/license.css?ver=brizy/admin/license/assets/js/license.js?ver=brizy/admin/plugin-settings/assets/css/plugin-settings.css?ver=brizy/admin/plugin-settings/assets/js/plugin-settings.js?ver=brizy/assets/css/components.css?ver=brizy/assets/css/editor.css?ver=brizy/assets/css/frontend.css?ver=brizy/assets/css/global.css?ver=brizy/assets/css/helpers.css?ver=brizy/assets/css/main.css?ver=brizy/assets/css/modules.css?ver=brizy/assets/css/typography.css?ver=brizy/assets/fonts/brizy-icons.css?ver=brizy/assets/js/brizy.frontend.js?ver=brizy/assets/js/editor.js?ver=brizy/assets/js/frontend.js?ver=brizy/assets/js/main.js?ver=brizy/assets/js/modules.js?ver=brizy/assets/js/preloader.js?ver=brizy/assets/js/vendor/prism.js?ver=brizy/includes/admin/assets/css/getting-started.css?ver=brizy/includes/admin/assets/js/getting-started.js?ver=brizy/includes/admin/assets/js/wizard.js?ver=brizy/includes/editor/assets/css/editor.css?ver=brizy/includes/editor/assets/css/frontend.css?ver=brizy/includes/editor/assets/js/editor.js?ver=brizy/includes/editor/assets/js/frontend.js?ver=brizy/includes/editor/assets/js/modules.js?ver=

HTML / DOM Fingerprints

CSS Classes

brz-noticebrz-notice-containerbrz-notice-imagebrz-notice-contentbrz-notice-headingbrz-review-notice-containerbrz-review-deservebrz-review-later+4 more

HTML Comments

+5 more

Data Attributes

data-brizy-editordata-brizy-iddata-brizy-elementdata-brizy-blockdata-brizy-componentdata-brizy-state+1 more

JS Globals

BrizyBrizyEditorBrizyFrontendBrizyModulesBrizyPro

REST Endpoints

/wp-json/brizy/v1/settings/wp-json/brizy/v1/posts/wp-json/brizy/v1/pages/wp-json/brizy/v1/blocks/wp-json/brizy/v1/components/wp-json/brizy/v1/assets/wp-json/brizy/v1/template-parts

Shortcode Output

[brizy][brizy-editor][brizy-template]

FAQ

Brizy – Page Builder Security & Risk Analysis

Is Brizy – Page Builder Safe to Use in 2026?

Mostly Safe

Key Concerns

Brizy – Page Builder Security Vulnerabilities

CVEs by Year

Severity Breakdown

Brizy – Page Builder Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Brizy – Page Builder Attack Surface

AJAX Handlers 6

Brizy – Page Builder Maintenance & Trust

Maintenance Signals

Community Trust

Brizy – Page Builder Alternatives

Page Builder by SiteOrigin

Zion Builder – Website Builder for Speed & Creativity

Nimble Page Builder

aThemes Blocks

StylePress for Elementor

Brizy – Page Builder Developer Profile

How We Detect Brizy – Page Builder

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Brizy – Page Builder