Does ButtonZ – Elementor Addon have any unpatched vulnerabilities?

No. All known vulnerabilities in ButtonZ – Elementor Addon have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ButtonZ – Elementor Addon compatible with WordPress 5.6.17?

According to WordPress.org data, ButtonZ – Elementor Addon 1.0.2 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

Is ButtonZ – Elementor Addon compatible with PHP 5.6+?

ButtonZ – Elementor Addon requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ButtonZ – Elementor Addon updated?

ButtonZ – Elementor Addon was last updated on Feb 24, 2021. Frequent updates are generally a positive security signal.

What is ButtonZ – Elementor Addon's security score?

ButtonZ – Elementor Addon has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ButtonZ – Elementor Addon Security & Risk Analysis

wordpress.org/plugins/buttonz

Live Demo

10 active installs v1.0.2 PHP 5.6+ WP 4.7+ Updated Feb 24, 2021

addonsbuttonbutton-hover-effectselementorelementor-widget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is ButtonZ – Elementor Addon Safe to Use in 2026?

Generally Safe

Score 85/100

ButtonZ – Elementor Addon has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "buttonz" v1.0.2 plugin exhibits a mixed security posture. On the positive side, it does not have any known CVEs and all its SQL queries utilize prepared statements, indicating good practices in database interaction. Furthermore, the absence of file operations, external HTTP requests, and bundled libraries are also strengths. However, the plugin has a significant security concern with one AJAX handler lacking any authentication checks, exposing a direct entry point for potential exploitation.

The static analysis reveals that while the attack surface is small, one of its entry points is unprotected, which is a notable weakness. The code signals also highlight that only 18% of output is properly escaped, suggesting a risk of Cross-Site Scripting (XSS) vulnerabilities. The lack of nonce checks on the unprotected AJAX handler further compounds this risk, making it easier for attackers to submit malicious requests.

Given the lack of any recorded vulnerability history, it is difficult to draw definitive conclusions about its past security patterns. However, the presence of an unprotected AJAX handler and poor output escaping in the current version suggest that while it may have avoided past issues, it is not inherently robust against common web vulnerabilities. The plugin demonstrates some good practices but has critical areas requiring immediate attention, particularly the unprotected AJAX endpoint and insufficient output sanitization.

Key Concerns

Unprotected AJAX handler
Low percentage of properly escaped output
Missing nonce checks on AJAX

Vulnerabilities

None known

ButtonZ – Elementor Addon Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

ButtonZ – Elementor Addon Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

18% escaped11 total outputs

Attack Surface

1 unprotected

ButtonZ – Elementor Addon Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_buttonz_top_noticebuttonz.php:168

WordPress Hooks 14

actionplugins_loadedbuttonz.php:43

actionadmin_noticesbuttonz.php:49

actionadmin_noticesbuttonz.php:54

filterelementor/icons_manager/additional_tabsbuttonz.php:58

actionelementor/frontend/after_enqueue_stylesbuttonz.php:65

actionelementor/frontend/after_register_scriptsbuttonz.php:68

actionelementor/editor/before_enqueue_scriptsbuttonz.php:69

actionelementor/widgets/widgets_registeredbuttonz.php:72

actionupgrader_process_completebuttonz.php:73

actionadmin_enqueue_scriptsbuttonz.php:74

actionelementor/editor/before_enqueue_scriptsbuttonz.php:75

actionadmin_initbuttonz.php:79

filterwpml_elementor_widgets_to_translatebuttonz.php:81

filterelementor/icons_manager/additional_tabsincludes\icons.php:12

Maintenance & Trust

ButtonZ – Elementor Addon Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedFeb 24, 2021

PHP min version5.6

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

ButtonZ – Elementor Addon Alternatives

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 21 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Ultimate Addons for Elementor

header-footer-elementor

Powerful Elementor addon with advanced Elementor widgets, templates, WooCommerce widgets & Header-Footer builder to build professional websites fa …

2.0M 12 CVEs

Premium Addons for Elementor – Powerful Elementor Templates & Widgets

premium-addons-for-elementor

Elementor Carousel, Mega Menu, Posts List/Slider, Media Gallery, WooCommerce Widgets, Display Conditions, Premade Templates & more.

700K 35 CVEs

Royal Addons for Elementor – Addons and Templates Kit for Elementor

royal-elementor-addons

Elementor templates, Header footer builder, Elementor Post Grid, Woocommerce Grid builder, Slider, Forms, Gallery, Nav menu addons, Elementor widgets.

600K 1 unpatched

Developer Profile

ButtonZ – Elementor Addon Developer Profile

Md. Jwel Miah

2 plugins · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ButtonZ – Elementor Addon

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/buttonz/assets/css/admin.css/wp-content/plugins/buttonz/assets/admin.js/wp-content/plugins/buttonz/assets/icon.png/wp-content/plugins/buttonz/assets/css/style.css/wp-content/plugins/buttonz/assets/css/animate.css/wp-content/plugins/buttonz/assets/css/hover-min.css/wp-content/plugins/buttonz/assets/vendors/themify-icon/themify-icon.css/wp-content/plugins/buttonz/assets/vendors/icomoon/style.css+2 more

Script Paths

/wp-content/plugins/buttonz/assets/admin.js

Version Parameters

buttonz/assets/css/admin.css?ver=buttonz/assets/admin.js?ver=buttonz/assets/css/style.css?ver=buttonz/assets/css/animate.css?ver=buttonz/assets/css/hover-min.css?ver=buttonz/assets/vendors/themify-icon/themify-icon.css?ver=buttonz/assets/vendors/icomoon/style.css?ver=buttonz/assets/vendors/elegant-icon/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

ub-noticeub-iconimgub-doneelementor-widget-ultimate-button

Data Attributes

data-elementor-iddata-elementor-post-typedata-elementor-typedata-elementor-device-modedata-elementor-settingsdata-elementor-animation

JS Globals

ButtonZ

FAQ