Does Caledros Basic Blocks have any unpatched vulnerabilities?

No. All known vulnerabilities in Caledros Basic Blocks have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Caledros Basic Blocks compatible with WordPress 6.9.4?

According to WordPress.org data, Caledros Basic Blocks 3.1.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Caledros Basic Blocks compatible with PHP 8.0+?

Caledros Basic Blocks requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Caledros Basic Blocks updated?

Caledros Basic Blocks was last updated on Dec 5, 2025. Frequent updates are generally a positive security signal.

What is Caledros Basic Blocks's security score?

Caledros Basic Blocks has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Caledros Basic Blocks Security & Risk Analysis

wordpress.org/plugins/caledros-basic-blocks

Introduces 18 lightweight blocks for the Gutenberg editor. Also includes an optional preloader for CSS stylesheets to enhance performance.

0 active installs v3.1.1 PHP 8.0+ WP 6.7+ Updated Dec 5, 2025

block-editorcustom-blocksgutenberg

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Caledros Basic Blocks Safe to Use in 2026?

Generally Safe

Score 100/100

Caledros Basic Blocks has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The caledros-basic-blocks plugin v3.1.1 exhibits a generally strong security posture with some notable exceptions. The absence of dangerous functions, file operations, external HTTP requests, and a very high rate of properly escaped output are positive indicators. The use of prepared statements for all SQL queries and the presence of nonce checks are also good practices. However, a significant concern is the presence of a single REST API route that lacks permission callbacks, creating an unprotected entry point into the plugin's functionality. This unsecured endpoint represents a potential avenue for unauthorized actions or information disclosure, depending on what the REST API route is designed to do.

The static analysis did not reveal any taint flows or critical vulnerabilities in the code. The vulnerability history is clean, with no recorded CVEs, which suggests a good track record. Despite the lack of historical vulnerabilities, the identified unprotected REST API route is a concrete risk that needs to be addressed. While the plugin demonstrates good general security hygiene, this single oversight can undermine its overall security and requires immediate attention. The small attack surface overall is a positive, but the unprotected nature of its sole entry point is a critical weakness.

Key Concerns

Unprotected REST API route

Vulnerabilities

None known

Caledros Basic Blocks Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Caledros Basic Blocks Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

255 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped259 total outputs

Attack Surface

1 unprotected

Caledros Basic Blocks Attack Surface

Entry Points1

Unprotected1

REST API Routes 1

GET/wp-json/caledros-basic-blocks/v1/template-part/(?P<slug>[a-zA-Z0-9-_]+)core\rest-api\template-parts-api.php:27

WordPress Hooks 28

actionadmin_initcore\admin-page\admin-page.php:67

actionadmin_menucore\admin-page\admin-page.php:100

actionadmin_enqueue_scriptscore\category-featured-img\category-featured-img.php:53

actionadmin_enqueue_scriptscore\category-featured-img\category-featured-img.php:96

actioncategory_add_form_fieldscore\category-featured-img\category-featured-img.php:99

actioncategory_edit_form_fieldscore\category-featured-img\category-featured-img.php:100

actioncategory_add_form_fieldscore\category-featured-img\category-featured-img.php:132

actioncategory_edit_form_fieldscore\category-featured-img\category-featured-img.php:133

actioncreated_categorycore\category-featured-img\category-featured-img.php:169

actionedited_categorycore\category-featured-img\category-featured-img.php:170

actioninitcore\category-featured-img\category-featured-img.php:173

actionenqueue_block_editor_assetscore\disable-blocks\disable-blocks.php:35

actionenqueue_block_editor_assetscore\disable-blocks\disable-blocks.php:47

filterblock_categories_allcore\loaders\blocks-category-loader.php:37

actioninitcore\loaders\blocks-loader.php:55

actionwp_enqueue_scriptscore\loaders\css-styles-loader.php:29

actionenqueue_block_assetscore\loaders\css-styles-loader.php:37

filterstyle_loader_tagcore\loaders\css-styles-loader.php:59

actionwp_enqueue_scriptscore\loaders\css-styles-loader.php:86

actioninitcore\loaders\plugin-sidebar-loader.php:34

actionenqueue_block_editor_assetscore\loaders\plugin-sidebar-loader.php:41

filterdefault_wp_template_part_areascore\loaders\template-areas-loader.php:36

filterdefault_wp_template_part_areascore\loaders\template-areas-loader.php:49

filterdefault_wp_template_part_areascore\loaders\template-areas-loader.php:62

actionrest_api_initcore\rest-api\template-parts-api.php:26

actioninitcore\sidebar\sidebar.php:34

actionenqueue_block_editor_assetscore\sidebar\sidebar.php:39

actionwp_enqueue_scriptscore\translations\load-translations.php:51

Maintenance & Trust

Caledros Basic Blocks Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 5, 2025

PHP min version8.0

Downloads839

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Caledros Basic Blocks Alternatives

Block Designer – Create Custom Blocks for Gutenberg Editor

block-designer

100

Create and design custom blocks for the WordPress Gutenberg Block Editor without any line of code.

100 No CVEs

Caledros Typewriter Animator

caledros-typewriter-animator

100

Adds a custom typewriter animation block to the WordPress Gutenberg editor.

0 No CVEs

Classic Editor

classic-editor

100

Enables the previous "classic" editor and the old-style Edit Post screen with TinyMCE, Meta Boxes, etc. Supports all plugins that extend this screen.

9.0M No CVEs

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs

Advanced Editor Tools

tinymce-advanced

100

Extends and enhances the block editor (Gutenberg) and the classic editor (TinyMCE).

2.0M 1 CVE

Developer Profile

Caledros Basic Blocks Developer Profile

David Arnado

3 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Caledros Basic Blocks

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/caledros-basic-blocks/core/category-featured-img/js/cbb-add-category-img.js

Script Paths

/wp-content/plugins/caledros-basic-blocks/core/category-featured-img/js/cbb-add-category-img.js

Version Parameters

caledros-basic-blocks/style.css?ver=caledros-basic-blocks/editor.css?ver=caledros-basic-blocks/frontend.css?ver=caledros-basic-blocks/script.js?ver=caledros-basic-blocks/editor.script.js?ver=

HTML / DOM Fingerprints

CSS Classes

caledros-basic-blocks-block

HTML Comments

BEGIN CALEDROS BASIC BLOCKS BLOCKEND CALEDROS BASIC BLOCKS BLOCK

Data Attributes

data-caledros-block-attributes

JS Globals

caledros_basic_blocks_editor_settings

REST Endpoints

/wp-json/caledros-basic-blocks/v1/template-parts

FAQ