Does Caledros Helper have any unpatched vulnerabilities?

No. All known vulnerabilities in Caledros Helper have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Caledros Helper compatible with WordPress 6.9.4?

According to WordPress.org data, Caledros Helper 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Caledros Helper compatible with PHP 8.3+?

Caledros Helper requires PHP 8.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Caledros Helper updated?

Caledros Helper was last updated on Dec 14, 2025. Frequent updates are generally a positive security signal.

What is Caledros Helper's security score?

Caledros Helper has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Caledros Helper Security & Risk Analysis

wordpress.org/plugins/caledros-helper

Adds an Admin Menu that allows removing the default block patterns. It also allows deactivating the WordPress REST API for non-authenticated users.

0 active installs v1.0.0 PHP 8.3+ WP 6.8+ Updated Dec 14, 2025

disable-patternsdisable-rest-api

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Caledros Helper Safe to Use in 2026?

Generally Safe

Score 100/100

Caledros Helper has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The caledros-helper plugin v1.0.0 demonstrates a very strong security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the potential attack surface. Furthermore, the code signals indicate diligent security practices, with no dangerous functions, all SQL queries utilizing prepared statements, and all output being properly escaped. The lack of file operations and external HTTP requests further reduces risk.

The taint analysis shows no identified flows, suggesting that data passed into the plugin is handled safely. The vulnerability history is also clear, with no known CVEs, indicating a lack of publicly disclosed vulnerabilities for this plugin. This combination of minimal attack surface, secure coding practices, and a clean vulnerability history paints a picture of a well-developed and secure plugin. However, the absence of any capability checks or nonce checks, while not an immediate issue given the zero attack surface, could become a concern if the plugin were to be expanded in the future without implementing these security measures.

Vulnerabilities

None known

Caledros Helper Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Caledros Helper Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Caledros Helper Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_initplugin-settings\admin-page.php:38

actionadmin_menuplugin-settings\admin-page.php:58

filterrest_authentication_errorsplugin-settings\deactivate-rest-api.php:28

actionafter_setup_themeplugin-settings\remove-default-block-patterns.php:28

Maintenance & Trust

Caledros Helper Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 14, 2025

PHP min version8.3

Downloads277

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Caledros Helper Alternatives

Block Manager

block-manager

100

Disable unwanted blocks and patterns, organize blocks by changing categories - complete control over your WordPress Block Editor experience.

4K No CVEs

WPControl – The Easiest Optimization Plugin for WordPress

wpcontrol

The easiest way to improve your website's security, performance, and user experience.

200 No CVEs

Turn Off REST API

turn-off-rest-api

Prevents unauthorized requests from using the WP REST API.

100 No CVEs

Server Response

server-response

Поможет вам скорректировать заголовки ответа сервера и отключить REST API.

10 No CVEs

Disable Services Manager

disable-services-manager

100

A powerful tool is available to help you disable unused services on your site, providing protection against spammers and enhancing overall website sec …

0 No CVEs

Developer Profile

Caledros Helper Developer Profile

David Arnado

3 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Caledros Helper

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ