Does Classic Blog Grid have any unpatched vulnerabilities?

No. All known vulnerabilities in Classic Blog Grid have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Classic Blog Grid compatible with WordPress 6.8.5?

According to WordPress.org data, Classic Blog Grid 1.9 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Classic Blog Grid compatible with PHP 7.2+?

Classic Blog Grid requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Classic Blog Grid updated?

Classic Blog Grid was last updated on Jan 6, 2026. Frequent updates are generally a positive security signal.

What is Classic Blog Grid's security score?

Classic Blog Grid has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Classic Blog Grid Security & Risk Analysis

wordpress.org/plugins/classic-blog-grid

Classic Blog Grid : A plugin to display blog posts in various grid formats: list, masonry, and slider.

4K active installs v1.9 PHP 7.2+ WP 5.2+ Updated Jan 6, 2026

blogblog-displaygrid-layoutpost-gridpost-slider

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Classic Blog Grid Safe to Use in 2026?

Generally Safe

Score 100/100

Classic Blog Grid has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The 'classic-blog-grid' plugin v1.9 exhibits a mixed security posture. While it demonstrates good practices such as using prepared statements for all SQL queries and a relatively high percentage of output escaping (79%), several significant concerns emerge from the static analysis. The presence of seven AJAX handlers, with four lacking authentication checks, presents a substantial attack surface. This could allow unauthenticated users to trigger potentially sensitive actions. The limited number of nonce and capability checks further exacerbates this risk, as these are crucial for validating user intent and permissions.

Key Concerns

Unprotected AJAX handlers
Insufficient Nonce Checks
Insufficient Capability Checks
Low percentage of properly escaped output

Vulnerabilities

None known

Classic Blog Grid Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Classic Blog Grid Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

178

656 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

79% escaped834 total outputs

Data Flows

All sanitized

Data Flow Analysis

4 flows

load_more_posts (includes\clbgd-masonary-load.php:4)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Classic Blog Grid Attack Surface

Entry Points8

Unprotected4

AJAX Handlers 7

authwp_ajax_clbgd_get_filtered_productsglobal-functions.php:129

noprivwp_ajax_clbgd_get_filtered_productsglobal-functions.php:130

authwp_ajax_clbgd_dismiss_noticeglobal-functions.php:157

authwp_ajax_load_more_postsincludes\clbgd-masonary-load.php:2

noprivwp_ajax_load_more_postsincludes\clbgd-masonary-load.php:3

authwp_ajax_clbgd_searchincludes\clbgd-search-results.php:159

noprivwp_ajax_clbgd_searchincludes\clbgd-search-results.php:160

Shortcodes 1

[clbgd] includes\class-clbgd-shortcodes.php:16

WordPress Hooks 13

actionplugins_loadedclassic-blog-grid.php:35

actionwp_enqueue_scriptsclassic-blog-grid.php:54

filterthe_postsclassic-blog-grid.php:59

actionadmin_noticesglobal-functions.php:131

actioninitincludes\class-classic-blog-grid-core.php:36

actionadmin_menuincludes\class-classic-blog-grid-core.php:37

actionadmin_enqueue_scriptsincludes\class-classic-blog-grid-core.php:38

actionadmin_post_clbgd_save_gridincludes\class-classic-blog-grid-core.php:39

filterget_edit_post_linkincludes\class-classic-blog-grid-core.php:40

filterpost_row_actionsincludes\class-classic-blog-grid-core.php:41

filteradmin_urlincludes\class-classic-blog-grid-core.php:42

filtermanage_clbgd_grid_posts_columnsincludes\class-classic-blog-grid-core.php:43

actionmanage_clbgd_grid_posts_custom_columnincludes\class-classic-blog-grid-core.php:44

Maintenance & Trust

Classic Blog Grid Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 6, 2026

PHP min version7.2

Downloads30K

Community Trust

Rating60/100

Number of ratings2

Active installs4K

Alternatives

Classic Blog Grid Alternatives

Blog Designer Pack – Blog, Post Grid, Post Slider, Post Carousel, Category Post, News

blog-designer-pack

News & Blog plugin for post grid, post slider, post carousel, post filter, masonry, ticker & list category posts using shortcode, Elementor & Divi.

30K 3 CVEs

Post and Product Grid for Elementor – Blog & WooCommerce Layout Addon

dynamic-post-grid-elementor-addon

Build advanced post and product layouts for Elementor with dynamic grids, lists, and sliders. Perfect for blogs, news sites, magazines, portfolios, an …

30 1 CVE

BW Post Grid

bw-post-grid

Elementor extension to display posts in grid layout.

0 No CVEs

The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid

the-post-grid

Display WordPress posts in beautiful grid, list, slider, and filter layouts. Works with Gutenberg, Elementor, Divi, and Shortcodes.

100K 11 CVEs

Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX

ultimate-post

A highly customizable plugin to create news, magazines, and any kind of blog site with post grid, post filter, post slider, and post blocks.

40K 23 CVEs

Developer Profile

Classic Blog Grid Developer Profile

classictemplate

109 plugins · 13K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Classic Blog Grid

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/classic-blog-grid/assets/lib/css/swiper-bundle.min.css/wp-content/plugins/classic-blog-grid/assets/lib/js/swiper-bundle.min.js/wp-content/plugins/classic-blog-grid/assets/css/bootstrap.min.css/wp-content/plugins/classic-blog-grid/assets/js/bootstrap.bundle.min.js/wp-content/plugins/classic-blog-grid/assets/lib/css/fontawesome-all.min.css/wp-content/plugins/classic-blog-grid/assets/css/admin-styles.css/wp-content/plugins/classic-blog-grid/assets/js/clbgd-pagination.js/wp-content/plugins/classic-blog-grid/assets/lib/css/fontawesome-all.min.css+2 more

Script Paths

/wp-content/plugins/classic-blog-grid/assets/lib/js/swiper-bundle.min.js/wp-content/plugins/classic-blog-grid/assets/js/bootstrap.bundle.min.js/wp-content/plugins/classic-blog-grid/assets/js/clbgd-pagination.js/wp-content/plugins/classic-blog-grid/assets/js/admin-scripts.js

Version Parameters

classic-blog-grid/assets/lib/css/swiper-bundle.min.css?ver=classic-blog-grid/assets/lib/js/swiper-bundle.min.js?ver=classic-blog-grid/assets/css/bootstrap.min.css?ver=classic-blog-grid/assets/js/bootstrap.bundle.min.js?ver=classic-blog-grid/assets/lib/css/fontawesome-all.min.css?ver=classic-blog-grid/assets/css/admin-styles.css?ver=classic-blog-grid/assets/js/clbgd-pagination.js?ver=classic-blog-grid/assets/lib/css/fontawesome-all.min.css?ver=classic-blog-grid/assets/css/admin-dashboard.css?ver=classic-blog-grid/assets/js/admin-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

clbgd-grid-wrapperclbgd_grid_itemclbgd-grid-post-thumbnailclbgd-post-titleclbgd-post-metaclbgd-post-excerptclbgd-pagination-wrapperclbgd-admin-grid-item+1 more

HTML Comments

+3 more

Data Attributes

data-clbgd-iddata-clbgd-post-id

JS Globals

clbgd_pagination_objectclbgd_admin_object

REST Endpoints

/wp-json/clbgd/v1/get_posts

Shortcode Output

[clbgd id="

FAQ