Does Classic Widgets have any unpatched vulnerabilities?

No. All known vulnerabilities in Classic Widgets have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Classic Widgets compatible with WordPress 6.9.4?

According to WordPress.org data, Classic Widgets 0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Classic Widgets compatible with PHP 5.6+?

Classic Widgets requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Classic Widgets updated?

Classic Widgets was last updated on Dec 8, 2025. Frequent updates are generally a positive security signal.

What is Classic Widgets's security score?

Classic Widgets has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Classic Widgets Security & Risk Analysis

wordpress.org/plugins/classic-widgets

Enables the previous "classic" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.

2.0M active installs v0.3 PHP 5.6+ WP 4.9+ Updated Dec 8, 2025

classic-widgetsdisabledisable-gutenbergeditorgutenberg

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Classic Widgets Safe to Use in 2026?

Generally Safe

Score 100/100

Classic Widgets has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The 'classic-widgets' plugin v0.3 exhibits a very strong security posture based on the provided static analysis. The complete absence of identified entry points such as AJAX handlers, REST API routes, shortcodes, and cron events, combined with a total lack of dangerous functions, direct SQL queries, unescaped output, file operations, and external HTTP requests, suggests a highly secure design. Furthermore, the absence of any recorded vulnerabilities in its history, including critical or high-severity ones, reinforces this positive assessment. This indicates robust development practices and a commitment to security by the plugin's authors.

Vulnerabilities

None known

Classic Widgets Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Classic Widgets Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Classic Widgets Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

filtergutenberg_use_widgets_block_editorclassic-widgets.php:31

filteruse_widgets_block_editorclassic-widgets.php:33

Maintenance & Trust

Classic Widgets Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 8, 2025

PHP min version5.6

Downloads7.2M

Community Trust

Rating98/100

Number of ratings262

Active installs2.0M

Alternatives

Classic Widgets Alternatives

Classic Editor and Classic Widgets

classic-editor-and-classic-widgets

Disables Gutenberg editor totally everywhere and enables Classic Editor and Classic Widgets.

20K 2 CVEs

WPDevs Classic Editor & Widgets

wpdevs-classic-editor-widgets

WPDevs Classic Editor & Widgets enables the traditional WordPress classic editor, classic widgets, and the previous version of the Edit Post scree …

10 No CVEs

Enable Classic Editor & Widgets

enable-classic-editor

100

A simple & lightweight plugin to enable the classic editor on WordPress with advanced configuration options.

2K No CVEs

Classic Widgets with Block-based Widgets

classic-widgets-with-block-based-widgets

Restore the classic widgets screen as a new menu item without replacing new block-based widgets.

1K 1 unpatched

Disable Gutenberg

auto-disable-editor

Auto Disable gutenberg plugin will help you to disable gutenberg block editor

600 No CVEs

Developer Profile

Classic Widgets Developer Profile

Tonya Mork

4 plugins · 2.0M total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Classic Widgets

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/classic-widgets/classic-widgets.php

HTML / DOM Fingerprints

FAQ