WP-Safety

Conditional Content by Crowd Favorite Security & Risk Analysis

wordpress.org/plugins/conditional-content-cf-lite

Custom personalization matters! Conditional Content is designed to integrate seamlessly with your editing experience!

10 active installs v2.1.2 PHP 7.0.0+ WP 5.0.0+ Updated Jun 24, 2022
adaptive-contentconditional-contentdynamic-contentpersonalizationreplace-content
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Conditional Content by Crowd Favorite Safe to Use in 2026?

Generally Safe

Score 85/100

Conditional Content by Crowd Favorite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The plugin "conditional-content-cf-lite" v2.1.2 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of any recorded CVEs, coupled with the plugin's diligent use of prepared statements for SQL queries and nearly complete output escaping, indicates a proactive approach to security. Furthermore, the presence of nonce and capability checks on its AJAX handlers significantly mitigates common attack vectors. The limited attack surface, consisting solely of AJAX handlers, is also a positive sign, especially with all identified handlers including authentication checks. The lack of taint analysis findings suggests that no critical or high-severity vulnerabilities related to unsanitized data flows were detected.

However, there are minor areas for improvement. The plugin performs a single file operation and makes an external HTTP request, which, while not inherently a vulnerability, represents potential points of exposure that warrant careful review. The 2 capability checks, while present, could be expanded if the functionality being protected by them is sensitive. Overall, the plugin appears to be well-secured, with its strengths heavily outweighing any potential minor concerns. The consistent lack of historical vulnerabilities further solidifies its good security reputation.

Vulnerabilities
None known

Conditional Content by Crowd Favorite Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Conditional Content by Crowd Favorite Release Timeline

v2.1.2Current
v2.1.1
v2.1.0
v2.0.1
v2.0.0
v1.0.3
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

Conditional Content by Crowd Favorite Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
76 escaped
Nonce Checks
4
Capability Checks
2
File Operations
1
External Requests
1
Bundled Libraries
0

Output Escaping

99% escaped77 total outputs
Attack Surface

Conditional Content by Crowd Favorite Attack Surface

Entry Points8
Unprotected0

AJAX Handlers 8

authwp_ajax_cf_cc_bb_contentincludes\class-bbconditions.php:83
noprivwp_ajax_cf_cc_bb_contentincludes\class-bbconditions.php:84
authwp_ajax_cf_cc_add_page_visitpublic\class-cf-cc-public.php:72
noprivwp_ajax_cf_cc_add_page_visitpublic\class-cf-cc-public.php:73
authwp_ajax_cf_cc_gb_contentpublic\class-cf-cc-public.php:75
noprivwp_ajax_cf_cc_gb_contentpublic\class-cf-cc-public.php:76
authwp_ajax_cf_cc_load_contentpublic\class-cf-cc-public.php:81
noprivwp_ajax_cf_cc_load_contentpublic\class-cf-cc-public.php:82
WordPress Hooks 33
actionadmin_enqueue_scriptsadmin\class-admin.php:46
actionenqueue_block_editor_assetsadmin\class-admin.php:47
actionadmin_enqueue_scriptsadmin\class-admin.php:48
actionin_admin_headeradmin\class-adminconditions.php:54
actionadmin_initadmin\class-adminsettings.php:44
actionadmin_menuadmin\class-adminsettings.php:45
actionadmin_noticesadmin\class-adminsettings.php:200
actionadmin_noticescompatibility.php:139
actionnetwork_admin_noticescompatibility.php:140
actionfl_builder_hidden_nodeincludes\class-bbconditions.php:79
filterfl_builder_register_settings_formincludes\class-bbconditions.php:80
filterfl_builder_is_node_visibleincludes\class-bbconditions.php:81
actionplugins_loadedincludes\class-cfconditionalcontent.php:50
actionadmin_noticesincludes\class-cfconditionalcontent.php:122
actionnetwork_admin_noticesincludes\class-cfconditionalcontent.php:123
actioninitincludes\class-cfconditionalcontent.php:127
actionwp_enqueue_scriptsincludes\class-conditionspreview.php:102
actionadmin_bar_menuincludes\class-conditionspreview.php:106
actionelementor/element/section/section_custom_css/after_section_endincludes\class-elementorconditions.php:69
actionelementor/element/after_section_endincludes\class-elementorconditions.php:76
filterelementor/frontend/section/should_renderincludes\class-elementorconditions.php:79
filterelementor/frontend/widget/should_renderincludes\class-elementorconditions.php:80
actionelementor/frontend/after_renderincludes\class-elementorconditions.php:82
actionelementor/frontend/after_register_scriptsincludes\class-elementorconditions.php:83
filterelementor/frontend/section/should_renderincludes\class-elementorconditions.php:86
filterelementor/frontend/widget/should_renderincludes\class-elementorconditions.php:87
actionelementor/element/after_section_endincludes\class-elementorconditions.php:304
actionwp_enqueue_scriptspublic\class-cf-cc-public.php:71
filterrender_blockpublic\class-cf-cc-public.php:77
actionelementor/frontend/the_contentpublic\class-cf-cc-public.php:80
filterelementor/theme/posts_archive/query_posts/query_varspublic\class-cf-cc-public.php:442
filterelementor/frontend/section/should_renderpublic\class-cf-cc-public.php:451
filterelementor/frontend/widget/should_renderpublic\class-cf-cc-public.php:458
Maintenance & Trust

Conditional Content by Crowd Favorite Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11
Last updatedJun 24, 2022
PHP min version7.0.0
Downloads3K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Conditional Content by Crowd Favorite Alternatives

WPCondify – Personalize your website contents

WPCondify – Personalize your website contents

wpcondify

A
85

Personalize your site’s content. Show or hide content according to the visitor’s profile. No coding required!

0 No CVEs
NEEED – Dynamic Websites

NEEED – Dynamic Websites

neeed-dynamic-websites

A
85

NEEED helps you to individually communicate with your visitors. Show dynamic content based on the situation, history and behavior of each visitor.

20 No CVEs
DXP ToolKit

DXP ToolKit

dxp-toolkit

A
100

Boost conversions by engaging your audience with DXP ToolKit's no-code personalization for digital experiences!

10 No CVEs
Block Visibility — Conditional Visibility Control for the Block Editor

Block Visibility — Conditional Visibility Control for the Block Editor

block-visibility

A
100

Easily show or hide any WordPress block. Schedule block visibility. Restrict blocks to specific screen sizes, user roles, post types, and more.

40K No CVEs
If-So Dynamic Content Personalization

If-So Dynamic Content Personalization

if-so

A
96

Personalize any content! Add or replace content according to the visitor's profile and interaction with the site. No coding required!

8K 8 CVEs
Developer Profile

Conditional Content by Crowd Favorite Developer Profile

Crowd Favorite

9 plugins · 2K total installs

70
trust score
Avg Security Score
87/100
Avg Patch Time
586 days
View full developer profile
Detection Fingerprints

How We Detect Conditional Content by Crowd Favorite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/conditional-content-cf-lite/admin/build/gutenberg.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/css/admin.css/wp-content/plugins/conditional-content-cf-lite/admin/libs/css/jquery-ui.css/wp-content/plugins/conditional-content-cf-lite/admin/libs/css/jquery.weekly-schedule-plugin.css/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/datetimepicker.full.min.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/google-places.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/helpers.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/jquery.weekly-schedule-plugin.min.js+1 more
Script Paths
/wp-content/plugins/conditional-content-cf-lite/admin/build/gutenberg.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/helpers.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/datetimepicker.full.min.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/jquery.weekly-schedule-plugin.min.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/google-places.js/wp-content/plugins/conditional-content-cf-lite/admin/libs/js/cf-conditional-content-admin.js
Version Parameters
conditional-content-cf-lite/admin/build/gutenberg.js?ver=conditional-content-cf-lite/admin/libs/css/admin.css?ver=conditional-content-cf-lite/admin/libs/css/jquery-ui.css?ver=conditional-content-cf-lite/admin/libs/css/jquery.weekly-schedule-plugin.css?ver=conditional-content-cf-lite/admin/libs/js/datetimepicker.full.min.js?ver=conditional-content-cf-lite/admin/libs/js/google-places.js?ver=conditional-content-cf-lite/admin/libs/js/helpers.js?ver=conditional-content-cf-lite/admin/libs/js/jquery.weekly-schedule-plugin.min.js?ver=conditional-content-cf-lite/admin/libs/js/cf-conditional-content-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
cf-cc-conditional-content-block
Data Attributes
data-cfcc-block-settings
JS Globals
CFCCGBAdminSettings
FAQ

Frequently Asked Questions about Conditional Content by Crowd Favorite