Does Divi Content Restrictor have any unpatched vulnerabilities?

No. All known vulnerabilities in Divi Content Restrictor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Divi Content Restrictor compatible with WordPress 6.8.5?

According to WordPress.org data, Divi Content Restrictor 2.0.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Divi Content Restrictor compatible with PHP 7.4+?

Divi Content Restrictor requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Divi Content Restrictor updated?

Divi Content Restrictor was last updated on Nov 5, 2025. Frequent updates are generally a positive security signal.

What is Divi Content Restrictor's security score?

Divi Content Restrictor has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Divi Content Restrictor Security & Risk Analysis

wordpress.org/plugins/content-restrictor-for-divi

Conditionally restrict partial content on divi page. Divi visual builder compatible. Grant access to logged-in users, users belonging to any/all selec …

200 active installs v2.0.0 PHP 7.4+ WP 4.5+ Updated Nov 5, 2025

divi-content-access-controldivi-restrict-content

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Divi Content Restrictor Safe to Use in 2026?

Generally Safe

Score 100/100

Divi Content Restrictor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The plugin "content-restrictor-for-divi" version 2.0.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, performing all SQL queries using prepared statements, and having no recorded vulnerabilities or CVEs in its history. The absence of file operations and external HTTP requests also reduces potential attack vectors. However, significant concerns arise from the static analysis. The plugin exposes one REST API route without any permission callbacks, creating a direct and unprotected entry point that could be exploited if not properly secured by the surrounding WordPress installation or other plugins. Furthermore, the complete lack of nonce checks and capability checks across all identified entry points is a major weakness, as it allows any authenticated or even unauthenticated user (depending on the REST API endpoint's underlying logic) to potentially trigger actions or access data without proper authorization verification.

Key Concerns

REST API route without permission callback
No nonce checks found
No capability checks found
Output escaping is not fully comprehensive
Bundled library Freemius v1.0 is potentially outdated

Vulnerabilities

None known

Divi Content Restrictor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Divi Content Restrictor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

Output Escaping

67% escaped3 total outputs

Attack Surface

1 unprotected

Divi Content Restrictor Attack Surface

Entry Points1

Unprotected1

REST API Routes 1

GET/wp-json/d5-content-restrictor/v1/settings-dataincludes\classes\Loader.php:61

WordPress Hooks 13

filteret_pb_module_shortcode_attributesincludes\classes\Divi\Builder.php:24

filteret_pb_all_fields_unprocessed_et_pb_sectionincludes\classes\Divi\Builder.php:31

filteret_builder_get_parent_modulesincludes\classes\Divi\Builder.php:36

filteret_pb_module_contentincludes\classes\Divi\Builder.php:43

actionet_builder_framework_loadedincludes\classes\Loader.php:56

actiondivi_extensions_initincludes\classes\Loader.php:57

actionwp_headincludes\classes\Loader.php:59

actionrest_api_initincludes\classes\Loader.php:60

actiondivi_visual_builder_assets_before_enqueue_scriptsincludes\classes\Loader.php:67

filterdivi_visual_builder_assets_package_listincludes\classes\Loader.php:96

filterrender_blockincludes\classes\Loader.php:102

filterdivi_module_wrapper_renderincludes\classes\Loader.php:108

filterdivi.conversion.moduleLibrary.conversionMapincludes\classes\Loader.php:114

Maintenance & Trust

Divi Content Restrictor Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 5, 2025

PHP min version7.4

Downloads6K

Community Trust

Rating100/100

Number of ratings1

Active installs200

Alternatives

Divi Content Restrictor Alternatives

No alternatives data available yet.

Developer Profile

Divi Content Restrictor Developer Profile

wptools

15 plugins · 6K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Divi Content Restrictor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/content-restrictor-for-divi/js/script.js/wp-content/plugins/content-restrictor-for-divi/js/script.min.js

HTML / DOM Fingerprints

CSS Classes

d5-content-restricted-sectionet_pb_dcr_section

Data Attributes

data-d5-content-restricted-section-visibilitydata-d5-content-restricted-section-accessdata-d5-content-restricted-section-usersdata-dcr-user-rolesdata-dcr-user-id

JS Globals

window.D5ContentRestrictor

REST Endpoints

/wp-json/d5-content-restrictor/v1/settings-data

FAQ