Does Custom Cursor For WP have any unpatched vulnerabilities?

No. All known vulnerabilities in Custom Cursor For WP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Custom Cursor For WP compatible with WordPress 5.9.13?

According to WordPress.org data, Custom Cursor For WP 1.0.0 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is Custom Cursor For WP compatible with PHP 5.2.4+?

Custom Cursor For WP requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Custom Cursor For WP updated?

Custom Cursor For WP was last updated on Jan 31, 2022. Frequent updates are generally a positive security signal.

What is Custom Cursor For WP's security score?

Custom Cursor For WP has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Custom Cursor For WP Security & Risk Analysis

wordpress.org/plugins/custom-cursor-for-wp

Custom Cursor For WP - Help you to customize your WordPress website cursor or mouse pointer and It's very easy to use.

1K active installs v1.0.0 PHP 5.2.4+ WP 4.7+ Updated Jan 31, 2022

animated-cursorcursorcustom-cursorcutom-mouse-pointerpointer

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Custom Cursor For WP Safe to Use in 2026?

Generally Safe

Score 85/100

Custom Cursor For WP has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The static analysis of "custom-cursor-for-wp" v1.0.0 reveals a strong security posture from a code perspective. The absence of dangerous functions, file operations, external HTTP requests, and the complete use of prepared statements for SQL queries, along with proper output escaping for all outputs, are commendable practices. The lack of any identified taint flows with unsanitized paths further suggests that common web vulnerabilities like XSS and SQL injection are unlikely to be present in this version.

However, a significant concern arises from the complete absence of nonce and capability checks across all entry points. With zero identified AJAX handlers, REST API routes, shortcodes, or cron events, this might seem negligible. But if any of these entry points were to be introduced or discovered in future versions, the lack of authentication and authorization mechanisms would create a severe security hole, making any new functionality susceptible to unauthorized actions.

The plugin's vulnerability history is clean, with no recorded CVEs. This indicates a generally stable and well-maintained codebase. Coupled with the strong static analysis findings, the overall risk for the current version appears low. Nevertheless, the lack of built-in security checks for potential future additions represents a weakness that should be addressed.

Key Concerns

No nonce checks
No capability checks

Vulnerabilities

None known

Custom Cursor For WP Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Custom Cursor For WP Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

160 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped160 total outputs

Attack Surface

Custom Cursor For WP Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

filterwp_enqueue_scriptscustom-cursor-for-wp.php:15

actionadmin_menucustom-cursor-for-wp.php:17

actionadmin_initcustom-cursor-for-wp.php:21

actionwp_footercustom-cursor-for-wp.php:554

Maintenance & Trust

Custom Cursor For WP Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedJan 31, 2022

PHP min version5.2.4

Downloads20K

Community Trust

Rating90/100

Number of ratings4

Active installs1K

Alternatives

Custom Cursor For WP Alternatives

Ultimate Cursor – Interactive and Animated Cursor Effects Toolkit

ultimate-cursor

100

Enhance your site with Ultimate Cursor Plugin—customize your cursor pointer with icons, text & images for an engaging experience.✅

3K No CVEs

Ultimate Custom Cursor

ultimate-custom-cursor

Using Ultimate Custom Cursor for customize your website cursor or mouse pointer, you will get a very elegant and unique site.

900 No CVEs

Cursor Image Lite

cursor-image-lite

100

Easily replace the default mouse cursor with your own custom PNG images. A lightweight and simple custom cursor plugin for WordPress.

100 No CVEs

WP Custom Cursors | WordPress Cursor Plugin

wp-custom-cursors

WP Custom Cursors: Elevate your website's engagement with unique, personalized cursors! Choose from a collection of pre-designed options or creat …

10K 1 unpatched

Cursor Control

cursor-control

Easily upload custom images to use as your default cursor, text input cursor, and your cursor for links and buttons.

300 No CVEs

Developer Profile

Custom Cursor For WP Developer Profile

Softices

2 plugins · 1K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Custom Cursor For WP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/custom-cursor-for-wp/css/jquery-ui.min.css

HTML / DOM Fingerprints

CSS Classes

ccwp-img-wrapcursor-type-linksemi-textwrapslider

Data Attributes

data-cursor_type

JS Globals

ccwp_cursor_options

FAQ