Custom Icons for Elementor Security & Risk Analysis
wordpress.org/plugins/custom-icons-for-elementorAdd custom icon fonts to the built in Elementor icon controls
Is Custom Icons for Elementor Safe to Use in 2026?
Generally Safe
Score 90/100Custom Icons for Elementor has a strong security track record. Known vulnerabilities have been patched promptly.
The plugin "custom-icons-for-elementor" v0.3.4 exhibits a generally positive security posture based on the static analysis, with no identified dangerous functions, all SQL queries using prepared statements, and a good proportion of output escaping. The absence of detectable taint flows and the presence of nonce and capability checks are also encouraging signs. However, the presence of 8 file operations and 2 external HTTP requests warrants careful review to ensure these operations do not introduce vulnerabilities, especially considering a past high-severity vulnerability related to unrestricted file uploads.
The vulnerability history is a significant concern. While there are no currently unpatched CVEs, the plugin has a recorded history of one high-severity vulnerability, specifically "Unrestricted Upload of File with Dangerous Type," which was patched relatively recently. This pattern suggests a potential for similar vulnerabilities to emerge if input sanitization and file handling are not rigorously implemented and audited. The overall risk is moderate, with strengths in core secure coding practices but a notable weakness in its past vulnerability profile regarding file handling.
Key Concerns
- Past high-severity vulnerability (unrestricted upload)
- File operations present (8 total)
- External HTTP requests present (2 total)
- Output escaping not fully proper (70%)
Custom Icons for Elementor Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Custom Icons for Elementor <= 0.3.3 - Authenticated (Admin+) Arbitrary File Upload
Custom Icons for Elementor Code Analysis
Output Escaping
Custom Icons for Elementor Attack Surface
WordPress Hooks 10
Maintenance & Trust
Custom Icons for Elementor Maintenance & Trust
Maintenance Signals
Community Trust
Custom Icons for Elementor Alternatives
Skyboot Custom Icons for Elementor
skyboot-custom-icons-for-elementor
Skyboot Custom Icons for Elementor expands your Elementor icon library with 14,300+ icons from 15 packs, fully customizable in Elementor's editor.
Custom Icons for Elementor and WPBakery
custom-elementor-icons
Incorporate your own custom icon fonts into Elementor's integrated icon controls.
Dicode Icons Pack
dicode-icons-pack
Dicode Icons Pack by Designinvento provides ability to add custom font icons to your website from all time top icon libraries.
Material Design Icons for Page Builders
material-design-icons-for-elementor
Material Design Icons for Page Builders - adds Google Material Design Icons into Icons control of Page Builders
Icons Font Loader – Load Web Fonts and Icon Libraries
icons-font-loader
Load essential Flaticon webfonts into your WordPress site. Use icons anywhere on your site with simple integration, ensuring fast performance.
Custom Icons for Elementor Developer Profile
2 plugins · 11K total installs
How We Detect Custom Icons for Elementor
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/custom-icons-for-elementor/assets/css/elementor-custom-icons.css/wp-content/plugins/custom-icons-for-elementor/assets/js/elementor-custom-icons.js/wp-content/plugins/custom-icons-for-elementor/assets/js/elementor-custom-icons.jscustom-icons-for-elementor/assets/css/elementor-custom-icons.css?ver=custom-icons-for-elementor/assets/js/elementor-custom-icons.js?ver=HTML / DOM Fingerprints
eci-add-icon-fontdata-eci-upload-nonceeci_scriptECIcons_VERSIONECIcons_URI