WP-Safety

Easy Widget Columns Security & Risk Analysis

wordpress.org/plugins/easy-widget-columns

Easily display widgets in rows of columns.

400 active installs v1.2.4 PHP 5.6+ WP 4.6+ Updated Aug 1, 2020
admincolumnslayoutwidgetwidget-columns
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Easy Widget Columns Safe to Use in 2026?

Generally Safe

Score 85/100

Easy Widget Columns has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The "easy-widget-columns" v1.2.4 plugin demonstrates a strong security posture with no identified vulnerabilities in its history and a clean static analysis report. The absence of known CVEs and a complete lack of critical or high-severity taint flows are positive indicators. The code also shows good practices like 100% prepared statement usage for SQL queries and a high percentage of output escaping, mitigating common injection risks.

However, a few areas warrant attention. The plugin has zero capability checks in its identified entry points, which is a significant concern for a plugin that interacts with widgets. While the attack surface appears minimal based on the provided data (0 AJAX, 0 REST API, 0 shortcodes, 0 cron events), any future expansion of these entry points without robust authorization will be a critical risk. The bundled Select2 library could also become a risk if it's an outdated version and contains known vulnerabilities, although this is not explicitly stated in the provided data.

Overall, the plugin's current state is good, but the reliance on future development to maintain security is a potential weakness. The lack of nonce checks and capability checks on the limited entry points, combined with the bundled library, suggests room for improvement to achieve a truly robust security profile.

Key Concerns

  • No capability checks on entry points
  • Bundled library (Select2)
Vulnerabilities
None known

Easy Widget Columns Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Easy Widget Columns Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
42
227 escaped
Nonce Checks
0
Capability Checks
1
File Operations
2
External Requests
0
Bundled Libraries
1

Bundled Libraries

Select2

Output Escaping

84% escaped269 total outputs
Attack Surface

Easy Widget Columns Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 17
actionplugins_loadedincludes\class-easy-widget-columns.php:154
actionadmin_menuincludes\class-easy-widget-columns.php:170
actionadmin_initincludes\class-easy-widget-columns.php:177
actionwp_enqueue_scriptsincludes\class-easy-widget-columns.php:180
actioncustomize_preview_initincludes\class-easy-widget-columns.php:183
actionadmin_enqueue_scriptsincludes\class-easy-widget-columns.php:199
actionadmin_enqueue_scriptsincludes\class-easy-widget-columns.php:202
actionadmin_footer-widgets.phpincludes\class-easy-widget-columns.php:205
actionin_widget_formincludes\class-easy-widget-columns.php:208
actionwidget_update_callbackincludes\class-easy-widget-columns.php:211
actiondynamic_sidebar_paramsincludes\class-easy-widget-columns.php:214
actionadmin_enqueue_scriptsincludes\class-easy-widget-columns.php:229
actionadmin_enqueue_scriptsincludes\class-easy-widget-columns.php:232
actionadmin_footer-widgets.phpincludes\class-easy-widget-columns.php:235
actionwidgets_initincludes\class-easy-widget-columns.php:238
actionwp_enqueue_scriptsincludes\class-easy-widget-columns.php:254
actionwp_headincludes\class-easy-widget-columns.php:257
Maintenance & Trust

Easy Widget Columns Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18
Last updatedAug 1, 2020
PHP min version5.6
Downloads18K

Community Trust

Rating100/100
Number of ratings5
Active installs400
Alternatives

Easy Widget Columns Alternatives

Add Dashboard Columns

Add Dashboard Columns

add-dashboard-columns

A
85

Enable Dashboard Columns in WordPress 3.8 or later

400 No CVEs
Widgets in Columns

Widgets in Columns

widgets-in-columns

A
85

Using this plugin you can show your widgets in desired columns and rows. You can also display an icon beside the widget.

200 No CVEs
Content Manager Light

Content Manager Light

content-manager-light

D
42

Build your custom Responsive page layout and fill it with ready to use content items. Easy, no coding.

80 2 unpatched
Restore Columns

Restore Columns

restore-columns

A
85

The plugin restores the possibility to select the number of columns displayed on the dashboard.

70 No CVEs
Admin Columns

Admin Columns

codepress-admin-columns

A
100

Customise columns on the administration screens for post(types), pages, media, comments, links and users with an easy to use drag-and-drop interface.

100K No CVEs
Developer Profile

Easy Widget Columns Developer Profile

Alexis J. Villegas

2 plugins · 410 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Easy Widget Columns

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-widget-columns/admin/css/easy-widget-columns-admin.min.css/wp-content/plugins/easy-widget-columns/admin/js/select2.min.js/wp-content/plugins/easy-widget-columns/js/customizer-preview.min.js
Script Paths
/wp-content/plugins/easy-widget-columns/admin/js/select2.min.js/wp-content/plugins/easy-widget-columns/js/customizer-preview.min.js
Version Parameters
easy-widget-columns/admin/css/easy-widget-columns-admin.min.css?ver=easy-widget-columns/admin/js/select2.min.js?ver=easy-widget-columns/js/customizer-preview.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
ewc-selectewc-icon-
Data Attributes
data-icon
JS Globals
ewcselect2
FAQ

Frequently Asked Questions about Easy Widget Columns