WP-Safety

Enefti NFT Marketplace Core lite Security & Risk Analysis

wordpress.org/plugins/enefti-nft-marketplace-core-lite

Enefti NFT Marketplace Core lite is a starting point for NFT Marketplaces based on Wordpress. Creating NFTs was never so easy.

10 active installs v1.0.1 PHP 7.0+ WP 5.0+ Updated Jun 7, 2023
bscerc721ethereumnftnft-marketplace
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Enefti NFT Marketplace Core lite Safe to Use in 2026?

Generally Safe

Score 85/100

Enefti NFT Marketplace Core lite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The "enefti-nft-marketplace-core-lite" v1.0.1 plugin exhibits a generally strong security posture based on the provided static analysis. The plugin has a notable absence of any recorded historical vulnerabilities (CVEs), suggesting a proactive approach to security or a lack of past significant issues. The static analysis reveals a clean bill of health regarding dangerous functions, file operations, and external HTTP requests. Crucially, there are no critical or high severity taint flows detected, and no unsanitized paths identified, indicating that data is likely handled securely within the analyzed flows.

However, there are areas for improvement. The most significant concern is the lack of prepared statements in all SQL queries. This makes the plugin susceptible to SQL injection vulnerabilities, especially if any user-supplied data eventually reaches these queries. While the plugin has a significant number of outputs that are properly escaped (82%), the remaining 18% could potentially lead to cross-site scripting (XSS) vulnerabilities. The presence of the DataTables library, while bundled, raises a minor concern if it is an older version, as bundled libraries can sometimes introduce vulnerabilities if not kept up-to-date.

In conclusion, the plugin demonstrates good foundational security practices, particularly in avoiding common pitfalls like dangerous functions and external requests. The complete absence of historical vulnerabilities is a positive indicator. Nevertheless, the unmitigated use of raw SQL queries and the imperfect output escaping represent tangible risks that should be addressed to further harden the plugin's security.

Key Concerns

  • SQL queries without prepared statements
  • Unescaped output detected
  • Bundled library (DataTables)
Vulnerabilities
None known

Enefti NFT Marketplace Core lite Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Enefti NFT Marketplace Core lite Release Timeline

v1.0.2
v1.0.1Current
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Enefti NFT Marketplace Core lite Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
0 prepared
Unescaped Output
75
350 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

DataTables

SQL Query Safety

0% prepared3 total queries

Output Escaping

82% escaped425 total outputs
Attack Surface

Enefti NFT Marketplace Core lite Attack Surface

Entry Points9
Unprotected0

Shortcodes 9

[frontend-button] frontend\Media.php:33
[nft_marketplace_core_edit_author_form_shortcode] internals\Shortcode.php:34
[nft_marketplace_core_update_author_form_shortcode] internals\Shortcode.php:35
[nft_marketplace_core_submit_author_form_shortcode] internals\Shortcode.php:36
[nft_archive_search_shortcode] internals\Shortcode.php:37
[nft_archive_category_shortcode] internals\Shortcode.php:38
[mt-addons-listings-category] internals\shortcodes\listings-category\listings-category.php:121
[mt-addons-nft-collectors-group] internals\shortcodes\nft-category-group\nft-category-group.php:236
[mt-addons-nft-collectors-list] internals\shortcodes\nft-category-list\nft-category-list.php:63
WordPress Hooks 89
actionnft_marketplace_core_author_after_gridfrontend\Extras\PageAuthor.php:26
actionnft_marketplace_core_author_listing_queryfrontend\Extras\PageAuthor.php:27
actionnft_marketplace_core_author_header_rightfrontend\Extras\PageAuthor.php:28
actionnft_marketplace_core_archive_before_gridfrontend\Extras\PageCategory.php:28
actionnft_marketplace_core_archive_before_gridfrontend\Extras\PageCategory.php:29
actionnft_marketplace_core_archive_after_grid_templatefrontend\Extras\PageCategory.php:30
actionnft_marketplace_core_archive_listing_queryfrontend\Extras\PageCategory.php:31
actionnft_marketplace_core_before_main_contentfrontend\Extras\PageGlobal.php:31
actionnft_marketplace_core_search_listing_queryfrontend\Extras\PageGlobal.php:32
actionnft_marketplace_core_related_listing_queryfrontend\Extras\PageGlobal.php:33
actionnft_marketplace_core_single_nft_block_after_titlefrontend\Extras\PageGlobal.php:34
actionnft_marketplace_core_archive_listing_query_templatefrontend\Extras\PageNFTListings.php:29
actionnft_marketplace_core_archive_before_grid_templatefrontend\Extras\PageNFTListings.php:30
actionnft_marketplace_core_archive_before_grid_templatefrontend\Extras\PageNFTListings.php:31
actionnft_marketplace_core_single_nft_before_titlefrontend\Extras\PageSingleNFT.php:20
actionnft_marketplace_core_single_nft_before_titlefrontend\Extras\PageSingleNFT.php:23
actionnft_marketplace_core_single_nft_before_titlefrontend\Extras\PageSingleNFT.php:25
actionnft_marketplace_core_single_nft_after_buttonfrontend\Extras\PageSingleNFT.php:26
actionnft_marketplace_core_single_nft_relatedfrontend\Extras\PageSingleNFT.php:29
actionnft_marketplace_core_single_nft_before_titlefrontend\Extras\PageSingleNFT.php:33
actionnft_marketplace_core_single_nft_before_author_tabfrontend\Extras\PageSingleNFT.php:36
actionnft_marketplace_core_single_nft_before_author_tabfrontend\Extras\PageSingleNFT.php:37
actionnft_marketplace_core_single_nft_before_author_tabfrontend\Extras\PageSingleNFT.php:38
actionnft_marketplace_core_single_nft_after_metasfrontend\Extras\PageSingleNFT.php:39
actionnft_marketplace_core_single_nft_before_relatedfrontend\Extras\PageSingleNFT.php:40
actionnft_marketplace_core_single_nft_after_levels_tabfrontend\Extras\PageSingleNFT.php:41
actionnft_marketplace_core_single_nft_after_title_categoryfrontend\Extras\PageSingleNFT.php:43
actionnft_marketplace_core_single_nft_before_collection_textfrontend\Extras\PageSingleNFT.php:44
actionnft_marketplace_core_single_nft_after_title_collectionfrontend\Extras\PageSingleNFT.php:45
actionnft_marketplace_core_single_nft_after_levels_tabfrontend\Extras\PageSingleNFT.php:46
actioninitfrontend\Media.php:19
actionwp_enqueue_scriptsfrontend\Media.php:23
filterajax_query_attachments_argsfrontend\Media.php:29
actioncmb2_after_formintegrations\CMB.php:38
actioncmb2_admin_initintegrations\CMB.php:39
actioncmb2_admin_initintegrations\CMB.php:40
actioncmb2_admin_initintegrations\CMB.php:41
actioncmb2_admin_initintegrations\CMB.php:42
actioncmb2_admin_initintegrations\CMB.php:43
actioncmb2_admin_initintegrations\CMB.php:44
actioncmb2_admin_initintegrations\CMB.php:45
filterwpnc_event_after_creation_filterintegrations\Creator.php:35
filterwpnc_event_before_creation_filterintegrations\Creator.php:36
filtersingle_templateintegrations\Template.php:32
filtertaxonomy_templateintegrations\Template.php:33
filtertemplate_redirectintegrations\Template.php:34
filtertemplate_includeintegrations\Template.php:35
filtertemplate_includeintegrations\Template.php:36
filtertemplate_includeintegrations\Template.php:37
filtertemplate_includeintegrations\Template.php:38
filterpage_templateintegrations\Template.php:39
filtersingle_templateintegrations\Template.php:42
filtersingle_templateintegrations\Template.php:44
filterpage_templateintegrations\Template.php:46
filtersingle_templateintegrations\Template.php:48
actionenefti_after_vendor_dashboard_linkintegrations\Theme.php:18
actionwoocommerce_account_dashboardintegrations\WooCommerce.php:18
filterwoocommerce_account_menu_itemsintegrations\WooCommerce.php:19
actionwp_kses_allowed_htmlinternals\Kses.php:25
actionelementor/widgets/widgets_registeredinternals\shortcodes\elementor\functions-core-elementor.php:24
actioninitinternals\shortcodes\elementor\functions-core-elementor.php:36
actionelementor/elements/categories_registeredinternals\shortcodes\elementor\functions-core-elementor.php:55
actioninitinternals\shortcodes\listings-category\listings-category.php:123
actioninitinternals\shortcodes\nft-category-group\nft-category-group.php:256
actioninitinternals\shortcodes\nft-category-list\nft-category-list.php:66
actionnft_listing_blockchains_add_form_fieldsinternals\tax-meta\BL_TAX_META.php:25
actionnft_listing_blockchains_edit_form_fieldsinternals\tax-meta\BL_TAX_META.php:26
actionadmin_footerinternals\tax-meta\BL_TAX_META.php:27
actioncreated_nft_listing_blockchainsinternals\tax-meta\BL_TAX_META.php:30
actionedited_nft_listing_blockchainsinternals\tax-meta\BL_TAX_META.php:31
actionnft-listing-collection_add_form_fieldsinternals\tax-meta\CL_TAX_META.php:24
actionnft-listing-collection_edit_form_fieldsinternals\tax-meta\CL_TAX_META.php:25
actionadmin_footerinternals\tax-meta\CL_TAX_META.php:26
actioncreated_nft-listing-collectioninternals\tax-meta\CL_TAX_META.php:29
actionedited_nft-listing-collectioninternals\tax-meta\CL_TAX_META.php:30
actionnft-listing-category_add_form_fieldsinternals\tax-meta\CT_TAX_META.php:26
actionnft-listing-category_edit_form_fieldsinternals\tax-meta\CT_TAX_META.php:27
actionadmin_footerinternals\tax-meta\CT_TAX_META.php:28
actioncreated_nft-listing-categoryinternals\tax-meta\CT_TAX_META.php:31
actionedited_nft-listing-categoryinternals\tax-meta\CT_TAX_META.php:32
actionnft-listing-currency_add_form_fieldsinternals\tax-meta\CUR_TAX_META.php:26
actionnft-listing-currency_edit_form_fieldsinternals\tax-meta\CUR_TAX_META.php:27
actionadmin_footerinternals\tax-meta\CUR_TAX_META.php:28
actioncreated_nft-listing-currencyinternals\tax-meta\CUR_TAX_META.php:31
actionedited_nft-listing-currencyinternals\tax-meta\CUR_TAX_META.php:32
actioninitnft-marketplace-core-lite.php:39
actionadmin_initnft-marketplace-core-lite.php:48
actionadmin_noticesnft-marketplace-core-lite.php:54
actionplugins_loadednft-marketplace-core-lite.php:100
Maintenance & Trust

Enefti NFT Marketplace Core lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedJun 7, 2023
PHP min version7.0
Downloads6K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Enefti NFT Marketplace Core lite Alternatives

NFT Maker

NFT Maker

tatum

A
85

DEPRECATED / NOT MAINTAINED: Please be aware that we have stopped the development of this WordPress plugin and recommend to use our API or SDK directl …

100 No CVEs
WPSmartContracts

WPSmartContracts

wp-smart-contracts

B
74

WP Smart Contracts: The first WordPress plugin bringing blockchain technology to your fingertips since 2019.

200 1 unpatched
EthPress – Web3 Login

EthPress – Web3 Login

ethpress

A
92

EthPress Web3 Login Wordpress Plugin adds the capability to connect with cryptocurrency wallets such as MetaMask or WalletConnect QR code.

100 No CVEs
Web3 – Crypto wallet Login & NFT token gating

Web3 – Crypto wallet Login & NFT token gating

web3-authentication

B
81

Users can sign up for your WordPress using their crypto wallets. Gate content based on NFTs owned. Web3 authentication plugin supports crypto wallets …

100 2 CVEs
Cryptocurrency Product for WooCommerce

Cryptocurrency Product for WooCommerce

cryptocurrency-product-for-woocommerce

A
100

Cryptocurrency Ethereum Crypto WordPress Plugin for WooCommerce enables customers to buy Ether, Bitcoin or any ERC20 or NFT (ERC721) token.

60 No CVEs
Developer Profile

Enefti NFT Marketplace Core lite Developer Profile

ModelTheme

3 plugins · 70 total installs

85
trust score
Avg Security Score
87/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Enefti NFT Marketplace Core lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/enefti-nft-marketplace-core-lite/assets/css/nft-marketplace-core-admin.css/wp-content/plugins/enefti-nft-marketplace-core-lite/assets/css/nft-marketplace-core-panel.css/wp-content/plugins/enefti-nft-marketplace-core-lite/assets/js/nft-marketplace-core-admin.js/wp-content/plugins/enefti-nft-marketplace-core-lite/frontend/assets/css/nft-marketplace-core-frontend.css/wp-content/plugins/enefti-nft-marketplace-core-lite/frontend/assets/js/nft-marketplace-core-frontend.js
Script Paths
/wp-content/plugins/enefti-nft-marketplace-core-lite/assets/js/nft-marketplace-core-admin.js/wp-content/plugins/enefti-nft-marketplace-core-lite/frontend/assets/js/nft-marketplace-core-frontend.js
Version Parameters
/assets/css/nft-marketplace-core-admin.css?ver=/assets/css/nft-marketplace-core-panel.css?ver=/assets/js/nft-marketplace-core-admin.js?ver=/frontend/assets/css/nft-marketplace-core-frontend.css?ver=/frontend/assets/js/nft-marketplace-core-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
nft-marketplace-core-frontend
Data Attributes
data-nft_marketplace_core_lite_vuedata-nft_marketplace_core_lite_vue_instance
JS Globals
NFT_MARKETPLACE_CORE_VERSIONNFT_MARKETPLACE_CORE_NAMENFT_MARKETPLACE_CORE_PLUGIN_ROOTNFT_MARKETPLACE_CORE_PLUGIN_ABSOLUTENFT_MARKETPLACE_CORE_PLUGIN_URLNFT_MARKETPLACE_CORE_PLUGIN_LOCATION+3 more
FAQ

Frequently Asked Questions about Enefti NFT Marketplace Core lite