Does Essentials by Digital Creatings have any unpatched vulnerabilities?

No. All known vulnerabilities in Essentials by Digital Creatings have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Essentials by Digital Creatings compatible with WordPress 6.7.5?

According to WordPress.org data, Essentials by Digital Creatings 1.4.2 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Essentials by Digital Creatings compatible with PHP 7.2+?

Essentials by Digital Creatings requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Essentials by Digital Creatings updated?

Essentials by Digital Creatings was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Essentials by Digital Creatings's security score?

Essentials by Digital Creatings has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Essentials by Digital Creatings Security & Risk Analysis

wordpress.org/plugins/essentials-by-digital-creatings

Lightweight plugin by Digital Creatings that hides WordPress version info from source code, RSS feeds, scripts & HTTP headers for better protection.

10 active installs v1.4.2 PHP 7.2+ WP 5.0+ Updated Unknown

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Essentials by Digital Creatings Safe to Use in 2026?

Generally Safe

Score 100/100

Essentials by Digital Creatings has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The plugin "essentials-by-digital-creatings" v1.4.2 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of any identified vulnerabilities (CVEs) and a clean bill of health in the taint analysis are highly positive indicators. The code signals also show good practices, with a high percentage of properly escaped output and the presence of nonce checks. The limited attack surface, with no unprotected AJAX handlers, REST API routes, shortcodes, or cron events, further bolsters its security. However, the code analysis does reveal that 40% of the SQL queries are not using prepared statements, which represents a potential risk for SQL injection vulnerabilities, especially if input data is not adequately sanitized before being used in these queries. Additionally, the lack of capability checks on any of the entry points, while currently not a direct issue due to the zero entry points found, could become a significant concern if the plugin were to introduce new functionality with public-facing entry points in the future.

Key Concerns

SQL queries not using prepared statements (40%)
No capability checks found on entry points

Vulnerabilities

None known

Essentials by Digital Creatings Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Essentials by Digital Creatings Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

46 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared5 total queries

Output Escaping

96% escaped48 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

essentials_dc_handle_test_email_submission (essentials_smtp_email.php:141)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Essentials by Digital Creatings Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 40

actionadmin_menuessentials_by_digital_creatings.php:70

actionadmin_enqueue_scriptsessentials_by_digital_creatings.php:117

actionadmin_initessentials_custom_scripts.php:32

actionwp_headessentials_custom_scripts.php:188

actionwp_body_openessentials_custom_scripts.php:189

actionwp_footeressentials_custom_scripts.php:190

filterthe_generatoressentials_security.php:40

filterstyle_loader_srcessentials_security.php:51

filterscript_loader_srcessentials_security.php:52

filterwp_headersessentials_security.php:63

filterxmlrpc_methodsessentials_security.php:74

actionxmlrpc_callessentials_security.php:88

filtertiny_mce_pluginsessentials_security.php:101

actioninitessentials_security.php:106

filterembed_oembed_discoveressentials_security.php:124

filterrewrite_rules_arrayessentials_security.php:127

actioninitessentials_security.php:140

actionwp_default_scriptsessentials_security.php:151

actioninitessentials_security.php:160

actioninitessentials_security.php:170

actiondo_feedessentials_security.php:178

actiondo_feed_rdfessentials_security.php:181

actiondo_feed_rssessentials_security.php:184

actiondo_feed_rss2essentials_security.php:187

actiondo_feed_atomessentials_security.php:190

actioninitessentials_security.php:195

actioninitessentials_security.php:205

actioninitessentials_security.php:216

actionwp_enqueue_scriptsessentials_security.php:225

filtercomments_openessentials_security.php:231

filterpings_openessentials_security.php:232

actioninitessentials_security.php:235

actionadmin_initessentials_security.php:442

actionphpmailer_initessentials_smtp_email.php:136

actionadmin_noticesessentials_smtp_email.php:147

actionadmin_noticesessentials_smtp_email.php:155

actionadmin_noticesessentials_smtp_email.php:194

actionadmin_noticesessentials_smtp_email.php:204

actionadmin_initessentials_smtp_email.php:210

actionadmin_initessentials_smtp_email.php:343

Maintenance & Trust

Essentials by Digital Creatings Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedUnknown

PHP min version7.2

Downloads723

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Essentials by Digital Creatings Alternatives

Unified – Email Log, Email Queue, Page cache and more

unified

Unified is a plugin that combines functionalities that most sites use, all in one plugin, with a sharp focus on high performance and low memory usage.

0 No CVEs

Jetpack – WP Security, Backup, Speed, & Growth

jetpack

Improve your WP security with powerful one-click tools like backup, WAF, and malware scan. Includes free tools like stats, CDN and social sharing.

3.0M 24 CVEs

Limit Login Attempts Reloaded – Login Security, Brute Force Protection, Firewall

limit-login-attempts-reloaded

Block excessive login attempts and protect your site against brute force attacks. Simple, yet powerful tools to improve site performance.

2.0M 4 CVEs

All-In-One Security (AIOS) – Security and Firewall

all-in-one-wp-security-and-firewall

Protect your website investment with All-In-One Security (AIOS) – a comprehensive and easy to use security plugin designed especially for WordPress.

1.0M 26 CVEs

ManageWP Worker

worker

A better way to manage dozens of WordPress websites.

1.0M 1 CVE

Developer Profile

Essentials by Digital Creatings Developer Profile

Puneet Tiwari

2 plugins · 20 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Essentials by Digital Creatings

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/essentials-by-digital-creatings/essentials_security.php/wp-content/plugins/essentials-by-digital-creatings/essentials_smtp_email.php/wp-content/plugins/essentials-by-digital-creatings/essentials_custom_scripts.php

Generator Patterns

essentials-by-digital-creatings

Script Paths

https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js

Version Parameters

essentials-by-digital-creatings/essentials_security.php?ver=essentials-by-digital-creatings/essentials_smtp_email.php?ver=essentials-by-digital-creatings/essentials_custom_scripts.php?ver=

HTML / DOM Fingerprints

CSS Classes

text-primaryleadalert-successlist-group-itemlist-unstyled

FAQ