WP-Safety

Fancy Grid Portfolio Security & Risk Analysis

wordpress.org/plugins/fancy-grid-portfolio

Create portfolio in nice grid format that is animated and filterable with beautiful hover overlay of project title and description.

30 active installs v2.0.2 PHP + WP 4.1.1+ Updated Oct 21, 2018
filterable-portfolioportfolioportfolio-galleryprojects-portfolioresponsive-portfolio
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Fancy Grid Portfolio Safe to Use in 2026?

Generally Safe

Score 85/100

Fancy Grid Portfolio has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago
Risk Assessment

The "fancy-grid-portfolio" v2.0.2 plugin exhibits a generally strong security posture, with a notable absence of known vulnerabilities and a commitment to secure coding practices like prepared statements for SQL queries. The plugin also includes nonce and capability checks, indicating awareness of fundamental WordPress security measures. However, a significant concern arises from its attack surface, specifically one unprotected AJAX handler. This entry point, if not meticulously secured within its implementation, could be a potential vector for unauthorized actions or information disclosure. The limited scope of static analysis, particularly the absence of taint analysis results, means that while immediate, obvious vulnerabilities are not apparent, deeper, context-dependent flaws might exist and are not yet uncovered by this analysis.

Overall, the plugin demonstrates good intent with its secure coding practices and clean vulnerability history. The primary weakness lies in the exposed AJAX endpoint, which demands careful scrutiny. The lack of detected taint flows is positive, but it's important to remember that static analysis has limitations. The bundled TinyMCE library is a standard component and not typically a high risk unless it's an outdated version with known vulnerabilities, which is not indicated here. The plugin's strengths lie in its SQL handling and overall lack of past security issues, but the unprotected AJAX handler represents a concrete risk that needs to be addressed to further solidify its security.

Key Concerns

  • Unprotected AJAX handler
  • Partial output escaping
Vulnerabilities
None known

Fancy Grid Portfolio Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Fancy Grid Portfolio Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
7 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

TinyMCE

Output Escaping

70% escaped10 total outputs
Attack Surface
1 unprotected

Fancy Grid Portfolio Attack Surface

Entry Points2
Unprotected1

AJAX Handlers 1

authwp_ajax_save_orderincludes\class-fancy-grid-portfolio.php:173

Shortcodes 1

[fgp_portfolio] public\class-fancy-grid-portfolio-public.php:127
WordPress Hooks 16
actionplugins_loadedincludes\class-fancy-grid-portfolio.php:141
actionadmin_enqueue_scriptsincludes\class-fancy-grid-portfolio.php:157
actionadmin_enqueue_scriptsincludes\class-fancy-grid-portfolio.php:158
actioninitincludes\class-fancy-grid-portfolio.php:161
actioninitincludes\class-fancy-grid-portfolio.php:162
actionmanage_portfolio_item_posts_columnsincludes\class-fancy-grid-portfolio.php:165
actionmanage_portfolio_item_posts_custom_columnincludes\class-fancy-grid-portfolio.php:166
actionadmin_menuincludes\class-fancy-grid-portfolio.php:169
actionadmin_initincludes\class-fancy-grid-portfolio.php:170
actionadmin_initincludes\class-fancy-grid-portfolio.php:176
filterdo_meta_boxesincludes\class-fancy-grid-portfolio.php:179
filterwp_calculate_image_srcsetincludes\class-fancy-grid-portfolio.php:182
filterpre_get_postsincludes\class-fancy-grid-portfolio.php:183
actionwp_enqueue_scriptsincludes\class-fancy-grid-portfolio.php:198
actionwp_enqueue_scriptsincludes\class-fancy-grid-portfolio.php:199
actioninitincludes\class-fancy-grid-portfolio.php:201
Maintenance & Trust

Fancy Grid Portfolio Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedOct 21, 2018
PHP min version
Downloads3K

Community Trust

Rating0/100
Number of ratings0
Active installs30
Alternatives

Fancy Grid Portfolio Alternatives

Creative Portfolio

Creative Portfolio

creative-portfolio

A
85

Creative portfolio for creative people. This plugin Registers a custom post type for portfolio items and display them on a filterable creative grid.

200 No CVEs
Portfolio

Portfolio

tc-portfolio

A
85

Portfolio is a custom post type based Responsive Filterable Portfolio showing plugin. Users can create stunning portfolio WordPress site using Shortc …

200 No CVEs
Radius Portfolio – Filterable Grid, Gallery & Slider Portfolio

Radius Portfolio – Filterable Grid, Gallery & Slider Portfolio

tlp-portfolio

A
99

A simple and powerful WordPress portfolio plugin to showcase your creative work beautifully with different ways.

8K 2 CVEs
HT Portfolio – WordPress Portfolio Plugin for Elementor

HT Portfolio – WordPress Portfolio Plugin for Elementor

ht-portfolio

A
100

HT Portfolio - WordPress Portfolio Plugin for Elementor

300 1 CVE
Ultimate Portfolio

Ultimate Portfolio

ultimate-portfolio

A
100

Build portfolio galleries with category filters, image sliders, and post grids using Gutenberg blocks.

100 No CVEs
Developer Profile

Fancy Grid Portfolio Developer Profile

Laith Sinawi

3 plugins · 50 total installs

91
trust score
Avg Security Score
95/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Fancy Grid Portfolio

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/fancy-grid-portfolio/lib/jquery-ui/jquery-ui.min.css/wp-content/plugins/fancy-grid-portfolio/admin/css/fancy-grid-portfolio-admin.css/wp-content/plugins/fancy-grid-portfolio/admin/js/fancy-grid-portfolio-admin.js
Script Paths
/wp-content/plugins/fancy-grid-portfolio/admin/js/fancy-grid-portfolio-admin.js
Version Parameters
fancy-grid-portfolio/lib/jquery-ui/jquery-ui.min.css?ver=fancy-grid-portfolio/admin/css/fancy-grid-portfolio-admin.css?ver=fancy-grid-portfolio/admin/js/fancy-grid-portfolio-admin.js?ver=

HTML / DOM Fingerprints

JS Globals
FGP_PORTFOLIO
FAQ

Frequently Asked Questions about Fancy Grid Portfolio