Does Fashe Companion have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Fashe Companion compatible with WordPress 5.1.22?

According to WordPress.org data, Fashe Companion 1.2 has been tested up to WordPress 5.1.22. Check the plugin's changelog for the latest compatibility information.

Is Fashe Companion compatible with PHP 5.6+?

Fashe Companion requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Fashe Companion updated?

Fashe Companion was last updated on Feb 15, 2019. Frequent updates are generally a positive security signal.

What is Fashe Companion's security score?

Fashe Companion has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Fashe Companion Security & Risk Analysis

wordpress.org/plugins/fashe-companion

Fashe Companion is a companion plugin for Fashe WordPress theme by Colorlib.com.

0 active installs v1.2 PHP 5.6+ WP 4.6+ Updated Feb 15, 2019

companiondemohome-pagewidgetswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Fashe Companion Safe to Use in 2026?

Generally Safe

Score 85/100

Fashe Companion has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

Based on the static analysis, the "fashe-companion" v1.2 plugin exhibits a generally strong security posture. The absence of any detected entry points like AJAX handlers, REST API routes, or shortcodes significantly limits the potential attack surface. The code also demonstrates good practices regarding SQL queries, exclusively using prepared statements, and a high percentage of output escaping, which helps prevent cross-site scripting vulnerabilities. The presence of nonce and capability checks further enhances security by verifying user permissions for specific actions.

However, a notable concern is the presence of 3 external HTTP requests. While not inherently malicious, these requests represent potential vectors for vulnerabilities if not handled with proper validation and sanitization of any data returned or transmitted. The lack of any taint analysis results is also noteworthy; ideally, this would indicate no identified data flows that could lead to security issues. The plugin's history of zero known vulnerabilities is a positive indicator, suggesting a mature and secure development process for past versions.

In conclusion, "fashe-companion" v1.2 appears to be a well-secured plugin with few apparent weaknesses in its current version. The primary area for attention would be the external HTTP requests, which should be scrutinized for security best practices. The overall lack of critical security signals, entry points, and a clean vulnerability history contribute to a low-risk profile.

Key Concerns

External HTTP requests present potential risk
Percentage of output escaping could be higher

Vulnerabilities

None known

Fashe Companion Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Fashe Companion Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

Fashe Companion Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

159 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

80% escaped200 total outputs

Attack Surface

Fashe Companion Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 25

actionadmin_noticesfashe-companion.php:83

filterpt-ocdi/import_filesinc\demo-data\demo-import.php:28

actionpt-ocdi/after_importinc\demo-data\demo-import.php:54

filterpt-ocdi/disable_pt_brandinginc\demo-data\demo-import.php:57

filterpt-ocdi/plugin_page_setupinc\demo-data\demo-import.php:70

actionadmin_enqueue_scriptsinc\demo-data\demo-import.php:83

actioninitinc\elementor-widgets\elementor-widget.php:148

actionadmin_noticesinc\elementor-widgets\elementor-widget.php:165

actionadmin_noticesinc\elementor-widgets\elementor-widget.php:172

actionadmin_noticesinc\elementor-widgets\elementor-widget.php:179

actionelementor/elements/categories_registeredinc\elementor-widgets\elementor-widget.php:184

actionelementor/frontend/after_register_scriptsinc\elementor-widgets\elementor-widget.php:186

actionadmin_enqueue_scriptsinc\elementor-widgets\elementor-widget.php:188

actionelementor/frontend/after_enqueue_stylesinc\elementor-widgets\elementor-widget.php:189

actionelementor/frontend/after_register_stylesinc\elementor-widgets\elementor-widget.php:190

actionelementor/editor/before_enqueue_scriptsinc\elementor-widgets\elementor-widget.php:191

actionelementor/widgets/widgets_registeredinc\elementor-widgets\elementor-widget.php:194

actionwp_enqueue_scriptsinc\elementor-widgets\elementor-widget.php:197

actionwp_enqueue_scriptsinc\elementor-widgets\elementor-widget.php:441

actionadmin_enqueue_scriptsinc\fashe-meta\fashe-meta-config.php:15

actionadd_meta_boxesinc\fashe-meta\fashe-meta-config.php:22

actionsave_postinc\fashe-meta\fashe-meta-config.php:152

actionsave_postinc\fashe-meta\fashe-meta-config.php:180

filterwpcf7_default_templateinc\functions.php:291

actionwidgets_initinc\sidebar-widgets\newsletter-widget.php:128

Maintenance & Trust

Fashe Companion Maintenance & Trust

Maintenance Signals

WordPress version tested5.1.22

Last updatedFeb 15, 2019

PHP min version5.6

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Fashe Companion Alternatives

Mosh Companion

mosh-companion

Mosh Companion is a companion plugin for Companion WordPress theme by Colorlib.com.

10 No CVEs

Shapely Companion

shapely-companion

Shapely Companion is a companion plugin for Shapely WordPress theme by Colorlib.com.

10K 1 CVE

Blesk Companion

blesk-companion

Blesk Companion is a companion plugin for Blesk WordPress theme by Colorlib.com.

10 No CVEs

Hester Core

hester-core

100

The official companion plugin for Peregrine Themes. Adds widgets, customization options, Elementor widgets, and demo import features.

10K No CVEs

Beni Demo

beni-demo

Beni demo is a companion plugin for MobeenRaheem's themes.

10 No CVEs

Developer Profile

Fashe Companion Developer Profile

colorlibplugins

11 plugins · 420K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

747 days

View full developer profile

Detection Fingerprints

How We Detect Fashe Companion

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/fashe-companion/css/demo-import.css/wp-content/plugins/fashe-companion/inc/demo-data/screen-image.png

Version Parameters

fashe-companion/css/demo-import.css?ver=fashe-companion/inc/demo-data/fashe-demo.xmlfashe-companion/inc/demo-data/fashe-widgets-demo.jsonfashe-companion/inc/demo-data/fashe-customizer.dat

HTML / DOM Fingerprints

CSS Classes

fashe_companion_admin_notice

Data Attributes

data-demo-image-url

FAQ

Fashe Companion Security & Risk Analysis

Is Fashe Companion Safe to Use in 2026?

Generally Safe

Key Concerns

Fashe Companion Security Vulnerabilities

Fashe Companion Release Timeline

Fashe Companion Code Analysis

Output Escaping

Fashe Companion Attack Surface

Fashe Companion Maintenance & Trust

Maintenance Signals

Community Trust

Fashe Companion Alternatives

Mosh Companion

Shapely Companion

Blesk Companion

Hester Core

Beni Demo

Fashe Companion Developer Profile

How We Detect Fashe Companion

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Fashe Companion