WP-Safety

Freelance Availability Widget Security & Risk Analysis

wordpress.org/plugins/freelance-availability-widget

This plugin is a widget to show on sites run by freelancers their availability for paid work.

0 active installs v2.2.5 PHP 5.6+ WP 3.0.1+ Updated Nov 30, 2025
freelancefreelancergutenbergshortcodewidget
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Freelance Availability Widget Safe to Use in 2026?

Generally Safe

Score 100/100

Freelance Availability Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The freelance-availability-widget plugin v2.2.5 exhibits a generally positive security posture based on the static analysis. The plugin demonstrates good practices by having zero AJAX handlers and REST API routes without authentication, and all SQL queries are secured using prepared statements. Furthermore, the absence of dangerous functions, file operations, external HTTP requests, and a clean vulnerability history indicate a well-maintained and secure codebase.

However, there are areas for improvement. The plugin's output escaping is only properly implemented for 41% of outputs, which presents a moderate risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully within the remaining unescaped outputs. The lack of any recorded vulnerabilities in its history, while positive, can also mean that the plugin hasn't been subjected to extensive security scrutiny or has not encountered complex attack vectors. The absence of nonce checks and capability checks, while not directly exploitable due to the limited attack surface and lack of sensitive operations exposed, are fundamental security mechanisms that should ideally be present for comprehensive protection.

In conclusion, the plugin is strong in its handling of critical security areas like SQL injection and authentication for entry points. The primary weakness lies in insufficient output escaping, which could lead to XSS. While the clean vulnerability history is reassuring, the adherence to standard security practices like nonce and capability checks could be enhanced for greater resilience.

Key Concerns

  • Insufficient output escaping
  • Missing nonce checks
  • Missing capability checks
Vulnerabilities
None known

Freelance Availability Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Freelance Availability Widget Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
55
38 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

41% escaped93 total outputs
Attack Surface

Freelance Availability Widget Attack Surface

Entry Points2
Unprotected0

Shortcodes 2

[faw_available_date] inc\display.php:20
[faw_soon_date] inc\display.php:40
WordPress Hooks 7
actionadmin_enqueue_scriptsinc\admin-enqueue.php:9
actionadmin_enqueue_scriptsinc\enqueue.php:15
actionadmin_enqueue_scriptsinc\legacy\enqueue.php:15
actionwidgets_initinc\legacy\widget.php:212
actionadmin_menuinc\options.php:12
actionadmin_initinc\options.php:41
actioninitindex.php:35
Maintenance & Trust

Freelance Availability Widget Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedNov 30, 2025
PHP min version5.6
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Freelance Availability Widget Alternatives

Classic Widgets

Classic Widgets

classic-widgets

A
100

Enables the previous "classic" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.

2.0M No CVEs
Widget Logic

Widget Logic

widget-logic

A
95

Widget Logic lets you control on which pages widgets appear using WP's conditional tags.

100K 2 CVEs
Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets

Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets

widget-options

C
52

0ddcemmihs4a843ekhaoofzosrunf4bl Widget Options gives you super powers to control your site’s sidebar widgets and all Gutenberg blocks on pages, posts …

100K 1 unpatched
Advanced Import: One-Click Demo Import for WordPress

Advanced Import: One-Click Demo Import for WordPress

advanced-import

A
91

Advanced Import simplifies importing demo data for WordPress sites, enabling users to import posts, pages, media, widgets, customizer settings, and Gu …

90K 1 CVE
Contact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress

Contact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress

contact-form-plugin

C
67

The most powerful and user-friendly WordPress contact form plugin. Create beautiful contact forms, widgets and pages using shortcodes.

30K 1 unpatched
Developer Profile

Freelance Availability Widget Developer Profile

Rhys Wynne

13 plugins · 7K total installs

74
trust score
Avg Security Score
93/100
Avg Patch Time
476 days
View full developer profile
Detection Fingerprints

How We Detect Freelance Availability Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/freelance-availability-widget/inc/css/admin-style.css/wp-content/plugins/freelance-availability-widget/js/datepicker-script.js/wp-content/plugins/freelance-availability-widget/css/jquery-ui.min.css/wp-content/plugins/freelance-availability-widget/css/jquery-ui.structure.min.css/wp-content/plugins/freelance-availability-widget/inc/legacy/js/datepicker-script.js/wp-content/plugins/freelance-availability-widget/inc/legacy/css/jquery-ui.min.css/wp-content/plugins/freelance-availability-widget/inc/legacy/css/jquery-ui.structure.min.css
Script Paths
/wp-content/plugins/freelance-availability-widget/js/datepicker-script.js/wp-content/plugins/freelance-availability-widget/inc/legacy/js/datepicker-script.js
Version Parameters
freelance-availability-widget/js/datepicker-script.js?ver=freelance-availability-widget/inc/legacy/js/datepicker-script.js?ver=

HTML / DOM Fingerprints

Shortcode Output
[faw_available_date][faw_soon_date]
FAQ

Frequently Asked Questions about Freelance Availability Widget