WP-Safety

FrontBlocks for Gutenberg/GeneratePress Security & Risk Analysis

wordpress.org/plugins/frontblocks

Plugin extending Gutenberg and GeneratePress with carousel, slider, animations, sticky columns, edge alignment and post insertion capabilities.

300 active installs v1.3.3 PHP 7.0+ WP 5.0+ Updated Mar 2, 2026
carruselgeneratepressgutenberglightweightslider
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is FrontBlocks for Gutenberg/GeneratePress Safe to Use in 2026?

Generally Safe

Score 100/100

FrontBlocks for Gutenberg/GeneratePress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "frontblocks" plugin version 1.3.3 exhibits a generally strong security posture based on this static analysis. The plugin demonstrates good security practices by implementing prepared statements for all SQL queries and ensuring a high percentage of output is properly escaped, minimizing the risk of cross-site scripting (XSS) vulnerabilities. The absence of external HTTP requests and bundled libraries further reduces the potential attack surface. The plugin also has a clean vulnerability history with no recorded CVEs, suggesting a history of secure development and maintenance.

However, there are a few areas that warrant attention. While the attack surface is relatively small, the presence of two AJAX handlers, even if currently protected by authentication checks, represents potential entry points that require diligent security. The file operation, though only one, should be thoroughly reviewed to ensure it's handled securely and doesn't introduce vulnerabilities. The analysis did not reveal any critical or high-severity taint flows, which is a positive sign.

In conclusion, "frontblocks" v1.3.3 appears to be a well-developed plugin with a strong emphasis on secure coding practices, particularly regarding SQL and output handling. The lack of historical vulnerabilities is a significant strength. The identified areas for attention, specifically the AJAX handlers and file operations, are manageable risks that can be mitigated with careful ongoing development and regular security audits.

Key Concerns

  • AJAX handlers present, requires review
  • One file operation, requires review
  • 86% output properly escaped (14% unescaped)
Vulnerabilities
None known

FrontBlocks for Gutenberg/GeneratePress Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

FrontBlocks for Gutenberg/GeneratePress Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
49
312 escaped
Nonce Checks
6
Capability Checks
4
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

86% escaped361 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
render_page (includes\Admin\Settings.php:642)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

FrontBlocks for Gutenberg/GeneratePress Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 2

authwp_ajax_frbl_search_postsincludes\Frontend\InsertPost.php:37
noprivwp_ajax_frbl_search_postsincludes\Frontend\InsertPost.php:38

Shortcodes 2

[frontblocks_reading_time] includes\Frontend\ReadingTime.php:31
[frontblocks_testimonials_carousel] includes\Frontend\Testimonials.php:47
WordPress Hooks 89
actionplugins_loadedfrontblocks.php:41
actionadmin_initfrontblocks.php:65
actionadmin_menuincludes\Admin\Settings.php:169
actionadmin_initincludes\Admin\Settings.php:170
actionadmin_enqueue_scriptsincludes\Admin\Settings.php:171
actionadmin_headincludes\Admin\Settings.php:172
actionadmin_initincludes\Admin\Settings.php:441
actionwp_enqueue_scriptsincludes\Frontend\Animations.php:35
actionenqueue_block_editor_assetsincludes\Frontend\Animations.php:36
actionenqueue_block_editor_assetsincludes\Frontend\Animations.php:37
filterrender_blockincludes\Frontend\Animations.php:38
actionwp_enqueue_scriptsincludes\Frontend\BackButton.php:28
actionwp_footerincludes\Frontend\BackButton.php:29
actioninitincludes\Frontend\BlockPatterns.php:23
actioninitincludes\Frontend\BlockPatterns.php:24
actionenqueue_block_editor_assetsincludes\Frontend\Carousel.php:35
actionenqueue_block_assetsincludes\Frontend\Carousel.php:36
filterrender_block_generateblocks/gridincludes\Frontend\Carousel.php:37
filterrender_block_generateblocks/elementincludes\Frontend\Carousel.php:38
filterrender_block_core/groupincludes\Frontend\Carousel.php:39
actioninitincludes\Frontend\Carousel.php:40
filtergenerateblocks_blocks_registered_blockincludes\Frontend\Carousel.php:276
actionenqueue_block_editor_assetsincludes\Frontend\Carousel.php:284
actionenqueue_block_editor_assetsincludes\Frontend\ContainerEdgeAlignment.php:28
actionwp_enqueue_scriptsincludes\Frontend\ContainerEdgeAlignment.php:29
filterrender_blockincludes\Frontend\ContainerEdgeAlignment.php:30
actioninitincludes\Frontend\Counter.php:23
actionenqueue_block_editor_assetsincludes\Frontend\Counter.php:24
filterrender_blockincludes\Frontend\Counter.php:25
actionwp_footerincludes\Frontend\Counter.php:26
actioninitincludes\Frontend\Events.php:47
actioninitincludes\Frontend\Events.php:48
actionadd_meta_boxesincludes\Frontend\Events.php:51
actionsave_post_eventincludes\Frontend\Events.php:52
actionadd_meta_boxesincludes\Frontend\Events.php:55
actionsave_postincludes\Frontend\Events.php:56
actionwp_enqueue_scriptsincludes\Frontend\FluidTypography.php:50
actionwp_headincludes\Frontend\FluidTypography.php:71
actionwp_enqueue_scriptsincludes\Frontend\Gallery.php:35
actionenqueue_block_editor_assetsincludes\Frontend\Gallery.php:36
filterrender_block_core/galleryincludes\Frontend\Gallery.php:37
actioninitincludes\Frontend\Gallery.php:38
filterregister_block_type_argsincludes\Frontend\Gallery.php:169
actionenqueue_block_editor_assetsincludes\Frontend\Gallery.php:177
actionwp_enqueue_scriptsincludes\Frontend\GravityFormsInline.php:37
actionenqueue_block_editor_assetsincludes\Frontend\GravityFormsInline.php:38
filterrender_blockincludes\Frontend\GravityFormsInline.php:39
actioninitincludes\Frontend\GravityFormsInline.php:40
actionenqueue_block_editor_assetsincludes\Frontend\GravityFormsInline.php:147
actioninitincludes\Frontend\Headline.php:25
actionenqueue_block_editor_assetsincludes\Frontend\Headline.php:26
actionwp_enqueue_scriptsincludes\Frontend\Headline.php:27
filtergenerateblocks_attr_headlineincludes\Frontend\Headline.php:28
filtergenerateblocks_attr_textincludes\Frontend\Headline.php:29
actionwp_enqueue_scriptsincludes\Frontend\InsertPost.php:35
actionenqueue_block_editor_assetsincludes\Frontend\InsertPost.php:36
actioninitincludes\Frontend\InsertPost.php:39
filterrender_block_generateblocks/gridincludes\Frontend\InsertPost.php:40
actioninitincludes\Frontend\InsertPost.php:41
filtergenerateblocks_blocks_registered_blockincludes\Frontend\InsertPost.php:252
actionenqueue_block_editor_assetsincludes\Frontend\InsertPost.php:259
actioninitincludes\Frontend\ProductCategories.php:28
actioninitincludes\Frontend\ProductCategories.php:29
actionenqueue_block_editor_assetsincludes\Frontend\ProductCategories.php:30
actionwp_enqueue_scriptsincludes\Frontend\ProductCategories.php:31
actionrest_api_initincludes\Frontend\ProductCategories.php:32
actionwp_enqueue_scriptsincludes\Frontend\ReadingProgress.php:26
actionwp_footerincludes\Frontend\ReadingProgress.php:27
actioninitincludes\Frontend\ReadingTime.php:28
actionenqueue_block_editor_assetsincludes\Frontend\ReadingTime.php:29
actionwp_enqueue_scriptsincludes\Frontend\ReadingTime.php:30
actionwp_enqueue_scriptsincludes\Frontend\ShapeAnimations.php:37
actionenqueue_block_editor_assetsincludes\Frontend\ShapeAnimations.php:38
actionenqueue_block_editor_assetsincludes\Frontend\ShapeAnimations.php:39
filterrender_blockincludes\Frontend\ShapeAnimations.php:40
actioninitincludes\Frontend\StackedImages.php:28
actionenqueue_block_editor_assetsincludes\Frontend\StackedImages.php:29
actionwp_enqueue_scriptsincludes\Frontend\StackedImages.php:30
actionwp_enqueue_scriptsincludes\Frontend\StickyColumn.php:35
actionenqueue_block_editor_assetsincludes\Frontend\StickyColumn.php:36
filterrender_block_generateblocks/gridincludes\Frontend\StickyColumn.php:37
actioninitincludes\Frontend\StickyColumn.php:38
filtergenerateblocks_blocks_registered_blockincludes\Frontend\StickyColumn.php:122
actionenqueue_block_editor_assetsincludes\Frontend\StickyColumn.php:130
actioninitincludes\Frontend\Testimonials.php:44
actionadd_meta_boxesincludes\Frontend\Testimonials.php:45
actionsave_postincludes\Frontend\Testimonials.php:46
actionwp_enqueue_scriptsincludes\Frontend\Testimonials.php:48
actionwp_enqueue_scriptsincludes\Plugin_Main.php:58
Maintenance & Trust

FrontBlocks for Gutenberg/GeneratePress Maintenance & Trust

Maintenance Signals

WordPress version tested7.0
Last updatedMar 2, 2026
PHP min version7.0
Downloads6K

Community Trust

Rating100/100
Number of ratings2
Active installs300
Alternatives

FrontBlocks for Gutenberg/GeneratePress Alternatives

Carousel Block – Responsive Image and Content Carousel

Carousel Block – Responsive Image and Content Carousel

b-carousel-block

A
99

Create stunning carousels effortlessly with the Carousel Block. Showcase your images in an elegant carousel directly within the Gutenberg editor.

6K 1 CVE
bSlider – Create Responsive Image, Post, Product, and Video Sliders

bSlider – Create Responsive Image, Post, Product, and Video Sliders

b-slider

A
92

bSlider is a WordPress slider plugin that lets you create responsive image, post, product, and video carousels using the Gutenberg block & shortcode.

6K 7 CVEs
Slider Blocks

Slider Blocks

slider-blocks

A
99

Slider Blocks is a WordPress Slider Block Plugin that allows you to create a slider or carousel with both static and dyanmic content.

5K 1 CVE
LIQUID BLOCKS – Slider, Carousel, Accordion

LIQUID BLOCKS – Slider, Carousel, Accordion

liquid-blocks

A
91

This plugin extends the block editor.

4K 1 CVE
All In One Lightbox – Display Images, Audio, and Video in Popups

All In One Lightbox – Display Images, Audio, and Video in Popups

lightbox-block

A
99

Lightbox Block lets you display images, audio, video, and custom content in responsive lightbox galleries or media popups.

3K 1 CVE
Developer Profile

FrontBlocks for Gutenberg/GeneratePress Developer Profile

closemarketing

10 plugins · 8K total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect FrontBlocks for Gutenberg/GeneratePress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/frontblocks/assets/css/frontend.css/wp-content/plugins/frontblocks/assets/js/frontend.js/wp-content/plugins/frontblocks/assets/admin/settings.css/wp-content/plugins/frontblocks/assets/admin/js/settings.js
Script Paths
/wp-content/plugins/frontblocks/assets/js/frontend.js
Version Parameters
frontblocks/assets/css/frontend.css?ver=frontblocks/assets/js/frontend.js?ver=frontblocks-admin-settings?ver=frontblocks-admin-js?ver=

HTML / DOM Fingerprints

CSS Classes
frontblocks-block-wrapper
HTML Comments
<!-- FrontBlocks: Custom Post Types Builder --><!-- FrontBlocks: End Custom Post Types Builder --><!-- FrontBlocks: Enable Full Page Scroll --><!-- FrontBlocks: End Enable Full Page Scroll -->+10 more
Data Attributes
data-frontblocks-blockdata-frontblocks-block-iddata-frontblocks-block-name
JS Globals
frontblocks_localize
FAQ

Frequently Asked Questions about FrontBlocks for Gutenberg/GeneratePress