WP-Safety

Grigora's Kit For Website Building Security & Risk Analysis

wordpress.org/plugins/grigora-kit

Your only requirement to create a beautiful website. Import from many prebuilt templates, or build with scratch from blocks.

200 active installs v1.4.0 PHP 7.4+ WP 5.9+ Updated Nov 21, 2022
blockblock-editorgutenbergpage-buildertemplates
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Grigora's Kit For Website Building Safe to Use in 2026?

Generally Safe

Score 85/100

Grigora's Kit For Website Building has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "grigora-kit" v1.4.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for its SQL queries and has no recorded vulnerability history, suggesting a generally well-maintained codebase. The presence of a significant number of nonce and capability checks indicates an effort to secure entry points. However, concerns arise from the static analysis. A notable portion of its attack surface, specifically 5 out of 13 AJAX handlers, lacks authentication checks, presenting a significant risk of unauthorized access or manipulation. Furthermore, the taint analysis reveals 3 flows with unsanitized paths, with one identified as high severity. This indicates potential vulnerabilities where user-supplied data could be processed in an unsafe manner, leading to unintended consequences. While the plugin doesn't have known CVEs, the identified code-level risks, particularly the unprotected AJAX handlers and unsanitized taint flows, necessitate attention and remediation to improve its overall security.

Key Concerns

  • Unprotected AJAX handlers
  • High severity unsanitized taint flow
  • Unsanitized paths in taint flows
Vulnerabilities
None known

Grigora's Kit For Website Building Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Grigora's Kit For Website Building Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
58
146 escaped
Nonce Checks
12
Capability Checks
8
File Operations
5
External Requests
5
Bundled Libraries
0

SQL Query Safety

100% prepared4 total queries

Output Escaping

72% escaped204 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

4 flows3 with unsanitized paths
grigora_get_pattern_data (inc\blocks\blocks-ajax.php:37)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
5 unprotected

Grigora's Kit For Website Building Attack Surface

Entry Points13
Unprotected5

AJAX Handlers 13

authwp_ajax_grigora_get_patterns_meta_datainc\blocks\blocks-ajax.php:67
noprivwp_ajax_grigora_get_patterns_meta_datainc\blocks\blocks-ajax.php:68
authwp_ajax_grigora_get_pattern_datainc\blocks\blocks-ajax.php:69
noprivwp_ajax_grigora_get_pattern_datainc\blocks\blocks-ajax.php:70
authwp_ajax_dismiss_admin_noticeinc\persist-admin-notices-dismissal\persist-admin-notices-dismissal.php:44
authwp_ajax_grigora_st_get_filesinc\starter-templates\ajax-helpers.php:1270
authwp_ajax_grigora_st_get_imageinc\starter-templates\ajax-helpers.php:1271
authwp_ajax_grigora_st_activate_themeinc\starter-templates\ajax-helpers.php:1272
authwp_ajax_grigora_st_check_themeinc\starter-templates\ajax-helpers.php:1273
authwp_ajax_grigora_st_activate_plugininc\starter-templates\ajax-helpers.php:1274
authwp_ajax_grigora_st_install_themeinc\starter-templates\ajax-helpers.php:1275
authwp_ajax_grigora_st_install_plugininc\starter-templates\ajax-helpers.php:1276
authwp_ajax_grigora_st_import_demoinc\starter-templates\ajax-helpers.php:1277
WordPress Hooks 29
actionadmin_initgrigora-kit.php:45
filterrender_blockinc\blocks\block-supports.php:67
actionrest_api_initinc\blocks\blocks-rest-api.php:67
filterblock_categories_allinc\blocks\class-grigora-kit-blocks.php:38
actioninitinc\blocks\class-grigora-kit-blocks.php:39
actionwp_enqueue_scriptsinc\blocks\class-grigora-kit-blocks.php:40
actionenqueue_block_editor_assetsinc\blocks\init.php:85
actionenqueue_block_editor_assetsinc\blocks\init.php:86
actionwp_enqueue_scriptsinc\blocks\init.php:87
actionadmin_post_grigora_kit_update_settingsinc\dashboard.php:176
actionadmin_enqueue_scriptsinc\dashboard.php:177
actionadmin_menuinc\init.php:37
filterbody_classinc\init.php:56
actionadmin_noticesinc\init.php:70
actionadmin_enqueue_scriptsinc\persist-admin-notices-dismissal\persist-admin-notices-dismissal.php:43
filterpand_dismiss_notice_js_urlinc\persist-admin-notices-dismissal\persist-admin-notices-dismissal.php:54
actionadmin_enqueue_scriptsinc\starter-templates\init.php:882
actionadmin_enqueue_scriptsinc\starter-templates\init.php:883
actionadmin_enqueue_scriptsinc\starter-templates\init.php:884
actionadmin_menuinc\starter-templates\init.php:885
actionadmin_initinc\starter-templates\init.php:886
actionadmin_post_grigora_template_meta_transient_resetinc\starter-templates\init.php:887
actioninitinc\table-of-contents\class-grigora-toc-metabox.php:36
filterthe_contentinc\table-of-contents\init.php:615
actionadmin_menuinc\table-of-contents\init.php:616
actionadmin_post_grigora_kit_update_toc_settingsinc\table-of-contents\init.php:617
actionwp_enqueue_scriptsinc\table-of-contents\init.php:618
actionadmin_enqueue_scriptsinc\table-of-contents\init.php:619
actiondelete_fonts_folderinc\wptt-webfont-loader.php:127

Scheduled Events 1

delete_fonts_folder
Maintenance & Trust

Grigora's Kit For Website Building Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedNov 21, 2022
PHP min version7.4
Downloads6K

Community Trust

Rating60/100
Number of ratings2
Active installs200
Alternatives

Grigora's Kit For Website Building Alternatives

Responsive Blocks – Page Builder for Blocks & Patterns

Responsive Blocks – Page Builder for Blocks & Patterns

responsive-block-editor-addons

A
95

50+ blocks to create rich sections in the Gutenberg editor. Use professional starter block patterns & templates to create websites within minutes.

4K 8 CVEs
Starter Templates – AI-Powered Templates for Elementor & Gutenberg

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

A
89

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs
Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns

Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns

essential-blocks

B
83

Gutenberg block editor with AI. 70+ Gutenberg blocks, patterns, WooCommerce blocks, post grid, gallery, menu with Gutenberg block library.

200K 28 CVEs
GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

gutenkit-blocks-addon

A
93

GutenKit – Ultimate no-code Gutenberg blocks to design stunning web pages and visually stunning posts in WordPress block editor.

70K 3 CVEs
BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library

BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library

blockart-blocks

A
96

Enhance the power of your WordPress editor with the dynamic Gutenberg blocks by BlockArt Blocks. Build any layout imaginable.

10K 3 CVEs
Developer Profile

Grigora's Kit For Website Building Developer Profile

Poper Popups & Widgets

2 plugins · 400 total installs

89
trust score
Avg Security Score
93/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Grigora's Kit For Website Building

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/grigora-kit/assets/js/motion-animations.min.js/wp-content/plugins/grigora-kit/assets/js/sticky.min.js/wp-content/plugins/grigora-kit/assets/css/blocks/button/style.min.css/wp-content/plugins/grigora-kit/assets/css/blocks/number-counter/style.min.css/wp-content/plugins/grigora-kit/assets/css/blocks/countdown/style.min.css/wp-content/plugins/grigora-kit/assets/css/blocks/google-maps/style.min.css/wp-content/plugins/grigora-kit/assets/css/blocks/icon/style.min.css/wp-content/plugins/grigora-kit/assets/css/blocks/group/style.min.css+7 more
Script Paths
/wp-content/plugins/grigora-kit/assets/js/motion-animations.min.js/wp-content/plugins/grigora-kit/assets/js/sticky.min.js
Version Parameters
grigora-kit/assets/js/motion-animations.min.js?ver=grigora-kit/assets/js/sticky.min.js?ver=grigora-kit/assets/css/blocks/button/style.min.css?ver=grigora-kit/assets/css/blocks/number-counter/style.min.css?ver=grigora-kit/assets/css/blocks/countdown/style.min.css?ver=grigora-kit/assets/css/blocks/google-maps/style.min.css?ver=grigora-kit/assets/css/blocks/icon/style.min.css?ver=grigora-kit/assets/css/blocks/group/style.min.css?ver=grigora-kit/assets/css/blocks/text/style.min.css?ver=grigora-kit/assets/css/blocks/star-rating/style.min.css?ver=grigora-kit/assets/css/blocks/scroll-to-top/style.min.css?ver=grigora-kit/assets/css/blocks/post-title/style.min.css?ver=grigora-kit/assets/css/blocks/post-excerpt/style.min.css?ver=grigora-kit/assets/css/blocks/post-taxonomy/style.min.css?ver=grigora-kit/assets/css/blocks/post-author/style.min.css?ver=

HTML / DOM Fingerprints

CSS Classes
grigora-motion-animationgrigora-sticky
Data Attributes
motionanimation_mousemotionanimation_mouse_datamotionanimation_scrollmotionanimation_scroll_datasticky
FAQ

Frequently Asked Questions about Grigora's Kit For Website Building