Does Gutengrow Blocks have any unpatched vulnerabilities?

No. All known vulnerabilities in Gutengrow Blocks have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Gutengrow Blocks compatible with WordPress 6.8.5?

According to WordPress.org data, Gutengrow Blocks 1.0.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Gutengrow Blocks compatible with PHP 7.2+?

Gutengrow Blocks requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Gutengrow Blocks updated?

Gutengrow Blocks was last updated on Nov 13, 2025. Frequent updates are generally a positive security signal.

What is Gutengrow Blocks's security score?

Gutengrow Blocks has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Gutengrow Blocks Security & Risk Analysis

wordpress.org/plugins/gutengrow-blocks

Transform Gutenberg into a conversion-ready builder with 20+ marketing, ecommerce, and automation blocks, Stripe-powered checkouts, and lead managemen …

10 active installs v1.0.1 PHP 7.2+ WP 6.0+ Updated Nov 13, 2025

blocksgutenberglead-capturepopupstripe

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Gutengrow Blocks Safe to Use in 2026?

Generally Safe

Score 100/100

Gutengrow Blocks has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The gutengrow-blocks plugin v1.0.1 presents a mixed security posture. On the positive side, it demonstrates good practices with a significant number of SQL queries utilizing prepared statements and a high percentage of properly escaped output. The absence of known CVEs and dangerous functions further contributes to a seemingly stable security history. However, concerns arise from its attack surface, particularly with a notable number of unprotected AJAX handlers and REST API routes. The taint analysis also revealed flows with unsanitized paths, which could indicate potential vulnerabilities if exploited, although no critical or high severity issues were flagged in this analysis. The plugin's vulnerability history being clean could indicate diligent development or simply a lack of widespread targeted attacks, but the identified code signals warrant caution. Overall, while the plugin has strengths in its core coding practices, the unsecured entry points and unsanitized path flows are key areas that require immediate attention to mitigate potential risks.

Key Concerns

AJAX handlers without authentication checks
REST API routes without permission callbacks
Taint flows with unsanitized paths
SQL queries not using prepared statements
Output not properly escaped

Vulnerabilities

None known

Gutengrow Blocks Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Gutengrow Blocks Code Analysis

Dangerous Functions

Raw SQL Queries

33 prepared

Unescaped Output

242 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

52% prepared64 total queries

Output Escaping

72% escaped336 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

10 flows3 with unsanitized paths

gutengrow_handle_checkout_redirect (stripe-checkout-templates.php:31)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

11 unprotected

Gutengrow Blocks Attack Surface

Entry Points36

Unprotected11

AJAX Handlers 12

authwp_ajax_gutengrow_get_email_submissionsadmin\email-submissions-ajax.php:87

authwp_ajax_gutengrow_export_email_submissionsadmin\email-submissions-ajax.php:181

authwp_ajax_gutengrow_delete_email_submissionadmin\email-submissions-ajax.php:259

authwp_ajax_gutengrow_create_checkoutadmin\stripe-api.php:742

noprivwp_ajax_gutengrow_create_checkoutadmin\stripe-api.php:743

authwp_ajax_gutengrow_force_db_updateincludes\class-gutengrow-db-updater.php:115

authwp_ajax_gutengrow_create_checkout_sessionstripe-subscription-checkout.php:256

noprivwp_ajax_gutengrow_create_checkout_sessionstripe-subscription-checkout.php:257

authwp_ajax_create_stripe_checkout_sessionstripe-subscription-checkout.php:260

noprivwp_ajax_create_stripe_checkout_sessionstripe-subscription-checkout.php:261

authwp_ajax_gutengrow_test_stripestripe-subscription-checkout.php:264

noprivwp_ajax_gutengrow_test_stripestripe-subscription-checkout.php:265

REST API Routes 22

GET/wp-json/gutengrow/v1/email-submissionsadmin\email-submissions-api.php:18

GET/wp-json/gutengrow/v1/email-submissions/exportadmin\email-submissions-api.php:27

GET/wp-json/gutengrow/v1/google-sheets-settingsadmin\google-sheets-api.php:14

GET/wp-json/wp/v2/gutengrow/instagram-settingsadmin\instagram-api.php:10

GET/wp-json/wp/v2/gutengrow/instagram-feedadmin\instagram-api.php:28

GET/wp-json/wp/v2/gutengrow/instagram-feedadmin\instagram-settings.php:125

GET/wp-json/gutengrow/v1/stripe-settingsadmin\stripe-api.php:14

GET/wp-json/wp/v2/gutengrow/stripe-settingsadmin\stripe-api.php:32

POST/wp-json/gutengrow/v1/stripe-test-connectionadmin\stripe-api.php:50

POST/wp-json/wp/v2/gutengrow/stripe-test-connectionadmin\stripe-api.php:59

GET/wp-json/gutengrow/v1/stripe/productsadmin\stripe-api.php:68

GET/wp-json/wp/v2/gutengrow/stripe/productsadmin\stripe-api.php:86

GET/wp-json/gutengrow/v1/stripe/testadmin\stripe-products-api.php:21

GET/wp-json/gutengrow/v1/stripe/productsadmin\stripe-products-api.php:35

POST/wp-json/gutengrow/v1/stripe/productsadmin\stripe-products-api.php:70

PUT/wp-json/gutengrow/v1/stripe/productsadmin\stripe-products-api.php:78

DELETE/wp-json/gutengrow/v1/stripe/products/(?P<id>[a-zA-Z0-9_\-]+)admin\stripe-products-api.php:87

DELETE/wp-json/gutengrow/v1/stripe/productsadmin\stripe-products-api.php:106

GET/wp-json/gutengrow/v1/blocksgutengrow-blocks.php:838

POST/wp-json/gutengrow/v1/blocks/updategutengrow-blocks.php:846

POST/wp-json/gutengrow/v1/blocks/bulk-updategutengrow-blocks.php:854

GET/wp-json/gutengrow/v1/stripe/productsgutengrow-blocks.php:864

Shortcodes 2

[gutengrow_checkout_success] stripe-checkout-templates.php:18

[gutengrow_checkout_cancel] stripe-checkout-templates.php:21

WordPress Hooks 44

actionadmin_enqueue_scriptsadmin\admin-enqueue.php:33

actionadmin_initadmin\admin.php:18

actionadmin_noticesadmin\admin.php:71

actionrest_api_initadmin\email-submissions-api.php:38

actionadmin_menuadmin\force-update.php:24

actionrest_api_initadmin\google-sheets-api.php:31

actionadmin_menuadmin\includes\menu-helper.php:25

actionrest_api_initadmin\instagram-api.php:34

actionadmin_initadmin\instagram-settings.php:30

actionadmin_menuadmin\instagram-settings.php:101

actionrest_api_initadmin\instagram-settings.php:131

actionrest_api_initadmin\stripe-api.php:103

actionrest_api_initadmin\stripe-products-api.php:114

actionadmin_noticesadmin-notice.php:56

actionadmin_noticesdisable-force-products.php:33

filterstripe_subscriptions_filter_productforce-products.php:36

actioninitforce-products.php:157

actionadmin_noticesforce-products.php:171

actionadmin_initgutengrow-blocks.php:55

actioninitgutengrow-blocks.php:336

actioninitgutengrow-blocks.php:464

actionwp_headgutengrow-blocks.php:512

actionwp_enqueue_scriptsgutengrow-blocks.php:560

actionwp_headgutengrow-blocks.php:582

actionwp_enqueue_scriptsgutengrow-blocks.php:614

filterblock_categories_allgutengrow-blocks.php:634

filterallowed_block_types_allgutengrow-blocks.php:723

actionadmin_menugutengrow-blocks.php:758

actionadmin_enqueue_scriptsgutengrow-blocks.php:801

actionadmin_enqueue_scriptsgutengrow-blocks.php:833

actionrest_api_initgutengrow-blocks.php:873

actioninitgutengrow-blocks.php:1027

actioninitgutengrow-blocks.php:1073

actionadmin_enqueue_scriptsgutengrow-blocks.php:1100

actionadmin_noticesgutengrow-blocks.php:1165

actionadmin_noticesgutengrow-blocks.php:1172

actionplugins_loadedgutengrow-blocks.php:1175

actioninitincludes\class-gutengrow-db-updater.php:96

actionplugins_loadedincludes\class-gutengrow-db.php:36

actionplugins_loadedincludes\class-gutengrow-db.php:39

actiontemplate_redirectstripe-checkout-templates.php:24

actioninitstripe-checkout-templates.php:26

actionwp_headstripe-subscription-checkout.php:50

actionwp_enqueue_scriptsstripe-subscription-checkout.php:54

Maintenance & Trust

Gutengrow Blocks Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 13, 2025

PHP min version7.2

Downloads609

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Gutengrow Blocks Alternatives

Content Blocks Builder – Create blocks, repeater blocks with carousel, grid, popup layouts

content-blocks-builder

Group core blocks into containers or repeaters to create layouts like grid, carousel, popup, accordion all in the Block Editor. Fast. Easy.

1K 1 CVE

ComboBlocks — Block Library & Page Builder

combo-blocks

100

Landing Page Builder, Blog Builder, eCommerce Builder, Niche Site Builder, News Site Builder and More.

100 No CVEs

Spectra Gutenberg Blocks – Website Builder for the Block Editor

ultimate-addons-for-gutenberg

Power-up Gutenberg with advanced blocks for faster website creation. Build your WordPress website effortlessly using powerful building blocks!

1.0M 26 CVEs

Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

kadence-blocks

20+ AI-powered Gutenberg Blocks with endless options, enabling top-notch efficiency for high-performance dynamic website creation.

600K 32 CVEs

Extendify

extendify

100

The best WordPress templates, pattern, and layout library with 1,000+ designs built for the Gutenberg block editor.

500K No CVEs

Developer Profile

Gutengrow Blocks Developer Profile

Masud Hasan

5 plugins · 60 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Gutengrow Blocks

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/gutengrow-blocks/build/popup/wp-content/plugins/gutengrow-blocks/build/content-timeline/wp-content/plugins/gutengrow-blocks/build/instagram-feed/wp-content/plugins/gutengrow-blocks/build/testimonial-slider/wp-content/plugins/gutengrow-blocks/build/faq-accordion/wp-content/plugins/gutengrow-blocks/build/content-tabs/wp-content/plugins/gutengrow-blocks/build/feature-grid/wp-content/plugins/gutengrow-blocks/build/stripe-product-manager+10 more

HTML / DOM Fingerprints

CSS Classes

wp-block-gutengrow-blocks-popupwp-block-gutengrow-blocks-content-timelinewp-block-gutengrow-blocks-instagram-feedwp-block-gutengrow-blocks-testimonial-sliderwp-block-gutengrow-blocks-faq-accordionwp-block-gutengrow-blocks-content-tabswp-block-gutengrow-blocks-feature-gridwp-block-gutengrow-blocks-stripe-product-manager+28 more

Data Attributes

data-gutengrow-block-type

JS Globals

gutengrowBlocks

REST Endpoints

/wp-json/gutengrow-blocks/v1/instagram-feed/wp-json/gutengrow-blocks/v1/stripe-products/wp-json/gutengrow-blocks/v1/stripe-subscriptions/wp-json/gutengrow-blocks/v1/email-capture

FAQ