Does Hangul font nanumgothic – google have any unpatched vulnerabilities?

No. All known vulnerabilities in Hangul font nanumgothic – google have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Hangul font nanumgothic – google compatible with WordPress 4.0.0?

According to WordPress.org data, Hangul font nanumgothic – google 1.0 has been tested up to WordPress 4.0.0. Check the plugin's changelog for the latest compatibility information.

How often is Hangul font nanumgothic – google updated?

Hangul font nanumgothic – google was last updated on Nov 5, 2014. Frequent updates are generally a positive security signal.

What is Hangul font nanumgothic – google's security score?

Hangul font nanumgothic – google has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Hangul font nanumgothic – google Security & Risk Analysis

wordpress.org/plugins/hangul-font-nanumgothic-google

나눔고딕 폰트를 워드프레스에서 간편하게 사용할 수 있는 플러그인입니다.

1K active installs v1.0 PHP + WP 3.7.1+ Updated Nov 5, 2014

fontgooglegoogle-webfont-loadernanumgothicwebfont

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Hangul font nanumgothic – google Safe to Use in 2026?

Generally Safe

Score 85/100

Hangul font nanumgothic – google has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "hangul-font-nanumgothic-google" plugin v1.0 presents a mixed security posture. On the positive side, the static analysis reveals no identified entry points (AJAX, REST API, shortcodes, cron events) that are directly accessible without authentication. Furthermore, the plugin does not perform file operations or external HTTP requests, and it appears to use prepared statements exclusively for any SQL queries, which are strong indicators of good security practices. The complete absence of known vulnerabilities, including critical and high severities, in its history is also a significant strength, suggesting a generally stable and secure development history.

However, a critical concern arises from the static analysis indicating that 100% of the 21 identified output operations are not properly escaped. This represents a significant risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic content rendered by this plugin without proper sanitization could be manipulated by attackers to inject malicious scripts. Additionally, the complete lack of nonce and capability checks across all code signals a potential weakness, especially if any functionality, even if not immediately apparent from the analyzed entry points, could be triggered without proper authorization. The lack of observed taint flows, while seemingly positive, might also be a consequence of the limited attack surface analysis rather than a guarantee of absolute safety.

Key Concerns

Outputs not properly escaped
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Hangul font nanumgothic – google Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Hangul font nanumgothic – google Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped21 total outputs

Attack Surface

Hangul font nanumgothic – google Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionadmin_initclass\ex_hf_class.php:66

actionadmin_menuclass\ex_hf_class.php:67

actioninitclass\ex_hf_class.php:71

actioninitclass\ex_hf_class.php:72

actionwp_headclass\ex_hf_class.php:73

actionwp_enqueue_scriptsclass\ex_hf_tpl_class.php:27

actionwp_enqueue_scriptsclass\ex_hf_tpl_class.php:37

Maintenance & Trust

Hangul font nanumgothic – google Maintenance & Trust

Maintenance Signals

WordPress version tested4.0.0

Last updatedNov 5, 2014

PHP min version

Downloads26K

Community Trust

Rating100/100

Number of ratings1

Active installs1K

Alternatives

Hangul font nanumgothic – google Alternatives

Easy Google Fonts

easy-google-fonts

Adds google fonts to any theme without coding and integrates with the WordPress Customizer automatically for a realtime live preview.

100K No CVEs

Google Web Fonts Customizer (GWFC)

google-web-fonts-customizer-gwfc

This plugin integrates WordPress Customizer with Google Web Fonts, to add and use google fonts to any themes, no coding needed.

1K No CVEs

Supreme Google Webfonts

supreme-google-webfonts

Description: Adds all Google Webfonts into your visual editor panel when creating posts or pages. Now you have access to almost 700 universal, cross- …

1K No CVEs

TK Google Fonts GDPR Compliant

tk-google-fonts

TK Google Fonts gives you a simple and easy way to add custom google fonts to any WordPress site without complex codes. Full GDPR Compliance.

1K 2 CVEs

Ultimate Fonts

ultimate-fonts

Adds Google Fonts to your WordPress website without coding. Customize any element with support for live preview in the Customizer.

500 No CVEs

Developer Profile

Hangul font nanumgothic – google Developer Profile

iamgood

2 plugins · 2K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Hangul font nanumgothic – google

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/hangul-font-nanumgothic-google/images/hangul.png/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_lib_class.php/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_class.php/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_dir_class.php/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_tpl_class.php/wp-content/plugins/hangul-font-nanumgothic-google/css/admin.css

Script Paths

/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_lib_class.php/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_class.php/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_dir_class.php/wp-content/plugins/hangul-font-nanumgothic-google/class/ex_hf_tpl_class.php

Version Parameters

hangulfont-admin?ver=admin.css?ver=common.js?ver=

HTML / DOM Fingerprints

CSS Classes

wf-activewf-inactive

HTML Comments

 Copyright 2014 Hangul Font Nanum Gothic - Google (email : consult@iamgood.co.kr)
  This program is free software; you can redistribute it and/or modify
  it under the terms of the GNU General Public License, version 2, as
  published by the Free Software Foundation.
  This program is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  GNU General Public License for more details.
  You should have received a copy of the GNU General Public License
  along with this program; if not, write to the Free Software
  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA

Data Attributes

data-custom-font

JS Globals

WebFont

FAQ