Does HQ Widgets for Elementor have any unpatched vulnerabilities?

No. All known vulnerabilities in HQ Widgets for Elementor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is HQ Widgets for Elementor compatible with WordPress 6.0.11?

According to WordPress.org data, HQ Widgets for Elementor 1.0.15 has been tested up to WordPress 6.0.11. Check the plugin's changelog for the latest compatibility information.

Is HQ Widgets for Elementor compatible with PHP 7.2+?

HQ Widgets for Elementor requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is HQ Widgets for Elementor updated?

HQ Widgets for Elementor was last updated on Jun 29, 2022. Frequent updates are generally a positive security signal.

What is HQ Widgets for Elementor's security score?

HQ Widgets for Elementor has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

HQ Widgets for Elementor Security & Risk Analysis

wordpress.org/plugins/hq-widgets-for-elementor

HQ Widgets for Elementor is a forever free plugin with a beautiful and intuitive widget for Elementor page builder.

200 active installs v1.0.15 PHP 7.2+ WP 5.3+ Updated Jun 29, 2022

contact-form-7-for-elementorhqthememenu-for-elementorwidgets-for-elementorwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is HQ Widgets for Elementor Safe to Use in 2026?

Generally Safe

Score 85/100

HQ Widgets for Elementor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The plugin "hq-widgets-for-elementor" v1.0.15 demonstrates a generally strong security posture with robust practices in place. The static analysis reveals no identified dangerous functions, no raw SQL queries, and a reasonable output escaping rate of 54%. Crucially, all identified entry points, including AJAX handlers, lack unauthenticated access, and there's a good use of nonce and capability checks. The absence of any known CVEs or historical vulnerabilities further reinforces its current secure state.

Despite the positive indicators, the 54% proper output escaping rate suggests a potential area for improvement. While no specific issues were flagged by taint analysis, a lower escaping rate could expose the plugin to cross-site scripting (XSS) vulnerabilities. The presence of only one AJAX handler, while itself protected, still represents an attack vector. The overall lack of historical vulnerabilities is a positive sign, indicating consistent security development, but vigilance is always recommended.

In conclusion, "hq-widgets-for-elementor" v1.0.15 appears to be a well-secured plugin with good foundational security practices. The primary area to monitor is the output escaping, as improving this percentage would further harden the plugin against potential XSS attacks. The current lack of known vulnerabilities and protected entry points are significant strengths.

Key Concerns

Output escaping below 100%

Vulnerabilities

None known

HQ Widgets for Elementor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

HQ Widgets for Elementor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

102 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

54% escaped188 total outputs

Attack Surface

HQ Widgets for Elementor Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_hq_notices_dismissinc\admin-notifications.php:35

WordPress Hooks 39

actionplugins_loadedhq-widgets-for-elementor.php:123

actioninithq-widgets-for-elementor.php:134

actionelementor/core/files/clear_cachehq-widgets-for-elementor.php:144

actionelementor/inithq-widgets-for-elementor.php:145

actionelementor/widgets/widgets_registeredhq-widgets-for-elementor.php:146

actionelementor/editor/after_enqueue_styleshq-widgets-for-elementor.php:147

actionelementor/frontend/after_register_styleshq-widgets-for-elementor.php:148

actionelementor/frontend/after_register_scriptshq-widgets-for-elementor.php:149

actionelementor/controls/controls_registeredhq-widgets-for-elementor.php:150

filterelementor/editor/localize_settingshq-widgets-for-elementor.php:152

filterhqt/widgets_control/get_allhq-widgets-for-elementor.php:154

filterpre_handle_404hq-widgets-for-elementor.php:155

actionadmin_enqueue_scriptsinc\admin\admin-init.php:34

actionadmin_initinc\admin\admin-init.php:35

actionelementor/editor/before_enqueue_scriptsinc\admin\admin-init.php:36

filterhqt/update/widget/optionsinc\admin\admin-settings.php:41

actionadmin_initinc\admin\admin-settings.php:42

actionadmin_menuinc\admin\admin-settings.php:43

filteradmin_footer_textinc\admin\admin-settings.php:45

actionadmin_noticesinc\admin-notifications.php:33

actionadmin_enqueue_scriptsinc\admin-notifications.php:34

filterget_the_archive_titleinc\widget\theme\archive-title.php:171

filterwp_nav_menu_objectsinc\widget\theme\nav-menu.php:951

filterwp_nav_menu_itemsinc\widget\theme\nav-menu.php:952

filterwoocommerce_product_add_to_cart_textinc\widget\woocommerce\archive-product-add-to-cart.php:421

filterwoocommerce_dropdown_variation_attribute_options_argsinc\widget\woocommerce\product-add-to-cart.php:854

filterwoocommerce_get_stock_htmlinc\widget\woocommerce\product-add-to-cart.php:910

filterwoocommerce_product_single_add_to_cart_textinc\widget\woocommerce\product-add-to-cart.php:911

filteresc_htmlinc\widget\woocommerce\product-add-to-cart.php:912

filterwoocommerce_product_additional_information_headinginc\widget\woocommerce\product-additional-information.php:259

filterwoocommerce_subcategory_count_htmlinc\widget\woocommerce\product-categories-grid.php:574

filterwoocommerce_product_tabsinc\widget\woocommerce\product-data-tabs.php:1617

actionwoocommerce_review_before_comment_metainc\widget\woocommerce\product-data-tabs.php:1625

actionwoocommerce_review_metainc\widget\woocommerce\product-data-tabs.php:1626

actionwoocommerce_review_before_comment_textinc\widget\woocommerce\product-data-tabs.php:1627

filtercomments_templateinc\widget\woocommerce\product-reviews.php:1169

actionwoocommerce_review_before_comment_metainc\widget\woocommerce\product-reviews.php:1173

actionwoocommerce_review_metainc\widget\woocommerce\product-reviews.php:1174

actionwoocommerce_review_before_comment_textinc\widget\woocommerce\product-reviews.php:1175

Maintenance & Trust

HQ Widgets for Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11

Last updatedJun 29, 2022

PHP min version7.2

Downloads11K

Community Trust

Rating100/100

Number of ratings1

Active installs200

Alternatives

HQ Widgets for Elementor Alternatives

Xpro Addons — 140+ Widgets for Elementor

xpro-elementor-addons

Get Premium level 50+ Free Elementor Widgets, 10+ Free Elementor Extensions, 500+ Free Themes & Templates for Elementor.

30K 16 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 6 CVEs

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Developer Profile

HQ Widgets for Elementor Developer Profile

HQWebS

1 plugin · 200 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect HQ Widgets for Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/hq-widgets-for-elementor/assets/css/elementor-editor.css/wp-content/plugins/hq-widgets-for-elementor/assets/css/hq-icons.css/wp-content/plugins/hq-widgets-for-elementor/assets/css/jquery.swiper.min.css/wp-content/plugins/hq-widgets-for-elementor/assets/js/mobile-detect.min.js/wp-content/plugins/hq-widgets-for-elementor/assets/js/isotope.pkgd.min.js/wp-content/plugins/hq-widgets-for-elementor/assets/js/jquery.infinitescroll.js/wp-content/plugins/hq-widgets-for-elementor/assets/js/jquery.swiper.min.js/wp-content/plugins/hq-widgets-for-elementor/assets/js/widgets.js

Script Paths

assets/css/elementor-editor.cssassets/css/hq-icons.cssassets/css/jquery.swiper.min.cssassets/js/mobile-detect.min.jsassets/js/isotope.pkgd.min.jsassets/js/jquery.infinitescroll.js+2 more

Version Parameters

hq-widgets-for-elementor/assets/css/elementor-editor.css?ver=hq-widgets-for-elementor/assets/css/hq-icons.css?ver=hq-widgets-for-elementor/assets/css/jquery.swiper.min.css?ver=hq-widgets-for-elementor/assets/js/mobile-detect.min.js?ver=hq-widgets-for-elementor/assets/js/isotope.pkgd.min.js?ver=hq-widgets-for-elementor/assets/js/jquery.infinitescroll.js?ver=hq-widgets-for-elementor/assets/js/jquery.swiper.min.js?ver=hq-widgets-for-elementor/assets/js/widgets.js?ver=

HTML / DOM Fingerprints

CSS Classes

elementor-hq-widgetselementor-hq-woo-widgets

FAQ