Does IntelliWidget Per Page Custom Menus and Dynamic Content have any unpatched vulnerabilities?

No. All known vulnerabilities in IntelliWidget Per Page Custom Menus and Dynamic Content have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is IntelliWidget Per Page Custom Menus and Dynamic Content compatible with WordPress 5.2.24?

According to WordPress.org data, IntelliWidget Per Page Custom Menus and Dynamic Content 2.3.9.2 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is IntelliWidget Per Page Custom Menus and Dynamic Content compatible with PHP 5.6+?

IntelliWidget Per Page Custom Menus and Dynamic Content requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

IntelliWidget Per Page Custom Menus and Dynamic Content Security & Risk Analysis

wordpress.org/plugins/intelliwidget-per-page-featured-posts-and-menus

Display custom menus, featured posts, custom post types and other dynamic content on a per page, per post or site-wide basis.

700 active installs v2.3.9.2 PHP 5.6+ WP 4.0+ Updated Feb 10, 2020

content-awarefeatured-postnavigation-menupage-menuvertical-menu

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is IntelliWidget Per Page Custom Menus and Dynamic Content Safe to Use in 2026?

Generally Safe

Score 85/100

IntelliWidget Per Page Custom Menus and Dynamic Content has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "intelliwidget-per-page-featured-posts-and-menus" plugin version 2.3.9.2 exhibits a mixed security posture. While it benefits from a lack of historical vulnerabilities and the absence of dangerous functions or file operations, significant concerns arise from its attack surface. A disproportionately high number of AJAX handlers (9 out of 10 total entry points) lack authentication checks, creating a broad vector for potential exploitation. Taint analysis reveals some flows with unsanitized paths, though currently not rated as critical or high severity, this warrants caution as it suggests potential input handling weaknesses.

The output escaping is a notable weakness, with only 12% of outputs being properly escaped. This opens the door to Cross-Site Scripting (XSS) vulnerabilities if untrusted data is displayed without proper sanitization. The presence of only 2 nonce checks and 8 capability checks further highlights the insufficient access control mechanisms for its numerous unprotected AJAX handlers. The absence of known CVEs is a positive sign, indicating good security hygiene in past development, but the current code analysis reveals areas that need immediate attention to maintain this record.

In conclusion, the plugin has a strong foundation with no known historical vulnerabilities or critical code issues. However, the substantial number of unprotected AJAX endpoints and the low rate of proper output escaping represent significant risks that could be exploited. Addressing these identified weaknesses is crucial to bolstering the plugin's overall security and preventing potential attacks.

Key Concerns

High number of unprotected AJAX handlers
Low percentage of properly escaped output
Taint flows with unsanitized paths
Insufficient nonce checks
Limited capability checks relative to entry points

Vulnerabilities

None known

IntelliWidget Per Page Custom Menus and Dynamic Content Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

IntelliWidget Per Page Custom Menus and Dynamic Content Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

324

43 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

89% prepared9 total queries

Output Escaping

12% escaped367 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

ajax_post_get_select_menu (includes\classes\PostAdmin.php:252)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

9 unprotected

IntelliWidget Per Page Custom Menus and Dynamic Content Attack Surface

Entry Points10

Unprotected9

AJAX Handlers 9

authwp_ajax_iw_post_cdfsaveincludes\classes\PostAdmin.php:24

authwp_ajax_iw_post_saveincludes\classes\PostAdmin.php:25

authwp_ajax_iw_post_copyincludes\classes\PostAdmin.php:26

authwp_ajax_iw_post_deleteincludes\classes\PostAdmin.php:27

authwp_ajax_iw_post_addincludes\classes\PostAdmin.php:28

authwp_ajax_iw_post_menusincludes\classes\PostAdmin.php:29

authwp_ajax_iw_post_select_menuincludes\classes\PostAdmin.php:30

authwp_ajax_iw_widget_menusincludes\classes\WidgetAdmin.php:21

authwp_ajax_iw_widget_select_menuincludes\classes\WidgetAdmin.php:22

Shortcodes 1

[intelliwidget] intelliwidget.php:44

WordPress Hooks 39

actionintelliwidget_form_all_beforeincludes\classes\Form.php:17

actionintelliwidget_form_post_listincludes\classes\Form.php:18

actionintelliwidget_form_post_listincludes\classes\Form.php:19

actionintelliwidget_form_nav_menuincludes\classes\Form.php:20

actionintelliwidget_form_tax_menuincludes\classes\Form.php:21

actionintelliwidget_form_all_afterincludes\classes\Form.php:22

actionintelliwidget_post_selection_menusincludes\classes\Form.php:23

filterintelliwidget_extension_settingsincludes\classes\Post.php:20

actionload-post.phpincludes\classes\PostAdmin.php:21

actionload-post-new.phpincludes\classes\PostAdmin.php:22

actionsave_postincludes\classes\PostAdmin.php:23

actionadd_meta_boxesincludes\classes\PostAdmin.php:35

actionadd_meta_boxesincludes\classes\PostAdmin.php:36

filterdefault_hidden_meta_boxesincludes\classes\PostAdmin.php:74

actionintelliwidget_post_selection_menusincludes\classes\PostAdmin.php:377

actionintelliwidget_action_post_listincludes\classes\Widget.php:29

actionintelliwidget_action_nav_menuincludes\classes\Widget.php:30

actionintelliwidget_action_tax_menuincludes\classes\Widget.php:31

actionintelliwidget_above_contentincludes\classes\Widget.php:32

actionintelliwidget_below_contentincludes\classes\Widget.php:33

filterintelliwidget_before_widgetincludes\classes\Widget.php:34

filterintelliwidget_titleincludes\classes\Widget.php:35

filterintelliwidget_custom_textincludes\classes\Widget.php:36

filterintelliwidget_classesincludes\classes\Widget.php:37

filterintelliwidget_contentincludes\classes\Widget.php:38

filterintelliwidget_trim_excerptincludes\classes\Widget.php:39

filtertheme_mod_nav_menu_locationsincludes\classes\Widget.php:41

actionload-widgets.phpincludes\classes\WidgetAdmin.php:20

actionplugins_loadedintelliwidget.php:45

actionafter_setup_themeintelliwidget.php:46

actionclean_term_cacheintelliwidget.php:47

actioninitintelliwidget.php:49

actionwidgets_initintelliwidget.php:51

filterpost_linkintelliwidget.php:53

filterthe_titleintelliwidget.php:55

actionwp_enqueue_scriptsintelliwidget.php:61

actionadmin_noticesintelliwidget.php:79

actionnetwork_admin_noticesintelliwidget.php:80

actionadmin_initintelliwidget.php:82

Maintenance & Trust

IntelliWidget Per Page Custom Menus and Dynamic Content Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedFeb 10, 2020

PHP min version5.6

Downloads80K

Community Trust

Rating94/100

Number of ratings20

Active installs700

Alternatives

IntelliWidget Per Page Custom Menus and Dynamic Content Alternatives

Purify WordPress Menus

purify-wp-menues

100

Improve page speed by letting slim down the HTML code of menus and category lists to the only CSS classes and attributes your theme needs.

300 No CVEs

WP Home Page Menu

wp-home-page-menu

This plugin displays home page menu in the navigation bar which can be configured easily from the admin area.

100 1 CVE

Advanced Vertical Menu

advanced-sidebar-nav

100

Create beautiful vertical navigation menus anywhere on your site! Features both modern block editor support and legacy widget compatibility.

10 No CVEs

Advanced Sidebar Menu

advanced-sidebar-menu

100

Fully automatic sidebar menus.

10K No CVEs

WP Mobile Bottom Menu

mobile-bottom-menu-for-wp

Smooth Navigation for Mobile. Create an Eye-Catching Sticky Bottom Menu with Limitless Customization Options.

10K 1 CVE

Developer Profile

IntelliWidget Per Page Custom Menus and Dynamic Content Developer Profile

lilaeamedia

3 plugins · 301K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect IntelliWidget Per Page Custom Menus and Dynamic Content

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/intelliwidget-per-page-featured-posts-and-menus/css/intelliwidget.css/wp-content/plugins/intelliwidget-per-page-featured-posts-and-menus/js/intelliwidget.js

Script Paths

/wp-content/plugins/intelliwidget-per-page-featured-posts-and-menus/js/intelliwidget.js

Version Parameters

/wp-content/plugins/intelliwidget-per-page-featured-posts-and-menus/css/intelliwidget.css?ver=/wp-content/plugins/intelliwidget-per-page-featured-posts-and-menus/js/intelliwidget.js?ver=

HTML / DOM Fingerprints

CSS Classes

intelliwidgetintelliwidget-widget-wrapper

HTML Comments

Data Attributes

data-intelliwidget-iddata-intelliwidget-type

JS Globals

IntelliWidget

Shortcode Output

[intelliwidget]

FAQ