Does AI Powered Starter Templates by Kadence WP have any unpatched vulnerabilities?

No. All known vulnerabilities in AI Powered Starter Templates by Kadence WP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AI Powered Starter Templates by Kadence WP compatible with WordPress 6.9.4?

According to WordPress.org data, AI Powered Starter Templates by Kadence WP 2.2.14 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is AI Powered Starter Templates by Kadence WP compatible with PHP 7.4+?

AI Powered Starter Templates by Kadence WP requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AI Powered Starter Templates by Kadence WP updated?

AI Powered Starter Templates by Kadence WP was last updated on Dec 3, 2025. Frequent updates are generally a positive security signal.

What is AI Powered Starter Templates by Kadence WP's security score?

AI Powered Starter Templates by Kadence WP has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AI Powered Starter Templates by Kadence WP Security & Risk Analysis

wordpress.org/plugins/kadence-starter-templates

Build a Beautiful "performance optimized" website with ease.

200K active installs v2.2.14 PHP 7.4+ WP 6.2+ Updated Dec 3, 2025

gutenbergtemplates

A · Safe

CVEs total1

Unpatched0

Last CVEDec 1, 2022

Download

Safety Verdict

Is AI Powered Starter Templates by Kadence WP Safe to Use in 2026?

Generally Safe

Score 100/100

AI Powered Starter Templates by Kadence WP has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 1, 2022Updated 4mo ago

Risk Assessment

The "kadence-starter-templates" plugin v2.2.14 exhibits a mixed security posture. On the positive side, it demonstrates good practices in output escaping (97% proper) and SQL query preparedness (62% prepared statements), and has no currently unpatched CVEs. The absence of critical or high-severity taint flows is also a good indicator. However, several significant concerns elevate the overall risk profile. A substantial attack surface is exposed, with 10 out of 14 entry points lacking authentication or permission checks. This includes a notable number of AJAX handlers and a REST API route that are unprotected, creating potential avenues for unauthorized actions. Furthermore, the presence of the `unserialize` function, a known vector for "Deserialization of Untrusted Data" vulnerabilities, is a significant concern, especially given the plugin's historical CVE related to this very issue. Although the past CVE is not currently active, its recurrence is a distinct possibility if not handled with extreme care. The plugin's vulnerability history, while not showing current critical threats, does highlight a past "medium" severity issue related to deserialization, suggesting a recurring weakness that requires vigilant monitoring and secure coding practices. The combination of a large unprotected attack surface and the use of dangerous functions warrants a cautious approach to this plugin's deployment.

Key Concerns

Unprotected AJAX handlers
Unprotected REST API route
Dangerous function: unserialize
Past medium severity CVE
SQL queries not using prepared statements

Vulnerabilities

AI Powered Starter Templates by Kadence WP Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2022-3679medium · 6.6Deserialization of Untrusted Data

Starter Templates by Kadence WP <= 1.2.16 - Authenticated (Admin+) PHP Object Injection

Dec 1, 2022 Patched in 1.2.17 (418d)

Code Analysis

Analyzed Mar 16, 2026

AI Powered Starter Templates by Kadence WP Code Analysis

Dangerous Functions

Raw SQL Queries

13 prepared

Unescaped Output

132 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$data = unserialize( $raw, array( 'allowed_classes' => false ) );inc\class-customizer-importer.php:108

unserialize$data = unserialize( $raw, array( 'allowed_classes' => false ) );inc\class-customizer-importer.php:218

unserialize$data = unserialize( $raw, array( 'allowed_classes' => false ) );inc\class-customizer-importer.php:277

unserialize$data = @unserialize( $raw, array( 'allowed_classes' => false ) );inc\class-import-export-option.php:293

SQL Query Safety

62% prepared21 total queries

Output Escaping

97% escaped136 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

import_data (inc\class-import-export-option.php:252)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

10 unprotected

AI Powered Starter Templates by Kadence WP Attack Surface

Entry Points14

Unprotected10

AJAX Handlers 13

authwp_ajax_kadence_import_demo_dataclass-kadence-starter-templates.php:179

authwp_ajax_kadence_import_initialclass-kadence-starter-templates.php:180

authwp_ajax_kadence_import_install_pluginsclass-kadence-starter-templates.php:181

authwp_ajax_kadence_import_customizer_dataclass-kadence-starter-templates.php:182

authwp_ajax_kadence_after_import_dataclass-kadence-starter-templates.php:183

authwp_ajax_kadence_import_single_dataclass-kadence-starter-templates.php:184

authwp_ajax_kadence_remove_past_import_dataclass-kadence-starter-templates.php:185

authwp_ajax_kadence_import_subscribeclass-kadence-starter-templates.php:186

authwp_ajax_kadence_check_plugin_dataclass-kadence-starter-templates.php:187

authwp_ajax_kadence_starter_dismiss_noticeclass-kadence-starter-templates.php:188

authwp_ajax_kadence_starter_resetinc\class-import-export-option.php:91

authwp_ajax_kadence_import_get_template_datainc\class-template-database-importer.php:127

authwp_ajax_kadence_import_reload_template_datainc\class-template-database-importer.php:128

REST API Routes 1

GET/wp-json/kadence-starter-library/v1/handle_eventinc\class-starter-ai-events.php:61

WordPress Hooks 69

actioninitclass-kadence-starter-templates.php:174

actioninitclass-kadence-starter-templates.php:175

actioninitclass-kadence-starter-templates.php:176

actionadmin_noticesclass-kadence-starter-templates.php:191

actioninitclass-kadence-starter-templates.php:194

actionrest_api_initclass-kadence-starter-templates.php:195

actionkadence-starter-templates/after_importclass-kadence-starter-templates.php:197

actionkadence-starter-templates/after_importclass-kadence-starter-templates.php:199

filterplugin_action_links_kadence-starter-templates/kadence-starter-templates.phpclass-kadence-starter-templates.php:201

filterupdate_post_metadataclass-kadence-starter-templates.php:203

actionadmin_menuclass-kadence-starter-templates.php:281

actionshow_user_profileinc\class-author-meta.php:38

actionedit_user_profileinc\class-author-meta.php:39

actionpersonal_options_updateinc\class-author-meta.php:40

actionedit_user_profile_updateinc\class-author-meta.php:41

actionkadence-starter-templates/before_content_import_executioninc\class-import-actions.php:29

actionkadence-starter-templates/after_content_import_executioninc\class-import-actions.php:33

actionkadence-starter-templates/after_content_import_executioninc\class-import-actions.php:34

actionkadence-starter-templates/after_content_import_executioninc\class-import-actions.php:36

actionkadence-starter-templates/after_content_import_executioninc\class-import-actions.php:37

actionkadence-starter-templates/after_content_import_executioninc\class-import-actions.php:38

actionkadence-starter-templates/after_content_import_executioninc\class-import-actions.php:39

actionkadence-starter-templates/customizer_import_executioninc\class-import-actions.php:42

actionkadence-starter-templates/customizer_import_color_only_executioninc\class-import-actions.php:45

actionkadence-starter-templates/customizer_import_font_only_executioninc\class-import-actions.php:48

actionkadence-starter-templates/after_all_import_executioninc\class-import-actions.php:51

actionkadence-starter-templates/widget_settings_arrayinc\class-import-actions.php:54

actionkadence-starter-templates/widget_settings_arrayinc\class-import-actions.php:56

actionkadence-starter-templates/widget_settings_arrayinc\class-import-actions.php:58

actioncustomize_registerinc\class-import-export-option.php:85

actioncustomize_registerinc\class-import-export-option.php:86

actioncustomize_registerinc\class-import-export-option.php:87

actioncustomize_controls_print_scriptsinc\class-import-export-option.php:88

filtercustomize_controls_enqueue_scriptsinc\class-import-export-option.php:89

actiongive_insert_paymentinc\class-import-give.php:258

filterwxr_importer.pre_process.userinc\class-importer.php:160

filterwxr_importer.processed.terminc\class-importer.php:164

actionwxr_importer.processed.postinc\class-importer.php:165

filterwxr_importer.pre_process.postinc\class-importer.php:174

actionwxr_importer.processed.postinc\class-importer.php:178

actionwxr_importer.processed.postinc\class-importer.php:181

filterwxr_importer.pre_process.post_metainc\class-importer.php:184

filterwxr_importer.pre_process.postinc\class-importer.php:188

filterwxr_importer.pre_process.postinc\class-importer.php:191

filterintermediate_image_sizes_advancedinc\class-importer.php:199

actionkadencestartertemplates/ai/eventinc\class-starter-ai-events.php:49

actionrest_api_initinc\class-starter-ai-events.php:50

actiondelete_starter_templates_folderinc\class-template-database-importer.php:133

filterwxr_importer.pre_process.terminc\class-wxr-importer.php:32

actionadmin_menuinc\launch-guide\class-site-assist-dash.php:52

actionadmin_noticesinc\launch-guide\class-site-assist-dash.php:53

actionadmin_noticesinc\launch-guide\class-site-assist-dash.php:54

actioninitinc\launch-guide\class-site-assist-dash.php:56

actionrest_api_initinc\launch-guide\class-site-assist-dash.php:57

actionadmin_enqueue_scriptsinc\launch-guide\class-site-assist-tours.php:39

actionadmin_footerinc\launch-guide\class-site-assist-tours.php:40

filterwp_image_editorsinc\resources\Image_Downloader\WordPress_Importer.php:70

filterwp_image_editorsinc\resources\Image_Downloader\WordPress_Importer.php:119

actionshutdowninc\resources\Shutdown\Shutdown_Provider.php:28

filterstellarwp/uplink/kadence-starter-templates/prevent_update_checkkadence-starter-templates.php:64

filterstellarwp/uplink/kadence-starter-templates/api_get_base_urlkadence-starter-templates.php:65

actionplugins_loadedkadence-starter-templates.php:86

actioninitkadence-starter-templates.php:94

filterwxr_importer.pre_process.postwxr-importer\Importer.php:32

filterwxr_importer.pre_process.termwxr-importer\Importer.php:36

filterimport_post_meta_keywxr-importer\Importer.php:216

filterhttp_request_timeoutwxr-importer\Importer.php:217

filterimport_post_meta_keywxr-importer\WXRImporter.php:324

filterhttp_request_timeoutwxr-importer\WXRImporter.php:325

Scheduled Events 3

delete_starter_templates_folder

Maintenance & Trust

AI Powered Starter Templates by Kadence WP Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 3, 2025

PHP min version7.4

Downloads5.9M

Community Trust

Rating86/100

Number of ratings19

Active installs200K

Alternatives

AI Powered Starter Templates by Kadence WP Alternatives

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs

Extendify

extendify

100

The best WordPress templates, pattern, and layout library with 1,000+ designs built for the Gutenberg block editor.

500K No CVEs

Templately – Elementor & Gutenberg Template Library: 6500+ Free & Pro Ready Templates And Cloud!

templately

Templately is an AI-powered WordPress templates cloud for Elementor and Gutenberg that offers 6,500+ ready template designs for a wide range of niches

400K 6 CVEs

Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns

essential-blocks

Gutenberg block editor with AI. 70+ Gutenberg blocks, patterns, WooCommerce blocks, post grid, gallery, menu with Gutenberg block library.

200K 28 CVEs

Qi Blocks

qi-blocks

Qi Blocks is the largest collection of Gutenberg blocks developed by Qode Interactive.

60K 9 CVEs

Developer Profile

AI Powered Starter Templates by Kadence WP Developer Profile

StellarWP

26 plugins · 3.1M total installs

trust score

Avg Security Score

95/100

Avg Patch Time

462 days

View full developer profile

Detection Fingerprints

How We Detect AI Powered Starter Templates by Kadence WP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/kadence-starter-templates/assets/css/admin.css/wp-content/plugins/kadence-starter-templates/assets/js/admin.js/wp-content/plugins/kadence-starter-templates/assets/js/common.js

Script Paths

/wp-content/plugins/kadence-starter-templates/assets/js/admin.js/wp-content/plugins/kadence-starter-templates/assets/js/common.js

Version Parameters

kadence-starter-templates/assets/css/admin.css?ver=kadence-starter-templates/assets/js/admin.js?ver=kadence-starter-templates/assets/js/common.js?ver=

HTML / DOM Fingerprints

CSS Classes

kadence-starter-templates-noticekadence-starter-templates-admin-pagekadence-starter-templates-template-listkadence-starter-templates-template-item

HTML Comments

Data Attributes

data-kadence-template-iddata-kadence-template-slug

JS Globals

kadence_starter_templates_admin_params

REST Endpoints

/wp-json/kadence-starter-templates/v1/templates/wp-json/kadence-starter-templates/v1/import

FAQ