Does Kubio AI Page Builder have any unpatched vulnerabilities?

No. All known vulnerabilities in Kubio AI Page Builder have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Kubio AI Page Builder compatible with WordPress 6.9.4?

According to WordPress.org data, Kubio AI Page Builder 2.7.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Kubio AI Page Builder compatible with PHP 7.4+?

Kubio AI Page Builder requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Kubio AI Page Builder updated?

Kubio AI Page Builder was last updated on Mar 4, 2026. Frequent updates are generally a positive security signal.

What is Kubio AI Page Builder's security score?

Kubio AI Page Builder has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Kubio AI Page Builder Security & Risk Analysis

wordpress.org/plugins/kubio

Using the power of AI, Kubio gives you a head start by generating a first draft of your website, which you can further customize to your liking.

100K active installs v2.7.1 PHP 7.4+ WP 5.8+ Updated Mar 4, 2026

blocksgutenberglanding-pagepage-builderwebsite-builder

A · Safe

CVEs total4

Unpatched0

Last CVESep 18, 2025

Plugin page Download

Safety Verdict

Is Kubio AI Page Builder Safe to Use in 2026?

Generally Safe

Score 92/100

Kubio AI Page Builder has a strong security track record. Known vulnerabilities have been patched promptly.

4 known CVEsLast CVE: Sep 18, 2025Updated 1mo ago

Risk Assessment

The static analysis of Kubio v2.7.1 indicates a generally strong adherence to secure coding practices. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points is a positive sign, as is the complete use of prepared statements for SQL queries and proper output escaping. The plugin's file operations and external HTTP requests are also noted, but without further context on their implementation, their security impact is unclear.

However, the plugin's vulnerability history presents a significant concern. With four known CVEs, including one critical and three medium severity, and common vulnerability types such as Missing Authorization, Path Traversal, and Cross-site Scripting, there's a clear pattern of past security weaknesses. The fact that there are currently no unpatched vulnerabilities is a positive mitigating factor, but the historical prevalence of critical and medium severity issues suggests a recurring need for careful auditing and prompt patching.

The inclusion of Lodash as a bundled library, while common, could potentially introduce risks if not kept up-to-date and if the specific version is vulnerable. Overall, while the current version exhibits good static code hygiene, the historical vulnerability record warrants caution and ongoing vigilance.

Key Concerns

High number of historical critical/medium vulnerabilities
Presence of critical historical vulnerability
Bundled library (Lodash)

Vulnerabilities

Kubio AI Page Builder Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

3 CVEs in 2025

2025

Patched Has unpatched

Severity Breakdown

Critical

Medium

4 total CVEs

CVE-2025-8487medium · 5.4Missing Authorization

Kubio AI Page Builder <= 2.6.3 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Installation

Sep 18, 2025 Patched in 2.6.5 (1d)

CVE-2025-2294critical · 9.8Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Kubio AI Page Builder <= 2.5.1 - Unauthenticated Local File Inclusion

Mar 27, 2025 Patched in 2.5.2 (1d)

CVE-2024-13516medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Kubio AI Page Builder <= 2.3.5 - Reflected Cross-Site Scripting

Jan 17, 2025 Patched in 2.4.0 (1d)

CVE-2024-39661medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Kubio AI Page Builder <= 2.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

Aug 1, 2024 Patched in 2.2.5 (7d)

Code Analysis

Analyzed Mar 16, 2026

Kubio AI Page Builder Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Lodash

Attack Surface

Kubio AI Page Builder Attack Surface

Entry Points0

Unprotected0

Maintenance & Trust

Kubio AI Page Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 4, 2026

PHP min version7.4

Downloads1.6M

Community Trust

Rating86/100

Number of ratings66

Active installs100K

Alternatives

Kubio AI Page Builder Alternatives

Page Builder: Pagelayer – Drag and Drop website builder

pagelayer

The most advanced frontend drag & drop page builder. Pagelayer is a light weight but extremely powerful Website Builder.

400K 25 CVEs

aThemes Blocks

athemes-blocks

100

Extend the Gutenberg Block Editor with additional functionality.

7K No CVEs

Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode

coming-soon

Easy Drag & Drop Page Builder. A complete solution to create a WordPress Website, Custom Themes, Landing Pages, Coming Soon & Maintenance Mode Pages.

700K 1 unpatched

Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

kadence-blocks

20+ AI-powered Gutenberg Blocks with endless options, enabling top-notch efficiency for high-performance dynamic website creation.

600K 31 CVEs

Page Builder Gutenberg Blocks – CoBlocks

coblocks

CoBlocks is a suite of page builder WordPress blocks for Gutenberg, with 10+ new blocks and a true page builder experience with rows and columns.

300K 1 unpatched

Developer Profile

Kubio AI Page Builder Developer Profile

Extend Themes

59 plugins · 429K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

95 days

View full developer profile

Detection Fingerprints

How We Detect Kubio AI Page Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/kubio/build/editor.css/wp-content/plugins/kubio/build/editor.js/wp-content/plugins/kubio/build/styles.css/wp-content/plugins/kubio/build/styles.js/wp-content/plugins/kubio/build/frontend.css/wp-content/plugins/kubio/build/frontend.js

Script Paths

/wp-content/plugins/kubio/build/editor.js/wp-content/plugins/kubio/build/styles.js/wp-content/plugins/kubio/build/frontend.js

Version Parameters

kubio/build/editor.css?ver=kubio/build/editor.js?ver=kubio/build/styles.css?ver=kubio/build/styles.js?ver=kubio/build/frontend.css?ver=kubio/build/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

kubio-editor-contentkubio-elementkubio-blockkubio-editablekubio-page

HTML Comments

+6 more

Data Attributes

data-kubio-iddata-kubio-element-typedata-kubio-block-typedata-kubio-editable-content

JS Globals

kubioEditorkubioGlobalSettingsKubioPageBuilderKubioConfig

REST Endpoints

/wp-json/kubio/v1/settings/wp-json/kubio/v1/templates/wp-json/kubio/v1/assets

FAQ