Does Meks Smart Author Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Meks Smart Author Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Meks Smart Author Widget compatible with WordPress 6.6.5?

According to WordPress.org data, Meks Smart Author Widget 1.1.5 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

How often is Meks Smart Author Widget updated?

Meks Smart Author Widget was last updated on Jul 23, 2024. Frequent updates are generally a positive security signal.

What is Meks Smart Author Widget's security score?

Meks Smart Author Widget has a WP-Safety security score of 91/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Meks Smart Author Widget Security & Risk Analysis

wordpress.org/plugins/meks-smart-author-widget

Easily display your author/user profile info inside WordPress widget.

10K active installs v1.1.5 PHP + WP 3.0+ Updated Jul 23, 2024

authoravatarprofileuserwidget

A · Safe

CVEs total1

Unpatched0

Last CVEJul 10, 2024

Plugin page Download

Safety Verdict

Is Meks Smart Author Widget Safe to Use in 2026?

Generally Safe

Score 91/100

Meks Smart Author Widget has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jul 10, 2024Updated 1yr ago

Risk Assessment

The plugin 'meks-smart-author-widget' v1.1.5 exhibits a generally good security posture based on the static analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the potential attack surface. Furthermore, the code demonstrates strong adherence to secure coding practices with a high percentage of properly escaped output and 100% of SQL queries using prepared statements. The lack of dangerous function usage, file operations, external HTTP requests, and taint analysis findings are all positive indicators.

Key Concerns

No capability checks found
No nonce checks found
One medium severity vulnerability in history

Vulnerabilities

Meks Smart Author Widget Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-37958medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Meks Smart Author Widget <= 1.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jul 10, 2024 Patched in 1.1.5 (23d)

Code Analysis

Analyzed Mar 16, 2026

Meks Smart Author Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

132 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

93% escaped142 total outputs

Attack Surface

Meks Smart Author Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionwp_enqueue_scriptsinc\class-author-widget.php:23

actionadmin_enqueue_scriptsinc\class-author-widget.php:24

actionwidgets_initmeks-smart-author-widget.php:43

actionplugins_loadedmeks-smart-author-widget.php:50

Maintenance & Trust

Meks Smart Author Widget Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedJul 23, 2024

PHP min version

Downloads430K

Community Trust

Rating90/100

Number of ratings8

Active installs10K

Alternatives

Meks Smart Author Widget Alternatives

User Avatar – Reloaded

user-avatar-reloaded

Use any image from your WordPress Media Library as a custom user avatar or user profile picture. Add your own Default Avatar.

900 1 unpatched

WP Custom Author Image

author-image

Lets you easily add WP Custom Author Images on your site.

100 No CVEs

Footer widget bundle

footer-widget-bundle

Footer widget bundle includes company information, latest post, contact address and opening hours.

100 No CVEs

Author Bio Widget

author-bio-widget

A simple sidebar widget to display page or post author's bio and link through to other content from the author.

50 No CVEs

author_avatar

author-avatar

Add an upload field in the user profile admin to add a custom profile picture into usermeta table.

30 No CVEs

Developer Profile

Meks Smart Author Widget Developer Profile

Meks

14 plugins · 117K total installs

trust score

Avg Security Score

89/100

Avg Patch Time

236 days

View full developer profile

Detection Fingerprints

How We Detect Meks Smart Author Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/meks-smart-author-widget/css/style.css

Version Parameters

meks-smart-author-widget/css/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

mks_author_widget

Data Attributes

data-avatar_sizedata-limit_charsdata-link_textdata-link_url

FAQ