WP-Safety

Meteorite Extensions Security & Risk Analysis

wordpress.org/plugins/meteorite-extensions

Meteorite Extensions registers many widgets and extends support for the page builder by SiteOrigin and Elementor for the Meteorite Theme by Terra Them …

200 active installs v1.10.1 PHP + WP 4.5+ Updated Oct 29, 2023
extensionsmeteorite
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Meteorite Extensions Safe to Use in 2026?

Generally Safe

Score 85/100

Meteorite Extensions has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The "meteorite-extensions" plugin v1.10.1 exhibits a generally good security posture based on the static analysis. The absence of known CVEs and the plugin's clean vulnerability history suggest a history of responsible development and patching. The code signals indicate a commendable effort in implementing security measures, with all SQL queries using prepared statements and a solid number of nonce and capability checks. However, a significant concern arises from the output escaping, where only 41% of outputs are properly escaped. This could leave the plugin vulnerable to cross-site scripting (XSS) attacks if user-supplied data is rendered without sufficient sanitization. While the attack surface appears small and protected, the unescaped output remains the most prominent risk.

Despite the lack of critical taint flows and dangerous functions, the less than ideal output escaping is a weakness that could be exploited. The plugin's history of no vulnerabilities is a positive indicator, implying a dedicated security focus from the developers. However, relying solely on past performance is not a foolproof security strategy. The developer should prioritize addressing the unescaped output to further strengthen the plugin's security profile and mitigate potential XSS vulnerabilities.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

Meteorite Extensions Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Meteorite Extensions Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
1 prepared
Unescaped Output
1047
716 escaped
Nonce Checks
3
Capability Checks
16
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared1 total queries

Output Escaping

41% escaped1763 total outputs
Data Flows
All sanitized

Data Flow Analysis

3 flows
<page-options> (inc\page-options.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Meteorite Extensions Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 40
filterpt-ocdi/import_filesinc\admin\demo-import-setup.php:56
actionpt-ocdi/after_importinc\admin\demo-import-setup.php:83
filterpt-ocdi/disable_pt_brandinginc\admin\demo-import-setup.php:88
filterpt-ocdi/plugin_intro_textinc\admin\demo-import-setup.php:106
actioncustomize_registerinc\customizer.php:111
filterterra_themes_employees_rewrite_sluginc\functions.php:19
filterterra_themes_clients_rewrite_sluginc\functions.php:25
filterterra_themes_projects_rewrite_sluginc\functions.php:31
filterterra_themes_testimonials_rewrite_sluginc\functions.php:37
filterterra_themes_slides_rewrite_sluginc\functions.php:43
filtermeteorite_woocommerce_delimiterinc\functions.php:49
filtersiteorigin_panels_widgetsinc\page-builder.php:49
filtersiteorigin_panels_widget_dialog_tabsinc\page-builder.php:61
filtersiteorigin_panels_row_style_fieldsinc\page-builder.php:166
filtersiteorigin_panels_widget_style_fieldsinc\page-builder.php:204
filtersiteorigin_panels_widget_style_attributesinc\page-builder.php:225
filtersiteorigin_panels_row_style_attributesinc\page-builder.php:295
filtersiteorigin_panels_row_style_fieldsinc\page-builder.php:307
filtersiteorigin_premium_upgrade_teaserinc\page-builder.php:308
actionload-post.phpinc\page-options.php:17
actionload-post-new.phpinc\page-options.php:18
actionadd_meta_boxesinc\page-options.php:24
actionsave_postinc\page-options.php:25
actionload-post.phpinc\post-options.php:17
actionload-post-new.phpinc\post-options.php:18
actionadd_meta_boxesinc\post-options.php:24
actionsave_postinc\post-options.php:25
actionload-post.phpinc\project-options.php:17
actionload-post-new.phpinc\project-options.php:18
actionadd_meta_boxesinc\project-options.php:24
actionsave_postinc\project-options.php:25
actionplugins_loadedmeteorite-extensions.php:37
actionplugins_loadedmeteorite-extensions.php:38
actionsetup_thememeteorite-extensions.php:39
actionadmin_noticesmeteorite-extensions.php:40
actionwidgets_initmeteorite-extensions.php:41
actionadmin_enqueue_scriptsmeteorite-extensions.php:42
actionelementor/editor/after_enqueue_scriptsmeteorite-extensions.php:45
actionelementor/frontend/after_enqueue_scriptsmeteorite-extensions.php:46
actionplugins_loadedmeteorite-extensions.php:159
Maintenance & Trust

Meteorite Extensions Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17
Last updatedOct 29, 2023
PHP min version
Downloads11K

Community Trust

Rating80/100
Number of ratings1
Active installs200
Alternatives

Meteorite Extensions Alternatives

Livemesh Addons by Elementor

Livemesh Addons by Elementor

addons-for-elementor

A
94

Elementor Addons that saves time with multiple ready-to-use drag and drop styles for 30+ essential widgets built for Elementor page builder.

40K 18 CVEs
WPBakery Page Builder Addons by Livemesh

WPBakery Page Builder Addons by Livemesh

addons-for-visual-composer

B
72

A collection of 25+ beautifully designed premium quality addons or extensions for WPBakery Page Builder.

20K 1 unpatched
Ultimate Addons for Beaver Builder – Lite

Ultimate Addons for Beaver Builder – Lite

ultimate-addons-for-beaver-builder-lite

A
97

Extend Beaver Builder with powerful modules and ready-made templates to build stunning WordPress websites faster.

20K 8 CVEs
LA-Studio Element Kit for Elementor

LA-Studio Element Kit for Elementor

lastudio-element-kit

B
83

The advanced addons for Elementor

10K 18 CVEs
aThemes Addons for Elementor

aThemes Addons for Elementor

athemes-addons-for-elementor-lite

A
92

A collection of 30+ essential Elementor addons that let you create galleries, sliders, calls to action, forms, pricing tables, animations, and more.

8K 7 CVEs
Developer Profile

Meteorite Extensions Developer Profile

terrathemes

2 plugins · 400 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Meteorite Extensions

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/meteorite-extensions/inc/widgets/assets/terra-themes-metabox-style.css/wp-content/plugins/meteorite-extensions/inc/widgets/assets/terra-themes-metabox-scripts.js/wp-content/plugins/meteorite-extensions/inc/widgets/assets/elementor-frontend.js
Script Paths
/wp-content/plugins/meteorite-extensions/inc/widgets/assets/terra-themes-metabox-scripts.js/wp-content/plugins/meteorite-extensions/inc/widgets/assets/elementor-frontend.js
Version Parameters
meteorite-extensions/languagesterra-themes-metabox-style.css?ver=terra-themes-metabox-scripts.js?ver=elementor-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
meteorite_skills_circle_widget
Data Attributes
data-fill-colordata-unfill-colordata-sizedata-line-widthdata-speeddata-percent+3 more
FAQ

Frequently Asked Questions about Meteorite Extensions