Does Minimal Profile Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Minimal Profile Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Minimal Profile Widget compatible with WordPress 5.1.22?

According to WordPress.org data, Minimal Profile Widget 1.0 has been tested up to WordPress 5.1.22. Check the plugin's changelog for the latest compatibility information.

Is Minimal Profile Widget compatible with PHP 5.2.4+?

Minimal Profile Widget requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Minimal Profile Widget updated?

Minimal Profile Widget was last updated on Jun 1, 2019. Frequent updates are generally a positive security signal.

What is Minimal Profile Widget's security score?

Minimal Profile Widget has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Minimal Profile Widget Security & Risk Analysis

wordpress.org/plugins/minimal-profile-widget

A simple minimal profile widget plugin for WordPress

0 active installs v1.0 PHP 5.2.4+ WP 3.0+ Updated Jun 1, 2019

profileprofile-sidebarprofile-widgetwidgetwidgets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Minimal Profile Widget Safe to Use in 2026?

Generally Safe

Score 85/100

Minimal Profile Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "minimal-profile-widget" v1.0 plugin exhibits an exceptionally strong security posture based on the provided static analysis and vulnerability history. The absence of any identified attack surface points, dangerous functions, raw SQL queries, or file operations is highly commendable. Furthermore, the high percentage of properly escaped output suggests a good understanding of secure coding practices to prevent cross-site scripting vulnerabilities. The lack of any recorded vulnerabilities or CVEs in its history further reinforces this positive assessment, indicating a mature and secure development lifecycle for this plugin.

While the static analysis reveals no critical or high-severity issues, the complete absence of nonces and capability checks across all entry points (even though there are none currently) presents a theoretical risk. Should any entry points be added in future versions without proper authorization checks, these could become exploitable. However, given the current state of the plugin with zero entry points, this remains a hypothetical concern rather than an immediate threat. The lack of taint analysis results is also noteworthy, suggesting that either the analysis was not performed or no exploitable flows were found.

Key Concerns

No capability checks on entry points
No nonce checks on entry points

Vulnerabilities

None known

Minimal Profile Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Minimal Profile Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

23 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped27 total outputs

Attack Surface

Minimal Profile Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionwp_enqueue_scriptsinc\minimal-assets.php:8

actionadmin_footerinc\minimal-profile-widget-class.php:11

actioncustomize_controls_print_footer_scriptsinc\minimal-profile-widget-class.php:12

actionplugins_loadedminimal-profile-widget.php:38

actionwidgets_initminimal-profile-widget.php:48

Maintenance & Trust

Minimal Profile Widget Maintenance & Trust

Maintenance Signals

WordPress version tested5.1.22

Last updatedJun 1, 2019

PHP min version5.2.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Minimal Profile Widget Alternatives

Easy Profile Widget

easy-profile-widget

Display User Profile Section with Gravatar on your sidebar widgets easily.

500 No CVEs

Astra Widgets

astra-widgets

Quickest solution to add widgets like Address, Social Profiles and List icons on a website built with Astra.

200K 3 CVEs

ProfileGrid – User Profiles, Groups and Communities

profilegrid-user-profiles-groups-and-communities

Custom user profiles plugin ❤ with paid memberships, groups, communities, content restriction, user registration, messaging, WooCommerce memberships, …

6K 48 CVEs

Socials Ignited

socials-ignited

100

The Socials Ignited plugin gives you a widget, allowing you to display and link icons on your website of more than 50 social networks.

2K No CVEs

More Widgets

more-widgets

The More Widgets plugin adds extra widgets to use with your widgetized areas within your WordPress site. Use this plugin instead of built-in theme wid …

1K No CVEs

Developer Profile

Minimal Profile Widget Developer Profile

Ibrahim Hasnat

1 plugin · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Minimal Profile Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/minimal-profile-widget/css/main.css

HTML / DOM Fingerprints

CSS Classes

minimal-profileimage-areaprofile-detailssocial-linkcustommediaremove-media

Data Attributes

id="minimalprofilewidget_widget"

JS Globals

wp.media.editor.send.attachmentwp.media.editor.open

Shortcode Output

<div class="minimal-profile"><div class="image-area"><img src="<img class="thumb" src="

FAQ