Mosaic Gallery Security & Risk Analysis

wordpress.org/plugins/mosaic-gallery-by-widgetic

Automatically generate a mosaic gallery from your photos.

10 active installs v1.0.40 PHP 7.0+ WP 5.4+ Updated Jul 4, 2022
collagegridisotopematricemosaic
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is Mosaic Gallery Safe to Use in 2026?

Generally Safe

Score 85/100

Mosaic Gallery has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago
Risk Assessment

Based on the provided static analysis and vulnerability history, the "mosaic-gallery-by-widgetic" plugin version 1.0.40 exhibits a strong security posture. The plugin has a commendably small attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events that are unprotected. Furthermore, the code analysis reveals a commitment to secure coding practices, with no dangerous functions identified, all SQL queries utilizing prepared statements, and all identified output being properly escaped. The absence of external HTTP requests and the presence of capability checks (though not explicitly tied to all entry points) are also positive indicators.

The plugin's vulnerability history is also exceptionally clean, with zero known CVEs, meaning there are no currently unpatched vulnerabilities of any severity. This lack of historical issues suggests a consistent focus on security by the developers. The taint analysis also shows no identified flows with unsanitized paths, further reinforcing the impression of secure code.

In conclusion, the "mosaic-gallery-by-widgetic" plugin, based on this data, appears to be a very secure option. Its minimal attack surface, robust code hygiene concerning SQL and output, and a pristine vulnerability history all point to a well-maintained and security-conscious plugin. There are no immediate red flags or specific risks apparent from the analysis.

Vulnerabilities
None known

Mosaic Gallery Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Mosaic Gallery Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

Mosaic Gallery Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
2 escaped
Nonce Checks
0
Capability Checks
4
File Operations
2
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped2 total outputs
Attack Surface

Mosaic Gallery Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 3
actioninitblock.php:110
actionadmin_menudashboard.php:47
actionrest_api_initdashboard.php:118
Maintenance & Trust

Mosaic Gallery Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11
Last updatedJul 4, 2022
PHP min version7.0
Downloads2K

Community Trust

Rating20/100
Number of ratings1
Active installs10
Developer Profile

Mosaic Gallery Developer Profile

widgetic

6 plugins · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Mosaic Gallery

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/mosaic-gallery-by-widgetic/build-dashboard/dashboard.bundle.js/wp-content/plugins/mosaic-gallery-by-widgetic/build-dashboard/dashboard.bundle.css/wp-content/plugins/mosaic-gallery-by-widgetic/build/index.js/wp-content/plugins/mosaic-gallery-by-widgetic/build/index.css/wp-content/plugins/mosaic-gallery-by-widgetic/css/style.css/wp-content/plugins/mosaic-gallery-by-widgetic/css/editor.css
Script Paths
https://widgetic.com/sdk/sdk.js

HTML / DOM Fingerprints

CSS Classes
dashboard-el-widgetic-dashboardwidgetic-plugin-by-widgetic
Data Attributes
data-block-name
JS Globals
WPwdgPlgsData
REST Endpoints
/wp-json/widgetic/secret/wp-json/widgetic/current_user/wp-json/widgetic/compositions
FAQ

Frequently Asked Questions about Mosaic Gallery