Does Adnow Native Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Adnow Native Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Adnow Native Widget compatible with WordPress 6.7.5?

According to WordPress.org data, Adnow Native Widget 2.0.3 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Adnow Native Widget updated?

Adnow Native Widget was last updated on Mar 27, 2025. Frequent updates are generally a positive security signal.

What is Adnow Native Widget's security score?

Adnow Native Widget has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Adnow Native Widget Security & Risk Analysis

wordpress.org/plugins/native-ads-adnow

Use the Adnow widget to monetize your website successfully with high quality native ads

60 active installs v2.0.3 PHP + WP 3.0+ Updated Mar 27, 2025

ad-networkadvertisingmonetizationnative-ads

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Adnow Native Widget Safe to Use in 2026?

Generally Safe

Score 92/100

Adnow Native Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The native-ads-adnow plugin v2.0.3 demonstrates a generally strong security posture with some concerning elements. The static analysis reveals a clean slate regarding dangerous functions, file operations, and SQL queries are all properly handled. The plugin also boasts a high percentage of properly escaped outputs. However, the presence of external HTTP requests and a notable taint analysis finding of 'flows with unsanitized paths' warrant attention. While the plugin has no recorded vulnerability history, the taint analysis results suggest potential for vulnerabilities if these unsanitized paths are exploited. The lack of explicit capability checks or nonce checks for its entry points, though currently limited in number, presents a potential weakness if new entry points are introduced or if existing ones are not inherently protected by WordPress's core security mechanisms.

Overall, the plugin shows good adherence to secure coding practices in many areas. The absence of known CVEs is a positive indicator of its past security. Nevertheless, the identified unsanitized paths in the taint analysis are a critical area of concern that requires investigation and remediation to prevent potential exploitation. The lack of explicit authentication and authorization checks on its limited entry points, while not currently an immediate high risk due to the small attack surface, is a practice that could become problematic as the plugin evolves. A proactive approach to address these taint analysis findings and consider implementing more robust security checks is recommended.

Key Concerns

Taint flows with unsanitized paths found
External HTTP requests made by plugin
No capability checks found
No nonce checks found

Vulnerabilities

None known

Adnow Native Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Adnow Native Widget Code Analysis

Dangerous Functions

Raw SQL Queries

40 prepared

Unescaped Output

29 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared40 total queries

Output Escaping

94% escaped31 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

<class-adnow-widget-area> (admin\partials\class-adnow-widget-area.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Adnow Native Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 17

filterthe_contentincludes\class-adnow-widget-loader.php:118

actionplugins_loadedincludes\class-adnow-widget.php:149

actionadmin_enqueue_scriptsincludes\class-adnow-widget.php:165

actionadmin_enqueue_scriptsincludes\class-adnow-widget.php:166

actionadmin_menuincludes\class-adnow-widget.php:168

actionadmin_menuincludes\class-adnow-widget.php:169

actionadmin_initincludes\class-adnow-widget.php:170

actionwp_enqueue_scriptsincludes\class-adnow-widget.php:185

actionwp_enqueue_scriptsincludes\class-adnow-widget.php:186

actionadmin_bar_menuincludes\class-adnow-widget.php:205

actionwp_headincludes\class-adnow-widget.php:206

actioncomment_form_beforeincludes\class-adnow-widget.php:207

actioncomment_form_afterincludes\class-adnow-widget.php:208

actiondynamic_sidebar_beforeincludes\class-adnow-widget.php:209

actiondynamic_sidebar_afterincludes\class-adnow-widget.php:210

filterthe_contentincludes\class-adnow-widget.php:211

filterthe_contentincludes\class-adnow-widget.php:212

Maintenance & Trust

Adnow Native Widget Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedMar 27, 2025

PHP min version

Downloads27K

Community Trust

Rating70/100

Number of ratings4

Active installs60

Alternatives

Adnow Native Widget Alternatives

Website Article Monetization By MageNet

website-article-monetization-by-magenet

100

Get additional income from your website or blog by placing text ads automatically.

20K 1 CVE

Website Monetization by MageNet

website-monetization-by-magenet

100

Get additional income from your website or blog by placing text ads automatically.

20K 1 CVE

Actirise — Advertising & Monetization

actirise

100

Premium advertising solution to grow your WordPress site revenue with no code and real-time insights.

200 No CVEs

The Publisher Desk ads.txt

the-publisher-desk-ads-txt

Ads.txt management tool for publishers in The Publisher Desk portfolio.

100 No CVEs

PurpleAds Ads.txt Manager

purpleads-ads-txt-manager

Simplify Your Ads.txt Management with PurpleAds

90 No CVEs

Developer Profile

Adnow Native Widget Developer Profile

vbadnow

1 plugin · 60 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Adnow Native Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/native-ads-adnow/admin/css/adnow-widget-admin.css/wp-content/plugins/native-ads-adnow/admin/js/adnow-widget-admin.js

Script Paths

/wp-content/plugins/native-ads-adnow/admin/js/adnow-widget-admin.js

Version Parameters

native-ads-adnow/admin/css/adnow-widget-admin.css?ver=native-ads-adnow/admin/js/adnow-widget-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

accountdisplay_blocktitletextmessage_errorsubmit_coversuccess

HTML Comments

<!--
	Copyright 2017 Adnow (email: publishers@adnow.com)

	This program is free software; you can redistribute it and/or modify
	it under the terms of the GNU General Public License as published by
	the Free Software Foundation; either version 2 of the License, or
	(at your option) any later version.

	This program is distributed in the hope that it will be useful,
	but WITHOUT ANY WARRANTY; without even the implied warranty of
	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
	GNU General Public License for more details.

	You should have received a copy of the GNU General Public License
	along with this program; if not, write to the Free Software
	Foundation, Inc.
-->

<!--
 * The code that runs during plugin activation.
 * This action is documented in includes/class-adnow-widget-activator.php
 -->

<!--
 * The code that runs during plugin deactivation.
 * This action is documented in includes/class-adnow-widget-deactivator.php
 -->

+2 more

Data Attributes

name="Adnow_Widget_key"id="Adnow_Widget_key"name="Adnow_Widget_general"name="Adnow_Widget_turn"

JS Globals

window.adnow_widget

FAQ