Does WP Composer – The Easiest Page Builder have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Composer – The Easiest Page Builder compatible with WordPress 6.9.4?

According to WordPress.org data, WP Composer – The Easiest Page Builder 1.0.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is WP Composer – The Easiest Page Builder compatible with PHP 7.2+?

WP Composer – The Easiest Page Builder requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Composer – The Easiest Page Builder updated?

WP Composer – The Easiest Page Builder was last updated on Mar 14, 2026. Frequent updates are generally a positive security signal.

What is WP Composer – The Easiest Page Builder's security score?

WP Composer – The Easiest Page Builder has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Composer – The Easiest Page Builder Security & Risk Analysis

wordpress.org/plugins/page-builder-wp

The WP Composer Website Builder provides a drag and drop page builder, pixel perfect design, mobile responsive editing, and more.

20 active installs v1.0.7 PHP 7.2+ WP 6.0+ Updated Mar 14, 2026

builderdrag-and-drop-builderlanding-page-builderpage-builderwebsite-builder

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Composer – The Easiest Page Builder Safe to Use in 2026?

Generally Safe

Score 100/100

WP Composer – The Easiest Page Builder has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "page-builder-wp" v1.0.7 plugin exhibits a generally strong security posture based on the provided static analysis. A significant positive is the complete use of prepared statements for all SQL queries and the proper escaping of all output, which are critical defenses against common web vulnerabilities like SQL injection and cross-site scripting. The presence of nonce and capability checks on most entry points further bolsters its security. The plugin's vulnerability history being completely clear of known CVEs also suggests a well-maintained and secure codebase over time.

However, there are areas for concern. The presence of one unprotected REST API route is a notable risk, as it represents a direct entry point that could be exploited without proper authentication or authorization checks. While the taint analysis did not reveal any unsanitized paths, the sheer number of file operations and external HTTP requests, coupled with the unprotected REST API route, could still present opportunities for attackers if not handled with extreme care within the plugin's logic.

In conclusion, "page-builder-wp" v1.0.7 demonstrates good security practices in core areas like database interaction and output handling. Its clean vulnerability history is a strong indicator of past security diligence. The primary weakness lies in the unprotected REST API endpoint, which warrants immediate attention. Addressing this single vulnerability would significantly enhance the plugin's overall security posture.

Key Concerns

Unprotected REST API route

Vulnerabilities

None known

WP Composer – The Easiest Page Builder Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP Composer – The Easiest Page Builder Release Timeline

v1.0.5

v1.0.3

v1.0.1

v1.0.0

Code Analysis

Analyzed Apr 16, 2026

WP Composer – The Easiest Page Builder Code Analysis

Dangerous Functions

Raw SQL Queries

15 prepared

Unescaped Output

1718 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

TinyMCE

SQL Query Safety

100% prepared15 total queries

Output Escaping

100% escaped1723 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

pbwp_woocommerce_search_product (inc/backend/plugins/woocommerce/wpc-woocommerce.php:537)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

WP Composer – The Easiest Page Builder Attack Surface

Entry Points6

Unprotected1

AJAX Handlers 4

authwp_ajax_pbwp_woocommerce_search_productinc/backend/plugins/woocommerce/wpc-woocommerce.php:18

authwp_ajax_pbwp_woo_get_product_title_by_idinc/backend/plugins/woocommerce/wpc-woocommerce.php:19

authwp_ajax_pbwp_http_prepare_download_loginc/backend/wpc-ajax.php:44

authwp_ajax_pbwp_safe_returninc/backend/wpc-ajax.php:73

REST API Routes 1

GET/wp-json/wp_composer/v1/get/(?P<id>[\d]+)/(?P<cmd>[\w]+)inc/global/class-wpc-rest-api.php:31

Shortcodes 1

[pbwp_raw_shortcode] page-builder-wp.php:139

WordPress Hooks 83

filterpbwp_editor_mapsinc/backend/addons/wpc-addons-controls.php:39

filterpbwp_addons_mapsinc/backend/addons/wpc-addons-controls.php:40

filterpbwp_item_category_listinc/backend/addons/wpc-addons-manager.php:159

filterpbwp_item_listinc/backend/addons/wpc-addons-manager.php:160

filterpbwp_supported_addons_listinc/backend/addons/wpc-addons-manager.php:161

filteruser_can_richeditinc/backend/classes/class-wpc-customize-control.php:36

actioncustomize_registerinc/backend/customizer/wpc-customizer.php:40

actioncustomize_controls_enqueue_scriptsinc/backend/customizer/wpc-customizer.php:49

actioncustomize_preview_initinc/backend/customizer/wpc-customizer.php:110

actioncustomize_controls_print_footer_scriptsinc/backend/customizer/wpc-customizer.php:112

filtercustomize_previewable_devicesinc/backend/customizer/wpc-customizer.php:476

filtertiny_mce_before_initinc/backend/customizer/wpc-customizer.php:493

filtermce_buttonsinc/backend/customizer/wpc-customizer.php:504

filterwp_prepare_attachment_for_jsinc/backend/customizer/wpc-customizer.php:506

filterpbwp_item_category_listinc/backend/customizer/wpc-customizer.php:534

actionwp_footerinc/backend/customizer/wpc-customizer.php:587

filterpbwp_item_listinc/backend/pages/settings/wpc-preset-manager.php:23

actionadmin_menuinc/backend/pages/wpc-welcome.php:21

filterpbwp_notice_messageinc/backend/pages/wpc-welcome.php:31

filterpbwp_notice_messageinc/backend/pages/wpc-welcome.php:41

filterpbwp_supported_plugins_listinc/backend/plugins/cf7/wpc-cf7.php:7

filterpbwp_item_listinc/backend/plugins/cf7/wpc-cf7.php:8

filterpbwp_editor_mapsinc/backend/plugins/cf7/wpc-cf7.php:9

filterpbwp_item_category_listinc/backend/plugins/ghozylab/wpc-ghozylab.php:7

filterpbwp_item_listinc/backend/plugins/ghozylab/wpc-ghozylab.php:8

filterpbwp_editor_mapsinc/backend/plugins/ghozylab/wpc-ghozylab.php:9

filterpbwp_supported_plugins_listinc/backend/plugins/woocommerce/wpc-woocommerce.php:9

filterpbwp_item_category_listinc/backend/plugins/woocommerce/wpc-woocommerce.php:10

filterpbwp_item_listinc/backend/plugins/woocommerce/wpc-woocommerce.php:11

filterpbwp_woo_products_mapsinc/backend/plugins/woocommerce/wpc-woocommerce.php:12

filterpbwp_woo_recent_products_mapsinc/backend/plugins/woocommerce/wpc-woocommerce.php:13

filterpbwp_woo_product_category_mapsinc/backend/plugins/woocommerce/wpc-woocommerce.php:14

filterpbwp_woo_product_categories_mapsinc/backend/plugins/woocommerce/wpc-woocommerce.php:15

filterpbwp_woo_order_orderby_listinc/backend/plugins/woocommerce/wpc-woocommerce.php:16

filterpbwp_editor_mapsinc/backend/plugins/woocommerce/wpc-woocommerce.php:17

filterpbwp_no_editor_iteminc/backend/plugins/woocommerce/wpc-woocommerce.php:20

filterpbwp_upload_image_descinc/backend/rest_api/callback/class-wpc-rest-api-callback.php:1127

actionrest_api_initinc/backend/rest_api/class-wpc-backend-rest-route.php:25

filterpbwp_editor_builder_paramsinc/backend/wpc-functions.php:118

filterpbwp_editor_builder_paramsinc/backend/wpc-functions.php:185

filterhttp_request_argsinc/backend/wpc-functions.php:289

filterpbwp_editor_builder_paramsinc/backend/wpc-functions.php:1036

filterpbwp_execute_wpc_raw_code_shortcodeinc/frontend/templates/items/class-wpc-ghozylab-plugins.php:98

filterpbwp_execute_wpc_raw_code_shortcodeinc/frontend/templates/items/class-wpc-htmlraw.php:34

filterembed_oembed_htmlinc/frontend/templates/items/class-wpc-typevideoplayer.php:73

actionwp_footerinc/frontend/templates/items/class-wpc-woocommerce.php:77

filterpage_attributes_dropdown_pages_argsinc/frontend/templates/wpc-template-helpers.php:50

filterwp_insert_post_datainc/frontend/templates/wpc-template-helpers.php:71

filtertemplate_includeinc/frontend/templates/wpc-template-helpers.php:78

actionrest_api_initinc/global/class-wpc-rest-api.php:23

filterpbwp_editor_builder_paramsinc/global/class-wpc-rest-api.php:62

filterimage_resize_dimensionsinc/global/vendors/aq_resizer/aq_resizer.php:89

filterhttps_ssl_verifyinc/global/wpc-backwards-compatibility.php:123

filterpbwp_elements_css_selectorinc/global/wpc-filters.php:40

filterpbwp_elements_css_selector_before_parsinginc/global/wpc-filters.php:54

filterpbwp_elements_css_selector_after_parsinginc/global/wpc-filters.php:74

filterpbwp_elements_css_propertyinc/global/wpc-filters.php:88

filterpbwp_live_editor_selector_replacerinc/global/wpc-filters.php:105

filterpbwp_live_editor_css_mark_importantinc/global/wpc-filters.php:126

filterpbwp_live_editor_css_bg_to_bgcolorinc/global/wpc-filters.php:148

actionwp_enqueue_scriptsinc/global/wpc-helpers.php:341

actionwp_headinc/global/wpc-helpers.php:357

filterbody_classinc/global/wpc-helpers.php:388

actionwp_enqueue_scriptsinc/global/wpc-helpers.php:786

filtertemplate_includeinc/global/wpc-helpers.php:1206

filterpbwp_editor_builder_paramsinc/global/wpc-helpers.php:2652

actionplugins_loadedpage-builder-wp.php:130

actioninitpage-builder-wp.php:131

filterthe_contentpage-builder-wp.php:132

actionadmin_bar_menupage-builder-wp.php:133

filterplugin_action_linkspage-builder-wp.php:134

filterpbwp_notify_countpage-builder-wp.php:135

actionadmin_enqueue_scriptspage-builder-wp.php:136

actiondo_meta_boxespage-builder-wp.php:137

actionadmin_initpage-builder-wp.php:138

actionwp_footerpage-builder-wp.php:140

actiontemplate_redirectpage-builder-wp.php:274

filterpbwp_item_category_listpage-builder-wp.php:299

filteruse_block_editor_for_post_typepage-builder-wp.php:304

filtergutenberg_can_edit_post_typepage-builder-wp.php:307

filterpost_row_actionspage-builder-wp.php:311

filterpage_row_actionspage-builder-wp.php:312

filterdisplay_post_statespage-builder-wp.php:313

Maintenance & Trust

WP Composer – The Easiest Page Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 14, 2026

PHP min version7.2

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

WP Composer – The Easiest Page Builder Alternatives

Visual Composer Website Builder

visualcomposer

Drag and drop page builder that gives the freedom to design WordPress websites, landing pages, custom themes, maintenance mode & coming soon pages.

40K 9 CVEs

Live Composer – Free WordPress Website Builder

live-composer-page-builder

Page builder for WordPress with drag and drop header/footer editing, responsive settings, and animations. Compatible with Gutenberg block editor.

10K 1 unpatched

LoftBuilder

loftbuilder

Create stunning and responsive pages with LoftBuilder. An intuitive front-end looking, drag & drop page builder.

10 No CVEs

Octonis Page Builder

octonis-page-builder

Build amazing web pages or website without any programming skills. Just choose and customize blocks. Focus on the goal, not on technical issues .

10 No CVEs

Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode

coming-soon

Easy Drag & Drop Page Builder. A complete solution to create a WordPress Website, Custom Themes, Landing Pages, Coming Soon & Maintenance Mode Pages.

700K 9 CVEs

Developer Profile

WP Composer – The Easiest Page Builder Developer Profile

GhozyLab

11 plugins · 21K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

847 days

View full developer profile

Detection Fingerprints

How We Detect WP Composer – The Easiest Page Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/page-builder-wp/inc/frontend/assets/css/style.css/wp-content/plugins/page-builder-wp/inc/backend/assets/css/style.css/wp-content/plugins/page-builder-wp/inc/backend/assets/js/wpc-backend.js/wp-content/plugins/page-builder-wp/inc/frontend/assets/js/wpc-frontend.js/wp-content/plugins/page-builder-wp/inc/global/assets/css/wpc-global.css/wp-content/plugins/page-builder-wp/inc/global/assets/js/wpc-global.js/wp-content/plugins/page-builder-wp/inc/backend/assets/prop/maps/styles/map-style-fields.js/wp-content/plugins/page-builder-wp/inc/backend/assets/prop/maps/styles/map-style-fields.css+3 more

Script Paths

/wp-content/plugins/page-builder-wp/inc/backend/assets/js/wpc-backend.js/wp-content/plugins/page-builder-wp/inc/frontend/assets/js/wpc-frontend.js/wp-content/plugins/page-builder-wp/inc/global/assets/js/wpc-global.js/wp-content/plugins/page-builder-wp/inc/backend/assets/prop/maps/styles/map-style-fields.js/wp-content/plugins/page-builder-wp/inc/backend/assets/js/wpc-backend-vendors.js/wp-content/plugins/page-builder-wp/inc/frontend/assets/js/wpc-frontend-vendors.js+1 more

Version Parameters

page-builder-wp/style.css?ver=page-builder-wp/style.css?ver=page-builder-wp/wpc-backend.js?ver=page-builder-wp/wpc-frontend.js?ver=page-builder-wp/wpc-global.css?ver=page-builder-wp/wpc-global.js?ver=page-builder-wp/map-style-fields.js?ver=page-builder-wp/map-style-fields.css?ver=page-builder-wp/wpc-backend-vendors.js?ver=page-builder-wp/wpc-frontend-vendors.js?ver=page-builder-wp/wpc-global-vendors.js?ver=

HTML / DOM Fingerprints

CSS Classes

pbwp-content

HTML Comments

Data Attributes

data-pbwp-iddata-pbwp-typedata-pbwp-field

JS Globals

PBWP_VERSIONpbwp_vars

REST Endpoints

/wp-json/wp_composer/v1/

Shortcode Output

[pbwp_raw_shortcode

FAQ