WP-Safety

Pendig Reviews Dashboard Widget Security & Risk Analysis

wordpress.org/plugins/pendig-reviews-dashboard-widget

Widget for the WordPress 2.7+ dashboard to display the current pending reviews.

10 active installs v1.0.3.1 PHP + WP 2.7.0+ Updated Dec 15, 2013
dashboarddashboard-widgetpending-reviewspostswidgets
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Pendig Reviews Dashboard Widget Safe to Use in 2026?

Generally Safe

Score 85/100

Pendig Reviews Dashboard Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago
Risk Assessment

The "pendig-reviews-dashboard-widget" v1.0.3.1 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The complete absence of identified vulnerabilities in its history, coupled with a lack of critical or high severity issues in static analysis, suggests a well-maintained and secure codebase. The plugin also adheres to good practices by utilizing prepared statements for its single SQL query and includes a capability check. However, a significant concern arises from the complete lack of output escaping for all identified output points. This could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is displayed without proper sanitization.

Key Concerns

  • All output not properly escaped
Vulnerabilities
None known

Pendig Reviews Dashboard Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Pendig Reviews Dashboard Widget Release Timeline

v1.0.3.1Current
v1.0.3
v1.0.3a
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

Pendig Reviews Dashboard Widget Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
1 prepared
Unescaped Output
3
0 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared1 total queries

Output Escaping

0% escaped3 total outputs
Attack Surface

Pendig Reviews Dashboard Widget Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 1
actionwp_dashboard_setupba-dashboard-widget-pending-review.php:171
Maintenance & Trust

Pendig Reviews Dashboard Widget Maintenance & Trust

Maintenance Signals

WordPress version tested3.8.0
Last updatedDec 15, 2013
PHP min version
Downloads6K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Pendig Reviews Dashboard Widget Alternatives

Dashboard: Recent Posts Extended

Dashboard: Recent Posts Extended

dashboard-recent-posts-extended

A
85

Widget for the WordPress 2.7+ dashboard to display the latest posts.

20 No CVEs
Widget Disable

Widget Disable

wp-widget-disable

A
92

Disable sidebar and dashboard widgets with an easy to use interface.

10K No CVEs
Dashboard Widget Sidebar

Dashboard Widget Sidebar

dashboard-widget-sidebar

C
63

Enable regulare widgets to be used as Dashboard Widgets in admin.

400 1 unpatched
Right Now Reloaded

Right Now Reloaded

right-now-reloaded

A
85

A more relevant and dynamic version of the "Right Now" dashboard widget.

200 No CVEs
WP Dashboard Cleaner

WP Dashboard Cleaner

wp-dashboard-cleaner

A
85

The Admin can remove unwanted widgets from your WordPress Dashboard

60 No CVEs
Developer Profile

Pendig Reviews Dashboard Widget Developer Profile

brandt-net

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Pendig Reviews Dashboard Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes
ba-widget-pending-review-listpost-meta
FAQ

Frequently Asked Questions about Pendig Reviews Dashboard Widget