Does Perfectwpthemes Toolkit have any unpatched vulnerabilities?

No. All known vulnerabilities in Perfectwpthemes Toolkit have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Perfectwpthemes Toolkit compatible with WordPress 6.2.9?

According to WordPress.org data, Perfectwpthemes Toolkit 1.0.6 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

How often is Perfectwpthemes Toolkit updated?

Perfectwpthemes Toolkit was last updated on May 22, 2023. Frequent updates are generally a positive security signal.

What is Perfectwpthemes Toolkit's security score?

Perfectwpthemes Toolkit has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Perfectwpthemes Toolkit Security & Risk Analysis

wordpress.org/plugins/perfectwpthemes-toolkit

An essential toolkit for themes made by perfectwpthemes (https://perfectwpthemes.com/). Perfectwpthemes Toolkit works only with the WordPress themes b …

200 active installs v1.0.6 PHP + WP 5.0+ Updated May 22, 2023

contentdemomenusperfectwpthemeswidgets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Perfectwpthemes Toolkit Safe to Use in 2026?

Generally Safe

Score 85/100

Perfectwpthemes Toolkit has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The perfectwpthemes-toolkit plugin, version 1.0.6, exhibits a mixed security posture. On the positive side, it demonstrates good practices with a high percentage of properly escaped output and the use of prepared statements for most SQL queries. The plugin also shows a commitment to security by implementing nonce and capability checks, and it has no recorded history of vulnerabilities (CVEs). This suggests a diligent development effort regarding known security issues.

However, there are notable areas of concern. The plugin exposes one unprotected AJAX handler, which represents a significant entry point without proper authentication or authorization checks. This could be exploited by attackers to trigger arbitrary actions within the plugin's context. Additionally, the presence of the `unserialize` function, without further context on its usage, is a potential risk for unserialize vulnerabilities if the data being unserialized is not properly validated and originates from an untrusted source.

While the plugin's lack of vulnerability history and generally good coding practices are strengths, the single unprotected AJAX endpoint and the use of `unserialize` are critical weaknesses. The absence of taint analysis results is not necessarily a positive indicator, as it might simply mean the tool was not configured to perform this analysis on this plugin. A balanced view acknowledges the plugin's strengths in output escaping and prepared statements but highlights the immediate risks posed by the unprotected AJAX handler.

Key Concerns

Unprotected AJAX handler found
Use of dangerous 'unserialize' function

Vulnerabilities

None known

Perfectwpthemes Toolkit Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Perfectwpthemes Toolkit Code Analysis

Dangerous Functions

Raw SQL Queries

5 prepared

Unescaped Output

456 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$data = unserialize( $raw );includes\demo-importer\importer\class-pwpt-importer-customizer-importer.php:50

SQL Query Safety

71% prepared7 total queries

Output Escaping

95% escaped479 total outputs

Attack Surface

1 unprotected

Perfectwpthemes Toolkit Attack Surface

Entry Points3

Unprotected1

AJAX Handlers 3

authwp_ajax_PWPT_import_demo_dataincludes\demo-importer\class-pwpt-main.php:43

authwp_ajax_tt_about_action_dismiss_recommended_actionincludes\theme-info\class-theme-info.php:211

noprivwp_ajax_tt_about_action_dismiss_recommended_actionincludes\theme-info\class-theme-info.php:212

WordPress Hooks 50

actionplugins_loadedincludes\class-perfectwpthemes-toolkit.php:189

actionadmin_enqueue_scriptsincludes\class-perfectwpthemes-toolkit.php:204

actionadmin_enqueue_scriptsincludes\class-perfectwpthemes-toolkit.php:205

actionwp_enqueue_scriptsincludes\class-perfectwpthemes-toolkit.php:220

actionwp_enqueue_scriptsincludes\class-perfectwpthemes-toolkit.php:221

actionshow_user_profileincludes\custom-fields\author-profile-links.php:27

actionedit_user_profileincludes\custom-fields\author-profile-links.php:28

actionpersonal_options_updateincludes\custom-fields\author-profile-links.php:29

actionedit_user_profile_updateincludes\custom-fields\author-profile-links.php:30

actionadmin_initincludes\custom-fields\sidebar-position.php:25

actionsave_postincludes\custom-fields\sidebar-position.php:26

actioncustomize_registerincludes\customizer.php:65

actioncustomize_controls_enqueue_scriptsincludes\customizer.php:101

filteret-demo-content-importincludes\demo-importer\admin\class-pwpt-admin-demo-config.php:15

actionet-after-demo-content-importincludes\demo-importer\admin\class-pwpt-admin-demo-config.php:16

actionadmin_noticesincludes\demo-importer\admin\class-pwpt-admin.php:19

actionafter_setup_themeincludes\demo-importer\class-perfectwpthemes-demo-importer.php:98

actioninitincludes\demo-importer\class-perfectwpthemes-demo-importer.php:99

actioninitincludes\demo-importer\class-pwpt-ajax.php:13

actiontemplate_redirectincludes\demo-importer\class-pwpt-ajax.php:14

actionadmin_menuincludes\demo-importer\class-pwpt-main.php:41

actionadmin_enqueue_scriptsincludes\demo-importer\class-pwpt-main.php:42

actionafter_setup_themeincludes\demo-importer\class-pwpt-main.php:44

filterwxr_importer.pre_process.userincludes\demo-importer\class-pwpt-main.php:391

filterwxr_importer.pre_process.postincludes\demo-importer\class-pwpt-main.php:394

filterintermediate_image_sizes_advancedincludes\demo-importer\class-pwpt-main.php:398

filterimport_post_meta_keyincludes\demo-importer\importer\class-pwpt-importer-wxr-importer.php:328

filterhttp_request_timeoutincludes\demo-importer\importer\class-pwpt-importer-wxr-importer.php:329

actionadmin_noticesincludes\functions.php:91

actionadmin_initincludes\functions.php:93

actionadmin_noticesincludes\functions.php:102

actionadmin_initincludes\functions.php:104

actionadmin_noticesincludes\functions.php:118

actionadmin_initincludes\functions.php:120

actionadmin_menuincludes\theme-info\class-theme-info.php:208

actionload-themes.phpincludes\theme-info\class-theme-info.php:209

actionadmin_enqueue_scriptsincludes\theme-info\class-theme-info.php:210

actionadmin_noticesincludes\theme-info\class-theme-info.php:411

actionwidgets_initincludes\themes\glaze-blog\class-glaze-blog-theme.php:39

actionadmin_initincludes\themes\glaze-blog\custom-fields\single-layout.php:21

actionsave_postincludes\themes\glaze-blog\custom-fields\single-layout.php:22

actionafter_setup_themeincludes\themes\glaze-blog\info.php:90

actionadmin_initincludes\themes\glaze-blog-lite\custom-fields\single-layout.php:21

actionsave_postincludes\themes\glaze-blog-lite\custom-fields\single-layout.php:22

actionwp_headincludes\themes\glaze-blog-lite\customizer\functions\dynamic-style.php:100

actionafter_setup_themeincludes\themes\glaze-blog-lite\info.php:103

actionafter_setup_themeincludes\themes\masonry-blog\info.php:103

actionadmin_noticesincludes\themes\masonry-blog-pro\admin-notices.php:49

actionadmin_initincludes\themes\masonry-blog-pro\admin-notices.php:67

actionafter_setup_themeincludes\themes\masonry-blog-pro\info.php:93

Maintenance & Trust

Perfectwpthemes Toolkit Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedMay 22, 2023

PHP min version

Downloads8K

Community Trust

Rating0/100

Number of ratings0

Active installs200

Alternatives

Perfectwpthemes Toolkit Alternatives

Themebeez Toolkit

themebeez-toolkit

A essential toolkit for WordPress themes developed by us. Themebeez Toolkit helps you to import dummy demo contents. It also adds extra features & …

9K 1 unpatched

Everest Toolkit

everest-toolkit

A essential toolkit for themes made by everestthemes (everestthemes.com). Everest toolkit helps you to setup your website or blog faster.

2K No CVEs

Century ToolKit

century-toolkit

ToolKit for WordPress themes and demo content importer for themes.

800 1 unpatched

Ammu Demo Import

ammu-demo-import

100

A plugin to install demo content to themes developed by Ammuthemes.

400 No CVEs

Mirrorgrid Demo Importer

mirrorgrid-demo-importer

ToolKit for Mirrorgrid themes and demo content importer for themes.

30 No CVEs

Developer Profile

Perfectwpthemes Toolkit Developer Profile

perfectwpthemes

1 plugin · 200 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Perfectwpthemes Toolkit

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/perfectwpthemes-toolkit/admin/css/perfectwpthemes-toolkit-admin.css/wp-content/plugins/perfectwpthemes-toolkit/admin/js/perfectwpthemes-toolkit-admin.js

Script Paths

/wp-content/plugins/perfectwpthemes-toolkit/admin/js/perfectwpthemes-toolkit-admin.js

Version Parameters

perfectwpthemes-toolkit/admin/css/perfectwpthemes-toolkit-admin.css?ver=perfectwpthemes-toolkit/admin/js/perfectwpthemes-toolkit-admin.js?ver=

HTML / DOM Fingerprints

FAQ