Does Pixelgrade Assistant have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Pixelgrade Assistant compatible with WordPress 5.9.13?

According to WordPress.org data, Pixelgrade Assistant 1.4.0 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is Pixelgrade Assistant compatible with PHP 5.6.40+?

Pixelgrade Assistant requires PHP 5.6.40 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Pixelgrade Assistant updated?

Pixelgrade Assistant was last updated on Apr 18, 2022. Frequent updates are generally a positive security signal.

What is Pixelgrade Assistant's security score?

Pixelgrade Assistant has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Pixelgrade Assistant Security & Risk Analysis

wordpress.org/plugins/pixelgrade-assistant

Help and assistance for Pixelgrade WordPress themes.

2K active installs v1.4.0 PHP 5.6.40+ WP 4.9.9+ Updated Apr 18, 2022

dashboarddemo-datapixelgradestarter-contentsupport

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Pixelgrade Assistant Safe to Use in 2026?

Generally Safe

Score 85/100

Pixelgrade Assistant has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The pixelgrade-assistant v1.4.0 plugin exhibits a generally strong security posture with several positive indicators. The absence of any recorded vulnerabilities or CVEs in its history is a significant strength, suggesting a history of stable and secure development. The plugin also demonstrates good practices regarding SQL queries, with a high percentage using prepared statements, and a commendable rate of properly escaped output. Furthermore, the presence of numerous nonce and capability checks across its entry points significantly reduces the likelihood of unauthorized access or manipulation.

However, the static analysis reveals a critical concern related to taint analysis. Specifically, the presence of 3 flows with unsanitized paths, and one of high severity, indicates a potential for malicious data to be processed without adequate sanitization. This could lead to vulnerabilities such as Cross-Site Scripting (XSS) or even Remote Code Execution (RCE) if these unsanitized paths are exposed to user input that is then used in sensitive operations. While the total number of entry points is relatively low and all are protected, the identified taint flows represent the most significant immediate risk.

In conclusion, while the plugin benefits from a clean vulnerability history and good application of common security practices like prepared statements and output escaping, the high-severity unsanitized taint flow demands immediate attention. Addressing this specific issue should be the primary focus for improving the plugin's security, as it represents a tangible risk despite the overall positive indications.

Key Concerns

High severity unsanitized taint flow
Flows with unsanitized paths

Vulnerabilities

None known

Pixelgrade Assistant Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Pixelgrade Assistant Release Timeline

v1.4.0Current

v1.3.5

v1.3.4

v1.3.3

v1.3.2

v1.3.1

v1.3.0

v1.2.1

v1.2.0

v1.1.5

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0

Code Analysis

Analyzed Mar 16, 2026

Pixelgrade Assistant Code Analysis

Dangerous Functions

Raw SQL Queries

5 prepared

Unescaped Output

331 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

83% prepared6 total queries

Output Escaping

90% escaped368 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

4 flows3 with unsanitized paths

process_form_request (includes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:908)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Pixelgrade Assistant Attack Surface

Entry Points13

Unprotected0

AJAX Handlers 1

authwp_ajax_pixassist_rating_dismiss_admin_noticeadmin\class-pixelgrade_assistant-notifications.php:71

REST API Routes 2

GET/wp-json/pixassist/v1/importadmin\class-pixelgrade_assistant-starter_content.php:99

GET/wp-json/pixassist/v1/upload_mediaadmin\class-pixelgrade_assistant-starter_content.php:111

Shortcodes 10

[portfolio] includes\theme-helpers\jetpack-fallbacks\portfolio-shortcode\class-jetpack-portfolio-shortcode.php:22

[jetpack_portfolio] includes\theme-helpers\jetpack-fallbacks\portfolio-shortcode\class-jetpack-portfolio-shortcode.php:24

[portfolio] includes\theme-helpers\jetpack-fallbacks\portfolios.php:91

[jetpack_portfolio] includes\theme-helpers\jetpack-fallbacks\portfolios.php:92

[jetpack_nova_menu] includes\theme-helpers\nova-menu\class-nova-menu.php:88

[nova_menu] includes\theme-helpers\nova-menu\class-nova-menu.php:92

[restaurant_menu] includes\theme-helpers\nova-menu\class-nova-menu.php:97

[page] includes\theme-helpers\shortcodes.php:68

[Page] includes\theme-helpers\shortcodes.php:69

[ot_reservation_widget] includes\theme-helpers\theme-dependent.php:29

WordPress Hooks 146

actionafter_setup_themeadmin\class-pixelgrade_assistant-admin.php:108

actionrest_api_initadmin\class-pixelgrade_assistant-admin.php:115

actiontgmpa_initadmin\class-pixelgrade_assistant-admin.php:119

filterwupdates_gather_idsadmin\class-pixelgrade_assistant-admin.php:129

actionadmin_initadmin\class-pixelgrade_assistant-admin.php:240

actionadmin_noticesadmin\class-pixelgrade_assistant-admin.php:242

actionadmin_menuadmin\class-pixelgrade_assistant-admin.php:244

actioncurrent_screenadmin\class-pixelgrade_assistant-admin.php:246

actionadmin_enqueue_scriptsadmin\class-pixelgrade_assistant-admin.php:248

actionadmin_enqueue_scriptsadmin\class-pixelgrade_assistant-admin.php:249

filterpre_set_site_transient_update_themesadmin\class-pixelgrade_assistant-admin.php:252

actiondelete_site_transient_update_themesadmin\class-pixelgrade_assistant-admin.php:257

filterpre_set_site_transient_update_themesadmin\class-pixelgrade_assistant-admin.php:261

filterpre_set_site_transient_update_themesadmin\class-pixelgrade_assistant-admin.php:265

filterpre_set_site_transient_update_themesadmin\class-pixelgrade_assistant-admin.php:269

actionafter_switch_themeadmin\class-pixelgrade_assistant-admin.php:275

actionafter_switch_themeadmin\class-pixelgrade_assistant-admin.php:278

actiontgmpa_registeradmin\class-pixelgrade_assistant-admin.php:281

filtertgmpa_show_admin_noticesadmin\class-pixelgrade_assistant-admin.php:284

filterplugins_apiadmin\class-pixelgrade_assistant-admin.php:286

filterauto_update_pluginadmin\class-pixelgrade_assistant-admin.php:289

filtertgmpa_loadadmin\class-pixelgrade_assistant-admin.php:2092

actionadmin_initadmin\class-pixelgrade_assistant-notifications.php:43

filterpixassist_allow_notifications_moduleadmin\class-pixelgrade_assistant-notifications.php:65

actionafter_switch_themeadmin\class-pixelgrade_assistant-notifications.php:68

actionswitch_themeadmin\class-pixelgrade_assistant-notifications.php:74

actionadmin_noticesadmin\class-pixelgrade_assistant-notifications.php:97

actionadmin_enqueue_scriptsadmin\class-pixelgrade_assistant-notifications.php:98

actionadmin_enqueue_scriptsadmin\class-pixelgrade_assistant-notifications.php:99

actioninitadmin\class-pixelgrade_assistant-setup_wizard.php:36

actionadmin_menuadmin\class-pixelgrade_assistant-setup_wizard.php:55

actionadmin_initadmin\class-pixelgrade_assistant-setup_wizard.php:56

actionadmin_page_access_deniedadmin\class-pixelgrade_assistant-setup_wizard.php:62

actionrest_api_initadmin\class-pixelgrade_assistant-starter_content.php:37

filterpixassist_localized_dataadmin\class-pixelgrade_assistant-starter_content.php:40

filterpixassist_sce_import_post_option_page_on_frontadmin\class-pixelgrade_assistant-starter_content.php:43

filterpixassist_sce_import_post_option_page_for_postsadmin\class-pixelgrade_assistant-starter_content.php:47

filterpixassist_sce_import_post_theme_mod_nav_menu_locationsadmin\class-pixelgrade_assistant-starter_content.php:51

filterpixassist_sce_import_post_theme_mod_custom_logoadmin\class-pixelgrade_assistant-starter_content.php:59

filterpixassist_sce_import_post_theme_mod_osteria_transparent_logoadmin\class-pixelgrade_assistant-starter_content.php:63

filterpixassist_sce_import_post_theme_mod_pixelgrade_transparent_logoadmin\class-pixelgrade_assistant-starter_content.php:64

filterpixassist_sce_import_post_theme_mod_jetpack_custom_cssadmin\class-pixelgrade_assistant-starter_content.php:67

actionpixassist_sce_after_insert_postadmin\class-pixelgrade_assistant-starter_content.php:72

actionpixassist_sce_import_endadmin\class-pixelgrade_assistant-starter_content.php:73

filterupload_mimesadmin\class-pixelgrade_assistant-starter_content.php:137

actioninitadmin\class-pixelgrade_assistant-support.php:36

actionadmin_footeradmin\class-pixelgrade_assistant-support.php:55

actionadmin_footeradmin\class-pixelgrade_assistant-support.php:56

actioncustomize_controls_enqueue_scriptsadmin\class-pixelgrade_assistant-support.php:57

actioncustomize_controls_print_scriptsadmin\class-pixelgrade_assistant-support.php:58

filterpixassist_allow_support_moduleadmin\class-pixelgrade_assistant-support.php:61

actioninitadmin\required-plugins\class-tgm-plugin-activation.php:265

actionadmin_menuadmin\required-plugins\class-tgm-plugin-activation.php:413

actionadmin_headadmin\required-plugins\class-tgm-plugin-activation.php:414

filterinstall_plugin_complete_actionsadmin\required-plugins\class-tgm-plugin-activation.php:417

filterupdate_plugin_complete_actionsadmin\required-plugins\class-tgm-plugin-activation.php:418

actionadmin_noticesadmin\required-plugins\class-tgm-plugin-activation.php:421

actionadmin_initadmin\required-plugins\class-tgm-plugin-activation.php:422

actionadmin_enqueue_scriptsadmin\required-plugins\class-tgm-plugin-activation.php:423

actionload-plugins.phpadmin\required-plugins\class-tgm-plugin-activation.php:428

actionswitch_themeadmin\required-plugins\class-tgm-plugin-activation.php:431

actionswitch_themeadmin\required-plugins\class-tgm-plugin-activation.php:434

actionadmin_initadmin\required-plugins\class-tgm-plugin-activation.php:439

actionswitch_themeadmin\required-plugins\class-tgm-plugin-activation.php:444

filterupgrader_source_selectionadmin\required-plugins\class-tgm-plugin-activation.php:795

actionplugins_loadedadmin\required-plugins\class-tgm-plugin-activation.php:2050

filtertgmpa_table_data_itemsadmin\required-plugins\class-tgm-plugin-activation.php:2174

filterupgrader_source_selectionadmin\required-plugins\class-tgm-plugin-activation.php:2915

actionadmin_initadmin\required-plugins\class-tgm-plugin-activation.php:3085

actionupgrader_process_completeadmin\required-plugins\class-tgm-plugin-activation.php:3180

filterupgrader_post_installadmin\required-plugins\class-tgm-plugin-activation.php:3239

filterupgrader_post_installadmin\required-plugins\class-tgm-plugin-activation.php:3384

actioninitincludes\class-pixelgrade_assistant-data-collector.php:33

filterpre_set_site_transient_update_themesincludes\class-pixelgrade_assistant-data-collector.php:70

actionadmin_noticesincludes\class-pixelgrade_assistant.php:142

actionplugins_loadedincludes\class-pixelgrade_assistant.php:247

actionadmin_noticesincludes\class-pixelgrade_assistant.php:342

actionadmin_noticesincludes\class-pixelgrade_assistant.php:350

filtercustomify_pixelgrade_cloud_request_dataincludes\integrations\customify.php:38

filterpixelgrade_cloud_request_dataincludes\integrations\customify.php:39

filtercustomify_style_manager_get_site_dataincludes\integrations\customify.php:58

filtercustomify_style_manager_external_api_endpointsincludes\integrations\customify.php:70

actioncustomify_style_manager_updated_custom_palette_in_useincludes\integrations\customify.php:84

filterpixassist_allow_data_collector_moduleincludes\integrations\devmode.php:38

actioninitincludes\modules\conditional-updates\class-pixelgrade_assistant-conditional-updates.php:112

actioncurrent_screenincludes\modules\conditional-updates\class-pixelgrade_assistant-conditional-updates.php:113

filterextra_plugin_headersincludes\modules\conditional-updates\class-pixelgrade_assistant-conditional-updates.php:115

filterextra_theme_headersincludes\modules\conditional-updates\class-pixelgrade_assistant-conditional-updates.php:116

actionpre_set_site_transient_update_pluginsincludes\modules\conditional-updates\class-pixelgrade_assistant-conditional-updates.php:118

actionadmin_noticesincludes\modules\conditional-updates\class-pixelgrade_assistant-conditional-updates.php:149

filterpixassist_validate_theme_supportsincludes\theme-helpers\extras.php:411

actionadmin_initincludes\theme-helpers\jetpack-fallbacks\custom-content-types.php:17

actioninitincludes\theme-helpers\jetpack-fallbacks\genericons.php:8

actionadmin_menuincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:83

actionadmin_enqueue_scriptsincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:84

actionadmin_headincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:85

actionparse_queryincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:88

filterposts_resultsincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:89

actionwp_insert_postincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:91

filtertemplate_includeincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:96

filterenter_title_hereincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:98

filterpost_updated_messagesincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:99

filterdashboard_glance_itemsincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:100

actioncurrent_screenincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:444

filteradmin_noticesincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:487

actionthe_postincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:666

actionloop_startincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:1171

actionthe_postincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:1190

actionloop_endincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:1191

actioninitincludes\theme-helpers\jetpack-fallbacks\nova-restaurant\nova.php:1344

filterwordads_inpost_disableincludes\theme-helpers\jetpack-fallbacks\portfolio-shortcode\template-parts\loop.php:77

actionadmin_initincludes\theme-helpers\jetpack-fallbacks\portfolios.php:42

actionafter_switch_themeincludes\theme-helpers\jetpack-fallbacks\portfolios.php:45

actionimport_startincludes\theme-helpers\jetpack-fallbacks\portfolios.php:48

filterrest_api_allowed_post_typesincludes\theme-helpers\jetpack-fallbacks\portfolios.php:51

actionafter_switch_themeincludes\theme-helpers\jetpack-fallbacks\portfolios.php:73

filterpost_updated_messagesincludes\theme-helpers\jetpack-fallbacks\portfolios.php:76

actioncustomize_registerincludes\theme-helpers\jetpack-fallbacks\portfolios.php:85

actionadmin_enqueue_scriptsincludes\theme-helpers\jetpack-fallbacks\portfolios.php:88

filterwpcom_sitemap_post_typesincludes\theme-helpers\jetpack-fallbacks\portfolios.php:96

filterjetpack_sitemap_post_typesincludes\theme-helpers\jetpack-fallbacks\portfolios.php:99

filterpre_get_postsincludes\theme-helpers\jetpack-fallbacks\portfolios.php:103

actionswitch_themeincludes\theme-helpers\jetpack-fallbacks\portfolios.php:107

actioninitincludes\theme-helpers\jetpack-fallbacks\portfolios.php:910

actionjetpack_activate_module_custom-content-typesincludes\theme-helpers\jetpack-fallbacks\portfolios.php:914

actionwp_footerincludes\theme-helpers\jetpack-fallbacks\social-menu\icon-functions.php:21

filterwalker_nav_menu_start_elincludes\theme-helpers\jetpack-fallbacks\social-menu\icon-functions.php:108

actionwp_enqueue_scriptsincludes\theme-helpers\jetpack-fallbacks\social-menu.php:45

actionafter_setup_themeincludes\theme-helpers\jetpack-fallbacks\social-menu.php:55

filterdefault_option_jetpack_active_modulesincludes\theme-helpers\jetpack_customization.php:41

filterjetpack_get_available_modulesincludes\theme-helpers\jetpack_customization.php:45

filterdefault_option_sharing-optionsincludes\theme-helpers\jetpack_customization.php:46

actionafter_setup_themeincludes\theme-helpers\nova-menu\class-nova-menu.php:44

actioninitincludes\theme-helpers\nova-menu\class-nova-menu.php:56

actionwp_headincludes\theme-helpers\nova-menu\class-nova-menu.php:59

filterjetpack_nova_menu_item_loop_open_elementincludes\theme-helpers\nova-menu\class-nova-menu.php:223

filterjetpack_nova_menu_item_loop_close_elementincludes\theme-helpers\nova-menu\class-nova-menu.php:224

filterjetpack_nova_menu_item_loop_close_elementincludes\theme-helpers\nova-menu\class-nova-menu.php:227

actionloop_startincludes\theme-helpers\nova-menu\class-nova-menu.php:233

filterpixelgrade_customify_general_section_optionsincludes\theme-helpers\theme-dependent.php:26

actionwidgets_initincludes\theme-helpers\theme-dependent.php:32

actioninitincludes\theme-helpers\theme-dependent.php:71

actionadmin_bar_menuincludes\theme-helpers\theme-dependent.php:78

filterjetpack_development_modeincludes\theme-helpers\theme-dependent.php:81

actionafter_setup_themeincludes\theme-helpers\theme-dependent.php:83

actionafter_setup_themeincludes\theme-helpers\theme_support.php:40

Maintenance & Trust

Pixelgrade Assistant Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedApr 18, 2022

PHP min version5.6.40

Downloads75K

Community Trust

Rating0/100

Number of ratings0

Active installs2K

Alternatives

Pixelgrade Assistant Alternatives

Display PHP Version

display-php-version

Displays the currently installed PHP/MySQL version in the "At a Glance" admin dashboard widget.

30K No CVEs

WP PHP Version Display

wp-php-version-display

Displays the current running PHP/MySQL version inside "At a Glance" admin dashboard widget.

3K No CVEs

Diagnostic Glance

diagnostic-glance

100

Diagnostic summary of WordPress setup including themes, plugins, system config, and site stats -- formatted for support forum posting.

40 No CVEs

PHP Version Plus

php-version-plus

View essential PHP configurations on your admin dashboard.

40 No CVEs

Productive Demo Importer

productive-demo-importer

100

Easily import demo data to test our themes' functionality and performance.

10 No CVEs

Developer Profile

Pixelgrade Assistant Developer Profile

pixelgrade

8 plugins · 37K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

214 days

View full developer profile

Detection Fingerprints

How We Detect Pixelgrade Assistant

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pixelgrade-assistant/dist/css/pixelgrade-assistant-admin.css/wp-content/plugins/pixelgrade-assistant/dist/js/pixelgrade-assistant-admin.js/wp-content/plugins/pixelgrade-assistant/dist/js/vendors/pix-icons.js

Script Paths

/wp-content/plugins/pixelgrade-assistant/dist/js/vendors/pix-icons.js

Version Parameters

pixelgrade-assistant/dist/css/pixelgrade-assistant-admin.css?ver=pixelgrade-assistant/dist/js/pixelgrade-assistant-admin.js?ver=pixelgrade-assistant/dist/js/vendors/pix-icons.js?ver=

HTML / DOM Fingerprints

CSS Classes

pix-dashboard-wrapperpix-grid-layoutpix-cardpix-sectionpix-help-widget

HTML Comments

Data Attributes

data-pix-assistantdata-pix-field-iddata-pix-field-value

JS Globals

pixelgrade_assistant_optionsPixelgradeAssistantFrontend

REST Endpoints

/pixassist/v1/global_state/pixassist/v1/localized/pixassist/v1/cleanup/pixassist/v1/disconnect_user/pixassist/v1/import/pixassist/v1/upload_media/pixassist/v1/data_collect

FAQ