Does Portfolio Pro Advance have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Portfolio Pro Advance compatible with WordPress 6.9.4?

According to WordPress.org data, Portfolio Pro Advance 1.3.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Portfolio Pro Advance updated?

Portfolio Pro Advance was last updated on Dec 23, 2025. Frequent updates are generally a positive security signal.

What is Portfolio Pro Advance's security score?

Portfolio Pro Advance has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Portfolio Pro Advance Security & Risk Analysis

wordpress.org/plugins/portfolio-pro-advance

Advanced portfolio management with multiple layouts and pro features.

0 active installs v1.3.1 PHP + WP 5.0+ Updated Dec 23, 2025

elementorgalleryportfolioprojectsshowcase

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Portfolio Pro Advance Safe to Use in 2026?

Generally Safe

Score 100/100

Portfolio Pro Advance has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The "portfolio-pro-advance" plugin v1.3.1 demonstrates a generally strong security posture based on the provided static analysis. The absence of critical issues like dangerous functions, unsanitized taint flows, and raw SQL queries is a significant strength. The plugin also shows good practices in output escaping, nonce checks, and capability checks, indicating developer awareness of security principles. Furthermore, the plugin has no recorded vulnerability history, which is a positive sign suggesting a history of stable and secure code.

However, the analysis does reveal a small attack surface with one shortcode, which, while not explicitly stated as unprotected, is an entry point that warrants careful review. Although the static analysis shows a high percentage of properly escaped outputs, the remaining 10% could still represent potential XSS vulnerabilities if exploited in a specific context. The lack of reported vulnerabilities in its history is excellent, but it doesn't guarantee future immunity, especially as plugins evolve and new attack vectors emerge.

In conclusion, "portfolio-pro-advance" v1.3.1 appears to be a relatively secure plugin. Its strengths lie in its clean code, adherence to prepared statements, and good use of security checks. The main area of caution would be a thorough review of the shortcode implementation and the small percentage of unescaped outputs, though the overall risk is assessed as low given the absence of known historical vulnerabilities and critical static analysis findings.

Key Concerns

Potential for unescaped output
Shortcode as an entry point

Vulnerabilities

None known

Portfolio Pro Advance Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Portfolio Pro Advance Release Timeline

v1.3.1Current

v1.3

v1.2.9

v1.2.8

Code Analysis

Analyzed Apr 6, 2026

Portfolio Pro Advance Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

184 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

90% escaped204 total outputs

Attack Surface

Portfolio Pro Advance Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[petruth_display] includes/class-portfolio-pro-shortcode.php:15

WordPress Hooks 28

actionadmin_enqueue_scriptsincludes/admin/dashboard.php:5

filterthe_contentincludes/class-portfolio-meta-display.php:17

actionwpincludes/class-portfolio-pro-analytics.php:15

actionadmin_menuincludes/class-portfolio-pro-analytics.php:16

filtermanage_portfolio_pro_posts_columnsincludes/class-portfolio-pro-analytics.php:17

actionmanage_portfolio_pro_posts_custom_columnincludes/class-portfolio-pro-analytics.php:18

actionelementor/widgets/registerincludes/class-portfolio-pro-elementor.php:20

actionelementor/elements/categories_registeredincludes/class-portfolio-pro-elementor.php:21

actionadmin_noticesincludes/class-portfolio-pro-elementor.php:25

filterthe_contentincludes/class-portfolio-pro-frontend.php:7

actioninitincludes/class-portfolio-pro-post-types.php:16

actioninitincludes/class-portfolio-pro-post-types.php:17

actioninitincludes/class-portfolio-pro-post-types.php:18

actionadd_meta_boxesincludes/class-portfolio-pro-post-types.php:20

actionadd_meta_boxesincludes/class-portfolio-pro-post-types.php:21

actionsave_postincludes/class-portfolio-pro-post-types.php:23

actionsave_postincludes/class-portfolio-pro-post-types.php:24

actionadmin_menuincludes/class-portfolio-pro-settings.php:15

actionadmin_initincludes/class-portfolio-pro-settings.php:16

actionadmin_enqueue_scriptsincludes/class-portfolio-pro-settings.php:17

actionadmin_enqueue_scriptsincludes/helpers.php:73

actionadmin_enqueue_scriptsincludes/helpers.php:132

actionplugins_loadedportfolio-pro-advance.php:54

filtermanage_edit-petruth_portfolio_sortable_columnsportfolio-pro-advance.php:57

actionpre_get_postsportfolio-pro-advance.php:62

actionadmin_menuportfolio-pro-advance.php:87

actionwp_enqueue_scriptsportfolio-pro-advance.php:122

actionwp_enqueue_scriptsportfolio-pro-advance.php:189

Maintenance & Trust

Portfolio Pro Advance Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 23, 2025

PHP min version

Downloads513

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Portfolio Pro Advance Alternatives

Portfolio Block – The Ultimate Project & Portfolio Builder

portfolio-block

100

Portfolio Block helps you create and display modern, responsive portfolios with multiple layouts, filters, and full design control.

700 No CVEs

Project Showcase – A WordPress Plugin to Display Projects in Various Layouts

gs-projects

Introducing a WordPress plugin that enables users to display their projects in a variety of layouts through a project showcase.

200 1 CVE

Realmagic Portfolio

realmagic-portfolio

100

A free, fully featured portfolio display plugin for WordPress. Start with a simple grid layout, with upcoming features like filterable views, sliders, …

0 No CVEs

Premium Portfolio Features for Phlox theme

auxin-portfolio

Showcase your projects beautifully in Phlox theme

40K 4 CVEs

WPZOOM Portfolio Lite – Filterable Portfolio Plugin

wpzoom-portfolio

Portfolio plugin for WordPress. Create filterable portfolio grids with masonry layouts and lightbox. Ideal for photographers, designers, agencies.

20K 2 CVEs

Developer Profile

Portfolio Pro Advance Developer Profile

Nastin MG

5 plugins · 1K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Portfolio Pro Advance

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/portfolio-pro-advance/assets/css/frontend.css/wp-content/plugins/portfolio-pro-advance/assets/js/frontend.js

Script Paths

/wp-content/plugins/portfolio-pro-advance/assets/js/frontend.js

Version Parameters

portfolio-pro-advance/assets/css/frontend.css?ver=portfolio-pro-advance/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

petruth-contentpetruth-overlaypetruth-meta-detailspetruth-category-listpetruth-filter-buttonpetruth-filter-buttonspetruth-filter-container

Data Attributes

data-petruth-filter

JS Globals

petruth_analytics_data

Shortcode Output

[petruth_portfolio]

FAQ