WP-Safety

Post Designer Security & Risk Analysis

wordpress.org/plugins/post-designer

Post Designer is a WordPress plugin that adds two new Gutenberg blocks: Post List and Post Carousel. The Post List block allows you to display a list …

0 active installs v1.0.3 PHP 7.0+ WP 5.9+ Updated Jul 8, 2025
gutenberg-blockspost-carouselspost-customizationpost-listswordpress-design-plugin
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Post Designer Safe to Use in 2026?

Generally Safe

Score 100/100

Post Designer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago
Risk Assessment

The 'post-designer' plugin version 1.0.3 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of identified dangerous functions, SQL injection vulnerabilities (all queries use prepared statements), and a near-perfect output escaping rate are significant strengths. Furthermore, the plugin has no recorded vulnerabilities, including CVEs, which suggests a mature and well-maintained codebase. The lack of file operations and external HTTP requests also reduces potential attack vectors.

However, a key concern arises from the complete absence of nonce checks and capability checks. This indicates that potentially sensitive actions or data access points might not be adequately protected against unauthorized access or manipulation, especially if any entry points were to be discovered or introduced in future versions. The zero taint analysis flows and zero entry points are positive indicators, but the lack of security checks on these potential entry points is a notable weakness. Overall, while the current state appears secure, the lack of fundamental security checks like nonces and capability checks presents a latent risk that could be exploited if the attack surface were to expand or if new vulnerabilities were discovered.

Key Concerns

  • No nonce checks found
  • No capability checks found
Vulnerabilities
None known

Post Designer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Post Designer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
137 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

99% escaped139 total outputs
Attack Surface

Post Designer Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 9
actionplugins_loadedincludes\Addons\WooCommerce.php:36
filterpd_post_after_footerincludes\Addons\WooCommerce.php:51
actionrest_api_initincludes\API\Routes.php:37
actioninitincludes\Blocks\Blocks.php:32
filterblock_categories_allincludes\Blocks\Blocks.php:33
filterexcerpt_lengthincludes\Blocks\Blocks.php:148
filterexcerpt_moreincludes\Blocks\Blocks.php:168
actionwp_enqueue_scriptsincludes\Enqueue\Enqueue.php:47
actioninitpost-designer.php:60
Maintenance & Trust

Post Designer Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedJul 8, 2025
PHP min version7.0
Downloads803

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Post Designer Alternatives

Spectra Gutenberg Blocks – Website Builder for the Block Editor

Spectra Gutenberg Blocks – Website Builder for the Block Editor

ultimate-addons-for-gutenberg

A
92

Power-up Gutenberg with advanced blocks for faster website creation. Build your WordPress website effortlessly using powerful building blocks!

1.0M 26 CVEs
Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

kadence-blocks

A
86

20+ AI-powered Gutenberg Blocks with endless options, enabling top-notch efficiency for high-performance dynamic website creation.

600K 32 CVEs
Page Builder: Pagelayer – Drag and Drop website builder

Page Builder: Pagelayer – Drag and Drop website builder

pagelayer

A
88

The most advanced frontend drag & drop page builder. Pagelayer is a light weight but extremely powerful Website Builder.

400K 26 CVEs
Page Builder Gutenberg Blocks – CoBlocks

Page Builder Gutenberg Blocks – CoBlocks

coblocks

A
95

CoBlocks is a suite of page builder WordPress blocks for Gutenberg, with 10+ new blocks and a true page builder experience with rows and columns.

300K 7 CVEs
Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE

Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE

otter-blocks

A
94

Quickly create WordPress pages with 20+ blocks, 100+ ready-to-import designs, and advanced editor extensions. It’s website building, Lego-style!

300K 11 CVEs
Developer Profile

Post Designer Developer Profile

shewa12

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Post Designer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/post-designer/assets/lib/slick-slider.min.js/wp-content/plugins/post-designer/assets/lib/slick-config.js/wp-content/plugins/post-designer/assets/lib/slick.css/wp-content/plugins/post-designer/assets/lib/slick-theme.css
Script Paths
/wp-content/plugins/post-designer/assets/lib/slick-slider.min.js/wp-content/plugins/post-designer/assets/lib/slick-config.js
Version Parameters
post-designer/assets/lib/slick-slider.min.js?ver=post-designer/assets/lib/slick-config.js?ver=post-designer/assets/lib/slick.css?ver=post-designer/assets/lib/slick-theme.css?ver=

HTML / DOM Fingerprints

CSS Classes
pd-slick-slider
REST Endpoints
/wp-json/post-designer/v1/get-posts/wp-json/post-designer/v1/get-terms/wp-json/post-designer/v1/get-post-types/wp-json/post-designer/v1/get-post-taxonomies
FAQ

Frequently Asked Questions about Post Designer