Does QR Block have any unpatched vulnerabilities?

No. All known vulnerabilities in QR Block have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is QR Block compatible with WordPress 6.1.10?

According to WordPress.org data, QR Block 0.0.13 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

Is QR Block compatible with PHP 7.0+?

QR Block requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is QR Block updated?

QR Block was last updated on Jan 23, 2023. Frequent updates are generally a positive security signal.

What is QR Block's security score?

QR Block has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

QR Block Security & Risk Analysis

wordpress.org/plugins/qr-block

Another amazing QR Code block for Gutenberg.

600 active installs v0.0.13 PHP 7.0+ WP 5.8+ Updated Jan 23, 2023

blockblocksqrqr-codeqr-block

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is QR Block Safe to Use in 2026?

Generally Safe

Score 85/100

QR Block has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The qr-block plugin v0.0.13 exhibits an exceptionally clean static analysis report, with no identified attack surface, dangerous functions, direct SQL queries, unescaped output, file operations, external requests, or taint flows. This suggests a strong adherence to secure coding practices within the analyzed code. The absence of any recorded vulnerabilities, past or present, further reinforces this positive security posture. However, the lack of any capability checks or nonce checks across its entry points is a significant concern, even if no immediate exploits are apparent from the static analysis. While the current version appears secure, this absence of authentication and authorization on potential interaction points leaves it vulnerable to future attacks should any new entry points be introduced or if an attacker can bypass these non-existent checks.

Key Concerns

No capability checks on entry points
No nonce checks on entry points

Vulnerabilities

None known

QR Block Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

QR Block Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

QR Block Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actioninitqr-block.php:22

Maintenance & Trust

QR Block Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedJan 23, 2023

PHP min version7.0

Downloads10K

Community Trust

Rating100/100

Number of ratings1

Active installs600

Alternatives

QR Block Alternatives

Czech QR Payments for WooCommerce

czech-qr-code-bank-transfer-payment-for-woocommerce

100

Payment method for fast QR code bank transfer payment from Czech banking mobile apps

100 No CVEs

QR Code Generator & Scanner – Dynamic QR Codes for WordPress

zolo-qr-code

100

The QR Code block helps you create custom QR codes directly on your WordPress website and quickly access links, promotions, or contact info.

70 No CVEs

Awesomesauce Blocks

awesomesauce-blocks

100

Awesomesauce blocks for your WordPress website with ultra lightweight codes and extraterrestrial design! (ﾉ◕ヮ◕)ﾉ*:･ﾟ✧

0 No CVEs

Dynamic QR Code Block – QR Code Generator with Logo Support

dynamic-qr-code-block

100

Create professional, customizable QR codes directly in the WordPress block editor. Add your logo, customize colors, and choose from multiple formats ( …

10 No CVEs

Qroko Blocks

qroko-blocks

Custom Blocks for headless WordPress

10 No CVEs

Developer Profile

QR Block Developer Profile

retrofox

2 plugins · 600 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect QR Block

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/qr-block/build/block.json/wp-content/plugins/qr-block/build/index.js/wp-content/plugins/qr-block/build/style-index.css

Script Paths

/wp-content/plugins/qr-block/build/index.js

Version Parameters

qr-block/build/index.js?ver=qr-block/build/style-index.css?ver=

HTML / DOM Fingerprints

CSS Classes

wp-block-wphackers-qr-block

FAQ