Does QuadMenu – Divi Mega Menu have any unpatched vulnerabilities?

No. All known vulnerabilities in QuadMenu – Divi Mega Menu have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is QuadMenu – Divi Mega Menu compatible with WordPress 5.7.0?

According to WordPress.org data, QuadMenu – Divi Mega Menu 1.2.0 has been tested up to WordPress 5.7.0. Check the plugin's changelog for the latest compatibility information.

How often is QuadMenu – Divi Mega Menu updated?

QuadMenu – Divi Mega Menu was last updated on Mar 15, 2021. Frequent updates are generally a positive security signal.

What is QuadMenu – Divi Mega Menu's security score?

QuadMenu – Divi Mega Menu has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

QuadMenu – Divi Mega Menu Security & Risk Analysis

wordpress.org/plugins/quadmenu-divi

Create a Mega Menu in Divi.

1K active installs v1.2.0 PHP + WP 4.8+ Updated Mar 15, 2021

dividivi-megamenudivi-menuquadmenu

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is QuadMenu – Divi Mega Menu Safe to Use in 2026?

Generally Safe

Score 85/100

QuadMenu – Divi Mega Menu has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The static analysis of quadmenu-divi v1.2.0 reveals a generally good security posture with no identified vulnerabilities in the attack surface, dangerous functions, or taint analysis. The plugin demonstrates a commitment to secure coding practices by exclusively using prepared statements for all SQL queries and implementing capability checks for its outputs. The absence of recorded CVEs and a history of vulnerabilities further reinforces this positive assessment, suggesting a well-maintained and secure codebase.

However, a significant concern arises from the complete lack of output escaping. With two identified output points and 0% properly escaped, this presents a clear risk of Cross-Site Scripting (XSS) vulnerabilities. While the plugin has no identified external HTTP requests, file operations, or specific nonce checks, the unescaped output is a critical oversight that could be exploited by attackers to inject malicious scripts into user interfaces.

In conclusion, quadmenu-divi v1.2.0 exhibits strengths in its limited attack surface and secure database interaction. Nevertheless, the critical lack of output escaping poses a substantial security risk that needs immediate attention. The absence of historical vulnerabilities is a positive sign, but it does not negate the present danger posed by the unescaped outputs.

Key Concerns

Output escaping is not implemented

Vulnerabilities

None known

QuadMenu – Divi Mega Menu Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

QuadMenu – Divi Mega Menu Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

QuadMenu – Divi Mega Menu Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 10

actionadmin_noticesquadmenu-divi.php:27

actioninitquadmenu-divi.php:29

actioninitquadmenu-divi.php:31

filterquadmenu_locate_templatequadmenu-divi.php:33

filterquadmenu_default_optionsquadmenu-divi.php:35

filterquadmenu_default_themesquadmenu-divi.php:37

filterquadmenu_developer_optionsquadmenu-divi.php:39

actionwp_enqueue_scriptsquadmenu-divi.php:103

filterquadmenu_compiler_filesquadmenu-divi.php:105

actionet_header_topquadmenu-divi.php:175

Maintenance & Trust

QuadMenu – Divi Mega Menu Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.0

Last updatedMar 15, 2021

PHP min version

Downloads60K

Community Trust

Rating60/100

Number of ratings6

Active installs1K

Alternatives

QuadMenu – Divi Mega Menu Alternatives

QuadMenu – OceanWP Mega Menu

quadmenu-oceanwp

Integrates QuadMenu with the OceanWP theme. Requires QuadMenu and OceanWP.

300 No CVEs

PAJ Divi Menu Options

paj-divi-menu-options

This plugin adds four options to the Divi desktop menu via the wordpress customizer, including options to increase menu breakpoint and menu item hover …

100 No CVEs

Supreme Modules Lite – Divi Theme, Extra Theme and Divi Builder

supreme-modules-for-divi

Divi Supreme lite plugin enhances the experience and features found on Divi and extend with custom creative modules to help you build amazing websites …

200K 3 CVEs

Popups for Divi

popups-for-divi

100

A quick and easy way to create Popup layers inside the Divi Visual Builder!

100K No CVEs

Column Shortcodes

column-shortcodes

Adds shortcodes to easily create columns in your posts or pages.

60K No CVEs

Developer Profile

QuadMenu – Divi Mega Menu Developer Profile

QuadMenu

7 plugins · 2K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect QuadMenu – Divi Mega Menu

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/quadmenu-divi/assets/quadmenu-divi.less

Version Parameters

quadmenu-divi/quadmenu-divi.css?ver=

HTML / DOM Fingerprints

CSS Classes

mobile_navmobile_menu_baret_mobile_menu

Data Attributes

data-layoutdata-theme

JS Globals

QuadMenu_Divi

Shortcode Output

<div class="mobile_nav closed"><span class="select_page">Select Page</span><span class="mobile_menu_bar mobile_menu_bar_toggle"></span><div class="et_mobile_menu">

FAQ