ReciPress – Pantry Widget add-on Security & Risk Analysis
wordpress.org/plugins/recipress-pantrywidgetList ReciPress Ingredients in Your Pantry
Is ReciPress – Pantry Widget add-on Safe to Use in 2026?
Generally Safe
Score 85/100ReciPress – Pantry Widget add-on has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The recipress-pantrywidget plugin v1.0 demonstrates a generally good security posture based on the static analysis provided. It boasts zero identified attack surface entry points, no dangerous functions, and all SQL queries are properly prepared, indicating a solid foundation for preventing common web vulnerabilities.
However, a significant concern arises from the low percentage of properly escaped output (42%). This leaves the plugin susceptible to Cross-Site Scripting (XSS) vulnerabilities, where malicious scripts could be injected through user-supplied data that is not adequately sanitized before being displayed. The lack of nonce checks and capability checks also presents potential weaknesses, especially if any hidden entry points were discovered or if the plugin's functionality could be exploited without proper authorization.
With no recorded vulnerabilities in its history, this plugin appears to have been secure in the past. Despite the promising absence of critical code signals and taint flows, the unescaped output is a tangible risk that needs attention. The overall assessment is that while the plugin has strong fundamentals, the identified output escaping issue warrants improvement to achieve a truly robust security profile.
Key Concerns
- Low percentage of properly escaped output
- No nonce checks found
- No capability checks found
ReciPress – Pantry Widget add-on Security Vulnerabilities
ReciPress – Pantry Widget add-on Code Analysis
Output Escaping
ReciPress – Pantry Widget add-on Attack Surface
WordPress Hooks 1
Maintenance & Trust
ReciPress – Pantry Widget add-on Maintenance & Trust
Maintenance Signals
Community Trust
ReciPress – Pantry Widget add-on Alternatives
Whisk Recipe Widgets
shoppable-recipes
Lightweight plugin that adds interactive Save to Whisk & Shopping List widgets for you recipes.
WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes)
delicious-recipes
WP Delicious is an SEO-optimized and Schema-friendly recipe plugin for food bloggers to create and display unlimited recipes.
Recipe Block
recipe-block
A block for displaying recipes on your WordPress site 🥐 🍲 🥘 🍪
Chicory Shoppable Recipes
chicory-recipe-ingredients
Chicory makes recipe monetization easy. Grow revenue for your blog and offer site visitors the ability to shop directly from your recipe content.
Erudus One for WordPress
erudus-one
Display Erudus product data inside of WordPress using the Erudus API.
ReciPress – Pantry Widget add-on Developer Profile
3 plugins · 1K total installs
How We Detect ReciPress – Pantry Widget add-on
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/recipress-pantrywidget/css/pantrywidget.css/wp-content/plugins/recipress-pantrywidget/js/pantrywidget.js/wp-content/plugins/recipress-pantrywidget/js/pantrywidget.jsrecipress-pantrywidget/css/pantrywidget.css?ver=recipress-pantrywidget/js/pantrywidget.js?ver=HTML / DOM Fingerprints
recipress-pantrywidgetrecipress_pantrywidget