Restrict Elementor Widgets, Columns and Sections Security & Risk Analysis
wordpress.org/plugins/restrict-elementor-widgetsRestrict Elementor Widgets based on different conditions. Works for any widgets from any plugins.
Is Restrict Elementor Widgets, Columns and Sections Safe to Use in 2026?
Mostly Safe
Score 78/100Restrict Elementor Widgets, Columns and Sections is generally safe to use. 1 past CVE were resolved. Keep it updated.
The 'restrict-elementor-widgets' plugin, version 1.12, presents a mixed security posture. While the static analysis shows no critical or high-severity code signals like dangerous functions, raw SQL queries, or unsanitized taint flows, there are areas for improvement. The plugin has a relatively small attack surface with no exposed AJAX handlers or REST API routes without authentication. However, the low percentage of properly escaped output (54%) is a notable concern, indicating potential for Cross-Site Scripting (XSS) vulnerabilities, especially if the inputs are user-controlled.
The plugin's vulnerability history is a significant red flag. With one known medium-severity CVE and one currently unpatched vulnerability, the pattern suggests a recurring issue with missing authorization. This is further corroborated by the vulnerability history mentioning 'Missing Authorization' as a common type. The recent date of the last vulnerability (2025-12-13) implies that this is an ongoing problem that has not been adequately addressed in recent versions.
In conclusion, while the code itself appears to avoid some common pitfalls like raw SQL and dangerous functions, the persistent history of authorization vulnerabilities and the high rate of unescaped output pose significant risks. The presence of an unpatched CVE is a critical issue that requires immediate attention.
Key Concerns
- Unpatched medium severity CVE
- Missing authorization vulnerability history
- Low output escaping percentage
- No capability checks
- No nonce checks
Restrict Elementor Widgets, Columns and Sections Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Restrict Elementor Widgets, Columns and Sections <= 1.12 - Missing Authorization
Restrict Elementor Widgets, Columns and Sections Code Analysis
Output Escaping
Restrict Elementor Widgets, Columns and Sections Attack Surface
Scheduled Events 1
Maintenance & Trust
Restrict Elementor Widgets, Columns and Sections Maintenance & Trust
Maintenance Signals
Community Trust
Restrict Elementor Widgets, Columns and Sections Alternatives
Advanced Datepicker – Restrict Date for Elementor Forms
restrict-date-for-elementor-forms
Restrict Dates is a Elementor Forms add-on that restricts users from selecting specific dates in your Elementor Forms date picker field.
Timer Counter Elementor Addons
timer-element-for-elementor
Timer Counter Elementor Addons for Elementor WordPress Page Builder. A fully free and endless customization count down days, hours or minutes.
Restrict Elementor Widgets, Columns and Sections Developer Profile
10 plugins · 41K total installs
How We Detect Restrict Elementor Widgets, Columns and Sections
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/restrict-elementor-widgets/assets/css/rew-admin.css/wp-content/plugins/restrict-elementor-widgets/assets/css/rew-frontend.css/wp-content/plugins/restrict-elementor-widgets/assets/js/rew-admin.js/wp-content/plugins/restrict-elementor-widgets/assets/js/rew-frontend.js/wp-content/plugins/restrict-elementor-widgets/assets/js/rew-admin.js/wp-content/plugins/restrict-elementor-widgets/assets/js/rew-frontend.jsrestrict-elementor-widgets/assets/css/rew-admin.css?ver=restrict-elementor-widgets/assets/css/rew-frontend.css?ver=restrict-elementor-widgets/assets/js/rew-admin.js?ver=restrict-elementor-widgets/assets/js/rew-frontend.js?ver=HTML / DOM Fingerprints
elementor-control-rew_restrict_optionsrew-settings-notice-wrapperif accessed directly, exit.data-rew-controls