Does WPBakery RTL have any unpatched vulnerabilities?

No. All known vulnerabilities in WPBakery RTL have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WPBakery RTL compatible with WordPress 6.0.11?

According to WordPress.org data, WPBakery RTL 1.0 has been tested up to WordPress 6.0.11. Check the plugin's changelog for the latest compatibility information.

Is WPBakery RTL compatible with PHP 7.0+?

WPBakery RTL requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WPBakery RTL updated?

WPBakery RTL was last updated on May 29, 2022. Frequent updates are generally a positive security signal.

What is WPBakery RTL's security score?

WPBakery RTL has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WPBakery RTL Security & Risk Analysis

wordpress.org/plugins/rtl-bakery

WPBakery RTL sets the direction of reading and writing of the WPBakery page builder for proper working in RTL languages.

300 active installs v1.0 PHP 7.0+ WP 5.0+ Updated May 29, 2022

adminhebrewrtlvisual-composerwpbakery

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WPBakery RTL Safe to Use in 2026?

Generally Safe

Score 85/100

WPBakery RTL has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The 'rtl-bakery' v1.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events suggests a very limited attack surface, which is further mitigated by the lack of unprotected entry points. The code also demonstrates good practices by not utilizing dangerous functions, performing file operations, or making external HTTP requests. Furthermore, all SQL queries are correctly implemented using prepared statements, and there are no recorded vulnerabilities or CVEs, indicating a potentially stable and secure development history.

However, a significant concern arises from the output escaping. With one total output and zero percent properly escaped, this presents a clear risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic data displayed to users, even if not originating from user input, could be susceptible if not properly escaped. While the plugin currently has no recorded vulnerabilities, the presence of unescaped output is a critical oversight that needs immediate attention. The lack of nonce and capability checks, while not directly exploitable given the limited attack surface, also represents a deviation from best practices for securing WordPress functionalities.

Key Concerns

0% output escaping
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

WPBakery RTL Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WPBakery RTL Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

WPBakery RTL Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionwp_enqueue_scriptsrtl-bakery.php:30

actionadmin_enqueue_scriptsrtl-bakery.php:31

actionadmin_noticesrtl-bakery.php:50

filterinitrtl-bakery.php:71

Maintenance & Trust

WPBakery RTL Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11

Last updatedMay 29, 2022

PHP min version7.0

Downloads9K

Community Trust

Rating100/100

Number of ratings2

Active installs300

Alternatives

WPBakery RTL Alternatives

LTR RTL Admin content

ltrrtl-admin-content

Enable LTR in admin content area. Click the admin bar button to switch between RTL & LTR.

4K No CVEs

Mega Addons For WPBakery Page Builder

mega-addons-for-visual-composer

34+ Addons WPBakery extension, Beautifully designed unique elements, Includes Premium quality addons For WPBakery Page Builder.

30K 2 unpatched

Video Background

video-background

Easily assign a video background to any element on your WordPress pages or posts. Now compatible with WPBakery (Visual Composer) and SiteOrigin Page B …

10K 1 CVE

Innovs WPBakery Visual Composer WHMCS Elements

void-visual-whmcs-element

🚀 This WordPress Plugin seamlessly integrates various WPBakery Page Builder widgets with WHMCS, the leading solution for hosting companies to bill and …

2K 2 unpatched

Post Slider For WPBakery Page Builder

post-carousel-slider-for-visual-composer

Drag & touch Post Carousel anything at any position (row / column) in VC

1K No CVEs

Developer Profile

WPBakery RTL Developer Profile

Combar Digital

3 plugins · 550 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WPBakery RTL

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/rtl-bakery/css/rtl-bakery-backend.css/wp-content/plugins/rtl-bakery/css/rtl-bakery.css

Version Parameters

rtl-bakery/css/rtl-bakery-backend.css?ver=rtl-bakery/css/rtl-bakery.css?ver=

HTML / DOM Fingerprints

FAQ