Does Simple Masonry Layout have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Masonry Layout have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Masonry Layout compatible with WordPress 6.3.8?

According to WordPress.org data, Simple Masonry Layout 2.0.2 has been tested up to WordPress 6.3.8. Check the plugin's changelog for the latest compatibility information.

How often is Simple Masonry Layout updated?

Simple Masonry Layout was last updated on Oct 4, 2023. Frequent updates are generally a positive security signal.

What is Simple Masonry Layout's security score?

Simple Masonry Layout has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Masonry Layout Security & Risk Analysis

wordpress.org/plugins/simple-masonry-layout

With simple shortcode, Masonry Layout in action.

1K active installs v2.0.2 PHP + WP 4.2+ Updated Oct 4, 2023

grid-layoutjquery-masonrymasonrymasonry-layoutmasonry-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Masonry Layout Safe to Use in 2026?

Generally Safe

Score 85/100

Simple Masonry Layout has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The simple-masonry-layout plugin version 2.0.2 demonstrates a generally good security posture. The static analysis reveals no dangerous functions, no file operations, no external HTTP requests, and all SQL queries are properly prepared. This indicates a solid foundation for secure coding practices. The plugin also enforces capability checks, which is a positive sign of considering user permissions.

However, there are some areas for improvement. The lack of nonce checks on its single shortcode is a potential concern, as shortcodes can serve as an entry point for malicious input if not properly secured. While the total output escaping is decent at 67%, the remaining 33% are not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if the unescaped output is user-controllable.

Furthermore, the plugin has no recorded vulnerability history, which is excellent. This suggests a history of secure development or diligent patching by developers. In conclusion, while the plugin is built on strong security fundamentals, the absence of nonce checks on its shortcode and the presence of unescaped output represent the primary weaknesses that could be exploited. Addressing these would significantly enhance its security.

Key Concerns

Missing nonce checks on shortcode
Unescaped output present

Vulnerabilities

None known

Simple Masonry Layout Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Simple Masonry Layout Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

29 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

jQuery

Output Escaping

67% escaped43 total outputs

Attack Surface

Simple Masonry Layout Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[simple_masonry] includes\class.simple.masonry.front.php:22

WordPress Hooks 5

actionadd_meta_boxesincludes\class.simple.masonry.admin.php:25

actionsave_postincludes\class.simple.masonry.admin.php:26

actioninitincludes\class.simple.masonry.admin.php:27

actionadmin_enqueue_scriptsincludes\class.simple.masonry.admin.php:28

actionwp_enqueue_scriptsincludes\class.simple.masonry.front.php:21

Maintenance & Trust

Simple Masonry Layout Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8

Last updatedOct 4, 2023

PHP min version

Downloads43K

Community Trust

Rating88/100

Number of ratings9

Active installs1K

Alternatives

Simple Masonry Layout Alternatives

JetGridBuilder — Grid Builder for Elementor and Gutenberg

jetgridbuilder

JetGridBuilder plugin for Elementor and Gutenberg free addon for creating wow-grids on your website. Forget about the limits of premade layouts.

5K 1 CVE

jQuery Masonry Image Gallery

jquery-masonry-image-gallery

Adds a Masonry layout to all built-in WordPress Galleries.

1K No CVEs

Post Grid

post-grid

Post Grid is a powerful WordPress plugin for creating customizable post grid layouts with advanced query options, allowing users to display posts dyna …

30K 2 unpatched

Meow Gallery

meow-gallery

Tired of slow, bloated gallery plugins? You've earned a coffee ☺️ Polished, beautiful galleries that are blazing fast.

10K 4 CVEs

YMC Filter

ymc-smart-filter

A powerful and flexible plugin to filter and display posts, custom post types, and other content in beautifully designed grid layouts.

5K 4 CVEs

Developer Profile

Simple Masonry Layout Developer Profile

Tako

1 plugin · 1K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Masonry Layout

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-masonry-layout/assets/css/admin.css/wp-content/plugins/simple-masonry-layout/assets/js/masonry.pkgd.min.js/wp-content/plugins/simple-masonry-layout/assets/js/simple-masonry-layout.js

Script Paths

/wp-content/plugins/simple-masonry-layout/assets/js/masonry.pkgd.min.js/wp-content/plugins/simple-masonry-layout/assets/js/simple-masonry-layout.js

Version Parameters

simple-masonry-layout/assets/css/admin.css?ver=simple-masonry-layout/assets/js/masonry.pkgd.min.js?ver=simple-masonry-layout/assets/js/simple-masonry-layout.js?ver=

HTML / DOM Fingerprints

CSS Classes

sm-masonry-layout-grid

HTML Comments

Data Attributes

data-sm-post-typedata-sm-category-namedata-sm-per-pagedata-sm-orderbydata-sm-orderdata-sm-darkbox+3 more

JS Globals

simpleMasonryLayout

Shortcode Output

[simple_masonrygallery="yes"sm_category_name="

FAQ