WP-Safety

Sticky for SiteOrigin Security & Risk Analysis

wordpress.org/plugins/sticky-for-siteorigin

Stick Widgets inside their rows for Siteorigin Page Builder

100 active installs v1.0.1 PHP + WP 4.7+ Updated May 9, 2017
siteoriginstickysticky-kitwidgets
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Sticky for SiteOrigin Safe to Use in 2026?

Generally Safe

Score 85/100

Sticky for SiteOrigin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

Based on the provided static analysis and vulnerability history, the "sticky-for-siteorigin" v1.0.1 plugin exhibits an exceptionally strong security posture. The absence of any identified attack vectors, dangerous functions, unsanitized taint flows, or raw SQL queries is highly commendable. Furthermore, the complete lack of known CVEs and the perfect adherence to output escaping and prepared statements indicate meticulous development practices. The plugin appears to be built with security as a primary concern, demonstrating robust defensive coding principles. While the lack of certain security checks like nonces and capability checks on entry points might seem like a concern at first glance, it is mitigated by the fact that there are zero entry points identified. This suggests that the plugin does not expose any functionality that would typically require these checks, thus rendering the absence less of a risk in this specific context. Overall, this plugin appears to be very secure.

Vulnerabilities
None known

Sticky for SiteOrigin Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Sticky for SiteOrigin Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0
Attack Surface

Sticky for SiteOrigin Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 8
actionplugins_loadedincludes\class-sticky-siteorigin.php:139
actionadmin_enqueue_scriptsincludes\class-sticky-siteorigin.php:154
actionadmin_enqueue_scriptsincludes\class-sticky-siteorigin.php:155
filtersiteorigin_panels_widget_style_groupsincludes\class-sticky-siteorigin.php:156
filtersiteorigin_panels_widget_style_fieldsincludes\class-sticky-siteorigin.php:158
actionwp_enqueue_scriptsincludes\class-sticky-siteorigin.php:174
actionwp_enqueue_scriptsincludes\class-sticky-siteorigin.php:175
filtersiteorigin_panels_widget_style_attributesincludes\class-sticky-siteorigin.php:176
Maintenance & Trust

Sticky for SiteOrigin Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32
Last updatedMay 9, 2017
PHP min version
Downloads5K

Community Trust

Rating0/100
Number of ratings0
Active installs100
Alternatives

Sticky for SiteOrigin Alternatives

Livemesh SiteOrigin Widgets

Livemesh SiteOrigin Widgets

livemesh-siteorigin-widgets

A
96

A collection of premium quality widgets for use in any widgetized area or in SiteOrigin page builder. SiteOrigin Widgets Bundle is required.

20K 2 CVEs
Ultimate Addons for SiteOrigin

Ultimate Addons for SiteOrigin

addon-so-widgets-bundle

A
85

An ultimate collection of addons for SiteOrigin. SiteOrigin Widgets Bundle is required.

7K No CVEs
Zen Addons for SiteOrigin Page Builder

Zen Addons for SiteOrigin Page Builder

zen-addons-for-siteorigin-page-builder

A
85

Zen Addons is a collection of helpful widget extensions for SiteOrigin Page Builder. It's simple, flexible, and useful.

1K No CVEs
RA Widgets Bundle

RA Widgets Bundle

ra-widgets-bundle

A
85

A collection of widgets using the SiteOrigin Widgets API.

100 No CVEs
Ultimate Sticky Popup & Widgets

Ultimate Sticky Popup & Widgets

ultimate-sticky-popup-widgets

A
100

Ultimate Sticky Popup & Widgets is a simple, easy and fully-customizable WordPress plugin used to add popup on fixed position like bottom left, bo …

70 No CVEs
Developer Profile

Sticky for SiteOrigin Developer Profile

mimo

8 plugins · 910 total installs

85
trust score
Avg Security Score
87/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Sticky for SiteOrigin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sticky-for-siteorigin/css/sticky-siteorigin-admin.css/wp-content/plugins/sticky-for-siteorigin/js/sticky-siteorigin-admin.js
Script Paths
/wp-content/plugins/sticky-for-siteorigin/js/sticky-siteorigin-admin.js
Version Parameters
sticky-siteorigin-admin.css?ver=sticky-siteorigin-admin.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-sticky_typedata-sticky_offsetdata-sticky_spacer
FAQ

Frequently Asked Questions about Sticky for SiteOrigin