Does SWPanel AI Builder have any unpatched vulnerabilities?

No. All known vulnerabilities in SWPanel AI Builder have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SWPanel AI Builder compatible with WordPress 6.9.4?

According to WordPress.org data, SWPanel AI Builder 1.0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is SWPanel AI Builder compatible with PHP 7.4+?

SWPanel AI Builder requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SWPanel AI Builder updated?

SWPanel AI Builder was last updated on Jan 30, 2026. Frequent updates are generally a positive security signal.

What is SWPanel AI Builder's security score?

SWPanel AI Builder has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SWPanel AI Builder Security & Risk Analysis

wordpress.org/plugins/swpanel-ai

Create and edit your website using AI. Generate and modify content directly inside the WordPress block editor with SWPanel AI Builder.

0 active installs v1.0.3 PHP 7.4+ WP 6.8+ Updated Jan 30, 2026

aiblock-editorcontent-generationgutenbergwebsite-builder

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is SWPanel AI Builder Safe to Use in 2026?

Generally Safe

Score 100/100

SWPanel AI Builder has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "swpanel-ai" v1.0.3 plugin exhibits a mixed security posture. On the positive side, it demonstrates excellent output sanitization, with 100% of outputs properly escaped, and there are no recorded past vulnerabilities or critical taint flows. This suggests a developer with some awareness of secure coding practices, particularly concerning output rendering. However, a significant concern arises from the presence of five AJAX handlers, all of which lack authentication checks. This creates a substantial attack surface that could be exploited by unauthenticated users to trigger unintended actions within the plugin.

The static analysis reveals a critical weakness in the handling of AJAX requests, directly exposing these entry points. While the code signals show no immediately dangerous functions or file operations, the SQL query is executed without prepared statements, which is a potential vector for SQL injection if the query inputs are not meticulously sanitized elsewhere (which is not evident from the provided data). The plugin also makes an external HTTP request, which could be a vector for SSRF if not handled carefully. Despite the lack of historical vulnerabilities, the current state of the code analysis points to several areas requiring immediate attention to mitigate potential risks.

In conclusion, the plugin has strengths in output escaping and a clean vulnerability history. However, the lack of authentication on all AJAX handlers is a severe oversight that significantly undermines its security. The raw SQL query and the external HTTP request also present potential risks that need to be addressed. The plugin's security would be considerably improved by implementing proper authorization and nonce checks on its AJAX endpoints, and by adopting prepared statements for SQL queries.

Key Concerns

AJAX handlers without authentication
SQL query not using prepared statements
External HTTP request

Vulnerabilities

None known

SWPanel AI Builder Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

SWPanel AI Builder Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

196 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

100% escaped196 total outputs

Attack Surface

5 unprotected

SWPanel AI Builder Attack Surface

Entry Points5

Unprotected5

AJAX Handlers 5

authwp_ajax_swpanel_ai_create_taskadmin\pages\CreatingPage.php:12

authwp_ajax_swpanel_ai_check_taskadmin\pages\CreatingPage.php:13

authwp_ajax_swpanel_ai_get_description_keywordsadmin\pages\StructurePage.php:14

authwp_ajax_swpanel_ai_get_headersadmin\pages\StylePage.php:14

authwp_ajax_swpanel_ai_create_template_pagesadmin\pages\TemplatePage.php:14

WordPress Hooks 23

actionadmin_menuadmin\AdminMenu.php:9

actionadmin_menuadmin\pages\ConceptPage.php:11

actionadmin_post_swpanel_ai_concept_formadmin\pages\ConceptPage.php:12

actionadmin_menuadmin\pages\CreatingPage.php:11

actionswpanel_ai_long_taskadmin\pages\CreatingPage.php:20

actionadmin_menuadmin\pages\StructurePage.php:11

actionadmin_post_swpanel_ai_structure_formadmin\pages\StructurePage.php:12

actionadmin_post_swpanel_ai_structure_backadmin\pages\StructurePage.php:13

actionadmin_menuadmin\pages\StylePage.php:11

actionadmin_post_swpanel_ai_style_formadmin\pages\StylePage.php:12

actionadmin_post_swpanel_ai_style_backadmin\pages\StylePage.php:13

actionadmin_menuadmin\pages\TemplatePage.php:11

actionadmin_post_swpanel_ai_template_formadmin\pages\TemplatePage.php:12

actionadmin_post_swpanel_ai_template_backadmin\pages\TemplatePage.php:13

actionadmin_menuadmin\pages\TokenPage.php:11

actionadmin_post_swpanel_ai_token_formadmin\pages\TokenPage.php:12

actionadmin_enqueue_scriptsincludes\enqueue.php:5

actionenqueue_block_editor_assetsincludes\enqueue.php:161

actionadmin_initswpanel-ai.php:48

actionadmin_initswpanel-ai.php:78

actionplugins_loadedswpanel-ai.php:98

actioninitswpanel-ai.php:100

filtershow_admin_barswpanel-ai.php:142

Maintenance & Trust

SWPanel AI Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 30, 2026

PHP min version7.4

Downloads373

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

SWPanel AI Builder Alternatives

Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns

essential-blocks

Gutenberg block editor with AI. 70+ Gutenberg blocks, patterns, WooCommerce blocks, post grid, gallery, menu with Gutenberg block library.

200K 28 CVEs

aThemes Blocks

athemes-blocks

100

Extend the Gutenberg Block Editor with additional functionality.

7K No CVEs

Spawnster: AI Blog Writer and Instant Site Generator for Publishing Articles on a Schedule

spawnster-ai-content-generator

100

The Best AI Blog Writer for Automatically Generating SEO-Friendly Blog Articles on a Schedule

300 No CVEs

SmartyPress AI Engine — Free AI Engine for Content Generation

smartypress-ai-engine

100

Free AI engine for WordPress. Generate content with OpenAI and Deepseek. Magic Wand inline editing in Gutenberg.

40 No CVEs

CF block

contact-block

CF Block is a custom Gutenberg Block That has the following upgradation to be followed they are

10 No CVEs

Developer Profile

SWPanel AI Builder Developer Profile

SWPanel

2 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SWPanel AI Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

../admin/assets/css/index.css

HTML / DOM Fingerprints

CSS Classes

swpanel-ai

Data Attributes

data-swpanel-ai-token

FAQ