Does Tainacan Support for Blocksy have any unpatched vulnerabilities?

No. All known vulnerabilities in Tainacan Support for Blocksy have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tainacan Support for Blocksy compatible with WordPress 6.9.4?

According to WordPress.org data, Tainacan Support for Blocksy 0.4.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Tainacan Support for Blocksy compatible with PHP 7.0+?

Tainacan Support for Blocksy requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Tainacan Support for Blocksy updated?

Tainacan Support for Blocksy was last updated on Dec 17, 2025. Frequent updates are generally a positive security signal.

What is Tainacan Support for Blocksy's security score?

Tainacan Support for Blocksy has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tainacan Support for Blocksy Security & Risk Analysis

wordpress.org/plugins/tainacan-blocksy

A plugin for integrating Tainacan plugin pages with the amazing Blocksy theme.

400 active installs v0.4.3 PHP 7.0+ WP 6.0+ Updated Dec 17, 2025

archivesblocksycollectionsmuseumstainacan

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Tainacan Support for Blocksy Safe to Use in 2026?

Generally Safe

Score 100/100

Tainacan Support for Blocksy has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The "tainacan-blocksy" plugin v0.4.3 exhibits a generally good security posture based on the provided static analysis. It has no known vulnerabilities (CVEs), a clean vulnerability history, and the code analysis reveals no dangerous functions, file operations, external HTTP requests, or SQL queries executed without prepared statements. The absence of AJAX handlers, REST API routes, shortcodes, and cron events suggests a limited attack surface.

However, there are areas for concern. The taint analysis indicates "Flows with unsanitized paths," despite having no critical or high severity issues identified. This suggests that while data might not be immediately exploitable in this version, there's a potential for issues if input handling isn't consistently sanitized across all flows. Furthermore, the static analysis shows that 25% of output is not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if the unescaped data originates from untrusted user input.

In conclusion, the plugin has strong foundations in avoiding common, high-impact vulnerabilities. The lack of historical issues is positive. The primary weaknesses lie in the unescaped output and the identified unsanitized paths in the taint analysis, which require careful review and remediation to prevent future security weaknesses.

Key Concerns

Unsanitized paths found in taint analysis
25% of output not properly escaped

Vulnerabilities

None known

Tainacan Support for Blocksy Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Tainacan Support for Blocksy Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

77 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

75% escaped103 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

tainacan_blocksy_archive_templates_redirects (inc\plugin.php:25)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Tainacan Support for Blocksy Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 45

actiontainacan-register-admin-hooksinc\class-tainacan-blocksy-collection-hooks.php:14

actiontainacan-insert-tainacan-collectioninc\class-tainacan-blocksy-collection-hooks.php:15

filtertainacan-api-response-collection-metainc\class-tainacan-blocksy-collection-hooks.php:16

actioninitinc\class-tainacan-blocksy-customizer.php:16

filterblocksy_extensions_customizer_optionsinc\class-tainacan-blocksy-customizer.php:17

filterblocksy:custom_post_types:single-optionsinc\class-tainacan-blocksy-customizer.php:18

filterblocksy:custom_post_types:archive-optionsinc\class-tainacan-blocksy-customizer.php:19

filterblocksy:custom_post_types:supported_listinc\class-tainacan-blocksy-customizer.php:20

filterblocksy:custom_post_types:current_post_type:computeinc\class-tainacan-blocksy-customizer.php:21

filterthe_contentinc\class-tainacan-blocksy-customizer.php:22

filterblocksy:hero:dynamic-styles:prefixesinc\class-tainacan-blocksy-customizer.php:23

actionwp_enqueue_scriptsinc\enqueues.php:41

actionblocksy:global-dynamic-css:enqueueinc\enqueues.php:48

actionblocksy:global-dynamic-css:enqueue:inlineinc\enqueues.php:56

actionwp_headinc\enqueues.php:130

actionwp_headinc\enqueues.php:172

actionwp_headinc\enqueues.php:278

actionblocksy:global-dynamic-css:enqueue:inlineinc\enqueues.php:337

actionblocksy:hero:beforeinc\integration.php:145

filterpost_classinc\integration.php:168

actioninitinc\integration.php:184

actionplugins_loadedinc\navigation.php:432

filterblocksy:breadcrumbs:items-arrayinc\navigation.php:588

filterblocksy:options:page-title:archives-have-heroinc\options\archive-elements\page-header.php:37

filterpre_get_postsinc\plugin.php:5

actiontemplate_redirectinc\plugin.php:97

filterblocksy_extensions_pathsinc\plugin.php:108

filterblocksy:hero:wrapper-attrtainacan\archive-items.php:101

filterblocksy:hero:custom-sourcetainacan\archive-items.php:189

filterblocksy:hero:type-2:image:attachment_idtainacan\archive-items.php:198

filterblocksy:general:body-attrtainacan\archive-repository.php:114

filterblocksy:hero:custom-sourcetainacan\archive-repository.php:119

filterblocksy:hero:wrapper-attrtainacan\archive-taxonomy.php:102

filterblocksy:general:body-attrtainacan\archive-taxonomy.php:187

filterblocksy:hero:custom-sourcetainacan\archive-taxonomy.php:192

filterblocksy:hero:type-2:image:attachment_idtainacan\archive-taxonomy.php:204

filtertainacan-default-taxonomy-terms-perpagetainacan\archive-terms.php:3

filtertainacan-swiper-thumbs-optionstemplate-parts\tainacan-item-single-attachments_new.php:24

filtertainacan-swiper-thumbs-optionstemplate-parts\tainacan-item-single-attachments_new.php:39

filtertainacan-swiper-thumbs-optionstemplate-parts\tainacan-item-single-document_new.php:22

filtertainacan-swiper-thumbs-optionstemplate-parts\tainacan-item-single-items-related-to-this.php:65

filtertainacan-get-metadata-section-as-html-before-metadata-list--index-0template-parts\tainacan-item-single-metadata_new.php:22

filtertainacan-get-metadata-section-as-html-before-name--index-0template-parts\tainacan-item-single-metadata_new.php:72

filtertainacan-get-metadata-section-as-html-before-name--index-0template-parts\tainacan-item-single-metadata_new.php:99

filtertainacan-get-metadata-section-as-html-before-name--index-0template-parts\tainacan-item-single-metadata_new.php:127

Maintenance & Trust

Tainacan Support for Blocksy Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 17, 2025

PHP min version7.0

Downloads11K

Community Trust

Rating100/100

Number of ratings1

Active installs400

Alternatives

Tainacan Support for Blocksy Alternatives

Tainacan

tainacan

A powerful and flexible open-source repository platform that brings digital collection management to WordPress.

1K 14 CVEs

Tainacan Extra View Modes

tainacan-extra-view-modes

100

A view modes plugin for Tainacan, which registers a list of 8 extra view modes that may be used to display your items list.

400 No CVEs

Tainacan URL Metadata Type

tainacan-url-metadata-type

This plugin is not required anymore if you are using Tainacan 0.21.0, as the URL metadata type has become an official metadata type inside the plugin.

100 No CVEs

Casaca

tainacan-reports

100

Advanced reporting and analytics add-on for Tainacan digital collections platform.

0 No CVEs

Disable Author Archives

disable-author-archives

100

Disable Author Archives completely removes author archives and makes the web server return status code 404 ('Not Found') instead.

10K No CVEs

Developer Profile

Tainacan Support for Blocksy Developer Profile

tainacan

6 plugins · 3K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

63 days

View full developer profile

Detection Fingerprints

How We Detect Tainacan Support for Blocksy

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tainacan-blocksy/compat.min.css/wp-content/plugins/tainacan-blocksy/static/css/tainacan-icons.css

Script Paths

/wp-content/plugins/tainacan-blocksy/js/scripts.js

Version Parameters

tainacan-blocksy/style.min.css?ver=tainacan-blocksy/compat.min.css?ver=tainacan-blocksy/js/scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

theme-items-list

Data Attributes

data-tainacan-theme-version

JS Globals

tainacan_blocksy_scripts_params

FAQ