WP-Safety

Ultimate Addons for Beaver Builder – Lite Security & Risk Analysis

wordpress.org/plugins/ultimate-addons-for-beaver-builder-lite

Extend Beaver Builder with powerful modules and ready-made templates to build stunning WordPress websites faster.

20K active installs v1.6.7 PHP 7.0+ WP 4.6+ Updated Feb 6, 2026
beaver-builderbeaver-builder-addonsbeaver-builder-extensionsbeaver-builder-freebeaver-builder-lite
97
A · Safe
CVEs total8
Unpatched0
Last CVEAug 7, 2024
Plugin page Download
Safety Verdict

Is Ultimate Addons for Beaver Builder – Lite Safe to Use in 2026?

Generally Safe

Score 97/100

Ultimate Addons for Beaver Builder – Lite has a strong security track record. Known vulnerabilities have been patched promptly.

8 known CVEsLast CVE: Aug 7, 2024Updated 1mo ago
Risk Assessment

The static analysis of ultimate-addons-for-beaver-builder-lite v1.6.7 reveals a generally good security posture with strong adherence to secure coding practices. The plugin demonstrates a high percentage of properly escaped outputs, utilizes prepared statements for all SQL queries, and incorporates nonce and capability checks for its AJAX handlers. The absence of critical or high-severity taint analysis findings and dangerous functions further reinforces this positive assessment.

However, the plugin's historical vulnerability record presents a significant concern. With 8 known medium-severity vulnerabilities, primarily related to Cross-site Scripting (XSS), Cross-Site Request Forgery (CSRF), and Missing Authorization, this history suggests a pattern of recurring security weaknesses. Although no vulnerabilities are currently unpatched, the frequency and types of past issues indicate a potential for similar vulnerabilities to emerge in future versions if not addressed proactively.

In conclusion, while the current version (v1.6.7) exhibits commendable security implementations, the past vulnerability history warrants caution. The plugin's strengths lie in its robust handling of SQL and output escaping, but its historical susceptibility to common web vulnerabilities requires ongoing vigilance and thorough auditing of future updates to mitigate risks.

Key Concerns

  • Significant history of medium severity vulnerabilities
  • Common vulnerability types: XSS, CSRF, Missing Auth
Vulnerabilities
8

Ultimate Addons for Beaver Builder – Lite Security Vulnerabilities

CVEs by Year

2 CVEs in 2023
2023
6 CVEs in 2024
2024
Patched Has unpatched

Severity Breakdown

Medium
8

8 total CVEs

CVE-2024-43151medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ultimate Addons for Beaver Builder – Lite <= 1.5.9 - Authenticated (Contributor+) Stored Cross-Site Scripting

Aug 7, 2024 Patched in 1.5.10 (8d)
CVE-2024-2143medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ultimate Addons for Beaver Builder – Lite <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Heading Widget

Mar 29, 2024 Patched in 1.5.8 (1d)
CVE-2024-2144medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ultimate Addons for Beaver Builder – Lite <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Separator Widget

Mar 29, 2024 Patched in 1.5.8 (1d)
CVE-2024-2141medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ultimate Addons for Beaver Builder – Lite <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button Widget

Mar 29, 2024 Patched in 1.5.8 (1d)
CVE-2024-2142medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ultimate Addons for Beaver Builder – Lite <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Info Table Widget

Mar 29, 2024 Patched in 1.5.8 (1d)
CVE-2024-2140medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ultimate Addons for Beaver Builder – Lite <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Icons Widget

Mar 29, 2024 Patched in 1.5.8 (1d)
CVE-2023-23882medium · 5.4Cross-Site Request Forgery (CSRF)

Ultimate Addons for Beaver Builder – Lite <= 1.5.4 - Cross-Site Request Forgery

Jan 23, 2023 Patched in 1.5.5 (365d)
WF-b7c808ff-546b-445e-af38-0b45cab3f307-ultimate-addons-for-beaver-builder-litemedium · 5.4Missing Authorization

Ultimate Addons for Beaver Builder – Lite <= 1.5.4 - Missing Authorization

Jan 23, 2023 Patched in 1.5.5 (365d)
Code Analysis
Analyzed Mar 16, 2026

Ultimate Addons for Beaver Builder – Lite Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
46
3234 escaped
Nonce Checks
7
Capability Checks
7
File Operations
13
External Requests
3
Bundled Libraries
0

Output Escaping

99% escaped3280 total outputs
Attack Surface

Ultimate Addons for Beaver Builder – Lite Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_uds_plugin_deactivate_feedbackadmin\bsf-analytics\modules\deactivation-survey\classes\class-deactivation-survey-feedback.php:54
authwp_ajax_uabb_cloud_dat_file_fetchclasses\class-uabb-cloud-templates.php:64
authwp_ajax_uabb_reload_iconsclasses\class-uabb-iconfonts.php:30
WordPress Hooks 78
actioninitadmin\bsf-analytics\class-bsf-analytics-loader.php:68
actionadmin_initadmin\bsf-analytics\class-bsf-analytics.php:58
actionadmin_initadmin\bsf-analytics\class-bsf-analytics.php:59
actioninitadmin\bsf-analytics\class-bsf-analytics.php:60
actionadmin_initadmin\bsf-analytics\class-bsf-analytics.php:64
filteruds_survey_varsadmin\bsf-analytics\class-bsf-analytics.php:84
actionadmin_footeradmin\bsf-analytics\class-bsf-analytics.php:85
actionadmin_enqueue_scriptsadmin\bsf-analytics\modules\deactivation-survey\classes\class-deactivation-survey-feedback.php:53
actionadmin_noticesbb-ultimate-addon.php:151
actionnetwork_admin_noticesbb-ultimate-addon.php:152
actionadmin_initclasses\class-uabb-admin-settings-multisite.php:23
actionadmin_initclasses\class-uabb-admin-settings-multisite.php:24
actionnetwork_admin_menuclasses\class-uabb-admin-settings-multisite.php:25
actionadmin_enqueue_scriptsclasses\class-uabb-admin-settings-multisite.php:53
actionafter_setup_themeclasses\class-uabb-admin-settings.php:32
actionnetwork_admin_menuclasses\class-uabb-admin-settings.php:47
actionadmin_menuclasses\class-uabb-admin-settings.php:48
actionadmin_enqueue_scriptsclasses\class-uabb-admin-settings.php:51
actionadmin_noticesclasses\class-uabb-admin-settings.php:54
filterwp_kses_allowed_htmlclasses\class-uabb-admin-settings.php:55
actionadmin_enqueue_scriptsclasses\class-uabb-admin-settings.php:56
actionadmin_footerclasses\class-uabb-admin-settings.php:57
filterattachment_fields_to_editclasses\class-uabb-attachment.php:23
filterattachment_fields_to_saveclasses\class-uabb-attachment.php:24
actionwpclasses\class-uabb-backward.php:44
actiontransition_post_statusclasses\class-uabb-backward.php:45
filterfl_builder_ui_js_stringsclasses\class-uabb-global-settings.php:22
filterfl_builder_settings_form_defaultsclasses\class-uabb-init.php:35
actionadmin_noticesclasses\class-uabb-init.php:45
actionnetwork_admin_noticesclasses\class-uabb-init.php:46
actionadmin_initclasses\class-uabb-init.php:88
actioninitclasses\class-uabb-init.php:117
actioninitclasses\class-uabb-init.php:142
actionwp_enqueue_scriptsclasses\class-uabb-init.php:145
actionplugins_loadedclasses\class-uabb-init.php:400
actioninitclasses\class-uabb-update.php:42
filterwpml_beaver_builder_modules_to_translateclasses\class-uabb-wpml.php:24
actionwp_enqueue_scriptsclasses\class-ui-panel.php:22
actionwp_footerclasses\class-ui-panel.php:24
filterfl_builder_render_cssclasses\class-ui-panel.php:27
filterfl_builder_render_jsclasses\class-ui-panel.php:28
filterbsf_skip_author_registrationclasses\class-ui-panel.php:31
filterbsf_skip_braisntorm_menuclasses\class-ui-panel.php:32
filterbsf_registration_page_url_uabbclasses\class-ui-panel.php:35
filterbsf_license_form_heading_uabbclasses\class-ui-panel.php:36
filterfl_builder_upgrade_urlclasses\class-ui-panel.php:39
actionwp_footerclasses\class-ui-panel.php:54
filterfl_builder_ui_bar_buttonsclasses\class-ui-panel.php:57
filterfl_builder_row_templates_dataclasses\class-ui-panel.php:60
filterfl_builder_module_templates_dataclasses\class-ui-panel.php:61
actionfl_builder_ui_panel_before_rowsclasses\class-ui-panel.php:64
filterfl_builder_template_selector_dataclasses\class-ui-panel.php:75
filteruabb/global/theme_colorclasses\uabb-bbtheme-global-integration.php:59
filteruabb/global/text_colorclasses\uabb-bbtheme-global-integration.php:60
filteruabb/global/button_bg_colorclasses\uabb-bbtheme-global-integration.php:62
filteruabb/global/button_bg_hover_colorclasses\uabb-bbtheme-global-integration.php:63
filteruabb/global/button_text_colorclasses\uabb-bbtheme-global-integration.php:65
filteruabb/global/button_text_hover_colorclasses\uabb-bbtheme-global-integration.php:66
filteruabb/global/theme_colorclasses\uabb-global-integration.php:30
filteruabb/global/text_colorclasses\uabb-global-integration.php:31
filteruabb/global/link_colorclasses\uabb-global-integration.php:33
filteruabb/global/link_hover_colorclasses\uabb-global-integration.php:34
filteruabb/global/button_font_familyclasses\uabb-global-integration.php:36
filteruabb/global/button_font_sizeclasses\uabb-global-integration.php:37
filteruabb/global/button_line_heightclasses\uabb-global-integration.php:38
filteruabb/global/button_letter_spacingclasses\uabb-global-integration.php:39
filteruabb/global/button_text_transformclasses\uabb-global-integration.php:40
filteruabb/global/button_text_colorclasses\uabb-global-integration.php:42
filteruabb/global/button_text_hover_colorclasses\uabb-global-integration.php:43
filteruabb/global/button_bg_colorclasses\uabb-global-integration.php:44
filteruabb/global/button_bg_hover_colorclasses\uabb-global-integration.php:45
filteruabb/global/button_border_radiusclasses\uabb-global-integration.php:47
filteruabb/global/button_paddingclasses\uabb-global-integration.php:48
filteruabb/global/button_vertical_paddingclasses\uabb-global-integration.php:49
filteruabb/global/button_horizontal_paddingclasses\uabb-global-integration.php:50
actionfl_builder_control_uabb-gradientfields\uabb-gradient\uabb-gradient.php:22
actionfl_builder_custom_fieldsfields\uabb-gradient\uabb-gradient.php:23
actionwp_enqueue_scriptsfields\_config.php:23
Maintenance & Trust

Ultimate Addons for Beaver Builder – Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 6, 2026
PHP min version7.0
Downloads744K

Community Trust

Rating100/100
Number of ratings328
Active installs20K
Alternatives

Ultimate Addons for Beaver Builder – Lite Alternatives

Dadevarzan Beaver Builder Modules

Dadevarzan Beaver Builder Modules

dadevarzan-beaver-builder-modules

A
85

Beaver builder is one of the best WordPress page builders.

700 No CVEs
Bridge Addons for Beaver Builder

Bridge Addons for Beaver Builder

bridge-addons

A
85

Bridge Addons plugin extends your Beaver Builder plugin with advanced modules.

70 No CVEs
PowerPack Lite for Beaver Builder

PowerPack Lite for Beaver Builder

powerpack-addon-for-beaver-builder

A
88

PowerPack Lite for Beaver Builder extends Beaver Builder with custom options, unique modules and templates.

7K 5 CVEs
Xpro Addons For Beaver Builder – Lite

Xpro Addons For Beaver Builder – Lite

xpro-addons-beaver-builder-elementor

A
99

Xpro Addons for Beaver Builder – Lite is a simple drag-and-drop creative module pack that lets you create stunning websites.

700 1 CVE
Image Carousel Addon for Beaver Builder

Image Carousel Addon for Beaver Builder

image-carousel-addon-for-beaver-builder

A
85

A quick and easy responsive image carousel module for Beaver Builder.

200 No CVEs
Developer Profile

Ultimate Addons for Beaver Builder – Lite Developer Profile

Brainstorm Force

32 plugins · 8.6M total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
196 days
View full developer profile
Detection Fingerprints

How We Detect Ultimate Addons for Beaver Builder – Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ultimate-addons-for-beaver-builder-lite/assets/css/uabb.css/wp-content/plugins/ultimate-addons-for-beaver-builder-lite/assets/js/editor.js/wp-content/plugins/ultimate-addons-for-beaver-builder-lite/assets/js/frontend.js/wp-content/plugins/ultimate-addons-for-beaver-builder-lite/assets/css/editor.css
Script Paths
/wp-content/plugins/ultimate-addons-for-beaver-builder-lite/assets/js/editor.js/wp-content/plugins/ultimate-addons-for-beaver-builder-lite/assets/js/frontend.js
Version Parameters
ultimate-addons-for-beaver-builder-lite/assets/css/uabb.css?ver=ultimate-addons-for-beaver-builder-lite/assets/js/editor.js?ver=ultimate-addons-for-beaver-builder-lite/assets/js/frontend.js?ver=ultimate-addons-for-beaver-builder-lite/assets/css/editor.css?ver=

HTML / DOM Fingerprints

CSS Classes
uabb-admin-dashboard-wrapuabb-settings-wrap
HTML Comments
<!-- Ultimate Addons for Beaver Builder -->
Data Attributes
data-settingdata-elementdata-type
JS Globals
uabb_admin
FAQ

Frequently Asked Questions about Ultimate Addons for Beaver Builder – Lite