WP-Safety

Unlimited Elements Blocks Library Security & Risk Analysis

wordpress.org/plugins/unlimited-elements

WordPress all-in-one addons pack with the best blocks for WordPress, offering 100+ free blocks, templates, and tools to create stunning websites!

300 active installs v2.0.5 PHP 7.4+ WP 3.5+ Updated Feb 2, 2026
blocks-for-wordpresswordpresswordpress-addonswordpress-blockswordpress-templates
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Unlimited Elements Blocks Library Safe to Use in 2026?

Generally Safe

Score 100/100

Unlimited Elements Blocks Library has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "unlimited-elements" v2.0.5 plugin exhibits a generally strong security posture, with no known historical vulnerabilities and a high percentage of SQL queries using prepared statements and outputs being properly escaped. The plugin also demonstrates good practices by implementing capability checks and nonce checks, contributing to a reduced attack surface. However, the presence of two dangerous functions, "unserialize" and "assert," warrants careful consideration. While the static analysis did not identify any critical or high severity taint flows leading to unsanitized paths, there was one flow with high severity, which could potentially be exploited if not handled with extreme caution. The high number of flows with unsanitized paths (9 out of 11 analyzed) is a significant concern, as it suggests a potential for subtle vulnerabilities even if not immediately flagged as critical by automated analysis. The use of bundled libraries like Select2 and Freemius v1.0, while common, could also introduce risks if they are outdated or contain their own vulnerabilities.

Key Concerns

  • Presence of dangerous function: unserialize
  • Presence of dangerous function: assert
  • High number of flows with unsanitized paths
  • One high severity taint flow identified
  • Bundled library: Freemius v1.0 may be outdated
Vulnerabilities
None known

Unlimited Elements Blocks Library Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Unlimited Elements Blocks Library Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

Unlimited Elements Blocks Library Code Analysis

Dangerous Functions
2
Raw SQL Queries
1
57 prepared
Unescaped Output
90
1544 escaped
Nonce Checks
2
Capability Checks
7
File Operations
21
External Requests
2
Bundled Libraries
2

Dangerous Functions Found

unserialize$arrOutput = @unserialize($str);inc_php\framework\functions.class.php:1328
assertassert($openingTag == $tagName); // check that tags are properly nested.inc_php\framework\functions.class.php:1710

Bundled Libraries

Select2Freemius1.0

SQL Query Safety

98% prepared58 total queries

Output Escaping

94% escaped1634 total outputs
Data Flows · Security
9 unsanitized

Data Flow Analysis

11 flows9 with unsanitized paths
processAction (views\changelog.php:47)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Unlimited Elements Blocks Library Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 51
filterposts_whereinc_php\unitecreator_ajax_search.class.php:432
filterposts_whereinc_php\unitecreator_filters_process.class.php:1169
filterwp_bost_hide_cache_time_commentinc_php\unitecreator_filters_process.class.php:3626
actionplugins_loadedinc_php\unitecreator_filters_process.class.php:3778
actionwpinc_php\unitecreator_filters_process.class.php:3780
actionue_before_custom_posts_queryinc_php\unitecreator_filters_process.class.php:3782
filterupload_mimesprovider\core\unlimited_elements\provider_core_admin.class.php:191
filterwp_check_filetype_and_extprovider\core\unlimited_elements\provider_core_admin.class.php:195
filterupload_mimesprovider\core\unlimited_elements\provider_core_front.class.php:47
filterwp_check_filetype_and_extprovider\core\unlimited_elements\provider_core_front.class.php:51
filterposts_whereprovider\functions_wordpress.class.php:2383
filterscript_loader_tagprovider\functions_wordpress.class.php:4446
actionwidgets_initprovider\functions_wordpress.class.php:4717
actionadmin_print_scriptsprovider\functions_wordpress.class.php:4904
actionwp_print_scriptsprovider\functions_wordpress.class.php:4905
actionwp_print_scriptsprovider\functions_wordpress.class.php:4914
actionwp_after_insert_postprovider\functions_wordpress.class.php:4916
filteruelm_get_user_dataprovider\integrations.class.php:430
filterue_modify_post_select_includebyprovider\integrations.class.php:490
filterue_get_custom_includeby_postidsprovider\integrations.class.php:492
filterue_modify_post_dataprovider\integrations.class.php:536
filterue_modify_post_grid_ajax_settingsprovider\integrations.class.php:617
filterue_modify_posts_query_argsprovider\integrations.class.php:620
filtershortpixel/image/filecheckprovider\integrations.class.php:638
filtershortpixel/plugin/initprovider\integrations.class.php:640
filterue_modify_posts_query_argsprovider\integrations.class.php:671
filterue_modify_post_select_includebyprovider\integrations.class.php:739
filterue_get_custom_includeby_postidsprovider\integrations.class.php:741
actionue_before_get_only_sticky_postsprovider\integrations.class.php:749
actionue_after_custom_posts_queryprovider\integrations.class.php:769
actionadmin_print_footer_scriptsprovider\provider_admin.class.php:745
actionwp_print_footer_scriptsprovider\provider_admin.class.php:746
actioninitprovider\provider_admin.class.php:1096
filterwp_php_error_messageprovider\provider_helper.class.php:1395
actionplugins_loadedprovider\provider_helper.class.php:1397
actioninitprovider\provider_helper.class.php:1398
actionplugins_loadedprovider\provider_helper.class.php:1430
filterposts_orderbyprovider\provider_params_processor.class.php:2534
actionwp_error_addedprovider\provider_params_processor.class.php:2590
actionpre_get_postsprovider\provider_params_processor.class.php:2604
actionpre_get_postsprovider\provider_params_processor.class.php:3242
filterterms_clausesprovider\provider_params_processor.class.php:5220
filterterms_clausesprovider\provider_params_processor.class.php:5256
filterterms_clausesprovider\provider_params_processor.class.php:5286
filterterms_clausesprovider\provider_params_processor.class.php:5300
actionue_woocommerce_product_integrationsprovider\woocommerce_integrate.class.php:45
actionue_woocommerce_product_integrations_bottomprovider\woocommerce_integrate.class.php:47
filterposts_clausesprovider\woocommerce_integrate.class.php:953
filterposts_clausesprovider\woocommerce_integrate.class.php:968
filterwoocommerce_add_to_cart_fragmentsprovider\woocommerce_integrate.class.php:1806
actionue_after_custom_posts_queryprovider\wpml_integrate.class.php:329
Maintenance & Trust

Unlimited Elements Blocks Library Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 2, 2026
PHP min version7.4
Downloads3K

Community Trust

Rating100/100
Number of ratings1
Active installs300
Alternatives

Unlimited Elements Blocks Library Alternatives

Page Builder Gutenberg Blocks – CoBlocks

Page Builder Gutenberg Blocks – CoBlocks

coblocks

A
95

CoBlocks is a suite of page builder WordPress blocks for Gutenberg, with 10+ new blocks and a true page builder experience with rows and columns.

300K 8 CVEs
Stackable – Page Builder Gutenberg Blocks

Stackable – Page Builder Gutenberg Blocks

stackable-ultimate-gutenberg-blocks

A
95

Custom Blocks that transform your WordPress Block Editor into a page builder

100K 7 CVEs
GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

gutenkit-blocks-addon

A
93

GutenKit – Ultimate no-code Gutenberg blocks to design stunning web pages and visually stunning posts in WordPress block editor.

70K 3 CVEs
Getwid – Gutenberg Blocks

Getwid – Gutenberg Blocks

getwid

A
94

40+ Gutenberg Blocks, plus multiple pre-made free block templates for the WordPress block editor.

50K 11 CVEs
Gutenberg Block Editor Toolkit – EditorsKit

Gutenberg Block Editor Toolkit – EditorsKit

block-options

A
90

EditorsKit provides a set of page building tools to supercharge the WordPress Gutenberg block editor.

30K 3 CVEs
Developer Profile

Unlimited Elements Blocks Library Developer Profile

Unlimited Elements

3 plugins · 310K total installs

82
trust score
Avg Security Score
91/100
Avg Patch Time
50 days
View full developer profile
Detection Fingerprints

How We Detect Unlimited Elements Blocks Library

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/unlimited-elements/assets/css/main.css/wp-content/plugins/unlimited-elements/assets/css/frontend.css/wp-content/plugins/unlimited-elements/assets/js/frontend.js/wp-content/plugins/unlimited-elements/assets/js/global.js
Script Paths
/wp-content/plugins/unlimited-elements/assets/js/frontend.js/wp-content/plugins/unlimited-elements/assets/js/global.js
Version Parameters
unlimited-elements/assets/css/main.css?ver=unlimited-elements/assets/css/frontend.css?ver=unlimited-elements/assets/js/frontend.js?ver=unlimited-elements/assets/js/global.js?ver=

HTML / DOM Fingerprints

CSS Classes
elementor-widget-unlimited-elements-addons
HTML Comments
<!-- Unlimited Elements Shortcode --><!-- Unlimited Elements Element -->
Data Attributes
data-uelm-iddata-uelm-settings
JS Globals
UELM_DATAUniteCreator
REST Endpoints
/wp-json/unlimited-elements/v1/get-terms
Shortcode Output
[unlimited_elements_block][unlimited_elements_element]
FAQ

Frequently Asked Questions about Unlimited Elements Blocks Library