Does Use Widgets Anywhere! have any unpatched vulnerabilities?

No. All known vulnerabilities in Use Widgets Anywhere! have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Use Widgets Anywhere! compatible with WordPress 5.8.13?

According to WordPress.org data, Use Widgets Anywhere! 1.0.0 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Use Widgets Anywhere! compatible with PHP 7.1+?

Use Widgets Anywhere! requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Use Widgets Anywhere! updated?

Use Widgets Anywhere! was last updated on Aug 31, 2021. Frequent updates are generally a positive security signal.

What is Use Widgets Anywhere!'s security score?

Use Widgets Anywhere! has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Use Widgets Anywhere! Security & Risk Analysis

wordpress.org/plugins/use-widgets-anywhere

With this plugin you can use any widget anywhere you want, you just need to know the Widget's class name and its arguments, you don't have t …

10 active installs v1.0.0 PHP 7.1+ WP 4.8+ Updated Aug 31, 2021

widgets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Use Widgets Anywhere! Safe to Use in 2026?

Generally Safe

Score 85/100

Use Widgets Anywhere! has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "use-widgets-anywhere" v1.0.0 plugin demonstrates a generally good security posture based on the provided static analysis. It features a minimal attack surface with only one shortcode and no unprotected entry points. The absence of dangerous functions, file operations, and external HTTP requests further contributes to its security. The plugin also correctly utilizes prepared statements for its SQL queries and shows a high percentage of properly escaped output, which are crucial security practices. The lack of any recorded vulnerabilities in its history is a positive indicator of its stability and secure development.

However, there are areas for improvement that present potential security concerns. The complete absence of nonce checks and capability checks across all entry points is a significant weakness. This means that even though the entry points are not directly exposed via AJAX or REST API without checks, the shortcode functionality could be exploited by an attacker to trigger actions without proper authorization or validation. The taint analysis showing zero flows, while seemingly positive, could also indicate that the analysis itself was limited or that the code paths were not extensively tested, leaving potential vulnerabilities undiscovered. The plugin's overall security would be significantly enhanced by implementing proper authentication and authorization mechanisms for its shortcode functionality.

Key Concerns

Missing nonce checks on shortcode
Missing capability checks on shortcode
Limited taint analysis coverage

Vulnerabilities

None known

Use Widgets Anywhere! Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Use Widgets Anywhere! Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

83% escaped6 total outputs

Attack Surface

Use Widgets Anywhere! Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[widget_anywhere] class-widgets-anywhere.php:56

WordPress Hooks 3

actionplugins_loadedclass-widgets-anywhere.php:23

actioninitclass-widgets-anywhere.php:46

actionadmin_noticesclass-widgets-anywhere.php:47

Maintenance & Trust

Use Widgets Anywhere! Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedAug 31, 2021

PHP min version7.1

Downloads875

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Use Widgets Anywhere! Alternatives

Classic Widgets

classic-widgets

100

Enables the previous "classic" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.

2.0M No CVEs

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 22 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Ultimate Addons for Elementor

header-footer-elementor

Powerful Elementor addon with advanced Elementor widgets, templates, WooCommerce widgets & Header-Footer builder to build professional websites fa …

2.0M 12 CVEs

One Click Demo Import

one-click-demo-import

Import your demo content, widgets and theme settings with one click. Theme authors! Enable simple theme demo import for your users.

1.0M 2 CVEs

Developer Profile

Use Widgets Anywhere! Developer Profile

CRPlugins

4 plugins · 260 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Use Widgets Anywhere!

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

widget

Data Attributes

widget_classparent_class

Shortcode Output

[widget_anywhere]

FAQ