Does Webkima Elements have any unpatched vulnerabilities?

No. All known vulnerabilities in Webkima Elements have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Webkima Elements compatible with WordPress 6.4.8?

According to WordPress.org data, Webkima Elements 1.7.6 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is Webkima Elements compatible with PHP 7.4+?

Webkima Elements requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Webkima Elements updated?

Webkima Elements was last updated on Mar 18, 2024. Frequent updates are generally a positive security signal.

What is Webkima Elements's security score?

Webkima Elements has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Webkima Elements Security & Risk Analysis

wordpress.org/plugins/webkima-elements

افزونه وبکیما المنت یک پلاگین بسیار سبک و سریع برای افزودن فونت های فارسی به سایت های وردپرسی و المنتوری است، توسط این افزونه می توانید فونت های فارسی …

300 active installs v1.7.6 PHP 7.4+ WP 5.7+ Updated Mar 18, 2024

elementorfarsiparsipersianwebkima

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Webkima Elements Safe to Use in 2026?

Generally Safe

Score 85/100

Webkima Elements has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The webkima-elements plugin exhibits several concerning security weaknesses despite a clean vulnerability history. The static analysis reveals a significant risk due to the presence of an unprotected AJAX handler, representing a direct entry point for potential exploitation. Furthermore, a critical issue arises from 100% of the analyzed outputs lacking proper escaping, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is involved. While the plugin avoids dangerous functions and uses prepared statements for SQL queries, and has no known historical vulnerabilities, these strengths are overshadowed by the immediate code-level risks.

Key Concerns

AJAX handler without authentication check
All outputs are unescaped
Flows with unsanitized paths
No nonce checks implemented
No capability checks implemented

Vulnerabilities

None known

Webkima Elements Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Webkima Elements Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped20 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<webkima-elements> (webkima-elements.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Webkima Elements Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_elementor_get_template_datasrc\Elementor\TemplatesManager.php:49

WordPress Hooks 22

actionadmin_menusrc\Base.php:23

actioncsf_webkima_elements_save_aftersrc\DynamicAssets.php:22

actionelementor/initsrc\Elementor\TemplatesManager.php:28

actionelementor/ajax/register_actionssrc\Elementor\TemplatesManager.php:43

actionwp_enqueue_scriptssrc\Enqueue.php:20

actionwp_enqueue_scriptssrc\Enqueue.php:21

actionwp_enqueue_scriptssrc\Enqueue.php:24

actionwp_enqueue_scriptssrc\Enqueue.php:25

actionadmin_enqueue_scriptssrc\Enqueue.php:36

actionelementor/editor/before_enqueue_scriptssrc\Enqueue.php:40

actionelementor/app/initsrc\Enqueue.php:41

actionelementor/preview/enqueue_stylessrc\Enqueue.php:42

actionelementor/editor/before_enqueue_scriptssrc\Enqueue.php:45

actionadmin_noticessrc\Plugin.php:29

actionelementor/widgets/registersrc\RegisterElementorWidgets.php:20

actionelementor/elements/categories_registeredsrc\RegisterElementorWidgets.php:21

actionwp_footersrc\Widgets\Gotoup.php:28

actioncsf_webkima_elements_save_aftersrc\Widgets\Gotoup.php:60

actioncsf_initwebkima-elements.php:62

actionplugins_loadedwebkima-elements.php:63

actioninitwebkima-elements.php:66

actioninitwebkima-elements.php:67

Maintenance & Trust

Webkima Elements Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedMar 18, 2024

PHP min version7.4

Downloads6K

Community Trust

Rating0/100

Number of ratings0

Active installs300

Alternatives

Webkima Elements Alternatives

persian date shortcode

persian-date-short-code

Easy way for Display persian date in multi format and unlimited color in wordpress site

100 No CVEs

المنتور فارسی

persian-elementor

100

بسته کامل فارسی‌ساز المنتور با 13 فونت ایرانی، ترجمه المنتور و المنتور پرو، آیکون‌های ایرانی، تقویم شمسی، ویجت‌های نقشه نشان و آپارات.

50K No CVEs

wp-jalali

Full Jalali calendar support for Wordpress and localization improvements for Persian/Afghan/Tajik users.

20K No CVEs

WP-Persian

wp-persian

Fast and Powerful plugin for Jalali calendar and Farsi language support in Wordpress and standard plugins.

9K No CVEs

Gateway AqayePardakht for Woocommerce

gateway-aqayepardakht-for-woocommerce

با نصب این پلاگین می توانید از خدمات درگاه آقای پرداخت برای پلاگین ووکامرس استفاده کنید!

4K No CVEs

Developer Profile

Webkima Elements Developer Profile

Nabi Abdi

3 plugins · 500 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Webkima Elements

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/webkima-elements/assets/css/main.css/wp-content/plugins/webkima-elements/assets/js/main.bundle.js/wp-content/plugins/webkima-elements/assets/css/main-static.css/wp-content/plugins/webkima-elements/assets/js/main-static.js/wp-content/plugins/webkima-elements/assets/css/iranyekan-font.css/wp-content/plugins/webkima-elements/assets/css/vazir-font.css/wp-content/plugins/webkima-elements/assets/css/elementor-editor.css/wp-content/plugins/webkima-elements/assets/js/editor.js

Script Paths

/wp-content/plugins/webkima-elements/assets/js/main.bundle.js/wp-content/plugins/webkima-elements/assets/js/main-static.js/wp-content/plugins/webkima-elements/assets/js/editor.js

Version Parameters

webkima-elements/assets/css/main.css?ver=webkima-elements/assets/js/main.bundle.js?ver=webkima-elements/assets/css/main-static.css?ver=webkima-elements/assets/js/main-static.js?ver=webkima-elements/assets/css/iranyekan-font.css?ver=webkima-elements/assets/css/vazir-font.css?ver=webkima-elements/assets/css/elementor-editor.css?ver=webkima-elements/assets/js/editor.js?ver=

HTML / DOM Fingerprints

CSS Classes

webkima-elements-go-upwebkima-elements-widget

Data Attributes

data-webkima-elements-go-up

JS Globals

WebkimaElements

Shortcode Output

[webkima_elements_go_up]

FAQ