WP-Safety

Bootstrap Blocks for WP Editor v2 Security & Risk Analysis

wordpress.org/plugins/wp-editor-bootstrap-blocks

The essential WP Editor Plugin for Bootstrap websites. Fully manageable responsive containers, rows and columns. Without coding.

300 active installs v2.5.1 PHP 7.4+ WP 6.0+ Updated Dec 26, 2024
blocksbootstrapbreakpointscontainerpage-builder
91
A · Safe
CVEs total1
Unpatched0
Last CVEJan 6, 2025
Plugin page Download
Safety Verdict

Is Bootstrap Blocks for WP Editor v2 Safe to Use in 2026?

Generally Safe

Score 91/100

Bootstrap Blocks for WP Editor v2 has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jan 6, 2025Updated 1yr ago
Risk Assessment

The wp-editor-bootstrap-blocks plugin exhibits a generally good security posture with strong implementation of WordPress security best practices. The static analysis reveals a very small attack surface, with no unprotected entry points. The code also demonstrates a commitment to secure coding, evidenced by 100% of SQL queries using prepared statements and a high percentage of properly escaped output. The presence of nonce and capability checks further strengthens its defenses against common attack vectors.

However, a significant concern arises from the vulnerability history. The plugin has one known medium severity vulnerability, specifically Cross-site Scripting (XSS), which was recently patched. While currently unpatched CVEs are zero, this past XSS vulnerability suggests a potential for input sanitization weaknesses that could be exploited. The taint analysis not revealing any issues is positive, but it should not entirely discount the historical vulnerability.

In conclusion, while the current version appears to have addressed past issues and adheres to many security best practices, the single medium XSS vulnerability in its history warrants careful consideration. The plugin's strengths lie in its limited attack surface and robust coding practices. The weakness lies in the historical susceptibility to XSS, even if resolved in this version. Vigilance and prompt updates remain crucial for any plugin.

Key Concerns

  • Past medium severity XSS vulnerability
Vulnerabilities
1

Bootstrap Blocks for WP Editor v2 Security Vulnerabilities

CVEs by Year

1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2024-12495medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Bootstrap Blocks for WP Editor v2 <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jan 6, 2025 Patched in 2.5.1 (1d)
Code Analysis
Analyzed Mar 16, 2026

Bootstrap Blocks for WP Editor v2 Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
17
49 escaped
Nonce Checks
2
Capability Checks
4
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

74% escaped66 total outputs
Attack Surface

Bootstrap Blocks for WP Editor v2 Attack Surface

Entry Points1
Unprotected0

REST API Routes 1

GETPOST/wp-json/gtbbootstrap/v1optionsmodules\layout\rest-api-options.php:25
WordPress Hooks 29
actionadmin_noticescore\class.faLicenseManager.php:70
actionadmin_initcore\class.faLicenseManager.php:73
actioninitcore\class.gtbBootstrap.php:33
filterblock_categories_allcore\class.gtbBootstrap.php:34
actionadmin_footercore\class.gtbBootstrap.php:35
actiongtb_initmodules\gtb-title.php:56
actiongtb_bootstrap_modulesmodules\gtb-title.php:58
actionenqueue_block_editor_assetsmodules\layout\layout.php:81
actiongtb_initmodules\layout\layout.php:83
actiongtb_bootstrap_modulesmodules\layout\layout.php:86
actionrest_api_initmodules\layout\rest-api-options.php:22
actiongtb_initmodules\metaboxes\metaboxes.php:53
actiongtb_bootstrap_modulesmodules\metaboxes\metaboxes.php:56
filtertheme_page_templatesmodules\page-template\class.gtbPageTemplater.php:41
filterwp_insert_post_datamodules\page-template\class.gtbPageTemplater.php:48
filtertemplate_includemodules\page-template\class.gtbPageTemplater.php:56
actiongtb_initmodules\page-template\page-template.php:33
actiongtb_bootstrap_modulesmodules\page-template\page-template.php:36
actionadmin_menumodules\settings-page\class.gtbBootstrapSettingsPage.php:35
actionnetwork_admin_menumodules\settings-page\class.gtbBootstrapSettingsPage.php:36
actionadmin_initmodules\settings-page\class.gtbBootstrapSettingsPage.php:75
actionadmin_enqueue_scriptsmodules\settings-page\class.gtbBootstrapSettingsPage.php:139
actiongtb_initmodules\settings-page\settings-page.php:32
actiongtb_bootstrap_modulesmodules\settings-page\settings-page.php:36
actionwp_enqueue_scriptsmodules\theming\gtb-theming.php:102
actionadmin_headmodules\theming\gtb-theming.php:156
actiongtb_initmodules\theming\gtb-theming.php:161
actiongtb_bootstrap_modulesmodules\theming\gtb-theming.php:164
actionplugins_loadedwp-editor-bootstrap-blocks.php:39
Maintenance & Trust

Bootstrap Blocks for WP Editor v2 Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedDec 26, 2024
PHP min version7.4
Downloads13K

Community Trust

Rating60/100
Number of ratings8
Active installs300
Alternatives

Bootstrap Blocks for WP Editor v2 Alternatives

Blocks Grid Builder For Bootstrap

Blocks Grid Builder For Bootstrap

blocks-grid-builder-for-bootstrap

A
85

Build complex Bootstrap gird throw modern drag/drop and resizable interface throw WordPress Gutenberg editor, With just few clicks from your mouse you &hellip;

10 No CVEs
BlockStrap Page Builder – Bootstrap Blocks

BlockStrap Page Builder – Bootstrap Blocks

blockstrap-page-builder-blocks

A
99

BlockStrap Page Builder - Bootstrap Blocks combines Bootstrap's power with the block editor's versatility.

2K 1 CVE
Magical Blocks – Elementor Style Blocks for Gutenberg

Magical Blocks – Elementor Style Blocks for Gutenberg

magical-blocks

A
99

Get Elementor vibe in the WordPress Editor! Powerful Gutenberg blocks with Flexbox containers, responsive controls, and professional design options.

1K 1 CVE
ScBlocks – Page Builder Gutenberg Blocks

ScBlocks – Page Builder Gutenberg Blocks

scblocks

A
85

A collection of Gutenberg Blocks that help you build WordPress sites.

0 No CVEs
Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

kadence-blocks

A
86

20+ AI-powered Gutenberg Blocks with endless options, enabling top-notch efficiency for high-performance dynamic website creation.

600K 31 CVEs
Developer Profile

Bootstrap Blocks for WP Editor v2 Developer Profile

3D Virge

3 plugins · 100K total installs

73
trust score
Avg Security Score
92/100
Avg Patch Time
240 days
View full developer profile
Detection Fingerprints

How We Detect Bootstrap Blocks for WP Editor v2

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-editor-bootstrap-blocks/modules/layout/dist/blocks.css/wp-content/plugins/wp-editor-bootstrap-blocks/modules/layout/dist/blocks.js/wp-content/plugins/wp-editor-bootstrap-blocks/modules/settings-page/assets/logo-wp-editor-bootstrap-blocks.svg/wp-content/plugins/wp-editor-bootstrap-blocks/modules/settings-page/dist/settings.css/wp-content/plugins/wp-editor-bootstrap-blocks/modules/settings-page/dist/settings.js
Script Paths
wp-editor-bootstrap-blocks/modules/layout/dist/blocks.jswp-editor-bootstrap-blocks/modules/settings-page/dist/settings.js
Version Parameters
wp-editor-bootstrap-blocks/style.css?ver=wp-editor-bootstrap-blocks/script.js?ver=

HTML / DOM Fingerprints

CSS Classes
gtb-bootstrap-editor-settings-pagegtb-bootstrap-settings
HTML Comments
Bootstrap Blocks for WP Editor Layout.Bootstrap Blocks for WP Editor settings pageFree Layout PackageBootstrap Blocks for WP Editor
Data Attributes
data-align="wide"data-align="full"
JS Globals
gtb_settings
FAQ

Frequently Asked Questions about Bootstrap Blocks for WP Editor v2