WP-Safety

WP Magazine Modules Lite Security & Risk Analysis

wordpress.org/plugins/wp-magazine-modules-lite

Ultimate plugin suitable for creating you own newspaper and magazine layouts using Gutenberg and Elementor page builder. Design magazine modules with …

6K active installs v1.1.3 PHP 7.2+ WP 5.0+ Updated Apr 21, 2025
block-editorblocksdrag-and-dropeditormagazine
90
A · Safe
CVEs total1
Unpatched0
Last CVEJun 18, 2024
Plugin page Download
Safety Verdict

Is WP Magazine Modules Lite Safe to Use in 2026?

Generally Safe

Score 90/100

WP Magazine Modules Lite has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Jun 18, 2024Updated 1yr ago
Risk Assessment

The "wp-magazine-modules-lite" v1.1.3 plugin exhibits a generally positive security posture based on the static analysis, with no critical or high-severity taint flows identified and robust handling of SQL queries through prepared statements. The majority of output is properly escaped, and critical security mechanisms like nonce and capability checks are present. The absence of external HTTP requests and bundled libraries further reduces potential attack vectors. However, the plugin does have a history of a high-severity vulnerability, specifically an "Improper Control of Filename for Include/Require Statement" in PHP, which is a significant concern. While this specific vulnerability is listed as currently unpatched, the fact that a high-severity issue was present in its history warrants caution. The presence of file operations, while only one instance, could be a point of attention if not handled with extreme care.

Key Concerns

  • Past high severity vulnerability (RFI)
  • Presence of file operations
Vulnerabilities
1 published

WP Magazine Modules Lite Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2024-5574high · 7.5Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

WP Magazine Modules Lite <= 1.1.2 - Authenticated (Contributor+) Local File Inclusion

Jun 18, 2024 Patched in 1.1.3 (1d)
Version History

WP Magazine Modules Lite Release Timeline

v1.1.3Current
v1.1.21 CVE
CVE-2024-5574
v1.1.11 CVE
CVE-2024-5574
v1.1.01 CVE
CVE-2024-5574
v1.0.91 CVE
CVE-2024-5574
v1.0.81 CVE
CVE-2024-5574
v1.0.71 CVE
CVE-2024-5574
v1.0.61 CVE
CVE-2024-5574
v1.0.51 CVE
CVE-2024-5574
v1.0.41 CVE
CVE-2024-5574
v1.0.31 CVE
CVE-2024-5574
v1.0.21 CVE
CVE-2024-5574
v1.0.11 CVE
CVE-2024-5574
v1.0.01 CVE
CVE-2024-5574
Code Analysis
Analyzed Mar 16, 2026

WP Magazine Modules Lite Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
111
1346 escaped
Nonce Checks
5
Capability Checks
1
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

92% escaped1457 total outputs
Attack Surface

WP Magazine Modules Lite Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_wpmagazine_modules_lite_submit_formadmin\class-wpmagazine-modules-lite-admin.php:47
authwp_ajax_wpmagazine_modules_lite_post_filter_load_new_postsincludes\class-wpmagazine-modules-lite.php:69
noprivwp_ajax_wpmagazine_modules_lite_post_filter_load_new_postsincludes\class-wpmagazine-modules-lite.php:70
WordPress Hooks 30
actionadmin_menuadmin\class-wpmagazine-modules-lite-admin.php:45
actionadmin_enqueue_scriptsadmin\class-wpmagazine-modules-lite-admin.php:46
actionadmin_initadmin\class-wpmagazine-modules-lite-admin.php:48
actionadmin_noticesadmin\class-wpmagazine-modules-lite-admin.php:49
actionadmin_noticesadmin\class-wpmagazine-modules-lite-admin.php:50
actionwp_enqueue_scriptsincludes\class-wpmagazine-modules-lite.php:67
actionafter_setup_themeincludes\class-wpmagazine-modules-lite.php:68
actionplugins_loadedincludes\class-wpmagazine-modules-lite.php:85
actionwp_enqueue_scriptsincludes\dynamic-css.php:47
actionplugins_loadedincludes\elementor.php:43
actionelementor/elements/categories_registeredincludes\elementor.php:54
actionelementor/controls/controls_registeredincludes\elementor.php:57
actionelementor/widgets/widgets_registeredincludes\elementor.php:60
actionelementor/frontend/after_enqueue_stylesincludes\elementor.php:62
actionelementor/editor/before_enqueue_scriptsincludes\elementor.php:64
actionplugins_loadedincludes\gutenberg.php:41
filterblock_categoriesincludes\gutenberg.php:53
filterblock_categories_allincludes\gutenberg.php:55
actionenqueue_block_editor_assetsincludes\gutenberg.php:58
actionrest_api_initincludes\gutenberg.php:59
actionrest_api_initincludes\gutenberg.php:60
actionrest_api_initincludes\gutenberg.php:61
actionrest_api_initincludes\gutenberg.php:62
actionrest_api_initincludes\gutenberg.php:63
actioninitincludes\src\block-base\block-base.php:17
actionadmin_noticeswp-magazine-modules-lite.php:77
actionplugins_loadedwp-magazine-modules-lite.php:80
actionplugins_loadedwp-magazine-modules-lite.php:116
actionadmin_noticeswp-magazine-modules-lite.php:153
actionplugins_loadedwp-magazine-modules-lite.php:157
Maintenance & Trust

WP Magazine Modules Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedApr 21, 2025
PHP min version7.2
Downloads122K

Community Trust

Rating96/100
Number of ratings30
Active installs6K
Alternatives

WP Magazine Modules Lite Alternatives

Page Builder: Pagelayer – Drag and Drop website builder

Page Builder: Pagelayer – Drag and Drop website builder

pagelayer

A
88

The most advanced frontend drag & drop page builder. Pagelayer is a light weight but extremely powerful Website Builder.

400K 28 CVEs
GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor

gutenkit-blocks-addon

A
93

GutenKit – Ultimate no-code Gutenberg blocks to design stunning web pages and visually stunning posts in WordPress block editor.

70K 3 CVEs
Ultimate Blocks – 25+ Gutenberg Blocks for Block Editor

Ultimate Blocks – 25+ Gutenberg Blocks for Block Editor

ultimate-blocks

A
96

Create Better Content With The Block Editor. Custom Blocks for Bloggers and Content Marketers.

50K 14 CVEs
PublishPress Blocks – Block Controls, Block Visibility, Block Permissions

PublishPress Blocks – Block Controls, Block Visibility, Block Permissions

advanced-gutenberg

A
93

PublishPress Blocks is your complete solution for the WordPress block editor. You can control block permissions, styles, visibility, usage and more.

20K 3 CVEs
Twentig Supercharged Block Editor – Blocks, Patterns, Starter Sites, Portfolio

Twentig Supercharged Block Editor – Blocks, Patterns, Starter Sites, Portfolio

twentig

A
99

Supercharge the WordPress block editor with enhanced core blocks, hundreds of block patterns, professional starter sites, and portfolio tools.

20K 1 CVE
Developer Profile

WP Magazine Modules Lite Developer Profile

CodeVibrant

16 plugins · 20K total installs

91
trust score
Avg Security Score
96/100
Avg Patch Time
9 days
View full developer profile
Detection Fingerprints

How We Detect WP Magazine Modules Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-magazine-modules-lite/css/admin-notice.css/wp-content/plugins/wp-magazine-modules-lite/js/backend-script.js/wp-content/plugins/wp-magazine-modules-lite/js/elementor-addons.js/wp-content/plugins/wp-magazine-modules-lite/js/gutenberg-block.js/wp-content/plugins/wp-magazine-modules-lite/css/elementor-frontend.css/wp-content/plugins/wp-magazine-modules-lite/css/gutenberg-block.css/wp-content/plugins/wp-magazine-modules-lite/css/frontend.css/wp-content/plugins/wp-magazine-modules-lite/js/frontend.js
Script Paths
/wp-content/plugins/wp-magazine-modules-lite/js/backend-script.js/wp-content/plugins/wp-magazine-modules-lite/js/elementor-addons.js/wp-content/plugins/wp-magazine-modules-lite/js/gutenberg-block.js/wp-content/plugins/wp-magazine-modules-lite/js/frontend.js
Version Parameters
wp-magazine-modules-lite/css/admin-notice.css?ver=wp-magazine-modules-lite/js/backend-script.js?ver=wp-magazine-modules-lite/js/elementor-addons.js?ver=wp-magazine-modules-lite/js/gutenberg-block.js?ver=wp-magazine-modules-lite/css/elementor-frontend.css?ver=wp-magazine-modules-lite/css/gutenberg-block.css?ver=wp-magazine-modules-lite/css/frontend.css?ver=wp-magazine-modules-lite/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wpmagazine-modules-lite-messagewpmagazine-modules-lite-upgrade-notice
HTML Comments
<!-- admin notice -->
Data Attributes
data-editordata-iddata-widget-id
JS Globals
wpmagazine_modules_lite_editor_data
REST Endpoints
/wp-json/wpmagazine-modules-lite/v1/search
Shortcode Output
[wpmagazine_slider[wpmagazine_posts][wpmagazine_tabs][wpmagazine_archive]
FAQ

Frequently Asked Questions about WP Magazine Modules Lite