Does WPEssential have any unpatched vulnerabilities?

No. All known vulnerabilities in WPEssential have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WPEssential compatible with WordPress 6.5.8?

According to WordPress.org data, WPEssential 2.0 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Is WPEssential compatible with PHP 7.4+?

WPEssential requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WPEssential updated?

WPEssential was last updated on May 8, 2024. Frequent updates are generally a positive security signal.

What is WPEssential's security score?

WPEssential has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WPEssential Security & Risk Analysis

wordpress.org/plugins/wpessential

WPEssential is a flexible extension of WordPress. It is open-source and themes also page builder solution in WordPress. Create any theme, anywhere and …

10 active installs v2.0 PHP 7.4+ WP 6.4+ Updated May 8, 2024

elementorlanding-pagelayer-sliderrevolutation-sliderwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WPEssential Safe to Use in 2026?

Generally Safe

Score 92/100

WPEssential has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The wpessential plugin v2.0 exhibits a concerning security posture primarily due to its unprotected AJAX handlers. While the plugin demonstrates good practices in other areas, such as a high percentage of prepared SQL statements and properly escaped output, the presence of six AJAX handlers without any authentication checks creates a significant attack surface. This means any unauthenticated user could potentially trigger these functions, leading to unintended actions or information disclosure if these handlers are not robustly secured internally. Fortunately, the taint analysis found no flows with unsanitized paths, and the plugin has no recorded vulnerability history, suggesting a proactive approach to known security issues. However, the lack of internal security checks on these AJAX endpoints, despite the absence of external vulnerabilities, is a notable weakness that could be exploited if internal logic flaws exist.

Key Concerns

AJAX handlers without authentication checks
Large attack surface without auth checks

Vulnerabilities

None known

WPEssential Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WPEssential Code Analysis

Dangerous Functions

Raw SQL Queries

11 prepared

Unescaped Output

109 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

73% prepared15 total queries

Output Escaping

83% escaped131 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<DupplicatePost> (inc\Utility\DupplicatePost.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

6 unprotected

WPEssential Attack Surface

Entry Points6

Unprotected6

AJAX Handlers 6

authwp_ajax_wpe_authinc\Requesting\AuthGuard.php:13

noprivwp_ajax_wpe_authinc\Requesting\AuthGuard.php:14

authwp_ajax_wpe_auth_reginc\Requesting\AuthGuard.php:16

noprivwp_ajax_wpe_auth_reginc\Requesting\AuthGuard.php:17

authwp_ajax_wpe_auth_forgotinc\Requesting\AuthGuard.php:19

noprivwp_ajax_wpe_auth_forgotinc\Requesting\AuthGuard.php:20

WordPress Hooks 91

filterrwmb_meta_boxesconfig\metabox-general.php:2

actionadmin_print_scripts-toplevel_page_wpessentialinc\Admin\AdminInit.php:17

filterwpe/localizationinc\Admin\AdminInit.php:18

filterexport_argsinc\Admin\ImportExport\WithMediaExport.php:23

actionexport_filtersinc\Admin\ImportExport\WithMediaExport.php:26

actionexport_wpinc\Admin\ImportExport\WithMediaExport.php:29

filterexport_queryinc\Admin\ImportExport\WithMediaExport.php:32

filterqueryinc\Admin\ImportExport\WithMediaExport.php:62

actionadd_meta_boxesinc\Admin\MetaBox.php:18

filterwpe/admin_page/jsinc\Admin\MetaBox.php:24

actionadmin_menuinc\Admin\Pages.php:13

actionwp_headinc\Assets\Enqueue.php:17

actionadmin_headinc\Assets\Enqueue.php:18

actionwp_enqueue_scriptsinc\Assets\Enqueue.php:19

actionadmin_print_scripts-toplevel_page_wpessentialinc\Assets\Enqueue.php:23

actionadmin_print_scripts-post.phpinc\Assets\Enqueue.php:24

actionadmin_print_scripts-post-new.phpinc\Assets\Enqueue.php:25

actionelementor/editor/after_enqueue_scriptsinc\Assets\Enqueue.php:27

actionwp_enqueue_scriptsinc\Assets\RegisterAssets.php:18

actionadmin_enqueue_scriptsinc\Assets\RegisterAssets.php:19

actionelementor/editor/after_enqueue_scriptsinc\Assets\RegisterAssets.php:20

filterscript_loader_taginc\Assets\ScriptLoader.php:18

actiontgmpa_registerinc\Assets\Tgm.php:21

filterwpe/register/page_attributes/templatesinc\Builders\WPBakery\Utility\PageTemplates.php:14

filterwpe/register/page_attributes/templates/viewinc\Builders\WPBakery\Utility\PageTemplates.php:15

actioninitinc\Libraries\class-tgm-plugin-activation.php:268

filterload_textdomain_mofileinc\Libraries\class-tgm-plugin-activation.php:269

actioninitinc\Libraries\class-tgm-plugin-activation.php:272

actionadmin_menuinc\Libraries\class-tgm-plugin-activation.php:421

actionadmin_headinc\Libraries\class-tgm-plugin-activation.php:422

filterinstall_plugin_complete_actionsinc\Libraries\class-tgm-plugin-activation.php:425

filterupdate_plugin_complete_actionsinc\Libraries\class-tgm-plugin-activation.php:426

actionadmin_noticesinc\Libraries\class-tgm-plugin-activation.php:429

actionadmin_initinc\Libraries\class-tgm-plugin-activation.php:430

actionadmin_enqueue_scriptsinc\Libraries\class-tgm-plugin-activation.php:431

actionload-plugins.phpinc\Libraries\class-tgm-plugin-activation.php:436

actionswitch_themeinc\Libraries\class-tgm-plugin-activation.php:439

actionswitch_themeinc\Libraries\class-tgm-plugin-activation.php:442

actionadmin_initinc\Libraries\class-tgm-plugin-activation.php:447

actionswitch_themeinc\Libraries\class-tgm-plugin-activation.php:452

actionload_textdomain_mofileinc\Libraries\class-tgm-plugin-activation.php:475

filterupgrader_source_selectioninc\Libraries\class-tgm-plugin-activation.php:889

actionplugins_loadedinc\Libraries\class-tgm-plugin-activation.php:2112

filtertgmpa_table_data_itemsinc\Libraries\class-tgm-plugin-activation.php:2236

filterupgrader_source_selectioninc\Libraries\class-tgm-plugin-activation.php:2977

actionadmin_initinc\Libraries\class-tgm-plugin-activation.php:3147

actionupgrader_process_completeinc\Libraries\class-tgm-plugin-activation.php:3242

filterupgrader_post_installinc\Libraries\class-tgm-plugin-activation.php:3301

filterupgrader_post_installinc\Libraries\class-tgm-plugin-activation.php:3446

actionadmin_head-edit-tags.phpinc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:13

actionadmin_head-edit-tags.phpinc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:16

actionadmin_head-term.phpinc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:17

filterpre_term_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:27

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:28

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:34

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:35

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:38

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:39

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:40

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:41

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:44

filterterm_descriptioninc\Libraries\TermDescriptionEditor\TermDescriptionEditor.php:45

actionplugins_loadedinc\Loader.php:54

actioninitinc\Loader.php:55

actionadmin_initinc\Loader.php:56

actionwp_loadedinc\Loader.php:57

filteruse_block_editor_for_post_typeinc\Loader.php:155

filtergutenberg_can_edit_post_typeinc\Loader.php:156

filtershow_admin_barinc\Loader.php:223

filterwpe/localizationinc\Panel\MetaBox.php:186

filterpost_row_actionsinc\Utility\DupplicatePost.php:13

actionadmin_headinc\Utility\DupplicatePost.php:14

actionpost_submitbox_misc_actionsinc\Utility\DupplicatePost.php:15

actionadmin_action_wpe_duplicate_post_as_draftinc\Utility\DupplicatePost.php:16

actionwp_before_admin_bar_renderinc\Utility\DupplicatePost.php:17

filtertiny_mce_before_initinc\Utility\Editor.php:20

filtermce_buttonsinc\Utility\Editor.php:21

filtermce_buttons_2inc\Utility\Editor.php:22

filterupload_mimesinc\Utility\ExtraFileSupport.php:15

filterplugin_action_links_wpessential/wpessential.phpinc\Utility\ExtraOnPluginPage.php:22

filtertheme_page_templatesinc\Utility\PageTemplates.php:20

filterwp_insert_post_datainc\Utility\PageTemplates.php:23

filtertemplate_includeinc\Utility\PageTemplates.php:27

filterdisplay_post_statesinc\Utility\PageTemplates.php:28

actionadmin_footer-edit.phpinc\Utility\RegisterPostStatus.php:54

actionadmin_footer-post.phpinc\Utility\RegisterPostStatus.php:55

actionadmin_footer-post-new.phpinc\Utility\RegisterPostStatus.php:56

filterrest_url_prefixinc\Utility\RestApi.php:15

actionrest_api_initinc\Utility\RestApi.php:16

filterrest_endpointsinc\Utility\RestApi.php:17

actioncli_initinc\WpCli\WpCliINit.php:13

Maintenance & Trust

WPEssential Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMay 8, 2024

PHP min version7.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

WPEssential Alternatives

Elementor Website Builder – More Than Just a Page Builder

elementor

The Elementor Website Builder has it all: drag and drop page builder, pixel perfect design, mobile responsive editing, and more. Get started now!

10.0M 46 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Templately – Elementor & Gutenberg Template Library: 6500+ Free & Pro Ready Templates And Cloud!

templately

Templately is an AI-powered WordPress templates cloud for Elementor and Gutenberg that offers 6,500+ ready template designs for a wide range of niches

400K 6 CVEs

Prime Slider – Addons for Elementor

bdthemes-prime-slider-lite

Create responsive sliders using Elementor for hero sections, posts, logos, images, products, testimonials, and more.

100K 15 CVEs

ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

shopengine

WooCommerce builder for Elementor and Gutenberg. It offers product templates, product sliders, shopping cart, quick view, Woo wishlist, product filter …

90K 4 CVEs

Developer Profile

WPEssential Developer Profile

WPEssential

4 plugins · 30 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WPEssential

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wpessential/assets/css/wpessential.css/wp-content/plugins/wpessential/assets/css/wpessential-admin.css/wp-content/plugins/wpessential/assets/css/wpessential-blog-post.css/wp-content/plugins/wpessential/assets/css/wpessential-blog-post-color.css/wp-content/plugins/wpessential/assets/css/wpessential-blog-post-res.css/wp-content/plugins/wpessential/assets/css/wpessential-elementor-editor.css/wp-content/plugins/wpessential/assets/js/wpessential.js/wp-content/plugins/wpessential/assets/js/wpessential-admin.js+3 more

Script Paths

wpessential-elementor-editorwpessential-adminwpessentialwpessential-blog-postwpessential-blog-post-reswpessential-blog-post-color

Version Parameters

wpessential/assets/css/wpessential.css?ver=wpessential/assets/css/wpessential-admin.css?ver=wpessential/assets/css/wpessential-blog-post.css?ver=wpessential/assets/css/wpessential-blog-post-color.css?ver=wpessential/assets/css/wpessential-blog-post-res.css?ver=wpessential/assets/css/wpessential-elementor-editor.css?ver=wpessential/assets/js/wpessential.js?ver=wpessential/assets/js/wpessential-admin.js?ver=wpessential/assets/js/bootstrap.js?ver=wpessential/assets/js/crypt.js?ver=wpessential/assets/js/encryption.js?ver=

HTML / DOM Fingerprints

CSS Classes

wpessential-admin-wrapperwpessential-admin-panel

HTML Comments

Data Attributes

data-wpe-id

JS Globals

WPEssential

FAQ