Coming soon and landing page builders sit at the intersection of front-end publishing, access control, template rendering, subscriber collection, SEO metadata, and administrator-managed design content. That makes them high-value from a marketing perspective, but also security-sensitive because builder content often becomes public HTML and mode controls can determine who can see the site. Website Builder by SeedProd version 6.20.1 has successfully completed the CleanTalk Plugin Security Certification process and received PSC-2026-64663, confirming that the plugin was reviewed from a secure code perspective with attention to common exploitation paths for page builders, coming soon pages, and maintenance mode plugins.
| Name of | Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode |
| Version | 6.20.1 |
| Active installations | 700,000+ |
| Description | Easy Drag & Drop Page Builder. A complete solution to create a WordPress Website, Custom Themes, Landing Pages, Coming Soon & Maintenance Mode Pages. |
| Security | Successfully tested for: SQL Injection (SQLi) Cross-Site Scripting (XSS) – Stored & Reflected Cross-Site Request Forgery (CSRF) Authentication Vulnerabilities Authentication Bypass Exploits Privilege Escalation Buffer Overflow Denial-of-Service (DoS) vectors Data Leakage Vulnerabilities Insecure Dependency Usage Remote Code Execution (RCE) Risks Unauthorized File Access Insufficient Injection Protection Information Disclosure via Misconfigured Endpoints |
| CleanTalk Certification | Proudly earned the “Plugin Security Certification” (PSC) from CleanTalk, indicating adherence to stringent security standards. |
| Additional Information | Use SeedProd with confidence backed by the “Plugin Security Certification” (PSC). Always verify the latest plugin details and keep WordPress core and dependent components up to date. |
| Plugin Security Certification by CleanTalk |  |
| Logo of the plugin |  |
PSC by CleantalkJoin the community of developers who prioritize security. Highlight your plugin in the WordPress catalog.
Key Features
Website Builder by SeedProd provides a drag-and-drop builder for WordPress websites, landing pages, coming soon pages, and maintenance mode pages. It supports theme-building workflows, page templates, responsive layouts, blocks, landing page modes, coming soon and maintenance behavior, subscriber collection, integrations, stock image access, live previews, layout navigation, revision-style editing, and draft workflows. These capabilities matter for security because the plugin touches front-end HTML generation, builder settings, site visibility controls, template storage, subscriber data, SEO metadata, and administrator preview paths. Secure implementation requires capability checks for builder and mode settings, nonce protection for edits, safe rendering of content blocks, careful access-control behavior for logged-in and logged-out visitors, and correct handling of maintenance-mode HTTP status behavior.
Security Assurance
The CleanTalk Plugin Security Certification evaluation focuses on defensive behavior for page builders and site-visibility plugins that control public output and access modes. For coming soon and landing page builders, common abuse patterns include stored XSS through builder blocks, unsafe HTML attributes in templates, unauthorized changes to site visibility mode, subscriber data exposure, preview link abuse, open redirects, CSRF against administrator page settings, and bypassing maintenance or coming soon access controls. The review validates that editing and configuration actions are limited to authorized roles, that nonces protect state-changing requests, and that block content, metadata, and template fields are safely handled across admin previews and public rendering. Particular attention is paid to preview URLs, draft workflows, landing page output, subscriber storage, and integrations because these paths combine private configuration with public-facing content.
The plugin has been successfully tested for:
✅ Information Leakage Vulnerabilities
✅ SQL Injection Vulnerabilities
✅ Cross-Site Scripting (XSS) Attacks
✅ Cross-Site Request Forgery (CSRF) Attacks
✅ Authentication & Authentication Bypass Vulnerabilities
✅ Privilege Escalation Vulnerabilities
✅ Buffer Overflow Vulnerabilities
✅ Denial-of-Service (DoS) Vulnerabilities
✅ Data Leakage Vulnerabilities
✅ Insecure Dependencies
✅ Code Execution Vulnerabilities
✅ File Unauthorized Access Vulnerabilities
✅ Insufficient Injection Protection
Conclusion
With PSC-2026-64663, Website Builder by SeedProd version 6.20.1 demonstrates strong baseline security for the workflows that matter most in coming soon and landing page builder plugins: creating public pages, controlling maintenance or coming soon visibility, rendering builder content safely, and protecting subscriber and configuration data. This certification helps site owners launch or maintain WordPress sites with greater confidence that common WordPress vulnerability classes have been reviewed. As a best practice, limit builder access to trusted users, review custom HTML and embedded scripts before publishing, and verify coming soon or maintenance behavior after cache and CDN changes.
Note: The date and certification information may change over time. It is advisable to verify the latest details on the plugin developer’s website.