WP-Safety

Admin DropDown Categories Security & Risk Analysis

wordpress.org/plugins/admin-dropdown-categories

Offer an excellent choice of category.

10 active installs v0.1.0 PHP + WP 2.6+ Updated Nov 1, 2012
adminajaxcategoriescategorydropdown
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Admin DropDown Categories Safe to Use in 2026?

Generally Safe

Score 85/100

Admin DropDown Categories has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago
Risk Assessment

The 'admin-dropdown-categories' plugin v0.1.0 exhibits a generally positive security posture with no known vulnerabilities and strong adherence to several security best practices. The static analysis reveals no dangerous functions, no file operations, and no external HTTP requests, all of which significantly reduce the attack surface. Furthermore, all SQL queries utilize prepared statements, and there are indications of nonce and capability checks, suggesting an effort to protect against common WordPress exploits. However, a significant concern arises from the complete lack of output escaping. This means that any data rendered by the plugin could potentially be vulnerable to Cross-Site Scripting (XSS) attacks if the input data is not already sanitized, which is not guaranteed. While the attack surface appears minimal with no identified entry points and no taint flows, the unescaped output represents a notable weakness that could be exploited. The absence of any recorded vulnerabilities historically is a good sign, implying the developers have a sound security consciousness or have not yet exposed critical flaws. Nevertheless, the unescaped output issue warrants immediate attention to bolster the plugin's overall security.

Key Concerns

  • No output escaping
Vulnerabilities
None known

Admin DropDown Categories Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Admin DropDown Categories Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
9
0 escaped
Nonce Checks
1
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped9 total outputs
Attack Surface

Admin DropDown Categories Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 3
actionadmin_menuadmin_dropDown_categories.php:29
actionsave_postadmin_dropDown_categories.php:31
filterinitadmin_dropDown_categories.php:33
Maintenance & Trust

Admin DropDown Categories Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2
Last updatedNov 1, 2012
PHP min version
Downloads3K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Admin DropDown Categories Alternatives

Category Dropdown by GCS Design

Category Dropdown by GCS Design

wp-category-dropdown

C
69

Display a parent and child categories in a dropdown. Works with custom taxonomies and WooCommerce product categories.

1K 1 unpatched
Product Category Dropdowns

Product Category Dropdowns

product-category-dropdowns

A
100

Displays product categories as dependent drop-down selects.

900 No CVEs
Category Page Extender

Category Page Extender

category-page-extender

A
85

Inserts posts into pages corresponding to category. Add on plugin for Category Page by pixline.net. Requieres an active installation of Category Page …

40 No CVEs
Category Ajax Chain Selects

Category Ajax Chain Selects

category-ajax-chain-selects

A
85

Category Ajax Chain Selects

30 No CVEs
FSM Backend Category Organizer

FSM Backend Category Organizer

fsm-backend-category-organizer

A
85

Allows to present and sort the categories (or any hierarchical taxonomy) on the WordPress backend, displaying them more efficiently in the post's …

30 No CVEs
Developer Profile

Admin DropDown Categories Developer Profile

takumin

3 plugins · 30 total installs

87
trust score
Avg Security Score
90/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Admin DropDown Categories

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/admin-dropdown-categories/admin_dropdown_categories.js
Script Paths
/wp-content/plugins/admin-dropdown-categories/admin_dropdown_categories.js

HTML / DOM Fingerprints

CSS Classes
admin_dropdown_categories_baseadmin_dropdown_categories_append_linkadmin_dropdown_categories_0admin_dropdown_categories_1admin_dropdown_categories_2
HTML Comments
/* Copyright 2012 Takumi Kumagai (email : kumagai.t at firstelement.jp) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License, version 2, as published by the Free Software Foundation. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA *//* 投稿ページにブロックを追加/* メイン処理。カテゴリ取得&フォーム作成/* 保存処理+2 more
Data Attributes
name="ADC_noncename"id="ADC_noncename"name="admin_dropdown_categories_[]"id="admin_dropdown_categories_base"id="admin_dropdown_categories_0"class="admin_dropdown_categories_0"+18 more
JS Globals
admin_dropdown_categories_nextmake_admin_dropdown_categories_form
REST Endpoints
/wp-json/
FAQ

Frequently Asked Questions about Admin DropDown Categories