Does Admin Shift have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Admin Shift compatible with WordPress 6.8.5?

According to WordPress.org data, Admin Shift 1.0.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Admin Shift compatible with PHP 7.2+?

Admin Shift requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Admin Shift updated?

Admin Shift was last updated on May 18, 2025. Frequent updates are generally a positive security signal.

What is Admin Shift's security score?

Admin Shift has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Admin Shift Security & Risk Analysis

wordpress.org/plugins/admin-shift

Admin Shift lets you switch between 1, 2, 3, or 4 column dashboard widget layouts instantly.

0 active installs v1.0.1 PHP 7.2+ WP 5.0+ Updated May 18, 2025

admincustom-admincustomize-dashboarddashboard-layoutwidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Admin Shift Safe to Use in 2026?

Generally Safe

Score 100/100

Admin Shift has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12mo ago

Risk Assessment

The 'admin-shift' plugin v1.0.1 exhibits a generally strong security posture based on the provided static analysis. The plugin correctly utilizes prepared statements for all SQL queries and ensures all identified output is properly escaped, mitigating common risks like SQL injection and cross-site scripting. The presence of a nonce check on its sole AJAX handler is also a positive indicator of security awareness. Furthermore, the complete absence of any recorded vulnerabilities, including critical or high severity ones, in its history is a significant strength. This suggests a history of well-written and secure code. However, a notable concern is the complete lack of capability checks on its single AJAX endpoint. While a nonce check is present, this leaves the functionality potentially accessible to any logged-in user, regardless of their administrative privileges, which could be a security loophole depending on the AJAX handler's purpose.

Key Concerns

Missing capability checks on AJAX handler

Vulnerabilities

None known

Admin Shift Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Admin Shift Release Timeline

v1.0.1Current

v1.0.0

Code Analysis

Analyzed Apr 16, 2026

Admin Shift Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped2 total outputs

Attack Surface

Admin Shift Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_shift_save_layout_columnsadmin-shift.php:40

WordPress Hooks 2

actionadmin_headadmin-shift.php:17

actionadmin_enqueue_scriptsadmin-shift.php:141

Maintenance & Trust

Admin Shift Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 18, 2025

PHP min version7.2

Downloads470

Community Trust

Rating100/100

Number of ratings1

Active installs0

Alternatives

Admin Shift Alternatives

Admin Custom Login

admin-custom-login

Customize Your WordPress Login Screen Amazingly - Add Own Logo, Add Social Profiles, Login Form Positions, Background Image Slide Show

20K 2 CVEs

AGCA – Custom Dashboard & Login Page

ag-custom-admin

CHANGE: admin menu, login page, admin bar, dashboard widgets, custom colors, custom CSS & JS, logo & images

20K 5 CVEs

Desert Companion

desert-companion

100

Desert Companion Enhances Desert Themes with additional functionality.

20K No CVEs

Error Log Monitor

error-log-monitor

Adds a Dashboard widget that displays the latest messages from your PHP error log. It can also send logged errors to email.

20K 1 CVE

SpiceBox

spicebox

100

Enhance Spicethemes WordPress Themes functionality.

20K No CVEs

Developer Profile

Admin Shift Developer Profile

WebPro

3 plugins · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Admin Shift

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/admin-shift/admin/css/shift-styles.css/wp-content/plugins/admin-shift/admin/js/shift-scripts.js

Script Paths

/wp-content/plugins/admin-shift/admin/js/shift-scripts.js

Version Parameters

admin-shift/admin/css/shift-styles.css?ver=admin-shift/admin/js/shift-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

shift-layout-selector

Data Attributes

data-shift-layout

JS Globals

shift_vars

FAQ