Does AR Menu Icons have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is AR Menu Icons compatible with WordPress 6.8.5?

According to WordPress.org data, AR Menu Icons 1.0.6 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is AR Menu Icons updated?

AR Menu Icons was last updated on Aug 1, 2025. Frequent updates are generally a positive security signal.

What is AR Menu Icons's security score?

AR Menu Icons has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AR Menu Icons Security & Risk Analysis

wordpress.org/plugins/ar-menu-icons

Easily enhance your WordPress menu items with a variety of icons using AR Menu Icons.

0 active installs v1.0.6 PHP + WP 6.0+ Updated Aug 1, 2025

mega-menu-iconmegamenumenu-iconmenu-iconsnav-icon

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is AR Menu Icons Safe to Use in 2026?

Generally Safe

Score 100/100

AR Menu Icons has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The "ar-menu-icons" v1.0.6 plugin exhibits a generally good security posture based on the provided static analysis. The absence of SQL queries not using prepared statements, 100% properly escaped output, and zero critical or high severity taint flows are strong indicators of robust coding practices. Furthermore, the plugin has no recorded vulnerabilities or CVEs, suggesting a history of responsible development and maintenance regarding security.

Despite the positive indicators, a few areas warrant attention. The plugin makes two external HTTP requests, which, while not inherently a vulnerability, represent a potential attack vector if the external services are compromised or if the requests are not handled securely. The lack of capability checks on any of the entry points is a concern, as it implies that all users, regardless of their role, can potentially interact with these features. While the attack surface is currently zero, the presence of entry points without specific permission controls could become a risk if the plugin is extended or if new entry points are introduced without adequate security.

In conclusion, the plugin's core code appears to be secure with good practices in place, and its vulnerability history is excellent. However, the external HTTP requests and the complete absence of capability checks on its entry points are areas where future development or enhancements should focus on implementing stronger security measures to maintain its strong security profile.

Key Concerns

External HTTP requests present
No capability checks on entry points

Vulnerabilities

None known

AR Menu Icons Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

AR Menu Icons Release Timeline

v1.0.6Current

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

Code Analysis

Analyzed Apr 16, 2026

AR Menu Icons Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

82 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped82 total outputs

Attack Surface

AR Menu Icons Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 11

actionadmin_footeradmin/inc/metaboxes.php:9

actionwp_nav_menu_item_custom_fieldsadmin/inc/metaboxes.php:10

actionadmin_enqueue_scriptsadmin/inc/scripts.php:3

actionadmin_menuadmin/inc/settings.php:11

actionadmin_initadmin/inc/settings.php:12

actioninitclass.ar-menu-icons.php:37

actionplugins_loadedclass.ar-menu-icons.php:38

actionwp_enqueue_scriptspublic/inc/dynamic-css.php:4

actionplugins_loadedpublic/inc/nav-walker.php:17

filterwalker_nav_menu_start_elpublic/inc/nav-walker.php:21

actionwp_enqueue_scriptspublic/inc/scripts.php:3

Maintenance & Trust

AR Menu Icons Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedAug 1, 2025

PHP min version

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs0

Alternatives

AR Menu Icons Alternatives

WP Menu Icons

wp-menu-icons

100

WP Menu Icons allows you to add icons to your WordPress menu items.

20K No CVEs

Easy Menu Icons – Awesome Menu Icons

easy-menu-icons

100

The Easy Menu Icons Plugin for WordPress menu icon plugin where can decoration your menu item with different types icon.

600 No CVEs

Popular Brand Icons – Simple Icons

simple-icons

An easy to use lightweight SVG icons plugin with over 1500+ brand icons. Use these icons in your menus, widgets, posts, or pages.

3K 1 unpatched

The Menu: Custom mobile navigation with icons

the-menu

100

Create beautiful mobile navigation menus with custom icons, role-based visibility, and extensive style options for your WordPress site.

400 No CVEs

Material UI Menu Icons – Nifty Menu Options

nifty-menu-options

Adds beautiful icons to your WordPress menu items. More menu item options are coming soon!

200 No CVEs

Developer Profile

AR Menu Icons Developer Profile

arsyntax

3 plugins · 0 total installs

trust score

Avg Security Score

97/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AR Menu Icons

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ar-menu-icons/admin/assets/lib/font-awesome/css/all.min.css/wp-content/plugins/ar-menu-icons/admin/assets/lib/themify/themify-icons.css/wp-content/plugins/ar-menu-icons/admin/assets/css/armicn.css/wp-content/plugins/ar-menu-icons/admin/assets/js/jquery.quicksearch.js/wp-content/plugins/ar-menu-icons/admin/assets/js/armicn.js/wp-content/plugins/ar-menu-icons/public/assets/css/armicn.css

Script Paths

/wp-content/plugins/ar-menu-icons/admin/assets/js/jquery.quicksearch.js/wp-content/plugins/ar-menu-icons/admin/assets/js/armicn.js

Version Parameters

ar-menu-icons/admin/assets/lib/font-awesome/css/all.min.css?ver=ar-menu-icons/admin/assets/lib/themify/themify-icons.css?ver=ar-menu-icons/admin/assets/css/armicn.css?ver=ar-menu-icons/admin/assets/js/jquery.quicksearch.js?ver=ar-menu-icons/admin/assets/js/armicn.js?ver=ar-menu-icons/public/assets/css/armicn.css?ver=

HTML / DOM Fingerprints

CSS Classes

armicn-menu-icon

Data Attributes

data-armicn-icon-setdata-armicn-icon-familydata-armicn-icondata-armicn-icon-colordata-armicn-icon-bgdata-armicn-icon-size+3 more

JS Globals

armicn_ajax

REST Endpoints

/wp-json/ar-menu-icons/v1/settings/wp-json/ar-menu-icons/v1/save-settings/wp-json/ar-menu-icons/v1/get-icon-settings/wp-json/ar-menu-icons/v1/delete-icon

FAQ