Does BrightLeaf Digital PHP Compatibility Scanner have any unpatched vulnerabilities?

No. All known vulnerabilities in BrightLeaf Digital PHP Compatibility Scanner have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is BrightLeaf Digital PHP Compatibility Scanner compatible with WordPress 6.9.4?

According to WordPress.org data, BrightLeaf Digital PHP Compatibility Scanner 1.0.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is BrightLeaf Digital PHP Compatibility Scanner compatible with PHP 7.4+?

BrightLeaf Digital PHP Compatibility Scanner requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is BrightLeaf Digital PHP Compatibility Scanner's security score?

BrightLeaf Digital PHP Compatibility Scanner has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BrightLeaf Digital PHP Compatibility Scanner Security & Risk Analysis

wordpress.org/plugins/brightleaf-digital-php-compatibility-scanner

This plugin scans your installed plugins and themes for potential PHP compatibility issues when upgrading to newer PHP versions.

100 active installs v1.0.1 PHP 7.4+ WP + Updated Jan 7, 2026

compatibilityphppluginsscanthemes

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is BrightLeaf Digital PHP Compatibility Scanner Safe to Use in 2026?

Generally Safe

Score 100/100

BrightLeaf Digital PHP Compatibility Scanner has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The brightleaf-digital-php-compatibility-scanner plugin version 1.0.1 demonstrates a generally strong security posture. The static analysis reveals no dangerous functions, all SQL queries utilize prepared statements, and there are no known CVEs associated with this plugin, suggesting a history of secure development. The presence of nonce and capability checks on its AJAX handlers is also a positive indicator, contributing to a secure attack surface.

However, a concern arises from the output escaping. With only 65% of outputs properly escaped, there is a risk of cross-site scripting (XSS) vulnerabilities. While no taint analysis flows were found with unsanitized paths, the incomplete output escaping means that user-supplied or dynamically generated data that reaches these unescaped outputs could be exploited.

Overall, the plugin is built on a solid foundation with good security practices in place, particularly concerning SQL injection and external threats. The primary area for improvement lies in ensuring all output is rigorously escaped to mitigate potential XSS risks. The lack of historical vulnerabilities is encouraging, but the current static analysis highlights a specific, addressable weakness.

Key Concerns

Unescaped output detected

Vulnerabilities

None known

BrightLeaf Digital PHP Compatibility Scanner Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

BrightLeaf Digital PHP Compatibility Scanner Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

65% escaped23 total outputs

Attack Surface

BrightLeaf Digital PHP Compatibility Scanner Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 5

authwp_ajax_brightleaf_digital_php_checker_scanclass-brightleaf-digital-php-checker-plugin.php:50

authwp_ajax_brightleaf_digital_php_checker_scan_startclass-brightleaf-digital-php-checker-plugin.php:52

authwp_ajax_brightleaf_digital_php_checker_scan_statusclass-brightleaf-digital-php-checker-plugin.php:53

authwp_ajax_brightleaf_digital_php_checker_scan_cancelclass-brightleaf-digital-php-checker-plugin.php:54

authwp_ajax_brightleaf_digital_php_checker_scan_toggle_pauseclass-brightleaf-digital-php-checker-plugin.php:55

WordPress Hooks 4

actionadmin_menuclass-brightleaf-digital-php-checker-plugin.php:46

actionadmin_initclass-brightleaf-digital-php-checker-plugin.php:47

actionadmin_enqueue_scriptsclass-brightleaf-digital-php-checker-plugin.php:48

filterplugin_row_metaclass-brightleaf-digital-php-checker-plugin.php:49

Maintenance & Trust

BrightLeaf Digital PHP Compatibility Scanner Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 7, 2026

PHP min version7.4

Downloads610

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

BrightLeaf Digital PHP Compatibility Scanner Alternatives

Advanced Automatic Updates

automatic-updater

Adds extra options to WordPress' built-in Automatic Updates feature.

30K No CVEs

Plugin Compatibility Checker

plugin-compatibility-checker

100

Scan and check your plugins for PHP and WordPress compatibility. Requires a $1/month Portal subscription to obtain a license key.

8K No CVEs

KP Zip Downloader

kp-zip-downloader

100

This plugin allows administrators to download installed plugins and themes as ZIP files directly from the WordPress dashboard.

2K No CVEs

Export Plugins and Templates

export-plugins-and-templates

Export Plugins and Templates allows you to export any template or plugin already installed in your WordPress.

1K No CVEs

Plugin Security Scanner

plugin-security-scanner

This plugin alerts you if any of your plugins have security vulnerabilities. It does this by utilising the WPScan Vulnerability Database once a day.

800 1 unpatched

Developer Profile

BrightLeaf Digital PHP Compatibility Scanner Developer Profile

BrightLeaf Digital

4 plugins · 100 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BrightLeaf Digital PHP Compatibility Scanner

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/brightleaf-digital-php-compatibility-scanner/build/php-compat-scanner.css/wp-content/plugins/brightleaf-digital-php-compatibility-scanner/build/php-compat-scanner.js

Script Paths

/wp-content/plugins/brightleaf-digital-php-compatibility-scanner/build/php-compat-scanner.js

Version Parameters

brightleaf-digital-php-compatibility-scanner/build/php-compat-scanner.css?ver=brightleaf-digital-php-compatibility-scanner/build/php-compat-scanner.js?ver=

HTML / DOM Fingerprints

CSS Classes

php-compat-scanner-admin-pagephp-compat-scanner-plugin-row-badge

Data Attributes

data-plugin-slugdata-scan-targetdata-scan-status-urldata-scan-cancel-urldata-scan-pause-url

JS Globals

brightleaf_digital_php_checker_ajax_object

REST Endpoints

/wp-json/brightleaf-digital-php-checker/v1/scan/wp-json/brightleaf-digital-php-checker/v1/scan-status/wp-json/brightleaf-digital-php-checker/v1/scan-cancel/wp-json/brightleaf-digital-php-checker/v1/scan-toggle-pause

FAQ