Does Catch IDs have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Catch IDs compatible with WordPress 6.9.4?

According to WordPress.org data, Catch IDs 2.8.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Catch IDs updated?

Catch IDs was last updated on Feb 17, 2026. Frequent updates are generally a positive security signal.

What is Catch IDs's security score?

Catch IDs has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Catch IDs Security & Risk Analysis

wordpress.org/plugins/catch-ids

What this plugin does is to shows the IDs on admin section.

20K active installs v2.8.1 PHP + WP 5.9+ Updated Feb 17, 2026

admincatch-idsshowsimplewp-admin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Catch IDs Safe to Use in 2026?

Generally Safe

Score 100/100

Catch IDs has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The "catch-ids" plugin v2.8.1 demonstrates a generally strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. The plugin also exhibits excellent output escaping practices, with 97% of outputs properly sanitized, and a robust implementation of nonce and capability checks, indicating a proactive approach to preventing common WordPress vulnerabilities. The lack of any recorded CVEs, past or present, further reinforces this positive assessment. However, the presence of 4 AJAX handlers, while currently protected by authorization checks, represents a potential attack surface that warrants continued vigilance. Any future changes introducing new AJAX handlers without proper authentication or authorization could introduce significant risks. The complete absence of taint analysis data is noted, and while not a direct negative, it means potential vulnerabilities within complex data flows could be missed if such flows existed.

Vulnerabilities

None known

Catch IDs Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Catch IDs Release Timeline

v2.8.1Current

v2.8

v2.7.3

v2.7.2

v2.7.1

v2.7

v2.6

v2.5

v2.4

v2.3

v2.2

v2.1

v2.0

v1.9

v1.8

v1.7

v1.6

v1.5

v1.4.8

v1.4.7

Code Analysis

Analyzed Mar 16, 2026

Catch IDs Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

63 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped65 total outputs

Attack Surface

Catch IDs Attack Surface

Entry Points4

Unprotected0

AJAX Handlers 4

authwp_ajax_catchids_switchcatch-ids.php:373

authwp_ajax_ctp_switchcatch-ids.php:415

authwp_ajax_query-themesincludes\CatchThemesThemePlugin.php:11

authwp_ajax_customize_load_themesincludes\CatchThemesThemePlugin.php:21

WordPress Hooks 26

actionplugins_loadedcatch-ids.php:81

actionadmin_headcatch-ids.php:154

actionmanage_media_columnscatch-ids.php:166

filtermanage_media_custom_columncatch-ids.php:167

actionmanage_link_custom_columncatch-ids.php:171

filtermanage_link-manager_columnscatch-ids.php:172

actionmanage_edit-link-categories_columnscatch-ids.php:175

filtermanage_link_categories_custom_columncatch-ids.php:176

actionmanage_users_columnscatch-ids.php:201

filtermanage_users_custom_columncatch-ids.php:202

filtermanage_users_sortable_columnscatch-ids.php:204

actionmanage_edit-comments_columnscatch-ids.php:210

actionmanage_comments_custom_columncatch-ids.php:211

filtermanage_edit-comments_sortable_columnscatch-ids.php:213

actionadmin_initcatch-ids.php:218

actionadmin_menucatch-ids.php:291

actionadmin_initcatch-ids.php:321

filterplugin_action_linkscatch-ids.php:343

actionadmin_enqueue_scriptscatch-ids.php:357

actionadmin_enqueue_scriptscatch-ids.php:370

filterplugin_row_metacatch-ids.php:470

actionadmin_enqueue_scriptsincludes\CatchThemesThemePlugin.php:13

actioncustomize_registerincludes\CatchThemesThemePlugin.php:16

filterinstall_plugins_tabsincludes\CatchThemesThemePlugin.php:23

filterinstall_plugins_table_api_args_catchpluginsincludes\CatchThemesThemePlugin.php:24

actioninstall_plugins_catchpluginsincludes\CatchThemesThemePlugin.php:25

Maintenance & Trust

Catch IDs Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 17, 2026

PHP min version

Downloads798K

Community Trust

Rating96/100

Number of ratings20

Active installs20K

Alternatives

Catch IDs Alternatives

Catch Web Tools

catch-web-tools

100

A top-notch modular plugin that can greatly enhance the capabilities of a WordPress website with its powerful features.

10K 1 CVE

Gmt Post IDs

gmt-post-ids

This plugin displays the IDs in the admin section.

0 No CVEs

All In One Login — WP Admin Login Page Security and Customization with Google reCAPTCHA, Social Login, Limit Login Attempt, 2FA, and more.

change-wp-admin-login

Do you want to secure and customize the WordPress login page? Download the All in One Login plugin for login page security and customization.

70K 3 CVEs

Reveal IDs

reveal-ids-for-wp-admin-25

100

What this plugin does is to reveal most removed IDs on admin pages, as it was in versions prior to 2.5.

40K No CVEs

Change WordPress Login Logo

change-login-logo

Upload your logo for WordPress login page instead of the usual WordPress logo with simple settings.

20K 1 CVE

Developer Profile

Catch IDs Developer Profile

Catch Themes

156 plugins · 226K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

251 days

View full developer profile

Detection Fingerprints

How We Detect Catch IDs

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/catch-ids/js/catch-ids.js

Script Paths