Does Custom Admin Columns have any unpatched vulnerabilities?

No. All known vulnerabilities in Custom Admin Columns have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Custom Admin Columns compatible with WordPress 3.2.1?

According to WordPress.org data, Custom Admin Columns 1.3 has been tested up to WordPress 3.2.1. Check the plugin's changelog for the latest compatibility information.

How often is Custom Admin Columns updated?

Custom Admin Columns was last updated on Oct 27, 2011. Frequent updates are generally a positive security signal.

What is Custom Admin Columns's security score?

Custom Admin Columns has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Custom Admin Columns Security & Risk Analysis

wordpress.org/plugins/custom-admin-column

This plugin allows user to add additional columns to admin posts and pages page.

10 active installs v1.3 PHP + WP 3.0+ Updated Oct 27, 2011

admincolumns

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Custom Admin Columns Safe to Use in 2026?

Generally Safe

Score 85/100

Custom Admin Columns has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The 'custom-admin-column' plugin v1.3 exhibits a generally good security posture based on the provided static analysis. The absence of any attack surface points, dangerous functions, raw SQL queries, file operations, external HTTP requests, or taint flows is a strong positive indicator. The plugin also has no recorded vulnerability history, suggesting a mature and stable codebase regarding known exploits.

However, a significant concern arises from the output escaping. With 17 total outputs and 0% properly escaped, this presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. Any data displayed by the plugin that originates from user input or external sources is potentially vulnerable to manipulation. While the plugin lacks other common entry points that are typically exploited, this lack of output sanitization is a critical oversight that could be leveraged by attackers to inject malicious scripts into the WordPress admin area.

In conclusion, while the plugin avoids many common security pitfalls, the pervasive issue of unescaped output creates a notable weakness. The complete lack of vulnerabilities in its history is a good sign, but it does not negate the immediate risk posed by unescaped output. Therefore, it is crucial to address the output escaping before the plugin can be considered truly secure.

Key Concerns

Output not properly escaped

Vulnerabilities

None known

Custom Admin Columns Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Custom Admin Columns Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped17 total outputs

Attack Surface

Custom Admin Columns Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionadmin_initcustom_admin_columns.php:47

filtermanage_pages_columnscustom_admin_columns.php:61

filtermanage_posts_columnscustom_admin_columns.php:80

filtermanage_media_columnscustom_admin_columns.php:97

actionmanage_posts_custom_columncustom_admin_columns.php:171

actionmanage_pages_custom_columncustom_admin_columns.php:172

actionmanage_media_custom_columncustom_admin_columns.php:173

Maintenance & Trust

Custom Admin Columns Maintenance & Trust

Maintenance Signals

WordPress version tested3.2.1

Last updatedOct 27, 2011

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Custom Admin Columns Alternatives

Admin Columns

codepress-admin-columns

100

Customise columns on the administration screens for post(types), pages, media, comments, links and users with an easy to use drag-and-drop interface.

100K No CVEs

Admin Columns for ACF Fields

admin-columns-for-acf-fields

Allows you to enable columns for your ACF fields in post and taxonomy overviews (e.g. "All Posts") in the Wordpress admin backend.

9K No CVEs

WP Adminify – White Label WordPress, Admin Menu Editor, Login Customizer

adminify

Transform your WordPress admin into a fully white-labeled, organized client dashboard. Customize, Dark mode, Secure, Boost productivity, and more.

7K 7 CVEs

Admin Slug Column

admin-slug-column

100

Adds a URL path column to all admin post type edit screens. Works with posts, pages, and any custom post type including WooCommerce products.

5K No CVEs

Add Featured Image Column

add-featured-image-column

This plugin adds a featured image column to any post type which supports featured images. See which posts have a featured image at a glance!

3K No CVEs

Developer Profile

Custom Admin Columns Developer Profile

dexxaye

3 plugins · 30 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Custom Admin Columns

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/custom_admin_columns/custom_admin_columns.css

Version Parameters

custom_admin_columns.css?ver=

HTML / DOM Fingerprints

FAQ