Does gaplugin-darkmode have any unpatched vulnerabilities?

No. All known vulnerabilities in gaplugin-darkmode have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is gaplugin-darkmode compatible with WordPress 5.6.17?

According to WordPress.org data, gaplugin-darkmode 0.01.00.00 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

Is gaplugin-darkmode compatible with PHP 7.2+?

gaplugin-darkmode requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is gaplugin-darkmode updated?

gaplugin-darkmode was last updated on Unknown. Frequent updates are generally a positive security signal.

What is gaplugin-darkmode's security score?

gaplugin-darkmode has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

gaplugin-darkmode Security & Risk Analysis

wordpress.org/plugins/darkmode-ga

Use a shortcode to create a light/dark mode.

0 active installs v0.01.00.00 PHP 7.2+ WP 5.2+ Updated Unknown

colorsdarkdarkmodelightnavigation

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is gaplugin-darkmode Safe to Use in 2026?

Generally Safe

Score 100/100

gaplugin-darkmode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "darkmode-ga" plugin, at version 0.01.00.00, exhibits a generally good security posture based on the static analysis provided. The absence of known vulnerabilities in its history and the lack of any critical or high-severity taint flows are positive indicators. Furthermore, the plugin demonstrates proper handling of SQL queries by exclusively using prepared statements, which mitigates common SQL injection risks.

However, a significant concern arises from the complete lack of output escaping across all identified output points. This absence creates a substantial risk for Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data or data generated by the plugin could be injected into the page without proper sanitization, leading to malicious code execution in the user's browser. Additionally, the lack of any observed capability checks or nonce checks on potential entry points, while currently not directly exploitable due to the limited attack surface, leaves the plugin susceptible to privilege escalation or unauthorized actions if its entry points expand in future versions without proper authorization mechanisms.

In conclusion, while the plugin scores well on preventing common vulnerabilities like SQL injection and has no known historical issues, the critical flaw of universally unescaped output presents a serious security risk. The lack of robust authorization checks on its (currently minimal) entry points is another area for improvement. Addressing the output escaping issue should be the highest priority.

Key Concerns

All outputs are unescaped
No capability checks on entry points
No nonce checks on entry points

Vulnerabilities

None known

gaplugin-darkmode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

gaplugin-darkmode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped4 total outputs

Attack Surface

gaplugin-darkmode Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

filterrest_authentication_errorsgaplugin-darkmode-plugin.php:31

actioninitgaplugin-darkmode-plugin.php:59

actionwp_enqueue_scriptsincludes\AdminPage.php:81

actionadmin_enqueue_scriptsincludes\AdminPage.php:82

actionadmin_initincludes\AdminPage.php:83

actionadmin_menuincludes\AdminPage.php:84

Maintenance & Trust

gaplugin-darkmode Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedUnknown

PHP min version7.2

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

gaplugin-darkmode Alternatives

Dusky Dark Mode – Dark Mode for Gutenberg and Elementor

dusky-dark-mode

100

Enable Dark Mode on your website & get an awesome user experience with advanced features.

200 No CVEs

Shutter Reloaded Plus

shutter-reloaded-plus

Darkens the current page and displays an image (like Lightbox, Thickbox, etc.), but is a lot smaller (8KB) and faster.

200 No CVEs

Onyx Dark Mode Switcher

onyx-dark-mode-switcher

100

Switch between light and dark themes for a more comfortable viewing experience, day or night.

100 No CVEs

Blinds Dark Mode

blinds

100

Blinds gives you and your users the option to enable dark mode interface in WordPress blog or website.

10 No CVEs

Commandify — Admin Command Palette

commandify

100

Commandify, a smart command palette for WordPress & WooCommerce. Instantly navigate, search, and manage admin tasks with fast keyboard commands.

10 No CVEs

Developer Profile

gaplugin-darkmode Developer Profile

GAUTIER Antoine

4 plugins · 0 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect gaplugin-darkmode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/darkmode-ga/includes/DarkMode.css/wp-content/plugins/darkmode-ga/includes/DarkMode-admin.css

HTML / DOM Fingerprints

CSS Classes

darkmode-switch

FAQ