Dashboard Notepad Security & Risk Analysis
wordpress.org/plugins/dashboard-notepadThe very simplest of notepads for your Dashboard.
Is Dashboard Notepad Safe to Use in 2026?
Use With Caution
Score 63/100Dashboard Notepad has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.
The 'dashboard-notepad' plugin exhibits a mixed security posture. While its static analysis shows good practices such as 100% prepared statement usage for SQL queries and capability checks on all identified output points, there are significant concerns. The absence of nonce checks is a notable weakness, potentially leaving the plugin vulnerable to cross-site request forgery attacks, especially given its past vulnerability history. Furthermore, the vulnerability history reveals a concerning pattern of a known unpatched medium severity vulnerability, indicating a lack of ongoing maintenance and security responsiveness. The fact that a CVE exists and is unpatched is a critical flag, outweighing some of the positive static analysis findings. The plugin's attack surface is minimal, which is a positive, but the presence of a single shortcode without explicit nonce checks creates a potential entry point for exploitation.
Key Concerns
- Unpatched CVE exists
- Missing nonce checks
- Medium severity vulnerability history
Dashboard Notepad Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Dashboard Notepad <= 1.42 - Cross-Site Request Forgery
Dashboard Notepad Release Timeline
Dashboard Notepad Code Analysis
Output Escaping
Dashboard Notepad Attack Surface
Shortcodes 1
WordPress Hooks 5
Maintenance & Trust
Dashboard Notepad Maintenance & Trust
Maintenance Signals
Community Trust
Dashboard Notepad Alternatives
Dashboard Widgets Suite
dashboard-widgets-suite
Adds 9 awesome widgets to your WP Dashboard. Includes User Notes, Social Buttons, System Info, Debug/Error Logs, and more!
WP Dashboard Eathim
wp-dashboard-eathim
Install and enjoy your Dashboard.
Admin Notes Widget By Website14
admin-notes-widget-by-website14
A dashboard widget for adding sticky notes with rich text formatting, color coding, and admin sharing capabilities.
Dashboard Scratch Pad
dashboard-scratch-pad
A plugin that adds a scratch pad to your dashboard
YAT DashNotes
yat-dashnotes
Leave custom instructions, contact info, or help guides for your clients directly on the WordPress dashboard.
Dashboard Notepad Developer Profile
16 plugins · 17K total installs
How We Detect Dashboard Notepad
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/dashboard-notepad/css/dashboard-notepad.cssdashboard-notepad/css/dashboard-notepad.css?ver=dashboard-notepad/js/dashboard-notepad.js?ver=HTML / DOM Fingerprints
dashboard-role-columndashboard-note-clearid="dashboard_notepad"name="dashboard_notepad"id="notepad_title"name="notepad_title"id="notepad_size"name="notepad_size"+3 more[dashboard_notes]