Does Disable Grunion Admin link have any unpatched vulnerabilities?

No. All known vulnerabilities in Disable Grunion Admin link have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Disable Grunion Admin link compatible with WordPress 4.2.39?

According to WordPress.org data, Disable Grunion Admin link 1.2 has been tested up to WordPress 4.2.39. Check the plugin's changelog for the latest compatibility information.

How often is Disable Grunion Admin link updated?

Disable Grunion Admin link was last updated on Dec 20, 2014. Frequent updates are generally a positive security signal.

What is Disable Grunion Admin link's security score?

Disable Grunion Admin link has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Disable Grunion Admin link Security & Risk Analysis

wordpress.org/plugins/disable-grunion-admin-link

However … some of you may not like the addition of an extra link in your WordPress admin menu which this new version includes.

10 active installs v1.2 PHP + WP 3.2+ Updated Dec 20, 2014

contactcontact-formformgrunionjetpack

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Disable Grunion Admin link Safe to Use in 2026?

Generally Safe

Score 85/100

Disable Grunion Admin link has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "disable-grunion-admin-link" plugin v1.2 presents a generally good security posture based on the static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, the code does not utilize dangerous functions, perform file operations, make external HTTP requests, or bundle external libraries, all of which are positive security indicators. The fact that all SQL queries use prepared statements is also a strong sign of secure database interaction. However, the analysis reveals a critical concern regarding output escaping. With 100% of outputs not properly escaped, there is a substantial risk of cross-site scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the admin interface that are then rendered to other users. While the plugin has no known historical vulnerabilities, this unaddressed output escaping issue represents a significant potential weakness that could be exploited.

Key Concerns

Unescaped output detected

Vulnerabilities

None known

Disable Grunion Admin link Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Disable Grunion Admin link Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

Disable Grunion Admin link Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

filtercustom_menu_orderindex.php:35

filtermenu_orderindex.php:56

actionadmin_menuindex.php:75

Maintenance & Trust

Disable Grunion Admin link Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39

Last updatedDec 20, 2014

PHP min version

Downloads6K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Disable Grunion Admin link Alternatives

reCAPTCHA V3 for Jetpack

recaptcha-v3-for-jetpack

100

Adds Google reCAPTCHA v3 to Jetpack contact forms, comments, and WooCommerce registration to prevent spam, with stats and spam folder handling.

200 No CVEs

Grunion Ajax

grunion-ajax

Using Grunion Contact Form? Make form submission slick with Grunion Ajax.

50 No CVEs

Lead Sync – WPForms to Jetpack CRM

sync-wpforms-jetcrm

100

Seamlessly sync WPForms submissions to Jetpack CRM. Automate lead capture with smart field mapping, retry logic, and per-form controls.

40 No CVEs

Feedback Extended

feedback-extended

This plugin requires Jetpack 1.3 or up with Contact Form plugin active. This plugin will enable users to reply to feedbacks from the admin panel.

10 No CVEs

Lead Sync – Divi 5 to Jetpack CRM

sync-divi-jetcrm

100

Automatically sync Divi 5 Contact Form submissions to Jetpack CRM as leads. Streamline your lead generation and customer management.

0 No CVEs

Developer Profile

Disable Grunion Admin link Developer Profile

Ryan Hellyer

14 plugins · 97K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Disable Grunion Admin link

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Shortcode Output

<meta http-equiv="refresh" content="0;url=

FAQ