Does Docs have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Docs compatible with WordPress 6.9.4?

According to WordPress.org data, Docs 1.0.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Docs updated?

Docs was last updated on Apr 1, 2026. Frequent updates are generally a positive security signal.

What is Docs's security score?

Docs has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Docs Security & Risk Analysis

wordpress.org/plugins/docs

Create and share documents with WordPress!

50 active installs v1.0.2 PHP + WP 6.9+ Updated Apr 1, 2026

collaborationdocsdocumentsreal-timesharing

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Docs Safe to Use in 2026?

Generally Safe

Score 100/100

Docs has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "docs" plugin v0.0.1 exhibits a strong security posture based on the provided static analysis. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events that represent an attack surface. Furthermore, the code signals are overwhelmingly positive, with no dangerous functions, file operations, or external HTTP requests. All SQL queries are properly prepared, and all outputs are correctly escaped, indicating robust sanitization practices. The absence of any identified taint flows with unsanitized paths is also a significant strength.

While the static analysis reveals a clean codebase, it's important to note the complete lack of nonce checks and capability checks. This, in combination with the zero-day history, could be a point of concern if the plugin's functionality were to expand or if new vulnerabilities were discovered. However, given the current data, the plugin appears to be very secure. The vulnerability history being entirely empty suggests a lack of past issues, which is a positive indicator. The plugin's strengths lie in its minimal attack surface and excellent code hygiene, but the absence of authentication checks on potential future entry points is a minor weakness to monitor.

Key Concerns

No Nonce Checks
No Capability Checks

Vulnerabilities

None known

Docs Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Docs Release Timeline

v1.0.2Current

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Docs Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped5 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

1 flows

<index> (index.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Docs Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 14

actioninitindex.php:14

actiontemplate_redirectindex.php:116

actionlogin_initindex.php:238

filterget_avatar_urlindex.php:285

filterpost_type_linkindex.php:300

actionwp_insert_post_dataindex.php:314

actionupdate_postmetaindex.php:332

actionupdated_postmetaindex.php:343

actionadded_post_metaindex.php:361

filterusers_list_table_query_argsindex.php:375

actionenqueue_block_editor_assetsindex.php:380

actionpre_get_postsindex.php:407

filteruser_has_capindex.php:419

actionpre_get_postsindex.php:470

Maintenance & Trust

Docs Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 1, 2026

PHP min version

Downloads4K

Community Trust

Rating100/100

Number of ratings1

Active installs50

Alternatives

Docs Alternatives

BuddyPress Docs

buddypress-docs

Adds collaborative Docs to BuddyPress.

7K 3 CVEs

Participad

participad

Realtime collaborative editing for WordPress content, powered by Etherpad Lite.

10 No CVEs

Simple File List

simple-file-list

Simple File List gives your WordPress website a list of your files which allows your users to open and download them.

5K 1 unpatched

Knowledge Base documentation & wiki plugin – BasePress Docs

basepress

Easily create & manage documentation. Reduce support tickets & scale your customer support workload. This simple plugin works with any theme.

2K 4 CVEs

WP Document Revisions

wp-document-revisions

A document management and version control plugin for WordPress that allows teams of any size to collaboratively edit files and manage their workflow.

2K 1 CVE

Developer Profile

Docs Developer Profile

Ella Van Durpe

3 plugins · 4K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Docs

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/docs/assets/css/styles.css/wp-content/plugins/docs/assets/js/docs.js

Script Paths

/wp-content/plugins/docs/assets/js/docs.js

Version Parameters

docs/assets/css/styles.css?ver=docs/assets/js/docs.js?ver=

HTML / DOM Fingerprints

CSS Classes

docs-edit-formdocs-view-contentdocs-share-formdocs-permissions-list

HTML Comments

Data Attributes

data-docs-post-iddata-docs-current-user-iddata-docs-share-noncedata-docs-edit-nonce

JS Globals

DocsPlugindocs_ajax_object

REST Endpoints

/wp-json/docs/v1/posts/wp-json/docs/v1/users

Shortcode Output

[docs_viewer][docs_editor][docs_share]

FAQ