Does Environment & Debug Bar have any unpatched vulnerabilities?

No. All known vulnerabilities in Environment & Debug Bar have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Environment & Debug Bar compatible with WordPress 6.9.4?

According to WordPress.org data, Environment & Debug Bar 1.4.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Environment & Debug Bar compatible with PHP 7.4+?

Environment & Debug Bar requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Environment & Debug Bar updated?

Environment & Debug Bar was last updated on Dec 9, 2025. Frequent updates are generally a positive security signal.

What is Environment & Debug Bar's security score?

Environment & Debug Bar has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Environment & Debug Bar Security & Risk Analysis

wordpress.org/plugins/environment-debug-admin-toolbar

Display your environment and debug info in the toolbar.

40 active installs v1.4.0 PHP 7.4+ WP 5.5+ Updated Dec 9, 2025

debugenvenvironmentproductionstaging

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Environment & Debug Bar Safe to Use in 2026?

Generally Safe

Score 100/100

Environment & Debug Bar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The plugin "environment-debug-admin-toolbar" v1.4.0 exhibits a strong security posture based on the provided static analysis and vulnerability history. The code demonstrates good security practices by avoiding dangerous functions, performing all SQL queries using prepared statements, and ensuring all outputs are properly escaped. Furthermore, there are no file operations or external HTTP requests, and a capability check is present. The absence of any detected taint flows or vulnerabilities in its history further reinforces its secure design.

While the plugin has a minimal attack surface with zero AJAX handlers, REST API routes, shortcodes, or cron events, it's important to note the absence of nonce checks. Although this might not pose an immediate risk given the lack of entry points, it's a general security best practice that could be implemented for future robustness. The plugin's history of zero known CVEs and no recorded vulnerabilities suggests a well-maintained and secure codebase.

In conclusion, "environment-debug-admin-toolbar" v1.4.0 appears to be a secure plugin. Its strengths lie in its clean code, absence of known vulnerabilities, and adherence to secure coding principles like prepared statements and output escaping. The primary area for potential enhancement would be the inclusion of nonce checks, even with its limited attack surface, to follow established security best practices.

Key Concerns

No nonce checks detected

Vulnerabilities

None known

Environment & Debug Bar Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Environment & Debug Bar Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Environment & Debug Bar Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_enqueue_scriptsenvironment-debug-admin-toolbar.php:309

actionwp_enqueue_scriptsenvironment-debug-admin-toolbar.php:311

actioninitenvironment-debug-admin-toolbar.php:313

actionadmin_bar_menuenvironment-debug-admin-toolbar.php:315

Maintenance & Trust

Environment & Debug Bar Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 9, 2025

PHP min version7.4

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs40

Alternatives

Environment & Debug Bar Alternatives

Display Environment Type

display-environment-type

100

Displays WordPress 5.5's environment type setting in the admin bar and the "At a Glance" dashboard widget.

1K No CVEs

PLX Multi-Environments

plx-multi-environments

Manage separate Development, Staging, and Production environments directly from the Wordpress Admin screen.

30 No CVEs

Dev Info Bar

dev-info-bar

A simple WordPress extension which adds itself to the admin bar, providing system information such as PHP, MySQL version and details of the WordPress …

80 No CVEs

Don't Mess Up Prod

dont-mess-up-prod

100

Displays a colored environment indicator in the admin bar.

0 No CVEs

WP Environment Label

wp-environment-label

WP Environment Label - shows label with current server/environment name defined by config or admin-panel.

0 No CVEs

Developer Profile

Environment & Debug Bar Developer Profile

Medium Rare

1 plugin · 40 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Environment & Debug Bar

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/environment-debug-admin-toolbar/assets/edt.min.css

Version Parameters

environment-debug-admin-toolbar/assets/edt.min.css?ver=

HTML / DOM Fingerprints

CSS Classes

ei-labelei-valueenv-type-0env-type-1env-type-2env-type-6env-type-9

FAQ