WP-Safety

Admin Menu & Widget Manager Security & Risk Analysis

wordpress.org/plugins/evanesco

Make Wordpress menus and widgets hidden or shown.

10 active installs v3.0.1 PHP + WP 2.8+ Updated Jul 30, 2016
adminhidemenushowwidget
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Admin Menu & Widget Manager Safe to Use in 2026?

Generally Safe

Score 85/100

Admin Menu & Widget Manager has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago
Risk Assessment

The Evanesco v3.0.1 plugin exhibits a strong security posture based on the provided static analysis. The absence of any identified attack surface, such as AJAX handlers, REST API routes, shortcodes, or cron events, significantly reduces the potential for external exploitation. Furthermore, the code signals indicate a commendable adherence to secure coding practices, with no dangerous functions, all SQL queries utilizing prepared statements, and no file operations or external HTTP requests, which are common vectors for vulnerabilities. The presence of nonce checks, while limited, is a positive sign. However, a critical concern arises from the very low percentage of properly escaped output (18%). This indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data or dynamic content may not be sufficiently sanitized before being rendered in the browser. The lack of any recorded historical vulnerabilities is a strength, suggesting a generally well-maintained codebase, but this must be considered alongside the significant output escaping deficiency.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

Admin Menu & Widget Manager Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Admin Menu & Widget Manager Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
75
16 escaped
Nonce Checks
2
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

18% escaped91 total outputs
Attack Surface

Admin Menu & Widget Manager Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 26
actionadmin_initclasses\AdminMenu.php:36
actionadmin_initclasses\AdminMenu.php:39
actionadmin_menuclasses\AdminMenu.php:41
actionadmin_menuclasses\AdminMenu.php:42
actionadmin_menuclasses\AdminMenu.php:43
actionwidgets_admin_pageclasses\AdminMenu.php:44
actionadmin_enqueue_scriptsclasses\AdminMenu.php:45
filterwp_redirectclasses\wp_express\autoload.php:39
filterset-screen-optionclasses\wp_express\src\AdminPage\ListPage.php:35
actioninitclasses\wp_express\src\AdminPage\Options.php:33
actioninitclasses\wp_express\src\AdminPage\Options.php:34
actionadmin_initclasses\wp_express\src\AdminPage\Options.php:35
actionnetwork_admin_menuclasses\wp_express\src\AdminPage.php:44
actionadmin_menuclasses\wp_express\src\AdminPage.php:46
actionadmin_enqueue_scriptsclasses\wp_express\src\AdminPage.php:48
actionplugin_action_linksclasses\wp_express\src\AdminPage.php:49
actionwp_headclasses\wp_express\src\Ajax.php:33
actionadmin_headclasses\wp_express\src\Ajax.php:34
actionadmin_footerclasses\wp_express\src\Extensions\Setting.php:90
actionshutdownclasses\wp_express\src\Extensions\StoredInfoSet.php:39
actioninitclasses\wp_express\src\PostType.php:62
actionadmin_headclasses\wp_express\src\PostType.php:63
actionparse_queryclasses\wp_express\src\PostType.php:65
actionsave_postclasses\wp_express\src\PostType.php:66
filterbody_classclasses\wp_express\src\PostType.php:349
actioninitclasses\wp_express\src\Taxonomy.php:62
Maintenance & Trust

Admin Menu & Widget Manager Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33
Last updatedJul 30, 2016
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Admin Menu & Widget Manager Alternatives

Hide Admin Menu

Hide Admin Menu

hide-admin-menu

A
100

Using this plugin, we can hide the admin menu easily.

20K No CVEs
AH Display Widgets

AH Display Widgets

ah-display-widgets

A
85

Simply hide widgets on specified pages. Adds checkboxes to each widget to either show or hide it on every site page.

9K No CVEs
Remove admin menus by role

Remove admin menus by role

remove-admin-menus-by-role

A
100

Select easily which admin menus to remove for which roles.

8K No CVEs
Admin Tools

Admin Tools

admin-tools

A
85

Admin Tools Helps you to get better admin for your customers. Manage your menus, plugins, Top Bar, updates and more

4K No CVEs
My Wp Brand – Hide menu & Hide Plugin

My Wp Brand – Hide menu & Hide Plugin

my-wp-brand

A
98

This plugin gives the facility for hiding and showing plugins and the admin menu, it also gives the options to customize WordPress branding.

2K 2 CVEs
Developer Profile

Admin Menu & Widget Manager Developer Profile

sujin2f

5 plugins · 140 total installs

86
trust score
Avg Security Score
88/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Admin Menu & Widget Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/evanesco/assets/css/menu.css/wp-content/plugins/evanesco/assets/css/widget.css/wp-content/plugins/evanesco/assets/scripts/min/menu-min.js/wp-content/plugins/evanesco/assets/scripts/min/posttype-toggle-min.js
Script Paths
/wp-content/plugins/evanesco/assets/scripts/min/menu-min.js/wp-content/plugins/evanesco/assets/scripts/min/posttype-toggle-min.js
Version Parameters
evanesco/assets/css/menu.css?ver=evanesco/assets/css/widget.css?ver=evanesco/assets/scripts/min/menu-min.js?ver=evanesco/assets/scripts/min/posttype-toggle-min.js?ver=

HTML / DOM Fingerprints

CSS Classes
widgets-holder-wrapwidget
JS Globals
toggle_data_posttypes
FAQ

Frequently Asked Questions about Admin Menu & Widget Manager