Does Fancy Admin UI have any unpatched vulnerabilities?

No. All known vulnerabilities in Fancy Admin UI have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Fancy Admin UI compatible with WordPress 4.9.29?

According to WordPress.org data, Fancy Admin UI 2.1 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Fancy Admin UI updated?

Fancy Admin UI was last updated on Dec 27, 2017. Frequent updates are generally a positive security signal.

What is Fancy Admin UI's security score?

Fancy Admin UI has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Fancy Admin UI Security & Risk Analysis

wordpress.org/plugins/fancy-admin-ui

Clean, blue theme that's customizable for the Wordpress Admin panel and Admin Bar

1K active installs v2.1 PHP + WP 3.9.0+ Updated Dec 27, 2017

admin-themebluecustom-adminuiux

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Fancy Admin UI Safe to Use in 2026?

Generally Safe

Score 85/100

Fancy Admin UI has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The "fancy-admin-ui" v2.1 plugin exhibits a generally positive security posture in terms of its attack surface and known vulnerability history. The static analysis reveals no exposed AJAX handlers, REST API routes, shortcodes, or cron events that are unprotected by authentication or capability checks. Furthermore, there are no recorded vulnerabilities (CVEs) associated with this plugin, and the code analysis did not identify any critical or high-severity taint flows. This suggests a diligent effort to secure entry points and avoid common vulnerability patterns.

However, the analysis does highlight a significant concern regarding output escaping. With 2 total outputs and 0% properly escaped, there is a high probability of cross-site scripting (XSS) vulnerabilities. This is a critical oversight, as unsanitized output can lead to malicious code injection. While the plugin does not appear to use dangerous functions, perform file operations, make external HTTP requests, or utilize bundled libraries, the complete lack of output escaping represents a substantial risk that outweighs the otherwise clean analysis in other areas.

In conclusion, the "fancy-admin-ui" v2.1 plugin demonstrates strengths in limiting its attack surface and maintaining a clean vulnerability history. However, the pervasive issue of unescaped output is a serious weakness. Until this is addressed, the plugin carries a significant risk of XSS vulnerabilities, making it a prime target for attackers seeking to compromise WordPress sites.

Key Concerns

No output escaping found

Vulnerabilities

None known

Fancy Admin UI Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Fancy Admin UI Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

Fancy Admin UI Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionlogin_enqueue_scriptsfancy-admin-ui.php:38

actionadmin_enqueue_scriptsfancy-admin-ui.php:71

actionadmin_enqueue_scriptsfancy-admin-ui.php:158

filteradmin_footer_textfancy-admin-ui.php:164

actionadmin_enqueue_scriptsinc\fau_settings.php:3

filteradmin_initinc\fau_settings.php:13

filteradmin_initinc\fau_settings.php:35

Maintenance & Trust

Fancy Admin UI Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedDec 27, 2017

PHP min version

Downloads49K

Community Trust

Rating88/100

Number of ratings14

Active installs1K

Alternatives

Fancy Admin UI Alternatives

Custom Admin UI – WordPress Custom Admin UI or Custom Admin Theme

admin-ui

WordPress custom admin UI or admin theme. Turn your WordPress dashboard or admin area to be smoother and more beautiful.

300 No CVEs

WpRedesigned – Beautiful Custom Admin Theme

wpredesigned-beautiful-custom-admin-theme

Beautify your WordPress admin :)

2K No CVEs

Editor Enhancer for Oxygen

editor-enhancer-for-oxygen

Editor Enhancer for Oxygen does exactly what you think: it enhances the UI/UX of the Oxygen Builder editor!

500 No CVEs

Old Style Admin UI

old-style-admin-ui

If you didn't like the new Wordpress 5.3 accessibility blue style for the buttons and other parts of the admin UI, this plugin is for you.

100 No CVEs

Swiss Knife for Oxygen Builder

swiss-knife-for-oxygen-buider

Oxygen builder's paste clipboard data.

100 No CVEs

Developer Profile

Fancy Admin UI Developer Profile

Bob Orchard

2 plugins · 1K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Fancy Admin UI

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/fancy-admin-ui/css/fau_styles_login.css/wp-content/plugins/fancy-admin-ui/css/fau_styles_adminbar.css/wp-content/plugins/fancy-admin-ui/css/fau_styles_admin.css

Script Paths

/wp-content/plugins/fancy-admin-ui/js/fau-colorpicker.js

HTML / DOM Fingerprints

CSS Classes

composer-switchwpb_switch-to-front-composerwpb_switch-to-composer

Data Attributes

data-default-color

JS Globals

fau_primary_colorfau_secondary_color

Shortcode Output

Custom Admin UI by <a href="http://boborchard.com" target="_blank">Bob Orchard</a> | Powered by <a href="http://wordpress.org" target="_blank">Wordpress</a>

FAQ