Does Flash Toolkit have any unpatched vulnerabilities?

No. All known vulnerabilities in Flash Toolkit have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Flash Toolkit compatible with WordPress 6.7.5?

According to WordPress.org data, Flash Toolkit 1.2.5 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Flash Toolkit updated?

Flash Toolkit was last updated on Jan 9, 2025. Frequent updates are generally a positive security signal.

What is Flash Toolkit's security score?

Flash Toolkit has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Flash Toolkit Security & Risk Analysis

wordpress.org/plugins/flash-toolkit

Flash Toolkit is a companion for Flash WordPress theme by ThemeGrill

10K active installs v1.2.5 PHP + WP 4.0+ Updated Jan 9, 2025

flashthemethemegrilltoolkit

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Flash Toolkit Safe to Use in 2026?

Generally Safe

Score 92/100

Flash Toolkit has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

Based on the provided static analysis and vulnerability history, the "flash-toolkit" plugin version 1.2.5 exhibits a strong security posture. The absence of any identified CVEs and the consistent use of prepared statements for SQL queries indicate good development practices. Furthermore, the plugin demonstrates a commitment to secure coding by implementing nonce checks and capability checks on its various functionalities. The low percentage of unescaped output (16%) is also a positive sign, though it represents a minor area for improvement. The complete lack of identified attack surface points, taint flows, and file operations is exceptional and suggests a well-contained and secure plugin. The use of the Select2 library is noted, and its security would depend on its version and any known vulnerabilities, which are not detailed here. Overall, this plugin appears to be very secure with no immediate high-risk vulnerabilities detected.

Key Concerns

Minor unescaped output detected (16%)

Vulnerabilities

None known

Flash Toolkit Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Flash Toolkit Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

486 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

100% prepared2 total queries

Output Escaping

84% escaped582 total outputs

Attack Surface

Flash Toolkit Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 59

actioninitflash-toolkit.php:91

actionadmin_noticesflash-toolkit.php:92

actionsave_postincludes\abstracts\abstract-flash-widget.php:69

actiondeleted_postincludes\abstracts\abstract-flash-widget.php:70

actionswitch_themeincludes\abstracts\abstract-flash-widget.php:71

actionadmin_enqueue_scriptsincludes\admin\class-flash-admin-assets.php:27

actionadmin_enqueue_scriptsincludes\admin\class-flash-admin-assets.php:28

actionsiteorigin_panel_enqueue_admin_scriptsincludes\admin\class-flash-admin-assets.php:29

actionadd_meta_boxesincludes\admin\class-flash-admin-meta-boxes.php:41

actionadd_meta_boxesincludes\admin\class-flash-admin-meta-boxes.php:42

actionsave_postincludes\admin\class-flash-admin-meta-boxes.php:43

actionflash_toolkit_process_portfolio_metaincludes\admin\class-flash-admin-meta-boxes.php:46

actionflash_toolkit_process_page_metaincludes\admin\class-flash-admin-meta-boxes.php:49

actionflash_toolkit_process_layout_metaincludes\admin\class-flash-admin-meta-boxes.php:52

actionadmin_noticesincludes\admin\class-flash-admin-meta-boxes.php:55

actionshutdownincludes\admin\class-flash-admin-meta-boxes.php:56

actionwp_loadedincludes\admin\class-flash-admin-notices.php:51

actionshutdownincludes\admin\class-flash-admin-notices.php:52

actionadmin_print_stylesincludes\admin\class-flash-admin-notices.php:58

actionwp_loadedincludes\admin\class-flash-admin-notices.php:61

actionadmin_noticesincludes\admin\class-flash-admin-notices.php:88

actionadmin_initincludes\admin\class-flash-admin-notices.php:89

actionadmin_initincludes\admin\class-flash-admin-notices.php:90

actionadmin_noticesincludes\admin\class-flash-admin-notices.php:270

actionadmin_noticesincludes\admin\class-flash-admin-notices.php:272

filterpost_updated_messagesincludes\admin\class-flash-admin-post-types.php:27

filterbulk_post_updated_messagesincludes\admin\class-flash-admin-post-types.php:28

filterenter_title_hereincludes\admin\class-flash-admin-post-types.php:31

filterdefault_hidden_meta_boxesincludes\admin\class-flash-admin-post-types.php:32

actionadmin_footerincludes\admin\class-flash-admin-post-types.php:38

filterview_mode_post_typesincludes\admin\class-flash-admin-post-types.php:41

actioninitincludes\admin\class-flash-admin.php:25

actioncurrent_screenincludes\admin\class-flash-admin.php:26

actionadmin_footerincludes\admin\class-flash-admin.php:27

filteradmin_footer_textincludes\admin\class-flash-admin.php:28

actioninitincludes\class-flash-install.php:35

actioninitincludes\class-flash-install.php:36

actionadmin_initincludes\class-flash-install.php:37

filterplugin_row_metaincludes\class-flash-install.php:38

actioninitincludes\class-flash-post-types.php:27

actioninitincludes\class-flash-post-types.php:28

actioninitincludes\class-flash-post-types.php:29

filterrest_api_allowed_post_typesincludes\class-flash-post-types.php:30

actionflash_toolkit_flush_rewrite_rulesincludes\class-flash-post-types.php:31

actionwidgets_admin_pageincludes\class-flash-sidebars.php:27

actionload-widgets.phpincludes\class-flash-sidebars.php:28

actionwidgets_initincludes\class-flash-sidebars.php:29

filterplugin_localeincludes\functions-flash-core.php:222

actionwp_enqueue_scriptsincludes\functions-flash-core.php:379

filterpost_type_linkincludes\functions-flash-portfolio.php:88

actionwidgets_initincludes\functions-flash-widget.php:50

filtersiteorigin_panels_widgetsincludes\functions-flash-widget.php:79

filtersiteorigin_panels_widget_dialog_tabsincludes\functions-flash-widget.php:91

filterwidget_titleincludes\functions-flash-widget.php:104

actionwp_enqueue_scriptsincludes\widgets\class-flash-widget-counter.php:71

actionwp_enqueue_scriptsincludes\widgets\class-flash-widget-logo.php:66

actionwp_enqueue_scriptsincludes\widgets\class-flash-widget-portfolio.php:89

actionwp_enqueue_scriptsincludes\widgets\class-flash-widget-slider.php:119

actionwp_enqueue_scriptsincludes\widgets\class-flash-widget-testimonial.php:76

Maintenance & Trust

Flash Toolkit Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedJan 9, 2025

PHP min version

Downloads477K

Community Trust

Rating100/100

Number of ratings4

Active installs10K

Alternatives

Flash Toolkit Alternatives

Suffice Toolkit

suffice-toolkit

Suffice Toolkit is a companion for Suffice WordPress theme by ThemeGrill

1K No CVEs

Spacious Toolkit

spacious-toolkit

Spacious Toolkit is a companion for Spacious WordPress theme by ThemeGrill

700 No CVEs

Kirki Customizer Framework

kirki

100

The Ultimate Customizer Framework for WordPress Theme Developers

500K No CVEs

Starter Templates & Sites Pack by ThemeGrill

themegrill-demo-importer

Premium starter sites and website templates by ThemeGrill. Import demo content, widgets, and theme settings with one click.

80K 1 CVE

ThemeZee Toolkit

themezee-toolkit

A collection of useful small plugins and features, neatly bundled into a single plugin.

6K No CVEs

Developer Profile

Flash Toolkit Developer Profile

ThemeGrill

31 plugins · 252K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

184 days

View full developer profile

Detection Fingerprints

How We Detect Flash Toolkit

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/flash-toolkit/assets/css/fontawesome.css/wp-content/plugins/flash-toolkit/assets/css/jquery-ui-timepicker-addon.css/wp-content/plugins/flash-toolkit/assets/css/menu.css/wp-content/plugins/flash-toolkit/assets/css/admin.css/wp-content/plugins/flash-toolkit/assets/css/widgets.css/wp-content/plugins/flash-toolkit/assets/js/admin.js/wp-content/plugins/flash-toolkit/assets/js/widgets.js

Script Paths

/wp-content/plugins/flash-toolkit/assets/js/admin.js/wp-content/plugins/flash-toolkit/assets/js/widgets.js

Version Parameters

flash-toolkit/assets/css/fontawesome.css?ver=flash-toolkit/assets/css/jquery-ui-timepicker-addon.css?ver=flash-toolkit/assets/css/menu.css?ver=flash-toolkit/assets/css/admin.css?ver=flash-toolkit/assets/css/widgets.css?ver=flash-toolkit/assets/js/admin.js?ver=flash-toolkit/assets/js/widgets.js?ver=

HTML / DOM Fingerprints

CSS Classes

flash-toolkit-admin-widgetflash-toolkit-widget-wrap

Data Attributes

data-widget-id

JS Globals

flash_toolkit_params

FAQ