Does Formatting Extender have any unpatched vulnerabilities?

No. All known vulnerabilities in Formatting Extender have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Formatting Extender compatible with WordPress 6.9.4?

According to WordPress.org data, Formatting Extender 3.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Formatting Extender compatible with PHP 7.4+?

Formatting Extender requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Formatting Extender updated?

Formatting Extender was last updated on Mar 9, 2026. Frequent updates are generally a positive security signal.

What is Formatting Extender's security score?

Formatting Extender has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Formatting Extender Security & Risk Analysis

wordpress.org/plugins/formatting-extender

Extends the Block Editor formatting toolbar with inline controls: badge, highlight, and more.

0 active installs v3.0.0 PHP 7.4+ WP 6.0+ Updated Mar 9, 2026

badgeblock-editorformattinggutenberghighlight

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Formatting Extender Safe to Use in 2026?

Generally Safe

Score 100/100

Formatting Extender has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 25d ago

Risk Assessment

The "formatting-extender" v3.0.0 plugin exhibits an exceptionally strong security posture based on the provided static analysis. There are no identified entry points such as AJAX handlers, REST API routes, shortcodes, or cron events, which significantly limits the plugin's attack surface. Furthermore, the code demonstrates excellent security practices with no dangerous functions detected, all SQL queries utilizing prepared statements, and all outputs being properly escaped. The absence of file operations, external HTTP requests, nonce checks, capability checks, and bundled libraries further reinforces this robust security profile. The vulnerability history is also clean, with no recorded CVEs, indicating a consistent lack of exploitable flaws in previous versions. This combination of a minimal attack surface, adherence to secure coding standards, and a clean vulnerability record suggests a highly secure plugin.

Vulnerabilities

None known

Formatting Extender Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Formatting Extender Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Formatting Extender Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionenqueue_block_editor_assetsformatting-extender.php:29

actionwp_enqueue_scriptsformatting-extender.php:30

Maintenance & Trust

Formatting Extender Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 9, 2026

PHP min version7.4

Downloads2K

Community Trust

Rating100/100

Number of ratings2

Active installs0

Alternatives

Formatting Extender Alternatives

Advanced Editor Tools

tinymce-advanced

100

Extends and enhances the block editor (Gutenberg) and the classic editor (TinyMCE).

2.0M 1 CVE

RichText Extension

richtext-extension

100

Adds useful decoration features to the Gutenberg RichText editor toolbar.

900 No CVEs

Simple HTML Rich Text for Block Editor

simple-html-rich-text-for-block-editor

Add Semantic HTML Markup to texts such as Cite, Small, Marked, Inserted and Deleted in the Block Editor.

200 No CVEs

Highlight Text

highlight-text

Text highligher for the WordPress Block Editor (Gutenberg).

100 No CVEs

Classic Editor

classic-editor

100

Enables the previous "classic" editor and the old-style Edit Post screen with TinyMCE, Meta Boxes, etc. Supports all plugins that extend this screen.

9.0M No CVEs

Developer Profile

Formatting Extender Developer Profile

Gaurav Tiwari

3 plugins · 8K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Formatting Extender

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/formatting-extender/build/index.js/wp-content/plugins/formatting-extender/build/index.css/wp-content/plugins/formatting-extender/css/styles.css

Script Paths

/wp-content/plugins/formatting-extender/build/index.js

Version Parameters

formatting-extender/build/index.js?ver=formatting-extender/build/index.css?ver=formatting-extender/css/styles.css?ver=3.0.0

HTML / DOM Fingerprints

JS Globals

window.formattingExtender

FAQ