Does WP Help Docs have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Help Docs have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Help Docs compatible with WordPress 4.9.29?

According to WordPress.org data, WP Help Docs 1.0.3 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is WP Help Docs compatible with PHP 7.1+?

WP Help Docs requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Help Docs updated?

WP Help Docs was last updated on Oct 27, 2018. Frequent updates are generally a positive security signal.

What is WP Help Docs's security score?

WP Help Docs has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Help Docs Security & Risk Analysis

wordpress.org/plugins/ilab-docs

Directly integrate markdown based help documentation for your WordPress theme or plugin into the WordPress admin for your end users and clients.

0 active installs v1.0.3 PHP 7.1+ WP 4.4+ Updated Oct 27, 2018

admindocsdocumentationhelpmarkdown

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Help Docs Safe to Use in 2026?

Generally Safe

Score 85/100

WP Help Docs has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The ilab-docs plugin version 1.0.3 exhibits a mixed security posture. While it has a clean vulnerability history with no known CVEs and no suspicious code signals like dangerous functions or external HTTP requests, significant concerns arise from its static analysis. The plugin has a small attack surface, but a critical portion of it, an AJAX handler, lacks any authentication or capability checks. This opens a direct path for unauthenticated users to potentially interact with backend functionality, posing a considerable risk.

Furthermore, the code analysis reveals a concerning lack of output escaping, with only 25% of outputs being properly escaped. This could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is not sanitized before being displayed. The absence of nonce checks on the AJAX handler exacerbates this risk, as it could allow attackers to trigger actions with forged requests. Although there are no recorded vulnerabilities and no critical taint flows, the identified weaknesses in authentication and output sanitization represent significant security flaws that need immediate attention.

Key Concerns

Unprotected AJAX handler
Low output escaping percentage
Missing nonce checks on AJAX

Vulnerabilities

None known

WP Help Docs Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Help Docs Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared2 total queries

Output Escaping

25% escaped4 total outputs

Attack Surface

1 unprotected

WP Help Docs Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_ilab_render_doc_pageclasses\Plugin\DocsPlugin.php:135

WordPress Hooks 4

actionadmin_menuclasses\Plugin\DocsPlugin.php:123

actionadmin_bar_menuclasses\Plugin\DocsPlugin.php:124

actionadmin_enqueue_scriptsclasses\Plugin\DocsPlugin.php:126

actionplugins_loadedilab-docs.php:35

Maintenance & Trust

WP Help Docs Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedOct 27, 2018

PHP min version7.1

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

WP Help Docs Alternatives

Admin Documentation

admin-documentation

100

Adds a simple documentation page to your WordPress admin to keep instructions, notes, and other helpful information for maintaining your website.

0 No CVEs

WP Help

wp-help

Site operators can create detailed, hierarchical documentation for the site's authors, editors, and contributors, viewable in the WordPress admin …

10K No CVEs

Admin Help Docs

admin-help-docs

100

Site developers and operators can easily create help documentation and notices for the admin area.

400 No CVEs

Help Manager

help-manager

Create documentation for the site's authors, editors, and contributors viewable in the WordPress admin and avoid repeated "how-to" questions.

40 No CVEs

Admin Expert Mode

admin-expert-mode

Allows users to hide inline documentation and help text that are geared for beginning users in the WordPress admin.

20 No CVEs

Developer Profile

WP Help Docs Developer Profile

interfacelab

2 plugins · 7K total installs

trust score

Avg Security Score

89/100

Avg Patch Time

8 days

View full developer profile

Detection Fingerprints

How We Detect WP Help Docs

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ilab-docs/public/css/docs.css

Script Paths

/wp-content/plugins/ilab-docs/public/js/docs.js

Version Parameters

ilab-docs/style.css?ver=ilab-docs/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

ilab-docs-page-titleilab-docs-contentilab-docs-navilab-docs-toc-itemilab-docs-search-input

HTML Comments

Copyright (c) 2016 Interfacelab LLC. All rights reserved.Released under the GPLv3 licensehttp://www.gnu.org/licenses/gpl-3.0.htmlThis program is distributed in the hope that it will be useful, but+2 more

Data Attributes

data-docsetdata-page

JS Globals

ilab_docs_ajax_urlilab_docs_plugin_url

REST Endpoints

/wp-json/ilab-docs/v1/search

FAQ