Does Low-Key ToolBar have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Low-Key ToolBar compatible with WordPress 6.7.5?

According to WordPress.org data, Low-Key ToolBar 1.1.1 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Low-Key ToolBar compatible with PHP 7.4+?

Low-Key ToolBar requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Low-Key ToolBar updated?

Low-Key ToolBar was last updated on Nov 4, 2024. Frequent updates are generally a positive security signal.

What is Low-Key ToolBar's security score?

Low-Key ToolBar has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Low-Key ToolBar Security & Risk Analysis

wordpress.org/plugins/low-key-toolbar

This plugin makes the block editor toolbar less noticeable and improve block editor UX. You can control Scale, Opacity, Vertical Position of the block …

10 active installs v1.1.1 PHP 7.4+ WP 5.7+ Updated Nov 4, 2024

editorgutenbergtoolbar

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Low-Key ToolBar Safe to Use in 2026?

Generally Safe

Score 92/100

Low-Key ToolBar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The static analysis of 'low-key-toolbar' v1.1.1 reveals a plugin with a seemingly robust security posture based on the provided metrics. There are no identified entry points like AJAX handlers, REST API routes, shortcodes, or cron events that are accessible without authentication. The code signals indicate good practices, with all SQL queries utilizing prepared statements and all output being properly escaped. The absence of dangerous functions, file operations, external HTTP requests, and any recorded vulnerabilities further contributes to this positive assessment. However, a significant concern arises from the complete lack of nonce and capability checks. While the attack surface is currently zero, any future addition of functionality, particularly involving user interactions or data manipulation, without these fundamental security mechanisms would introduce critical vulnerabilities. The plugin's history of zero vulnerabilities is a positive sign, but it does not mitigate the risks associated with missing fundamental security checks in its current design or potential future development.

Key Concerns

Missing Nonce Checks
Missing Capability Checks

Vulnerabilities

None known

Low-Key ToolBar Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Low-Key ToolBar Release Timeline

v1.1.1Current

v1.1.0

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Low-Key ToolBar Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped6 total outputs

Attack Surface

Low-Key ToolBar Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionplugins_loadedincludes\class-low-key-toolbar.php:128

actionenqueue_block_editor_assetsincludes\class-low-key-toolbar.php:129

actioninitincludes\class-low-key-toolbar.php:144

actioninitincludes\class-low-key-toolbar.php:158

actioninitincludes\class-low-key-toolbar.php:159

filteradmin_body_classincludes\class-low-key-toolbar.php:160

actionadmin_enqueue_scriptsincludes\class-low-key-toolbar.php:161

actionadmin_enqueue_scriptsincludes\class-low-key-toolbar.php:162

Maintenance & Trust

Low-Key ToolBar Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedNov 4, 2024

PHP min version7.4

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Low-Key ToolBar Alternatives

Classic Editor

classic-editor

100

Enables the previous "classic" editor and the old-style Edit Post screen with TinyMCE, Meta Boxes, etc. Supports all plugins that extend this screen.

9.0M No CVEs

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs

Classic Widgets

classic-widgets

100

Enables the previous "classic" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.

2.0M No CVEs

Advanced Editor Tools

tinymce-advanced

100

Extends and enhances the block editor (Gutenberg) and the classic editor (TinyMCE).

2.0M 1 CVE

Spectra Gutenberg Blocks – Website Builder for the Block Editor

ultimate-addons-for-gutenberg

Power-up Gutenberg with advanced blocks for faster website creation. Build your WordPress website effortlessly using powerful building blocks!

1.0M 27 CVEs

Developer Profile

Low-Key ToolBar Developer Profile

Makoto

2 plugins · 20 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Low-Key ToolBar

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/low-key-toolbar/build/index.js

Version Parameters

low-key-toolbar/build/index.js?ver=

HTML / DOM Fingerprints

CSS Classes

low_key_toolbaris_hover_effect

FAQ