Manage User Columns Security & Risk Analysis
wordpress.org/plugins/manage-user-columnsThis plugin allows you to manage columns under the users page in the WordPress admin area.
Is Manage User Columns Safe to Use in 2026?
Generally Safe
Score 99/100Manage User Columns has a strong security track record. Known vulnerabilities have been patched promptly.
The 'manage-user-columns' plugin version 1.0.6 presents a mixed security posture. While it demonstrates some good practices such as the absence of dangerous functions, file operations, and external HTTP requests, significant concerns arise from its handling of entry points and data sanitization. The plugin exposes two AJAX handlers, both of which lack authentication checks. This, combined with two taint flows identified as having unsanitized paths and rated as high severity, creates a substantial risk. The historical vulnerability data, including a past medium-severity Cross-Site Request Forgery (CSRF) vulnerability, suggests a pattern of security weaknesses that require attention. The presence of raw SQL queries without prepared statements further exacerbates the risk of SQL injection. Although the plugin has no currently unpatched CVEs, the combination of unprotected entry points, high-severity unsanitized data flows, and historical vulnerabilities points to a need for significant security improvements to mitigate potential attacks.
Key Concerns
- Unprotected AJAX handlers
- High severity taint flows with unsanitized paths
- SQL queries without prepared statements
- Low percentage of properly escaped output
- Historical medium CVE
Manage User Columns Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Manage User Columns <= 1.0.5 - Cross-Site Request Forgery
Manage User Columns Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
Manage User Columns Attack Surface
AJAX Handlers 2
WordPress Hooks 8
Maintenance & Trust
Manage User Columns Maintenance & Trust
Maintenance Signals
Community Trust
Manage User Columns Alternatives
Users by Date Registered
users-by-date-registered
Allows you to see the dates users registered on and filter the users by date.
Extra User Data
extra-user-data
Add extra columns to the Users screen - number of comments and all post types, registration & login dates and IP addresses.
membersDirectory for bbPress
gd-members-directory-for-bbpress
Add a forum members directory page into bbPress powered forums, including members filtering and additional widgets for listing members in the sidebar.
Amazing Portfolio
amazing-portfolio
Amazing Portfolio is an easy to use responsive and filterable Portfolio-Grid Plugin for WordPress, offering a wide range of customization options.
OrderFusion Lite – Order Filters, Columns & Export for WooCommerce
sdc-orderfusion-lite
Search and filter WooCommerce orders by product, status, payment & more. Add columns for products, notes, phone, email. Export to CSV.
Manage User Columns Developer Profile
6 plugins · 5K total installs
How We Detect Manage User Columns
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/manage-user-columns/style.css/wp-content/plugins/manage-user-columns/main.js/wp-content/plugins/manage-user-columns/main.jsmanage-user-columns/style.css?ver=manage-user-columns/main.js?ver=HTML / DOM Fingerprints
data-col_iddata-col_namedata-col_valajax_dpk_muc_obj