Does Muki Floating TOC have any unpatched vulnerabilities?

No. All known vulnerabilities in Muki Floating TOC have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Muki Floating TOC compatible with WordPress 6.8.5?

According to WordPress.org data, Muki Floating TOC 1.0.6 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Muki Floating TOC compatible with PHP 7.0+?

Muki Floating TOC requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Muki Floating TOC updated?

Muki Floating TOC was last updated on Sep 4, 2025. Frequent updates are generally a positive security signal.

What is Muki Floating TOC's security score?

Muki Floating TOC has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Muki Floating TOC Security & Risk Analysis

wordpress.org/plugins/muki-floating-toc

A floating table of contents for the left or right side of articles.

70 active installs v1.0.6 PHP 7.0+ WP 6.0+ Updated Sep 4, 2025

table-of-contents

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Muki Floating TOC Safe to Use in 2026?

Generally Safe

Score 100/100

Muki Floating TOC has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago

Risk Assessment

The "muki-floating-toc" plugin v1.0.6 exhibits a generally strong security posture based on the provided static analysis. There are no critical or high severity vulnerabilities identified in taint analysis, no dangerous functions are used, and all SQL queries are properly prepared. The plugin also demonstrates good output escaping practices, with a high percentage of outputs being properly escaped. Furthermore, the absence of known CVEs and a clean vulnerability history indicates a commitment to security by the developers or a lack of discovered exploitable weaknesses. The plugin's attack surface is minimal, with only a single shortcode identified as an entry point, and importantly, there are no unprotected entry points exposed.

Key Concerns

Nonce checks missing
Capability checks limited

Vulnerabilities

None known

Muki Floating TOC Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Muki Floating TOC Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

22 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

92% escaped24 total outputs

Attack Surface

Muki Floating TOC Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[muki_floating_toc] muki-floating-toc.php:307

WordPress Hooks 7

actionadmin_menuincludes\class-muki-floating-toc.php:30

actionadmin_initincludes\class-muki-floating-toc.php:31

actionplugins_loadedmuki-floating-toc.php:31

actionwp_enqueue_scriptsmuki-floating-toc.php:83

actionwp_footermuki-floating-toc.php:116

actionwp_enqueue_scriptsmuki-floating-toc.php:124

actionwp_footermuki-floating-toc.php:243

Maintenance & Trust

Muki Floating TOC Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedSep 4, 2025

PHP min version7.0

Downloads301

Community Trust

Rating90/100

Number of ratings2

Active installs70

Alternatives

Muki Floating TOC Alternatives

Easy Table of Contents

easy-table-of-contents

Adds a user friendly and fully automatic way to create and display a table of contents generated from the page content.

600K 5 CVEs

Table of Contents Plus

table-of-contents-plus

A powerful yet user friendly plugin that automatically creates a table of contents. Can also output a sitemap listing all pages and categories.

200K 5 CVEs

LuckyWP Table of Contents

luckywp-table-of-contents

Creates SEO-friendly table of contents for your posts/pages. Works automatically or manually (via shortcode, Gutenberg block or widget).

100K 5 CVEs

Rich Table of Contents

rich-table-of-content

RTOC is a table of contents generation plugin from Japan that allows anyone to easily create a table of contents. Equipped with the functions of the c …

20K 2 CVEs

SimpleTOC – Table of Contents Block

simpletoc

100

SEO-friendly Table of Contents Gutenberg block. No JavaScript and no CSS means faster loading.

10K No CVEs

Developer Profile

Muki Floating TOC Developer Profile

Muki Wu

7 plugins · 200 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Muki Floating TOC

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/muki-floating-toc/src/css/muki-floating-toc.css/wp-content/plugins/muki-floating-toc/src/js/muki-floating-toc.js

Script Paths

/wp-content/plugins/muki-floating-toc/src/js/muki-floating-toc.js

Version Parameters

muki-floating-toc/style.css?ver=1.0.6muki-floating-toc/script.js?ver=1.0.6

HTML / DOM Fingerprints

CSS Classes

muki-floating-tocmuki-toc-toolbarmuki-toc-pin-button

Data Attributes

aria-label="Article Table of Contents"

JS Globals

muki_floating_toc_settings

Shortcode Output

[muki_floating_toc]

FAQ