WP-Safety

Multisite Admin Bar Switcher Security & Risk Analysis

wordpress.org/plugins/multisite-admin-bar-switcher

Require PHP 5.3

10 active installs v1.4.0 PHP + WP 3.2.1+ Updated Jun 17, 2020
multisitenetworkswitchswitchertoolbar
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Multisite Admin Bar Switcher Safe to Use in 2026?

Generally Safe

Score 85/100

Multisite Admin Bar Switcher has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The 'multisite-admin-bar-switcher' v1.4.0 plugin presents a concerning security posture due to a single, unprotected AJAX handler, which represents its entire attack surface. While static analysis did not reveal critical vulnerabilities such as dangerous functions, unsanitized taint flows, or SQL injection risks, the absence of authentication checks on this entry point is a significant weakness. This could allow unauthenticated users to potentially trigger functionality within the plugin, leading to unintended consequences or information disclosure, depending on what the AJAX handler performs.

The plugin's code signals show that the single SQL query is not using prepared statements, which is a potential risk for SQL injection if the query's parameters are not properly sanitized. The relatively low percentage of properly escaped output also raises a flag, as it might expose the site to Cross-Site Scripting (XSS) vulnerabilities. The plugin's history of zero recorded CVEs is positive, indicating a generally stable security record. However, this does not mitigate the immediate risks identified in the static analysis, particularly the unprotected AJAX handler and the un-prepared SQL query.

Key Concerns

  • Unprotected AJAX handler
  • SQL queries without prepared statements
  • Low percentage of properly escaped output
Vulnerabilities
None known

Multisite Admin Bar Switcher Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Multisite Admin Bar Switcher Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
0 prepared
Unescaped Output
3
5 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

0% prepared1 total queries

Output Escaping

63% escaped8 total outputs
Attack Surface
1 unprotected

Multisite Admin Bar Switcher Attack Surface

Entry Points1
Unprotected1

AJAX Handlers 1

authwp_ajax_clear_mabs_cachemultisite-admin-bar-switcher.php:70
WordPress Hooks 14
actionwp_headmabs_admin_bar.php:34
actionadmin_headmabs_admin_bar.php:36
actionwp_headmabs_admin_bar.php:51
filterwp_admin_bar_classmultisite-admin-bar-switcher.php:35
actionadd_admin_bar_menusmultisite-admin-bar-switcher.php:39
actionnetwork_admin_menumultisite-admin-bar-switcher.php:55
actionadmin_bar_menumultisite-admin-bar-switcher.php:75
actionwp_enqueue_scriptsmultisite-admin-bar-switcher.php:137
actionadmin_enqueue_scriptsmultisite-admin-bar-switcher.php:138
actionwpmu_new_blogmultisite-admin-bar-switcher.php:158
actionwpmu_activate_blogmultisite-admin-bar-switcher.php:159
actionadd_user_to_blogmultisite-admin-bar-switcher.php:161
actionadded_existing_usermultisite-admin-bar-switcher.php:164
actionremove_user_from_blogmultisite-admin-bar-switcher.php:167
Maintenance & Trust

Multisite Admin Bar Switcher Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedJun 17, 2020
PHP min version
Downloads7K

Community Trust

Rating100/100
Number of ratings6
Active installs10
Alternatives

Multisite Admin Bar Switcher Alternatives

Multisite Dashboard Switcher

Multisite Dashboard Switcher

multisite-dashboard-switcher

A
85

The Multisite Dashboard Switcher is a plugin written for WordPress that allows multisite administrators to easily switch between Dashboards.

10 No CVEs
Multilang Perelink

Multilang Perelink

multilang-perelink

A
100

Multilang Perelink allows interlinking between translated versions of the same content across different subsites in a WordPress multisite network.

0 No CVEs
Multisite Language Switcher

Multisite Language Switcher

multisite-language-switcher

A
100

A simple, powerful and easy-to-use plugin that will help you to manage multilingual content in a multisite WordPress installation.

4K No CVEs
MultilingualPress

MultilingualPress

multilingual-press

A
92

Create a fast translation network on WordPress multisite.

300 No CVEs
MslsMenu

MslsMenu

mslsmenu

A
100

Adds the output of the Multisite Language Switcher to one (or more) of your navigation menu(s)

200 No CVEs
Developer Profile

Multisite Admin Bar Switcher Developer Profile

flynsarmy

2 plugins · 80 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Multisite Admin Bar Switcher

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/multisite-admin-bar-switcher/assets/css/mabs_styles.css/wp-content/plugins/multisite-admin-bar-switcher/assets/js/mabs_site_filter.js

HTML / DOM Fingerprints

CSS Classes
mabs-admin-barmabs-menu
Data Attributes
data-mabs-blog-id
JS Globals
mabs_site_filter_vars
FAQ

Frequently Asked Questions about Multisite Admin Bar Switcher