Does NK Sidebar Plugin have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is NK Sidebar Plugin compatible with WordPress 5.4.19?

According to WordPress.org data, NK Sidebar Plugin 1.0.0 has been tested up to WordPress 5.4.19. Check the plugin's changelog for the latest compatibility information.

Is NK Sidebar Plugin compatible with PHP 7.2+?

NK Sidebar Plugin requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is NK Sidebar Plugin updated?

NK Sidebar Plugin was last updated on Aug 6, 2020. Frequent updates are generally a positive security signal.

What is NK Sidebar Plugin's security score?

NK Sidebar Plugin has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

NK Sidebar Plugin Security & Risk Analysis

wordpress.org/plugins/nk-sidebar

Here is a short description of the plugin. This should be no more than 150 characters. No markup here.

0 active installs v1.0.0 PHP 7.2+ WP 5.2+ Updated Aug 6, 2020

emailnksidebar-pluginphonesidebar

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is NK Sidebar Plugin Safe to Use in 2026?

Generally Safe

Score 85/100

NK Sidebar Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The nk-sidebar v1.0.0 plugin exhibits a generally strong security posture based on the provided static analysis. A key strength is the complete absence of identified dangerous functions, raw SQL queries, file operations, and external HTTP requests. The plugin also demonstrates a commitment to security by using prepared statements for all SQL queries and implementing a capability check. However, the lack of nonce checks on AJAX handlers is a significant concern, as it opens the door to potential Cross-Site Request Forgery (CSRF) attacks if any AJAX endpoints were to be introduced in the future. Additionally, a notable portion of output is not properly escaped, presenting a risk of Cross-Site Scripting (XSS) vulnerabilities. The absence of any recorded vulnerabilities in its history is a positive indicator, suggesting past development has been relatively secure. Despite the good foundations, the identified weaknesses in output escaping and the potential for CSRF if new AJAX endpoints are added warrant attention.

Key Concerns

Unescaped output detected
Missing nonce checks on AJAX

Vulnerabilities

None known

NK Sidebar Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

NK Sidebar Plugin Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

NK Sidebar Plugin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

63% escaped8 total outputs

Attack Surface

NK Sidebar Plugin Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_menuadmin\nk-sidebar-admin.php:8

actionadmin_initadmin\nk-sidebar-admin.php:49

filterwp_headincludes\nksb-functions.php:3

actionwp_enqueue_scriptsnk-sidebar.php:37

Maintenance & Trust

NK Sidebar Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19

Last updatedAug 6, 2020

PHP min version7.2

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs0

Alternatives

NK Sidebar Plugin Alternatives

miniOrange OTP Login, Verification and SMS Notifications

miniorange-otp-verification

100

OTP Verification via Email/SMS/WhatsApp,SMS Notifications for WooCommerce,OTP Login with Phone,PasswordLess Login.Custom Gateway for OTP Verification

6K 1 CVE

Mobile Contact Line

mobile-contact-line

Simple plugin that allow you add mobile contact line to your wordpress site

1K 1 CVE

F4 Shipping Phone and E-Mail for WooCommerce

f4-woocommerce-shipping-phone-and-e-mail

100

Adds fields for e-mail and/or telephone to the WooCommerce shipping address.

800 No CVEs

Fetchify

clicktoaddress-auto-complete

100

This plugin adds global address auto-complete functionality to the address forms on the front-end in WooCommerce.

600 No CVEs

Contact Widgets For Elementor all the contact links you need in one place

contact-widgets-for-elementor

Contact Widgets For Elementor , Now you can add all the beast ways to contact you: Whatsapp, SMS, Facebook messenger, Email, Phone and Waze.

500 No CVEs

Developer Profile

NK Sidebar Plugin Developer Profile

Hoang Kim Lam

2 plugins · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect NK Sidebar Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/nk-sidebar/public/css/nksb-styles.css

HTML / DOM Fingerprints

CSS Classes

nksb-sidebar

FAQ