WP-Safety

Search and Menu Popup Security & Risk Analysis

wordpress.org/plugins/search-and-menu-popup

Display Search OR Menu Popup by Clicking on a Button.

10 active installs v1.0 PHP 7.0+ WP 5.0+ Updated Jul 4, 2020
full-screenfull-screen-popup-on-clickmenupopupsearch
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Search and Menu Popup Safe to Use in 2026?

Generally Safe

Score 85/100

Search and Menu Popup has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The "search-and-menu-popup" plugin v1.0 exhibits a mixed security posture. On the positive side, the static analysis reveals no known vulnerabilities (CVEs) and zero taint flows, suggesting that the development team has not introduced critical exploitable flaws. The complete absence of external HTTP requests and file operations further reduces the attack surface. Furthermore, all SQL queries utilize prepared statements, which is a strong security practice against SQL injection. However, there are significant concerns. The plugin has a low percentage of properly escaped output (13%), indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Additionally, the complete lack of nonce checks and capability checks on its two shortcodes means that any user, regardless of their role or permissions, could potentially trigger their functionality, leading to unauthorized actions or information disclosure if these shortcodes handle sensitive data or perform privileged operations.

Key Concerns

  • Low output escaping (13%)
  • No nonce checks on entry points
  • No capability checks on entry points
Vulnerabilities
None known

Search and Menu Popup Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Search and Menu Popup Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
13
2 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

13% escaped15 total outputs
Attack Surface

Search and Menu Popup Attack Surface

Entry Points2
Unprotected0

Shortcodes 2

[menu-popup] includes\shortcode\rjsmp-menupopup-shortcode.php:71
[search-popup] includes\shortcode\rjsmp-searchpopup-shortcode.php:72
WordPress Hooks 4
actionwp_enqueue_scriptsincludes\class-rjsmp-script.php:14
actionwp_enqueue_scriptsincludes\class-rjsmp-script.php:17
actionafter_setup_themeincludes\rjsmp-functions.php:27
actionplugins_loadedsearch-and-menu-popup.php:32
Maintenance & Trust

Search and Menu Popup Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedJul 4, 2020
PHP min version7.0
Downloads1K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Search and Menu Popup Alternatives

Admin Menu Search

Admin Menu Search

admin-menu-search

A
92

Admin Menu Search adds a search box filter to the top of the WordPress Admin Menu so you can easily locate items on sites with lots of menus.

3K No CVEs
Better Internal Link Search

Better Internal Link Search

better-internal-link-search

A
85

Improve the internal link popup manager with time-saving enhancements and features.

1K No CVEs
Advanced All in One Admin Search by WP Spotlight

Advanced All in One Admin Search by WP Spotlight

wp-spotlight-search

A
99

Advanced All in One Admin Search by WP Spotlight Global Search is a powerful quick navigation plugin for WordPress Dashboard - it is an advancement of …

1K 1 CVE
OffCanvas / Drawer – Responsive Slide-In Drawer & Popup System

OffCanvas / Drawer – Responsive Slide-In Drawer & Popup System

offcanvas-block

A
100

Build responsive off-canvas menus, drawers, and popups in WordPress using a lightweight Gutenberg block with advanced triggers and animations.

800 No CVEs
Search box on Navigation Menu

Search box on Navigation Menu

search-box-on-navigation-menu

A
85

The plugin displays search form in the navigation bar which can be configured from the admin area.

500 No CVEs
Developer Profile

Search and Menu Popup Developer Profile

Rajdip Sinha Roy

5 plugins · 400 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Search and Menu Popup

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/search-and-menu-popup/assets/css/rjsmp-public-style.css/wp-content/plugins/search-and-menu-popup/assets/js/custombox.legacy.min.js/wp-content/plugins/search-and-menu-popup/assets/js/custombox.min.js/wp-content/plugins/search-and-menu-popup/assets/images/menu.png/wp-content/plugins/search-and-menu-popup/assets/images/search.png
Script Paths
/wp-content/plugins/search-and-menu-popup/assets/js/custombox.legacy.min.js/wp-content/plugins/search-and-menu-popup/assets/js/custombox.min.js
Version Parameters
search-and-menu-popup/assets/css/rjsmp-public-style.css?ver=search-and-menu-popup/assets/js/custombox.legacy.min.js?ver=search-and-menu-popup/assets/js/custombox.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
rjsmp-linkrjsmp-modalrjsmp-closerjsmp-menu-boxrjsmp-nav-menurjsmp-search-boxrjsmp-public-style
Data Attributes
data-rjsmp-
JS Globals
Custombox.modal
Shortcode Output
<img src="" alt="menu" /><img src="" alt="search" />
FAQ

Frequently Asked Questions about Search and Menu Popup