Does Simple Front End Edit Buttons have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Front End Edit Buttons have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Front End Edit Buttons compatible with WordPress 3.1.4?

According to WordPress.org data, Simple Front End Edit Buttons 0.1 has been tested up to WordPress 3.1.4. Check the plugin's changelog for the latest compatibility information.

How often is Simple Front End Edit Buttons updated?

Simple Front End Edit Buttons was last updated on Jul 12, 2011. Frequent updates are generally a positive security signal.

What is Simple Front End Edit Buttons's security score?

Simple Front End Edit Buttons has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Front End Edit Buttons Security & Risk Analysis

wordpress.org/plugins/simple-front-end-edit-buttons

Add edit buttons to the front end of your website. The buttons makes it easy to changing the order of a pages, adding pages, and editing pages.

10 active installs v0.1 PHP + WP 3.0+ Updated Jul 12, 2011

iconmenu-orderorderpageprio

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Front End Edit Buttons Safe to Use in 2026?

Generally Safe

Score 85/100

Simple Front End Edit Buttons has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The plugin exhibits a concerning security posture despite some positive indicators. While the code avoids dangerous functions and uses prepared statements for all SQL queries, significant weaknesses are present. The most critical concern is the single AJAX handler that lacks any authentication checks, presenting a clear attack vector. Furthermore, the taint analysis reveals a flow with an unsanitized path, indicating a potential for vulnerabilities. The complete absence of output escaping is another major red flag, as it leaves the plugin susceptible to cross-site scripting (XSS) attacks. The vulnerability history being clear of any known CVEs is a positive sign, suggesting the developers might have addressed issues in the past or the plugin hasn't been widely targeted. However, this cannot overshadow the immediate risks identified in the static and taint analysis.

Key Concerns

Unprotected AJAX handler
Taint flow with unsanitized path
Output escaping is zero
No nonce checks on AJAX

Vulnerabilities

None known

Simple Front End Edit Buttons Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Simple Front End Edit Buttons Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

0% escaped2 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

<index> (index.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Simple Front End Edit Buttons Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_sfeeb_add_pageindex.php:476

WordPress Hooks 7

actionquery_varsindex.php:37

filterparse_requestindex.php:38

actionwidget_pages_argsindex.php:39

actionwp_list_pagesindex.php:40

actionpage_css_classindex.php:41

actionwp_headindex.php:42

actioninitindex.php:43

Maintenance & Trust

Simple Front End Edit Buttons Maintenance & Trust

Maintenance Signals

WordPress version tested3.1.4

Last updatedJul 12, 2011

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Simple Front End Edit Buttons Alternatives

Simple Page Ordering

simple-page-ordering

100

Order your pages and other custom post types that support "page-attributes" with drag and drop right from the standard page list.

100K 1 CVE

Simple Menu Order Column

simple-menu-order-column

100

Expose menu order column on your dashboard listings.

200 No CVEs

Plugin Organizer

plugin-organizer

Change plugin order and selectively enable/disable plugins on each post/page.

10K 1 CVE

Real Custom Post Order: Create a custom order for your content

real-custom-post-order

100

Custom post order for posts, pages, WooCommerce products and custom post types using drag and drop. Simple and intuitive sorting of your content!

9K No CVEs

Click to top

click-to-top

A wordpress plugin to create a customisable Click To Top feature.

2K 2 CVEs

Developer Profile

Simple Front End Edit Buttons Developer Profile

Pär Thernström

11 plugins · 361K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

1680 days

View full developer profile

Detection Fingerprints

How We Detect Simple Front End Edit Buttons

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-front-end-edit-buttons/style.css/wp-content/plugins/simple-front-end-edit-buttons/script.js

Script Paths

/wp-content/plugins/simple-front-end-edit-buttons/script.js

Version Parameters

simple-front-end-edit-buttons/style.css?ver=simple-front-end-edit-buttons/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

sfeeb_editsfeeb_edit_addsfeeb_edit_add_post_id_sfeeb_is_menu_order

HTML Comments

Styles for plugin Simple Front End Edit ButtonsScript for plugin Simple Front End Edit Buttons

Data Attributes

sfeeb_edit_add_post_id_

JS Globals

sfeeb_add_page

REST Endpoints

/wp-json/admin-ajax.php

FAQ