Does Simple Sticky TOC have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Sticky TOC have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Sticky TOC compatible with WordPress 6.8.5?

According to WordPress.org data, Simple Sticky TOC 1.0.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Simple Sticky TOC compatible with PHP 7.2+?

Simple Sticky TOC requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simple Sticky TOC updated?

Simple Sticky TOC was last updated on Aug 10, 2025. Frequent updates are generally a positive security signal.

What is Simple Sticky TOC's security score?

Simple Sticky TOC has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Sticky TOC Security & Risk Analysis

wordpress.org/plugins/simple-sticky-toc

Lightweight sticky table of contents for mobile and desktop. Automatically generates anchor links for h2–h4 headings. No jQuery.

0 active installs v1.0.1 PHP 7.2+ WP 5.0+ Updated Aug 10, 2025

anchorheadingsstickytable-of-contentstoc

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Simple Sticky TOC Safe to Use in 2026?

Generally Safe

Score 100/100

Simple Sticky TOC has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago

Risk Assessment

The plugin 'simple-sticky-toc' v1.0.1 demonstrates a strong security posture based on the provided static analysis and vulnerability history. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the potential attack surface. Furthermore, the code signals indicate good security practices, with no dangerous functions, all SQL queries using prepared statements, and all output properly escaped. The presence of a nonce check is also a positive sign.

The taint analysis revealed no flows with unsanitized paths, and the vulnerability history shows no known CVEs, past or present. This suggests a well-maintained and secure codebase. The plugin's strengths lie in its minimal attack surface and adherence to secure coding principles. There are no identified weaknesses or areas of concern based on the provided data.

Vulnerabilities

None known

Simple Sticky TOC Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Simple Sticky TOC Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

Simple Sticky TOC Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionadd_meta_boxesadmin\metabox.php:6

actionsave_postadmin\metabox.php:7

actionadmin_menuadmin\settings-page.php:6

actionadmin_initadmin\settings-page.php:7

actionwp_enqueue_scriptsfrontend\assets.php:6

filterthe_contentfrontend\render.php:6

Maintenance & Trust

Simple Sticky TOC Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedAug 10, 2025

PHP min version7.2

Downloads288

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Simple Sticky TOC Alternatives

Digital Table of Contents

digital-table-of-contents

100

A powerful and customizable TOC plugin. Effortlessly navigate your content with advanced features and flexible styling.

0 No CVEs

GutenTOC – Advanced Table of Contents

gutentoc-advance-table-of-content

100

GutenTOC is an SEO-friendly Table of Contents builder block for the WordPress block editor. It scans headings in your content and automatically gene …

700 No CVEs

Shortcode Table of Contents

shortcode-toc

Display an automated table of contents via shortcode.

300 No CVEs

Sticky TOC – Advance Table Of Contents

sticky-toc-advance-table-of-contents

Sticky TOC is a powerful Wordpress plugin for creating automatic Table Of Content. It scans headings through the post content automatically and create …

90 No CVEs

AnchorKit – Table of Contents

anchorkit-table-of-contents

100

Accessible table of contents plugin with live preview, Gutenberg blocks, Elementor widgets, and extensive customization.

0 No CVEs

Developer Profile

Simple Sticky TOC Developer Profile

pavlobondarchuk

2 plugins · 100 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Sticky TOC

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-sticky-toc/assets/css/toc.css/wp-content/plugins/simple-sticky-toc/assets/js/toc.js

Script Paths

/wp-content/plugins/simple-sticky-toc/assets/js/toc.js

Version Parameters

simple-sticky-toc/assets/css/toc.css?ver=simple-sticky-toc/assets/js/toc.js?ver=

HTML / DOM Fingerprints

CSS Classes

simple-sticky-toc-wrapper

Data Attributes

data-headings-selectordata-is-rtl

JS Globals

sstocData

FAQ