Does Tidy Admin Notices have any unpatched vulnerabilities?

No. All known vulnerabilities in Tidy Admin Notices have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tidy Admin Notices compatible with WordPress 6.9.4?

According to WordPress.org data, Tidy Admin Notices 2.0.6 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Tidy Admin Notices compatible with PHP 8.1+?

Tidy Admin Notices requires PHP 8.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Tidy Admin Notices updated?

Tidy Admin Notices was last updated on Dec 16, 2025. Frequent updates are generally a positive security signal.

What is Tidy Admin Notices's security score?

Tidy Admin Notices has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tidy Admin Notices Security & Risk Analysis

wordpress.org/plugins/tidy-admin-notices

Moves standard WordPress admin notices into a modern, React-powered Notification Center tray.

0 active installs v2.0.6 PHP 8.1+ WP 6.0+ Updated Dec 16, 2025

admin-noticesclean-dashboardnotificationsreactui

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Tidy Admin Notices Safe to Use in 2026?

Generally Safe

Score 100/100

Tidy Admin Notices has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The "tidy-admin-notices" v2.0.6 plugin exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, the exclusive use of prepared statements for SQL, and proper output escaping indicate good development practices. Furthermore, the plugin has no recorded vulnerabilities (CVEs) and a clean vulnerability history, suggesting a history of secure code. The limited attack surface, with no unprotected entry points, is a significant positive factor. The presence of a capability check on the single REST API route further enhances its security. There are no immediate concerns flagged by the taint analysis, indicating no obvious pathways for unsanitized data leading to security issues.

While the plugin demonstrates robust security practices and a clean history, the lack of nonce checks on the REST API route, despite having a capability check, is a minor area for improvement. While the capability check mitigates many potential attacks, nonce checks add an extra layer of defense against CSRF attacks specifically. The absence of AJAX handlers and shortcodes also contributes to a minimal attack surface. Overall, this plugin appears to be well-secured, with its strengths far outweighing any minor areas for potential enhancement.

Key Concerns

REST API route without nonce check

Vulnerabilities

None known

Tidy Admin Notices Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Tidy Admin Notices Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

Tidy Admin Notices Attack Surface

Entry Points1

Unprotected0

REST API Routes 1

POST/wp-json/tidyadminnotices/v1/snoozetidy-admin-notices.php:96

WordPress Hooks 3

actionadmin_enqueue_scriptstidy-admin-notices.php:25

actionrest_api_inittidy-admin-notices.php:26

actionadmin_bar_menutidy-admin-notices.php:27

Maintenance & Trust

Tidy Admin Notices Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 16, 2025

PHP min version8.1

Downloads103

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Tidy Admin Notices Alternatives

Disable Admin Notices – Hide Dashboard Notifications

disable-admin-notices

Disable admin notices and hide dashboard notifications from plugins, themes and core. Hide all notices, selected ones, or show them in a single line.

100K 2 CVEs

Hide Admin Notices

hide-admin-notices

Hide – or show – WordPress Dashboard Notices, Messages, Update Nags etc. ... for everything!

20K No CVEs

Hide Dashboard Notifications

wp-hide-backed-notices

Warnings and notices can be helpful for developers as they notify them for debugging issues with their code. Though these notices can be sometimes inf …

20K 2 CVEs

Disable WP Notification

disable-wp-notification

100

Best wordpress plugin to remove all the admin panel notifications in just one click. Including the theme and plugin update notification.

10K No CVEs

Disable Admin Dashboard Notices – Get a distraction free WordPress backend

disable-admin-dashboard-notices

"Disable Admin Dashboard Notices" is a handy WordPress plugin designed to streamline and enhance the user experience for WordPress website a …

1K No CVEs

Developer Profile

Tidy Admin Notices Developer Profile

adajimal

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tidy Admin Notices

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tidy-admin-notices/assets/css/admin-style.css/wp-content/plugins/tidy-admin-notices/assets/js/admin-script.js

Script Paths

/wp-content/plugins/tidy-admin-notices/assets/js/admin-script.js

Version Parameters

tidy-admin-notices/assets/css/admin-style.css?ver=tidy-admin-notices/assets/js/admin-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

tidyadminnotices-badgetidyadminnotices-bell-wrapper

Data Attributes

data-snoozeddata-stringsdata-rootdata-nonce

JS Globals

tidyadminnoticesSettings

REST Endpoints

/wp-json/tidyadminnotices/v1/snooze

FAQ