Does Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Security & Risk Analysis

wordpress.org/plugins/versatile-toolkit

A comprehensive WordPress toolkit featuring maintenance mode, coming soon pages, and advanced troubleshooting tools with IP-based plugin control.

0 active installs v1.0.7 PHP 7.4+ WP 5.3+ Updated Apr 14, 2026

coming-soonip-controlmaintenance-modetemporary-logintroubleshooting

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Safe to Use in 2026?

Generally Safe

Score 100/100

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The versatile-toolkit plugin, version 1.0.7, exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices regarding SQL query execution, exclusively using prepared statements, and all output is properly escaped, significantly mitigating risks of SQL injection and cross-site scripting vulnerabilities. Furthermore, there is no recorded history of vulnerabilities, including critical or high severity issues, and no external HTTP requests are made, which reduces the attack surface related to remote code execution or data leakage. The absence of bundled libraries also means no outdated, vulnerable third-party code is present.

However, a significant concern arises from the large attack surface exposed through AJAX handlers. Out of 37 AJAX handlers, a staggering 35 lack any authentication or capability checks. This is a critical oversight, as any unauthenticated user could potentially trigger these handlers, leading to unintended actions or information disclosure. While taint analysis and static code signals did not reveal immediate critical flaws like unsanitized paths or dangerous functions, the sheer number of unprotected entry points represents a substantial potential for attackers to discover and exploit logic flaws or unintended functionality within these handlers. The presence of nonces and capability checks on a small number of handlers is positive but insufficient given the vast number of unprotected AJAX endpoints.

Key Concerns

Large number of AJAX handlers without auth checks
35 AJAX handlers without authorization checks
Insufficient nonce checks relative to attack surface
Insufficient capability checks relative to attack surface

Vulnerabilities

None known

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Release Timeline

v1.0.7Current

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.0

v1.0.0 - alpha

Code Analysis

Analyzed Apr 16, 2026

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Code Analysis

Dangerous Functions

Raw SQL Queries

19 prepared

Unescaped Output

225 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared19 total queries

Output Escaping

100% escaped225 total outputs

Attack Surface

35 unprotected

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Attack Surface

Entry Points37

Unprotected35

AJAX Handlers 37

authwp_ajax_versatile_update_comingsoon_moodinc/Services/Comingsoon/ComingsoonMood.php:37

authwp_ajax_versatile_preview_comingsooninc/Services/Comingsoon/ComingsoonMood.php:38

authwp_ajax_versatile_comingsoon_template_previewinc/Services/Comingsoon/ComingsoonMood.php:39

authwp_ajax_versatile_update_maintenance_moodinc/Services/MaintenanceMode/MaintenanceMode.php:37

authwp_ajax_versatile_preview_maintenanceinc/Services/MaintenanceMode/MaintenanceMode.php:38

authwp_ajax_versatile_maintenance_template_previewinc/Services/MaintenanceMode/MaintenanceMode.php:39

authwp_ajax_versatile_quickact_plugins_listinc/Services/QuickAct/QuickAct.php:35

authwp_ajax_versatile_quickact_plugin_activateinc/Services/QuickAct/QuickAct.php:36

authwp_ajax_versatile_quickact_plugin_deactivateinc/Services/QuickAct/QuickAct.php:37

authwp_ajax_versatile_quickact_themes_listinc/Services/QuickAct/QuickAct.php:38

authwp_ajax_versatile_quickact_theme_activateinc/Services/QuickAct/QuickAct.php:39

authwp_ajax_versatile_quickact_theme_deactivateinc/Services/QuickAct/QuickAct.php:40

authwp_ajax_versatile_reset_permalinksinc/Services/QuickAct/QuickAct.php:41

authwp_ajax_versatile_get_service_listinc/Services/ServiceInit.php:65

authwp_ajax_versatile_get_enable_service_listinc/Services/ServiceInit.php:66

authwp_ajax_versatile_update_service_statusinc/Services/ServiceInit.php:67

authwp_ajax_versatile_get_mood_infoinc/Services/ServiceInit.php:68

authwp_ajax_versatile_get_temp_login_listinc/Services/Templogin/Templogin.php:64

authwp_ajax_versatile_create_temp_logininc/Services/Templogin/Templogin.php:65

authwp_ajax_versatile_update_temp_logininc/Services/Templogin/Templogin.php:66

authwp_ajax_versatile_extend_temp_login_timeinc/Services/Templogin/Templogin.php:67

authwp_ajax_versatile_delete_temp_logininc/Services/Templogin/Templogin.php:68

authwp_ajax_versatile_toggle_temp_login_statusinc/Services/Templogin/Templogin.php:69

authwp_ajax_versatile_get_available_rolesinc/Services/Templogin/Templogin.php:70

authwp_ajax_versatile_toggle_debug_loginc/Services/Troubleshoot/DebugLog.php:44

authwp_ajax_versatile_get_debug_log_statusinc/Services/Troubleshoot/DebugLog.php:45

authwp_ajax_versatile_get_debug_log_contentinc/Services/Troubleshoot/DebugLog.php:46

authwp_ajax_versatile_clear_debug_loginc/Services/Troubleshoot/DebugLog.php:47

authwp_ajax_versatile_download_debug_loginc/Services/Troubleshoot/DebugLog.php:48

authwp_ajax_versatile_refresh_debug_loginc/Services/Troubleshoot/DebugLog.php:49

authwp_ajax_versatile_plugin_listinc/Services/Troubleshoot/TroubleshootInit.php:34

authwp_ajax_versatile_get_disable_plugin_listinc/Services/Troubleshoot/TroubleshootInit.php:35

authwp_ajax_versatile_save_disable_plugin_listinc/Services/Troubleshoot/TroubleshootInit.php:36

authwp_ajax_versatile_add_my_ipinc/Services/Troubleshoot/TroubleshootInit.php:37

authwp_ajax_versatile_get_theme_listinc/Services/Troubleshoot/TroubleshootInit.php:38

authwp_ajax_versatile_get_active_themeinc/Services/Troubleshoot/TroubleshootInit.php:39

authwp_ajax_versatile_save_active_themeinc/Services/Troubleshoot/TroubleshootInit.php:40

WordPress Hooks 17

actionadmin_menuinc/Admin/Menu/MainMenu.php:54

actionadmin_enqueue_scriptsinc/Core/Enqueue.php:29

actionwp_print_stylesinc/Helpers/MoodHelper.php:85

filterwp_kses_allowed_htmlinc/Helpers/VersatileInput.php:271

actionrest_api_initinc/RestAPI/Routes.php:35

actionwpinc/Services/Comingsoon/ComingsoonMood.php:33

actionwp_print_stylesinc/Services/Comingsoon/ComingsoonMood.php:285

actionwpinc/Services/MaintenanceMode/MaintenanceMode.php:33

actionwp_print_stylesinc/Services/MaintenanceMode/MaintenanceMode.php:287

actionadmin_bar_menuinc/Services/QuickAct/QuickAct.php:30

actionadmin_enqueue_scriptsinc/Services/QuickAct/QuickAct.php:32

actionwp_enqueue_scriptsinc/Services/QuickAct/QuickAct.php:33

actioninitinc/Services/Templogin/Templogin.php:74

actionversatile_cleanup_expired_temp_loginsinc/Services/Templogin/Templogin.php:79

filteroption_active_pluginsinc/Services/Troubleshoot/MuVersatileToolkit.php:22

filterwp_is_application_passwords_availableversatile-toolkit.php:62

actionplugins_loadedversatile-toolkit.php:68

Scheduled Events 1

versatile_cleanup_expired_temp_logins

Maintenance & Trust

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 14, 2026

PHP min version7.4

Downloads497

Community Trust

Rating100/100

Number of ratings2

Active installs0

Alternatives

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Alternatives

Maintenance

maintenance

100

Great looking maintenance, coming soon & under construction pages. Put your site under maintenance in minutes.

1.0M 1 CVE

Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode

coming-soon

Easy Drag & Drop Page Builder. A complete solution to create a WordPress Website, Custom Themes, Landing Pages, Coming Soon & Maintenance Mode Pages.

700K 9 CVEs

LightStart – Maintenance Mode, Coming Soon and Landing Page Builder

wp-maintenance-mode

Easy Drag & Drop Page Builder that adds a splash page to your site that it's perfect for a coming soon page, maintenance or landing page.

500K 6 CVEs

CMP – Coming Soon & Maintenance Plugin by NiteoThemes

cmp-coming-soon-maintenance

Beautiful Coming soon, Maintenance or Landing page on your website, packed with premium features for free.

200K 7 CVEs

Minimal Coming Soon – Coming Soon Page

minimal-coming-soon-maintenance-mode

Minimal Coming Soon & Maintenance Mode page! Create awesome Coming Soon Pages in seconds.

100K 7 CVEs

Developer Profile

Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode Developer Profile

nurwp

2 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Versatile – Troubleshoot, Temporary Login, Maintenance & Comingsoon Mode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/versatile-toolkit/assets/dist/css/style.min.css/wp-content/plugins/versatile-toolkit/assets/dist/js/versatile-js.min.js

Script Paths

/wp-content/plugins/versatile-toolkit/assets/dist/js/versatile-js.min.js

HTML / DOM Fingerprints

JS Globals

versatile_get_plugin_data

FAQ