Does WP Anchor Header have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Anchor Header compatible with WordPress 4.9.29?

According to WordPress.org data, WP Anchor Header 0.2.3 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is WP Anchor Header updated?

WP Anchor Header was last updated on Mar 9, 2018. Frequent updates are generally a positive security signal.

What is WP Anchor Header's security score?

WP Anchor Header has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Anchor Header Security & Risk Analysis

wordpress.org/plugins/wp-anchor-header

WP Anchor Header generates anchored headings.

400 active installs v0.2.3 PHP + WP 4.0+ Updated Mar 9, 2018

headerlink

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Anchor Header Safe to Use in 2026?

Generally Safe

Score 85/100

WP Anchor Header has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The wp-anchor-header plugin version 0.2.3 exhibits an exceptionally strong security posture based on the provided static analysis and vulnerability history. The complete absence of identified dangerous functions, raw SQL queries, unsanitized taint flows, file operations, and external HTTP requests is a significant strength. Furthermore, the code demonstrates good practices in output escaping and a lack of any recorded historical vulnerabilities, suggesting a well-maintained and secure codebase.

Despite the outstanding static analysis results, a key area of concern arises from the complete absence of nonces and capability checks across all entry points. While the current version has no direct attack surface identified as unprotected, this lack of authorization checks represents a potential future risk. If new entry points are introduced in future versions or if the plugin's functionality evolves to interact with sensitive data or actions, the absence of these fundamental security mechanisms could lead to vulnerabilities. The plugin's current low-risk profile is thus heavily reliant on its limited functionality and lack of exposed entry points.

Key Concerns

Missing nonce checks on potential entry points
Missing capability checks on potential entry points

Vulnerabilities

None known

WP Anchor Header Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP Anchor Header Release Timeline

v0.2.3Current

v0.2.2

v0.2.1

v0.2.0

v0.1.8

v0.1.7

v0.1.6

v0.1.5

Code Analysis

Analyzed Mar 16, 2026

WP Anchor Header Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

WP Anchor Header Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionwp_enqueue_scriptswp-anchor-header.php:47

filterthe_contentwp-anchor-header.php:48

Maintenance & Trust

WP Anchor Header Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedMar 9, 2018

PHP min version

Downloads10K

Community Trust

Rating86/100

Number of ratings6

Active installs400

Alternatives

WP Anchor Header Alternatives

Custom top bar

custom-top-bar

You can easily customize page top bar with background color,contact number social links and a custom buttom

50 1 unpatched

Small WP Security – SP SWS

small-wp-security

Small WP Security is a WordPress plugin which provides the basic security of your site.

50 No CVEs

Add IDs to Header Tags

add-ids-to-header-tags

Useful for folks that write long-form content containing subheaders, this will add an ID tag to any header tag in your content for deep linking.

20 No CVEs

CSS Flags library

css-flags

More than 250 vector based flags for WordPress

10 No CVEs

WPCode – Insert Headers and Footers + Custom Code Snippets – WordPress Code Manager

insert-headers-and-footers

Easily add code snippets in WordPress. Insert header & footer scripts, add PHP code snippets with conditional logic, insert ads pixel code, and more.

3.0M 3 CVEs

Developer Profile

WP Anchor Header Developer Profile

PersianScript

102 plugins · 177K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

304 days

View full developer profile

Detection Fingerprints

How We Detect WP Anchor Header

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-anchor-header/css/achored-header.css

Version Parameters

wp-anchor-header/css/achored-header.css?ver=

HTML / DOM Fingerprints

CSS Classes

anchorlink

Data Attributes

idhref

FAQ