Does A1 Tools have any unpatched vulnerabilities?

No. All known vulnerabilities in A1 Tools have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is A1 Tools compatible with WordPress 6.9.4?

According to WordPress.org data, A1 Tools 2.0.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is A1 Tools compatible with PHP 7.4+?

A1 Tools requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is A1 Tools updated?

A1 Tools was last updated on Mar 13, 2026. Frequent updates are generally a positive security signal.

What is A1 Tools's security score?

A1 Tools has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

A1 Tools Security & Risk Analysis

wordpress.org/plugins/a1-tools

Centrally manage contact information, social media links, and business details across your WordPress sites from the A1 Tools platform.

60 active installs v2.0.7 PHP 7.4+ WP 5.0+ Updated Mar 13, 2026

business-informationcontact-infomulti-siteshortcodessite-variables

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is A1 Tools Safe to Use in 2026?

Generally Safe

Score 100/100

A1 Tools has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 21d ago

Risk Assessment

The a1-tools plugin v2.0.7 exhibits a generally good security posture with several strong indicators of secure coding practices. The plugin demonstrates a high percentage of properly escaped outputs and a significant portion of SQL queries utilizing prepared statements. Furthermore, the absence of any recorded CVEs, including unpatched vulnerabilities, is a positive sign of historical security diligence.

However, the static analysis reveals a few areas of concern. The taint analysis identified two high-severity flows with unsanitized paths, suggesting potential risks if these flows can be exploited through user-controlled input. Additionally, the plugin has one unprotected REST API route, which could be a point of entry for unauthorized access or actions. The presence of unsanitized paths in four out of five analyzed flows indicates a need for careful review of input validation and sanitization mechanisms.

Despite these specific concerns, the overall security of a1-tools v2.0.7 appears to be robust, especially considering its lack of past vulnerabilities. The developer seems to be following many best practices. The focus for improvement should be on rigorously sanitizing input for the identified taint flows and ensuring proper authorization checks are in place for all API endpoints.

Key Concerns

High severity taint flows with unsanitized paths
REST API route without permission callbacks
Flows with unsanitized paths (4/5)

Vulnerabilities

None known

A1 Tools Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

A1 Tools Code Analysis

Dangerous Functions

Raw SQL Queries

19 prepared

Unescaped Output

486 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

68% prepared28 total queries

Output Escaping

94% escaped515 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

5 flows4 with unsanitized paths

ajax_import_pages (includes\class-a1-tools-import-export.php:195)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

A1 Tools Attack Surface

Entry Points38

Unprotected1

AJAX Handlers 12

authwp_ajax_a1tools_get_pages_by_authorincludes\class-a1-tools-import-export.php:60

authwp_ajax_a1tools_export_pagesincludes\class-a1-tools-import-export.php:61

authwp_ajax_a1tools_import_pagesincludes\class-a1-tools-import-export.php:62

authwp_ajax_a1tools_load_mediaincludes\class-a1-tools-media-management.php:37

authwp_ajax_a1tools_rename_mediaincludes\class-a1-tools-media-management.php:38

authwp_ajax_a1tools_update_media_metaincludes\class-a1-tools-media-management.php:39

authwp_ajax_a1tools_bulk_renameincludes\class-a1-tools-media-management.php:40

authwp_ajax_a1tools_bulk_update_altincludes\class-a1-tools-media-management.php:41

authwp_ajax_a1tools_find_duplicatesincludes\class-a1-tools-media-management.php:42

authwp_ajax_a1tools_scan_unusedincludes\class-a1-tools-media-management.php:43

authwp_ajax_a1tools_delete_mediaincludes\class-a1-tools-media-management.php:44

authwp_ajax_a1tools_replace_mediaincludes\class-a1-tools-media-management.php:45

REST API Routes 4

GET/wp-json/a1-tools/v1/site-variablesa1-tools.php:3729

POST/wp-json/a1-tools/v1/site-variables/clear-cachea1-tools.php:3740

POST/wp-json/a1-tools/v1/yoast-meta/(?P<id>\d+)a1-tools.php:3753

GET/wp-json/a1-tools/v1/yoast-meta/(?P<id>\d+)a1-tools.php:3775

Shortcodes 22

[a1tools_var] a1-tools.php:865

[a1tools_website_url] a1-tools.php:904

[a1tools_address] a1-tools.php:979

[a1tools_full_address] a1-tools.php:1052

[a1tools_hours] a1-tools.php:1108

[a1tools_social_links] a1-tools.php:1302

[a1tools_city_name] a1-tools.php:1334

[a1tools_state] a1-tools.php:1366

[a1tools_city_link] a1-tools.php:1409

[a1tools_state_link] a1-tools.php:1452

[a1tools_google_map] a1-tools.php:1507

[a1tools_city_phone] a1-tools.php:1569

[a1tools_city_address] a1-tools.php:1682

[a1tools_city_list] a1-tools.php:2108

[a1tools_franchise] a1-tools.php:2299

[a1tools_store_locator] a1-tools.php:2738

[a1tools_services] a1-tools.php:2904

[a1tools_reviews] a1-tools.php:3029

[a1tools_before_after] a1-tools.php:3183

[a1tools_team] a1-tools.php:3442

[a1tools_faq] a1-tools.php:3656

[a1tools_post_title] a1-tools.php:3715

WordPress Hooks 27

filterthe_contenta1-tools.php:817

filterwidget_texta1-tools.php:818

actionrest_api_inita1-tools.php:3797

actionelementor/dynamic_tags/registera1-tools.php:4061

actionelementor/widgets/registera1-tools.php:4168

actionwp_enqueue_scriptsa1-tools.php:4225

actionelementor/editor/before_enqueue_stylesa1-tools.php:4226

actionelementor/preview/enqueue_stylesa1-tools.php:4227

actionwp_enqueue_scriptsa1-tools.php:4313

actionelementor/editor/before_enqueue_stylesa1-tools.php:4314

actionelementor/preview/enqueue_stylesa1-tools.php:4315

actionwp_enqueue_scriptsa1-tools.php:4420

actionelementor/editor/before_enqueue_stylesa1-tools.php:4421

actionelementor/preview/enqueue_stylesa1-tools.php:4422

actionwp_enqueue_scriptsa1-tools.php:4570

actionelementor/editor/before_enqueue_stylesa1-tools.php:4571

actionelementor/preview/enqueue_stylesa1-tools.php:4572

actionadmin_noticesa1-tools.php:4603

actionadmin_menua1-tools.php:4644

actionadmin_inita1-tools.php:4705

actionadmin_enqueue_scriptsa1-tools.php:4804

actionwidgets_inita1-tools.php:5773

actionwp_enqueue_scriptsa1-tools.php:5801

actionshutdowna1-tools.php:5876

actionelementor_pro/forms/new_recorda1-tools.php:5900

actionadmin_enqueue_scriptsincludes\class-a1-tools-import-export.php:63

actionadmin_enqueue_scriptsincludes\class-a1-tools-media-management.php:46

Maintenance & Trust

A1 Tools Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 13, 2026

PHP min version7.4

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs60

Alternatives

A1 Tools Alternatives

InfiniteWP Client

iwp-client

Install this plugin on unlimited sites and manage them all from a central dashboard. This plugin communicates with your InfiniteWP Admin Panel.

200K 7 CVEs

Column Shortcodes

column-shortcodes

Adds shortcodes to easily create columns in your posts or pages.

60K No CVEs

Apollo13 Framework Extensions

apollo13-framework-extensions

Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.

20K 6 CVEs

Futurio Extra

futurio-extra

Futurio Extra add extra features to Futurio theme like widgets, WooCommerce options, Elementor widgets, one click demo import and much more.

20K 7 CVEs

ND Shortcodes

nd-shortcodes

The plugin adds some useful components to your page builder ( Elementor or WP Bakery Page Builder ). All components are full responsive and retina rea …

20K 5 CVEs

Developer Profile

A1 Tools Developer Profile

a1tools

1 plugin · 60 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect A1 Tools

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/a1-tools/dist/css/a1-tools-frontend.css/wp-content/plugins/a1-tools/dist/js/a1-tools-frontend.js

Script Paths

/wp-content/plugins/a1-tools/dist/js/a1-tools-frontend.js

Version Parameters

a1-tools/dist/css/a1-tools-frontend.css?ver=a1-tools/dist/js/a1-tools-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

a1-tools-map-container

Data Attributes

data-a1tools-map-marker

JS Globals

a1ToolsFrontend

Shortcode Output

[a1tools_store_locator]

FAQ