Does A11yBridge – Accessibility Toolkit (AI optional) have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is A11yBridge – Accessibility Toolkit (AI optional) compatible with WordPress 6.9.4?

According to WordPress.org data, A11yBridge – Accessibility Toolkit (AI optional) 1.1.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is A11yBridge – Accessibility Toolkit (AI optional) compatible with PHP 7.4+?

A11yBridge – Accessibility Toolkit (AI optional) requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is A11yBridge – Accessibility Toolkit (AI optional)'s security score?

A11yBridge – Accessibility Toolkit (AI optional) has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

A11yBridge – Accessibility Toolkit (AI optional) Security & Risk Analysis

wordpress.org/plugins/a11ybridge

Accessibility toolbar for WCAG: contrast, focus mode, keyboard nav, TTS, plus optional AI text simplification and alt-text generation.

0 active installs v1.1.4 PHP 7.4+ WP 6.0+ Updated Feb 24, 2026

a11yaccessibilityalt-texttext-to-speechwcag

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is A11yBridge – Accessibility Toolkit (AI optional) Safe to Use in 2026?

Generally Safe

Score 100/100

A11yBridge – Accessibility Toolkit (AI optional) has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The a11ybridge plugin version 1.1.4 demonstrates a generally strong security posture, particularly in its handling of SQL queries and output escaping, both of which are 100% properly implemented. The absence of known vulnerabilities (CVEs) and recorded past issues is a positive indicator of its maintenance and security awareness. However, the plugin does present some significant security concerns primarily related to its attack surface. With 20 total entry points, 5 of which are unprotected, there are clear opportunities for attackers to interact with the plugin without proper authorization or validation. Specifically, 3 AJAX handlers and 2 REST API routes lack authentication or permission checks, which are critical for preventing unauthorized access and potential exploitation of functionalities exposed through these interfaces.

While static analysis did not reveal dangerous functions or critical taint flows, the unprotected entry points represent a tangible risk. The presence of 11 capability checks and 7 nonce checks suggests an understanding of WordPress security best practices, but their omission on critical entry points is a notable weakness. The plugin's history of zero vulnerabilities, coupled with the static analysis findings, suggests that while current code might not contain obvious flaws, the exposure of unprotected endpoints remains a key area of concern that needs immediate attention to solidify its overall security. The plugin has strengths in its internal code handling, but the external interface needs hardening.

Key Concerns

AJAX handlers without auth checks
REST API routes without permission callbacks
Large attack surface without auth

Vulnerabilities

None known

A11yBridge – Accessibility Toolkit (AI optional) Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

A11yBridge – Accessibility Toolkit (AI optional) Release Timeline

v1.1.4Current

v1.1.0

v1.0.53

v1.0.52

v1.0.50

v1.0.46

Code Analysis

Analyzed Apr 16, 2026

A11yBridge – Accessibility Toolkit (AI optional) Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

654 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

100% escaped655 total outputs

Attack Surface

5 unprotected

A11yBridge – Accessibility Toolkit (AI optional) Attack Surface

Entry Points20

Unprotected5

AJAX Handlers 11

authwp_ajax_a11ybridge_test_ajaxa11ybridge-plugin.php:909

authwp_ajax_a11ybridge_run_full_scanadmin/settings-advanced.php:474

authwp_ajax_a11ybridge_save_license_hashadmin/settings.php:53

authwp_ajax_a11ybridge_clear_licenseadmin/settings.php:54

authwp_ajax_a11ybridge_save_cloud_settingsadmin/settings.php:55

authwp_ajax_a11ybridge_save_user_settingsincludes/user-settings-manager.php:31

noprivwp_ajax_a11ybridge_save_user_settingsincludes/user-settings-manager.php:32

authwp_ajax_a11ybridge_get_user_settingsincludes/user-settings-manager.php:34

noprivwp_ajax_a11ybridge_get_user_settingsincludes/user-settings-manager.php:35

authwp_ajax_a11ybridge_sync_settingsincludes/user-settings-manager.php:37

noprivwp_ajax_a11ybridge_sync_settingsincludes/user-settings-manager.php:38

REST API Routes 9

GET/wp-json/a11ybridge/v1/ai/tokena11ybridge-plugin.php:1731

GET/wp-json/a11ybridge/v1/ai/simplifya11ybridge-plugin.php:1736

GET/wp-json/a11ybridge/v1/admin/imagesa11ybridge-plugin.php:1838

GET/wp-json/a11ybridge/v1/admin/alt-texta11ybridge-plugin.php:1846

GET/wp-json/a11ybridge/v1/ai/alt-texta11ybridge-plugin.php:1854

GET/wp-json/a11ybridge/v1/settingsa11ybridge-plugin.php:2018

GET/wp-json/a11ybridge/v1/settingsa11ybridge-plugin.php:2025

POST/wp-json/a11ybridge/v1/license/activateincludes/class-a11ybridge-license.php:22

POST/wp-json/a11ybridge/v1/license/statusincludes/class-a11ybridge-license.php:32

WordPress Hooks 22

actionadmin_inita11ybridge-plugin.php:200

filterbody_classa11ybridge-plugin.php:356

actionadmin_enqueue_scriptsa11ybridge-plugin.php:734

actionwp_enqueue_scriptsa11ybridge-plugin.php:893

actionadd_attachmenta11ybridge-plugin.php:1137

actionrest_api_inita11ybridge-plugin.php:1729

actionwp_body_opena11ybridge-plugin.php:1966

actionwp_footera11ybridge-plugin.php:1967

actionrest_api_inita11ybridge-plugin.php:2015

actionupdate_option_a11ybridge_ai_settingsa11ybridge-plugin.php:2231

actionadd_attachmenta11ybridge-plugin.php:2432

actionattachment_updateda11ybridge-plugin.php:2450

actiona11ybridge_alttext_generate_onea11ybridge-plugin.php:2468

actiona11ybridge_alttext_daily_scana11ybridge-plugin.php:2480

filterscript_loader_taga11ybridge-plugin.php:2561

filtera11ybridge_ai_simplify_timeouta11ybridge-plugin.php:2562

actionadmin_initadmin/settings.php:17

actionadmin_menuadmin/settings.php:231

actionrest_api_initincludes/class-a11ybridge-license.php:18

filtera11ybridge_license_activate_endpointincludes/licensing.php:100

filtera11ybridge_license_status_endpointincludes/licensing.php:105

filtera11ybridge_license_domains_delete_endpointincludes/licensing.php:110

Maintenance & Trust

A11yBridge – Accessibility Toolkit (AI optional) Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 24, 2026

PHP min version7.4

Downloads339

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

A11yBridge – Accessibility Toolkit (AI optional) Alternatives

WP Accessibility

wp-accessibility

WP Accessibility fixes common accessibility issues in your WordPress site.

60K 2 CVEs

AccessiMate – Accessibility Widget for ADA & WCAG Compliance (One-Click Toolbar)

accessimate

100

A WordPress accessibility plugin with essential tools to make your site more accessible and user-friendly with disabilities—all with one click.

20 No CVEs

WCAG Admin Accessibility Tools

wcag-admin-accessibility-tools

100

Accessibility diagnostics and tools for alt text, contrast, vague links, and more.

20 No CVEs

WebTechee AccessScan

accessibility-site-scanner

100

Run automated accessibility scans to detect common accessibility issues on your WordPress site.

0 No CVEs

Ally – Web Accessibility & Usability

pojo-accessibility

Ally: Make your site more inclusive by scanning for accessibility violations, fixing them easily, and adding a usability widget and accessibility stat …

500K 4 CVEs

Developer Profile

A11yBridge – Accessibility Toolkit (AI optional) Developer Profile

Hamid Aminirad

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect A11yBridge – Accessibility Toolkit (AI optional)

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/a11ybridge/a11ybridge.min.css/wp-content/plugins/a11ybridge/a11ybridge.min.js/wp-content/plugins/a11ybridge/js/admin.js/wp-content/plugins/a11ybridge/css/admin.css/wp-content/plugins/a11ybridge/js/frontend.js/wp-content/plugins/a11ybridge/css/frontend.css

Script Paths

/wp-content/plugins/a11ybridge/a11ybridge.min.js/wp-content/plugins/a11ybridge/js/admin.js/wp-content/plugins/a11ybridge/js/frontend.js

Version Parameters

a11ybridge/a11ybridge.min.css?ver=a11ybridge/a11ybridge.min.js?ver=a11ybridge/js/admin.js?ver=a11ybridge/css/admin.css?ver=a11ybridge/js/frontend.js?ver=a11ybridge/css/frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes

a11ybridgea11ybridge-toolbara11ybridge-toolbar-buttona11ybridge-settings-panel

HTML Comments

Data Attributes

data-a11ybridge

JS Globals

a11ybridgeA11yBridge

REST Endpoints

/wp-json/a11ybridge/v1/options

FAQ