Does Accessibility Guard have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Accessibility Guard compatible with WordPress 6.9.4?

According to WordPress.org data, Accessibility Guard 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Accessibility Guard compatible with PHP 7.4+?

Accessibility Guard requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Accessibility Guard updated?

Accessibility Guard was last updated on Feb 11, 2026. Frequent updates are generally a positive security signal.

What is Accessibility Guard's security score?

Accessibility Guard has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Accessibility Guard Security & Risk Analysis

wordpress.org/plugins/accessibility-guard

Free WCAG 2.2 accessibility scanner for WordPress. Detect Level A & AA issues, auto-fix common problems, and generate accessibility statements.

0 active installs v1.0.0 PHP 7.4+ WP 6.0+ Updated Feb 11, 2026

a11yaccessibilityadasection-508wcag

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Accessibility Guard Safe to Use in 2026?

Generally Safe

Score 100/100

Accessibility Guard has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The accessibility-guard plugin v1.0.0 demonstrates a strong security posture based on the provided static analysis. All identified entry points, including 17 AJAX handlers, have authentication checks, which is a significant strength. The code also shows excellent practices in SQL query handling, with 98% using prepared statements, and 100% of outputs are properly escaped, mitigating common cross-site scripting (XSS) vulnerabilities. Furthermore, a robust 18 nonce checks and 17 capability checks are implemented, indicating a conscious effort to secure dynamic operations. The absence of any known CVEs, unpatched vulnerabilities, or recorded historical issues suggests a mature and well-maintained codebase concerning known threats.

However, there are a few areas that warrant attention. The taint analysis revealed 4 flows with unsanitized paths. While these are not categorized as critical or high severity, unsanitized paths can still be a vector for unexpected behavior or potential exploits if not carefully managed. The presence of file operations and an external HTTP request, while not inherently insecure, are common areas where vulnerabilities can be introduced if not implemented with strict input validation and error handling. The bundled Freemius library, while common for plugin licensing, should be monitored for its own security updates. Overall, the plugin is well-secured with good foundational practices, but the taint analysis highlights a need for further scrutiny of specific data handling paths.

Key Concerns

Flows with unsanitized paths detected
Bundled Freemius v1.0 library

Vulnerabilities

None known

Accessibility Guard Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Accessibility Guard Release Timeline

v1.0.0Current

Code Analysis

Analyzed Apr 16, 2026

Accessibility Guard Code Analysis

Dangerous Functions

Raw SQL Queries

41 prepared

Unescaped Output

621 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

SQL Query Safety

98% prepared42 total queries

Output Escaping

100% escaped622 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

6 flows4 with unsanitized paths

render_dashboard_page (includes/class-wpag-admin.php:267)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Accessibility Guard Attack Surface

Entry Points17

Unprotected0

AJAX Handlers 17

authwp_ajax_wpag_scan_pageincludes/class-wpag-ajax.php:37

authwp_ajax_wpag_scan_allincludes/class-wpag-ajax.php:38

authwp_ajax_wpag_clear_resultsincludes/class-wpag-ajax.php:39

authwp_ajax_wpag_export_csvincludes/class-wpag-pro.php:47

authwp_ajax_wpag_export_pdfincludes/class-wpag-pro.php:48

authwp_ajax_wpag_bulk_fixincludes/class-wpag-pro.php:49

authwp_ajax_wpag_count_affectedincludes/class-wpag-pro.php:50

authwp_ajax_wpag_get_affected_detailsincludes/class-wpag-pro.php:51

authwp_ajax_wpag_create_backupincludes/class-wpag-pro.php:52

authwp_ajax_wpag_restore_backupincludes/class-wpag-pro.php:53

authwp_ajax_wpag_check_contrastincludes/class-wpag-pro.php:54

authwp_ajax_wpag_scan_pdfincludes/class-wpag-pro.php:60

authwp_ajax_wpag_scan_all_pdfsincludes/class-wpag-pro.php:61

authwp_ajax_wpag_save_custom_ruleincludes/class-wpag-pro.php:64

authwp_ajax_wpag_delete_custom_ruleincludes/class-wpag-pro.php:65

authwp_ajax_wpag_toggle_custom_ruleincludes/class-wpag-pro.php:66

authwp_ajax_wpag_generate_statementincludes/class-wpag-statement.php:38

WordPress Hooks 21

actionadmin_menuincludes/class-wpag-admin.php:37

actionadmin_initincludes/class-wpag-admin.php:38

actionadmin_enqueue_scriptsincludes/class-wpag-admin.php:39

filtermanage_pages_columnsincludes/class-wpag-admin.php:40

actionmanage_pages_custom_columnincludes/class-wpag-admin.php:41

filtermanage_posts_columnsincludes/class-wpag-admin.php:42

actionmanage_posts_custom_columnincludes/class-wpag-admin.php:43

actionwp_body_openincludes/class-wpag-auto-fixer.php:44

actionwp_enqueue_scriptsincludes/class-wpag-auto-fixer.php:45

filterlanguage_attributesincludes/class-wpag-auto-fixer.php:49

filterthe_contentincludes/class-wpag-auto-fixer.php:53

filterthe_contentincludes/class-wpag-auto-fixer.php:57

actionadmin_menuincludes/class-wpag-pro.php:46

actionwpag_scheduled_scanincludes/class-wpag-pro.php:55

filtercron_schedulesincludes/class-wpag-pro.php:56

filterwpag_scan_checksincludes/class-wpag-pro.php:57

filterwpag_scan_checksincludes/class-wpag-pro.php:67

actionwpag_scan_completeincludes/class-wpag-pro.php:70

actionadmin_menuincludes/class-wpag-statement.php:37

actionafter_uninstallwp-accessibility-guard.php:63

actionplugins_loadedwp-accessibility-guard.php:123

Scheduled Events 1

wpag_scheduled_scan

Maintenance & Trust

Accessibility Guard Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 11, 2026

PHP min version7.4

Downloads231

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Accessibility Guard Alternatives

Accessibility by UserWay

userway-accessibility-widget

100

UserWay’s Accessibility Widget creates a simpler and more accessible browsing experience for your users.

80K No CVEs

AccessibleWP – Accessibility Toolbar

accessible-poetry

Add a professional accessibility toolbar to your WordPress site and make it easier for users with disabilities.

20K No CVEs

DJ-Accessibility – Accessibility Plugin

dj-accessibility

100

DJ-Accessibility is a set of tools to help people with disabilities navigate the site.

3K No CVEs

Accessibility by AllAccessible

allaccessible

Unlock true digital accessibility with AllAccessible - a comprehensive WordPress plugin driving your website towards WCAG/ADA compliance. Empower your users with a fully customizable accessibility widget, and enhance their experience with our premium AI-powered features.

2K 2 CVEs

Accessibility New Window Warnings

accessibility-new-window-warnings

100

Make links that open in a new window compliant with WCAG guidelines for accessibility by adding a warning for users.

1K No CVEs

Developer Profile

Accessibility Guard Developer Profile

Aman

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Accessibility Guard

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/accessibility-guard/assets/css/admin.css/wp-content/plugins/accessibility-guard/assets/css/frontend.css/wp-content/plugins/accessibility-guard/assets/js/admin.js/wp-content/plugins/accessibility-guard/assets/js/frontend.js

Script Paths

/wp-content/plugins/accessibility-guard/assets/js/admin.js/wp-content/plugins/accessibility-guard/assets/js/frontend.js

Version Parameters

accessibility-guard/assets/css/admin.css?ver=accessibility-guard/assets/css/frontend.css?ver=accessibility-guard/assets/js/admin.js?ver=accessibility-guard/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

wpag-admin-pagewpag-dashboard-containerwpag-scan-resultswpag-settings-sectionwpag-auto-fix-togglewpag-severity-indicatorwpag-statement-form

HTML Comments

Data Attributes

data-wpag-scan-iddata-wpag-severitydata-wpag-auto-fix-settingdata-wpag-statement-page-id

JS Globals

window.wpag_admin_settingswindow.wpag_ajax_objectwindow.wpag_scan_resultswindow.wpag_auto_fixer_config

REST Endpoints

/wp-json/accessibility-guard/v1/scan/wp-json/accessibility-guard/v1/settings/wp-json/accessibility-guard/v1/fix

Shortcode Output

[accessibility_guard_scanner][accessibility_statement][a11y_guard_scan]

FAQ