WP-Safety

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Security & Risk Analysis

wordpress.org/plugins/accessibility-onetap

OneTap is a multilingual WordPress plugin designed for seamless website accessibility.

40K active installs v2.10.0 PHP 7.4+ WP 6.6+ Updated Mar 12, 2026
accessibility-widgetadawcagweb-accessibilitywp-accessibility
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Safe to Use in 2026?

Generally Safe

Score 100/100

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 22d ago
Risk Assessment

The 'accessibility-onetap' plugin v2.10.0 demonstrates a mixed security posture. On the positive side, it uses prepared statements for all SQL queries, and 99% of its outputs are properly escaped, significantly reducing the risk of SQL injection and cross-site scripting vulnerabilities. The absence of any known vulnerabilities or CVEs in its history is also a strong indicator of a well-maintained and secure codebase. However, the plugin presents a notable concern regarding its attack surface. A significant portion of its entry points, specifically 5 out of 6 total, lack proper authentication checks. This includes all 5 AJAX handlers, which are common targets for malicious actors. While no critical taint flows or dangerous functions were identified in the static analysis, the large number of unprotected entry points means that if any subtle vulnerability exists, it could be easily exploited. The plugin also implements nonce checks on all its AJAX handlers, which is a good practice, but this is undermined by the lack of capability checks on these same handlers.

Key Concerns

  • Unprotected AJAX handlers
  • Limited capability checks on entry points
Vulnerabilities
None known

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
4
406 escaped
Nonce Checks
5
Capability Checks
2
File Operations
0
External Requests
2
Bundled Libraries
0

Output Escaping

99% escaped410 total outputs
Attack Surface
5 unprotected

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Attack Surface

Entry Points6
Unprotected5

AJAX Handlers 5

authwp_ajax_onetap_action_dismiss_noticeincludes\class-accessibility-onetap.php:201
authwp_ajax_onetap_review_leave_reviewincludes\class-accessibility-onetap.php:205
authwp_ajax_onetap_review_maybe_laterincludes\class-accessibility-onetap.php:206
authwp_ajax_onetap_review_dont_show_againincludes\class-accessibility-onetap.php:207
authwp_ajax_onetap_save_alt_textincludes\class-accessibility-onetap.php:227

Shortcodes 1

[onetap_free_accessibility] public\class-accessibility-onetap-public.php:5689
WordPress Hooks 20
actionadmin_enqueue_scriptsadmin\class-accessibility-onetap-settings-manager.php:41
actionadmin_enqueue_scriptsincludes\class-accessibility-onetap.php:197
actionadmin_enqueue_scriptsincludes\class-accessibility-onetap.php:198
actionallowed_redirect_hostsincludes\class-accessibility-onetap.php:199
actionadmin_initincludes\class-accessibility-onetap.php:200
filterplugin_row_metaincludes\class-accessibility-onetap.php:202
actionadmin_initincludes\class-accessibility-onetap.php:203
actionadmin_noticesincludes\class-accessibility-onetap.php:204
actionadmin_enqueue_scriptsincludes\class-accessibility-onetap.php:242
actionadmin_initincludes\class-accessibility-onetap.php:243
actionadmin_menuincludes\class-accessibility-onetap.php:244
actionadmin_initincludes\class-accessibility-onetap.php:245
actionwp_enqueue_scriptsincludes\class-accessibility-onetap.php:263
actionwp_enqueue_scriptsincludes\class-accessibility-onetap.php:264
actionwp_footerincludes\class-accessibility-onetap.php:265
filterbody_classincludes\class-accessibility-onetap.php:266
actioninitincludes\class-accessibility-onetap.php:267
filterrocket_exclude_cssincludes\class-accessibility-onetap.php:270
filterrocket_exclude_jsincludes\class-accessibility-onetap.php:271
filterrocket_exclude_defer_jsincludes\class-accessibility-onetap.php:272
Maintenance & Trust

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 12, 2026
PHP min version7.4
Downloads153K

Community Trust

Rating98/100
Number of ratings62
Active installs40K
Alternatives

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Alternatives

AccessYes Accessibility Widget for ADA, EAA & WCAG Readiness

AccessYes Accessibility Widget for ADA, EAA & WCAG Readiness

accessibility-widget

A
99

Free accessibility widget to support WCAG, ADA & EAA. Includes text resize, high contrast, dyslexia-friendly font, spacing, and more tools.

10K 1 CVE
WebAbility Accessibility Widget

WebAbility Accessibility Widget

webability-accessibility-widget

A
100

Easy-to-use accessibility widget that makes your website compliant with WCAG and ADA standards. Simple setup with customizable positioning.

60 No CVEs
Web Accessibility by accessiBe

Web Accessibility by accessiBe

accessibe

A
95

Fix accessibility issues & make your site accessible with an AI-powered accessibility service.

10K 5 CVEs
Equalize Digital Accessibility Checker – Audit Your Website for WCAG, ADA, and Section 508 Accessibility Errors

Equalize Digital Accessibility Checker – Audit Your Website for WCAG, ADA, and Section 508 Accessibility Errors

accessibility-checker

A
97

Find and fix accessibility issues on your website. Detailed reports, autogenerated accessibility statement and one-click fixes to improve compliance.

10K 3 CVEs
Accessibly – WordPress Website Accessibility

Accessibly – WordPress Website Accessibility

otm-accessibly

A
92

Accessibly app is a WordPress accessibility plugin that will help your website become accessible to even more of your site visitors.

400 No CVEs
Developer Profile

Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar Developer Profile

OneTap

1 plugin · 40K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/accessibility-onetap/admin/css/accessibility-onetap-admin.css/wp-content/plugins/accessibility-onetap/assets/js/admin-menu.min.js/wp-content/plugins/accessibility-onetap/assets/js/sweetalert.min.js/wp-content/plugins/accessibility-onetap/assets/js/admin-global.min.js
Version Parameters
accessibility-onetap/admin/css/accessibility-onetap-admin.css?ver=accessibility-onetap/assets/js/admin-menu.min.js?ver=accessibility-onetap/assets/js/sweetalert.min.js?ver=accessibility-onetap/assets/js/admin-global.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
onetap_accessibility_wrapper
Data Attributes
data-accessibility-lang
JS Globals
adminLocalizeapop_localized_labelsOneTap
FAQ

Frequently Asked Questions about Accessibility Widget by OneTap – Easy One-Click Accessibility Toolbar