WP-Safety

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Security & Risk Analysis

wordpress.org/plugins/accordion-for-wp

This plugin help you to make accordion of post type, category, tags, taxonomy, menu etc. You can show accordion from accordion post widget, accordion …

100 active installs v1.3.4 PHP + WP 4.0+ Updated Apr 3, 2018
accordionaccordion-widgettabtab-widget-widgetterm-accordion
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Safe to Use in 2026?

Generally Safe

Score 85/100

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The "accordion-for-wp" v1.3.4 plugin exhibits a mixed security posture. On the positive side, the absence of dangerous functions, file operations, external HTTP requests, and a complete lack of direct SQL queries suggest a generally well-written codebase with good practices in these areas. The extensive output escaping (61%) is also a positive sign, though it indicates room for improvement. However, a significant concern arises from the presence of an unprotected AJAX handler. This directly exposes an entry point without any authentication or capability checks, making it a prime target for unauthorized actions or information disclosure.

The static analysis reveals no critical or high-severity taint flows, and the vulnerability history is clean, with no known CVEs. This suggests that the plugin has historically been relatively secure and that developers are not introducing major vulnerabilities through common attack vectors like raw SQL injection. However, the single unprotected AJAX handler is a glaring weakness that overshadows the otherwise positive aspects. The lack of nonce checks and capability checks on this specific AJAX endpoint is a critical oversight. While the plugin has a good track record and avoids many common pitfalls, this unprotected entry point represents a substantial security risk that needs immediate attention.

Key Concerns

  • AJAX handler without authentication
  • Significant portion of output unescaped
  • No nonce checks on AJAX handlers
  • No capability checks on AJAX handlers
Vulnerabilities
None known

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
359
569 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

61% escaped928 total outputs
Attack Surface
1 unprotected

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Attack Surface

Entry Points5
Unprotected1

AJAX Handlers 1

authwp_ajax_afwp_accordion_widgetadmin\class-afwp-accordion-ajax.php:33

Shortcodes 4

[afwp_accordion] includes\shortcodes\class-afwp-accordion-default.php:43
[afwp_group_accordion] includes\shortcodes\class-afwp-accordion-group.php:43
[afwp_tab] includes\shortcodes\class-afwp-tab-default.php:42
[afwp_group_tab] includes\shortcodes\class-afwp-tab-group.php:43
WordPress Hooks 66
actionadmin_enqueue_scriptsadmin\class-afwp-accordion-admin.php:78
actionadmin_enqueue_scriptsadmin\class-afwp-accordion-admin.php:79
actionwidgets_initincludes\class-afwp-accordion.php:87
actionplugins_loadedincludes\class-afwp-accordion.php:187
actionwp_enqueue_scriptsincludes\class-afwp-accordion.php:204
actionwp_enqueue_scriptsincludes\class-afwp-accordion.php:205
actionadmin_enqueue_scriptsincludes\class-afwp-accordion.php:220
actionadmin_enqueue_scriptsincludes\class-afwp-accordion.php:221
actionadmin_menuincludes\optionpage\class-afwp-shortcode-generator.php:9
actioninitincludes\posttype\class-afwp-accordion-post-type.php:32
filtermanage_edit-accordion-group_columnsincludes\posttype\class-afwp-accordion-post-type.php:33
actionmanage_accordion-group_custom_columnincludes\posttype\class-afwp-accordion-post-type.php:34
actionaccordion-group_add_form_fieldsincludes\posttype\class-afwp-accordion-post-type.php:35
actionaccordion-group_edit_form_fieldsincludes\posttype\class-afwp-accordion-post-type.php:36
actionedited_accordion-groupincludes\posttype\class-afwp-accordion-post-type.php:37
actioncreate_accordion-groupincludes\posttype\class-afwp-accordion-post-type.php:38
actioninitincludes\posttype\class-afwp-tab-post-type.php:32
filtermanage_edit-afwp-tab-group_columnsincludes\posttype\class-afwp-tab-post-type.php:33
actionmanage_afwp-tab-group_custom_columnincludes\posttype\class-afwp-tab-post-type.php:34
actionafwp-tab-group_add_form_fieldsincludes\posttype\class-afwp-tab-post-type.php:35
actionafwp-tab-group_edit_form_fieldsincludes\posttype\class-afwp-tab-post-type.php:36
actionedited_afwp-tab-groupincludes\posttype\class-afwp-tab-post-type.php:37
actioncreate_afwp-tab-groupincludes\posttype\class-afwp-tab-post-type.php:38
actionall_admin_noticesincludes\posttype\class-afwp-tab-post-type.php:39
filterafwp_accordion_argsincludes\shortcodes\class-afwp-accordion-default.php:127
filterafwp_accordion_content_typeincludes\shortcodes\class-afwp-accordion-default.php:128
filterafwp_accordion_templatesincludes\shortcodes\class-afwp-accordion-default.php:130
filterafwp_accordion_stylesincludes\shortcodes\class-afwp-accordion-default.php:131
filterafwp_accordion_activeitemincludes\shortcodes\class-afwp-accordion-default.php:132
filterafwp_dropdown_iconincludes\shortcodes\class-afwp-accordion-default.php:134
filterafwp_active_dp_iconincludes\shortcodes\class-afwp-accordion-default.php:135
filterafwp_title_colorincludes\shortcodes\class-afwp-accordion-default.php:136
filterafwp_title_backgroundincludes\shortcodes\class-afwp-accordion-default.php:137
filterafwp_content_colorincludes\shortcodes\class-afwp-accordion-default.php:138
filterafwp_content_backgroundincludes\shortcodes\class-afwp-accordion-default.php:139
filterafwp_accordion_argsincludes\shortcodes\class-afwp-accordion-group.php:147
filterafwp_accordion_content_typeincludes\shortcodes\class-afwp-accordion-group.php:149
filterafwp_accordion_stylesincludes\shortcodes\class-afwp-accordion-group.php:151
filterafwp_accordion_templatesincludes\shortcodes\class-afwp-accordion-group.php:152
filterafwp_accordion_activeitemincludes\shortcodes\class-afwp-accordion-group.php:153
filterafwp_dropdown_iconincludes\shortcodes\class-afwp-accordion-group.php:155
filterafwp_active_dp_iconincludes\shortcodes\class-afwp-accordion-group.php:156
filterafwp_title_colorincludes\shortcodes\class-afwp-accordion-group.php:157
filterafwp_title_backgroundincludes\shortcodes\class-afwp-accordion-group.php:158
filterafwp_content_colorincludes\shortcodes\class-afwp-accordion-group.php:159
filterafwp_content_backgroundincludes\shortcodes\class-afwp-accordion-group.php:160
filterafwp_tab_argsincludes\shortcodes\class-afwp-tab-default.php:121
filterafwp_tab_content_typeincludes\shortcodes\class-afwp-tab-default.php:122
filterafwp_tab_templatesincludes\shortcodes\class-afwp-tab-default.php:124
filterafwp_tab_stylesincludes\shortcodes\class-afwp-tab-default.php:125
filterafwp_tab_activeitemincludes\shortcodes\class-afwp-tab-default.php:126
filterafwp_tab_iconincludes\shortcodes\class-afwp-tab-default.php:128
filterafwp_title_colorincludes\shortcodes\class-afwp-tab-default.php:129
filterafwp_title_backgroundincludes\shortcodes\class-afwp-tab-default.php:130
filterafwp_content_colorincludes\shortcodes\class-afwp-tab-default.php:131
filterafwp_content_backgroundincludes\shortcodes\class-afwp-tab-default.php:132
filterafwp_tab_argsincludes\shortcodes\class-afwp-tab-group.php:144
filterafwp_tab_content_typeincludes\shortcodes\class-afwp-tab-group.php:146
filterafwp_tab_stylesincludes\shortcodes\class-afwp-tab-group.php:148
filterafwp_tab_templatesincludes\shortcodes\class-afwp-tab-group.php:149
filterafwp_tab_activeitemincludes\shortcodes\class-afwp-tab-group.php:150
filterafwp_tab_iconincludes\shortcodes\class-afwp-tab-group.php:152
filterafwp_title_colorincludes\shortcodes\class-afwp-tab-group.php:153
filterafwp_title_backgroundincludes\shortcodes\class-afwp-tab-group.php:154
filterafwp_content_colorincludes\shortcodes\class-afwp-tab-group.php:155
filterafwp_content_backgroundincludes\shortcodes\class-afwp-tab-group.php:156
Maintenance & Trust

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedApr 3, 2018
PHP min version
Downloads6K

Community Trust

Rating84/100
Number of ratings5
Active installs100
Alternatives

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Alternatives

Accordions

Accordions

accordions

A
94

Create sleek accordions, tabs, FAQs, and image accordions with a React builder featuring advanced styling, animations, OpenAI support, and customizati …

20K 8 CVEs
Meks Flexible Shortcodes

Meks Flexible Shortcodes

meks-flexible-shortcodes

A
97

Add some cool elements to your post/page content with flexible shortcodes.

10K 3 CVEs
Tabby Responsive Tabs

Tabby Responsive Tabs

tabby-responsive-tabs

A
100

Create responsive tabs inside your posts, pages or custom post content by adding simple shortcodes inside the post editor.

10K No CVEs
Prime Elementor Addons – Lightweight Elementor Widgets for Faster Pages

Prime Elementor Addons – Lightweight Elementor Widgets for Faster Pages

unlimited-elementor-inner-sections-by-boomdevs

A
99

Lightweight Elementor Addons plugin with essential Elementor widgets: Accordion, Tabs, CTA, Pricing Table, Testimonials, Post Grid, forms & more.

6K 2 CVEs
Responsive Tabs

Responsive Tabs

responsive-tabs

A
97

A responsive & clean way to display your content. Create new tabs in no-time (custom type) and copy-paste the shortcode into any post/page.

5K 5 CVEs
Developer Profile

Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets Developer Profile

Theme Egg

5 plugins · 200 total installs

86
trust score
Avg Security Score
88/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/accordion-for-wp/public/assets/lib/css/font-awesome.min.css/wp-content/plugins/accordion-for-wp/admin/lib/css/fontawesome-iconpicker.min.css/wp-content/plugins/accordion-for-wp/admin/css/afwp-accordion-admin.css/wp-content/plugins/accordion-for-wp/public/assets/lib/js/jquery.min.js/wp-content/plugins/accordion-for-wp/admin/lib/js/fontawesome-iconpicker.min.js/wp-content/plugins/accordion-for-wp/admin/js/afwp-accordion-admin.js/wp-content/plugins/accordion-for-wp/public/assets/css/accordion.css/wp-content/plugins/accordion-for-wp/public/assets/js/accordion.js
Script Paths
/wp-content/plugins/accordion-for-wp/admin/lib/js/fontawesome-iconpicker.min.js/wp-content/plugins/accordion-for-wp/admin/js/afwp-accordion-admin.js/wp-content/plugins/accordion-for-wp/public/assets/js/accordion.js
Version Parameters
accordion-for-wp/admin/css/afwp-accordion-admin.css?ver=accordion-for-wp/admin/lib/js/fontawesome-iconpicker.min.js?ver=accordion-for-wp/admin/js/afwp-accordion-admin.js?ver=accordion-for-wp/public/assets/css/accordion.css?ver=accordion-for-wp/public/assets/js/accordion.js?ver=

HTML / DOM Fingerprints

CSS Classes
afwp-accordion-wrapafwp-section-titleafwp-single-sectionafwp-section-content
Data Attributes
data-iconpicker-id
Shortcode Output
[afwppage_accordion][afwppage_accordions]
FAQ

Frequently Asked Questions about Accordion for WordPress – Accordion, FAQ, Tabs Shortcode and Widgets