Does AldoOne-Workout have any unpatched vulnerabilities?

No. All known vulnerabilities in AldoOne-Workout have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AldoOne-Workout compatible with WordPress 4.2.39?

According to WordPress.org data, AldoOne-Workout 1.0 has been tested up to WordPress 4.2.39. Check the plugin's changelog for the latest compatibility information.

How often is AldoOne-Workout updated?

AldoOne-Workout was last updated on Unknown. Frequent updates are generally a positive security signal.

What is AldoOne-Workout's security score?

AldoOne-Workout has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AldoOne-Workout Security & Risk Analysis

wordpress.org/plugins/aldoone-workout

A responsive and simple way to display your workouts. Create new workouts, add exercises, descriptions, video links and copy-paste the shortcode into …

10 active installs v1.0 PHP + WP + Updated Unknown

aldooneexercisefitnesssportworkout

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is AldoOne-Workout Safe to Use in 2026?

Generally Safe

Score 100/100

AldoOne-Workout has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The 'aldoone-workout' plugin v1.0 exhibits a generally good security posture based on the static analysis provided. The absence of any known CVEs and a clean vulnerability history is a significant strength, suggesting the developers have a good understanding of secure coding practices. The plugin also demonstrates strong adherence to core WordPress security features, with the presence of nonce and capability checks. Furthermore, the complete avoidance of dangerous functions, raw SQL queries, and file operations are all positive indicators. However, a notable concern is the low percentage of properly escaped output. With only 10% of 51 outputs being properly escaped, there is a significant risk of Cross-Site Scripting (XSS) vulnerabilities, especially if any of these unescaped outputs are rendered in the browser. The limited attack surface and taint analysis results are promising, but the output escaping issue presents a clear and present danger that should be addressed.

Key Concerns

Low percentage of properly escaped output

Vulnerabilities

None known

AldoOne-Workout Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

AldoOne-Workout Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

Output Escaping

10% escaped51 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

save (meta-box-class\my-meta-box-class.php:969)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

AldoOne-Workout Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 10

actionwp_enqueue_scriptsaldoOne_workout.php:12

actionthe_contentaldoOne_workout_overview.php:50

actioninitaldoOne_workout_posttype.php:3

actionthe_contentaldoOne_workout_view.php:2

filterinitmeta-box-class\my-meta-box-class.php:116

actionadd_meta_boxesmeta-box-class\my-meta-box-class.php:137

actionsave_postmeta-box-class\my-meta-box-class.php:139

actionadmin_print_stylesmeta-box-class\my-meta-box-class.php:142

filterwp_handle_upload_prefiltermeta-box-class\my-meta-box-class.php:144

actionpost_edit_form_tagmeta-box-class\my-meta-box-class.php:221

Maintenance & Trust

AldoOne-Workout Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39

Last updatedUnknown

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

AldoOne-Workout Alternatives

WM Workout Manager

wm-workout-manager

100

A lightweight plugin to manage and display workout plans and exercises with shortcodes and customizable templates.

20 No CVEs

Garmin Connect

garmin-connect

Provides a widget for displaying latest activities from Garmin Connect on your site

20 No CVEs

Dailymile Widgets

dailymile-widgets

Share your latest workout with Dailymile widgets in your WordPress sidebar. Widgets are cached so your pages load faster.

10 No CVEs

Flogger

flogger

Tag your posts with the exercises you did that day, including how much (e.g. steps, minutes, reps, etc.)

10 No CVEs

SportsPress – Sports Club & League Manager

sportspress

SportsPress is an extendable all-in-one sports data plugin that helps sports clubs set up and manage a league or club site quickly and easily.

10K 6 CVEs

Developer Profile

AldoOne-Workout Developer Profile

Alaettin

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AldoOne-Workout

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/aldoone-workout/assets/css/bootstrap.min.css

HTML / DOM Fingerprints

CSS Classes

bootstrap

Data Attributes

enctype="multipart/form-data"encoding="multipart/form-data"

JS Globals

AT_Meta_Box

FAQ