Does Attendra – Client Attendance Manager have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Attendra – Client Attendance Manager compatible with WordPress 6.9.4?

According to WordPress.org data, Attendra – Client Attendance Manager 1.3.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Attendra – Client Attendance Manager compatible with PHP 8.0+?

Attendra – Client Attendance Manager requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Attendra – Client Attendance Manager updated?

Attendra – Client Attendance Manager was last updated on Mar 22, 2026. Frequent updates are generally a positive security signal.

What is Attendra – Client Attendance Manager's security score?

Attendra – Client Attendance Manager has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Attendra – Client Attendance Manager Security & Risk Analysis

wordpress.org/plugins/attendra

Track client attendance, manage session allowances, and give clients their own portal, all inside WordPress. No SaaS fees.

0 active installs v1.3.2 PHP 8.0+ WP 6.0+ Updated Mar 22, 2026

attendanceclient-managementdashboardmembershipsessions

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Attendra – Client Attendance Manager Safe to Use in 2026?

Generally Safe

Score 100/100

Attendra – Client Attendance Manager has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'attendra' v1.3.2 plugin exhibits a generally strong security posture, with a significant number of capability checks and a high percentage of properly escaped outputs, indicating good development practices for handling user input and preventing cross-site scripting vulnerabilities. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests further contributes to its robustness. However, a notable concern arises from one unprotected AJAX handler. This presents a potential entry point for attackers to trigger plugin functionalities without proper authentication, which could lead to unintended actions or data exposure depending on the handler's implementation. The taint analysis showing flows with unsanitized paths, although not reaching critical or high severity, suggests a need for careful review of how data flows through the plugin to ensure all sensitive inputs are adequately sanitized. The plugin's vulnerability history is clean, with no recorded CVEs, which is a very positive sign suggesting a mature and well-maintained codebase. Overall, 'attendra' v1.3.2 is a relatively secure plugin, but the unprotected AJAX handler and potential unsanitized data flows warrant attention to fully mitigate risk.

Key Concerns

Unprotected AJAX handler found
Flows with unsanitized paths

Vulnerabilities

None known

Attendra – Client Attendance Manager Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Attendra – Client Attendance Manager Release Timeline

v1.3.2Current

Code Analysis

Analyzed Apr 16, 2026

Attendra – Client Attendance Manager Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1204 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped1223 total outputs

Data Flows · Security

7 unsanitized

Data Flow Analysis

11 flows7 with unsanitized paths

render_service_filter (includes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:577)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Attendra – Client Attendance Manager Attack Surface

Entry Points7

Unprotected1

AJAX Handlers 2

authwp_ajax_attendra_refresh_client_dependent_metaboxesincludes/Plugin.php:230

authwp_ajax_attendra_staff_portal_load_clientsincludes/Plugin.php:231

Shortcodes 5

[attendra_account_holder_login] includes/Frontend/Login/AccountHolderLoginShortcode.php:36

[attendra_client_dashboard] includes/Frontend/Shortcodes/AccountHolderDashboardShortcode.php:58

[attendra_account_holder_dashboard] includes/Frontend/Shortcodes/AccountHolderDashboardShortcode.php:59

[attendra_portal] includes/Frontend/Shortcodes/PortalShortcode.php:51

[attendra_public_calendar] includes/Frontend/Shortcodes/PublicCalendarShortcode.php:39

WordPress Hooks 54

filterplugin_row_metaattendra.php:64

actionadd_meta_boxesincludes/Admin/MetaBoxes/ClientAccountAccessMetaBox.php:43

actionsave_postincludes/Admin/MetaBoxes/ClientAccountAccessMetaBox.php:44

actionadmin_post_attendra_create_portal_userincludes/Admin/MetaBoxes/ClientAccountAccessMetaBox.php:45

actionadmin_post_attendra_link_portal_userincludes/Admin/MetaBoxes/ClientAccountAccessMetaBox.php:46

actionadmin_noticesincludes/Admin/MetaBoxes/ClientAccountAccessMetaBox.php:47

actionadd_meta_boxesincludes/Admin/MetaBoxes/ClientAccountHolderMetaBox.php:39

actionsave_postincludes/Admin/MetaBoxes/ClientAccountHolderMetaBox.php:40

actionadmin_noticesincludes/Admin/MetaBoxes/ClientAccountHolderMetaBox.php:41

actionadd_meta_boxesincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:68

actionsave_postincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:69

actionrestrict_manage_postsincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:70

actionpre_get_postsincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:71

filterbulk_actions-edit-attendra_clientincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:72

filterbulk_actions-edit-attendra_clientincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:73

actionload-edit.phpincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:74

actionadmin_noticesincludes/Admin/MetaBoxes/ClientAttendanceMetaBox.php:75

actionadd_meta_boxesincludes/Admin/MetaBoxes/ClientPackageMetaBox.php:84

actionsave_postincludes/Admin/MetaBoxes/ClientPackageMetaBox.php:85

actionadmin_noticesincludes/Admin/MetaBoxes/ClientPackageMetaBox.php:86

actionadd_meta_boxesincludes/Admin/MetaBoxes/ClientServiceMetaBox.php:62

actionsave_postincludes/Admin/MetaBoxes/ClientServiceMetaBox.php:63

actionadmin_noticesincludes/Admin/MetaBoxes/ClientServiceMetaBox.php:64

actionadd_meta_boxesincludes/Admin/MetaBoxes/ServiceScheduleMetaBox.php:64

actionsave_postincludes/Admin/MetaBoxes/ServiceScheduleMetaBox.php:65

actionadmin_noticesincludes/Admin/MetaBoxes/ServiceScheduleMetaBox.php:66

actionadmin_menuincludes/Admin/Onboarding/WelcomePage.php:51

actionadmin_initincludes/Admin/Onboarding/WelcomePage.php:52

actionadmin_initincludes/Admin/Onboarding/WelcomePage.php:53

actionadmin_menuincludes/Admin/Settings/SettingsPage.php:37

actionadmin_initincludes/Admin/Settings/SettingsPage.php:38

actionwp_login_failedincludes/Frontend/Login/AccountHolderLoginShortcode.php:37

actiontemplate_redirectincludes/Frontend/Login/AccountHolderLoginShortcode.php:38

actioninitincludes/Plugin.php:213

actioninitincludes/Plugin.php:214

actionadmin_initincludes/Plugin.php:215

actionload-post-new.phpincludes/Plugin.php:216

actionadd_meta_boxes_attendra_serviceincludes/Plugin.php:217

actionadd_meta_boxes_attendra_clientincludes/Plugin.php:218

filteradmin_body_classincludes/Plugin.php:219

actionadmin_menuincludes/Plugin.php:220

actionpre_get_postsincludes/Plugin.php:221

actionadmin_noticesincludes/Plugin.php:222

filtershow_admin_barincludes/Plugin.php:223

actionwp_loginincludes/Plugin.php:224

filterget_user_option_closedpostboxes_postincludes/Plugin.php:225

filterwp_insert_post_dataincludes/Plugin.php:226

filterwp_insert_post_dataincludes/Plugin.php:227

actionwp_enqueue_scriptsincludes/Plugin.php:228

actionadmin_enqueue_scriptsincludes/Plugin.php:229

actioninitincludes/PostTypes/BookingPostType.php:36

actioninitincludes/PostTypes/BookingPostType.php:37

actioninitincludes/PostTypes/ClientPostType.php:40

actioninitincludes/PostTypes/ServicePostType.php:37

Maintenance & Trust

Attendra – Client Attendance Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 22, 2026

PHP min version8.0

Downloads102

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Attendra – Client Attendance Manager Alternatives

SureDash – Community, Courses & Member Dashboard

suredash

Build a community right inside WordPress. Discussion spaces, courses, member profiles, and a beautiful dashboard — no coding needed.

1K 2 CVEs

UserFlow – Disable Dashboard Access for Non Admin

admin-only-dashboard

100

UserFlow: Only admins can access the dashboard by default. Whitelist trusted users easily, quick setup, and secure.

10 No CVEs

ClientHub

clienthub

100

Professional client management hub with customizable dashboards, project tracking, and secure customer portal for WordPress.

10 No CVEs

Martial Arts Club Manager

martial-arts-club-manager

100

Complete management system for martial arts clubs including member management, class scheduling, and attendance tracking. Requires WooCommerce.

0 No CVEs

MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy)

google-analytics-for-wordpress

The best free Google Analytics plugin for WordPress. See how visitors find and use your website so you can grow your business with powerful analytics.

2.0M 11 CVEs

Developer Profile

Attendra – Client Attendance Manager Developer Profile

Duna Paul

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Attendra – Client Attendance Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/attendra/assets/css/backend/settings.css/wp-content/plugins/attendra/assets/css/frontend/public-calendar.css/wp-content/plugins/attendra/assets/js/frontend/public-calendar.js/wp-content/plugins/attendra/assets/js/backend/settings.js/wp-content/plugins/attendra/assets/css/frontend/ui-credit.css/wp-content/plugins/attendra/assets/css/frontend/public-calendar-nav.css/wp-content/plugins/attendra/assets/js/frontend/public-calendar-nav.js

Script Paths

/wp-content/plugins/attendra/assets/js/frontend/public-calendar.js/wp-content/plugins/attendra/assets/js/frontend/public-calendar-nav.js/wp-content/plugins/attendra/assets/js/backend/settings.js

Version Parameters

attendra/assets/css/backend/settings.css?ver=attendra/assets/css/frontend/public-calendar.css?ver=attendra/assets/js/frontend/public-calendar.js?ver=attendra/assets/js/backend/settings.js?ver=attendra/assets/css/frontend/ui-credit.css?ver=attendra/assets/css/frontend/public-calendar-nav.css?ver=attendra/assets/js/frontend/public-calendar-nav.js?ver=

HTML / DOM Fingerprints

CSS Classes

sd-public-calendarsd-public-calendar-nav

HTML Comments

Data Attributes

data-attendra-calendar-include-inactivedata-attendra-calendar-hide-services-without-scheduledata-attendra-calendar-show-one-timedata-attendra-calendar-show-fixed-weeklydata-attendra-calendar-show-flexibledata-attendra-calendar-label-style+2 more

JS Globals

window.sdCalendar

Shortcode Output

[attendra_public_calendar]

FAQ