Does Attributes Table have any unpatched vulnerabilities?

No. All known vulnerabilities in Attributes Table have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Attributes Table compatible with WordPress 6.9.4?

According to WordPress.org data, Attributes Table 1.2.14 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Attributes Table updated?

Attributes Table was last updated on Dec 3, 2025. Frequent updates are generally a positive security signal.

What is Attributes Table's security score?

Attributes Table has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Attributes Table Security & Risk Analysis

wordpress.org/plugins/attributes-table

Adds attributes or features table for posts, pages or other selected post type. Fully integrated with Catalog X.

200 active installs v1.2.14 PHP + WP 3.7+ Updated Dec 3, 2025

attributesdatafeaturestablevariations

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Attributes Table Safe to Use in 2026?

Generally Safe

Score 100/100

Attributes Table has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The "attributes-table" plugin v1.2.14 demonstrates a generally positive security posture, with no known past vulnerabilities or critical static analysis findings. The code exhibits strong adherence to secure coding practices, particularly evident in the use of prepared statements for all SQL queries and the presence of capability checks and nonce checks, which are crucial for securing WordPress actions. The absence of external HTTP requests and file operations further reduces the potential attack surface.

However, a significant concern arises from the presence of the `unserialize` function without explicit sanitization indicated in the static analysis. This function can be a gateway to Remote Code Execution (RCE) vulnerabilities if an attacker can control the data being unserialized. While the taint analysis reported no flows, this could be due to the limited scope of the analysis or the specific implementation not triggering the taint engine. The plugin also has a notable percentage of improperly escaped outputs, which, while not critical in this analysis, can lead to Cross-Site Scripting (XSS) vulnerabilities in certain contexts.

The plugin's history of zero recorded vulnerabilities is a positive indicator of its development quality. However, the identified risk with `unserialize` and the percentage of unescaped output suggest that vigilance is still required. Overall, the plugin is built on a foundation of good security practices, but the potential for issues related to deserialization and output escaping warrants careful consideration.

Key Concerns

Use of unserialize function
Significant percentage of unescaped output

Vulnerabilities

None known

Attributes Table Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Attributes Table Code Analysis

Dangerous Functions

Raw SQL Queries

11 prepared

Unescaped Output

48 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$unserialized = unserialize( $attribute );modules\attributes\product-attributes.php:513

SQL Query Safety

100% prepared11 total queries

Output Escaping

49% escaped97 total outputs

Attack Surface

Attributes Table Attack Surface

Entry Points3

Unprotected0

Shortcodes 3

[product_attributes] modules\attributes\attributes-shortcodes.php:15

[catalog_comparison] modules\attributes\comparison.php:22

[attributes_table] sep\functions.php:78

WordPress Hooks 49

actionecommerce-prodct-catalog-addonsattributes-table.php:24

actionafter_setup_themeattributes-table.php:25

actionic_set_product_filtersmodules\attributes\attribute-filters.php:19

actionapply_product_filtersmodules\attributes\attribute-filters.php:20

actionic_size_filtersmodules\attributes\attribute-filters.php:21

filtershortcode_querymodules\attributes\attribute-filters.php:23

filterhome_product_listing_querymodules\attributes\attribute-filters.php:24

actionafter_product_detailsmodules\attributes\attributes-functions.php:15

actionproduct_detailsmodules\attributes\attributes-functions.php:256

actionproduct_detailsmodules\attributes\attributes-functions.php:271

actionclassic_grid_product_listing_element_insidemodules\attributes\attributes-functions.php:286

actionclassic_list_entry_bottommodules\attributes\attributes-functions.php:287

actionmodern_grid_entry_insidemodules\attributes\attributes-functions.php:288

actionadd_product_metaboxesmodules\attributes\attributes-meta.php:14

filterproduct_meta_savemodules\attributes\attributes-meta.php:129

filteractive_product_filtersmodules\attributes\attributes-meta.php:199

filterproduct_details_box_visiblemodules\attributes\attributes-meta.php:210

filteradmin_product_detailsmodules\attributes\attributes-meta.php:287

filteradmin_product_detailsmodules\attributes\attributes-meta.php:334

filteric_default_single_namesmodules\attributes\attributes-meta.php:357

actionsingle_names_tablemodules\attributes\attributes-meta.php:369

actionsettings-menumodules\attributes\attributes-settings.php:15

actionproduct-settings-listmodules\attributes\attributes-settings.php:41

actiongeneral_settingsmodules\attributes\attributes-settings.php:201

actionmodern_grid_additional_settingsmodules\attributes\attributes-settings.php:278

actionclassic_list_additional_settingsmodules\attributes\attributes-settings.php:279

actionclassic_grid_additional_settingsmodules\attributes\attributes-settings.php:280

filteric_default_single_namesmodules\attributes\attributes-settings.php:377

filteric_default_single_namesmodules\attributes\attributes-settings.php:382

actionattributes-settingsmodules\attributes\comparison.php:18

actionproduct_detailsmodules\attributes\comparison.php:19

actionproduct-settings-listmodules\attributes\comparison.php:20

filterthe_contentmodules\attributes\comparison.php:21

filterpll_copy_post_metasmodules\attributes\ext\polylang.php:14

filterwpml_config_arraymodules\attributes\ext\polylang.php:31

actioninitmodules\attributes\product-attributes.php:15

actionproduct_meta_save_updatemodules\attributes\product-attributes.php:100

actionic_scheduled_attributes_clearmodules\attributes\product-attributes.php:178

actionic_scheduled_attributes_assignmentmodules\attributes\product-attributes.php:216

actionic_system_toolsmodules\attributes\product-attributes.php:306

filterwp_unique_term_slugmodules\attributes\product-attributes.php:610

actionadd_meta_boxessep\attributes-register.php:16

actionpost_updatedsep\attributes-register.php:38

filteric_attributes_register_post_typessep\attributes-register.php:89

filterthe_contentsep\functions.php:107

actionadmin_enqueue_scriptssep\functions.php:134

actionadmin_menusep\settings.php:16

actionadmin_initsep\settings.php:25

actionproduct_attributes_edit_singlesep\settings.php:109

Scheduled Events 4

ic_scheduled_attributes_clear

ic_scheduled_attributes_assignment

Maintenance & Trust

Attributes Table Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 3, 2025

PHP min version

Downloads18K

Community Trust

Rating100/100

Number of ratings1

Active installs200

Alternatives

Attributes Table Alternatives

Ninja Tables – Easy Data Table Builder

ninja-tables

Best WordPress table builder plugin packed with versatile features to create fully responsive data tables of any kind.

80K 11 CVEs

wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin

wpdatatables

The best WordPress table plugin. Create responsive, and searchable tables and charts from Excel (.xlsx, .xls or .ods), CSV, XML, JSON, and PHP.

70K 18 CVEs

WP-DBManager

wp-dbmanager

Manages your WordPress database.

60K 5 CVEs

Data Tables Generator by Supsystic

data-tables-generator-by-supsystic

Create data tables with charts and graphs. Custom design, navigation, searching and ordering functions. Export to PDF, CSV, Print. Excel spreadsheet.

20K 8 CVEs

Plugins Garbage Collector (Database Cleanup)

plugins-garbage-collector

Find unused database tables from deactivated or deleted plugins. You can delete unused database tables to reduce database volume and enhance site perf …

10K No CVEs

Developer Profile

Attributes Table Developer Profile

impleCode

7 plugins · 11K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

312 days

View full developer profile

Detection Fingerprints

How We Detect Attributes Table

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/attributes-table/sep/js/functions.js/wp-content/plugins/attributes-table/sep/css/admin.css/wp-content/plugins/attributes-table/sep/css/product-page.css/wp-content/plugins/attributes-table/modules/attributes/js/admin.js/wp-content/plugins/attributes-table/modules/attributes/css/admin.css/wp-content/plugins/attributes-table/modules/attributes/css/product-page.css

Script Paths

/wp-content/plugins/attributes-table/sep/js/functions.js/wp-content/plugins/attributes-table/modules/attributes/js/admin.js

Version Parameters

attributes-table/sep/css/admin.css?ver=attributes-table/sep/css/product-page.css?ver=attributes-table/sep/js/functions.js?ver=attributes-table/modules/attributes/css/admin.css?ver=attributes-table/modules/attributes/css/product-page.css?ver=attributes-table/modules/attributes/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

ic-comparison-table-containeric-comparison-tableic-attributes-table-wrap

HTML Comments

+1 more

Data Attributes

data-ic-product-iddata-ic-attributes-table-iddata-ic-target

JS Globals

ic_attributes_params

Shortcode Output

[attributes_table][product_attributes][catalog_comparison]

FAQ