Dailymile Widgets Security & Risk Analysis
wordpress.org/plugins/dailymile-widgetsShare your latest workout with Dailymile widgets in your WordPress sidebar. Widgets are cached so your pages load faster.
Is Dailymile Widgets Safe to Use in 2026?
Generally Safe
Score 85/100Dailymile Widgets has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The dailymile-widgets v1.2 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by not having any known CVEs and its SQL queries are all prepared statements. There are also no file operations or bundled libraries, which reduces potential attack vectors. However, there are significant concerns regarding output escaping and the use of a dangerous function. The low percentage of properly escaped outputs suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities. Furthermore, the presence of `create_function`, a deprecated and often insecure function, introduces a potential for arbitrary code execution if it's used in a context that can be influenced by user input. The lack of any recorded vulnerabilities historically is a positive sign, but it doesn't negate the risks identified in the current static analysis.
Key Concerns
- Low percentage of properly escaped outputs
- Dangerous function 'create_function' detected
- No capability checks detected
- No nonce checks detected
Dailymile Widgets Security Vulnerabilities
Dailymile Widgets Code Analysis
Dangerous Functions Found
Output Escaping
Dailymile Widgets Attack Surface
WordPress Hooks 2
Maintenance & Trust
Dailymile Widgets Maintenance & Trust
Maintenance Signals
Community Trust
Dailymile Widgets Alternatives
WM Workout Manager
wm-workout-manager
A lightweight plugin to manage and display workout plans and exercises with shortcodes and customizable templates.
AldoOne-Workout
aldoone-workout
A responsive and simple way to display your workouts. Create new workouts, add exercises, descriptions, video links and copy-paste the shortcode into …
Flogger
flogger
Tag your posts with the exercises you did that day, including how much (e.g. steps, minutes, reps, etc.)
Runtastic Widget
runtastic-widget
Das ist die erste Version meines Runtastic Widgets. Achtung - das Widget ist aktuell ohne Funktion und eine Weiterentwicklung ist ungewiss.
Simply Strava
simply-strava
A simple Strava widget for Wordpress
Dailymile Widgets Developer Profile
1 plugin · 10 total installs
How We Detect Dailymile Widgets
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/dailymile-widgets/dailymile-wp-addons.csshttp://www.dailymile.com/people/%s/training/widget.jshttp://www.dailymile.com/people/%s/events/widget.jshttp://www.dailymile.com/people/%s/widgets/distance/large.jshttp://www.dailymile.com/people/%s/widgets/distance/mini.jshttp://www.dailymile.com/people/%s/widgets/food/donuts.jshttp://www.dailymile.com/people/%s/widgets/food/burgers.jsHTML / DOM Fingerprints
dailymile-widget-training<!-- Dailymile API error. (WP_ERROR: --><!-- Dailymile API error. ($entry_decoded->at not found) -->data-dm-usernamedata-dm-widget/api.dailymile.com/entries/