Does EventAgent.ai have any unpatched vulnerabilities?

No. All known vulnerabilities in EventAgent.ai have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is EventAgent.ai compatible with PHP 8.0+?

EventAgent.ai requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is EventAgent.ai updated?

EventAgent.ai was last updated on Feb 26, 2026. Frequent updates are generally a positive security signal.

What is EventAgent.ai's security score?

EventAgent.ai has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

EventAgent.ai Security & Risk Analysis

wordpress.org/plugins/event-agent

EventAgent.ai is the fully online native platform for virtual classes, retreats, concerts, drop-in events and certificate programs.

10 active installs v5.1.7 PHP 8.0+ WP 6.0+ Updated Feb 26, 2026

online-certificate-programsonline-coursesonline-retreatsonline-workshopsvirtual-events

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is EventAgent.ai Safe to Use in 2026?

Generally Safe

Score 100/100

EventAgent.ai has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The event-agent plugin v5.1.7 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and has no recorded vulnerabilities or CVEs. The taint analysis also shows no critical or high-severity issues, suggesting that the core data handling might be relatively secure. However, there are notable concerns regarding its attack surface and output sanitization. The presence of one unprotected AJAX handler presents a potential entry point for attackers to exploit if not properly secured by other means. Furthermore, the relatively low percentage of properly escaped output (44%) indicates a significant risk of cross-site scripting (XSS) vulnerabilities in the plugin's frontend or administrative interfaces. The lack of nonce checks on the AJAX handler is a significant oversight, as it leaves it open to CSRF attacks.

Key Concerns

Unprotected AJAX handler
Low percentage of properly escaped output
Missing nonce check on AJAX handler

Vulnerabilities

None known

EventAgent.ai Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

EventAgent.ai Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

17 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

LodashStripe PHP

SQL Query Safety

100% prepared1 total queries

Output Escaping

44% escaped39 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<calendar> (public\partials\calendar.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

EventAgent.ai Attack Surface

Entry Points7

Unprotected1

AJAX Handlers 1

authwp_ajax_ea_rekeyincludes\Event_Agent.php:104

Shortcodes 6

[ea_speaker] admin\Event_Agent_Admin.php:121

[ea_venue] admin\Event_Agent_Admin.php:122

[ea_event] admin\Event_Agent_Admin.php:123

[ea_registration] admin\Event_Agent_Admin.php:124

[ea_checkin] admin\Event_Agent_Admin.php:125

[ea_firsttimefree] admin\Event_Agent_Admin.php:126

WordPress Hooks 14

actionplugins_loadedincludes\Event_Agent.php:81

actionadmin_enqueue_scriptsincludes\Event_Agent.php:96

actionadmin_enqueue_scriptsincludes\Event_Agent.php:97

actionadmin_menuincludes\Event_Agent.php:98

actioninitincludes\Event_Agent.php:99

actionsave_postincludes\Event_Agent.php:100

actionuser_registerincludes\Event_Agent.php:101

actionprofile_updateincludes\Event_Agent.php:102

actiondelete_userincludes\Event_Agent.php:103

actionwp_enqueue_scriptsincludes\Event_Agent.php:119

actionwp_enqueue_scriptsincludes\Event_Agent.php:120

actioninitincludes\Event_Agent.php:121

actionwp_headincludes\Event_Agent.php:122

filterquery_varsincludes\Event_Agent.php:123

Maintenance & Trust

EventAgent.ai Maintenance & Trust

Maintenance Signals

WordPress version tested

Last updatedFeb 26, 2026

PHP min version8.0

Downloads7K

Community Trust

Rating100/100

Number of ratings14

Active installs10

Alternatives

EventAgent.ai Alternatives

Sensei LMS – Online Courses, Quizzes, & Learning

sensei-lms

Create beautiful and engaging online courses, lessons, and quizzes.

10K 7 CVEs

Design Upgrade for LearnDash

design-upgrade-learndash

Instantly improve LearnDash's design -- focus mode, course content, profile page, course navigation & course grid -- to more closely match yo …

7K No CVEs

EventON – Events Calendar

eventon-lite

Create beautiful, responsive event calendars with unlimited events, repeating schedules, virtual support, and a sleek minimal design!

6K 12 CVEs

Widget Areas for LearnDash

widget-areas-learndash

100

Add unlimited blocks/widgets to several areas of LearnDash Focus Mode, plus course & group pages.

700 No CVEs

WP Courses LMS – Online Courses Builder, eLearning Courses, Courses Solution, Education Courses

wp-courses

WP Courses LMS - Create Courses, Lessons, Quizzes, Profiles and more. Online Courses Builder, eLearning Courses, Courses Solution, Education Courses.

600 7 CVEs

Developer Profile

EventAgent.ai Developer Profile

aldeng

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect EventAgent.ai

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/event-agent/lib/bootstrap/dist/css/bootstrap.min.css/wp-content/plugins/event-agent/lib/element-ui/lib/theme-chalk/index.css/wp-content/plugins/event-agent/lib/fullcalendar/main.min.css/wp-content/plugins/event-agent/lib/fullcalendar/daygrid/main.min.css/wp-content/plugins/event-agent/lib/fullcalendar/timegrid/main.min.css/wp-content/plugins/event-agent/admin/css/event-agent-admin.css/wp-content/plugins/event-agent/lib/axios/dist/axios.min.js/wp-content/plugins/event-agent/lib/vue/dist/vue.min.js+19 more

Script Paths

/wp-content/plugins/event-agent/admin/js/utilities.js/wp-content/plugins/event-agent/admin/js/components.js/wp-content/plugins/event-agent/admin/js/events-vue.js/wp-content/plugins/event-agent/admin/js/config-vue.js/wp-content/plugins/event-agent/admin/js/createKeys-vue.js

Version Parameters

event-agent/css/event-agent-admin.css?ver=event-agent/js/utilities.js?ver=event-agent/js/components.js?ver=event-agent/js/events-vue.js?ver=event-agent/js/config-vue.js?ver=event-agent/js/createKeys-vue.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-ea-key

JS Globals

wpDatawpRegistrars

FAQ