Does Know – Events have any unpatched vulnerabilities?

No. All known vulnerabilities in Know – Events have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Know – Events compatible with WordPress 5.3.21?

According to WordPress.org data, Know – Events 1.2.0 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

Is Know – Events compatible with PHP 5.2.4+?

Know – Events requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Know – Events updated?

Know – Events was last updated on Feb 19, 2020. Frequent updates are generally a positive security signal.

What is Know – Events's security score?

Know – Events has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Know – Events Security & Risk Analysis

wordpress.org/plugins/know-co-app-integration-events

Create a client portal for your Events clients.

0 active installs v1.2.0 PHP 5.2.4+ WP 4.6+ Updated Feb 19, 2020

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Know – Events Safe to Use in 2026?

Generally Safe

Score 85/100

Know – Events has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "know-co-app-integration-events" plugin v1.2.0 exhibits a significant security concern due to its large attack surface of AJAX handlers, all of which lack authentication checks. While the code analysis shows a lack of dangerous functions, no SQL queries with prepared statements, and no file operations or external HTTP requests, the absence of nonce and capability checks on a substantial number of AJAX endpoints is a critical weakness. This means any authenticated user, potentially even with minimal privileges, could trigger these AJAX actions, leading to unintended behavior or exploitation if combined with other vulnerabilities. The taint analysis revealing a flow with an unsanitized path, despite being rated as low severity, further exacerbates this concern as it suggests a potential pathway for malicious input to be processed without proper sanitization. The plugin's history of zero known vulnerabilities is positive but does not mitigate the identified risks in the current version's code. Overall, while the plugin avoids common pitfalls like raw SQL or unescaped output, the unprotected AJAX endpoints present a substantial security risk that requires immediate attention.

Key Concerns

AJAX handlers without authentication checks
Unsanitized path in taint analysis
No nonce checks on AJAX handlers
No capability checks on AJAX handlers

Vulnerabilities

None known

Know – Events Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Know – Events Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

20 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

71% escaped28 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<index> (index.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

16 unprotected

Know – Events Attack Surface

Entry Points17

Unprotected16

AJAX Handlers 16

noprivwp_ajax_know__events__custom_login_initindex.php:342

authwp_ajax_know__events__custom_login_initindex.php:343

noprivwp_ajax_know__events__custom_login_authindex.php:363

authwp_ajax_know__events__custom_login_authindex.php:364

noprivwp_ajax_know__events__custom_event_detailsindex.php:405

authwp_ajax_know__events__custom_event_detailsindex.php:406

noprivwp_ajax_know__events__payment_initindex.php:439

authwp_ajax_know__events__payment_initindex.php:440

noprivwp_ajax_know__events__payment_confirmation_initindex.php:467

authwp_ajax_know__events__payment_confirmation_initindex.php:468

noprivwp_ajax_know__events__payment_processindex.php:492

authwp_ajax_know__events__payment_processindex.php:493

noprivwp_ajax_know__events__payment_processed_controllerindex.php:537

authwp_ajax_know__events__payment_processed_controllerindex.php:538

noprivwp_ajax_know__events__logoutindex.php:554

authwp_ajax_know__events__logoutindex.php:555

Shortcodes 1

[know--events--portal] index.php:252

WordPress Hooks 4

actionwp_headindex.php:14

actionadmin_initindex.php:23

actionadmin_menuindex.php:40

actionwp_enqueue_scriptsindex.php:195

Maintenance & Trust

Know – Events Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedFeb 19, 2020

PHP min version5.2.4

Downloads977

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Know – Events Alternatives

No alternatives data available yet.

Developer Profile

Know – Events Developer Profile

brandonpadula

2 plugins · 10 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Know – Events

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/know-co-app-integration-events/js/components/angular-mask.js

HTML / DOM Fingerprints

CSS Classes

know--containerknow--input

Data Attributes

id="know__events__button_classes"name="know__events__button_classes"id="know__events__button_styles"name="know__events__button_styles"id="know__events__alert_container_classes"name="know__events__alert_container_classes"+14 more

JS Globals

var ajaxurl

Shortcode Output

[know--events--portal]

FAQ