Stagent Security & Risk Analysis

wordpress.org/plugins/stagent

Stagent is a lightweight WordPress plugin to display bookings from Stagent on your website using a simple shortcode.

0 active installs v0.2.5 PHP 7.0+ WP 5.0+ Updated Apr 1, 2025
artistsbookingsdjseventsstagent
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is Stagent Safe to Use in 2026?

Generally Safe

Score 92/100

Stagent has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "stagent" plugin v0.2.5 demonstrates a strong security posture based on the static analysis. It effectively utilizes prepared statements for all SQL queries and ensures all output is properly escaped, indicating robust defense against common injection and cross-site scripting (XSS) vulnerabilities. The presence of nonce and capability checks on all identified AJAX entry points further mitigates risks associated with unauthorized actions. The absence of any recorded vulnerabilities in its history suggests a proactive approach to security or a lack of prior exploitation, which is a positive indicator.

Vulnerabilities
None known

Stagent Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Stagent Release Timeline

v0.2.5Current
v0.2.4
Code Analysis
Analyzed Mar 17, 2026

Stagent Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
0
107 escaped
Nonce Checks
3
Capability Checks
3
File Operations
0
External Requests
2
Bundled Libraries
0

SQL Query Safety

100% prepared4 total queries

Output Escaping

100% escaped107 total outputs
Attack Surface

Stagent Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 3

authwp_ajax_stagent_fetch_artistsincludes\class-stagent-api.php:23
authwp_ajax_stagent_load_moreincludes\class-stagent-shortcodes.php:40
noprivwp_ajax_stagent_load_moreincludes\class-stagent-shortcodes.php:41

Shortcodes 1

[stagent_bookings] includes\class-stagent-shortcodes.php:39
WordPress Hooks 12
actionwp_footerincludes\class-stagent-frontend.php:23
filterscript_loader_tagincludes\class-stagent-frontend.php:44
actionadmin_initincludes\class-stagent-settings.php:39
actionadmin_menuincludes\class-stagent-settings.php:40
actionadmin_initincludes\class-stagent-settings.php:41
actionupdate_option_stagent_api_keyincludes\class-stagent-settings.php:42
actionadmin_noticesincludes\class-stagent-settings.php:43
actionadmin_noticesincludes\class-stagent-settings.php:44
actionadmin_enqueue_scriptsincludes\class-stagent-settings.php:45
actionwp_enqueue_scriptsstagent.php:47
actionadmin_enqueue_scriptsstagent.php:64
actionplugins_loadedstagent.php:77
Maintenance & Trust

Stagent Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedApr 1, 2025
PHP min version7.0
Downloads479

Community Trust

Rating0/100
Number of ratings0
Active installs0
Developer Profile

Stagent Developer Profile

stagent

1 plugin · 0 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Stagent

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/stagent/assets/css/stagent.css/wp-content/plugins/stagent/assets/js/stagent.js/wp-content/plugins/stagent/assets/js/stagent-admin.js
Script Paths
assets/css/stagent.cssassets/js/stagent.jsassets/js/stagent-admin.js
Version Parameters
stagent/assets/css/stagent.css?ver=stagent/assets/js/stagent.js?ver=stagent/assets/js/stagent-admin.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-stagent-api-keydata-stagent-team-iddata-stagent-show-pastdata-stagent-show-canceleddata-stagent-show-flagdata-stagent-dark-mode
JS Globals
stagentData
FAQ

Frequently Asked Questions about Stagent