WP-Safety

TrainingPress Security & Risk Analysis

wordpress.org/plugins/trainingpress

TrainingPress Plugin can be used to easily create & sell courses online. Each course curriculum can be made with modules, chapters and exercises.

0 active installs v1.0.2 PHP + WP 4.0+ Updated Aug 22, 2024
online-trainingcoursese-learningtraining
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is TrainingPress Safe to Use in 2026?

Generally Safe

Score 92/100

TrainingPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The 'trainingpress' v1.0.2 plugin exhibits a mixed security posture. While it shows strength in avoiding known CVEs and using prepared statements for most SQL queries, significant concerns arise from its static analysis. The plugin has a considerable attack surface, with 3 out of 5 entry points lacking authentication checks. This is a major security weakness that could allow unauthenticated users to trigger plugin functionalities. Furthermore, the taint analysis reveals a high number of flows with unsanitized paths (15 out of 17 analyzed), with 10 of these identified as high severity. This indicates a strong potential for cross-site scripting (XSS) or other injection vulnerabilities, particularly given the low percentage of properly escaped output (26%). The absence of recorded vulnerabilities in its history might suggest a lack of active exploitation or discovery, rather than inherent security. However, the static analysis findings, especially the unprotected AJAX handlers and high-severity unsanitized taint flows, present a tangible risk that needs immediate attention. The bundled DataTables and an older version of jQuery also represent potential vulnerabilities if not properly managed or updated.

Key Concerns

  • Unprotected AJAX handlers
  • High number of unsanitized taint flows (high severity)
  • Low percentage of properly escaped output
  • Bundled outdated jQuery library
Vulnerabilities
None known

TrainingPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

TrainingPress Code Analysis

Dangerous Functions
0
Raw SQL Queries
28
146 prepared
Unescaped Output
391
136 escaped
Nonce Checks
9
Capability Checks
10
File Operations
2
External Requests
0
Bundled Libraries
2

Bundled Libraries

DataTablesjQuery2.1.1

SQL Query Safety

84% prepared174 total queries

Output Escaping

26% escaped527 total outputs
Data Flows
15 unsanitized

Data Flow Analysis

17 flows15 with unsanitized paths
wpl_top_show_breadcrumbs (admin\class-rdtr-admin.php:1717)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
3 unprotected

TrainingPress Attack Surface

Entry Points5
Unprotected3

AJAX Handlers 3

authwp_ajax_rd_wpl_training_libraryincludes\class-rdtr.php:164
authwp_ajax_wpl_training_public_handlerincludes\class-rdtr.php:310
noprivwp_ajax_wpl_training_public_handlerincludes\class-rdtr.php:311

Shortcodes 2

[training-courses] includes\class-rdtr.php:313
[training-my-course] includes\class-rdtr.php:315
WordPress Hooks 51
actionplugins_loadedincludes\class-rdtr.php:140
actionpre_get_postsincludes\class-rdtr.php:154
actionadmin_enqueue_scriptsincludes\class-rdtr.php:156
actionadmin_enqueue_scriptsincludes\class-rdtr.php:157
actionadmin_menuincludes\class-rdtr.php:159
actioninitincludes\class-rdtr.php:162
filterparse_queryincludes\class-rdtr.php:167
filterparse_queryincludes\class-rdtr.php:170
filterparse_queryincludes\class-rdtr.php:173
filterparse_queryincludes\class-rdtr.php:176
actionrestrict_manage_postsincludes\class-rdtr.php:179
filterviews_edit-modulesincludes\class-rdtr.php:184
filterviews_edit-chaptersincludes\class-rdtr.php:186
filterviews_edit-exercisesincludes\class-rdtr.php:188
actionsave_postincludes\class-rdtr.php:191
actionsave_postincludes\class-rdtr.php:194
actionsave_postincludes\class-rdtr.php:197
actionsave_postincludes\class-rdtr.php:200
actionsave_postincludes\class-rdtr.php:203
actionsave_postincludes\class-rdtr.php:206
actionsave_postincludes\class-rdtr.php:209
actionsave_postincludes\class-rdtr.php:212
actionsave_postincludes\class-rdtr.php:215
actionsave_postincludes\class-rdtr.php:218
actionadd_meta_boxesincludes\class-rdtr.php:221
actionparent_fileincludes\class-rdtr.php:224
actionwp_print_scriptsincludes\class-rdtr.php:229
filtermanage_edit-modules_sortable_columnsincludes\class-rdtr.php:232
filtermanage_exercises_posts_columnsincludes\class-rdtr.php:235
filtermanage_chapters_posts_columnsincludes\class-rdtr.php:238
filtermanage_training_posts_columnsincludes\class-rdtr.php:241
filtermanage_modules_posts_columnsincludes\class-rdtr.php:244
actionmanage_training_posts_custom_columnincludes\class-rdtr.php:247
actionmanage_modules_posts_custom_columnincludes\class-rdtr.php:250
actionmanage_chapters_posts_custom_columnincludes\class-rdtr.php:253
actionmanage_exercises_posts_custom_columnincludes\class-rdtr.php:256
filterposts_orderbyincludes\class-rdtr.php:264
actioncomment_form_logged_in_afterincludes\class-rdtr.php:267
actioncomment_form_after_fieldsincludes\class-rdtr.php:268
actioncomment_postincludes\class-rdtr.php:271
filterpreprocess_commentincludes\class-rdtr.php:274
filtercomment_textincludes\class-rdtr.php:277
filterthe_contentincludes\class-rdtr.php:280
actionadmin_bar_menuincludes\class-rdtr.php:282
actionadmin_noticesincludes\class-rdtr.php:284
actioninitincludes\class-rdtr.php:287
actionpre_get_postsincludes\class-rdtr.php:289
actionwp_enqueue_scriptsincludes\class-rdtr.php:304
actionwp_enqueue_scriptsincludes\class-rdtr.php:305
filtertemplate_includeincludes\class-rdtr.php:308
actioninitrdtr.php:68
Maintenance & Trust

TrainingPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedAug 22, 2024
PHP min version
Downloads2K

Community Trust

Rating100/100
Number of ratings1
Active installs0
Alternatives

TrainingPress Alternatives

Training – Courses

Training – Courses

training

B
77

This Training Plugin can be used to easily create courses online. Each course curriculum can be made with modules, lessons and exercises.

20 1 unpatched
Perception LMS

Perception LMS

ps-lms

A
85

PS LMS is a full-featured, free LMS that integrates easily with any theme.

0 No CVEs
SkillTriks

SkillTriks

skilltriks

A
100

Transform your WordPress site into a dynamic Learning Management System (LMS) using our innovative WordPress LMS Plugin.

0 No CVEs
SkillTriks Theme Pack

SkillTriks Theme Pack

skilltriks-theme-pack

A
100

Transform your WordPress site into a dynamic Learning Management System (LMS) using our innovative WordPress LMS Plugin.

0 No CVEs
LearnPress – Course Review

LearnPress – Course Review

learnpress-course-review

A
99

LearnPress Course Review - An extension plugin for LearnPress.

30K 1 CVE
Developer Profile

TrainingPress Developer Profile

rudrainn

2 plugins · 20 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect TrainingPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/trainingpress/assets/css/jquery.dataTables.min.css/wp-content/plugins/trainingpress/assets/css/star-rate.css/wp-content/plugins/trainingpress/assets/css/fontawsome/css/font-awesome.min.css/wp-content/plugins/trainingpress/assets/js/jquery.validate.js/wp-content/plugins/trainingpress/assets/js/jquery.dataTables.min.js/wp-content/plugins/trainingpress/admin/css/style.css/wp-content/plugins/trainingpress/admin/js/script.js/wp-content/plugins/trainingpress/css/jquery.notifyBar.css+1 more
Script Paths
/wp-content/plugins/trainingpress/assets/js/jquery.validate.js/wp-content/plugins/trainingpress/assets/js/jquery.dataTables.min.js/wp-content/plugins/trainingpress/admin/js/script.js/wp-content/plugins/trainingpress/admin/js/jquery.notifyBar.js
Version Parameters
trainingpress/assets/css/jquery.dataTables.min.css?ver=trainingpress/assets/css/star-rate.css?ver=trainingpress/assets/css/fontawsome/css/font-awesome.min.css?ver=trainingpress/assets/js/jquery.validate.js?ver=trainingpress/assets/js/jquery.dataTables.min.js?ver=trainingpress/admin/css/style.css?ver=trainingpress/admin/js/script.js?ver=trainingpress/css/jquery.notifyBar.css?ver=trainingpress/admin/js/jquery.notifyBar.js?ver=

HTML / DOM Fingerprints

CSS Classes
training-course-contenttraining-course-module-contenttraining-lesson-contenttraining-exercise-contentcourse_titlecourse_short_descriptioncourse_start_datecourse_end_date+6 more
Data Attributes
data-course-iddata-module-iddata-lesson-iddata-exercise-iddata-user-id
JS Globals
RDTR_TRAINING_PLUGIN_URL
Shortcode Output
[training_course_details][training_course_list][training_course_modules][training_course_lessons]
FAQ

Frequently Asked Questions about TrainingPress