Does Wheel of Life: Coaching and Assessment Tool for Life Coach have any unpatched vulnerabilities?

No. All known vulnerabilities in Wheel of Life: Coaching and Assessment Tool for Life Coach have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Wheel of Life: Coaching and Assessment Tool for Life Coach compatible with WordPress 6.9.4?

According to WordPress.org data, Wheel of Life: Coaching and Assessment Tool for Life Coach 1.2.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Wheel of Life: Coaching and Assessment Tool for Life Coach compatible with PHP 7.4+?

Wheel of Life: Coaching and Assessment Tool for Life Coach requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Wheel of Life: Coaching and Assessment Tool for Life Coach Security & Risk Analysis

wordpress.org/plugins/wheel-of-life

Wheel of Life is a powerful tool for coaches to generate leads and grow the coaching business by enabling your clients to visualize important aspects …

3K active installs v1.2.1 PHP 7.4+ WP 5.2+ Updated Jan 30, 2026

coachescoachingleadsurveywheel

A · Safe

CVEs total2

Unpatched0

Last CVESep 25, 2024

Plugin page Download

Safety Verdict

Is Wheel of Life: Coaching and Assessment Tool for Life Coach Safe to Use in 2026?

Generally Safe

Score 99/100

Wheel of Life: Coaching and Assessment Tool for Life Coach has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Sep 25, 2024Updated 2mo ago

Risk Assessment

The "wheel-of-life" plugin v1.2.1 exhibits a generally strong security posture, with excellent adherence to best practices in its current static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests are significant strengths. Furthermore, the near-perfect output escaping and a robust number of nonce and capability checks indicate careful development. The total absence of critical or high-severity taint flows is also a very positive sign, suggesting that user-supplied data is handled with care and doesn't appear to lead to exploitable paths within the analyzed code.

Despite the positive static analysis, the plugin has a history of known vulnerabilities, specifically two medium-severity CVEs related to missing authorization. While these are currently patched, this pattern suggests a historical weakness in access control that, while seemingly addressed in this version, warrants ongoing vigilance. The total attack surface is moderate, but importantly, all identified entry points (AJAX handlers and shortcodes) appear to be protected by authentication or permission checks, which is excellent. The lack of unpatched CVEs in this version is a significant mitigating factor.

Key Concerns

History of medium severity vulnerabilities (2)

Vulnerabilities

Wheel of Life: Coaching and Assessment Tool for Life Coach Security Vulnerabilities

CVEs by Year

2 CVEs in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

2 total CVEs

CVE-2024-47311medium · 5.3Missing Authorization

Wheel of Life <= 1.1.8 - Missing Authorization

Sep 25, 2024 Patched in 1.1.9 (8d)

CVE-2024-3627medium · 5.4Missing Authorization

Wheel of Life: Coaching and Assessment Tool for Life Coach <= 1.1.7 - Missing Authorization on Several AJAX Endpoints

Jun 19, 2024 Patched in 1.1.8 (12d)

Code Analysis

Analyzed Mar 16, 2026

Wheel of Life: Coaching and Assessment Tool for Life Coach Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

162 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped166 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

save_call_to_action (includes\functions\AjaxFunctions.php:119)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Wheel of Life: Coaching and Assessment Tool for Life Coach Attack Surface

Entry Points12

Unprotected0

AJAX Handlers 11

authwp_ajax_addNewPostincludes\functions\AjaxFunctions.php:52

authwp_ajax_editPostincludes\functions\AjaxFunctions.php:53

authwp_ajax_viewPostincludes\functions\AjaxFunctions.php:54

authwp_ajax_duplicatePostincludes\functions\AjaxFunctions.php:55

authwp_ajax_trashPostincludes\functions\AjaxFunctions.php:56

authwp_ajax_restorePostincludes\functions\AjaxFunctions.php:57

authwp_ajax_deletePostincludes\functions\AjaxFunctions.php:58

authwp_ajax_saveSocialShareincludes\functions\AjaxFunctions.php:59

authwp_ajax_saveDataincludes\functions\AjaxFunctions.php:60

authwp_ajax_getFormOptionincludes\functions\AjaxFunctions.php:61

authwp_ajax_saveCTAincludes\functions\AjaxFunctions.php:62

Shortcodes 1

[wheeloflife] includes\Wheel_Of_Life_Admin.php:70

WordPress Hooks 20

actioninitincludes\Wheel_Of_Life.php:131

actionadmin_menuincludes\Wheel_Of_Life_Admin.php:51

actionadmin_enqueue_scriptsincludes\Wheel_Of_Life_Admin.php:53

actionenqueue_block_editor_assetsincludes\Wheel_Of_Life_Admin.php:56

actionadmin_enqueue_scriptsincludes\Wheel_Of_Life_Admin.php:58

actioninitincludes\Wheel_Of_Life_Admin.php:60

filterblock_categories_allincludes\Wheel_Of_Life_Admin.php:63

actionenqueue_block_editor_assetsincludes\Wheel_Of_Life_Admin.php:64

actionadmin_enqueue_scriptsincludes\Wheel_Of_Life_Admin.php:67

filterrest_api_initincludes\Wheel_Of_Life_Admin.php:72

filterallowed_block_types_allincludes\Wheel_Of_Life_Admin.php:74

actioncurrent_screenincludes\Wheel_Of_Life_Admin.php:83

actioninitincludes\Wheel_Of_Life_PostTypes.php:45

actioninitincludes\Wheel_Of_Life_PostTypes.php:46

actioninitincludes\Wheel_Of_Life_PostTypes.php:47

actionrest_api_initincludes\Wheel_Of_Life_PostTypes.php:48

actionwp_enqueue_scriptsincludes\Wheel_Of_Life_Public.php:45

filtersingle_templateincludes\Wheel_Of_Life_Public.php:48

actionwp_headincludes\Wheel_Of_Life_Public.php:51

actionwp_enqueue_scriptsincludes\Wheel_Of_Life_Public.php:54

Maintenance & Trust

Wheel of Life: Coaching and Assessment Tool for Life Coach Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 30, 2026

PHP min version7.4

Downloads72K

Community Trust

Rating98/100

Number of ratings7

Active installs3K

Alternatives

Wheel of Life: Coaching and Assessment Tool for Life Coach Alternatives

Quiz, Poll & Survey Maker by Opinion Stage

social-polls-by-opinionstage

Boost engagement and capture leads with interactive quizzes, polls, and surveys. Built for marketers, publishers, and businesses

7K 7 CVEs

WebEquipe Spin & Win Wheel

webequipe-spin-win-wheel

100

Spin-to-win for WordPress – engage visitors, capture emails, and deliver coupons to boost signups and sales.

40 No CVEs

Tapform

tapform

Connect and integrate your Tapform widget to your Wordpress website.

0 No CVEs

Wheelluck

wheelluck

100

Adds a link to the WordPress admin menu and loads a JavaScript file from CDN with user consent during installation.

0 No CVEs

Hostinger Reach – AI-Powered Email Marketing for WordPress

hostinger-reach

100

Launch and grow your email marketing effortlessly with Hostinger Reach. Collect contacts, sync subscribers, and send emails – all in one, AI powered.

1.0M No CVEs

Developer Profile

Wheel of Life: Coaching and Assessment Tool for Life Coach Developer Profile

Kraft Plugins

5 plugins · 23K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

5 days

View full developer profile

Detection Fingerprints

How We Detect Wheel of Life: Coaching and Assessment Tool for Life Coach

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wheel-of-life/app/build/blocksFilter.js/wp-content/plugins/wheel-of-life/app/build/globalCSS.css/wp-content/plugins/wheel-of-life/assets/admin/css/toastr.min.css/wp-content/plugins/wheel-of-life/app/build/globalApp.js/wp-content/plugins/wheel-of-life/app/build/admin.css/wp-content/plugins/wheel-of-life/app/build/uiComponents.js/wp-content/plugins/wheel-of-life/app/build/wheelsEditCSS.css

Script Paths

/wp-content/plugins/wheel-of-life/app/build/blocksFilter.js/wp-content/plugins/wheel-of-life/app/build/globalApp.js/wp-content/plugins/wheel-of-life/app/build/uiComponents.js

Version Parameters

wheeloflife-blocksFilter?ver=wheeloflife-admin?ver=wheeloflife-uicomponent?ver=wheeloflife-blocks?ver=wheeloflife-editor?ver=wheeloflife-wheels-edit?ver=wheeloflife-wheels-settings?ver=wheeloflife-wheels-common?ver=

HTML / DOM Fingerprints

CSS Classes

wheeloflife-admin-wrapperwheeloflife-form-wrapperwheeloflife-results-wrapperwheeloflife-editor-toolbar

Data Attributes

data-wheelid

JS Globals

wolVariables

REST Endpoints

/wp-json/wheel-of-life/v1/settings/wp-json/wheel-of-life/v1/submit

Shortcode Output

[wheeloflife]

FAQ