Does BadgeOS Community Add-on have any unpatched vulnerabilities?

No. All known vulnerabilities in BadgeOS Community Add-on have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is BadgeOS Community Add-on compatible with WordPress 5.9.13?

According to WordPress.org data, BadgeOS Community Add-on 1.3.1 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

How often is BadgeOS Community Add-on updated?

BadgeOS Community Add-on was last updated on Feb 28, 2022. Frequent updates are generally a positive security signal.

What is BadgeOS Community Add-on's security score?

BadgeOS Community Add-on has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BadgeOS Community Add-on Security & Risk Analysis

wordpress.org/plugins/badgeos-community-add-on

Adds BadgeOS features to BuddyPress and bbPress. Earn badges/points/ranks based on community activity, and display them on user profiles and activity …

300 active installs v1.3.1 PHP + WP + Updated Feb 28, 2022

badgebadgescredlyobiopenbadges

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is BadgeOS Community Add-on Safe to Use in 2026?

Generally Safe

Score 85/100

BadgeOS Community Add-on has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "badgeos-community-add-on" v1.3.1 plugin exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and a clean vulnerability history are positive indicators of a well-maintained and secure plugin. The code analysis reveals good practices such as 100% of SQL queries using prepared statements and the absence of dangerous functions or file operations. However, a significant concern lies in the output escaping, where only 50% of outputs are properly escaped. This could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully before being displayed to users. The plugin's attack surface appears minimal with no entry points found without authentication checks, which is commendable.

Key Concerns

Half of output escaping is not proper

Vulnerabilities

None known

BadgeOS Community Add-on Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

BadgeOS Community Add-on Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

29 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

50% escaped58 total outputs

Attack Surface

BadgeOS Community Add-on Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 73

actionadmin_noticesbadgeos-community.php:45

actionplugins_loadedbadgeos-community.php:46

actionbp_includebadgeos-community.php:47

actionwp_print_scriptsbadgeos-community.php:48

actionwp_enqueue_scriptsbadgeos-community.php:49

filterbp_bypass_check_for_moderationincludes\bp-activity.php:49

actionbadgeos_award_achievementincludes\bp-activity.php:71

filterbp_bypass_check_for_moderationincludes\bp-activity.php:110

actionbadgeos_after_award_rankincludes\bp-activity.php:131

filterbp_bypass_check_for_moderationincludes\bp-activity.php:167

actionbadgeos_after_award_pointsincludes\bp-activity.php:201

filterbp_activity_allowed_tagsincludes\bp-activity.php:216

filtercmb2_admin_initincludes\bp-activity.php:256

filtercmb2_admin_initincludes\bp-activity.php:295

filtercmb2_admin_initincludes\bp-activity.php:328

actionbp_template_contentincludes\bp-member-points.php:18

actionbp_initincludes\bp-member-points.php:75

actionbp_template_contentincludes\bp-member-ranks.php:18

actionbp_initincludes\bp-member-ranks.php:177

actionbp_template_contentincludes\bp-member-ranks.php:183

actionbp_template_contentincludes\bp-members.php:18

actionbp_initincludes\bp-members.php:88

actionbp_template_contentincludes\bp-members.php:94

filterbadgeos_get_achievement_earners_list_userincludes\bp-members.php:243

actioninitincludes\rules-engine.php:35

filteruser_deserves_achievementincludes\rules-engine.php:107

actiongroups_join_groupincludes\rules-engine.php:684

actionbp_rest_group_members_update_itemincludes\rules-engine.php:717

actiongroups_membership_acceptedincludes\rules-engine.php:733

actiongroups_accept_inviteincludes\rules-engine.php:734

actiongroups_membership_acceptedincludes\rules-engine.php:755

actionbp_activity_add_user_favoriteincludes\rules-engine.php:782

actionxprofile_profile_field_data_updatedincludes\rules-engine.php:811

actionbp_members_avatar_uploadedincludes\rules-engine.php:812

actionxprofile_cover_image_uploadedincludes\rules-engine.php:813

actionbp_groups_posted_updateincludes\rules-engine.php:819

actiongroups_invite_userincludes\rules-engine.php:829

actionbbp_new_topicincludes\rules-engine.php:837

actionbbp_new_replyincludes\rules-engine.php:844

actiongroups_promote_memberincludes\rules-engine.php:851

actionbadgeos_decrement_user_trigger_countincludes\rules-engine.php:881

actionbadgeos_settingsincludes\settings.php:33

filterbadgeos_get_step_requirementsincludes\steps-ui.php:30

filterbadgeos_activity_triggersincludes\steps-ui.php:43

filterbadgeos_award_points_activity_triggersincludes\steps-ui.php:44

filterbadgeos_deduct_points_activity_triggersincludes\steps-ui.php:45

filterbadgeos_ranks_req_activity_triggersincludes\steps-ui.php:46

actionbadgeos_steps_ui_html_after_trigger_typeincludes\steps-ui.php:77

actionbadgeos_award_steps_ui_html_after_achievement_typeincludes\steps-ui.php:78

actionbadgeos_deduct_steps_ui_html_after_trigger_typeincludes\steps-ui.php:79

actionbadgeos_rank_req_steps_ui_html_after_trigger_typeincludes\steps-ui.php:80

actionbadgeos_steps_ui_html_after_trigger_typeincludes\steps-ui.php:109

actionbadgeos_award_steps_ui_html_after_achievement_typeincludes\steps-ui.php:110

actionbadgeos_deduct_steps_ui_html_after_trigger_typeincludes\steps-ui.php:111

actionbadgeos_rank_req_steps_ui_html_after_trigger_typeincludes\steps-ui.php:112

actionbadgeos_steps_ui_html_after_trigger_typeincludes\steps-ui.php:143

actionbadgeos_award_steps_ui_html_after_achievement_typeincludes\steps-ui.php:144

actionbadgeos_deduct_steps_ui_html_after_trigger_typeincludes\steps-ui.php:145

actionbadgeos_rank_req_steps_ui_html_after_trigger_typeincludes\steps-ui.php:146

actionbadgeos_steps_ui_html_after_trigger_typeincludes\steps-ui.php:178

actionbadgeos_award_steps_ui_html_after_achievement_typeincludes\steps-ui.php:179

actionbadgeos_deduct_steps_ui_html_after_trigger_typeincludes\steps-ui.php:180

actionbadgeos_rank_req_steps_ui_html_after_trigger_typeincludes\steps-ui.php:181

actionbadgeos_steps_ui_html_after_trigger_typeincludes\steps-ui.php:210

actionbadgeos_award_steps_ui_html_after_achievement_typeincludes\steps-ui.php:211

actionbadgeos_deduct_steps_ui_html_after_trigger_typeincludes\steps-ui.php:212

actionbadgeos_rank_req_steps_ui_html_after_trigger_typeincludes\steps-ui.php:213

filterbadgeos_save_stepincludes\steps-ui.php:328

actionadmin_footerincludes\steps-ui.php:410

filterbadgeos_render_feedback_filtersincludes\submission-filters.php:52

filterbadgeos_get_feedback_argsincludes\submission-filters.php:75

filtershortcode_atts_badgeos_submissionsincludes\submission-filters.php:105

filterbadgeos_shortcodesincludes\submission-filters.php:131

Maintenance & Trust

BadgeOS Community Add-on Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedFeb 28, 2022

PHP min version

Downloads117K

Community Trust

Rating80/100

Number of ratings23

Active installs300

Alternatives

BadgeOS Community Add-on Alternatives

BadgeOS Invite Codes Add-on

badgeos-invite-codes-add-on

Enhances sites running BuddyPress and BadgeOS by joining users to one or more specified groups when they use a special Invite Code to join your site.

10 No CVEs

Open Badges Issuer Add-on

badgeos-open-badges-issuer-add-on

100

Issue Mozilla Open Badges directly from your site with this add-on for BadgeOS

10 No CVEs

BadgeOS Suggested Achievements Add-on

badgeos-suggested-achievements-add-on

Enhances sites running BuddyPress and BadgeOS by suggesting next possible incomplete achievements that a user can earn.

10 No CVEs

Credly Custom Badge Assertion Shortcode

credly-pro-custom-assertion

Easily create an official Credly Badge Assertion page on your site.

10 No CVEs

Activation Add-on for GamiPress

activation-add-on-for-gamipress

This GamiPress add-on adds a global switch in the Backend where the awarding of badges can be enabled and disabled.

0 No CVEs

Developer Profile

BadgeOS Community Add-on Developer Profile

learningtimes

12 plugins · 720 total installs

trust score

Avg Security Score

88/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BadgeOS Community Add-on

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/badgeos-community-add-on/css/bos-community.css

HTML / DOM Fingerprints

FAQ

BadgeOS Community Add-on Security & Risk Analysis

Is BadgeOS Community Add-on Safe to Use in 2026?

Generally Safe

Key Concerns

BadgeOS Community Add-on Security Vulnerabilities

BadgeOS Community Add-on Code Analysis

SQL Query Safety

Output Escaping

BadgeOS Community Add-on Attack Surface

BadgeOS Community Add-on Maintenance & Trust

Maintenance Signals

Community Trust

BadgeOS Community Add-on Alternatives

BadgeOS Invite Codes Add-on

Open Badges Issuer Add-on

BadgeOS Suggested Achievements Add-on

Credly Custom Badge Assertion Shortcode

Activation Add-on for GamiPress

BadgeOS Community Add-on Developer Profile

How We Detect BadgeOS Community Add-on

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about BadgeOS Community Add-on