Does BetterBook have any unpatched vulnerabilities?

No. All known vulnerabilities in BetterBook have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is BetterBook compatible with WordPress 5.2.24?

According to WordPress.org data, BetterBook 1.0.0 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is BetterBook compatible with PHP 7.1+?

BetterBook requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is BetterBook updated?

BetterBook was last updated on Unknown. Frequent updates are generally a positive security signal.

What is BetterBook's security score?

BetterBook has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BetterBook Security & Risk Analysis

wordpress.org/plugins/betterbook

BetterBook is an online booking platform that enables you to take online bookings for events, classes and appointments from your WordPress website.

0 active installs v1.0.0 PHP 7.1+ WP 5.2+ Updated Unknown

booking-calendarbooking-systembookingsrentalreservations

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is BetterBook Safe to Use in 2026?

Generally Safe

Score 100/100

BetterBook has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "betterbook" plugin v1.0.0 exhibits a seemingly strong security posture based on this static analysis. The plugin reports zero AJAX handlers, REST API routes, shortcodes, and cron events, indicating a minimal attack surface. Furthermore, there are no reported CVEs, suggesting a history of no known vulnerabilities. The code analysis shows a commendable lack of dangerous functions and external HTTP requests. All SQL queries are prepared, and there's at least one nonce check, which are good security practices. The taint analysis also reveals no critical or high-severity issues with unsanitized paths.

However, there are several areas that raise concerns. A critical weakness is the complete absence of capability checks for any potential entry points, even though the current entry point count is zero. This means if any entry points were introduced or discovered in the future, they would likely be unprotected. Additionally, a significant portion of outputs (75%) are not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is ever incorporated into these outputs. The presence of one file operation without further context is also a potential risk. While the vulnerability history is clean, this is a very early version (v1.0.0), and its lack of a track record doesn't guarantee future security.

In conclusion, "betterbook" v1.0.0 has a minimal attack surface and no known vulnerabilities, which are positive signs. However, the lack of capability checks and the high percentage of unescaped output are significant potential risks that need immediate attention. The plugin's early version status means its security is largely unproven. Addressing these issues is crucial before the plugin is widely adopted or updated.

Key Concerns

High percentage of unescaped output
No capability checks on entry points
File operation without context

Vulnerabilities

None known

BetterBook Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

BetterBook Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

25% escaped4 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<betterbook_admin> (admin\betterbook_admin.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

BetterBook Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actioninitincludes\enqueue.php:6

filterscript_loader_tagincludes\enqueue.php:8

actionwp_enqueue_scriptsincludes\enqueue.php:13

actionadmin_menuindex.php:41

Maintenance & Trust

BetterBook Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedUnknown

PHP min version7.1

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

BetterBook Alternatives

Pinpoint Booking System – Version 2

booking-system

Book anything, anytime, anywhere.

3K 13 CVEs

indexic aReservation

indexic-areservation

Easily integrate Indexic's aReservation Tour Booking and Rental Reservation Software into your WordPress website. You can add booking buttons wi …

60 No CVEs

Bookingmood

bookingmood

100

Bookingmood booking calendar plugin for Wordpress. Show availability and receive bookings on your website.

50 No CVEs

EZRentOut Online Webstore

ezrentout-online-webstore

EZRentOut enables you to stay on top of your inventory at all times and offer seamless rentals to all your customers. Simplify online renting with our …

20 No CVEs

CP Reservation Calendar

cp-reservation-calendar

CP Reservation Calendar is a booking calendar that allows selecting dates - ex: check-in and check-out dates - for a reservation.

10 1 CVE

Developer Profile

BetterBook Developer Profile

mdw2000

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BetterBook

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/betterbook/asset-manifest.json

Script Paths

https://static.betterbook.io/runtime~main.jshttps://static.betterbook.io/main.js

HTML / DOM Fingerprints

CSS Classes

bb-appt-root

JS Globals

window.bbwp

Shortcode Output

<div id="bb-appt-root"></div>

FAQ