Does BNS Support have any unpatched vulnerabilities?

No. All known vulnerabilities in BNS Support have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is BNS Support compatible with WordPress 5.2.24?

According to WordPress.org data, BNS Support 2.3 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

How often is BNS Support updated?

BNS Support was last updated on May 25, 2019. Frequent updates are generally a positive security signal.

What is BNS Support's security score?

BNS Support has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BNS Support Security & Risk Analysis

wordpress.org/plugins/bns-support

Widget to display and share common helpful support details.

10 active installs v2.3 PHP + WP 3.6+ Updated May 25, 2019

multisite-compatiblesupportwidgetwidget-only

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is BNS Support Safe to Use in 2026?

Generally Safe

Score 85/100

BNS Support has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The 'bns-support' plugin version 2.3 demonstrates a generally good security posture based on the static analysis and vulnerability history. The absence of known CVEs and critical taint flows is a significant strength. The plugin also utilizes prepared statements for its SQL queries and has a high percentage of properly escaped output, indicating good practices in preventing common web vulnerabilities.

However, there are a few areas that warrant attention. The complete lack of nonce checks across all entry points is a notable concern. While the plugin has a small attack surface and some capability checks, the absence of nonce validation on the single shortcode entry point leaves it potentially vulnerable to cross-site request forgery (CSRF) attacks. The plugin also makes an external HTTP request, which could be a vector for SSRF or data leakage if not handled with proper input validation and sanitization on the parameters used in the request.

Overall, 'bns-support' v2.3 is relatively secure due to the lack of historical vulnerabilities and good handling of SQL and output escaping. The primary risks lie in the potential for CSRF due to missing nonce checks on its shortcode and potential issues with the external HTTP request if not carefully implemented. Addressing these specific concerns would further enhance its security.

Key Concerns

Missing nonce checks on entry points
External HTTP request without clear sanitization

Vulnerabilities

None known

BNS Support Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

BNS Support Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

37 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

77% escaped48 total outputs

Attack Surface

BNS Support Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[tech_support] bns-support.php:201

WordPress Hooks 4

actionwp_enqueue_scriptsbns-support.php:183

filterextra_theme_headersbns-support.php:192

filterplugin_row_metabns-support.php:210

actionwidgets_initbns-support.php:221

Maintenance & Trust

BNS Support Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedMay 25, 2019

PHP min version

Downloads8K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

BNS Support Alternatives

Apollo13 Framework Extensions

apollo13-framework-extensions

Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.

20K 6 CVEs

LiveChat – Live Chat Plugin for WP Websites

wp-live-chat-software-for-wordpress

Best live chat and help desk plugin for WordPress websites. Add the LiveChat widget to engage visitors and provide real‑time customer support! 🚀

10K 2 CVEs

Restrict Widgets

restrict-widgets

All in one widgets and sidebars management in WordPress. Allows you to hide or display widgets on specified pages and restrict access for users.

4K No CVEs

Widget Icon

widget-icon

Enhance your website with 640+ icons designed for Twitter Bootstrap. Just select an icon and display it in any widget on your WordPress site.

700 No CVEs

n8n Chat Widget

n8n-chat-widget

100

Adds a customizable n8n chat widget to your website frontend. It allows visitors to interact with n8n chat workflows directly from your website throug …

400 No CVEs

Developer Profile

BNS Support Developer Profile

tacticais

18 plugins · 2K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BNS Support

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/bns-support/css/bns-support.css/wp-content/plugins/bns-support/js/bns-support.js

Script Paths

/wp-content/plugins/bns-support/js/bns-support.js

Version Parameters

bns-support/css/bns-support.css?ver=bns-support/js/bns-support.js?ver=

HTML / DOM Fingerprints

CSS Classes

bns-support

HTML Comments

Data Attributes

data-bns-custom-pathdata-bns-custom-url

JS Globals

bns_support_data

Shortcode Output

<div class="bns-support"><details>

FAQ