Does Book Review Library have any unpatched vulnerabilities?

No. All known vulnerabilities in Book Review Library have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Book Review Library compatible with WordPress 6.1.10?

According to WordPress.org data, Book Review Library 1.4.23 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

How often is Book Review Library updated?

Book Review Library was last updated on Jul 19, 2022. Frequent updates are generally a positive security signal.

What is Book Review Library's security score?

Book Review Library has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Book Review Library Security & Risk Analysis

wordpress.org/plugins/book-review-library

A book cataloguing and review system designed with bookophiles and librarians in mind.

200 active installs v1.4.23 PHP + WP 3.6+ Updated Jul 19, 2022

bookbook-reviewlibrarianlibraryreading-level

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Book Review Library Safe to Use in 2026?

Generally Safe

Score 85/100

Book Review Library has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The 'book-review-library' plugin v1.4.23 exhibits a generally positive security posture based on the provided static analysis. The absence of AJAX handlers, REST API routes, and cron events significantly limits the potential attack surface. Furthermore, the code correctly utilizes prepared statements for all SQL queries and includes nonce and capability checks, which are good security practices. The plugin also avoids dangerous functions and external HTTP requests, further reducing risk.

However, the analysis does highlight a concern with output escaping. A significant portion (58%) of outputs are not properly escaped. This could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is directly rendered in the frontend without adequate sanitization. The lack of any reported vulnerabilities in its history is a strong indicator of a well-maintained codebase, but it does not entirely negate the risk posed by the unescaped output.

In conclusion, while the plugin demonstrates strong adherence to core security principles like input validation and avoiding common dangerous operations, the unescaped output remains a notable weakness. The plugin's history suggests a low likelihood of severe vulnerabilities, but the XSS risk from unescaped data needs to be addressed to achieve a robust security profile.

Key Concerns

Significant portion of output not properly escaped

Vulnerabilities

None known

Book Review Library Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Book Review Library Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

59 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

42% escaped140 total outputs

Attack Surface

Book Review Library Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[book-reviews] views\actions.php:71

WordPress Hooks 48

filteradmin_post_thumbnail_htmlclass-book-reviews.php:1004

actionadmin_menuviews\actions.php:8

actionadmin_enqueue_scriptsviews\actions.php:11

actionadmin_enqueue_scriptsviews\actions.php:12

actionwp_enqueue_scriptsviews\actions.php:15

actioninitviews\actions.php:18

actioninitviews\actions.php:22

actioninitviews\actions.php:23

actioninitviews\actions.php:24

actioninitviews\actions.php:26

actioninitviews\actions.php:28

actioninitviews\actions.php:30

actioninitviews\actions.php:32

actioninitviews\actions.php:34

actioninitviews\actions.php:36

actioninitviews\actions.php:40

actionadmin_initviews\actions.php:41

actionafter_setup_themeviews\actions.php:45

actionadd_meta_boxesviews\actions.php:48

actionadd_meta_boxesviews\actions.php:51

actionadmin_initviews\actions.php:54

actionadmin_head-post-new.phpviews\actions.php:57

actionadmin_head-post.phpviews\actions.php:58

filtermanage_edit-book-review_columnsviews\actions.php:61

actionmanage_book-review_posts_custom_columnviews\actions.php:62

actionsave_postviews\actions.php:65

actionwidgets_initviews\actions.php:68

filterposts_whereviews\actions.php:74

actionplugins_loadedviews\actions.php:77

actionactivate-book-review-library.phpviews\actions.php:80

actiondeactivate-book-review-library.phpviews\actions.php:81

actionadmin_menuviews\actions.php:84

actioninitviews\public.php:12

actioninitviews\public.php:13

actioninitviews\public.php:14

filterthe_titleviews\public.php:34

filterthe_titleviews\public.php:38

filterthe_contentviews\public.php:46

filterget_the_excerptviews\public.php:47

filterthe_titleviews\public.php:68

filterthe_titleviews\public.php:72

filterthe_contentviews\public.php:80

filterthe_titleviews\public.php:102

filterthe_titleviews\public.php:106

filterthe_contentviews\public.php:114

filterget_the_excerptviews\public.php:115

filterprevious_post_linkviews\public.php:357

filternext_post_linkviews\public.php:388

Maintenance & Trust

Book Review Library Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedJul 19, 2022

PHP min version

Downloads33K

Community Trust

Rating96/100

Number of ratings16

Active installs200

Alternatives

Book Review Library Alternatives

WP Review Slider

wp-facebook-reviews

Use the official Facebook API to show off your review and recommendations in a slider or grid! A simple and easy way to display your Twitter and Faceb …

7K 4 CVEs

EmbedSocial – Social Media Feeds, Reviews and Galleries

embedalbum-pro

EmbedSocial allows you to collect and embed social media content on any website automatically.

4K 2 CVEs

Book Review Block

book-review-block

A block to add book details and a star rating to a book review.

1K No CVEs

RS WP Book Showcase – A Complete Book Catalogue & Library System

rs-wp-books-showcase

Premier WordPress book gallery plugin, offering advanced search options and multiple layouts for effortless book showcasing.

1K 2 unpatched

Library Bookshelves

library-bookshelves

Create bookshelves that link to your library catalog. Use shortcodes to display book covers in carousels.

500 1 unpatched

Developer Profile

Book Review Library Developer Profile

Chris Reynolds

4 plugins · 1K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

141 days

View full developer profile

Detection Fingerprints

How We Detect Book Review Library

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/book-review-library/css/main.css/wp-content/plugins/book-review-library/css/bootstrap.min.css/wp-content/plugins/book-review-library/js/main.js/wp-content/plugins/book-review-library/js/bootstrap.min.js

Script Paths

/wp-content/plugins/book-review-library/js/main.js/wp-content/plugins/book-review-library/js/bootstrap.min.js

Version Parameters

book-review-library/css/main.css?ver=book-review-library/css/bootstrap.min.css?ver=book-review-library/js/main.js?ver=book-review-library/js/bootstrap.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

book-review-library-book

HTML Comments

<!-- Book Review Library

Data Attributes

data-plugin-name="Book Review Library"

Shortcode Output

[book_review_library]

FAQ