Business Staff Security & Risk Analysis

wordpress.org/plugins/bstaff

Simple and lightweight plugin that allows you to showcase your team members.

10 active installs v1.0.1 PHP 8.1+ WP 5.0+ Updated Apr 8, 2026
businessshortcodestaffteam
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Business Staff Safe to Use in 2026?

Generally Safe

Score 100/100

Business Staff has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "bstaff" plugin v1.0.1 demonstrates a strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. The plugin also exhibits good practices in output escaping, with 97% of outputs properly escaped, and includes nonce and capability checks, indicating a proactive approach to preventing common vulnerabilities.

However, there are no specific risks identified in the code analysis or taint flows, and the plugin has no recorded vulnerability history, which is an exceptionally positive sign. This suggests that the developers have likely followed secure coding practices and have a history of maintaining a secure product. The limited attack surface, with only 2 entry points, both of which appear to be protected by authentication, further contributes to its good security standing.

In conclusion, the "bstaff" plugin v1.0.1 presents a very low security risk. Its strengths lie in the developer's apparent commitment to secure coding, evident in the comprehensive checks and absence of risky code patterns. While no specific weaknesses are revealed by this analysis, continued vigilance and regular security audits are always recommended for any software.

Vulnerabilities
None known

Business Staff Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Business Staff Release Timeline

v1.1
v1.0.1Current
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Business Staff Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
5
193 escaped
Nonce Checks
2
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

97% escaped198 total outputs
Attack Surface

Business Staff Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 1

authwp_ajax_bstaff_update_post_orderincludes\ajax-handler.php:37

Shortcodes 1

[bstaff_member] includes\shortcode.php:67
WordPress Hooks 8
actionadmin_menuadmin\admin.php:21
actionadmin_initadmin\admin.php:159
actioninitb-staff.php:60
actionwp_enqueue_scriptsb-staff.php:93
actionadmin_enqueue_scriptsb-staff.php:122
actionpre_get_postsb-staff.php:138
actionadd_meta_boxesincludes\meta-boxes.php:23
actionsave_postincludes\meta-boxes.php:106
Maintenance & Trust

Business Staff Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 8, 2026
PHP min version8.1
Downloads343

Community Trust

Rating0/100
Number of ratings0
Active installs10
Developer Profile

Business Staff Developer Profile

m1k3xur

2 plugins · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Business Staff

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/bstaff/assets/css/style.css/wp-content/plugins/bstaff/assets/js/script.js/wp-content/plugins/bstaff/assets/fontawesome/css/fontawesome.css/wp-content/plugins/bstaff/assets/fontawesome/css/solid.css/wp-content/plugins/bstaff/admin/css/admin-style.css/wp-content/plugins/bstaff/admin/css/button-preview.css/wp-content/plugins/bstaff/admin/js/button-preview.js/wp-content/plugins/bstaff/admin/js/admin-script.js+1 more
Script Paths
/wp-content/plugins/bstaff/assets/js/script.js/wp-content/plugins/bstaff/admin/js/button-preview.js/wp-content/plugins/bstaff/admin/js/admin-script.js/wp-content/plugins/bstaff/admin/js/settings-script.js
Version Parameters
bstaff-style?ver=bstaff-script?ver=bstaff-font-awesome?ver=bstaff-font-awesome-solid?ver=bstaff-admin-style?ver=bstaff-button-preview?ver=bstaff-button-preview-script?ver=bstaff-admin-script?ver=bstaff-settings-script?ver=

HTML / DOM Fingerprints

CSS Classes
business-staff-membersboard-staff
Data Attributes
data-bstaff-email-btn-textdata-bstaff-email-btn-target
JS Globals
bstaff_ajaxbstaff_admin_ajax
Shortcode Output
[business_staff]
FAQ

Frequently Asked Questions about Business Staff