Does Business Card Block – Display Business or Personal Info in Card Format have any unpatched vulnerabilities?

No. All known vulnerabilities in Business Card Block – Display Business or Personal Info in Card Format have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Business Card Block – Display Business or Personal Info in Card Format compatible with WordPress 6.9.4?

According to WordPress.org data, Business Card Block – Display Business or Personal Info in Card Format 2.0.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Business Card Block – Display Business or Personal Info in Card Format Security & Risk Analysis

wordpress.org/plugins/business-card-block

Business Card Block allows you to create and display professional business cards, profile cards, and contact sections on your WordPress websites.

1K active installs v2.0.4 PHP 7.1+ WP 6.5+ Updated Mar 15, 2026

address-cardblockbusinesscardgutenberg-block

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 23, 2025

Download

Safety Verdict

Is Business Card Block – Display Business or Personal Info in Card Format Safe to Use in 2026?

Generally Safe

Score 99/100

Business Card Block – Display Business or Personal Info in Card Format has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 23, 2025Updated 20d ago

Risk Assessment

The "business-card-block" plugin version 2.0.4 demonstrates several good security practices, including a low attack surface with only one shortcode entry point and no unprotected handlers. All SQL queries are properly prepared, and a significant majority of output is correctly escaped, which is positive. The absence of file operations and external HTTP requests further reduces potential risks. However, there are areas for improvement. The plugin has no nonce checks implemented, which could be a concern for its shortcode, especially if it performs any sensitive actions. Additionally, while taint analysis shows no current issues, the plugin bundles the Freemius library, which, if outdated or improperly handled, could introduce vulnerabilities. The plugin's history shows a past medium-severity Cross-Site Scripting (XSS) vulnerability, though it is currently patched. This past incident, combined with the lack of nonce checks, suggests a potential for input sanitization weaknesses that could be exploited if new vulnerabilities arise. Overall, the plugin has a decent security posture due to its limited attack surface and prepared SQL, but the lack of nonce checks and the history of an XSS vulnerability warrant attention.

Key Concerns

No nonce checks implemented
Bundled Freemius library
Past medium severity XSS vulnerability

Vulnerabilities

Business Card Block – Display Business or Personal Info in Card Format Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-26952medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Business Card Block <= 1.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 23, 2025 Patched in 1.0.6 (9d)

Code Analysis

Analyzed Mar 16, 2026

Business Card Block – Display Business or Personal Info in Card Format Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius

Output Escaping

83% escaped6 total outputs

Attack Surface

Business Card Block – Display Business or Personal Info in Card Format Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[bcb] includes\rootPlugin\ShortCode.php:6

WordPress Hooks 7

actionadmin_menuincludes\rootPlugin\AdminMenu.php:7

filtermanage_bcb_posts_columnsincludes\rootPlugin\CustomColumn.php:7

actionmanage_bcb_posts_custom_columnincludes\rootPlugin\CustomColumn.php:8

actionenqueue_block_assetsincludes\rootPlugin\Enqueue.php:7

actionenqueue_block_editor_assetsincludes\rootPlugin\Enqueue.php:8

actionadmin_enqueue_scriptsincludes\rootPlugin\Enqueue.php:9

actioninitincludes\rootPlugin\Init.php:7

Maintenance & Trust

Business Card Block – Display Business or Personal Info in Card Format Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 15, 2026

PHP min version7.1

Downloads10K

Community Trust

Rating100/100

Number of ratings2

Active installs1K

Alternatives

Business Card Block – Display Business or Personal Info in Card Format Alternatives

Card Block

card-block

The plugin facilitates the user can add card block.

200 No CVEs

Spectra Gutenberg Blocks – Website Builder for the Block Editor

ultimate-addons-for-gutenberg

Power-up Gutenberg with advanced blocks for faster website creation. Build your WordPress website effortlessly using powerful building blocks!

1.0M 26 CVEs

Kadence Blocks — Page Builder Toolkit for Gutenberg Editor

kadence-blocks

20+ AI-powered Gutenberg Blocks with endless options, enabling top-notch efficiency for high-performance dynamic website creation.

600K 32 CVEs

Page Builder: Pagelayer – Drag and Drop website builder

pagelayer

The most advanced frontend drag & drop page builder. Pagelayer is a light weight but extremely powerful Website Builder.

400K 26 CVEs

Page Builder Gutenberg Blocks – CoBlocks

coblocks

CoBlocks is a suite of page builder WordPress blocks for Gutenberg, with 10+ new blocks and a true page builder experience with rows and columns.

300K 7 CVEs

Developer Profile

Business Card Block – Display Business or Personal Info in Card Format Developer Profile

colorlibplugins

120 plugins · 738K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

138 days

View full developer profile

Detection Fingerprints

How We Detect Business Card Block – Display Business or Personal Info in Card Format

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/business-card-block/public/css/font-awesome.min.css/wp-content/plugins/business-card-block/build/admin-post.css/wp-content/plugins/business-card-block/build/admin-post.js/wp-content/plugins/business-card-block/build/admin-dashboard.css/wp-content/plugins/business-card-block/build/admin-dashboard.js

Script Paths

/wp-content/plugins/business-card-block/build/admin-post.js/wp-content/plugins/business-card-block/build/admin-dashboard.js

Version Parameters

business-card-block/build/admin-post.css?ver=business-card-block/build/admin-post.js?ver=business-card-block/build/admin-dashboard.css?ver=business-card-block/build/admin-dashboard.js?ver=

HTML / DOM Fingerprints

CSS Classes

business-card-editor-scriptbcb-admin-postbcb-admin-stylebcb-admin-dashboard

Data Attributes

data-bcb-id

JS Globals

bcbIsPremium

Shortcode Output

[bcb id=

FAQ