Does Business Profile Extra Fields have any unpatched vulnerabilities?

No. All known vulnerabilities in Business Profile Extra Fields have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Business Profile Extra Fields compatible with WordPress 6.6.5?

According to WordPress.org data, Business Profile Extra Fields 1.3.1 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is Business Profile Extra Fields compatible with PHP 8.0+?

Business Profile Extra Fields requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Business Profile Extra Fields updated?

Business Profile Extra Fields was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Business Profile Extra Fields's security score?

Business Profile Extra Fields has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Business Profile Extra Fields Security & Risk Analysis

wordpress.org/plugins/business-profile-extra-fields

You need the Five star business profile plugin to use this plugin

30 active installs v1.3.1 PHP 8.0+ WP 6.6.1+ Updated Unknown

business-profilecellphonefaxmobilewhatsapp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Business Profile Extra Fields Safe to Use in 2026?

Generally Safe

Score 100/100

Business Profile Extra Fields has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "business-profile-extra-fields" plugin version 1.3.1 exhibits a generally good security posture with no known vulnerabilities or critical taint flows. The static analysis indicates responsible coding practices such as the exclusive use of prepared statements for SQL queries and the absence of dangerous functions or file operations. However, there are notable areas for improvement that introduce some risk. The plugin lacks any capability checks or nonce checks, which is a significant concern as it relies entirely on WordPress's default authentication mechanisms for all entry points. Furthermore, a substantial 42% of output escaping is not properly handled, potentially leaving the application vulnerable to cross-site scripting (XSS) attacks if user-supplied data is not sufficiently sanitized before display. While the plugin has no recorded vulnerability history, the identified weaknesses in capability and output handling warrant careful consideration.

Key Concerns

No capability checks for entry points
No nonce checks for entry points
Inadequate output escaping

Vulnerabilities

None known

Business Profile Extra Fields Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Business Profile Extra Fields Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

42% escaped36 total outputs

Attack Surface

Business Profile Extra Fields Attack Surface

Entry Points19

Unprotected0

Shortcodes 19

[bpefwp_name] business-profile-extra-fields.php:615

[bpefwp_address] business-profile-extra-fields.php:624

[bpefwp_phone] business-profile-extra-fields.php:632

[bpefwp_cell_phone] business-profile-extra-fields.php:640

[bpefwp_whatsapp] business-profile-extra-fields.php:648

[bpefwp_fax_phone] business-profile-extra-fields.php:656

[bpefwp_ordering_link] business-profile-extra-fields.php:664

[bpefwp_contact] business-profile-extra-fields.php:672

[bpefwp_contact_email] business-profile-extra-fields.php:680

[bpefwp_cellphone] business-profile-extra-fields.php:688

[bpefwp_VAT_number] business-profile-extra-fields.php:697

[bpefwp_PROF_number] business-profile-extra-fields.php:706

[bpefwp_bank_account_number] business-profile-extra-fields.php:715

[bpefwp_bank_bicswift_number] business-profile-extra-fields.php:724

[bpefwp_facebook] business-profile-extra-fields.php:735

[bpefwp_instagram] business-profile-extra-fields.php:746

[bpefwp_twitter] business-profile-extra-fields.php:757

[bpefwp_exception_range] business-profile-extra-fields.php:766

[bpefwp_exceptions] business-profile-extra-fields.php:828

WordPress Hooks 12

actionplugins_loadedbusiness-profile-extra-fields.php:52

actionwp_enqueue_scriptsbusiness-profile-extra-fields.php:57

actionwp_enqueue_scriptsbusiness-profile-extra-fields.php:66

actionwp_enqueue_scriptsbusiness-profile-extra-fields.php:76

filterbpfwp_settings_pagebusiness-profile-extra-fields.php:87

filterbpwfwp_component_callbacksbusiness-profile-extra-fields.php:289

filterbpwfp_contact_card_defaultsbusiness-profile-extra-fields.php:832

actionadmin_noticesbusiness-profile-extra-fields.php:868

actionadmin_menuincludes\admin\bpefwp_settings.php:19

actioninitincludes\shared\weekdays.php:281

actioninitincludes\shared\weekdays.php:282

actioninitincludes\shared\weekdays.php:396

Maintenance & Trust

Business Profile Extra Fields Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedUnknown

PHP min version8.0

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Business Profile Extra Fields Alternatives

Mobile Contact Line

mobile-contact-line

Simple plugin that allow you add mobile contact line to your wordpress site

1K 1 CVE

IamMobiled Mobile

iammobiled-mobile

100

IamMobiled Mobile Plugin enables your mobile users to see a mobile theme of your website. Comes with a mobile specific theme "Blue Heart"

10 No CVEs

MoFuse WordPress Plugin

mofuse

Requires at least 2.0.2 Test up to: 2.7.1 Stable tag: 2.7.1 This plugin works with a MoFuse account. This plugin will automatically detect and redir …

10 No CVEs

Responsive Share Button

responsive-whatsapp-share-button

100

This plugin will add a WhatsApp share button into your every posts when visitor view your site mobile device.

10 No CVEs

Wollow

wollow

100

Wollow is a powerful plugin that helps you to connect your woocommerce with whatsapp.

10 No CVEs

Developer Profile

Business Profile Extra Fields Developer Profile

jseutens

2 plugins · 60 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Business Profile Extra Fields

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/business-profile-extra-fields/assets/css/bpef-style.css/wp-content/plugins/business-profile-extra-fields/assets/css/bpefwp-style.css

Version Parameters

business-profile-extra-fields/assets/css/bpef-style.css?ver=business-profile-extra-fields/assets/css/bpefwp-style.css?ver=

HTML / DOM Fingerprints

CSS Classes

bpfwp-cellphonebpfwp-VAT-numberbpfwp-PROF-numberbpfwp-bank-account-numberbpfwp-bank-bicswift-numberbpfwp-exception-rangebpfwp-facebook-link

Data Attributes

label_forclass

FAQ

Business Profile Extra Fields Security & Risk Analysis

Is Business Profile Extra Fields Safe to Use in 2026?

Generally Safe

Key Concerns

Business Profile Extra Fields Security Vulnerabilities

Business Profile Extra Fields Code Analysis

Output Escaping

Business Profile Extra Fields Attack Surface

Shortcodes 19

Business Profile Extra Fields Maintenance & Trust

Maintenance Signals

Community Trust

Business Profile Extra Fields Alternatives

Mobile Contact Line

IamMobiled Mobile

MoFuse WordPress Plugin

Responsive Share Button

Wollow

Business Profile Extra Fields Developer Profile

How We Detect Business Profile Extra Fields

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Business Profile Extra Fields