Does Cab fare calculator have any unpatched vulnerabilities?

No. All known vulnerabilities in Cab fare calculator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Cab fare calculator compatible with WordPress 6.6.5?

According to WordPress.org data, Cab fare calculator 1.2.4 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is Cab fare calculator compatible with PHP 7.2+?

Cab fare calculator requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Cab fare calculator updated?

Cab fare calculator was last updated on Mar 18, 2025. Frequent updates are generally a positive security signal.

What is Cab fare calculator's security score?

Cab fare calculator has a WP-Safety security score of 91/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Cab fare calculator Security & Risk Analysis

wordpress.org/plugins/cab-fare-calculator

This plugin will add an online taxi booking form on your WordPress website. You will be able to manage your vehicles and orders through the back end.

200 active installs v1.2.4 PHP 7.2+ WP 4.0+ Updated Mar 18, 2025

booking-ridetaxi-bookingtaxi-booking-formtaxi-maptaxi-ride

A · Safe

CVEs total2

Unpatched0

Last CVESep 4, 2024

Plugin page Download

Safety Verdict

Is Cab fare calculator Safe to Use in 2026?

Generally Safe

Score 91/100

Cab fare calculator has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Sep 4, 2024Updated 1yr ago

Risk Assessment

The "cab-fare-calculator" plugin v1.2.4 exhibits a generally good security posture with many robust security practices in place. The plugin demonstrates a strong adherence to secure coding by utilizing prepared statements for 80% of its SQL queries and properly escaping 95% of its output. Furthermore, all identified entry points, including AJAX handlers and shortcodes, have checks in place, and there are no immediate REST API vulnerabilities. The presence of 19 nonce checks is also a positive indicator of attention to security.

However, the taint analysis reveals significant concerns. The presence of 8 flows with unsanitized paths, all classified as high severity, represents a critical area of risk. These unsanitized paths could potentially lead to vulnerabilities if not addressed, despite the absence of critical severity taint flows. The plugin's vulnerability history, with 2 medium severity CVEs, one of which was a Cross-site Scripting (XSS) vulnerability and the other PHP Remote File Inclusion (RFI), suggests a past pattern of susceptibility to input validation issues. The most recent vulnerability was as recent as September 2024, highlighting the importance of ongoing vigilance and updates.

In conclusion, while the plugin has strong foundational security practices, the high-severity unsanitized paths in the taint analysis and the historical vulnerability record for input validation weaknesses are notable concerns. The plugin benefits from comprehensive checks on its entry points and good output escaping, but these strengths are somewhat overshadowed by the identified taint flow risks. Addressing the unsanitized paths is paramount to improving its overall security.

Key Concerns

High severity taint flows with unsanitized paths
Historical medium severity CVEs (XSS, RFI)
External HTTP requests without clear sanitization context

Vulnerabilities

Cab fare calculator Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

2 total CVEs

CVE-2022-3556medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cab fare calculator <= 1.1.6 - Authenticated (Admin+) Stored Cross-Site Scripting

Sep 4, 2024 Patched in 1.1.7 (45d)

CVE-2022-1391medium · 6.5Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Cab fare calculator <= 1.0.3 - Unauthenticated Local File Inclusion

Apr 20, 2022 Patched in 1.0.4 (643d)

Code Analysis

Analyzed Mar 16, 2026

Cab fare calculator Code Analysis

Dangerous Functions

Raw SQL Queries

67 prepared

Unescaped Output

626 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

jQuery

SQL Query Safety

80% prepared84 total queries

Output Escaping

95% escaped657 total outputs

Data Flows

8 unsanitized

Data Flow Analysis

11 flows8 with unsanitized paths

<car> (admin\controllers\car.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Cab fare calculator Attack Surface

Entry Points16

Unprotected0

AJAX Handlers 14

authwp_ajax_getPriceAjax.php:9

noprivwp_ajax_getPriceAjax.php:10

authwp_ajax_getVehiclesAjax.php:12

noprivwp_ajax_getVehiclesAjax.php:13

authwp_ajax_bookNowAjax.php:15

noprivwp_ajax_bookNowAjax.php:16

authwp_ajax_calculateTotalAjax.php:18

noprivwp_ajax_calculateTotalAjax.php:19

authwp_ajax_submitOrderAjax.php:21

noprivwp_ajax_submitOrderAjax.php:22

authwp_ajax_resetBookingFormAjax.php:24

noprivwp_ajax_resetBookingFormAjax.php:25

authwp_ajax_getAvailableCarsAjax.php:27

authwp_ajax_changeOrderStatusAjax.php:30

Shortcodes 2

[taxibooking-form] Shortcode.php:14

[taxibooking-form] Shortcode.php:16

WordPress Hooks 9

filterset-screen-optionAdmin.php:27

actionadmin_menuAdmin.php:28

actionadmin_print_stylesAdmin.php:29

actionadmin_print_scriptsAdmin.php:30

actioninitAdmin.php:32

actionwp_enqueue_scriptsAssets.php:12

actionadmin_enqueue_scriptsAssets.php:13

actioninitShortcode.php:9

actionplugins_loadedtblight.php:37

Maintenance & Trust

Cab fare calculator Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedMar 18, 2025

PHP min version7.2

Downloads14K

Community Trust

Rating100/100

Number of ratings2

Active installs200

Alternatives

Cab fare calculator Alternatives

E-cab Taxi Booking Manager for Woocommerce

ecab-taxi-booking-manager

Taxi Booking & Cab Booking for WooCommerce. Chauffeur service with fare calculator, distance pricing, and OpenStreetMap.

2K 4 CVEs

Cab Grid

cab-grid

100

Easily add a taxi fare price calculator to your website via shortcode [cabGrid] or widget. Simply enter journey prices in a table.

100 1 CVE

Developer Profile

Cab fare calculator Developer Profile

kanev

1 plugin · 200 total installs

trust score

Avg Security Score

91/100

Avg Patch Time

344 days

View full developer profile

Detection Fingerprints

How We Detect Cab fare calculator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cab-fare-calculator/admin/js/car.js

Script Paths

/wp-content/plugins/cab-fare-calculator/admin/js/car.js

Version Parameters

cab-fare-calculator/admin/js/car.js?ver=

HTML / DOM Fingerprints

CSS Classes

tblight-wraptblight-create-carcar_title_form_fieldcar_status_form_fieldcar_minpassenger_form_fieldcar_maxpassenger_form_fieldcar_maxsuitcases_form_fieldcar_childseat_form_field+9 more

Data Attributes

data-car-id

JS Globals

tblight_admin_ajax_obj

Shortcode Output

[tblight]

FAQ