Does CB Opening Hours have any unpatched vulnerabilities?

No. All known vulnerabilities in CB Opening Hours have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is CB Opening Hours compatible with WordPress 6.8.5?

According to WordPress.org data, CB Opening Hours 1.0.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is CB Opening Hours compatible with PHP 7.2+?

CB Opening Hours requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CB Opening Hours updated?

CB Opening Hours was last updated on Jun 24, 2025. Frequent updates are generally a positive security signal.

What is CB Opening Hours's security score?

CB Opening Hours has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CB Opening Hours Security & Risk Analysis

wordpress.org/plugins/cb-opening-hours

Manage business hours using Google Places API with support for custom and special hours.

0 active installs v1.0.0 PHP 7.2+ WP 5.0+ Updated Jun 24, 2025

google-placesopening-hoursplace-idshop-hoursstore-schedule

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is CB Opening Hours Safe to Use in 2026?

Generally Safe

Score 100/100

CB Opening Hours has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The "cb-opening-hours" plugin version 1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates strong adherence to secure coding practices with a high percentage of prepared SQL statements and properly escaped outputs. The absence of known CVEs and recorded vulnerabilities is also a significant strength, suggesting a well-maintained codebase or a lack of past exploitation. However, a critical concern arises from the presence of one AJAX handler without authentication checks, presenting a direct attack vector. The taint analysis also flagged one flow with an unsanitized path, indicating a potential vulnerability that could lead to code execution or data leakage if exploited.

Key Concerns

Unprotected AJAX handler
Taint flow with unsanitized path

Vulnerabilities

None known

CB Opening Hours Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

CB Opening Hours Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

187 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

89% prepared9 total queries

Output Escaping

95% escaped196 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

<logger> (admin\logger.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

CB Opening Hours Attack Surface

Entry Points5

Unprotected1

AJAX Handlers 4

authwp_ajax_cbopho_ajax_delete_logadmin\logger.php:187

authwp_ajax_cbopho_ajax_delete_multiple_logsadmin\logger.php:214

authwp_ajax_cbopho_ajax_delete_all_logsadmin\logger.php:234

authwp_ajax_cbopho_api_request_handler_datainc\api-request-handler.php:236

Shortcodes 1

[cbopho_open_close_schedule] inc\shortcode.php:200

WordPress Hooks 12

actioninitadmin\db-functions.php:34

actionadd_meta_boxesadmin\post-meta-box-registration.php:18

actionsave_postadmin\save-meta-box-data.php:135

actionadmin_menuadmin\setting.php:30

actionadmin_initadmin\setting.php:159

filtercron_schedulesinc\cron-scheduler.php:11

actionupdate_option_cbopho_optionsinc\cron-scheduler.php:50

actioncbopho_fetch_shop_hours_eventinc\cron-scheduler.php:247

actionwp_enqueue_scriptsinc\enqueue.php:34

actionadmin_enqueue_scriptsinc\enqueue.php:125

actioninitinc\post-type-registration.php:39

actionplugins_loadedlanguages\language-loader.php:26

Scheduled Events 1

cbopho_fetch_shop_hours_event

Maintenance & Trust

CB Opening Hours Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 24, 2025

PHP min version7.2

Downloads324

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

CB Opening Hours Alternatives

Widgets for Google Reviews

wp-reviews-plugin-for-google

Embed Google reviews fast and easily into your WordPress site. Increase SEO, trust and sales using Google reviews.

900K 4 CVEs

WP Google Review Slider

wp-google-places-review-slider

Display Google reviews on your site and even show user images! No address, no problem! Also works with Service Area Businesses and Products! Lightwei …

30K 6 CVEs

Post to Google My Business (Google Business Profile)

post-to-google-my-business

100

Auto-publish posts, pages & CPTs, plus manage Google Business Profile posts. All from your WordPress dashboard!

10K 1 CVE

Business Hours Indicator

business-hours-indicator

100

Display opening hours and if you're currently open/closed, with countdown to next opening. Show or hide content only when open/closed & more!

8K 1 CVE

We’re Open!

opening-hours

Opening hours for your business, a joy to manage and highly customizable. Conditional excerpts; conditional/replacement text; Structured Data for SEO.

5K 5 CVEs

Developer Profile

CB Opening Hours Developer Profile

Codebeans Private Limited

2 plugins · 20 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CB Opening Hours

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cb-opening-hours/assets/js/js.js/wp-content/plugins/cb-opening-hours/assets/css/tailwindcss.style.css/wp-content/plugins/cb-opening-hours/assets/css/style.css/wp-content/plugins/cb-opening-hours/assets/css/sweetalert2.min.css/wp-content/plugins/cb-opening-hours/assets/js/sweetalert2.all.min.js/wp-content/plugins/cb-opening-hours/assets/css/custom_select_input.css/wp-content/plugins/cb-opening-hours/assets/js/admin-script.js/wp-content/plugins/cb-opening-hours/assets/js/custom_select_input.js+1 more

Script Paths

/wp-content/plugins/cb-opening-hours/assets/js/js.js/wp-content/plugins/cb-opening-hours/assets/js/sweetalert2.all.min.js/wp-content/plugins/cb-opening-hours/assets/js/admin-script.js/wp-content/plugins/cb-opening-hours/assets/js/custom_select_input.js/wp-content/plugins/cb-opening-hours/assets/js/logs-js.js

Version Parameters

cb-opening-hours/assets/js/js.js?ver=cb-opening-hours/assets/css/tailwindcss.style.css?ver=cb-opening-hours/assets/css/style.css?ver=cb-opening-hours/assets/css/sweetalert2.min.css?ver=cb-opening-hours/assets/js/sweetalert2.all.min.js?ver=cb-opening-hours/assets/css/custom_select_input.css?ver=cb-opening-hours/assets/js/admin-script.js?ver=cb-opening-hours/assets/js/custom_select_input.js?ver=cb-opening-hours/assets/js/logs-js.js?ver=

HTML / DOM Fingerprints

CSS Classes

cbopho-admin-script

HTML Comments

Start Output BufferingDefine plugin paths and URLsConstructor to initialize the pluginPlugin activation function+14 more

JS Globals

cbophoAjaxcbophoLogsAjax

REST Endpoints

/wp-json/cb-opening-hours/v1/api-request

Shortcode Output

[cb_opening_hours]

FAQ