WP-Safety

Comic Book Management System Security & Risk Analysis

wordpress.org/plugins/comicbookmanagementsystem

Comic Book Management System allows comic book creators to keep fans up to date with their latest releases.

10 active installs v4.1 PHP + WP 4.0+ Updated Apr 15, 2023
cbmscomic-book-management-systemcomic-bookscomicsncbd
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Comic Book Management System Safe to Use in 2026?

Generally Safe

Score 85/100

Comic Book Management System has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "comicbookmanagementsystem" v4.1 plugin exhibits a mixed security posture. On the positive side, it has no known CVEs, a clean vulnerability history, and a seemingly contained attack surface with no unprotected AJAX handlers or REST API routes. This suggests a lack of known public exploits. However, the static analysis reveals several concerning areas. The complete absence of nonce checks is a significant weakness, especially given the presence of file operations and the `move_uploaded_file` function, which can be exploited for arbitrary file upload vulnerabilities if not properly secured by nonces. Furthermore, the low percentage of properly escaped output (22%) indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities across its shortcodes and other rendering functions. The lack of capability checks also means that sensitive operations might be accessible to users without the necessary permissions.

Key Concerns

  • No nonce checks found
  • Low output escaping percentage (22%)
  • Dangerous function move_uploaded_file used
  • No capability checks found
  • Unprotected shortcodes (implicit)
Vulnerabilities
None known

Comic Book Management System Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Comic Book Management System Release Timeline

v2.0
v1.1.0
v1.0.1
v1.0.0
Code Analysis
Analyzed Apr 16, 2026

Comic Book Management System Code Analysis

Dangerous Functions
2
Raw SQL Queries
8
6 prepared
Unescaped Output
90
26 escaped
Nonce Checks
0
Capability Checks
0
File Operations
2
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

move_uploaded_fileif( !( move_uploaded_file( $tempFilename, $this->getImagePath() ) ) )class.availablebook.php:234
move_uploaded_fileif( !( move_uploaded_file( $tempFilename, $this->getImagePath() ) ) )class.book.php:255

SQL Query Safety

43% prepared14 total queries

Output Escaping

22% escaped116 total outputs
Attack Surface

Comic Book Management System Attack Surface

Entry Points5
Unprotected0

Shortcodes 5

[cbms_thisweek] class.comicbookmanagementsystem.php:509
[cbms_nextweek] class.comicbookmanagementsystem.php:510
[cbms_preorder] class.comicbookmanagementsystem.php:511
[cbms_showall] class.comicbookmanagementsystem.php:512
[cbms_showallavailable] class.comicbookmanagementsystem.php:513
WordPress Hooks 4
actionplugins_loadedComicBookManagementSystem.php:135
actionadmin_enqueue_scriptsclass.comicbookmanagementsystem.php:5
actionwp_enqueue_scriptsclass.comicbookmanagementsystem.php:6
actionadmin_menuclass.comicbookmanagementsystem.php:7
Maintenance & Trust

Comic Book Management System Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9
Last updatedApr 15, 2023
PHP min version
Downloads2K

Community Trust

Rating40/100
Number of ratings1
Active installs10
Alternatives

Comic Book Management System Alternatives

Comic Book Management System

Comic Book Management System

comicbookmanagementsystemweeklypicks

B
83

Comic Book Management System Weekly Picks allows users to display seven comic book, picks of the week in an animated display.

10 1 CVE
ComicPress to Comic Easel Migrator

ComicPress to Comic Easel Migrator

cp2ce

A
85

Will convert Comic Categories from ComicPress and turn them into Comic Post Types for Comic Easel

300 No CVEs
Manga+Press Comic Manager

Manga+Press Comic Manager

mangapress

A
92

Manga+Press is a webcomic management system for WordPress.

100 No CVEs
Kommiku

Kommiku

kommiku

A
85

A Online Media viewer. A plug-in that creates pages that can be used as a Manga, Comic, Movie, or Novel Viewer or a Portfolio.

10 No CVEs
Tides

Tides

tides

A
85

Do you publish posts about Anime, Film, Animation, Manga, Comics, Games, Literature, Arts, or Writing? Submit to Tides to expand your readership.

10 No CVEs
Developer Profile

Comic Book Management System Developer Profile

Inksplat Web Design & Development

3 plugins · 20 total installs

68
trust score
Avg Security Score
84/100
Avg Patch Time
435 days
View full developer profile
Detection Fingerprints

How We Detect Comic Book Management System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/comicbookmanagementsystem/css/cbms.css/wp-content/plugins/comicbookmanagementsystem/css/cbms_admin.css/wp-content/plugins/comicbookmanagementsystem/js/cbms.js/wp-content/plugins/comicbookmanagementsystem/js/cbms_admin.js/wp-content/plugins/comicbookmanagementsystem/owl/owl.carousel.js/wp-content/plugins/comicbookmanagementsystem/owl/owl.carousel.min.css/wp-content/plugins/comicbookmanagementsystem/owl/owl.theme.default.css
Script Paths
/wp-content/plugins/comicbookmanagementsystem/js/cbms_admin.js/wp-content/plugins/comicbookmanagementsystem/js/cbms.js/wp-content/plugins/comicbookmanagementsystem/owl/owl.carousel.js
Version Parameters
comicbookmanagementsystem/css/cbms.css?ver=comicbookmanagementsystem/css/cbms_admin.css?ver=comicbookmanagementsystem/js/cbms.js?ver=comicbookmanagementsystem/js/cbms_admin.js?ver=comicbookmanagementsystem/owl/owl.carousel.js?ver=comicbookmanagementsystem/owl/owl.carousel.min.css?ver=comicbookmanagementsystem/owl/owl.theme.default.css?ver=

HTML / DOM Fingerprints

CSS Classes
cbms_welcomecbms_listallcbms_addbook
Data Attributes
data-cbms-id
FAQ

Frequently Asked Questions about Comic Book Management System