Does Comic Book Management System have any unpatched vulnerabilities?

No. All known vulnerabilities in Comic Book Management System have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Comic Book Management System compatible with WordPress 6.2.9?

According to WordPress.org data, Comic Book Management System 2.2.0 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

How often is Comic Book Management System updated?

Comic Book Management System was last updated on Apr 15, 2023. Frequent updates are generally a positive security signal.

What is Comic Book Management System's security score?

Comic Book Management System has a WP-Safety security score of 83/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Comic Book Management System Security & Risk Analysis

wordpress.org/plugins/comicbookmanagementsystemweeklypicks

Comic Book Management System Weekly Picks allows users to display seven comic book, picks of the week in an animated display.

10 active installs v2.2.0 PHP + WP 4.0+ Updated Apr 15, 2023

comic-book-management-system-weekly-pickscomic-bookscomicsncbdweekly-picks

B · Generally Safe

CVEs total1

Unpatched0

Last CVENov 14, 2022

Plugin page Download

Safety Verdict

Is Comic Book Management System Safe to Use in 2026?

Mostly Safe

Score 83/100

Comic Book Management System is generally safe to use though it hasn't been updated recently. 1 past CVE were resolved. Keep it updated.

1 known CVELast CVE: Nov 14, 2022Updated 2yr ago

Risk Assessment

The plugin "comicbookmanagementsystemweeklypicks" v2.2.0 exhibits a concerning security posture despite a relatively small attack surface. While there are no identified AJAX handlers or REST API routes without authentication, and no taint analysis revealed critical or high severity issues, the static analysis flags significant weaknesses. The complete lack of prepared statements for SQL queries is a major red flag, suggesting a high likelihood of SQL injection vulnerabilities. Furthermore, the low percentage of properly escaped output indicates potential for Cross-Site Scripting (XSS) attacks. The vulnerability history, featuring one critical CVE for SQL injection, reinforces these concerns and suggests a pattern of insecure coding practices related to database interactions. The absence of nonce and capability checks on its single shortcode is also a notable oversight that could be exploited.

Key Concerns

All SQL queries lack prepared statements
Only 31% of output is properly escaped
No nonce checks on entry points
No capability checks on entry points
1 critical CVE historically

Vulnerabilities

Comic Book Management System Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

Patched Has unpatched

Severity Breakdown

Critical

1 total CVE

CVE-2022-3856critical · 9.1Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Comic Book Management System < 2.2.0 - Authenticated (Administrator+) SQL Injection

Nov 14, 2022 Patched in 2.2.0 (435d)

Code Analysis

Analyzed Mar 17, 2026

Comic Book Management System Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared4 total queries

Output Escaping

31% escaped13 total outputs

Attack Surface

Comic Book Management System Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[display_weekly_picks] class.cbms_weekly_picks_admin_panel.php:144

WordPress Hooks 3

actionadmin_enqueue_scriptsclass.cbms_weekly_picks_admin_panel.php:5

actionwp_enqueue_scriptsclass.cbms_weekly_picks_admin_panel.php:6

actionadmin_menuclass.cbms_weekly_picks_admin_panel.php:7

Maintenance & Trust

Comic Book Management System Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedApr 15, 2023

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Comic Book Management System Alternatives

ComicPress to Comic Easel Migrator

cp2ce

Will convert Comic Categories from ComicPress and turn them into Comic Post Types for Comic Easel

300 No CVEs

Manga+Press Comic Manager

mangapress

Manga+Press is a webcomic management system for WordPress.

100 No CVEs

Kommiku

kommiku

A Online Media viewer. A plug-in that creates pages that can be used as a Manga, Comic, Movie, or Novel Viewer or a Portfolio.

10 No CVEs

Tides

tides

Do you publish posts about Anime, Film, Animation, Manga, Comics, Games, Literature, Arts, or Writing? Submit to Tides to expand your readership.

10 No CVEs

Developer Profile

Comic Book Management System Developer Profile

Inksplat Web Design & Development

1 plugin · 10 total installs

trust score

Avg Security Score

83/100

Avg Patch Time

435 days

View full developer profile

Detection Fingerprints

How We Detect Comic Book Management System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/comicbookmanagementsystemweeklypicks/css/cbms_weeklypicks_admin.css/wp-content/plugins/comicbookmanagementsystemweeklypicks/js/cbms_weeklypicks.js/wp-content/plugins/comicbookmanagementsystemweeklypicks/css/cbms_weeklypicks.css/wp-content/plugins/comicbookmanagementsystemweeklypicks/img/icon.png

Script Paths

/wp-content/plugins/comicbookmanagementsystemweeklypicks/js/cbms_weeklypicks.js

Version Parameters

comicbookmanagementsystemweeklypicks/css/cbms_weeklypicks_admin.css?ver=comicbookmanagementsystemweeklypicks/js/cbms_weeklypicks.js?ver=comicbookmanagementsystemweeklypicks/css/cbms_weeklypicks.css?ver=

HTML / DOM Fingerprints

Shortcode Output

[display_weekly_picks]

FAQ