CP Reservation Calendar Security & Risk Analysis
wordpress.org/plugins/cp-reservation-calendarCP Reservation Calendar is a booking calendar that allows selecting dates - ex: check-in and check-out dates - for a reservation.
Is CP Reservation Calendar Safe to Use in 2026?
Generally Safe
Score 98/100CP Reservation Calendar has a strong security track record. Known vulnerabilities have been patched promptly.
The 'cp-reservation-calendar' plugin v1.1.42 exhibits a mixed security posture. While it demonstrates some good practices such as using prepared statements for the majority of its SQL queries and including nonce and capability checks, there are significant concerns. The presence of an unprotected AJAX handler represents a critical entry point that could be exploited by unauthenticated users. Furthermore, the taint analysis reveals two high-severity flows with unsanitized paths, indicating potential vulnerabilities where user-supplied data is not properly validated or escaped before being used in sensitive operations. The plugin's vulnerability history, specifically a past critical SQL injection vulnerability, reinforces the need for vigilance regarding input sanitization and database interaction.
Key Concerns
- Unprotected AJAX handler
- High severity taint flows with unsanitized paths
- Low percentage of properly escaped output
- Past critical SQL Injection vulnerability
CP Reservation Calendar Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
CP Reservation Calendar < 1.1.7 - SQL Injection
CP Reservation Calendar Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
CP Reservation Calendar Attack Surface
AJAX Handlers 1
WordPress Hooks 12
Maintenance & Trust
CP Reservation Calendar Maintenance & Trust
Maintenance Signals
Community Trust
CP Reservation Calendar Alternatives
FareHarbor for WordPress
fareharbor
Easily add FareHarbor reservation calendars, booking embeds, and buttons to your site.
Starboard Suite Reservation Calendars
starboard-suite-reservation-calendars
Easily add Starboard Suite booking calendars to your WordPress site
BetterBook
betterbook
BetterBook is an online booking platform that enables you to take online bookings for events, classes and appointments from your WordPress website.
Booking Calendar
booking
Original "Booking Calendar" plugin. Easily manage full-day bookings, time-slot appointments, or events in our all-in-one, outstanding booking system.
WP Booking System – Booking Calendar
wp-booking-system
The booking calendar plugin for WordPress. Get easy online booking with this lightweight and powerful booking calendar.
CP Reservation Calendar Developer Profile
34 plugins · 89K total installs
How We Detect CP Reservation Calendar
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/cp-reservation-calendar/dex_reservations.js/wp-content/plugins/cp-reservation-calendar/dex_reservations.css/wp-content/plugins/cp-reservation-calendar/admin/js/dex_reservations_admin.js/wp-content/plugins/cp-reservation-calendar/admin/css/dex_reservations_admin.css/wp-content/plugins/cp-reservation-calendar/languages/dex_reservations.jsdex_reservations.cssadmin/js/dex_reservations_admin.jsadmin/css/dex_reservations_admin.csscp-reservation-calendar/dex_reservations.js?ver=cp-reservation-calendar/dex_reservations.css?ver=HTML / DOM Fingerprints
dex-reservations-calendardex-reservations-formdex-reservation-calendar-wrapper<!-- dex_reservations --><!-- START: dex_reservations_activation_redirect --><!-- END: dex_reservations_activation_redirect -->data-dex-calendar-iddata-dex-reservation-formdata-dex-calendar-optionsdex_reservations_ajax_object/wp-json/dex_reservations/v1/booking[cp_reservation_calendar][reservation_form]