Does Bookings for Devllo Events have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Bookings for Devllo Events compatible with WordPress 5.7.15?

According to WordPress.org data, Bookings for Devllo Events 0.2 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is Bookings for Devllo Events compatible with PHP 5.5+?

Bookings for Devllo Events requires PHP 5.5 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Bookings for Devllo Events updated?

Bookings for Devllo Events was last updated on Nov 7, 2021. Frequent updates are generally a positive security signal.

What is Bookings for Devllo Events's security score?

Bookings for Devllo Events has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Bookings for Devllo Events Security & Risk Analysis

wordpress.org/plugins/devllo-events-bookings

Add Booking capabilities to Events

0 active installs v0.2 PHP 5.5+ WP 4.4+ Updated Nov 7, 2021

calendareventevent-managementevent-managerevents

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Bookings for Devllo Events Safe to Use in 2026?

Generally Safe

Score 85/100

Bookings for Devllo Events has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "devllo-events-bookings" plugin v0.2 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by utilizing prepared statements for all its SQL queries and includes a nonce check. There are no known vulnerabilities (CVEs) associated with this plugin, nor has it historically had any recorded vulnerabilities, suggesting a generally stable and well-maintained codebase. However, the static analysis reveals significant areas for concern. A substantial 37% of output escaping is not properly handled, indicating a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not meticulously sanitized before being displayed. Furthermore, the taint analysis identified two high-severity flows with unsanitized paths, suggesting that user input is being processed in a way that could lead to security issues, such as path traversal or other input-based attacks, despite the absence of explicit file operations or external HTTP requests.

Key Concerns

High severity unsanitized taint flows
Significant percentage of unescaped output
No capability checks on entry points

Vulnerabilities

None known

Bookings for Devllo Events Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Bookings for Devllo Events Release Timeline

v0.2Current

v0.1

Code Analysis

Analyzed Apr 16, 2026

Bookings for Devllo Events Code Analysis

Dangerous Functions

Raw SQL Queries

12 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared12 total queries

Output Escaping

37% escaped41 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

devllo_events_payment_form (payments/payments.php:2)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Bookings for Devllo Events Attack Surface

Entry Points4

Unprotected0

Shortcodes 4

[devllo_events_fields] inc/devllo-events-bookings-checkout-fields.php:7

[devllo-register] inc/devllo-events-bookings-form.php:6

[reg_login] inc/devllo-events-bookings-functions.php:21

[devllo-checkout] payments/payments.php:62

WordPress Hooks 20

actionadmin_initadmin/devllo-events-bookings-admin.php:33

actionadmin_enqueue_scriptsadmin/devllo-events-bookings-admin.php:34

actiondevllo_events_settings_page_itemadmin/devllo-events-bookings-admin.php:35

actiondevllo_events_admin_menu_itemadmin/devllo-events-bookings-admin.php:37

actiondevllo_events_admin_menu_itemadmin/devllo-events-bookings-dashboard.php:24

actionadmin_enqueue_scriptsadmin/devllo-events-bookings-dashboard.php:25

actiondevllo_events_sidebar_itemadmin/devllo-events-bookings-dashboard.php:26

actionwp_enqueue_scriptsdevllo-events-bookings.php:40

actionadmin_noticesdevllo-events-bookings.php:63

actionadmin_initinc/devllo-events-bookings-activator.php:9

actiondevllo_events_bookings_before_checkout_forminc/devllo-events-bookings-checkout-fields.php:8

actiondevllo_events_bookings_after_add_attendeeinc/devllo-events-bookings-email-function.php:9

actiondevllo_events_bookings_after_add_attendeeinc/devllo-events-bookings-email-function.php:10

filterwp_mail_content_typeinc/devllo-events-bookings-email-function.php:11

actioninitinc/devllo-events-bookings-form.php:7

actiondevllo_events_after_side_single_eventinc/devllo-events-bookings-functions.php:11

actiondevllo_events_after_side_single_eventinc/devllo-events-bookings-functions.php:12

actiondevllo_events_after_side_single_eventinc/devllo-events-bookings-functions.php:13

actionwp_headinc/devllo-events-bookings-functions.php:15

actiondevllo_events_after_main_single_eventinc/devllo-events-bookings-functions.php:19

Maintenance & Trust

Bookings for Devllo Events Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedNov 7, 2021

PHP min version5.5

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Bookings for Devllo Events Alternatives

Sched Event Management Software

embed-sched

Easily manage and promote events! Complete with mobile apps, multiple event calendar views, customization, speaker/sponsor directories and more!

200 No CVEs

Events by Devllo

devllo-events

This is a simple event management plugin for adding and listing your events, show event locations on map, link to online Event locations.

10 No CVEs

Sugar Calendar – Events Calendar, Event Tickets, and Events Management Platform

sugar-calendar-lite

Easily manage events and sell tickets on your WordPress site. Sugar Calendar is easy-to-use, reliable, and exceptionally powerful. See for yourself.

10K 2 CVEs

EventON – Events Calendar

eventon-lite

Create beautiful, responsive event calendars with unlimited events, repeating schedules, virtual support, and a sleek minimal design!

6K 12 CVEs

Quick Event Manager

quick-event-manager

Simple event manager. No messing about, just add events and a shortcode and the plugin does the rest for you.

1K 5 CVEs

Developer Profile

Bookings for Devllo Events Developer Profile

Devllo Plugins

4 plugins · 10 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Bookings for Devllo Events

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/devllo-events-bookings/inc/css/styles.css

HTML / DOM Fingerprints

CSS Classes

devllo-events-bookings-admin-settingsdevllo_events_bookings_payment_pagedevllo-events-bookings-payment-radiodevllo-events-bookings-pbc-instructiondevllo-event-registration-pagedevllo-event-checkout-page

HTML Comments

Prevent loading file directly

Data Attributes

devllo-events-bookings-payment-radiodevllo-events-bookings-pbc-instructiondevllo-event-registration-pagedevllo-event-checkout-page

Shortcode Output

[devllo-register][devllo-checkout]

FAQ