Does FV bbPress Tweaks have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is FV bbPress Tweaks compatible with WordPress 4.9.29?

According to WordPress.org data, FV bbPress Tweaks 0.2.7.4 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is FV bbPress Tweaks updated?

FV bbPress Tweaks was last updated on Jun 1, 2018. Frequent updates are generally a positive security signal.

What is FV bbPress Tweaks's security score?

FV bbPress Tweaks has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

FV bbPress Tweaks Security & Risk Analysis

wordpress.org/plugins/fv-bbpress-tweaks

Adds moderation and pretty URL structure to your bbPress forums.

10 active installs v0.2.7.4 PHP + WP 3.0.1+ Updated Jun 1, 2018

commentsspam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is FV bbPress Tweaks Safe to Use in 2026?

Generally Safe

Score 85/100

FV bbPress Tweaks has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "fv-bbpress-tweaks" v0.2.7.4 plugin exhibits a generally good security posture based on the provided static analysis. The absence of identified CVEs and the plugin's vulnerability history, which shows no recorded issues, are significant strengths. The code analysis reveals a healthy number of nonce and capability checks, and importantly, no identified critical or high-severity taint flows. This suggests that the plugin is likely resistant to common injection vulnerabilities and unauthorized actions.

However, there are areas for improvement that present minor concerns. A significant portion of the SQL queries are not using prepared statements, which could expose the plugin to SQL injection vulnerabilities if input is not properly sanitized before being used in these queries. Additionally, a substantial percentage of output is not properly escaped, posing a risk of Cross-Site Scripting (XSS) vulnerabilities. While the attack surface is currently reported as zero, this could change with future updates, and continuous vigilance regarding proper input sanitization and output escaping remains crucial.

In conclusion, the plugin is in a relatively secure state, largely due to its clean vulnerability history and the absence of critical code analysis findings. The primary risks lie in the unescaped output and the use of raw SQL queries. Addressing these specific code-level concerns would further strengthen its security and mitigate potential exploitation vectors.

Key Concerns

50% of SQL queries not using prepared statements
Only 33% of outputs properly escaped

Vulnerabilities

None known

FV bbPress Tweaks Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

FV bbPress Tweaks Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

FV bbPress Tweaks Code Analysis

Dangerous Functions

Raw SQL Queries

5 prepared

Unescaped Output

24 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared10 total queries

Output Escaping

33% escaped72 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

3 flows

handle_row_actions_approve_topic_notice (bbpressmoderation.php:783)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

FV bbPress Tweaks Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 88

filterbbp_new_topic_pre_insertbbpressmoderation.php:41

filterbbp_new_reply_pre_insertbbpressmoderation.php:42

filterbbp_new_topic_redirect_tobbpressmoderation.php:44

filterbbp_has_topics_querybbpressmoderation.php:46

filterbbp_has_replies_querybbpressmoderation.php:47

filterbbp_get_topic_permalinkbbpressmoderation.php:49

filterbbp_get_reply_permalinkbbpressmoderation.php:50

filterbbp_get_topic_titlebbpressmoderation.php:52

filterbbp_get_reply_contentbbpressmoderation.php:54

filterbbp_topic_admin_linksbbpressmoderation.php:57

filterbbp_reply_admin_linksbbpressmoderation.php:58

actionbbp_get_requestbbpressmoderation.php:59

actionbbp_get_requestbbpressmoderation.php:60

actionbbp_get_requestbbpressmoderation.php:61

filterbbp_get_form_topic_subscribedbbpressmoderation.php:64

filterbbp_current_user_can_publish_repliesbbpressmoderation.php:66

actionbbp_new_topicbbpressmoderation.php:68

actionbbp_new_replybbpressmoderation.php:69

actionadmin_initbbpressmoderation.php:81

actionadmin_menubbpressmoderation.php:82

filterpost_row_actionsbbpressmoderation.php:84

actionpending_to_publishbbpressmoderation.php:86

filterpost_row_actionsbbpressmoderation.php:89

actionload-edit.phpbbpressmoderation.php:90

actionadmin_noticesbbpressmoderation.php:91

actionload-edit.phpbbpressmoderation.php:92

actionadmin_noticesbbpressmoderation.php:93

filterbbp_show_lead_topicbbpressmoderation.php:98

filterbbp_get_topic_admin_linksbbpressmoderation.php:100

actiontemplate_redirectbbpressmoderation.php:105

filterbbp_get_reply_contentbbpressmoderation.php:106

filterbbp_get_topic_contentbbpressmoderation.php:107

filterget_avatarbbpressmoderation.php:108

filterbbp_get_reply_author_linkbbpressmoderation.php:109

filterbbp_get_topic_author_linkbbpressmoderation.php:110

filterbbp_get_topic_author_avatarbbpressmoderation.php:111

actionbbp_theme_before_topic_started_bybbpressmoderation.php:112

actionbbp_theme_after_topic_started_bybbpressmoderation.php:113

actionbbp_get_reply_revision_logbbpressmoderation.php:114

actionbbp_get_topic_revision_logbbpressmoderation.php:115

actioninitbbpressmoderation.php:118

filterbbp_current_user_can_access_create_reply_formbbpressmoderation.php:120

filterpre_get_postsbbpressmoderation.php:123

filterbbp_get_do_not_reply_addressbbpressmoderation.php:125

actionwpbbpressmoderation.php:133

filtercomment_cookie_lifetimebbpressmoderation.php:135

filterwp_insert_post_databbpressmoderation.php:333

filterbbp_get_topic_permalinkbbpressmoderation.php:443

filteris_bbpressbbpressmoderation.php:1323

filterwp_mail_from_namebbpressmoderation.php:1407

actionadd_meta_boxescomment-to-topic.php:9

actionsave_postcomment-to-topic.php:10

filtercomment_form_beforecomment-to-topic.php:12

filterpre_comment_approvedcomment-to-topic.php:13

filterbbp_filter_anonymous_post_datacomment-to-topic.php:14

actionadmin_noticesfv-bbpress.php:33

actioninitfv-bbpress.php:59

actionsave_postfv-bbpress.php:79

filterinitfv-bbpress.php:203

filtertopic_rewrite_rulesfv-bbpress.php:207

filterforum_rewrite_rulesfv-bbpress.php:208

filterpost_type_linkfv-bbpress.php:209

filterbbp_new_topic_pre_insertfv-bbpress.php:212

filterbbp_new_reply_pre_insertfv-bbpress.php:213

actionbbp_new_topicfv-bbpress.php:214

actionbbp_new_replyfv-bbpress.php:215

actionadmin_menufv-bbpress.php:221

filterbbp_is_topic_publishedfv-bbpress.php:224

actionbbp_new_replyfv-bbpress.php:225

actionbbp_theme_before_topic_admin_linksfv-bbpress.php:227

actionbbp_theme_after_topic_admin_linksfv-bbpress.php:228

actionbbp_theme_before_reply_admin_linksfv-bbpress.php:229

actionbbp_theme_after_reply_admin_linksfv-bbpress.php:230

filterbbp_current_user_can_access_create_reply_formfv-bbpress.php:232

filterbbp_subscription_mail_messagefv-bbpress.php:233

filterexcerpt_lengthfv-bbpress.php:1143

filterexcerpt_morefv-bbpress.php:1144

actionbbp_widgets_initfv-bbpress.php:1233

actionbbp_theme_after_topic_titlefv-bbpress.php:1238

filterget_avatarfv-bbpress.php:1250

actionbbp_readyfv-bbpress.php:1263

actionbbp_theme_after_topic_form_submit_buttonsearch-before-post.php:3

actionwp_footersearch-before-post.php:8

actionbbp_theme_after_topic_form_titlesearch-before-post.php:109

actionbbp_theme_before_topic_form_forumsearch-before-post.php:121

actionbbp_theme_after_topic_form_forumsearch-before-post.php:130

actionbbp_theme_before_topic_form_titlesearch-before-post.php:139

filterbbp_current_user_can_access_create_topic_formsearch-before-post.php:169

Maintenance & Trust

FV bbPress Tweaks Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedJun 1, 2018

PHP min version

Downloads4K

Community Trust

Rating94/100

Number of ratings3

Active installs10

Alternatives

FV bbPress Tweaks Alternatives

Akismet Anti-spam: Spam Protection

akismet

The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.

6.0M 2 CVEs

Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]

disable-comments

Allows administrators to globally disable comments on their site. Comments can be disabled according to post type. Multisite friendly.

1.0M 1 CVE

Antispam Bee

antispam-bee

100

Sophisticated antispam plugin for effective daily comment and trackback spam-fighting. Built with data protection and privacy in mind.

700K 1 CVE

Spam protection, Honeypot, Anti-Spam by CleanTalk

cleantalk-spam-protect

Blocks spam comments, fake users, contact form spam and more. No impact on SEO. Privacy focused. CAPTCHA free, premium Antispam plugin.

200K 13 CVEs

Captcha Code

captcha-code-authentication

GDPR compatible captcha anti-spam protection for login form, comments form, registration form & lost password form. Eliminate spam with captcha.

100K 2 CVEs

Developer Profile

FV bbPress Tweaks Developer Profile

FolioVision

19 plugins · 48K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

1098 days

View full developer profile

Detection Fingerprints

How We Detect FV bbPress Tweaks

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/fv-bbpress-tweaks/css/style.css/wp-content/plugins/fv-bbpress-tweaks/js/script.js

Script Paths

/wp-content/plugins/fv-bbpress-tweaks/js/script.js

Version Parameters

fv-bbpress-tweaks/css/style.css?ver=fv-bbpress-tweaks/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

fv-bbpress-tweaks-admin-notice

HTML Comments

<!-- NOTE:

TODO:
- cookies on WPE don't work so bbpressmoderation causes new poster to get 404 when posting a topic because of custom URLs
- on Patently-O, there is something with the rewrites for jobs..

UM issues/tasks:
+ approve UM membership to new forum users
-- this doesn't them an email so either trigger that email sending there or send the email here
+ assign this UM role to new forum users Member - subscriber
+ UM user accounts with the same firstname.lastname are not differenciated: solved by appending number to Last name
- UM doesn't give me the option to assign all posts to a specific user when deleting - just uses ID = 1
-->

+3 more

Data Attributes

data-fv-bbpress-tweaks-option-id

FAQ