GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Security & Risk Analysis

GemBoards is a project and task management plugin that helps teams manage projects, Kanban boards, and sprint workflows from one place.

0 active installs v1.0.4 PHP 7.4+ WP 6.8+ Updated Mar 5, 2026

kanban-boardproject-managementsprinttask-managementteam-collaboration

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Safe to Use in 2026?

Generally Safe

Score 100/100

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 29d ago

Risk Assessment

The gemboards v1.0.4 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any recorded vulnerabilities in its history is a significant positive indicator. The code demonstrates excellent practices with 100% proper output escaping and a high percentage (97%) of SQL queries utilizing prepared statements. Furthermore, the plugin does not perform file operations or external HTTP requests, limiting potential attack vectors. The presence of a decent number of capability checks (68) and nonce checks (5) suggests an effort to protect its functionalities.

However, a closer look at the static analysis reveals a few areas that warrant attention. While the attack surface appears to be zero in terms of direct entry points like AJAX handlers, REST API routes, and shortcodes, the presence of one cron event introduces a potential, albeit indirect, entry point that might be overlooked for authentication. The taint analysis showing zero flows is positive, but it's important to note that this analysis might be limited in scope or complexity, and the absence of reported flows doesn't guarantee absolute safety.

In conclusion, gemboards v1.0.4 demonstrates a commendable commitment to secure coding practices, particularly in output escaping and SQL query handling, and its clean vulnerability history is reassuring. The primary concerns are the potential oversight of the cron event as an entry point and the possibility of limitations in the taint analysis. Nonetheless, the plugin is currently in a good security state with no immediately apparent critical or high-risk issues.

Key Concerns

Cron event without explicit auth check mentioned

Vulnerabilities

None known

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Code Analysis

Dangerous Functions

Raw SQL Queries

221 prepared

Unescaped Output

281 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

97% prepared229 total queries

Output Escaping

100% escaped282 total outputs

Attack Surface

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 64

actionplugins_loadedgemboards.php:39

actiongemboards_loadedgemboards.php:40

actionadmin_menuincludes\admin.php:13

actionadmin_noticesincludes\admin.php:14

actionadmin_enqueue_scriptsincludes\admin.php:15

actioninitincludes\ajax.php:25

actionrest_api_initincludes\api\boards.php:26

actionrest_api_initincludes\api\cards.php:22

actionrest_api_initincludes\api\dashboard.php:38

actionrest_api_initincludes\api\menu.php:34

actionrest_api_initincludes\api\notification.php:23

actionrest_api_initincludes\api\projects.php:36

actionrest_api_initincludes\api\users.php:23

actionwp_enqueue_scriptsincludes\assets.php:16

actionadmin_enqueue_scriptsincludes\assets.php:17

filterrest_prepare_commentincludes\classes\mention\comment.php:14

filterrest_after_insert_commentincludes\classes\mention\comment.php:36

actioninitincludes\database.php:15

actioninitincludes\database.php:16

actioninitincludes\database.php:17

actioninitincludes\database.php:18

actioninitincludes\database.php:19

actioninitincludes\database.php:20

filterinitincludes\frontend\invitation.php:17

actionadmin_post_gemboards_invite_registrationincludes\frontend\invitation.php:18

actionadmin_post_nopriv_gemboards_invite_registrationincludes\frontend\invitation.php:19

filtertemplate_includeincludes\frontend\template.php:14

filtershow_admin_barincludes\frontend.php:14

actiongemboards/card/createdincludes\hooks\activity.php:24

actiongemboards/card/title_updatedincludes\hooks\activity.php:25

actiongemboards/card/description_updatedincludes\hooks\activity.php:26

actiongemboards/card/column_id_updatedincludes\hooks\activity.php:27

actiongemboards/card/due_date_updatedincludes\hooks\activity.php:28

actionset_object_termsincludes\hooks\activity.php:31

actionadded_term_relationshipincludes\hooks\activity.php:32

actiondeleted_term_relationshipsincludes\hooks\activity.php:33

actiongemboards/card/user_assignedincludes\hooks\activity.php:36

actiongemboards/card/user_removedincludes\hooks\activity.php:37

actiongemboards/task/attachment/createdincludes\hooks\activity.php:40

actiongemboards/task/attachment/deletedincludes\hooks\activity.php:41

actionwp_insert_commentincludes\hooks\activity.php:44

actiongemboards/sprint/after/object_saveincludes\hooks\board.php:23

actiongemboards/sprint/deletedincludes\hooks\board.php:24

actiongemboards/task_checklist_group/after/object_saveincludes\hooks\board.php:26

actiongemboards/task_checklist_group/deletedincludes\hooks\board.php:27

actiongemboards/task_checklist/after/object_saveincludes\hooks\board.php:29

actiongemboards/task_checklist/deletedincludes\hooks\board.php:30

actiongemboards/card/deletedincludes\hooks\card.php:22

filterajax_query_attachments_argsincludes\hooks\media-library.php:13

actiongemboards/schedule/expired_new_user_invitationincludes\hooks\user-invitation.php:18

filterget_avatar_urlincludes\hooks\user.php:20

filteruser_profile_picture_descriptionincludes\hooks\user.php:21

filteruser_has_capincludes\hooks\user.php:22

filtermap_meta_capincludes\hooks\user.php:24

filterrest_comment_collection_paramsincludes\hooks.php:17

filterrest_comment_queryincludes\hooks.php:19

actiongemboards/task/mentionedincludes\hooks.php:21

actiongemboards/task_comment/mentionedincludes\hooks.php:22

actiongemboards/board/member/assignedincludes\hooks.php:24

actiongemboards/board/member/removedincludes\hooks.php:25

actionadmin_bar_menuincludes\hooks.php:26

actioninitincludes\installer.php:16

actioninitincludes\rewrite-rules.php:14

filterquery_varsincludes\rewrite-rules.php:15

Scheduled Events 1

gemboards/schedule/expired_new_user_invitation

Maintenance & Trust

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 5, 2026

PHP min version7.4

Downloads370

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Alternatives

Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker

wedevs-project-manager

Ease Project Management and Task Management using a powerful project manager with Kanban board, Gantt chart, milestone tracking & project reporting.

7K 1 unpatched

FluentBoards – Project Management, Task Management, Goal Tracking, Kanban Board, and, Team Collaboration

fluent-boards

The Simplest Project & Task Management Plugin Specifically Crafted for Agencies, Freelancers & Founders.

6K 2 CVEs

Taskbuilder – Project Management & Task Management Tool With Kanban Board

taskbuilder

Taskbuilder is a project management and task management plugin for WordPress with Kanban-style boards to organize and track work.

800 11 CVEs

LazyTasks – Project & Task Management with Collaboration, Kanban and Gantt Chart

lazytasks-project-task-management

Comprehensive Task Management, FREE! Minimalist design with powerful features to boost your productivity.

70 2 unpatched

Easy Project

iprojectweb

Easy to use yet powerful project management tool

10 No CVEs

Developer Profile

GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin Developer Profile

Kodezen LLC

7 plugins · 5K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

15 days

View full developer profile

Detection Fingerprints

How We Detect GemBoards – Project Management, Task Management, Sprint Planning, Team Collaboration, and Kanban board Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/gemboards/assets/css/admin-menu.css/wp-content/plugins/gemboards/assets/build/app.css/wp-content/plugins/gemboards/assets/build/app.

Script Paths

/wp-content/plugins/gemboards/assets/build/app.

Version Parameters

gemboards/style.css?ver=gemboards-admin-menugemboards-web-fontgemboards-app-stylegemboards-app-scripts

HTML / DOM Fingerprints

CSS Classes

gemboards-admin-settings

Data Attributes