Holiday Calendar Security & Risk Analysis
wordpress.org/plugins/holiday-calendarA WordPress plugin to manage holidays with titles, descriptions, dates, and links, displaying past, present, and future holidays.
Is Holiday Calendar Safe to Use in 2026?
Generally Safe
Score 92/100Holiday Calendar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The holiday-calendar plugin v1.0.3 exhibits a strong security posture based on the provided static analysis. The complete absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. Furthermore, the plugin demonstrates good output escaping practices with 91% of outputs properly escaped and includes essential security checks like nonce and capability checks. The minimal attack surface, primarily consisting of a single shortcode with no identified unprotected entry points, further contributes to its secure design.
The vulnerability history is also a significant positive indicator, showing zero known CVEs and no recorded historical vulnerabilities. This suggests a history of responsible development and patching, or potentially a lack of historical security scrutiny. The absence of any taint analysis results with unsanitized paths or critical/high severity flows reinforces the current assessment of low risk.
While the plugin demonstrates excellent security practices and a clean history, the lack of dynamic analysis (taint analysis) data might leave some edge cases undiscovered. However, based solely on the static analysis and vulnerability history provided, this plugin appears to be very secure with minimal identifiable risks.
Holiday Calendar Security Vulnerabilities
Holiday Calendar Release Timeline
Holiday Calendar Code Analysis
Output Escaping
Holiday Calendar Attack Surface
Shortcodes 1
WordPress Hooks 7
Maintenance & Trust
Holiday Calendar Maintenance & Trust
Maintenance Signals
Community Trust
Holiday Calendar Alternatives
Store Vacation for WooCommerce
woo-store-vacation
Take a break from selling by putting your WooCommerce shop on hold with vacation mode. Keep customers informed during vacations and holidays.
Holiday Mode for WooCommerce
holiday-mode-for-woocommerce
Set your WooCommerce® shop to holiday/vacation mode. Use date range to schedule closed time.
Super Advent Calendar
super-advent-calendar
Add a super flexible advent calendar to your website for festive giveaways or counting down the holidays.
WP Responsive Holiday/Events Calendar
wp-responsive-holiday-events-calendar
Beautiful way to show your upcoming Holiday and Events in WordPress.
Holiday class post calendar
holiday-class-post-calendar
投稿カレンダーに日曜、土曜、祭日及び独自の休日などのスタイル設定するためのclassを付加します。
Holiday Calendar Developer Profile
2 plugins · 0 total installs
How We Detect Holiday Calendar
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/holiday-calendar/assets/css/style.css/wp-content/plugins/holiday-calendar/assets/js/script.js/wp-content/plugins/holiday-calendar/assets/css/admin-style.css/wp-content/plugins/holiday-calendar/assets/js/admin-script.jsassets/js/script.jsassets/js/admin-script.jsholiday-calendar/assets/css/style.css?ver=holiday-calendar/assets/js/script.js?ver=holiday-calendar/assets/css/admin-style.css?ver=holiday-calendar/assets/js/admin-script.js?ver=HTML / DOM Fingerprints
hcpt__holiday_dates_containerhcpt__date-fieldhcpt__buttonhcpt__removehcpt__add_date_buttonname="hcpt__holiday_dates[]"id="hcpt__holiday_date_name="hcpt__holiday_page_link"id="hcpt__holiday_page_link"name="hcpt__holiday_button_text"id="hcpt__holiday_button_text"+2 morehcpt__removeDateFieldhcpt__addDateField[hcpt__holiday_viewer]