WP-Safety

iGMS Direct Booking Security & Risk Analysis

wordpress.org/plugins/igms-direct-booking

iGMS is introducing the Direct Booking Widget. It allows your guests to select and book dates with you right via your website.

100 active installs v1.3 PHP 5.6+ WP 5.6.2+ Updated Sep 26, 2023
airbnbbookingdirect-bookingigmsreservations
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is iGMS Direct Booking Safe to Use in 2026?

Generally Safe

Score 85/100

iGMS Direct Booking has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The plugin "igms-direct-booking" v1.3 exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries, avoiding dangerous functions, file operations, and external HTTP requests. Its static analysis reveals a minimal attack surface with no identified unprotected entry points like AJAX handlers or REST API routes. Furthermore, the plugin has no known vulnerability history, indicating a lack of publicly disclosed security flaws.

Key Concerns

  • All output is unescaped
  • No nonce checks implemented
  • No capability checks implemented
Vulnerabilities
None known

iGMS Direct Booking Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

iGMS Direct Booking Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
16
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped16 total outputs
Attack Surface

iGMS Direct Booking Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[igms-direct-booking-widget-reservation] includes\register-reservation-widget-shortcode.php:3
WordPress Hooks 7
actionwidgets_initincludes\register-direct-booking-reservation-widget.php:9
actionadmin_enqueue_scriptsincludes\register-reservation-widget-block.php:3
actionrest_api_initroute\IDBW_Route.php:24
actionadmin_menusettings\IDBW_Settings.php:36
actionadmin_initsettings\IDBW_Settings.php:330
actionwp_enqueue_scriptsview\direct-booking-settings-page.php:3
actionadmin_enqueue_scriptsview\direct-booking-settings-page.php:4
Maintenance & Trust

iGMS Direct Booking Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8
Last updatedSep 26, 2023
PHP min version5.6
Downloads5K

Community Trust

Rating0/100
Number of ratings0
Active installs100
Alternatives

iGMS Direct Booking Alternatives

SimplyBook.me – Booking and reservations calendar

SimplyBook.me – Booking and reservations calendar

simplybook

A
100

Simply add a booking calendar to your site to schedule bookings, reservations, appointments and to collect payments.

20K No CVEs
FareHarbor for WordPress

FareHarbor for WordPress

fareharbor

A
99

Easily add FareHarbor reservation calendars, booking embeds, and buttons to your site.

9K 2 CVEs
VikBooking Hotel Booking Engine & PMS

VikBooking Hotel Booking Engine & PMS

vikbooking

B
82

Famous Booking Engine, PMS and Hotel Reservations plugin for property managers. The best solution for accommodations to drive more direct bookings.

9K 17 CVEs
Pinpoint Booking System – Version 2

Pinpoint Booking System – Version 2

booking-system

A
93

Book anything, anytime, anywhere.

3K 13 CVEs
Salon Booking System – Free Version

Salon Booking System – Free Version

salon-booking-system

D
39

Appointment scheduling plugin for salons, spas, and wellness centers to streamline bookings and improve customer satisfaction.

3K 1 unpatched
Developer Profile

iGMS Direct Booking Developer Profile

igms

1 plugin · 100 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect iGMS Direct Booking

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/igms-direct-booking/blocks/DirectBookingReservationBlock.js/wp-content/plugins/igms-direct-booking/view/UpdateDirectBookingWidgetSettings.js
Script Paths
/wp-content/plugins/igms-direct-booking/blocks/DirectBookingReservationBlock.js/wp-content/plugins/igms-direct-booking/view/UpdateDirectBookingWidgetSettings.js
Version Parameters
igms-direct-booking/style.css?ver=igms-direct-booking/view/direct-booking-settings-page.js?ver=igms-direct-booking/blocks/DirectBookingReservationBlock.js?ver=

HTML / DOM Fingerprints

CSS Classes
wordpress-direct-bookingdirect-booking-logindirect-booking-widget-igms-logindirect-booking-settings-headerdirect-booking-settings-titledirect-booking-settings-user-info
Data Attributes
id="wordpressDirectBookingWidget"id="directBookingSettingsProfileInfo"
JS Globals
directBookingWidgetPropertiesupdateRoutes
FAQ

Frequently Asked Questions about iGMS Direct Booking