Does Kotobee Integration have any unpatched vulnerabilities?

No. All known vulnerabilities in Kotobee Integration have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Kotobee Integration compatible with WordPress 5.9.13?

According to WordPress.org data, Kotobee Integration 1.5.5 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is Kotobee Integration compatible with PHP 7.0+?

Kotobee Integration requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Kotobee Integration updated?

Kotobee Integration was last updated on Feb 9, 2022. Frequent updates are generally a positive security signal.

What is Kotobee Integration's security score?

Kotobee Integration has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Kotobee Integration Security & Risk Analysis

wordpress.org/plugins/kotobee

Control access to your Kotobee cloud ebooks and libraries using other plugins such as WooCommerce, WooCommerce Subscriptions, and Memberful.

30 active installs v1.5.5 PHP 7.0+ WP 4.7+ Updated Feb 9, 2022

ebooksmemberfulpublishingsellwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Kotobee Integration Safe to Use in 2026?

Generally Safe

Score 85/100

Kotobee Integration has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "kotobee" plugin v1.5.5 exhibits a generally positive security posture with significant strengths, notably its exclusive use of prepared statements for all SQL queries and a high percentage of properly escaped output. The absence of any recorded vulnerabilities (CVEs) in its history is also a strong indicator of good development practices and diligent maintenance. The plugin also demonstrates an awareness of security by implementing nonce and capability checks in its code.

However, a primary concern lies in the attack surface. The plugin exposes a single AJAX handler that lacks authentication checks. While this is the only unprotected entry point, it represents a potential gateway for attackers to exploit. Furthermore, the taint analysis revealed one flow with unsanitized paths. While not flagged as critical or high severity, unsanitized paths can still lead to vulnerabilities if not handled with extreme care. The presence of file operations and external HTTP requests, while not inherently insecure, warrants careful review to ensure they are implemented safely and do not introduce further risks.

In conclusion, "kotobee" v1.5.5 is a relatively secure plugin, largely due to its robust handling of database operations and output sanitization, combined with a clean vulnerability history. The main areas for improvement are the authentication mechanism for the identified AJAX handler and a thorough investigation of the unsanitized path flow to ensure no latent security weaknesses exist.

Key Concerns

AJAX handler without auth checks
Flow with unsanitized paths

Vulnerabilities

None known

Kotobee Integration Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Kotobee Integration Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

107 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

81% escaped132 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

4 flows1 with unsanitized paths

<linking-page> (admin\linking-page.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Kotobee Integration Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_kotobee_get_product_variationsclasses\KotobeeWoocommerceIntegration.php:37

WordPress Hooks 18

actionadmin_menuclasses\KotobeeIntegration.php:619

actionadmin_enqueue_scriptsclasses\KotobeeIntegration.php:621

actionadmin_noticesclasses\KotobeeMemberfulIntegration.php:24

actionwp_loadedclasses\KotobeeMemberfulIntegration.php:29

actionadmin_noticesclasses\KotobeeWoocommerceIntegration.php:21

actionadmin_noticesclasses\KotobeeWoocommerceIntegration.php:26

actionadd_meta_boxes_productclasses\KotobeeWoocommerceIntegration.php:29

actionwoocommerce_variation_headerclasses\KotobeeWoocommerceIntegration.php:32

actionadmin_enqueue_scriptsclasses\KotobeeWoocommerceIntegration.php:40

actionwoocommerce_order_status_changedclasses\KotobeeWoocommerceIntegration.php:43

actionwoocommerce_subscription_status_updatedclasses\KotobeeWoocommerceIntegration.php:46

actionadmin_menukotobee.php:136

actionadmin_noticeskotobee.php:172

actionadmin_noticeskotobee.php:177

actioninitkotobee.php:194

actioninitkotobee.php:202

actionadmin_headkotobee.php:228

actionadmin_noticeskotobee.php:246

Maintenance & Trust

Kotobee Integration Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedFeb 9, 2022

PHP min version7.0

Downloads2K

Community Trust

Rating100/100

Number of ratings11

Active installs30

Alternatives

Kotobee Integration Alternatives

CartFlows – Funnel Builder & Checkout Plugin for WooCommerce

cartflows

1 WordPress funnel builder & WooCommerce checkout plugin. Boost AOV with one-click upsells, order bumps & high-converting checkout pages.

200K 6 CVEs

ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

shopengine

WooCommerce builder for Elementor and Gutenberg. It offers product templates, product sliders, shopping cart, quick view, Woo wishlist, product filter …

90K 4 CVEs

Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy

dokan-lite

Transform your WooCommerce site into a multivendor marketplace with Dokan – an AI powered & advanced WooCommerce marketplace solution

40K 8 CVEs

FunnelKit – Funnel Builder for WooCommerce Checkout

funnel-builder

Create high-converting WooCommerce checkout pages, WooCommerce thank you pages & sales funnels with the highest-rated WordPress funnel builder.

40K 12 CVEs

WCFM Marketplace – Multivendor Marketplace for WooCommerce

wc-multivendor-marketplace

The most featured and powerful multi vendor plugin for WordPress, setup fantastic woocommerce marketplace store in minutes.

20K 1 unpatched

Developer Profile

Kotobee Integration Developer Profile

kotobee

1 plugin · 30 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Kotobee Integration

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/kotobee/assets/css/frontend.css/wp-content/plugins/kotobee/assets/js/frontend.js

Script Paths

/wp-content/plugins/kotobee/assets/js/frontend.js

Version Parameters

kotobee/assets/css/frontend.css?ver=kotobee/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

kotobee-integration

HTML Comments

Data Attributes

data-kotobee-ebook-iddata-kotobee-ebook-typedata-kotobee-product-id

JS Globals

kotobee_api_urlkotobee_serial_keykotobee_ebook_idkotobee_ebook_type

Shortcode Output

[kotobee_ebook]

FAQ