Does Kursolino have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Kursolino compatible with WordPress 5.4.19?

According to WordPress.org data, Kursolino 1.0 has been tested up to WordPress 5.4.19. Check the plugin's changelog for the latest compatibility information.

Is Kursolino compatible with PHP 5.6.20+?

Kursolino requires PHP 5.6.20 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Kursolino updated?

Kursolino was last updated on Apr 23, 2020. Frequent updates are generally a positive security signal.

What is Kursolino's security score?

Kursolino has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Kursolino Security & Risk Analysis

wordpress.org/plugins/kursolino

Access and integrate your contents from the course management software as a service of Kursolino.

10 active installs v1.0 PHP 5.6.20+ WP 5.0+ Updated Apr 23, 2020

availability-calendarbooking-calendarbooking-systemcoursesevents-calendar

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Kursolino Safe to Use in 2026?

Generally Safe

Score 85/100

Kursolino has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "kursolino" v1.0 plugin presents a mixed security posture. While it demonstrates good practices by avoiding dangerous functions, performing all SQL queries with prepared statements, and having no known past vulnerabilities, several concerning areas were identified in the static analysis. The plugin exposes an unprotected AJAX handler, which is a direct entry point for potential attacks. Furthermore, a significant portion of its output (55%) is not properly escaped, increasing the risk of cross-site scripting (XSS) vulnerabilities. The taint analysis also revealed a flow with unsanitized paths, though it was not classified as critical or high severity.

Given the absence of known CVEs and its use of prepared statements, the plugin appears to have some foundational security awareness. However, the unprotected AJAX handler and insufficient output escaping are significant weaknesses that could be exploited. The lack of nonce checks and capability checks on the identified entry points further exacerbates these risks. Addressing the unprotected AJAX endpoint and improving output sanitization are critical next steps for enhancing the plugin's security.

Key Concerns

Unprotected AJAX handler
Insufficient output escaping (45% proper)
Flow with unsanitized paths (taint analysis)
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Kursolino Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Kursolino Release Timeline

v1.0Current

Code Analysis

Analyzed Mar 16, 2026

Kursolino Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

9 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

45% escaped20 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<kursolino> (kursolino.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Kursolino Attack Surface

Entry Points2

Unprotected1

AJAX Handlers 1

authwp_ajax_kursolino_ajaxkursolino.php:79

Shortcodes 1

[kursolino] kursolino.php:76

WordPress Hooks 5

actionadmin_enqueue_scriptskursolino.php:70

actionplugins_loadedkursolino.php:71

actionadmin_menukursolino.php:72

actionadmin_initkursolino.php:73

actionadd_meta_boxeskursolino.php:75

Maintenance & Trust

Kursolino Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19

Last updatedApr 23, 2020

PHP min version5.6.20

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Kursolino Alternatives

Doctor Appointment Booking Plugin – EMSB

emsb-service-booking

Allow your customers to book your service like appointment, event, reservation, etc. Manage your bookings through wp admin dashboard.

80 No CVEs

WP Booking System – Booking Calendar

wp-booking-system

The booking calendar plugin for WordPress. Get easy online booking with this lightweight and powerful booking calendar.

20K 7 CVEs

Pinpoint Booking System – Version 2

booking-system

Book anything, anytime, anywhere.

3K 1 unpatched

Appointmind

appointmind

Include your Appointmind or Schedule Organizer online appointment scheduling calender in any article or in the sidebar.

100 2 CVEs

Online Scheduling and Appointment Booking System – Bookly

bookly-responsive-appointment-booking-tool

Appointment booking system for WordPress — schedule appointments, manage calendars, send reminders, take payments. Start booking today!

70K 10 CVEs

Developer Profile

Kursolino Developer Profile

unused

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Kursolino

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/kursolino/assets/css/style.css/wp-content/plugins/kursolino/assets/js/script.js

Script Paths

/wp-content/plugins/kursolino/assets/js/script.js

Version Parameters

kursolino/assets/css/style.css?ver=1.0kursolino/assets/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

kursolino_meta_boxkursolino_meta_field

Data Attributes

id="kursolino_iframe_module"name="module"id="kursolino_shortcode"

Shortcode Output

<div id="kursolino_meta_box" class="kursolino_meta_box"><div id="kursolino_shortcode" class="kursolino_meta_box">

FAQ