Does Logbook have any unpatched vulnerabilities?

No. All known vulnerabilities in Logbook have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Logbook compatible with WordPress 4.9.29?

According to WordPress.org data, Logbook 1.1.0 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is Logbook compatible with PHP 5.4+?

Logbook requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Logbook updated?

Logbook was last updated on Mar 8, 2018. Frequent updates are generally a positive security signal.

What is Logbook's security score?

Logbook has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Logbook Security & Risk Analysis

wordpress.org/plugins/logbook

This plugin is for logging users' activities. You can check anytime who and what has changed.

2K active installs v1.1.0 PHP 5.4+ WP 4.8+ Updated Mar 8, 2018

eventlogsecurity

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Logbook Safe to Use in 2026?

Generally Safe

Score 85/100

Logbook has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The 'logbook' v1.1.0 plugin exhibits a generally strong security posture based on the static analysis. The absence of known CVEs and the comprehensive use of prepared statements for SQL queries are positive indicators. Furthermore, the high percentage of properly escaped output and the presence of nonce and capability checks on identified entry points demonstrate adherence to good security practices. There are no identified taint flows or vulnerable external interactions, which further strengthens its security profile. The main concern arises from the single instance of a dangerous function, 'exec', being present in the code. While no specific exploit path is detailed, the use of such functions always carries inherent risk, especially if the input to 'exec' is not rigorously sanitized. Without further analysis of how 'exec' is used, this remains a potential, albeit isolated, area of concern. The vulnerability history being completely clean is a significant strength, suggesting a history of responsible development and maintenance. Overall, 'logbook' v1.1.0 appears to be a relatively secure plugin with a few minor areas that warrant careful review, primarily the use of the 'exec' function.

Key Concerns

Use of dangerous function 'exec'

Vulnerabilities

None known

Logbook Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Logbook Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

46 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

exec$u = exec( 'whoami' );src\LogBook\Log.php:133

SQL Query Safety

100% prepared2 total queries

Output Escaping

90% escaped51 total outputs

Attack Surface

Logbook Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 17

actionlogbook_scheduled_eventlogbook.php:39

actionplugins_loadedlogbook.php:65

actionrest_api_initlogbook.php:103

actionmanage_logbook_posts_custom_columnsrc\LogBook\Admin.php:14

actionadmin_enqueue_scriptssrc\LogBook\Admin.php:16

filtermanage_edit-logbook_columnssrc\LogBook\Admin.php:17

filtermanage_edit-logbook_sortable_columnssrc\LogBook\Admin.php:18

filtermanage_edit-logbook_columnssrc\LogBook\Admin.php:20

filterrequestsrc\LogBook\Admin.php:21

filterbulk_actions-edit-logbooksrc\LogBook\Admin.php:22

actionrestrict_manage_postssrc\LogBook\Admin.php:26

actionadmin_menusrc\LogBook\Admin.php:30

filteradmin_titlesrc\LogBook\Admin.php:32

actionadmin_menusrc\LogBook\Admin.php:43

actionplugins_loadedsrc\LogBook\Event.php:14

actionshutdownsrc\LogBook\Event.php:15

actioninitsrc\LogBook\Post_Type.php:11

Scheduled Events 2

logbook_scheduled_event

Maintenance & Trust

Logbook Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedMar 8, 2018

PHP min version5.4

Downloads49K

Community Trust

Rating100/100

Number of ratings5

Active installs2K

Alternatives

Logbook Alternatives

Logify WP – Activity Log & User Audit Log

logify-wp

100

Logify WP - Activity Log & User Audit Log tracks critical changes, logins, and updates with searchable logs for site security.

200 No CVEs

Jeepers Peepers: WP Syslog

jeepers-peepers

100

An extensible tool for recording WordPress events to a system log.

60 No CVEs

Aspexi Login Audit

aspexi-login-audit

This plugin helps you to keep an audit trail of user login activities such as successful login, logout, failed login and more to ensure your site perf …

10 No CVEs

Logify – Event Logger, Activity Monitor, Activity Log & Audit Log

logify

100

Monitor, track, and review everything happening on your WordPress site. Logify helps you stay secure, stay compliant, and stay in control.

10 No CVEs

WP Security Audit Log addon for Paid Memberships Pro

wp-security-audit-log-for-paid-memberships-pro

An Addon to the WP Security Audit Log plugin to log events from Paid Memberships Pro plugin

10 No CVEs

Developer Profile

Logbook Developer Profile

Takayuki Miyauchi

20 plugins · 41K total installs

trust score

Avg Security Score

86/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Logbook

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/logbook/dist/css/logbook.css/wp-content/plugins/logbook/dist/js/logbook.js

Script Paths

/wp-content/plugins/logbook/dist/js/logbook.js

Version Parameters

logbook/dist/css/logbook.css?ver=logbook/dist/js/logbook.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-logbook-token

REST Endpoints

/wp-json/logbook/v1/logs

FAQ

Logbook Security & Risk Analysis

Is Logbook Safe to Use in 2026?

Generally Safe

Key Concerns

Logbook Security Vulnerabilities

Logbook Code Analysis

Dangerous Functions Found

SQL Query Safety

Output Escaping

Logbook Attack Surface

Scheduled Events 2

Logbook Maintenance & Trust

Maintenance Signals

Community Trust

Logbook Alternatives

Logify WP – Activity Log & User Audit Log

Jeepers Peepers: WP Syslog

Aspexi Login Audit

Logify – Event Logger, Activity Monitor, Activity Log & Audit Log

WP Security Audit Log addon for Paid Memberships Pro

Logbook Developer Profile

How We Detect Logbook

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Logbook