Does Lord Linus Business hours have any unpatched vulnerabilities?

No. All known vulnerabilities in Lord Linus Business hours have been patched as of the latest data update. Always keep the plugin updated to the latest version.

How often is Lord Linus Business hours updated?

Lord Linus Business hours was last updated on Aug 16, 2013. Frequent updates are generally a positive security signal.

What is Lord Linus Business hours's security score?

Lord Linus Business hours has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Lord Linus Business hours Security & Risk Analysis

wordpress.org/plugins/lord-linus-business-hours

This plugin allows you to add a widget on your website which shows the business hours of your business on your website

10 active installs v1.1 PHP + WP 2.0.2+ Updated Aug 16, 2013

business-hourscontact-formlord-linusworking-hours

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Lord Linus Business hours Safe to Use in 2026?

Generally Safe

Score 85/100

Lord Linus Business hours has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The 'lord-linus-business-hours' plugin v1.1 exhibits a concerning security posture despite having no recorded CVEs and a seemingly small attack surface. The static analysis reveals the presence of the 'unserialize' function, which is notoriously risky when handling user-supplied data due to potential object injection vulnerabilities. Furthermore, only a meager 6% of output is properly escaped, indicating a high likelihood of Cross-Site Scripting (XSS) vulnerabilities. The taint analysis, while limited in scope, identified two flows with unsanitized paths, further amplifying the risk of XSS or other injection attacks. The absence of any capability checks or nonce checks on potential entry points (though the analysis reports zero entry points, the presence of 'unserialize' and poor output escaping suggests these might be missing or ineffective). The lack of vulnerability history might suggest obscurity rather than inherent security, especially given the identified code signals. While the use of prepared statements for SQL queries is a strong positive, it is overshadowed by the significant risks posed by unserialization and inadequate output escaping.

Key Concerns

Dangerous function 'unserialize' used
Low percentage of properly escaped output
Flows with unsanitized paths found
No nonce checks
No capability checks

Vulnerabilities

None known

Lord Linus Business hours Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Lord Linus Business hours Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$getopionlord = unserialize($getopionlord);lordlinus-business-hours.php:469

Output Escaping

6% escaped31 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

lbh_menu (lordlinus-business-hours.php:23)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Lord Linus Business hours Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionadmin_menulordlinus-business-hours.php:443

actionwidgets_initlordlinus-business-hours.php:444

Maintenance & Trust

Lord Linus Business hours Maintenance & Trust

Maintenance Signals

WordPress version tested

Last updatedAug 16, 2013

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Lord Linus Business hours Alternatives

HelloBox

hellobox

Responsive, highly visible contact call-to-action. Combining instant-contact buttons, vCard import, location, business hours, messaging and more.

10 No CVEs

Contact Form 7

contact-form-7

Just another contact form plugin. Simple but flexible.

10.0M 8 CVEs

Akismet Anti-spam: Spam Protection

akismet

The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.

6.0M 2 CVEs

WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More

wpforms-lite

The best WordPress contact form plugin. Drag & Drop form builder to create beautiful contact forms, payment forms, & other custom forms.

6.0M 14 CVEs

Database Addon for Contact Form 7 – CFDB7

contact-form-cfdb7

Save and manage Contact Form 7 messages. Never lose important data. It is a lightweight contact form 7 database plugin.

600K 7 CVEs

Developer Profile

Lord Linus Business hours Developer Profile

Rohitashv Singhal

2 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Lord Linus Business hours

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/lord-linus-business-hours/bootstrap-assets/css/bootstrap.css

HTML / DOM Fingerprints

CSS Classes

alertalert-info

Data Attributes

id="mclose"id="mstart"id="mend"id="tuclose"id="tustart"id="tuend"+16 more

JS Globals

jQuery

Shortcode Output

[LORDLINUS_BUSINESS_HOURS]

FAQ