WP-Safety

My Reads – a virtual bookshelf for tracking and reviewing your reads Security & Risk Analysis

wordpress.org/plugins/my-reads

Track your reading with My Reads! A plugin for you to display a virtual bookshelf of your reads. Review what you're reading, rate, favorite, and more.

10 active installs v1.0.4 PHP 8.0+ WP 6.7+ Updated Feb 27, 2026
book-reviewsmy-readsreading-trackerreading-listvirtual-bookshelf
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is My Reads – a virtual bookshelf for tracking and reviewing your reads Safe to Use in 2026?

Generally Safe

Score 100/100

My Reads – a virtual bookshelf for tracking and reviewing your reads has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "my-reads" plugin v1.0.4 exhibits a generally strong security posture based on the provided static analysis. The absence of known CVEs and a clean vulnerability history suggest responsible development practices and prompt patching. The plugin demonstrates good adherence to security fundamentals, with all identified SQL queries utilizing prepared statements and a high percentage of output escaping. The presence of nonce and capability checks on most entry points further bolsters its defense against common web vulnerabilities.

While the attack surface appears minimal and well-protected, the static analysis does reveal a few areas for potential concern. The presence of file operations and external HTTP requests, though not flagged as immediately dangerous in the taint analysis, warrant careful review to ensure they are implemented securely and do not introduce unforeseen vulnerabilities. The 7% of improperly escaped output, though small, could still lead to cross-site scripting (XSS) vulnerabilities if the unescaped outputs are user-controllable.

Overall, "my-reads" v1.0.4 appears to be a relatively secure plugin. Its strengths lie in its robust use of prepared statements and a good rate of output escaping, coupled with a clean vulnerability history. The main areas for vigilance would be ensuring the secure implementation of file operations and external requests, and addressing any remaining unescaped output to achieve a near-perfect security score.

Key Concerns

  • Improperly escaped output detected
Vulnerabilities
None known

My Reads – a virtual bookshelf for tracking and reviewing your reads Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

My Reads – a virtual bookshelf for tracking and reviewing your reads Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
15
75 escaped
Nonce Checks
3
Capability Checks
6
File Operations
5
External Requests
1
Bundled Libraries
0

Output Escaping

83% escaped90 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
myreads_register_settings (includes\my-reads-settings-page.php:55)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

My Reads – a virtual bookshelf for tracking and reviewing your reads Attack Surface

Entry Points2
Unprotected0

REST API Routes 2

GET/wp-json/my-reads/v1/all-the-readsincludes\api\myreads-all-reads-endpoint.php:20
POST/wp-json/my-reads/v1/fetch-amazon-dataincludes\api\myreads-amazon-info-endpoint.php:16
WordPress Hooks 28
actionrest_api_initincludes\api\myreads-all-reads-endpoint.php:15
actionrest_api_initincludes\api\myreads-amazon-info-endpoint.php:12
actionwp_after_insert_postincludes\bootstrap.php:11
actioninitincludes\custom-post-types-taxonomies.php:12
actioninitincludes\custom-post-types-taxonomies.php:13
actioninitincludes\custom-post-types-taxonomies.php:14
filtermanage_edit-myreads_columnsincludes\custom-post-types-taxonomies.php:15
actionmanage_myreads_posts_custom_columnincludes\custom-post-types-taxonomies.php:16
actionrestrict_manage_postsincludes\custom-post-types-taxonomies.php:17
actionpre_get_postsincludes\custom-post-types-taxonomies.php:18
filterdefault_contentincludes\custom-post-types-taxonomies.php:19
actionafter_setup_themeincludes\enqueue-assets.php:9
actionadmin_enqueue_scriptsincludes\enqueue-assets.php:10
actionadmin_enqueue_scriptsincludes\enqueue-assets.php:11
filterpost_thumbnail_htmlincludes\enqueue-assets.php:12
actionadmin_menuincludes\my-reads-settings-page.php:9
actioncustom_menu_orderincludes\my-reads-settings-page.php:10
actionadmin_initincludes\my-reads-settings-page.php:11
actionadmin_noticesincludes\my-reads-settings-page.php:12
actionadmin_initincludes\my-reads-settings-page.php:13
actionadmin_initincludes\my-reads-settings-page.php:14
actioninitincludes\register-blocks.php:16
actionallowed_block_types_allincludes\register-blocks.php:17
actionwp_print_scriptsincludes\register-blocks.php:18
filterblock_categories_allincludes\register-blocks.php:19
actioninitincludes\register-meta.php:8
actioninitincludes\register-patterns.php:8
actioninitincludes\register-templates.php:13
Maintenance & Trust

My Reads – a virtual bookshelf for tracking and reviewing your reads Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 27, 2026
PHP min version8.0
Downloads981

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

My Reads – a virtual bookshelf for tracking and reviewing your reads Alternatives

WP Review Slider

WP Review Slider

wp-facebook-reviews

A
90

Use the official Facebook API to show off your review and recommendations in a slider or grid! A simple and easy way to display your Twitter and Faceb …

7K 5 CVEs
EmbedSocial – Social Media Feeds, Reviews and Galleries

EmbedSocial – Social Media Feeds, Reviews and Galleries

embedalbum-pro

A
99

EmbedSocial allows you to collect and embed social media content on any website automatically.

4K 2 CVEs
WP Reading List

WP Reading List

wp-reading-list

A
85

WP Reading List is a plugin designed to help organize and display books, magazines, articles, and anything else that you have read lately.

50 No CVEs
Bestseller Lists from the New York Times

Bestseller Lists from the New York Times

bestseller-lists-from-new-york-times

A
100

Integrate bestseller lists from the New York Times into your own site with a user-friendly interface.

10 No CVEs
My Kindle Books

My Kindle Books

my-kindle-books

A
85

Show off your favourite Kindle books and make money doing it, by adding a book list page on your WordPress blog.

10 No CVEs
Developer Profile

My Reads – a virtual bookshelf for tracking and reviewing your reads Developer Profile

Nate Finch

2 plugins · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect My Reads – a virtual bookshelf for tracking and reviewing your reads

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/my-reads/build/slotfill-my-reads/index.js/wp-content/plugins/my-reads/includes/images/article.webp/wp-content/plugins/my-reads/includes/images/book.webp/wp-content/plugins/my-reads/includes/images/headphones.webp
Script Paths
/wp-content/plugins/my-reads/includes/js/admin-my-reads-settings-page.js/wp-content/plugins/my-reads/build/slotfill-my-reads/index.js
Version Parameters
my-reads/build/slotfill-my-reads/index.asset.php

HTML / DOM Fingerprints

Data Attributes
data-post-type="myreads"
JS Globals
MYREADS_SETTINGSMYREADS_CPT
REST Endpoints
/wp-json/my-reads/v1/all-the-reads/
FAQ

Frequently Asked Questions about My Reads – a virtual bookshelf for tracking and reviewing your reads