WP-Safety

Sports Booking Security & Risk Analysis

wordpress.org/plugins/nd-sports-booking

Perfect solution to manage your sports booking. For any sports activities. Show and manage your booking in the best way possible. sport WP plugin.

200 active installs v1.2 PHP + WP 4.5+ Updated Dec 2, 2024
bookingsports
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Sports Booking Safe to Use in 2026?

Generally Safe

Score 92/100

Sports Booking has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The nd-sports-booking plugin v1.2 exhibits a generally strong security posture in several key areas. The complete absence of known CVEs, unpatched vulnerabilities, and critical or high-severity taint flows is highly encouraging. Furthermore, the plugin demonstrates excellent practices with 100% of its output being properly escaped, eliminating common XSS risks. The presence of nonce checks for all AJAX handlers, along with capability checks, adds another layer of defense against unauthorized actions. The plugin also shows a responsible approach to file operations, with none detected in the static analysis. However, a significant concern lies in the database interaction. All ten detected SQL queries are executed without the use of prepared statements, which represents a substantial risk for SQL injection vulnerabilities. This is the primary weakness identified in the code analysis and significantly impacts the overall security score. Despite the strong history of no recorded vulnerabilities, the inherent risk of raw SQL queries cannot be overlooked and requires immediate attention.

Key Concerns

  • Raw SQL queries without prepared statements
Vulnerabilities
None known

Sports Booking Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Sports Booking Code Analysis

Dangerous Functions
0
Raw SQL Queries
10
0 prepared
Unescaped Output
0
585 escaped
Nonce Checks
8
Capability Checks
1
File Operations
0
External Requests
2
Bundled Libraries
0

SQL Query Safety

0% prepared10 total queries

Output Escaping

100% escaped585 total outputs
Data Flows
All sanitized

Data Flow Analysis

7 flows
nd_spt_add_calendar_view (addons\calendar-view\index.php:14)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Sports Booking Attack Surface

Entry Points15
Unprotected0

AJAX Handlers 14

authwp_ajax_nd_spt_add_order_validation_php_functioninc\admin\3-orders\include\add.php:493
authwp_ajax_nd_spt_import_settings_php_functioninc\admin\7-import-export\index.php:300
authwp_ajax_nd_spt_calendar_phpinc\shortcodes\nd_spt_booking_form.php:1165
noprivwp_ajax_nd_spt_calendar_phpinc\shortcodes\nd_spt_booking_form.php:1166
authwp_ajax_nd_spt_booking_phpinc\shortcodes\nd_spt_booking_form.php:1287
noprivwp_ajax_nd_spt_booking_phpinc\shortcodes\nd_spt_booking_form.php:1288
authwp_ajax_nd_spt_validate_fields_php_functioninc\shortcodes\nd_spt_booking_form.php:1509
noprivwp_ajax_nd_spt_validate_fields_php_functioninc\shortcodes\nd_spt_booking_form.php:1510
authwp_ajax_nd_spt_checkout_phpinc\shortcodes\nd_spt_booking_form.php:1673
noprivwp_ajax_nd_spt_checkout_phpinc\shortcodes\nd_spt_booking_form.php:1674
authwp_ajax_nd_spt_add_to_db_phpinc\shortcodes\nd_spt_booking_form.php:1796
noprivwp_ajax_nd_spt_add_to_db_phpinc\shortcodes\nd_spt_booking_form.php:1797
authwp_ajax_nd_spt_get_timing_phpinc\shortcodes\nd_spt_booking_form.php:1857
noprivwp_ajax_nd_spt_get_timing_phpinc\shortcodes\nd_spt_booking_form.php:1858

Shortcodes 1

[nd_spt_booking_form] inc\shortcodes\nd_spt_booking_form.php:948
WordPress Hooks 34
actionnd_spt_add_menu_page_after_orderaddons\calendar-view\index.php:6
actioncustomize_registeraddons\customizer\index.php:5
actioncustomize_registeraddons\customizer\plugin-colors\index.php:4
actionwp_headaddons\customizer\plugin-colors\index.php:123
actioninitaddons\elementor\index.php:24
actionplugins_loadedaddons\elementor\index.php:25
actionadmin_noticesaddons\elementor\index.php:34
actionadmin_noticesaddons\elementor\index.php:40
actionadmin_noticesaddons\elementor\index.php:46
actionelementor/widgets/widgets_registeredaddons\elementor\index.php:51
actionelementor/elements/categories_registeredaddons\elementor\index.php:134
actionnd_spt_reservation_added_in_dbaddons\message\index.php:121
actionadmin_menuinc\admin\1-timing\index.php:5
actionadmin_initinc\admin\1-timing\index.php:9
actionadmin_menuinc\admin\2-exceptions\index.php:5
actionadmin_initinc\admin\2-exceptions\index.php:9
actionadmin_menuinc\admin\3-orders\include\add.php:4
actionadmin_menuinc\admin\3-orders\index.php:3
actionadmin_menuinc\admin\4-booking-settings\index.php:3
actionadmin_initinc\admin\4-booking-settings\index.php:7
actionadmin_menuinc\admin\5-stripe\index.php:3
actionadmin_initinc\admin\5-stripe\index.php:7
actionadmin_menuinc\admin\6-paypal\index.php:3
actionadmin_initinc\admin\6-paypal\index.php:7
actionadmin_menuinc\admin\7-import-export\index.php:4
actionadmin_menuinc\admin\8-premium-addons\index.php:8
actionadmin_enqueue_scriptsinc\admin\8-premium-addons\index.php:302
actionadmin_menuinc\admin\plugin-settings.php:5
actionadmin_initinc\admin\plugin-settings.php:9
actioninitinc\cpt\cpt-1.php:21
actionplugins_loadednd-sports-booking.php:19
actionwp_enqueue_scriptsnd-sports-booking.php:69
actionadmin_enqueue_scriptsnd-sports-booking.php:78
actionafter_switch_themend-sports-booking.php:88
Maintenance & Trust

Sports Booking Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedDec 2, 2024
PHP min version
Downloads4K

Community Trust

Rating0/100
Number of ratings0
Active installs200
Alternatives

Sports Booking Alternatives

Viking Bookings

Viking Bookings

viking-bookings

A
100

Easily embed booking forms from your Viking Bookings account on your WordPress site.

100 No CVEs
Tennis booking system, Sport tournament management – TennisThor

Tennis booking system, Sport tournament management – TennisThor

tennisthor

A
92

Tennis court bookings for tennis courts & other sports such as table tennis, football etc. Facility booking system. Sport tournament management so …

20 No CVEs
Sports Booking Slot

Sports Booking Slot

sports-booking-slot

A
85

Sports Booking Slot is amazing free plugin that enables one to book and purchase available slots for any sports( indoor & outdoor ) and virtual ga …

10 No CVEs
Court Booking System

Court Booking System

court-booking-system

A
100

Complete booking system for tennis and padel courts with flexible time slots, instructor management, and revenue tracking.

0 No CVEs
LatePoint – Calendar Booking Plugin for Appointments and Events

LatePoint – Calendar Booking Plugin for Appointments and Events

latepoint

F
20

Optimize your appointment scheduling with our plugin. Sync calendars, automate reminders, and keep your bookings organized.

100K 2 unpatched
Developer Profile

Sports Booking Developer Profile

nicdark

4 plugins · 35K total installs

64
trust score
Avg Security Score
79/100
Avg Patch Time
461 days
View full developer profile
Detection Fingerprints

How We Detect Sports Booking

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/nd-sports-booking/assets/css/style.css/wp-content/plugins/nd-sports-booking/assets/css/admin-style.css
Version Parameters
nd-sports-booking/assets/css/style.css?ver=nd-sports-booking/assets/css/admin-style.css?ver=

HTML / DOM Fingerprints

CSS Classes
nd_spt_sectionnd_spt_padding_right_20nd_spt_padding_left_2nd_spt_box_sizing_border_boxnd_spt_margin_top_25nd_spt_margin_0nd_spt_height_10nd_spt_display_table+4 more
Data Attributes
name="nd_spt_sport"name="nd_spt_date"name="nd_spt_order_status"
FAQ

Frequently Asked Questions about Sports Booking