Does rental have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is rental compatible with WordPress 5.7.15?

According to WordPress.org data, rental 1.0 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is rental compatible with PHP 7.0+?

rental requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is rental updated?

rental was last updated on Sep 2, 2021. Frequent updates are generally a positive security signal.

What is rental's security score?

rental has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

rental Security & Risk Analysis

wordpress.org/plugins/rental

*Details : Rental plugin is used for rental things like rent your car and yatch etc..

10 active installs v1.0 PHP 7.0+ WP 5.2+ Updated Sep 2, 2021

pankaj-bachhalpostpostsrentalrental-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is rental Safe to Use in 2026?

Generally Safe

Score 85/100

rental has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "rental" v1.0 plugin presents a mixed security posture. On the positive side, it demonstrates good practices in output escaping, with 97% of outputs being properly handled, and there are no known vulnerabilities (CVEs) or bundled libraries. However, significant concerns arise from its attack surface and taint analysis. The presence of 10 AJAX handlers, with a concerning 4 lacking authentication checks, creates a substantial entry point for potential attacks. This is exacerbated by two identified taint flows with unsanitized paths, indicating a risk of code injection or unauthorized data manipulation. The lack of capability checks further compounds these issues, meaning that even if authentication were in place, user roles might not be properly enforced. While the plugin has no historical vulnerabilities, this does not negate the immediate risks identified in the static and taint analysis.

Key Concerns

AJAX handlers without auth checks
Taint flow with unsanitized path (critical)
Taint flow with unsanitized path (critical)
SQL queries with prepared statement issues (40%)
Missing capability checks
Low nonce check coverage

Vulnerabilities

None known

rental Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

rental Release Timeline

v1.0.0

Code Analysis

Analyzed Apr 16, 2026

rental Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

199 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared10 total queries

Output Escaping

97% escaped205 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

<all-pages> (views/all-pages.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

rental Attack Surface

Entry Points11

Unprotected4

AJAX Handlers 10

authwp_ajax_addingdatarental.php:204

noprivwp_ajax_addingdatarental.php:206

authwp_ajax_editdatarental.php:258

noprivwp_ajax_editdatarental.php:260

authwp_ajax_deletemyrantaldatarental.php:318

noprivwp_ajax_deletemyrantaldatarental.php:320

authwp_ajax_subcheckrental.php:343

noprivwp_ajax_subcheckrental.php:345

authwp_ajax_checkavailabitydatadeleterental.php:386

noprivwp_ajax_checkavailabitydatadeleterental.php:388

Shortcodes 1

[rental-code] rental.php:411

WordPress Hooks 4

actionadmin_enqueue_scriptsrental.php:27

actionadmin_enqueue_scriptsrental.php:105

actionwp_enqueue_scriptsrental.php:120

actionadmin_menurental.php:181

Maintenance & Trust

rental Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedSep 2, 2021

PHP min version7.0

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

rental Alternatives

Duplicate Page

duplicate-page

Duplicate Posts, Pages and Custom Posts easily using single click

3.0M 3 CVEs

Post Types Order

post-types-order

100

Sort posts and custom post type objects using a drag-and-drop, sortable JavaScript AJAX interface, or through the default WordPress dashboard

600K No CVEs

Intuitive Custom Post Order

intuitive-custom-post-order

Intuitively reorder Posts, Pages, Custom Post Types, Taxonomies, and Sites with a simple drag-and-drop interface.

400K 4 CVEs

WP Shortcodes Plugin — Shortcodes Ultimate

shortcodes-ultimate

A comprehensive collection of visual components for your site

400K 36 CVEs

Duplicate Post

copy-delete-posts

Duplicate post

300K 2 CVEs

Developer Profile

rental Developer Profile

teamdream

3 plugins · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect rental

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/rental/assets/css/style.css/wp-content/plugins/rental/assets/all.min.css/wp-content/plugins/rental/assets/css/bootstrap.min.css/wp-content/plugins/rental/assets/js/icon.js/wp-content/plugins/rental/assets/js/script.js

HTML / DOM Fingerprints

JS Globals

ajax_object

FAQ