Does Restaurant Solutions – Checklist have any unpatched vulnerabilities?

Yes — Restaurant Solutions – Checklist currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is Restaurant Solutions – Checklist compatible with WordPress 5.1.22?

According to WordPress.org data, Restaurant Solutions – Checklist 1.0.0 has been tested up to WordPress 5.1.22. Check the plugin's changelog for the latest compatibility information.

How often is Restaurant Solutions – Checklist updated?

Restaurant Solutions – Checklist was last updated on Mar 30, 2019. Frequent updates are generally a positive security signal.

What is Restaurant Solutions – Checklist's security score?

Restaurant Solutions – Checklist has a WP-Safety security score of 64/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Restaurant Solutions – Checklist Security & Risk Analysis

wordpress.org/plugins/restaurant-solutions-checklist

Create an interactive checklist for your managers to use that saves and stores a report when they click submit. Then you can recall any list from any …

0 active installs v1.0.0 PHP + WP 3.0.1+ Updated Mar 30, 2019

checklistrestaurant-solutions

C · Use Caution

CVEs total1

Unpatched1

Last CVEFeb 28, 2024

Plugin page Download

Safety Verdict

Is Restaurant Solutions – Checklist Safe to Use in 2026?

Use With Caution

Score 64/100

Restaurant Solutions – Checklist has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Feb 28, 2024Updated 7yr ago

Risk Assessment

The restaurant-solutions-checklist plugin exhibits a mixed security posture. While it demonstrates good practices by avoiding dangerous functions, file operations, and external HTTP requests, significant concerns arise from its attack surface and taint analysis results. The presence of multiple AJAX handlers lacking proper authentication checks is a major vulnerability. Furthermore, the taint analysis reveals a substantial number of flows with unsanitized paths, including five classified as high severity, indicating potential for malicious input to be processed without adequate sanitization.

The plugin's vulnerability history, while not currently critical or high, includes a medium-severity Cross-Site Scripting (XSS) vulnerability that is still unpatched. This pattern, combined with the high-severity taint flows, suggests a recurring issue with input validation and sanitization, which could be exploited to achieve XSS or other injection-type attacks. The plugin also has a single nonce check for its nine entry points, which is insufficient to protect against many common web attacks.

In conclusion, while the plugin avoids some common pitfalls, the unprotected AJAX handlers, numerous unsanitized taint flows, and the unpatched XSS vulnerability present a notable risk. The lack of robust authorization on multiple entry points and the identified high-severity taint issues warrant immediate attention. Addressing these areas will be crucial to improving the plugin's overall security.

Key Concerns

Unprotected AJAX handlers
High severity taint flows
Unpatched CVEs (medium severity)
Insufficient nonce checks
Low percentage of properly escaped output

Vulnerabilities

Restaurant Solutions – Checklist Security Vulnerabilities

CVEs by Year

1 CVE in 2024 · unpatched

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-1977medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Restaurant Solutions – Checklist 1.0.0 - Authenticated (Admin+) Stored Cross-Site Scripting

Feb 28, 2024Unpatched

Code Analysis

Analyzed Mar 17, 2026

Restaurant Solutions – Checklist Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

38 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

75% prepared8 total queries

Output Escaping

46% escaped83 total outputs

Data Flows

7 unsanitized

Data Flow Analysis

12 flows7 with unsanitized paths

tab (admin\class-stp-srtc-report.php:42)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Restaurant Solutions – Checklist Attack Surface

Entry Points9

Unprotected4

AJAX Handlers 9

authwp_ajax_create_employeeadmin\class-stp-srtc-staff.php:31

authwp_ajax_get_all_employeeadmin\class-stp-srtc-staff.php:32

authwp_ajax_change_stateadmin\class-stp-srtc-staff.php:33

authwp_ajax_delete_employeeadmin\class-stp-srtc-staff.php:34

authwp_ajax_edit_employeeadmin\class-stp-srtc-staff.php:35

noprivwp_ajax_update_checklistpublic\class-stp-srtc-public.php:55

authwp_ajax_update_checklistpublic\class-stp-srtc-public.php:56

noprivwp_ajax_populate_checklistpublic\class-stp-srtc-public.php:57

authwp_ajax_populate_checklistpublic\class-stp-srtc-public.php:58

WordPress Hooks 14

actioninitadmin\class-stp-srtc-checklist.php:5

actionadd_meta_boxesadmin\class-stp-srtc-checklist.php:6

actionadmin_enqueue_scriptsadmin\class-stp-srtc-checklist.php:7

actionsave_postadmin\class-stp-srtc-checklist.php:8

actionload-edit.phpadmin\class-stp-srtc-checklist.php:9

filterviews_edit-stp_checklistadmin\class-stp-srtc-checklist.php:10

filteredit_form_topadmin\class-stp-srtc-checklist.php:14

actionadmin_menuadmin\class-stp-srtc-menu.php:11

actionplugins_loadedincludes\class-stp-srtc.php:143

actionadmin_enqueue_scriptsincludes\class-stp-srtc.php:158

actionadmin_enqueue_scriptsincludes\class-stp-srtc.php:159

actionwp_enqueue_scriptsincludes\class-stp-srtc.php:174

actionwp_enqueue_scriptsincludes\class-stp-srtc.php:175

filterthe_contentpublic\class-stp-srtc-public.php:54

Maintenance & Trust

Restaurant Solutions – Checklist Maintenance & Trust

Maintenance Signals

WordPress version tested5.1.22

Last updatedMar 30, 2019

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Restaurant Solutions – Checklist Alternatives

PublishPress Checklists: Pre-Publishing Approval Checklist – Validate Post Requirements

publishpress-checklists

100

Define checklist tasks to complete before publishing posts. Make sure your content meets your requirements.

3K No CVEs

Pre-Publish Checklist

pre-publish-checklist

100

Easiest way to make sure your page or post is ready to go live

1K 1 CVE

Checklist

checklist

Turn any list in your blog to a beautiful interactive checklist. Print, Use, Share, Download to Mobile and more. 100% Free.

400 1 unpatched

Checklist in Post

checklist-in-post

Allow creating checklists in posts based on bulleted list.

400 No CVEs

Publishing Checklist

publishing-checklist

Pre-flight your posts.

200 No CVEs

Developer Profile

Restaurant Solutions – Checklist Developer Profile

Joseph LoPreste

2 plugins · 3K total installs

trust score

Avg Security Score

82/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Restaurant Solutions – Checklist

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/restaurant-solutions-checklist/admin/js/jsrender.min.js/wp-content/plugins/restaurant-solutions-checklist/admin/js/checklist.js

Script Paths