WP-Safety

Review & Product Review by Review Builder Security & Risk Analysis

wordpress.org/plugins/review-builder

Review & Product Review by Review Builder plugin allows you to build a review and star rating section so customers can leave a review for your pro …

90 active installs v2.0.21 PHP + WP 3.9+ Updated Mar 6, 2018
post-reviewproduct-reviewreviewreview-pluginstar-rating
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Review & Product Review by Review Builder Safe to Use in 2026?

Generally Safe

Score 85/100

Review & Product Review by Review Builder has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The 'review-builder' v2.0.21 plugin exhibits a strong static security posture with no identified attack surface, dangerous functions, file operations, or external HTTP requests. The diligent use of prepared statements for all SQL queries is a significant positive indicator, mitigating the risk of SQL injection vulnerabilities. Furthermore, the plugin has no recorded vulnerability history, including no known CVEs, suggesting a well-maintained and secure codebase over time. However, a notable concern arises from the output escaping. With only 59% of outputs properly escaped, there is a significant risk of Cross-Site Scripting (XSS) vulnerabilities. This means that user-supplied data, if not handled carefully before being displayed, could be executed as JavaScript in the browser of other users.

While the absence of critical taint analysis findings and a clean vulnerability history are encouraging, the low percentage of properly escaped output presents a tangible and significant risk. A robust security strategy would involve addressing this output escaping deficiency promptly. In conclusion, the plugin demonstrates good practices in areas like SQL handling and avoiding common attack vectors, but the unescaped output is a critical weakness that needs immediate attention to achieve a truly secure state.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

Review & Product Review by Review Builder Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Review & Product Review by Review Builder Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
67 prepared
Unescaped Output
186
270 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared67 total queries

Output Escaping

59% escaped456 total outputs
Attack Surface

Review & Product Review by Review Builder Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 19
actionplugins_loadedcom\core\SGRB.php:47
actionadmin_menucom\core\SGRB.php:50
actionnetwork_admin_menucom\core\SGRB.php:54
actionadmin_enqueue_scriptscom\core\SGRB.php:61
actionwp_enqueue_scriptscom\core\SGRB.php:62
actionmedia_buttonscom\core\SGRB.php:63
actionwp_headcom\core\SGRB.php:64
filterthe_contentcom\core\SGRB.php:65
actionwp_headcom\core\SGRB.php:67
filterwoocommerce_product_tabscom\core\SGRB.php:68
actionadd_meta_boxes_postcom\core\SGRB.php:70
actionsave_postcom\core\SGRB.php:71
actionwidgets_initcom\core\SGRB.php:72
actionadmin_noticescom\core\SGRB.php:73
filterwoocommerce_product_tabscom\core\SGRB.php:145
actionadmin_footercom\core\SGRB.php:343
filtercomments_opencom\core\SGRB.php:459
actionwpmu_new_blogcom\core\SGRB.php:679
actionwp_headcom\core\SGRB.php:743
Maintenance & Trust

Review & Product Review by Review Builder Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedMar 6, 2018
PHP min version
Downloads36K

Community Trust

Rating96/100
Number of ratings37
Active installs90
Alternatives

Review & Product Review by Review Builder Alternatives

WiserReview Product Reviews for WooCommerce

WiserReview Product Reviews for WooCommerce

wiser-review

A
100

Collect, manage, and display powerful product reviews and testimonials for WooCommerce stores. Boost trust and conversion with automated review collec …

700 No CVEs
Editorial Rating – Product Review & Rating System

Editorial Rating – Product Review & Rating System

editorial-rating

A
100

Add multi-criteria product reviews and star ratings to WordPress posts. Boost engagement, SEO, and sales with editorial ratings.

300 No CVEs
WPSSO Ratings and Reviews

WPSSO Ratings and Reviews

wpsso-ratings-and-reviews

A
100

Adds Ratings and Reviews Features to the WordPress Comments System.

200 No CVEs
Builder for WooCommerce product reviews shortcodes – ReviewShort

Builder for WooCommerce product reviews shortcodes – ReviewShort

woo-product-reviews-shortcode

A
91

Show WooCommerce customer feedback anywhere with WooCommerce reviews shortcodes, beautifully and ...

100 2 CVEs
Yuko Customer Reviews for WooCommerce

Yuko Customer Reviews for WooCommerce

yuko-integration

A
100

Complete WooCommerce product review plugin and customer review system to collect verified reviews, boost SEO, and drive sales with social proof.

90 No CVEs
Developer Profile

Review & Product Review by Review Builder Developer Profile

Sygnoos

2 plugins · 100 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Review & Product Review by Review Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/review-builder/page/scripts/sgReview.js/wp-content/plugins/review-builder/page/scripts/sgComment.js/wp-content/plugins/review-builder/page/scripts/sgTemplate.js/wp-content/plugins/review-builder/page/scripts/sgForm.js/wp-content/plugins/review-builder/core/scripts/sgrbRequestHandler.js/wp-content/plugins/review-builder/core/scripts/main.js/wp-content/plugins/review-builder/page/scripts/helpers/sgReviewHelper.js/wp-content/plugins/review-builder/page/scripts/helpers/sgTemplateHelper.js+9 more
Script Paths
page/scripts/sgReview.jspage/scripts/sgComment.jspage/scripts/sgTemplate.jspage/scripts/sgForm.jscore/scripts/sgrbRequestHandler.jscore/scripts/main.js+6 more
Version Parameters
review-builder/com/core/css/sgrb-main.css?ver=review-builder/com/core/css/sgrb-admin-menu.css?ver=review-builder/com/core/css/sgrb-custom-style.css?ver=review-builder/com/core/css/sgrb-woo-integration.css?ver=review-builder/page/scripts/helpers/sgReviewHelper.js?ver=review-builder/page/scripts/helpers/sgTemplateHelper.js?ver=review-builder/page/scripts/helpers/sgCommentHelper.js?ver=review-builder/page/scripts/helpers/sgRateSkin.js?ver=review-builder/page/scripts/helpers/sgMainHelper.js?ver=review-builder/page/scripts/helpers/sgWizardSettings.js?ver=review-builder/core/scripts/main.js?ver=review-builder/page/scripts/sgReview.js?ver=review-builder/page/scripts/sgComment.js?ver=review-builder/page/scripts/sgTemplate.js?ver=review-builder/page/scripts/sgForm.js?ver=review-builder/core/scripts/sgrbRequestHandler.js?ver=

HTML / DOM Fingerprints

CSS Classes
sgrb-bannersgrb-formsgrb-reviews-listsgrb-review-itemsgrb-star-ratingsgrb-form-groupsgrb-form-controlsgrb-comment-list+5 more
HTML Comments
<!-- review-builder plugin --><!-- Start Review Builder --><!-- End Review Builder --><!-- WooCommerce Review Builder Integration -->
Data Attributes
data-sgrb-review-iddata-sgrb-post-iddata-sgrb-product-iddata-sgrb-category-iddata-sgrb-form-id
JS Globals
sgrbConfigsgrbReviewSettingssgrbAjaxUrlSGRB_PRO_VERSIONSG_REVIEW_BANNERSG_NO_BANNER
REST Endpoints
/wp-json/sgrb/v1/reviews/wp-json/sgrb/v1/submit-review/wp-json/sgrb/v1/comments/wp-json/sgrb/v1/load-more
Shortcode Output
[review-builder][sgrb_reviews][sgrb_form][sgrb_widget]
FAQ

Frequently Asked Questions about Review & Product Review by Review Builder