WP-Safety

Saksh WP Hotel Booking Lite Security & Risk Analysis

wordpress.org/plugins/saksh-wp-hotel-booking-lite

Saksh WP Hotel Booking Lite is a booking plugin which offer way to sells hotel rooms using woocommerce and caputre online payment.

0 active installs v2.0 PHP 5.4.0+ WP 4.7+ Updated Jun 7, 2024
booking-enginehotelhotel-bookingreservations
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Saksh WP Hotel Booking Lite Safe to Use in 2026?

Generally Safe

Score 92/100

Saksh WP Hotel Booking Lite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

This plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices in SQL query preparation (95% prepared) and output escaping (87%), and has no known past or present vulnerabilities. The presence of 22 nonce checks and 4 capability checks indicates an attempt to secure certain entry points. However, significant concerns arise from the attack surface. The plugin exposes 9 AJAX handlers, with a concerning 4 of them lacking any authentication checks, presenting a direct vector for potential abuse. Additionally, the taint analysis reveals 15 flows with unsanitized paths, including one of high severity, which could lead to various injection vulnerabilities if exploited. While the absence of known CVEs is positive, the identified code signals and taint flows suggest potential weaknesses that could be exploited in the absence of further sanitization and authentication.

Key Concerns

  • Unprotected AJAX handlers
  • High severity taint flow with unsanitized path
  • 15 flows with unsanitized paths
Vulnerabilities
None known

Saksh WP Hotel Booking Lite Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Saksh WP Hotel Booking Lite Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
18 prepared
Unescaped Output
321
2174 escaped
Nonce Checks
22
Capability Checks
4
File Operations
28
External Requests
5
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

95% prepared19 total queries

Output Escaping

87% escaped2495 total outputs
Data Flows
15 unsanitized

Data Flow Analysis

19 flows15 with unsanitized paths
save (redux-framework\redux-core\inc\classes\class-redux-ajax-save.php:37)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
4 unprotected

Saksh WP Hotel Booking Lite Attack Surface

Entry Points18
Unprotected4

AJAX Handlers 9

authwp_ajax_redux_hide_admin_noticeredux-framework\redux-core\inc\classes\class-redux-admin-notices.php:41
authwp_ajax_redux_update_google_fontsredux-framework\redux-core\inc\classes\class-redux-ajax-typography.php:26
authwp_ajax_redux_color_schemesredux-framework\redux-core\inc\extensions\color_scheme\class-redux-extension-color-scheme.php:76
noprivwp_ajax_redux_color_schemesredux-framework\redux-core\inc\extensions\color_scheme\class-redux-extension-color-scheme.php:77
authwp_ajax_redux_custom_fontsredux-framework\redux-core\inc\extensions\custom_fonts\class-redux-extension-custom-fonts.php:106
authwp_ajax_redux_custom_font_timerredux-framework\redux-core\inc\extensions\custom_fonts\class-redux-extension-custom-fonts.php:107
authwp_ajax_redux_get_iconsredux-framework\redux-core\inc\extensions\icon_select\class-redux-extension-icon-select.php:48
authwp_ajax_redux_delete_widget_arearedux-framework\redux-core\inc\extensions\widget_areas\class-redux-extension-widget-areas.php:52
authwp_ajax_saksh_booking_historysaksh_ajax.php:4

Shortcodes 9

[bloginfo] redux-framework\redux-core\inc\extensions\shortcodes\class-redux-shortcodes.php:69
[redux_bloginfo] redux-framework\redux-core\inc\extensions\shortcodes\class-redux-shortcodes.php:71
[themeinfo] redux-framework\redux-core\inc\extensions\shortcodes\class-redux-shortcodes.php:75
[redux_themeinfo] redux-framework\redux-core\inc\extensions\shortcodes\class-redux-shortcodes.php:77
[date] redux-framework\redux-core\inc\extensions\shortcodes\class-redux-shortcodes.php:81
[redux_date] redux-framework\redux-core\inc\extensions\shortcodes\class-redux-shortcodes.php:83
[social_profiles] redux-framework\redux-core\inc\extensions\social_profiles\social_profiles\inc\class-redux-social-profiles-shortcode.php:43
[SakshRoomSearch] Saksh-WP-Hotel-Booking-Lite.php:204
[SakshRoomBooking] Saksh-WP-Hotel-Booking-Lite.php:226
WordPress Hooks 127
actionsetup_themeredux-framework\class-redux-framework-plugin.php:174
actionactivated_pluginredux-framework\class-redux-framework-plugin.php:199
actionwp_loadedredux-framework\class-redux-framework-plugin.php:200
actionwpmu_new_blogredux-framework\class-redux-framework-plugin.php:203
actionadmin_noticesredux-framework\class-redux-framework-plugin.php:206
filterplugin_row_metaredux-framework\class-redux-framework-plugin.php:209
filternetwork_admin_plugin_action_linksredux-framework\class-redux-framework-plugin.php:210
filterplugin_action_linksredux-framework\class-redux-framework-plugin.php:211
actionplugins_loadedredux-framework\redux-core\class-redux-core.php:145
filterdebug_informationredux-framework\redux-core\class-redux-core.php:270
actionadmin_noticesredux-framework\redux-core\inc\classes\class-redux-admin-notices.php:42
actionadmin_initredux-framework\redux-core\inc\classes\class-redux-admin-notices.php:43
actionafter_setup_themeredux-framework\redux-core\inc\classes\class-redux-api.php:123
actioninitredux-framework\redux-core\inc\classes\class-redux-api.php:124
actionswitch_themeredux-framework\redux-core\inc\classes\class-redux-api.php:125
actionplugins_loadedredux-framework\redux-core\inc\classes\class-redux-api.php:181
actionReduxFrameworkPlugin_admin_noticeredux-framework\redux-core\inc\classes\class-redux-api.php:1748
actionredux_framework_plugin_admin_noticeredux-framework\redux-core\inc\classes\class-redux-api.php:1749
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\classes\class-redux-enqueue.php:58
actionwp_enqueue_scriptsredux-framework\redux-core\inc\classes\class-redux-enqueue.php:61
filterredux/fieldsredux-framework\redux-core\inc\classes\class-redux-extension-abstract.php:169
actionwp_headredux-framework\redux-core\inc\classes\class-redux-functions-ex.php:216
actioninitredux-framework\redux-core\inc\classes\class-redux-i18n.php:26
actionredux/constructredux-framework\redux-core\inc\classes\class-redux-instances.php:75
actionadmin_initredux-framework\redux-core\inc\classes\class-redux-options-constructor.php:63
actionwp_headredux-framework\redux-core\inc\classes\class-redux-output.php:31
actionwp_enqueue_scriptsredux-framework\redux-core\inc\classes\class-redux-output.php:32
actionlogin_headredux-framework\redux-core\inc\classes\class-redux-output.php:37
actionlogin_enqueue_scriptsredux-framework\redux-core\inc\classes\class-redux-output.php:38
actionadmin_headredux-framework\redux-core\inc\classes\class-redux-output.php:43
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\classes\class-redux-output.php:44
filterstyle_loader_tagredux-framework\redux-core\inc\classes\class-redux-output.php:182
filterwp_resource_hintsredux-framework\redux-core\inc\classes\class-redux-output.php:183
actionadmin_menuredux-framework\redux-core\inc\classes\class-redux-page-render.php:49
actionnetwork_admin_menuredux-framework\redux-core\inc\classes\class-redux-page-render.php:53
actionadmin_headredux-framework\redux-core\inc\classes\class-redux-page-render.php:142
filteradmin_footer_textredux-framework\redux-core\inc\classes\class-redux-page-render.php:145
filterdeprecated_file_trigger_errorredux-framework\redux-core\inc\classes\class-redux-panel.php:317
actioncustomize_registerredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:142
actionwp_headredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:143
actioncustomize_save_afterredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:145
actioncustomize_controls_print_scriptsredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:148
actioncustomize_controls_initredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:149
actionwp_enqueue_stylesredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:150
actionredux/extension/customizer/control_initredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:152
actioncustomize_controls_print_stylesredux-framework\redux-core\inc\extensions\customizer\class-redux-extension-customizer.php:155
filterupload_mimesredux-framework\redux-core\inc\extensions\custom_fonts\class-redux-extension-custom-fonts.php:119
actionwp_headredux-framework\redux-core\inc\extensions\custom_fonts\class-redux-extension-custom-fonts.php:120
filtertiny_mce_before_initredux-framework\redux-core\inc\extensions\custom_fonts\class-redux-extension-custom-fonts.php:121
actionadmin_footerredux-framework\redux-core\inc\extensions\icon_select\icon_select\class-redux-icon-select.php:383
actioncustomize_controls_print_footer_scriptsredux-framework\redux-core\inc\extensions\icon_select\icon_select\class-redux-icon-select.php:384
filterupload_mimesredux-framework\redux-core\inc\extensions\import_export\class-redux-extension-import-export.php:62
actionsave_postredux-framework\redux-core\inc\extensions\metaboxes\class-redux-extension-metaboxes.php:221
actionpre_post_updateredux-framework\redux-core\inc\extensions\metaboxes\class-redux-extension-metaboxes.php:222
actionadmin_noticesredux-framework\redux-core\inc\extensions\metaboxes\class-redux-extension-metaboxes.php:223
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\extensions\metaboxes\class-redux-extension-metaboxes.php:224
actionthe_postredux-framework\redux-core\inc\extensions\metaboxes\class-redux-extension-metaboxes.php:227
actionloop_endredux-framework\redux-core\inc\extensions\metaboxes\class-redux-extension-metaboxes.php:228
actioninitredux-framework\redux-core\inc\extensions\metaboxes\class-redux-metaboxes-api.php:89
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\extensions\metaboxes\class-redux-metaboxes-api.php:129
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\extensions\search\class-redux-extension-search.php:53
actionwp_enqueue_scriptsredux-framework\redux-core\inc\extensions\social_profiles\class-redux-extension-social-profiles.php:113
filterredux/metaboxes/save/before_validateredux-framework\redux-core\inc\extensions\social_profiles\class-redux-extension-social-profiles.php:117
actionwidgets_initredux-framework\redux-core\inc\extensions\social_profiles\social_profiles\inc\class-redux-social-profiles-widget.php:53
actionadmin_noticesredux-framework\redux-core\inc\extensions\taxonomy\class-redux-extension-taxonomy.php:190
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\extensions\taxonomy\class-redux-extension-taxonomy.php:191
actioninitredux-framework\redux-core\inc\extensions\taxonomy\class-redux-taxonomy-api.php:77
actioncreate_termredux-framework\redux-core\inc\extensions\taxonomy\redux-taxonomy-helpers.php:29
actionadmin_noticesredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:183
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:184
actionpersonal_options_updateredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:189
actionedit_user_profile_updateredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:190
actionshow_user_profileredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:369
actionedit_user_profileredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:370
actionuser_new_formredux-framework\redux-core\inc\extensions\users\class-redux-extension-users.php:371
actioninitredux-framework\redux-core\inc\extensions\users\class-redux-users-api.php:77
actioncreate_termredux-framework\redux-core\inc\extensions\users\redux-users-helpers.php:29
actioninitredux-framework\redux-core\inc\extensions\widget_areas\class-redux-widget-areas.php:72
actionadmin_print_scriptsredux-framework\redux-core\inc\extensions\widget_areas\class-redux-widget-areas.php:75
actionload-widgets.phpredux-framework\redux-core\inc\extensions\widget_areas\class-redux-widget-areas.php:76
actionload-widgets.phpredux-framework\redux-core\inc\extensions\widget_areas\class-redux-widget-areas.php:77
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\themecheck\class-redux-themecheck.php:71
actionadmin_enqueue_scriptsredux-framework\redux-core\inc\themecheck\class-redux-themecheck.php:72
actionthemecheck_checks_loadedredux-framework\redux-core\inc\themecheck\class-redux-themecheck.php:74
actionthemecheck_checks_loadedredux-framework\redux-core\inc\themecheck\class-redux-themecheck.php:75
actioninitredux-framework\redux-core\inc\validation\unique_slug\class-redux-validation-unique-slug.php:80
actioninitredux-framework\redux-core\inc\welcome\class-redux-welcome.php:49
actionadmin_menuredux-framework\redux-core\inc\welcome\class-redux-welcome.php:61
filteradmin_footer_textredux-framework\redux-core\inc\welcome\class-redux-welcome.php:67
actionadmin_headredux-framework\redux-core\inc\welcome\class-redux-welcome.php:68
actioninitredux-framework\redux-templates\classes\class-init.php:36
filtertemplate_includeredux-framework\redux-templates\classes\class-templates.php:46
actionwpredux-framework\redux-templates\classes\class-templates.php:49
filteradmin_body_classredux-framework\redux-templates\classes\class-templates.php:62
actionwp_footerSaksh-WP-Hotel-Booking-Lite.php:59
actionadmin_menusaksh_admin\saksh_booking_report.php:8
filtersaksh_room_payment_options_metaboxsaksh_custom_meta_form.php:343
actioninitsaksh_design.php:65
actionadmin_enqueue_scriptssaksh_enqueue.php:29
actionwp_enqueue_scriptssaksh_enqueue.php:89
actionadmin_enqueue_scriptssaksh_enqueue.php:92
actioninitsaksh_meta_box.php:37
actioninitsaksh_meta_box.php:76
actionsave_postsaksh_meta_box.php:145
actionupdate_postsaksh_meta_box.php:147
actionadd_meta_boxessaksh_meta_box.php:335
actioninitsaksh_notices.php:5
actionadmin_noticessaksh_notices.php:17
actionadmin_noticessaksh_notices.php:22
actioninitsaksh_rooms_custom_post.php:71
filtersingle_templatesaksh_rooms_custom_post.php:75
actionsaksh_hb_status_updatesaksh_send_notifications.php:5
filterwoocommerce_get_item_datasaksh_wchook.php:139
actionwoocommerce_checkout_create_order_line_itemsaksh_wchook.php:196
filterwoocommerce_thankyou_order_received_textsaksh_wchook.php:200
actionwoocommerce_order_status_pendingsaksh_wchook.php:245
actionwoocommerce_order_status_failedsaksh_wchook.php:246
actionwoocommerce_order_status_on-holdsaksh_wchook.php:247
actionwoocommerce_order_status_processingsaksh_wchook.php:249
actionwoocommerce_order_status_completedsaksh_wchook.php:250
actionwoocommerce_order_status_refundedsaksh_wchook.php:251
actionwoocommerce_order_status_cancelledsaksh_wchook.php:252
actionwoocommerce_before_calculate_totalssaksh_wchook.php:460
actioninitsaksh_wc_myaccount.php:4
filterquery_varssaksh_wc_myaccount.php:12
filterwoocommerce_account_menu_itemssaksh_wc_myaccount.php:22
actionwoocommerce_account_bookings_endpointsaksh_wc_myaccount.php:31
Maintenance & Trust

Saksh WP Hotel Booking Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8
Last updatedJun 7, 2024
PHP min version5.4.0
Downloads556

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Saksh WP Hotel Booking Lite Alternatives

VikBooking Hotel Booking Engine & PMS

VikBooking Hotel Booking Engine & PMS

vikbooking

B
82

Famous Booking Engine, PMS and Hotel Reservations plugin for property managers. The best solution for accommodations to drive more direct bookings.

9K 17 CVEs
MotoPress Hotel Booking

MotoPress Hotel Booking

motopress-hotel-booking-lite

A
86

The #1 Hotel Booking and Vacation Rental Plugin for WordPress. Online payments, seasons, rates, free or paid extras, coupons, taxes & fees.

10K 4 CVEs
AweBooking – Hotel Booking System

AweBooking – Hotel Booking System

awebooking

C
63

Awebooking helps you to setup hotel booking system quickly, pleasantly and easily.

1K 1 unpatched
Sirvoy Booking Engine

Sirvoy Booking Engine

sirvoy-booking-engine

A
100

Sirvoy booking engine - Non-Commission Direct Bookings from Your Website. Sirvoy can also help you to receive bookings from channels, and much more.

1K No CVEs
WP Hotel Booking WPML Support

WP Hotel Booking WPML Support

wp-hotel-booking-wpml-support

A
92

WP Hotel Booking WPML Support Plugin - Support Multi language CMS support for WP Hotel Booking Plugin.

400 No CVEs
Developer Profile

Saksh WP Hotel Booking Lite Developer Profile

susheelhbti

14 plugins · 40 total installs

87
trust score
Avg Security Score
90/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Saksh WP Hotel Booking Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/css/saksh_admin.css/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/css/saksh_booking_report.css/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/css/saksh_option.css/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_admin.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_booking_report.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_option.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_enqueue.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_room_search_v2.js+1 more
Script Paths
/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_admin.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_booking_report.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_option.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_enqueue.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_room_search_v2.js/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh-room-booking.js
Version Parameters
/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/css/saksh_admin.css?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/css/saksh_booking_report.css?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/css/saksh_option.css?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_admin.js?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_booking_report.js?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_admin/js/saksh_option.js?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_enqueue.js?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh_room_search_v2.js?ver=/wp-content/plugins/saksh-wp-hotel-booking-lite/saksh-room-booking.js?ver=

HTML / DOM Fingerprints

CSS Classes
saksh_book_roomsaksh-room-searchsaksh_room_searchsaksh-room-bookingsaksh_room_booking
HTML Comments
<!-- Exit if accessed directly --><!-- phpcs:ignore Squiz.Commenting.FileComment.Missing -->
Data Attributes
saksh_casesaksh_noncesaksh_nonce_action
JS Globals
saksh_book_roomsaksh_room_search_funcsaksh_room_booking_funcsaksh_get_rooms_which_r_availablesaksh_get_taxessaksh_check_availability+3 more
Shortcode Output
[SakshRoomSearch][SakshRoomBooking]
FAQ

Frequently Asked Questions about Saksh WP Hotel Booking Lite