Does SBS – Seat Booking System have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is SBS – Seat Booking System compatible with WordPress 4.1.42?

According to WordPress.org data, SBS – Seat Booking System 1.0.0 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is SBS – Seat Booking System updated?

SBS – Seat Booking System was last updated on May 8, 2015. Frequent updates are generally a positive security signal.

What is SBS – Seat Booking System's security score?

SBS – Seat Booking System has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SBS – Seat Booking System Security & Risk Analysis

wordpress.org/plugins/sbs-seat-booking-system

Drag and drop room building and reservation plugin for WordPress

10 active installs v1.0.0 PHP + WP 3.8+ Updated May 8, 2015

drag-and-dropecommercereservationroom-buildingwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SBS – Seat Booking System Safe to Use in 2026?

Generally Safe

Score 85/100

SBS – Seat Booking System has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "sbs-seat-booking-system" v1.0.0 plugin exhibits a concerning security posture primarily due to a significant number of unprotected AJAX handlers. While the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and performing some output escaping, the lack of authentication checks on all identified AJAX entry points creates a substantial attack surface. This means that any user, even unauthenticated ones, could potentially trigger functionality within these AJAX handlers, leading to unintended actions or information disclosure.

The static analysis did not reveal any dangerous functions, critical taint flows, or raw SQL queries, which are positive indicators. Furthermore, the plugin has no recorded vulnerability history, suggesting a potentially stable codebase. However, the absence of known vulnerabilities doesn't negate the risks introduced by the unprotected AJAX endpoints. The plugin also has a limited number of nonce and capability checks relative to the number of entry points, further amplifying the concern.

In conclusion, while the plugin avoids common pitfalls like vulnerable SQL queries and unpatched CVEs, its security is significantly weakened by the unprotected AJAX handlers. This oversight presents a clear and present danger, requiring immediate attention. Addressing the authentication and authorization for these entry points is paramount to improving the plugin's overall security.

Key Concerns

10 AJAX handlers without auth checks
Only 51% of output properly escaped
Nonce checks on only 2 out of 10 entry points
Capability checks on only 4 out of 10 entry points

Vulnerabilities

None known

SBS – Seat Booking System Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

SBS – Seat Booking System Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

SBS – Seat Booking System Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

26 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

jQuery

SQL Query Safety

100% prepared1 total queries

Output Escaping

51% escaped51 total outputs

Attack Surface

10 unprotected

SBS – Seat Booking System Attack Surface

Entry Points10

Unprotected10

AJAX Handlers 10

noprivwp_ajax_rmd_processincludes\class-uou-rmd-ajax-frontend-request.php:11

authwp_ajax_rmd_processincludes\class-uou-rmd-ajax-frontend-request.php:12

noprivwp_ajax_rmd_create_resourceincludes\class-uou-rmd-ajax-frontend-request.php:14

authwp_ajax_rmd_create_resourceincludes\class-uou-rmd-ajax-frontend-request.php:15

noprivwp_ajax_rmd_save_resourceincludes\class-uou-rmd-ajax-frontend-request.php:18

authwp_ajax_rmd_save_resourceincludes\class-uou-rmd-ajax-frontend-request.php:19

noprivwp_ajax_rmd_get_scheduleincludes\class-uou-rmd-ajax-frontend-request.php:21

authwp_ajax_rmd_get_scheduleincludes\class-uou-rmd-ajax-frontend-request.php:22

noprivwp_ajax_rmd_saveIn_sessionincludes\class-uou-rmd-ajax-frontend-request.php:24

authwp_ajax_rmd_saveIn_sessionincludes\class-uou-rmd-ajax-frontend-request.php:25

WordPress Hooks 29

actionwoocommerce_product_write_panel_tabsincludes\admin\class-uou-reserve-admin.php:13

actionwoocommerce_product_write_panelsincludes\admin\class-uou-reserve-admin.php:14

actionwoocommerce_process_product_metaincludes\admin\class-uou-reserve-admin.php:17

actionwoocommerce_before_calculate_totalsincludes\class-uou-rmd-ajax-frontend-request.php:28

actionplugins_loadedroomdrag.php:32

actioninitroomdrag.php:69

actionadd_meta_boxesroomdrag.php:70

actionadd_meta_boxesroomdrag.php:71

actionadmin_enqueue_scriptsroomdrag.php:72

actionwp_enqueue_scriptsroomdrag.php:73

actionsave_postroomdrag.php:74

actionsave_postroomdrag.php:75

filterpage_attributes_dropdown_pages_argsroomdrag.php:76

filterwp_insert_post_dataroomdrag.php:77

filtertemplate_includeroomdrag.php:78

actionwp_footerroomdrag.php:80

filterproduct_type_selectorroomdrag.php:82

filterproduct_type_optionsroomdrag.php:83

filterwoocommerce_add_cart_item_dataroomdrag.php:85

filterwoocommerce_get_cart_item_from_sessionroomdrag.php:86

filterwoocommerce_checkout_cart_item_quantityroomdrag.php:87

filterwoocommerce_cart_item_priceroomdrag.php:88

actionwoocommerce_add_order_item_metaroomdrag.php:89

actionwoocommerce_before_cart_item_quantity_zeroroomdrag.php:90

actionwoocommerce_new_orderroomdrag.php:91

actionwoocommerce_loadedroomdrag.php:92

filterwoocommerce_single_product_image_htmlroomdrag.php:93

actionwoocommerce_reserve_add_to_cartroomdrag.php:94

actionadmin_noticesroomdrag.php:707

Maintenance & Trust

SBS – Seat Booking System Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedMay 8, 2015

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

SBS – Seat Booking System Alternatives

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Mollie Payments for WooCommerce

mollie-payments-for-woocommerce

Accept all major payment methods in WooCommerce today. Credit cards, iDEAL and more! Fast, safe and intuitive.

100K 4 CVEs

TI WooCommerce Wishlist

ti-woocommerce-wishlist

Boost your sales with a free WooCommerce Wishlist feature. Let your customers save and share their favorite products!

100K 9 CVEs

Mercado Pago payments for WooCommerce

woocommerce-mercadopago

Offer to your clients the best experience in e-Commerce by using Mercado Pago as your payment method.

100K 4 CVEs

WPML Multilingual & Multicurrency for WooCommerce

woocommerce-multilingual

Make your store multilingual and enable multiple currencies.

100K 5 CVEs

Developer Profile

SBS – Seat Booking System Developer Profile

uouapps

3 plugins · 30 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SBS – Seat Booking System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sbs-seat-booking-system/assets/js/room-drag.js/wp-content/plugins/sbs-seat-booking-system/assets/css/room-drag.css/wp-content/plugins/sbs-seat-booking-system/assets/js/frontend.js/wp-content/plugins/sbs-seat-booking-system/assets/css/frontend.css/wp-content/plugins/sbs-seat-booking-system/assets/js/backend.js/wp-content/plugins/sbs-seat-booking-system/assets/css/backend.css

Script Paths

/wp-content/plugins/sbs-seat-booking-system/assets/js/room-drag.js/wp-content/plugins/sbs-seat-booking-system/assets/js/frontend.js/wp-content/plugins/sbs-seat-booking-system/assets/js/backend.js

Version Parameters

sbs-seat-booking-system/assets/js/room-drag.js?ver=sbs-seat-booking-system/assets/css/room-drag.css?ver=sbs-seat-booking-system/assets/js/frontend.js?ver=sbs-seat-booking-system/assets/css/frontend.css?ver=sbs-seat-booking-system/assets/js/backend.js?ver=sbs-seat-booking-system/assets/css/backend.css?ver=

HTML / DOM Fingerprints

CSS Classes

wdm_options_table

Data Attributes

wdm_user_custom_data_value

JS Globals

UOU_RMD_DIRUOU_RMD_URLUOU_PACKAGE_TEMPLATE_PATHUOU_RMD_URL_OBJECTS_REDUOU_RMD_URL_OBJECTS_GREENUOU_RMD_URL_OBJECTS_ORANGE+1 more

FAQ