Simple BMI Form Security & Risk Analysis
wordpress.org/plugins/simple-bmi-formBMI calculator form. The visitor may select Imperial, US or Metric units.
Is Simple BMI Form Safe to Use in 2026?
Generally Safe
Score 92/100Simple BMI Form has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "simple-bmi-form" v1.0.15 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, properly escaped output, and the use of prepared statements for all SQL queries are excellent security practices. Furthermore, the plugin has no recorded vulnerability history, which is a positive indicator of its stability and the developers' attention to security. The code analysis reveals a small attack surface with only one shortcode and no unprotected entry points.
However, the lack of nonce checks and the presence of only one capability check on its single shortcode could be a concern, especially if the shortcode's functionality is sensitive. While no critical taint flows or unsanitized paths were detected, a more thorough manual code review might be beneficial to confirm that all input is handled securely. The overall picture is one of a well-developed plugin with a clean history and good fundamental security practices, but with a minor area for potential improvement in input validation and access control for its shortcode.
In conclusion, this plugin appears to be relatively secure, with no immediate critical vulnerabilities flagged. The developers have implemented good coding practices, and the vulnerability history is clean. The primary area for consideration is the potential for weak access control or input validation on the shortcode, which could be exploited if the shortcode performs actions that require more robust authorization. Despite this, the plugin's strengths in other areas suggest a responsible development approach.
Key Concerns
- Missing nonce checks
- Limited capability checks on entry points
Simple BMI Form Security Vulnerabilities
Simple BMI Form Code Analysis
Output Escaping
Simple BMI Form Attack Surface
Shortcodes 1
WordPress Hooks 7
Maintenance & Trust
Simple BMI Form Maintenance & Trust
Maintenance Signals
Community Trust
Simple BMI Form Alternatives
BMI / IMC Calculator
bmi-imc-calculator
A simple calculator to show your users BMI (Body Mass Index)
FitCalc – BMI Calculator
fitcalc-bmi-calculator
Lightweight BMI calculator with Metric and Imperial units. Use the shortcode [fitcalc_bmi].
BMI Adult & Kid Calculator
bmi-adultkid-calculator
We have developed a free Wordpress plugin with our BMI Calculator that you can use completely free of charge.
BMI Calculator
bmi-calculator
This BMI calculator can give out the BMI value as well as basic understandings based on age, height, and weight.
Responsive BMI Calculator
responsive-bmi-calculator
A BMI (Body Mass Index) calculator, free, responsive and easy to use. The user receives his BMI and medical advices according to the World Health Orga …
Simple BMI Form Developer Profile
3 plugins · 80 total installs
How We Detect Simple BMI Form
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/simple-bmi-form/css/public.css/wp-content/plugins/simple-bmi-form/js/admin.js/wp-content/plugins/simple-bmi-form/js/public.js/wp-content/plugins/simple-bmi-form/js/admin.js/wp-content/plugins/simple-bmi-form/js/public.jssimple-bmi-form/css/public.css?ver=simple-bmi-form/js/admin.js?ver=simple-bmi-form/js/public.js?ver=HTML / DOM Fingerprints
simple_bmi_formtsbf_formid="tsbf_bmi_calculator_imperial"id="tsbf_bmi_calculator_us"id="tsbf_bmi_calculator_metric"id="tsbf_bmi_calculator_result"id="tsbf_imperial_stones"id="tsbf_imperial_pounds"+8 moretranslations[simple_bmi_form]