Does Skedmaker have any unpatched vulnerabilities?

No. All known vulnerabilities in Skedmaker have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Skedmaker compatible with WordPress 4.4.34?

According to WordPress.org data, Skedmaker 0.98 has been tested up to WordPress 4.4.34. Check the plugin's changelog for the latest compatibility information.

How often is Skedmaker updated?

Skedmaker was last updated on Feb 1, 2016. Frequent updates are generally a positive security signal.

What is Skedmaker's security score?

Skedmaker has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Skedmaker Security & Risk Analysis

wordpress.org/plugins/skedmaker-online-scheduling

Skedmaker is an online appointment booking system that lets your clients make a reservation with you via the internet, 24/7/365.

10 active installs v0.98 PHP + WP 3.0.1+ Updated Feb 1, 2016

appointmentsbookingdatebookplannerscheduling-online

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Skedmaker Safe to Use in 2026?

Generally Safe

Score 85/100

Skedmaker has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The skedmaker-online-scheduling plugin v0.98 exhibits a mixed security posture. While the static analysis reports no known CVEs and a limited attack surface with no identified unprotected entry points, significant concerns arise from the code analysis. The most alarming finding is that 100% of outputs are not properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Additionally, despite a relatively high percentage of SQL queries using prepared statements, the presence of 33 SQL queries suggests potential for SQL injection if the unescaped outputs or other unaddressed code flows can influence query parameters. The taint analysis, while not flagging critical or high severity issues, reveals that all analyzed flows involve unsanitized paths, which, when combined with unescaped output, could lead to severe vulnerabilities.

Key Concerns

100% of output escaping missing
All taint flows involve unsanitized paths
0 nonce checks present
0 capability checks present
SQL queries present without clear sanitization context

Vulnerabilities

None known

Skedmaker Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Skedmaker Code Analysis

Dangerous Functions

Raw SQL Queries

20 prepared

Unescaped Output

729

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

61% prepared33 total queries

Output Escaping

0% escaped729 total outputs

Data Flows

32 unsanitized

Data Flow Analysis

25 flows32 with unsanitized paths

<_appointments> (_admin\_appointments.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Skedmaker Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[wp-skedmaker] wp-skedmaker.php:89

WordPress Hooks 5

actionactivated_pluginwp-skedmaker.php:27

actionadmin_menuwp-skedmaker.php:39

actionwp_enqueue_scriptswp-skedmaker.php:69

actioninitwp-skedmaker.php:77

actionadmin_enqueue_scriptswp-skedmaker.php:81

Maintenance & Trust

Skedmaker Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34

Last updatedFeb 1, 2016

PHP min version

Downloads6K

Community Trust

Rating92/100

Number of ratings9

Active installs10

Alternatives

Skedmaker Alternatives

LatePoint – Calendar Booking Plugin for Appointments and Events

latepoint

Optimize your appointment scheduling with our plugin. Sync calendars, automate reminders, and keep your bookings organized.

100K 2 unpatched

Booking for Appointments and Events Calendar – Amelia

ameliabooking

Amelia is a powerful booking plugin for appointments and events. Manage scheduling, calendars, and availability with an all-in-one booking system.

90K 25 CVEs

Online Scheduling and Appointment Booking System – Bookly

bookly-responsive-appointment-booking-tool

Appointment booking system for WordPress — schedule appointments, manage calendars, send reminders, take payments. Start booking today!

70K 9 CVEs

Events Manager – Calendar, Bookings, Tickets, and more!

events-manager

Events calendar with bookings, scheduling, appointments, event registration, tickets, recurring events, and venue management.

70K 34 CVEs

Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin

simply-schedule-appointments

Unlimited appointments, booking calendars, and notifications. Powerful appointment booking plugin and booking system. Start scheduling for free today!

60K 22 CVEs

Developer Profile

Skedmaker Developer Profile

theArab

2 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Skedmaker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/skedmaker-online-scheduling/_include/sm-styles.php/wp-content/plugins/skedmaker-online-scheduling/_btns/btn_reminders32_reg.png/wp-content/plugins/skedmaker-online-scheduling/_btns/btn_chair32_reg.png/wp-content/plugins/skedmaker-online-scheduling/_btns/btn_future32_reg.png

HTML / DOM Fingerprints

HTML Comments

Data Attributes

data-iddata-actiondata-namedata-servicedata-userdata-date+7 more

JS Globals

SM_dSM_eSM_dcontentSM_logoutSM_redBoxSM_redirect+12 more

Shortcode Output

[wp-skedmaker]

FAQ