Does Tennis booking system, Sport tournament management – TennisThor have any unpatched vulnerabilities?

No. All known vulnerabilities in Tennis booking system, Sport tournament management – TennisThor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tennis booking system, Sport tournament management – TennisThor compatible with WordPress 6.5.8?

According to WordPress.org data, Tennis booking system, Sport tournament management – TennisThor 1.2.1 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Tennis booking system, Sport tournament management – TennisThor Security Review

Safety Verdict

Is Tennis booking system, Sport tournament management – TennisThor Safe to Use in 2026?

Generally Safe

Score 92/100

Tennis booking system, Sport tournament management – TennisThor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "tennisthor" plugin v1.2.1 exhibits a generally good security posture in several key areas. The complete absence of known CVEs and a clean vulnerability history across all severity levels is a strong indicator of diligent development and maintenance. Furthermore, the plugin exclusively utilizes prepared statements for SQL queries, mitigating the risk of SQL injection vulnerabilities. The static analysis also reveals no dangerous functions or file operations, which are common vectors for exploitation.

However, the analysis highlights several areas of concern. A significant portion of the plugin's output (66%) is not properly escaped, presenting a risk of Cross-Site Scripting (XSS) vulnerabilities. While no critical or high-severity taint flows were identified, all 17 analyzed flows involved unsanitized paths, suggesting a potential for unexpected behavior or vulnerabilities if input is not strictly controlled, especially given the lack of explicit capability checks and nonce checks on its entry points. The presence of the DataTables library, without version information, also introduces a potential risk if it's an outdated or vulnerable version.

In conclusion, the "tennisthor" plugin has a solid foundation regarding SQL and core dangerous function usage. The primary security weakness lies in its handling of output escaping and the potential risks associated with unsanitized input paths. While the vulnerability history is excellent, the unescaped output and unsanitized flows warrant attention to prevent potential XSS attacks and ensure more robust input validation.

Key Concerns

High percentage of unescaped output
All analyzed flows have unsanitized paths
No nonce checks on entry points
No capability checks on entry points
Bundled library without version info

Vulnerabilities

None known

Tennis booking system, Sport tournament management – TennisThor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Tennis booking system, Sport tournament management – TennisThor Code Analysis

Dangerous Functions

0

Raw SQL Queries

0

0 prepared

Unescaped Output

254

131 escaped

Nonce Checks

0

Capability Checks

0

File Operations

0

External Requests

25

Bundled Libraries

1

Bundled Libraries

DataTables

Output Escaping

34% escaped385 total outputs

Data Flows

17 unsanitized

Data Flow Analysis

17 flows17 with unsanitized paths

tennisthor_setting (admin\index.php:77)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Tennis booking system, Sport tournament management – TennisThor Attack Surface

Entry Points7

Unprotected0

Shortcodes 7

[tennisthor_login] include\login.php:108

[tennisthor_rating] include\rating.php:2

[tennisthor_register] include\register.php:158

[tennisthor_reservation_timeline] include\reservation-timeline.php:152

[tennisthor_thor_power_rating] include\thor_power_rating.php:2

[tennisthor_tournament_detail] include\tournament-detail.php:130

[tennisthor_tournaments] include\tournaments.php:47

WordPress Hooks 34

actionadmin_menuadmin\index.php:3

actionadmin_post_nopriv_tennisthor_logout_hookinclude\login.php:5

actionadmin_post_tennisthor_logout_hookinclude\login.php:6

actionadmin_post_nopriv_tennisthor_login_hookinclude\login.php:55

actionadmin_post_tennisthor_login_hookinclude\login.php:56

actionadmin_post_nopriv_tennisthor_email_verify_hookinclude\register.php:3

actionadmin_post_tennisthor_email_verify_hookinclude\register.php:4

actionadmin_post_nopriv_tennisthor_email_valid_hookinclude\register.php:47

actionadmin_post_tennisthor_email_valid_hookinclude\register.php:48

actionadmin_post_nopriv_tennisthor_search_city_hookinclude\register.php:75

actionadmin_post_tennisthor_search_city_hookinclude\register.php:76

actionadmin_post_nopriv_tennisthor_register_hookinclude\register.php:102

actionadmin_post_tennisthor_register_hookinclude\register.php:103

actionadmin_post_nopriv_tennisthor_get_booking_url_hookinclude\reservation-timeline.php:5

actionadmin_post_tennisthor_get_booking_url_hookinclude\reservation-timeline.php:6

actionadmin_post_nopriv_tennisthor_load_timeline_calendar_hookinclude\reservation-timeline.php:47

actionadmin_post_tennisthor_load_timeline_calendar_hookinclude\reservation-timeline.php:48

actionadmin_post_nopriv_tennisthor_res_reload_courts_hookinclude\reservation-timeline.php:78

actionadmin_post_tennisthor_res_reload_courts_hookinclude\reservation-timeline.php:79

actionadmin_post_nopriv_tennisthor_res_reload_events_hookinclude\reservation-timeline.php:109

actionadmin_post_tennisthor_res_reload_events_hookinclude\reservation-timeline.php:110

actionadmin_post_nopriv_tennisthor_chat_hookinclude\tournament-detail.php:3

actionadmin_post_tennisthor_chat_hookinclude\tournament-detail.php:4

actionadmin_post_nopriv_tennisthor_sch_reload_courts_hookinclude\tournament-detail.php:54

actionadmin_post_tennisthor_sch_reload_courts_hookinclude\tournament-detail.php:55

actionadmin_post_nopriv_tennisthor_sch_reload_games_hookinclude\tournament-detail.php:84

actionadmin_post_tennisthor_sch_reload_games_hookinclude\tournament-detail.php:85

actionadmin_post_nopriv_tennisthor_tournament_detail_hookinclude\tournament-detail.php:116

actionadmin_post_tennisthor_tournament_detail_hookinclude\tournament-detail.php:117

actionadmin_post_nopriv_tennisthor_tournaments_hookinclude\tournaments.php:3

actionadmin_post_tennisthor_tournaments_hookinclude\tournaments.php:4

actioninittennisthor.php:13

actionadmin_noticestennisthor.php:217

actionwp_headtennisthor.php:226

Maintenance & Trust

Tennis booking system, Sport tournament management – TennisThor Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMay 11, 2024

PHP min version7.4

Downloads4K

Community Trust

Rating100/100

Number of ratings2

Active installs20

Alternatives

Tennis booking system, Sport tournament management – TennisThor Alternatives

CyberPress

cyberpress

A

100

Manage eSport Tournaments, Matches, Teams and Players.

200 No CVEs

Sport livescores: foootball and basketball results, fixtures and standings

football-standings

A

92

Add auto-updated live scores information about more than 3000 football and basketball tournaments and standings with ease!

100 No CVEs

Court Booking System

court-booking-system

A

100

Complete booking system for tennis and padel courts with flexible time slots, instructor management, and revenue tracking.

0 No CVEs

Sports Court Designer

sports-court-designer

A

100

Interactive sports court designer for tennis, basketball, pickleball, and combo courts with customizable colors for construction companies.

0 No CVEs

SportsPress – Sports Club & League Manager

sportspress

A

92

SportsPress is an extendable all-in-one sports data plugin that helps sports clubs set up and manage a league or club site quickly and easily.

10K 6 CVEs

Developer Profile

Tennis booking system, Sport tournament management – TennisThor Developer Profile

TennisThor

1 plugin · 20 total installs

88

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tennis booking system, Sport tournament management – TennisThor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tennisthor/assets/css/bootstrap-social.css/wp-content/plugins/tennisthor/assets/css/style.css

HTML / DOM Fingerprints

Shortcode Output

[tennisthor_tournaments][tennisthor_tournament_detail][tennisthor_reservation_timeline][tennisthor_rating]

FAQ

Tennis booking system, Sport tournament management – TennisThor Security & Risk Analysis

Is Tennis booking system, Sport tournament management – TennisThor Safe to Use in 2026?

Generally Safe

Key Concerns

Tennis booking system, Sport tournament management – TennisThor Security Vulnerabilities

Tennis booking system, Sport tournament management – TennisThor Code Analysis

Bundled Libraries

Output Escaping

Data Flow Analysis

Tennis booking system, Sport tournament management – TennisThor Attack Surface

Shortcodes 7

Tennis booking system, Sport tournament management – TennisThor Maintenance & Trust

Maintenance Signals

Community Trust

Tennis booking system, Sport tournament management – TennisThor Alternatives

CyberPress

Sport livescores: foootball and basketball results, fixtures and standings

Court Booking System

Sports Court Designer

SportsPress – Sports Club & League Manager

Tennis booking system, Sport tournament management – TennisThor Developer Profile

How We Detect Tennis booking system, Sport tournament management – TennisThor

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Tennis booking system, Sport tournament management – TennisThor