WP-Safety

TicketHub Security & Risk Analysis

wordpress.org/plugins/tickethub

TicketHub is a plugin for managing support tickets, FAQs, documentation, and change logs. Streamline your customer support process with ease.

0 active installs v1.0.2 PHP + WP 6.0+ Updated Unknown
change-logdocumentationfaqsupporttickets
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is TicketHub Safe to Use in 2026?

Generally Safe

Score 100/100

TicketHub has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The Tickethub v1.0.2 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, external HTTP requests, and file operations is commendable. Crucially, all identified SQL queries utilize prepared statements, and there are a healthy number of nonce and capability checks in place, indicating good practice for handling user interactions. The low number of taint flows analyzed, with none demonstrating unsanitized paths, further contributes to a positive assessment. The plugin's vulnerability history is completely clear, with no recorded CVEs of any severity. This suggests a commitment to security by the developers or a lack of targeted attacks. However, while the code analysis highlights many strengths, the output escaping, while at 86%, still has a portion that is not properly escaped. While this is a relatively low percentage, it could potentially be an avenue for cross-site scripting (XSS) vulnerabilities if the unescaped output involves user-supplied data. Overall, Tickethub v1.0.2 appears to be a secure plugin with a proactive approach to security, but a minor concern exists regarding the unescaped output.

Key Concerns

  • Output not properly escaped (14% of outputs)
Vulnerabilities
None known

TicketHub Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

TicketHub Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
1 prepared
Unescaped Output
43
256 escaped
Nonce Checks
12
Capability Checks
10
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared1 total queries

Output Escaping

86% escaped299 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
thub_ticket_creator_form_page (includes\thub-ticket-creators-tab.php:15)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

TicketHub Attack Surface

Entry Points11
Unprotected0

AJAX Handlers 4

authwp_ajax_fetch_ticketsshortcodes\thub-tickets-sc.php:177
noprivwp_ajax_fetch_ticketsshortcodes\thub-tickets-sc.php:178
authwp_ajax_thub_submit_commentticket-hub.php:203
noprivwp_ajax_thub_submit_commentticket-hub.php:204

Shortcodes 7

[thub_changelog] shortcodes\thub-changelog-sc.php:4
[thub_documentation] shortcodes\thub-documentation-sc.php:4
[thub_faqs] shortcodes\thub-faqs-sc.php:4
[thub_form] shortcodes\thub-form-sc.php:4
[thub_profile] shortcodes\thub-profile-sc.php:4
[thub_ticket] shortcodes\thub-ticket-sc.php:4
[thub_tickets] shortcodes\thub-tickets-sc.php:4
WordPress Hooks 38
actionadmin_initincludes\thub-page-settings.php:9
actionadmin_menuincludes\thub-page-settings.php:33
actionadmin_initincludes\thub-page-settings.php:64
filterthe_contentincludes\thub-page-settings.php:126
actionadmin_menuincludes\thub-ticket-tag-subpage.php:4
actioninitpost-types\thub-change-pt.php:4
actionedit_form_after_titlepost-types\thub-change-pt.php:45
actionsave_post_thub_changepost-types\thub-change-pt.php:75
actioninitpost-types\thub-document-pt.php:4
actionedit_form_after_titlepost-types\thub-document-pt.php:47
actionsave_post_thub_documentpost-types\thub-document-pt.php:94
actioninitpost-types\thub-faq-pt.php:4
actionedit_form_after_titlepost-types\thub-faq-pt.php:45
actionsave_post_thub_faqpost-types\thub-faq-pt.php:74
actioninitpost-types\thub-ticket-pt.php:4
actionadmin_initpost-types\thub-ticket-pt.php:70
actionedit_form_after_titlepost-types\thub-ticket-pt.php:111
actionsave_post_thub_ticketpost-types\thub-ticket-pt.php:203
actionupdated_post_metapost-types\thub-ticket-pt.php:225
actiontransition_post_statuspost-types\thub-ticket-pt.php:247
actionwp_insert_commentpost-types\thub-ticket-pt.php:269
actionwppost-types\thub-ticket-pt.php:295
actionthub_archive_done_ticketspost-types\thub-ticket-pt.php:301
filtermanage_thub_ticket_posts_columnspost-types\thub-ticket-pt.php:333
filtermanage_edit-thub_ticket_sortable_columnspost-types\thub-ticket-pt.php:347
actionmanage_thub_ticket_posts_custom_columnpost-types\thub-ticket-pt.php:354
actionsave_post_thub_ticketpost-types\thub-ticket-pt.php:378
filterbulk_actions-edit-thub_ticketpost-types\thub-ticket-pt.php:392
filterhandle_bulk_actions-edit-thub_ticketpost-types\thub-ticket-pt.php:403
actionadmin_noticespost-types\thub-ticket-pt.php:418
actionbefore_delete_postpost-types\thub-ticket-pt.php:427
actionpre_get_postspost-types\thub-ticket-pt.php:445
actionadmin_post_submit_ticket_formshortcodes\thub-form-sc.php:64
actioninitticket-hub.php:40
filtersingle_templateticket-hub.php:66
actionafter_setup_themeticket-hub.php:103
actionwp_enqueue_scriptsticket-hub.php:147
actionadmin_enqueue_scriptsticket-hub.php:148

Scheduled Events 1

thub_archive_done_tickets
Maintenance & Trust

TicketHub Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedUnknown
PHP min version
Downloads919

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

TicketHub Alternatives

Knowledge Base

Knowledge Base

knowledgebase

A
96

Effortlessly build a comprehensive knowledge base for unlimited products on your WordPress site and elevate your customer support experience.

100 4 CVEs
DearDocs – Documentation, Knowledge Base, Help Center & FAQs

DearDocs – Documentation, Knowledge Base, Help Center & FAQs

deardocs

A
100

Create a searchable Documentation site, Knowledge Base, or Help Center. Manage your support wiki and product docs with this powerful WordPress plugin.

0 No CVEs
BetterDocs – Knowledge Base Docs & FAQ Solution for Elementor & Block Editor

BetterDocs – Knowledge Base Docs & FAQ Solution for Elementor & Block Editor

betterdocs

A
86

A full-featured documentation plugin including AI writing assistance to create knowledge bases, docs, FAQs, wikis, and more with easy drag & drop UI.

40K 7 CVEs
Echo Knowledge Base – Documentation, FAQs, Chat & Smart Search

Echo Knowledge Base – Documentation, FAQs, Chat & Smart Search

echo-knowledge-base

A
98

A fully featured, easy-to-use documentation plugin with AI chat and search integration. Build beautiful knowledge bases, FAQs, docs, and wikis.

10K 1 CVE
Awesome Support – WordPress HelpDesk & Support Plugin

Awesome Support – WordPress HelpDesk & Support Plugin

awesome-support

A
88

The most versatile and feature-rich help desk and support plugin for WordPress. Provide awesome support directly from your WordPress site.

7K 24 CVEs
Developer Profile

TicketHub Developer Profile

mondula2016

2 plugins · 10K total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
512 days
View full developer profile
Detection Fingerprints

How We Detect TicketHub

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/tickethub/dist/js/ticket-hub-admin.min.js/wp-content/plugins/tickethub/dist/css/ticket-hub-admin.min.css/wp-content/plugins/tickethub/dist/js/ticket-hub.min.js/wp-content/plugins/tickethub/dist/css/ticket-hub.min.css
Script Paths
dist/js/ticket-hub-admin.min.jsdist/js/ticket-hub.min.js
Version Parameters
tickethub/dist/js/ticket-hub-admin.min.js?ver=tickethub/dist/css/ticket-hub-admin.min.css?ver=tickethub/dist/js/ticket-hub.min.js?ver=tickethub/dist/css/ticket-hub.min.css?ver=

HTML / DOM Fingerprints

CSS Classes
thub-accordion
JS Globals
thub_admin_varsthub_public_vars
Shortcode Output
<div class="thub-accordion">
FAQ

Frequently Asked Questions about TicketHub