Does Travel Map have any unpatched vulnerabilities?

No. All known vulnerabilities in Travel Map have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Travel Map compatible with WordPress 4.8.28?

According to WordPress.org data, Travel Map 1.0 has been tested up to WordPress 4.8.28. Check the plugin's changelog for the latest compatibility information.

How often is Travel Map updated?

Travel Map was last updated on Jun 23, 2017. Frequent updates are generally a positive security signal.

What is Travel Map's security score?

Travel Map has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Travel Map Security & Risk Analysis

wordpress.org/plugins/travel-maps

Travel Baidu Map is a Wordpress plugin to help people to create one or more Baidu maps with locations and route into your site.

10 active installs v1.0 PHP + WP 3.7+ Updated Jun 23, 2017

baidumapsroutetravel

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Travel Map Safe to Use in 2026?

Generally Safe

Score 85/100

Travel Map has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The "travel-maps" plugin version 1.0 exhibits a generally positive security posture based on the provided static analysis. The complete absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is commendable. Furthermore, the plugin implements nonce and capability checks on its entry points, indicating an effort to restrict access. However, a significant area of concern is the output escaping, with only 45% of outputs being properly escaped. This suggests a potential for Cross-Site Scripting (XSS) vulnerabilities, as unsanitized output can be rendered directly in the browser, allowing attackers to inject malicious code.

The plugin's vulnerability history is currently clean, with no recorded CVEs. This, combined with the strong internal security practices observed in the code analysis (e.g., prepared statements, nonce/capability checks), suggests that this version of the plugin has not yet been publicly exploited or identified as vulnerable. The lack of taint analysis results also indicates no critical or high-severity data flow issues were detected, which is a positive sign. Despite these strengths, the unescaped output remains a notable weakness that could be exploited if an attacker can control the data being rendered.

Key Concerns

Output escaping is insufficient (45%)

Vulnerabilities

None known

Travel Map Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Travel Map Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

29 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

45% escaped65 total outputs

Attack Surface

Travel Map Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[btmap] travel-maps.php:64

WordPress Hooks 11

actioninitinclude\travel-maps-admin.php:10

actionadd_meta_boxesinclude\travel-maps-admin.php:11

actionsave_postinclude\travel-maps-admin.php:12

actionsave_postinclude\travel-maps-admin.php:13

filtermanage_edit-btmap_columnsinclude\travel-maps-admin.php:16

actionmanage_btmap_posts_custom_columninclude\travel-maps-admin.php:17

actionadmin_menuinclude\travel-maps-settings.php:13

actionadmin_initinclude\travel-maps-settings.php:14

actionadmin_enqueue_scriptstravel-maps.php:59

actionwp_enqueue_scriptstravel-maps.php:60

actionadmin_noticestravel-maps.php:70

Maintenance & Trust

Travel Map Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28

Last updatedJun 23, 2017

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Travel Map Alternatives

Nomad World Map

nomad-world-map

Create your own custom travel map. Link locations on the map to blog posts and share your travel plans.

700 No CVEs

LogMyTrip

logmytrip

Viewing your posts as a route plotted on a Google map is simple with this plugin. Just add the shortcode [logmytripmap] to a page to see the map.

40 No CVEs

CodePeople Post Map for Google Maps

codepeople-post-map

100

CodePeople Post Map lets you geotag posts and seamlessly integrate your blog with Google Maps for a smooth, location-aware experience.

4K 1 CVE

Car Route Planner Plugin

car-route-planner

Route planner for car travelers. Calculator of various values for route, such as length, driving time, fuel amount and cost, customized cost.

400 No CVEs

VenoMaps – OpenStreetMap & Privacy-Friendly Geo Maps

venomaps

100

Create beautiful, searchable maps with custom markers and routes. The simple, private alternative to Google Maps.

400 No CVEs

Developer Profile

Travel Map Developer Profile

Fishre

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Travel Map

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/travel-maps/assets/css/frontend.css/wp-content/plugins/travel-maps/assets/js/map.js/wp-content/plugins/travel-maps/assets/css/admin.css/wp-content/plugins/travel-maps/assets/js/admin.js

Script Paths

http://api.map.baidu.com/api?v=2.0&ak=

HTML / DOM Fingerprints

CSS Classes

travel-map-container

Data Attributes

data-map-iddata-map-latdata-map-lngdata-map-zoomdata-map-widthdata-map-height

JS Globals

pluginUrlajaxurl

Shortcode Output

<div id="" style="width:px;height:px;"></div>

FAQ