Does VS Knowledge Base have any unpatched vulnerabilities?

No. All known vulnerabilities in VS Knowledge Base have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is VS Knowledge Base compatible with WordPress 6.9.4?

According to WordPress.org data, VS Knowledge Base 8.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is VS Knowledge Base compatible with PHP 7.4+?

VS Knowledge Base requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is VS Knowledge Base updated?

VS Knowledge Base was last updated on Feb 14, 2026. Frequent updates are generally a positive security signal.

What is VS Knowledge Base's security score?

VS Knowledge Base has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

VS Knowledge Base Security & Risk Analysis

wordpress.org/plugins/very-simple-knowledge-base

With this lightweight plugin you can create a knowledge base that contains your categories and posts.

300 active installs v8.7 PHP 7.4+ WP 6.0+ Updated Feb 14, 2026

classicpressfaqfrequently-asked-questionsknowledge-basewiki

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is VS Knowledge Base Safe to Use in 2026?

Generally Safe

Score 100/100

VS Knowledge Base has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "very-simple-knowledge-base" plugin version 8.7 presents a generally positive security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is a strong indicator of good development practices. Furthermore, the high percentage of properly escaped output suggests a good effort to mitigate cross-site scripting vulnerabilities. The lack of any recorded vulnerabilities, including critical or high severity issues, in its history further reinforces this perception of a secure plugin.

However, a notable concern arises from the complete absence of nonce checks and capability checks across all identified entry points (shortcodes). While the static analysis reports no unprotected entry points, the lack of these fundamental security mechanisms means that the plugin relies solely on WordPress's default authorization, which may not be granular enough for all scenarios. If any of the shortcodes could potentially lead to sensitive actions or data manipulation, their lack of specific authorization checks represents a significant oversight.

In conclusion, the plugin demonstrates strengths in avoiding common security pitfalls like direct SQL injection and unescaped output. Its clean vulnerability history is a positive sign. The primary weakness lies in the reliance on WordPress's general authorization without implementing specific nonce and capability checks on its shortcodes, which could be exploited if those shortcodes are used in conjunction with other vulnerabilities or in a misconfigured WordPress environment.

Key Concerns

No nonce checks on entry points
No capability checks on entry points

Vulnerabilities

None known

VS Knowledge Base Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

VS Knowledge Base Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

66 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped68 total outputs

Attack Surface

VS Knowledge Base Attack Surface

Entry Points4

Unprotected0

Shortcodes 4

[knowledgebase] vskb-shortcode.php:77

[knowledgebase-one] vskb-shortcode.php:84

[knowledgebase-two] vskb-shortcode.php:91

[knowledgebase-three] vskb-shortcode.php:98

WordPress Hooks 5

actioninitblock\vskb-block.php:16

actionenqueue_block_assetsblock\vskb-block.php:24

actionwp_enqueue_scriptsvskb.php:24

actionwidgets_initvskb.php:30

filterbody_classvskb.php:47

Maintenance & Trust

VS Knowledge Base Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 14, 2026

PHP min version7.4

Downloads44K

Community Trust

Rating96/100

Number of ratings16

Active installs300

Alternatives

VS Knowledge Base Alternatives

EazyDocs – AI Powered Knowledge Base, Wiki, Documentation & FAQ Builder

eazydocs

Build professional knowledge bases with unlimited docs, drag-and-drop editor, live search, and SEO optimization.

2K 9 CVEs

Yada Wiki

yada-wiki

Yada Wiki is a simple wiki for your WordPress site.

2K 2 CVEs

Knowledge Base CPT

knowledge-base-cpt

Enables a 'knowledge base post' type and 'section' taxonomy.

60 No CVEs

MinervaKB Lite

minerva-knowledge-base-lite

MinervaKB Lite is a fully responsive knowledge base plugin for WordPress with live search.

50 No CVEs

Instant Knowledge Base – AI Knowledge Base, Documentation, Wiki & Help Center

instant-knowledgebase

100

Create a fast, searchable knowledge base and docs in WordPress with AI search, FAQ schema, and analytics.

0 No CVEs

Developer Profile

VS Knowledge Base Developer Profile

Guido

19 plugins · 23K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

341 days

View full developer profile

Detection Fingerprints

How We Detect VS Knowledge Base

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/very-simple-knowledge-base/css/vskb-style.min.css

HTML / DOM Fingerprints

CSS Classes

vskb-twentyvskb-customvskb-onevskb-twovskb-threevskb-fourvskb-no-categoriesvskb-cat-list+3 more

Data Attributes

data-list-type

Shortcode Output

<ul id="vskb"<p class="vskb-no-categories"><li class="vskb-cat-list<span class="vskb-post-count">

FAQ