Does Zero BS Accounting have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Zero BS Accounting compatible with WordPress 6.9.4?

According to WordPress.org data, Zero BS Accounting 2.0.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Zero BS Accounting compatible with PHP 5.6+?

Zero BS Accounting requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Zero BS Accounting updated?

Zero BS Accounting was last updated on Dec 9, 2025. Frequent updates are generally a positive security signal.

What is Zero BS Accounting's security score?

Zero BS Accounting has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Zero BS Accounting Security & Risk Analysis

wordpress.org/plugins/zero-bs-accounting

WordPress accounting Plugin for people with e zero accounting knowledge. Track your income and expenses from the WordPress dashboard.

50 active installs v2.0.7 PHP 5.6+ WP 5.0+ Updated Dec 9, 2025

accountingbillingbookkeepingexpenseincome

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Zero BS Accounting Safe to Use in 2026?

Generally Safe

Score 100/100

Zero BS Accounting has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The security posture of zero-bs-accounting v2.0.7 shows mixed strengths and significant concerns. On the positive side, the plugin demonstrates good practices in SQL query preparation, with 92% of queries using prepared statements, and strong output escaping, with 97% of outputs properly escaped. The absence of known CVEs and critical taint analysis findings indicates a potentially stable codebase in these areas. However, a major weakness lies in its attack surface. All 9 identified AJAX handlers lack authentication checks, exposing a substantial portion of the plugin's functionality to unauthorized access. While there are no known vulnerabilities in its history, the lack of built-in authorization for AJAX endpoints presents a significant risk that could be exploited in various ways, from unauthorized data manipulation to denial-of-service attacks.

Key Concerns

9 AJAX handlers without auth checks
Limited nonce checks
Low capability checks relative to entry points

Vulnerabilities

None known

Zero BS Accounting Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Zero BS Accounting Release Timeline

v2.0.7Current

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Zero BS Accounting Code Analysis

Dangerous Functions

Raw SQL Queries

24 prepared

Unescaped Output

89 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

92% prepared26 total queries

Output Escaping

97% escaped92 total outputs

Attack Surface

9 unprotected

Zero BS Accounting Attack Surface

Entry Points9

Unprotected9

AJAX Handlers 9

authwp_ajax_zbs_subscribezero-bs-accounting.php:73

authwp_ajax_zbs_insertProfilezero-bs-accounting.php:77

authwp_ajax_zbs_updateProfilezero-bs-accounting.php:78

authwp_ajax_zbs_deleteProfilezero-bs-accounting.php:79

authwp_ajax_zbs_displayProfilezero-bs-accounting.php:80

authwp_ajax_zbs_set_default_profilezero-bs-accounting.php:81

authwp_ajax_zbs_get_profile_settingszero-bs-accounting.php:82

authwp_ajax_zbs_updated_profile_settingszero-bs-accounting.php:83

authwp_ajax_zbs_update_transactionzero-bs-accounting.php:84

WordPress Hooks 25

actionswitch_themeappsero\src\Insights.php:135

actionswitch_themeappsero\src\Insights.php:136

actionadmin_footerappsero\src\Insights.php:147

actionadmin_noticesappsero\src\Insights.php:163

actionadmin_initappsero\src\Insights.php:166

filtercron_schedulesappsero\src\Insights.php:172

actionadmin_menuappsero\src\License.php:219

actionafter_switch_themeappsero\src\License.php:781

actionswitch_themeappsero\src\License.php:782

actioninitzero-bs-accounting.php:45

actionadmin_bar_menuzero-bs-accounting.php:49

actionadmin_menuzero-bs-accounting.php:51

actionadmin_initzero-bs-accounting.php:53

actionadmin_initzero-bs-accounting.php:55

filterpage_templatezero-bs-accounting.php:57

actionwp_enqueue_scriptszero-bs-accounting.php:59

actioninitzero-bs-accounting.php:61

actioninitzero-bs-accounting.php:63

actiontransaction_category_add_form_fieldszero-bs-accounting.php:65

actiontransaction_category_edit_form_fieldszero-bs-accounting.php:67

actioninitzero-bs-accounting.php:69

actionrest_api_initzero-bs-accounting.php:71

actioninitzero-bs-accounting.php:75

actiontemplate_redirectzero-bs-accounting.php:85

actionuser_registerzero-bs-accounting.php:86

Maintenance & Trust

Zero BS Accounting Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 9, 2025

PHP min version5.6

Downloads6K

Community Trust

Rating100/100

Number of ratings1

Active installs50

Alternatives

Zero BS Accounting Alternatives

ComptaFlow by MeeTempo – French Accounting for WordPress

comptaflow-by-meetempo

100

French accounting (PCG) for freelancers & small businesses. Invoicing, guided entry, automatic journal entries, VAT, FEC export (Pro).

0 No CVEs

Accounting for WooCommerce

accounting-for-woocommerce

All you need to transfer accounting data from Woocommerce to accounting softwares!

500 3 CVEs

Finpose – Accounting for WooCommerce

fin-accounting-for-woocommerce

Accounting and financial tracking tool for online stores. Track your costs, expenses, taxes and sales for timeframes you can choose.

500 No CVEs

Contasimple

contasimple

100

This module allows you to export all WooCommerce orders as invoices in Contasimple.

200 No CVEs

Payday

payday

This plugin integrates WooCommerce with your Payday bookkeeping solution.

100 1 unpatched

Developer Profile

Zero BS Accounting Developer Profile

WPPOOL

16 plugins · 32K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

322 days

View full developer profile

Detection Fingerprints

How We Detect Zero BS Accounting

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/zero-bs-accounting/public/styles.css/wp-content/plugins/zero-bs-accounting/assets/js/chart.min.js/wp-content/plugins/zero-bs-accounting/dist/js/scripts.js

Script Paths

/wp-content/plugins/zero-bs-accounting/assets/js/chart.min.js/wp-content/plugins/zero-bs-accounting/dist/js/scripts.js

Version Parameters

zero-bs-accounting/public/styles.css?ver=zero-bs-accounting/assets/js/chart.min.js?ver=zero-bs-accounting/dist/js/scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

zbs-account-pagezbs-profile-formzbs-transaction-tablezbs-account-sidebarzbs-dashboard-widgetzbs-report-chart

HTML Comments

Data Attributes

data-zbs-profile-iddata-zbs-transaction-iddata-zbs-form-action

JS Globals

zbs_accountZBS_DATA

REST Endpoints

/wp-json/zbs-account/v1/profile/wp-json/zbs-account/v1/transaction/wp-json/zbs-account/v1/settings

Shortcode Output

[zbs_accounting][zbs_dashboard][zbs_transactions][zbs_reports]

FAQ