Does AtticThemes: Likes have any unpatched vulnerabilities?

No. All known vulnerabilities in AtticThemes: Likes have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AtticThemes: Likes compatible with WordPress 4.6.30?

According to WordPress.org data, AtticThemes: Likes 1.0.1 has been tested up to WordPress 4.6.30. Check the plugin's changelog for the latest compatibility information.

How often is AtticThemes: Likes updated?

AtticThemes: Likes was last updated on Aug 20, 2016. Frequent updates are generally a positive security signal.

What is AtticThemes: Likes's security score?

AtticThemes: Likes has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AtticThemes: Likes Security & Risk Analysis

wordpress.org/plugins/atticthemes-likes

A simple way to and liking system to your posts.

10 active installs v1.0.1 PHP + WP 4.0.0+ Updated Aug 20, 2016

likes

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is AtticThemes: Likes Safe to Use in 2026?

Generally Safe

Score 85/100

AtticThemes: Likes has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The 'atticthemes-likes' v1.0.1 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface. Furthermore, the code signals indicate a positive trend with no dangerous functions, all SQL queries using prepared statements, and no file operations or external HTTP requests, all of which are excellent security practices. The presence of nonce checks is also a good sign.

However, a notable concern is the lack of capability checks, meaning that sensitive actions, if any exist, are not protected by WordPress user roles. While the taint analysis shows no critical or high-severity issues, the 26% of outputs that are not properly escaped could potentially lead to cross-site scripting (XSS) vulnerabilities, especially if user-supplied data is involved in these outputs. The vulnerability history being entirely clear is a positive indicator, suggesting a history of secure development or a lack of historical exploitation, but it does not guarantee future security.

In conclusion, the plugin is off to a good start with a minimal attack surface and good practices in critical areas like SQL and external requests. The primary areas for improvement are ensuring proper output escaping for all data and implementing capability checks for any backend functionalities to further harden its security.

Key Concerns

Output escaping: 26% not properly escaped
Capability checks: 0

Vulnerabilities

None known

AtticThemes: Likes Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

AtticThemes: Likes Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

74% escaped19 total outputs

Attack Surface

AtticThemes: Likes Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 10

filterthe_contentatticthemes-likes.php:96

actionwp_enqueue_scriptsatticthemes-likes.php:103

actionsave_postatticthemes-likes.php:108

filtermanage_posts_columnsatticthemes-likes.php:115

filtermanage_edit-post_sortable_columnsatticthemes-likes.php:120

actionmanage_posts_custom_columnatticthemes-likes.php:125

actionload-edit.phpatticthemes-likes.php:130

filterrequestatticthemes-likes.php:135

actioninitatticthemes-likes.php:440

actionafter_setup_themeatticthemes-likes.php:445

Maintenance & Trust

AtticThemes: Likes Maintenance & Trust

Maintenance Signals

WordPress version tested4.6.30

Last updatedAug 20, 2016

PHP min version

Downloads2K

Community Trust

Rating80/100

Number of ratings1

Active installs10

Alternatives

AtticThemes: Likes Alternatives

Favorites

favorites

Favorites for any post type. Easily add favoriting/liking, wishlists, or any other similar functionality using the developer-friendly API.

10K 1 unpatched

Like This

roses-like-this

A simple 'I like this' plugin inspired by the facebook 'like' functionality.

2K No CVEs

My Favorites

my-favorites

Save user's favorite posts and list them.

1K 2 CVEs

Solid Post Likes

solid-post-likes

A like button for all post types. Solid and simple.

600 No CVEs

WP Voting Contest Lite

wp-voting-contest

Let users cast votes on your images/photos.

500 2 unpatched

Developer Profile

AtticThemes: Likes Developer Profile

AtticThemes

3 plugins · 90 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AtticThemes: Likes

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/atticthemes-likes/resources/javascript/script.min.js/wp-content/plugins/atticthemes-likes/resources/javascript/script.js/wp-content/plugins/atticthemes-likes/resources/css/style.min.css/wp-content/plugins/atticthemes-likes/resources/css/style.css

Script Paths

resources/javascript/script.min.jsresources/javascript/script.js

Version Parameters

atticthemes-likes/resources/javascript/script.min.js?ver=atticthemes-likes/resources/javascript/script.js?ver=atticthemes-likes/resources/css/style.min.css?ver=atticthemes-likes/resources/css/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

atlp-likesatlp-likedatlp-count

Data Attributes

data-post-iddata-singledata-plural

JS Globals

atlp_data

FAQ