Does BlogFollow have any unpatched vulnerabilities?

No. All known vulnerabilities in BlogFollow have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is BlogFollow compatible with WordPress 2.6?

According to WordPress.org data, BlogFollow 1.1 has been tested up to WordPress 2.6. Check the plugin's changelog for the latest compatibility information.

How often is BlogFollow updated?

BlogFollow was last updated on Oct 28, 2008. Frequent updates are generally a positive security signal.

What is BlogFollow's security score?

BlogFollow has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BlogFollow Security & Risk Analysis

wordpress.org/plugins/blogfollow

BlogFollow is a WordPress pluggin that shows a snippet from a commenter's blog at the bottom on their comment.

10 active installs v1.1 PHP + WP 2.0.2+ Updated Oct 28, 2008

blogcommentssnippet

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is BlogFollow Safe to Use in 2026?

Generally Safe

Score 85/100

BlogFollow has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 17yr ago

Risk Assessment

The blogfollow v1.1 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of identified dangerous functions, properly escaped output, and a complete lack of critical or high-severity taint flows are positive indicators. Furthermore, the plugin has no recorded vulnerabilities (CVEs) which suggests a history of secure development or diligent patching. The limited use of file operations and external HTTP requests, coupled with the high percentage of SQL queries using prepared statements, also points to good coding practices.

Key Concerns

No nonce checks found
No capability checks found
SQL queries not fully prepared

Vulnerabilities

None known

BlogFollow Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

BlogFollow Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared5 total queries

Attack Surface

BlogFollow Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionactivate_blogfollow/blogfollow.phpblogfollow.php:25

actiondeactivate_blogfollow/blogfollow.phpblogfollow.php:26

filtercomment_textblogfollow.php:27

Maintenance & Trust

BlogFollow Maintenance & Trust

Maintenance Signals

WordPress version tested2.6

Last updatedOct 28, 2008

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

BlogFollow Alternatives

CodeColorer

codecolorer

Syntax highlighting for code snippets in posts, comments, and RSS, with inline code, themes, and line numbers.

1K 2 CVEs

Comment Emojis for WP

comment-emojis-for-wp

Add a lightweight emoji picker to the comment textarea, allowing users to insert emojis and react to posts or comments.

100 No CVEs

BP Import Blog Activity

bp-import-blog-activity

Updates BuddyPress activity streams with missing blog comments and posts

10 No CVEs

BP Include Non-member Comments

bp-include-non-member-comments

Inserts blog comments from non-logged-in users into the activity stream

10 No CVEs

BuddyPress Activity Stream as Blog Comments

buddypress-activity-as-blog-comments

100

This plugin will replace the blog comments section with the activity stream reply system

10 No CVEs

Developer Profile

BlogFollow Developer Profile

mattc78

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BlogFollow

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

blogfollow

Shortcode Output

<fieldset class="blogfollow">
<legend>Read more from

</legend>
<h2><a rel="external nofollow" href="

">

</a></h2>
<p>

FAQ

BlogFollow Security & Risk Analysis

Is BlogFollow Safe to Use in 2026?

Generally Safe

Key Concerns

BlogFollow Security Vulnerabilities

BlogFollow Code Analysis

SQL Query Safety

BlogFollow Attack Surface

BlogFollow Maintenance & Trust

Maintenance Signals

Community Trust

BlogFollow Alternatives

CodeColorer

Comment Emojis for WP

BP Import Blog Activity

BP Include Non-member Comments

BuddyPress Activity Stream as Blog Comments

BlogFollow Developer Profile

How We Detect BlogFollow

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about BlogFollow