Does BlueBook Feed Sync have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is BlueBook Feed Sync compatible with WordPress 6.9.4?

According to WordPress.org data, BlueBook Feed Sync 3.12.16 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is BlueBook Feed Sync compatible with PHP 7.4+?

BlueBook Feed Sync requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is BlueBook Feed Sync updated?

BlueBook Feed Sync was last updated on Apr 12, 2026. Frequent updates are generally a positive security signal.

What is BlueBook Feed Sync's security score?

BlueBook Feed Sync has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BlueBook Feed Sync Security & Risk Analysis

wordpress.org/plugins/bluebook-feed-sync

Display a customizable social page feed on your WordPress site with multiple layouts, color schemes, header options, like box, lightbox, and more.

60 active installs v3.12.16 PHP 7.4+ WP 5.8+ Updated Apr 12, 2026

feed-widgetpage-feedsocial-feedsocial-mediasocial-sync

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is BlueBook Feed Sync Safe to Use in 2026?

Generally Safe

Score 100/100

BlueBook Feed Sync has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The bluebook-feed-sync plugin, version 3.12.16, demonstrates a strong security posture with robust implementation of security best practices. The static analysis reveals no dangerous functions, all SQL queries utilize prepared statements, and an exceptionally high percentage of outputs are properly escaped. Furthermore, the plugin consistently implements nonce and capability checks for its AJAX handlers, and it has a clean vulnerability history with zero recorded CVEs. This indicates a proactive approach to security development.

However, the analysis does highlight two flows with unsanitized paths. While these are not flagged as critical or high severity in the taint analysis, they represent potential vectors for security issues if the data involved is user-controlled and not sufficiently validated or sanitized before being used in path operations. This is the primary area of concern despite the otherwise excellent security practices observed. The plugin's limited external HTTP requests and lack of file operations are also positive security indicators.

In conclusion, bluebook-feed-sync v3.12.16 is a well-secured plugin with a commendable track record. The presence of unsanitized paths, albeit not critical, warrants attention for complete risk mitigation. Overall, the plugin's strengths significantly outweigh its weaknesses.

Key Concerns

Flows with unsanitized paths detected

Vulnerabilities

None known

BlueBook Feed Sync Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

BlueBook Feed Sync Release Timeline

v3.12.16Current

v3.11.0

v3.10.0

v3.9.33

v3.9.32

v3.9.31

v3.9.30

v3.9.29

v3.9.28

v3.9.27

v3.9.26

v3.9.25

v3.9.24

v3.9.22

v3.9.21

v3.9.20

v3.9.19

v3.9.18

v3.9.17

v3.9.16

Code Analysis

Analyzed Apr 16, 2026

BlueBook Feed Sync Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

753 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

99% escaped758 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

render_admin_page (admin/class-bbfsync-admin.php:304)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

BlueBook Feed Sync Attack Surface

Entry Points6

Unprotected0

AJAX Handlers 5

authwp_ajax_bbfsync_verify_connectionadmin/class-bbfsync-admin.php:21

authwp_ajax_bbfsync_clear_cacheadmin/class-bbfsync-admin.php:22

authwp_ajax_bbfsync_import_feedadmin/class-bbfsync-admin.php:24

authwp_ajax_bbfsync_load_morebluebook-feed-sync.php:328

noprivwp_ajax_bbfsync_load_morebluebook-feed-sync.php:329

Shortcodes 1

[bbfsync_feed] bluebook-feed-sync.php:63

WordPress Hooks 8

actionadmin_menuadmin/class-bbfsync-admin.php:18

actionadmin_enqueue_scriptsadmin/class-bbfsync-admin.php:19

actionadmin_initadmin/class-bbfsync-admin.php:20

actionadmin_post_bbfsync_export_feedadmin/class-bbfsync-admin.php:23

actioninitbluebook-feed-sync.php:62

actionwp_enqueue_scriptsbluebook-feed-sync.php:66

actionadmin_initbluebook-feed-sync.php:68

filterwp_resource_hintsbluebook-feed-sync.php:71

Maintenance & Trust

BlueBook Feed Sync Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 12, 2026

PHP min version7.4

Downloads867

Community Trust

Rating0/100

Number of ratings0

Active installs60

Alternatives

BlueBook Feed Sync Alternatives

SocialFeeds

socialfeeds

100

YouTube feeds for WordPress with simple Setup and Settings options.

10K No CVEs

Tagembed Social Feeds Widget

tagembed-widget

Collect & Embed Instagram Feed, Embed Facebook Feed, Embed YouTube Videos, Embed Twitter Feed, Google Reviews & 15+ Social Media Feed on website.

10K 2 CVEs

RSS Feed Widget

rss-feed-widget

RSS Feed Widget with customizable slider. Feed title, description, image, censorship and a few other features which you can use.

2K 6 CVEs

WP Social Stream Designer

social-stream-design

WP Social Stream Designer is a step ahead WordPress plugin that allows you to create, design and showcase your social post in more pretty, attractive …

30 1 unpatched

Social Media Aggregator

social-media-aggregator

Aggregate social media content from Facebook, Twitter, YouTube, Vimeo, Instagram, and RSS Feeds into WordPress and use PHP or Ajax to retrieve.

10 No CVEs

Developer Profile

BlueBook Feed Sync Developer Profile

rstake

3 plugins · 130 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BlueBook Feed Sync

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/bluebook-feed-sync/assets/css/frontend.css/wp-content/plugins/bluebook-feed-sync/assets/css/slick.css/wp-content/plugins/bluebook-feed-sync/assets/css/slick-theme.css/wp-content/plugins/bluebook-feed-sync/assets/js/frontend.js/wp-content/plugins/bluebook-feed-sync/assets/js/slick.js

Script Paths

/wp-content/plugins/bluebook-feed-sync/blocks/bbfsync-feed/index.js

Version Parameters

bluebook-feed-sync/assets/css/frontend.css?ver=bluebook-feed-sync/assets/css/slick.css?ver=bluebook-feed-feed-sync/assets/css/slick-theme.css?ver=bluebook-feed-sync/assets/js/frontend.js?ver=bluebook-feed-sync/assets/js/slick.js?ver=bluebook-feed-sync/blocks/bbfsync-feed/index.js?ver=

HTML / DOM Fingerprints

CSS Classes

bbfsync-feed-wrapperbbfsync-feed-containerbbfsync-feed-itembbfsync-feed-post-wrapperbbfsync-feed-post-headerbbfsync-feed-post-author-avatarbbfsync-feed-post-author-namebbfsync-feed-post-timestamp+9 more

HTML Comments

Data Attributes

data-bbfsync-feed-iddata-bbfsync-settingsdata-bbfsync-post-id

JS Globals

bbfsyncBlockData

Shortcode Output

[bbfsync_feed]

FAQ