Does Emojized have any unpatched vulnerabilities?

No. All known vulnerabilities in Emojized have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Emojized compatible with WordPress 4.9.29?

According to WordPress.org data, Emojized 0.2 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Emojized updated?

Emojized was last updated on Jun 18, 2017. Frequent updates are generally a positive security signal.

What is Emojized's security score?

Emojized has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Emojized Security & Risk Analysis

wordpress.org/plugins/emojized

Emojized allows visitors to a WordPress site to rate and react to content using Emojis. Because text without them is 🅱🅾®ℹ️🆖

10 active installs v0.2 PHP + WP 4.5+ Updated Jun 18, 2017

emojipollreactionsvoting

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Emojized Safe to Use in 2026?

Generally Safe

Score 85/100

Emojized has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The "emojized" plugin v0.2 exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, using prepared statements for all SQL queries, and not making external HTTP requests. The absence of known CVEs and a clean vulnerability history are also reassuring signs. However, there are significant concerns. The plugin exposes one REST API route without permission callbacks, creating an unprotected entry point that could be exploited. Furthermore, a concerning 54% of its output is not properly escaped, leaving it vulnerable to cross-site scripting (XSS) attacks if user-supplied data is not handled carefully before rendering. While the plugin has a low total attack surface, the unprotected REST API route and the significant unescaped output present the most immediate risks.

Key Concerns

REST API route without permission callbacks
High percentage of unescaped output

Vulnerabilities

None known

Emojized Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Emojized Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

46% escaped13 total outputs

Attack Surface

1 unprotected

Emojized Attack Surface

Entry Points2

Unprotected1

REST API Routes 1

GET/wp-json/emojized/v1/count/(?P<id>\d+)emojized-endpoints.php:5

Shortcodes 1

[emojized] emojized-post.php:41

WordPress Hooks 13

actionrest_api_initemojized-endpoints.php:2

actionadmin_enqueue_scriptsemojized-metabox.php:8

actionadd_meta_boxesemojized-metabox.php:21

actionsave_postemojized-metabox.php:73

actioninitemojized-post.php:2

actionwp_enqueue_scriptsemojized-post.php:30

actionwp_heademojized-post.php:32

filtermanage_emojize_posts_columnsemojized-post.php:91

actionmanage_emojize_posts_custom_columnemojized-post.php:92

filtermanage_emojize_posts_columnsemojized-post.php:94

actionmanage_emojize_posts_custom_columnemojized-post.php:95

filtermanage_edit-emojize_sortable_columnsemojized-post.php:97

filtermanage_emojize_posts_columnsemojized-post.php:111

Maintenance & Trust

Emojized Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedJun 18, 2017

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Emojized Alternatives

Polls CP

cp-polls

Create classic polls and advanced polls with dependant questions. Voting / survey system.

500 9 CVEs

Vuukle Comments, Reactions, Share Bar, Revenue

free-comments-for-wordpress-vuukle

Vuukle website is an audience engagement platform which amplifies basic user comments and other attention data (shares, likes) into experiences showin …

300 1 CVE

Instant Emoji Reactions

instant-emoji-reactions

100

Add emoji reactions to posts and custom post types on your WordPress site, enabling both logged-in and guest users to express their feelings.

100 No CVEs

WP Easy Poll

wp-easy-poll-afo

This is an easy to setup polling/ voting plugin for users. Create Polls from admin panel and display in widgets.

50 1 unpatched

Votely by WPGens

votely-poll-vote-system-by-wpgens

Adds simple poll/vote/opinion system at the end of post that helps your content to engage with users. Check screenshots.

40 No CVEs

Developer Profile

Emojized Developer Profile

theode

11 plugins · 220 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Emojized

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/emojized/css/emojized.css/wp-content/plugins/emojized/js/emojized.js

Script Paths

/wp-content/plugins/emojized/js/emojized.js

HTML / DOM Fingerprints

CSS Classes

emojized-tableemojized-areaemojizedemojized-count-

Data Attributes

data-idname="emoji"class="emoji"name="count"class="count"name="initial_count"+2 more

JS Globals

var site_url =

REST Endpoints

/wp-json/emojized/v1/count/

Shortcode Output

[emojized id=

FAQ