WP-Safety

Floating Share Button Security & Risk Analysis

wordpress.org/plugins/floating-share-button

Lightweight floating share button with responsive desktop sharesheet and native iOS and Android sharesheet.

10 active installs v1.7.4 PHP + WP 5.0+ Updated Nov 17, 2024
floating-sharenative-mobile-sharescriptless-shareshare-buttonweb-share-api
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Floating Share Button Safe to Use in 2026?

Generally Safe

Score 92/100

Floating Share Button has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

Based on the provided static analysis and vulnerability history, the "floating-share-button" plugin version 1.7.4 exhibits a strong security posture. The absence of any detected dangerous functions, SQL queries that are all properly prepared, and completely sanitized output signals diligent coding practices. Furthermore, the lack of any file operations or external HTTP requests minimizes potential attack vectors. The plugin also has no recorded vulnerabilities, which is an excellent indicator of its stability and security over time.

However, a notable concern arises from the complete absence of nonce checks and capability checks. While the static analysis reports zero unprotected entry points (AJAX handlers, REST API routes, shortcodes, cron events), this is likely due to the fact that there are no such entry points detected in the first place. If future versions introduce any of these, the lack of built-in security mechanisms like nonce and capability checks could create significant vulnerabilities, especially if user input is involved.

In conclusion, the plugin is currently very secure due to its minimal attack surface and adherence to secure coding principles for the features it does implement. The lack of vulnerabilities is a positive sign. The primary weakness, and the only area for potential concern, is the complete absence of defense-in-depth mechanisms like nonces and capability checks, which could become a critical oversight if new functionalities are added without them.

Key Concerns

  • No nonce checks implemented
  • No capability checks implemented
Vulnerabilities
None known

Floating Share Button Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Floating Share Button Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
28 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped28 total outputs
Attack Surface

Floating Share Button Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 8
actionplugins_loadedincludes\class-floating-share-button.php:153
actionadmin_enqueue_scriptsincludes\class-floating-share-button.php:168
actionadmin_enqueue_scriptsincludes\class-floating-share-button.php:169
actioncsf_loadedincludes\class-floating-share-button.php:170
actionadmin_noticesincludes\class-floating-share-button.php:172
actionwp_enqueue_scriptsincludes\class-floating-share-button.php:187
actionwp_enqueue_scriptsincludes\class-floating-share-button.php:188
actionwp_footerincludes\class-floating-share-button.php:189
Maintenance & Trust

Floating Share Button Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedNov 17, 2024
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Floating Share Button Alternatives

Social Sharing Plugin – Social Warfare

Social Sharing Plugin – Social Warfare

social-warfare

B
84

The most beautiful, responsive, lightning fast social share buttons built to boost shares and drive more traffic without slowing down your site.

20K 8 CVEs
Social Snap — Social Share Buttons & Click to Tweet

Social Snap — Social Share Buttons & Click to Tweet

socialsnap

A
99

Social sharing plugin with share buttons for Facebook, X (Twitter), LinkedIn and more. Includes Click to Tweet feature.

10K 2 CVEs
Block Referer Spam

Block Referer Spam

block-referer-spam

A
85

Blocks referer/referral spam from accessing your site and cleans up your Google Analytics in the process!

600 1 CVE
Plain Social Sharing Buttons

Plain Social Sharing Buttons

plain-social-sharing-buttons

A
100

Simple and lightweight social sharing buttons for your wordpress site

0 No CVEs
AddToAny Share Buttons

AddToAny Share Buttons

add-to-any

A
99

Share buttons for WordPress including the AddToAny button, Facebook, Bluesky, Mastodon, WhatsApp, Pinterest, Reddit, many more, and follow icons too.

300K 3 CVEs
Developer Profile

Floating Share Button Developer Profile

Bowo

7 plugins · 211K total installs

80
trust score
Avg Security Score
89/100
Avg Patch Time
35 days
View full developer profile
Detection Fingerprints

How We Detect Floating Share Button

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/floating-share-button/css/floating-share-button-admin.css/wp-content/plugins/floating-share-button/js/floating-share-button-public.js/wp-content/plugins/floating-share-button/css/floating-share-button-public.css
Version Parameters
floating-share-button/css/floating-share-button-admin.css?ver=floating-share-button/js/floating-share-button-public.js?ver=floating-share-button/css/floating-share-button-public.css?ver=

HTML / DOM Fingerprints

CSS Classes
fsb-optionsfsb-header-actionfsb-main-cta
HTML Comments
<!-- Currently plugin version. --><!-- Start at version 1.0.0 and use SemVer - https://semver.org --><!-- Rename this for your plugin and update it as you release new versions. --><!-- If this file is called directly, abort. -->+35 more
Data Attributes
data-fsb-main-ctadata-fsb-socialdata-fsb-settings
JS Globals
fsb_data
FAQ

Frequently Asked Questions about Floating Share Button