Does Jetpack Twitter Via have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Jetpack Twitter Via compatible with WordPress 3.5.2?

According to WordPress.org data, Jetpack Twitter Via 1.0.0 has been tested up to WordPress 3.5.2. Check the plugin's changelog for the latest compatibility information.

How often is Jetpack Twitter Via updated?

Jetpack Twitter Via was last updated on Nov 26, 2012. Frequent updates are generally a positive security signal.

What is Jetpack Twitter Via's security score?

Jetpack Twitter Via has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Jetpack Twitter Via Security & Risk Analysis

wordpress.org/plugins/jetpack-twitter-via

Adds 'via @username' to the Tweet Button provided in "Jetpack by WordPress.com"

20 active installs v1.0.0 PHP + WP 3.2+ Updated Nov 26, 2012

jetpacktwitter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Jetpack Twitter Via Safe to Use in 2026?

Generally Safe

Score 85/100

Jetpack Twitter Via has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The jetpack-twitter-via v1.0.0 plugin exhibits a strong security posture based on the provided static analysis. There are no identified entry points like AJAX handlers, REST API routes, or shortcodes that are exposed without authentication or permission checks. The code demonstrates good development practices by utilizing prepared statements for all SQL queries, properly escaping all output, and including nonce checks. The absence of dangerous functions, file operations, external HTTP requests, and known vulnerabilities further reinforces its security.

However, a notable absence is the lack of capability checks on any of its functions. While the static analysis reports no direct vulnerabilities, this omission could potentially lead to privilege escalation issues if any functionalities were to be introduced or were implicitly accessible without proper authorization. The plugin's vulnerability history is clean, suggesting a history of secure development or limited exposure. Overall, this plugin appears to be developed with security in mind, but the missing capability checks represent a potential area for improvement and a minor weakness in its security model.

Key Concerns

Missing capability checks

Vulnerabilities

None known

Jetpack Twitter Via Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Jetpack Twitter Via Release Timeline

v1.0.0Current

Code Analysis

Analyzed Mar 16, 2026

Jetpack Twitter Via Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped2 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

jtv_settings_validate (jetpack-twitter-via.php:88)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Jetpack Twitter Via Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

filterjetpack_sharing_twitter_viajetpack-twitter-via.php:30

actionadmin_initjetpack-twitter-via.php:47

actionsharing_global_optionsjetpack-twitter-via.php:61

actionsharing_admin_updatejetpack-twitter-via.php:93

Maintenance & Trust

Jetpack Twitter Via Maintenance & Trust

Maintenance Signals

WordPress version tested3.5.2

Last updatedNov 26, 2012

PHP min version

Downloads4K

Community Trust

Rating100/100

Number of ratings3

Active installs20

Alternatives

Jetpack Twitter Via Alternatives

Slim Jetpack

slimjetpack

Slim version of Jetpack unlinked from WordPress.com :) Supercharge your self-hosted wp site even you're NOT WP.COM users.

2K No CVEs

Custom Tweaks for Jetpack by BarryCarlyon

jetpack-extras

Extras for WordPress Jetpack. Tested up to Jetpack 3.4.1

100 No CVEs

Nextend Social Login and Register

nextend-facebook-connect

One click registration & login plugin for Facebook, Google, X (formerly Twitter) and more. Quick setup and easy configuration.

200K 6 CVEs

Custom Twitter Feeds – A Tweets Widget or X Feed Widget

custom-twitter-feeds

Display X posts (Twitter tweets) from any public user account in a clean, attractive looking feed that updates weekly.

100K 8 CVEs

Jetpack Protect

jetpack-protect

100

Free daily vulnerability scans & WordPress security, powered by WPScan (an Automattic brand) and its 60,000+ vulnerability database. No setup needed!

100K No CVEs

Developer Profile

Jetpack Twitter Via Developer Profile

Konstantin Obenland

13 plugins · 23K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Jetpack Twitter Via

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

description

HTML Comments

End of file jetpack-twitter-via.phpLocation: ./wp-content/plugins/jetpack-twitter-via/jetpack-twitter-via.php

Data Attributes

id="jtv-jetpack-twitter-via"name="jtv-jetpack-twitter-via"id="jtv-jetpack-twitter-via"name="jtv-jetpack-twitter-via"id="jtv-jetpack-twitter-via"name="jtv-jetpack-twitter-via"+5 more

FAQ