JM Breaking News Security & Risk Analysis
wordpress.org/plugins/jm-breaking-newsDisplay a breaking news banner for a selected amount of time anywhere on your site.
Is JM Breaking News Safe to Use in 2026?
Generally Safe
Score 85/100JM Breaking News has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The plugin "jm-breaking-news" v2.1.0 exhibits a generally good security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests, coupled with the use of prepared statements for all SQL queries, are positive indicators. The presence of a nonce check is also encouraging. However, a significant concern is the low rate of proper output escaping, with only 10% of outputs being correctly escaped. This suggests a potential for cross-site scripting (XSS) vulnerabilities, as untrusted input could be rendered directly into the user's browser without sufficient sanitization. The lack of any recorded vulnerabilities in its history is a strong positive, indicating a history of stable and secure development. Despite the concerning output escaping issue, the plugin's limited attack surface and secure coding practices in other areas suggest a relatively low overall risk profile, though the XSS risk should not be overlooked.
Key Concerns
- Low output escaping rate
JM Breaking News Security Vulnerabilities
JM Breaking News Code Analysis
Output Escaping
JM Breaking News Attack Surface
Shortcodes 1
WordPress Hooks 16
Maintenance & Trust
JM Breaking News Maintenance & Trust
Maintenance Signals
Community Trust
JM Breaking News Alternatives
FYP News Ticker – Scrolling News Banner & Announcement Bar for WordPress
fyp-news-ticker
Grab attention with scrolling news banners. 3 professional templates, drag-and-drop builder, scheduled announcements. No coding needed.
CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice)
cookie-law-info
Easily set up cookie banner or notice in WordPress, and policy pages for compliance with global cookie laws (GDPR, DSGVO, RGPD, CCPA/CPRA, etc).
CookieAdmin – Cookie Consent Banner
cookieadmin
CookieAdmin provides easy to configure cookie consent banner with GDPR and CCPA law support.
GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice for CCPA, EU Cookie Law
gdpr-cookie-compliance
Cookie notice banner for GDPR, CCPA, EU cookie law, data protection and privacy regulations and other cookie law and consent notice requirements on yo …
iubenda | All-in-one Compliance for GDPR / CCPA Cookie Consent + more
iubenda-cookie-law-solution
The solution for GDPR compliance + more. Get your cookie banner, privacy policy, terms and conditions and handle cookie consent in just one plugin.
JM Breaking News Developer Profile
9 plugins · 230 total installs
How We Detect JM Breaking News
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/jm-breaking-news/admin/css/admin-style.min.css/wp-content/plugins/jm-breaking-news/admin/js/show-hide-fields.min.js/wp-content/plugins/jm-breaking-news/admin/js/breaking-news-load-posts.min.js/wp-content/plugins/jm-breaking-news/admin/js/show-hide-fields.min.js/wp-content/plugins/jm-breaking-news/admin/js/breaking-news-load-posts.min.jsjm-breaking-news/admin/css/admin-style.min.css?ver=jm-breaking-news/admin/js/show-hide-fields.min.js?ver=jm-breaking-news/admin/js/breaking-news-load-posts.min.js?ver=HTML / DOM Fingerprints
jm_breaking_news_internal_linkjm_breaking_news_in_exjm_breaking_news_linkjm_breaking_news_targetjm_breaking_news_time_limitjm_breaking_news_background_colorjmloadposts