Does JP Latest Posts Shortcode have any unpatched vulnerabilities?

No. All known vulnerabilities in JP Latest Posts Shortcode have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is JP Latest Posts Shortcode compatible with WordPress 4.1.42?

According to WordPress.org data, JP Latest Posts Shortcode 1.0 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is JP Latest Posts Shortcode updated?

JP Latest Posts Shortcode was last updated on Unknown. Frequent updates are generally a positive security signal.

What is JP Latest Posts Shortcode's security score?

JP Latest Posts Shortcode has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

JP Latest Posts Shortcode Security & Risk Analysis

wordpress.org/plugins/jp-latest-posts-shortcode

This is simple plugin for listing latest posts from your blog.

20 active installs v1.0 PHP + WP 3.0+ Updated Unknown

featured-imagelatest-postlatest-posts-using-shortcodepostsshortcode

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is JP Latest Posts Shortcode Safe to Use in 2026?

Generally Safe

Score 100/100

JP Latest Posts Shortcode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The plugin "jp-latest-posts-shortcode" v1.0 exhibits a generally good security posture with no known vulnerabilities or critical code signals. The lack of dangerous functions, external HTTP requests, file operations, and the exclusive use of prepared statements for SQL queries are positive indicators. However, the code analysis reveals a significant concern regarding output escaping, with only 25% of outputs being properly escaped. This suggests a potential for cross-site scripting (XSS) vulnerabilities, especially since there are no nonce or capability checks, and the plugin has a single entry point via a shortcode which is not protected by authentication checks. While the vulnerability history is clean, this might be due to the plugin's simplicity or limited exposure, and the lack of comprehensive security checks in the code itself presents a latent risk that should not be overlooked.

Key Concerns

Low percentage of properly escaped output
No nonce checks
No capability checks
Shortcode entry point without auth checks

Vulnerabilities

None known

JP Latest Posts Shortcode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

JP Latest Posts Shortcode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

25% escaped8 total outputs

Attack Surface

JP Latest Posts Shortcode Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[latest-posts] jp-latest-posts-shortcode.php:76

WordPress Hooks 3

actionwidgets_initjp-latest-posts-shortcode.php:140

actionadmin_initlp-options.php:18

actionadmin_menulp-options.php:26

Maintenance & Trust

JP Latest Posts Shortcode Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedUnknown

PHP min version

Downloads4K

Community Trust

Rating40/100

Number of ratings3

Active installs20

Alternatives

JP Latest Posts Shortcode Alternatives

Latest Post Shortcode Slider

latest-post-shortcode-slider-extension

100

The plugin is an extension for the Latest Post Shortcode plugin, and allows you to output the static or dynamical selection you make as a responsive s …

10 No CVEs

Post Grid Shortcode

post-grid-shortcode

A simple and flexible shortcode to display a grid of posts with customizable options.

10 No CVEs

Kailash Recent Post Pages

kailash-recent-post-pages

100

A plugin to display recent posts in a customizable grid with options for featured image, read more links, and number of columns.

0 No CVEs

WP Shortcodes Plugin — Shortcodes Ultimate

shortcodes-ultimate

A comprehensive collection of visual components for your site

400K 35 CVEs

Developer Profile

JP Latest Posts Shortcode Developer Profile

Skjoy

4 plugins · 300 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect JP Latest Posts Shortcode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/jp-latest-posts-shortcode/css/style.css

HTML / DOM Fingerprints

CSS Classes

jp-latest-posts

HTML Comments

Data Attributes

id="jp-latest-posts-shortcode-widget"name="jp-latest-posts-shortcode-widget"

Shortcode Output

<ul class="jp-latest-posts">

FAQ