Jetpack Sharing Source Pack Security & Risk Analysis
wordpress.org/plugins/jpsspAdd more services to Jetpack Sharing
Is Jetpack Sharing Source Pack Safe to Use in 2026?
Generally Safe
Score 85/100Jetpack Sharing Source Pack has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'jpssp' plugin v0.1.3 exhibits a generally positive security posture with no known vulnerabilities or critical code signals. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, the plugin demonstrates good practices by using prepared statements for all SQL queries and appears to have proper output escaping for most outputs. The lack of file operations and external HTTP requests also reduces potential risks.
However, the analysis does reveal two flows with unsanitized paths during taint analysis, even though they are not classified as critical or high severity. This indicates a potential, albeit minor, risk of path traversal vulnerabilities if these flows are ever exposed to user input or interaction. The presence of one external HTTP request, while not inherently malicious, represents a point of potential integration risk or a dependency on external services that could be compromised.
Given the complete absence of historical vulnerabilities and the limited attack surface, the plugin appears well-maintained and developed with security in mind. The strengths lie in its minimal attack surface and diligent handling of database queries and output escaping. The main weaknesses are the identified unsanitized path flows and the single external HTTP request, which, while not critical in this instance, warrant attention for future development and hardening.
Key Concerns
- Taint analysis: flows with unsanitized paths
- Output escaping: 25% not properly escaped
- External HTTP requests: 1 detected
Jetpack Sharing Source Pack Security Vulnerabilities
Jetpack Sharing Source Pack Code Analysis
Output Escaping
Data Flow Analysis
Jetpack Sharing Source Pack Attack Surface
WordPress Hooks 12
Maintenance & Trust
Jetpack Sharing Source Pack Maintenance & Trust
Maintenance Signals
Community Trust
Jetpack Sharing Source Pack Alternatives
SMS Sharing Button for Jetpack
sms-sharing-button-for-jetpack
Add SMS button to Jetpack Sharing
Viber Sharing Button for Jetpack
viber-sharing-button-for-jetpack
Add Viber button to Jetpack Sharing
Social Icons Widget & Block – Social Media Icons & Share Buttons
social-icons-widget-by-wpzoom
Social media icons plugin for WordPress - Add 400+ social icons and share buttons. Gutenberg block, widget & Elementor support. GDPR compliant.
Ocean Social Sharing
ocean-social-sharing
Website: https://oceanwp.org/ Support: https://oceanwp.org/support/ Documentation: https://docs.oceanwp.org/ Extensions: https://oceanwp.
Jetpack Social
jetpack-social
Write once, publish everywhere. Reach your target audience by sharing your content with Jetpack Social!
Jetpack Sharing Source Pack Developer Profile
6 plugins · 270 total installs
How We Detect Jetpack Sharing Source Pack
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/jpssp/style.css/wp-content/plugins/jpssp/count.jsjpssp/style.css?ver=jpssp/count.js?ver=HTML / DOM Fingerprints
feedly_buttonfeedlyshare-feedlycount-wrapcount-numbercount-arrowline_buttonshare-linedata-scribedata-feed-idfeedly_apifeedly_smart/wp-json/jpssp/v1/api<div class="feedly_button"><div class="feedly"><a rel="nofollow" href="<span data-feed-id="<div class="line_button"><a href="http://line.me/R/msg/text/?