Does LH Nominate This have any unpatched vulnerabilities?

No. All known vulnerabilities in LH Nominate This have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is LH Nominate This compatible with WordPress 5.5.18?

According to WordPress.org data, LH Nominate This 2.00 has been tested up to WordPress 5.5.18. Check the plugin's changelog for the latest compatibility information.

How often is LH Nominate This updated?

LH Nominate This was last updated on Oct 13, 2020. Frequent updates are generally a positive security signal.

What is LH Nominate This's security score?

LH Nominate This has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

LH Nominate This Security & Risk Analysis

wordpress.org/plugins/lh-nominate-this

Allows users to republish readable extracts of other webpages on their own site.

0 active installs v2.00 PHP + WP 4.0+ Updated Oct 13, 2020

bookmarkletcurationnominatepress-thisreadability

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is LH Nominate This Safe to Use in 2026?

Generally Safe

Score 85/100

LH Nominate This has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "lh-nominate-this" v2.00 plugin exhibits a mixed security posture. On the positive side, it has no known CVEs, a clean vulnerability history, and all identified SQL queries utilize prepared statements, indicating good practices in these areas. However, the static analysis reveals significant concerns, particularly regarding output escaping. With only 4% of outputs properly escaped, there's a high risk of Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the plugin's output. Furthermore, the taint analysis shows two flows with unsanitized paths, which, although not reaching critical or high severity in this specific analysis, could potentially lead to insecure file operations or other vulnerabilities if exploited. The presence of file operations and external HTTP requests without clear indications of sanitization for their inputs also warrants caution.

Key Concerns

Low percentage of properly escaped output
Taint flows with unsanitized paths

Vulnerabilities

None known

LH Nominate This Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

LH Nominate This Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

4% escaped51 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

return_nominated_url_input (lh-nominate-this.php:242)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

LH Nominate This Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionadmin_initlh-nominate-this.php:621

actionadd_meta_boxeslh-nominate-this.php:624

actionsave_postlh-nominate-this.php:627

actionwp_loadedlh-nominate-this.php:630

filterlh_web_application_manifest_json_filterlh-nominate-this.php:633

actioninitlh-nominate-this.php:636

actiontool_boxlh-nominate-this.php:639

actionplugins_loadedlh-nominate-this.php:668

Maintenance & Trust

LH Nominate This Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18

Last updatedOct 13, 2020

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

LH Nominate This Alternatives

Press This Reloaded

press-this-reloaded

Press This, using the regular Add New Post screen

100 No CVEs

Yoast SEO – Advanced SEO with real-time guidance and built-in AI

wordpress-seo

Improve your SEO with real-time feedback, schema, and clear guidance. Upgrade for AI tools, Google Docs integration, and 24/7 support, no hidden fees.

10.0M 17 CVEs

BoldGrid Easy SEO – Simple and Effective SEO

boldgrid-easy-seo

Easy SEO helps you easily create keyword rich content and rank higher in the search engines.

50K 2 CVEs

Semrush SEO Writing Assistant

semrush-seo-writing-assistant

100

The Semrush SEO Writing Assistant provides instant recommendations for content optimization based on the best-performing articles in Google's top 10.

10K No CVEs

Press This

press-this

100

Posting images, links, and cat gifs will never be the same.

6K No CVEs

Developer Profile

LH Nominate This Developer Profile

shawfactor

77 plugins · 15K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

7 days

View full developer profile

Detection Fingerprints

How We Detect LH Nominate This

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/lh-nominate-this/css/lh-nominate-this.css/wp-content/plugins/lh-nominate-this/js/lh-nominate-this.js

Script Paths

/wp-content/plugins/lh-nominate-this/js/lh-nominate-this.js

Version Parameters

lh-nominate-this/style.css?ver=lh-nominate-this/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

lh_nominate_this-nominated_url

Data Attributes

name="lh_nominate_this-nominated_url"id="lh_nominate_this-nominated_url"name="lh_nominate_this-post_type"name="lh_nominate_this-nominate_tool_nonce"name="lh_nominate_this[lh_nominate_this-page_id]"

JS Globals

window.location.hrefencodeURIComponent

FAQ