Does Linkedin Profile Badge have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Linkedin Profile Badge compatible with WordPress 3.4.2?

According to WordPress.org data, Linkedin Profile Badge 1.0 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is Linkedin Profile Badge updated?

Linkedin Profile Badge was last updated on Nov 28, 2012. Frequent updates are generally a positive security signal.

What is Linkedin Profile Badge's security score?

Linkedin Profile Badge has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Linkedin Profile Badge Security & Risk Analysis

wordpress.org/plugins/linkedin-profile-badge

This plugin lets you easily add the Linkedin Profile badge to your WordPress blog via a shortcode.

100 active installs v1.0 PHP + WP 2.7+ Updated Nov 28, 2012

badgelinkedinpagepostprofile

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Linkedin Profile Badge Safe to Use in 2026?

Generally Safe

Score 85/100

Linkedin Profile Badge has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The 'linkedin-profile-badge' v1.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, raw SQL queries, file operations, and external HTTP requests. The absence of known vulnerabilities in its history is also a strong indicator of a stable codebase. However, there are significant areas of concern. The plugin lacks any nonce or capability checks, meaning that its single entry point, the shortcode, is completely unprotected against unauthorized access or manipulation. Furthermore, a concerningly low 15% of its output is properly escaped, leaving it highly susceptible to Cross-Site Scripting (XSS) vulnerabilities, especially given that the shortcode likely renders user-influenced data. The lack of taint analysis flows is noted, but the presence of unprotected entry points and insufficient output escaping suggests potential vulnerabilities that might not have been captured by that specific analysis.

Key Concerns

No capability checks
No nonce checks
Low output escaping (85% unescaped)
Unprotected shortcode

Vulnerabilities

None known

Linkedin Profile Badge Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Linkedin Profile Badge Release Timeline

v1.0Current

Code Analysis

Analyzed Mar 16, 2026

Linkedin Profile Badge Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

15% escaped13 total outputs

Attack Surface

Linkedin Profile Badge Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[linkedinbadge] class-frontend.php:28

WordPress Hooks 5

actionadmin_initclass-admin.php:9

actionadmin_menuclass-admin.php:24

actionadmin_noticesclass-admin.php:46

actionwp_headclass-frontend.php:11

filterwidget_textclass-frontend.php:27

Maintenance & Trust

Linkedin Profile Badge Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedNov 28, 2012

PHP min version

Downloads10K

Community Trust

Rating100/100

Number of ratings1

Active installs100

Alternatives

Linkedin Profile Badge Alternatives

Structured Content (JSON-LD) #wpsc

structured-content

Add flexible content boxes with JSON-LD microdata output according to schema.org e.g. FAQPage, ProfilePage, Event, Course, LocalBusiness, JobPosting a …

40K 9 CVEs

TechGasp Link Master

linkedin-master

TechGasp Link Master, if you are serious about your linkedin connections and want to integrate your personal linkedin page, company follow button and …

200 No CVEs

Google+ Badge Widget

google-badge-widget

Google+ Badge Widget integrated with Official Google Plus API. Google+ Widget enable users to adds beautiful widget on your Wordpress Blog.

30 No CVEs

Home Badges

home-badges

Quickly access your Blog and Home page in the Wordpress Admin.

10 No CVEs

Duplicate Page

duplicate-page

Duplicate Posts, Pages and Custom Posts easily using single click

3.0M 3 CVEs

Developer Profile

Linkedin Profile Badge Developer Profile

Alex Moss

13 plugins · 4K total installs

trust score

Avg Security Score

83/100

Avg Patch Time

249 days

View full developer profile

Detection Fingerprints

How We Detect Linkedin Profile Badge

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Script Paths

//platform.linkedin.com/in.js

HTML / DOM Fingerprints

HTML Comments

Data Attributes

data-relateddata-textdata-iddata-format

Shortcode Output

<script type="IN/MemberProfile"

FAQ