Does No JS Social Sharing have any unpatched vulnerabilities?

No. All known vulnerabilities in No JS Social Sharing have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is No JS Social Sharing compatible with WordPress 6.8.5?

According to WordPress.org data, No JS Social Sharing 1.2 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is No JS Social Sharing compatible with PHP 7.0+?

No JS Social Sharing requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is No JS Social Sharing updated?

No JS Social Sharing was last updated on May 14, 2025. Frequent updates are generally a positive security signal.

What is No JS Social Sharing's security score?

No JS Social Sharing has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

No JS Social Sharing Security & Risk Analysis

wordpress.org/plugins/no-js-social-sharing

No tracking, no logins, no extracurricular scripts. This plugin provides social media icons to share your post without the BS.

10 active installs v1.2 PHP 7.0+ WP 5.0+ Updated May 14, 2025

optimizedpagespeedseosharesimple

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is No JS Social Sharing Safe to Use in 2026?

Generally Safe

Score 100/100

No JS Social Sharing has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

The 'no-js-social-sharing' v1.2 plugin exhibits a generally good security posture, with no known vulnerabilities or critical taint flows. The code analysis reveals a limited attack surface, with only one shortcode as an entry point, and importantly, no AJAX handlers or REST API routes without proper authentication checks. The use of prepared statements for all SQL queries is a strong indicator of secure database interaction. However, a concern arises from the output escaping, where only 40% of outputs are properly escaped. This leaves potential for cross-site scripting (XSS) vulnerabilities, particularly if the shortcode or any internal logic handles user-supplied data without adequate sanitization before rendering it. While the vulnerability history is clean, the limited code analysis data (e.g., 0 taint flows analyzed) prevents a completely comprehensive assessment. The plugin demonstrates strengths in authentication and SQL handling, but the weak output escaping warrants attention to prevent potential XSS.

Key Concerns

Output escaping is only 40% proper

Vulnerabilities

None known

No JS Social Sharing Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

No JS Social Sharing Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

40% escaped20 total outputs

Attack Surface

No JS Social Sharing Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[njss] inc\general.php:55

WordPress Hooks 7

filterplugin_action_links_no-js-social-sharing/no-js-social-sharing.phpinc\general.php:77

actionadmin_menuinc\options-page.php:19

actionadmin_initinc\options-page.php:42

actionadmin_enqueue_scriptsinc\options-page.php:218

actionwp_enqueue_scriptsinc\public.php:14

filterstyle_loader_taginc\public.php:31

filterthe_contentinc\public.php:141

Maintenance & Trust

No JS Social Sharing Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 14, 2025

PHP min version7.0

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

No JS Social Sharing Alternatives

LiteSpeed Cache

litespeed-cache

All-in-one unbeatable acceleration & PageSpeed improvement: caching, image/CSS/JS optimization...

7.0M 18 CVEs

SpeedyCache – Cache, Optimization, Performance

speedycache

SpeedyCache is a WordPress cache plugin that helps you improve performance of your WordPress site by caching, minifying, and compressing your website.

600K 4 CVEs

Insights from Google PageSpeed

google-pagespeed-insights

Use Insights from Google PageSpeed to increase your sites performance, your search engine ranking, and your visitors browsing experience.

20K 2 CVEs

JCH Optimize

jch-optimize

This plugin automatically performs several front end optimizations to your site to boost performance and increase PageSpeed scores.

4K 3 CVEs

Helper Lite for PageSpeed

helper-lite-for-pagespeed

Speed up your site with attributes decoding="async" & loading="lazy" for <img> and <iframe>.

3K No CVEs

Developer Profile

No JS Social Sharing Developer Profile

webheadcoder

6 plugins · 95K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

649 days

View full developer profile

Detection Fingerprints

How We Detect No JS Social Sharing

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/no-js-social-sharing/css/njss-style.css/wp-content/plugins/no-js-social-sharing/js/njss-scripts.js

Script Paths

/wp-content/plugins/no-js-social-sharing/js/njss-scripts.js

Version Parameters

no-js-social-sharing/css/njss-style.css?ver=no-js-social-sharing/js/njss-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

njss_options_titlenjss-option-sectionnjss-option-placementnjss-option-desc-placementnjss-selection-tablenjss_iconsnjss-option-loc-postnjss-option-loc-page+5 more

Data Attributes

njss_options[placement]njss_options[networks][njss_options[loc_post]njss_options[loc_page]njss_options[loc_njss_options[sharing_title]+4 more

Shortcode Output

[njss]

FAQ