Does One-liners have any unpatched vulnerabilities?

No. All known vulnerabilities in One-liners have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is One-liners compatible with WordPress 4.11?

According to WordPress.org data, One-liners 3.1.0 has been tested up to WordPress 4.11. Check the plugin's changelog for the latest compatibility information.

How often is One-liners updated?

One-liners was last updated on Mar 20, 2015. Frequent updates are generally a positive security signal.

What is One-liners's security score?

One-liners has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

One-liners Security & Risk Analysis

wordpress.org/plugins/one-liners

Custom post type for short oneliners, including a widget and shortcode.

10 active installs v3.1.0 PHP + WP 3.0.1+ Updated Mar 20, 2015

one-linersquotesshortcodeswidgets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is One-liners Safe to Use in 2026?

Generally Safe

Score 85/100

One-liners has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The 'one-liners' plugin version 3.1.0 exhibits a generally good security posture based on the static analysis and vulnerability history provided. The absence of dangerous functions, SQL injection vulnerabilities, file operations, and external HTTP requests is a strong indicator of secure coding practices. Furthermore, the plugin has no recorded CVEs, suggesting a history of stable and secure releases, which is a significant strength.

However, there are a few areas that warrant attention. The most notable concern is the low percentage of properly escaped output. With 14 total outputs and only 2% properly escaped, this indicates a significant risk of Cross-Site Scripting (XSS) vulnerabilities. Attackers could potentially inject malicious scripts through user-supplied input that is not adequately sanitized before being displayed on the frontend. Additionally, the lack of nonce checks and capability checks, while not directly flagged as issues in the limited attack surface, could become a weakness if the plugin's functionality expands or if new entry points are introduced in future versions.

In conclusion, while the 'one-liners' plugin has a clean vulnerability history and avoids many common pitfalls, the poor output escaping is a critical weakness that needs to be addressed immediately. The plugin's strengths lie in its clean code regarding database interactions and external communications. The primary weakness lies in its handling of output, which could lead to severe XSS flaws.

Key Concerns

Low percentage of properly escaped output
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

One-liners Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

One-liners Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

14% escaped14 total outputs

Attack Surface

One-liners Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[random-oneliner] oneliners.php:29

WordPress Hooks 6

actioninitoneliners.php:20

actionwidgets_initoneliners.php:21

actionadmin_initoneliners.php:22

actionadmin_menuoneliners.php:23

actionupdated_optiononeliners.php:24

filterwidget_textoneliners.php:38

Maintenance & Trust

One-liners Maintenance & Trust

Maintenance Signals

WordPress version tested4.11

Last updatedMar 20, 2015

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

One-liners Alternatives

R12Themes Quotes

r12themes-quotes

It displays random qoutes on your sidebar or on your page depending where you want to be shown.

10 No CVEs

Apollo13 Framework Extensions

apollo13-framework-extensions

Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.

20K 6 CVEs

Weaver Xtreme Theme Support

weaverx-theme-support

A useful shortcode and widget collection for Weaver Xtreme

9K 3 CVEs

Popularis Extra

popularis-extra

Popularis Extra add extra features to Popularis theme like demo import, widgets, shortcodes or Elementor widgets.

8K 1 unpatched

Series

series

Plugin that allows you to collect posts in a series.

2K 1 unpatched

Developer Profile

One-liners Developer Profile

Brent Maxwell

2 plugins · 30 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect One-liners

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/one-liners/widget.php

HTML / DOM Fingerprints

CSS Classes

oneliner

Data Attributes

name='thebrent_oneliners_options[slug]'

Shortcode Output

<span class="oneliner">

FAQ