Post Like Counter Security & Risk Analysis
wordpress.org/plugins/post-like-counterPost Like Counter will tell you how many people like your post.
Is Post Like Counter Safe to Use in 2026?
Generally Safe
Score 85/100Post Like Counter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "post-like-counter" v1.0 plugin presents a mixed security picture. On the positive side, it has a seemingly small attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, there is no reported vulnerability history, suggesting a track record of security. However, significant concerns arise from the code analysis.
The absence of any nonce or capability checks, coupled with 100% of SQL queries being unparameterized and 100% of output not being properly escaped, indicates a severe lack of fundamental security practices. The taint analysis revealing a flow with unsanitized paths, even without a critical or high severity classification in the static analysis, is alarming and points to a potential for vulnerabilities if an attack vector were present. The overall posture is concerning due to these deeply ingrained coding flaws, despite the lack of historical CVEs.
In conclusion, while the plugin's limited attack surface and clean vulnerability history are strengths, the raw SQL queries, unescaped output, and identified unsanitized flow are critical weaknesses. These issues represent a high risk of common vulnerabilities such as SQL injection and Cross-Site Scripting (XSS).
Key Concerns
- Raw SQL queries (4 total, 0% prepared)
- Unescaped output (1 total, 0% escaped)
- No Nonce checks
- No Capability checks
- Taint flow with unsanitized paths
Post Like Counter Security Vulnerabilities
Post Like Counter Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
Post Like Counter Attack Surface
WordPress Hooks 1
Maintenance & Trust
Post Like Counter Maintenance & Trust
Maintenance Signals
Community Trust
Post Like Counter Alternatives
kk Star Ratings – Rate Post & Collect User Feedbacks
kk-star-ratings
kk Star Ratings allows blog visitors to involve and interact more effectively with your website by rating posts.
Filter Everything — Product Filter & WordPress Filter
filter-everything
The most universal filters plugin for WordPress and WooCommerce products.
Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX
ultimate-post
A highly customizable plugin to create news, magazines, and any kind of blog site with post grid, post filter, post slider, and post blocks.
WP Tab Widget
wp-tab-widget
WP Tab Widget is the AJAXified plugin which loads content by demand, and thus it makes the plugin incredibly lightweight.
Search in Place
search-in-place
Search in Place improves blog search by displaying query results in real time. It displays the results dynamically as you enter the search criteria.
Post Like Counter Developer Profile
2 plugins · 20 total installs
How We Detect Post Like Counter
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/post-like-counter/prototype.js/wp-content/plugins/post-like-counter/function.js.php/wp-content/plugins/post-like-counter/prototype.js/wp-content/plugins/post-like-counter/function.js.phpHTML / DOM Fingerprints
ILIKE_URLPATHSAFE_MODE