WP-Safety

Press This Security & Risk Analysis

wordpress.org/plugins/press-this

Posting images, links, and cat gifs will never be the same.

6K active installs v2.0.1 PHP 7.4+ WP 6.9+ Updated Feb 23, 2026
bookmarkletgutenbergphoto-postpostquick-post
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Press This Safe to Use in 2026?

Generally Safe

Score 100/100

Press This has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The plugin 'press-this' v2.0.1 exhibits a generally strong security posture, with excellent adherence to prepared statements for SQL queries and a very high percentage of properly escaped output. The absence of known CVEs and a clean vulnerability history further reinforces this positive outlook. The plugin also demonstrates good practice with a significant number of capability checks. However, there are notable areas of concern, primarily revolving around its attack surface. Specifically, the presence of two AJAX handlers without authentication checks represents a direct pathway for potential exploitation. While the taint analysis shows no critical or high-severity issues, and no unsanitized paths were found, the unprotected AJAX endpoints are a significant risk. The plugin's static analysis reveals a moderate attack surface, with two unprotected entry points, which warrants attention despite other positive security indicators.

Key Concerns

  • AJAX handlers without auth checks
Vulnerabilities
None known

Press This Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Press This Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
11 prepared
Unescaped Output
1
68 escaped
Nonce Checks
2
Capability Checks
26
File Operations
1
External Requests
2
Bundled Libraries
0

SQL Query Safety

100% prepared11 total queries

Output Escaping

99% escaped69 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
html (class-wp-press-this-plugin.php:1458)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Press This Attack Surface

Entry Points6
Unprotected2

AJAX Handlers 2

authwp_ajax_press-this-plugin-save-postpress-this-plugin.php:86
authwp_ajax_press-this-plugin-add-categorypress-this-plugin.php:87

REST API Routes 4

POST/wp-json/press-this/v1/scrapepress-this-plugin.php:143
POST/wp-json/press-this/v1/savepress-this-plugin.php:161
POST/wp-json/press-this/v1/sideloadpress-this-plugin.php:218
POST/wp-json/press-this/v1/validate-embedspress-this-plugin.php:241
WordPress Hooks 5
actionadmin_noticespress-this-plugin.php:81
actionrest_api_initpress-this-plugin.php:90
filterpre_http_requestpress-this-plugin.php:93
actiontool_boxpress-this-plugin.php:96
actioninitpress-this-plugin.php:99
Maintenance & Trust

Press This Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedFeb 23, 2026
PHP min version7.4
Downloads99K

Community Trust

Rating74/100
Number of ratings25
Active installs6K
Alternatives

Press This Alternatives

GenerateBlocks

GenerateBlocks

generateblocks

A
95

A small collection of lightweight WordPress blocks that can accomplish nearly anything.

200K 5 CVEs
Content Views – Post Grid & Filter, Recent Posts, Category Posts … (Shortcode, Gutenberg Blocks, and Widgets for Elementor)

Content Views – Post Grid & Filter, Recent Posts, Category Posts … (Shortcode, Gutenberg Blocks, and Widgets for Elementor)

content-views-query-and-display-post-page

A
96

Easy to show posts, pages, custom posts in customizable grid, list, slider, accordion... Available as Widgets (for Elementor), Shortcode, and Blocks.

100K 4 CVEs
Page View Count

Page View Count

page-views-count

C
54

Places an icon, all time views count and views today count at the bottom of posts, pages and custom post types on any WordPress website.

10K 1 unpatched
WP Blog Post Layouts

WP Blog Post Layouts

wp-blog-post-layouts

A
98

Versatile plugin specially designed to create beautiful posts layouts. Fully compatible with Gutenberg and Elementor. Comes with advanced features suc …

10K 1 CVE
Latest Posts Block – Dynamic Posts Grid, Posts List, Posts Tile with Stunning Layouts for WordPress Blogs & Pages

Latest Posts Block – Dynamic Posts Grid, Posts List, Posts Tile with Stunning Layouts for WordPress Blogs & Pages

latest-posts-block-lite

A
100

Dynamic Posts Grid, Posts List, Posts Tile with Stunning Layouts for WordPress Blogs & Pages

8K No CVEs
Developer Profile

Press This Developer Profile

WordPress.org

34 plugins · 14.9M total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
1718 days
View full developer profile
Detection Fingerprints

How We Detect Press This

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/press-this/build/index.js/wp-content/plugins/press-this/build/index.asset.php/wp-content/plugins/press-this/build/view.js/wp-content/plugins/press-this/build/view.asset.php
Script Paths
/wp-content/plugins/press-this/build/index.js/wp-content/plugins/press-this/build/view.js
Version Parameters
press-this/build/index.asset.php?ver=press-this/build/view.asset.php?ver=

HTML / DOM Fingerprints

CSS Classes
press-this-editor-wrapperpress-this-toolbarpress-this-content-editorpress-this-editor-content
Data Attributes
data-blockdata-editor
JS Globals
pressThispressThis.initPressThis
REST Endpoints
/press-this/v1/scrape/press-this/v1/save/press-this/v1/sideload/press-this/v1/validate-embeds
FAQ

Frequently Asked Questions about Press This