Pro Like Button Security & Risk Analysis
wordpress.org/plugins/prolike-buttonAdds buttons to posts with the ability to sort them.
Is Pro Like Button Safe to Use in 2026?
Generally Safe
Score 85/100Pro Like Button has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'prolike-button' v1.0.4 plugin demonstrates a generally good security posture with a limited attack surface and no recorded vulnerabilities. The static analysis indicates that all identified entry points (AJAX handlers and shortcodes) are protected by some form of authentication or permission check. Notably, there are no dangerous functions used, no file operations, and no external HTTP requests, which are positive signs for security. The plugin also implements a nonce check, a crucial security measure. However, there are areas for improvement. The high percentage of SQL queries (91%) not using prepared statements is a significant concern, potentially exposing the plugin to SQL injection vulnerabilities. Furthermore, with only 65% of output properly escaped, there's a risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully. While the plugin has no known vulnerabilities historically, the potential for SQL injection and XSS due to insufficient prepared statements and output escaping remains a notable weakness. In conclusion, while the plugin is free of known exploits and maintains a small attack surface, the lack of robust SQL query preparation and complete output escaping necessitates caution.
Key Concerns
- SQL queries not using prepared statements
- Output not properly escaped
Pro Like Button Security Vulnerabilities
Pro Like Button Code Analysis
SQL Query Safety
Output Escaping
Pro Like Button Attack Surface
AJAX Handlers 2
Shortcodes 1
WordPress Hooks 12
Maintenance & Trust
Pro Like Button Maintenance & Trust
Maintenance Signals
Community Trust
Pro Like Button Alternatives
Like Button Rating ♥ LikeBtn
likebtn-like-button
Add Like button to posts, pages, comments, WooCommerce, BuddyPress, bbPress, UM, custom posts! Sort content by likes! Get instant stats and insights!
Managed posts rating ★ Like button
managed-posts-rating-like-button
Rating system for your WordPress site with a simple "like" button and advanced admin panel.
GD Rating System
gd-rating-system
Powerful, highly customizable and versatile ratings plugin to allow your users to vote for anything you want.
bbPress Voting
bbp-voting
Let visitors vote up and down on bbPress topics and replies just like Reddit or Stack Overflow!
Simple Vote – Share your Thought, By A Like/Dislike Vote!
simple-vote
ALLOW YOUR VISITORS TO SHARE THEIR THOUGHTS ON YOUR CONTENT, BY VOTE!
Pro Like Button Developer Profile
2 plugins · 20 total installs
How We Detect Pro Like Button
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/prolike-button/assets/css/admin_style.css/wp-content/plugins/prolike-button/assets/css/font-awesome.min.css/wp-content/plugins/prolike-button/assets/css/style.css/wp-content/plugins/prolike-button/assets/js/admin_script.js/wp-content/plugins/prolike-button/assets/js/script.js/wp-content/plugins/prolike-button/assets/js/admin_script.js/wp-content/plugins/prolike-button/assets/js/script.jsprolike-button/assets/css/admin_style.css?ver=prolike-button/assets/css/font-awesome.min.css?ver=prolike-button/assets/css/style.css?ver=prolike-button/assets/js/admin_script.js?ver=prolike-button/assets/js/script.js?ver=HTML / DOM Fingerprints
plb_prolike_buttonplb_custom_csswrapp_image_admin_likewrapp_image_admin_dislikeupload_buttonplb_like_button_wrapperplb_dislike_button_wrapperplb-button-text+1 more<!-- ProLike Button Custom CSS -->id="upload-button_like"id="upload_image_like"name="plb_background-image-field-like"id="remove_button_like"id="upload-button_dislike"id="upload_image_dislike"+5 moreplb_ajax_object[plb_like_button]