WP-Safety

Pz-HatenaBlogCard Security & Risk Analysis

wordpress.org/plugins/pz-hatenablogcard

This plug-in to display a link in the article by using the "Hatena blog card".

200 active installs v1.3.0 PHP + WP 3.0+ Updated Oct 17, 2017
blogcardexternal-linkpost
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Pz-HatenaBlogCard Safe to Use in 2026?

Generally Safe

Score 85/100

Pz-HatenaBlogCard has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The "pz-hatenablogcard" v1.3.0 plugin exhibits a generally strong security posture based on the static analysis. The absence of any identified CVEs and the clean vulnerability history are positive indicators. The code demonstrates good practices by utilizing prepared statements for all SQL queries and a high percentage of properly escaped output, minimizing the risk of SQL injection and XSS vulnerabilities respectively. The limited number of file operations and external HTTP requests, along with the presence of a nonce check, also contribute to a more secure design.

Key Concerns

  • No capability checks found
  • Low percentage of escaped output
Vulnerabilities
None known

Pz-HatenaBlogCard Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Pz-HatenaBlogCard Release Timeline

v1.3.0Current
v1.2.9
v1.2.8
v1.2.7
v1.2.6
v1.2.5
v1.2.4
v1.2.3
v1.2.2
v1.2.1
v1.2.0
v1.1.8
v1.1.7
v1.1.7b
v1.1.5
v1.1.0
Code Analysis
Analyzed Mar 16, 2026

Pz-HatenaBlogCard Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
8
59 escaped
Nonce Checks
1
Capability Checks
0
File Operations
5
External Requests
3
Bundled Libraries
0

Output Escaping

88% escaped67 total outputs
Attack Surface

Pz-HatenaBlogCard Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 3
actionadmin_menupz-hatenablogcard.php:158
actionadmin_enqueue_scriptspz-hatenablogcard.php:159
actionwp_enqueue_scriptspz-hatenablogcard.php:172
Maintenance & Trust

Pz-HatenaBlogCard Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28
Last updatedOct 17, 2017
PHP min version
Downloads9K

Community Trust

Rating0/100
Number of ratings0
Active installs200
Alternatives

Pz-HatenaBlogCard Alternatives

Pz-LinkCard

Pz-LinkCard

pz-linkcard

B
72

This plugin is intended to display a link in a blog card format. The goodbye to the text-only link.

20K 1 unpatched
Simple Blog Card

Simple Blog Card

simple-blog-card

A
96

Get OGP and display blog card.

3K 3 CVEs
OutBoundLinks

OutBoundLinks

outboundlinks

A
85

Open External links in new tab with this plugin.

80 No CVEs
External outbonding links

External outbonding links

external-outbonding-links

A
85

Allow to add the rel="nofollow" and target="_blank" for external links which helps for SEO.

10 No CVEs
Yoast Duplicate Post

Yoast Duplicate Post

duplicate-post

A
90

The go-to tool for cloning posts and pages, including the powerful Rewrite & Republish feature.

4.0M 4 CVEs
Developer Profile

Pz-HatenaBlogCard Developer Profile

ぽぽろん@ぽぽづれ。

5 plugins · 20K total installs

69
trust score
Avg Security Score
85/100
Avg Patch Time
157 days
View full developer profile
Detection Fingerprints

How We Detect Pz-HatenaBlogCard

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pz-hatenablogcard/pz-hatenablogcard-style.php
Script Paths
/wp-content/plugins/pz-hatenablogcard/color-picker.js
Version Parameters
pz-hatenablogcard/pz-hatenablogcard-style.php?ver=wp-color-pickercolorpicker-scriptPz-HatenaBlogCard

HTML / DOM Fingerprints

CSS Classes
linkcard-name
FAQ

Frequently Asked Questions about Pz-HatenaBlogCard