Recommendations TasteDive Security & Risk Analysis
wordpress.org/plugins/recommendations-tastediveAutomatically recommend similar music, movies, TV shows, books and games with TasteDive.
Is Recommendations TasteDive Safe to Use in 2026?
Generally Safe
Score 85/100Recommendations TasteDive has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "recommendations-tastedive" plugin version 1.0.3 exhibits a generally strong security posture based on the static analysis. The absence of dangerous functions, proper use of prepared statements for all SQL queries, and a high percentage of properly escaped output are commendable. Furthermore, the plugin has no recorded vulnerabilities or CVEs, suggesting a history of secure development and maintenance.
However, there are notable areas for improvement. The most significant concern is the complete lack of nonce checks and capability checks across all entry points. While the static analysis reports zero unprotected entry points, the absence of these fundamental security mechanisms means that even authenticated users could potentially trigger actions without proper authorization checks, leading to potential privilege escalation or unintended actions if an attacker can trick a user into interacting with a malicious element that calls the shortcode.
The plugin also makes external HTTP requests, which, while not inherently a vulnerability, can become a risk if the external service is compromised or if the requests are not properly secured or validated against user input, though the provided data doesn't offer specifics on this. The lack of taint analysis flows is also a positive sign, but it doesn't negate the need for robust authorization checks on its existing entry points.
Key Concerns
- Missing nonce checks on entry points
- Missing capability checks on entry points
- External HTTP requests made
Recommendations TasteDive Security Vulnerabilities
Recommendations TasteDive Release Timeline
Recommendations TasteDive Code Analysis
SQL Query Safety
Output Escaping
Recommendations TasteDive Attack Surface
Shortcodes 1
WordPress Hooks 5
Maintenance & Trust
Recommendations TasteDive Maintenance & Trust
Maintenance Signals
Community Trust
Recommendations TasteDive Alternatives
MAS Videos
masvideos
MAS Videos is a free plugin that allows you to to create and list movies, videos and TV shows.
JustWatch – Partner Integrations
justwatch-partner-integrations
Connect your audience to the best streaming services worldwide.
TraktTV WordPress Widget
trakttv-widgets
Show what you watch to your visitors. Widget, that shows your last watched movies or TV show episodes from trakt.tv
WP Upcoming Releases
wp-upcoming-releases
Show a list of upcoming releases: movies, games, events or any other thing your needs. Easy management with post type and categories.
Quick Recommend
quick-recommend
Add a recommendation box to the bottom of your posts. Great for promoting books, movies, music and other products when that is not the primary focus o …
Recommendations TasteDive Developer Profile
2 plugins · 10 total installs
How We Detect Recommendations TasteDive
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/recommendations-tastedive/assets/css/taste_dive.cssrecommendations-tastedive/assets/css/taste_dive.css?ver=HTML / DOM Fingerprints
name='taste_dive_settings[api_key]'name='taste_dive_settings[cache_timeout]'name='taste_dive_settings[default_limit]'name='taste_dive_settings[char_limit]'<div class="tastedive-recommendations"><div class="tastedive-recommendations-header"><span class="tastedive-recommendations-title"><div class="tastedive-recommendations-body">