Does JSM Screenshot Machine Shortcode have any unpatched vulnerabilities?

No. All known vulnerabilities in JSM Screenshot Machine Shortcode have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is JSM Screenshot Machine Shortcode compatible with WordPress 6.9.4?

According to WordPress.org data, JSM Screenshot Machine Shortcode 3.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is JSM Screenshot Machine Shortcode compatible with PHP 7.4.33+?

JSM Screenshot Machine Shortcode requires PHP 7.4.33 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is JSM Screenshot Machine Shortcode updated?

JSM Screenshot Machine Shortcode was last updated on Mar 11, 2026. Frequent updates are generally a positive security signal.

What is JSM Screenshot Machine Shortcode's security score?

JSM Screenshot Machine Shortcode has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

JSM Screenshot Machine Shortcode Security & Risk Analysis

wordpress.org/plugins/screenshot-machine-shortcode

Shortcode to include images from Screenshot Machine in your content.

30 active installs v3.0.0 PHP 7.4.33+ WP 6.0+ Updated Mar 11, 2026

machinescreenshotshortcode

A · Safe

CVEs total1

Unpatched0

Last CVEJan 17, 2025

Plugin page Download

Safety Verdict

Is JSM Screenshot Machine Shortcode Safe to Use in 2026?

Generally Safe

Score 99/100

JSM Screenshot Machine Shortcode has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jan 17, 2025Updated 23d ago

Risk Assessment

The screenshot-machine-shortcode v3.0.0 plugin exhibits a generally good security posture based on static analysis, with no immediately apparent vulnerabilities in its entry points. The absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and 100% proper output escaping are all strong indicators of secure coding practices. Furthermore, the plugin does not perform file operations or external HTTP requests, limiting potential attack vectors. However, the vulnerability history reveals a past medium-severity Cross-Site Scripting (XSS) vulnerability, which, while currently patched, suggests that careful review of how user input is handled within the shortcode is crucial. The lack of any taint analysis data is a minor concern, as it implies limited testing in this area, though it could also simply mean no exploitable flows were found. Overall, the plugin appears to be reasonably secure, but the historical XSS vulnerability warrants a cautious approach, emphasizing the importance of ongoing updates and vigilance.

Key Concerns

Medium severity XSS vulnerability in history
No taint analysis data

Vulnerabilities

JSM Screenshot Machine Shortcode Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-13385medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JSM Screenshot Machine Shortcode <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jan 17, 2025 Patched in 3.0.0 (1d)

Code Analysis

Analyzed Mar 16, 2026

JSM Screenshot Machine Shortcode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

34 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped34 total outputs

Attack Surface

JSM Screenshot Machine Shortcode Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[ssm] screenshot-machine-shortcode.php:45

WordPress Hooks 1

actionplugins_loadedscreenshot-machine-shortcode.php:43

Maintenance & Trust

JSM Screenshot Machine Shortcode Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 11, 2026

PHP min version7.4.33

Downloads9K

Community Trust

Rating100/100

Number of ratings4

Active installs30

Alternatives

JSM Screenshot Machine Shortcode Alternatives

Snap A Site

snap-a-site

The easiest way to take and embed snapshot of a site on Wordpress blog.

50 No CVEs

Product Screenshot

product-screenshot

100

Product Screenshot is a gallery for product screenshots.

10 No CVEs

WP Shortcodes Plugin — Shortcodes Ultimate

shortcodes-ultimate

A comprehensive collection of visual components for your site

400K 35 CVEs

MW WP Form

mw-wp-form

MW WP Form is shortcode base contact form plugin. This plugin have many features. For example you can use many validation rules, inquiry data saving, …

200K 6 CVEs

Shortcoder — Create Shortcodes for Anything

shortcoder

Create custom "Shortcodes" easily for HTML, JavaScript, CSS code snippets and use the shortcodes within posts, pages & widgets

100K 2 CVEs

Developer Profile

JSM Screenshot Machine Shortcode Developer Profile

JS Morisset

31 plugins · 33K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

12 days

View full developer profile

Detection Fingerprints

How We Detect JSM Screenshot Machine Shortcode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/screenshot-machine-shortcode/languages/

Script Paths

/wp-content/plugins/screenshot-machine-shortcode/js/screenshot-machine-shortcode.min.js

Version Parameters

screenshot-machine-shortcode/style.css?ver=screenshot-machine-shortcode/js/screenshot-machine-shortcode.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

ssmssm_linkssm_refresh

HTML Comments

these aren't the droids you're looking for.

Data Attributes

data-srcdata-widthdata-heightdata-refreshcounter

Shortcode Output

<img src="https://api.screenshotmachine.com/?key=" class="ssm alt="

FAQ