Does Share It Button have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Share It Button compatible with WordPress 3.3.2?

According to WordPress.org data, Share It Button 2.0 has been tested up to WordPress 3.3.2. Check the plugin's changelog for the latest compatibility information.

How often is Share It Button updated?

Share It Button was last updated on Jan 29, 2012. Frequent updates are generally a positive security signal.

What is Share It Button's security score?

Share It Button has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Share It Button Security & Risk Analysis

wordpress.org/plugins/share-it

Поставете бързо и лесно бутони за споделяне във вашите блогове.

10 active installs v2.0 PHP + WP 2.0.2+ Updated Jan 29, 2012

bookmarkbookmarkingbookmarksbulgariabutton

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Share It Button Safe to Use in 2026?

Generally Safe

Score 85/100

Share It Button has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The "share-it" v2.0 plugin exhibits a mixed security posture. On the positive side, the static analysis shows no immediate signs of direct vulnerabilities like dangerous functions, SQL injection via prepared statements, file operations, external requests, or exploitable shortcodes and cron events. The absence of known CVEs in its history is also a strong indicator of a well-maintained past.

However, significant concerns arise from the output escaping analysis. The fact that 100% of the identified outputs are not properly escaped presents a substantial risk. This could lead to cross-site scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the website, potentially impacting users and site integrity. Furthermore, the taint analysis revealed one flow with unsanitized paths, which, while not categorized as critical or high, warrants attention as it indicates a potential pathway for malicious data to influence application behavior.

While the plugin has no known past vulnerabilities, the identified lack of output escaping and the unsanitized path flow in the static analysis are critical weaknesses that outweigh the positive historical data. Immediate remediation of these output escaping issues is highly recommended to mitigate the risk of XSS attacks.

Key Concerns

All identified outputs are not properly escaped
Taint analysis found unsanitized path flow

Vulnerabilities

None known

Share It Button Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Share It Button Release Timeline

v2.0Current

Code Analysis

Analyzed Apr 16, 2026

Share It Button Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped3 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<share-it-admin> (share-it-admin.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Share It Button Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

filterthe_contentshare-it.php:152

actionadmin_menushare-it.php:159

Maintenance & Trust

Share It Button Maintenance & Trust

Maintenance Signals

WordPress version tested3.3.2

Last updatedJan 29, 2012

PHP min version

Downloads9K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Share It Button Alternatives

Simple Social – Sharing Widgets & Icons Updated

simple-social-sharing-widgets-icons-updated

Adds a set of cool icons and widgets at the end of your post for your readers to share.

100 No CVEs

2-Klicks-Button – Socialshareprivacy Plugin

2-klicks-button-socialshareprivacy-plugin

Wordpress-Plugin Umsetzung des 2-Klick-Button Scripts von heise.de Datenschutz freundliche Social-Media-Einbindung von Facebook, Twitter und Google+.

20 No CVEs

El club de la Noticia

el-club-de-la-noticia

English

10 No CVEs

WP-Social-Share-Privacy

wp-social-share-privacy-plugin

Wordpress-Plugin Umsetzung des jQuery Plug-In socialshareprivacy von heise.de

10 No CVEs

Sociable RE

sociable-re

Добавляет кнопки для публикации ссылок в соц. сетях на страницы блога.

100 No CVEs

Developer Profile

Share It Button Developer Profile

znaiko

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Share It Button

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/share-it/images/large//wp-content/plugins/share-it/images/

Script Paths

https://apis.google.com/js/plusone.jshttp://www.populqrno.com/common/js.js

HTML / DOM Fingerprints

Data Attributes

data-size

JS Globals

gapi

Shortcode Output

[share_it]

FAQ