Does Sharedaddy have any unpatched vulnerabilities?

No. All known vulnerabilities in Sharedaddy have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Sharedaddy compatible with WordPress 3.1.4?

According to WordPress.org data, Sharedaddy 0.2.13 has been tested up to WordPress 3.1.4. Check the plugin's changelog for the latest compatibility information.

How often is Sharedaddy updated?

Sharedaddy was last updated on Jul 24, 2012. Frequent updates are generally a positive security signal.

What is Sharedaddy's security score?

Sharedaddy has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Sharedaddy Security & Risk Analysis

wordpress.org/plugins/sharedaddy

Future upgrades to Sharedaddy plugin will only be available in Jetpack.

100 active installs v0.2.13 PHP + WP 3.0+ Updated Jul 24, 2012

emailfacebooksharesharingtwitter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Sharedaddy Safe to Use in 2026?

Generally Safe

Score 85/100

Sharedaddy has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The 'sharedaddy' plugin version 0.2.13 demonstrates several strong security practices. The complete absence of known CVEs, unpatched vulnerabilities, or common vulnerability types is a significant positive indicator. The code also shows a commitment to secure database interactions with all SQL queries utilizing prepared statements, and the presence of nonce and capability checks on entry points further strengthens its defenses against common attack vectors. The plugin also avoids potentially risky file operations and external HTTP requests.

However, the static analysis reveals areas for improvement. A notable concern is the output escaping, where 59% of outputs are properly escaped, leaving a substantial portion unescaped. This could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is not handled carefully before being displayed. Furthermore, the taint analysis indicates two flows with unsanitized paths, which, while not classified as critical or high severity in this analysis, represent potential avenues for exploitation if not addressed. These unsanitized paths, combined with the less than ideal output escaping, suggest a moderate risk of certain injection-based vulnerabilities.

Overall, 'sharedaddy' v0.2.13 has a relatively good security posture due to its lack of historical vulnerabilities and secure database handling. The primary weaknesses lie in the implementation of output escaping and the presence of unsanitized paths, which warrant attention to mitigate potential XSS and other injection risks. Addressing these specific areas would significantly enhance the plugin's security.

Key Concerns

Unsanitized paths identified in taint analysis
Significant percentage of outputs not properly escaped

Vulnerabilities

None known

Sharedaddy Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Sharedaddy Code Analysis

Dangerous Functions

Raw SQL Queries

16 prepared

Unescaped Output

41 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared16 total queries

Output Escaping

59% escaped70 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

process_request (sharing-sources.php:848)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Sharedaddy Attack Surface

Entry Points4

Unprotected0

AJAX Handlers 4

authwp_ajax_sharing_save_servicessharing.php:19

authwp_ajax_sharing_save_optionssharing.php:20

authwp_ajax_sharing_new_servicesharing.php:21

authwp_ajax_sharing_delete_servicesharing.php:22

WordPress Hooks 24

filtersharing_jssharedaddy.php:90

actioninitsharedaddy.php:117

actionadmin_initsharedaddy.php:118

actionsave_postsharedaddy.php:119

actionsharing_email_send_postsharedaddy.php:120

actionsharing_global_optionssharedaddy.php:121

actionsharing_admin_updatesharedaddy.php:122

filtersharing_servicessharedaddy.php:123

filterplugin_row_metasharedaddy.php:125

actionwp_footersharing-service.php:477

filterexcerpt_moresharing-service.php:505

filterexcerpt_lengthsharing-service.php:518

filterthe_contentsharing-service.php:519

filterthe_excerptsharing-service.php:520

actionwp_headsharing-service.php:523

actiontemplate_redirectsharing-service.php:525

actionadmin_initsharing.php:12

actionadmin_menusharing.php:13

actionload-settings_page_sharingsharing.php:16

actioninitsharing.php:406

actionadmin_print_styles_inc\class.automattic-deprecated-notice.php:24

actionadmin_print_scripts_inc\class.automattic-deprecated-notice.php:25

actionadmin_head_inc\class.automattic-deprecated-notice.php:26

actionadmin_init_inc\class.automattic-deprecated-notice.php:27

Maintenance & Trust

Sharedaddy Maintenance & Trust

Maintenance Signals

WordPress version tested3.1.4

Last updatedJul 24, 2012

PHP min version

Downloads157K

Community Trust

Rating80/100

Number of ratings1

Active installs100

Alternatives

Sharedaddy Alternatives

Jackshare Social Sharing

jackshare

100

Super simple Social media sharing buttons with minimal design and lightning fast performance.

10 No CVEs

My Social Reach

my-social-reach

100

Activate the plugin, and it will automatically add social sharing buttons at the end of the post content automatically.

0 No CVEs

Social Media Feather | social media sharing

social-media-feather

Lightweight, modern looking and effective social media sharing and profile buttons and icons. All your social media needs in 1 easy package!

20K 2 CVEs

Seed Social

seed-social

Minimal Social Sharing WordPress Plugin (Just Facebook, Twitter and Line)

7K 1 CVE

Custom Share Buttons with Floating Sidebar

custom-share-buttons-with-floating-sidebar

Share buttons with extra features to sharing your website posts/pages on Facebook, Twitter, Instagram, Whatsapp, Pinterest etc.

5K 1 CVE

Developer Profile

Sharedaddy Developer Profile

John Godley

14 plugins · 2.1M total installs

trust score

Avg Security Score

87/100

Avg Patch Time

4069 days

View full developer profile

Detection Fingerprints

How We Detect Sharedaddy

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sharedaddy/_inc/sharedaddy.css/wp-content/plugins/sharedaddy/_inc/sharedaddy.js/wp-content/plugins/sharedaddy/sharing.js

Script Paths

/wp-content/plugins/sharedaddy/_inc/sharedaddy.js/wp-content/plugins/sharedaddy/sharing.js

Version Parameters

sharedaddy/_inc/sharedaddy.css?ver=sharedaddy/_inc/sharedaddy.js?ver=sharedaddy/sharing.js?ver=

HTML / DOM Fingerprints

CSS Classes

sharing-visiblesharing-hiddenjetpack-sharing-buttonssd-content

HTML Comments

Data Attributes

data-share-urldata-title

JS Globals

window.sharing_optionswindow.addthis_share

Shortcode Output

[sharing]

FAQ