Does Simple Google Authorship and Avatar have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Google Authorship and Avatar have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Google Authorship and Avatar compatible with WordPress 3.5.2?

According to WordPress.org data, Simple Google Authorship and Avatar 1.0 has been tested up to WordPress 3.5.2. Check the plugin's changelog for the latest compatibility information.

How often is Simple Google Authorship and Avatar updated?

Simple Google Authorship and Avatar was last updated on Jan 29, 2013. Frequent updates are generally a positive security signal.

What is Simple Google Authorship and Avatar's security score?

Simple Google Authorship and Avatar has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Google Authorship and Avatar Security & Risk Analysis

wordpress.org/plugins/simple-google-authorship-and-avatar

Enables users to easily claim google authorship on their content and use their google profile picture as an avatar

20 active installs v1.0 PHP + WP 3.2+ Updated Jan 29, 2013

authorshipavatargoogle-authorshipgoogle-profile

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Google Authorship and Avatar Safe to Use in 2026?

Generally Safe

Score 85/100

Simple Google Authorship and Avatar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The plugin "simple-google-authorship-and-avatar" v1.0 exhibits a generally good security posture in terms of its attack surface and SQL query handling. There are no reported AJAX handlers, REST API routes, shortcodes, or cron events, meaning there are very few direct entry points into the plugin. All detected SQL queries are properly prepared, indicating a conscious effort to prevent SQL injection vulnerabilities. The lack of any known CVEs or past vulnerabilities further contributes to a positive security outlook, suggesting a stable and well-maintained codebase.

However, a significant concern arises from the output escaping. With 8 total outputs and 0% properly escaped, this represents a critical weakness. Any user-supplied data or dynamically generated content that is not properly escaped before being outputted to the browser can lead to Cross-Site Scripting (XSS) vulnerabilities. The absence of taint analysis results is not necessarily positive or negative, but the identified output escaping issue is a concrete and serious risk. While the plugin has strengths in its limited attack surface and safe SQL practices, the unescaped output is a substantial security flaw that requires immediate attention.

Key Concerns

0% of outputs properly escaped

Vulnerabilities

None known

Simple Google Authorship and Avatar Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Simple Google Authorship and Avatar Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped8 total outputs

Attack Surface

Simple Google Authorship and Avatar Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actioninitsimple-google-authorship.php:13

actionwp_headsimple-google-authorship.php:168

filterget_avatarsimple-google-authorship.php:193

actionadmin_initsimple-google-authorship.php:222

Maintenance & Trust

Simple Google Authorship and Avatar Maintenance & Trust

Maintenance Signals

WordPress version tested3.5.2

Last updatedJan 29, 2013

PHP min version

Downloads3K

Community Trust

Rating60/100

Number of ratings2

Active installs20

Alternatives

Simple Google Authorship and Avatar Alternatives

Google Plus Authorship

google-plus-authorship

Add Google Plus Profile Picture to Google Search Results. Very Easy to implement! Google authorship for multiple authors

1K No CVEs

Disable comments with Google authorship

disable-comments-with-google-authorship

A quick way to disable comments with Google authorship link. This protect your blog from members who want to get article authorship.

10 No CVEs

One User Avatar | User Profile Picture

one-user-avatar

Use any image from your WordPress Media Library as a custom user avatar or user profile picture. Add your own Default Avatar.

100K 2 CVEs

Simple Local Avatars

simple-local-avatars

Adds an avatar upload field to user profiles. Generates requested sizes on demand just like Gravatar!

100K 6 CVEs

Gravatar Enhanced – Avatars, Profiles, and Privacy

gravatar-enhanced

100

The official Gravatar plugin, featuring privacy-focused settings, easy profile updates, and customizable Gravatar Profile blocks.

90K No CVEs

Developer Profile

Simple Google Authorship and Avatar Developer Profile

Mark-k

7 plugins · 2K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Google Authorship and Avatar

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

mk_gplus_deletemk_gplus_authorshipmk_gplus_avatar

Data Attributes

id="mk_gplus_delete"name="mk_gplus_delete"id="mk_gplus_authorship"name="mk_gplus_authorship"id="mk_gplus_avatar"name="mk_gplus_avatar"

JS Globals