Simple Like Dislike Posts Security & Risk Analysis
wordpress.org/plugins/simple-like-dislike-postsSimple Like Dislike Posts provides user a seamless functionality to add LIKE/DISLIKE counter on thier posts.
Is Simple Like Dislike Posts Safe to Use in 2026?
Generally Safe
Score 85/100Simple Like Dislike Posts has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "simple-like-dislike-posts" v1.0 plugin exhibits a concerning security posture primarily due to its unprotected entry points. The static analysis reveals two AJAX handlers that lack any authentication checks, presenting a significant attack surface that is open to unauthenticated users. This means that any user, logged in or not, could potentially trigger these actions, leading to unintended consequences. Furthermore, a very low percentage (25%) of output escaping indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities. While the plugin has no recorded vulnerability history and avoids dangerous functions, this lack of past issues can be misleading when critical security practices like authentication and output sanitization are neglected. The plugin's strengths lie in its avoidance of file operations and external HTTP requests, and the presence of some prepared statements in its SQL queries. However, the critical absence of nonces and capability checks on its AJAX endpoints, coupled with poor output escaping, outweighs these minor positives, making it a security risk.
Key Concerns
- AJAX handlers without auth checks
- Low percentage of properly escaped output
- No nonce checks on AJAX handlers
- No capability checks on AJAX handlers
Simple Like Dislike Posts Security Vulnerabilities
Simple Like Dislike Posts Code Analysis
Bundled Libraries
SQL Query Safety
Output Escaping
Simple Like Dislike Posts Attack Surface
AJAX Handlers 2
WordPress Hooks 6
Maintenance & Trust
Simple Like Dislike Posts Maintenance & Trust
Maintenance Signals
Community Trust
Simple Like Dislike Posts Alternatives
WP Views Counter
wpecounter
Fast, lightweight post views counter. Display views in admin, blocks or shortcodes — no tracking scripts required.
Light Views Counter – Fast, Scalable View Counter for High-Traffic Sites
light-views-counter
Lightweight and fast post view counter with smart tracking, built for high-traffic sites and large post databases.
Post Views Stats Counter
post-views-stats-counter
This plugin will display how many times post and page viewed. It shows total view of access per day, week, month, and all days.
Init View Count – AI-Powered, Trending, REST API
init-view-count
Count post views accurately via REST API with customizable display. Lightweight, fast, and extensible. Includes shortcode with multiple layouts.
Posts and Products Views for WooCommerce
posts-and-products-views
Track and display the view counts of WordPress posts and WooCommerce products in the admin panel and via shortcode.
Simple Like Dislike Posts Developer Profile
1 plugin · 10 total installs
How We Detect Simple Like Dislike Posts
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/simple-like-dislike-posts/assets/js/scripts.js/wp-content/plugins/simple-like-dislike-posts/assets/css/font-awesome.min.css/wp-content/plugins/simple-like-dislike-posts/assets/css/plugin.css/wp-content/plugins/simple-like-dislike-posts/assets/js/scripts.jsHTML / DOM Fingerprints
sal-like-buttonsal-dislike-buttonsal-like-countsal-dislike-countdata-post-idcount_ajax