WP-Safety

Simple Social Media Share Buttons – Social Sharing for Everyone Security & Risk Analysis

wordpress.org/plugins/simple-social-buttons

This Social Share Plugin adds advanced social media sharing buttons to your WordPress sites, such as Facebook, WhatsApp, X, LinkedIn, & Pinterest.

20K active installs v6.2.0 PHP 5.6+ WP 4.0+ Updated Jan 5, 2026
share-buttonssocial-buttonssocial-media-sharesocial-sharesocial-sharing
97
A · Safe
CVEs total7
Unpatched0
Last CVEMar 25, 2025
Plugin page Download
Safety Verdict

Is Simple Social Media Share Buttons – Social Sharing for Everyone Safe to Use in 2026?

Generally Safe

Score 97/100

Simple Social Media Share Buttons – Social Sharing for Everyone has a strong security track record. Known vulnerabilities have been patched promptly.

7 known CVEsLast CVE: Mar 25, 2025Updated 2mo ago
Risk Assessment

The 'simple-social-buttons' plugin v6.2.0 exhibits a mixed security posture. While it demonstrates good practices in several areas, such as a lack of critical or high severity taint flows and a complete absence of currently unpatched CVEs, there are significant concerns. The presence of one unprotected AJAX handler is a direct entry point for potential unauthorized actions. The taint analysis reveals two high severity flows with unsanitized paths, indicating a risk of Cross-Site Scripting (XSS) or other input manipulation vulnerabilities. The plugin's history of 7 medium severity CVEs, all related to improper authentication, neutralization of input, and missing authorization, suggests a recurring pattern of security weaknesses that, while currently patched, point to fundamental design flaws that could resurface.

Despite the absence of unpatched vulnerabilities and a generally reasonable level of output escaping and nonce checks, the combination of an unprotected AJAX handler, high severity unsanitized taint flows, and a history of common vulnerability types like XSS and authorization issues warrants caution. The plugin's strengths lie in its current lack of critical threats and its efforts in prepared statements and output escaping. However, the identified risks, particularly the unprotected AJAX endpoint and the concerning taint flows, suggest that users should remain vigilant and consider alternative solutions or ensure thorough security audits if relying on this plugin.

Key Concerns

  • Unprotected AJAX handler
  • High severity unsanitized taint flows
  • History of medium CVEs (Improper Auth, XSS, Missing Auth)
  • SQL queries not fully prepared
Vulnerabilities
7

Simple Social Media Share Buttons – Social Sharing for Everyone Security Vulnerabilities

CVEs by Year

1 CVE in 2019
2019
2 CVEs in 2020
2020
2 CVEs in 2021
2021
1 CVE in 2023
2023
1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
7

7 total CVEs

CVE-2024-13610medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Simple Social Media Share Buttons <= 5.4.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

Mar 25, 2025 Patched in 6.0.0 (28d)
CVE-2023-5845medium · 5.3Improper Authentication

Simple Social Media Share Buttons <= 5.1.0 - Unauthenticated Password Protected Post Disclosure

Dec 6, 2023 Patched in 5.1.1 (48d)
CVE-2021-24656medium · 4.8Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Simple Social Media Share Buttons <= 3.2.3 - Admin+ Stored Cross-Site Scripting

Sep 13, 2021 Patched in 3.2.4 (862d)
CVE-2021-24486medium · 5.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Simple Social Media Share Buttons <= 3.2.2 - Contributor+ Stored Cross-Site Scripting

Jul 26, 2021 Patched in 3.2.3 (911d)
WF-ac352bb2-f624-4c31-951a-988a0b420635-simple-social-buttonsmedium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Simple Social Media Share Buttons <= 3.2.0 - Reflected Cross-Site Scripting

Dec 18, 2020 Patched in 3.2.1 (1131d)
WF-724dead7-0e4a-420d-a5a3-fca578451211-simple-social-buttonsmedium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Simple Social Media Share Buttons <= 3.1.1 - Reflected Cross-Site Scripting

Dec 17, 2020 Patched in 3.2.0 (1132d)
WF-1bda01a0-e995-4642-81e3-4a72e6754af6-simple-social-buttonsmedium · 6.3Missing Authorization

Simple Social Media Share Buttons 2.0.4 - 2.0.21 - Missing Authorization

Feb 11, 2019 Patched in 2.0.22 (1954d)
Code Analysis
Analyzed Mar 16, 2026

Simple Social Media Share Buttons – Social Sharing for Everyone Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
1 prepared
Unescaped Output
140
369 escaped
Nonce Checks
13
Capability Checks
12
File Operations
1
External Requests
7
Bundled Libraries
0

SQL Query Safety

33% prepared3 total queries

Output Escaping

72% escaped509 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

8 flows3 with unsanitized paths
review_notice_message (classes\ssb-admin.php:311)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Simple Social Media Share Buttons – Social Sharing for Everyone Attack Surface

Entry Points11
Unprotected1

AJAX Handlers 10

authwp_ajax_ssb_deactivateclasses\ssb-admin.php:30
authwp_ajax_activate_pluginclasses\ssb-settings-structure.php:23
authwp_ajax_ssb_helpclasses\ssb-settings.php:16
authwp_ajax_ssb_exportclasses\ssb-settings.php:17
authwp_ajax_ssb_importclasses\ssb-settings.php:18
authwp_ajax_ssb_fetch_datasimple-social-buttons.php:268
noprivwp_ajax_ssb_fetch_datasimple-social-buttons.php:269
authwp_ajax_ssb_facebook_shares_updatesimple-social-buttons.php:281
noprivwp_ajax_ssb_facebook_shares_updatesimple-social-buttons.php:282
authwp_ajax_ssb_optout_yessimple-social-buttons.php:292

Shortcodes 1

[SSB] simple-social-buttons.php:278
WordPress Hooks 34
actionadd_meta_boxesclasses\ssb-admin.php:24
actionsave_postclasses\ssb-admin.php:25
filterplugin_row_metaclasses\ssb-admin.php:27
actionadmin_initclasses\ssb-admin.php:31
actionadmin_enqueue_scriptsclasses\ssb-admin.php:32
actionin_admin_headerclasses\ssb-admin.php:33
actionenqueue_block_editor_assetsclasses\ssb-admin.php:34
actionadmin_noticesclasses\ssb-admin.php:299
actionadmin_enqueue_scriptsclasses\ssb-settings-structure.php:22
actionadmin_initclasses\ssb-settings.php:14
actionadmin_menuclasses\ssb-settings.php:15
filterhttps_ssl_verifyclasses\ssb-widget.php:331
filterhttps_ssl_verifyclasses\ssb-widget.php:352
actionwidgets_initclasses\ssb-widget.php:537
filterbody_classinc\ssb-compitabilty.php:8
actioninitinc\upgrade-routine.php:2
actionadmin_initsimple-social-buttons.php:244
filterthe_contentsimple-social-buttons.php:251
filterthe_excerptsimple-social-buttons.php:253
filterwp_trim_wordssimple-social-buttons.php:255
actionwp_enqueue_scriptssimple-social-buttons.php:257
actionenqueue_block_assetssimple-social-buttons.php:258
actionwp_footersimple-social-buttons.php:264
filterssb_footer_scriptssimple-social-buttons.php:266
actionwp_footersimple-social-buttons.php:271
actionwp_headsimple-social-buttons.php:272
actionadmin_initsimple-social-buttons.php:275
actionwp_footersimple-social-buttons.php:276
actionwp_headsimple-social-buttons.php:279
actioninitsimple-social-buttons.php:284
actionwp_wpb_sdk_after_uninstallsimple-social-buttons.php:286
actionadmin_menusimple-social-buttons.php:289
actionadmin_initsimple-social-buttons.php:290
actionadmin_footersimple-social-buttons.php:291
Maintenance & Trust

Simple Social Media Share Buttons – Social Sharing for Everyone Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 5, 2026
PHP min version5.6
Downloads1.3M

Community Trust

Rating96/100
Number of ratings192
Active installs20K
Alternatives

Simple Social Media Share Buttons – Social Sharing for Everyone Alternatives

Hubbub Lite – Fast, free social sharing and follow buttons

Hubbub Lite – Fast, free social sharing and follow buttons

social-pug

A
92

Your content is worth sharing. Let's makes it easier!

30K 9 CVEs
ShareThis Share Buttons

ShareThis Share Buttons

sharethis-share-buttons

A
99

Grow your website traffic and engagement by enabling one-click sharing with the free ShareThis Share Buttons plugin. The plugin is free (no upgrades a &hellip;

20K 1 CVE
Social Sharing Plugin – Social Warfare

Social Sharing Plugin – Social Warfare

social-warfare

B
84

The most beautiful, responsive, lightning fast social share buttons built to boost shares and drive more traffic without slowing down your site.

20K 8 CVEs
WP Socializer – Simple & Easy Social Media Share Icons

WP Socializer – Simple & Easy Social Media Share Icons

wp-socializer

A
92

Simple & easy plugin to add social media sharing icons, buttons like Facebook, Twitter, WhatsApp, Instagram & more

10K 1 CVE
Social Rocket – Social Sharing Plugin

Social Rocket – Social Sharing Plugin

social-rocket

A
94

Add fully-customizable social sharing buttons to your site. Easy to use and packed with many additional social networking features.

1K 6 CVEs
Developer Profile

Simple Social Media Share Buttons – Social Sharing for Everyone Developer Profile

Adnan

11 plugins · 660K total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
526 days
View full developer profile
Detection Fingerprints

How We Detect Simple Social Media Share Buttons – Social Sharing for Everyone

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/simple-social-buttons/assets/css/ssb-style.css/wp-content/plugins/simple-social-buttons/assets/js/ssb-script.js
Script Paths
/wp-content/plugins/simple-social-buttons/assets/js/ssb-script.js
Version Parameters
/wp-content/plugins/simple-social-buttons/assets/css/ssb-style.css?ver=/wp-content/plugins/simple-social-buttons/assets/js/ssb-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
ssb-wrapssb-networks-wrapssb-networks-wrap-iconsssb-network-iconssb-networks-wrap-inlinessb-network-icon-inline
Data Attributes
data-ssb-networkdata-ssb-title
JS Globals
ssb_obj
Shortcode Output
[SSB]
FAQ

Frequently Asked Questions about Simple Social Media Share Buttons – Social Sharing for Everyone