Does SinoShare have any unpatched vulnerabilities?

No. All known vulnerabilities in SinoShare have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SinoShare compatible with WordPress 2.9.2?

According to WordPress.org data, SinoShare 1.7 has been tested up to WordPress 2.9.2. Check the plugin's changelog for the latest compatibility information.

How often is SinoShare updated?

SinoShare was last updated on Oct 12, 2010. Frequent updates are generally a positive security signal.

What is SinoShare's security score?

SinoShare has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SinoShare Security & Risk Analysis

wordpress.org/plugins/sinoshare

wordpress的日志文章分享收藏插件。

10 active installs v1.7 PHP + WP 2.8+ Updated Oct 12, 2010

%e7%a4%be%e4%ba%a4%e5%88%86%e4%ba%ab%e6%94%b6%e8%97%8f%e4%b8%ad%e6%96%87

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SinoShare Safe to Use in 2026?

Generally Safe

Score 85/100

SinoShare has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 15yr ago

Risk Assessment

The "sinoshare" v1.7 plugin presents a mixed security picture. On the positive side, it boasts a zero attack surface for common entry points like AJAX handlers, REST API routes, and shortcodes, and has no recorded vulnerabilities or CVEs. This suggests a potentially robust development effort in preventing direct external manipulation. However, significant concerns arise from the code analysis. The complete lack of output escaping (0%) is a critical weakness, exposing the site to potential Cross-Site Scripting (XSS) vulnerabilities. Furthermore, while the plugin utilizes prepared statements for half of its SQL queries, the presence of raw SQL queries without them introduces a risk of SQL injection, albeit potentially mitigated by other factors. The taint analysis, while showing a small number of flows, highlights "unsanitized paths," which, when combined with unescaped output, could be exploited. The absence of nonce and capability checks, especially in conjunction with any potential future entry points, also represents a gap in security best practices.

Key Concerns

0% output escaping
SQL queries without prepared statements present
Taint flows with unsanitized paths
No nonce checks
No capability checks

Vulnerabilities

None known

SinoShare Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

SinoShare Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared6 total queries

Output Escaping

0% escaped59 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

snshare_log (sinoshare.php:818)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

SinoShare Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actioninitsinoshare.php:658

actionwp_headsinoshare.php:670

actionthe_contentsinoshare.php:736

actionthe_content_rsssinoshare.php:737

actionwp_footersinoshare.php:809

actionadmin_menusinoshare.php:1095

Maintenance & Trust

SinoShare Maintenance & Trust

Maintenance Signals

WordPress version tested2.9.2

Last updatedOct 12, 2010

PHP min version

Downloads8K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

SinoShare Alternatives

bShare 分享

17fav-bookmark-share

100

数以万计的分享，源自一个简单的按钮， bShare 分享是一个强大的网页分享插件工具，您的读者可以将您网站上精采的内容快速分享、转贴到社群网络上。

20 No CVEs

AddThisChina(分享家:收藏&分享按钮)

addthischina

100

适合中文网站的AddThis按钮，含有主流中文收藏分享按钮。方便读者分享, 增加网站流量！[2009-09-25]新增颜色样式配置。【如果之前手工安装1.0版本,请卸载后重新安装1.1版本,并重新保存配置】

10 No CVEs

WP Weixin

wp-weixin

WordPress WeChat integration

400 No CVEs

[凹凸曼]微信分享有图-WeChat Page Sharing

apoyl-weixinshare

100

这是一款解决在微信里首页、文章、单页等页面（如post, page, attachment, revision, menu）分享到朋友或朋友圈，图标无法显示，描述更改为部分文章内容或者文章摘要. This is a solution to share to Chat or share on Mome …

200 No CVEs

Bosima WeChat Page Sharing

bosima-wechat-page-sharing

您可以控制Wordpress页面的分享内容，包括Url、标题、图片和描述，支持分享到微信朋友、微信朋友圈、QQ和QQ空间。请注意，0.2.x版本升级后需重新配置AppId和AppSecrect。

200 No CVEs

Developer Profile

SinoShare Developer Profile

patent-cncom

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SinoShare

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sinoshare/sinoshare.css/wp-content/plugins/sinoshare/sinoshare.js

HTML / DOM Fingerprints

CSS Classes

sinoshare_buttonssinoshare_textsinoshare_share

HTML Comments

JS Globals

sinoshare_titlesinoshare_urlsinoshare_weibo_titlesinoshare_weibo_urlsinoshare_qq_titlesinoshare_qq_url+43 more

FAQ