Does Skysa Pinterest “Pin It” App have any unpatched vulnerabilities?

No. All known vulnerabilities in Skysa Pinterest “Pin It” App have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Skysa Pinterest “Pin It” App compatible with WordPress 4.0.38?

According to WordPress.org data, Skysa Pinterest “Pin It” App 1.4 has been tested up to WordPress 4.0.38. Check the plugin's changelog for the latest compatibility information.

How often is Skysa Pinterest “Pin It” App updated?

Skysa Pinterest “Pin It” App was last updated on Sep 8, 2014. Frequent updates are generally a positive security signal.

What is Skysa Pinterest “Pin It” App's security score?

Skysa Pinterest “Pin It” App has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Skysa Pinterest “Pin It” App Security & Risk Analysis

wordpress.org/plugins/skysa-pinterest-pin-it-app

Let people share (pin) images from any page of your site on Pinterest

10 active installs v1.4 PHP + WP 2.7+ Updated Sep 8, 2014

pin-itpin-to-pinterestpinterestskysaskysa-apps

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Skysa Pinterest “Pin It” App Safe to Use in 2026?

Generally Safe

Score 85/100

Skysa Pinterest “Pin It” App has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The skysa-pinterest-pin-it-app v1.4 plugin presents a significant security risk due to a lack of proper authentication and sanitization on its AJAX endpoints. The static analysis reveals two AJAX handlers, both of which lack any authentication checks, creating a direct attack vector for unauthorized actions. Furthermore, all identified SQL queries within the plugin are not using prepared statements, increasing the risk of SQL injection vulnerabilities, especially when combined with unsanitized input. While there is no known vulnerability history, this does not indicate a robust security posture, as the code itself exhibits critical weaknesses.

The taint analysis shows four flows with unsanitized paths, although they are not categorized as critical or high severity. This, coupled with the extremely low percentage of properly escaped output (4%), strongly suggests that even if direct SQL injection is not immediately apparent, cross-site scripting (XSS) vulnerabilities are highly probable. The absence of nonce checks and capability checks on the AJAX endpoints further exacerbates these risks. In conclusion, despite a clean vulnerability history, the plugin's implementation exposes multiple critical security flaws that require immediate attention.

Key Concerns

Unprotected AJAX handlers
Raw SQL queries without prepared statements
Low percentage of output escaping
Flows with unsanitized paths
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Skysa Pinterest “Pin It” App Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Skysa Pinterest “Pin It” App Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared4 total queries

Output Escaping

4% escaped23 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

SkysaApps_Admin_DrawTabs (skysa-required\admin.php:168)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Skysa Pinterest “Pin It” App Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_skysa_apploadskysa-required\index.php:111

noprivwp_ajax_skysa_apploadskysa-required\index.php:112

WordPress Hooks 3

actionwp_print_footer_scriptsskysa-required\index.php:103

actionwp_footerskysa-required\index.php:105

actionadmin_menuskysa-required\index.php:109

Maintenance & Trust

Skysa Pinterest “Pin It” App Maintenance & Trust

Maintenance Signals

WordPress version tested4.0.38

Last updatedSep 8, 2014

PHP min version

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Skysa Pinterest “Pin It” App Alternatives

jQuery Pin It Button for Images

jquery-pin-it-button-for-images

Highlights images on hover and adds a Pinterest "Pin It" button over them for easy pinning.

10K No CVEs

Weblizar Pin It Button On Image Hover And Post

pinterest-pin-it-button-on-image-hover-and-post

100

Pin Your Images With weblizar pin it button on image hover and post.

10K 1 CVE

TechGasp Pin Master

pinterest-master

TechGasp Pin Master adds the follow me on pinterest, pin it button, show pinterest profile and show pinterest board to your wordpress website.

300 No CVEs

Simple Pin It Button

simple-pin-it-button

100

Adds a "Pin it" button over images on hover with customizable options.

100 No CVEs

Pinterest Pin It Button For Images

pin-it-button

Add a Pin It! button over your images! CSS3 Fade In/Out with the ability to upload your own custom image!

50 No CVEs

Developer Profile

Skysa Pinterest “Pin It” App Developer Profile

Skysa

8 plugins · 80 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Skysa Pinterest “Pin It” App

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/skysa-pinterest-pin-it-app/icons/pinterest-icon-wp.png/wp-content/plugins/skysa-pinterest-pin-it-app/skysa-required/css/skysa-admin.css/wp-content/plugins/skysa-pinterest-pin-it-app/skysa-required/js/skysa-admin.js

Script Paths

//assets.pinterest.com/js/pinmarklet.js

Version Parameters

skysa-pinterest-pin-it-app/skysa-required/css/skysa-admin.css?ver=skysa-pinterest-pin-it-app/skysa-required/js/skysa-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

bar-buttonSKYUI-menuoff

HTML Comments

*************************************************************
*                 This app was made using the:              *
*                       Skysa App SDK                       *
*    http://wordpress.org/extend/plugins/skysa-app-sdk/     *
*************************************************************

*************************************************************
*                Skysa App SDK version 2.0                  *
*            Download the latest version here:              *
*    http://wordpress.org/extend/plugins/skysa-app-sdk/     *
*************************************************************

Data Attributes

id="field-bar_label"id="field-icon"id="field-title"class="upload-url"id="button-icon"class="upload_image_button"+1 more

JS Globals

S

Shortcode Output

<div id="$button_id" class="bar-button SKYUI-menuoff" apptitle="$app_title">$app_icon<span class="label">$app_bar_label</span></div>

FAQ