WP-Safety

Smart Author Box Security & Risk Analysis

wordpress.org/plugins/smart-author-box

Smart Author Box will show the author's biography below articles.

80 active installs v1.0.7 PHP + WP 4.0+ Updated Sep 16, 2024
author-bioauthor-boxsmart-author-biosmart-author-box
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Smart Author Box Safe to Use in 2026?

Generally Safe

Score 92/100

Smart Author Box has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The 'smart-author-box' v1.0.7 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of known CVEs and the reliance on prepared statements for SQL queries are significant strengths. The code also demonstrates good practices with a high percentage of output escaping and capability checks. However, a notable weakness is the complete lack of nonce checks across all entry points. While the attack surface appears minimal and no critical taint flows were identified, the absence of nonces on AJAX handlers (if they existed and were unprotected) or other sensitive operations leaves it vulnerable to CSRF attacks. The vulnerability history being clean is positive, suggesting either good development practices or a lack of targeted research. Overall, the plugin is well-coded but the missing nonce implementation is a critical oversight that needs immediate attention.

Key Concerns

  • Missing nonce checks on all entry points
  • 71% of outputs properly escaped (29% not)
Vulnerabilities
None known

Smart Author Box Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Smart Author Box Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
21
52 escaped
Nonce Checks
0
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

71% escaped73 total outputs
Attack Surface

Smart Author Box Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 15
actionadmin_enqueue_scriptsincludes\class-smart-author-box-admin-settings.php:21
actionplugins_loadedincludes\class-smart-author-box.php:157
actionadmin_enqueue_scriptsincludes\class-smart-author-box.php:174
actionadmin_enqueue_scriptsincludes\class-smart-author-box.php:175
actionadmin_initincludes\class-smart-author-box.php:176
actionadmin_menuincludes\class-smart-author-box.php:177
actionshow_user_profileincludes\class-smart-author-box.php:178
actionedit_user_profileincludes\class-smart-author-box.php:179
actionpersonal_options_updateincludes\class-smart-author-box.php:180
actionedit_user_profile_updateincludes\class-smart-author-box.php:181
filterget_avatarincludes\class-smart-author-box.php:182
actionwp_enqueue_scriptsincludes\class-smart-author-box.php:200
actionwp_enqueue_scriptsincludes\class-smart-author-box.php:201
filterthe_contentincludes\class-smart-author-box.php:202
filterwp_headincludes\class-smart-author-box.php:203
Maintenance & Trust

Smart Author Box Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedSep 16, 2024
PHP min version
Downloads5K

Community Trust

Rating80/100
Number of ratings1
Active installs80
Alternatives

Smart Author Box Alternatives

Simple Author Box

Simple Author Box

simple-author-box

A
99

Add a responsive author box or guest author box with social icons to any post. Great author box for any site!

80K 2 CVEs
Molongui Authorship – Author Boxes, Guest Authors & Co-Authors for WordPress

Molongui Authorship – Author Boxes, Guest Authors & Co-Authors for WordPress

molongui-authorship

A
99

All-in-One Authorship Solution: Seamless Author Box, Guest Authors, and Co-Authors to enhance your site's authority, credibility, engagement, and SEO.

10K 6 CVEs
Starbox – the Author Box for Humans

Starbox – the Author Box for Humans

starbox

A
97

Starbox is the Author Box for Humans. Professional Themes to choose from, HTML5, Social Media Profiles, Google Authorship

10K 6 CVEs
WP Post Author – Author Box, Co-Authors & Guest Authors

WP Post Author – Author Box, Co-Authors & Guest Authors

wp-post-author

A
92

WP Post Author provides a complete solution for displaying author information, managing multiple authors, collecting post ratings, and creating user r …

10K 6 CVEs
Author Box WP Lens

Author Box WP Lens

author-box-for-divi

A
100

A plugin which provides an author box for your WordPress blog. Originally known as "Author Box for Divi."

1K No CVEs
Developer Profile

Smart Author Box Developer Profile

WPxon

5 plugins · 310 total installs

90
trust score
Avg Security Score
94/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Smart Author Box

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/smart-author-box/admin/css/style.css/wp-content/plugins/smart-author-box/admin/js/main.js/wp-content/plugins/smart-author-box/includes/js/frontend.js/wp-content/plugins/smart-author-box/includes/css/frontend.css
Script Paths
/wp-content/plugins/smart-author-box/admin/js/main.js/wp-content/plugins/smart-author-box/includes/js/frontend.js
Version Parameters
smart-author-box/admin/css/style.css?ver=smart-author-box/admin/js/main.js?ver=smart-author-box/includes/js/frontend.js?ver=smart-author-box/includes/css/frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes
smart-author-box
Data Attributes
data-sab-iddata-author-iddata-title
JS Globals
sab
FAQ

Frequently Asked Questions about Smart Author Box