Smart Threema Security & Risk Analysis
wordpress.org/plugins/smart-threemaAdd Threema Buttons to your Website and allow your Visitor to Contact you.
Is Smart Threema Safe to Use in 2026?
Generally Safe
Score 100/100Smart Threema has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "smart-threema" v2.4 plugin exhibits a generally good security posture, with no known vulnerabilities in its history and a promising static analysis report. The absence of dangerous functions, raw SQL queries, external HTTP requests, and file operations are all positive indicators. Furthermore, the use of prepared statements for all SQL queries is a significant strength. However, the static analysis does reveal areas for improvement. A significant portion of output is not properly escaped (33% properly escaped out of 24 total outputs), which presents a potential Cross-Site Scripting (XSS) risk if user-supplied data is displayed without sufficient sanitization. The presence of 4 unsanitized paths in the taint analysis, while not categorized as critical or high severity in this report, warrants further investigation to understand the potential impact and ensure proper sanitization is in place. The plugin's vulnerability history being completely clear is a strong positive, suggesting a mature and secure development process. Despite the identified output escaping and taint flow concerns, the plugin appears to be relatively secure due to the lack of critical vulnerabilities and a small attack surface.
Key Concerns
- Significant portion of output unescaped
- Flows with unsanitized paths
Smart Threema Security Vulnerabilities
Smart Threema Code Analysis
Output Escaping
Data Flow Analysis
Smart Threema Attack Surface
Shortcodes 3
WordPress Hooks 6
Maintenance & Trust
Smart Threema Maintenance & Trust
Maintenance Signals
Community Trust
Smart Threema Alternatives
Social Icons Widget & Block – Social Media Icons & Share Buttons
social-icons-widget-by-wpzoom
Social media icons plugin for WordPress - Add 400+ social icons and share buttons. Gutenberg block, widget & Elementor support. GDPR compliant.
Jetpack Social
jetpack-social
Write once, publish everywhere. Reach your target audience by sharing your content with Jetpack Social!
NextScripts: Social Networks Auto-Poster
social-networks-auto-poster-facebook-twitter-g
Automatically publishes blogposts to profiles/pages/groups on Twitter, Google+, Pinterest, LinkedIn, Blogger, Tumblr ... 22 more
Hubbub Lite – Fast, free social sharing and follow buttons
social-pug
Your content is worth sharing. Let's makes it easier!
Simple Social Media Share Buttons – Social Sharing for Everyone
simple-social-buttons
This Social Share Plugin adds advanced social media sharing buttons to your WordPress sites, such as Facebook, WhatsApp, X, LinkedIn, & Pinterest.
Smart Threema Developer Profile
11 plugins · 5K total installs
How We Detect Smart Threema
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/smart-threema/css/threemasmart_style.css/wp-content/plugins/smart-threema/css/threemasmart_floating_button.php/wp-content/plugins/smart-threema/images/floating-button-threema-klein.png/wp-content/plugins/smart-threema/images/floating-button-threema.pngHTML / DOM Fingerprints
smartthreema_containersmartthreema_container_h4smartthreema_container_txtfloatthreemafloatmy-float<div class='smartthreema_container'><a href='threema://compose?id=' target='_blank'><img src='/smart-threema/images/floating-button-threema-klein.png'></a><h4 class='smartthreema_container_h4'>Threema</h4><a href='threema://compose?id=' target='_blank'><div class='smartthreema_container_txt'>Kontakte uns über Threema</div></a></div><br /><br />