Does Snow have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Snow compatible with WordPress 4.7.33?

According to WordPress.org data, Snow 2.0.2 has been tested up to WordPress 4.7.33. Check the plugin's changelog for the latest compatibility information.

How often is Snow updated?

Snow was last updated on Dec 21, 2016. Frequent updates are generally a positive security signal.

What is Snow's security score?

Snow has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Snow Security & Risk Analysis

wordpress.org/plugins/snow

Professional snow plugin with highly customizable options, no coding knowledge required.

200 active installs v2.0.2 PHP + WP 3.0+ Updated Dec 21, 2016

christmassnowsnowingwinterxmas

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Snow Safe to Use in 2026?

Generally Safe

Score 85/100

Snow has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The 'snow' plugin v2.0.2 demonstrates a strong adherence to secure coding practices, evidenced by its complete lack of reported CVEs and a clean vulnerability history. The static analysis reveals a zero attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed. Crucially, there are no detected critical or high-severity taint flows, and all SQL queries utilize prepared statements. This suggests a low likelihood of common injection vulnerabilities. However, a significant concern is the complete lack of output escaping, as indicated by 0% of 21 total outputs being properly escaped. This could lead to Cross-Site Scripting (XSS) vulnerabilities if any of the plugin's output is user-controlled or dynamically generated.

Key Concerns

No output escaping

Vulnerabilities

None known

Snow Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Snow Release Timeline

v2.0.2Current

v2.0.1

v2.0.0

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Snow Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped21 total outputs

Attack Surface

Snow Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionadmin_initsnow.php:47

actionadmin_menusnow.php:53

actionadmin_enqueue_scriptssnow.php:207

actionwp_headsnow.php:237

actionwp_enqueue_scriptssnow.php:292

actionadmin_noticessnow.php:322

filterbody_classsnow.php:340

Maintenance & Trust

Snow Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.33

Last updatedDec 21, 2016

PHP min version

Downloads21K

Community Trust

Rating90/100

Number of ratings13

Active installs200

Alternatives

Snow Alternatives

Xmas Snow

xmas-snow

Add nice looking animated Xhristmas(Christmas) Snow to the top of site.

40 No CVEs

WpXmas-Snow

wpxmas-snow

Add cool looking Wordpress animated Christmas Snow on your site.

20 1 unpatched

Christmas Lights

christmas-lights

Add nice looking animated Christmas lights to the top of your WP site and enjoy winter.

10 No CVEs

Christmas Snow 3D – Snowfalling, Snowflake Effect and Christmas mood

christmas-snow-3d

The plugin adds Christmas mood and falling snowflakes with unique and smooth experience and realistic animation.

200 No CVEs

Snow Fall

snow-fall

100

Adds a subtle snow fall effect to your website, using a lightweight web component.

80 No CVEs

Developer Profile

Snow Developer Profile

Mitch

12 plugins · 11K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Snow

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/snow/css/snow-style.css/wp-content/plugins/snow/js/snow-script.js

Script Paths

/wp-content/plugins/snow/js/snow-script.js

Version Parameters

snow/css/snow-style.css?ver=snow/js/snow-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

snow-wrapsnow-flakesnow-container

HTML Comments

Data Attributes

data-snow-flakecountdata-snow-imagedata-snow-flakecolordata-snow-scrollwithscreendata-snow-minsizedata-snow-maxsize+4 more

JS Globals

window.snowOptionsvar snowOptions

Shortcode Output

[snow]

FAQ