Social Profile Linking Security & Risk Analysis
wordpress.org/plugins/socail-profile-linkingThe Simple Way to Add Retina-Ready Social Media Icons to Your Site
Is Social Profile Linking Safe to Use in 2026?
Generally Safe
Score 85/100Social Profile Linking has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The plugin 'socail-profile-linking' v1.0 presents a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, utilizing prepared statements exclusively, and has no recorded vulnerability history, suggesting a generally stable codebase.
However, significant concerns arise from the static analysis. The use of the `create_function` is a critical code signal indicating a potential for code injection vulnerabilities. Furthermore, a very low percentage of outputs are properly escaped, exposing the plugin to cross-site scripting (XSS) vulnerabilities. The absence of nonce checks and capability checks, especially considering the presence of a shortcode which acts as an entry point, means that these actions could be triggered by unauthorized users or malicious scripts.
While the attack surface appears small and initially unexploited (no unprotected entry points), the identified code signals and output escaping issues represent substantial inherent risks. The lack of a vulnerability history is encouraging but does not negate the identified weaknesses in the current version's code.
Key Concerns
- Use of dangerous function create_function
- Low output escaping percentage
- Missing nonce checks
- Missing capability checks
Social Profile Linking Security Vulnerabilities
Social Profile Linking Code Analysis
Dangerous Functions Found
Output Escaping
Social Profile Linking Attack Surface
Shortcodes 1
WordPress Hooks 5
Maintenance & Trust
Social Profile Linking Maintenance & Trust
Maintenance Signals
Community Trust
Social Profile Linking Alternatives
Open Graph and Twitter Card Tags
wonderm00ns-simple-facebook-open-graph-tags
Improve social media sharing by inserting Facebook Open Graph, Twitter Card, and SEO Meta Tags on your WordPress website pages, posts, WooCommerce pro …
Social Media Widget
social-media-widget
Adds links to all of your social media and sharing site profiles. Tons of icons come in 3 sizes, 4 icon styles, and 4 animations.
Social Media Auto Publish
social-media-auto-publish
Publish posts automatically to social media networks like Facebook, Twitter, Instagram, Tumblr, LinkedIn, Threads and Telegram.
Curator.io
curatorio
Aggregate and embed your social media posts on your site (Facebook, Twitter, Instagram, Pinterest and many more) as a beautiful social media feed.
Social Media Icons Widget
social-media-icons
Developed at NCI.
Social Profile Linking Developer Profile
3 plugins · 150 total installs
How We Detect Social Profile Linking
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/socail-profile-linking/includes/css/spl-styles.csssocail-profile-linking/includes/css/spl-styles.css?ver=1.0HTML / DOM Fingerprints
[spl]