Does Social Charts have any unpatched vulnerabilities?

No. All known vulnerabilities in Social Charts have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Social Charts compatible with WordPress 5.4.19?

According to WordPress.org data, Social Charts 1.0.0 has been tested up to WordPress 5.4.19. Check the plugin's changelog for the latest compatibility information.

How often is Social Charts updated?

Social Charts was last updated on Jun 16, 2020. Frequent updates are generally a positive security signal.

What is Social Charts's security score?

Social Charts has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Social Charts Security & Risk Analysis

wordpress.org/plugins/social-charts

Monitor and show your social media follower (e.g. instagram followers) development as a beautiful chart.

0 active installs v1.0.0 PHP + WP 3.0.1+ Updated Jun 16, 2020

chartsinstagrammonitoringsocial-countersocial-media

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Social Charts Safe to Use in 2026?

Generally Safe

Score 85/100

Social Charts has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The social-charts plugin v1.0.0 exhibits a generally good security posture based on the static analysis. The absence of dangerous functions, the exclusive use of prepared statements for all SQL queries, and the high percentage of properly escaped output are positive indicators. Furthermore, the lack of any recorded vulnerabilities, including CVEs, suggests a history of secure development or a lack of active exploitation.

However, there are notable areas for concern. The plugin has zero nonce checks and zero capability checks across its entire entry points, which is a significant oversight. While the static analysis didn't find any taint flows, the lack of these fundamental security measures means that even if a vulnerability were introduced through user input, it could be easily exploited without proper authentication or authorization. The single external HTTP request also warrants attention, as it could be a vector for various attacks if not handled securely.

In conclusion, while the plugin benefits from secure coding practices in its database interactions and output handling, the complete absence of nonce and capability checks represents a critical security weakness. This, combined with the single external HTTP request, creates a potential risk of unauthorized access or manipulation if a vulnerability is discovered or introduced. The lack of past vulnerabilities is reassuring but does not negate the inherent risks presented by the current code structure.

Key Concerns

Missing nonce checks
Missing capability checks
External HTTP request without context
Some output not properly escaped

Vulnerabilities

None known

Social Charts Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Social Charts Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

80% escaped10 total outputs

Attack Surface

Social Charts Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[socialcharts_chart] social-charts.php:200

WordPress Hooks 8

actionplugins_loadedincludes\class-social-charts.php:142

actionadmin_enqueue_scriptsincludes\class-social-charts.php:157

actionadmin_enqueue_scriptsincludes\class-social-charts.php:158

actionwp_enqueue_scriptsincludes\class-social-charts.php:173

actionwp_enqueue_scriptsincludes\class-social-charts.php:174

actionsocial_charts_cron_hooksocial-charts.php:74

actionadmin_menusocial-charts.php:130

actionadmin_post_social_charts_settings_actionsocial-charts.php:133

Scheduled Events 1

social_charts_cron_hook

Maintenance & Trust

Social Charts Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19

Last updatedJun 16, 2020

PHP min version

Downloads945

Community Trust

Rating100/100

Number of ratings1

Active installs0

Alternatives

Social Charts Alternatives

Juicer.io: Effortlessly embed, curate, and aggregate social media feeds into your website

juicer

100

Aggregate social media posts and hashtags from Instagram, X (Twitter), Facebook, LinkedIn, YouTube, and more into a stunning feed on your website.

9K 1 CVE

EmbedSocial – Social Media Feeds, Reviews and Galleries

embedalbum-pro

EmbedSocial allows you to collect and embed social media content on any website automatically.

4K 2 CVEs

SocialFeeds

socialfeeds

100

YouTube feeds for WordPress with simple Setup and Settings options.

4K No CVEs

Curator.io

curatorio

Aggregate and embed your social media posts on your site (Facebook, Twitter, Instagram, Pinterest and many more) as a beautiful social media feed.

2K 2 CVEs

Shoppable Social Media Galleries by Sauce

shop-feed-for-instagram-by-snapppt

What is Sauce?

2K No CVEs

Developer Profile

Social Charts Developer Profile

Protect Your Uploads

1 plugin · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Social Charts

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/social-charts/chartjs/Chart.bundle.min.js/wp-content/plugins/social-charts/public/js/social-charts-instagram.js

Script Paths

chartjs/Chart.bundle.min.jspublic/js/social-charts-instagram.js

Version Parameters

social-charts/public/js/social-charts-instagram.js?ver=1.0.0

HTML / DOM Fingerprints

JS Globals

sc_chart_data

Shortcode Output

<p><canvas id='socialChartInstagram'></canvas></p>

FAQ