Does Social Monster have any unpatched vulnerabilities?

No. All known vulnerabilities in Social Monster have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Social Monster compatible with WordPress 4.5.33?

According to WordPress.org data, Social Monster 1.0.10 has been tested up to WordPress 4.5.33. Check the plugin's changelog for the latest compatibility information.

How often is Social Monster updated?

Social Monster was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Social Monster's security score?

Social Monster has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Social Monster Security & Risk Analysis

wordpress.org/plugins/social-features-for-wp

This plugin adds some social functionality to Wordpress. Such as FB comments, VK comments, share buttons etc.

10 active installs v1.0.10 PHP + WP 3.2.1+ Updated Unknown

commentsfacebooksharesocialvkontakte

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Social Monster Safe to Use in 2026?

Generally Safe

Score 100/100

Social Monster has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The 'social-features-for-wp' plugin v1.0.10 exhibits a mixed security posture. While it boasts a clean vulnerability history with no known CVEs and demonstrates good practices by using prepared statements for all SQL queries and avoiding file operations or external HTTP requests, several concerning signals emerge from the static analysis. The presence of the 'unserialize' function, especially without any apparent input validation or nonce checks, presents a significant risk. Furthermore, the fact that 100% of the 17 output operations are not properly escaped indicates a high likelihood of Cross-Site Scripting (XSS) vulnerabilities.

Key Concerns

Unescaped output detected
Presence of unserialize without apparent checks
No nonce checks detected
No capability checks detected

Vulnerabilities

None known

Social Monster Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Social Monster Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$session=@unserialize($_SESSION["social-monster-share-helper".$seed]);sharer.php:11

Output Escaping

0% escaped17 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<sharer> (sharer.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Social Monster Attack Surface

Entry Points0

Unprotected0

Maintenance & Trust

Social Monster Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33

Last updatedUnknown

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Social Monster Alternatives

Social Share, Social Login and Social Comments Plugin – Super Socializer

super-socializer

The unique Social Plugin to let you integrate Social Login, Social Share, Social Comments and Social Media follow at your website

20K 10 CVEs

Buttonizer – Social Media Share Buttons, Social Icons, & Social Feeds

facebook-pagelike-widget

Floating Social Media Icons, Sticky Share Buttons, Facebook Feeds, & Popup builder. Also, create Call, Email, SMS, & Contact buttons to increa …

50K 2 CVEs

Simple Share Buttons Adder

simple-share-buttons-adder

A simple plugin that enables you to add share buttons to all of your posts and/or pages.

40K 6 CVEs

Social Media Feather | social media sharing

social-media-feather

Lightweight, modern looking and effective social media sharing and profile buttons and icons. All your social media needs in 1 easy package!

20K 2 CVEs

Meks Easy Social Share

meks-easy-social-share

Easily display social share buttons for your posts, pages and custom post types. Supports Facebook, Twitter, Reddit, Pinterest, Email, Google+, Linked …

10K 1 CVE

Developer Profile

Social Monster Developer Profile

bogdan_nazar

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Social Monster

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/social-features-for-wp/social-monster-admin.js/wp-content/plugins/social-features-for-wp/social-monster-comments.js/wp-content/plugins/social-features-for-wp/social-monster-share.js/wp-content/plugins/social-features-for-wp/social-monster.js/wp-content/plugins/social-features-for-wp/social-monster-comments.css/wp-content/plugins/social-features-for-wp/social-monster-share.css

Script Paths

//connect.facebook.net/en_US/all.js//vk.com/js/api/openapi.js

Version Parameters

social-features-for-wp/social-monster-admin.js?ver=social-features-for-wp/social-monster-comments.js?ver=social-features-for-wp/social-monster-share.js?ver=social-features-for-wp/social-monster.js?ver=social-features-for-wp/social-monster-comments.css?ver=social-features-for-wp/social-monster-share.css?ver=

HTML / DOM Fingerprints

CSS Classes

social-monster-comments-blocksocial-monster-share-block

Data Attributes

data-vkapiiddata-vkattdata-vkheightdata-vklimitdata-vkiddata-vkwidth+8 more

JS Globals

social_monster_lang

Shortcode Output

[social_monster_comments][social_monster_share]

FAQ