Does Social Fellow have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Social Fellow compatible with WordPress 4.1.42?

According to WordPress.org data, Social Fellow 2.1.0 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is Social Fellow updated?

Social Fellow was last updated on Apr 19, 2015. Frequent updates are generally a positive security signal.

What is Social Fellow's security score?

Social Fellow has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Social Fellow Security & Risk Analysis

wordpress.org/plugins/social-fellow

Count how many times a page or post of you blog has been shared in facebook, twitter, linkedin and Google plus.

10 active installs v2.1.0 PHP + WP 3.0.1+ Updated Apr 19, 2015

facebook-shareslinkedin-sharessocialsocial-countertwitter-shares

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Social Fellow Safe to Use in 2026?

Generally Safe

Score 85/100

Social Fellow has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "social-fellow" v2.1.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any known vulnerabilities (CVEs) in its history is a significant positive indicator. Furthermore, the code's adherence to using prepared statements for all SQL queries and the minimal attack surface with no identified unprotected entry points are excellent security practices. However, a critical concern arises from the complete lack of output escaping for all 18 identified outputs. This deficiency leaves the plugin highly vulnerable to Cross-Site Scripting (XSS) attacks, as any user-provided data displayed on the frontend is not properly sanitized, allowing attackers to inject malicious scripts. The presence of only one capability check across the entire codebase, coupled with the absence of nonce checks on potential AJAX or REST API interactions (even though none are explicitly identified as unprotected), suggests a potential for privilege escalation or unauthorized actions if such entry points were to be introduced or discovered.

Key Concerns

0% output escaping
Only 1 capability check
No nonce checks

Vulnerabilities

None known

Social Fellow Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Social Fellow Release Timeline

v2.1

v2.0.1

v2.0

v1.0

Code Analysis

Analyzed Apr 16, 2026

Social Fellow Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

0% escaped18 total outputs

Attack Surface

Social Fellow Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionadmin_enqueue_scriptssocial-fellow.php:42

actionedit_form_after_titlesocial-fellow.php:43

actionadmin_enqueue_scriptssocial-fellow.php:44

actionadmin_menusocial-fellow.php:131

filterplugin_action_linkssocial-fellow.php:134

Maintenance & Trust

Social Fellow Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedApr 19, 2015

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Social Fellow Alternatives

Wp Social Login and Register Social Counter

wp-social

Wp social lets you add social login, social counter, and social share buttons of different styles to your WordPress website.

80K 5 CVEs

Social Counter & Sharer

social-counter

Ultra-lightweight plugin for sharing content on social networks. Optimized for speed with minimal impact on site performance.

300 1 CVE

Genesis Optimized Social Share

genesis-optimized-social-share

Genesis Optimized Social Share loads Popular Social Share Counters without affecting your page Loading Time & PageSpeed Score.

70 No CVEs

Social Media Counters for WordPress – Arkam Lite

arkam-lite

Social Media Counters Plugin for WordPress.

20 No CVEs

Social Counter Widget

social-counter-widget

This widget will display your RSS subscribers, Twitter followers and Facebook fans in one nice looking box.

20 No CVEs

Developer Profile

Social Fellow Developer Profile

PedroEscudero

3 plugins · 40 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Social Fellow

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/social-fellow/style.css/wp-content/plugins/social-fellow/js/social-fellow.js

Script Paths

//connect.facebook.net/es_ES/sdk.js#xfbml=1&appId=448388558529572&version=v2.3//platform.linkedin.com/in.js//platform.twitter.com/widgets.jshttps://apis.google.com/js/platform.js

Version Parameters

social-fellow/style.css?ver=social-fellow/js/social-fellow.js?ver=

HTML / DOM Fingerprints

CSS Classes

quicktags-toolbarwp-editor-container

Data Attributes

data-href='https://twitter.com/share'data-urldata-size='small'data-counter='right'

JS Globals

INgapi

Shortcode Output

<div class='fb-like'<div class='g-plusone'<script type='IN/Share'

FAQ