WP-Safety

Social Footprint Security & Risk Analysis

wordpress.org/plugins/social-footprint

Analyse the virality of your content across a range of social networks.

10 active installs v1.0 PHP + WP 3.8.0+ Updated Mar 14, 2016
sharingsocialstats
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Social Footprint Safe to Use in 2026?

Generally Safe

Score 85/100

Social Footprint has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago
Risk Assessment

The "social-footprint" plugin version 1.0 exhibits a mixed security posture. While the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and avoiding bundled libraries, several significant security concerns are present. A notable weakness is the presence of 7 AJAX handlers, with a concerning 4 of them lacking authentication checks. This significantly expands the attack surface without proper authorization, potentially allowing unauthenticated users to trigger unintended actions. Additionally, the taint analysis revealed one flow with unsanitized paths, which, while not rated as critical or high severity in this analysis, still indicates a potential risk of path traversal or file inclusion vulnerabilities if exploited in conjunction with other factors. The complete lack of known vulnerabilities in its history is a positive indicator, suggesting a generally secure development history or a lack of targeted attacks. However, the identified code-level weaknesses, particularly the unprotected AJAX endpoints, necessitate immediate attention to mitigate potential risks.

Key Concerns

  • Unprotected AJAX handlers
  • Flow with unsanitized paths (Taint Analysis)
  • Low output escaping percentage
  • Missing capability checks
  • Dangerous function detected (set_time_limit)
Vulnerabilities
None known

Social Footprint Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Social Footprint Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

Social Footprint Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
44
6 escaped
Nonce Checks
4
Capability Checks
0
File Operations
2
External Requests
2
Bundled Libraries
0

Dangerous Functions Found

set_time_limitset_time_limit(0);includes/PagesSocialStatsPlugin.php:381

Output Escaping

12% escaped50 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths
action_manage_urls (includes/PagesSocialStatsPlugin.php:339)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
4 unprotected

Social Footprint Attack Surface

Entry Points7
Unprotected4

AJAX Handlers 7

authwp_ajax_import_post_into_ascincludes/PagesSocialStatsPlugin.php:114
authwp_ajax__fetch_ajax_responseincludes/PagesSocialStatsPlugin.php:116
authwp_ajax__delete_an_itemincludes/PagesSocialStatsPlugin.php:117
authwp_ajax__refresh_an_itemincludes/PagesSocialStatsPlugin.php:118
authwp_ajax__delete_selected_urlsincludes/PagesSocialStatsPlugin.php:119
authwp_ajax__reload_table_dataincludes/PagesSocialStatsPlugin.php:120
authwp_ajax__refresh_selected_urlsincludes/PagesSocialStatsPlugin.php:121
WordPress Hooks 2
actionadmin_menuauthorship-social-counter.php:20
actionadmin_enqueue_scriptsincludes/PagesSocialStatsPlugin.php:113
Maintenance & Trust

Social Footprint Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40
Last updatedMar 14, 2016
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Social Footprint Alternatives

Social Engage Plugin

Social Engage Plugin

social-engage

A
85

Get your social network shares, likes, tweets, and view counts of posts from different social networks.

10 No CVEs
Social Icons Widget & Block – Social Media Icons & Share Buttons

Social Icons Widget & Block – Social Media Icons & Share Buttons

social-icons-widget-by-wpzoom

A
96

Social media icons plugin for WordPress - Add 400+ social icons and share buttons. Gutenberg block, widget & Elementor support. GDPR compliant.

100K 3 CVEs
Buttonizer – Floating Menus, Sticky Buttons, & Popup Builder

Buttonizer – Floating Menus, Sticky Buttons, & Popup Builder

buttonizer-multifunctional-button

A
100

Floating Menus, Sticky Buttons, & Popup builder. WhatsApp Chat, Facebook Messenger, Telegram, Live Chat, Call, SMS, Email & more.

70K 1 CVE
Ocean Social Sharing

Ocean Social Sharing

ocean-social-sharing

A
99

Website: https://oceanwp.org/ Support: https://oceanwp.org/support/ Documentation: https://docs.oceanwp.org/ Extensions: https://oceanwp.

70K 1 CVE
Jetpack Social

Jetpack Social

jetpack-social

A
100

Write once, publish everywhere. Reach your target audience by sharing your content with Jetpack Social!

30K No CVEs
Developer Profile

Social Footprint Developer Profile

Matthew Barby

2 plugins · 40 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Social Footprint

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/social-footprint/css/style.css/wp-content/plugins/social-footprint/js/authorship-social-counter.js
Script Paths
/wp-content/plugins/social-footprint/js/authorship-social-counter.js
Version Parameters
social-footprint/style.css?ver=social-footprint/authorship-social-counter.js?ver=

HTML / DOM Fingerprints

CSS Classes
authorship_social_counter_stats
Data Attributes
data-authorship-social-counter-stats
JS Globals
authorship_social_counter_stats_ajax_object
Shortcode Output
[authorship_social_counter_stats]
FAQ

Frequently Asked Questions about Social Footprint