Does Social Media Auto Publisher – Schedule & Publish Posts have any unpatched vulnerabilities?

No. All known vulnerabilities in Social Media Auto Publisher – Schedule & Publish Posts have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Social Media Auto Publisher – Schedule & Publish Posts compatible with WordPress 6.9.4?

According to WordPress.org data, Social Media Auto Publisher – Schedule & Publish Posts 1.2.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Social Media Auto Publisher – Schedule & Publish Posts compatible with PHP 7.4+?

Social Media Auto Publisher – Schedule & Publish Posts requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Social Media Auto Publisher – Schedule & Publish Posts's security score?

Social Media Auto Publisher – Schedule & Publish Posts has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Social Media Auto Publisher – Schedule & Publish Posts Security & Risk Analysis

wordpress.org/plugins/social-post-flow

Auto publish WordPress posts to Facebook, X/Twitter, Threads, Instagram, LinkedIn, Pinterest, TikTok, Mastodon and Bluesky.

80 active installs v1.2.4 PHP 7.4+ WP 6.0+ Updated Mar 4, 2026

auto-postinstagramlinkedinsocial-mediatwitter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Social Media Auto Publisher – Schedule & Publish Posts Safe to Use in 2026?

Generally Safe

Score 100/100

Social Media Auto Publisher – Schedule & Publish Posts has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "social-post-flow" plugin version 1.2.4 presents a generally strong security posture, largely due to its adherence to secure coding practices. The static analysis indicates a robust implementation with a very high percentage of prepared SQL statements and properly escaped output, minimizing common web vulnerabilities. The plugin also demonstrates good use of nonces and capability checks, and crucially, all identified AJAX handlers have authentication checks, which is a significant strength. The absence of known CVEs further contributes to a positive security outlook.

However, the taint analysis reveals a notable concern. Five out of six analyzed flows have unsanitized paths, all categorized as high severity. While there are no critical taint flows, and the plugin doesn't have historical vulnerabilities, this pattern of unsanitized paths within the taint analysis warrants attention. This suggests potential issues where user-supplied data might not be adequately validated or sanitized before being used in sensitive operations, potentially leading to vulnerabilities if exploited. The presence of bundled libraries like TinyMCE also introduces a dependency that needs to be kept updated, though no specific issues are flagged in the provided data.

In conclusion, "social-post-flow" v1.2.4 benefits from strong foundational security practices. The main area of concern lies within the taint analysis, specifically the high number of unsanitized paths. Addressing these identified taint flows should be the primary focus for improving the plugin's security. The lack of historical vulnerabilities is a positive indicator, but the current taint analysis suggests that proactive security review and remediation of these specific code paths are essential to maintain a secure status.

Key Concerns

High severity unsanitized paths in taint analysis

Vulnerabilities

None known

Social Media Auto Publisher – Schedule & Publish Posts Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Social Media Auto Publisher – Schedule & Publish Posts Code Analysis

Dangerous Functions

Raw SQL Queries

29 prepared

Unescaped Output

799 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

TinyMCE

SQL Query Safety

97% prepared30 total queries

Output Escaping

98% escaped814 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

6 flows5 with unsanitized paths

<class-wpzincdashboardwidget> (_modules\dashboard\class-wpzincdashboardwidget.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Social Media Auto Publisher – Schedule & Publish Posts Attack Surface

Entry Points12

Unprotected0

AJAX Handlers 12

authwp_ajax_social_post_flow_usernames_search_facebookincludes\class-social-post-flow-ajax.php:25

authwp_ajax_social_post_flow_save_statusesincludes\class-social-post-flow-ajax.php:26

authwp_ajax_social_post_flow_save_statuses_postincludes\class-social-post-flow-ajax.php:27

authwp_ajax_social_post_flow_get_status_rowincludes\class-social-post-flow-ajax.php:28

authwp_ajax_social_post_flow_character_countincludes\class-social-post-flow-ajax.php:29

authwp_ajax_social_post_flow_get_logincludes\class-social-post-flow-ajax.php:30

authwp_ajax_social_post_flow_clear_logincludes\class-social-post-flow-ajax.php:31

authwp_ajax_social_post_flow_search_termsincludes\class-social-post-flow-ajax.php:32

authwp_ajax_social_post_flow_search_authorsincludes\class-social-post-flow-ajax.php:33

authwp_ajax_social_post_flow_search_rolesincludes\class-social-post-flow-ajax.php:34

authwp_ajax_social_post_flow_bulk_publishincludes\class-social-post-flow-ajax.php:35

authwp_ajax_social_post_flow_repost_testincludes\class-social-post-flow-ajax.php:36

WordPress Hooks 109

actionsocial_post_flow_api_get_access_tokenincludes\class-social-post-flow-admin.php:37

actionsocial_post_flow_api_refresh_tokenincludes\class-social-post-flow-admin.php:38

actioninitincludes\class-social-post-flow-admin.php:39

actioninitincludes\class-social-post-flow-admin.php:40

actioninitincludes\class-social-post-flow-admin.php:41

actionadmin_noticesincludes\class-social-post-flow-admin.php:42

actionadmin_enqueue_scriptsincludes\class-social-post-flow-admin.php:43

actionadmin_menuincludes\class-social-post-flow-admin.php:44

filterplugin_action_links_social-post-flow/social-post-flow.phpincludes\class-social-post-flow-admin.php:45

actionadmin_footerincludes\class-social-post-flow-admin.php:687

actionadmin_footerincludes\class-social-post-flow-admin.php:836

actionadmin_initincludes\class-social-post-flow-bulk-actions.php:26

actionsocial_post_flow_exportincludes\class-social-post-flow-export.php:26

actionsocial_post_flow_importincludes\class-social-post-flow-import.php:25

filterset-screen-optionincludes\class-social-post-flow-log.php:43

actioncurrent_screenincludes\class-social-post-flow-log.php:44

actioncurrent_screenincludes\class-social-post-flow-log.php:45

actionadmin_menuincludes\class-social-post-flow-log.php:46

actionwp_loadedincludes\class-social-post-flow-log.php:47

filterwp_image_editorsincludes\class-social-post-flow-media-library.php:35

actionadmin_noticesincludes\class-social-post-flow-post.php:26

actionadmin_menuincludes\class-social-post-flow-post.php:29

actionsave_postincludes\class-social-post-flow-post.php:30

actionadmin_footerincludes\class-social-post-flow-post.php:234

actionwp_loadedincludes\class-social-post-flow-publish.php:46

actionsocial-post-flowincludes\class-social-post-flow-publish.php:47

actiontransition_post_statusincludes\class-social-post-flow-publish.php:58

actionwp_insert_postincludes\class-social-post-flow-publish.php:121

actionwp_insert_postincludes\class-social-post-flow-publish.php:148

actionwp_insert_postincludes\class-social-post-flow-publish.php:169

actionwp_insert_postincludes\class-social-post-flow-publish.php:217

actionwp_insert_postincludes\class-social-post-flow-publish.php:265

filterthe_contentincludes\class-social-post-flow-publish.php:3307

actionafter_plugin_row_social-post-flow/social-post-flow.phpincludes\class-social-post-flow-user-access.php:34

filtersocial_post_flow_notices_get_noticesincludes\class-social-post-flow-user-access.php:35

actioninitincludes\class-social-post-flow.php:96

actioninitincludes\class-social-post-flow.php:97

actionsocial_post_flow_admin_admin_menuincludes\class-social-post-flow.php:100

actionsocial_post_flow_publish_cronincludes\cron.php:30

actionsocial_post_flow_repost_cronincludes\cron.php:50

actionsocial_post_flow_log_cleanup_cronincludes\cron.php:70

actionsocial_post_flow_media_cleanup_cronincludes\cron.php:91

actionsocial_post_flow_user_access_cronincludes\cron.php:111

filtersocial_post_flow_get_status_image_optionsincludes\integrations\class-social-post-flow-acf.php:31

filtersocial_post_flow_get_status_additional_image_optionsincludes\integrations\class-social-post-flow-acf.php:32

filtersocial_post_flow_publish_build_args_imageincludes\integrations\class-social-post-flow-acf.php:33

filtersocial_post_flow_publish_get_additional_imagesincludes\integrations\class-social-post-flow-acf.php:34

filtersocial_post_flow_get_opengraph_seo_pluginsincludes\integrations\class-social-post-flow-aioseo.php:25

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-aioseo.php:28

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-aioseo.php:31

filterenvira_gallery_metabox_idsincludes\integrations\class-social-post-flow-envira-gallery.php:24

filtersocial_post_flow_get_schedule_optionsincludes\integrations\class-social-post-flow-events-manager.php:25

actionsocial_post_flow_output_schedule_options_form_fieldsincludes\integrations\class-social-post-flow-events-manager.php:28

filtersocial_post_flow_settings_get_status_row_scheduleincludes\integrations\class-social-post-flow-events-manager.php:31

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-events-manager.php:34

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-events-manager.php:37

filtersocial_post_flow_publish_builds_args_schedule__event_start_dateincludes\integrations\class-social-post-flow-events-manager.php:40

filtersocial_post_flow_publish_builds_args_schedule__event_end_dateincludes\integrations\class-social-post-flow-events-manager.php:41

filtersocial_post_flow_get_google_business_start_date_optionsincludes\integrations\class-social-post-flow-events-manager.php:44

filtersocial_post_flow_get_google_business_end_date_optionsincludes\integrations\class-social-post-flow-events-manager.php:45

filtersocial_post_flow_publish_parse_google_business_start_date__event_start_localincludes\integrations\class-social-post-flow-events-manager.php:48

filtersocial_post_flow_publish_parse_google_business_end_date__event_end_localincludes\integrations\class-social-post-flow-events-manager.php:49

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-featured-image-caption.php:25

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-featured-image-caption.php:28

filtersocial_post_flow_get_schedule_optionsincludes\integrations\class-social-post-flow-modern-events-calendar.php:34

actionsocial_post_flow_output_schedule_options_form_fieldsincludes\integrations\class-social-post-flow-modern-events-calendar.php:37

filtersocial_post_flow_settings_get_status_row_scheduleincludes\integrations\class-social-post-flow-modern-events-calendar.php:40

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-modern-events-calendar.php:43

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-modern-events-calendar.php:46

filtersocial_post_flow_publish_builds_args_schedule_mec_start_datetimeincludes\integrations\class-social-post-flow-modern-events-calendar.php:49

filtersocial_post_flow_publish_builds_args_schedule_mec_end_datetimeincludes\integrations\class-social-post-flow-modern-events-calendar.php:50

filtersocial_post_flow_get_google_business_start_date_optionsincludes\integrations\class-social-post-flow-modern-events-calendar.php:53

filtersocial_post_flow_get_google_business_end_date_optionsincludes\integrations\class-social-post-flow-modern-events-calendar.php:54

filtersocial_post_flow_publish_parse_google_business_start_date_mec_start_datetimeincludes\integrations\class-social-post-flow-modern-events-calendar.php:57

filtersocial_post_flow_publish_parse_google_business_end_date_mec_end_datetimeincludes\integrations\class-social-post-flow-modern-events-calendar.php:58

filtersocial_post_flow_get_opengraph_seo_pluginsincludes\integrations\class-social-post-flow-rank-math.php:25

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-rank-math.php:28

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-rank-math.php:31

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-seopress.php:25

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-seopress.php:28

filtersocial_post_flow_get_schedule_optionsincludes\integrations\class-social-post-flow-the-events-calendar.php:25

actionsocial_post_flow_output_schedule_options_form_fieldsincludes\integrations\class-social-post-flow-the-events-calendar.php:28

filtersocial_post_flow_settings_get_status_row_scheduleincludes\integrations\class-social-post-flow-the-events-calendar.php:31

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-the-events-calendar.php:34

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-the-events-calendar.php:37

filtersocial_post_flow_publish_builds_args_schedule__EventStartDateincludes\integrations\class-social-post-flow-the-events-calendar.php:40

filtersocial_post_flow_publish_builds_args_schedule__EventEndDateincludes\integrations\class-social-post-flow-the-events-calendar.php:41

filtersocial_post_flow_get_google_business_start_date_optionsincludes\integrations\class-social-post-flow-the-events-calendar.php:44

filtersocial_post_flow_get_google_business_end_date_optionsincludes\integrations\class-social-post-flow-the-events-calendar.php:45

filtersocial_post_flow_publish_parse_google_business_start_date__EventStartDateincludes\integrations\class-social-post-flow-the-events-calendar.php:48

filtersocial_post_flow_publish_parse_google_business_end_date__EventEndDateincludes\integrations\class-social-post-flow-the-events-calendar.php:49

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-woocommerce.php:25

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-woocommerce.php:28

filtersocial_post_flow_settings_get_default_statusincludes\integrations\class-social-post-flow-wpml.php:26

actionsocial_post_flow_output_condition_form_fieldsincludes\integrations\class-social-post-flow-wpml.php:29

actionsocial_post_flow_publish_status_conditions_metincludes\integrations\class-social-post-flow-wpml.php:32

filtersocial_post_flow_get_opengraph_seo_pluginsincludes\integrations\class-social-post-flow-yoast-seo.php:25

filtersocial_post_flow_get_tagsincludes\integrations\class-social-post-flow-yoast-seo.php:28

filtersocial_post_flow_publish_get_all_possible_searches_replacementsincludes\integrations\class-social-post-flow-yoast-seo.php:31

actionwp_insert_sitesocial-post-flow.php:98

actionwpmu_new_blogsocial-post-flow.php:100

actionactivate_blogsocial-post-flow.php:102

filteradmin_body_class_modules\dashboard\class-wpzincdashboardwidget.php:123

actionadmin_enqueue_scripts_modules\dashboard\class-wpzincdashboardwidget.php:124

actionadmin_notices_modules\dashboard\class-wpzincdashboardwidget.php:137

filteradmin_footer_text_modules\dashboard\class-wpzincdashboardwidget.php:138

actioninit_modules\dashboard\class-wpzincdashboardwidget.php:142

actioninit_modules\dashboard\class-wpzincdashboardwidget.php:143

filterallowed_redirect_hosts_modules\dashboard\class-wpzincdashboardwidget.php:146

Scheduled Events 5

social_post_flow_log_cleanup_cron

social_post_flow_media_cleanup_cron

social_post_flow_repost_cron

social_post_flow_user_access_cron

social_post_flow_publish_cron

Maintenance & Trust

Social Media Auto Publisher – Schedule & Publish Posts Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 4, 2026

PHP min version7.4

Downloads3K

Community Trust

Rating88/100

Number of ratings7

Active installs80

Alternatives

Social Media Auto Publisher – Schedule & Publish Posts Alternatives

Social Media Widget

social-media-widget

Adds links to all of your social media and sharing site profiles. Tons of icons come in 3 sizes, 4 icon styles, and 4 animations.

30K 3 CVEs

Tagembed: Embed Twitter Feed, Google Reviews, YouTube Videos, TikTok, RSS Feed & More Social Media Feeds

tagembed-widget

Collect & Embed Instagram Feed, Embed Facebook Feed, Embed YouTube Videos, Embed Twitter Feed, Google Reviews & 15+ Social Media Feed on website.

10K 2 CVEs

Juicer.io: Effortlessly embed, curate, and aggregate social media feeds into your website

juicer

100

Aggregate social media posts and hashtags from Instagram, X (Twitter), Facebook, LinkedIn, YouTube, and more into a stunning feed on your website.

9K 1 CVE

Social Media Auto Publish

social-media-auto-publish

Publish posts automatically to social media networks like Facebook, Twitter, Instagram, Tumblr, LinkedIn, Threads and Telegram.

7K 1 CVE

Curator.io

curatorio

Aggregate and embed your social media posts on your site (Facebook, Twitter, Instagram, Pinterest and many more) as a beautiful social media feed.

2K 2 CVEs

Developer Profile

Social Media Auto Publisher – Schedule & Publish Posts Developer Profile

Social Post Flow

1 plugin · 80 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Social Media Auto Publisher – Schedule & Publish Posts

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/social-post-flow/includes/admin/css/social-post-flow-admin.css/wp-content/plugins/social-post-flow/includes/admin/js/social-post-flow-admin.js

Script Paths

/wp-content/plugins/social-post-flow/includes/admin/js/social-post-flow-admin.js

Version Parameters

social-post-flow/includes/admin/css/social-post-flow-admin.css?ver=social-post-flow/includes/admin/js/social-post-flow-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

social-post-flow-noticesocial-post-flow-connectedsocial-post-flow-connect-button

HTML Comments

<!-- If this is the first time the user has connected their account, automatically enable the Posts > Publish action for all profiles connected to the user's account. -->

+4 more

Data Attributes

data-social-post-flow-iddata-social-post-flow-post-iddata-social-post-flow-post-type

JS Globals

social_post_flow_admin_vars

FAQ