Does WP Social Stream Designer have any unpatched vulnerabilities?

Yes — WP Social Stream Designer currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is WP Social Stream Designer compatible with WordPress 6.6.5?

According to WordPress.org data, WP Social Stream Designer 1.3 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

How often is WP Social Stream Designer updated?

WP Social Stream Designer was last updated on Aug 9, 2024. Frequent updates are generally a positive security signal.

What is WP Social Stream Designer's security score?

WP Social Stream Designer has a WP-Safety security score of 70/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Social Stream Designer Security & Risk Analysis

wordpress.org/plugins/social-stream-design

WP Social Stream Designer is a step ahead WordPress plugin that allows you to create, design and showcase your social post in more pretty, attractive …

30 active installs v1.3 PHP + WP 5.4+ Updated Aug 9, 2024

social-feedsocial-media-aggregatorsocial-media-embedsocial-media-feedsocial-media-wall

B · Generally Safe

CVEs total1

Unpatched1

Last CVEApr 9, 2025

Plugin page Download

Safety Verdict

Is WP Social Stream Designer Safe to Use in 2026?

Mostly Safe

Score 70/100

WP Social Stream Designer is generally safe to use though it hasn't been updated recently. 1 past CVE were resolved. Keep it updated.

1 known CVE 1 unpatched Last CVE: Apr 9, 2025Updated 1yr ago

Risk Assessment

The "social-stream-design" plugin v1.3 generally exhibits good security practices. The static analysis reveals a comprehensive use of prepared statements for SQL queries, a very high percentage of properly escaped output, and a robust implementation of nonce and capability checks. The absence of critical or high severity taint analysis findings and the minimal attack surface without authentication are positive indicators. However, the presence of a known, unpatched medium severity vulnerability, specifically related to SQL injection, significantly elevates the risk. This history suggests a recurring issue with input sanitization for SQL operations, which, despite general good practices, has led to a past exploit. The plugin's strengths lie in its secure coding habits for most operations, but the single, unpatched SQL injection vulnerability represents a critical blind spot that requires immediate attention and mitigation.

Key Concerns

Unpatched CVE (Medium Severity)
SQL Injection historical trend

Vulnerabilities

WP Social Stream Designer Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-32677medium · 4.9Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

WP Social Stream Designer <= 1.3 - Authenticated (Administrator+) SQL Injection

Apr 9, 2025Unpatched

Code Analysis

Analyzed Mar 16, 2026

WP Social Stream Designer Code Analysis

Dangerous Functions

Raw SQL Queries

38 prepared

Unescaped Output

538 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

84% prepared45 total queries

Output Escaping

99% escaped543 total outputs

Data Flows

All sanitized

Data Flow Analysis

9 flows

ssd_feeds_shortcode (class-socialstream.php:127)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WP Social Stream Designer Attack Surface

Entry Points10

Unprotected0

AJAX Handlers 9

noprivwp_ajax_ssd_action_check_for_refresh_feedclass-socialstream.php:28

authwp_ajax_ssd_action_check_for_refresh_feedclass-socialstream.php:29

authwp_ajax_ssd_update_feed_statusclass-socialstream.php:30

authwp_ajax_ssd_update_feed_live_statusclass-socialstream.php:31

authwp_ajax_ssd_set_orderclass-socialstream.php:32

authwp_ajax_ssd_corner_iconclass-socialstream.php:33

authwp_ajax_ssd_update_sticky_onclass-socialstream.php:34

authwp_ajax_ssd_reset_layout_settingsclass-socialstream.php:35

authwp_ajax_ssd_update_drag_drop_builderinclude\class-social-stream-main.php:19

Shortcodes 1

[social_stream_feeds] class-socialstream.php:36

WordPress Hooks 14

actionadmin_menuclass-socialstream.php:18

actionadmin_initclass-socialstream.php:19

actionadmin_initclass-socialstream.php:20

actionadmin_initclass-socialstream.php:21

actionadmin_enqueue_scriptsclass-socialstream.php:22

actionwp_enqueue_scriptsclass-socialstream.php:23

filterset-screen-optionclass-socialstream.php:24

actionplugins_loadedclass-socialstream.php:25

actionadmin_headclass-socialstream.php:26

actionwp_headclass-socialstream.php:27

actionadmin_footerinclude\class-social-stream-main.php:17

actionadmin_noticesinclude\class-social-stream-main.php:18

actionwp_headsocial-stream-design.php:23

actionadmin_headsocial-stream-design.php:24

Maintenance & Trust

WP Social Stream Designer Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedAug 9, 2024

PHP min version

Downloads4K

Community Trust

Rating20/100

Number of ratings1

Active installs30

Alternatives

WP Social Stream Designer Alternatives

Walls.io: Social Media Feed

wallsio

100

Embed Walls.io social walls into WordPress posts with just one click!

1K No CVEs

Flockler: Add Social Media Feeds to WordPress

flockler

Flockler is a Social Media Aggregator helping you to gather and display social media feeds from Instagram, Facebook, Twitter, YouTube, and more.

500 No CVEs

SocialMediaStream: Show all your social media network posts in one social media stream.

socialmediastream

Aggregate and embed your social media posts on your site (Facebook, Twitter, Instagram and many more) as a beautiful social media stream.

10 No CVEs

EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more

embedpress

EmbedPress lets you embed videos, pages, social feeds, embed PDF 3D flipbooks & other content on WordPress without coding & enhance storytelling.

100K 27 CVEs

WP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets

wp-social-reviews

Add Facebook feeds, Instagram feeds, TikTok feeds, Facebook reviews, WhatsApp Chat, Messenger chat, Testimonial, and others using a single dashboard.

30K 3 CVEs

Developer Profile

WP Social Stream Designer Developer Profile

solwininfotech

7 plugins · 14K total installs

trust score

Avg Security Score

82/100

Avg Patch Time

642 days

View full developer profile

Detection Fingerprints

How We Detect WP Social Stream Designer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/social-stream-design/admin/assets/css/style.css/wp-content/plugins/social-stream-design/admin/assets/css/ssd_admin_menu.css/wp-content/plugins/social-stream-design/admin/assets/css/ssd_layout_style.css/wp-content/plugins/social-stream-design/admin/assets/css/ssd_feed_style.css/wp-content/plugins/social-stream-design/admin/assets/js/ssd_admin_scripts.js/wp-content/plugins/social-stream-design/admin/assets/js/ssd_add_feed.js/wp-content/plugins/social-stream-design/admin/assets/js/ssd_layout.js/wp-content/plugins/social-stream-design/admin/assets/js/ssd_feed.js+2 more

Script Paths

/wp-content/plugins/social-stream-design/admin/assets/js/ssd_admin_scripts.js/wp-content/plugins/social-stream-design/admin/assets/js/ssd_add_feed.js/wp-content/plugins/social-stream-design/admin/assets/js/ssd_layout.js/wp-content/plugins/social-stream-design/admin/assets/js/ssd_feed.js/wp-content/plugins/social-stream-design/include/frontend/assets/js/ssd_frontend.js

Version Parameters

social-stream-design/admin/assets/css/style.css?ver=social-stream-design/admin/assets/css/ssd_admin_menu.css?ver=social-stream-design/admin/assets/css/ssd_layout_style.css?ver=social-stream-design/admin/assets/css/ssd_feed_style.css?ver=social-stream-design/admin/assets/js/ssd_admin_scripts.js?ver=social-stream-design/admin/assets/js/ssd_add_feed.js?ver=social-stream-design/admin/assets/js/ssd_layout.js?ver=social-stream-design/admin/assets/js/ssd_feed.js?ver=social-stream-design/include/frontend/assets/css/ssd_frontend.css?ver=social-stream-design/include/frontend/assets/js/ssd_frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

ssd_admin_menussd_layout_main_wrapperssd_feed_main_wrapperssd_frontend_wrapper

Data Attributes

data-ssd-feed-id

JS Globals

ssd_admin_script_objectssd_frontend_ajax_object

Shortcode Output

[social_stream_feeds

FAQ