Does Social Snap — Social Share Buttons & Click to Tweet have any unpatched vulnerabilities?

No. All known vulnerabilities in Social Snap — Social Share Buttons & Click to Tweet have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Social Snap — Social Share Buttons & Click to Tweet compatible with WordPress 6.9.4?

According to WordPress.org data, Social Snap — Social Share Buttons & Click to Tweet 1.4.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Social Snap — Social Share Buttons & Click to Tweet compatible with PHP 5.2.4+?

Social Snap — Social Share Buttons & Click to Tweet requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Social Snap — Social Share Buttons & Click to Tweet's security score?

Social Snap — Social Share Buttons & Click to Tweet has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Social Snap — Social Share Buttons & Click to Tweet Security & Risk Analysis

wordpress.org/plugins/socialsnap

Social sharing plugin with share buttons for Facebook, X (Twitter), LinkedIn and more. Includes Click to Tweet feature.

10K active installs v1.4.2 PHP 5.2.4+ WP 4.6+ Updated Jan 27, 2026

click-to-tweetfloating-shareshare-buttonssocial-mediasocial-share

A · Safe

CVEs total2

Unpatched0

Last CVEFeb 18, 2025

Plugin page Download

Safety Verdict

Is Social Snap — Social Share Buttons & Click to Tweet Safe to Use in 2026?

Generally Safe

Score 99/100

Social Snap — Social Share Buttons & Click to Tweet has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Feb 18, 2025Updated 2mo ago

Risk Assessment

The Social Snap plugin v1.4.2 exhibits a generally good security posture based on the static analysis. The plugin has a significant attack surface of 31 entry points (AJAX handlers, shortcodes), all of which appear to be protected by authentication checks. Furthermore, the code shows strong adherence to secure coding practices, with 89% of outputs properly escaped and 57% of SQL queries using prepared statements. The absence of any critical or high severity taint flows, unsanitized paths, or critical/high severity vulnerabilities in its history reinforces this positive assessment.

However, a few areas warrant attention. The presence of the `unserialize` function is a known risk, as it can lead to object injection vulnerabilities if not handled with extreme care, especially if user-controlled data is involved. While no specific taint flows were detected from this function, its mere presence is a red flag. Additionally, the plugin has a history of two medium severity CVEs, one of which was related to Cross-site Scripting and the other to Missing Authorization. Although these are not currently unpatched, this historical pattern suggests a tendency towards vulnerabilities that could be exploited by attackers to inject malicious scripts or bypass access controls.

In conclusion, Social Snap v1.4.2 demonstrates a commendable effort in securing its code, particularly in handling its substantial attack surface. The strong emphasis on output escaping and prepared statements is a significant strength. The primary concerns revolve around the potential risks associated with the `unserialize` function and the historical presence of medium severity vulnerabilities that could indicate potential weaknesses in input validation or authorization logic.

Key Concerns

Presence of unserialize function
History of medium severity CVEs

Vulnerabilities

Social Snap — Social Share Buttons & Click to Tweet Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

2 total CVEs

CVE-2024-13615medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Social Media Plugin by Social Snap <= 1.3.6 - Authenticated (Admin+) Stored Cross-Site Scripting

Feb 18, 2025 Patched in 1.4 (65d)

CVE-2024-32805medium · 5.3Missing Authorization

Social Snap <= 1.3.5 - Missing Authorization

Apr 22, 2024 Patched in 1.3.6 (8d)

Code Analysis

Analyzed Mar 16, 2026

Social Snap — Social Share Buttons & Click to Tweet Code Analysis

Dangerous Functions

Raw SQL Queries

30 prepared

Unescaped Output

125

1005 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$meta_value = unserialize( $meta_value );includes\compatibility\class-dpsp-compatibility.php:737

SQL Query Safety

57% prepared53 total queries

Output Escaping

89% escaped1130 total outputs

Data Flows

All sanitized

Data Flow Analysis

7 flows

save_settings (includes\admin\settings\class-settings.php:210)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Social Snap — Social Share Buttons & Click to Tweet Attack Surface

Entry Points31

Unprotected0

AJAX Handlers 23

authwp_ajax_socialsnap_subscribeincludes\admin\class-welcome.php:39

authwp_ajax_socialsnap_settings_saveincludes\admin\settings\class-settings.php:114

authwp_ajax_socialsnap_settings_restoreincludes\admin\settings\class-settings.php:122

authwp_ajax_socialsnap_settings_importincludes\admin\settings\class-settings.php:130

authwp_ajax_ss_ctt_clickedincludes\class-click-to-tweet.php:38

noprivwp_ajax_ss_ctt_clickedincludes\class-click-to-tweet.php:39

authwp_ajax_socialsnap_dpsp_migrateincludes\compatibility\class-dpsp-compatibility.php:48

authwp_ajax_socialsnap_dpsp_migrate_sharesincludes\compatibility\class-dpsp-compatibility.php:51

authwp_ajax_socialsnap_fsb_migrateincludes\compatibility\class-fsb-compatibility.php:47

authwp_ajax_socialsnap_mashshare_migrateincludes\compatibility\class-mashshare-compatibility.php:47

authwp_ajax_socialsnap_mashshare_migrate_sharesincludes\compatibility\class-mashshare-compatibility.php:50

authwp_ajax_socialsnap_sw_migrateincludes\compatibility\class-sw-compatibility.php:47

authwp_ajax_socialsnap_sw_migrate_sharesincludes\compatibility\class-sw-compatibility.php:50

authwp_ajax_ss_sf_countsincludes\follow\class-follow.php:105

noprivwp_ajax_ss_sf_countsincludes\follow\class-follow.php:106

authwp_ajax_socialsnap_dismiss_noticeincludes\functions.php:1310

authwp_ajax_ss_social_share_clicksincludes\share\actions.php:74

noprivwp_ajax_ss_social_share_clicksincludes\share\actions.php:75

authwp_ajax_socialsnap_ss_cache_refreshincludes\share\class-social-share.php:119

authwp_ajax_ss_social_share_totalincludes\share\functions.php:78

noprivwp_ajax_ss_social_share_totalincludes\share\functions.php:79

authwp_ajax_ss_social_share_api_countsincludes\share\functions.php:416

noprivwp_ajax_ss_social_share_api_countsincludes\share\functions.php:417

Shortcodes 8

[ss_click_to_tweet] includes\class-click-to-tweet.php:29

[socialpug_tweet] includes\compatibility\class-dpsp-compatibility.php:55

[mashshare] includes\compatibility\class-mashshare-compatibility.php:54

[click_to_tweet] includes\compatibility\class-sw-compatibility.php:54

[clickToTweet] includes\compatibility\class-sw-compatibility.php:59

[ss_social_follow] includes\follow\class-follow.php:113

[ss_social_share] includes\share\class-social-share.php:112

[ss_on_media_share] includes\share\class-social-share.php:113

WordPress Hooks 88

actionadmin_menuincludes\admin\class-addons.php:44

actionadmin_noticesincludes\admin\class-addons.php:45

actionadmin_enqueue_scriptsincludes\admin\class-admin-page.php:45

actionin_admin_headerincludes\admin\class-admin-page.php:48

filtermanage_post_posts_columnsincludes\admin\class-post-list-table.php:27

filtermanage_page_posts_columnsincludes\admin\class-post-list-table.php:28

actionmanage_posts_custom_columnincludes\admin\class-post-list-table.php:31

actionmanage_page_posts_custom_columnincludes\admin\class-post-list-table.php:32

filtermanage_edit-post_sortable_columnsincludes\admin\class-post-list-table.php:35

filtermanage_edit-page_sortable_columnsincludes\admin\class-post-list-table.php:36

actionpre_get_postsincludes\admin\class-post-list-table.php:38

actionquick_edit_custom_boxincludes\admin\class-post-list-table.php:40

actionsave_postincludes\admin\class-post-list-table.php:41

actionadmin_footerincludes\admin\class-post-list-table.php:42

filterpost_row_actionsincludes\admin\class-post-list-table.php:43

filterpage_row_actionsincludes\admin\class-post-list-table.php:44

filterupdate_footerincludes\admin\class-rating.php:30

filteradmin_footer_textincludes\admin\class-rating.php:31

actionadmin_menuincludes\admin\class-statistics.php:35

actionadmin_menuincludes\admin\class-welcome.php:34

actionadmin_initincludes\admin\class-welcome.php:35

actionadmin_noticesincludes\admin\class-welcome.php:36

actionmedia_buttonsincludes\admin\settings\class-editor.php:35

filteradmin_initincludes\admin\settings\class-editor.php:36

actionplugins_loadedincludes\admin\settings\class-editor.php:39

actionenqueue_block_editor_assetsincludes\admin\settings\class-editor.php:49

actionadmin_footerincludes\admin\settings\class-editor.php:135

filtermce_external_pluginsincludes\admin\settings\class-editor.php:179

filtermce_buttonsincludes\admin\settings\class-editor.php:180

actionload-post.phpincludes\admin\settings\class-metaboxes.php:37

actionload-post-new.phpincludes\admin\settings\class-metaboxes.php:38

actionadmin_enqueue_scriptsincludes\admin\settings\class-metaboxes.php:40

actionadd_meta_boxesincludes\admin\settings\class-metaboxes.php:51

actionsave_postincludes\admin\settings\class-metaboxes.php:54

actionedit_attachmentincludes\admin\settings\class-metaboxes.php:55

actioninitincludes\admin\settings\class-metaboxes.php:366

actionadmin_menuincludes\admin\settings\class-settings.php:43

actioninitincludes\admin\settings\class-settings.php:46

actionsocialsnap_settings_initincludes\admin\settings\class-settings.php:99

actionsocialsnap_live_previewincludes\admin\settings\class-settings.php:100

actionsocialsnap_live_previewincludes\admin\settings\fields\field_social_follow_networks.php:80

actionsocialsnap_live_previewincludes\admin\settings\fields\field_social_share_networks.php:45

actionwidgets_initincludes\class-click-to-tweet-widget.php:190

filtersocialsnap_ctt_settingsincludes\class-click-to-tweet.php:26

actionsocialsnap_live_previewincludes\class-click-to-tweet.php:32

actionplugins_loadedincludes\class-click-to-tweet.php:35

actionwpmu_new_blogincludes\class-install.php:29

actionwp_footerincludes\compatibility\class-bricksbuilder-compatibility.php:23

filtersocialsnap_plugin_migrationincludes\compatibility\class-dpsp-compatibility.php:45

filtersocialsnap_plugin_migrationincludes\compatibility\class-fsb-compatibility.php:44

filtersocialsnap_plugin_migrationincludes\compatibility\class-mashshare-compatibility.php:44

actionwp_enqueue_scriptsincludes\compatibility\class-oxygen-compatibility.php:30

filtersocialsnap_plugin_migrationincludes\compatibility\class-sw-compatibility.php:44

actionwidgets_initincludes\follow\class-follow-widget.php:251

actioninitincludes\follow\class-follow.php:90

actionwpincludes\follow\class-follow.php:92

actionsocialsnap_live_previewincludes\follow\class-follow.php:96

actionplugins_loadedincludes\follow\class-follow.php:99

filtersocialsnap_configured_networksincludes\follow\class-follow.php:102

actionwp_footerincludes\follow\class-follow.php:109

actionadmin_footerincludes\follow\class-follow.php:110

filtersocialsnap_sanitize_usernameincludes\functions.php:418

filtersocialsnap_filter_social_share_networksincludes\functions.php:664

filtersocialsnap_filter_social_follow_networksincludes\functions.php:691

actiondeactivated_pluginincludes\functions.php:1121

actioninitincludes\share\class-social-share.php:104

actioninitincludes\share\class-social-share.php:105

actionwpincludes\share\class-social-share.php:107

actionwpincludes\share\class-social-share.php:108

actionplugins_loadedincludes\share\class-social-share.php:116

filtersocialsnap_complete_shared_permalinkincludes\share\class-social-share.php:121

actionwp_footerincludes\share\class-social-share.php:145

filtersocialsnap_display_position_classesincludes\share\class-social-share.php:166

actionwp_footerincludes\share\class-social-share.php:169

actionwp_footerincludes\share\class-social-share.php:170

actionwp_footerincludes\share\class-social-share.php:189

filterthe_contentincludes\share\class-social-share.php:196

filterthe_excerptincludes\share\class-social-share.php:198

actionwoocommerce_shareincludes\share\class-social-share.php:201

filterthe_contentincludes\share\class-social-share.php:207

filterthe_contentincludes\share\class-social-share.php:208

filterpost_thumbnail_htmlincludes\share\class-social-share.php:209

filterwoocommerce_single_product_image_thumbnail_htmlincludes\share\class-social-share.php:210

filtersocialsnap_share_url_slashes_sanitizeincludes\share\functions.php:381

actionwpincludes\share\functions.php:551

actionadmin_initsocialsnap.php:50

actionadmin_noticessocialsnap.php:66

actionplugins_loadedsocialsnap.php:157

Maintenance & Trust

Social Snap — Social Share Buttons & Click to Tweet Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 27, 2026

PHP min version5.2.4

Downloads602K

Community Trust

Rating84/100

Number of ratings58

Active installs10K

Alternatives

Social Snap — Social Share Buttons & Click to Tweet Alternatives

Plain Social Sharing Buttons

plain-social-sharing-buttons

100

Simple and lightweight social sharing buttons for your wordpress site

0 No CVEs

Social Sharing Plugin – Sassy Social Share

sassy-social-share

The Simplest and Optimized Social Share buttons. Facebook, X, Reddit, Pinterest, Whatsapp, Grok, ChatGPT, Gab, Gettr and over 100 more.

100K 11 CVEs

Simple Social Media Share Buttons – Social Sharing for Everyone

simple-social-buttons

This Social Share Plugin adds advanced social media sharing buttons to your WordPress sites, such as Facebook, WhatsApp, X, LinkedIn, & Pinterest.

20K 7 CVEs

Social Sharing Plugin – Social Warfare

social-warfare

The most beautiful, responsive, lightning fast social share buttons built to boost shares and drive more traffic without slowing down your site.

20K 8 CVEs

WP Socializer – Simple & Easy Social Media Share Icons

wp-socializer

Simple & easy plugin to add social media sharing icons, buttons like Facebook, Twitter, WhatsApp, Instagram & more

10K 1 CVE

Developer Profile

Social Snap — Social Share Buttons & Click to Tweet Developer Profile

Social Snap

1 plugin · 10K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

37 days

View full developer profile

Detection Fingerprints

How We Detect Social Snap — Social Share Buttons & Click to Tweet

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/socialsnap/assets/css/socialsnap.css/wp-content/plugins/socialsnap/assets/js/socialsnap.js/wp-content/plugins/socialsnap/assets/js/admin/socialsnap-admin.js

Generator Patterns

Social Snap by Social Snap

Version Parameters

socialsnap/assets/css/socialsnap.css?ver=socialsnap/assets/js/socialsnap.js?ver=socialsnap/assets/js/admin/socialsnap-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

socialsnap-share-buttonssocialsnap-follow-buttonssocialsnap-click-to-tweet

Data Attributes

data-socialsnap-iddata-socialsnap-share-url

JS Globals

SocialSnapConfig

Shortcode Output

[socialsnap_share_buttons][socialsnap_follow_buttons][socialsnap_click_to_tweet]

FAQ