Does Combine Social Photos | Still BE have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Combine Social Photos | Still BE compatible with WordPress 7.0?

According to WordPress.org data, Combine Social Photos | Still BE 0.20.2 has been tested up to WordPress 7.0. Check the plugin's changelog for the latest compatibility information.

Is Combine Social Photos | Still BE compatible with PHP 8.0+?

Combine Social Photos | Still BE requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Combine Social Photos | Still BE updated?

Combine Social Photos | Still BE was last updated on Apr 6, 2026. Frequent updates are generally a positive security signal.

What is Combine Social Photos | Still BE's security score?

Combine Social Photos | Still BE has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Combine Social Photos | Still BE Security & Risk Analysis

wordpress.org/plugins/still-be-combine-social-photos

Provides Instagram embedding functionality exclusively for WP Block Editor. Your feeds, other Pro accounts' feeds and posts related to hashtags.

700 active installs v0.20.2 PHP 8.0+ WP 6.7+ Updated Apr 6, 2026

blockinstagraminstagram-feedinstagram-photos

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Combine Social Photos | Still BE Safe to Use in 2026?

Generally Safe

Score 100/100

Combine Social Photos | Still BE has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'still-be-combine-social-photos' plugin v0.17.5 demonstrates a generally strong security posture based on the provided static analysis. The absence of identified CVEs and the plugin's clean vulnerability history suggest a commitment to security or a lack of past exploitable issues. The code analysis reveals no dangerous functions, no raw SQL queries, and no file operations, which are all positive indicators. The presence of nonce and capability checks, along with a high percentage of properly escaped output, further reinforces this good practice. However, the presence of external HTTP requests without further context on their sanitization and the 82% output escaping rate (leaving 18% potentially unescaped) are minor areas of concern that warrant attention. The complete lack of identified taint flows is a significant positive, suggesting no obvious pathways for malicious data to enter and execute. While the current version appears secure, ongoing vigilance and regular security audits are always recommended for any plugin, especially those making external requests.

Key Concerns

External HTTP requests detected
Output escaping not fully comprehensive (18% unescaped)

Vulnerabilities

None known

Combine Social Photos | Still BE Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Combine Social Photos | Still BE Release Timeline

v0.20.2Current

v0.20.1

v0.20.0

v0.17.5

v0.17.2

v0.17.1

v0.17.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.2

v0.14.1

v0.14.0

v0.13.5

v0.13.4

v0.13.3

v0.13.2

v0.13.1

v0.13.0

Code Analysis

Analyzed Mar 16, 2026

Combine Social Photos | Still BE Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

409 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

82% escaped497 total outputs

Attack Surface

Combine Social Photos | Still BE Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 24

actionall_admin_noticesincludes\class\class-admin-notice.php:60

actionall_admin_noticesincludes\class\class-admin-notice.php:61

actionall_admin_noticesincludes\class\class-admin-notice.php:62

filterblock_categories_allincludes\class\class-blocks.php:47

actioninitincludes\class\class-blocks.php:50

actionadmin_enqueue_scriptsincludes\class\class-blocks.php:53

actionwp_enqueue_scriptsincludes\class\class-blocks.php:56

filterbody_classincludes\class\class-blocks.php:59

filtercron_schedulesincludes\class\class-cron.php:53

actionrest_api_initincludes\class\class-main.php:43

actionadmin_enqueue_scriptsincludes\class\class-main.php:47

filterplugin_action_linksincludes\class\class-main.php:50

filterplugin_row_metaincludes\class\class-main.php:53

filterstillbe_csp_admin_js_translate_handlesincludes\class\class-main.php:139

actionrequests-requests.before_requestincludes\class\class-rest-api.php:468

actionwpincludes\class\class-setting.php:69

actionadmin_menuincludes\class\class-setting.php:84

filterplugin_action_linksincludes\class\class-setting.php:100

actionadmin_enqueue_scriptsincludes\class\class-setting.php:119

actionadmin_initincludes\class\class-setting.php:135

actionall_admin_noticesincludes\class\class-setting.php:145

actionadmin_initincludes\class\class-setting.php:407

actionadmin_initincludes\class\class-setting.php:428

actionadmin_initincludes\class\class-setting.php:458

Maintenance & Trust

Combine Social Photos | Still BE Maintenance & Trust

Maintenance Signals

WordPress version tested7.0

Last updatedApr 6, 2026

PHP min version8.0

Downloads12K

Community Trust

Rating100/100

Number of ratings2

Active installs700

Alternatives

Combine Social Photos | Still BE Alternatives

Smash Balloon Social Photo Feed – Easy Social Feeds Plugin

instagram-feed

Formerly "Instagram Feed". Display clean, customizable, and responsive Instagram feeds from multiple accounts. Supports Instagram oEmbeds.

1.0M 4 CVEs

WPZOOM Social Feed Widget & Block

instagram-widget-by-wpzoom

100

Instagram feed plugin for WordPress: Display your Instagram photos, videos & reels. Easy setup with Gutenberg block, widget, shortcode & Elementor

60K 1 CVE

Spotlight Social Feeds – Block, Shortcode, and Widget

spotlight-social-photo-feeds

Instagram feeds made easy. Responsive, customizable, accessible, and SEO-friendly out of the box. Includes Instagram blocks & oEmbed support.

60K 3 CVEs

Easy Social Feed – Social Photos Gallery and Post Feed for WordPress

easy-facebook-likebox

Display Instagram, Facebook & YouTube feeds with photos, videos, reels, events & galleries. Fast, responsive & easy to set up.

30K 10 CVEs

Widgets for Social Photo Feed

social-photo-feed-widget

Instagram Feed Widgets. Display your Instagram feed on your website to increase engagement, sales and SEO.

10K 1 unpatched

Developer Profile

Combine Social Photos | Still BE Developer Profile

Daisuke Yamamoto

2 plugins · 1K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Combine Social Photos | Still BE

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/still-be-combine-social-photos/blocks/simple-grid/common.css/wp-content/plugins/still-be-combine-social-photos/blocks/simple-grid/editor.css/wp-content/plugins/still-be-combine-social-photos/blocks/simple-grid/editor.js/wp-content/plugins/still-be-combine-social-photos/blocks/simple-slider/common.css/wp-content/plugins/still-be-combine-social-photos/blocks/simple-slider/editor.css/wp-content/plugins/still-be-combine-social-photos/blocks/simple-slider/editor.js/wp-content/plugins/still-be-combine-social-photos/blocks/masonry-grid/common.css/wp-content/plugins/still-be-combine-social-photos/blocks/masonry-grid/editor.css+4 more

HTML / DOM Fingerprints

CSS Classes

sb-csp-enabled-dark-mode

FAQ