Does Twitter SP2 have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Twitter SP2 compatible with WordPress 2.8.4?

According to WordPress.org data, Twitter SP2 0.6.1 has been tested up to WordPress 2.8.4. Check the plugin's changelog for the latest compatibility information.

How often is Twitter SP2 updated?

Twitter SP2 was last updated on Sep 14, 2009. Frequent updates are generally a positive security signal.

What is Twitter SP2's security score?

Twitter SP2 has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Twitter SP2 Security & Risk Analysis

wordpress.org/plugins/twitter-sp2

A Wordpress plugin that posts on Twitter a link to your post shorten via sp2.ro when you publish a blog post.

10 active installs v0.6.1 PHP + WP 2.6+ Updated Sep 14, 2009

digestintegrateintegrationnotifypost

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Twitter SP2 Safe to Use in 2026?

Generally Safe

Score 85/100

Twitter SP2 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 16yr ago

Risk Assessment

The "twitter-sp2" plugin v0.6.1 exhibits a generally positive security posture based on the provided static analysis. The absence of any identified attack surface points, dangerous functions, direct SQL queries, file operations, external HTTP requests, nonce checks, or capability checks is a significant strength. Furthermore, the lack of any recorded historical vulnerabilities, including CVEs, suggests a history of stable and secure development. The taint analysis also shows no identified flows, indicating no immediate signs of cross-site scripting (XSS) or other data injection vulnerabilities based on the analyzed flows.

However, a notable concern is the complete lack of output escaping, with 0% of the 6 identified outputs being properly escaped. This represents a significant risk for potential cross-site scripting (XSS) vulnerabilities, where unsanitized data could be injected and executed in a user's browser. While the attack surface appears minimal and there are no historical vulnerabilities, the presence of unescaped output creates a critical weakness that could be exploited. The plugin's strengths lie in its minimal attack surface and lack of historical issues, but the unescaped output is a serious flaw that needs immediate attention.

Key Concerns

0% output escaping on 6 outputs

Vulnerabilities

None known

Twitter SP2 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Twitter SP2 Release Timeline

v0.6

v0.5

v0.4

v0.3

v0.2

v0.1.1

v0.1

Code Analysis

Analyzed Apr 16, 2026

Twitter SP2 Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped6 total outputs

Attack Surface

Twitter SP2 Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 11

actionadmin_menutwitter-sp2.php:27

actionadmin_menutwitter-sp2.php:28

actionadmin_noticestwitter-sp2.php:30

actionsave_posttwitter-sp2.php:32

actionadmin_headtwitter-sp2.php:33

actionpublish_posttwitter-sp2.php:38

actiondraft_to_publishtwitter-sp2.php:40

actionfuture_to_publishtwitter-sp2.php:41

actionpending_to_publishtwitter-sp2.php:42

actionadmin_noticestwitter-sp2.php:50

actionadmin_noticestwitter-sp2.php:55

Maintenance & Trust

Twitter SP2 Maintenance & Trust

Maintenance Signals

WordPress version tested2.8.4

Last updatedSep 14, 2009

PHP min version

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Twitter SP2 Alternatives

Tools for Twitter

twitter-tools

Tools for Twitter is a plugin that creates a complete integration between your WordPress blog and your Twitter account.

1K No CVEs

Miniature

miniature

Generate thumbnails from post and display them.Visit [Plugin Page](http://jeeker.net/projects/miniature/ "Miniature") for usage information …

10 No CVEs

unfake.it URL shortener for Twitter Tools

url-shortener-for-twitter-tools

unfake.it URL shortener Plugin for Twitter Tools works as a WordPress plugin and (hopefully) gets an URL as inbound parameter, shortens it by using un …

10 No CVEs

Subscribe2 – Form, Email Subscribers & Newsletters

subscribe2

Sends a list of subscribers an email notification when you publish new posts.

10K 8 CVEs

Post Status Notifier Lite

post-status-notifier-lite

Notify on every post change: Flexible rules, custom placeholders and support for all post types and taxonomies.

800 3 CVEs

Developer Profile

Twitter SP2 Developer Profile

Dan-Lucian Stefancu

4 plugins · 160 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

93 days

View full developer profile

Detection Fingerprints

How We Detect Twitter SP2

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ