Does WP-SNAP EXT! have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP-SNAP EXT! compatible with WordPress 3.4.2?

According to WordPress.org data, WP-SNAP EXT! 1.0.0 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is WP-SNAP EXT! updated?

WP-SNAP EXT! was last updated on Nov 5, 2012. Frequent updates are generally a positive security signal.

What is WP-SNAP EXT!'s security score?

WP-SNAP EXT! has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP-SNAP EXT! Security & Risk Analysis

wordpress.org/plugins/wp-snap-extended

ALPHABETICAL PAGING creates an user interface for navigating alphabetically on post titles.

30 active installs v1.0.0 PHP + WP 3.0.1+ Updated Nov 5, 2012

alphabetic-orderingalphabetic-pagingalphabeticalalphabetical-pagingnavigation

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP-SNAP EXT! Safe to Use in 2026?

Generally Safe

Score 85/100

WP-SNAP EXT! has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The "wp-snap-extended" v1.0.0 plugin exhibits a generally strong security posture based on the provided static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events, along with zero reported vulnerabilities, suggests a minimal attack surface and a history of secure development. The code also demonstrates good practices by utilizing prepared statements for its single SQL query and incorporating a nonce check and capability check, indicating an awareness of common WordPress security vulnerabilities. The taint analysis revealing no unsanitized paths is also a very positive sign.

However, a significant concern arises from the output escaping analysis, which shows that 100% of the 11 identified outputs are not properly escaped. This creates a considerable risk of Cross-Site Scripting (XSS) vulnerabilities. If any of the data processed by the plugin is user-controlled and then displayed without proper sanitization, an attacker could inject malicious scripts into the user's browser. Despite the lack of historical vulnerabilities and a small attack surface, this unescaped output is a critical weakness that needs immediate attention.

In conclusion, while the plugin has a clean record and a small attack surface with some good security practices in place, the complete lack of output escaping for all identified outputs is a major security flaw. This flaw significantly outweighs the positive aspects and demands remediation. The plugin is strong in preventing common entry point vulnerabilities and SQL injection, but critically weak in protecting against XSS.

Key Concerns

All outputs lack proper escaping

Vulnerabilities

None known

WP-SNAP EXT! Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP-SNAP EXT! Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

WP-SNAP EXT! Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

0% escaped11 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

wp_snap_options_subpanel (wp-snap.php:748)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WP-SNAP EXT! Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionadmin_menuwp-snap.php:50

actioninitwp-snap.php:51

actioninitwp-snap.php:57

actionwp_print_styleswp-snap.php:60

filterplugin_action_linkswp-snap.php:741

Maintenance & Trust

WP-SNAP EXT! Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedNov 5, 2012

PHP min version

Downloads5K

Community Trust

Rating46/100

Number of ratings3

Active installs30

Alternatives

WP-SNAP EXT! Alternatives

WP-SNAP!

wp-snap

WP-SNAP! (WordPress System for Navigating Alphabetized Posts) creates an user interface for navigating alphabetized post titles.

90 No CVEs

Breadcrumb NavXT

breadcrumb-navxt

Adds breadcrumb navigation showing the visitor's path to their current location.

800K 2 CVEs

WP-PageNavi

wp-pagenavi

Adds a more advanced paging navigation interface.

500K No CVEs

Max Mega Menu

megamenu

An easy to use mega menu plugin. Written the WordPress way.

300K 2 CVEs

LuckyWP Table of Contents

luckywp-table-of-contents

Creates SEO-friendly table of contents for your posts/pages. Works automatically or manually (via shortcode, Gutenberg block or widget).

100K 5 CVEs

Developer Profile

WP-SNAP EXT! Developer Profile

mansoormunib

3 plugins · 60 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP-SNAP EXT!

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-snap-extended/snap-style.css

Version Parameters

wp-snap-extended/snap-style.css?ver=

HTML / DOM Fingerprints

CSS Classes

snap_navsnap_selected

HTML Comments

-------------------------------------------------------------------------------All the Credit goes to Nathan Olsen. Who was the original author of this plugin.We tweak it and make it compatilbe with the higher version of wordpress with coding adjustment+14 more

Data Attributes

key_snap_menukey_snap_menumisckey_snap_recentkey_snap_csscls1key_snap_csscls2key_snap_exclude+13 more

FAQ