
WP-TweetButton Plus Security & Risk Analysis
wordpress.org/plugins/wp-tweetbutton-plusThis plugin allow insert Tweet Button on your blog or site.
Is WP-TweetButton Plus Safe to Use in 2026?
Generally Safe
Score 85/100WP-TweetButton Plus has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The wp-tweetbutton-plus plugin v1.2 exhibits a strong security posture in several key areas, notably the absence of any recorded vulnerabilities (CVEs) and a lack of dangerous functions or file operations. The static analysis shows a commendably small attack surface with zero AJAX handlers, REST API routes, shortcodes, or cron events, all of which are crucial entry points. Furthermore, all SQL queries are confirmed to use prepared statements, mitigating common SQL injection risks. The presence of a nonce check is also a positive sign for security. However, a significant concern arises from the output escaping analysis, where 0% of the 6 total outputs are properly escaped. This indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data displayed on the frontend is not being neutralized. The lack of capability checks on any identified entry points, though the entry points are zero, means if new ones were introduced without proper checks, they would be unprotected. Overall, while the plugin demonstrates good practices in preventing direct code execution and SQL injection, the severe deficiency in output escaping presents a critical weakness that could be exploited.
Key Concerns
- 0% of outputs properly escaped
- 0 capability checks on entry points
WP-TweetButton Plus Security Vulnerabilities
WP-TweetButton Plus Release Timeline
WP-TweetButton Plus Code Analysis
Output Escaping
Data Flow Analysis
WP-TweetButton Plus Attack Surface
WordPress Hooks 3
Maintenance & Trust
WP-TweetButton Plus Maintenance & Trust
Maintenance Signals
Community Trust
WP-TweetButton Plus Alternatives
The Tweet Button – Simple Sharing
the-tweet-button
A super simple way to add the latest Twitter Tweet Button to a WordPress post or page.
WP Tweet Plus
wp-tweet-plus
WP Tweet Plus allows you to add tweet button to your Wordpress site.
Reve Click2Tweet
reve-click2tweet
Add totally custom, responsive and fast Click to tweet boxes to your WordPress site.
Social Snap — Social Share Buttons & Click to Tweet
socialsnap
Social sharing plugin with share buttons for Facebook, X (Twitter), LinkedIn and more. Includes Click to Tweet feature.
Autopost for X (formerly Autoshare for Twitter)
autoshare-for-twitter
Automatically shares the post title or custom message and a link to the post to X/Twitter.
WP-TweetButton Plus Developer Profile
4 plugins · 2K total installs
How We Detect WP-TweetButton Plus
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/wp-tweetbutton-plus/vertical.png/wp-content/plugins/wp-tweetbutton-plus/horizontal.png/wp-content/plugins/wp-tweetbutton-plus/none.pngHTML / DOM Fingerprints
twitter-share-button<!--wp_tweetbutton--><a href="http://twitter.com/shareclass="twitter-share-button">Tweet</a>