Does 404 Simple Redirect have any unpatched vulnerabilities?

No. All known vulnerabilities in 404 Simple Redirect have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is 404 Simple Redirect compatible with WordPress 3.4.2?

According to WordPress.org data, 404 Simple Redirect 1.2 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is 404 Simple Redirect updated?

404 Simple Redirect was last updated on Nov 28, 2017. Frequent updates are generally a positive security signal.

What is 404 Simple Redirect's security score?

404 Simple Redirect has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

404 Simple Redirect Security & Risk Analysis

wordpress.org/plugins/404-simple-redirect

This plugin hooks the normal Wordpress workflow in order to determine if the request is processing will cause a 404 HTTP error.

1K active installs v1.2 PHP + WP 2.7.0+ Updated Nov 28, 2017

404errorhttpredirectredirection

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is 404 Simple Redirect Safe to Use in 2026?

Generally Safe

Score 85/100

404 Simple Redirect has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The static analysis of the "404-simple-redirect" plugin v1.2 reveals a very small attack surface, with no apparent AJAX handlers, REST API routes, shortcodes, or cron events. The absence of dangerous functions, file operations, external HTTP requests, and the use of prepared statements for all SQL queries are positive indicators of good security practices.

However, a significant concern is the output escaping. With 100% of outputs not being properly escaped, this presents a clear risk of Cross-Site Scripting (XSS) vulnerabilities. The lack of nonce and capability checks on any potential entry points (though none were identified) also means that if an entry point were to be discovered or added in the future, it would be unprotected. The plugin's vulnerability history is clean, with no recorded CVEs, which suggests a good track record, but this does not mitigate the identified XSS risk.

In conclusion, while the plugin has a minimal attack surface and no historical vulnerabilities, the unescaped output is a critical weakness that needs immediate attention. This single issue significantly elevates the risk profile of the plugin.

Key Concerns

Unescaped output detected
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

404 Simple Redirect Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

404 Simple Redirect Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

404 Simple Redirect Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_init404-simple-redirect.php:13

actionadmin_menu404-simple-redirect.php:14

actionwp404-simple-redirect.php:15

filterplugin_action_links404-simple-redirect.php:16

Maintenance & Trust

404 Simple Redirect Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedNov 28, 2017

PHP min version

Downloads39K

Community Trust

Rating100/100

Number of ratings3

Active installs1K

Alternatives

404 Simple Redirect Alternatives

301 Redirects – Redirect Manager

eps-301-redirects

Manage 301 & 302 redirects. Simple redirection & redirects validation. Includes redirect stats & 404 error log.

300K 3 CVEs

All 404 Redirect to Homepage

all-404-redirect-to-homepage

Using this plugin, you can fix all 404 error links by redirecting them to homepage using the SEO 301 redirection. Improve your SEO rank & pages speed

200K 2 CVEs

Redirect 404 Error Page to Homepage or Custom Page with Logs

redirect-404-error-page-to-homepage-or-custom-page

Redirect the 404 error page to the homepage or any other page with logs. Supports permanent (301), temporary (302) redirects & not found (404).

10K 2 CVEs

Redirect 404 Error Page to Homepage

redirect-404-error-page-to-homepage

Redirect 404 Error Page to Homepage

7K No CVEs

Redirect 404 to Home Page – Custom URL

redirect-404-to-home-page-custom-url

This Wordpress Plugin fixes 404 Errors in Google Webmasters by Redirecting all 404 URLs to Home Page or a Custom URL.

4K No CVEs

Developer Profile

404 Simple Redirect Developer Profile

JordiPlana

2 plugins · 1K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect 404 Simple Redirect

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

howto

FAQ

404 Simple Redirect Security & Risk Analysis

Is 404 Simple Redirect Safe to Use in 2026?

Generally Safe

Key Concerns

404 Simple Redirect Security Vulnerabilities

404 Simple Redirect Code Analysis

Output Escaping

404 Simple Redirect Attack Surface

404 Simple Redirect Maintenance & Trust

Maintenance Signals

Community Trust

404 Simple Redirect Alternatives

301 Redirects – Redirect Manager

All 404 Redirect to Homepage

Redirect 404 Error Page to Homepage or Custom Page with Logs

Redirect 404 Error Page to Homepage

Redirect 404 to Home Page – Custom URL

404 Simple Redirect Developer Profile

How We Detect 404 Simple Redirect

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about 404 Simple Redirect