Does Auto Insert Title To Link have any unpatched vulnerabilities?

No. All known vulnerabilities in Auto Insert Title To Link have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Auto Insert Title To Link compatible with WordPress 3.6.1?

According to WordPress.org data, Auto Insert Title To Link 1.0.2 has been tested up to WordPress 3.6.1. Check the plugin's changelog for the latest compatibility information.

How often is Auto Insert Title To Link updated?

Auto Insert Title To Link was last updated on May 30, 2013. Frequent updates are generally a positive security signal.

What is Auto Insert Title To Link's security score?

Auto Insert Title To Link has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Auto Insert Title To Link Security & Risk Analysis

wordpress.org/plugins/auto-insert-title-to-link

With this plugin it is possible to automatically fill in the title attribute of a link in WordPress editor. This plugin requires PHP5.3+

100 active installs v1.0.2 PHP + WP 3.5+ Updated May 30, 2013

admineditorlinkusability

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Auto Insert Title To Link Safe to Use in 2026?

Generally Safe

Score 85/100

Auto Insert Title To Link has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The "auto-insert-title-to-link" plugin v1.0.2 exhibits a mixed security posture. On the positive side, the plugin demonstrates strong adherence to secure coding practices by exclusively using prepared statements for SQL queries and properly escaping all output. The absence of known vulnerabilities, critical taint flows, and dangerous function usage indicates a generally well-developed and secure codebase.

However, a significant concern arises from the presence of an unprotected AJAX handler. This represents a direct entry point into the plugin's functionality that is not protected by authentication or authorization checks. While the static analysis didn't reveal any specific exploits stemming from this, it creates a potential window for attackers to interact with the plugin in unintended ways, which could lead to security issues if not carefully handled within the AJAX function itself.

Given the lack of historical vulnerabilities, the current focus should be on mitigating the identified risk of the unprotected AJAX handler. Strengthening this entry point with appropriate nonce and capability checks would significantly improve the plugin's overall security, transforming it from a potentially risky component into a robust part of the WordPress ecosystem.

Key Concerns

Unprotected AJAX handler

Vulnerabilities

None known

Auto Insert Title To Link Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Auto Insert Title To Link Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

1 unprotected

Auto Insert Title To Link Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_auto_link_titleauto_title_to_link.php:58

WordPress Hooks 3

actionadmin_initauto_title_to_link.php:49

actionload-post.phpauto_title_to_link.php:56

actionload-post-new.phpauto_title_to_link.php:57

Maintenance & Trust

Auto Insert Title To Link Maintenance & Trust

Maintenance Signals

WordPress version tested3.6.1

Last updatedMay 30, 2013

PHP min version

Downloads4K

Community Trust

Rating68/100

Number of ratings5

Active installs100

Alternatives

Auto Insert Title To Link Alternatives

Admin Page Notes

admin-page-notes

100

Gives administrators the ability to add notes to posts of any post type (including pages) that are prominently displayed for users editing the site.

800 No CVEs

Better Links

better-links

Easily create, manage and insert shortened Better Links that originate from your WordPress domain. Forget link shortening services - use Better Links.

200 No CVEs

PublishPress Capabilities – User Role Editor, Access Permissions, User Capabilities, Admin Menus

capability-manager-enhanced

PublishPress Capabilities is the access control plugin. You can manage user capabilities, permissions, user roles, admin menus and more.

100K 4 CVEs

Ultimate Dashboard – Custom WordPress Dashboard

ultimate-dashboard

The #1 Plugin to Customize the WordPress Dashboard!

60K 8 CVEs

WP Custom Admin Interface

wp-custom-admin-interface

With WP Custom Admin Interface you can easily customise the WordPress admin and login interfaces.

30K 7 CVEs

Developer Profile

Auto Insert Title To Link Developer Profile

Ralf Albert

3 plugins · 120 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Auto Insert Title To Link

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/auto-insert-title-to-link/js/auto_title_to_link.js/wp-content/plugins/auto-insert-title-to-link/js/auto_title_to_link.min.js/wp-content/plugins/auto-insert-title-to-link/js/ajax-loader.gif

Script Paths

js/auto_title_to_link.jsjs/auto_title_to_link.min.js

Version Parameters

auto_title_to_link%s.js

HTML / DOM Fingerprints

JS Globals

AutoInsertTitle

REST Endpoints

/wp-json/

FAQ