AutoShortLink Security & Risk Analysis

wordpress.org/plugins/autoshortlink

Forget the hassle of creating shorte.st shortlinks manually. This Plugin do that for you.

10 active installs v1.1 PHP + WP 3.0.1+ Updated Mar 15, 2019
linkshorteshorte-stshortlinkshortlink-api
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is AutoShortLink Safe to Use in 2026?

Generally Safe

Score 85/100

AutoShortLink has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago
Risk Assessment

The autoshortlink plugin version 1.1 presents a mixed security posture. On the positive side, there are no publicly disclosed vulnerabilities (CVEs) associated with this plugin, and its static analysis reveals a commendably small attack surface with zero unprotected entry points. The code also demonstrates good practices by using prepared statements for all SQL queries and incorporating at least one nonce and one capability check, which are crucial for security.

Key Concerns

  • Low output escaping coverage
  • Presence of external HTTP request
Vulnerabilities
None known

AutoShortLink Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

AutoShortLink Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

AutoShortLink Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
1 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

25% escaped4 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
asl_settings (autoshortlink.php:74)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

AutoShortLink Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 3
filtercontent_save_preautoshortlink.php:31
actionadmin_noticesautoshortlink.php:60
actionadmin_menuautoshortlink.php:113
Maintenance & Trust

AutoShortLink Maintenance & Trust

Maintenance Signals

WordPress version tested5.1.22
Last updatedMar 15, 2019
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Developer Profile

AutoShortLink Developer Profile

prasadkirpekar

7 plugins · 91K total installs

71
trust score
Avg Security Score
89/100
Avg Patch Time
117 days
View full developer profile
Detection Fingerprints

How We Detect AutoShortLink

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about AutoShortLink