Does CC-Link-Shortcode have any unpatched vulnerabilities?

No. All known vulnerabilities in CC-Link-Shortcode have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is CC-Link-Shortcode compatible with WordPress 5.9.13?

According to WordPress.org data, CC-Link-Shortcode 1.1.1 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is CC-Link-Shortcode compatible with PHP 7.0+?

CC-Link-Shortcode requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CC-Link-Shortcode updated?

CC-Link-Shortcode was last updated on Mar 16, 2022. Frequent updates are generally a positive security signal.

What is CC-Link-Shortcode's security score?

CC-Link-Shortcode has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CC-Link-Shortcode Security & Risk Analysis

wordpress.org/plugins/cc-link-shortcode

This plugin adds the link shortcode to replace standard html tag. Its primary function is to simplify internal linking.

10 active installs v1.1.1 PHP 7.0+ WP 4.9.2+ Updated Mar 16, 2022

ahreflinkpermalinkurl

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CC-Link-Shortcode Safe to Use in 2026?

Generally Safe

Score 85/100

CC-Link-Shortcode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The 'cc-link-shortcode' plugin version 1.1.1 demonstrates a generally good security posture based on the provided static analysis. The absence of exposed AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, the code signals show no dangerous functions, file operations, or external HTTP requests, and all SQL queries utilize prepared statements. This indicates a conscious effort by the developers to follow secure coding practices. However, a critical concern arises from the output escaping analysis, where only 25% of the four total outputs are properly escaped. This leaves a significant portion of potentially user-influenced output vulnerable to cross-site scripting (XSS) attacks. The lack of any recorded vulnerabilities in its history is a positive sign, suggesting a mature and relatively stable plugin. Despite the positive history and limited attack surface, the unescaped output presents a tangible risk that should be addressed.

Key Concerns

Low percentage of properly escaped output

Vulnerabilities

None known

CC-Link-Shortcode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

CC-Link-Shortcode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

25% escaped4 total outputs

Attack Surface

CC-Link-Shortcode Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionactivated_pluginincludes\class-plugin.php:70

actiondeactivated_pluginincludes\class-plugin.php:71

Maintenance & Trust

CC-Link-Shortcode Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedMar 16, 2022

PHP min version7.0

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

CC-Link-Shortcode Alternatives

Custom Post Type Permalinks

custom-post-type-permalinks

Edit the permalink of custom post type.

200K No CVEs

Custom Permalinks

custom-permalinks

A powerful WordPress plugin for full URL control. Set custom permalinks, auto-redirects, and use dynamic tags for ideal site structure and SEO.

100K 3 CVEs

No Category Base (WPML)

no-category-base-wpml

100

This plugin removes the mandatory 'Category Base' from your category permalinks. It's compatible with WPML.

100K No CVEs

Remove Category URL – Remove 'category' base from category permalinks

remove-category-url

100

Remove Category URL strips the /category/ base from your category URLs, turning something like /category/my-category/ into simply /my-category/.

50K No CVEs

Premmerce Permalink Manager for WooCommerce

woo-permalink-manager

Premmerce Permalink Manager for WooCommerce allows you to change WooCommerce permalink and remove product and product_category slugs from the URL.

50K 1 CVE

Developer Profile

CC-Link-Shortcode Developer Profile

Clearcode

16 plugins · 220 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CC-Link-Shortcode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cc-link-shortcode/includes/class-singleton.php/wp-content/plugins/cc-link-shortcode/includes/class-plugin.php/wp-content/plugins/cc-link-shortcode/includes/class-link-shortcode.php/wp-content/plugins/cc-link-shortcode/templates/link.php

HTML / DOM Fingerprints

HTML Comments

Copyright (C) 2022 by Clearcode <https://clearcode.cc>This file is part of CC-Link-Shortcode plugin.CC-Link-Shortcode plugin is free software; you can redistribute it and/or modifyit under the terms of the GNU General Public License as published by+9 more

Shortcode Output

<a href=""></a>

FAQ