Does Custom Sidebar Links have any unpatched vulnerabilities?

No. All known vulnerabilities in Custom Sidebar Links have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Custom Sidebar Links compatible with WordPress 4.4.34?

According to WordPress.org data, Custom Sidebar Links 1.0.0 has been tested up to WordPress 4.4.34. Check the plugin's changelog for the latest compatibility information.

How often is Custom Sidebar Links updated?

Custom Sidebar Links was last updated on Jan 12, 2016. Frequent updates are generally a positive security signal.

What is Custom Sidebar Links's security score?

Custom Sidebar Links has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Custom Sidebar Links Security & Risk Analysis

wordpress.org/plugins/custom-sidebar-links

Customize the sidebar of any page on your site by creating a list of links to other pages, posts, or custom post types.

80 active installs v1.0.0 PHP + WP 3.0+ Updated Jan 12, 2016

custom-linkscustom-sidebarlinkslinks-widgetside-bar

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Custom Sidebar Links Safe to Use in 2026?

Generally Safe

Score 85/100

Custom Sidebar Links has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The 'custom-sidebar-links' plugin version 1.0.0 exhibits a generally good security posture based on the provided static analysis. The absence of any known CVEs, critical taint flows, dangerous functions, or raw SQL queries is a strong indicator of secure development practices. The plugin also demonstrates good use of security features, with a nonce check and capability checks present, and all SQL queries utilizing prepared statements. Furthermore, the limited attack surface, with only one shortcode and no AJAX handlers or REST API routes, reduces the overall exposure to potential attacks.

However, there is a notable concern regarding output escaping. With 30% of the 23 outputs properly escaped, a significant portion (70%) may be vulnerable to cross-site scripting (XSS) attacks if the data processed by these outputs is not properly sanitized before being rendered. While the current static analysis did not reveal any specific exploitable taint flows, this lack of robust output escaping represents a potential weakness that could be exploited in conjunction with other functionalities or user-supplied data.

In conclusion, the plugin is well-protected against common backend vulnerabilities like SQL injection and lacks a broad attack surface. The primary area of concern is the insufficient output escaping, which necessitates careful review of how data is handled before display. Given the absence of past vulnerabilities and the presence of essential security checks, the plugin is reasonably secure, but the output escaping issue should be addressed to improve its overall resilience.

Key Concerns

Insufficient output escaping (70% of outputs)

Vulnerabilities

None known

Custom Sidebar Links Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Custom Sidebar Links Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

7 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

30% escaped23 total outputs

Attack Surface

Custom Sidebar Links Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[vimo_csbl] index.php:203

WordPress Hooks 6

actionadd_meta_boxesadmin\metabox.php:19

actionsave_postadmin\metabox.php:161

actionsave_postadmin\metabox.php:245

actionadmin_menuadmin\options.php:2

actionadmin_initadmin\options.php:3

actionwidgets_initindex.php:132

Maintenance & Trust

Custom Sidebar Links Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34

Last updatedJan 12, 2016

PHP min version

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs80

Alternatives

Custom Sidebar Links Alternatives

EXMAGE – WordPress Image Links

exmage-wp-image-links

Add images using external links - Save your storage with EXMAGE effortlessly

7K 1 CVE

Custom links in Elementor Image Carousel

custom-links-in-elementor-image-carousel

Lets you add custom links in Elementor Image Carousel widget

5K No CVEs

LinkCentral – URL shortener, Custom Links & Affiliate Link Shortener with Link Tracking

linkcentral

100

The easiest URL shortener, short links manager, and link tracking plugin. Fast and optimised for better short links, redirects and affiliate links.

300 No CVEs

Social Links Widget

social-links-widget

Display social links, social links, social, facebook, twitter, youtube, google plus, linked in on wordpress site.

20 No CVEs

Comment Link Suggest-O-Tron

comment-link-suggest-o-tron

What if you could get more comments on your blog?

10 No CVEs

Developer Profile

Custom Sidebar Links Developer Profile

Vinny Moreira

1 plugin · 80 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Custom Sidebar Links

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

vimo-csbl

Data Attributes

id="vimo-csbl"id="vimo_csbl_menu_title"name="vimo_csbl_menu_title"id="vimo_csbl_meta_box_nonce"name="vimo_csbl_meta_box_nonce"name="child-pages"+4 more

Shortcode Output

<div id="vimo-csbl" class="widget vimo-csbl">

FAQ