Does Add Featured Image Custom Link have any unpatched vulnerabilities?

Yes — Add Featured Image Custom Link currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is Add Featured Image Custom Link compatible with WordPress 6.5.8?

According to WordPress.org data, Add Featured Image Custom Link 2.0.0 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Is Add Featured Image Custom Link compatible with PHP 5.2.4+?

Add Featured Image Custom Link requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Add Featured Image Custom Link updated?

Add Featured Image Custom Link was last updated on May 14, 2024. Frequent updates are generally a positive security signal.

What is Add Featured Image Custom Link's security score?

Add Featured Image Custom Link has a WP-Safety security score of 70/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Add Featured Image Custom Link Security & Risk Analysis

wordpress.org/plugins/custom-url-to-featured-image

Try it out on your free dummy site: Click here => https://tastewp.com/new?pre-installed-plugin-slug=custom-url-to-featured-image&redirect=plugi …

1K active installs v2.0.0 PHP 5.2.4+ WP 3.8+ Updated May 14, 2024

custom-linkcustom-url-to-featured-imageexternal-linkexternal-link-to-featured-imagefeatured-image-custom-link

B · Generally Safe

CVEs total1

Unpatched1

Last CVEDec 31, 2025

Plugin page Download

Safety Verdict

Is Add Featured Image Custom Link Safe to Use in 2026?

Mostly Safe

Score 70/100

Add Featured Image Custom Link is generally safe to use though it hasn't been updated recently. 1 past CVE were resolved. Keep it updated.

1 known CVE 1 unpatched Last CVE: Dec 31, 2025Updated 1yr ago

Risk Assessment

The plugin 'custom-url-to-featured-image' version 2.0.0 demonstrates several positive security practices, including 100% use of prepared statements for SQL queries, proper output escaping, and the presence of nonce and capability checks. The static analysis reveals a minimal attack surface with no exposed AJAX handlers, REST API routes, shortcodes, or cron events, which is commendable for reducing potential entry points for attackers. The taint analysis also shows no identified flows with unsanitized paths, indicating a potentially well-written codebase regarding input handling.

Key Concerns

Unpatched Medium Severity CVE
Known Cross-site Scripting Vulnerability History

Vulnerabilities

Add Featured Image Custom Link Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-62119medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Add Featured Image Custom Link <= 2.0.0 - Authenticated (Author+) Stored Cross-Site Scripting

Dec 31, 2025Unpatched

Code Analysis

Analyzed Mar 16, 2026

Add Featured Image Custom Link Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped3 total outputs

Attack Surface

Add Featured Image Custom Link Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionadd_meta_boxesadmin\class-cust-li-fi-admin.php:132

actionsave_postadmin\class-cust-li-fi-admin.php:134

actionpost_thumbnail_htmladmin\class-cust-li-fi-admin.php:136

Maintenance & Trust

Add Featured Image Custom Link Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMay 14, 2024

PHP min version5.2.4

Downloads21K

Community Trust

Rating82/100

Number of ratings15

Active installs1K

Alternatives

Add Featured Image Custom Link Alternatives

Broken Link Checker

broken-link-checker

Broken Link Checker helps you catch broken links & images fast, before they hurt your SEO or UX. Scan and bulk-fix issues from one easy dashboard.

500K 11 CVEs

Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links

broken-link-checker-seo

Broken Link Checker by AIOSEO ensures all links on your website are working. Check your site for broken links and easily fix them to improve SEO.

300K 3 CVEs

Page Links To

page-links-to

Lets you make a WordPress page (or port or other content type) link to a URL of your choosing (on your site, or on another site), instead of its norma …

100K No CVEs

External Links – nofollow, noopener & new window

wp-external-links

Internal links & external links manager: open in new window or tab, control nofollow, ugc, sponsored & noopener. SEO friendly.

90K 3 CVEs

Shortcode in Menus

shortcode-in-menus

100

Allows you to add shortcodes in WordPress Navigation Menus.

50K No CVEs

Developer Profile

Add Featured Image Custom Link Developer Profile

ViitorCloud Technologies Pvt Ltd

10 plugins · 3K total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Add Featured Image Custom Link

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/custom-url-to-featured-image/admin/class-cust-li-fi-admin.php

HTML / DOM Fingerprints

CSS Classes

ex-link

Data Attributes

id="custom_url_image"name="custom_url_image"id="custom_url_image"name="custom_url_image"id="custom_url_image"name="custom_url_image"

FAQ