Does DeviceRedirect24 have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is DeviceRedirect24 compatible with WordPress 6.9.4?

According to WordPress.org data, DeviceRedirect24 2.2.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is DeviceRedirect24 compatible with PHP 7.4+?

DeviceRedirect24 requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is DeviceRedirect24 updated?

DeviceRedirect24 was last updated on Mar 10, 2026. Frequent updates are generally a positive security signal.

What is DeviceRedirect24's security score?

DeviceRedirect24 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

DeviceRedirect24 Security & Risk Analysis

wordpress.org/plugins/deviceredirect24

Create smart links that automatically redirect users to different URLs based on their device (iOS, Android, Desktop). Perfect for app marketing!

0 active installs v2.2.0 PHP 7.4+ WP 5.8+ Updated Mar 10, 2026

androiddevice-detectioniosmobileredirect

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is DeviceRedirect24 Safe to Use in 2026?

Generally Safe

Score 100/100

DeviceRedirect24 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The static analysis of deviceredirect24 v2.2.0 indicates a generally strong security posture. The plugin demonstrates good development practices by exclusively using prepared statements for all SQL queries and properly escaping all output, which significantly mitigates risks of SQL injection and cross-site scripting (XSS) vulnerabilities. The absence of file operations and external HTTP requests further reduces the attack surface. Furthermore, the presence of nonce and capability checks, although not exhaustive across all potential entry points (which are zero in this case), shows an intent to secure interactions. The zero recorded CVEs and lack of historical vulnerabilities suggest a mature and well-maintained codebase over time.

While the plugin appears robust, the static analysis reveals no AJAX handlers, REST API routes, shortcodes, or cron events. This indicates a minimal attack surface, which is a positive sign. However, it also means there are no identified entry points that would necessitate nonce or capability checks. The taint analysis found no flows with unsanitized paths, and no dangerous functions were detected. The lack of vulnerabilities in its history strongly implies a consistent commitment to security by the developers. The plugin's strengths lie in its secure coding practices for data handling and output, coupled with a clean vulnerability record.

Vulnerabilities

None known

DeviceRedirect24 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

DeviceRedirect24 Release Timeline

v2.2.0Current

v1.0

Code Analysis

Analyzed Apr 16, 2026

DeviceRedirect24 Code Analysis

Dangerous Functions

Raw SQL Queries

36 prepared

Unescaped Output

237 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared36 total queries

Output Escaping

100% escaped237 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

<add-link> (admin/views/add-link.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

DeviceRedirect24 Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionadmin_menuadmin/class-dbrd-admin.php:22

actionadmin_enqueue_scriptsadmin/class-dbrd-admin.php:23

actionadmin_initadmin/class-dbrd-admin.php:24

actionadmin_footeradmin/class-dbrd-admin.php:25

actioninitdeviceredirect24.php:82

actiontemplate_redirectdeviceredirect24.php:83

actionadmin_initdeviceredirect24.php:150

Maintenance & Trust

DeviceRedirect24 Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 10, 2026

PHP min version7.4

Downloads217

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

DeviceRedirect24 Alternatives

Device-Based Redirect

device-based-redirect

100

Redirect users to your app pages in app store or play store based on their device type with custom URLs and page-specific redirects.

300 No CVEs

WPMobile.App

wpappninja

Android and iOS mobile application. Easy setup, free test.

4K 9 CVEs

WP Mobile Redirect

mobile-redirect-plus-lite

Detect mobile device and redirect to mobile optimize website. You can also choose whether or not to redirect tablets by enabling or disabling the chec …

500 No CVEs

Mobile Smart App Banner

mobile-smart-app-banner

100

Transform your mobile website visitors into app users with intelligent smart app banners that boost downloads across iOS and Android devices.

200 No CVEs

WP-AppKit – Mobile apps and PWA for WordPress

wp-appkit

Important ✋: beginning with version 1.5.3, we don't support anymore native iOS app. This is a tough choice we explain here.

200 No CVEs

Developer Profile

DeviceRedirect24 Developer Profile

deviceredirect24

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect DeviceRedirect24

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/deviceredirect24/assets/css/admin.css

Version Parameters

deviceredirect24/assets/css/admin.css?ver=

HTML / DOM Fingerprints

FAQ