WP-Safety

301 Redirects – Redirect Manager Security & Risk Analysis

wordpress.org/plugins/eps-301-redirects

Manage 301 & 302 redirects. Simple redirection & redirects validation. Includes redirect stats & 404 error log.

300K active installs v2.83 PHP 5.2+ WP 4.0+ Updated Jan 9, 2026
301-redirect404-error-logredirectredirectionredirects
98
A · Safe
CVEs total3
Unpatched0
Last CVEMar 8, 2023
Plugin page Download
Safety Verdict

Is 301 Redirects – Redirect Manager Safe to Use in 2026?

Generally Safe

Score 98/100

301 Redirects – Redirect Manager has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Mar 8, 2023Updated 2mo ago
Risk Assessment

The static analysis of 'eps-301-redirects' v2.83 indicates a generally good security posture. The plugin demonstrates strong practices regarding output escaping (98%), a low number of dangerous functions, and no file operations or external HTTP requests. Furthermore, all identified entry points (AJAX handlers) are protected by authentication checks. The absence of taint analysis findings suggests that user-supplied data is likely handled securely within the analyzed code flows.

However, the plugin's vulnerability history presents a significant concern. It has a total of 3 known CVEs, including one high-severity and two medium-severity vulnerabilities. While none are currently unpatched, the pattern of past vulnerabilities, particularly Cross-Site Request Forgery (CSRF), SQL Injection, and Missing Authorization, suggests a recurring need for careful security patching. This history, despite the current good static analysis results, warrants a cautious approach.

In conclusion, while the code's current state shows good security practices and minimal direct risks from static analysis, the historical prevalence of critical and high-impact vulnerabilities should not be ignored. The past issues highlight potential areas where vulnerabilities might re-emerge if not rigorously addressed during development. Therefore, continued vigilance and thorough code reviews are recommended for this plugin.

Key Concerns

  • 1 high and 2 medium severity CVEs historically
  • 50% of SQL queries not using prepared statements
Vulnerabilities
3

301 Redirects – Redirect Manager Security Vulnerabilities

CVEs by Year

1 CVE in 2019
2019
1 CVE in 2021
2021
1 CVE in 2023
2023
Patched Has unpatched

Severity Breakdown

High
1
Medium
2

3 total CVEs

WF-2253cb38-3688-4e4d-afd1-582c8743c89a-eps-301-redirectsmedium · 4.3Cross-Site Request Forgery (CSRF)

301 Redirects - Easy Redirect Manager <= 2.72 - Cross-Site Request Forgery via dismiss_notice

Mar 8, 2023 Patched in 2.73 (321d)
CVE-2021-24142high · 7.2Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

301 Redirects - Easy Redirect Manager < 2.51 - SQL Injection

Jan 18, 2021 Patched in 2.51 (1100d)
CVE-2019-19915medium · 6.5Missing Authorization

301 Redirects - Easy Redirect Manager <= 2.40 - Missing Authorization

Dec 19, 2019 Patched in 2.45 (1496d)
Code Analysis
Analyzed Mar 16, 2026

301 Redirects – Redirect Manager Code Analysis

Dangerous Functions
0
Raw SQL Queries
8
8 prepared
Unescaped Output
3
118 escaped
Nonce Checks
8
Capability Checks
5
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

50% prepared16 total queries

Output Escaping

98% escaped121 total outputs
Attack Surface

301 Redirects – Redirect Manager Attack Surface

Entry Points5
Unprotected0

AJAX Handlers 5

authwp_ajax_eps_redirect_get_new_entryeps-301-redirects.php:77
authwp_ajax_eps_redirect_delete_entryeps-301-redirects.php:78
authwp_ajax_eps_redirect_get_inline_edit_entryeps-301-redirects.php:79
authwp_ajax_eps_redirect_saveeps-301-redirects.php:80
authwp_ajax_eps_dismiss_pointereps-301-redirects.php:81
WordPress Hooks 26
actionplugins_loadedeps-301-redirects.php:55
actionadmin_initeps-301-redirects.php:74
filteradmin_footer_texteps-301-redirects.php:83
actionwp_dashboard_setupeps-301-redirects.php:84
actioniniteps-301-redirects.php:88
actiontemplate_redirecteps-301-redirects.php:89
filtersafe_style_csseps-301-redirects.php:137
filtersafe_style_csseps-301-redirects.php:367
actionadmin_noticeseps-301-redirects.php:997
actioninitplugin.php:60
actionredirects_admin_tabplugin.php:63
action404s_admin_tabplugin.php:64
actionsupport_admin_tabplugin.php:65
actionlink-scanner_admin_tabplugin.php:66
actionerror_admin_tabplugin.php:67
actionimport-export_admin_tabplugin.php:68
actioneps_redirects_panels_leftplugin.php:69
actionadmin_noticesplugin.php:70
actionadmin_action_301_dismiss_noticeplugin.php:71
actionadmin_initplugin.php:74
actionadmin_initplugin.php:196
actionadmin_noticesplugin.php:753
actionadmin_initwf-flyout\wf-flyout.php:27
actionadmin_enqueue_scriptswf-flyout\wf-flyout.php:73
actionadmin_headwf-flyout\wf-flyout.php:74
actionadmin_footerwf-flyout\wf-flyout.php:75
Maintenance & Trust

301 Redirects – Redirect Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 9, 2026
PHP min version5.2
Downloads3.6M

Community Trust

Rating94/100
Number of ratings575
Active installs300K
Alternatives

301 Redirects – Redirect Manager Alternatives

Simple 301 Redirects By BetterLinks – Easy WordPress Redirect Manager for Redirects, 404 Error Log & More

Simple 301 Redirects By BetterLinks – Easy WordPress Redirect Manager for Redirects, 404 Error Log & More

simple-301-redirects

A
97

Simple 301 Redirects provides an easy method of redirecting requests to another page on your site or elsewhere on the web.

100K 7 CVEs
301 Redirects & 404 Error Log

301 Redirects & 404 Error Log

301-redirects

A
100

Create & manage 301 redirects. Easily test redirects. Includes 404 error log.

30K No CVEs
Redirection

Redirection

redirect-redirection

A
99

Redirection

100K 27 CVEs
Safe Redirect Manager

Safe Redirect Manager

safe-redirect-manager

A
100

Safely manage your website's HTTP redirects.

40K 1 CVE
Quick 301 Redirects

Quick 301 Redirects

quick-301-redirects

A
100

The fastest & easiest way to do 301 redirects. You can set each redirect or bulk upload unlimited number of 301 redirects using a CSV file

7K No CVEs
Developer Profile

301 Redirects – Redirect Manager Developer Profile

WebFactory

28 plugins · 3.5M total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
699 days
View full developer profile
Detection Fingerprints

How We Detect 301 Redirects – Redirect Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/eps-301-redirects/css/style.css/wp-content/plugins/eps-301-redirects/css/wp301-main.css/wp-content/plugins/eps-301-redirects/css/wp301-settings.css/wp-content/plugins/eps-301-redirects/js/eps-redirects.js/wp-content/plugins/eps-301-redirects/js/eps-redirects-settings.js/wp-content/plugins/eps-301-redirects/js/eps-redirects-widget.js
Script Paths
/wp-content/plugins/eps-301-redirects/js/eps-redirects.js/wp-content/plugins/eps-301-redirects/js/eps-redirects-settings.js/wp-content/plugins/eps-301-redirects/js/eps-redirects-widget.js
Version Parameters
eps-301-redirects/css/style.css?ver=eps-301-redirects/css/wp301-main.css?ver=eps-301-redirects/css/wp301-settings.css?ver=eps-301-redirects/js/eps-redirects.js?ver=eps-301-redirects/js/eps-redirects-settings.js?ver=eps-301-redirects/js/eps-redirects-widget.js?ver=

HTML / DOM Fingerprints

CSS Classes
wp301-errors-widget
Data Attributes
data-eps-redirect-id
JS Globals
eps_redirects_data
FAQ

Frequently Asked Questions about 301 Redirects – Redirect Manager