Does Fix Multiple Redirects have any unpatched vulnerabilities?

Yes — Fix Multiple Redirects currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

How often is Fix Multiple Redirects updated?

Fix Multiple Redirects was last updated on Feb 16, 2013. Frequent updates are generally a positive security signal.

What is Fix Multiple Redirects's security score?

Fix Multiple Redirects has a WP-Safety security score of 63/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Fix Multiple Redirects Security & Risk Analysis

wordpress.org/plugins/fix-multiple-redirects

Fix multiple redirects and canonical redirects. And increase speed of wordpress fine url recognition for SEO by .htaccess file.

40 active installs v1.2.3 PHP + WP 2.6+ Updated Feb 16, 2013

canonicalfixmultipleredirectsseo

C · Use Caution

CVEs total1

Unpatched1

Last CVEOct 8, 2025

Plugin page Download

Safety Verdict

Is Fix Multiple Redirects Safe to Use in 2026?

Use With Caution

Score 63/100

Fix Multiple Redirects has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Oct 8, 2025Updated 13yr ago

Risk Assessment

The 'fix-multiple-redirects' plugin v1.2.3 exhibits a mixed security posture. On the positive side, its attack surface appears minimal with no detectable AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, it demonstrates good practice by using prepared statements for all SQL queries and avoids external HTTP requests. However, significant concerns arise from the code analysis, particularly the complete lack of output escaping (0% properly escaped) and the presence of 5 taint flows with unsanitized paths. While the taint analysis did not flag critical or high severity issues, the sheer number of unsanitized flows suggests a high likelihood of cross-site scripting (XSS) vulnerabilities if these flows involve user-supplied input that is later rendered in the browser. The vulnerability history further exacerbates these concerns, showing one known CVE that remains unpatched, with a past common vulnerability type being XSS. This indicates a recurring issue with input sanitization and output escaping, which, when combined with the current static analysis findings, presents a substantial risk.

Key Concerns

Unpatched CVE exists
All output is unescaped
Unsanitized paths in taint flows
No capability checks
No nonce checks

Vulnerabilities

Fix Multiple Redirects Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-48092medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Fix Multiple Redirects <= 1.2.3 - Reflected Cross-Site Scripting

Oct 8, 2025Unpatched

Code Analysis

Analyzed Mar 16, 2026

Fix Multiple Redirects Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped15 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

5 flows5 with unsanitized paths

FIXMTPLREDIR_getHtAccessFile (fix-multiple-redirects.php:97)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Fix Multiple Redirects Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_initfix-multiple-redirects.php:181

filterthe_contentfix-multiple-redirects.php:187

actionadmin_menufix-multiple-redirects.php:189

actioninitfix-multiple-redirects.php:192

Maintenance & Trust

Fix Multiple Redirects Maintenance & Trust

Maintenance Signals

WordPress version tested

Last updatedFeb 16, 2013

PHP min version

Downloads10K

Community Trust

Rating40/100

Number of ratings4

Active installs40

Alternatives

Fix Multiple Redirects Alternatives

Quick 301 Redirects

quick-301-redirects

100

The fastest & easiest way to do 301 redirects. You can set each redirect or bulk upload unlimited number of 301 redirects using a CSV file

7K No CVEs

Canonical Link

canonical-link

100

Adds the canonical link to your site (https://wikipedia.org/wiki/Canonical_link_element). Activate and then set your permalinks to "Post name&quo …

3K No CVEs

Canonical SEO

canonical-seo

Plugin adds posibility to edit canonical URL and meta description

1K No CVEs

SEOPress for MainWP

seopress-for-mainwp

SEOPress for MainWP extension, is an-addon for MainWP and SEOPress plugins. Edit your SEOPress global settings directly from MainWP dashboard site.

900 1 CVE

Canonical SEO Content Syndication WordPress Plugin

canonical-seo-content-syndication

Canonical SEO Content syndication plugin adds rel=canonical tag for content syndication. The meta box is added at edit post section.

500 No CVEs

Developer Profile

Fix Multiple Redirects Developer Profile

jurajpuchky

2 plugins · 50 total installs

trust score

Avg Security Score

74/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Fix Multiple Redirects

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

JS Globals

FIXMTPLREDIR_isDebug

FAQ