Does Friends Link Widget have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Friends Link Widget compatible with WordPress 4.7.33?

According to WordPress.org data, Friends Link Widget 1.7 has been tested up to WordPress 4.7.33. Check the plugin's changelog for the latest compatibility information.

How often is Friends Link Widget updated?

Friends Link Widget was last updated on Mar 14, 2017. Frequent updates are generally a positive security signal.

What is Friends Link Widget's security score?

Friends Link Widget has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Friends Link Widget Security & Risk Analysis

wordpress.org/plugins/friends-link-widget

Simple method to add your friends website url to your site through widget

600 active installs v1.7 PHP + WP 4.3+ Updated Mar 14, 2017

friends-linkfriends-urllink-widgeturl-widgetwidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Friends Link Widget Safe to Use in 2026?

Generally Safe

Score 85/100

Friends Link Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "friends-link-widget" plugin version 1.7 exhibits a seemingly strong security posture based on the static analysis. It reports zero entry points, meaning there are no AJAX handlers, REST API routes, shortcodes, or cron events exposed. Furthermore, the absence of dangerous functions, raw SQL queries, file operations, external HTTP requests, and bundled libraries is a positive indicator. The plugin also reports zero known vulnerabilities, which suggests a history of stability. However, a significant concern arises from the low percentage of properly escaped output (27%). This indicates that a substantial amount of user-supplied data or dynamic content might be rendered directly to the browser without adequate sanitization, potentially exposing the site to Cross-Site Scripting (XSS) vulnerabilities. While the plugin has no recorded vulnerability history, the lack of output escaping is a serious omission that could lead to vulnerabilities even without prior known issues.

Key Concerns

Low percentage of properly escaped output

Vulnerabilities

None known

Friends Link Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Friends Link Widget Release Timeline

v1.7Current

v1.5

v1.4.1

v1.4

v1.3.1

v1.3

v1.2

v1.1.1

v1.1

v1.0

Code Analysis

Analyzed Mar 16, 2026

Friends Link Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

22 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

27% escaped83 total outputs

Attack Surface

Friends Link Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionwidgets_initfriends-link-widget.php:12

Maintenance & Trust

Friends Link Widget Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.33

Last updatedMar 14, 2017

PHP min version

Downloads20K

Community Trust

Rating100/100

Number of ratings1

Active installs600

Alternatives

Friends Link Widget Alternatives

Custom Link Widget

custom-link-widget

Custom Link Widget Plugin is a Free WordPress plugin which allows you to add Hyperlinks directly using a Widget. This is quite similar to WordPress Li …

1K No CVEs

Links With Icons Widget

links-with-icons-widget

A widget to display links with icons alongside.

1K No CVEs

Classic Widgets

classic-widgets

100

Enables the previous "classic" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.

2.0M No CVEs

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 24 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 59 CVEs

Developer Profile

Friends Link Widget Developer Profile

M A Vinoth Kumar

21 plugins · 4K total installs

trust score

Avg Security Score

84/100

Avg Patch Time

462 days

View full developer profile

Detection Fingerprints

How We Detect Friends Link Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/friends-link-widget/style.css

Version Parameters

friends-link-widget/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

buffercode_fl_widget_info

HTML Comments

Open in Same or New Window BufferCode

Data Attributes

id="buffercode_fl_text1"

FAQ