Does Google News Links have any unpatched vulnerabilities?

No. All known vulnerabilities in Google News Links have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Google News Links compatible with WordPress 3.2.1?

According to WordPress.org data, Google News Links 1.1 has been tested up to WordPress 3.2.1. Check the plugin's changelog for the latest compatibility information.

How often is Google News Links updated?

Google News Links was last updated on Sep 5, 2011. Frequent updates are generally a positive security signal.

What is Google News Links's security score?

Google News Links has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Google News Links Security & Risk Analysis

wordpress.org/plugins/google-news-links

The Google News Links plugin, allows a user to enter a google news rss feed and import the articles from the feed as links.

10 active installs v1.1 PHP + WP 2.0.2+ Updated Sep 5, 2011

google-newslinksrss

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Google News Links Safe to Use in 2026?

Generally Safe

Score 85/100

Google News Links has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The google-news-links plugin v1.1 exhibits a mixed security posture. On the positive side, the plugin has a remarkably small attack surface with no identified AJAX handlers, REST API routes, or shortcodes. Furthermore, there is no recorded vulnerability history, suggesting a history of secure development or infrequent discovery of issues. However, significant concerns arise from the static analysis. A substantial portion of SQL queries are not properly prepared, increasing the risk of SQL injection. Equally alarming is the complete lack of output escaping, meaning any data rendered to the user could potentially be exploited through cross-site scripting (XSS) attacks. The presence of a taint flow with unsanitized paths, even without a critical or high severity classification, combined with zero capability checks, further amplifies these risks, as it indicates a potential for malicious input to be processed without proper validation or authorization.

Key Concerns

SQL queries not using prepared statements
Zero output escaping
Taint flow with unsanitized paths
Zero capability checks
Zero nonce checks

Vulnerabilities

None known

Google News Links Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Google News Links Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

25% prepared8 total queries

Output Escaping

0% escaped10 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<gnl_admin> (gnl_admin.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Google News Links Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionadmin_menuindex.php:41

actiongoogle_links_cronindex.php:42

actionwpindex.php:50

Scheduled Events 1

google_links_cron

Maintenance & Trust

Google News Links Maintenance & Trust

Maintenance Signals

WordPress version tested3.2.1

Last updatedSep 5, 2011

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Google News Links Alternatives

GN Publisher: Google News Compatible RSS Feeds

gn-publisher

100

GN Publisher makes RSS feeds that comply with the Google News RSS Feed Technical Requirements for including your site in the Google News.

20K 1 CVE

Subscribe Button by AddToAny

add-to-any-subscribe

Help visitors subscribe to your blog using email or any feed reader, such as Feedly, The Old Reader, Yahoo!, AOL, and many more feed services.

1K No CVEs

Remove Amazon Links from RSS Feed

remove-amazon-links-from-rss-feed

Removes all links to Amazon.com/Amzn.to in the RSS feed.

100 No CVEs

RSS Links Manager

rss-links-manager

Manage and customise your RSS feed links.

80 No CVEs

Daring Fireball-style Linked List Plugin

daring-fireball-linked-list

This plugin makes your RSS feed behave like Daring Fireball's linked list posts, and has some extra features to make posting linked lists easier.

40 No CVEs

Developer Profile

Google News Links Developer Profile

plumwd

4 plugins · 130 total installs

trust score

Avg Security Score

83/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Google News Links

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

HTML Comments

Copyright 2011 Elke Hinze (email : elke@plumeriawebdesign.com)This program is free software; you can redistribute it and/or modifyit under the terms of the GNU General Public License, version 2, aspublished by the Free Software Foundation.+7 more

Data Attributes

option_nameoption_valuelink_idlink_namelink_urllink_target+6 more

FAQ