Does Link This Bookmarklet have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Link This Bookmarklet compatible with WordPress 2.8?

According to WordPress.org data, Link This Bookmarklet 1.0 has been tested up to WordPress 2.8. Check the plugin's changelog for the latest compatibility information.

How often is Link This Bookmarklet updated?

Link This Bookmarklet was last updated on Sep 16, 2009. Frequent updates are generally a positive security signal.

What is Link This Bookmarklet's security score?

Link This Bookmarklet has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Link This Bookmarklet Security & Risk Analysis

wordpress.org/plugins/link-this-bookmarklet

Provides the ability to have a bookmarklet on your browser that will let you add any page as a link on your blog.

10 active installs v1.0 PHP + WP 2.8+ Updated Sep 16, 2009

bookmarkingbookmarkletlinks

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Link This Bookmarklet Safe to Use in 2026?

Generally Safe

Score 85/100

Link This Bookmarklet has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 16yr ago

Risk Assessment

The "link-this-bookmarklet" v1.0 plugin exhibits a generally strong security posture, primarily due to its minimal attack surface and the absence of known vulnerabilities. The static analysis reveals zero entry points like AJAX handlers, REST API routes, shortcodes, or cron events, and critically, none of these are unprotected. The code also avoids dangerous functions, file operations, and external HTTP requests. SQL queries are exclusively handled with prepared statements, which is a significant security positive. However, a notable concern is the output escaping, where only 58% of the 12 identified outputs are properly escaped. This indicates a potential for cross-site scripting (XSS) vulnerabilities if the unescaped outputs contain user-controlled data.

The vulnerability history is entirely clear, with no recorded CVEs, which is excellent. This suggests a history of secure development or a lack of past exploitable issues. The taint analysis also found no critical or high-severity flows with unsanitized paths, reinforcing the impression of a relatively safe plugin. Despite the strong points, the insufficient output escaping is a weakness that could be exploited. While the lack of an attack surface is a major strength, the identified output escaping issue warrants attention.

Key Concerns

Insufficient output escaping

Vulnerabilities

None known

Link This Bookmarklet Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Link This Bookmarklet Release Timeline

v1.0Current

Code Analysis

Analyzed Apr 16, 2026

Link This Bookmarklet Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

7 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

58% escaped12 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

1 flows

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Link This Bookmarklet Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

filterplugin_row_metalink-this-bookmarklet.php:20

actiontemplate_redirectlink-this-bookmarklet.php:23

actiontemplate_redirectlink-this-bookmarklet.php:27

actioninitlink-this-bookmarklet.php:59

Maintenance & Trust

Link This Bookmarklet Maintenance & Trust

Maintenance Signals

WordPress version tested2.8

Last updatedSep 16, 2009

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Link This Bookmarklet Alternatives

Social Bookmarking JP

social-bookmarking-jp

Embedding Japanese major social bookmark services hyper links and icons

30 No CVEs

Share+ by Grouptivity

grouptivity

Not just another sharing plugin. Share+ gives readers a simple way to save, share and discover your top content with friends, family and co-workers.

10 No CVEs

Broken Link Checker

broken-link-checker

Broken Link Checker helps you catch broken links & images fast, before they hurt your SEO or UX. Scan and bulk-fix issues from one easy dashboard.

500K 12 CVEs

Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links

broken-link-checker-seo

Broken Link Checker by AIOSEO ensures all links on your website are working. Check your site for broken links and easily fix them to improve SEO.

300K 3 CVEs

PrettyLinks – Affiliate Links, Link Branding, Link Tracking, Marketing and Stripe Payments Plugin

pretty-link

🌠 The best WordPress link management, branding, tracking, sharing and payments plugin. Easily make pretty & trackable shortlinks. 🔗

300K 8 CVEs

Developer Profile

Link This Bookmarklet Developer Profile

dalziel

6 plugins · 80 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Link This Bookmarklet

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

icon32wrapstuffbox

Data Attributes

tabindex

FAQ