WP-Safety

TechGasp Link Master Security & Risk Analysis

wordpress.org/plugins/linkedin-master

TechGasp Link Master, if you are serious about your linkedin connections and want to integrate your personal linkedin page, company follow button and …

200 active installs v5.1.4 PHP + WP 3.5+ Updated Mar 11, 2021
badgelinked-inlinkedinprofiletechgasp
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is TechGasp Link Master Safe to Use in 2026?

Generally Safe

Score 85/100

TechGasp Link Master has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The 'linkedin-master' plugin v5.1.4 exhibits a generally good security posture from static analysis, with no obvious critical vulnerabilities like dangerous functions, SQL injection risks, or unprotected entry points. The plugin demonstrates good practice by utilizing prepared statements for all SQL queries and includes a nonce check, indicating some awareness of security best practices.

However, there are significant concerns regarding output escaping, with only 6% of outputs being properly escaped. This leaves a substantial risk of Cross-Site Scripting (XSS) vulnerabilities where unsanitized data could be injected and rendered by the browser. The taint analysis also revealed two flows with unsanitized paths, which, while not rated as critical or high severity in this report, represent potential avenues for data leakage or unexpected behavior if exploited.

Given the absence of any recorded vulnerability history, the plugin appears to have a good track record. Nonetheless, the low percentage of properly escaped output is a serious weakness that requires immediate attention. The strengths lie in its minimal attack surface and the use of prepared statements, but the identified output escaping issues and unsanitized taint flows are concerning.

Key Concerns

  • Low percentage of properly escaped output
  • Flows with unsanitized paths found
Vulnerabilities
None known

TechGasp Link Master Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

TechGasp Link Master Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
136
8 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

6% escaped144 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

4 flows2 with unsanitized paths
widget (includes\linkedin-master-widget-buttons.php:16)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

TechGasp Link Master Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 12
actionadmin_menuincludes\linkedin-master-admin-addons.php:39
actionadmin_menuincludes\linkedin-master-admin-addons.php:42
actionadmin_menuincludes\linkedin-master-admin-settings-wide.php:50
actionadmin_menuincludes\linkedin-master-admin-settings-wide.php:53
actionnetwork_admin_menuincludes\linkedin-master-admin.php:10
actionadmin_menuincludes\linkedin-master-admin.php:11
actionadmin_menuincludes\linkedin-master-admin.php:14
actionwp_footerincludes\linkedin-master-settings-wide.php:33
actionwidgets_initincludes\linkedin-master-widget-buttons.php:3
actionwidgets_initincludes\linkedin-master-widget-profile-member.php:3
filterthe_contentlinkedin-master.php:53
filterplugin_action_linkslinkedin-master.php:54
Maintenance & Trust

TechGasp Link Master Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15
Last updatedMar 11, 2021
PHP min version
Downloads41K

Community Trust

Rating46/100
Number of ratings10
Active installs200
Alternatives

TechGasp Link Master Alternatives

Linkedin Profile Badge

Linkedin Profile Badge

linkedin-profile-badge

A
85

This plugin lets you easily add the Linkedin Profile badge to your WordPress blog via a shortcode.

100 No CVEs
WP LinkedIn Auto Publish

WP LinkedIn Auto Publish

wp-linkedin-auto-publish

A
99

WP LinkedIn Auto Publish automatically publishes posts, custom posts and pages to your LinkedIn profile and/or company pages.

8K 1 CVE
FP LinkedIn Profile

FP LinkedIn Profile

fp-linkedin-profile

A
85

Bring your LinkedIn profiles to your site to help users discover common professional connections. This plugin embed Profile summary card directly on y …

100 No CVEs
FP LinkedIn Company Profile

FP LinkedIn Company Profile

fp-linkedin-company-profile

A
85

Bring your Company LinkedIn profile to your site to help users to follow your company in Linkedin. This plugin embed Company Profile summary card dire …

40 No CVEs
Google+ Badge Widget

Google+ Badge Widget

google-badge-widget

A
85

Google+ Badge Widget integrated with Official Google Plus API. Google+ Widget enable users to adds beautiful widget on your Wordpress Blog.

30 No CVEs
Developer Profile

TechGasp Link Master Developer Profile

TechGasp

19 plugins · 3K total installs

84
trust score
Avg Security Score
86/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect TechGasp Link Master

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/linkedin-master/includes/linkedin-master-admin.php/wp-content/plugins/linkedin-master/includes/linkedin-master-admin-addons.php/wp-content/plugins/linkedin-master/includes/linkedin-master-admin-settings-wide.php/wp-content/plugins/linkedin-master/includes/linkedin-master-settings-wide.php/wp-content/plugins/linkedin-master/includes/linkedin-master-widget-buttons.php/wp-content/plugins/linkedin-master/includes/linkedin-master-widget-profile-member.php
Script Paths
https://platform.linkedin.com/in.jshttps://platform.linkedin.com/badges/js/badge.js

HTML / DOM Fingerprints

Data Attributes
data-id="linkedin-member-profile-widget"
JS Globals
IN
FAQ

Frequently Asked Questions about TechGasp Link Master