Does Linker – URL shortener & track outbound link clicks have any unpatched vulnerabilities?

No. All known vulnerabilities in Linker – URL shortener & track outbound link clicks have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Linker – URL shortener & track outbound link clicks compatible with WordPress 6.7.5?

According to WordPress.org data, Linker – URL shortener & track outbound link clicks 1.3.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Linker – URL shortener & track outbound link clicks compatible with PHP 7.0+?

Linker – URL shortener & track outbound link clicks requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Linker – URL shortener & track outbound link clicks's security score?

Linker – URL shortener & track outbound link clicks has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Linker – URL shortener & track outbound link clicks Security & Risk Analysis

wordpress.org/plugins/linker

Track Outbound Link Clicks Easily: Shorten & track your site links by using your own domain name. e.g. "your-domain.com/go/link"

2K active installs v1.3.0 PHP 7.0+ WP 6.0+ Updated Dec 8, 2024

301click-trackinglink-shortenerredirectshortlinks

A · Safe

CVEs total1

Unpatched0

Last CVEOct 31, 2023

Plugin page Download

Safety Verdict

Is Linker – URL shortener & track outbound link clicks Safe to Use in 2026?

Generally Safe

Score 92/100

Linker – URL shortener & track outbound link clicks has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Oct 31, 2023Updated 1yr ago

Risk Assessment

The "linker" plugin v1.3.0 demonstrates several positive security practices, including the absence of direct SQL queries without prepared statements and the presence of nonce checks. The static analysis shows a clean slate regarding dangerous functions, file operations, and external HTTP requests. However, there are notable areas for concern. A significant portion of output (32%) is not properly escaped, which could lead to Cross-Site Scripting (XSS) vulnerabilities, especially given that the plugin's history includes an XSS vulnerability. The taint analysis revealing a flow with unsanitized paths, even if not classified as critical or high severity, warrants attention as it indicates potential weaknesses in input handling. The fact that there is one known CVE, although currently patched, and a history of XSS vulnerabilities suggests a pattern that requires vigilance. While the current version appears to have addressed past issues and exhibits good practices in some areas, the unescaped output and the taint flow highlight potential risks that could be exploited if not carefully managed.

Key Concerns

Significant unescaped output detected
Taint flow with unsanitized paths
Known past vulnerability (XSS)

Vulnerabilities

Linker – URL shortener & track outbound link clicks Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2023-47177medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Linker <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

Oct 31, 2023 Patched in 1.2.2 (171d)

Code Analysis

Analyzed Mar 16, 2026

Linker – URL shortener & track outbound link clicks Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

68% escaped19 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

count_and_redirect (classes\class-linker-cpt.php:197)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Linker – URL shortener & track outbound link clicks Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 11

actioninitclasses\class-linker-cpt.php:367

filterpost_updated_messagesclasses\class-linker-cpt.php:368

actionadmin_menuclasses\class-linker-cpt.php:370

actionmanage_posts_custom_columnclasses\class-linker-cpt.php:374

actionsave_postclasses\class-linker-cpt.php:375

actiontemplate_redirectclasses\class-linker-cpt.php:376

actionwp_dashboard_setupclasses\class-linker-cpt.php:379

actionpre_get_postsclasses\class-linker-cpt.php:382

actionrestrict_manage_postsclasses\class-linker-cpt.php:386

actionadmin_enqueue_scriptsclasses\class-linker-cpt.php:389

actionplugins_loadedlinker.php:95

Maintenance & Trust

Linker – URL shortener & track outbound link clicks Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedDec 8, 2024

PHP min version7.0

Downloads40K

Community Trust

Rating86/100

Number of ratings14

Active installs2K

Alternatives

Linker – URL shortener & track outbound link clicks Alternatives

Linkt – A Plugin for Affiliate Links, Branded Links and Custom Link Tracking & Management

linkt

Simplify your affiliate link management and tracking with Linkt, the ultimate WordPress plugin for creating, categorizing, and analyzing your website …

300 No CVEs

WP 301 Redirects by WPBranch

redirects-for-wp

WP 301 Redirects is easy to use, and provides an easy method for redirecting requests to another page on your site or elsewhere on the web.

0 No CVEs

Simple 301 Redirects By BetterLinks – Easy WordPress Redirect Manager for Redirects, 404 Error Log & More

simple-301-redirects

Simple 301 Redirects provides an easy method of redirecting requests to another page on your site or elsewhere on the web.

100K 7 CVEs

PublishPress Shortlinks – Custom URLs for Posts and External Links – Share Previews for Draft Posts

tinypress

100

Create custom links for your posts. These links are brandable, trackable, and can have custom view permissions.

100 No CVEs

Edge Link Router

edge-link-router

100

Simple redirect management with optional Cloudflare edge acceleration. Create short links, track clicks, add UTM parameters.

0 No CVEs

Developer Profile

Linker – URL shortener & track outbound link clicks Developer Profile

Elementor

15 plugins · 13.2M total installs

trust score

Avg Security Score

95/100

Avg Patch Time

704 days

View full developer profile

Detection Fingerprints

How We Detect Linker – URL shortener & track outbound link clicks

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/linker/assets/css/admin-linker.css/wp-content/plugins/linker/assets/js/admin-linker.js

Version Parameters

linker/assets/css/admin-linker.css?ver=linker/assets/js/admin-linker.js?ver=

HTML / DOM Fingerprints

CSS Classes

linker-permalink-copy-paste

HTML Comments

Data Attributes

id="linker-url-information"

FAQ