WP-Safety

Linkit expiration links Security & Risk Analysis

wordpress.org/plugins/linkit-expiration-links

Linkit is a smart link shortener and expiration plugin for WordPress. Create custom short URLs, track clicks, and control access with time- or click-b …

10 active installs v3.0.1 PHP 7.4+ WP 5.5+ Updated Dec 5, 2025
expiring-linkslink-expirationshort-linkstemporary-linksurl-shortener
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Linkit expiration links Safe to Use in 2026?

Generally Safe

Score 100/100

Linkit expiration links has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The plugin 'linkit-expiration-links' v3.0.1 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and 100% proper output escaping are significant strengths. Furthermore, the complete lack of unsanitized taint flows and no recorded vulnerabilities or CVEs suggest a well-maintained and secure codebase. The plugin also demonstrates good security practice by incorporating nonce checks for some entry points, although capability checks are not utilized, which could be a point of concern for specific scenarios. The limited attack surface, primarily consisting of one shortcode and no unprotected entry points, further enhances its security profile.

While the code analysis reveals no immediate critical or high-severity vulnerabilities, the absence of capability checks on the single shortcode is a potential weakness. This means that any authenticated user, regardless of their role or permissions, could potentially interact with this shortcode, which might lead to unintended consequences if the shortcode's functionality is sensitive. The vulnerability history being completely clear is a positive indicator, but it's important to remember that past security is not a guarantee of future security. Continuous monitoring and updates remain crucial for any plugin.

In conclusion, 'linkit-expiration-links' v3.0.1 appears to be a secure plugin with robust coding practices. The primary area for potential improvement lies in implementing capability checks for its shortcode to further restrict access and mitigate any latent risks. The plugin's strong foundation in prepared statements and output escaping, coupled with a clean vulnerability record, makes it a relatively low-risk option.

Key Concerns

  • Missing capability checks on shortcode
Vulnerabilities
None known

Linkit expiration links Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Linkit expiration links Release Timeline

v3.0.1Current
v3.0.0
Code Analysis
Analyzed Apr 16, 2026

Linkit expiration links Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
17 prepared
Unescaped Output
0
80 escaped
Nonce Checks
4
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared17 total queries

Output Escaping

100% escaped80 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

4 flows
linkitex_admin_page (includes/admin-ui.php:20)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Linkit expiration links Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[linkit_list] includes/frontend-shortcodes.php:5
WordPress Hooks 14
actionadmin_menuadmin/config-ctrl.php:8
actionadmin_menuincludes/admin-ui.php:3
actioninitincludes/handlers.php:4
filterquery_varsincludes/handlers.php:10
actiontemplate_redirectincludes/handlers.php:16
actionadmin_menuincludes/settings.php:4
actionadmin_menuincludes/shortcodes.php:4
actioninitlinkit-rewrite.php:7
filterquery_varslinkit-rewrite.php:14
filtertemplate_includelinkit-rewrite.php:51
filterthe_contentlinkit-rewrite.php:55
actiontemplate_redirectlinkit-rewrite.php:76
actionadmin_enqueue_scriptslinkit.php:87
actionwp_enqueue_scriptslinkit.php:97
Maintenance & Trust

Linkit expiration links Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 5, 2025
PHP min version7.4
Downloads419

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Linkit expiration links Alternatives

URL Shortify – Simple and Easy URL Shortener

URL Shortify – Simple and Easy URL Shortener

url-shortify

A
92

URL Shortify helps you beautify, manage, share & cloak any links on or off your WordPress website. Create links using your domain name!

10K 9 CVEs
Hi.Fan URL Shortener

Hi.Fan URL Shortener

hifan

A
100

Automatically create short, branded URLs for your WordPress posts and pages with Hi.Fan URL Shortener.

0 No CVEs
Linkkit

Linkkit

linkkit

A
100

Automatically create and manage Linkkit short links when you publish WordPress posts and pages.

0 No CVEs
TLY URL Shortener

TLY URL Shortener

tly-url-shortener

A
100

Generate and manage T.LY short links directly inside WordPress for posts, pages, and manually selected external links.

0 No CVEs
BetterLinks – URL Shortener, Link Tracking, Analytics & Affiliate Link Manager

BetterLinks – URL Shortener, Link Tracking, Analytics & Affiliate Link Manager

betterlinks

A
98

Ultimate plugin to create, shorten, track and manage any URL. Gather analytics reports and run successful marketing campaigns easily.

20K 3 CVEs
Developer Profile

Linkit expiration links Developer Profile

engineeritforme

1 plugin · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Linkit expiration links

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/linkit-expiration-links/includes/assets/css/admin-ui.css/wp-content/plugins/linkit-expiration-links/includes/assets/css/frontend-shortcodes.css
Version Parameters
linkit-expiration-links/includes/assets/css/admin-ui.css?ver=linkit-expiration-links/includes/assets/css/frontend-shortcodes.css?ver=

HTML / DOM Fingerprints

CSS Classes
linkit-list-wraplinkit-list-tablelinkit-status-badge
Data Attributes
linkit_icon_linklinkit_label_linklinkit_icon_clickslinkit_label_clickslinkit_icon_expireslinkit_label_expires+8 more
Shortcode Output
[linkit_list]
FAQ

Frequently Asked Questions about Linkit expiration links