Does mi13-access-by-link have any unpatched vulnerabilities?

No. All known vulnerabilities in mi13-access-by-link have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is mi13-access-by-link compatible with WordPress 6.9.4?

According to WordPress.org data, mi13-access-by-link 1.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is mi13-access-by-link updated?

mi13-access-by-link was last updated on Unknown. Frequent updates are generally a positive security signal.

What is mi13-access-by-link's security score?

mi13-access-by-link has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

mi13-access-by-link Security & Risk Analysis

wordpress.org/plugins/mi13-access-by-link

Доступ к Вашим постам (на утверждении) по ссылке для модераторов.

0 active installs v1.3 PHP + WP 6.4.0+ Updated Unknown

access-by-linkpendingprivacy-link

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is mi13-access-by-link Safe to Use in 2026?

Generally Safe

Score 100/100

mi13-access-by-link has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The mi13-access-by-link plugin v1.3 exhibits a mixed security posture. On the positive side, the absence of any known vulnerabilities in its history, coupled with the use of prepared statements for all SQL queries, suggests good development practices in those areas. The code also shows some attention to security with a capability check implemented. However, the static analysis reveals significant concerns regarding its attack surface. With two AJAX handlers identified, and crucially, both lacking authentication checks, this presents a direct and immediate risk. This means that unauthenticated users can potentially interact with these handlers, opening the door for various attacks depending on their functionality. The lack of nonce checks on these AJAX endpoints further exacerbates this risk. The taint analysis showing zero flows is positive, but this might be influenced by the limited scope or complexity of the plugin's code and doesn't negate the identified attack vectors.

Key Concerns

AJAX handlers without authentication checks
Missing nonce checks on AJAX endpoints
Unescaped output in 33% of outputs

Vulnerabilities

None known

mi13-access-by-link Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

mi13-access-by-link Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

67% escaped18 total outputs

Attack Surface

2 unprotected

mi13-access-by-link Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_mi13_access_by_linkmi13-access-by-link.php:283

noprivwp_ajax_mi13_access_by_linkmi13-access-by-link.php:284

WordPress Hooks 5

actionplugins_loadedmi13-access-by-link.php:21

actionpublish_postmi13-access-by-link.php:78

actionadd_meta_boxesmi13-access-by-link.php:83

actionadmin_menumi13-access-by-link.php:113

actionadmin_initmi13-access-by-link.php:136

Maintenance & Trust

mi13-access-by-link Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

mi13-access-by-link Alternatives

Delete Pending Comments

delete-pending-comments

A quick way to delete all pending and spam comments. Useful for victims of spammer attacks.

10K No CVEs

Pending Submission Notifications

pending-submission-notifications

Email notifications for pending review content submission.

1K No CVEs

PublishPress Statuses – Custom Post Status and Workflow

publishpress-statuses

100

The PublishPress Statuses plugin allows you to create additional statuses for your posts. You can use each status to create publishing workflows.

1K No CVEs

AffiliateWP – Force Pending Referrals

affiliatewp-force-pending-referrals

100

Force all referrals to a "pending" status.

600 No CVEs

Pending Indicator

pending-inidicator

Show the number of pending posts waiting for approval in the admin menu, if any. Also automatically supports custom post types.

200 No CVEs

Developer Profile

mi13-access-by-link Developer Profile

mi13

7 plugins · 20 total installs

trust score

Avg Security Score

98/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect mi13-access-by-link

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/mi13-access-by-link/languages/

HTML / DOM Fingerprints

CSS Classes

content-areasite-mainentry-headerentry-titleentry-contententry-footerpost-thumbnail

Data Attributes

id="primary"id="main"role="main"class="content-area"class="site-main"class="post-thumbnail"+10 more

Shortcode Output

<div id="primary" class="content-area">
        <main id="main" class="site-main" role="main">
            <article>
                <div class="post-thumbnail">
                    $thumbnail
                </div>
                <header class="entry-header">
                    <h1 class="entry-title">$title</h1>
                </header>
                <div class="entry-content">
                    $content
                </div>
                <footer class="entry-footer">
                    $cat
                </footer>
            </article>
        </main>
    </div>

FAQ