Does Plink URL Shortener have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Plink URL Shortener compatible with WordPress 4.7.32?

According to WordPress.org data, Plink URL Shortener 1.0 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Plink URL Shortener updated?

Plink URL Shortener was last updated on Jan 31, 2017. Frequent updates are generally a positive security signal.

What is Plink URL Shortener's security score?

Plink URL Shortener has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Plink URL Shortener Security & Risk Analysis

wordpress.org/plugins/plink-url-shortener

Automatic wordpress link shortener, shortens posts, pages, categories, affiliate links, shorten external links or any URL via plink.ir

10 active installs v1.0 PHP + WP 3.1+ Updated Jan 31, 2017

shortshort-urlshorten-urlurlurl-shorten

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Plink URL Shortener Safe to Use in 2026?

Generally Safe

Score 85/100

Plink URL Shortener has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The plink-url-shortener plugin v1.0 exhibits a mixed security posture. While it boasts a limited attack surface with no known CVEs and no immediately apparent critical vulnerabilities from taint analysis, several concerning code signals suggest potential weaknesses. The most significant concern is the complete lack of output escaping and the use of raw SQL queries without prepared statements. This, combined with the absence of nonce and capability checks, opens the door to a variety of attacks, including Cross-Site Scripting (XSS) and SQL Injection, particularly within its single shortcode entry point. The plugin also performs file operations and external HTTP requests, which could be vectors for further compromise if not handled securely. The absence of any recorded vulnerabilities in its history is a positive sign, but the internal code analysis reveals practices that are highly discouraged in secure WordPress development.

Key Concerns

SQL queries not using prepared statements
0% of outputs properly escaped
0 Nonce checks
0 Capability checks
Unsanitized paths in taint flows

Vulnerabilities

None known

Plink URL Shortener Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Plink URL Shortener Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

Plink URL Shortener Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

0% escaped58 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

settings (plink_shorturl.php:167)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Plink URL Shortener Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[plink-url] plink_shorturl.php:84

WordPress Hooks 14

filterplugin_row_metaplink_shorturl.php:13

actionedit_postplink_shorturl.php:273

actionsave_postplink_shorturl.php:274

actionpublish_postplink_shorturl.php:275

actionadmin_menuplink_shorturl.php:276

filterpre_get_shortlinkplink_shorturl.php:277

filterthe_contentplink_shorturl.php:279

actionadmin_enqueue_scriptsplink_shorturl.php:281

actionadmin_headplink_shorturl.php:282

actionadmin_menuplink_shorturl.php:301

actionadmin_initplink_shorturl.php:314

actionadd_meta_boxesplink_shorturl.php:403

actionadmin_initplink_shorturl.php:408

actionplugins_loadedplink_shorturl.php:421

Maintenance & Trust

Plink URL Shortener Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedJan 31, 2017

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Plink URL Shortener Alternatives

WP URLs Shortener + Social icons [Official]

wp-url-shorten

100

Automatic wordpress link shortner, shorterns posts, pages, categories, affiliate links, shorten external links or any URL via eeb.me

10 No CVEs

Link Shortner

link-shortener

100

Link Shortner allows you to easily create clean, branded short permalink links for your posts custom URL.

800 No CVEs

Bitly URL Shortener

codehaveli-bitly-url-shortener

Bitly URL Shortener uses the functionality of Bitly API to generate Bitly short link without leaving your WordPress site.

600 1 CVE

URL Shortener

url-shortener

This plugin allows you to generate shortlinks for post/pages using URL Shorteners (e.g. Bit.ly, Su.pr, YOURLS, Goo.gl and many others).

100 No CVEs

GentleSource Short URL

gentlesource-short-url

Automatically shortens the blog post URL.

10 No CVEs

Developer Profile

Plink URL Shortener Developer Profile

persianlink

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Plink URL Shortener

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/plink-url-shortener/icon.png

HTML / DOM Fingerprints

Shortcode Output

<a href=""></a>

FAQ