Does Random Post Redirect (also with Shortcode) have any unpatched vulnerabilities?

No. All known vulnerabilities in Random Post Redirect (also with Shortcode) have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Random Post Redirect (also with Shortcode) compatible with WordPress 4.9.29?

According to WordPress.org data, Random Post Redirect (also with Shortcode) 1.0 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Random Post Redirect (also with Shortcode) updated?

Random Post Redirect (also with Shortcode) was last updated on Mar 15, 2018. Frequent updates are generally a positive security signal.

What is Random Post Redirect (also with Shortcode)'s security score?

Random Post Redirect (also with Shortcode) has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Random Post Redirect (also with Shortcode) Security & Risk Analysis

wordpress.org/plugins/random-post-redirect-also-with-shortcode

Redirect user to a random post with a custom /random (or anything else) URL

0 active installs v1.0 PHP + WP + Updated Mar 15, 2018

adminpostsrandomredirect

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Random Post Redirect (also with Shortcode) Safe to Use in 2026?

Generally Safe

Score 85/100

Random Post Redirect (also with Shortcode) has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The plugin "random-post-redirect-also-with-shortcode" v1.0 presents a generally good security posture based on the provided static analysis. The absence of dangerous functions, SQL injection vulnerabilities (all queries use prepared statements), and unescaped output are strong positive indicators. The plugin also has a clean vulnerability history, with no recorded CVEs.

However, there are a few areas that warrant attention. The presence of a shortcode without explicit capability checks or nonce checks, while currently having a limited attack surface (1 entry point, 0 unprotected), could become a concern if the shortcode's functionality expands or if vulnerabilities are discovered in core WordPress functions it relies on. The lack of any taint analysis flows might suggest a simple plugin, but it's also possible that the analysis was not comprehensive enough to uncover potential issues if user-supplied data were to be mishandled in unexpected ways.

Overall, the plugin appears safe for current use, with no critical or high-risk issues identified. The strengths lie in its clean code practices regarding SQL and output handling. The primary weakness is the potential for future issues arising from the shortcode's unchecked input processing, though this is not a confirmed vulnerability at this time. Vigilance is recommended, especially if the plugin is updated or its functionality changes.

Key Concerns

Shortcode without capability check
Shortcode without nonce check

Vulnerabilities

None known

Random Post Redirect (also with Shortcode) Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Random Post Redirect (also with Shortcode) Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped3 total outputs

Attack Surface

Random Post Redirect (also with Shortcode) Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[random_post] index.php:38

WordPress Hooks 3

actioninitindex.php:14

actiontemplate_redirectindex.php:26

actionafter_switch_themeindex.php:59

Maintenance & Trust

Random Post Redirect (also with Shortcode) Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedMar 15, 2018

PHP min version

Downloads990

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Random Post Redirect (also with Shortcode) Alternatives

VK Link Target Controller

vk-link-target-controller

100

Redirect your visitors to another page than the post content when they click on the post title.

30K No CVEs

WP Admin UI Customize

wp-admin-ui-customize

Customize the management screen UI.

30K 2 CVEs

Advanced Random Posts Widget

advanced-random-posts-widget

Provides flexible and advanced random posts. Display it via shortcode or widget with thumbnails, post excerpt, and much more!

10K No CVEs

Smart Recent Posts Widget

smart-recent-posts-widget

Provides advanced recent posts widget,you can display it with thumbnails, excerpt, date, author, comment count and more.

9K 1 unpatched

Redirect

simple-redirect

Easily redirect any post or page to another page with a dropdown menu or by manually typing in a URL. Check out the screenshots.

5K No CVEs

Developer Profile

Random Post Redirect (also with Shortcode) Developer Profile

dpoakaspine

9 plugins · 630 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Random Post Redirect (also with Shortcode)

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

button

Shortcode Output

<a href="" title=""><img src="" /><span class="button">

FAQ