Does RationalRedirects have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is RationalRedirects compatible with WordPress 6.9.4?

According to WordPress.org data, RationalRedirects 1.0.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is RationalRedirects compatible with PHP 7.4+?

RationalRedirects requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is RationalRedirects updated?

RationalRedirects was last updated on Mar 6, 2026. Frequent updates are generally a positive security signal.

What is RationalRedirects's security score?

RationalRedirects has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

RationalRedirects Security & Risk Analysis

wordpress.org/plugins/rationalredirects

Simple, fast URL redirects with regex support and automatic slug change tracking.

0 active installs v1.0.1 PHP 7.4+ WP 5.0+ Updated Mar 6, 2026

301-redirect302-redirectredirectregex-redirecturl-redirect

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is RationalRedirects Safe to Use in 2026?

Generally Safe

Score 100/100

RationalRedirects has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "rationalredirects" v1.0.1 plugin demonstrates a generally strong security posture, with robust use of prepared statements for SQL queries and proper output escaping. The complete absence of known CVEs and a history free of vulnerabilities are positive indicators. Furthermore, all identified entry points (AJAX handlers) are protected by nonce and capability checks, which is excellent practice.

However, a significant concern arises from the presence of the `unserialize` function. While not explicitly flagged as exploitable in the taint analysis, `unserialize` is inherently dangerous if used with user-supplied data, as it can lead to object injection vulnerabilities. The taint analysis also reveals three high-severity flows with unsanitized paths. This suggests that data processed by these flows might be exposed to manipulation or unauthorized access, even though the specific impact isn't classified as critical.

In conclusion, "rationalredirects" v1.0.1 is built on a solid foundation of secure coding practices, particularly in its database and output handling. The lack of historical vulnerabilities is reassuring. The primary weaknesses lie in the potential risk associated with `unserialize` and the identified high-severity unsanitized paths, which warrant careful review and mitigation to fully solidify its security.

Key Concerns

High severity unsanitized paths found
Dangerous function unserialize used

Vulnerabilities

None known

RationalRedirects Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

RationalRedirects Release Timeline

v1.0.1Current

Code Analysis

Analyzed Apr 16, 2026

RationalRedirects Code Analysis

Dangerous Functions

Raw SQL Queries

31 prepared

Unescaped Output

110 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$unserialized = @unserialize( $action_data ); // phpcs:ignore WordPress.PHP.NoSilencedErrors.Discourincludes/import/importers/class-redirection-importer.php:291

SQL Query Safety

100% prepared31 total queries

Output Escaping

100% escaped110 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

maybe_redirect (includes/class-redirects.php:155)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

RationalRedirects Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 5

authwp_ajax_rationalredirects_add_redirectincludes/class-redirects.php:65

authwp_ajax_rationalredirects_delete_redirectincludes/class-redirects.php:66

authwp_ajax_rationalredirects_get_importersincludes/import/class-import-admin.php:41

authwp_ajax_rationalredirects_preview_importincludes/import/class-import-admin.php:42

authwp_ajax_rationalredirects_run_importincludes/import/class-import-admin.php:43

WordPress Hooks 11

actionadmin_menuincludes/class-admin.php:46

actionadmin_initincludes/class-admin.php:47

actionadmin_enqueue_scriptsincludes/class-admin.php:48

actiontemplate_redirectincludes/class-redirects.php:59

actionpost_updatedincludes/class-redirects.php:62

actionadmin_enqueue_scriptsincludes/import/class-import-admin.php:46

actionrationalredirects_register_importersincludes/import/class-import-manager.php:48

actioninitincludes/import/class-import-manager.php:51

actionadmin_menuincludes/rationalwp-admin-menu.php:74

actionplugins_loadedrationalredirects.php:51

actionplugins_loadedrationalredirects.php:54

Maintenance & Trust

RationalRedirects Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 6, 2026

PHP min version7.4

Downloads186

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

RationalRedirects Alternatives

Simple 301 Redirects By BetterLinks – Easy WordPress Redirect Manager for Redirects, 404 Error Log & More

simple-301-redirects

Simple 301 Redirects provides an easy method of redirecting requests to another page on your site or elsewhere on the web.

100K 7 CVEs

Quick 301 Redirects

quick-301-redirects

100

The fastest & easiest way to do 301 redirects. You can set each redirect or bulk upload unlimited number of 301 redirects using a CSV file

7K No CVEs

Advanced 301 and 302 Redirect

advanced-301-and-302-redirect

100

Advanced plugin will allow you to create 301 and 302 redirects on your site and organize them by folders.

1K No CVEs

Easy IP Redirection

easy-ip-redirection

Easy IP Redirection plugin redirect visitors from Website URL to specific URL based on their country.

10 No CVEs

301 WordPress Redirect Plugin

pranshtech-301-redirect-manager

100

Say Goodbye to Broken Links With Our 301 WordPress Redirect Plugin

10 No CVEs

Developer Profile

RationalRedirects Developer Profile

rationalwp

2 plugins · 200 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect RationalRedirects

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/rationalredirects/assets/css/admin.css/wp-content/plugins/rationalredirects/assets/js/admin-redirects.js

Version Parameters

rationalredirects/assets/css/admin.css?ver=rationalredirects/assets/js/admin-redirects.js?ver=

HTML / DOM Fingerprints

CSS Classes

rationalredirects-settingsrationalredirects-settings-saved

Data Attributes

data-nonce="rationalredirects_nonce"

JS Globals

rationalredirectsRedirects

FAQ