rel=”external” in a New Window Security & Risk Analysis
wordpress.org/plugins/rel-externalOpens a new window with rel="external" instead of having to use target="_blank" or target="_new"
Is rel=”external” in a New Window Safe to Use in 2026?
Generally Safe
Score 100/100rel=”external” in a New Window has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'rel-external' plugin v1.2.1 exhibits an exceptionally clean static analysis profile, with no identified entry points, dangerous functions, or unescaped outputs. The absence of SQL queries and file operations further strengthens its security posture. The plugin also boasts a clean vulnerability history, with no recorded CVEs, suggesting a history of secure development practices or limited public exposure that hasn't led to discovered vulnerabilities.
Despite the overwhelmingly positive static analysis, the complete lack of capability checks and nonce checks on any potential entry points (even though none were identified) presents a theoretical risk. If new entry points were introduced in future versions without proper authentication or authorization mechanisms, the plugin could become vulnerable. The current lack of identified issues is a significant strength, but the absence of core security checks in the codebase signals a potential oversight that could be exploited if the attack surface were to expand.
In conclusion, 'rel-external' v1.2.1 currently appears to be a secure plugin with no known vulnerabilities. Its strengths lie in its minimal attack surface and lack of dangerous code patterns. However, the absence of fundamental security checks like capability and nonce checks, even in the absence of current entry points, represents a minor but notable weakness that could become a concern in future updates.
Key Concerns
- Missing capability checks
- Missing nonce checks
rel=”external” in a New Window Security Vulnerabilities
rel=”external” in a New Window Code Analysis
Output Escaping
rel=”external” in a New Window Attack Surface
WordPress Hooks 2
Maintenance & Trust
rel=”external” in a New Window Maintenance & Trust
Maintenance Signals
Community Trust
rel=”external” in a New Window Alternatives
Auto External Link Nofollow
auto-external-link-nofollow
Automatically adds rel="nofollow noopener noreferrer" to all external links in post and page content.
Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links
broken-link-checker-seo
Broken Link Checker by AIOSEO ensures all links on your website are working. Check your site for broken links and easily fix them to improve SEO.
External Links – nofollow, noopener & new window
wp-external-links
Internal links & external links manager: open in new window or tab, control nofollow, ugc, sponsored & noopener. SEO friendly.
External Links in New Window / New Tab
open-external-links-in-a-new-window
Open external links in a new window or new tab. SEO optimized and XHTML Strict compliant.
Open Links In New Tab
open-links-in-new-tab
Opens external links and internal links in a new window depending on user settings. Manage all external & internal links on your site.
rel=”external” in a New Window Developer Profile
11 plugins · 4K total installs
How We Detect rel=”external” in a New Window
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/rel-external/relexternal.js/wp-content/plugins/rel-external/rel-external.js/wp-content/plugins/rel-external/relexternal.js/wp-content/plugins/rel-external/rel-external.jsHTML / DOM Fingerprints
headerWrap<!-- rel="external" in a New Window: http://pleer.co.uk/wordpress/plugins/rel-external/ -->name="relexternal_inline"name="relexternal_fulljq"value="relexternal_inline,relexternal_fulljq"window.openjQuery(function(){jQuery('a[rel*=external]').click(function(){window.open(this.href);return false;});});$(function(){$('a[rel*=external]').click(function(){window.open(this.href);return false;});});