Does Rel Nofollow have any unpatched vulnerabilities?

No. All known vulnerabilities in Rel Nofollow have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Rel Nofollow compatible with WordPress 6.9.4?

According to WordPress.org data, Rel Nofollow 1.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Rel Nofollow updated?

Rel Nofollow was last updated on Dec 6, 2025. Frequent updates are generally a positive security signal.

What is Rel Nofollow's security score?

Rel Nofollow has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Rel Nofollow Security & Risk Analysis

wordpress.org/plugins/rel-nofollow

Adds rel="nofollow" to posts external links unless specified otherwise.

800 active installs v1.4 PHP + WP 3.7+ Updated Dec 6, 2025

linksrelseo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Rel Nofollow Safe to Use in 2026?

Generally Safe

Score 100/100

Rel Nofollow has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The 'rel-nofollow' plugin version 1.4 exhibits a generally strong security posture due to the absence of any identified vulnerabilities in its history and a lack of critical issues in the static analysis. The complete absence of SQL queries without prepared statements and no external HTTP requests are positive indicators. However, a significant concern lies in the output escaping. With 2 total outputs and 0% properly escaped, there's a high risk of Cross-Site Scripting (XSS) vulnerabilities if any user-supplied or dynamically generated content is being displayed directly without sanitization. While the plugin has no recorded CVEs, this lack of history doesn't negate the presence of potential vulnerabilities indicated by the unescaped output.

Key Concerns

Output not properly escaped

Vulnerabilities

None known

Rel Nofollow Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Rel Nofollow Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

Rel Nofollow Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

filterwp_insert_post_datarel-nofollow.php:42

actionadd_meta_boxesrel-nofollow.php:43

filterplugin_row_metarel-nofollow.php:44

Maintenance & Trust

Rel Nofollow Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 6, 2025

PHP min version

Downloads36K

Community Trust

Rating100/100

Number of ratings4

Active installs800

Alternatives

Rel Nofollow Alternatives

Make Paths Relative

make-paths-relative

100

Convert Absolute URLs to be relative in your fingertip.

2K 1 CVE

Contextly Recommends

contextly-related-links

Build your audience with great related and popular recommendations. Let readers follow topics. Editorial control and machine learning.

100 No CVEs

Also In This Series

also-in-this-series

Group related posts in a post series and automatically list all of the posts in the series as part of the content.

40 No CVEs

Auto External Link Nofollow

auto-external-link-nofollow

100

Automatically adds rel="nofollow noopener noreferrer" to all external links in post and page content.

10 No CVEs

Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links

broken-link-checker-seo

Broken Link Checker by AIOSEO ensures all links on your website are working. Check your site for broken links and easily fix them to improve SEO.

300K 3 CVEs

Developer Profile

Rel Nofollow Developer Profile

Stefano

6 plugins · 3K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

1578 days

View full developer profile

Detection Fingerprints

How We Detect Rel Nofollow

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Version Parameters

rel-nofollow/style.css?ver=rel-nofollow.js?ver=

HTML / DOM Fingerprints

Data Attributes

id="rnf_exclude_post"name="rnf_exclude_post"id="rel_nofollow"name="rnf_metabox_nonce"id="rnf_metabox_nonce"

FAQ