Does Safe Redirect Manager have any unpatched vulnerabilities?

No. All known vulnerabilities in Safe Redirect Manager have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Safe Redirect Manager compatible with WordPress 6.9.4?

According to WordPress.org data, Safe Redirect Manager 2.2.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Safe Redirect Manager compatible with PHP 7.4+?

Safe Redirect Manager requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Safe Redirect Manager updated?

Safe Redirect Manager was last updated on Jan 4, 2026. Frequent updates are generally a positive security signal.

What is Safe Redirect Manager's security score?

Safe Redirect Manager has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Safe Redirect Manager Security & Risk Analysis

wordpress.org/plugins/safe-redirect-manager

Safely manage your website's HTTP redirects.

40K active installs v2.2.2 PHP 7.4+ WP 6.5+ Updated Jan 4, 2026

http-redirectsmultisite-redirectsredirect-managersafe-http-redirectionurl-redirection

A · Safe

CVEs total1

Unpatched0

Last CVEJun 19, 2022

Plugin page Download

Safety Verdict

Is Safe Redirect Manager Safe to Use in 2026?

Generally Safe

Score 100/100

Safe Redirect Manager has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jun 19, 2022Updated 2mo ago

Risk Assessment

The `safe-redirect-manager` plugin version 2.2.2 exhibits a generally strong security posture, primarily due to its robust use of prepared statements for SQL queries and a high percentage of properly escaped output. The absence of unprotected entry points, such as unauthenticated AJAX handlers or REST API routes, is also a positive indicator. However, the presence of two unsanitized paths in the taint analysis, even without critical or high severity implications, warrants attention as it suggests potential for unexpected behavior or subtle vulnerabilities if exploited in conjunction with other factors. The plugin's vulnerability history, with one medium severity CVE related to 'Open Redirect' in mid-2022, indicates a past concern that has since been addressed. The fact that no known CVEs are currently unpatched is reassuring, but the past occurrence of an open redirect highlights a potential area of focus for developers in future versions.

Key Concerns

Taint flow with unsanitized paths
Past medium severity vulnerability (Open Redirect)

Vulnerabilities

Safe Redirect Manager Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2022-33987medium · 5.3URL Redirection to Untrusted Site ('Open Redirect')

got (JS Package) <= 11.8.4 and 12.0-<12.1.0 - Open Redirect

Jun 19, 2022 Patched in 2.0.0 (583d)

Code Analysis

Analyzed Mar 16, 2026

Safe Redirect Manager Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

47 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

92% escaped51 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

maybe_redirect (inc\classes\class-srm-redirect.php:275)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Safe Redirect Manager Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 2

authwp_ajax_srm_validate_from_urlinc\classes\class-srm-post-type.php:52

authwp_ajax_srm_autocompleteinc\classes\class-srm-post-type.php:53

WordPress Hooks 28

actioninitinc\classes\class-srm-post-type.php:33

actioninitinc\classes\class-srm-post-type.php:34

actionadmin_initinc\classes\class-srm-post-type.php:35

actionsave_postinc\classes\class-srm-post-type.php:36

filtermanage_redirect_rule_posts_columnsinc\classes\class-srm-post-type.php:37

filtermanage_edit-redirect_rule_sortable_columnsinc\classes\class-srm-post-type.php:38

actionmanage_redirect_rule_posts_custom_columninc\classes\class-srm-post-type.php:39

actionquick_edit_custom_boxinc\classes\class-srm-post-type.php:40

actionbulk_edit_custom_boxinc\classes\class-srm-post-type.php:41

actiontransition_post_statusinc\classes\class-srm-post-type.php:42

filterpost_updated_messagesinc\classes\class-srm-post-type.php:43

actionadmin_noticesinc\classes\class-srm-post-type.php:44

filterthe_titleinc\classes\class-srm-post-type.php:45

actionadmin_print_styles-edit.phpinc\classes\class-srm-post-type.php:46

actionadmin_print_styles-post.phpinc\classes\class-srm-post-type.php:47

actionadmin_print_styles-post-new.phpinc\classes\class-srm-post-type.php:48

filterpost_type_linkinc\classes\class-srm-post-type.php:49

filterdefault_hidden_columnsinc\classes\class-srm-post-type.php:50

actionadmin_enqueue_scriptsinc\classes\class-srm-post-type.php:51

actionpre_get_postsinc\classes\class-srm-post-type.php:79

filterposts_clausesinc\classes\class-srm-post-type.php:80

filterpost_row_actionsinc\classes\class-srm-post-type.php:82

actioninitinc\classes\class-srm-redirect.php:32

actiontemplate_redirectinc\classes\class-srm-redirect.php:55

actionparse_requestinc\classes\class-srm-redirect.php:57

filterallowed_redirect_hostsinc\classes\class-srm-redirect.php:226

filterwp_redirectinc\classes\class-srm-redirect.php:335

actionadmin_noticessafe-redirect-manager.php:44

Maintenance & Trust

Safe Redirect Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 4, 2026

PHP min version7.4

Downloads1.9M

Community Trust

Rating94/100

Number of ratings78

Active installs40K

Alternatives

Safe Redirect Manager Alternatives

Premmerce Redirect Manager

premmerce-redirect-manager

The Premmerce Redirect Manager enables you to create 301 and 302 redirects and to set up the automatic redirects for the deleted products in the WooCo …

600 3 CVEs

Page Redirection & Hit Counter

redirection-page-hit-counter

Page Redirection, Post Redirection, Other Page Url Redirection

30 No CVEs

301 WordPress Redirect Plugin

pranshtech-301-redirect-manager

100

Say Goodbye to Broken Links With Our 301 WordPress Redirect Plugin

10 No CVEs

Advanced Redirection Tool

advanced-redirection-tool

A simple and efficient WordPress plugin to manage URL redirections for your website. Add, edit, delete, and bulk upload redirections with ease.

0 No CVEs

CleanLinks

cleanlinks

100

Create branded short links, manage redirects, cloak affiliate URLs, and export links via CSV – all from your WordPress dashboard.

0 No CVEs

Developer Profile

Safe Redirect Manager Developer Profile

10up

23 plugins · 1.4M total installs

trust score

Avg Security Score

98/100

Avg Patch Time

546 days

View full developer profile

Detection Fingerprints

How We Detect Safe Redirect Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/safe-redirect-manager/css/srm-admin.css/wp-content/plugins/safe-redirect-manager/css/srm-autocomplete.css/wp-content/plugins/safe-redirect-manager/js/srm-admin.js/wp-content/plugins/safe-redirect-manager/js/srm-autocomplete.js/wp-content/plugins/safe-redirect-manager/js/srm-validate-redirects.js/wp-content/plugins/safe-redirect-manager/js/srm-bulk-edit.js/wp-content/plugins/safe-redirect-manager/js/srm-bulk-actions.js/wp-content/plugins/safe-redirect-manager/js/srm-settings.js

Script Paths

/wp-content/plugins/safe-redirect-manager/js/srm-admin.js/wp-content/plugins/safe-redirect-manager/js/srm-autocomplete.js/wp-content/plugins/safe-redirect-manager/js/srm-validate-redirects.js/wp-content/plugins/safe-redirect-manager/js/srm-bulk-edit.js/wp-content/plugins/safe-redirect-manager/js/srm-bulk-actions.js/wp-content/plugins/safe-redirect-manager/js/srm-settings.js

Version Parameters

safe-redirect-manager/css/srm-admin.css?ver=safe-redirect-manager/css/srm-autocomplete.css?ver=safe-redirect-manager/js/srm-admin.js?ver=safe-redirect-manager/js/srm-autocomplete.js?ver=safe-redirect-manager/js/srm-validate-redirects.js?ver=safe-redirect-manager/js/srm-bulk-edit.js?ver=safe-redirect-manager/js/srm-bulk-actions.js?ver=safe-redirect-manager/js/srm-settings.js?ver=

HTML / DOM Fingerprints

CSS Classes

srm-admin-wrapsrm-noticesrm-bulk-edit-containersrm-edit-redirect-wrapsrm-autocomplete-resultssrm-autocomplete-itemsrm-redirect-rule-fromsrm-redirect-rule-to+3 more

HTML Comments

+4 more

Data Attributes

data-action="srm_validate_from_url"data-action="srm_autocomplete"data-redirect-iddata-current-redirect-id

JS Globals

srm_admin_paramssrm_autocomplete_paramssrm_bulk_edit_paramssrm_bulk_actions_paramssrm_settings_paramsSafeRedirectManagerAdmin+4 more

REST Endpoints

/wp-json/safe-redirect-manager/v1/redirects/wp-json/safe-redirect-manager/v1/settings

FAQ