Does Short URL FE have any unpatched vulnerabilities?

No. All known vulnerabilities in Short URL FE have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Short URL FE compatible with WordPress 5.9.13?

According to WordPress.org data, Short URL FE 1.0.0 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is Short URL FE compatible with PHP 7.0+?

Short URL FE requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Short URL FE updated?

Short URL FE was last updated on Feb 25, 2022. Frequent updates are generally a positive security signal.

What is Short URL FE's security score?

Short URL FE has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Short URL FE Security & Risk Analysis

wordpress.org/plugins/short-url-fe

Show a Short URL for all of your blog posts and optionally for pages

0 active installs v1.0.0 PHP 7.0+ WP 5.0+ Updated Feb 25, 2022

short-linkshort-urlshortlinkshorturl

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Short URL FE Safe to Use in 2026?

Generally Safe

Score 85/100

Short URL FE has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The static analysis of the "short-url-fe" plugin version 1.0.0 reveals a generally positive security posture. There are no identified entry points like AJAX handlers, REST API routes, or shortcodes that are exposed without authentication or permission checks. The plugin also demonstrates good practices by using prepared statements for all SQL queries and properly escaping a high percentage of its output. The presence of capability checks further adds to its security by ensuring appropriate user permissions for certain operations.

However, a few areas warrant attention. The analysis indicates one file operation, which could be a potential vector for abuse if not handled securely. While no taint flows were found with unsanitized paths, the absence of any taint analysis at all means that the potential for such vulnerabilities cannot be definitively ruled out. The plugin also lacks nonce checks, which is a critical security measure for many WordPress operations, especially those that modify data. The vulnerability history is clean, with no recorded CVEs, which is a strong positive indicator for this plugin's past security performance.

In conclusion, the "short-url-fe" plugin appears to be built with some good security fundamentals, particularly regarding input validation for database interactions and output sanitization. The lack of known vulnerabilities is reassuring. However, the presence of a file operation, the lack of comprehensive taint analysis, and the complete absence of nonce checks represent potential weaknesses that could be exploited if not addressed.

Key Concerns

Missing nonce checks
Potential risk from file operations
Taint analysis not performed

Vulnerabilities

None known

Short URL FE Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Short URL FE Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

88% escaped16 total outputs

Attack Surface

Short URL FE Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

filterthe_contentshort-url-fe.php:122

actionwp_enqueue_scriptsshort-url-fe.php:135

actionadmin_enqueue_scriptsshort-url-fe.php:145

actionadmin_initshort-url-fe.php:150

actionadmin_menushort-url-fe.php:151

filterplugin_action_linksshort-url-fe.php:152

Maintenance & Trust

Short URL FE Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedFeb 25, 2022

PHP min version7.0

Downloads729

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Short URL FE Alternatives

WP Pocket URLs

wp-pocket-urls

WP Pocket URLs gives you the ability to automatically or manually shorten any external link from your website and keep track clicks on each link.

80 2 CVEs

Shorter Links

shorter-links

Override the default WordPress "shortlink" URL with one that has a custom text in it. You can also set a different base URL.

100 No CVEs

URL Shortener

url-shortener

This plugin allows you to generate shortlinks for post/pages using URL Shorteners (e.g. Bit.ly, Su.pr, YOURLS, Goo.gl and many others).

100 No CVEs

Orbisius Simple Shortlink

orbisius-simple-shortlink

Allows you to redirect to page, post or any other custom post type.

40 No CVEs

URL Shortener by Shortez.

shortez-url-shortener

What is Shortez?

0 No CVEs

Developer Profile

Short URL FE Developer Profile

José María Ferri Azorín

1 plugin · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Short URL FE

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/short-url-fe/css/styles.css/wp-content/plugins/short-url-fe/css/admin.css/wp-content/plugins/short-url-fe/js/scripts.js

Script Paths

/wp-content/plugins/short-url-fe/js/scripts.js

HTML / DOM Fingerprints

CSS Classes

short-url-feshort-url-fe-button

Data Attributes

id="short-url-fe"id="short-url-fe-button"id="short-url-fe-textbox"

JS Globals

shorturlfe.copyToClipboard()shorturlfe.selectText(this)

Shortcode Output

<p class='short-url-fe' id='short-url-fe'><label for='shorturlfe'><input class='' type='text' id='short-url-fe-textbox' value='' readonly='readonly' onclick='shorturlfe.selectText(this)'/>

FAQ