Shortcode Redirect Security & Risk Analysis

The 'shortcode-redirect' plugin version 1.0.03 presents a mixed security posture. On the positive side, the static analysis reveals no dangerous functions, all SQL queries are prepared, there are no file operations or external HTTP requests, and the limited attack surface (one shortcode) does not appear to have immediate unprotected entry points based on the provided data. Taint analysis also shows no critical or high severity flows.

However, several concerns arise. The vulnerability history shows a significant past issue with two medium severity Cross-site Scripting (XSS) vulnerabilities, even though none are currently unpatched. The fact that a recent vulnerability was recorded in August 2025, while the analyzed version is 1.0.03, suggests potential for undiscovered or historical issues. Furthermore, only 40% of output is properly escaped, indicating a potential for XSS vulnerabilities if user-supplied data is rendered without adequate sanitization, especially given the plugin's shortcode functionality which often handles user input.

While the current static analysis and taint analysis don't flag immediate critical issues, the past vulnerability history and the moderate output escaping rate are red flags. The plugin has a track record of XSS, and the current code may still be susceptible if user input is not handled carefully within the shortcode. It's advisable to audit the shortcode implementation thoroughly for any unescaped output that might be rendered in a user's browser.