Simple 301 Redirects By BetterLinks – Easy WordPress Redirect Manager for Redirects, 404 Error Log & More Security & Risk Analysis

The "simple-301-redirects" plugin v2.1.0 exhibits a mixed security posture. On the positive side, the static analysis reveals a solid foundation with no unprotected AJAX handlers or REST API routes, and 100% of SQL queries utilize prepared statements. The plugin also implements a good number of nonce and capability checks, indicating an effort towards securing its entry points. However, several concerns warrant attention.

The presence of the `unserialize` function, a known dangerous function, is a significant red flag. While taint analysis did not report critical or high severity unsanitized flows, the potential for unserialize vulnerabilities, especially when combined with external input, cannot be ignored. Furthermore, 30% of output escaping is not properly handled, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is echoed without adequate sanitization.

The plugin's vulnerability history, with 7 known CVEs including 4 high and 3 medium severity, is concerning. The common types of vulnerabilities like CSRF, Improper Access Control, and Missing Authorization, particularly highlighted by the last vulnerability in November 2023, suggest recurring security weaknesses. Although there are currently no unpatched CVEs, this history indicates a pattern of exploitable flaws that require vigilant patching. The presence of multiple high and medium severity vulnerabilities in the past suggests a need for more robust security practices in development.