Does Simple Htaccess Redirects have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Htaccess Redirects have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Htaccess Redirects compatible with WordPress 5.2.24?

According to WordPress.org data, Simple Htaccess Redirects 1.5.8 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is Simple Htaccess Redirects compatible with PHP 5.2.4+?

Simple Htaccess Redirects requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simple Htaccess Redirects updated?

Simple Htaccess Redirects was last updated on Sep 5, 2019. Frequent updates are generally a positive security signal.

What is Simple Htaccess Redirects's security score?

Simple Htaccess Redirects has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Htaccess Redirects Security & Risk Analysis

wordpress.org/plugins/simple-htaccess-redirects

Appends the correct code into the .htaccess file for redirection.

20 active installs v1.5.8 PHP 5.2.4+ WP 5.0+ Updated Sep 5, 2019

301302404500redirect

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Simple Htaccess Redirects Safe to Use in 2026?

Generally Safe

Score 85/100

Simple Htaccess Redirects has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "simple-htaccess-redirects" plugin v1.5.8 exhibits a concerning security posture primarily due to its unprotected AJAX handlers. While the plugin demonstrates good practices by not using dangerous functions, performing SQL queries with prepared statements, and having a clean vulnerability history with no recorded CVEs, the presence of four AJAX handlers that lack authentication and capability checks represents a significant attack surface. The taint analysis also revealed two flows with unsanitized paths, indicating a potential for privilege escalation or other malicious actions if these paths are exploited through the unprotected AJAX endpoints. The lack of nonce checks further exacerbates the risk associated with these AJAX handlers. Therefore, despite its otherwise clean track record and good coding practices in other areas, the unprotected entry points present a clear and present danger to WordPress site security.

Key Concerns

4 unprotected AJAX handlers
2 flows with unsanitized paths
0 Nonce checks on AJAX
0 Capability checks

Vulnerabilities

None known

Simple Htaccess Redirects Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Simple Htaccess Redirects Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

48 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

72% escaped67 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

PK_remove_active_redirect (plugin.php:202)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Simple Htaccess Redirects Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_PK_resetplugin.php:71

authwp_ajax_PK_scan_working_urlsplugin.php:72

authwp_ajax_PK_404_captureplugin.php:73

authwp_ajax_PK_remove_active_redirectplugin.php:74

WordPress Hooks 4

actionadmin_menuplugin.php:67

actionadmin_initplugin.php:68

actionwp_headplugin.php:69

actionadmin_footerplugin.php:81

Maintenance & Trust

Simple Htaccess Redirects Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedSep 5, 2019

PHP min version5.2.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Simple Htaccess Redirects Alternatives

404 Solution

404-solution

The smartest 404 plugin for WordPress - finds what your visitors were actually looking for.

10K 8 CVEs

Redirectioner

404-redirected

Creates automatic redirects for 404 traffic and page suggestions when matches are not found providing better service to your web visitors.

2K No CVEs

WP Post Redirection – 301, 404 Redirects

advance-wp-redirect

100

WP Post Redirection – 301, 404 Redirects lets you quickly redirect pages, posts, custom types, and URLs to new locations for seamless navigation.

60 No CVEs

Redirection

redirection

Manage 301 redirects, track 404 errors, and improve your site. No knowledge of Apache or Nginx required.

2.0M 5 CVEs

301 Redirects – Redirect Manager

eps-301-redirects

Manage 301 & 302 redirects. Simple redirection & redirects validation. Includes redirect stats & 404 error log.

300K 3 CVEs

Developer Profile

Simple Htaccess Redirects Developer Profile

Mike

2 plugins · 220 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Htaccess Redirects

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-htaccess-redirects/assets/default.txt/wp-content/plugins/simple-htaccess-redirects/assets/allLinksFromYourSite.csv

HTML / DOM Fingerprints

JS Globals

ajaxurl

FAQ