Simple Keyword to Link Security & Risk Analysis
wordpress.org/plugins/simple-keyword-to-linkReally Simple "Keyword to Link" Converter. Automatically create links for specific words in your content
Is Simple Keyword to Link Safe to Use in 2026?
High Risk
Score 48/100Simple Keyword to Link carries significant security risk with 2 known CVEs, 2 still unpatched. Consider switching to a maintained alternative.
The "simple-keyword-to-link" plugin v1.5 exhibits a mixed security posture. While the static analysis indicates a clean bill of health regarding known dangerous functions, SQL injection vulnerabilities, and taint analysis, suggesting a reasonably secure codebase in its current state for these areas, there are notable weaknesses. Specifically, the plugin has a history of two unpatched medium severity vulnerabilities, both of which were Cross-Site Request Forgery (CSRF) related. The recent nature of the last vulnerability (2025-12-17) is concerning, as it indicates ongoing security challenges or a lack of timely patching by the maintainer. Furthermore, a significant portion of its output is not properly escaped (53%), which could lead to Cross-Site Scripting (XSS) vulnerabilities if data processed by the plugin is not handled carefully by the WordPress theme or other plugins. The absence of capability checks and nonce checks, while not directly flagged as issues by the static analysis, could become points of failure if any new entry points are introduced or if existing ones are exploited in conjunction with other vulnerabilities.
Key Concerns
- Two unpatched medium CVEs found
- 53% of output not properly escaped
- 0 capability checks on entry points
- 0 nonce checks on entry points
Simple Keyword to Link Security Vulnerabilities
CVEs by Year
Severity Breakdown
2 total CVEs
Simple Keyword to Link <= 1.5 - Cross-Site Request Forgery
Simple Keyword to Link <= 1.5 - Cross-Site Request Forgery
Simple Keyword to Link Code Analysis
Output Escaping
Simple Keyword to Link Attack Surface
WordPress Hooks 6
Maintenance & Trust
Simple Keyword to Link Maintenance & Trust
Maintenance Signals
Community Trust
Simple Keyword to Link Alternatives
Keywords to Links Converter
links-auto-replacer
Convert your post content keywords to Links automatically, Using the same links over and over again in your posts? This is the solution.
Enhanced Linking
enhanced-linking
This plugin enhances the Insert/Edit Link dialogue by letting users select and find additional content from their blog and external web.
AutoLink Keywords
auto-link-keywords
Automatically links predefined keywords in your posts and pages to specified URLs.
Word 2 Cash
word-2-cash
Word 2 Cash is a free WordPress plugin. Its purpose is to turn specified keywords on your blog into links.
Hive AutoLinker
hive-autolinker
Automatically create intelligent internal links throughout your WordPress site to boost SEO and improve user navigation.
Simple Keyword to Link Developer Profile
1 plugin · 2K total installs
How We Detect Simple Keyword to Link
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/simple-keyword-to-link/css/simple-keyword-to-link.css/wp-content/plugins/simple-keyword-to-link/js/simple-keyword-to-link.js/wp-content/plugins/simple-keyword-to-link/js/simple-keyword-to-link.jssimple-keyword-to-link/css/simple-keyword-to-link.css?ver=simple-keyword-to-link/js/simple-keyword-to-link.js?ver=HTML / DOM Fingerprints
<!-- SE NON FUNZIONA, POTREBBE ESSERE LA CACHE DELLE REWRITE URL, ABILITARE E DISABILITARE IL TIPO DI PERMANLINK --><!-- ottengo i dati associati allo slug --><!-- SCRIVO LA STATS SOLO SE NON È UN BOT --><!-- scrivo un log di testo csv con le info - che poi diventerà qualcosa di più sofisticato o la base di dati per mostrare i dati -->+18 moreslugSk2L