Does Sponsor Redirect have any unpatched vulnerabilities?

No. All known vulnerabilities in Sponsor Redirect have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Sponsor Redirect compatible with WordPress 4.4.34?

According to WordPress.org data, Sponsor Redirect 0.0.5 has been tested up to WordPress 4.4.34. Check the plugin's changelog for the latest compatibility information.

How often is Sponsor Redirect updated?

Sponsor Redirect was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Sponsor Redirect's security score?

Sponsor Redirect has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Sponsor Redirect Security & Risk Analysis

wordpress.org/plugins/sponsor-redirect

Sponsor Redirect plugin helps you to manage url/links of your affiliate partners. You can also show some of your sponsor info including image anywhere …

10 active installs v0.0.5 PHP + WP 3.6+ Updated Unknown

affiliate-url-redirectmanage-affiliate-linksmanage-affiliate-partnersmanage-sponsor-linkssponsor-redirect

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Sponsor Redirect Safe to Use in 2026?

Generally Safe

Score 100/100

Sponsor Redirect has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "sponsor-redirect" plugin v0.0.5 exhibits a generally good security posture based on the provided static analysis. The absence of any critical or high-severity taint flows, along with the exclusive use of prepared statements for SQL queries, indicates that the plugin developers have taken care to mitigate common injection vulnerabilities. The presence of nonce and capability checks also suggests an awareness of basic WordPress security practices.

However, a significant area for concern lies in the output escaping. With only 63% of outputs properly escaped, there is a moderate risk of Cross-Site Scripting (XSS) vulnerabilities. While the attack surface is small and all identified entry points have some form of protection, the percentage of unescaped output could still allow for malicious script injection if user-supplied data is directly rendered without sanitization. The plugin's history of zero known vulnerabilities is a positive sign, but it does not guarantee future security, especially with an incomplete output escaping implementation.

In conclusion, the plugin demonstrates strengths in preventing direct code execution and SQL injection. The primary weakness is the incomplete output escaping, which presents a moderate XSS risk. While the vulnerability history is clean, it's crucial to address the output escaping to further harden the plugin's security. The overall risk is considered moderate, leaning towards low due to the limited attack surface and absence of known exploits.

Key Concerns

Insufficient output escaping

Vulnerabilities

None known

Sponsor Redirect Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Sponsor Redirect Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

10 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

63% escaped16 total outputs

Attack Surface

Sponsor Redirect Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[msbd-srp] main.php:52

WordPress Hooks 7

actioninitmain.php:46

actionwp_enqueue_scriptsmain.php:47

actionadd_meta_boxesmain.php:49

actionsave_postmain.php:50

filtersingle_templatemain.php:53

filtermanage_sponsor_posts_columnsmain.php:56

actionmanage_sponsor_posts_custom_columnmain.php:57

Maintenance & Trust

Sponsor Redirect Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34

Last updatedUnknown

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Sponsor Redirect Alternatives

No alternatives data available yet.

Developer Profile

Sponsor Redirect Developer Profile

shahalomwordpress

9 plugins · 5K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Sponsor Redirect

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sponsor-redirect/css/msbd-srp.css/wp-content/plugins/sponsor-redirect/js/masonry.pkgd.min.js/wp-content/plugins/sponsor-redirect/js/scripts.js

Script Paths

js/scripts.js

Version Parameters

msbd-srpmasonry-pkgdsrp-scripts

HTML / DOM Fingerprints

Data Attributes

id="srp_url"name="srp_url"id="srp_type"name="srp_type"id="srp_sorting"name="srp_sorting"+1 more

FAQ