Does yolink Search for WordPress have any unpatched vulnerabilities?

No. All known vulnerabilities in yolink Search for WordPress have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is yolink Search for WordPress compatible with WordPress 3.3.2?

According to WordPress.org data, yolink Search for WordPress 2.6 has been tested up to WordPress 3.3.2. Check the plugin's changelog for the latest compatibility information.

How often is yolink Search for WordPress updated?

yolink Search for WordPress was last updated on Feb 1, 2013. Frequent updates are generally a positive security signal.

What is yolink Search for WordPress's security score?

yolink Search for WordPress has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

yolink Search for WordPress Security & Risk Analysis

wordpress.org/plugins/yolink-search

Optimize your site search, increase time on site, and help help drive organic SEO with the most powerful search plugin for Wordpress.

10 active installs v2.6 PHP + WP 3.0.5+ Updated Feb 1, 2013

searchsocial-sharing

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 1, 2013

Plugin page Download

Safety Verdict

Is yolink Search for WordPress Safe to Use in 2026?

Generally Safe

Score 85/100

yolink Search for WordPress has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 1, 2013Updated 13yr ago

Risk Assessment

The yolink-search plugin version 2.6 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, with 100% of them utilizing prepared statements, and it implements a reasonable number of nonce and capability checks. There are no reported AJAX handlers, REST API routes, shortcodes, or cron events, which significantly limits the potential attack surface. However, several concerns arise from the static analysis. A notably low percentage of output escaping (4%) is a significant weakness, increasing the risk of Cross-Site Scripting (XSS) vulnerabilities. The taint analysis reveals 3 flows with unsanitized paths and 2 high-severity taint flows, indicating potential for data manipulation or injection if these paths are reachable by user input. The plugin also has a history of a medium-severity XSS vulnerability in 2013, which, while old and patched, suggests a past susceptibility to this type of attack. Overall, while the structural attack surface is small and core SQL practices are sound, the poor output escaping and identified taint issues are concerning.

Key Concerns

Low output escaping percentage (4%)
2 High severity taint flows
3 Flows with unsanitized paths
Historical medium severity XSS vulnerability

Vulnerabilities

yolink Search for WordPress Security Vulnerabilities

CVEs by Year

1 CVE in 2013

2013

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

WF-41219c9d-a10d-4006-9edc-1387dfdc8b8d-yolink-searchmedium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

yolink Search for WordPress < 2.6 - Reflected Cross-Site Scripting

Feb 1, 2013 Patched in 2.6 (4008d)

Code Analysis

Analyzed Mar 16, 2026

yolink Search for WordPress Code Analysis

Dangerous Functions

Raw SQL Queries

14 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared14 total queries

Output Escaping

4% escaped51 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

4 flows3 with unsanitized paths

admin_page (yolink-search.php:715)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

yolink Search for WordPress Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 35

actionadmin_inityolink-search.php:149

actionadmin_inityolink-search.php:150

actionadmin_inityolink-search.php:151

actionadmin_inityolink-search.php:152

actionadmin_inityolink-search.php:153

actionadmin_inityolink-search.php:154

actionadmin_inityolink-search.php:155

actionadmin_inityolink-search.php:156

actionadmin_inityolink-search.php:157

actionadmin_inityolink-search.php:158

actionadmin_inityolink-search.php:159

actionadmin_inityolink-search.php:160

actionadmin_inityolink-search.php:161

actionadmin_noticesyolink-search.php:162

actioninityolink-search.php:163

actionadmin_menuyolink-search.php:165

actionwp_set_comment_statusyolink-search.php:166

actionedit_commentyolink-search.php:167

actioncomment_postyolink-search.php:168

filterget_search_formyolink-search.php:174

filterposts_whereyolink-search.php:176

actionwp_headyolink-search.php:178

actionwp_headyolink-search.php:179

filterthe_contentyolink-search.php:180

filterthe_contentyolink-search.php:181

actionthesis_hook_after_post_boxyolink-search.php:188

filterthematic_search_formyolink-search.php:191

filterthe_postsyolink-search.php:198

actionthe_postyolink-search.php:199

filterpre_get_postsyolink-search.php:203

filterposts_orderbyyolink-search.php:204

filterplugin_action_linksyolink-search.php:253

filterhttp_request_timeoutyolink-search.php:254

actionswitch_blogyolink-search.php:255

actionadmin_noticesyolink-search.php:321

Maintenance & Trust

yolink Search for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested3.3.2

Last updatedFeb 1, 2013

PHP min version

Downloads25K

Community Trust

Rating26/100

Number of ratings3

Active installs10

Alternatives

yolink Search for WordPress Alternatives

Site Kit by Google – Analytics, Search Console, AdSense, Speed

google-site-kit

100

Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.

5.0M 1 CVE

All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic

all-in-one-seo-pack

AIOSEO is the most powerful WordPress SEO plugin. Improve SEO rankings and traffic with comprehensive SEO tools and smart AI SEO optimizations!

3.0M 26 CVEs

$Rank Math SEO – AI SEO Tools to Dominate SEO Rankings$

Rank Math SEO – AI SEO Tools to Dominate SEO Rankings

seo-by-rank-math

Rank Math SEO is the best WordPress SEO plugin with the features of many SEO and AI SEO tools in a single package to help multiply your SEO traffic.

3.0M 20 CVEs

Better Search Replace

better-search-replace

A simple plugin to update URLs or other text in a database.

1.0M 2 CVEs

SureRank SEO – Smart Assistant with Meta Tags, Social Preview, XML Sitemap, and Schema

surerank

SureRank – SEO Assistant with Meta Tags, Social Preview, XML Sitemap, and Schema

300K 1 CVE

Developer Profile

yolink Search for WordPress Developer Profile

Aaron Brazell

4 plugins · 60 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

4008 days

View full developer profile

Detection Fingerprints

How We Detect yolink Search for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/yolink-search/css/yolink-search.css/wp-content/plugins/yolink-search/js/yolink-search.js

Script Paths

/wp-content/plugins/yolink-search/js/yolink-search.js

Version Parameters

yolink-search/css/yolink-search.css?ver=yolink-search/js/yolink-search.js?ver=

HTML / DOM Fingerprints

CSS Classes

yolink-search-result

Data Attributes

data-yolink-api-keydata-yolink-search-results

JS Globals

yolink_search_results

FAQ