Title: Pretty Links Plugin Vulnerability Last modified: January 8, 2018 --- # Pretty Links Plugin Vulnerability * Resolved [gerhardjvr](https://wordpress.org/support/users/gerhardjvr/) * (@gerhardjvr) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/) * I installed a plugin called “Plugin Vulnerabilities”, which purpose it is to detect vulnerabilities in plugins installed on a WordPress website. It highlighted Pretty Links as having vulnerabilities, as follows: * > WordPress site: [https://itiam.com](https://itiam.com) > The installed version of the Pretty Links plugin, 2.1.2, contains an authenticated > short link creation vulnerability. More details on the vulnerability can be > found at [https://www.pluginvulnerabilities.com/2017/12/22/is-this-what-a-hacker-might-be-interested-in-the-pretty-links-plugin-for/](https://www.pluginvulnerabilities.com/2017/12/22/is-this-what-a-hacker-might-be-interested-in-the-pretty-links-plugin-for/). > You can get alerted for known vulnerabilities in all of the plugins you use, > not just ones that we have seen evidence that hackers are targeting, when you > sign up for our Plugin Vulnerabilities service: [https://www.pluginvulnerabilities.com/](https://www.pluginvulnerabilities.com/) > As the data for that service comes from checking with our service’s API, you > don’t need to update the plugin to get alerted to new issues and you can have > checks done as often as hourly. > Currently our service warns about vulnerabilities in the most recent version > of plugins with over one million active installs that are still available in > the Plugin Directory. > Through the service you also have access to a number of other important features > including the ability to suggest/vote for which plugins we will do security > reviews of and help when dealing with a situation where you are using a plugin > where the vulnerability has yet to be fixed (we can usually provide a temporary > fix for the issue). > You can currently sign up for half off when you use the coupon code “HalfOff” > when signing up. > Warning sent from the Plugin Vulnerabilities plugin. * I hope you could address this, as I am a big supporter of Pretty Links and hate to go scouting for a replacement. * Best Regards * Gerhard - This topic was modified 8 years, 4 months ago by [gerhardjvr](https://wordpress.org/support/users/gerhardjvr/). * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fplugin-ulnerability%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 6 replies - 1 through 6 (of 6 total) * Plugin Author [cartpauj](https://wordpress.org/support/users/cartpauj/) * (@cartpauj) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9844850) * We will have the fix for this out tomorrow. Thanks! * Thread Starter [gerhardjvr](https://wordpress.org/support/users/gerhardjvr/) * (@gerhardjvr) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9845353) * Great, thanks, looking forward to this fix. * Plugin Author [cartpauj](https://wordpress.org/support/users/cartpauj/) * (@cartpauj) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9852114) * The update was just released which addresses these security vulnerabilities. * [markd33](https://wordpress.org/support/users/markd33/) * (@markd33) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9852589) * I highly recommend you update your changelog to reflect this. * Plugin Author [cartpauj](https://wordpress.org/support/users/cartpauj/) * (@cartpauj) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9852653) * Blair must have forgot to update that. I’ll let him know now. * Thread Starter [gerhardjvr](https://wordpress.org/support/users/gerhardjvr/) * (@gerhardjvr) * [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9853602) * Thank you so much for this; the red highlighted warning below the plugin is now gone and the Plugin Vulnerability page shows that Pretty Links has a vulnerability from version 2.0.0 to 2.1.2; * [Pretty Links Vulnerability_2018-01-11_0530](https://tuffdec.com/wp-content/uploads/2018/01/PrettyLinksVulnerability_2018-01-11_0530.png) * You may also want to contact the Author at [Plugin Vulnerabilities](https://www.pluginvulnerabilities.com/2017/12/22/is-this-what-a-hacker-might-be-interested-in-the-pretty-links-plugin-for/) to update the article on the Pretty Links vulnerability that has now been fixed. * Best Regards * Gerhard Viewing 6 replies - 1 through 6 (of 6 total) The topic ‘Pretty Links Plugin Vulnerability’ is closed to new replies. * ![](https://ps.w.org/pretty-link/assets/icon-256x256.png?rev=2503434) * [PrettyLinks - Affiliate Links, Link Branding, Link Tracking, Marketing and Stripe Payments Plugin](https://wordpress.org/plugins/pretty-link/) * [Frequently Asked Questions](https://wordpress.org/plugins/pretty-link/#faq) * [Support Threads](https://wordpress.org/support/plugin/pretty-link/) * [Active Topics](https://wordpress.org/support/plugin/pretty-link/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/pretty-link/unresolved/) * [Reviews](https://wordpress.org/support/plugin/pretty-link/reviews/) * 6 replies * 3 participants * Last reply from: [gerhardjvr](https://wordpress.org/support/users/gerhardjvr/) * Last activity: [8 years, 4 months ago](https://wordpress.org/support/topic/plugin-ulnerability/#post-9853602) * Status: resolved