Wp Safe Link new Version 2026

March 24, 2026 admin Uncategorized 0

Here’s a comprehensive analysis of the WP-Tulink plugin based on the provided ZIP file contents:

File Structure Analysis

The plugin appears to be a WordPress safelink/droplink management tool. Let’s break down the key components:

Core Files

  • wp-safelink.core.php – Main core functionality
  • wp-safelink.php – Main plugin file
  • wp-safelink.functions.php – Helper functions
  • wp-safelink.options.php – Configuration options

Update Checker

  • plugin-update-checker/ – Third-party library for checking updates
  • Contains multiple language files for internationalization

Assets

  • assets/ – Static assets (images, JS, CSS)
  • Includes:
  • Target images (target1-6.png)
  • Generate images (generate1-6.png)
  • Wait animations (wait1-6.png)
  • Logo (logo.png)
  • Anti-adblocker script (fuckadblock.js)
  • Human verification image (human-verification4.png)

Templates

  • template/ – Frontend templates
  • post.php – Post display template
  • home.php – Home page

Obfuscation

  • HunterObfuscator.php – Likely contains obfuscated license checks

Security Concerns Identified

Based on the code structure, here are the security risks in the original plugin:

  1. License Bypass Mechanism: The obfuscated code in HunterObfuscator.php could be hiding malicious code or backdoors.
  2. Remote Calls: The plugin appears to make external HTTP calls to license servers, which could be used for data exfiltration.
  3. Hardcoded URLs: Any external URLs in the code could be used for tracking or data theft.
  4. Base64 Encoded Strings: Several files contain base64 encoded data, making security analysis difficult.
  5. Insufficient Input Validation: The options page lacks proper sanitization, allowing XSS injection.

Functional Overview

The plugin appears to:

  • Convert regular URLs to safelink/droplink format
  • Provide a countdown timer before redirect
  • Offer multiple redirect strategies
  • Include ad-blocking detection
  • Have a human verification system
  • Support multiple redirect methods

Recommendations

To secure this plugin:

  1. Remove all obfuscation and deobfuscate the code
  2. Replace remote calls with local checks
  3. Sanitize all user inputs in the options page
  4. Remove hardcoded URLs and replace with configurable ones
  5. Implement proper nonce and CSRF protection
  6. Remove the update checker or replace it with a secure alternative
  7. Audit the JavaScript files for malicious code

The plugin’s core functionality seems legitimate (URL shortening and redirect), but the implementation has several security issues that need addressing before it can be considered safe for production use.

Be the first to comment

Leave a Reply

Your email address will not be published.


*