Does Default Image Addon for ACF have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Default Image Addon for ACF compatible with WordPress 6.8.5?

According to WordPress.org data, Default Image Addon for ACF 1.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Default Image Addon for ACF compatible with PHP 7.4+?

Default Image Addon for ACF requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Default Image Addon for ACF updated?

Default Image Addon for ACF was last updated on Apr 25, 2025. Frequent updates are generally a positive security signal.

What is Default Image Addon for ACF's security score?

Default Image Addon for ACF has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Default Image Addon for ACF Security & Risk Analysis

wordpress.org/plugins/acf-default-image-addon

This plugin provides the feature to add an option for the default image in the field type image.

100 active installs v1.5 PHP 7.4+ WP 4.9+ Updated Apr 25, 2025

acf-default-imageacf-field-type-imageacf-image-fielddefault-imagedefault-image-addon-for-acf

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Default Image Addon for ACF Safe to Use in 2026?

Generally Safe

Score 92/100

Default Image Addon for ACF has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'acf-default-image-addon' v1.5 plugin exhibits a strong security posture based on the provided static analysis. The complete absence of identifiable attack vectors like AJAX handlers, REST API routes, shortcodes, and cron events, along with zero unprotected entry points, indicates a highly secure design that minimizes external interaction and potential exploitation. Furthermore, the code analysis reveals excellent security practices, including the absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and proper output escaping. The presence of a nonce check and capability check further bolsters its security, demonstrating an awareness of fundamental WordPress security principles. The vulnerability history is equally positive, with no recorded CVEs, suggesting a stable and well-maintained codebase. The lack of any recorded vulnerabilities, common or otherwise, in its history reinforces this assessment.

Vulnerabilities

None known

Default Image Addon for ACF Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Default Image Addon for ACF Release Timeline

v1.5Current

v1.4

v1.3

v1.2

v1.1

v1.0

Code Analysis

Analyzed Mar 16, 2026

Default Image Addon for ACF Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Default Image Addon for ACF Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionadmin_noticesdefault-image-addon-for-acf.php:30

actionadmin_noticesdefault-image-addon-for-acf.php:34

actionadmin_initdefault-image-addon-for-acf.php:39

actionacf/render_field_settings/type=imagedefault-image-addon-for-acf.php:69

filteracf/load_value/type=imagedefault-image-addon-for-acf.php:87

filterplugin_row_metadefault-image-addon-for-acf.php:110

Maintenance & Trust

Default Image Addon for ACF Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 25, 2025

PHP min version7.4

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

Default Image Addon for ACF Alternatives

Schema Default Image

schema-default-image

Add ability to set a default Featured image for schema.org markup, an extension for the Schema plugin.

800 No CVEs

404 Image Redirection (Replace Broken Images)

broken-images-redirection

This plugin will help to replace broken images in posts and pages with a default image. Powerful & easy to use :)

600 1 CVE

Default Image Settings

default-image-settings

Change default settings for image size, link to and align for images inserted into posts. Allows you to remove the link on images by default.

500 No CVEs

Placeholder Image for WooCommerce

default-product-image-for-woocommerce

Allows to specify default placeholder image ( "NO IMAGE" ) for products by woocommerce.

500 No CVEs

NS Custom Placeholder Image for WooCommerce

ns-custom-placeholder-image-for-woocommerce

With this plugin you can change WooCommerce image placeholder with no code required!

100 No CVEs

Developer Profile

Default Image Addon for ACF Developer Profile

Galaxy Weblinks

41 plugins · 25K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

310 days

View full developer profile

Detection Fingerprints

How We Detect Default Image Addon for ACF

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Shortcode Output

Default Image Addon for ACF plugin needs "Advanced Custom Fields or Advanced Custom Fields PRO" to run. Please download from <a href="https://wordpress.org/plugins/acf-default-image-addon/" target="_blank">here</a> and activate it

FAQ