WP-Safety

Ai Image Alt Text Generator for WP Security & Risk Analysis

wordpress.org/plugins/ai-image-alt-text-generator-for-wp

Effortlessly generate descriptive alt text for images using AI within your WordPress website.

1K active installs v1.1.9 PHP 7.0+ WP 5.0+ Updated Nov 4, 2025
alternative-textimage-alt-text
52
C · Use Caution
CVEs total5
Unpatched2
Last CVEJan 20, 2026
Plugin page Download
Safety Verdict

Is Ai Image Alt Text Generator for WP Safe to Use in 2026?

Use With Caution

Score 52/100

Ai Image Alt Text Generator for WP has 2 unpatched vulnerabilities. Evaluate alternatives or apply available mitigations.

5 known CVEs 2 unpatched Last CVE: Jan 20, 2026Updated 6mo ago
Risk Assessment

The "ai-image-alt-text-generator-for-wp" plugin v1.1.9 presents a mixed security posture. While it demonstrates good practices in areas like output escaping (93%) and using prepared statements for a majority of SQL queries (71%), significant concerns arise from its attack surface and vulnerability history. A notable portion of its AJAX handlers (8 out of 17) lack proper authentication checks, creating potential entry points for unauthorized actions. The taint analysis also flagged one flow with unsanitized paths and another of high severity, indicating potential risks of data manipulation or exposure if inputs are not meticulously handled. The plugin's history of 5 known CVEs, with 2 currently unpatched and all being medium severity, points to recurring security weaknesses. The common types of past vulnerabilities, including Missing Authorization, Exposure of Sensitive Information, and Cross-site Scripting, reinforce the concern around input sanitization and access control.

In conclusion, the plugin has strengths in its output handling and SQL query practices. However, the presence of unprotected AJAX endpoints, identified taint flows, and a history of multiple medium-severity vulnerabilities necessitate careful consideration. The unpatched CVEs are a critical red flag, demanding immediate attention. While not all indicators are dire, the combination of unprotected entry points and past security issues suggests a moderate to high risk if the unpatched vulnerabilities are not addressed and the exposed AJAX endpoints are not secured.

Key Concerns

  • Unprotected AJAX handlers
  • Taint flow with unsanitized paths
  • Taint flow of high severity
  • Unpatched CVEs (2)
  • Vulnerability history (5 medium)
Vulnerabilities
5 published

Ai Image Alt Text Generator for WP Security Vulnerabilities

CVEs by Year

4 CVEs in 2025 · unpatched
2025
1 CVE in 2026 · unpatched
2026
Patched Has unpatched

Severity Breakdown

Medium
5

5 total CVEs

CVE-2026-24579medium · 4.3Missing Authorization

Ai Image Alt Text Generator for WP <= 1.1.9 - Missing Authorization

Jan 20, 2026Unpatched
CVE-2025-58207medium · 5.3Missing Authorization

Ai Image Alt Text Generator for WP <= 1.1.5 - Missing Authorization

Aug 23, 2025 Patched in 1.1.6 (82d)
CVE-2025-32217medium · 4.3Missing Authorization

Ai Image Alt Text Generator for WP <= 1.1.1 - Missing Authorization

Apr 4, 2025 Patched in 1.1.2 (85d)
CVE-2025-32228medium · 4.3Exposure of Sensitive Information to an Unauthorized Actor

Ai Image Alt Text Generator for WP <= 1.1.5 - Authenticated (Subscriber+) Sensitive Information Exposure

Apr 4, 2025Unpatched
CVE-2024-12177medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Ai Image Alt Text Generator for WP <= 1.0.6 - Reflected Cross-Site Scripting

Jan 30, 2025 Patched in 1.0.7 (1d)
Version History

Ai Image Alt Text Generator for WP Release Timeline

v1.1.9Current2 CVEs
CVE-2026-24579 CVE-2025-32228
v1.1.82 CVEs
CVE-2026-24579 CVE-2025-32228
v1.1.72 CVEs
CVE-2026-24579 CVE-2025-32228
v1.1.62 CVEs
CVE-2026-24579 CVE-2025-32228
v1.1.53 CVEs
CVE-2025-58207 CVE-2026-24579 CVE-2025-32228
v1.1.43 CVEs
CVE-2025-58207 CVE-2026-24579 CVE-2025-32228
v1.1.33 CVEs
CVE-2025-58207 CVE-2026-24579 CVE-2025-32228
v1.1.23 CVEs
CVE-2025-58207 CVE-2026-24579 CVE-2025-32228
v1.1.14 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +1 more
v1.1.04 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +1 more
v1.0.94 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +1 more
v1.0.84 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +1 more
v1.0.74 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +1 more
v1.0.65 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +2 more
v1.0.55 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +2 more
v1.0.45 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +2 more
v1.0.35 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +2 more
v1.0.25 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +2 more
v1.0.15 CVEs
CVE-2025-32217 CVE-2025-58207 CVE-2026-24579 +2 more
Code Analysis
Analyzed Mar 16, 2026

Ai Image Alt Text Generator for WP Code Analysis

Dangerous Functions
0
Raw SQL Queries
4
10 prepared
Unescaped Output
5
62 escaped
Nonce Checks
6
Capability Checks
5
File Operations
0
External Requests
8
Bundled Libraries
0

SQL Query Safety

71% prepared14 total queries

Output Escaping

93% escaped67 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths
<class-boomdevs-ai-image-alt-text-generator-admin> (admin\class-boomdevs-ai-image-alt-text-generator-admin.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
8 unprotected

Ai Image Alt Text Generator for WP Attack Surface

Entry Points19
Unprotected8

AJAX Handlers 17

authwp_ajax_get_focus_keywordadmin\class-boomdevs-ai-image-alt-text-generator-admin.php:59
authwp_ajax_bulk_alt_image_generatorincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:30
noprivwp_ajax_bulk_alt_image_generatorincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:31
authwp_ajax_cancel_bulk_alt_image_generatorincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:33
noprivwp_ajax_cancel_bulk_alt_image_generatorincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:34
authwp_ajax_check_no_creditincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:36
noprivwp_ajax_check_no_creditincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:37
authwp_ajax_get_all_added_jobsincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:39
noprivwp_ajax_get_total_jobs_listsincludes\class-boomdevs-ai-image-alt-text-bulk-image-generator.php:40
authwp_ajax_bdaiatg_save_alt_textincludes\class-boomdevs-ai-image-alt-text-generator-text.php:32
noprivwp_ajax_bdaiatg_save_alt_textincludes\class-boomdevs-ai-image-alt-text-generator-text.php:33
authwp_ajax_bulk_alt_image_generator_gutenburg_postincludes\class-boomdevs-ai-image-alt-text-generator-text.php:35
noprivwp_ajax_bulk_alt_image_generator_gutenburg_postincludes\class-boomdevs-ai-image-alt-text-generator-text.php:36
authwp_ajax_bulk_alt_image_generator_gutenburg_blockincludes\class-boomdevs-ai-image-alt-text-generator-text.php:38
noprivwp_ajax_bulk_alt_image_generator_gutenburg_blockincludes\class-boomdevs-ai-image-alt-text-generator-text.php:39
authwp_ajax_update_attachment_metaincludes\class-boomdevs-ai-image-alt-text-image-generator-update-history.php:11
noprivwp_ajax_update_attachment_metaincludes\class-boomdevs-ai-image-alt-text-image-generator-update-history.php:12

REST API Routes 2

GET/wp-json/alt-text-generator/v1/fetch-dataincludes\class-boomdevs-ai-image-alt-text-rest-api.php:11
GET/wp-json/alt-text-generator/v1/fetch-jobsincludes\class-boomdevs-ai-image-alt-text-rest-api.php:25
WordPress Hooks 17
actionenqueue_block_editor_assetsadmin\class-boomdevs-ai-image-alt-text-generator-admin.php:389
actionplugins_loadedboomdevs-ai-image-alt-text-generator.php:108
actioninitboomdevs-ai-image-alt-text-generator.php:128
actionadmin_menuincludes\class-boomdevs-ai-image-alt-text-generator-custom-menu.php:43
actionadd_meta_boxesincludes\class-boomdevs-ai-image-alt-text-generator-gutenburg.php:23
filterBoomdevs_Ai_Image_Alt_Text_Generator_register_options_panelincludes\class-boomdevs-ai-image-alt-text-generator-settings.php:39
actionadd_attachmentincludes\class-boomdevs-ai-image-alt-text-generator-text.php:29
actionplugins_loadedincludes\class-boomdevs-ai-image-alt-text-generator.php:172
actionadmin_enqueue_scriptsincludes\class-boomdevs-ai-image-alt-text-generator.php:186
actionadmin_enqueue_scriptsincludes\class-boomdevs-ai-image-alt-text-generator.php:187
actionwp_enqueue_scriptsincludes\class-boomdevs-ai-image-alt-text-generator.php:202
actionwp_enqueue_scriptsincludes\class-boomdevs-ai-image-alt-text-generator.php:203
actionrest_api_initincludes\class-boomdevs-ai-image-alt-text-rest-api.php:10
actionrest_api_initincludes\class-boomdevs-ai-image-alt-text-rest-api.php:24
actionadmin_noticesincludes\class-boomdevs-notification-widget-ai-image-alttext.php:15
actionadmin_enqueue_scriptsincludes\class-boomdevs-notification-widget-ai-image-alttext.php:16
actionsave_postincludes\class-boomdevs-notification-widget-ai-image-alttext.php:17
Maintenance & Trust

Ai Image Alt Text Generator for WP Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 4, 2025
PHP min version7.0
Downloads29K

Community Trust

Rating90/100
Number of ratings8
Active installs1K
Alternatives

Ai Image Alt Text Generator for WP Alternatives

Alt Text AI – Automatically generate image alt text for SEO and accessibility

Alt Text AI – Automatically generate image alt text for SEO and accessibility

alttext-ai

A
93

Automatically sets the descriptive alt text of your images. Boosts your SEO and accessibility.

20K 4 CVEs
Image Alt Text

Image Alt Text

image-alt-text

A
99

Image Alt Text plugin allows to edit image alternative text of uploaded media. It allows to update alternative text in existing media and image withou &hellip;

8K 1 CVE
AI Image Alt Text Generator – Imagerr AI

AI Image Alt Text Generator – Imagerr AI

alt-text-imagerr-ai

A
100

Generate alt text, titles, descriptions, and captions for your images automatically with AI. Improve your SEO and accessibility.

100 No CVEs
AI Image Alt Text Generator

AI Image Alt Text Generator

ai-image-alt-text-generator

A
100

Automatically generate SEO-optimized alt text for images using AI. Supports bulk generation, WooCommerce.

0 No CVEs
Alt Text Go

Alt Text Go

alt-text-go

A
92

Automatically generate alt text for your images. Optimized for SEO.

0 No CVEs
Developer Profile

Ai Image Alt Text Generator for WP Developer Profile

WP Messiah

12 plugins · 27K total installs

70
trust score
Avg Security Score
87/100
Avg Patch Time
129 days
View full developer profile
Detection Fingerprints

How We Detect Ai Image Alt Text Generator for WP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ai-image-alt-text-generator-for-wp/admin/css/style.css/wp-content/plugins/ai-image-alt-text-generator-for-wp/admin/js/notice.js/wp-content/plugins/ai-image-alt-text-generator-for-wp/admin/js/settings.js/wp-content/plugins/ai-image-alt-text-generator-for-wp/public/css/public.css/wp-content/plugins/ai-image-alt-text-generator-for-wp/public/js/public.js
Script Paths
/wp-content/plugins/ai-image-alt-text-generator-for-wp/admin/js/notice.js/wp-content/plugins/ai-image-alt-text-generator-for-wp/admin/js/settings.js/wp-content/plugins/ai-image-alt-text-generator-for-wp/public/js/public.js
Version Parameters
ai-image-alt-text-generator-for-wp/admin/css/style.css?ver=ai-image-alt-text-generator-for-wp/admin/js/notice.js?ver=ai-image-alt-text-generator-for-wp/admin/js/settings.js?ver=ai-image-alt-text-generator-for-wp/public/css/public.css?ver=ai-image-alt-text-generator-for-wp/public/js/public.js?ver=

HTML / DOM Fingerprints

CSS Classes
bdaiatg-api-key-input
HTML Comments
<!-- The Settings class handles all the admin page functionalities -->
Data Attributes
data-plugin-name="ai-image-alt-text-generator-for-wp"data-plugin-version="1.1.9"
JS Globals
BDAIATG_AI_IMAGE_ALT_TEXT_GENERATOR_VERSIONBDAIATG_AI_IMAGE_ALT_TEXT_GENERATOR_PATHBDAIATG_AI_IMAGE_ALT_TEXT_GENERATOR_URLBDAIATG_AI_IMAGE_ALT_TEXT_GENERATOR_NAMEBDAIATG_AI_IMAGE_ALT_TEXT_GENERATOR_FULL_NAMEBDAIATG_AI_IMAGE_ALT_TEXT_GENERATOR_BASE_NAME+4 more
REST Endpoints
/wp-json/alt-text-generator/v1/available-token
FAQ

Frequently Asked Questions about Ai Image Alt Text Generator for WP