Does AJAX Thumbnail Rebuild have any unpatched vulnerabilities?

No. All known vulnerabilities in AJAX Thumbnail Rebuild have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AJAX Thumbnail Rebuild compatible with WordPress 6.2.9?

According to WordPress.org data, AJAX Thumbnail Rebuild 1.14 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

How often is AJAX Thumbnail Rebuild updated?

AJAX Thumbnail Rebuild was last updated on May 3, 2023. Frequent updates are generally a positive security signal.

What is AJAX Thumbnail Rebuild's security score?

AJAX Thumbnail Rebuild has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AJAX Thumbnail Rebuild Security & Risk Analysis

wordpress.org/plugins/ajax-thumbnail-rebuild

AJAX Thumbnail Rebuild allows you to rebuild all thumbnails at once without script timeouts on your server.

30K active installs v1.14 PHP + WP 2.8+ Updated May 3, 2023

adminajaxrebuildregeneratethumbnail

A · Safe

CVEs total1

Unpatched0

Last CVEApr 28, 2023

Plugin page Download

Safety Verdict

Is AJAX Thumbnail Rebuild Safe to Use in 2026?

Generally Safe

Score 85/100

AJAX Thumbnail Rebuild has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Apr 28, 2023Updated 2yr ago

Risk Assessment

The 'ajax-thumbnail-rebuild' plugin version 1.14 exhibits a generally good security posture with no critical or high-severity vulnerabilities identified in the latest static analysis. The plugin demonstrates strong adherence to security best practices by implementing nonce and capability checks for its single AJAX handler, indicating that its primary entry point is protected. Furthermore, the absence of dangerous functions, file operations, external HTTP requests, and taint flows suggests a well-contained codebase. However, a concern arises from the single SQL query which is not prepared, potentially exposing the plugin to SQL injection risks if the query's inputs are not meticulously sanitized. While the current version shows no unpatched vulnerabilities, a past medium-severity vulnerability related to missing authorization, last seen in April 2023, warrants attention. This historical pattern suggests a past weakness in authorization checks that, while seemingly addressed, should be a reminder to maintain vigilance in secure coding practices and thorough testing, especially concerning user input handling in database operations.

Key Concerns

SQL query not using prepared statements
Past medium-severity vulnerability (Missing Authorization)

Vulnerabilities

AJAX Thumbnail Rebuild Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2022-47604medium · 4.3Missing Authorization

AJAX Thumbnail Rebuild <= 1.13 - Missing Authorization

Apr 28, 2023 Patched in 1.14 (270d)

Code Analysis

Analyzed Mar 17, 2026

AJAX Thumbnail Rebuild Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

7 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

70% escaped10 total outputs

Attack Surface

AJAX Thumbnail Rebuild Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_ajax_thumbnail_rebuildajax-thumbnail-rebuild.php:326

WordPress Hooks 3

actionadmin_menuajax-thumbnail-rebuild.php:18

filterattachment_fields_to_editajax-thumbnail-rebuild.php:19

actionplugins_loadedajax-thumbnail-rebuild.php:328

Maintenance & Trust

AJAX Thumbnail Rebuild Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedMay 3, 2023

PHP min version

Downloads850K

Community Trust

Rating96/100

Number of ratings90

Active installs30K

Alternatives

AJAX Thumbnail Rebuild Alternatives

Generate Thumbnail

generate-thumbnail

100

Generate Thumbnail allows you to generate all thumbnails at once without script timeouts on your server.

30 No CVEs

Thumbnail Slider

thumbnail-slider

This Plugin is used to display Custom Thumbnail Banner Image's slider in your page or posts. Display a awesome thumbnail slider in your wordpress …

10 No CVEs

Force Regenerate Thumbnails

force-regenerate-thumbnails

100

Delete and REALLY force thumbnail regeneration.

200K No CVEs

Heartbeat Control

heartbeat-control

Allows you to easily manage the frequency of the WordPress heartbeat API.

80K No CVEs

reGenerate Thumbnails Advanced

regenerate-thumbnails-advanced

100

Regenerate thumbnails quickly and easily, including forced regeneration; very useful when changing a theme or adding new thumbnail sizes.

70K No CVEs

Developer Profile

AJAX Thumbnail Rebuild Developer Profile

junkcoder

1 plugin · 30K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

270 days

View full developer profile

Detection Fingerprints

How We Detect AJAX Thumbnail Rebuild

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

updatedfade

Data Attributes

id="ajax_thumbnail_rebuild"id="atr-message"id="message"id="onlyfeatured"id="size-toggle"id="sizeselect"+2 more

JS Globals

ajaxurlsetMessageregenerateregenItem

REST Endpoints

/wp-json/ajax_thumbnail_rebuild

FAQ