Assetbroom – Unused Media & Duplicate Image Cleaner Security & Risk Analysis
wordpress.org/plugins/assetbroom-media-cleanerDetect unused images, duplicate media files, and safely clean your WordPress media library without breaking your website.
Is Assetbroom – Unused Media & Duplicate Image Cleaner Safe to Use in 2026?
Generally Safe
Score 100/100Assetbroom – Unused Media & Duplicate Image Cleaner has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The assetbroom-media-cleaner v1.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any identified dangerous functions, SQL injection vulnerabilities, unsanitized paths in taint analysis, or file operations significantly reduces the risk of common attack vectors. Furthermore, the use of prepared statements for all SQL queries and the majority of output escaping are excellent security practices. The presence of nonce checks, even without capability checks on all entry points, is also a positive indicator.
However, a notable concern is the complete lack of capability checks across all identified entry points. While the attack surface is reported as zero, this data might be incomplete if there are hidden entry points. Even with zero known CVEs and a clean vulnerability history, the absence of robust authorization checks presents a theoretical risk if any entry points were to be discovered or inadvertently exposed in future updates. This lack of comprehensive authorization is the primary area for improvement.
In conclusion, assetbroom-media-cleaner v1.0 appears to be a secure plugin with strong coding practices regarding data handling and output sanitization. Its vulnerability history is also a testament to its current state. The primary weakness lies in the potential for inadequate authorization enforcement, which, while not exploited in the current analysis, should be addressed to ensure long-term security.
Key Concerns
- No capability checks on entry points
Assetbroom – Unused Media & Duplicate Image Cleaner Security Vulnerabilities
Assetbroom – Unused Media & Duplicate Image Cleaner Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
Assetbroom – Unused Media & Duplicate Image Cleaner Attack Surface
WordPress Hooks 2
Maintenance & Trust
Assetbroom – Unused Media & Duplicate Image Cleaner Maintenance & Trust
Maintenance Signals
Community Trust
Assetbroom – Unused Media & Duplicate Image Cleaner Alternatives
LWS Cleaner
lws-cleaner
Clean everything on your website easily!
PixRem – Unused Image Cleaner
pixrem
Find and delete unused images in your Media Library. Backup, restore, whitelist, and scan support for all major page builders.
Media Tracker
media-tracker
Media Tracker is a WordPress plugin to find and remove unused media files, manage duplicates, and optimize your media library for better performance.
Smart Bulk Delete & Content Cleaner for WordPress
smart-bulk-content-remover
Safely bulk delete posts, pages, media, and comments with flexible filters and a clean interface.
Unused Media Cleaner
unused-media-cleaner
Unused Media Cleaner scans your WordPress site to find and remove unused media files, freeing storage and improving site speed and performance.
Assetbroom – Unused Media & Duplicate Image Cleaner Developer Profile
6 plugins · 5K total installs
How We Detect Assetbroom – Unused Media & Duplicate Image Cleaner
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/assetbroom-media-cleaner/assets/admin.css/wp-content/plugins/assetbroom-media-cleaner/assets/admin.js/wp-content/plugins/assetbroom-media-cleaner/assets/admin.jsassetbroom-media-cleaner/assets/admin.css?ver=assetbroom-media-cleaner/assets/admin.js?ver=HTML / DOM Fingerprints
abmcAjaxabmcAjax.ajaxurlabmcAjax.nonce