Does Enhanced Responsive Images have any unpatched vulnerabilities?

No. All known vulnerabilities in Enhanced Responsive Images have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Enhanced Responsive Images compatible with WordPress 6.9.4?

According to WordPress.org data, Enhanced Responsive Images 1.7.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Enhanced Responsive Images compatible with PHP 7.2+?

Enhanced Responsive Images requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Enhanced Responsive Images updated?

Enhanced Responsive Images was last updated on Dec 2, 2025. Frequent updates are generally a positive security signal.

What is Enhanced Responsive Images's security score?

Enhanced Responsive Images has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Enhanced Responsive Images Security & Risk Analysis

wordpress.org/plugins/auto-sizes

Improvements for responsive images in WordPress.

50K active installs v1.7.0 PHP 7.2+ WP 6.8+ Updated Dec 2, 2025

auto-sizesimagesperformance

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Enhanced Responsive Images Safe to Use in 2026?

Generally Safe

Score 100/100

Enhanced Responsive Images has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The auto-sizes plugin version 1.7.0 exhibits a very strong security posture based on the provided static analysis. The plugin has no identified entry points into the WordPress application (AJAX handlers, REST API routes, shortcodes, cron events), meaning there are no direct ways for external input to reach the plugin's code. Furthermore, all code signals indicate robust security practices, with no dangerous functions, all SQL queries using prepared statements, and all outputs properly escaped. The absence of file operations and external HTTP requests also reduces potential attack vectors.

The plugin also boasts a clean vulnerability history, with no known CVEs, which suggests a history of secure development and maintenance. The lack of any critical or high-severity taint flows further reinforces the confidence in the plugin's code safety. The only notable point of caution is the complete absence of nonce and capability checks. While the attack surface is currently zero, this absence could become a concern if functionality is ever added that requires these security measures.

Key Concerns

No nonce checks implemented
No capability checks implemented

Vulnerabilities

None known

Enhanced Responsive Images Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Enhanced Responsive Images Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped2 total outputs

Attack Surface

Enhanced Responsive Images Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionwp_headhooks.php:25

filterthe_contenthooks.php:30

filterrender_block_core/imagehooks.php:31

filterrender_block_core/coverhooks.php:32

filterrender_block_core/post-featured-imagehooks.php:33

filterget_block_type_uses_contexthooks.php:34

filterrender_block_contexthooks.php:35

filterwp_calculate_image_sizesincludes\improve-calculate-sizes.php:126

Maintenance & Trust

Enhanced Responsive Images Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 2, 2025

PHP min version7.2

Downloads316K

Community Trust

Rating0/100

Number of ratings0

Active installs50K

Alternatives

Enhanced Responsive Images Alternatives

Disable Auto-Sizes

disable-auto-sizes

A lightweight plugin to disable the automatic addition of the auto value in the sizes attribute for images in WordPress.

50 No CVEs

Autoptimize

autoptimize

Autoptimize speeds up your website by optimizing JS, CSS, images (incl. lazy-load), HTML and Google Fonts, asyncing JS, removing emoji cruft and more.

900K 10 CVEs

WebP Express

webp-express

Serve autogenerated WebP images instead of jpeg/png to browsers that supports WebP.

300K 3 CVEs

TinyPNG – JPEG, PNG & WebP image compression

tiny-compress-images

Speed up your website. Optimize your JPEG, PNG, and WebP images automatically with TinyPNG.

100K 1 CVE

Modern Image Formats

webp-uploads

100

Converts images to more modern formats such as WebP or AVIF during upload.

100K No CVEs

Developer Profile

Enhanced Responsive Images Developer Profile

WordPress Performance Team

10 plugins · 700K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

336 days

View full developer profile

Detection Fingerprints

How We Detect Enhanced Responsive Images

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/auto-sizes/assets/js/auto-sizes.js

Generator Patterns

auto-sizes 1.7.0

Script Paths

/wp-content/plugins/auto-sizes/assets/js/auto-sizes.js

Version Parameters

auto-sizes/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

wp-image-([1-9][0-9]*)alignleftalignrightaligncenteralignnone

Data Attributes

sizes

JS Globals

window.AutoSizes

FAQ