Does CI HUB Connector have any unpatched vulnerabilities?

No. All known vulnerabilities in CI HUB Connector have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is CI HUB Connector compatible with WordPress 6.8.5?

According to WordPress.org data, CI HUB Connector 1.2.106 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is CI HUB Connector compatible with PHP 5.6+?

CI HUB Connector requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CI HUB Connector updated?

CI HUB Connector was last updated on Jul 18, 2025. Frequent updates are generally a positive security signal.

What is CI HUB Connector's security score?

CI HUB Connector has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CI HUB Connector Security & Risk Analysis

wordpress.org/plugins/ci-hub-connector

Work better with images, text and video by connecting your WordPress Site to your cloud storage or the stock media platform of your choice.

90 active installs v1.2.106 PHP 5.6+ WP 4.1+ Updated Jul 18, 2025

connectordam-mam-pimdrag-and-dropmetadatasynchronization

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CI HUB Connector Safe to Use in 2026?

Generally Safe

Score 100/100

CI HUB Connector has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago

Risk Assessment

The ci-hub-connector plugin exhibits a generally good security posture in several key areas. The absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and the proper escaping of all output are strong indicators of secure coding practices. Furthermore, the plugin has no recorded vulnerabilities, including no known CVEs, which suggests a history of stability and security maintenance.

However, the plugin presents a significant security concern due to its large, unprotected attack surface. Eleven out of twelve total entry points are AJAX handlers that lack authentication checks. This means that any unauthenticated user could potentially interact with these handlers, leading to the execution of plugin functions without proper authorization. While the taint analysis did not reveal any exploitable flows, the sheer number of unprotected entry points creates a substantial risk for potential privilege escalation or unintended actions if a vulnerability is later introduced or discovered within these handlers.

In conclusion, while the plugin demonstrates strong adherence to secure coding principles regarding data handling and output, the lack of authentication on a majority of its AJAX endpoints is a critical weakness. This imbalance between good internal practices and a broad, unprotected external interface warrants caution and highlights the need for immediate remediation of the authentication deficiencies.

Key Concerns

Large attack surface without auth checks on AJAX
High number of unprotected AJAX handlers

Vulnerabilities

None known

CI HUB Connector Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

CI HUB Connector Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

39 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped39 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<ci-hub-wordpress-connector> (ci-hub-wordpress-connector.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

11 unprotected

CI HUB Connector Attack Surface

Entry Points12

Unprotected11

AJAX Handlers 11

authwp_ajax_com_ci_hub_upload_assetci-hub-wordpress-connector.php:139

authwp_ajax_com_ci_hub_relink_itemsci-hub-wordpress-connector.php:202

authwp_ajax_com_ci_hub_replace_linkdataci-hub-wordpress-connector.php:299

authwp_ajax_com_ci_hub_check_asset_availabilityci-hub-wordpress-connector.php:363

authwp_ajax_com_ci_hub_get_max_upload_sizeci-hub-wordpress-connector.php:379

authwp_ajax_com_ci_hub_retrieve_media_itemsci-hub-wordpress-connector.php:391

authwp_ajax_com_ci_hub_get_attachment_thumbnail_as_data_urici-hub-wordpress-connector.php:429

authwp_ajax_com_ci_hub_get_admin_urlci-hub-wordpress-connector.php:459

authwp_ajax_com_ci_hub_get_attachment_original_fileci-hub-wordpress-connector.php:471

authwp_ajax_com_ci_hub_attachment_usageci-hub-wordpress-connector.php:489

authwp_ajax_com_ci_hub_post_attachmentsci-hub-wordpress-connector.php:549

Shortcodes 1

[cihub_metadata] ci-hub-wordpress-connector.php:627

WordPress Hooks 6

actionadmin_noticesci-hub-wordpress-connector.php:16

actionadmin_enqueue_scriptsci-hub-wordpress-connector.php:49

actionelementor/editor/after_enqueue_stylesci-hub-wordpress-connector.php:52

actionwp_footerci-hub-wordpress-connector.php:55

actionpre-plupload-upload-uici-hub-wordpress-connector.php:58

filterattachment_fields_to_editci-hub-wordpress-connector.php:71

Maintenance & Trust

CI HUB Connector Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 18, 2025

PHP min version5.6

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs90

Alternatives

CI HUB Connector Alternatives

Elementor Website Builder – More Than Just a Page Builder

elementor

The Elementor Website Builder has it all: drag and drop page builder, pixel perfect design, mobile responsive editing, and more. Get started now!

10.0M 45 CVEs

Page Builder by SiteOrigin

siteorigin-panels

Build responsive page layouts using the widgets you know and love using this simple drag and drop page builder.

500K 8 CVEs

Page Builder: Pagelayer – Drag and Drop website builder

pagelayer

The most advanced frontend drag & drop page builder. Pagelayer is a light weight but extremely powerful Website Builder.

400K 25 CVEs

Beaver Builder Page Builder – Drag and Drop Website Builder

beaver-builder-lite-version

The Professional's Choice for Drag & Drop WordPress Page Building. Fast, Reliable, and Trusted since 2014.

100K 31 CVEs

Colibri Page Builder

colibri-page-builder

Colibri Page Builder adds drag and drop page builder functionality to the ColibriWP theme.

90K 18 CVEs

Developer Profile

CI HUB Connector Developer Profile

CI HUB Connector

1 plugin · 90 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CI HUB Connector

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ci-hub-connector/main.js

Script Paths

/wp-content/plugins/ci-hub-connector/main.js

Version Parameters

ci-hub-connector/main.js?ver=1.0.0

HTML / DOM Fingerprints

CSS Classes

com-ci-hub-upload-from-ci-hub-button

Data Attributes

id="com-ci-hub-upload-from-ci-hub-button"

JS Globals

ajax_var

REST Endpoints

/wp-admin/admin-ajax.php

FAQ