Does CodingBunny Image Optimizer LITE have any unpatched vulnerabilities?

No. All known vulnerabilities in CodingBunny Image Optimizer LITE have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is CodingBunny Image Optimizer LITE compatible with WordPress 6.9.4?

According to WordPress.org data, CodingBunny Image Optimizer LITE 3.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is CodingBunny Image Optimizer LITE compatible with PHP 8.0+?

CodingBunny Image Optimizer LITE requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CodingBunny Image Optimizer LITE updated?

CodingBunny Image Optimizer LITE was last updated on Jan 22, 2026. Frequent updates are generally a positive security signal.

What is CodingBunny Image Optimizer LITE's security score?

CodingBunny Image Optimizer LITE has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CodingBunny Image Optimizer LITE Security & Risk Analysis

wordpress.org/plugins/coding-bunny-image-optimizer-lite

Image Optimizer Lite is a WordPress plugin that optimizes, converts images to WebP or AVIF on upload, and resizes them to specified dimensions.

300 active installs v3.0.0 PHP 8.0+ WP 6.0+ Updated Jan 22, 2026

duplicate-imagesoptimizationresizewebp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CodingBunny Image Optimizer LITE Safe to Use in 2026?

Generally Safe

Score 100/100

CodingBunny Image Optimizer LITE has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "coding-bunny-image-optimizer-lite" plugin v3.0.0 exhibits a generally strong security posture, with a significant majority of SQL queries using prepared statements and a high percentage of output being properly escaped. The absence of known CVEs, critical taint flows, and dangerous functions further contributes to this positive assessment. The plugin also demonstrates good practice by including nonce and capability checks on its entry points.

However, a notable concern is the presence of one AJAX handler that lacks authentication checks. This single unprotected entry point represents a potential attack vector that could be exploited if it allows for the execution of sensitive actions without proper user authorization. While the overall code analysis shows few critical weaknesses, this unprotected AJAX endpoint requires careful consideration and mitigation.

Given the clean vulnerability history and the robust implementation of security best practices in most areas, the plugin appears to be well-maintained and developed with security in mind. The identified unprotected AJAX handler is the primary weakness, but its impact can be mitigated with proper implementation of authentication. The plugin's strengths outweigh its weaknesses, but the unauthenticated AJAX handler is a specific area that warrants attention.

Key Concerns

Unprotected AJAX handler

Vulnerabilities

None known

CodingBunny Image Optimizer LITE Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

CodingBunny Image Optimizer LITE Code Analysis

Dangerous Functions

Raw SQL Queries

14 prepared

Unescaped Output

45 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

88% prepared16 total queries

Output Escaping

90% escaped50 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

cbio_settings_page (admin\image-optimizer.php:11)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

CodingBunny Image Optimizer LITE Attack Surface

Entry Points3

Unprotected1

AJAX Handlers 3

authwp_ajax_upload-attachmentadmin\script-loader.php:55

authwp_ajax_get_all_image_idsincludes\image-convert.php:161

authwp_ajax_cbio_update_image_statsincludes\image-stats.php:372

WordPress Hooks 54

actionadmin_menuadmin\admin-menu.php:36

actionadmin_menuadmin\admin-menu.php:61

actionadmin_enqueue_scriptsadmin\enqueue-scripts.php:40

actionadmin_enqueue_scriptsadmin\image-optimizer.php:286

actionenqueue_block_editor_assetsadmin\script-loader.php:12

actionenqueue_block_assetsadmin\script-loader.php:13

actionelementor/editor/before_enqueue_scriptsadmin\script-loader.php:16

actionelementor/preview/enqueue_stylesadmin\script-loader.php:17

actionelementor/frontend/after_enqueue_stylesadmin\script-loader.php:18

actionoxygen_enqueue_ui_scriptsadmin\script-loader.php:21

actionadmin_enqueue_scriptsadmin\script-loader.php:24

actionbricks/setupadmin\script-loader.php:27

actionbricks/builder/enqueue_scriptsadmin\script-loader.php:28

actionfl_builder_ui_enqueue_scriptsadmin\script-loader.php:31

actionet_builder_readyadmin\script-loader.php:34

actionvc_backend_editor_enqueue_js_cssadmin\script-loader.php:37

actionvc_frontend_editor_enqueue_js_cssadmin\script-loader.php:38

actiontve_editor_enqueue_scriptsadmin\script-loader.php:41

actioncornerstone_enqueue_custom_admin_scriptsadmin\script-loader.php:44

actionfusion_builder_enqueue_live_scriptsadmin\script-loader.php:47

actiondslc_hook_register_modulesadmin\script-loader.php:50

actioncustomize_controls_enqueue_scriptsadmin\script-loader.php:53

actionwp_enqueue_scriptsadmin\script-loader.php:54

actioninitadmin\script-loader.php:56

actionwpcf7_enqueue_scriptsadmin\script-loader.php:59

actiongform_enqueue_scriptsadmin\script-loader.php:60

actionwpforms_wp_footer_endadmin\script-loader.php:61

actionwp_loadedadmin\script-loader.php:63

actionwp_enqueue_scriptsadmin\script-loader.php:245

actionadmin_enqueue_scriptsadmin\script-loader.php:246

actionplugins_loadedcoding-bunny-image-optimizer-lite.php:59

actionadmin_enqueue_scriptscoding-bunny-image-optimizer-lite.php:77

filterwp_handle_uploadincludes\image-convert.php:159

actionadd_attachmentincludes\image-convert.php:179

filtermanage_upload_columnsincludes\image-convert.php:192

actionmanage_media_custom_columnincludes\image-convert.php:197

filtermanage_upload_sortable_columnsincludes\image-convert.php:208

actionpre_get_postsincludes\image-convert.php:213

filterthe_contentincludes\image-lazyload.php:36

filterwp_img_tag_add_loading_attrincludes\image-lazyload.php:45

actionpre_get_postsincludes\image-lazyload.php:53

filterwp_get_attachment_image_attributesincludes\image-lazyload.php:79

actionwp_headincludes\image-lazyload.php:112

filterwp_get_attachment_image_attributesincludes\image-lazyload.php:133

filterthe_contentincludes\image-lazyload.php:163

filterwp_image_editorsincludes\image-resize.php:7

filterwp_handle_uploadincludes\image-resize.php:58

filterbig_image_size_thresholdincludes\image-resize.php:227

actionadd_attachmentincludes\image-stats.php:394

actiondelete_attachmentincludes\image-stats.php:395

actionedit_attachmentincludes\image-stats.php:396

actionadded_post_metaincludes\image-stats.php:411

actionupdated_post_metaincludes\image-stats.php:412

actiondeleted_post_metaincludes\image-stats.php:413

Maintenance & Trust

CodingBunny Image Optimizer LITE Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 22, 2026

PHP min version8.0

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs300

Alternatives

CodingBunny Image Optimizer LITE Alternatives

ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF

shortpixel-image-optimiser

Optimize images & PDFs smartly. Create and compress next-gen WebP and AVIF formats. Smart crop and resize.

300K 7 CVEs

QODE Optimizer

qode-optimizer

100

The QODE Optimizer plugin is developed to allow you to convert, compress and adjust file sizes for all the images found on your website.

20K No CVEs

Mass Resizer

mass-resizer

100

Mass Resizer allows bulk image resizing, safe WebP conversion, and automatic metadata preservation — improving page speed and optimizing media librari …

20 No CVEs

EWWW Image Optimizer

ewww-image-optimizer

Comprehensive image optimization that doesn't require a rocket science degree. Optimize images automatically for Faster Sites and Happy Visitors.

1.0M 6 CVEs

Image Optimizer – Optimize Images and Convert to WebP or AVIF

image-optimization

Automatically resize, optimize, and convert images to WebP and AVIF. Compress images in bulk or on upload to boost your WordPress site performance.

1.0M 1 CVE

Developer Profile

CodingBunny Image Optimizer LITE Developer Profile

CodingBunny

5 plugins · 400 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CodingBunny Image Optimizer LITE

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/coding-bunny-image-optimizer-lite/admin/assets/css/cbio-styles.css/wp-content/plugins/coding-bunny-image-optimizer-lite/admin/assets/js/cbio-scripts.js/wp-content/plugins/coding-bunny-image-optimizer-lite/assets/js/charts/chart.umd.min.js/wp-content/plugins/coding-bunny-image-optimizer-lite/assets/js/charts/chartjs-plugin-datalabels.min.js

Script Paths

/wp-content/plugins/coding-bunny-image-optimizer-lite/admin/assets/js/cbio-scripts.js

Version Parameters

coding-bunny-image-optimizer-lite/admin/assets/css/cbio-styles.css?ver=coding-bunny-image-optimizer-lite/admin/assets/js/cbio-scripts.js?ver=coding-bunny-image-optimizer-lite/assets/js/charts/chart.umd.min.js?ver=coding-bunny-image-optimizer-lite/assets/js/charts/chartjs-plugin-datalabels.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

cbio-dashboardcbio-headercbio-tab-contentcbio-tab-navcbio-section

HTML Comments

Data Attributes

data-tab

JS Globals

cbio_admin_vars

FAQ