WP-Safety

Disk Usage Insights Security & Risk Analysis

wordpress.org/plugins/disk-usage-insights

Find large files and folders in no time! Hunt down the TOP 10 files and folders with the most disk usage.

1K active installs v1.10 PHP 7.4+ WP 5.0+ Updated Dec 15, 2025
disk-usagefile-sizelarge-fileslarge-folders
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Disk Usage Insights Safe to Use in 2026?

Generally Safe

Score 100/100

Disk Usage Insights has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "disk-usage-insights" v1.10 plugin exhibits a concerning security posture primarily due to a significant number of unprotected AJAX handlers. While the plugin demonstrates good practices in other areas, such as a high percentage of prepared SQL statements and properly escaped output, the lack of authentication on all identified AJAX entry points represents a critical weakness. This means that any unauthenticated user could potentially trigger these AJAX actions, leading to unintended behavior or information disclosure if these handlers perform sensitive operations. The absence of any recorded vulnerabilities in its history is a positive sign, suggesting the developers have been diligent or that the plugin's functionality has not been a target for exploitation. However, this lack of history should not overshadow the identified attack surface concerns. The plugin's strengths lie in its careful handling of SQL and output, but the unprotected AJAX handlers require immediate attention to mitigate the risks associated with its accessible entry points.

Key Concerns

  • 6 AJAX handlers without auth checks
  • 1 external HTTP request (potential for SSRF)
Vulnerabilities
None known

Disk Usage Insights Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Disk Usage Insights Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
26 prepared
Unescaped Output
10
167 escaped
Nonce Checks
4
Capability Checks
1
File Operations
0
External Requests
1
Bundled Libraries
0

SQL Query Safety

96% prepared27 total queries

Output Escaping

94% escaped177 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
status (src\Frontend\Controller\ScanStatusController.php:10)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
6 unprotected

Disk Usage Insights Attack Surface

Entry Points6
Unprotected6

AJAX Handlers 6

authwp_ajax_dui_scansrc\Plugin.php:55
authwp_ajax_dui_workersrc\Plugin.php:56
authwp_ajax_dui_statussrc\Plugin.php:57
authwp_ajax_dui_delete_snapshotsrc\Plugin.php:58
authwp_ajax_dui_list_snapshotssrc\Plugin.php:59
authwp_ajax_dui_results_tablesrc\Plugin.php:60
WordPress Hooks 4
actionplugins_loadeddisk-usage-insights.php:28
actionadmin_menusrc\Plugin.php:37
actionadmin_bar_menusrc\Plugin.php:49
actionadmin_enqueue_scriptssrc\Plugin.php:52
Maintenance & Trust

Disk Usage Insights Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 15, 2025
PHP min version7.4
Downloads8K

Community Trust

Rating100/100
Number of ratings10
Active installs1K
Alternatives

Disk Usage Insights Alternatives

Big File Uploads – Increase Maximum File Upload Size

Big File Uploads – Increase Maximum File Upload Size

tuxedo-big-file-uploads

A
99

Enable large file uploads in the built-in WordPress media uploader via file chunking, and set maximum upload file size to any value based on user role …

100K 2 CVEs
EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time

wp-maximum-upload-file-size

A
99

EasyMedia - Increase the maximum upload file size limit to any value. Increase upload limit - upload large files effortlessly.

80K 2 CVEs
Increase Maximum Upload File Size

Increase Maximum Upload File Size

upload-max-file-size

A
85

Increase maximum upload file size limit to any value. Increase upload limit - upload large files.

40K No CVEs
Disk Usage Sunburst

Disk Usage Sunburst

disk-usage-sunburst

A
100

Visualize and drill down the disk usage of your whole WordPress installation. Find and identify big files immediately!

9K No CVEs
Media Library File Size

Media Library File Size

media-library-file-size

A
99

New in 2026: 'Analyze' feature to find largest files by visual pie chart. Displays the Media Library file sizes, including collective varian …

5K 1 CVE
Developer Profile

Disk Usage Insights Developer Profile

Marcel Gleis

1 plugin · 1K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Disk Usage Insights

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/disk-usage-insights/res/js/htmx-custom-error-handler.js/wp-content/plugins/disk-usage-insights/res/css/styles.css
Script Paths
/wp-content/plugins/disk-usage-insights/res/js/htmx-1.9.12.min.js/wp-content/plugins/disk-usage-insights/res/js/htmx-custom-error-handler.js
Version Parameters
disk-usage-insights/res/js/htmx-1.9.12.min.js?ver=disk-usage-insights/res/js/htmx-custom-error-handler.js?ver=disk-usage-insights/res/css/styles.css?ver=

HTML / DOM Fingerprints

Data Attributes
data-disk-usage-insights
JS Globals
dui_ajax_urldui_nonce
REST Endpoints
/wp-json/disk-usage-insights/v1/scan/wp-json/disk-usage-insights/v1/scan-status/wp-json/disk-usage-insights/v1/snapshots/wp-json/disk-usage-insights/v1/snapshot//wp-json/disk-usage-insights/v1/results-table
FAQ

Frequently Asked Questions about Disk Usage Insights