Does Easy Add Thumbnail have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Easy Add Thumbnail compatible with WordPress 6.3.8?

According to WordPress.org data, Easy Add Thumbnail 1.1.3 has been tested up to WordPress 6.3.8. Check the plugin's changelog for the latest compatibility information.

Is Easy Add Thumbnail compatible with PHP 5.6+?

Easy Add Thumbnail requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Easy Add Thumbnail updated?

Easy Add Thumbnail was last updated on Oct 5, 2023. Frequent updates are generally a positive security signal.

What is Easy Add Thumbnail's security score?

Easy Add Thumbnail has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Easy Add Thumbnail Security & Risk Analysis

wordpress.org/plugins/easy-add-thumbnail

Automatically sets the featured image to the first image uploaded into the post (any post type with thumbnail support). So easy like that...

8K active installs v1.1.3 PHP 5.6+ WP 4.7+ Updated Oct 5, 2023

automatic-feature-imageautomatic-thumbailfeatured-imagethumbnailthumbnails

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Easy Add Thumbnail Safe to Use in 2026?

Generally Safe

Score 85/100

Easy Add Thumbnail has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The static analysis of easy-add-thumbnail v1.1.3 reveals an exceptionally clean codebase with no identified attack vectors. The plugin reports zero AJAX handlers, REST API routes, shortcodes, or cron events, and importantly, none of these are found to be unprotected. Furthermore, the code signals indicate a complete absence of dangerous functions, file operations, external HTTP requests, and any SQL queries that do not utilize prepared statements. Output is also reported as 100% properly escaped, and no taint analysis flows with unsanitized paths were detected.

The vulnerability history for this plugin is also remarkably clean, with no known CVEs, either historical or current. This lack of past security incidents, combined with the robust findings from the static analysis, suggests a strong adherence to secure coding practices. The plugin appears to have a minimal attack surface and has been developed with security in mind, effectively mitigating common WordPress plugin vulnerabilities.

While the current data presents a highly positive security picture, it's worth noting the absence of nonce and capability checks is a point of interest given the complete lack of entry points. This might indicate the plugin's functionality is entirely handled through less common or no direct user interaction points. Overall, the plugin demonstrates an excellent security posture based on the provided analysis.

Vulnerabilities

None known

Easy Add Thumbnail Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Easy Add Thumbnail Release Timeline

v1.1.3Current

v1.1.2

v1.1.1

v1.1

v1.0.2

v1.0.1

v1.0

Code Analysis

Analyzed Mar 16, 2026

Easy Add Thumbnail Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Easy Add Thumbnail Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionthe_posteasy-add-thumbnail.php:67

actionnew_to_publisheasy-add-thumbnail.php:70

actiondraft_to_publisheasy-add-thumbnail.php:71

actionpending_to_publisheasy-add-thumbnail.php:72

actionfuture_to_publisheasy-add-thumbnail.php:73

Maintenance & Trust

Easy Add Thumbnail Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8

Last updatedOct 5, 2023

PHP min version5.6

Downloads168K

Community Trust

Rating90/100

Number of ratings52

Active installs8K

Alternatives

Easy Add Thumbnail Alternatives

Auto Featured Image (Auto Post Thumbnail)

auto-post-thumbnail

Automatically generate, assign, and manage featured images in bulk so every post on your site has a featured image.

50K 6 CVEs

Quick Featured Images

quick-featured-images

The time-saving solution for managing tons of featured images within minutes: Set, replace and delete in bulk and set default images for future posts.

50K 3 CVEs

Multiple Post Thumbnails

multiple-post-thumbnails

Adds multiple post thumbnails to a post type. If you've ever wanted more than one Featured Image on a post, this plugin is for you.

20K No CVEs

Acme Fix Images – Regenerate Thumbnails

acme-fix-images

Fix image sizes after you have changed image sizes from Media Settings. Ensure your images display consistently across your website.

4K 1 CVE

Developer Profile

Easy Add Thumbnail Developer Profile

Samuel Aguilera

14 plugins · 98K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Easy Add Thumbnail

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

HTML Comments

This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License version 3 as published by
the Free Software Foundation.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this program.  If not, see <http://www.gnu.org/licenses/>.

FAQ