Does Easy Download Media Counter have any unpatched vulnerabilities?

Yes — Easy Download Media Counter currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

How often is Easy Download Media Counter updated?

Easy Download Media Counter was last updated on Feb 5, 2013. Frequent updates are generally a positive security signal.

What is Easy Download Media Counter's security score?

Easy Download Media Counter has a WP-Safety security score of 63/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Easy Download Media Counter Security & Risk Analysis

wordpress.org/plugins/easy-download-media-counter

Requires at least 3.0 Tested up to 3.3.1 Stable tag: 1.2 This plugin allows easy media downloads count using shortcodes

70 active installs v1.2 PHP + WP + Updated Feb 5, 2013

counterdownloadlibrarymediaupload

C · Use Caution

CVEs total1

Unpatched1

Last CVESep 5, 2025

Download

Safety Verdict

Is Easy Download Media Counter Safe to Use in 2026?

Use With Caution

Score 63/100

Easy Download Media Counter has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Sep 5, 2025Updated 13yr ago

Risk Assessment

The 'easy-download-media-counter' v1.2 plugin presents a mixed security posture. While the static analysis shows a small attack surface with no identified unprotected entry points, several concerning code signals and a history of vulnerabilities warrant caution. Specifically, the lack of output escaping on all identified outputs is a significant concern, potentially exposing users to cross-site scripting (XSS) attacks. The presence of a flow with unsanitized paths, even if not classified as critical or high severity in the taint analysis, indicates a potential avenue for malicious input manipulation. The vulnerability history, which includes a medium severity XSS vulnerability discovered in the near future (2025-09-05), and remains unpatched, strongly suggests recurring security weaknesses in the plugin. This pattern of past vulnerabilities coupled with current code analysis concerning output handling and potential path manipulation points to a plugin that has had and may continue to have exploitable flaws.

Key Concerns

Unpatched medium severity CVE
Output escaping not used
Flow with unsanitized paths
No nonce checks
No capability checks

Vulnerabilities

Easy Download Media Counter Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-58867medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Easy Download Media Counter <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

Sep 5, 2025Unpatched

Code Analysis

Analyzed Mar 17, 2026

Easy Download Media Counter Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<easy-download-media-counter> (easy-download-media-counter.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Easy Download Media Counter Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[edmc] easy-download-media-counter.php:78

[edmc_show] easy-download-media-counter.php:94

WordPress Hooks 4

filterattachment_fields_to_editeasy-download-media-counter.php:45

filterattachment_fields_to_saveeasy-download-media-counter.php:60

filtermanage_media_columnseasy-download-media-counter.php:160

actionmanage_media_custom_columneasy-download-media-counter.php:183

Maintenance & Trust

Easy Download Media Counter Maintenance & Trust

Maintenance Signals

WordPress version tested

Last updatedFeb 5, 2013

PHP min version

Downloads15K

Community Trust

Rating100/100

Number of ratings2

Active installs70

Alternatives

Easy Download Media Counter Alternatives

WP Extra File Types

wp-extra-file-types

Plugin to let you extend the list of allowed file types supported by the Wordpress Media Library

50K 1 CVE

Export Media Library

export-media-library

Allows users to export media library files as a compressed zip archive. Links Website Support

40K No CVEs

Document Library Lite

document-library-lite

Create a WordPress document library to manage, search and download files.

4K 3 CVEs

Media Library Downloader

media-library-downloader

Professional media download solution with bulk operations, smart management, and enterprise-grade security for WordPress

3K 1 unpatched

Smart Auto Upload Images – Import External Images

smart-auto-upload-images

Import external images automatically on save. Adds to media library and updates URLs. No manual downloads. Works with any post type.

2K 1 CVE

Developer Profile

Easy Download Media Counter Developer Profile

Remi Corson

10 plugins · 780 total installs

trust score

Avg Security Score

84/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Easy Download Media Counter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Shortcode Output

<a href="">

FAQ