Does Max upload filesize have any unpatched vulnerabilities?

No. All known vulnerabilities in Max upload filesize have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Max upload filesize compatible with WordPress 5.3.21?

According to WordPress.org data, Max upload filesize 1.1.0 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

Is Max upload filesize compatible with PHP 5.6+?

Max upload filesize requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Max upload filesize updated?

Max upload filesize was last updated on Dec 7, 2019. Frequent updates are generally a positive security signal.

What is Max upload filesize's security score?

Max upload filesize has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Max upload filesize Security & Risk Analysis

wordpress.org/plugins/max-upload-filesize

It will help you to increase your upload filesize limit.

9K active installs v1.1.0 PHP 5.6+ WP 5.0.4+ Updated Dec 7, 2019

filesizefilesize-limitincrease-upload-filesizemax-filesizeupload

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Max upload filesize Safe to Use in 2026?

Generally Safe

Score 85/100

Max upload filesize has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "max-upload-filesize" plugin v1.1.0 exhibits a strong security posture based on the provided static analysis. There are no identified attack surface entry points that are unprotected, no dangerous functions in use, and all SQL queries leverage prepared statements. Furthermore, all output is properly escaped, and the plugin avoids file operations and external HTTP requests, minimizing potential vectors for compromise. The presence of a nonce check, although not tied to a specific capability check, indicates some awareness of security best practices. The vulnerability history is clean, with no recorded CVEs, suggesting a history of secure development or effective patching. The taint analysis also reveals no high-severity issues, with all analyzed flows being sanitized. The lack of recorded vulnerabilities and the clean static analysis results paint a picture of a well-secured plugin. However, it's worth noting the absence of capability checks, which could represent a missed opportunity to enforce granular user permissions if the plugin were to expand its functionality in the future. Overall, this plugin appears to be highly secure for its current scope and functionality.

Vulnerabilities

None known

Max upload filesize Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Max upload filesize Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped11 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

yld_upload_setting (max-upload-filesize.php:38)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Max upload filesize Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

filterupload_size_limitmax-upload-filesize.php:26

actionadmin_menumax-upload-filesize.php:32

Maintenance & Trust

Max upload filesize Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedDec 7, 2019

PHP min version5.6

Downloads98K

Community Trust

Rating100/100

Number of ratings4

Active installs9K

Alternatives

Max upload filesize Alternatives

WP Upload Size

wp-upload-size

By default, WordPress has a modest limit for uploading images, videos, and other files. It's a similar story for your PHP memory limit, which hel …

3K No CVEs

FileOrganizer – WordPress File Manager

fileorganizer

FileOrganizer is an intuitive file manager to easily edit, delete, upload, download, and manage all your WordPress files and folders right from the da …

200K 5 CVEs

Fonts Plugin | Use Google Fonts, Adobe Fonts or Upload Fonts

olympus-google-fonts

The easiest to customize fonts in WordPress. Optimized for Speed. 1000+ font choices. Supports Google Fonts, Adobe Fonts and Upload Fonts.

200K 3 CVEs

Use Any Font | Custom Font Uploader

use-any-font

Upload custom fonts with custom font uploader. Auto converts to woff2 for better performance. Self-hosted, GDPR compliant, and easy custom font plugin

200K 4 CVEs

Big File Uploads – Increase Maximum File Upload Size

tuxedo-big-file-uploads

Enable large file uploads in the built-in WordPress media uploader via file chunking, and set maximum upload file size to any value based on user role …

100K 2 CVEs

Developer Profile

Max upload filesize Developer Profile

devparis

1 plugin · 9K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Max upload filesize

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/max-upload-filesize/input.template.php

HTML / DOM Fingerprints

FAQ