Does Mime Types Plus have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Mime Types Plus compatible with WordPress 7.0?

According to WordPress.org data, Mime Types Plus 2.05 has been tested up to WordPress 7.0. Check the plugin's changelog for the latest compatibility information.

Is Mime Types Plus compatible with PHP 8.0+?

Mime Types Plus requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Mime Types Plus updated?

Mime Types Plus was last updated on Mar 29, 2026. Frequent updates are generally a positive security signal.

What is Mime Types Plus's security score?

Mime Types Plus has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Mime Types Plus Security & Risk Analysis

wordpress.org/plugins/mime-types-plus

Add the mime type that can be used in the media library to each file type.

10K active installs v2.05 PHP 8.0+ WP 4.7+ Updated Mar 29, 2026

file-typefilename-extentionmedia-librarymime-types

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Mime Types Plus Safe to Use in 2026?

Generally Safe

Score 100/100

Mime Types Plus has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The mime-types-plus plugin version 2.05 exhibits a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events indicates a very small attack surface, and crucially, no unprotected entry points were detected. The code also shows a commitment to output sanitization, with all identified outputs being properly escaped. The lack of dangerous functions, file operations, external HTTP requests, and the absence of any recorded vulnerabilities in its history further contribute to this positive assessment. However, a significant concern arises from the single SQL query identified, which is not using prepared statements, indicating a potential for SQL injection vulnerabilities if that query handles user-supplied data. The complete lack of nonce and capability checks on any entry points, though currently presenting no immediate risk due to the zero attack surface, leaves a gap in defense-in-depth that could become a vulnerability if new entry points are introduced without proper authorization checks.

Key Concerns

SQL query not using prepared statements
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Mime Types Plus Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Mime Types Plus Release Timeline

v2.05Current

v2.04

v2.03

v2.02

v2.01

v2.00

v1.12

v1.11

v1.10

v1.09

v1.08

v1.07

Code Analysis

Analyzed Mar 16, 2026

Mime Types Plus Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Attack Surface

Mime Types Plus Attack Surface

Entry Points0

Unprotected0

Maintenance & Trust

Mime Types Plus Maintenance & Trust

Maintenance Signals

WordPress version tested7.0

Last updatedMar 29, 2026

PHP min version8.0

Downloads87K

Community Trust

Rating76/100

Number of ratings10

Active installs10K

Alternatives

Mime Types Plus Alternatives

Enhanced Media Library

enhanced-media-library

This plugin would be handy for those who need to manage a lot of media files.

70K 1 CVE

WP Extra File Types

wp-extra-file-types

Plugin to let you extend the list of allowed file types supported by the Wordpress Media Library

50K 1 CVE

Custom Mime Types

custom-mime-types

100

Easily manage and customize allowed file types on your WordPress site. Add or remove mime types, set file size limits, and control who can upload what …

30 No CVEs

FileBird – WordPress Media Library Folders & File Manager

filebird

Organize thousands of WordPress media files in folders / categories with ease.

200K 10 CVEs

Instant Images – One-click Image Uploads from Unsplash, Openverse, Pixabay, Pexels, and Giphy

instant-images

One-click uploads from Unsplash, Openverse, Pixabay, Pexels, and Giphy directly to your WordPress media library.

200K 3 CVEs

Developer Profile

Mime Types Plus Developer Profile

Katsushi Kawamori

54 plugins · 56K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

178 days

View full developer profile

Detection Fingerprints

How We Detect Mime Types Plus

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/mime-types-plus/lib/css/admin.css/wp-content/plugins/mime-types-plus/lib/js/admin.js

Script Paths

/wp-content/plugins/mime-types-plus/lib/js/admin.js

Version Parameters

mime-types-plus/lib/css/admin.css?ver=mime-types-plus/lib/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

mime-types-plus-admin-wrap

Data Attributes

data-mtp-nonce

JS Globals

MimeTypesPlusAdminmime_types_plus_admin_params

FAQ