Does Multisite Media Manager have any unpatched vulnerabilities?

No. All known vulnerabilities in Multisite Media Manager have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Multisite Media Manager compatible with PHP 5.2.4+?

Multisite Media Manager requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Multisite Media Manager updated?

Multisite Media Manager was last updated on Nov 12, 2018. Frequent updates are generally a positive security signal.

What is Multisite Media Manager's security score?

Multisite Media Manager has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Multisite Media Manager Security & Risk Analysis

wordpress.org/plugins/multisite-media-manager

Organize Media with ease across all the child websites.

0 active installs v1.0.0 PHP 5.2.4+ WP 3.3+ Updated Nov 12, 2018

media-managermultipressmultisitemultisite-media-managerwordpress-multisite

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Multisite Media Manager Safe to Use in 2026?

Generally Safe

Score 85/100

Multisite Media Manager has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The multisite-media-manager v1.0.0 plugin exhibits several concerning security practices, particularly regarding its AJAX handlers. The static analysis reveals a total of 3 AJAX handlers, and critically, all 3 lack any form of authentication checks. This presents a significant attack surface where unauthenticated users could potentially interact with sensitive functionalities. While the plugin demonstrates good practices in other areas, such as using prepared statements for all SQL queries and properly escaping all output, the absence of authentication on AJAX endpoints is a severe oversight. The plugin has no recorded vulnerability history, which is a positive sign, but it does not negate the immediate risks posed by the identified unauthenticated entry points. The lack of any identified taint flows or dangerous functions is also reassuring, suggesting that direct code execution or data manipulation vulnerabilities are not apparent from the static analysis alone. However, the unauthenticated AJAX handlers remain the primary security concern and require immediate attention.

Key Concerns

AJAX handlers without auth checks
No nonce checks on AJAX handlers
No capability checks on AJAX handlers

Vulnerabilities

None known

Multisite Media Manager Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Multisite Media Manager Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped6 total outputs

Attack Surface

3 unprotected

Multisite Media Manager Attack Surface

Entry Points3

Unprotected3

AJAX Handlers 3

authwp_ajax_query-attachmentsmultisite-media-manager.php:51

authwp_ajax_send-attachment-to-editormultisite-media-manager.php:74

authwp_ajax_delete_postmultisite-media-manager.php:170

WordPress Hooks 2

filteradmin_post_thumbnail_htmlmultisite-media-manager.php:128

actionsave_postmultisite-media-manager.php:158

Maintenance & Trust

Multisite Media Manager Maintenance & Trust

Maintenance Signals

WordPress version tested

Last updatedNov 12, 2018

PHP min version5.2.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Multisite Media Manager Alternatives

Ultimate Multisite – WordPress Multisite SaaS & WaaS Platform

ultimate-multisite

100

Ultimate Multisite turns your WordPress network into a WaaS platform with subscriptions, site provisioning, and domain mapping.

0 No CVEs

Code Snippets

code-snippets

An easy, clean and simple way to enhance your site with code snippets.

1.0M 7 CVEs

User Switching

user-switching

100

Instant switching between user accounts in WordPress and WooCommerce.

200K No CVEs

Safe Redirect Manager

safe-redirect-manager

100

Safely manage your website's HTTP redirects.

40K 1 CVE

WP OPcache

flush-opcache

Manage OPcache inside your WordPress admin dashboard.

10K No CVEs

Developer Profile

Multisite Media Manager Developer Profile

pradhan007p

1 plugin · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Multisite Media Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/multisite-media-manager/

Version Parameters

multisite-media-manager/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

hide-if-no-js

Data Attributes

id="set-post-thumbnail"id="set-post-thumbnail-desc"id="remove-post-thumbnail"name="_thumbnail_id"

FAQ