WP-Safety

Optimize Images Resizing Security & Risk Analysis

wordpress.org/plugins/optimize-images-resizing

Plugin optimizes the process of generating custom image sizes in WordPress and offers a cleanup functionality for preexisting images.

6K active installs v1.4.1 PHP + WP 3.8+ Updated Nov 28, 2017
cleanupimagesmediaoptimizeresizing
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Optimize Images Resizing Safe to Use in 2026?

Generally Safe

Score 85/100

Optimize Images Resizing has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The "optimize-images-resizing" plugin v1.4.1 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs, coupled with the plugin's use of prepared statements for all SQL queries and proper output escaping for all outputs, indicates a commitment to secure coding practices. The presence of a nonce check on its single AJAX handler further strengthens its defenses against common web attacks.

The code analysis reveals a minimal attack surface, with only one AJAX handler and no exposed REST API routes, shortcodes, or cron events. The taint analysis shows no flows with unsanitized paths, nor any critical or high-severity issues. The single file operation is also a positive sign, suggesting limited potential for arbitrary file manipulation.

While the plugin has no recorded vulnerabilities, it's important to note the absence of capability checks on its AJAX handler. Although the attack surface is small and the taint analysis is clean, in a complex WordPress environment, this could be a point of potential concern if the AJAX handler performs sensitive operations. However, given the overall lack of identified risks, the plugin appears to be generally secure.

Key Concerns

  • Missing capability checks on AJAX handler
Vulnerabilities
None known

Optimize Images Resizing Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Optimize Images Resizing Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
10 escaped
Nonce Checks
1
Capability Checks
0
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped10 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
remove_image_sizes (inc\class-remove-image-sizes.php:116)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Optimize Images Resizing Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_oir_remove_image_sizesinc\class-remove-image-sizes.php:30
WordPress Hooks 5
actionadmin_menuinc\class-remove-image-sizes.php:29
actionadmin_enqueue_scriptsinc\class-remove-image-sizes.php:31
filterintermediate_image_sizes_advancedinc\class-remove-image-sizes.php:34
filterimage_downsizeinc\class-resize-image.php:29
actionplugins_loadedoptimize-images-resizing.php:43
Maintenance & Trust

Optimize Images Resizing Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32
Last updatedNov 28, 2017
PHP min version
Downloads97K

Community Trust

Rating92/100
Number of ratings45
Active installs6K
Alternatives

Optimize Images Resizing Alternatives

EchBay – JPEG, PNG image compression

EchBay – JPEG, PNG image compression

echbay-optimize-images

A
100

Speed up your website. Optimize your JPEG, PNG images with EchBay ( Nhiệm vụ: Dọn dẹp và tối ưu lại hình ảnh hiện có trong thư mục uploads )

40 No CVEs
Image SEO – AI-Driven Image SEO Optimizer

Image SEO – AI-Driven Image SEO Optimizer

imageseo

A
99

Improve your images alt, title, captions and filenames for better SEO rankings.

1K 2 CVEs
Media Sweep – WordPress Media Cleaner

Media Sweep – WordPress Media Cleaner

media-sweep

A
100

Clean up your WordPress Media Library by finding and removing unused files. Safely scan, preview, and sweep away orphaned media to keep your site fast …

500 No CVEs
Cloudimage

Cloudimage

cloudimage

A
100

The easiest way to resize, compress, optimise and deliver lightning fast images to your users on any device via CDN.

300 No CVEs
Quick Media Inspect

Quick Media Inspect

quick-media-inspect

A
100

Detect unused images across your entire WordPress site, clean up your Media Library safely, and generate alt text from filenames.

80 No CVEs
Developer Profile

Optimize Images Resizing Developer Profile

OriginalEXE

1 plugin · 6K total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Optimize Images Resizing

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/optimize-images-resizing/js/oir.js/wp-content/plugins/optimize-images-resizing/css/oir.css
Script Paths
/wp-content/plugins/optimize-images-resizing/js/oir.js
Version Parameters
optimize-images-resizing/js/oir.js?ver=optimize-images-resizing/css/oir.css?ver=

HTML / DOM Fingerprints

CSS Classes
oir-keep-the-logoir-buttonsoir-resume-remove-image-sizesoir-remove-image-sizesoir-status-messageoir-log
Data Attributes
data-page
JS Globals
oir_remove_image_sizes_params
REST Endpoints
/wp-json/oir/v1/remove-image-sizes
FAQ

Frequently Asked Questions about Optimize Images Resizing