Does PBP IUL have any unpatched vulnerabilities?

No. All known vulnerabilities in PBP IUL have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is PBP IUL compatible with WordPress 4.2.39?

According to WordPress.org data, PBP IUL 2.1 has been tested up to WordPress 4.2.39. Check the plugin's changelog for the latest compatibility information.

How often is PBP IUL updated?

PBP IUL was last updated on Apr 24, 2015. Frequent updates are generally a positive security signal.

What is PBP IUL's security score?

PBP IUL has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

PBP IUL Security & Risk Analysis

wordpress.org/plugins/pbp-iul

Increase upload size limit up to more & more.

10 active installs v2.1 PHP + WP 3.0+ Updated Apr 24, 2015

increaselimitmore-and-moreup-toupload

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is PBP IUL Safe to Use in 2026?

Generally Safe

Score 85/100

PBP IUL has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The plugin 'pbp-iul' v2.1 exhibits a generally strong security posture from a static analysis perspective, with no detected AJAX handlers, REST API routes, shortcodes, or cron events without proper authorization checks. The code signals also indicate a positive lack of dangerous functions, file operations, and external HTTP requests. Furthermore, all SQL queries are secured with prepared statements, and there are no known vulnerabilities or CVEs associated with this plugin, suggesting a mature and well-maintained codebase. However, the static analysis reveals a significant weakness in output escaping, with only 25% of identified outputs being properly escaped. This could lead to Cross-Site Scripting (XSS) vulnerabilities if the unescaped data is user-controlled or originates from untrusted sources. The taint analysis, while limited in scope, identified two flows with unsanitized paths, which could potentially lead to vulnerabilities if these paths are exploited, although no critical or high severity issues were flagged.

Key Concerns

Low output escaping coverage
Unsanitized paths found in taint analysis

Vulnerabilities

None known

PBP IUL Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

PBP IUL Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

25% escaped4 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

upload_max_file_size (pbp-iul.php:37)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

PBP IUL Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionadmin_menupbp-iul.php:28

filterupload_size_limitpbp-iul.php:85

filterplugin_action_linkspbp-iul.php:93

Maintenance & Trust

PBP IUL Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39

Last updatedApr 24, 2015

PHP min version

Downloads10K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

PBP IUL Alternatives

Big File Uploads – Increase Maximum File Upload Size

tuxedo-big-file-uploads

Enable large file uploads in the built-in WordPress media uploader via file chunking, and set maximum upload file size to any value based on user role …

100K 2 CVEs