Does RS Auto WebP Convert have any unpatched vulnerabilities?

No. All known vulnerabilities in RS Auto WebP Convert have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is RS Auto WebP Convert compatible with WordPress 6.8.5?

According to WordPress.org data, RS Auto WebP Convert 1.0.2 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is RS Auto WebP Convert compatible with PHP 7.4+?

RS Auto WebP Convert requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is RS Auto WebP Convert updated?

RS Auto WebP Convert was last updated on Oct 7, 2025. Frequent updates are generally a positive security signal.

What is RS Auto WebP Convert's security score?

RS Auto WebP Convert has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

RS Auto WebP Convert Security & Risk Analysis

wordpress.org/plugins/rs-auto-webp-convert

Automatically converts JPEG/JPG/PNG to WebP on upload, with an option to delete the original. Imagick preferred, GD fallback. No tracking.

0 active installs v1.0.2 PHP 7.4+ WP 5.8+ Updated Oct 7, 2025

conversionimagesoptimizationperformancewebp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is RS Auto WebP Convert Safe to Use in 2026?

Generally Safe

Score 100/100

RS Auto WebP Convert has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The static analysis of rs-auto-webp-convert v1.0.2 reveals a remarkably clean codebase with no identified attack surface through common entry points like AJAX handlers, REST API routes, shortcodes, or cron events. The plugin also demonstrates good coding practices by avoiding dangerous functions, using prepared statements exclusively for SQL queries, and properly escaping all identified outputs. Furthermore, there are no recorded vulnerabilities in its history, suggesting a history of secure development and maintenance. The absence of file operations and external HTTP requests further reduces the potential for common attack vectors.

However, a notable area of concern arises from the complete lack of capability checks and nonce checks. While the current version has no exposed entry points that would necessitate these, this absence represents a significant potential security weakness. If future updates introduce any new entry points, they would be inherently unprotected without these fundamental security mechanisms. This lack of defensive programming, even in the absence of immediate risk, is a critical oversight that could lead to vulnerabilities if the plugin's functionality expands.

Key Concerns

Missing capability checks
Missing nonce checks

Vulnerabilities

None known

RS Auto WebP Convert Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

RS Auto WebP Convert Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

RS Auto WebP Convert Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actioninitrs-auto-webp-convert.php:34

Maintenance & Trust

RS Auto WebP Convert Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedOct 7, 2025

PHP min version7.4

Downloads154

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

RS Auto WebP Convert Alternatives

Auto WebP Converter & Logger

auto-webp-converter-logger

100

Boost site speed by automatically converting uploads to WebP. Features smart memory protection, detailed logging, and zero API dependencies.

100 No CVEs

Only WebP Uploads

only-webp-uploads

100

Automatically converts uploaded images (JPG/JPEG/PNG/GIF) to WebP, including all WordPress sizes.

10 No CVEs

Stintlief WebP Converter

stintlief-webp-converter

100

Automatically convert uploaded images to optimized WebP format with safe fallbacks, optional backups, and easy restoration.

10 No CVEs

CodePros Image Optimizer

codepros-image-optimizer

100

Convert and optimize your WordPress images to WebP format for faster page loads and better performance.

0 No CVEs

Image Optimizer – Optimize Images and Convert to WebP or AVIF

image-optimization

Automatically resize, optimize, and convert images to WebP and AVIF. Compress images in bulk or on upload to boost your WordPress site performance.

1.0M 1 CVE

Developer Profile

RS Auto WebP Convert Developer Profile

rodrigosilvano

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect RS Auto WebP Convert

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ