Does SEO Quick Images have any unpatched vulnerabilities?

No. All known vulnerabilities in SEO Quick Images have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SEO Quick Images compatible with WordPress 6.2.9?

According to WordPress.org data, SEO Quick Images 1.4.2 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

Is SEO Quick Images compatible with PHP 7.1+?

SEO Quick Images requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SEO Quick Images updated?

SEO Quick Images was last updated on Jul 11, 2023. Frequent updates are generally a positive security signal.

What is SEO Quick Images's security score?

SEO Quick Images has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SEO Quick Images Security & Risk Analysis

wordpress.org/plugins/seo-quick-images

SEO Images is a powerful plugin that helps you add images in your wordpress posts, based on titles. Enhance your content with a lot of images!

10 active installs v1.4.2 PHP 7.1+ WP 4.7+ Updated Jul 11, 2023

automatic-imagesimagesquick-imagesseoseo-images

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SEO Quick Images Safe to Use in 2026?

Generally Safe

Score 85/100

SEO Quick Images has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "seo-quick-images" plugin v1.4.2 presents a mixed security posture. On the positive side, it has no known vulnerabilities (CVEs) and demonstrates good practices in output escaping and the use of prepared statements for SQL queries. The absence of dangerous functions and bundled libraries also contributes to a generally sound foundation.

However, a significant concern arises from the plugin's attack surface. With 9 AJAX handlers in total, 5 of them lack authentication checks. This presents a considerable risk, as unauthenticated users could potentially interact with these handlers, leading to unintended actions or information disclosure. The taint analysis did reveal flows with unsanitized paths, although they were not classified as critical or high severity, they still warrant attention as they could be potential vectors for exploits if combined with other weaknesses or specific user inputs.

While the plugin has no recorded vulnerability history, this doesn't guarantee future safety. The identified unprotected AJAX endpoints are the most pressing issue, suggesting that these entry points need to be secured with appropriate authorization checks. The plugin's strengths in other areas are overshadowed by this significant attack surface vulnerability.

Key Concerns

5 unprotected AJAX handlers
3 flows with unsanitized paths
4 SQL queries without prepared statements
Only 4 nonce checks for 9 entry points
Only 3 capability checks for 9 entry points

Vulnerabilities

None known

SEO Quick Images Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

SEO Quick Images Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

71 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared5 total queries

Output Escaping

87% escaped82 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

7 flows3 with unsanitized paths

SEO_IMAGES_call_image_api (admin\admin-general-setting.php:424)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

5 unprotected

SEO Quick Images Attack Surface

Entry Points9

Unprotected5

AJAX Handlers 9

authwp_ajax_addPostTypeFlagadmin\admin-general-setting.php:9

noprivwp_ajax_addPostTypeFlagadmin\admin-general-setting.php:10

authwp_ajax_call_imageApiadmin\admin-general-setting.php:12

noprivwp_ajax_call_imageApiadmin\admin-general-setting.php:13

authwp_ajax_set_featured_imageadmin\admin-general-setting.php:15

noprivwp_ajax_set_featured_imageadmin\admin-general-setting.php:16

authwp_ajax_insert_selected_imageApiadmin\admin-general-setting.php:18

authwp_ajax_seo_images_savePostadmin\admin-general-setting.php:19

noprivwp_ajax_seo_images_savePostadmin\admin-general-setting.php:20

WordPress Hooks 11

actionadd_meta_boxesadmin\admin-general-setting.php:21

actionadmin_menuadmin\admin-general-setting.php:22

actionadmin_initadmin\admin-general-setting.php:23

filterplugin_action_links_seo-images/seo_images.phpadmin\admin-general-setting.php:25

actionadmin_print_styles-post.phploader.php:17

actionadmin_print_styles-post.phploader.php:18

actionadmin_initseo_images.php:42

actionadmin_menuwp_seo_plugins.php:2

actionadmin_post_wp_seo_plugins_registrationwp_seo_plugins.php:20

actionadmin_post_wp_seo_plugins_loginwp_seo_plugins.php:70

actionadmin_post_wp_seo_plugins_logout_form_submitwp_seo_plugins.php:174

Maintenance & Trust

SEO Quick Images Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedJul 11, 2023

PHP min version7.1

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

SEO Quick Images Alternatives

SEO Image Toolbox

seo-image-alt-tags

THIS WILL SAVE YOU HOURS. Alt tags are dynamically generated and saved to the database automatically any time an image is uploaded, and improves your …

1K No CVEs

Auto Image SEO

auto-image-seo

Automatically optimize your WordPress images for SEO with the Auto Image SEO plugin

100 No CVEs

Simple SEO Criteria Check

simple-seo-criteria-check

The plugin 'Simple SEO Criteria Checklist" evaluates your post URLs, internal and external post links and image meta data.

60 No CVEs

SEO Auto Image Tags

seo-auto-image-tags

Auto generate clean ALT tags for your images as they are uploaded. Removes hyphens, periods and other characters to generate clean alt tag names.

40 No CVEs

Simple Image SEO

simple-image-seo

Descripcion

20 No CVEs

Developer Profile

SEO Quick Images Developer Profile

seomantis

3 plugins · 40 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

10 days

View full developer profile

Detection Fingerprints

How We Detect SEO Quick Images

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/seo-quick-images/assets/css/seo_images_style.css/wp-content/plugins/seo-quick-images/assets/js/seo_images_script.js/wp-content/plugins/seo-quick-images/assets/js/seo_images_ajax_script.js

Script Paths

/wp-content/plugins/seo-quick-images/assets/js/seo_images_script.js/wp-content/plugins/seo-quick-images/assets/js/seo_images_ajax_script.js

Version Parameters

seo_images_style.css?ver=seo_images_script.js?ver=seo_images_ajax_script.js?ver=

HTML / DOM Fingerprints

CSS Classes

seo_images-metabox-cvrseo_images-groupsearch-lbred-spreq-spsearch-inpseo_images-number-inpset-short+1 more

HTML Comments

+1 more

Data Attributes

data-h1countdata-h1iddata-h2countdata-h2iddata-h3countdata-h3id+6 more

JS Globals

ajax_objectwpseoplugis

REST Endpoints

/wp-json/wp-seo-plugins-api/v1/settings

FAQ