WP-Safety

Smart Image Crop AI Security & Risk Analysis

wordpress.org/plugins/smart-crop-image-ai

Use the power of machine learning to crop images automatically.

10 active installs v1.0 PHP 5.4+ WP 5.1.0+ Updated Jan 6, 2022
crop-imagesimagesresize-images
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Smart Image Crop AI Safe to Use in 2026?

Generally Safe

Score 85/100

Smart Image Crop AI has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago
Risk Assessment

The smart-crop-image-ai plugin v1.0 exhibits several concerning security weaknesses despite a clean vulnerability history and the absence of dangerous functions. The most significant issue lies in its attack surface, with all three identified REST API routes lacking permission callbacks. This means any unauthenticated user can potentially interact with these endpoints, creating a significant security risk if they handle sensitive data or perform privileged actions. While the plugin appears to use prepared statements for SQL queries and has good output escaping, the lack of nonces on AJAX handlers (though there are none in this version) and generally weak capability checks for the exposed REST API routes are substantial oversights. The absence of any recorded vulnerabilities in its history is a positive sign, suggesting that the developers might be responsive to security issues, but this cannot compensate for the inherent flaws in the current code.

Key Concerns

  • REST API routes exposed without permission callbacks
  • No nonce checks on identified entry points
  • Limited capability checks on entry points
Vulnerabilities
None known

Smart Image Crop AI Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Smart Image Crop AI Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
9 escaped
Nonce Checks
0
Capability Checks
2
File Operations
5
External Requests
1
Bundled Libraries
0

Output Escaping

90% escaped10 total outputs
Attack Surface
3 unprotected

Smart Image Crop AI Attack Surface

Entry Points3
Unprotected3

REST API Routes 3

GET/wp-json/smart-image-crop/v1/proxysrc\class-smartcrop-plugin.php:166
GET/wp-json/smart-image-crop/v1/settingssrc\class-smartcrop-plugin.php:173
GET/wp-json/smart-image-crop/v1/settingssrc\class-smartcrop-plugin.php:178
WordPress Hooks 10
filterattachment_fields_to_editsrc\class-smartcrop-plugin.php:30
actionrest_api_initsrc\class-smartcrop-plugin.php:38
actionrest_api_initsrc\class-smartcrop-plugin.php:40
filterwp_generate_attachment_metadatasrc\class-smartcrop-plugin.php:42
actionattachment_submitbox_misc_actionssrc\class-smartcrop-plugin.php:49
filtermedia_row_actionssrc\class-smartcrop-plugin.php:52
actionadmin_enqueue_scriptssrc\class-smartcrop-plugin.php:54
actioninitsrc\class-smartcrop-wp-base.php:36
actionadmin_initsrc\class-smartcrop-wp-base.php:38
actionadmin_menusrc\class-smartcrop-wp-base.php:39
Maintenance & Trust

Smart Image Crop AI Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13
Last updatedJan 6, 2022
PHP min version5.4
Downloads961

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Smart Image Crop AI Alternatives

QODE Optimizer

QODE Optimizer

qode-optimizer

A
100

The QODE Optimizer plugin is developed to allow you to convert, compress and adjust file sizes for all the images found on your website.

20K No CVEs
Compress, Resize & Lazy Load Images – WPvivid Image Optimization

Compress, Resize & Lazy Load Images – WPvivid Image Optimization

wpvivid-imgoptim

A
100

Optimize, compress and resize images in WordPress in bulk. Lazy load images. Auto resize and optimize images upon upload.

10K No CVEs
Adaptive Images for WordPress

Adaptive Images for WordPress

adaptive-images

A
90

Adaptive images plugin transparently resizes your images, per device screen size, in order to reduce download times in mobile environments.

4K 3 CVEs
Image Optimization For SEO

Image Optimization For SEO

seo-image-optimizer

A
100

Image Optimization For Seo is the wordPress plugin. This plugin Resize and Compress the images to boost your site speed. It's also replaces the t …

3K No CVEs
Comment Pub

Comment Pub

comment-pub

A
85

Create a guestbook or local avatars or unique comments. The images be will resized on upload and originals deleted.

20 No CVEs
Developer Profile

Smart Image Crop AI Developer Profile

bcupham

3 plugins · 40 total installs

82
trust score
Avg Security Score
83/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Smart Image Crop AI

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/smart-crop-image-ai/assets/css/styles.css/wp-content/plugins/smart-crop-image-ai/assets/js/scripts.js
Script Paths
/wp-content/plugins/smart-crop-image-ai/assets/js/scripts.js
Version Parameters
/wp-content/plugins/smart-crop-image-ai/assets/css/styles.css?ver=/wp-content/plugins/smart-crop-image-ai/assets/js/scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes
smartcropai-button
Data Attributes
data-attachment_id
JS Globals
smartcropai
REST Endpoints
/wp-json/smart-image-crop/v1/proxy/wp-json/smart-image-crop/v1/settings
FAQ

Frequently Asked Questions about Smart Image Crop AI