Does Unveil Lazy Load have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Unveil Lazy Load compatible with WordPress 4.0.38?

According to WordPress.org data, Unveil Lazy Load 0.3.1 has been tested up to WordPress 4.0.38. Check the plugin's changelog for the latest compatibility information.

How often is Unveil Lazy Load updated?

Unveil Lazy Load was last updated on Nov 28, 2017. Frequent updates are generally a positive security signal.

What is Unveil Lazy Load's security score?

Unveil Lazy Load has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Unveil Lazy Load Security & Risk Analysis

wordpress.org/plugins/unveil-lazy-load

Unveil Lazy Load is a WordPress Plugin whitch makes lazy-image-load possible to decrease number of requests and improve page loading time.

3K active installs v0.3.1 PHP + WP 3.2+ Updated Nov 28, 2017

imageslazy-loadperformance

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Unveil Lazy Load Safe to Use in 2026?

Generally Safe

Score 85/100

Unveil Lazy Load has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The plugin 'unveil-lazy-load' v0.3.1 exhibits a strong security posture based on the provided static analysis. The absence of any identified dangerous functions, SQL queries executed without prepared statements, and properly escaped output are positive indicators. Furthermore, the lack of file operations, external HTTP requests, and the absence of a significant attack surface (no AJAX handlers, REST API routes, shortcodes, or cron events) contribute to a generally secure design. The plugin also has no recorded vulnerabilities, including CVEs, which suggests a history of stable and secure development.

While the static analysis reveals no immediate critical flaws, the complete absence of nonce and capability checks across all identified entry points (even though there are none) is a noteworthy observation. If the plugin were to introduce any entry points in the future without these checks, it would represent a significant security risk. However, based on the current data, the plugin appears to be well-developed and secure, with no exploitable vulnerabilities identified. Its minimal attack surface and adherence to safe coding practices make it a low-risk plugin at this time.

Vulnerabilities

None known

Unveil Lazy Load Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Unveil Lazy Load Release Timeline

v0.3.0

v0.2.1

v0.2.0

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Code Analysis

Analyzed Mar 16, 2026

Unveil Lazy Load Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Unveil Lazy Load Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionwp_enqueue_scriptsunveil-lazy-load.php:42

filterthe_contentunveil-lazy-load.php:43

filterpost_thumbnail_htmlunveil-lazy-load.php:44

filterget_avatarunveil-lazy-load.php:45

Maintenance & Trust

Unveil Lazy Load Maintenance & Trust

Maintenance Signals

WordPress version tested4.0.38

Last updatedNov 28, 2017

PHP min version

Downloads56K

Community Trust

Rating94/100

Number of ratings15

Active installs3K

Alternatives

Unveil Lazy Load Alternatives

Lazy Loader

lazy-loading-responsive-images

Lazy loading plugin that supports images, iFrames, video and audio elements and uses the lightweight lazysizes script. With manual modification of the …

10K No CVEs

Native Image Lazy Loading

native-image-lazy-loading

Automatically add the new loading attribute to images within your content to support native image lazy loading.

20 No CVEs

Picafto – One-click Lazy load images (ACF compatible)

picafto

Instantly, automatically and painlessly make your website faster by reducing image payload and lazy loading them.

10 No CVEs

Autoptimize

autoptimize

Autoptimize speeds up your website by optimizing JS, CSS, images (incl. lazy-load), HTML and Google Fonts, asyncing JS, removing emoji cruft and more.

900K 12 CVEs

WebP Express

webp-express

Serve autogenerated WebP images instead of jpeg/png to browsers that supports WebP.

300K 3 CVEs

Developer Profile

Unveil Lazy Load Developer Profile

marubon

2 plugins · 11K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Unveil Lazy Load

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/unveil-lazy-load/js/jquery.optimum-lazy-load.min.js

Script Paths