WP-Safety

Watermark RELOADED Security & Risk Analysis

wordpress.org/plugins/watermark-reloaded

Automatically add customizable text watermarks to new images on upload to protect your WordPress media library.

800 active installs v1.4.0 PHP 5.3+ WP 3.5+ Updated Dec 2, 2025
copyright-protectionimage-protectionimage-watermarktext-watermarkwatermark
99
A · Safe
CVEs total1
Unpatched0
Last CVEFeb 26, 2024
Download
Safety Verdict

Is Watermark RELOADED Safe to Use in 2026?

Generally Safe

Score 99/100

Watermark RELOADED has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 26, 2024Updated 4mo ago
Risk Assessment

The watermark-reloaded plugin version 1.4.0 exhibits a generally good security posture based on the static analysis. The code demonstrates strong adherence to secure coding practices, with all SQL queries utilizing prepared statements and all output being properly escaped. The absence of dangerous functions, file operations, and external HTTP requests further contributes to a low risk profile from a code execution or data manipulation perspective. Furthermore, the presence of nonce and capability checks on its single AJAX entry point suggests an effort to protect against common web vulnerabilities.

Despite these strengths, the plugin has a history of one known high-severity vulnerability, identified as Cross-Site Request Forgery (CSRF), with its last occurrence being in early 2024. While currently unpatched CVEs are zero, this historical pattern indicates that the plugin has been susceptible to this type of attack in the past. This history, coupled with the fact that there is still an attack surface (even if protected), warrants a degree of caution. Overall, the plugin shows diligent security implementation in its current code, but the historical vulnerability necessitates ongoing vigilance and prompt updates for any future security advisories.

Key Concerns

  • Past high-severity CVE present
Vulnerabilities
1

Watermark RELOADED Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2024-27195high · 8.2Cross-Site Request Forgery (CSRF)

Watermark RELOADED <= 1.3.5 - Cross-Site Request Forgery via optionsPage

Feb 26, 2024 Patched in 1.4.0 (653d)
Code Analysis
Analyzed Mar 16, 2026

Watermark RELOADED Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
60 escaped
Nonce Checks
2
Capability Checks
5
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped60 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
options_page_submit (class-watermark-reloaded-admin.php:433)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Watermark RELOADED Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_watermark_previewclass-watermark-reloaded-admin.php:71
WordPress Hooks 7
filterplugin_row_metaclass-watermark-reloaded-admin.php:62
actionadmin_menuclass-watermark-reloaded-admin.php:65
actionwp_dashboard_setupclass-watermark-reloaded-admin.php:68
filterwp_generate_attachment_metadataclass-watermark-reloaded-admin.php:74
actionadmin_print_scripts-media-upload-popupclass-watermark-reloaded-admin.php:141
actioninitwatermark-loader.php:64
actioninitwatermark-loader.php:96
Maintenance & Trust

Watermark RELOADED Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 2, 2025
PHP min version5.3
Downloads170K

Community Trust

Rating56/100
Number of ratings11
Active installs800
Alternatives

Watermark RELOADED Alternatives

Product Image Watermark for Woo

Product Image Watermark for Woo

product-image-watermark-for-woo

A
100

Automatically add watermarks to WooCommerce product images to protect your store visuals and maintain brand identity.

30 No CVEs
Ultimate Watermark – Protect Images with Professional Watermarks

Ultimate Watermark – Protect Images with Professional Watermarks

ultimate-watermark

A
99

Automatically protect your images with professional watermarks. Add text or image watermarks to WordPress media uploads with advanced positioning and &hellip;

1K 1 CVE
GrandPlugins Image Watermark

GrandPlugins Image Watermark

watermark-images-for-wp-and-woo-grandpluginswp

A
100

The plugin offers watermarks templates for bulk watermarks and single editor for applying watermarks on single images.

200 No CVEs
Smart Watermark

Smart Watermark

smart-watermark

A
85

Plugin allows you to add image watermark to images uploaded to the WordPress Media Library and add watermark to old images via bulk processing tool

60 No CVEs
Easy Disable Source, No Right-click, Image protection and Content Protection

Easy Disable Source, No Right-click, Image protection and Content Protection

easy-disable-right-click

A
92

Easy Disable Right-Click plugin allows site admins to enable or disable right-click, view source, copy, paste, and F6 options on their WordPress site.

50 No CVEs
Developer Profile

Watermark RELOADED Developer Profile

sverde1

2 plugins · 890 total installs

79
trust score
Avg Security Score
100/100
Avg Patch Time
653 days
View full developer profile
Detection Fingerprints

How We Detect Watermark RELOADED

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/watermark-reloaded/css/settings.css/wp-content/plugins/watermark-reloaded/js/settings.js
Script Paths
/wp-content/plugins/watermark-reloaded/js/settings.js
Version Parameters
watermark-reloaded/css/settings.css?ver=watermark-reloaded/js/settings.js?ver=

HTML / DOM Fingerprints

CSS Classes
wr-settings-title
Data Attributes
data-position-xdata-position-y
JS Globals
WR_AJAX_URLWR_ajax_object
FAQ

Frequently Asked Questions about Watermark RELOADED