WP-Safety

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Security & Risk Analysis

wordpress.org/plugins/wp-maximum-upload-file-size

EasyMedia - Increase the maximum upload file size limit to any value. Increase upload limit - upload large files effortlessly.

80K active installs v3.0.4 PHP 7.0+ WP 4.0+ Updated Jan 25, 2026
easymediaincrease-file-size-limitincrease-upload-limitlarge-file-uploadmax-upload-file-size
99
A · Safe
CVEs total2
Unpatched0
Last CVENov 22, 2024
Plugin page Download
Safety Verdict

Is EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Safe to Use in 2026?

Generally Safe

Score 99/100

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Nov 22, 2024Updated 2mo ago
Risk Assessment

The wp-maximum-upload-file-size plugin, version 3.0.4, exhibits a mixed security posture. The static analysis reveals a relatively small attack surface, with all identified entry points (AJAX handlers) appearing to have authentication checks. The plugin also demonstrates good practices in its handling of SQL queries, exclusively using prepared statements, and implements nonce and capability checks. However, a significant concern arises from the taint analysis, which identified two flows with unsanitized paths. While these did not result in critical or high severity issues in this analysis, they represent potential pathways for malicious input to affect the application if not handled properly further downstream. The plugin's vulnerability history shows two past medium severity CVEs, specifically related to "Exposure of Sensitive Information to an Unauthorized Actor" and "Missing Authorization." The fact that the last vulnerability was recently discovered (2024-11-22) and is currently unpatched is a notable risk. Although these past issues are medium severity and there are no currently unpatched CVEs, the historical pattern suggests a need for continued vigilance and robust security practices within the plugin's development lifecycle. The 75% proper output escaping, while decent, also leaves room for improvement, as a quarter of the outputs are not properly escaped, potentially leading to cross-site scripting vulnerabilities if the data originates from an untrusted source.

Key Concerns

  • Taint flows with unsanitized paths found
  • Past medium severity CVEs exist
  • 25% of output is not properly escaped
Vulnerabilities
2

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Security Vulnerabilities

CVEs by Year

1 CVE in 2022
2022
1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2024-11265medium · 4.3Exposure of Sensitive Information to an Unauthorized Actor

Wp Maximum Upload File Size <= 1.1.3 - Authenticated (Author+) Full Path Disclosure

Nov 22, 2024 Patched in 1.1.4 (1d)
WF-84003388-c47c-41db-8d2d-4643aa375a89-wp-maximum-upload-file-sizemedium · 4.3Missing Authorization

Appsero <= 1.2.1 - Missing Authorization

Dec 16, 2022 Patched in 1.1.0 (699d)
Code Analysis
Analyzed Mar 16, 2026

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
37
111 escaped
Nonce Checks
6
Capability Checks
6
File Operations
10
External Requests
2
Bundled Libraries
0

Output Escaping

75% escaped148 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
wmufs_ajax_chunk_receiver (inc\class-wmufs-chunk-files.php:46)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_wmufs_restore_default_settingsadmin\class-wmufs-admin.php:21
authwp_ajax_wmufs_chunkerinc\class-wmufs-chunk-files.php:13
authwp_ajax_wmufs_admin_notice_ajax_object_saveinc\hooks.php:4
WordPress Hooks 24
actionadmin_enqueue_scriptsadmin\class-wmufs-admin.php:9
actionadmin_menuadmin\class-wmufs-admin.php:10
filterplugin_row_metaadmin\class-wmufs-admin.php:12
filteradmin_footer_textadmin\class-wmufs-admin.php:13
actionadmin_initadmin\class-wmufs-admin.php:16
actionadmin_headadmin\class-wmufs-admin.php:18
actionadmin_headadmin\class-wmufs-admin.php:317
filterupload_size_limitadmin\class-wmufs-admin.php:360
filterupload_size_limitadmin\class-wmufs-admin.php:366
actioninitadmin\class-wmufs-admin.php:383
filterplupload_initinc\class-wmufs-chunk-files.php:14
filterplupload_default_settingsinc\class-wmufs-chunk-files.php:15
filterplupload_default_paramsinc\class-wmufs-chunk-files.php:16
filterupload_post_paramsinc\class-wmufs-chunk-files.php:17
actioninitinc\class-wmufs-chunk-files.php:481
actionplugins_loadedinc\class-wmufs-i18n.php:11
filterinstall_plugins_table_api_args_featuredinc\codepopular-plugin-suggest.php:23
filterplugins_api_resultinc\codepopular-plugin-suggest.php:32
actionwp_dashboard_setupinc\codepopular-promotion.php:17
actionload-index.phpinc\codepopular-promotion.php:89
actionadmin_noticesinc\codepopular-promotion.php:90
actionadmin_footerinc\hooks.php:30
actionadmin_enqueue_scriptsinc\hooks.php:61
actioninitwp-maximum-upload-file-size.php:55
Maintenance & Trust

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 25, 2026
PHP min version7.0
Downloads1.2M

Community Trust

Rating98/100
Number of ratings98
Active installs80K
Alternatives

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Alternatives

Big File Uploads – Increase Maximum File Upload Size

Big File Uploads – Increase Maximum File Upload Size

tuxedo-big-file-uploads

A
99

Enable large file uploads in the built-in WordPress media uploader via file chunking, and set maximum upload file size to any value based on user role &hellip;

100K 2 CVEs
Increase Maximum Upload File Size

Increase Maximum Upload File Size

upload-max-file-size

A
85

Increase maximum upload file size limit to any value. Increase upload limit - upload large files.

40K No CVEs
Themx Maximum Upload File Size | Increase Maximum Upload File Size

Themx Maximum Upload File Size | Increase Maximum Upload File Size

themx-maximum-upload-file-size

A
92

Increase maximum upload file size limit to larger value. Increase upload limit, upload big files. Increase maximum execution time.

1K No CVEs
Increase Maximum Upload file Size Limit

Increase Maximum Upload file Size Limit

increase-maximum-upload-file-size-limit

A
85

Increase Maximum file size Upload Limit. Control Post Max Size, Max upload size, Increase Upload limit, execution time, big file upload from WordPress &hellip;

100 No CVEs
Increase Upload Limit

Increase Upload Limit

increase-upload-limit

A
85

Increase maximum upload file size limit to any value. Increase upload limit - upload large files.

80 No CVEs
Developer Profile

EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time Developer Profile

CodePopular

4 plugins · 81K total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
240 days
View full developer profile
Detection Fingerprints

How We Detect EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-maximum-upload-file-size/assets/css/wmufs.css
Version Parameters
wp-maximum-upload-file-size/assets/css/wmufs.css?ver=

HTML / DOM Fingerprints

CSS Classes
wmufs-notice
Data Attributes
data-noncedata-pagedata-action
FAQ

Frequently Asked Questions about EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time