Does WP Recreate Thumbnails have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Recreate Thumbnails compatible with WordPress 6.5.8?

According to WordPress.org data, WP Recreate Thumbnails 1.2.0 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

How often is WP Recreate Thumbnails updated?

WP Recreate Thumbnails was last updated on May 21, 2024. Frequent updates are generally a positive security signal.

What is WP Recreate Thumbnails's security score?

WP Recreate Thumbnails has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Recreate Thumbnails Security & Risk Analysis

wordpress.org/plugins/wp-recreate-thumbnails

This Plugin helps to create thumbnails of uploaded images

20 active installs v1.2.0 PHP + WP 3.3+ Updated May 21, 2024

imageimage-sizenew-imagerecreate-imagethumbnails

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is WP Recreate Thumbnails Safe to Use in 2026?

Generally Safe

Score 92/100

WP Recreate Thumbnails has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The wp-recreate-thumbnails plugin v1.2.0 exhibits significant security concerns due to its unprotected AJAX handlers. While the plugin demonstrates good practices in avoiding dangerous functions, raw SQL queries, and external HTTP requests, the presence of four AJAX handlers without any authentication or capability checks presents a substantial attack surface. This means any unauthenticated user could potentially trigger these actions, leading to unintended consequences. The taint analysis also indicates two flows with unsanitized paths, which, while not classified as critical or high severity in this instance, highlight potential pathways for attackers to manipulate data or file operations. The plugin's clean vulnerability history is a positive sign, suggesting no known historical exploits. However, the current static analysis findings, particularly the unprotected entry points, overshadow this positive history, requiring immediate attention to secure these handlers.

Key Concerns

Unprotected AJAX handlers
Unsanitized paths in taint analysis
Output escaping concerns
Lack of nonce checks
Lack of capability checks

Vulnerabilities

None known

WP Recreate Thumbnails Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP Recreate Thumbnails Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

WP Recreate Thumbnails Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

45% escaped11 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

yspl_rbt_recreate_thumbnails (recreate-thumbnails.php:152)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

WP Recreate Thumbnails Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_yspl_rbt_create_thumbnailsrecreate-thumbnails.php:92

noprivwp_ajax_yspl_rbt_create_thumbnailsrecreate-thumbnails.php:93

authwp_ajax_yspl_rbt_create_single_thumbrecreate-thumbnails.php:149

noprivwp_ajax_yspl_rbt_create_single_thumbrecreate-thumbnails.php:150

WordPress Hooks 3

actionadmin_enqueue_scriptsrecreate-thumbnails.php:39

actionadmin_menurecreate-thumbnails.php:95

filterattachment_fields_to_editrecreate-thumbnails.php:199

Maintenance & Trust

WP Recreate Thumbnails Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMay 21, 2024

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

WP Recreate Thumbnails Alternatives

WP Image Sizes

wp-image-sizes

100

Select the only image sizes for post types you want to be generated. Eliminate unnecessary image sizes.

40 No CVEs

Custom Thumbnail Generator

custom-thumbnail-generator

100

Custom Thumbnail Generator manages image sizes via an AJAX interface. It decouples sizes from themes, ensuring they persist and remain functional.

20 No CVEs

TinyPNG – JPEG, PNG & WebP image compression

tiny-compress-images

Speed up your website. Optimize your JPEG, PNG, and WebP images automatically with TinyPNG.

100K 1 CVE

Auto Featured Image (Auto Post Thumbnail)

auto-post-thumbnail

Automatically generate, assign, and manage featured images in bulk so every post on your site has a featured image.

50K 6 CVEs

Developer Profile

WP Recreate Thumbnails Developer Profile

Yudiz Solutions Pvt. Ltd.

15 plugins · 6K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

59 days

View full developer profile

Detection Fingerprints

How We Detect WP Recreate Thumbnails

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-recreate-thumbnails/js/create_thumb.js/wp-content/plugins/wp-recreate-thumbnails/css/font-awesome.min.css/wp-content/plugins/wp-recreate-thumbnails/css/style.css/wp-content/plugins/wp-recreate-thumbnails/js/jquery.redirect.js/wp-content/plugins/wp-recreate-thumbnails/css/loader.gif

Script Paths

js/create_thumb.jsjs/jquery.redirect.js

HTML / DOM Fingerprints

CSS Classes

btn_regensize-labelsize-text

Data Attributes

data-id

JS Globals

passed_object

REST Endpoints

/wp-json/yspl/v1/recreate-thumbnails

FAQ