[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fEIH8F7jUkKj8fc0TYB4vRSlO6uMmowh8ZlTPfgFB56I":3,"$fBrQCkJ36UUmc2jXHbBQnvlloRS_s0P4NfU4m0msthFA":277,"$fzECTqn3MOKaAG_vE03Ocbgk2egYj7kZ5PorvHbUDwHY":282},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":50,"crawl_stats":38,"alternatives":58,"analysis":167,"fingerprints":258},"advanced-speed-increaser","Advanced Speed Increaser","2.2.1","Animesh Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fanimeshsarakd\u002F","\u003Cp>Advanced Speed Increaser is a light weighted plugin to speed up wordpress website by using GZIP compression and setting header expiration for images. The plugin uses .htaccess file for compression. This plugin also minify HTML, inline CSS and Javascript. Including Database cleanup and optimization tool to make your wordpress website lighter and faster.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Advanced Speed Increaser enable GZIP compression in your website.\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser enable Leverage Browser Caching.\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser Turn Off ETags.\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser minify HTML, inline CSS and Javascript.\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser set far future expiration date for static files (eg. image,fonts,javascript etc).\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser gives you an option to remove auto revisions posts.\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser gives you an option to remove auto drafts posts.\u003C\u002Fli>\n\u003Cli>Advanced Speed Increaser gives you an option to remove transient options.\u003C\u002Fli>\n\u003C\u002Ful>\n","Advanced Speed Increaser is a light weighted plugin to speed up wordpress website by using GZIP compression and setting header expiration for images.",300,18856,76,10,"2020-04-03T05:44:00.000Z","5.4.19","3.5","",[20,21,22,23,24],"expires-header","expiry-header","far-future-expiration","gzip","javascript","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-speed-increaser\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-speed-increaser.zip",64,1,"2025-04-01 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":38,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":38,"patch_diff_files":47,"patch_trac_url":38,"research_status":38,"research_verified":48,"research_rounds_completed":49,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":48,"poc_model_used":38,"poc_verification_depth":38},"CVE-2025-31753","advanced-speed-increaser-cross-site-request-forgery","Advanced Speed Increaser \u003C= 2.2.1 - Cross-Site Request Forgery","The Advanced Speed Increaser plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=2.2.1","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-04-08 18:01:50",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F52b7b38a-6851-4c8d-8a53-08bf8934c089?source=api-prod",[],false,0,{"slug":51,"display_name":7,"profile_url":8,"plugin_count":52,"total_installs":53,"avg_security_score":54,"avg_patch_time_days":55,"trust_score":56,"computed_at":57},"animeshsarakd",2,600,75,30,77,"2026-05-20T04:38:43.418Z",[59,80,100,122,146],{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":27,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":76,"download_link":77,"security_score":78,"vuln_count":28,"unpatched_count":49,"last_vuln_date":79,"fetched_at":30},"far-future-expiry-header","Far Future Expiry Header","1.6","mra13","https:\u002F\u002Fprofiles.wordpress.org\u002Fmra13\u002F","\u003Cp>This plugin offers a few lightweight features to speed up your WordPress site without much hassle.\u003C\u002Fp>\n\u003Ch4>Far Future Expiry\u003C\u002Fh4>\n\u003Cp>When the feature is enabled, this plugin will modify your .htaccess file by inserting code which will add expires headers for common static file types.\u003C\u002Fp>\n\u003Cp>Expiry header specifies a time far enough in the future so that browsers won’t try to re-fetch images, CSS, javascript etc files that haven’t changed (this reduces the number of HTTP requests) and hence the performance improvement on subsequent page views.\u003C\u002Fp>\n\u003Ch4>Gzip Compression\u003C\u002Fh4>\n\u003Cp>You can also enable Gzip compression on your site using this plugin. Gzip compression will speed up your WordPress site by compressing the page output and sending it to your visitors browser.\u003C\u002Fp>\n\u003Cp>When enabled, the plugin will do gzip compression if the visitor’s browser can handle it.\u003C\u002Fp>\n\u003Cp>This feature may conflict with a few other plugins. So disable this feature if you need to use a plugin which doesn’t work with gzip compression.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>To use this plugin do the following:\u003C\u002Fp>\n\u003Cp>1) Ensure that the “mod_expires” module is enabled from your host’s main configuration file\u003C\u002Fp>\n\u003Cp>2) Check with your hosting provider or if you have access to the httpd.conf file the following line should be uncommented:\u003Cbr \u002F>\nLoadModule expires_module modules\u002Fmod_expires.so\u003C\u002Fp>\n\u003Cp>3) Enable the “Far Future Expiration” checkbox\u003C\u002Fp>\n\u003Cp>4) Set the number of days till expiry\u003C\u002Fp>\n\u003Cp>5) Select the file types you wish to enable the “far future expiration” feature for by using the checkboxes in the “File Types” section\u003C\u002Fp>\n\u003Cp>NOTE: When you use this plugin, the file selected file types are cached in the browser until they expire. Therefore you should not use this on files that change frequently.\u003C\u002Fp>\n\u003Cp>More details can be found on the \u003Ca href=\"https:\u002F\u002Fwww.tipsandtricks-hq.com\u002Fwordpress-far-future-expiration-plugin-5980\" rel=\"nofollow ugc\">plugin’s documentation page\u003C\u002Fa>\u003C\u002Fp>\n","This plugin will add a far future expiry header for various file types to improve page load speed of your site",7000,230909,31,"2025-12-02T03:13:00.000Z","6.9.4","5.5",[74,20,75,21,22],"cache","expiry","https:\u002F\u002Fwww.tipsandtricks-hq.com\u002Fwordpress-far-future-expiration-plugin-5980","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffar-future-expiry-header.zip",100,"2021-10-04 00:00:00",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":90,"num_ratings":91,"last_updated":92,"tested_up_to":71,"requires_at_least":93,"requires_php":94,"tags":95,"homepage":18,"download_link":99,"security_score":78,"vuln_count":49,"unpatched_count":49,"last_vuln_date":38,"fetched_at":30},"cache-enabler","Cache Enabler","1.8.16","KeyCDN","https:\u002F\u002Fprofiles.wordpress.org\u002Fkeycdn\u002F","\u003Cp>Cache Enabler is a simple, yet powerful WordPress caching plugin that is easy to use, needs minimal configuration, and best of all helps improve site performance for a faster load time. It creates static HTML files of frontend pages and stores them on the server’s disk. This allows the static HTML files to be delivered instead of generating pages on the fly, avoiding resource intensive backend processes from the WordPress core, plugins, and database.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fast and efficient cache engine\u003C\u002Fli>\n\u003Cli>Automatic smart cache clearing\u003C\u002Fli>\n\u003Cli>Manual cache clearing\u003C\u002Fli>\n\u003Cli>WP-CLI cache clearing\u003C\u002Fli>\n\u003Cli>Cache expiry\u003C\u002Fli>\n\u003Cli>WebP support (convert images to WebP with \u003Ca href=\"https:\u002F\u002Foptimus.io\" rel=\"nofollow ugc\">Optimus\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Mobile support\u003C\u002Fli>\n\u003Cli>Brotli and Gzip pre-compression support\u003C\u002Fli>\n\u003Cli>Minification of HTML excluding or including inline CSS and JavaScript\u003C\u002Fli>\n\u003Cli>Real-time cache size display in the WordPress dashboard\u003C\u002Fli>\n\u003Cli>Custom post type support\u003C\u002Fli>\n\u003Cli>\u003Ccode>304 Not Modified\u003C\u002Fcode> support\u003C\u002Fli>\n\u003Cli>Works perfectly with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fautoptimize\u002F\" rel=\"ugc\">Autoptimize\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How does the caching work?\u003C\u002Fh4>\n\u003Cp>Cache Enabler captures page contents and saves it as a static HTML file on the server’s disk. The static HTML file created can be one of several possible cache versions depending on the plugin settings and HTTP request. Accepted static HTML files are then delivered without any database queries or on the fly compression, allowing for a quicker page load.\u003C\u002Fp>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002Fsupport\u002Fwordpress-cache-enabler-plugin#installation\" rel=\"nofollow ugc\">Installation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002Fsupport\u002Fwordpress-cache-enabler-plugin#settings\" rel=\"nofollow ugc\">Settings\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002Fsupport\u002Fwordpress-cache-enabler-plugin#hooks\" rel=\"nofollow ugc\">Hooks\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002Fsupport\u002Fwordpress-cache-enabler-plugin#wp-cli\" rel=\"nofollow ugc\">WP-CLI\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002Fsupport\u002Fwordpress-cache-enabler-plugin#advanced-configuration\" rel=\"nofollow ugc\">Advanced configuration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002Fsupport\u002Fwordpress-cache-enabler-plugin#faq\" rel=\"nofollow ugc\">FAQ\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Want to help?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Want to file a bug, contribute some code, or improve translations? Excellent! Check out our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkeycdn\u002Fcache-enabler\u002Fissues\" rel=\"nofollow ugc\">GitHub issues\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fcache-enabler\u002F\" rel=\"nofollow ugc\">translations\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Maintainer\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\" rel=\"nofollow ugc\">KeyCDN\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","A lightweight caching plugin for WordPress that makes your website faster by generating static HTML files.",100000,2640632,86,138,"2026-03-02T07:50:00.000Z","5.1","5.6",[74,96,23,97,98],"caching","performance","webp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcache-enabler.1.8.16.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":88,"downloaded":108,"rating":109,"num_ratings":110,"last_updated":111,"tested_up_to":71,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":119,"download_link":120,"security_score":109,"vuln_count":52,"unpatched_count":49,"last_vuln_date":121,"fetched_at":30},"shortcoder","Shortcoder — Create Shortcodes for Anything","6.5.2","vaakash","https:\u002F\u002Fprofiles.wordpress.org\u002Fvaakash\u002F","\u003Cp>Shortcoder plugin allows to create a custom shortcodes for HTML, JavaScript, CSS and other code snippets. Now the shortcodes can be used in posts\u002Fpages and the snippet will be replaced in place.\u003C\u002Fp>\n\u003Ch3>✍ Create shortcodes easily\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Give a name for the shortcode\u003C\u002Fli>\n\u003Cli>Paste the HTML\u002FJavaScript\u002FCSS as shortcode content\u003C\u002Fli>\n\u003Cli>Save !\u003C\u002Fli>\n\u003Cli>Now insert the shortcode \u003Ccode>[sc name=\"my_shortcode\"]\u003C\u002Fcode> in your post\u002Fpage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Voila !\u003C\u002Fstrong> You got the HTML\u002FJavascript\u002FCSS in your post.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>✨ Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create \u003Cstrong>custom shortcodes\u003C\u002Fstrong> easily and use them in any place where shortcode is supported.\u003C\u002Fli>\n\u003Cli>Have any \u003Cstrong>HTML\u003C\u002Fstrong>, \u003Cstrong>Javascript\u003C\u002Fstrong>, \u003Cstrong>CSS\u003C\u002Fstrong> as Shortcode content.\u003C\u002Fli>\n\u003Cli>Insert: \u003Cstrong>Custom parameters\u003C\u002Fstrong> in shortcode\u003C\u002Fli>\n\u003Cli>Insert: \u003Cstrong>WordPress parameters\u003C\u002Fstrong> in shortcode\u003C\u002Fli>\n\u003Cli>Multiple editors: Code, Visual and text modes.\u003C\u002Fli>\n\u003Cli>Globally disable the shortcode when not needed.\u003C\u002Fli>\n\u003Cli>Disable shortcode on desktop, mobile devices.\u003C\u002Fli>\n\u003Cli>A button in post editor to pick the shortcodes to insert.\u003C\u002Fli>\n\u003Cli>Execute blocks HTML in shortcode content.\u003C\u002Fli>\n\u003Cli>Insert shortcodes in Gutenberg\u002Fblock editor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🎲 An example usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Create a shortcode named “adsenseAd” in the Shortcoder admin page.\u003C\u002Fli>\n\u003Cli>Paste the adsense code in the box given and save it.\u003C\u002Fli>\n\u003Cli>Use \u003Ccode>[sc name=\"adsenseAd\"]\u003C\u002Fcode> in your posts and pages.\u003C\u002Fli>\n\u003Cli>Tada !!! the ad code is replaced and it appears in the post.\u003C\u002Fli>\n\u003Cli>Now you can edit the ad code at one place and the code is updated in all the locations where the shortcode is used.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Similarly shortcodes can be created for frequently used snippets.\u003C\u002Fp>\n\u003Cp>You can also add \u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fdocs\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">custom parameters\u003C\u002Fa> (like \u003Ccode>%%id%%\u003C\u002Fcode>) inside the snippets, and change it’s value like \u003Ccode>[sc name=\"youtube\" id=\"GrlRADfvjII\"]\u003C\u002Fcode> when using them.\u003C\u002Fp>\n\u003Ch3>🧱 Using in block editor\u003C\u002Fh3>\n\u003Cp>Though shortcodes can be used in \u003Cstrong>any\u003C\u002Fstrong> place manually, Shortcoder provides below options to select and insert the shortcodes created easily when working with the block editor.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shortcoder block\u003C\u002Fli>\n\u003Cli>Toolbar button to select and insert shortcodes inline (under “more”)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>💎 Upgrade to PRO\u003C\u002Fh3>\n\u003Cp>Shortcoder also provides a \u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa> which has additional features to further enhance the experience. Below features are offered in the PRO version.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Custom editor\u003C\u002Fstrong> – Edit Shortcode content using block editor or page builder plugins like Elementor and WPBakery.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>(New) Translation with WPML\u003C\u002Fstrong> – Translate Shortcode content with WPML.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Revisions\u003C\u002Fstrong> – Revisions support for Shortcode content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Locate shortcode\u003C\u002Fstrong> – Search posts and pages where a shortcode is used.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Extra code\u003C\u002Fstrong> – Include extra code to the footer when a shortcode is used in a page.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">Get started with Shortcoder – PRO\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fdocs\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fdocs\u002Fshortcoder\u002Ffaq\u002F\" rel=\"nofollow ugc\">FAQs\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fforum\u002F\" rel=\"nofollow ugc\">Support forum\u002FReport bugs\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F#pro\" rel=\"nofollow ugc\">PRO features\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Create custom \"Shortcodes\" easily for HTML, JavaScript, CSS code snippets and use the shortcodes within posts, pages & widgets",1903638,98,226,"2026-03-01T17:44:00.000Z","4.9.0","5.3",[115,116,24,117,118],"code","html","shortcode","snippets","https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshortcoder.6.5.2.zip","2026-01-09 00:00:00",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":88,"downloaded":130,"rating":109,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":94,"tags":135,"homepage":141,"download_link":142,"security_score":143,"vuln_count":144,"unpatched_count":49,"last_vuln_date":145,"fetched_at":30},"wp-asset-clean-up","Asset CleanUp: Page Speed Booster","1.4.0.3","Gabe Livan","https:\u002F\u002Fprofiles.wordpress.org\u002Fgabelivan\u002F","\u003Cp>Don’t just minify & combine CSS\u002FJavaScript files ending up with large, bloated and slow loading pages: \u003Cstrong>Strip the “fat” first and get a faster website\u003C\u002Fstrong> 🙂\u003C\u002Fp>\n\u003Cp>Faster page load = Happier Visitors = More Conversions = More Revenue\u003C\u002Fp>\n\u003Cp>There are often times when you are using a theme and a number of plugins which are enabled and run on the same page. However, you don’t need to use all of them and to improve the speed of your website and make the HTML source code cleaner (convenient for debugging purposes), it’s better to prevent those styles and scripts from loading.\u003C\u002Fp>\n\u003Cp>For instance, you might use a plugin that generates contact forms and it loads its assets (.CSS and .JS files) in every page of your website instead of doing it only in the \u002Fcontact page (if that’s the only place where you need it).\u003C\u002Fp>\n\u003Cp>“Asset CleanUp” scans your page and detects all the assets that are loaded. All you have to do when editing a page\u002Fpost is just to select the CSS\u002FJS that are not necessary to load, this way reducing the bloat.\u003C\u002Fp>\n\u003Cp>The plugin works best in combination with a cache plugin (e.g. WP Rocket, WP Fastest Cache, W3 Total Cache), a hosting company that offers packages with server-level caching available (e.g. WP Engine, Kinsta) or a service like Cloudflare that has page caching enabled.\u003C\u002Fp>\n\u003Ch4>Main plugin’s benefits include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Decreases the number of HTTP requests loaded and eliminate render-blocking resources (important for faster page load) by unloading useless CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Preload CSS\u002FJS, Local Fonts & Google Fonts files to instruct the browser to download the chosen assets as soon as possible\u003C\u002Fli>\n\u003Cli>Minify CSS files (including inline code within STYLE tags)\u003C\u002Fli>\n\u003Cli>Minify JavaScript files (including inline code within SCRIPT tags)\u003C\u002Fli>\n\u003Cli>Combine remaining loaded CSS & JavaScript files\u003C\u002Fli>\n\u003Cli>Inline CSS Files (automatically & by specifying the path to the stylesheets)\u003C\u002Fli>\n\u003Cli>Defer combined JavaScript files by applying “defer” attribute to the SCRIPT tags\u003C\u002Fli>\n\u003Cli>Site-wide removal for Emojis, Dashicons for guest users and Comment Reply if they are not used\u003C\u002Fli>\n\u003Cli>Disable RSS Feeds\u003C\u002Fli>\n\u003Cli>Reduces the HTML code of the actual page (that’s even better if GZIP compression is enabled)\u003C\u002Fli>\n\u003Cli>Makes source code easier to scan in case you’re a developer and want to search for something\u003C\u002Fli>\n\u003Cli>Remove possible conflicts between plugins\u002Ftheme (e.g. 2 JavaScript files that are loading from different plugins and they interfere one with another)\u003C\u002Fli>\n\u003Cli>Better performance score if you test your URL on websites such as GTmetrix, PageSpeed Insights, Pingdom Website Speed Test\u003C\u002Fli>\n\u003Cli>Google will love your website more as it would be faster and fast page load is nowadays a factor in search ranking\u003C\u002Fli>\n\u003Cli>Your server access log files (e.g the Apache ones) will be easier to scan and would take less space on your server\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Google Fonts Optimization \u002F Removal\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Combine all Google Font requests into fewer (usually one) requests, saving one round trip to the server for each additional font requested\u003C\u002Fli>\n\u003Cli>Choose between three methods of delivery: Render-blocking, Asynchronous via Web Font Loader (webfont.js) or Asynchronous by preloading the CSS stylesheet\u003C\u002Fli>\n\u003Cli>Option to preload Google Font Files from fonts.gstatic.com (e.g. ending in .woff2)\u003C\u002Fli>\n\u003Cli>Apply “font-display” CSS property to all loaded Google Font requests\u003C\u002Fli>\n\u003Cli>Enable preconnect resource hint for fonts.gstatic.com in case you use Google Fonts; don’t let the browser wait until it fetches the CSS for loading the font files before it begins DNS\u002FTCP\u002FTLS\u003C\u002Fli>\n\u003Cli>Remove all Google Font requests including link\u002Ffont preloads, @import\u002F@font-face from CSS files & STYLE tags, resource hints\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Local Fonts Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Preload local font files (ending in .woff, .woff2, .ttf, etc.)\u003C\u002Fli>\n\u003Cli>Apply “font-display:” CSS property to @font-face from existing to LINK \u002F STYLE tags to improve the PageSpeed score for “Ensure text remains visible during webfont load”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Critical CSS\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>You can add already generated critical CSS (e.g. via tools such as \u003Ca href=\"https:\u002F\u002Fwww.corewebvitals.io\u002Ftools\u002Fcritical-css-generator\" rel=\"nofollow ugc\">Advanced Critical CSS Generator\u003C\u002Fa> customly for the homepage, posts, pages, taxonomy pages (e.g. category), archive pages (e.g. date, author), search, 404 not found\u003C\u002Fli>\n\u003Cli>The critical CSS can be added within the Dashboard as well as via code \u002F \u003Ca href=\"https:\u002F\u002Fwww.assetcleanup.com\u002Fdocs\u002F?p=608\" rel=\"nofollow ugc\">Read More\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Remove useless links, meta tags and HTML comments within the HEAD and BODY (footer) tags of the website\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Really Simple Discovery (RSD) link tag\u003C\u002Fli>\n\u003Cli>REST API link tag\u003C\u002Fli>\n\u003Cli>Pages\u002FPosts Shortlink tag\u003C\u002Fli>\n\u003Cli>WordPress version meta tag (also good for security reasons)\u003C\u002Fli>\n\u003Cli>All “generator” meta tags (also good for security reasons)\u003C\u002Fli>\n\u003Cli>RSS Feed Link Tags (usually they are not needed if your website is not used for blogging purposes)\u003C\u002Fli>\n\u003Cli>oEmbeds, if you do not need to embed videos (e.g. YouTube), tweets and audios\u003C\u002Fli>\n\u003Cli>Valid HTML Comments (exceptions from stripping can be added and Internet Explorer conditional comments are preserved)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Each option can be turned on\u002Foff depending on your needs. Instructions about each of them are given in the plugin’s settings page.\u003C\u002Fp>\n\u003Ch4>Disable partially or completely XML-RPC protocol\u003C\u002Fh4>\n\u003Cp>This is an API service used by WordPress for 3rd party applications, such as mobile apps, communication between blogs and plugins such as Jetpack. If you use or are planning to use a remote system to post content to your website, you can keep this feature enabled (which it is by default). Many users do not use this function at all and if you’re one of them, you can disable it.\u003C\u002Fp>\n\u003Cp>Plugin works with WordPress Multisite Network enabled!\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Asset CleanUp Pro\u003C\u002Fstrong>\u003Cbr \u002F>\n  This plugin is the lite version of Asset CleanUp Pro that comes with more benefits including managing assets (CSS & JS files) on all WordPress pages, unloading plugins site-wide or via Regex(es), apply “async” and “defer” attributes on loaded JavaScript files which would boost the speed score even higher, move the loading location of CSS\u002FJS files (from HEAD to BODY to reduce render-blocking or vice-versa if you need specific files to trigger earlier) and premium support. \u003Ca href=\"https:\u002F\u002Fwww.gabelivan.com\u002Fitems\u002Fwp-asset-cleanup-pro\u002F?utm_source=wp_org_lite&utm_medium=inside_quote\" rel=\"nofollow ugc\">Click here to purchase Asset CleanUp Pro!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>NOTES\u003C\u002Fh4>\n\u003Cp>People that have tested the plugin are so far happy with it and I want to keep a good reputation for it. In case something is not working for you or have any suggestions, please write to me on the forum and I will be happy to assist you. \u003Cstrong>BEFORE rating this plugin\u003C\u002Fstrong>, please check the following post http:\u002F\u002Fchrislema.com\u002Ftheres-wrong-way-give-plugin-feedback-wordpress-org\u002F and then use your common sense when writing the feedback 🙂\u003C\u002Fp>\n\u003Ch4>GO PRO\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Unload CSS\u002FJS files on all WordPress pages including Categories, Tags, Custom Taxonomy (e.g. WooCommerce product category), 404 Not Found, Date & Author Archives, Search Results)\u003C\u002Fli>\n\u003Cli>Unload plugins in the frontend view (for guest visitors) * This will not just unload the CSS\u002FJS files loaded from the plugins, but everything else related to them (e.g. slow database queries)\u003C\u002Fli>\n\u003Cli>Unload plugins within the Dashboard \u002Fwp-admin\u002F * Do you have any slow pages that are loading within the Dashboard? You can reduce seconds in page load for some bulky ones or fix plugin conflicts\u003C\u002Fli>\n\u003Cli>Instruct the browser to download a CSS\u002FJS file based on the visitor’s screen size (e.g. avoid downloading assets in mobile view when they are not needed, if the screen size is smaller than 768px)\u003C\u002Fli>\n\u003Cli>Defer CSS by appending it to the BODY to load it asynchronously (Render blocking CSS delays a web page from being visible in a timely manner)\u003C\u002Fli>\n\u003Cli>Move JavaScript files from HEAD to BODY and vice-versa (CSS files moved to the BODY are automatically deferred)\u003C\u002Fli>\n\u003Cli>Defer JavaScript loaded files (by applying “defer” attribute to any enqueued JS file)\u003C\u002Fli>\n\u003Cli>Async JavaScript loaded files (by applying “async” attribute to any enqueued JS file)\u003C\u002Fli>\n\u003Cli>Inline JavaScript files (automatically & by specifying the path to the stylesheets)\u003C\u002Fli>\n\u003Cli>Priority in releasing new features & other improvements (updates that are meant for both Lite and Pro plugins are first released to the Pro users)\u003C\u002Fli>\n\u003Cli>Premium support and updates within the Dashboard\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Give Asset CleanUp a try! If you want to unlock all features, you can \u003Ca href=\"https:\u002F\u002Fwww.gabelivan.com\u002Fitems\u002Fwp-asset-cleanup-pro\u002F?utm_source=wp_org_lite&utm_medium=go_pro\" rel=\"nofollow ugc\">Upgrade to the Pro version\u003C\u002Fa>.\u003C\u002Fp>\n","Make your website load FASTER by stopping specific styles (.CSS) & scripts (.JS) from loading. It works best with a page caching plugin \u002F service.",4856957,1551,"2025-03-12T21:24:00.000Z","6.7.5","4.5",[136,137,138,139,140],"defer-css-javascript","dequeue","minify-css","minify-javascript","page-speed","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-asset-clean-up\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-asset-clean-up.1.4.0.3.zip",89,6,"2024-11-27 00:00:00",{"slug":147,"name":148,"version":149,"author":150,"author_profile":151,"description":152,"short_description":153,"active_installs":154,"downloaded":155,"rating":156,"num_ratings":157,"last_updated":158,"tested_up_to":133,"requires_at_least":159,"requires_php":94,"tags":160,"homepage":163,"download_link":164,"security_score":165,"vuln_count":28,"unpatched_count":28,"last_vuln_date":166,"fetched_at":30},"enable-jquery-migrate-helper","Enable jQuery Migrate Helper","1.4.1","Marius L. J.","https:\u002F\u002Fprofiles.wordpress.org\u002Fclorith\u002F","\u003Cp>With the update to WordPress 5.5, a migration tool known as \u003Ccode>jquery-migrate\u003C\u002Fcode> was no longer enabled by default. This may lead to lacking functionality or unexpected behavior in some themes or plugins that run older code.\u003C\u002Fp>\n\u003Cp>This plugin serves as a temporary solution, enabling the migration script for your site to give your plugin and theme authors some more time to update, and test, their code.\u003C\u002Fp>\n\u003Cp>With the update to WordPress 5.6, the included version of jQuery is also upgraded. This means that old code that previously caused warnings now may instead may cause errors or stop working entirely.\u003C\u002Fp>\n\u003Cp>Some of the features no longer working will just stop working behind the scenes without any apparent problem.\u003C\u002Fp>\n\u003Cp>The plugin will let you downgrade to a previous version of jQuery for a period, but as a site administrator you are encouraged to get the underlying issue fixed.\u003C\u002Fp>\n","Get information about calls to deprecated jQuery features in plugins or themes.",80000,2378180,96,109,"2024-12-25T13:15:00.000Z","5.4",[24,161,162],"jquery","update","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fenable-jquery-migrate-helper","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenable-jquery-migrate-helper.1.4.1.zip",71,"2020-07-20 00:00:00",{"attackSurface":168,"codeSignals":192,"taintFlows":218,"riskAssessment":241,"analyzedAt":257},{"hooks":169,"ajaxHandlers":188,"restRoutes":189,"shortcodes":190,"cronEvents":191,"entryPointCount":49,"unprotectedCount":49},[170,176,180,184],{"type":171,"name":172,"callback":173,"file":174,"line":175},"action","admin_menu","tw_asi_menu","advanced-speed-increaser.php",22,{"type":171,"name":177,"callback":178,"file":174,"line":179},"get_header","tw_asi_minify",208,{"type":171,"name":181,"callback":182,"file":174,"line":183},"admin_head","tw_asi_admin_register_head",215,{"type":171,"name":185,"callback":186,"file":174,"line":187},"admin_notices","tw_asi_admin_message",227,[],[],[],[],{"dangerousFunctions":193,"sqlUsage":194,"outputEscaping":197,"fileOperations":49,"externalRequests":49,"nonceChecks":49,"capabilityChecks":49,"bundledLibraries":217},[],{"prepared":195,"raw":49,"locations":196},9,[],{"escaped":49,"rawEcho":198,"locations":199},8,[200,204,206,208,210,212,213,215],{"file":201,"line":202,"context":203},"admin-setting.php",55,"raw output",{"file":201,"line":205,"context":203},129,{"file":201,"line":207,"context":203},130,{"file":201,"line":209,"context":203},131,{"file":201,"line":211,"context":203},134,{"file":201,"line":211,"context":203},{"file":201,"line":214,"context":203},137,{"file":174,"line":216,"context":203},213,[],[219],{"entryPoint":220,"graph":221,"unsanitizedCount":28,"severity":240},"\u003Cadmin-setting> (admin-setting.php:0)",{"nodes":222,"edges":237},[223,227,231],{"id":224,"type":225,"label":226,"file":201,"line":55},"n0","source","$_POST['hdntables']",{"id":228,"type":229,"label":230,"file":201,"line":55},"n1","transform","→ tw_asi_table_optimize()",{"id":232,"type":233,"label":234,"file":174,"line":235,"wp_function":236},"n2","sink","query() [SQLi]",139,"query",[238,239],{"from":224,"to":228,"sanitized":48},{"from":228,"to":232,"sanitized":48},"high",{"summary":242,"deductions":243},"The \"advanced-speed-increaser\" v2.2.1 plugin exhibits a mixed security posture.  While it demonstrates strong practices in avoiding direct SQL injection by using prepared statements for all queries and has no external HTTP requests or file operations, several critical areas raise significant concern. The complete lack of output escaping across all identified output points is a severe weakness, potentially leading to cross-site scripting (XSS) vulnerabilities. Furthermore, the taint analysis revealed a high-severity flow with an unsanitized path, which, even without a critical rating, indicates a potential vulnerability.\n\nThe plugin's vulnerability history is particularly worrying, with one known, unpatched medium-severity CVE. The fact that this vulnerability is recent and remains unpatched suggests a lack of timely security maintenance and a potential pattern of introducing or not fully remediating security flaws. While the plugin has a small attack surface with no direct entry points, the identified code weaknesses and the unpatched vulnerability create a significant risk profile. The lack of nonce and capability checks on any potential implicit entry points, combined with the unescaped output, creates a dangerous environment where an attacker could leverage these weaknesses to compromise user sessions or inject malicious code.\n\nIn conclusion, while the plugin adheres to good practices in SQL query handling and external communication, the critical deficiency in output escaping, the high-severity taint flow, and the presence of an unpatched vulnerability collectively point to a plugin that is not secure and poses a considerable risk to WordPress sites. Immediate attention is required to address these vulnerabilities.",[244,247,249,252,255],{"reason":245,"points":246},"Unpatched CVE",15,{"reason":248,"points":14},"High severity taint flow",{"reason":250,"points":251},"All outputs unescaped",20,{"reason":253,"points":254},"No nonce checks",5,{"reason":256,"points":254},"No capability checks","2026-03-16T19:54:55.739Z",{"wat":259,"direct":266},{"assetPaths":260,"generatorPatterns":262,"scriptPaths":263,"versionParams":264},[261],"\u002Fwp-content\u002Fplugins\u002Fadvanced-speed-increaser\u002Fassets\u002Fcss\u002Fadmin.css",[],[],[265],"advanced-speed-increaser\u002Fassets\u002Fcss\u002Fadmin.css?ver=",{"cssClasses":267,"htmlComments":268,"htmlAttributes":273,"restEndpoints":274,"jsGlobals":275,"shortcodeOutput":276},[186],[269,270,271,272],"Minify HTML By,\nAdvanced Speed Increaser 2.2.1 - https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-speed-increaser\u002F\nTotal size saved: ","% | Size before compression: "," bytes | Size after compression: "," bytes. ***",[],[],[],[],{"error":278,"url":279,"statusCode":280,"statusMessage":281,"message":281},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fadvanced-speed-increaser\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":283,"versions":284},4,[285,293,301,309],{"version":286,"download_url":287,"svn_tag_url":288,"released_at":38,"has_diff":48,"diff_files_changed":289,"diff_lines":38,"trac_diff_url":290,"vulnerabilities":291,"is_current":48},"2.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-speed-increaser.2.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadvanced-speed-increaser\u002Ftags\u002F2.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fadvanced-speed-increaser%2Ftags%2F2.0.0&new_path=%2Fadvanced-speed-increaser%2Ftags%2F2.1.0",[292],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":294,"download_url":295,"svn_tag_url":296,"released_at":38,"has_diff":48,"diff_files_changed":297,"diff_lines":38,"trac_diff_url":298,"vulnerabilities":299,"is_current":48},"2.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-speed-increaser.2.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadvanced-speed-increaser\u002Ftags\u002F2.0.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fadvanced-speed-increaser%2Ftags%2F1.1.0&new_path=%2Fadvanced-speed-increaser%2Ftags%2F2.0.0",[300],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":302,"download_url":303,"svn_tag_url":304,"released_at":38,"has_diff":48,"diff_files_changed":305,"diff_lines":38,"trac_diff_url":306,"vulnerabilities":307,"is_current":48},"1.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-speed-increaser.1.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadvanced-speed-increaser\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fadvanced-speed-increaser%2Ftags%2F1.0.0&new_path=%2Fadvanced-speed-increaser%2Ftags%2F1.1.0",[308],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":310,"download_url":311,"svn_tag_url":312,"released_at":38,"has_diff":48,"diff_files_changed":313,"diff_lines":38,"trac_diff_url":38,"vulnerabilities":314,"is_current":48},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-speed-increaser.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadvanced-speed-increaser\u002Ftags\u002F1.0.0\u002F",[],[315],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38}]