[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwvaE60Bw_SfAOFFkdL1dKlZNDwIjc599hsYsIawBHYI":3,"$f60Pqnt2dW1Q0PRd_W3wudrifYksUNwpwvTapKGK-iCg":266,"$faBbluN5sW64SuhoeGyjDdIskDvFmYSEBnSQEDTM531o":270},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":18,"download_link":19,"security_score":20,"vuln_count":11,"unpatched_count":11,"last_vuln_date":21,"fetched_at":22,"discovery_status":23,"vulnerabilities":24,"developer":25,"crawl_stats":21,"alternatives":33,"analysis":34,"fingerprints":249},"aio-media-library-manager","All In One Media Library Manager","1.0.0","Smackcoders Inc.,","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmackcoders\u002F","\u003Cp>Take control of your WordPress media library with AIO Media Library Manager. This powerful plugin streamlines media organization with intuitive drag-and-drop functionality and unlimited folder creation. Manage your entire library, from images and videos to PDFs and documents, with a user-friendly interface that integrates seamlessly with popular page builders. Boost your workflow efficiency and free yourself from the clutter!\u003C\u002Fp>\n\u003Ch3>Features Spotlight: Unleash Streamlined Media Management\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Intuitive Drag-and-Drop:\u003C\u002Fstrong> Effortlessly organize your media library with seamless drag-and-drop functionality. Folders at your fingertips.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Unlimited Folder Structure:\u003C\u002Fstrong> Create a comprehensive and scalable organization system with unlimited nested folders for images, videos, PDFs, and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Folder Themes:\u003C\u002Fstrong> Enhance the user experience by selecting a theme that reflects your brand or workflow. \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Embedded Gutenberg Block:\u003C\u002Fstrong> Showcase media from specific folders directly within your posts using the integrated Gutenberg Block. \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced Media Library Experience:\u003C\u002Fstrong> Replace the default media library interface with a streamlined and user-friendly view.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Seamless Page Builder Integration:\u003C\u002Fstrong> Browse and manage folders directly within popular page builder interfaces, promoting a unified workflow.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bulk Upload Efficiency:\u003C\u002Fstrong> Upload multiple files simultaneously and efficiently place them directly into the designated folder.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible View Options:\u003C\u002Fstrong> Choose between list or thumbnail view, with ascending or descending order, for optimal information display.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Adaptable Sub-Sidebar:\u003C\u002Fstrong> Customize your workspace by resizing and collapsing the sub-sidebar for a tailored experience.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Level Organizational Control:\u003C\u002Fstrong> Leverage the multi-level folder structure to implement robust filtering, categorization, and hierarchical administration within the native WordPress dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n","Organize your media mess! Use Folders, Drag & Drop for WordPress. Download AIO Media Library Manager.",0,1331,"2024-07-02T07:05:00.000Z","6.5.8","6.0","5.2.4",[],"https:\u002F\u002Fwww.smackcoders.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faio-media-library-manager.1.0.0.zip",92,null,"2026-03-15T15:16:48.613Z","no_bundle",[],{"slug":26,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":29,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},"smackcoders",23,39580,88,946,71,"2026-05-19T21:08:17.284Z",[],{"attackSurface":35,"codeSignals":148,"taintFlows":167,"riskAssessment":241,"analyzedAt":248},{"hooks":36,"ajaxHandlers":118,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":147,"unprotectedCount":147},[37,43,48,51,55,59,65,67,71,75,78,83,87,91,95,98,102,106,108,112,115],{"type":38,"name":39,"callback":40,"file":41,"line":42},"action","add_attachment","Smackcoders\\AiomlSmack\\AiomlSmack_new_media","aio-media-library-manager.php",48,{"type":38,"name":44,"callback":45,"priority":46,"file":41,"line":47},"muplugins_loaded","anonymous",1,160,{"type":38,"name":49,"callback":45,"priority":46,"file":41,"line":50},"plugins_loaded",162,{"type":38,"name":52,"callback":53,"file":41,"line":54},"init","register",178,{"type":38,"name":56,"callback":57,"file":41,"line":58},"admin_enqueue_scripts","Smackcoders\\AiomlSmack\\AiomlSmack_custom_media_buttons",264,{"type":38,"name":60,"callback":61,"priority":62,"file":63,"line":64},"edit_attachment","save_ajax_attachment_taxonomies",10,"inc\\AiomlSmack_Attachment_Taxonomies_Hooks.php",32,{"type":38,"name":39,"callback":61,"priority":62,"file":63,"line":66},33,{"type":38,"name":68,"callback":69,"priority":62,"file":63,"line":70},"restrict_manage_posts","render_taxonomy_filters",34,{"type":38,"name":72,"callback":73,"file":63,"line":74},"wp_enqueue_media","enqueue_script",35,{"type":38,"name":72,"callback":76,"file":63,"line":77},"print_styles",36,{"type":79,"name":80,"callback":81,"priority":62,"file":63,"line":82},"filter","wp_prepare_attachment_for_js","add_taxonomies_to_attachment_js",37,{"type":79,"name":84,"callback":85,"priority":62,"file":63,"line":86},"attachment_fields_to_edit","remove_taxonomies_from_attachment_compat",38,{"type":79,"name":88,"callback":89,"priority":62,"file":63,"line":90},"rest_request_before_callbacks","fail_permission_check_if_cannot_assign_attachment_terms",42,{"type":38,"name":92,"callback":93,"priority":62,"file":63,"line":94},"rest_after_insert_attachment","handle_attachment_terms",43,{"type":79,"name":96,"callback":96,"priority":62,"file":63,"line":97},"map_meta_cap",46,{"type":79,"name":99,"callback":100,"priority":62,"file":63,"line":101},"shortcode_atts_gallery","support_gallery_taxonomy_attributes",49,{"type":38,"name":60,"callback":103,"priority":104,"file":63,"line":105},"ensure_default_attachment_taxonomy_terms",100,52,{"type":38,"name":39,"callback":103,"priority":104,"file":63,"line":107},53,{"type":38,"name":109,"callback":110,"priority":62,"file":63,"line":111},"rest_api_init","register_settings",54,{"type":38,"name":113,"callback":110,"priority":62,"file":63,"line":114},"admin_init",55,{"type":38,"name":113,"callback":116,"priority":62,"file":63,"line":117},"add_settings_fields",56,[119,124,128,132,136,140],{"action":120,"nopriv":121,"callback":122,"hasNonce":121,"hasCapCheck":121,"file":41,"line":123},"AiomlSmack_save_folder_to_database",false,"Smackcoders\\AiomlSmack\\AiomlSmack_save_folder_to_database_callback",268,{"action":125,"nopriv":121,"callback":126,"hasNonce":121,"hasCapCheck":121,"file":41,"line":127},"AiomlSmack_fetch_folders_from_database","Smackcoders\\AiomlSmack\\AiomlSmack_fetch_folders_from_database_callback",360,{"action":129,"nopriv":121,"callback":130,"hasNonce":121,"hasCapCheck":121,"file":41,"line":131},"AiomlSmack_delete_folder_from_database","Smackcoders\\AiomlSmack\\AiomlSmack_delete_folder_from_database_callback",447,{"action":133,"nopriv":121,"callback":134,"hasNonce":121,"hasCapCheck":121,"file":41,"line":135},"AiomlSmackupdate_folder_in_database","Smackcoders\\AiomlSmack\\AiomlSmackupdate_folder_in_database_callback",619,{"action":137,"nopriv":121,"callback":138,"hasNonce":121,"hasCapCheck":121,"file":41,"line":139},"AiomlSmackfolder_DragDrop_database","Smackcoders\\AiomlSmack\\AiomlSmackfolder_DragDrop_database_callback",678,{"action":141,"nopriv":121,"callback":142,"hasNonce":121,"hasCapCheck":121,"file":41,"line":143},"AiomlSmack_move_attachments_to_category","Smackcoders\\AiomlSmack\\AiomlSmack_move_attachments_to_category_callback",720,[],[],[],6,{"dangerousFunctions":149,"sqlUsage":150,"outputEscaping":152,"fileOperations":11,"externalRequests":11,"nonceChecks":164,"capabilityChecks":165,"bundledLibraries":166},[],{"prepared":147,"raw":11,"locations":151},[],{"escaped":153,"rawEcho":154,"locations":155},41,3,[156,159,162],{"file":41,"line":157,"context":158},426,"raw output",{"file":160,"line":161,"context":158},"inc\\AiomlSmack_Attachment_Taxonomies_Admin.php",103,{"file":160,"line":163,"context":158},104,7,2,[],[168,187,204],{"entryPoint":169,"graph":170,"unsanitizedCount":11,"severity":186},"AiomlSmack_save_folder_to_database_callback (aio-media-library-manager.php:269)",{"nodes":171,"edges":183},[172,177],{"id":173,"type":174,"label":175,"file":41,"line":176},"n0","source","$_POST",277,{"id":178,"type":179,"label":180,"file":41,"line":181,"wp_function":182},"n1","sink","echo() [XSS]",324,"echo",[184],{"from":173,"to":178,"sanitized":185},true,"low",{"entryPoint":188,"graph":189,"unsanitizedCount":11,"severity":186},"AiomlSmack_delete_folder_from_database_callback (aio-media-library-manager.php:449)",{"nodes":190,"edges":201},[191,193,196],{"id":173,"type":174,"label":175,"file":41,"line":192},466,{"id":178,"type":194,"label":195,"file":41,"line":192},"transform","→ AiomlSmack_move_attachments_to_uncategorized()",{"id":197,"type":179,"label":198,"file":41,"line":199,"wp_function":200},"n2","get_col() [SQLi]",583,"get_col",[202,203],{"from":173,"to":178,"sanitized":121},{"from":178,"to":197,"sanitized":185},{"entryPoint":205,"graph":206,"unsanitizedCount":11,"severity":186},"\u003Caio-media-library-manager> (aio-media-library-manager.php:0)",{"nodes":207,"edges":234},[208,209,210,211,216,219,224,226,228,230,232],{"id":173,"type":174,"label":175,"file":41,"line":176},{"id":178,"type":179,"label":180,"file":41,"line":181,"wp_function":182},{"id":197,"type":174,"label":175,"file":41,"line":176},{"id":212,"type":179,"label":213,"file":41,"line":214,"wp_function":215},"n3","get_row() [SQLi]",385,"get_row",{"id":217,"type":174,"label":175,"file":41,"line":218},"n4",457,{"id":220,"type":179,"label":221,"file":41,"line":222,"wp_function":223},"n5","get_var() [SQLi]",563,"get_var",{"id":225,"type":174,"label":175,"file":41,"line":218},"n6",{"id":227,"type":179,"label":198,"file":41,"line":199,"wp_function":200},"n7",{"id":229,"type":174,"label":175,"file":41,"line":192},"n8",{"id":231,"type":194,"label":195,"file":41,"line":192},"n9",{"id":233,"type":179,"label":198,"file":41,"line":199,"wp_function":200},"n10",[235,236,237,238,239,240],{"from":173,"to":178,"sanitized":185},{"from":197,"to":212,"sanitized":185},{"from":217,"to":220,"sanitized":185},{"from":225,"to":227,"sanitized":185},{"from":229,"to":231,"sanitized":121},{"from":231,"to":233,"sanitized":185},{"summary":242,"deductions":243},"The aio-media-library-manager plugin v1.0.0 exhibits a significant security concern due to its reliance on unprotected AJAX handlers. While the plugin demonstrates good practices in other areas, such as using prepared statements for all SQL queries and properly escaping a high percentage of its output, the six identified AJAX handlers lack any form of authentication or capability checks. This creates a substantial attack surface where any unauthenticated user could potentially trigger these functions, leading to unintended actions or information disclosure.  Fortunately, the static analysis did not reveal any critical or high severity taint flows, dangerous functions, or file operations, and there is no known vulnerability history. This suggests a lack of actively exploited vulnerabilities, but the unprotected AJAX handlers represent a clear and present risk that needs immediate attention.",[244,246],{"reason":245,"points":62},"Unprotected AJAX handlers",{"reason":247,"points":164},"Large attack surface without auth","2026-03-17T06:25:43.389Z",{"wat":250,"direct":256},{"assetPaths":251,"generatorPatterns":253,"scriptPaths":254,"versionParams":255},[252],"\u002Fwp-content\u002Fplugins\u002Faio-media-library-manager\u002Finc\u002Fassets\u002FjstreeStyle.min.css",[],[],[],{"cssClasses":257,"htmlComments":259,"htmlAttributes":260,"restEndpoints":262,"jsGlobals":263,"shortcodeOutput":265},[258],"attachment_category",[],[261],"data-attachment_id",[],[264],"AiomlSmack_Attachment_Taxonomies",[],{"error":185,"url":267,"statusCode":268,"statusMessage":269,"message":269},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Faio-media-library-manager\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":11,"versions":271},[]]