[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fnmiduZ08EF98kAnn-fORn5ucV_JRTUNfGCgsSxO98b8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":140,"fingerprints":239},"ajaxize","Ajaxize","1.4.3","yoav.aner","https:\u002F\u002Fprofiles.wordpress.org\u002Fyoavaner\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Fblog.gingerlime.com\u002Fajaxizing\u002F\" title=\"WordPress plugin that allows you to ajaxize almost any php function on your site\" rel=\"nofollow ugc\">Ajaxize\u003C\u002Fa> will allow you to ajaxize almost any php function on your site.\u003Cbr \u002F>\nIt can be a plugin, a function you wrote, or even a core wordpress function.\u003C\u002Fp>\n\u003Cp>1.4 : Removed deprecated split function\u003Cbr \u002F>\n      Added an option to remove Ajax referer protection (not recommended, but helpful in some rare cases)\u003Cbr \u002F>\n      Tested for compatibility with WordPress 4.x\u003C\u002Fp>\n\u003Cp>1.3 : Updated to work within 404 templates (thanks to ovidiubica for reporting)\u003C\u002Fp>\n\u003Cp>1.2 : Small security improvements (added nonce to the javascript) and tested with WordPress 3.2.1\u003C\u002Fp>\n\u003Cp>New in 1.1: Context Awareness. Ajaxize is now setting the correct context for functions automatically. Special thanks to \u003Ca href=\"http:\u002F\u002Fdigitalnature.eu\u002F\" rel=\"nofollow ugc\">One Trick Pony\u003C\u002Fa> for helping set the hook in the right place.\u003C\u002Fp>\n","Ajaxize will allow you to ajaxize almost any php function on your site.",30,17348,90,4,"2016-06-19T14:43:00.000Z","4.5.33","3.1","",[20,21,22,23],"ajax","cache","dynamic","javascript","http:\u002F\u002Fblog.gingerlime.com\u002Fajaxizing","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fajaxize.1.4.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":11,"trust_score":34,"computed_at":35},"yoavaner",1,84,"2026-04-05T01:51:40.484Z",[37,59,78,101,119],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":57,"download_link":58,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"cache-external-scripts","Cache External Scripts","0.4","Voorsie","https:\u002F\u002Fprofiles.wordpress.org\u002Fvoorsie\u002F","\u003Cp>Often when trying to optimize the Google Pagespeed score, there is one script which still causing the ‘Leverage browser caching’ rule popping up: Google’s own gtag.js and\u002For analytics.js file…\u003C\u002Fp>\n\u003Cp>With this plugin you will be able to cache this file on your local server and enable browser caching for longer than 2 hours. The plugin will check every day if there is a newer version of the file to keep the cache up to date.\u003C\u002Fp>\n","Save the Google Analytics file (gtag.js \u002F analytics.js) locally to be able to cache it for longer than 2 hours for a better PageSpeed score!",1000,31606,100,25,"2019-05-11T19:04:00.000Z","5.2.24","3.0.1",[21,53,54,55,56],"caching","google-analytics","javascripts","scripts","http:\u002F\u002Fwww.forcemedia.nl\u002Fwordpress-plugins\u002Fcache-external-scripts\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcache-external-scripts.0.4.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":47,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":76,"download_link":77,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"speed-up-browser-caching","Speed Up – Browser Caching","1.0.11","nigro.simone","https:\u002F\u002Fprofiles.wordpress.org\u002Fnigrosimone\u002F","\u003Cp>This small plugin (10 Kb) enables browser caching in your Apache web server and help browser to cache a local copy of static files and improve page load times.\u003C\u002Fp>\n\u003Cp>Configurations are not required! You just have to install it and after the plugin does it all, none further action it’s required.\u003C\u002Fp>\n","Help browser to cache a local copy of static files and improve page load times.",700,30223,7,"2024-04-01T12:55:00.000Z","6.4.8","3.5",[21,74,23,56,75],"css","style","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fspeed-up-browser-caching\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspeed-up-browser-caching.1.0.11.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":18,"tags":93,"homepage":99,"download_link":100,"security_score":47,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"echbay-search-everything","EchBay Search Everything","1.1.6","Dao Quoc Dai","https:\u002F\u002Fprofiles.wordpress.org\u002Fitvn9online\u002F","\u003Cp>Search Everything increases WordPress’ default search functionality in three easy steps.\u003C\u002Fp>\n\u003Cp>About video:\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F5ajlkb452IU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=5ajlkb452IU\" rel=\"nofollow ugc\">About video\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fpaypal.me\u002Fitvn9online\u002F5\" rel=\"nofollow ugc\"> Thanks for donate \u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Search Everything increases WordPress' default search functionality in three easy steps.",300,18359,50,2,"2025-11-28T02:59:00.000Z","6.9.4","4.8",[94,95,96,97,98],"ajax-search","cache-search","category-exclusion","category-search","search","https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002Fwordpresseb","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fechbay-search-everything.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":86,"downloaded":109,"rating":34,"num_ratings":110,"last_updated":111,"tested_up_to":91,"requires_at_least":17,"requires_php":112,"tags":113,"homepage":117,"download_link":118,"security_score":47,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"no-cache-ajax-widgets","No Cache AJAX Widgets","1.1","Nirmal Kumar Ram","https:\u002F\u002Fprofiles.wordpress.org\u002Fsagarseth9\u002F","\u003Cp>You want your site to be fast, so you added caching… but now you have a new challenge: you have content that shouldn’t be cached, such as ads, feeds, rotating ads, videos, shopping carts, and more.\u003C\u002Fp>\n\u003Cp>With No Cache AJAX Widgets, you simply drag and drop the new AJAX-powered widgets to any widget area, add your content, and you are done. No more messing with your theme files, functions.php, fragmented caching, mfunc, and others, or excluding an entire page from caching.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>No Cache AJAX Widgets\u003C\u002Fstrong> has been tested with all major caching plugins, including W3 Total Cache, WP Super Cache, and Rocket Cache.\u003C\u002Fp>\n\u003Cp>It doesn’t get easier than this.\u003C\u002Fp>\n\u003Ch4>Why Use No Cache AJAX Widgets:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Works right out of the box, no configuration required. Upload, activate, and place your widgets.\u003C\u002Fli>\n\u003Cli>Solves dynamic content issues related to caching.\u003C\u002Fli>\n\u003Cli>Serve any content, including shortcodes, via AJAX:\n\u003Cul>\n\u003Cli>HTML content\u003C\u002Fli>\n\u003Cli>Images and banners\u003C\u002Fli>\n\u003Cli>Ads and rotating ads\u003C\u002Fli>\n\u003Cli>AdSense ads\u003C\u002Fli>\n\u003Cli>Social buttons\u003C\u002Fli>\n\u003Cli>Social feeds\u003C\u002Fli>\n\u003Cli>News feeds\u003C\u002Fli>\n\u003Cli>Shopping carts\u003C\u002Fli>\n\u003Cli>Shortcodes\u003C\u002Fli>\n\u003Cli>Location widgets\u003C\u002Fli>\n\u003Cli>And anything else you can think of…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support:\u003C\u002Fh4>\n\u003Cp>We provide support through the WordPress forum and will do our best to answer your questions. If you require additional support with installation or any customization, then log a ticket through our site: \u003Ca href=\"http:\u002F\u002Fmagnigenie.com\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fmagnigenie.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>If you have feedback for us or suggestions for improvement, we would love to hear from you too.\u003C\u002Fp>\n","Add AJAX powered widgets to your site. Serve fresh and dynamic content from any widget areas. Resolves common caching related issues.",6949,5,"2025-12-13T15:37:00.000Z","5.4",[114,21,115,53,116],"ajax-widgets","cacheing","no-cache","http:\u002F\u002Fmagnigenie.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fno-cache-ajax-widgets.1.1.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":47,"num_ratings":129,"last_updated":130,"tested_up_to":91,"requires_at_least":131,"requires_php":132,"tags":133,"homepage":136,"download_link":137,"security_score":138,"vuln_count":89,"unpatched_count":27,"last_vuln_date":139,"fetched_at":29},"content-no-cache","Content No Cache | Serve uncached partial content even when you add it to a page that is fully cached.","0.1.5","Jose Mortellaro","https:\u002F\u002Fprofiles.wordpress.org\u002Fgiuse\u002F","\u003Cp>Normally, if a web page is served by the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fcache\u002F\" rel=\"ugc\">cache\u003C\u002Fa>, its content will be always the same until the cache is deleted.\u003C\u002Fp>\n\u003Cp>By adding the content with the shortcode provided by Content No Cache, you will be able to show dynamic content even on pages served by cache.\u003C\u002Fp>\n\u003Cp>You don’t need this plugin to exclude the entire page from the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fcache\u002F\" rel=\"ugc\">cache\u003C\u002Fa>.\u003Cbr \u002F>\nThis plugin is to exclude a part of the page from the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fcache\u002F\" rel=\"ugc\">cache\u003C\u002Fa>. It’s useful if you need to cache a page, but part of that page should not be cached.\u003C\u002Fp>\n\u003Cp>Imagine you have a page that has this content:\u003C\u002Fp>\n\u003Cp>Hello this is some text.\u003Cbr \u002F>\nAnother line of text\u003Cbr \u002F>\nAnother line of text\u003Cbr \u002F>\nCurrent day: Monday\u003C\u002Fp>\n\u003Cp>if that page is served by cache, the user will always see:\u003C\u002Fp>\n\u003Cp>Hello this is some text.\u003Cbr \u002F>\nAnother line of text\u003Cbr \u002F>\nAnother line of text\u003Cbr \u002F>\nCurrent day: Monday\u003C\u002Fp>\n\u003Cp>If you need that the last line of text is always updated, this plugin will help you.\u003Cbr \u002F>\nThe entire page will be served by the cache, but the plugin will get the updated content that you need.\u003C\u002Fp>\n\u003Ch3>How to show dynamic content with full page cache\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Install Content No Cache\u003C\u002Fli>\n\u003Cli>Create a new element “Content No Cache”\u003C\u002Fli>\n\u003Cli>Add to that element all the content that you want to exclude from the cache\u003C\u002Fli>\n\u003Cli>Copy the shortcode that you will see in the section “Shortcode”. It will look like [content_no_cache id=”3328″]. The parameter “id” is the ID of the content element (in this example 3328).\u003C\u002Fli>\n\u003Cli>Add the shortcode to the page where you want to display that content.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Compatible \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fcache\u002F\" rel=\"ugc\">caching plugins\u003C\u002Fa> tested with Content No Cache\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fw3-total-cache\u002F\" rel=\"ugc\">W3 Total Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-fastest-cache\u002F\" rel=\"ugc\">WP Fastest Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-optimize\u002F\" rel=\"ugc\">WP Optimize\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcomet-cache\u002F\" rel=\"ugc\">Comet Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcache-enabler\u002F\" rel=\"ugc\">Cache Enabler\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhyper-cache\u002F\" rel=\"ugc\">Hyper Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-super-cache\u002F\" rel=\"ugc\">WP Super Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flitespeed-cache\u002F\" rel=\"ugc\">LiteSpeed Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsg-cachepress\u002F\" rel=\"ugc\">Speed Optmizer\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-rocket.me\u002F\" rel=\"nofollow ugc\">WPRocket\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All of those caching plugins are compatible with Content No Cache. If your favorite caching plugin is not compatible for any reason, let us know it\u003C\u002Fp>\n\u003Ch3>Compatible CDNs\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002F\" rel=\"nofollow ugc\">Cloudflare\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbunny.net\u002Fcdn\u002F\" rel=\"nofollow ugc\">BunnyCDN\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.stackpath.com\u002F\" rel=\"nofollow ugc\">StackPath\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.keycdn.com\u002F\" rel=\"nofollow ugc\">KeyCDN\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.fastly.com\u002F\" rel=\"nofollow ugc\">Fastly\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Faws.amazon.com\u002Fcloudfront\u002F\" rel=\"nofollow ugc\">CloudFront\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Main features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Ultralightweight plugin. The few lines of code will run only where you add the shortcode.\u003C\u002Fli>\n\u003Cli>No jQuery, no JS libraries, only a couple of lines of pure JavaScript\u003C\u002Fli>\n\u003Cli>No database queries, no extra HTTP requests for external assets, no bloat\u003C\u002Fli>\n\u003Cli>With a few line of ultralight code you can fully cache the page even if you need dynamic content on that page\u003C\u002Fli>\n\u003Cli>It provides a shortcode, so you can add it everywhere, no matter the builder\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Tips to speed up the process to get the content\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffreesoul-deactivate-plugins\u002F\" rel=\"ugc\">Freesoul Deactivate Plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Go to Freesoul Deactivate Plugins => Actions => Content No Cache\u003C\u002Fli>\n\u003Cli>Disable all the plugins that you don’t need to output the content\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Example\u003C\u002Fh3>\n\u003Cp>You can see Content No Cache in action visiting the blog post \u003Ca href=\"https:\u002F\u002Fjosemortellaro.com\u002Fexclude-specific-content-from-being-cached\u002F\" rel=\"nofollow ugc\">Exclude specific content from being cached\u003C\u002Fa>.\u003Cbr \u002F>\nYou will see a number that is always different when you refresh the page. But the page is served by full page cache.\u003Cbr \u002F>\nIn the example it’s just a number, but you can output whatever content you want.\u003C\u002Fp>\n\u003Ch3>Possible conflicts\u003C\u002Fh3>\n\u003Cp>Some plugins don’t load the shortcodes during ajax requests. Because Content No Cache retrieves the content through ajax, in those cases the content will not be displayed properly.\u003Cbr \u002F>\nIf you have this kind of issue set the parameter request=”remote”. In this case the shortcode will look like [content_no_cache id=”3328″ request=”remote”]\u003Cbr \u002F>\nThe plugin will retrieve the content in a different way that will be a little slower, but this will solve this kind of conflict.\u003C\u002Fp>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>If something doesn’t work for you, don’t hesitate to open a thread on the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcontent-no-cache\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003Cbr \u002F>\nPlease, before posting enable the debugging in wp-config.php. Need a step-by-step guide? Read \u003Ca href=\"https:\u002F\u002Ffreesoul-deactivate-plugins.com\u002Fhow-to-enable-debugging-in-wordpress-a-step-by-step-guide\u002F\" rel=\"nofollow ugc\">this detailed tutorial\u003C\u002Fa> on \u003Ca href=\"https:\u002F\u002Ffreesoul-deactivate-plugins.com\u002Fhow-to-enable-debugging-in-wordpress-a-step-by-step-guide\u002F\" rel=\"nofollow ugc\">how to enable debugging in WordPress\u003C\u002Fa> to learn more.\u003C\u002Fp>\n\u003Ch3>Backend Speed Optimization\u003C\u002Fh3>\n\u003Cp>Is your dashboard slow? I optimize admin performance by improving queries and plugin load.\u003Cbr \u002F>\nRead \u003Ca href=\"https:\u002F\u002Fjosemortellaro.com\u002Fbackend-speed-optimization\u002F\" rel=\"nofollow ugc\">Backend Speed Optimization\u003C\u002Fa> for more information.\u003C\u002Fp>\n","Serve uncached partial content even when you add it to a page that is fully cached.",200,8557,18,"2025-12-10T08:57:00.000Z","4.6","5.6",[21,134,135],"dynamic-content","issues","https:\u002F\u002Fcontentnocache.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-no-cache.0.1.5.zip",97,"2025-06-23 00:00:00",{"attackSurface":141,"codeSignals":178,"taintFlows":201,"riskAssessment":228,"analyzedAt":238},{"hooks":142,"ajaxHandlers":174,"restRoutes":175,"shortcodes":176,"cronEvents":177,"entryPointCount":27,"unprotectedCount":27},[143,149,152,156,160,163,167,169],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","admin_init","ajaxize_request_handler","ajaxize.php",156,{"type":144,"name":150,"callback":146,"file":147,"line":151},"template_redirect",157,{"type":144,"name":153,"callback":154,"file":147,"line":155},"wp_print_scripts","ajaxize_this_javascript",158,{"type":144,"name":157,"callback":158,"file":159,"line":69},"admin_menu","ajaxize_admin_add_page","ajaxize_admin.php",{"type":144,"name":145,"callback":161,"file":159,"line":162},"ajaxize_admin_init",9,{"type":144,"name":164,"callback":165,"file":159,"line":166},"admin_notices","anonymous",147,{"type":144,"name":164,"callback":165,"file":159,"line":168},152,{"type":170,"name":171,"callback":172,"priority":173,"file":159,"line":151},"filter","contextual_help","ajaxize_this_help",10,[],[],[],[],{"dangerousFunctions":179,"sqlUsage":187,"outputEscaping":189,"fileOperations":27,"externalRequests":27,"nonceChecks":89,"capabilityChecks":27,"bundledLibraries":200},[180,183,185],{"fn":181,"file":159,"line":26,"context":182},"create_function","add_settings_section('plugin_main', 'Security Settings', create_function('',''), 'ajaxize_this');",{"fn":181,"file":159,"line":166,"context":184},"add_action('admin_notices', create_function('', 'echo \\'\u003Cdiv id=\"message\" class=\"error\">\u003Cp>Fuction n",{"fn":181,"file":159,"line":168,"context":186},"add_action('admin_notices', create_function('', 'echo \\'\u003Cdiv id=\"message\" class=\"error\">\u003Cp>Invalid f",{"prepared":27,"raw":27,"locations":188},[],{"escaped":27,"rawEcho":14,"locations":190},[191,194,196,198],{"file":147,"line":192,"context":193},186,"raw output",{"file":159,"line":195,"context":193},42,{"file":159,"line":197,"context":193},116,{"file":159,"line":199,"context":193},122,[],[202,220],{"entryPoint":203,"graph":204,"unsanitizedCount":27,"severity":219},"ajaxize_request_handler (ajaxize.php:179)",{"nodes":205,"edges":216},[206,211],{"id":207,"type":208,"label":209,"file":147,"line":210},"n0","source","$_REQUEST",185,{"id":212,"type":213,"label":214,"file":147,"line":192,"wp_function":215},"n1","sink","echo() [XSS]","echo",[217],{"from":207,"to":212,"sanitized":218},true,"low",{"entryPoint":221,"graph":222,"unsanitizedCount":27,"severity":219},"\u003Cajaxize> (ajaxize.php:0)",{"nodes":223,"edges":226},[224,225],{"id":207,"type":208,"label":209,"file":147,"line":210},{"id":212,"type":213,"label":214,"file":147,"line":192,"wp_function":215},[227],{"from":207,"to":212,"sanitized":218},{"summary":229,"deductions":230},"The \"ajaxize\" v1.4.3 plugin presents a mixed security posture. On one hand, the static analysis indicates a very limited attack surface with no discovered AJAX handlers, REST API routes, shortcodes, or cron events that are accessible without proper authentication. This is a significant positive, suggesting that direct entry points into the plugin's functionality are well-protected or non-existent.\n\nHowever, the code analysis reveals several concerning signals. The presence of the `create_function` dangerous function, even if not directly exploitable in this version due to other protections, is a red flag. More importantly, 100% of outputs are not properly escaped, which presents a significant Cross-Site Scripting (XSS) risk. Any data processed and rendered by the plugin could potentially be injected with malicious scripts if it originates from an untrusted source. While taint analysis shows no unsanitized flows, this is often due to a lack of exploitable entry points, rather than robust sanitization practices. The absence of capability checks on any potential code paths is also a weakness.\n\nThe plugin's vulnerability history is clean, with no known CVEs recorded. This, combined with the limited attack surface, suggests that in its current state, it may not have been a target or may have had its previous issues addressed. Nevertheless, the identified code-level weaknesses, particularly the unescaped output, represent inherent risks that could be exploited if new entry points or data sources are introduced in future updates or through interactions with other plugins.",[231,234,236],{"reason":232,"points":233},"Outputs not properly escaped",8,{"reason":235,"points":110},"Dangerous function used (create_function)",{"reason":237,"points":110},"No capability checks found","2026-03-16T22:37:46.754Z",{"wat":240,"direct":249},{"assetPaths":241,"generatorPatterns":244,"scriptPaths":245,"versionParams":246},[242,243],"\u002Fwp-content\u002Fplugins\u002Fajaxize\u002Fajaxize.js","\u002Fwp-content\u002Fplugins\u002Fajaxize\u002Fajaxize.css",[],[242],[247,248],"ajaxize.js?ver=","ajaxize.css?ver=",{"cssClasses":250,"htmlComments":251,"htmlAttributes":252,"restEndpoints":254,"jsGlobals":255,"shortcodeOutput":257},[],[],[253],"data-ajaxize-id",[],[256],"ajaxizeParams",[258],"\u003Cdiv class=\"ajaxize_this\" id=\"ajaxize_this:"]