[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fVLEGH80wdGKXDLPjDmAjPxGN93jaG4hFRZtC7CfKYyo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":128,"fingerprints":326},"amw-clear-upload-folder","AMW Clear Upload Folder","1.1.5","alim511","https:\u002F\u002Fprofiles.wordpress.org\u002Falim511\u002F","\u003Cp>\u003Cstrong>\u003Cbr \u002F>\nBefore using this plugin, please make sure that you BACKUP ‘upload’ folder. This is the most important step!\u003Cbr \u002F>\nAlso do not forget Rescan Images every time you change settings\u003Cbr \u002F>\n\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cstrong>\u003Cbr \u002F>\nPlease note that ‘max_execution_time’ PHP setting should be minimum 90 seconds for the correct script work.\u003Cbr \u002F>\n\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>AMW Clear Upload Folder will compare images entries from the database with filenames in upload directory.\u003Cbr \u002F>\nAll files that are missing in the database will be removed from the filesystem.\u003C\u002Fp>\n\u003Ch3>HOW TO USE\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install and activate plugin\u003C\u002Fli>\n\u003Cli>Go to the ‘Settings’ tab and choose needed settings. Please note everytime you make changes to the settings,\u003Cbr \u002F>\nyou need to rescan images on the ‘List of files’ tab\u003C\u002Fli>\n\u003Cli>Go to ‘List of folders’ tab under plugin page and choose folders that you DO NOT WANT to clean\u003C\u002Fli>\n\u003Cli>After this you can navigate to ‘Main’ tab and click ‘Run cleaner’ button\u003C\u002Fli>\n\u003Cli>That’s all plugin will start cleaning files\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>If you think, that you found a bug in our AMW Clear Upload Folder plugin or have any question contact us at alimov.dmitriy.me[at]gmail.com\u003C\u002Fp>\n\u003Ch3>DISCLAIMER\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>NO WARRANTY, USE IT AT YOUR OWN RISK!\u003C\u002Fstrong>\u003C\u002Fp>\n","Removes unused files from the 'uploads' folder",10,1825,100,3,"","4.8.28","4.4.2","5.5",[20,21,22,23,24],"clear-uploads","images","media","unused-images","uploads","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Famw-clear-upload-folder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Famw-clear-upload-folder.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":13,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},1,30,94,"2026-04-04T01:08:49.540Z",[37,55,74,92,111],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":27,"downloaded":45,"rating":27,"num_ratings":27,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":15,"tags":49,"homepage":15,"download_link":53,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":54},"pro-uploads-cleaner","Pro Uploads Cleaner","1.0.0","Hemant Jodhani","https:\u002F\u002Fprofiles.wordpress.org\u002Fhemantjodhani\u002F","\u003Cp>Pro Uploads Cleaner compares your WordPress Media Library with the uploads folder and deletes files that don’t match, keeping your site clean and optimized.\u003C\u002Fp>\n","Scan and clean unused images from your WordPress uploads folder safely.",514,"2026-02-05T16:05:00.000Z","6.9.4","5.0",[50,51,52,24],"cleaner","delete-unused-images","media-library","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpro-uploads-cleaner.1.0.0.zip","2026-03-15T15:16:48.613Z",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":13,"num_ratings":65,"last_updated":66,"tested_up_to":47,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":72,"download_link":73,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":54},"disable-media-sizes","Disable Media Sizes","2.5","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cp>Easily disable any extra image sizes\u003C\u002Fp>\n\u003Cp>This plugin provides options to disable the extra images generated by WordPress.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Options include\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable Thumbnail Size\u003C\u002Fli>\n\u003Cli>Disable Medium Size\u003C\u002Fli>\n\u003Cli>Disable Large Size\u003C\u002Fli>\n\u003Cli>Disable Medium Large (768px)\u003C\u002Fli>\n\u003Cli>Disable 1536×1536 Size\u003C\u002Fli>\n\u003Cli>Disable 2048×2048 Size\u003C\u002Fli>\n\u003Cli>Disable Big\u002FScaled Size\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin settings screen does a good job of explaining the different image sizes. Should all be self-explanatory, let me know if anything can be improved.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Lightweight and secure\u003C\u002Fli>\n\u003Cli>Built with the WP API and standards\u003C\u002Fli>\n\u003Cli>Simple to use – anyone can do it\u003C\u002Fli>\n\u003Cli>One-click restore default options\u003C\u002Fli>\n\u003Cli>Easy peasy.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Why is this useful?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fdisable-wordpress-generated-images\u002F\" rel=\"nofollow ugc\">This article\u003C\u002Fa> explains everything you need to know about the “hows” and the “whys” and such.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Important\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Please understand that this plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Does not affect any existing images\u003C\u002Fli>\n\u003Cli>Only works while the plugin is active\u003C\u002Fli>\n\u003Cli>Does not delete any images\u003C\u002Fli>\n\u003Cli>Only prevents WordPress from generating extra sized images\u003C\u002Fli>\n\u003Cli>If all extra sizes are disabled, only original images will be uploaded\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fdisable-wordpress-generated-images\u002F\" rel=\"nofollow ugc\">Learn more\u003C\u002Fa> about the techniques and code used in this plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin does not collect or store any user data. It does not set any cookies, and it does not connect to any third-party locations. Thus, this plugin does not affect user privacy in any way.\u003C\u002Fp>\n\u003Cp>Disable Media Sizes is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thank you! 🙂\u003C\u002Fp>\n","Provides options to disable the extra images generated by WordPress.",10000,72308,22,"2026-01-28T23:37:00.000Z","5.3","5.6.20",[70,71,21,22,24],"disable","disable-image-sizes","https:\u002F\u002Fperishablepress.com\u002Fwordpress-disable-media-sizes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-media-sizes.2.5.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":34,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":15,"tags":88,"homepage":89,"download_link":90,"security_score":91,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":54},"wp-image-size-limit","WP Image Size Limit","1.0.4","Sean Butze","https:\u002F\u002Fprofiles.wordpress.org\u002Fsbutze\u002F","\u003Cp>Many users do not compress or resize their images before uploading them into a post, and oftentimes WordPress’s maximum upload limit of 2MB-10MB is still too large to prevent the insertion of photos that can signficantly slow down a website.\u003C\u002Fp>\n\u003Cp>WP Image Size Limit allows an administrator to set a custom file size limit that is specific to image files and smaller than WordPress’s general file size limit.\u003C\u002Fp>\n\u003Cp>This is especially useful when you need to put tighter restriction on image uploads but want to preserve the ability to upload larger files of other formats (audio, video, etc.).\u003C\u002Fp>\n","Adds a new setting under Settings -> Media where an admin can set a maximum upload file size for image files.",3000,40407,17,"2017-11-28T19:32:00.000Z","3.6.1","3.3.2",[21,22,24],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwp-image-size-limit","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-image-size-limit.1.0.4.zip",85,{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":27,"num_ratings":27,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":15,"download_link":110,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":54},"pixrem","PixRem – Unused Image Cleaner","1.0.3","OM Media","https:\u002F\u002Fprofiles.wordpress.org\u002Fommediasa\u002F","\u003Cp>\u003Cstrong>PixRem\u003C\u002Fstrong> scans your WordPress site to find images no longer in use and helps you safely delete them to save storage space and improve performance.\u003C\u002Fp>\n\u003Cp>Key benefits:\u003Cbr \u002F>\n– 🕵️‍♂️ \u003Cstrong>Comprehensive detection\u003C\u002Fstrong>: scans posts, pages, custom post types, serialized data, ACF, Elementor, Divi, Bricks, WPBakery\u003Cbr \u002F>\n– 🛒 \u003Cstrong>WooCommerce support\u003C\u002Fstrong>: finds featured & gallery images\u003Cbr \u002F>\n– ⚙️ \u003Cstrong>Theme options & SEO\u003C\u002Fstrong>: custom logos, backgrounds, Yoast OG images, site icon\u003Cbr \u002F>\n– 🛡 \u003Cstrong>Automatic backup\u003C\u002Fstrong>: every deleted image is saved to \u002Fwp-content\u002Fuploads\u002Fpixrem-backups\u002FYYYY\u002FMM\u002F\u003Cbr \u002F>\n– 📝 \u003Cstrong>Log system\u003C\u002Fstrong>: review all deletions and restore individual images\u003Cbr \u002F>\n– 🔒 \u003Cstrong>Whitelist \u002F Exclude\u003C\u002Fstrong>: prevent deletion of critical files by ID or path\u003C\u002Fp>\n","Find and delete unused images in your Media Library. Backup, restore, whitelist, and scan support for all major page builders.",20,328,"2025-09-22T20:27:00.000Z","6.8.5","5.4","7.2",[107,108,52,109,23],"image-optimizer","media-cleaner","remove-images","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpixrem.1.0.3.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":27,"downloaded":119,"rating":27,"num_ratings":27,"last_updated":120,"tested_up_to":47,"requires_at_least":121,"requires_php":122,"tags":123,"homepage":15,"download_link":127,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":54},"assetbroom-media-cleaner","Assetbroom – Unused Media & Duplicate Image Cleaner","1.0","KAP ASIAs","https:\u002F\u002Fprofiles.wordpress.org\u002Fkapasias\u002F","\u003Cp>\u003Cstrong>AssetBroom – Media Cleaner\u003C\u002Fstrong> helps you detect and remove \u003Cstrong>unused images, duplicate media files, and unnecessary thumbnails\u003C\u002Fstrong> from your WordPress media library.\u003C\u002Fp>\n\u003Cp>Over time, WordPress websites accumulate hundreds or thousands of images that are no longer used. These unused files increase backup size, waste storage, and slow down website maintenance.\u003C\u002Fp>\n\u003Cp>AssetBroom scans your entire website and identifies \u003Cstrong>unused media files\u003C\u002Fstrong>, \u003Cstrong>duplicate images\u003C\u002Fstrong>, and \u003Cstrong>generated image sizes\u003C\u002Fstrong> safely.\u003C\u002Fp>\n\u003Cp>The plugin checks where images are used before marking them unused. This prevents accidental deletion of images used in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Posts\u003C\u002Fli>\n\u003Cli>Pages\u003C\u002Fli>\n\u003Cli>Page builders\u003C\u002Fli>\n\u003Cli>Featured images\u003C\u002Fli>\n\u003Cli>WordPress generated image sizes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With AssetBroom you can safely \u003Cstrong>clean your media library, remove unused images, and optimize storage\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cp>✔ Detect unused media files\u003Cbr \u002F>\n✔ Detect duplicate images in media library\u003Cbr \u002F>\n✔ Clean WordPress media library safely\u003Cbr \u002F>\n✔ Supports Elementor and page builders\u003Cbr \u002F>\n✔ Detect WordPress generated thumbnails\u003Cbr \u002F>\n✔ Detect responsive image sizes\u003Cbr \u002F>\n✔ Safe move-to-trash workflow\u003Cbr \u002F>\n✔ Lightweight and fast scanning\u003Cbr \u002F>\n✔ Developer friendly code\u003C\u002Fp>\n\u003Ch3>Why Clean Your Media Library?\u003C\u002Fh3>\n\u003Cp>Unused media files can:\u003C\u002Fp>\n\u003Cp>• Increase backup size\u003Cbr \u002F>\n• Slow down site migrations\u003Cbr \u002F>\n• Waste hosting storage\u003Cbr \u002F>\n• Make media management difficult\u003C\u002Fp>\n\u003Cp>AssetBroom helps you keep your \u003Cstrong>WordPress media library clean and optimized\u003C\u002Fstrong>.\u003C\u002Fp>\n","Detect unused images, duplicate media files, and safely clean your WordPress media library without breaking your website.",145,"2026-03-09T13:05:00.000Z","6.0","7.4",[124,125,108,126,23],"clean","cleaning","optimisation","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fassetbroom-media-cleaner.1.0.zip",{"attackSurface":129,"codeSignals":198,"taintFlows":271,"riskAssessment":305,"analyzedAt":325},{"hooks":130,"ajaxHandlers":156,"restRoutes":194,"shortcodes":195,"cronEvents":196,"entryPointCount":197,"unprotectedCount":197},[131,137,141,146,152],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","init","amwCUFLoad","amw-clear-upload-folder.php",65,{"type":132,"name":138,"callback":139,"file":135,"line":140},"admin_notices","rateUsNotice",66,{"type":132,"name":142,"callback":143,"file":144,"line":145},"admin_menu","amwCUFAdminMenuSetup","includes\\functions.php",6,{"type":147,"name":148,"callback":149,"priority":150,"file":144,"line":151},"filter","plugin_action_links","amwCUFSettingsLink",2,29,{"type":132,"name":153,"callback":154,"file":144,"line":155},"admin_enqueue_scripts","amwCUFScripts",34,[157,162,165,169,171,175,177,181,183,187,189,192],{"action":158,"nopriv":159,"callback":160,"hasNonce":159,"hasCapCheck":159,"file":144,"line":161},"add_ignored_folder",false,"AMVCUFAddIgnoredFolder",51,{"action":158,"nopriv":163,"callback":160,"hasNonce":159,"hasCapCheck":159,"file":144,"line":164},true,52,{"action":166,"nopriv":159,"callback":167,"hasNonce":159,"hasCapCheck":159,"file":144,"line":168},"remove_ignored_folder","AMVCUFRemoveIgnoredFolder",54,{"action":166,"nopriv":163,"callback":167,"hasNonce":159,"hasCapCheck":159,"file":144,"line":170},55,{"action":172,"nopriv":159,"callback":173,"hasNonce":159,"hasCapCheck":159,"file":144,"line":174},"render_images_markup","AMVCUFRenderImagesMarkup",57,{"action":172,"nopriv":163,"callback":173,"hasNonce":159,"hasCapCheck":159,"file":144,"line":176},58,{"action":178,"nopriv":159,"callback":179,"hasNonce":159,"hasCapCheck":159,"file":144,"line":180},"run_cleaner","AMVCUFRunCleaner",60,{"action":178,"nopriv":163,"callback":179,"hasNonce":159,"hasCapCheck":159,"file":144,"line":182},61,{"action":184,"nopriv":159,"callback":185,"hasNonce":159,"hasCapCheck":159,"file":144,"line":186},"update_thumbs","AMVCUFUpdateThumbs",63,{"action":184,"nopriv":163,"callback":185,"hasNonce":159,"hasCapCheck":159,"file":144,"line":188},64,{"action":190,"nopriv":159,"callback":191,"hasNonce":159,"hasCapCheck":159,"file":144,"line":140},"update_extensions","AMVCUFUpdateExtensions",{"action":190,"nopriv":163,"callback":191,"hasNonce":159,"hasCapCheck":159,"file":144,"line":193},67,[],[],[],12,{"dangerousFunctions":199,"sqlUsage":217,"outputEscaping":246,"fileOperations":14,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":270},[200,205,207,210,214],{"fn":201,"file":202,"line":203,"context":204},"unserialize","includes\\AMVCUFClass.php",143,"$extArr = unserialize($extArr[0]['settings_value']);",{"fn":201,"file":202,"line":206,"context":204},217,{"fn":201,"file":208,"line":176,"context":209},"includes\\AMVCUFSettingsClass.php","$tempExtArr = unserialize($settingsArr[0]['settings_value']);",{"fn":201,"file":211,"line":212,"context":213},"views\\settings-admin.php",39,"$extensionsArrVal = unserialize($extensionsArr[0]['settings_value']);",{"fn":201,"file":211,"line":215,"context":216},42,"$serachedExtensionsArrVal = unserialize($serachedExtensionsArr[0]['settings_value']);",{"prepared":218,"raw":197,"locations":219},5,[220,223,225,226,228,231,233,235,237,239,242,244],{"file":202,"line":221,"context":222},37,"$wpdb->get_var() with variable interpolation",{"file":202,"line":224,"context":222},49,{"file":202,"line":182,"context":222},{"file":202,"line":227,"context":222},73,{"file":202,"line":229,"context":230},277,"$wpdb->query() with variable interpolation",{"file":202,"line":232,"context":230},295,{"file":202,"line":234,"context":230},394,{"file":202,"line":236,"context":230},409,{"file":202,"line":238,"context":230},425,{"file":208,"line":240,"context":241},35,"$wpdb->get_results() with variable interpolation",{"file":208,"line":243,"context":230},71,{"file":208,"line":245,"context":230},75,{"escaped":27,"rawEcho":197,"locations":247},[248,252,254,257,259,260,261,263,265,266,268,269],{"file":249,"line":250,"context":251},"includes\\admin.php",18,"raw output",{"file":202,"line":253,"context":251},345,{"file":255,"line":256,"context":251},"views\\folders-admin.php",25,{"file":255,"line":258,"context":251},26,{"file":255,"line":151,"context":251},{"file":255,"line":33,"context":251},{"file":262,"line":33,"context":251},"views\\main-admin.php",{"file":211,"line":264,"context":251},28,{"file":211,"line":151,"context":251},{"file":211,"line":267,"context":251},50,{"file":211,"line":267,"context":251},{"file":211,"line":267,"context":251},[],[272,295],{"entryPoint":273,"graph":274,"unsanitizedCount":32,"severity":294},"AMVCUFAddIgnoredFolder (includes\\ajaxFunctions.php:3)",{"nodes":275,"edges":291},[276,282,286],{"id":277,"type":278,"label":279,"file":280,"line":281},"n0","source","$_POST","includes\\ajaxFunctions.php",8,{"id":283,"type":284,"label":285,"file":280,"line":281},"n1","transform","→ addIgnoredFolders()",{"id":287,"type":288,"label":289,"file":202,"line":229,"wp_function":290},"n2","sink","query() [SQLi]","query",[292,293],{"from":277,"to":283,"sanitized":159},{"from":283,"to":287,"sanitized":159},"high",{"entryPoint":296,"graph":297,"unsanitizedCount":32,"severity":294},"\u003CajaxFunctions> (includes\\ajaxFunctions.php:0)",{"nodes":298,"edges":302},[299,300,301],{"id":277,"type":278,"label":279,"file":280,"line":281},{"id":283,"type":284,"label":285,"file":280,"line":281},{"id":287,"type":288,"label":289,"file":202,"line":229,"wp_function":290},[303,304],{"from":277,"to":283,"sanitized":159},{"from":283,"to":287,"sanitized":159},{"summary":306,"deductions":307},"The \"amw-clear-upload-folder\" v1.1.5 plugin exhibits a concerning security posture primarily due to its extensive unprotected attack surface and lack of basic security checks. All 12 identified AJAX handlers are exposed without any authentication or capability checks, making them prime targets for unauthorized actions. Furthermore, the presence of the dangerous `unserialize` function, coupled with two high-severity taint flows involving unsanitized paths, indicates a significant risk of arbitrary code execution or data manipulation if malicious data can be injected into these flows.\n\nThe plugin also shows a complete absence of nonce checks and capability checks, which are fundamental WordPress security mechanisms. While there is no documented vulnerability history, this is likely due to the plugin not being widely used or analyzed, rather than a sign of inherent security. The poor output escaping (0% properly escaped) further exacerbates the risk, potentially leading to Cross-Site Scripting (XSS) vulnerabilities.\n\nIn conclusion, despite having no known CVEs, the plugin's code analysis reveals critical weaknesses. The unprotected AJAX endpoints, dangerous function usage, and unsanitized data flows represent a substantial security risk. Addressing these fundamental security oversights is paramount to mitigating potential exploitation.",[308,310,312,314,316,318,320,323],{"reason":309,"points":11},"All AJAX handlers lack authentication",{"reason":311,"points":11},"Dangerous function 'unserialize' used",{"reason":313,"points":197},"2 high severity taint flows with unsanitized paths",{"reason":315,"points":11},"No nonce checks found",{"reason":317,"points":11},"No capability checks found",{"reason":319,"points":281},"0% of outputs properly escaped",{"reason":321,"points":322},"SQL queries lack prepared statements (71%)",7,{"reason":324,"points":218},"File operations present without clear sanitization context","2026-03-16T23:15:45.954Z",{"wat":327,"direct":346},{"assetPaths":328,"generatorPatterns":336,"scriptPaths":337,"versionParams":338},[329,330,331,332,333,334,335],"\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fcss\u002Fbootstrap-responsive.css","\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fcss\u002Fbootstrap.css","\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fcss\u002Famw-style.css","\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fjs\u002Fbootstrap.js","\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fjs\u002Fsweetalert.min.js","\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fjs\u002Famw-admin.js","\u002Fwp-content\u002Fplugins\u002Famw-clear-upload-folder\u002Fassets\u002Fjs\u002Famw-settings.js",[],[332,333,334,335],[339,340,341,342,343,344,345],"amw-clear-upload-folder\u002Fassets\u002Fjs\u002Fbootstrap.js?ver=","amw-clear-upload-folder\u002Fassets\u002Fjs\u002Fsweetalert.min.js?ver=","amw-clear-upload-folder\u002Fassets\u002Fjs\u002Famw-admin.js?ver=","amw-clear-upload-folder\u002Fassets\u002Fjs\u002Famw-settings.js?ver=","amw-clear-upload-folder\u002Fassets\u002Fcss\u002Fbootstrap.css?ver=","amw-clear-upload-folder\u002Fassets\u002Fcss\u002Fbootstrap-responsive.css?ver=","amw-clear-upload-folder\u002Fassets\u002Fcss\u002Famw-style.css?ver=",{"cssClasses":347,"htmlComments":349,"htmlAttributes":352,"restEndpoints":355,"jsGlobals":356,"shortcodeOutput":358},[348],"amw-clear-upload-folder-wrap",[350,351],"\u003C!-- Clear Upload Folder -->","\u003C!-- AMW CUF -->",[353,354],"data-amw-cuf-action","data-amw-cuf-nonce",[],[357],"amw_cuf_admin_obj",[]]