[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fY85nkDWlozsqZh6GIcI2Ps4gHAJBDcaGklRfNaqBZPw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":124,"fingerprints":293},"ansar-import","Ansar Import – One Click Demo Import for WordPress Themes","2.1.0","themeansar","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeansar\u002F","\u003Cp>Ansar Import is a simple yet powerful one-click demo importer plugin for WordPress. Whether you’re using a block-based Full Site Editing (FSE) theme, a classic theme, or a page builder like Elementor, Ansar Import makes it effortless to set up your theme just like the demo β€” in seconds.\u003C\u002Fp>\n\u003Cp>Perfect for theme users and agencies alike, Ansar Import helps you skip manual setups by importing demo content, widgets, menus, settings, templates, and theme customizations automatically.\u003C\u002Fp>\n\u003Cp>πŸš€ Key Features:\u003Cbr \u002F>\nβœ… One Click Import – Quickly set up your site just like the theme demo.\u003C\u002Fp>\n\u003Cp>🧱 Supports FSE & Block Themes – Seamless with Full Site Editing and Gutenberg.\u003C\u002Fp>\n\u003Cp>🎨 Elementor Compatible – Easily import Elementor demo layouts and settings.\u003C\u002Fp>\n\u003Cp>πŸ”„ Reusable Templates – Import custom templates, patterns, and starter designs.\u003C\u002Fp>\n\u003Cp>πŸ“¦ Media & Content – Import pages, posts, images, menus, and widgets.\u003C\u002Fp>\n\u003Cp>πŸ§‘β€πŸ’» Developer-Friendly Hooks – Extend or customize import logic easily.\u003C\u002Fp>\n\u003Cp>πŸ§‘β€πŸ’Ό Who Is It For?\u003Cbr \u002F>\nWeb Designers & Agencies – Quickly scaffold websites from starter kits.\u003C\u002Fp>\n\u003Cp>DIY Website Owners – Set up your website like the preview in minutes.\u003C\u002Fp>\n\u003Cp>πŸ“š How It Works:\u003Cbr \u002F>\nInstall and activate Ansar Import.\u003C\u002Fp>\n\u003Cp>Go to Appearance > Ansar Import.\u003C\u002Fp>\n\u003Cp>Select a demo and click β€œImport.”\u003C\u002Fp>\n\u003Cp>Your site is ready with demo content and layout.\u003C\u002Fp>\n","Easily import theme demos in one click. Simplifies starter sites setup.",20000,460921,100,1,"2026-01-05T05:24:00.000Z","6.9.4","6.6","7.4",[20,21,22,23],"demo","importer","one-click-import","theme-demos","https:\u002F\u002Fthemeansar.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fansar-import.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":14,"trust_score":34,"computed_at":35},63,101350,96,97,"2026-04-04T04:20:09.939Z",[37,59,73,90,107],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":55,"download_link":56,"security_score":57,"vuln_count":14,"unpatched_count":26,"last_vuln_date":58,"fetched_at":28},"themegrill-demo-importer","Starter Templates & Sites Pack by ThemeGrill","2.0.0.6","ThemeGrill","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemegrill\u002F","\u003Cp>Discover a vast collection of premium starter sites and website templates. Instantly import complete demo content, widgets, and theme settings with a single click. Ideal for business websites, online courses, portfolios, blogs, and more β€” giving you a professional, ready-to-launch website in minutes.\u003C\u002Fp>\n\u003Ch4>Contribute\u003C\u002Fh4>\n\u003Cp>You can contribute to the source code in our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthemegrill\u002Fthemegrill-demo-importer\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> page.\u003C\u002Fp>\n","Premium starter sites and website templates by ThemeGrill. Import demo content, widgets, and theme settings with one click.",80000,5470783,94,197,"2025-11-13T07:01:00.000Z","6.8.5","5.7","8.1.0",[20,21,22,23,54],"themegrill","https:\u002F\u002Fthemegrill.com\u002Fdemo-importer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthemegrill-demo-importer.2.0.0.6.zip",98,"2020-02-16 00:00:00",{"slug":60,"name":61,"version":62,"author":7,"author_profile":8,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":16,"requires_at_least":17,"requires_php":70,"tags":71,"homepage":70,"download_link":72,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"icyclub","Icyclub","2.7","\u003Cp>Icyclub plugin for all Themeansar Theme\u003C\u002Fp>\n\u003Cp>The Icyclub plugin features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Beautiful pre-build homepage layouts\u003C\u002Fli>\n\u003Cli>Drag and drop page customization\u003C\u002Fli>\n\u003Cli>Predefined usefull sections\u003C\u002Fli>\n\u003Cli>Live content editing \u003C\u002Fli>\n\u003Cli>and many other features\u003C\u002Fli>\n\u003C\u002Ful>\n","Icyclub plugin for Provided a readymade template for all Themeansar Theme",10000,409518,60,2,"2026-01-05T05:38:00.000Z","",[20,21,22,23],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ficyclub.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":13,"num_ratings":14,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":86,"tags":87,"homepage":70,"download_link":88,"security_score":89,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"thememiles-toolset","Thememiles Toolset","1.1.2","thememiles","https:\u002F\u002Fprofiles.wordpress.org\u002Fthememiles\u002F","\u003Cp>Import \u003Ca href=\"https:\u002F\u002Fwww.thememiles.com\u002Fthemes\u002F\" rel=\"nofollow ugc\">ThemeMiles\u003C\u002Fa> official themes demo content, widgets and theme settings with just one click.\u003C\u002Fp>\n\u003Cp>Get \u003Ca href=\"https:\u002F\u002Fwww.thememiles.com\u002Fsupports\u002F\" rel=\"nofollow ugc\">free support\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Images License\u003C\u002Fh3>\n\u003Col>\n\u003Cli>https:\u002F\u002Fpxhere.com\u002Fen\u002Flicense [CCO License]\u003C\u002Fli>\n\u003C\u002Fol>\n","Import ThemeMiles Official Themes Demo Content, Widgets and Theme settings with just one click.",600,29713,"2023-06-11T21:12:00.000Z","6.2.9","5.0","7.0.0",[20,21,22,23,77],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthememiles-toolset.zip",85,{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":98,"downloaded":99,"rating":26,"num_ratings":26,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":103,"tags":104,"homepage":105,"download_link":106,"security_score":89,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"theme-one-click-demo-import","Theme One Click Demo Importer","2.1","theme404","https:\u002F\u002Fprofiles.wordpress.org\u002Ftheme404\u002F","\u003Cp>Theme404 One Click Demo Import is the right tool to import inbuilt demos into your business sites within a click. It displays predefined features like demo content, widgets, and theme settings within a single click. If you are having problems implementing various features available in the theme, here it will reinforce you to get all with just one tap.\u003Cbr \u002F>\nOnce you install and activate any of the demos from Theme404 templates, you can download or manually install this plugin. It is compatible with WordPress 5.0 or higher version and only supports PHP 7.0 or later.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 5.0 or Higher.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fauthor\u002Ftheme404\u002F\" rel=\"ugc\">Theme404 Official Themes\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Import Theme404 official themes demo content, widgets and theme settings with just one click.",500,49870,"2020-10-13T03:16:00.000Z","5.5.18","5.2","7.0",[21,22,23,94],"https:\u002F\u002Ftheme404.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftheme-one-click-demo-import.2.1.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":26,"num_ratings":26,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":103,"tags":120,"homepage":122,"download_link":123,"security_score":89,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"aarambha-demo-sites","Aarambha Demo Sites","1.1.7","aarambhathemes","https:\u002F\u002Fprofiles.wordpress.org\u002Faarambhathemes\u002F","\u003Cp>Aarambha Demo Sites – it is the perfect plugin to import already inbuilt theme’s demos into your business websites within a click. It shows predefined features like demo content, widgets, and theme settings within a single click. If you are having problems implementing various features available in the theme, here it will reinforce you to get all with just one tap.\u003Cbr \u002F>\nOnce you install and activate any of the themes from Aarambha Themes, you can download or manually install this plugin. It is compatible with WordPress 5.0 or higher version and only supports PHP 7.0 or later.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=BTcMS1mvN-w\" rel=\"nofollow ugc\">Video\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 5.0 or Higher.\u003C\u002Fli>\n\u003Cli>This plugin doesn’t work with any other themes besides our official themes available @ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fauthor\u002Faarambhathemes\u002F\" rel=\"ugc\">AarambhaThemes Official Themes\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Notice\u003C\u002Fh4>\n\u003Cp>Aarambha Demo Sites uses third party service (API) at (https:\u002F\u002Fdemo.aarambhathemes.com) to query the demo listings, download & install the demos. In order to perform this action, the plugin only sends theme slug to our server and not any of your other details. Please check our \u003Ca href=\"https:\u002F\u002Faarambhathemes.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> for further information. If you are not OK with this, you may uninstall this plugin and contact us through our forum to get further assistance.\u003C\u002Fp>\n","Import Aarambha Themes inbuilt themes demo content, widgets and its all settings with one click.",200,16736,"2023-11-22T03:31:00.000Z","6.4.8","5.9",[111,121,21,22,23],"demo-templates","https:\u002F\u002Faarambhathemes.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faarambha-demo-sites.1.1.7.zip",{"attackSurface":125,"codeSignals":174,"taintFlows":237,"riskAssessment":280,"analyzedAt":292},{"hooks":126,"ajaxHandlers":159,"restRoutes":170,"shortcodes":171,"cronEvents":172,"entryPointCount":173,"unprotectedCount":173},[127,133,137,140,143,145,148,150,156],{"type":128,"name":129,"callback":130,"file":131,"line":132},"action","admin_notices","ta_theme_notice","includes\\class-ansar-import.php",89,{"type":128,"name":134,"callback":135,"file":131,"line":136},"plugins_loaded","anonymous",235,{"type":128,"name":138,"callback":135,"file":131,"line":139},"admin_menu",400,{"type":128,"name":141,"callback":135,"file":131,"line":142},"admin_enqueue_scripts",401,{"type":128,"name":141,"callback":135,"file":131,"line":144},402,{"type":128,"name":146,"callback":135,"file":131,"line":147},"wp_enqueue_scripts",418,{"type":128,"name":146,"callback":135,"file":131,"line":149},419,{"type":151,"name":152,"callback":153,"file":154,"line":155},"filter","import_post_meta_key","is_valid_meta_key","includes\\class-wp-import.php",62,{"type":151,"name":157,"callback":158,"file":154,"line":31},"http_request_timeout","bump_request_timeout",[160,164,167],{"action":161,"nopriv":162,"callback":135,"hasNonce":162,"hasCapCheck":162,"file":131,"line":163},"import_action",false,399,{"action":165,"nopriv":162,"callback":135,"hasNonce":162,"hasCapCheck":162,"file":131,"line":166},"infinity_load_demos",403,{"action":165,"nopriv":168,"callback":135,"hasNonce":162,"hasCapCheck":162,"file":131,"line":169},true,404,[],[],[],3,{"dangerousFunctions":175,"sqlUsage":180,"outputEscaping":183,"fileOperations":234,"externalRequests":235,"nonceChecks":14,"capabilityChecks":14,"bundledLibraries":236},[176],{"fn":177,"file":131,"line":178,"context":179},"unserialize",718,"$data = @unserialize(file_get_contents($path));",{"prepared":181,"raw":26,"locations":182},4,[],{"escaped":184,"rawEcho":185,"locations":186},219,21,[187,191,194,197,199,202,204,207,209,210,212,214,216,217,219,221,223,225,227,229,232],{"file":188,"line":189,"context":190},"admin\\class-ansar-import-admin.php",158,"raw output",{"file":192,"line":193,"context":190},"admin\\partials\\ansar-demo-box.php",34,{"file":195,"line":196,"context":190},"admin\\partials\\ansar-import-admin-display.php",269,{"file":195,"line":198,"context":190},381,{"file":200,"line":201,"context":190},"admin\\partials\\ansar-plugin-sites-display.php",124,{"file":200,"line":203,"context":190},176,{"file":205,"line":206,"context":190},"admin\\partials\\ansar-starter-sites-display.php",142,{"file":205,"line":208,"context":190},195,{"file":131,"line":34,"context":190},{"file":131,"line":211,"context":190},102,{"file":154,"line":213,"context":190},91,{"file":154,"line":215,"context":190},92,{"file":154,"line":13,"context":190},{"file":154,"line":218,"context":190},135,{"file":154,"line":220,"context":190},136,{"file":154,"line":222,"context":190},167,{"file":154,"line":224,"context":190},1173,{"file":154,"line":226,"context":190},1196,{"file":154,"line":228,"context":190},1197,{"file":230,"line":231,"context":190},"includes\\parsers\\class-wxr-parser.php",43,{"file":230,"line":233,"context":190},44,17,12,[],[238,261],{"entryPoint":239,"graph":240,"unsanitizedCount":14,"severity":260},"import_data_ajax (admin\\class-ansar-import-admin.php:56)",{"nodes":241,"edges":257},[242,247,251],{"id":243,"type":244,"label":245,"file":188,"line":246},"n0","source","$_POST",73,{"id":248,"type":249,"label":250,"file":188,"line":246},"n1","transform","β†’ install_demo()",{"id":252,"type":253,"label":254,"file":131,"line":255,"wp_function":256},"n2","sink","file_put_contents() [File Write]",318,"file_put_contents",[258,259],{"from":243,"to":248,"sanitized":162},{"from":248,"to":252,"sanitized":162},"medium",{"entryPoint":262,"graph":263,"unsanitizedCount":14,"severity":260},"\u003Cclass-ansar-import-admin> (admin\\class-ansar-import-admin.php:0)",{"nodes":264,"edges":276},[265,267,271,272,274],{"id":243,"type":244,"label":245,"file":188,"line":266},69,{"id":248,"type":253,"label":268,"file":188,"line":269,"wp_function":270},"wp_remote_get() [SSRF]",255,"wp_remote_get",{"id":252,"type":244,"label":245,"file":188,"line":246},{"id":273,"type":249,"label":250,"file":188,"line":246},"n3",{"id":275,"type":253,"label":254,"file":131,"line":255,"wp_function":256},"n4",[277,278,279],{"from":243,"to":248,"sanitized":168},{"from":252,"to":273,"sanitized":162},{"from":273,"to":275,"sanitized":162},{"summary":281,"deductions":282},"The 'ansar-import' v2.1.0 plugin exhibits a mixed security posture. On the positive side, it utilizes prepared statements for all SQL queries, which significantly mitigates the risk of SQL injection vulnerabilities. The high percentage of properly escaped output also indicates a good effort in preventing cross-site scripting (XSS) attacks. Furthermore, the absence of any recorded CVEs suggests a generally stable security history, implying the developers may be responsive to security concerns if they arise.\n\nHowever, significant concerns exist regarding its attack surface. All three identified AJAX handlers lack authentication checks. This is a major vulnerability, as any unauthenticated user could potentially trigger these functions, leading to unintended actions or information disclosure. The presence of the `unserialize` function, while not directly exploited in the analyzed taint flows, is a known dangerous function that can lead to arbitrary code execution if used with untrusted input. The two identified unsanitized path flows, though not classified as critical or high severity in the taint analysis, are still a potential concern for file-related vulnerabilities. \n\nIn conclusion, while 'ansar-import' v2.1.0 demonstrates good practices in SQL and output handling, the unprotected AJAX endpoints present a substantial security risk. The `unserialize` function and unsanitized path flows add to the overall concern. The lack of historical vulnerabilities is a positive indicator, but it does not negate the critical security flaws identified in the current analysis.",[283,286,289],{"reason":284,"points":285},"Unprotected AJAX handlers",15,{"reason":287,"points":288},"Dangerous function 'unserialize' used",5,{"reason":290,"points":291},"Unsanitized path flows detected",7,"2026-03-16T17:34:26.038Z",{"wat":294,"direct":307},{"assetPaths":295,"generatorPatterns":300,"scriptPaths":301,"versionParams":302},[296,297,298,299],"\u002Fwp-content\u002Fplugins\u002Fansar-import\u002Fadmin\u002Fcss\u002Fansar-import-admin.css","\u002Fwp-content\u002Fplugins\u002Fansar-import\u002Fadmin\u002Fjs\u002Fansar-import-admin.js","\u002Fwp-content\u002Fplugins\u002Fansar-import\u002Fpublic\u002Fcss\u002Fansar-import-public.css","\u002Fwp-content\u002Fplugins\u002Fansar-import\u002Fpublic\u002Fjs\u002Fansar-import-public.js",[],[],[303,304,305,306],"\u002Fansar-import\u002Fadmin\u002Fcss\u002Fansar-import-admin.css?ver=","\u002Fansar-import\u002Fadmin\u002Fjs\u002Fansar-import-admin.js?ver=","\u002Fansar-import\u002Fpublic\u002Fcss\u002Fansar-import-public.css?ver=","\u002Fansar-import\u002Fpublic\u002Fjs\u002Fansar-import-public.js?ver=",{"cssClasses":308,"htmlComments":310,"htmlAttributes":311,"restEndpoints":318,"jsGlobals":320,"shortcodeOutput":322},[309],"ansar-import-dashboard-wrap",[],[312,313,314,315,316,317],"data-theme-id","data-customize","data-widget","data-content","data-step","data-theme-name",[319],"\u002Fwp-json\u002Fansar-import\u002Fv1\u002Fimport",[321],"ansar_import_object",[]]