[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4XcHzgFlXpFjvvQZQGm10VupMTQNrVGPVv0b-FLKlls":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":38,"fingerprints":124},"broken-link-repair","Broken Links Repair By Hexometer","1.0.4","Hexact, Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fhexact\u002F","\u003Cp>Broken Links Repair Plugin will get the broken links list from your Hexometer dashboard and will disable (or “unlink”) them when the page is loaded.\u003C\u002Fp>\n\u003Ch4>Key features\u003C\u002Fh4>\n\u003Cp>Key features of Broken Links Repair Plugin by Hexometer include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disables the 404 links in the page content.\u003C\u002Fli>\n\u003Cli>You can enable and disable this function from plugin page.\u003C\u002Fli>\n\u003Cli>More info about \u003Ca href=\"https:\u002F\u002Fhexometer.com\u002Fbroken-links-repair\" rel=\"nofollow ugc\">Broken Links Repair\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For Any help, please \u003Ca href=\"https:\u002F\u002Fhexometer.com\u002Fcontact\" rel=\"nofollow ugc\">contact us\u003C\u002Fa>.\u003C\u002Fp>\n","Broken Links Repair Plugin disables the bad links in your content immediately upon detection by Hexometer.com scanner.",200,8394,94,6,"2020-01-15T16:04:00.000Z","5.3.21","4.7","5.5.35",[20,21,22,23],"disable-bad-links","fix-404-links","hexometer","repair-broken-links","https:\u002F\u002Fhexometer.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbroken-link-repair.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"hexact",1,30,84,"2026-04-04T13:59:41.337Z",[],{"attackSurface":39,"codeSignals":66,"taintFlows":111,"riskAssessment":112,"analyzedAt":123},{"hooks":40,"ajaxHandlers":62,"restRoutes":63,"shortcodes":64,"cronEvents":65,"entryPointCount":27,"unprotectedCount":27},[41,47,52,57],{"type":42,"name":43,"callback":44,"file":45,"line":46},"action","admin_menu","Hexometer\\hexometer_plugin_setup_menu","hooks\\admin.php",19,{"type":42,"name":48,"callback":49,"priority":50,"file":45,"line":51},"admin_enqueue_scripts","Hexometer\\hexometer_broken_links_admin_adding_scripts",999,71,{"type":42,"name":53,"callback":54,"file":55,"line":56},"the_content","Hexometer\\hexometer_hide_broken_links_href","hooks\\content.php",36,{"type":42,"name":58,"callback":59,"file":60,"line":61},"init","Hexometer\\hexometer_handle_http_post_scan_data","hooks\\ingest.php",21,[],[],[],[],{"dangerousFunctions":67,"sqlUsage":68,"outputEscaping":84,"fileOperations":33,"externalRequests":27,"nonceChecks":33,"capabilityChecks":27,"bundledLibraries":110},[],{"prepared":27,"raw":69,"locations":70},5,[71,75,77,80,82],{"file":72,"line":73,"context":74},"inc\\Database.php",34,"$wpdb->query() with variable interpolation",{"file":72,"line":76,"context":74},43,{"file":72,"line":78,"context":79},53,"$wpdb->get_results() with variable interpolation",{"file":72,"line":81,"context":79},64,{"file":72,"line":83,"context":74},87,{"escaped":33,"rawEcho":85,"locations":86},11,[87,90,93,95,96,98,100,102,103,106,108],{"file":45,"line":88,"context":89},59,"raw output",{"file":91,"line":92,"context":89},"views\\layout\\header.php",2,{"file":91,"line":94,"context":89},3,{"file":91,"line":94,"context":89},{"file":91,"line":97,"context":89},4,{"file":99,"line":14,"context":89},"views\\LinksTableContent.php",{"file":99,"line":101,"context":89},10,{"file":99,"line":101,"context":89},{"file":104,"line":105,"context":89},"views\\LoginForm.php",7,{"file":104,"line":107,"context":89},18,{"file":104,"line":109,"context":89},29,[],[],{"summary":113,"deductions":114},"The \"broken-link-repair\" plugin, version 1.0.4, exhibits a generally good security posture based on the static analysis.  The plugin has a notably small attack surface, with no exposed AJAX handlers, REST API routes, shortcodes, or cron events that appear to lack authentication or permission checks. The absence of dangerous functions and critical taint flows further strengthens this assessment.  Furthermore, the plugin has no recorded vulnerability history, indicating a stable and secure track record. \n\nHowever, there are specific areas for concern. The significant proportion of SQL queries (100%) not using prepared statements presents a potential risk for SQL injection vulnerabilities, especially as the plugin has no documented history of addressing such issues.  Additionally, the low percentage of properly escaped output (8%) leaves the plugin susceptible to cross-site scripting (XSS) attacks. The presence of file operations without explicit mention of sanitization or permission checks also warrants caution. While the plugin's clean history is a positive sign, the identified code-level weaknesses require attention to maintain its security.",[115,118,121],{"reason":116,"points":117},"SQL queries without prepared statements",15,{"reason":119,"points":120},"Low percentage of output escaping",12,{"reason":122,"points":105},"File operations without clear sanitization","2026-03-16T20:24:55.818Z",{"wat":125,"direct":136},{"assetPaths":126,"generatorPatterns":130,"scriptPaths":131,"versionParams":132},[127,128,129],"\u002Fwp-content\u002Fplugins\u002Fbroken-link-repair\u002Fstatic\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Fbroken-link-repair\u002Fstatic\u002Fjs\u002Fshortentext.js","\u002Fwp-content\u002Fplugins\u002Fbroken-link-repair\u002Fstatic\u002Fjs\u002Fmain.js",[],[128,129],[133,134,135],"broken-link-repair\u002Fstatic\u002Fcss\u002Fmain.css?ver=","broken-link-repair\u002Fstatic\u002Fjs\u002Fshortentext.js?ver=","broken-link-repair\u002Fstatic\u002Fjs\u002Fmain.js?ver=",{"cssClasses":137,"htmlComments":138,"htmlAttributes":139,"restEndpoints":141,"jsGlobals":142,"shortcodeOutput":144},[],[],[140],"id=\"property_token\"",[],[143],"window.jQuery",[]]