[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fnQ33EweKcc81QGm27zywAwfcZSkTDvPSayyLc67CWwc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":45,"crawl_stats":36,"alternatives":53,"analysis":155,"fingerprints":248},"change-table-prefix","Change Table Prefix","3.0","Manish Kumar Agarwal","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanishkrag\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fsupport\" rel=\"nofollow ugc\">💬 Ask Question\u003C\u002Fa> | \u003Ca href=\"mailto:webguywork@gmail.com\" rel=\"nofollow ugc\">📧 Email Me\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Change the database table prefix first defined in your wp-config.php file.\u003C\u002Fp>\n","Change the database table prefix first defined in your wp-config.php file.",2000,59807,76,55,"2026-03-03T23:24:00.000Z","6.9.4","5.0","7.4",[20,21,22,23],"database","database-table-prefix","prefix","tables","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchange-table-prefix.zip",78,1,"2024-02-20 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2024-25932","change-table-prefix-cross-site-request-forgery-via-changeprefixform","Change Table Prefix \u003C= 2.0 - Cross-Site Request Forgery via change_prefix_form","The Change Table Prefix plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing or incorrect nonce validation on the 'change_prefix_form' function. This makes it possible for unauthenticated attackers to toggle maintenance mode via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=2.0","high",7.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:H","Cross-Site Request Forgery (CSRF)","2024-02-23 16:52:12",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4d154587-e396-45ba-80ad-b532b612823a?source=api-prod",{"slug":46,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":49,"avg_patch_time_days":50,"trust_score":51,"computed_at":52},"manishkrag",3,3020,83,30,82,"2026-04-04T03:48:37.763Z",[54,75,97,116,135],{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":14,"last_updated":65,"tested_up_to":16,"requires_at_least":66,"requires_php":24,"tags":67,"homepage":71,"download_link":72,"security_score":73,"vuln_count":74,"unpatched_count":74,"last_vuln_date":36,"fetched_at":29},"brozzme-db-prefix-change","Brozzme DB Prefix & Tools Addons","1.3.5","Benoti","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenoti\u002F","\u003Cp>Brozzme DB Prefix is a one click tool to modify your database prefix everywhere (database and wp-config.php).\u003C\u002Fp>\n\u003Cp>To apply a new prefix, you just need to verify that the wp-config.php is writable and that the Alter rights of the database are enable.\u003C\u002Fp>\n\u003Cp>A single entry is need : the new database prefix. The plugin will generate a new one for you. You only have to press the button if you are ok with the generated prefix. Of course, the prefix can be modify to fit your needs.\u003C\u002Fp>\n\u003Cp>This plugin doesn’t have any options settings.\u003C\u002Fp>\n\u003Cp>Since 1.3 : New tools will be add !\u003C\u002Fp>\n\u003Cul>\n\u003Cli>mysql dump : export whole database in a single click or more click if you need options 😉\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Have a look to the other Brozzme plugins \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fbrozzme\u002F\" rel=\"ugc\">search : Brozzme\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Link to \u003Ca href=\"https:\u002F\u002Fbrozzme.com\u002F\" title=\"Brozzme\" rel=\"nofollow ugc\">Brozzme\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=221\" title=\"WPServeur WordPress Hosting\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa>.\u003C\u002Fp>\n","Easily change your WordPress DB prefix, save time, increase security.",10000,132961,94,"2026-01-21T16:50:00.000Z","4.7",[68,20,22,69,70],"config","security","tools","https:\u002F\u002Fbrozzme.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrozzme-db-prefix-change.1.3.5.zip",100,0,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":62,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":24,"tags":89,"homepage":94,"download_link":95,"security_score":96,"vuln_count":74,"unpatched_count":74,"last_vuln_date":36,"fetched_at":29},"plugins-garbage-collector","Plugins Garbage Collector (Database Cleanup)","0.14","Vladimir Garagulya","https:\u002F\u002Fprofiles.wordpress.org\u002Fshinephp\u002F","\u003Cp>Database Cleanup plugin scans the database and shows the tables beyond of core WordPress installation. Some WordPress plugins create and use its own database tables.\u003Cbr \u002F>\nThose tables are left in your database after plugin deactivation and deletion often.\u003Cbr \u002F>\nWith the help of this plugin you can check your database and discover if it is clean or not.\u003Cbr \u002F>\nExtra columns added to the core WordPress tables could be shown also.\u003Cbr \u002F>\nTo read more about ‘Plugins Garbage Collector’ visit this link at \u003Ca href=\"http:\u002F\u002Fwww.shinephp.com\u002Fplugins-garbage-collector-wordpress-plugin\u002F\" rel=\"nofollow ugc\">shinephp.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Additional Documentation\u003C\u002Fh3>\n\u003Cp>You can find more information about “Plugins Garbage Collector” plugin at this page\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.shinephp.com\u002Fplugins-garbage-collector-wordpress-plugin\u002F\u003C\u002Fp>\n\u003Cp>I am ready to answer on your questions about this plugin usage. Use plugin page comments or site contact form for that please.\u003C\u002Fp>\n","Find unused database tables from deactivated or deleted plugins. You can delete unused database tables to reduce database volume and enhance site perf …",470986,88,92,"2022-04-03T03:52:00.000Z","5.9.13","4.0",[90,91,20,92,93],"clear","collector","garbage","unused-tables","http:\u002F\u002Fwww.shinephp.com\u002Fplugins-garbage-collector-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-garbage-collector.0.14.zip",85,{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":73,"downloaded":105,"rating":106,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":24,"tags":111,"homepage":114,"download_link":115,"security_score":96,"vuln_count":74,"unpatched_count":74,"last_vuln_date":36,"fetched_at":29},"rename-db-table-prefix","Rename DB Table Prefix","0.1.0","JRGould","https:\u002F\u002Fprofiles.wordpress.org\u002Fjrgould\u002F","\u003Cp>Need to change your table prefix from \u003Ccode>wp_\u003C\u002Fcode> to something else on a site that’s already running? Not running a multisite install? Rename DB Table Prefix can probably help.\u003C\u002Fp>\n\u003Cp>RDTP’s primary functionality is based on the great WP-CLI package, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fiandunn\u002Fwp-cli-rename-db-prefix\" rel=\"nofollow ugc\">wp-cli-rename-db-prefix\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Use at your own risk and make backups before running this plugin – it is entirely possible that this could break your site and you will need to be able to restore your database and \u003Ccode>wp-config.php\u003C\u002Fcode> files from good backups if this happens.\u003C\u002Fp>\n","Rename DB Table Prefix does what it says on the tin.",3121,96,6,"2017-09-29T16:30:00.000Z","4.8.28","3.0.1",[20,112,22,113],"mysql","table_prefix","http:\u002F\u002Fjrgould.com\u002Frdtp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frename-db-table-prefix.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":74,"num_ratings":74,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":24,"download_link":134,"security_score":73,"vuln_count":74,"unpatched_count":74,"last_vuln_date":36,"fetched_at":29},"db-viewer","DB Viewer","1.0.0","GrandPlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrandplugins\u002F","\u003Cp>\u003Cstrong>DB Viewer\u003C\u002Fstrong> lets you securely view your WordPress database directly from your website’s dashboard — no need to log in to your hosting account or use phpMyAdmin. Perfect for quick inspections and monitoring.\u003C\u002Fp>\n\u003Cp>With the free version, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Browse and view any database table  \u003C\u002Fli>\n\u003Cli>Inspect table structures and content inside WordPress  \u003C\u002Fli>\n\u003Cli>Safely explore your data without leaving the dashboard  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>🔥 \u003Cstrong>Upgrade to \u003Ca href=\"https:\u002F\u002Fgrandplugins.com\u002Fproduct\u002Fwp-db-controller\u002F\" rel=\"nofollow ugc\">DB Controller PRO\u003C\u002Fa>\u003C\u002Fstrong> to unlock powerful database management features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Empty any table with a single click  \u003C\u002Fli>\n\u003Cli>Delete tables you no longer need  \u003C\u002Fli>\n\u003Cli>Rename tables instantly  \u003C\u002Fli>\n\u003Cli>Search for any value across all columns  \u003C\u002Fli>\n\u003Cli>Add new rows directly from the dashboard  \u003C\u002Fli>\n\u003Cli>Edit any existing row inline  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This makes the PRO version a complete lightweight alternative to phpMyAdmin, built directly into WordPress.\u003C\u002Fp>\n","View your WordPress database directly inside your Dashboard. No need for phpMyAdmin or hosting panels.",80,929,"2025-08-17T16:10:00.000Z","6.8.5","5.3.0","7.0.0",[20,131,132,23,133],"phpmyadmin","sql","view","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdb-viewer.zip",{"slug":136,"name":137,"version":138,"author":139,"author_profile":140,"description":141,"short_description":142,"active_installs":143,"downloaded":144,"rating":73,"num_ratings":47,"last_updated":145,"tested_up_to":16,"requires_at_least":146,"requires_php":147,"tags":148,"homepage":153,"download_link":154,"security_score":73,"vuln_count":74,"unpatched_count":74,"last_vuln_date":36,"fetched_at":29},"customtables","CustomTables – Create, Read, Update, and Delete","1.7.1","Ivan Komlev","https:\u002F\u002Fprofiles.wordpress.org\u002Fivankomlev\u002F","\u003Cp>\u003Cstrong>Unlock Custom Data Structures and Dynamic Layouts with Custom Tables\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Take your WordPress site to the next level with Custom Tables, a powerful plugin that lets you create custom database tables, fields, and layouts. With its versatility and flexibility, you can build anything from catalogs to edit forms, detail pages, and more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Demo:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Ftastewp.org\u002Fplugins\u002Fcustomtables\u002F\" rel=\"nofollow ugc\">Try Custom Tables in action\u003C\u002Fa> (right-click to open in a new tab)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cp>Twig Template Language Support: Create dynamic layouts with ease using the modern Twig template language.\u003Cbr \u002F>\n31 Field Types: Choose from Integer, Decimal, Text String, Date, Email, Color, Image, and more to create complex data structures.\u003Cbr \u002F>\nLayout Editor: Simplify layout creation with the Auto-Create button, which generates a layout based on your table fields.\u003Cbr \u002F>\nSecure and Sanitized: All tables are stored in MySQL, with queries and field values properly sanitized for added security.\u003C\u002Fp>\n\u003Ch4>Introduction\u003C\u002Fh4>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FDq3jbk9JaJY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FqehcUdr7vk0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>More information\u003C\u002Fh4>\n\u003Cp>Visit \u003Ca href=\"https:\u002F\u002Fct4.us\u002F\" rel=\"nofollow ugc\">ct4.us\u003C\u002Fa> for more information, take a look at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjoomlaboat\u002Fcustom-tables\u002Fwiki\" rel=\"nofollow ugc\">wiki\u003C\u002Fa>.\u003C\u002Fp>\n","The Custom Tables plugin allows you to create and manage custom database tables, display catalogs, forms, and tables using Twig templating language.",50,4670,"2026-03-07T01:18:00.000Z","6.0","7.4.0",[149,150,151,20,152],"catalog","custom-database-tables","custom-tables","forms","https:\u002F\u002Fct4.us","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustomtables.1.7.1.zip",{"attackSurface":156,"codeSignals":168,"taintFlows":202,"riskAssessment":239,"analyzedAt":247},{"hooks":157,"ajaxHandlers":164,"restRoutes":165,"shortcodes":166,"cronEvents":167,"entryPointCount":74,"unprotectedCount":74},[158],{"type":159,"name":160,"callback":161,"file":162,"line":163},"action","admin_menu","change_prefix_add_page","change-table-prefix.php",20,[],[],[],[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":176,"fileOperations":74,"externalRequests":74,"nonceChecks":27,"capabilityChecks":74,"bundledLibraries":201},[],{"prepared":171,"raw":27,"locations":172},5,[173],{"file":162,"line":174,"context":175},106,"$wpdb->query() with variable interpolation",{"escaped":177,"rawEcho":178,"locations":179},13,11,[180,182,183,185,187,189,191,193,195,197,199],{"file":162,"line":26,"context":181},"raw output",{"file":162,"line":51,"context":181},{"file":162,"line":184,"context":181},87,{"file":162,"line":186,"context":181},91,{"file":162,"line":188,"context":181},108,{"file":162,"line":190,"context":181},118,{"file":162,"line":192,"context":181},124,{"file":162,"line":194,"context":181},145,{"file":162,"line":196,"context":181},147,{"file":162,"line":198,"context":181},163,{"file":162,"line":200,"context":181},180,[],[203,228],{"entryPoint":204,"graph":205,"unsanitizedCount":74,"severity":227},"change_prefix_form (change-table-prefix.php:34)",{"nodes":206,"edges":223},[207,211,216,219],{"id":208,"type":209,"label":210,"file":162,"line":13},"n0","source","$_POST (x3)",{"id":212,"type":213,"label":214,"file":162,"line":186,"wp_function":215},"n1","sink","echo() [XSS]","echo",{"id":217,"type":209,"label":218,"file":162,"line":13},"n2","$_POST (x2)",{"id":220,"type":213,"label":221,"file":162,"line":174,"wp_function":222},"n3","query() [SQLi]","query",[224,226],{"from":208,"to":212,"sanitized":225},true,{"from":217,"to":220,"sanitized":225},"low",{"entryPoint":229,"graph":230,"unsanitizedCount":74,"severity":227},"\u003Cchange-table-prefix> (change-table-prefix.php:0)",{"nodes":231,"edges":236},[232,233,234,235],{"id":208,"type":209,"label":210,"file":162,"line":13},{"id":212,"type":213,"label":214,"file":162,"line":186,"wp_function":215},{"id":217,"type":209,"label":218,"file":162,"line":13},{"id":220,"type":213,"label":221,"file":162,"line":174,"wp_function":222},[237,238],{"from":208,"to":212,"sanitized":225},{"from":217,"to":220,"sanitized":225},{"summary":240,"deductions":241},"The 'change-table-prefix' plugin version 3.0 exhibits a mixed security posture.  On the positive side, it has no identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a zero attack surface and no unprotected entry points.  This significantly limits the ways an attacker could interact with the plugin.  Furthermore, the code signals show a low number of dangerous functions and no external HTTP requests, which are good security indicators.  However, concerns arise from the output escaping, where only 54% of outputs are properly escaped, leaving potential for XSS vulnerabilities.  The presence of one high-severity unpatched CVE, specifically a Cross-Site Request Forgery (CSRF) vulnerability discovered in February 2024, is a significant risk that requires immediate attention.  This historical pattern suggests that the plugin may have had past security weaknesses, and the current unpatched vulnerability reinforces the need for diligent security review and updates.",[242,245],{"reason":243,"points":244},"Unpatched High Severity CVE",18,{"reason":246,"points":171},"Inadequate Output Escaping","2026-03-16T18:41:43.352Z",{"wat":249,"direct":255},{"assetPaths":250,"generatorPatterns":252,"scriptPaths":253,"versionParams":254},[251],"\u002Fwp-content\u002Fplugins\u002Fchange-table-prefix\u002Fchange-table-prefix.php",[],[],[],{"cssClasses":256,"htmlComments":258,"htmlAttributes":259,"restEndpoints":261,"jsGlobals":262,"shortcodeOutput":264},[257],"wrap",[],[260],"data-ctp-nonce",[],[263],"ctp_random_prefix_chars",[]]