[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_vfQyjW-xSXGKona_fxdK8PlHFSkIXrLDp3mgvq047o":3,"$fryAHJ0urzNGCNTuq-TceVf7oIERVJA17T6cywy59LtE":396,"$fRcxP1SP_7PpYOkw6HY5yPOOJm_WZfwlJ9dnw1uRWCvo":401},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":37,"analysis":140,"fingerprints":380},"css-js-booster","CSS-JS-Booster","0.6.2.179","Schepp","https:\u002F\u002Fprofiles.wordpress.org\u002Fschepp\u002F","\u003Cp>CSS-JS-Booster is a PHP-script that tries to automate as many performance\u003Cbr \u002F>\noptimizing steps related to CSS and JS embedding as possible.\u003Cbr \u002F>\nDepending on the amount of CSS, CSS-images and JS, this can significantly\u003Cbr \u002F>\nincrease loading speed of your site.\u003C\u002Fp>\n\u003Cp>Note: Check by hand the htaccess-part! (see “Installation”)\u003C\u002Fp>\n\u003Ch4>For CSS optimization steps are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>combine multiple CSS-files resulting in less HTTP-requests\u003C\u002Fli>\n\u003Cli>Optimize and minify CSS with CSSTidy\u003C\u002Fli>\n\u003Cli>Embed any CSS-images smaller 24KB as data-URI or MHTML (for IE \u003C= 7)\u003C\u002Fli>\n\u003Cli>GZIP-compress the resulting CSS\u003C\u002Fli>\n\u003Cli>Have browsers cache the result as long as it remains unchanged\u003C\u002Fli>\n\u003Cli>If IE6: Issue a JS-command to fix background image caching behaviour \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>For JS optimization steps are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fetch JS from external servers and cache it locally\u003C\u002Fli>\n\u003Cli>Combine multiple JS-files resulting in HTTP-requests going down\u003C\u002Fli>\n\u003Cli>GZIP-compress the resulting JS\u003C\u002Fli>\n\u003Cli>Have browsers cache the result as long as it remains unchanged\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Please send bug reports this way: http:\u002F\u002Fgithub.com\u002FSchepp\u002FCSS-JS-Booster\u002Fissues\u003C\u002Fp>\n\u003Cp>When creating a new issue:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Make sure that you mention in the title that you are talking about the WordPress plugin (as there is a standalone version, too), e.g.: “[WP] Booster killed my site”\u003C\u002Fli>\n\u003Cli>Make sure that you send me a link to your page\u003C\u002Fli>\n\u003Cli>Tell me what exactly is broken\u003C\u002Fli>\n\u003Cli>It helps if you put the HTML source code of your page resulting from activated Booster on http:\u002F\u002Fpastebin.com\u002F and include a link to it\u003C\u002Fli>\n\u003Cli>It helps if you put the HTML source code of your page resulting from deactivated Booster on http:\u002F\u002Fpastebin.com\u002F and include a link to it\u003C\u002Fli>\n\u003Cli>It helps if you tell me which plugins are active\u003C\u002Fli>\n\u003C\u002Ful>\n","CSS-JS-Booster automates performance optimizing steps related to CSS, Media and Javascript linking\u002Fembedding.",20,12333,0,"2010-10-20T16:59:00.000Z","3.0.0","2.9.1","",[19,20,21,22,23],"css","frontend","loading-time","performance","speed","http:\u002F\u002Fgithub.com\u002FSchepp\u002FCSS-JS-Booster","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcss-js-booster.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"schepp",1,30,84,"2026-05-19T21:15:55.974Z",[38,63,83,104,122],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":13,"last_vuln_date":62,"fetched_at":28},"jetpack-boost","Jetpack Boost – Website Speed, Performance and Critical CSS","4.5.9","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>Speed up your WordPress site by optimizing page performance with Jetpack Boost. Easily activate one-click optimizations to boost your Core Web Vitals.\u003C\u002Fp>\n\u003Cp>Did you know that a faster website:-\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Ranks higher on Google.\u003C\u002Fli>\n\u003Cli>Improves bounce rate (people stay on your site for longer).\u003C\u002Fli>\n\u003Cli>Increases your conversion rate.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Increase your website performance and speed up your website with one-click optimizations that supercharge your WordPress site’s performance and improve core web vitals scores for better search engine listings.\u003C\u002Fp>\n\u003Cp>Improving Core Web Vitals helps you rank higher on Google. A faster website also improves your SEO, helps you reduce your bounce rate and increase your ecommerce conversion rate.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Largest Contentful Paint (LCP): Measures loading performance. Improve your LCP and improve your website loading speed.\u003C\u002Fli>\n\u003Cli>First Input Delay (FID): Measures interactivity. To improve user experience pages should have a low FID.\u003C\u002Fli>\n\u003Cli>Cumulative Layout Shift (CLS): Measures visual stability. Lowering your CLS helps improve your user experience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Performance Modules\u003C\u002Fh3>\n\u003Cp>Optimize your website with the same techniques used on the world’s most successful websites.\u003C\u002Fp>\n\u003Cp>Each technique that is used to increase website performance is packaged up as a module that you can activate and try out.\u003C\u002Fp>\n\u003Cp>Currently, the plugin has 6 performance modules available:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cem>Optimize CSS Loading\u003C\u002Fem> generates Critical CSS for your homepage, posts and pages. This can allow your content to show up on the screen much faster, particularly for viewers using mobile devices.\u003C\u002Fp>\n\u003Cp>Read more about critical CSS generation at \u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fredirect\u002F?source=jetpack-boost-critical-css\" rel=\"nofollow ugc\">web.dev\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cem>Page Cache\u003C\u002Fem> speeds up your site by saving pages as static files. These files are quickly served to visitors, reducing load times and enhancing user experience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cem>Defer Non-Essential JavaScript\u003C\u002Fem> moves some tasks to after the page loads, so that important visual information can be seen sooner and your website loads quicker.\u003C\u002Fp>\n\u003Cp>Read more about deferring JavaScript at \u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fredirect\u002F?source=jetpack-boost-defer-js\" rel=\"nofollow ugc\">web.dev\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cem>Image Guide\u003C\u002Fem> is a must-have feature for anyone who wants to optimize the images on their website. With this guide, you can ensure that the images on your site are the right size and dimensions, which is critical for improving user experience, page speed, and site ranking. Following the tips and best practices outlined in the guide, you can reduce image file sizes and speed up your site. Check out our \u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fsupport\u002Fjetpack-boost\u002Fimage-performance-guide\u002F\" rel=\"nofollow ugc\">support page\u003C\u002Fa> to learn more about this feature and how it can help you achieve a faster and smoother website experience for your users.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cem>Image CDN\u003C\u002Fem> allows your site to serve automatically-resized images in modern web formats directly from Jetpack’s worldwide Content Delivery Network.\u003C\u002Fp>\n\u003Cp>Read more about Image CDNs at \u003Ca href=\"https:\u002F\u002Fweb.dev\u002Fimage-cdns\u002F\" rel=\"nofollow ugc\">web.dev\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cem>Concatenate and Minify CSS and JS\u003C\u002Fem> combines and shrinks your JavaScript and CSS resources to reduce the number and size of requests to your server, ensuring your content loads faster.\u003C\u002Fp>\n\u003Cp>Read more about minifying files at \u003Ca href=\"https:\u002F\u002Fweb.dev\u002Fminify-css\u002F\" rel=\"nofollow ugc\">web.dev\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Don’t want to have to manually generate your critical CSS each time you update your site? Let us do the heavy lifting for you with automated critical CSS – each time you update your site we will automatically regenerate your critical CSS and update your performance scores. Upgrading also gives you dedicated email support access.\u003C\u002Fp>\n\u003Ch3>With 💚 by Jetpack\u003C\u002Fh3>\n\u003Cp>This is just the start!\u003C\u002Fp>\n\u003Cp>We are working hard to bring more features and improvements to Jetpack Boost. Let us know your thoughts and ideas!\u003C\u002Fp>\n\u003Cp>We’d also like to give a special THANK YOU to the XWP team who provided help with initial research and scoping of the plugin and were engaged with our team throughout the project.\u003C\u002Fp>\n","Speed up your WordPress site with one-click optimizations like Page Cache, Critical CSS, and Image CDN to improve Core Web Vitals.",200000,12816169,94,601,"2026-04-13T09:17:00.000Z","6.9.4","6.8","7.2",[55,56,22,23,57],"cache","critical-css","web-vitals","https:\u002F\u002Fjetpack.com\u002Fboost","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjetpack-boost.4.5.9.zip",99,2,"2024-10-17 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":73,"num_ratings":74,"last_updated":75,"tested_up_to":51,"requires_at_least":76,"requires_php":77,"tags":78,"homepage":17,"download_link":81,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"debloat","Debloat – Remove Unused CSS, Optimize JS","1.3.0","asadkn","https:\u002F\u002Fprofiles.wordpress.org\u002Fasadkn\u002F","\u003Cp>A plugin for Advanced Users to Optimize CSS Delivery, Remove Unused CSS, Optimize Javascript Delivery with defer or delay load JS.\u003Cbr \u002F>\nThe perfect toolkit for improving your Core Web Vitals and overall website performance.\u003C\u002Fp>\n\u003Cp>WARNING: It’s a powerful speed optimization plugin that’s meant for power users who know what they’re doing.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Optimize CSS: Fix Render-Blocking.\u003C\u002Fli>\n\u003Cli>Minify and Inline CSS.\u003C\u002Fli>\n\u003Cli>Remove Unused CSS (Advanced).\u003C\u002Fli>\n\u003Cli>Optimize JS: Fix Render-Blocking with defer.\u003C\u002Fli>\n\u003Cli>Delay Load some JS until user interaction.\u003C\u002Fli>\n\u003Cli>Adds resource hints for faster Google Fonts.\u003C\u002Fli>\n\u003Cli>Built-in optimizations for Elementor (free version).\u003C\u002Fli>\n\u003Cli>Built-in optimizations for WPBakery Page Builder. \u003C\u002Fli>\n\u003Cli>Compatible with all themes and plugins.\u003C\u002Fli>\n\u003Cli>Supports all modern browsers (no IE11 support).\u003C\u002Fli>\n\u003Cli>Optimized code benchmarked for performance.\u003C\u002Fli>\n\u003Cli>Built-in cache for processing.\u003C\u002Fli>\n\u003Cli>Compatible with cache plugins (disable their JS and CSS optimizations).\u003C\u002Fli>\n\u003Cli>API and hooks for theme & plugin authors.\u003C\u002Fli>\n\u003C\u002Ful>\n","Remove Unused CSS, Optimize CSS, Optimize JS and speed up your site.",30000,349793,96,41,"2026-03-04T00:58:00.000Z","5.0","7.4.1",[79,22,23,80],"optimize","uncss","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdebloat.1.3.0.zip",100,{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":82,"num_ratings":93,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":97,"tags":98,"homepage":102,"download_link":103,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"purify-wp-menues","Purify Menus","3.5.0","Kybernetik Services","https:\u002F\u002Fprofiles.wordpress.org\u002Fkybernetikservices\u002F","\u003Cp>Improve page speed by letting slim down the HTML code of menus and category lists to the only CSS classes and attributes your theme needs.\u003C\u002Fp>\n\u003Cp>The plugin is available in English, Spanish (Español) and German (Deutsch).\u003C\u002Fp>\n\u003Ch4>Less code, higher page speed\u003C\u002Fh4>\n\u003Cp>This plugin deletes the CSS classes you do not need in a navigation menu, page menu and category list. It slims down the HTML code of WordPress menus and category lists to the only neccessary CSS classes you want for your theme. This results in less HTML code and thus in higher page speed.\u003C\u002Fp>\n\u003Cp>If you are very concerned about the loading time of your website and you do not manage to gain seconds or tenths in the loading of the site with 3rd party caching plugins, you may find it interesting to experiment with the plugin Purify WordPress Menus and evaluate its possibilities.\u003C\u002Fp>\n\u003Ch4>What users said\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cem>…interesante experimentar…\u003C\u002Fem> in \u003Ca href=\"https:\u002F\u002Fwww.webempresa.com\u002Fblog\u002Freduce-css-en-wordpress-y-mejora-la-carga.html\" rel=\"nofollow ugc\">Reduce CSS en WordPress y mejora la carga\u003C\u002Fa> by  Luis Méndez Alejo on August 20, 2015\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Number 1\u003C\u002Fstrong> in \u003Ca href=\"http:\u002F\u002Fcodeknows.com\u002Finspiration\u002Ffree-navigation-menu-wordpress-plugins\u002F\" rel=\"nofollow ugc\">Cool List of Free Navigation Menu WordPress Plugins\u003C\u002Fa> by Inspiration on January 8, 2015\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Number 7\u003C\u002Fstrong> in \u003Ca href=\"http:\u002F\u002Fcssclick.com\u002Fwordpress\u002Ffree-wordpress-widgets-for-menus\u002F\" rel=\"nofollow ugc\">13 Excellent Free WordPress Widgets for Menus\u003C\u002Fa> by mike on November 24, 2014\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Number 6\u003C\u002Fstrong> in \u003Ca href=\"http:\u002F\u002Fwpaisle.com\u002Fwordpress-widgets\u002Ffree-html-widgets-for-wordpress\u002F\" rel=\"nofollow ugc\">13 Great Free HTML Widgets for WordPress\u003C\u002Fa> by sam on August 27, 2014\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Number 8\u003C\u002Fstrong> in \u003Ca href=\"http:\u002F\u002Fcreativevore.com\u002Fwordpress\u002Ffree-menus-widgets-for-wordpress\u002F\" rel=\"nofollow ugc\">10 Magnificent Free Menus Widgets for WordPress\u003C\u002Fa> by jatin on July 26, 2014\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>No undesirable visual effects\u003C\u002Fh4>\n\u003Cp>The visual appearance of menus and category lists in the frontend remains unchanged in most cases. If you should see an undesirable visual effect to the menus and category lists in your theme, then you can activate the needed CSS classes on the plugin’s options page.\u003C\u002Fp>\n\u003Ch4>Deactivate it and keep your settings\u003C\u002Fh4>\n\u003Cp>If you deactivate the plugin, your settings remains. If you activate the plugin again, your last settings will be used. You do not need to go over all settings again.\u003C\u002Fp>\n\u003Ch4>Residue-free deletion\u003C\u002Fh4>\n\u003Cp>If you delete the plugin via the WordPress ‘Plugin’ menu, your settings will be deleted, too. No useless option remains in the WordPress database.\u003C\u002Fp>\n\u003Ch4>Default setting: Marks the current menu item only\u003C\u002Fh4>\n\u003Cp>The default setting is to output only the CSS classes for the navigation menu items of the current post and the current category.\u003C\u002Fp>\n\u003Ch4>Stops displaying CSS classes of parents and ancestors of menu items and category list items\u003C\u002Fh4>\n\u003Cp>If activated by yourself, then items which are parents of the current item will not be classified as ancestors additionally. You can set that separately for both menus and category lists.\u003C\u002Fp>\n\u003Ch4>Stops displaying CSS classes of outdated page menus\u003C\u002Fh4>\n\u003Cp>This plugin filters out the old CSS classes of page menus in navigation menus. Using the WordPress menu configurator the page menu classes are not necessary anymore.\u003C\u002Fp>\n\u003Ch4>Stops displaying #menu-{id}\u003C\u002Fh4>\n\u003Cp>This plugin deletes the ID attribute of each menu item. In most cases the ID of every menu item is not needed.\u003C\u002Fp>\n\u003Ch4>Stops displaying CSS classes of category lists\u003C\u002Fh4>\n\u003Cp>This plugin filters out the CSS classes of each item in category lists.\u003C\u002Fp>\n\u003Ch4>Uses WordPress standard functions\u003C\u002Fh4>\n\u003Cp>This plugin hooks into the WordPress core functions \u003Ccode>wp_nav_menu()\u003C\u002Fcode>, \u003Ccode>wp_page_menu()\u003C\u002Fcode> and \u003Ccode>wp_list_categories()\u003C\u002Fcode>. It changes the results of those functions to the settings you have done.\u003C\u002Fp>\n\u003Ch4>Switch on and off every CSS menu item class\u003C\u002Fh4>\n\u003Cp>You can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>select and deselect in detail every CSS menu item class the WordPress core functions \u003Ccode>wp_nav_menu()\u003C\u002Fcode>, \u003Ccode>wp_page_menu()\u003C\u002Fcode> and \u003Ccode>wp_list_categories()\u003C\u002Fcode> generate\u003C\u002Fli>\n\u003Cli>control whether the id attribute of each navigation menu item is printed out or not\u003C\u002Fli>\n\u003Cli>control whether parent items will be additionally classified as ancestors item or not. You can activate to print out both classes on parent items or just parents classes\u003C\u002Fli>\n\u003Cli>control whether navigation menus will be additionally classified with the older page menu classes for compatibility or not.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cp>Purify WordPress Menus is available in multiple languages maintained by the amazing WordPress community.\u003Cbr \u002F>\nYour language is missing? Please be part of the community and help to translate Purify WordPress Menus on \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fpurify-wp-menues\u002F\" rel=\"nofollow ugc\">GlotPress\u003C\u002Fa>. Thank you!\u003C\u002Fp>\n","Improve page speed by letting slim down the HTML code of menus and category lists to the only CSS classes and attributes your theme needs.",300,32349,6,"2026-04-15T17:54:00.000Z","7.0","4.6","5.2",[19,99,100,101,22],"menus","navigation-menu","page-speed","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpurify-wp-menues\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpurify-wp-menues.3.5.0.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":82,"num_ratings":93,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":17,"tags":117,"homepage":120,"download_link":121,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"performance-optimization-order-styles-and-javascript","Performance Optimization: Order Styles and Javascript","1.0","Satya Prakash","https:\u002F\u002Fprofiles.wordpress.org\u002Fsatya61229\u002F","\u003Cp>Did you ever read about Optimization of website\u002Fblog through ordering styles and Scripts in head section?\u003Cbr \u002F>\nIf you like your website load in browser as quickly as possible then you may have read in performance optimization tips that\u003Cbr \u002F>\nyou should move all CSS files on top and script at last in HTML head section \u003Chead>\u003C\u002Fhead>.\u003C\u002Fp>\n\u003Cp>How do you order those calls? If you are manually putting CSS and JavaScript files in head section (\u003Chead>\u003C\u002Fhead>),\u003Cbr \u002F>\nthen you can do this very easily. Just modify once and optimization for this is over.\u003Cbr \u002F>\nWhat if you are using plugins and that are adding calls to JavaScript and CSS files dynamically. This is case of WordPress blog,\u003Cbr \u002F>\nwhere we use many plugins and those plugins add various Styles and Script files dynamically from wp_head() call.\u003C\u002Fp>\n\u003Cp>If above lines, do not makes much sense to you then probably you have not\u003Cbr \u002F>\nread this documentation on \u003Ca href=\"http:\u002F\u002Fcode.google.com\u002Fspeed\u002Fpage-speed\u002Fdocs\u002Frtt.html#PutStylesBeforeScripts\" rel=\"nofollow ugc\">Google\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The plugin will also collect different inline scripts to one place. Thus making the source code\u003Cbr \u002F>\nlook better.\u003C\u002Fp>\n\u003Cp>To check, if the plugin is doing anything or not, compare the Head section before and after\u003Cbr \u002F>\nactivating the plugin.\u003C\u002Fp>\n\u003Cp>(For reading more details discussion, follow the Plugin link on right side.)\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsatya61229\" rel=\"nofollow ugc\">Author (satya61229) About page on WP\u003C\u002Fa>\u003C\u002Fp>\n","Ordering StyleSheet and JavaScript (external and inline) for performance optimization.",70,13450,"2013-10-11T09:46:00.000Z","3.6.1","2.0.2",[19,118,22,23,119],"optimization","style","http:\u002F\u002Fwww.satya-weblog.com\u002F?p=2392","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fperformance-optimization-order-styles-and-javascript.1.0.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":73,"num_ratings":132,"last_updated":133,"tested_up_to":134,"requires_at_least":135,"requires_php":17,"tags":136,"homepage":138,"download_link":139,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"cleanerpress","CleanerPress","2.0.1","Arevico","https:\u002F\u002Fprofiles.wordpress.org\u002Farevico\u002F","\u003Cp>Every admin wants to have their website loaded as fast as possible. A fast website results in more actions per visitors and higher conversions (signups, shares, reads, comments,etc).\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FgLMxXUETQOc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>CleanerPress tries to give you some more control over what is outputted to the user. It currently does te following:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Combine CSS stylesheets and caches it. Only static css files are returned to the user. – make sure to chmod the folder is needed\u003C\u002Fli>\n\u003Cli>Remove the admin bar if you don’t want to have it\u003C\u002Fli>\n\u003Cli>Hide version numbers, RSS, WLW endpoints to reduce html size and give hackers a harder time.\u003C\u002Fli>\n\u003Cli>Loading all of your scripts via HeadJS. This means that the amount of request doesn’t matter, the website gets rendered 2-4 times faster. Will also be applied to the admin area\u003C\u002Fli>\n\u003Cli>Load jQuery from the google cdn, so the visitor allready has it cached (well, 90% of the times)\u003C\u002Fli>\n\u003Cli>select which plugins are loaded where\u003Cbr \u002F>\n** NOTE: All options can safely be enabled and don’t affect seo negative (speed is good). **\u003C\u002Fli>\n\u003C\u002Ful>\n","Every admin wants to have their website loaded as fast as possible.CleanerPress tries to give you some more control over what is outputted to the user",10,8210,5,"2013-08-06T15:13:00.000Z","3.5.2","3.0",[55,19,137,22,23],"minify","http:\u002F\u002Farevico.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcleanerpress.2.0.1.zip",{"attackSurface":141,"codeSignals":153,"taintFlows":189,"riskAssessment":365,"analyzedAt":379},{"hooks":142,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":13,"unprotectedCount":13},[143],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","wp_footer","booster_wp","wp_booster.php",440,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":160,"outputEscaping":162,"fileOperations":175,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":188},[155],{"fn":156,"file":157,"line":158,"context":159},"unserialize","booster_inc.php",1200,"$line_infos = unserialize(file_get_contents($cachefiledata));",{"prepared":13,"raw":13,"locations":161},[],{"escaped":34,"rawEcho":163,"locations":164},9,[165,169,171,174,176,179,181,184,186],{"file":166,"line":167,"context":168},"booster_css.php",64,"raw output",{"file":166,"line":170,"context":168},73,{"file":172,"line":173,"context":168},"booster_css_ie.php",65,{"file":172,"line":175,"context":168},74,{"file":177,"line":178,"context":168},"booster_js.php",62,{"file":177,"line":180,"context":168},71,{"file":182,"line":183,"context":168},"booster_mhtml.php",52,{"file":182,"line":185,"context":168},61,{"file":147,"line":187,"context":168},437,[],[190,209,218,230,268,277,286,301,312],{"entryPoint":191,"graph":192,"unsanitizedCount":33,"severity":208},"\u003Cbooster_css> (booster_css.php:0)",{"nodes":193,"edges":205},[194,199],{"id":195,"type":196,"label":197,"file":166,"line":198},"n0","source","$_GET",25,{"id":200,"type":201,"label":202,"file":166,"line":203,"wp_function":204},"n1","sink","header() [Header Injection]",58,"header",[206],{"from":195,"to":200,"sanitized":207},false,"medium",{"entryPoint":210,"graph":211,"unsanitizedCount":33,"severity":208},"\u003Cbooster_css_ie> (booster_css_ie.php:0)",{"nodes":212,"edges":216},[213,214],{"id":195,"type":196,"label":197,"file":172,"line":198},{"id":200,"type":201,"label":202,"file":172,"line":215,"wp_function":204},59,[217],{"from":195,"to":200,"sanitized":207},{"entryPoint":219,"graph":220,"unsanitizedCount":33,"severity":208},"css_datauri (booster_inc.php:977)",{"nodes":221,"edges":228},[222,225],{"id":195,"type":196,"label":223,"file":157,"line":224},"$_SERVER['HTTP_USER_AGENT']",981,{"id":200,"type":201,"label":226,"file":157,"line":224,"wp_function":227},"file_put_contents() [File Write]","file_put_contents",[229],{"from":195,"to":200,"sanitized":207},{"entryPoint":231,"graph":232,"unsanitizedCount":267,"severity":208},"css (booster_inc.php:1558)",{"nodes":233,"edges":261},[234,237,239,243,247,252,255,258],{"id":195,"type":196,"label":235,"file":157,"line":236},"$_SERVER (x2)",1658,{"id":200,"type":201,"label":226,"file":157,"line":238,"wp_function":227},1665,{"id":240,"type":196,"label":241,"file":157,"line":242},"n2","$_SERVER",1695,{"id":244,"type":245,"label":246,"file":157,"line":242},"n3","transform","→ css_datauri()",{"id":248,"type":201,"label":249,"file":157,"line":250,"wp_function":251},"n4","file_get_contents() [SSRF\u002FLFI]",1112,"file_get_contents",{"id":253,"type":196,"label":241,"file":157,"line":254},"n5",1706,{"id":256,"type":245,"label":257,"file":157,"line":254},"n6","→ css_split()",{"id":259,"type":201,"label":226,"file":157,"line":260,"wp_function":227},"n7",1431,[262,263,264,265,266],{"from":195,"to":200,"sanitized":207},{"from":240,"to":244,"sanitized":207},{"from":244,"to":248,"sanitized":207},{"from":253,"to":256,"sanitized":207},{"from":256,"to":259,"sanitized":207},4,{"entryPoint":269,"graph":270,"unsanitizedCount":33,"severity":208},"\u003Cbooster_js> (booster_js.php:0)",{"nodes":271,"edges":275},[272,273],{"id":195,"type":196,"label":197,"file":177,"line":198},{"id":200,"type":201,"label":202,"file":177,"line":274,"wp_function":204},56,[276],{"from":195,"to":200,"sanitized":207},{"entryPoint":278,"graph":279,"unsanitizedCount":33,"severity":208},"\u003Cbooster_mhtml> (booster_mhtml.php:0)",{"nodes":280,"edges":284},[281,282],{"id":195,"type":196,"label":197,"file":182,"line":198},{"id":200,"type":201,"label":202,"file":182,"line":283,"wp_function":204},46,[285],{"from":195,"to":200,"sanitized":207},{"entryPoint":287,"graph":288,"unsanitizedCount":61,"severity":208},"booster_wp (wp_booster.php:81)",{"nodes":289,"edges":298},[290,292,294,295],{"id":195,"type":196,"label":241,"file":147,"line":291},295,{"id":200,"type":201,"label":226,"file":147,"line":293,"wp_function":227},385,{"id":240,"type":196,"label":241,"file":147,"line":291},{"id":244,"type":201,"label":296,"file":147,"line":187,"wp_function":297},"echo() [XSS]","echo",[299,300],{"from":195,"to":200,"sanitized":207},{"from":240,"to":244,"sanitized":207},{"entryPoint":302,"graph":303,"unsanitizedCount":61,"severity":208},"\u003Cwp_booster> (wp_booster.php:0)",{"nodes":304,"edges":309},[305,306,307,308],{"id":195,"type":196,"label":241,"file":147,"line":291},{"id":200,"type":201,"label":226,"file":147,"line":293,"wp_function":227},{"id":240,"type":196,"label":241,"file":147,"line":291},{"id":244,"type":201,"label":296,"file":147,"line":187,"wp_function":297},[310,311],{"from":195,"to":200,"sanitized":207},{"from":240,"to":244,"sanitized":207},{"entryPoint":313,"graph":314,"unsanitizedCount":363,"severity":364},"\u003Cbooster_inc> (booster_inc.php:0)",{"nodes":315,"edges":352},[316,317,318,321,323,325,327,328,330,333,335,337,339,341,343,346,349],{"id":195,"type":196,"label":223,"file":157,"line":224},{"id":200,"type":201,"label":226,"file":157,"line":224,"wp_function":227},{"id":240,"type":196,"label":319,"file":157,"line":320},"$_SERVER (x19)",1017,{"id":244,"type":201,"label":226,"file":157,"line":322,"wp_function":227},1176,{"id":248,"type":196,"label":324,"file":157,"line":320},"$_SERVER (x6)",{"id":253,"type":201,"label":249,"file":157,"line":326,"wp_function":251},1199,{"id":256,"type":196,"label":241,"file":157,"line":320},{"id":259,"type":201,"label":329,"file":157,"line":158,"wp_function":156},"unserialize() [Object Injection]",{"id":331,"type":196,"label":235,"file":157,"line":332},"n8",1606,{"id":334,"type":245,"label":257,"file":157,"line":332},"n9",{"id":336,"type":201,"label":226,"file":157,"line":260,"wp_function":227},"n10",{"id":338,"type":196,"label":241,"file":157,"line":242},"n11",{"id":340,"type":245,"label":246,"file":157,"line":242},"n12",{"id":342,"type":201,"label":249,"file":157,"line":250,"wp_function":251},"n13",{"id":344,"type":196,"label":241,"file":157,"line":345},"n14",2002,{"id":347,"type":245,"label":348,"file":157,"line":345},"n15","→ js_minify()",{"id":350,"type":201,"label":226,"file":157,"line":351,"wp_function":227},"n16",1860,[353,354,355,356,357,358,359,360,361,362],{"from":195,"to":200,"sanitized":207},{"from":240,"to":244,"sanitized":207},{"from":248,"to":253,"sanitized":207},{"from":256,"to":259,"sanitized":207},{"from":331,"to":334,"sanitized":207},{"from":334,"to":336,"sanitized":207},{"from":338,"to":340,"sanitized":207},{"from":340,"to":342,"sanitized":207},{"from":344,"to":347,"sanitized":207},{"from":347,"to":350,"sanitized":207},31,"high",{"summary":366,"deductions":367},"The \"css-js-booster\" plugin, in version 0.6.2.179, presents a mixed security profile.  On the positive side, it demonstrates good practices by not having any known CVEs, a zero-attack surface through common entry points like AJAX, REST API, and shortcodes, and all SQL queries are prepared. This indicates a deliberate effort to avoid common and exploitable vulnerabilities.\n\nHowever, the static analysis reveals significant concerns. The presence of the `unserialize` function is a major red flag, as it can lead to Remote Code Execution if used with untrusted input. Compounding this, the taint analysis shows a critical high severity flow with unsanitized paths, suggesting that data processed by the plugin could potentially be manipulated to exploit the `unserialize` function or other vulnerabilities. The high percentage of file operations (74) also raises concerns about potential insecure file handling, especially in conjunction with unsanitized paths.\n\nWhile the plugin has no recorded vulnerability history, this does not guarantee future security. The identified code signals, particularly `unserialize` and the high-severity taint flow, represent substantial risks. The lack of nonce and capability checks on the identified entry points further exacerbates these risks, though in this specific analysis, the attack surface for these checks is zero. The conclusion is that while the plugin avoids historical and common web vulnerabilities, the presence of dangerous functions and unsanitized data flows creates a significant and immediate risk that requires urgent attention.",[368,371,374,376],{"reason":369,"points":370},"Dangerous function 'unserialize' detected",15,{"reason":372,"points":373},"High severity taint flow with unsanitized paths",12,{"reason":375,"points":132},"Large number of file operations (potential risk)",{"reason":377,"points":378},"0% of outputs properly escaped (based on 39 outputs)",8,"2026-03-16T22:56:24.247Z",{"wat":381,"direct":387},{"assetPaths":382,"generatorPatterns":384,"scriptPaths":385,"versionParams":386},[383],"\u002Fwp-content\u002Fplugins\u002Fcss-js-booster\u002Fbooster_cache\u002F",[],[],[],{"cssClasses":388,"htmlComments":389,"htmlAttributes":392,"restEndpoints":393,"jsGlobals":394,"shortcodeOutput":395},[],[390,391],"\u003C!-- Moved to file by Booster","\u003C!-- Failed to move inline-style to file",[],[],[],[],{"error":397,"url":398,"statusCode":399,"statusMessage":400,"message":400},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcss-js-booster\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":13,"versions":402},[]]