[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f29bpfffbEdy1-oH3RIHpHkDW9zgPeo0viE2Qpgdfqr8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":140,"fingerprints":174},"database-performance-monitor","Database Performance Monitor","1.1","Brad Parbs","https:\u002F\u002Fprofiles.wordpress.org\u002Fbradparbs\u002F","\u003Cp>Outputs some database query information on page load for logged in admins. Output is located as an html comment in the footer and also in the console.\u003C\u002Fp>\n","Outputs some database query information on page load for logged in admins. Output is located as an html comment in the footer and also in the console.",10,4125,46,3,"2013-08-26T04:01:00.000Z","3.6.1","3.2","",[20,21,22,23,24],"admin","database","debug","performance","queries","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdatabase-performance-monitor.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"bradparbs",16,3240,88,30,86,"2026-04-04T12:26:23.279Z",[40,64,85,106,122],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":59,"download_link":60,"security_score":61,"vuln_count":62,"unpatched_count":27,"last_vuln_date":63,"fetched_at":29},"hackrepair-plugin-archiver","The Hack Repair Guy's Plugin Archiver","3.1.1","The Hack Repair Guy","https:\u002F\u002Fprofiles.wordpress.org\u002Ftvcnet\u002F","\u003Cp>Archive any plugin with one click. Archived plugins are hidden from your Plugins list and safely moved out of wp-content\u002Fplugins into a dedicated archive directory for easy restore later. Ideal for preventing accidental re-activation, testing different plugin sets, and keeping occasional-use tools out of sight until needed.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fi_Gn22bWLVs?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One‑click Archive link on the Plugins screen\u003C\u002Fli>\n\u003Cli>Bulk Archive \u002F Unarchive \u002F Delete actions\u003C\u002Fli>\n\u003Cli>Optional auto‑deactivate before archiving (recommended)\u003C\u002Fli>\n\u003Cli>Manage multiple archive directories and switch between them\u003C\u002Fli>\n\u003Cli>“Unarchive All” button on the Archived Plugins tab\u003C\u002Fli>\n\u003Cli>Non‑destructive: archiving does not remove a plugin’s settings\u002Fdata\u003C\u002Fli>\n\u003Cli>Uses the built‑in WordPress Filesystem API with capability and nonce checks\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How it works\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>When you Archive a plugin, its folder is moved from wp-content\u002Fplugins to your chosen archive directory (e.g., wp-content\u002Fplugins-archive-xxxxxx).\u003C\u002Fli>\n\u003Cli>Archived plugins are removed from the Plugins list, so they can’t be accidentally activated.\u003C\u002Fli>\n\u003Cli>You may switch the active archive directory or create new ones in Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Plugin Archiver.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Common use cases\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Maintain a “toolbox” of favorite utilities you don’t need to see every day\u003C\u002Fli>\n\u003Cli>Quarantine buggy or compromised plugins to avoid accidental activation\u003C\u002Fli>\n\u003Cli>Test different plugin stacks by pulling sets into and out of the archive\u003C\u002Fli>\n\u003Cli>Share management with others while reducing “oops, I clicked Activate” incidents\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable Plugins Without Deleting — Archive and Restore in One Click",400,8390,100,11,"2025-09-11T16:27:00.000Z","6.8.5","6.6","7.4",[20,57,21,23,58],"backup","security","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fhackrepair-plugin-archiver\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhackrepair-plugin-archiver.3.1.1.zip",97,2,"2025-09-16 00:00:00",{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":27,"num_ratings":27,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":18,"tags":77,"homepage":83,"download_link":84,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"admin-bar-queries","Admin Bar Queries","0.5.21","carmelosantana","https:\u002F\u002Fprofiles.wordpress.org\u002Fcarmelosantana\u002F","\u003Cp>Adds MySQL queries, rendering time (in seconds), and CPU load to your admin bar. If installed on a multi-site installation, output is restricted to super admins.\u003C\u002Fp>\n","MySQL queries and load details added to your admin bar.",20,3586,"2016-12-09T02:21:00.000Z","4.7.32","3.1",[78,79,80,81,82],"adminbar","debugging","mysql","mysql-queries","script-timer","http:\u002F\u002Fcarmelosantana.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-bar-queries.zip",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":11,"downloaded":93,"rating":27,"num_ratings":27,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":18,"tags":97,"homepage":104,"download_link":105,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"admins-debug-tool","Admin's Debug Tool","0.1","pantsonhead","https:\u002F\u002Fprofiles.wordpress.org\u002Fpantsonhead\u002F","\u003Cp>Admin’s Debug Tool allows administrators to analyze page execution without executing\u002Fdisplaying for non-admin users.\u003Cbr \u002F>\nThis can be useful when trying to track slow queries or badly performing plugins or widgets.\u003Cbr \u002F>\nThe admin-only nature of this plugin can also be useful when trying to track issues that only occur on production servers.\u003C\u002Fp>\n","Admin-only tool for checking execution times and error output of current theme\u002Fplugins",2766,"2015-08-08T02:00:00.000Z","4.2.39","3.0",[20,22,98,99,100,24,101,102,103],"execution","hooks","monitor","timer","widget","wp_debug","http:\u002F\u002Fhttp:\u002F\u002Fmeasurablewins.blogspot.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmins-debug-tool.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":11,"downloaded":114,"rating":27,"num_ratings":27,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":18,"tags":118,"homepage":120,"download_link":121,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"latency-tracker","Latency Tracker","2.2","sdkester","https:\u002F\u002Fprofiles.wordpress.org\u002Fsdkester\u002F","\u003Cp>The Latency Tracker plugin counts the number of database calls and speed of your site, tracks it over time, and gives you some statistics about the performance of your site.\u003C\u002Fp>\n","Keeps track of the queries, loading time, and memory usage of your Wordpress site.",4274,"2010-08-01T00:08:00.000Z","3.0.5","2.8",[20,21,23,119],"tracking","http:\u002F\u002Fskfox.com\u002F2008\u002F10\u002F09\u002Flatency-tracker-phpmysql-tracking-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flatency-tracker.2.2.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":11,"downloaded":130,"rating":131,"num_ratings":62,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":18,"tags":135,"homepage":138,"download_link":139,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"simple-debug","Simple Debug","1.5","ChrisHurst","https:\u002F\u002Fprofiles.wordpress.org\u002Fchrishurst\u002F","\u003Cp>Simple Debug Plugin for WordPress analyzes the performance of your WordPress website and shows you the slowest performing functions.\u003Cbr \u002F>\nAlso has the ability to display other useful information such as error log, PHP.ini variables, and DB performance varbailes.\u003Cbr \u002F>\nMySQL Database Optimization tool is also included.\u003Cbr \u002F>\nYou can also enable and view the debug.log with no editing of wp-config.php file necessary!\u003C\u002Fp>\n\u003Cp>Developer Website: http:\u002F\u002FMyWebsiteAdvisor.com\u002F\u003C\u002Fp>\n\u003Cp>Plugin Page: http:\u002F\u002FMyWebsiteAdvisor.com\u002Ftools\u002Fwordpress-plugins\u002Fsimple-debug\u002F\u003C\u002Fp>\n\u003Cp>Video Tutorial: http:\u002F\u002Fmywebsiteadvisor.com\u002Flearning\u002Fvideo-tutorials\u002Fsimple-debug-tutorial\u002F\u003C\u002Fp>\n\u003Cp>We are looking for testimonials and live examples of our plugins on your website!\u003Cbr \u002F>\nPlease submit your website or testimonial here: http:\u002F\u002FMyWebsiteAdvisor.com\u002Ftestimonials\u002F\u003Cbr \u002F>\nIf we choose your testimonial or website we can link to your site and generate some free traffic for you!\u003C\u002Fp>\n\u003Cp>Requirements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PHP 5.3\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>To-do:\u003C\u002Fp>\n","Analyzes WordPress website performance, helps to locate slow function hooks.",3964,60,"2013-01-11T17:35:00.000Z","3.5.2","2.9",[20,22,23,136,137],"plugin","profiling","http:\u002F\u002FMyWebsiteAdvisor.com\u002Ftools\u002Fwordpress-plugins\u002Fsimple-debug\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-debug.1.5.zip",{"attackSurface":141,"codeSignals":153,"taintFlows":166,"riskAssessment":167,"analyzedAt":173},{"hooks":142,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":27,"unprotectedCount":27},[143],{"type":144,"name":145,"callback":146,"priority":72,"file":147,"line":148},"action","wp_footer","bpdpm_performance","databaseperformance.php",27,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":164,"bundledLibraries":165},[],{"prepared":27,"raw":27,"locations":156},[],{"escaped":27,"rawEcho":62,"locations":158},[159,162],{"file":147,"line":160,"context":161},23,"raw output",{"file":147,"line":163,"context":161},24,1,[],[],{"summary":168,"deductions":169},"The 'database-performance-monitor' plugin version 1.1 exhibits a seemingly strong security posture based on the provided static analysis and vulnerability history. There are no identified CVEs, no known common vulnerability types, and the plugin has no recorded vulnerabilities. The code analysis reveals no dangerous functions, no external HTTP requests, no file operations, and all SQL queries utilize prepared statements.  However, the complete lack of output escaping for the two identified output points is a significant concern. This indicates a potential for cross-site scripting (XSS) vulnerabilities, as user-supplied data or dynamic content displayed by the plugin could be rendered without proper sanitization, allowing attackers to inject malicious scripts.  While the absence of a large attack surface is positive, the identified lack of output escaping, coupled with only one capability check and no nonce checks, suggests a reliance on other security mechanisms or potentially an oversight in the development process that could be exploited.",[170],{"reason":171,"points":172},"Output escaping is not implemented",6,"2026-03-17T00:26:19.985Z",{"wat":175,"direct":181},{"assetPaths":176,"generatorPatterns":178,"scriptPaths":179,"versionParams":180},[177],"\u002Fwp-content\u002Fplugins\u002Fdatabase-performance-monitor\u002Fdatabaseperformance.php",[],[],[],{"cssClasses":182,"htmlComments":183,"htmlAttributes":185,"restEndpoints":186,"jsGlobals":187,"shortcodeOutput":189},[],[184],"\u003C!-- %d database queries in %.3f seconds, using %.2fMB memory -->",[],[],[188],"console.log(\"\u003C?php echo $stat ?>\")",[]]