[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$freCZxnYiEDJq_nM63KiysiR8bND5Ne1YD5SoigZbbwQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":146,"fingerprints":303},"db-viewer","DB Viewer","1.0.0","GrandPlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrandplugins\u002F","\u003Cp>\u003Cstrong>DB Viewer\u003C\u002Fstrong> lets you securely view your WordPress database directly from your website’s dashboard — no need to log in to your hosting account or use phpMyAdmin. Perfect for quick inspections and monitoring.\u003C\u002Fp>\n\u003Cp>With the free version, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Browse and view any database table  \u003C\u002Fli>\n\u003Cli>Inspect table structures and content inside WordPress  \u003C\u002Fli>\n\u003Cli>Safely explore your data without leaving the dashboard  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>🔥 \u003Cstrong>Upgrade to \u003Ca href=\"https:\u002F\u002Fgrandplugins.com\u002Fproduct\u002Fwp-db-controller\u002F\" rel=\"nofollow ugc\">DB Controller PRO\u003C\u002Fa>\u003C\u002Fstrong> to unlock powerful database management features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Empty any table with a single click  \u003C\u002Fli>\n\u003Cli>Delete tables you no longer need  \u003C\u002Fli>\n\u003Cli>Rename tables instantly  \u003C\u002Fli>\n\u003Cli>Search for any value across all columns  \u003C\u002Fli>\n\u003Cli>Add new rows directly from the dashboard  \u003C\u002Fli>\n\u003Cli>Edit any existing row inline  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This makes the PRO version a complete lightweight alternative to phpMyAdmin, built directly into WordPress.\u003C\u002Fp>\n","View your WordPress database directly inside your Dashboard. No need for phpMyAdmin or hosting panels.",80,929,0,"2025-08-17T16:10:00.000Z","6.8.5","5.3.0","7.0.0",[19,20,21,22,23],"database","phpmyadmin","sql","tables","view","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdb-viewer.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"grandplugins",20,9290,93,160,74,"2026-04-04T05:25:01.807Z",[39,63,82,106,126],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":24,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":13,"last_vuln_date":62,"fetched_at":28},"wp-phpmyadmin-extension","WP phpMyAdmin","5.2.2.01","Puvox Software","https:\u002F\u002Fprofiles.wordpress.org\u002Fpuvoxsoftware\u002F","\u003Ch4>[ ✅ 𝐒𝐄𝐂𝐔𝐑𝐄 𝐏𝐋𝐔𝐆𝐈𝐍𝐒 𝐵𝓎 𝒫𝓊𝓋𝑜𝓍 ] :\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>• Checked against vulnerability holes.\u003Cbr \u002F>\n  • No extra load\u002Fslowness to site.\u003Cbr \u002F>\n  • Does not collect & share private data.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Plugin Description\u003C\u002Fh4>\n\u003Cp>The famous database browser & manager (for MySQL & MariaDB) – use it inside WordPress Dashboard without an extra hassle.\u003C\u002Fp>\n\u003Ch3>NOTES\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>This plugin has been started from 2018 year, and we have no connections to the old age’s vulnerable wp-phpMyAdmin plugin (published elsewhere by 3rd party scammers) . So, this current plugin is just a wrapper for official phpMyAdmin release and depends itself on the realiability & security of the \u003Ccode>phpMyAdmin\u003C\u002Fcode> itself. Also, initially we wanted to put PhpMyAdmin released \u003Ccode>.zip\u003C\u002Fcode> file untouched (to ensure the checksums are same) and unpack that \u003Ccode>.zip\u003C\u002Fcode> directly upon plugin’s installation, but unfortunately WordPress Plugin Team didn’t allow to put \u003Ccode>.zip\u003C\u002Fcode> file in the package (saying that SVN doesn’t like working with \u003Ccode>.zip\u003C\u002Fcode> files). Thus, we had to submit extracted PMA (but still original & untouched) to the repository.\u003C\u002Fli>\n\u003Cli>PHP >= 7.2.5 is required to for \u003Cstrong>phpMyAdmin\u003C\u002Fstrong> latest version (otherwise you will have option to use older version of PMA, which is not encouraged to be used).\u003C\u002Fli>\n\u003Cli>For the reason to make it compact, some unnecessary files (language files, OpenLayer\u002FGIS map lib, extra themes, etc) are removed.\u003C\u002Fli>\n\u003Cli>It’s recommended, that you enable the plugin only while you need to use PhpMyAdmin. Otherwise, for longer periods, you can deactivate plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Liability\u003C\u002Fh4>\n\u003Cp>We are not developers of PhpMyAdmin itself, neither affiliated with them. We just made this plugin as a wrapper (container) of official PhpMyAdmin, to make it possible to be installed as a WP plugin. However, we don’t monitor PhpMyAdmin package’s source code itself. We take no responsibility about this plugin. Use it at your own responsibility (However, as it’s also visible in stats, thousands of users are using this extendion and only few people have complained about errors).\u003C\u002Fp>\n\u003Ch4>Available Options\u003C\u002Fh4>\n\u003Cp>See all available options and their description on plugin’s settings page.\u003C\u002Fp>\n","[ ✅ 𝐒𝐄𝐂𝐔𝐑𝐄 𝐏𝐋𝐔𝐆𝐈𝐍𝐒 𝐵𝓎 𝒫𝓊𝓋𝑜𝓍 ] phpMyAdmin -  Database Browser & Manager (for MySQL & MariaDB)",50000,1055306,92,58,"2025-10-17T18:58:00.000Z","6.7.5","6.0",[19,55,56,57,20],"manager","mysql","phpminiadmin","https:\u002F\u002Fpuvox.software\u002Fsoftware\u002Fwordpress-plugins\u002F?plugin=wp-phpmyadmin-extension","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-phpmyadmin-extension.zip",99,2,"2022-08-01 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":32,"downloaded":71,"rating":26,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":24,"tags":76,"homepage":79,"download_link":80,"security_score":81,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"create-db-tables","Create DB Tables","1.2.1","JPPreusDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fjppreus\u002F","\u003Cp>Extremely simple way for developers to create new tables inside the existing WordPress database. Forget the annoying process of opening phpMyAdmin, logging in, then typing out the full SQL command for your new table. With this plugin, everything you need to do is located on one simple to use page, and you don’t have to type out any SQL queries! This plugin also allows you to manage your tables with view and delete functionality for any table you create. It is perfect for the developer who wants to quickly and easily add and manage new database tables in a quick and effective manner.\u003C\u002Fp>\n\u003Ch4>Future Updates\u003C\u002Fh4>\n\u003Cp>Updates in the near future will include features for database administration. It is also planned to add functionaily to modify created tables and a table row reference for the tables previously created. If there are any updates you would like to see, please send and email with your comments to [jpreusdev@gmail.com](mailto:jpreusdev@gmail.com “Send me your comments”).\u003C\u002Fp>\n","Extremely simple way for developers to create and manage new database tables in a quick and efective manner.",5518,1,"2016-05-28T01:54:00.000Z","4.5.33","3.0.1",[19,21,77,22,78],"table","wpdb","http:\u002F\u002Fjppreusdev.com\u002Fdevelopment\u002Fwordpress-plugins\u002Fcreate-db-tables\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcreate-db-tables.1.2.1.zip",85,{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":97,"tags":98,"homepage":101,"download_link":102,"security_score":103,"vuln_count":104,"unpatched_count":13,"last_vuln_date":105,"fetched_at":28},"wp-db-backup","Database Backup for WordPress","2.5.2","WP Engine","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpengine\u002F","\u003Cp>Backup your database instantly, send the backup via email, or schedule backups to run automatically.\u003C\u002Fp>\n\u003Cp>Database Backup for WordPress allows you to quickly back up your core WordPress database tables, and either download the backup as a gzipped file, or send it via email to an address you choose.\u003C\u002Fp>\n\u003Cp>By default, the plugin will always back up all the core WordPress database tables. However, you may also selectively back up any custom tables that might be created by other plugins\u003C\u002Fp>\n\u003Cp>Additional options include the ability to exclude spam comments from the comments table, or post revisions from the posts table, saving you space and bandwidth.\u003C\u002Fp>\n\u003Cp>You can also enable scheduled backups to run automatically at set intervals, and configure the email address to send the scheduled backups to.\u003C\u002Fp>\n\u003Ch4>Backup Before You Mess Up\u003C\u002Fh4>\n\u003Cp>Backups are the one thing you don’t think of until you need them. You might have the best web host, the most secure server, and a tried and tested process for running plugin, theme, or core updates. But all it takes is one little thing to go wrong, and you lose your entire website.\u003C\u002Fp>\n\u003Cp>You need a reliable and automated solution which backs up your WordPress data and sends it to an off-site location. Database Backup for WordPress is that solution.\u003C\u002Fp>\n\u003Ch4>Why You Should Back Up Your Website\u003C\u002Fh4>\n\u003Cp>As much planning as you do, any CMS like WordPress that stores its data in a database is vulnerable. Hardware, software, and security hiccups are rare, but they do happen. Even the best enterprise systems in the world have multiple levels of backup in place.\u003C\u002Fp>\n\u003Cp>Think about the data you store in your WordPress site. Your blog posts since the day you launched the site. Your customers, products, and order history if you run an ecommerce site. Backups are like implementing an insurance policy for your data. With backups, you have a reliable way of restoring that data if anything goes wrong.\u003C\u002Fp>\n\u003Cp>Simple, automated backups save you time and give you peace of mind that you are prepared for the worst case scenario, even if you never need it. Better to have it and not need it, than to not have it and suddenly need it.\u003C\u002Fp>\n\u003Ch4>Scheduled Backups\u003C\u002Fh4>\n\u003Cp>Depending on your needs, you might want to back up your database every few minutes, hourly, daily, weekly, or monthly. You’ll want to automate this process, or it becomes another possible point of failure.\u003C\u002Fp>\n\u003Cp>Scheduled backups give you peace of mind that your data is being backed up as much or as little as you need, without your intervention. By emailing the backups to an email address you choose, you can verify that the backup has run, and store it in a safe location.\u003C\u002Fp>\n\u003Ch3>Translators\u003C\u002Fh3>\n\u003Cp>Thanks to the following people for providing translation files for Database Backup for WordPress:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Abel Cheung\u003C\u002Fli>\n\u003Cli>Alejandro Urrutia\u003C\u002Fli>\n\u003Cli>Alexander Kanakaris\u003C\u002Fli>\n\u003Cli>Angelo Andrea Iorio\u003C\u002Fli>\n\u003Cli>Calle\u003C\u002Fli>\n\u003Cli>Daniel Erb\u003C\u002Fli>\n\u003Cli>Daniel Villoldo\u003C\u002Fli>\n\u003Cli>Diego Pierotto\u003C\u002Fli>\n\u003Cli>Eilif Nordseth\u003C\u002Fli>\n\u003Cli>Eric Lassauge\u003C\u002Fli>\n\u003Cli>Friedlich\u003C\u002Fli>\n\u003Cli>Gilles Wittezaele\u003C\u002Fli>\n\u003Cli>Icemanpro\u003C\u002Fli>\n\u003Cli>İzzet Emre Erkan\u003C\u002Fli>\n\u003Cli>Jong-In Kim\u003C\u002Fli>\n\u003Cli>Kaveh\u003C\u002Fli>\n\u003Cli>Kessia Pinheiro\u003C\u002Fli>\n\u003Cli>Kuratkoo\u003C\u002Fli>\n\u003Cli>Majed Alotaibi\u003C\u002Fli>\n\u003Cli>Michał Gołuński\u003C\u002Fli>\n\u003Cli>Michele Spagnuolo\u003C\u002Fli>\n\u003Cli>Paopao\u003C\u002Fli>\n\u003Cli>Philippe Galliard\u003C\u002Fli>\n\u003Cli>Robert Buj\u003C\u002Fli>\n\u003Cli>Roger\u003C\u002Fli>\n\u003Cli>Rune Gulbrandsøy\u003C\u002Fli>\n\u003Cli>Serge Rauber\u003C\u002Fli>\n\u003Cli>Sergey Biryukov\u003C\u002Fli>\n\u003Cli>Tai\u003C\u002Fli>\n\u003Cli>Timm Severin\u003C\u002Fli>\n\u003Cli>Tzafrir Rehan\u003C\u002Fli>\n\u003Cli>吴曦\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Past Contributors\u003C\u002Fh3>\n\u003Cp>filosofo, skippy, Firas, LaughingLizard, MtDewVirus, Podz, Ringmaster\u003C\u002Fp>\n","Database Backup for WordPress is your one-stop database backup solution for WordPress.",70000,3731269,90,66,"2022-05-26T11:49:00.000Z","6.0.11","3.6.0","5.3",[99,19,100,56],"backup","database-backup","https:\u002F\u002Fgithub.com\u002Fdeliciousbrains\u002Fwp-db-backup","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-db-backup.2.5.2.zip",82,4,"2022-05-11 00:00:00",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":114,"downloaded":115,"rating":26,"num_ratings":116,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":120,"tags":121,"homepage":24,"download_link":124,"security_score":26,"vuln_count":72,"unpatched_count":13,"last_vuln_date":125,"fetched_at":28},"pexlechris-adminer","Database Manager – WP Adminer","4.3.3","Pexle Chris","https:\u002F\u002Fprofiles.wordpress.org\u002Fpexlechris\u002F","\u003Cp>The best database management tool for the best CMS.\u003C\u002Fp>\n\u003Cp>This plugin uses the tool \u003Ca href=\"https:\u002F\u002Fwww.adminer.org\u002F\" rel=\"nofollow ugc\">Adminer\u003C\u002Fa>, in order to give database access to administrators directly from the Dashboard.\u003Cbr \u002F>\nAs simple as the previous sentence!\u003C\u002Fp>\n\u003Cp>I am not the author of Adminer. I am only the author who does the WordPress integration with Adminer.\u003Cbr \u002F>\nAuthor of Adminer is Jakub Vrana and you can donate him from \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fdonate\u002F?item_name=Donation+to+Adminer&cmd=_donations&business=jakub%40vrana.cz\" rel=\"nofollow ugc\">there\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Compatible also with WordPress Multisite installations\u003C\u002Fp>\n\u003Ch3>WP Adminer access positions\u003C\u002Fh3>\n\u003Cp>You can access the WP Adminer from the below positions:\u003Cbr \u002F>\n1. WP Adminer URL in the Admin Bar\u003Cbr \u002F>\n2. WP Adminer Tools Page (Dashboard > Tools > WP Adminer)\u003C\u002Fp>\n\u003Ch3>Explore my other plugins\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.pexlechris.dev\u002Flibrary-viewer\u002Fwp-wpadminer\" rel=\"nofollow ugc\">Library Viewer\u003C\u002Fa>: With Library Viewer, you can display the containing files and the containing folders of a “specific folder” of your (FTP) server to your users in the front-end.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgift-wrapping-for-woocommerce\" rel=\"ugc\">Gift Wrapping for WooCommerce\u003C\u002Fa>: This plugin allows customers to select a gift wrapper for their orders, via a checkbox in the checkout page.\u003C\u002Fli>\n\u003C\u002Ful>\n","Manage the database from your WordPress Dashboard using Adminer.",20000,296374,27,"2026-03-13T07:59:00.000Z","6.9.4","4.7.0","7.0",[122,19,123,56,21],"adminer","mariadb","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpexlechris-adminer.4.3.3.zip","2022-08-16 00:00:00",{"slug":127,"name":128,"version":129,"author":130,"author_profile":131,"description":132,"short_description":133,"active_installs":134,"downloaded":135,"rating":26,"num_ratings":136,"last_updated":137,"tested_up_to":118,"requires_at_least":53,"requires_php":138,"tags":139,"homepage":143,"download_link":144,"security_score":60,"vuln_count":61,"unpatched_count":13,"last_vuln_date":145,"fetched_at":28},"database-cleaner","Database Cleaner","1.3.4","Jordy Meow","https:\u002F\u002Fprofiles.wordpress.org\u002Ftigroumeow\u002F","\u003Cp>Database Cleaner is packed with features to handle big databases, built from years of experience with similar plugins. It works great with the latest WP and PHP versions and has an easy-to-use interface. For large tasks, it uses asynchronous requests to avoid errors and timeouts, ensuring smooth processing. Check it out at \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fdatabase-cleaner\u002F\" rel=\"nofollow ugc\">Database Cleaner\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>IMPORTANT\u003C\u002Fstrong>: Always back up your data before using this or any plugin! While Database Cleaner is reliable, it’s always best to be safe. Better safe than sorry! 🙂\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easy Mode & Expert Mode: Whether you’re a beginner or a pro, there’s a mode for you. Easy mode simplifies everything, while Expert mode gives you full control.\u003C\u002Fli>\n\u003Cli>One-Click Cleaning: Save time with automatic cleaning. Just one click, and your database is tidy and optimized.\u003C\u002Fli>\n\u003Cli>Smart Data Management: Understand how plugins or themes use your data. The Pro Version offers even deeper insights.\u003C\u002Fli>\n\u003Cli>Detailed Statistics: Keep an eye on your database size with comprehensive stats and history tracking.\u003C\u002Fli>\n\u003Cli>Effortless Data Browsing: Explore and categorize your data with ease. Find what you need without any hassle.\u003C\u002Fli>\n\u003Cli>Big Database Handling: Perfect for large databases, it uses smooth, error-free asynchronous requests to manage heavy tasks.\u003C\u002Fli>\n\u003Cli>In-Depth Analysis: Specialized tools to analyze and monitor your data across Post Types, Tables, Options, and Cron Jobs.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why another Database Cleaner?\u003C\u002Fh3>\n\u003Cp>While other database cleaners are available, my experience with them revealed areas for improvement, like outdated UIs, incomplete features, and limited data analysis capabilities. Most notably, they struggled with large databases. Motivated by these challenges, I developed my own solution. Now, I’m dedicated to refining it to suit all types of WordPress and databases, aiming to make it the best for everyone.\u003C\u002Fp>\n\u003Cp>I’m open to feedback and would be thrilled to discuss how Database Cleaner can better meet your needs. Let’s chat and enhance this tool together!\u003C\u002Fp>\n","User-friendly tool to clean and optimize databases. Efficiently manages large databases, simplifying repair and ensuring peak performance.",10000,461320,148,"2026-02-25T08:58:00.000Z","7.4",[140,141,19,142,21],"clean","cleaner","optimize","https:\u002F\u002Fmeowapps.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdatabase-cleaner.1.3.4.zip","2024-06-06 00:00:00",{"attackSurface":147,"codeSignals":189,"taintFlows":250,"riskAssessment":295,"analyzedAt":302},{"hooks":148,"ajaxHandlers":185,"restRoutes":186,"shortcodes":187,"cronEvents":188,"entryPointCount":13,"unprotectedCount":13},[149,156,162,166,171,175,177,180,182],{"type":150,"name":151,"callback":152,"priority":153,"file":154,"line":155},"action","plugins_loaded","init",10,"gpls-wpdbclr-db-controller.php",245,{"type":150,"name":157,"callback":158,"priority":159,"file":160,"line":161},"admin_enqueue_scripts","admin_scripts",1000,"includes\\Core\\Core.php",191,{"type":150,"name":152,"callback":163,"priority":159,"file":164,"line":165},"start_setup","includes\\Pages\\PagesBase\\AdminPage.php",150,{"type":167,"name":168,"callback":169,"priority":26,"file":164,"line":170},"filter","woocommerce_settings_tabs_array","woo_register_settings_tab",222,{"type":150,"name":172,"callback":173,"priority":26,"file":164,"line":174},"network_admin_menu","add_page",298,{"type":150,"name":172,"callback":173,"priority":26,"file":164,"line":176},300,{"type":150,"name":178,"callback":173,"priority":26,"file":164,"line":179},"admin_menu",301,{"type":150,"name":178,"callback":173,"priority":26,"file":164,"line":181},303,{"type":150,"name":157,"callback":183,"file":164,"line":184},"assets",306,[],[],[],[],{"dangerousFunctions":190,"sqlUsage":191,"outputEscaping":207,"fileOperations":13,"externalRequests":13,"nonceChecks":245,"capabilityChecks":61,"bundledLibraries":246},[],{"prepared":32,"raw":104,"locations":192},[193,197,199,203],{"file":194,"line":195,"context":196},"includes\\DBController.php",34,"$wpdb->get_results() with variable interpolation",{"file":194,"line":198,"context":196},57,{"file":200,"line":201,"context":202},"includes\\DBQueries.php",145,"$wpdb->query() with variable interpolation",{"file":204,"line":205,"context":206},"includes\\DBTable.php",124,"$wpdb->get_var() with variable interpolation",{"escaped":208,"rawEcho":209,"locations":210},341,15,[211,214,216,218,220,222,224,227,229,231,234,236,239,241,243],{"file":160,"line":212,"context":213},299,"raw output",{"file":160,"line":215,"context":213},343,{"file":160,"line":217,"context":213},396,{"file":160,"line":219,"context":213},402,{"file":160,"line":221,"context":213},407,{"file":223,"line":32,"context":213},"includes\\DBEditor\\DBType\\DateTimeDBType.php",{"file":225,"line":226,"context":213},"includes\\DBEditor\\DBType\\NumericDBType.php",19,{"file":228,"line":32,"context":213},"includes\\DBEditor\\DBType\\StringDBType.php",{"file":164,"line":230,"context":213},560,{"file":232,"line":233,"context":213},"includes\\Utils\\GeneralUtilsTrait.php",21,{"file":232,"line":235,"context":213},54,{"file":237,"line":238,"context":213},"includes\\Utils\\NoticeUtilsTrait.php",272,{"file":237,"line":240,"context":213},322,{"file":237,"line":242,"context":213},373,{"file":237,"line":244,"context":213},426,3,[247],{"name":248,"version":27,"knownCves":249},"Select2",[],[251,276],{"entryPoint":252,"graph":253,"unsanitizedCount":61,"severity":275},"ajax_show_unserialized (includes\\AJAXs\\TableAJAX.php:119)",{"nodes":254,"edges":271},[255,261,265],{"id":256,"type":257,"label":258,"file":259,"line":260},"n0","source","$_POST (x2)","includes\\AJAXs\\TableAJAX.php",162,{"id":262,"type":263,"label":264,"file":259,"line":260},"n1","transform","→ unserialize_serialize_display()",{"id":266,"type":267,"label":268,"file":259,"line":269,"wp_function":270},"n2","sink","echo() [XSS]",181,"echo",[272,274],{"from":256,"to":262,"sanitized":273},false,{"from":262,"to":266,"sanitized":273},"medium",{"entryPoint":277,"graph":278,"unsanitizedCount":61,"severity":275},"\u003CTableAJAX> (includes\\AJAXs\\TableAJAX.php:0)",{"nodes":279,"edges":290},[280,283,285,286,288],{"id":256,"type":257,"label":281,"file":259,"line":282},"$_POST",122,{"id":262,"type":267,"label":268,"file":259,"line":284,"wp_function":270},186,{"id":266,"type":257,"label":258,"file":259,"line":260},{"id":287,"type":263,"label":264,"file":259,"line":260},"n3",{"id":289,"type":267,"label":268,"file":259,"line":269,"wp_function":270},"n4",[291,293,294],{"from":256,"to":262,"sanitized":292},true,{"from":266,"to":287,"sanitized":273},{"from":287,"to":289,"sanitized":273},{"summary":296,"deductions":297},"The plugin 'db-viewer' v1.0.0 demonstrates a generally good security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the attack surface. The code also exhibits strong output escaping practices, with 96% of outputs properly escaped, and a high percentage of SQL queries utilizing prepared statements, which are crucial for preventing SQL injection. The presence of nonce checks and capability checks, while limited in number, indicates some awareness of security best practices.\n\nDespite these strengths, there are a couple of areas that warrant attention. The taint analysis revealed two flows with unsanitized paths, even though they were not classified as critical or high severity. This suggests a potential for path traversal vulnerabilities if these flows are exposed to user-controlled input. Additionally, the presence of 'Select2' as a bundled library could be a concern if it's an outdated version, as bundled libraries can introduce vulnerabilities if not maintained. The plugin's history of zero known CVEs is highly positive and suggests a history of secure development, but it's important to remember that past security does not guarantee future security.\n\nIn conclusion, 'db-viewer' v1.0.0 appears to be a relatively secure plugin with a minimal attack surface and good coding practices in place, particularly concerning output escaping and SQL query sanitization. The primary areas of concern are the two unsanitized path flows identified in the taint analysis and the potential for an outdated bundled library. Addressing these specific points would further enhance the plugin's security.",[298,300],{"reason":299,"points":153},"Unsanitized paths in taint flows",{"reason":301,"points":245},"Bundled library (Select2) - potential for outdated version","2026-03-16T21:27:03.245Z",{"wat":304,"direct":313},{"assetPaths":305,"generatorPatterns":308,"scriptPaths":309,"versionParams":310},[306,307],"\u002Fwp-content\u002Fplugins\u002Fdb-viewer\u002Fassets\u002Fcss\u002Fbackend.css","\u002Fwp-content\u002Fplugins\u002Fdb-viewer\u002Fassets\u002Fjs\u002Fbackend.js",[],[307],[311,312],"db-viewer\u002Fassets\u002Fcss\u002Fbackend.css?ver=","db-viewer\u002Fassets\u002Fjs\u002Fbackend.js?ver=",{"cssClasses":314,"htmlComments":317,"htmlAttributes":318,"restEndpoints":320,"jsGlobals":325,"shortcodeOutput":327},[315,316],"gpls-wpdbclr-wrapper","gpls-wpdbclr-content",[],[319],"data-gpls-wpdbclr-id",[321,322,323,324],"\u002Fwp-json\u002Fgpls-wpdbclr\u002Fv1\u002Fsettings","\u002Fwp-json\u002Fgpls-wpdbclr\u002Fv1\u002Ftables","\u002Fwp-json\u002Fgpls-wpdbclr\u002Fv1\u002Ftable-data","\u002Fwp-json\u002Fgpls-wpdbclr\u002Fv1\u002Fquery",[326],"gpls_wpdbclr_localize_data",[328],"[db_viewer]"]