[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYtc0xQ663_twV1_bCQ8WHo5fHjLNNWKQO1-npoVW0Xo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":39,"fingerprints":90},"delete-multiple-themes","Delete Multiple Themes","1.0.7","HappyPlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fhappyplugins\u002F","\u003Cp>Many times you want to delete multiple themes at once without using your ftp program (which may take a lot of time depending on the FTP software)\u003C\u002Fp>\n\u003Cp>The “Delete Multiple Themes” plugin will enable you to do just that.\u003C\u002Fp>\n\u003Cp>You will be able to:\u003C\u002Fp>\n\u003Cp>Choose the themes you want to delete\u003Cbr \u002F>\nYou will be able see which themes has child themes installed\u003Cbr \u002F>\nAs a security measure unnecessary themes may cause security holes.\u003C\u002Fp>\n\u003Cp>If you want to improve your website security  delete all the themes that you are not using and now you can do it quickly and easily using the “Delete Multiple Themes” plugin.\u003C\u002Fp>\n\u003Cp>This Plugins is maintained by \u003Ca href=\"http:\u002F\u002Fhappyplugins.com\" rel=\"nofollow ugc\">HappyPlugins\u003C\u002Fa> your can find more plugins and coding tutorials our our websites.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fdiscoverwp.co\" rel=\"nofollow ugc\">DiscoverWP.co\u003C\u002Fa> – Find & Compare WordPress plugins\u003C\u002Fp>\n","Enable the administrator to delete multiple themes in one click.",1000,25376,100,10,"2015-03-28T07:34:00.000Z","4.1.42","3.0.1","",[20,21,22],"multiple-themes-delete","themes-delete","themes-managment","http:\u002F\u002Fhappyplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdelete-multiple-themes.1.0.7.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"happyplugins",6,2060,88,30,86,"2026-04-04T14:54:17.068Z",[],{"attackSurface":40,"codeSignals":56,"taintFlows":80,"riskAssessment":81,"analyzedAt":89},{"hooks":41,"ajaxHandlers":52,"restRoutes":53,"shortcodes":54,"cronEvents":55,"entryPointCount":26,"unprotectedCount":26},[42,48],{"type":43,"name":44,"callback":45,"file":46,"line":47},"action","admin_menu","add_menu","delete-multiple-themes.php",20,{"type":43,"name":49,"callback":50,"file":46,"line":51},"admin_init","delete_themes",21,[],[],[],[],{"dangerousFunctions":57,"sqlUsage":58,"outputEscaping":60,"fileOperations":26,"externalRequests":26,"nonceChecks":78,"capabilityChecks":26,"bundledLibraries":79},[],{"prepared":26,"raw":26,"locations":59},[],{"escaped":26,"rawEcho":61,"locations":62},7,[63,66,67,69,71,73,75],{"file":46,"line":64,"context":65},94,"raw output",{"file":46,"line":13,"context":65},{"file":46,"line":68,"context":65},111,{"file":46,"line":70,"context":65},112,{"file":46,"line":72,"context":65},113,{"file":46,"line":74,"context":65},114,{"file":76,"line":77,"context":65},"templates\\updates_form.php",3,1,[],[],{"summary":82,"deductions":83},"The \"delete-multiple-themes\" plugin exhibits a mixed security posture.  On the positive side, the plugin demonstrates good practices by having zero AJAX handlers, REST API routes, shortcodes, or cron events, significantly limiting its potential attack surface. Furthermore, all detected SQL queries are properly sanitized using prepared statements, and there are no recorded vulnerabilities or CVEs, suggesting a history of responsible development.  However, a critical concern arises from the complete lack of output escaping. With 7 total outputs and 0% properly escaped, this opens the door to potential cross-site scripting (XSS) vulnerabilities.  While taint analysis found no issues, this is likely due to the limited flows analyzed.  The presence of a nonce check indicates some awareness of security, but the absence of capability checks on any entry points, combined with unescaped output, presents a significant risk.",[84,87],{"reason":85,"points":86},"Output escaping is completely missing",15,{"reason":88,"points":14},"No capability checks on entry points","2026-03-16T18:50:11.874Z",{"wat":91,"direct":97},{"assetPaths":92,"generatorPatterns":94,"scriptPaths":95,"versionParams":96},[93],"\u002Fwp-content\u002Fplugins\u002Fdelete-multiple-themes\u002Ftemplates\u002Fupdates_form.php",[],[],[],{"cssClasses":98,"htmlComments":100,"htmlAttributes":101,"restEndpoints":104,"jsGlobals":105,"shortcodeOutput":106},[99],"the-list",[],[102,103],"name=\"theme[]\"","value=''",[],[],[]]