[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fiuCh4PsBNwMWxAfY5EK8g9XBrkpGsv-rY6P4RgzHz7Y":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":142,"fingerprints":202},"dh-rename-uploaded-files","DH – Rename Uploaded Files","4","Dannie Herdyawan","https:\u002F\u002Fprofiles.wordpress.org\u002Fk0z3y\u002F","\u003Cp>Automatically renames WordPress media uploads with customizable naming patterns for better organization and security.\u003C\u002Fp>\n\u003Cp>from “hello-world.jpg”\u003C\u002Fp>\n\u003Cul>\n\u003Cli>to \u003Cstrong>orlold-whel.jpg\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>or \u003Cstrong>hello-world_orlold-whel.jpg\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>or \u003Cstrong>d6sf8z7mlo5ey4h90nkqcbixgr3wvj.jpg\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Other Plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdh-anti-adblocker\u002F\" rel=\"ugc\">DH – Anti AdBlocker\u003C\u002Fa> – Block the adblocker\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Only affects newly uploaded files.\u003C\u002Fli>\n\u003C\u002Ful>\n","Rename WordPress media uploads on the fly with customizable naming patterns. Secure and lightweight.",0,1906,100,1,"2025-08-18T13:51:00.000Z","6.6.5","6.0","7.4",[20,21,22,23,24],"files","media","rename","security","upload","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdh-rename-uploaded-files\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdh-rename-uploaded-files.4.zip",null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"k0z3y",6,60,90,30,87,"2026-04-04T05:40:36.516Z",[39,59,79,100,124],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":54,"download_link":58,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"clean-image-filenames","Clean Image Filenames","1.5","Upperdog","https:\u002F\u002Fprofiles.wordpress.org\u002Fupperdog\u002F","\u003Cp>This plugin automatically converts language accent characters in filenames when uploading to the media library. Characters are converted into browser and server friendly, non-accent characters.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Converts accent characters to non-accent, latin equivalents in Swedish, Danish, German, and more.\u003C\u002Fli>\n\u003Cli>Removes special characters like exclamation marks, periods, hashtags, and more.\u003C\u002Fli>\n\u003Cli>Lets you choose if you want to convert only image files, or all file types.\u003C\u002Fli>\n\u003Cli>Makes site and server migrations easier thanks to non-accent character filenames.\u003C\u002Fli>\n\u003Cli>Provides filter hook for developers who want to specify which file types to convert.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Examples\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Räksmörgås.jpg \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> raksmorgas.jpg\u003C\u002Fli>\n\u003Cli>Æblegrød_FTW!.gif \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> aeblegrod-ftw.gif\u003C\u002Fli>\n\u003Cli>Château de Ferrières.png \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> chateau-de-ferrieres.png\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Worth noting\u003C\u002Fh3>\n\u003Cp>The plugin only converts filenames when the files are being uploaded. It can not convert existing files.\u003C\u002Fp>\n\u003Ch3>Filter for developers\u003C\u002Fh3>\n\u003Cp>This filter provides developers a way to specify which file types the plugin should convert. This filter overrides the plugin settings on the media settings page. For a complete list of mime types, see \u003Ca href=\"http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FInternet_media_type\" rel=\"nofollow ugc\">Wikipedia\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The following example will convert PDF, JPEG and PNG files only:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>function my_clean_image_filenames_mime_types() {\n    $mime_types = array(\n        'application\u002Fpdf',\n        'image\u002Fjpeg',\n        'image\u002Fpng',\n    );\n    return $mime_types;\n}\nadd_filter( 'clean_image_filenames_mime_types', 'my_clean_image_filenames_mime_types' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","This plugin automatically converts language accent characters to non-accent characters in filenames when uploading to the media library.",30000,335219,92,21,"2026-01-14T09:45:00.000Z","6.9.4","2.9","",[20,56,21,57,24],"images","sanitize","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclean-image-filenames.1.5.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":34,"num_ratings":69,"last_updated":70,"tested_up_to":52,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":77,"download_link":78,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"bulk-media-register","Bulk Media Register","1.41","Katsushi Kawamori","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatsushi-kawamori\u002F","\u003Cp>Bulk register files on the server to the Media Library.\u003C\u002Fp>\n\u003Ch4>Register to media library\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Maintain folder structure.\u003C\u002Fli>\n\u003Cli>This create a thumbnail of the image file.\u003C\u002Fli>\n\u003Cli>This create a metadata(Images, Videos, Audios).\u003C\u002Fli>\n\u003Cli>Change the date\u002Ftime.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Sibling plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmoving-media-library\u002F\" rel=\"ugc\">Moving Media Library\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmedia-from-ftp\u002F\" rel=\"ugc\">Media from FTP\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmedia-from-zip\u002F\" rel=\"ugc\">Media from ZIP\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Note\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>If you want to use a multi-byte file name, use UTF-8. The file name is used as the title during registration, but is sanitized and changed to a different file name.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How it works\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FVa92SMlFDxk?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n","Bulk register files on the server to the Media Library.",8000,122281,22,"2025-11-25T21:42:00.000Z","4.6","8.0",[20,74,75,21,76],"ftp","import","uploads","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbulk-media-register\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbulk-media-register.1.41.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":94,"tags":95,"homepage":97,"download_link":98,"security_score":99,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"custom-upload-dir","Custom Upload Dir","3.4.6","ulfben","https:\u002F\u002Fprofiles.wordpress.org\u002Fulfben\u002F","\u003Cp>WordPress allow you to put uploads in year- and month-based folders. Custom Upload Dir is more flexible. You can construct paths from variables like post title, category, post author, post date \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fcustom-upload-dir\u002Fscreenshots\u002F\" rel=\"ugc\">and many more\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>I created Custom Upload Dir ensure my file system is always mirroring the site structure. This ensures I can always find files manually when needed. It also simplifies backups and platform migrations.\u003C\u002Fp>\n\u003Cp>\u002F\u002F\u003Cem>\u003Ca href=\"http:\u002F\u002Fwww.ulfbenjaminsson.com\" rel=\"nofollow ugc\">Ulf Benjaminsson\u003C\u002Fa>\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch4>Changelog v. 3.4.6 (2020-07-17)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>fixed a null dereference error. (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fwarning-array_key_exists-expects-parameter-2-to-be-array-null-given\u002F\" rel=\"ugc\">thanks, defotoverij\u003C\u002Fa>!)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Changelog v. 3.4.5 (2020-05-05)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>added french translation (thanks, bibi699depreau!)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Changelog v. 3.4.4 (2019-03-24)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Fixed a few PHP warnings\u003C\u002Fli>\n\u003Cli>Removed the %permalink% template as it broke uploads to drafts.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Changelog v. 3.4.3.2 (2019-03-24)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Added support for the Gutenberg editor.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Changelog v. 3.4.2 (2015-03-16)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Added \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-upload-dir\u002Finstallation\u002F\" rel=\"ugc\">filter ‘cud_generate_path’\u003C\u002Fa> so you can easily adjust the path with any variable you want.\u003C\u002Fli>\n\u003Cli>Added %mime_type% to sort files by mime type\u003C\u002Fli>\n\u003Cli>Added %author_role% to sort files by author role.\u003C\u002Fli>\n\u003Cli>Coming: support for per-post-type settings. Eg: every post type can have their own rules for where to place uploads. Currently missing the admin interface. If you feel like helping out, let me know.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Changelog v. 3.4 (2013-02-09)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Added %file_ext% to sort by file type\u003C\u002Fli>\n\u003Cli>Added \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fsearch-and-mobile-apps-compatibility?replies=6#post-3837193\" rel=\"ugc\">tentative support for uploads from WordPress apps\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Removed setting for “Base upload folder” as WP core no longer exposes this\u003C\u002Fli>\n\u003Cli>Cleared out some PHP error on the admin page\u003C\u002Fli>\n\u003Cli>Fixed leaking CSS on admin page\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Changelog v. 3.3 (2011-12-18)\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Support for WordPress 3.3\u003C\u002Fli>\n\u003Cli>Support for tags and categories\u003C\u002Fli>\n\u003Cli>Support for custom taxonomies\u003C\u002Fli>\n\u003Cli>Added %current_user%, %permalink%\u003C\u002Fli>\n\u003Cli>Added all permalink tags\u003C\u002Fli>\n\u003Cli>Added test-function to admin page\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fcustom-upload-dir\u002Fchangelog\u002F\" rel=\"ugc\">Older changelogs moved here.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Additional Info\u003C\u002Fh3>\n\u003Cp>Copyright (C) 2007-2019 \u003Ca href=\"https:\u002F\u002Fwww.ulfbenjaminsson.com\" rel=\"nofollow ugc\">Ulf Benjaminsson\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This program is free software; you can redistribute it and\u002For modify\u003Cbr \u002F>\nit under the terms of the GNU General Public License as published by\u003Cbr \u002F>\nthe Free Software Foundation; either version 2 of the License, or\u003Cbr \u002F>\n(at your option) any later version.\u003C\u002Fp>\n\u003Cp>This program is distributed in the hope that it will be useful,\u003Cbr \u002F>\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\u003Cbr \u002F>\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\u003Cbr \u002F>\nGNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License\u003Cbr \u002F>\nalong with this program; if not, write to the Free Software\u003Cbr \u002F>\nFoundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA\u003C\u002Fp>\n","Keeps your uploaded files organized in smart folder structures.",5000,109327,88,25,"2022-07-26T11:39:00.000Z","6.0.11","3.9","5.2",[20,21,96,24],"organize","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fcustom-upload-dir\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-upload-dir.3.4.6.zip",85,{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":72,"tags":115,"homepage":120,"download_link":121,"security_score":122,"vuln_count":14,"unpatched_count":11,"last_vuln_date":123,"fetched_at":28},"windows-azure-storage","Microsoft Azure Storage for WordPress","4.5.2","10up","https:\u002F\u002Fprofiles.wordpress.org\u002F10up\u002F","\u003Cp>This WordPress plugin allows you to use Microsoft Azure Storage Service to host your media and uploads for your WordPress powered website. Microsoft Azure Storage is an effective way to infinitely scale storage of your site and leverage Azure’s global infrastructure.\u003C\u002Fp>\n\u003Cp>For more details on Microsoft Azure Storage, please visit the \u003Ca href=\"https:\u002F\u002Fazure.microsoft.com\u002Fen-us\u002Fservices\u002Fstorage\u002F\" rel=\"nofollow ugc\">Microsoft Azure website\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For more details on configuring a Microsoft Azure Storage account and on using the plugin with the Block Editor or Classic Editor, please visit the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002F10up\u002Fwindows-azure-storage\u002Fblob\u002Fdevelop\u002FUserGuide.md\" rel=\"nofollow ugc\">user guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Known Issues\u003C\u002Fh3>\n\u003Ch4>Storage Account Versions\u003C\u002Fh4>\n\u003Cp>Storage accounts can be created via CLI, classic Azure portal, or the new Azure portal,\u003Cbr \u002F>\nwith varying results.\u003C\u002Fp>\n\u003Cp>If a Storage account is created with the new Azure portal, authentication will fail,\u003Cbr \u002F>\nresulting in the inability to view\u002Fadd containers or files. Creating a Storage account\u003Cbr \u002F>\nwith the Azure CLI should allow the plugin to work with new Storage accounts.\u003C\u002Fp>\n\u003Ch4>Responsive Images in WordPress 4.4\u003C\u002Fh4>\n\u003Cp>Images uploaded to the Azure Storage service will not automatically receive responsive versions.\u003Cbr \u002F>\nImages added through the WordPress Media Loader \u003Cem>should\u003C\u002Fem> get automatically converted to responsive\u003Cbr \u002F>\nimages when inserted into a post or page.\u003Cbr \u002F>\nWe are investigating options for full support of responsive images in the plugin.\u003C\u002Fp>\n","Use the Microsoft Azure Storage service to host your website's media files.",2000,122722,78,14,"2025-10-28T23:39:00.000Z","6.8.5","6.6",[116,117,118,119,24],"blob-storage","cdn","media-files","microsoft-azure-storage","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwindows-azure-storage\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwindows-azure-storage.4.5.2.zip",99,"2025-10-23 20:09:38",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":134,"num_ratings":135,"last_updated":136,"tested_up_to":113,"requires_at_least":53,"requires_php":54,"tags":137,"homepage":54,"download_link":141,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"overwrite-uploads","Overwrite Uploads","1.2.2","Ian Dunn","https:\u002F\u002Fprofiles.wordpress.org\u002Fiandunn\u002F","\u003Cp>By default WordPress doesn’t overwrite an existing file if you upload a new one with the same name and directory. Instead, it appends a number to the end of the filename in order to make it unique, \u003Cem>e.g., \u003Ccode>filename.jpg\u003C\u002Fcode> becomes \u003Ccode>filename1.jpg\u003C\u002Fcode>\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>That isn’t always the desired behavior, so this plugin makes it so that any files uploaded will automatically overwrite existing files \u003Cstrong>in the same folder\u003C\u002Fstrong>, rather than creating a second file with a unique name. It will not overwrite files in other folders.\u003C\u002Fp>\n\u003Cp>After activating the plugin, you won’t need to do anything else, it’ll start working automatically. If you run into problems, please check the FAQ and existing support forum posts before opening a new support request.\u003C\u002Fp>\n","Overwrites files with the same name and folder when uploading, instead of storing multiple copies with unique filenames.",1000,57352,68,8,"2025-08-04T16:18:00.000Z",[20,138,139,140,76],"media-library","overwrite","unique","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foverwrite-uploads.1.2.2.zip",{"attackSurface":143,"codeSignals":175,"taintFlows":195,"riskAssessment":196,"analyzedAt":201},{"hooks":144,"ajaxHandlers":171,"restRoutes":172,"shortcodes":173,"cronEvents":174,"entryPointCount":11,"unprotectedCount":11},[145,151,154,156,159,162,164],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","plugins_loaded","anonymous","includes\\class-dh-rename-uploaded-files.php",143,{"type":146,"name":152,"callback":148,"file":149,"line":153},"admin_enqueue_scripts",158,{"type":146,"name":152,"callback":148,"file":149,"line":155},159,{"type":146,"name":157,"callback":148,"file":149,"line":158},"admin_menu",162,{"type":146,"name":160,"callback":148,"file":149,"line":161},"wp_enqueue_scripts",181,{"type":146,"name":160,"callback":148,"file":149,"line":163},182,{"type":165,"name":166,"callback":167,"priority":168,"file":169,"line":170},"filter","sanitize_file_name","dh__ruf",10,"public\\partials\\dh-rename-uploaded-files-public-display.php",93,[],[],[],[],{"dangerousFunctions":176,"sqlUsage":177,"outputEscaping":179,"fileOperations":11,"externalRequests":11,"nonceChecks":14,"capabilityChecks":11,"bundledLibraries":194},[],{"prepared":11,"raw":11,"locations":178},[],{"escaped":180,"rawEcho":181,"locations":182},4,5,[183,187,189,191,192],{"file":184,"line":185,"context":186},"admin\\partials\\dh-rename-uploaded-files-admin-display.php",32,"raw output",{"file":184,"line":188,"context":186},70,{"file":184,"line":190,"context":186},74,{"file":184,"line":110,"context":186},{"file":184,"line":193,"context":186},82,[],[],{"summary":197,"deductions":198},"The 'dh-rename-uploaded-files' v4 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any detected AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface. Furthermore, the code's adherence to using prepared statements for all SQL queries and the presence of a nonce check are positive indicators of secure development practices.  However, the notable concern lies in the output escaping, where only 44% of identified outputs are properly escaped. This indicates a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is incorporated into these unescaped outputs without proper sanitization.\n\nThe vulnerability history is clean, with no recorded CVEs, which is a positive sign. This, combined with the lack of critical or high-severity taint flows and the absence of dangerous functions, suggests the plugin has historically been developed with security in mind. The plugin also has no file operations or external HTTP requests, further reducing potential attack vectors. While the limited attack surface and secure SQL handling are commendable strengths, the insufficient output escaping presents a clear area of risk that requires attention.",[199],{"reason":200,"points":135},"Insufficient output escaping","2026-03-17T07:03:24.234Z",{"wat":203,"direct":226},{"assetPaths":204,"generatorPatterns":214,"scriptPaths":215,"versionParams":216},[205,206,207,208,209,210,211,212,213],"\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fcss\u002Fdh-rename-uploaded-files-admin.css","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fcss\u002Ffontawesome.min.css","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fcss\u002Ffontawesome.brands.min.css","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fcss\u002Fbulma.min.css","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fcss\u002Fbulma-checkbox.min.css","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fcss\u002Fbulma-radio.min.css","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fjs\u002Fdh-rename-uploaded-files-admin.js","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fjs\u002Ffontawesome.min.js","\u002Fwp-content\u002Fplugins\u002Fdh-rename-uploaded-files\u002Fjs\u002Ffontawesome.brands.min.js",[],[211,212,213],[217,218,219,220,221,222,223,224,225],"dh-rename-uploaded-files\u002Fcss\u002Fdh-rename-uploaded-files-admin.css?ver=","dh-rename-uploaded-files\u002Fcss\u002Ffontawesome.min.css?ver=","dh-rename-uploaded-files\u002Fcss\u002Ffontawesome.brands.min.css?ver=","dh-rename-uploaded-files\u002Fcss\u002Fbulma.min.css?ver=","dh-rename-uploaded-files\u002Fcss\u002Fbulma-checkbox.min.css?ver=","dh-rename-uploaded-files\u002Fcss\u002Fbulma-radio.min.css?ver=","dh-rename-uploaded-files\u002Fjs\u002Fdh-rename-uploaded-files-admin.js?ver=","dh-rename-uploaded-files\u002Fjs\u002Ffontawesome.min.js?ver=","dh-rename-uploaded-files\u002Fjs\u002Ffontawesome.brands.min.js?ver=",{"cssClasses":227,"htmlComments":229,"htmlAttributes":230,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":235},[228],"dh-rename-uploaded-files-admin-css",[],[231],"data-dhruf-options",[],[234],"dhruf_page_hook_suffix",[]]