[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fAKXgxu09Kg1rN0mbLu6w5AffJqtJWXUuhaTuQUf2ZOw":3,"$f6l1p3zP9jMqhj5o0_Ezo_78sqv8ENVogZzcK2LmDK7Q":191,"$f6qTIzTeZuGwXv8g-AWe76ZkfGEU6Y_evKyo9LYlqxfY":196},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":38,"analysis":151,"fingerprints":176},"disablemu","DisableMU","1.1","Dave McHale","https:\u002F\u002Fprofiles.wordpress.org\u002Fdmchale\u002F","\u003Cp>Redefines the location of the \u002Fmu-plugins directory, via writing constants to your wp-config.php file, to ensure that no code published to the default location will automatically run on your website.\u003C\u002Fp>\n\u003Cp>Since many site administrators are not using \u002Fmu-plugins, we want to be sure that no mu-plugins “suddenly” appear on our website due to their nature: auto-activation is BAD when you didn’t intend for code to be there!\u003C\u002Fp>\n\u003Cp>DisableMU is not for every website. Many development houses, system admins, and hosting companies have very legitimate uses for \u002Fmu-plugins and have built business plans around utilizing this feature of WordPress. By installing and activating DisableMU on your website, you may break things. Please exercise caution and only utilize this plugin if you know what you are doing. As with most plugins, DisableMU is written with the intent of being helpful but you are responsible for its use or actions on your own website.\u003C\u002Fp>\n","Redefines the location of the \u002Fmu-plugins directory to ensure that no code published to the default location will automatically run on your website.",10,2188,100,1,"2016-02-09T03:21:00.000Z","4.4.34","3.0.1","",[20,21,22],"admin","mu-plugins","security","http:\u002F\u002Fwww.binarytemplar.com\u002FdisableMU","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisablemu.1.1.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":25,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"dmchale",5,90130,30,84,"2026-05-20T01:09:28.860Z",[39,63,86,110,131],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":26,"last_vuln_date":62,"fetched_at":28},"loginizer","Loginizer","2.0.6","Softaculous","https:\u002F\u002Fprofiles.wordpress.org\u002Fsoftaculous\u002F","\u003Cp>Loginizer is a WordPress plugin which helps you fight against bruteforce attack by blocking login for the IP after it reaches maximum retries allowed. You can blacklist or whitelist IPs for login using Loginizer. You can use various other features like Two Factor Auth, reCAPTCHA, PasswordLess Login, etc. to improve security of your website.\u003C\u002Fp>\n\u003Cp>Loginizer is actively used by more than 1000000+ WordPress websites.\u003C\u002Fp>\n\u003Cp>You can find our official documentation at \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fdocs\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.com\u002Fdocs\u003C\u002Fa>. We are also active in our community support forums on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Floginizer\" rel=\"ugc\">wordpress.org\u003C\u002Fa> if you are one of our free users. Our Premium Support Ticket System is at \u003Ca href=\"https:\u002F\u002Floginizer.deskuss.com\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.deskuss.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Free Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Brute force protection. IPs trying to brute force your website will be blocked for 15 minutes after 3 failed login attempts. After multiple lockouts the IP is blocked for 24 hours. This is the default configuration and can be changed from Loginizer -> Brute force page in WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Failed login attempts logs.\u003C\u002Fli>\n\u003Cli>Blacklist IPs\u003C\u002Fli>\n\u003Cli>Whitelist IPs\u003C\u002Fli>\n\u003Cli>Custom error messages on failed login.\u003C\u002Fli>\n\u003Cli>Permission check for important files and folders.\u003C\u002Fli>\n\u003Cli>Allow only Trusted IP.\u003C\u002Fli>\n\u003Cli>Blocked Screen in place of the Login page.\u003C\u002Fli>\n\u003Cli>Email Notification on successful login.\u003C\u002Fli>\n\u003Cli>Let users login with LinkedIn\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get Support and Pro Features\u003C\u002Fh4>\n\u003Cp>Get professional support from our experts and pro features to take your site’s security to the next level with \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fpricing\" rel=\"nofollow ugc\">Loginizer-Security\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Pro Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>MD5 Checksum – of Core WordPress Files. The admin can check and ignore files as well.\u003C\u002Fli>\n\u003Cli>PasswordLess Login – At the time of Login, the username \u002F email address will be asked and an email will be sent to the email address of that account with a temporary link to login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via Email – On login, an email will be sent to the email address of that account with a temporary 6 digit code to complete the login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via App – The user can configure the account with a 2FA App like Google Authenticator, Authy, etc.\u003C\u002Fli>\n\u003Cli>Login Challenge Question – The user can setup a Challenge Question and Answer as an additional security layer. After Login, the user will need to answer the question to complete the login.\u003C\u002Fli>\n\u003Cli>reCAPTCHA – Google’s reCAPTCHA v3\u002Fv2, Cloudflare Turnstile, hCAPTCHA can be configured for the Login screen, Comments Section, Registration Form, etc. to prevent automated brute force attacks. Supports WooCommerce as well.\u003C\u002Fli>\n\u003Cli>Rename Login Page – The Admin can rename the login URL (slug) to something different from wp-login.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename WP-Admin URL – The Admin area in WordPress is accessed via wp-admin. With loginizer you can change it to anything e.g. site-admin\u003C\u002Fli>\n\u003Cli>CSRF Protection – This helps in preventing CSRF attacks as it updates the admin URL with a session string which makes it difficult and nearly impossible for the attacker to predict the URL.\u003C\u002Fli>\n\u003Cli>Rename Login with Secrecy – If set, then all Login URL’s will still point to wp-login.php and users will have to access the New Login Slug by typing it in the browser.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC – An option to simply disable XML-RPC in WordPress. Most of the WordPress users don’t need XML-RPC and can disable it to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename XML-RPC – The Admin can rename the XML-RPC to something different from xmlrpc.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Username Auto Blacklist – Attackers generally use common usernames like admin, administrator, or variations of your domain name \u002F business name. You can specify such username here and Loginizer will auto-blacklist the IP Address(s) of clients who try to use such username(s).\u003C\u002Fli>\n\u003Cli>New Registration Domain Blacklist – If you would like to ban new registrations from a particular domain, you can use this utility to do so.\u003C\u002Fli>\n\u003Cli>Change the Admin Username – The Admin can rename the admin username to something more difficult.\u003C\u002Fli>\n\u003Cli>Auto Blacklist IPs – IPs will be auto blacklisted, if certain usernames saved by the Admin are used to login by malicious bots \u002F users.\u003C\u002Fli>\n\u003Cli>Disable Pingbacks – Simple way to disable PingBacks.\u003C\u002Fli>\n\u003Cli>SSO – Single Sign-on, let any user access to your WordPress Dashboard without the need to share username or password.\u003C\u002Fli>\n\u003Cli>Limit Concurrent Logins – It prevents user to login from different devices concurrently, you can define how many devices you want to allow, and how you want to restrict the user when concurrent limit is reached.\u003C\u002Fli>\n\u003Cli>Social Login – Users can login or register with their Google, Github, Facebook, X (Twitter), Discord, Twitch, LinkedIn, Microsoft with support for WooCommerce and Ultimate Member.\u003C\u002Fli>\n\u003Cli>Key Less Social Login – Use Loginizer’s Social Auth for easy key less Social login configuration, now supports Google, GitHub, X, LinkedIn more to be added later\u003C\u002Fli>\n\u003Cli>Country Blocking – Block IPs from specific countries to restrict access to your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features in Loginizer include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Blocks IP after maximum retries allowed\u003C\u002Fli>\n\u003Cli>Extended Lockout after maximum lockouts allowed\u003C\u002Fli>\n\u003Cli>Email notification to admin after max lockouts\u003C\u002Fli>\n\u003Cli>Blacklist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Whitelist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Check logs of failed attempts\u003C\u002Fli>\n\u003Cli>Create IP ranges\u003C\u002Fli>\n\u003Cli>Delete IP ranges\u003C\u002Fli>\n\u003Cli>Licensed under LGPLv2.1\u003C\u002Fli>\n\u003Cli>Safe & Secure\u003C\u002Fli>\n\u003C\u002Ful>\n","Loginizer is a WordPress security plugin which helps you fight against bruteforce attacks.",1000000,29928058,96,1024,"2026-03-02T12:38:00.000Z","6.9.4","3.0","5.5",[56,20,57,40,22],"access","login","https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Floginizer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Floginizer.2.0.6.zip",87,8,"2024-11-04 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":73,"num_ratings":74,"last_updated":75,"tested_up_to":52,"requires_at_least":76,"requires_php":77,"tags":78,"homepage":82,"download_link":83,"security_score":49,"vuln_count":84,"unpatched_count":26,"last_vuln_date":85,"fetched_at":28},"admin-menu-editor","Admin Menu Editor","1.15","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>Admin Menu Editor lets you manually edit the Dashboard menu. You can reorder the menus, show\u002Fhide specific items, change permissions, and more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change menu titles, URLs, icons, CSS classes and so on.\u003C\u002Fli>\n\u003Cli>Organize menu items via drag & drop.\u003C\u002Fli>\n\u003Cli>Change menu permissions by setting the required capability or role.\u003C\u002Fli>\n\u003Cli>Move a menu item to a different submenu. \u003C\u002Fli>\n\u003Cli>Create custom menus that point to any part of the Dashboard or an external URL.\u003C\u002Fli>\n\u003Cli>Hide\u002Fshow any menu or menu item. A hidden menu is invisible to all users, including administrators.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The \u003Ca href=\"http:\u002F\u002Fw-shadow.com\u002FAdminMenuEditor\u002F\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa> lets you set per-role menu permissions, hide a menu from everyone except a specific user, export your admin menu, drag items between menu levels, make menus open in a new window and more. \u003Ca href=\"http:\u002F\u002Famedemo.com\u002Fwpdemo\u002Fdemo.php\" rel=\"nofollow ugc\">Try online demo\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Additional Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Despite the name, this plugin is not limited to just editing the admin menu. You can also:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create login redirects and logout redirects.\u003C\u002Fli>\n\u003Cli>Allow\u002Fdeny access to specific posts based on user roles.\u003C\u002Fli>\n\u003Cli>Hide plugins on the \u003Cem>Plugins -> Installed Plugins\u003C\u002Fem> page from other users.\u003C\u002Fli>\n\u003Cli>Edit the display name, description, and other plugin details shown on the \u003Cem>Plugins -> Installed Plugins\u003C\u002Fem> page (e.g. for white-labelling).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugin provides a few utility shortcodes. These are mainly intended to help with creating login\u002Flogout redirects, but you can also use them in posts and pages.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>[ame-wp-admin]\u003C\u002Fcode> – URL of the WordPress dashboard (with a trailing slash).\u003C\u002Fli>\n\u003Cli>\u003Ccode>[ame-home-url]\u003C\u002Fcode> – Site URL. Usually, this is the same as the URL in the “Site Address” field in \u003Cem>Settings -> General\u003C\u002Fem>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>[ame-user-info field=\"...\"]\u003C\u002Fcode> – Information about the logged-in user. Parameters:\n\u003Cul>\n\u003Cli>\u003Ccode>field\u003C\u002Fcode> – The part of user profile to display. Supported fields include: \u003Ccode>ID\u003C\u002Fcode>, \u003Ccode>user_login\u003C\u002Fcode>, \u003Ccode>display_name\u003C\u002Fcode>, \u003Ccode>locale\u003C\u002Fcode>, \u003Ccode>user_nicename\u003C\u002Fcode>, \u003Ccode>user_url\u003C\u002Fcode>, and so on.\u003C\u002Fli>\n\u003Cli>\u003Ccode>placeholder\u003C\u002Fcode> – Optional. Text that will be shown if the visitor is not logged in.\u003C\u002Fli>\n\u003Cli>\u003Ccode>encoding\u003C\u002Fcode> – Optional. How to encode or escape the output. This is useful if you want to use the shortcode in your own HTML or JS code. Supported values: \u003Ccode>auto\u003C\u002Fcode> (default), \u003Ccode>html\u003C\u002Fcode>, \u003Ccode>attr\u003C\u002Fcode>, \u003Ccode>js\u003C\u002Fcode>, \u003Ccode>none\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If you delete any of the default menus they will reappear after saving. This is by design. To get rid of a menu for good, either hide it or change it’s access permissions.\u003C\u002Fli>\n\u003Cli>In the free version, it’s not possible to give a role access to a menu item that it couldn’t see before. You can only restrict menu access further.\u003C\u002Fli>\n\u003Cli>In case of emergency, you can reset the menu configuration back to the default by going to http:\u002F\u002Fexample.com\u002Fwp-admin\u002F?reset_admin_menu=1 (replace example.com with your site URL). You must be logged in as an Administrator to do this.\u003C\u002Fli>\n\u003C\u002Ful>\n","Lets you edit the WordPress admin menu. You can re-order, hide or rename menus, add custom menus and more.",400000,7832166,92,311,"2026-02-20T11:36:00.000Z","5.9","7.4",[20,79,80,22,81],"dashboard","menu","wpmu","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2008\u002F12\u002F20\u002Fadmin-menu-editor-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-menu-editor.1.15.zip",3,"2026-03-10 00:00:00",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":96,"num_ratings":97,"last_updated":98,"tested_up_to":52,"requires_at_least":99,"requires_php":18,"tags":100,"homepage":105,"download_link":106,"security_score":107,"vuln_count":108,"unpatched_count":26,"last_vuln_date":109,"fetched_at":28},"iwp-client","InfiniteWP Client","1.13.5","revmakx","https:\u002F\u002Fprofiles.wordpress.org\u002Frevmakx\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Finfinitewp.com\u002F\" title=\"Manage Multiple WordPress\" rel=\"nofollow ugc\">InfiniteWP\u003C\u002Fa> allows users to manage unlimited number of WordPress sites from their own server.\u003C\u002Fp>\n\u003Cp>Main features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Self-hosted system: Resides on your own server and totally under your control\u003C\u002Fli>\n\u003Cli>One-click updates for WordPress, plugins and themes across all your sites\u003C\u002Fli>\n\u003Cli>Instant backup and restore your entire site or just the database\u003C\u002Fli>\n\u003Cli>One-click access to all WP admin panels\u003C\u002Fli>\n\u003Cli>Bulk Manage plugins & themes: Activate & Deactive multiple plugins & themes on multiple sites simultaneously\u003C\u002Fli>\n\u003Cli>Bulk Install plugins & themes in multiple sites at once\u003C\u002Fli>\n\u003Cli>and more..\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit us at \u003Ca href=\"https:\u002F\u002Finfinitewp.com\u002F\" title=\"Manage Multiple WordPress\" rel=\"nofollow ugc\">InfiniteWP.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Check out the \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=s35ZoW95cnU\" rel=\"nofollow ugc\">InfiniteWP Overview Video\u003C\u002Fa> below.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fs35ZoW95cnU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Credits: \u003Ca href=\"http:\u002F\u002Fprelovac.com\u002Fvladimir\" rel=\"nofollow ugc\">Vladimir Prelovac\u003C\u002Fa> for his worker plugin on which the client plugin is being developed.\u003C\u002Fp>\n","Install this plugin on unlimited sites and manage them all from a central dashboard. This plugin communicates with your InfiniteWP Admin Panel.",200000,8254353,88,177,"2026-02-26T10:35:00.000Z","3.1",[101,102,103,22,104],"backup","multi-site","multiple-admin","updates","http:\u002F\u002Finfinitewp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fiwp-client.1.13.5.zip",90,7,"2025-01-07 00:00:00",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":13,"num_ratings":120,"last_updated":121,"tested_up_to":52,"requires_at_least":122,"requires_php":123,"tags":124,"homepage":127,"download_link":128,"security_score":129,"vuln_count":84,"unpatched_count":26,"last_vuln_date":130,"fetched_at":28},"lws-tools","LWS Tools","2.6.2","Aurélien LWS","https:\u002F\u002Fprofiles.wordpress.org\u002Faurelienlws\u002F","\u003Cp>With LWS Tools, get a hold on various \u003Cstrong>tools and options to optimize your website\u003C\u002Fstrong>. From deactivating emotes or hiding sensible informations to deactivating REST API!\u003Cbr \u002F>\nYou can access and change several parameters, get informations on your database and your server and even more.\u003C\u002Fp>\n\u003Ch4>WPilot – Your WordPress AI Assistant\u003C\u002Fh4>\n\u003Cp>Meet \u003Cstrong>WPilot\u003C\u002Fstrong>, your dedicated AI assistant for WordPress, available exclusively with LWS hosting. WPilot automatically analyzes your site, plugins, and theme to provide personalized advice and guidance. Whether you’re creating, updating, or optimizing your website, WPilot acts as your co-pilot, helping you troubleshoot common issues and make informed decisions about your WordPress site. This intelligent assistant understands your specific setup and offers tailored recommendations to enhance your website’s performance and functionality.\u003C\u002Fp>\n\u003Ch4>Notifications\u003C\u002Fh4>\n\u003Cp>Find an improved notification center allowing you to see at a glance what to update, what to delete, correct or adjust.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Status of updates to the WordPress version, plugins, themes and translations.\u003C\u002Fli>\n\u003Cli>Unused plugins and themes can be removed in one click..\u003C\u002Fli>\n\u003Cli>Database prefix : customized or not.\u003C\u002Fli>\n\u003Cli>Validity of your SSL certificate (included with LWS \u003Ca href=\"https:\u002F\u002Fwww.lws.fr\u002Fhebergement_wordpress.php\" rel=\"nofollow ugc\">web hosting\u003C\u002Fa> plans).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Server information\u003C\u002Fh4>\n\u003Cp>View all the characteristics of the server on which your WordPress website is hosted:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Environment, server information\u003C\u002Fli>\n\u003Cli>IP address of your device\u003C\u002Fli>\n\u003Cli>Server web port\u003C\u002Fli>\n\u003Cli>SSL certificate status (HTTPS)\u003C\u002Fli>\n\u003Cli>Server name\u003C\u002Fli>\n\u003Cli>Server IP address\u003C\u002Fli>\n\u003Cli>Protocol version\u003C\u002Fli>\n\u003Cli>PHP version\u003C\u002Fli>\n\u003Cli>Debug WP mode status (WordPress debug mode)\u003C\u002Fli>\n\u003Cli>Status of allow_url_fopen (file access functions)\u003C\u002Fli>\n\u003Cli>Server time zone\u003C\u002Fli>\n\u003Cli>Default encoding\u003C\u002Fli>\n\u003Cli>Uploading files\u003C\u002Fli>\n\u003Cli>Maximum execution time\u003C\u002Fli>\n\u003Cli>Maximum number of files per upload\u003C\u002Fli>\n\u003Cli>Maximum number of characters per entry\u003C\u002Fli>\n\u003Cli>RAM memory limit\u003C\u002Fli>\n\u003Cli>Maximum size of an item\u003C\u002Fli>\n\u003Cli>Maximum size of uploaded files\u003C\u002Fli>\n\u003Cli>PHP memory usage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Optimisation\u003C\u002Fh4>\n\u003Cp>Delete, reduce elements that are not useful to you. Or add minor features. Here are the features you can enable as you wish:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Delete the Windows Live Writer manifest\u003C\u002Fli>\n\u003Cli>Reduce the number of revisions\u003C\u002Fli>\n\u003Cli>Delete author pages and associated links\u003C\u002Fli>\n\u003Cli>Prevent WordPress from disabling pingbacks of your own posts\u003C\u002Fli>\n\u003Cli>Use visitor browser emotes instead of WordPress emotes\u003C\u002Fli>\n\u003Cli>Remove Title 1 in Tiny MCE\u003C\u002Fli>\n\u003Cli>Remove shortlinks\u003C\u002Fli>\n\u003Cli>Add hidden ‘Medium Large’ image size\u003C\u002Fli>\n\u003Cli>Alternative cleaning of uploaded media\u003C\u002Fli>\n\u003Cli>Remove RSS feeds\u003C\u002Fli>\n\u003Cli>Remove links from RSS feeds\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Security\u003C\u002Fh4>\n\u003Cp>Here are some functions that you can activate. These have a positive impact on the security of your site:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Hide connection errors on WP-Login\u003C\u002Fli>\n\u003Cli>Hide the ‘WordPress Version’ meta from pages\u003C\u002Fli>\n\u003Cli>Disable the REST API\u003C\u002Fli>\n\u003Cli>Hide user pages from sitemap\u003C\u002Fli>\n\u003Cli>Hide user endpoints from REST API\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>MySQL Reports\u003C\u002Fh4>\n\u003Cp>Find a summary table of the WordPress data in your MySQL database. You can also repair and optimize your database directly from LWS Tools.\u003C\u002Fp>\n\u003Ch4>Other tools\u003C\u002Fh4>\n\u003Cp>In the last tab of the plugin, you have access to other useful functions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disconnect all sessions except the active user (you).\u003C\u002Fli>\n\u003Cli>Clean up revisions that are older than a certain time (please specify)\u003C\u002Fli>\n\u003Cli>Delete trashed or unwanted comments\u003C\u002Fli>\n\u003Cli>Delete temporary data (transients) from the cache\u003C\u002Fli>\n\u003Cli>Reset the plugin configuration\u003C\u002Fli>\n\u003Cli>Keep the configuration even after deleting the plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is pre-installed when ordering one of these LWS webhosts: \u003Ca href=\"https:\u002F\u002Fwww.lws.fr\u002Fhebergement_wordpress.php\" rel=\"nofollow ugc\">WordPress hosting\u003C\u002Fa>, Classic shared \u003Ca href=\"https:\u002F\u002Fwww.lws.fr\u002Fhebergement_web.php\" rel=\"nofollow ugc\">web hosting\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.lws.fr\u002Fhebergement-cpanel.php\" rel=\"nofollow ugc\">cPanel hosting\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Released under the terms of the GNU General Public License.\u003C\u002Fp>\n","Optimize and modify your website's parameters",20000,205846,6,"2025-12-15T09:15:00.000Z","5.0","7.3",[20,125,126,22],"lws","optimisation","https:\u002F\u002Fwww.lws.fr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flws-tools.2.6.2.zip",98,"2023-06-16 00:00:00",{"slug":132,"name":133,"version":134,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":139,"downloaded":140,"rating":13,"num_ratings":141,"last_updated":142,"tested_up_to":52,"requires_at_least":143,"requires_php":77,"tags":144,"homepage":148,"download_link":149,"security_score":107,"vuln_count":33,"unpatched_count":26,"last_vuln_date":150,"fetched_at":28},"wpmastertoolkit","WPMasterToolKit (WPMTK) – All in one plugin","2.19.0","Ludwig You","https:\u002F\u002Fprofiles.wordpress.org\u002Fludwigyou\u002F","\u003Cp>WP Master ToolKit is your all-in-one solution for optimizing WordPress. It streamlines your dashboard, enhances workflows, and simplifies content and settings management. Customize your WordPress installation effortlessly with all the tools you need at your fingertips.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Test by Alexis Fichou (WP-Origami) :\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FLw0EeaBy4W4?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Test by Enzo (Easy WordPress) :\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FI1GdHeeJp6E?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>93 FREE modules\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Adminer: A full-featured database management tool.\u003C\u002Fli>\n\u003Cli>Advanced Debug Mode\u003C\u002Fli>\n\u003Cli>Allow Menu Custom Links to Open in New Tab.\u003C\u002Fli>\n\u003Cli>Apple Touch Icon: Manage app icon (Apple Touch Icon) individually.\u003C\u002Fli>\n\u003Cli>Auto Regenerate Salt Keys.\u003C\u002Fli>\n\u003Cli>Auto-Publish Posts with Missed Schedule: Automatically publish scheduled posts marked as \"missed schedule\" across all post types.\u003C\u002Fli>\n\u003Cli>Ban Emails: Ban the chosen emails.\u003C\u002Fli>\n\u003Cli>Blacklisted Usernames: Prevent creation of user accounts with predefined blacklisted or common usernames.\u003C\u002Fli>\n\u003Cli>Block User Registration from Disposable Email: Block user registration from temporary disposable email addresses.\u003C\u002Fli>\n\u003Cli>Browser Theme Color: Select a tag color to allow seamless theme customization in all major browsers.\u003C\u002Fli>\n\u003Cli>Child theme generator: Generate a child theme directly from WordPress dashboard.\u003C\u002Fli>\n\u003Cli>Clean Profiles: Tidy up user profiles by removing sections you do not utilise.\u003C\u002Fli>\n\u003Cli>Clean Up Admin Bar.\u003C\u002Fli>\n\u003Cli>Code Snippets: Add custom code snippets without editing the theme’s \u003Cstrong>functions.php\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Content Duplication: One-click duplication of pages, posts and custom post types with taxonomy terms and post meta.\u003C\u002Fli>\n\u003Cli>Content Order: Custom ordering for hierarchical content types and those supporting page attributes.\u003C\u002Fli>\n\u003Cli>Custom Admin CSS: Add custom CSS on all admin pages for all user roles.\u003C\u002Fli>\n\u003Cli>Custom Body Class: Add custom \u003Cbody> class(es) on the singular view of some or all public post types.\u003C\u002Fli>\n\u003Cli>Custom Frontend CSS: Add custom CSS on all frontend pages for all user roles.\u003C\u002Fli>\n\u003Cli>Disable All Updates: Completely disable core, theme and plugin updates and auto-updates. Will also disable update checks, notices and emails.\u003C\u002Fli>\n\u003Cli>Disable Block-Based Widgets Settings Screen: Restore classic widgets settings screen for non-block themes.\u003C\u002Fli>\n\u003Cli>Disable Dashboard Widgets: Clean up and speed up dashboard by disabling widgets that won’t load assets.\u003C\u002Fli>\n\u003Cli>Disable Feeds: Disable RSS, Atom, and RDF feeds and remove feed URL references from \u003Ccode>\u003Chead>\u003C\u002Fcode> section.\u003C\u002Fli>\n\u003Cli>Disable Gutenberg: Selectively disable Gutenberg block editor for specific or all post types.\u003C\u002Fli>\n\u003Cli>Disable REST API: Disable REST API for non-authenticated users and remove URL traces.\u003C\u002Fli>\n\u003Cli>Disable Really Simple Discovery (RSD) \u003Clink> tag: Remove RSD tag used by XML-RPC clients.\u003C\u002Fli>\n\u003Cli>Disable WP Sitemap: Disable the default WordPress sitemap.\u003C\u002Fli>\n\u003Cli>Disable Windows Live Writer (WLW) manifest \u003Clink> tag: Remove discontinued WLW manifest tag.\u003C\u002Fli>\n\u003Cli>Disable WordPress shortlink \u003Clink> tag: Remove WordPress shortlink tag from \u003Ccode>\u003Chead>\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC.\u003C\u002Fli>\n\u003Cli>Disable cart fragments scripts: Disable WooCommerce cart fragments scripts for public visitors.\u003C\u002Fli>\n\u003Cli>Disable dashicons CSS and JS files.\u003C\u002Fli>\n\u003Cli>Disable emoji support: Remove emoji scripts as modern browsers natively support emojis.\u003C\u002Fli>\n\u003Cli>Disable jQuery Migrate: Removes the jQuery Migrate script from the frontend of your site.\u003C\u002Fli>\n\u003Cli>Disable wp_mail: Disable WordPress email function to save resources on sites that don’t send emails.\u003C\u002Fli>\n\u003Cli>Disallow Bad Requests: Block malicious requests containing eval(, base64_, and excessively long strings.\u003C\u002Fli>\n\u003Cli>Disallow Dir Listing: Disable the listing of the directories.\u003C\u002Fli>\n\u003Cli>Disallow Malicious File Access in upload: Prevent malicious file access in upload directory.\u003C\u002Fli>\n\u003Cli>Disallow Plugin Upload: Disable plugin zip file uploads.\u003C\u002Fli>\n\u003Cli>Disallow Theme Upload: Disable theme zip file uploads.\u003C\u002Fli>\n\u003Cli>Disallow WP File Edit: Prevent core file modifications through admin panel.\u003C\u002Fli>\n\u003Cli>Disallow register user: Prevent new user account creation via WordPress registration form.\u003C\u002Fli>\n\u003Cli>Duplicate Menu: Easily duplicate your WordPress Menus\u003C\u002Fli>\n\u003Cli>Enhance List Tables: Add or remove columns in listing pages for post types, taxonomies, media, comments and users.\u003C\u002Fli>\n\u003Cli>Export Posts & Pages: Export posts and pages to CSV format.\u003C\u002Fli>\n\u003Cli>Export Users: Export user data to CSV format.\u003C\u002Fli>\n\u003Cli>External Permalinks: Set permalinks to external URLs with rel=\"noopener noreferrer nofollow\" attributes.\u003C\u002Fli>\n\u003Cli>File Manager: Browse and manage files efficiently.\u003C\u002Fli>\n\u003Cli>Force SSL: Force HTTPS for encrypted secure traffic.\u003C\u002Fli>\n\u003Cli>Force Strong Password: Enforce strong passwords for all users to prevent weak credentials.\u003C\u002Fli>\n\u003Cli>Heartbeat Control: Modify or disable WordPress heartbeat API to reduce server CPU load.\u003C\u002Fli>\n\u003Cli>Hide Admin Bar: Hide admin bar on frontend for specific roles or all users.\u003C\u002Fli>\n\u003Cli>Hide Admin Notices: Gather all notifications in a popup accessible from top-right bell icon.\u003C\u002Fli>\n\u003Cli>Hide Login Errors: Hide default WordPress login error messages.\u003C\u002Fli>\n\u003Cli>Hide PHP Versions: Remove X-Powered-By header that reveals PHP version to potential attackers.\u003C\u002Fli>\n\u003Cli>Hide WordPress Version\u003C\u002Fli>\n\u003Cli>Image Upload Control: Resize large images, convert BMPs and PNGs to JPGs, delete originals.\u003C\u002Fli>\n\u003Cli>Insert \u003Chead>, \u003Cbody> and \u003Cfooter> Code: Insert tracking pixels, analytics, meta tags, and custom scripts.\u003C\u002Fli>\n\u003Cli>Last Login Column: Display last login date and time in users list table.\u003C\u002Fli>\n\u003Cli>Limit Login Attempts: Prevent brute force attacks by limiting failed login attempts per IP.\u003C\u002Fli>\n\u003Cli>Local avatars: Replaces GRAVATAR management with media management.\u003C\u002Fli>\n\u003Cli>Lock Admin Email: Prevent admin email address modifications.\u003C\u002Fli>\n\u003Cli>Lock Site URL: Prevent site URL modifications.\u003C\u002Fli>\n\u003Cli>Log In\u002FOut Menu: Add dynamic login\u002Flogout menu items.\u003C\u002Fli>\n\u003Cli>Mail Catcher: Capture all outgoing emails.\u003C\u002Fli>\n\u003Cli>Maintenance Mode: Display customizable maintenance page. Administrators can still access the site.\u003C\u002Fli>\n\u003Cli>Manage ads.txt and app-ads.txt: Edit and validate ads.txt files.\u003C\u002Fli>\n\u003Cli>Manage robots.txt: Edit and validate robots.txt file.\u003C\u002Fli>\n\u003Cli>Media Cleaner: Sanitize file names and auto-generate metadata (title, caption, alt text, description).\u003C\u002Fli>\n\u003Cli>Media Encoder: Automatically convert images to WebP (AVIF in PRO).\u003C\u002Fli>\n\u003Cli>Meta Debugger: Display all metadata for a post, user, term, or comment.\u003C\u002Fli>\n\u003Cli>Move Login URL: Change the default login URL to a custom URL of your choice.\u003C\u002Fli>\n\u003Cli>Multiple User Roles: Assign multiple roles per user, useful for e-commerce or LMS plugins.\u003C\u002Fli>\n\u003Cli>Nav Menu Visibility: Apply visibility controls to menu items.\u003C\u002Fli>\n\u003Cli>Obfuscate Author Slugs: Hide user slugs in author URLs and REST API endpoints.\u003C\u002Fli>\n\u003Cli>Obfuscate Email Addresses: Protect emails from spam bots via [wpm_obfuscate] shortcode.\u003C\u002Fli>\n\u003Cli>Open All External Links in New Tab: Open external links in new tab with security attributes.\u003C\u002Fli>\n\u003Cli>Password Protection: Password-protect entire site from public and search engines. Admins retain access.\u003C\u002Fli>\n\u003Cli>Plugin & Theme Rollback: Revert plugins\u002Fthemes to previous WordPress.org versions.\u003C\u002Fli>\n\u003Cli>Post Per Page: Set posts per page for each post type.\u003C\u002Fli>\n\u003Cli>Prevent User Enumeration: Block user enumeration via ?author= and REST API.\u003C\u002Fli>\n\u003Cli>Protect Website Headers: Add security headers to protect against phishing and data theft.\u003C\u002Fli>\n\u003Cli>Quick Add Post: Quick button to add new posts faster.\u003C\u002Fli>\n\u003Cli>Redirect 404 to Homepage: Redirect non-existent pages to homepage.\u003C\u002Fli>\n\u003Cli>Redirect After Login\u003C\u002Fli>\n\u003Cli>Redirect After Logout\u003C\u002Fli>\n\u003Cli>Revisions Control: Limit number of revisions saved per post type.\u003C\u002Fli>\n\u003Cli>Register Custom Content Types: Register custom post types and taxonomies.\u003C\u002Fli>\n\u003Cli>Search Replace in database\u003C\u002Fli>\n\u003Cli>SMTP Mailer: Configure sender name\u002Femail and external SMTP for reliable email delivery.\u003C\u002Fli>\n\u003Cli>SVG Upload: Enable SVG file uploads.\u003C\u002Fli>\n\u003Cli>Temporary Login\u003C\u002Fli>\n\u003Cli>Wider Admin Menu\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>30 Pro Modules\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>410 Manager\u003C\u002Fli>\n\u003Cli>Add Essentials Shortcodes\u003C\u002Fli>\n\u003Cli>Admin Menu Organizer\u003C\u002Fli>\n\u003Cli>Auto clean actionscheduler_actions: Clean actionscheduler_actions database table from actions that have been completed | failed | cancelled.\u003C\u002Fli>\n\u003Cli>Better Password Hash\u003C\u002Fli>\n\u003Cli>CRON Manager: Manage cron events on your website.\u003C\u002Fli>\n\u003Cli>Change Database Prefix: Quickly change your WordPress database prefix to save time and enhance security.\u003C\u002Fli>\n\u003Cli>Custom Login Design: Personalize your login page to match your brand.\u003C\u002Fli>\n\u003Cli>Disable Comments: Manage the visibility of comments on your public posts by selectively disabling them for specific post types or across all posts.\u003C\u002Fli>\n\u003Cli>Disable Plugin For Debug: Temporarily disable specific plugins to troubleshoot and debug issues on your WordPress site without uninstalling.\u003C\u002Fli>\n\u003Cli>Disable Woocommerce Logout Confirmation\u003C\u002Fli>\n\u003Cli>Disallow Access WP Sensible Files: Delete the wp-config-sample.php, block access to readme.html, license.txt\u003C\u002Fli>\n\u003Cli>Disallow Countries IP\u003C\u002Fli>\n\u003Cli>Download medias as zip\u003C\u002Fli>\n\u003Cli>Force Send All Email To: Force all emails sent from your website to be sent to a specific email address.\u003C\u002Fli>\n\u003Cli>Generate Alt Text With AI: Automatically generate alternative text using AI.\u003C\u002Fli>\n\u003Cli>Head Sorter: Automatically sorts and optimizes the \u003Chead> of your website, making sure important tags load first for better speed and SEO.\u003C\u002Fli>\n\u003Cli>Hook And Filter Debugger: Displaying the sequence of action and filter hooks by their origin on a single page.\u003C\u002Fli>\n\u003Cli>Link Shortener: Shorten your links with a custom prefix. You can also track the number of clicks on each link.\u003C\u002Fli>\n\u003Cli>Manage Admin Emails Notifications: Check the types of emails you no longer want to receive as an administrator.\u003C\u002Fli>\n\u003Cli>Media Replacement\u003C\u002Fli>\n\u003Cli>My Account Menu Customizer: for WooCommerce My Account page.\u003C\u002Fli>\n\u003Cli>No Plugin Activation \u002F Deactivation \u002F Deletion: Prevents plugin activation, deactivation, and deletion for enhanced security.\u003C\u002Fli>\n\u003Cli>Paste Image In Media: With this feature you can paste directly your picture in WordPress media.\u003C\u002Fli>\n\u003Cli>Plugin Download: Download plugins from the plugins page in the WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Post Type Switcher\u003C\u002Fli>\n\u003Cli>Two Factor Authentication\u003C\u002Fli>\n\u003Cli>Updates Logs: Track and record the most recent login activity of site users, then showcase the date and time in the users list table\u003C\u002Fli>\n\u003Cli>User Switching\u003C\u002Fli>\n\u003Cli>Vulnerabilities Scan\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PRO Additionnals Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Move Login URL: Block access to \u002Fwp-admin with server side 403 error for non-logged users.\u003C\u002Fli>\n\u003Cli>Maintenance Mode: Real countdown timer with automatic site activation. Bypass link generation for access during maintenance. Exclude specific URLs from maintenance mode.\u003C\u002Fli>\n\u003Cli>Media Encoder: Convert images to AVIF format (PHP ≥ 8.1). Free version limited to WebP only.\u003C\u002Fli>\n\u003Cli>Mail Catcher: Unlimited email capture. Free version limited to 5 emails per day.\u003C\u002Fli>\n\u003Cli>Advanced Debug Mode: Live log streaming viewer with real-time monitoring. Daily logs with date suffix. Custom log path with enhanced protection.\u003C\u002Fli>\n\u003Cli>Search Replace in database: several search\u002Freplace pairs, support for regular expressions and a much more complete detailed overview of detected changes.\u003C\u002Fli>\n\u003Cli>SMTP Mailer: 19+ premium providers including Gmail, Outlook, SendGrid, AWS SES, Brevo, Mailgun, Mailjet, Postmark, SparkPost, MailerSend, Resend, SendLayer, SMTP.com, SMTP2GO, Elastic Email, Zoho Mail, SendPulse, Mandrill, and Pepipost. Free version limited to PHP mail and generic SMTP.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FynV1BhAegtg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>⭐️ UPGRADE TO PRO VERSION: \u003Ca href=\"https:\u002F\u002Fwpmastertoolkit.com\" rel=\"nofollow ugc\">WPMasterToolKit Pro\u003C\u002Fa> ⭐️\u003C\u002Fp>\n\u003Ch3>Other plugin by Webdeclic\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwebdeclic.com\" rel=\"nofollow ugc\">Webdeclic\u003C\u002Fa> is a French web agency based in Paris. We are specialized in the creation of websites and e-commerce sites. We are also the creator of the following plugins:\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fquickwebp\u002F\" rel=\"ugc\">QuickWebP\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcookie-dough-compliance-and-consent-for-gdpr\u002F\" rel=\"ugc\">Cookie Dough\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Funiversal-honey-pot\u002F\" rel=\"ugc\">Univeral Honey Pot\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclean-my-wp\u002F\" rel=\"ugc\">Clean My WP\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmentions-legales-par-webdeclic\u002F\" rel=\"ugc\">Mentions Legales Par Webdeclic\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flexilink\u002F\" rel=\"ugc\">Lexilink\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fwebdeclic\u002F\" rel=\"ugc\">Show all plugins on WordPress.org\u003C\u002Fa>\u003C\u002Fp>\n","Duplicate post, post order, email via SMTP, code snippets, disable gutenberg, child theme generator, svg support, disable XMLRPC, and more...",4000,54783,27,"2026-03-19T09:41:00.000Z","6.0.0",[20,145,146,147,22],"all-in-one-plugin","disable-features","easy-to-use","https:\u002F\u002Fwpmastertoolkit.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpmastertoolkit.2.19.0.zip","2026-01-15 00:00:00",{"attackSurface":152,"codeSignals":158,"taintFlows":166,"riskAssessment":167,"analyzedAt":175},{"hooks":153,"ajaxHandlers":154,"restRoutes":155,"shortcodes":156,"cronEvents":157,"entryPointCount":26,"unprotectedCount":26},[],[],[],[],[],{"dangerousFunctions":159,"sqlUsage":160,"outputEscaping":162,"fileOperations":164,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":165},[],{"prepared":26,"raw":26,"locations":161},[],{"escaped":26,"rawEcho":26,"locations":163},[],4,[],[],{"summary":168,"deductions":169},"Based on the provided static analysis and vulnerability history, the \"disablemu\" plugin v1.1 exhibits a strong security posture. The absence of any identified dangerous functions, unsanitized taint flows, raw SQL queries, or unescaped output is highly positive. The plugin also demonstrates good practices by avoiding external HTTP requests and not bundling libraries, which can introduce their own vulnerabilities. Furthermore, the complete lack of known CVEs and a clean vulnerability history suggest a well-maintained and secure codebase over time.\n\nHowever, a significant concern arises from the lack of any detected nonce checks or capability checks across all identified entry points. While the attack surface is currently zero, if any future functionality were to be introduced that interacts with the WordPress core or user data, the absence of these critical security measures would leave the plugin highly vulnerable to unauthorized actions and potential security breaches. The plugin's reliance on its current minimal attack surface to maintain security, without implementing standard WordPress security checks, presents a potential future risk.\n\nIn conclusion, the plugin is currently secure due to its minimal functionality and lack of exploitable code patterns. Its historical security record is excellent. The primary weakness lies in the complete omission of nonce and capability checks, which is a fundamental WordPress security best practice. This oversight, while not currently leading to exploitable vulnerabilities, represents a significant technical debt and a potential future security risk should the plugin's functionality expand.",[170,173],{"reason":171,"points":172},"No Nonce Checks",15,{"reason":174,"points":172},"No Capability Checks","2026-03-16T23:16:02.003Z",{"wat":177,"direct":182},{"assetPaths":178,"generatorPatterns":179,"scriptPaths":180,"versionParams":181},[],[],[],[],{"cssClasses":183,"htmlComments":184,"htmlAttributes":187,"restEndpoints":188,"jsGlobals":189,"shortcodeOutput":190},[],[185,186],"\u003C!-- Definitions by DisableMU plugin -->","\u003C!-- END Definitions by DisableMU plugin -->",[],[],[],[],{"error":192,"url":193,"statusCode":194,"statusMessage":195,"message":195},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fdisablemu\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":197,"versions":198},2,[199,205],{"version":6,"download_url":24,"svn_tag_url":200,"released_at":27,"has_diff":201,"diff_files_changed":202,"diff_lines":27,"trac_diff_url":203,"vulnerabilities":204,"is_current":192},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fdisablemu\u002Ftags\u002F1.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fdisablemu%2Ftags%2F1.0&new_path=%2Fdisablemu%2Ftags%2F1.1",[],{"version":206,"download_url":207,"svn_tag_url":208,"released_at":27,"has_diff":201,"diff_files_changed":209,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":210,"is_current":201},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisablemu.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fdisablemu\u002Ftags\u002F1.0\u002F",[],[]]