[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxzO1boxYmGAkjRYWn40xoDFtXvfioW8pLhi-PvGeMsk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":56,"fingerprints":87},"display-all-image-file-path","Display All Image File Path","2.0","Justin Givens","https:\u002F\u002Fprofiles.wordpress.org\u002Fjustindgivens\u002F","\u003Cp>The plugin loops through all available image sizes and display it out to the users on the Edit Media screen and when you upload new content only.\u003C\u002Fp>\n","The plugin loops through all available image sizes and display it out to the users on the Edit Media screen and when you upload new content only.",20,2297,100,1,"2013-04-08T00:34:00.000Z","3.5.2","3.5","",[20,21,22,23],"all-image-sizes","file-path","image-path","image-size-path","http:\u002F\u002Fplugins.justingivens.com\u002F?pid=Display-All-Image-File-Path","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisplay-all-image-file-path.2.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"justindgivens",2,60,30,84,"2026-04-04T11:09:40.892Z",[39],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":34,"downloaded":47,"rating":13,"num_ratings":33,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":54,"download_link":55,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"all-image-list","WP All Image Sizes","0.2","drosophila","https:\u002F\u002Fprofiles.wordpress.org\u002Fdrosophila\u002F","\u003Cp>By default, WordPress creates 3 sizes for every uploaded image (using the default image uploader): thumbnail, medium and large.\u003Cbr \u002F>\nSince version 2.9, WordPress has added post thumbnail feature that allows us to add more image sizes in order to use them more flexibly in loops, sliders or in other parts of the theme.\u003C\u002Fp>\n\u003Cp>In many cases when you want to give user options of image size to show them in some areas such as in a popular widget, related posts area, slides, etc., you’re facing the problem of listing all registered image sizes in WordPress.\u003C\u002Fp>\n\u003Cp>This plugin solves this problem by adding a box in the sidebar of the attachment page (wp-adming\u002Fpost.php), listing all registered image sizes and links to view them.\u003C\u002Fp>\n\u003Cp>All the registered image sizes can be chosen also in the Media Uploader.\u003C\u002Fp>\n","List all registered image sizes in a meta box on the attachment page (media library) and in the Media Uploader.",3421,"2013-12-07T17:38:00.000Z","3.7.41","3.3",[20,52,53],"image-list","registered-image-sizes-list","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fall-image-list\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fall-image-list.zip",{"attackSurface":57,"codeSignals":69,"taintFlows":79,"riskAssessment":80,"analyzedAt":86},{"hooks":58,"ajaxHandlers":65,"restRoutes":66,"shortcodes":67,"cronEvents":68,"entryPointCount":27,"unprotectedCount":27},[59],{"type":60,"name":61,"callback":62,"file":63,"line":64},"action","add_meta_boxes","iiab_add_custom_box_image_path","index.php",35,[],[],[],[],{"dangerousFunctions":70,"sqlUsage":71,"outputEscaping":73,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":78},[],{"prepared":27,"raw":27,"locations":72},[],{"escaped":27,"rawEcho":14,"locations":74},[75],{"file":63,"line":76,"context":77},43,"raw output",[],[],{"summary":81,"deductions":82},"The static analysis of the \"display-all-image-file-path\" v2.0 plugin reveals a generally positive security posture with no immediately apparent attack vectors through typical entry points like AJAX, REST API, shortcodes, or cron events. The absence of dangerous functions, file operations, and external HTTP requests further strengthens this assessment.  Crucially, all SQL queries utilize prepared statements, indicating good practice in preventing SQL injection.  However, a significant concern arises from the output escaping signal, where 100% of outputs are not properly escaped. This could lead to cross-site scripting (XSS) vulnerabilities if any of the displayed image file paths contain malicious JavaScript. The lack of recorded vulnerabilities in its history is a strength, but this should not overshadow the identified output escaping issue. The plugin's strengths lie in its limited attack surface and secure database interaction, but the lack of output sanitization presents a clear and present risk.",[83],{"reason":84,"points":85},"Unescaped output detected",8,"2026-03-16T23:08:09.625Z",{"wat":88,"direct":93},{"assetPaths":89,"generatorPatterns":90,"scriptPaths":91,"versionParams":92},[],[],[],[],{"cssClasses":94,"htmlComments":95,"htmlAttributes":96,"restEndpoints":98,"jsGlobals":99,"shortcodeOutput":100},[],[],[97],"readonly='readonly'",[],[],[]]