[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHq_fJKeWG3SUj7kWEYEWyTeZaqqp1X6BNsq6JJPJ-HE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":17,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":132,"fingerprints":217},"downloadify-wp","Downloadify WP","1.0.1","Md Khorshed Alam","https:\u002F\u002Fprofiles.wordpress.org\u002Fkhorshedalamwp\u002F","\u003Cp>Downloadify WP is one of the most popular plugins for downloading plugins and themes in WordPress.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Download the plugin and theme with one click.\u003C\u002Fli>\n\u003C\u002Ful>\n","Downloadify WP for WordPress Plugin And Theme Downloader.",100,1836,1,"2025-01-06T05:18:00.000Z","6.7.5","6.2.2","",[19,20,21,22],"direct-download","downloader-wp","plugin-downloader","theme-downloader","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdownloadify-wp.1.0.1.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":13,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"khorshedalamwp",30,88,"2026-04-04T11:44:56.977Z",[35,54,74,96,112],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":37,"active_installs":42,"downloaded":43,"rating":11,"num_ratings":44,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":17,"tags":48,"homepage":51,"download_link":52,"security_score":53,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"wp-anything-downloader","WP Anything Downloader","3.0.2","vinit sharma","https:\u002F\u002Fprofiles.wordpress.org\u002Fvinit-sharma\u002F","\u003Cp>This plugin allows you to Direct download Any theme and plugin from wp admin panel. best plugin for download theme or plugin from wp-admin\u003C\u002Fp>\n\u003Cp>Perfect plugin  for direct download theme and plugin  with admin panel.\u003C\u002Fp>\n\u003Ch3>3.0.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>upgrade plugin for aws\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>3.0.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fixed a bug\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>3.0.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fixed a bug\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.0.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Security Updates\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.0.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fixed a bug\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>1.0.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Display WP Anything Downloader\u003C\u002Fli>\n\u003C\u002Ful>\n",3000,42978,2,"2022-03-22T08:13:00.000Z","5.9.13","3.5",[19,49,50],"theme-downloader-plugin-downloader","wordpress-theme-and-plugin-download","https:\u002F\u002Fd3logics.com\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-anything-downloader.3.0.4.zip",85,{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":25,"num_ratings":25,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":17,"tags":67,"homepage":72,"download_link":73,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"monster-downloader","Monster Downloader","1.0.2","pluginbazar","https:\u002F\u002Fprofiles.wordpress.org\u002Fpluginbazar\u002F","\u003Cp>Monster Downloader is the best plugin for download plugin and themes.Perfect plugin for quickly downloading themes and plugins.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Download the plugin and theme with one click.\u003C\u002Fli>\n\u003Cli>All download reports show in the WP list table.\u003C\u002Fli>\n\u003C\u002Ful>\n","Monster Downloader is the best plugin for download plugin and themes.Perfect plugin for quickly downloading themes and plugins.",70,3184,"2024-05-09T06:58:00.000Z","6.5.8","6.0.2",[68,69,70,71],"wp-best-theme-plugin-downloader","wp-downloader-plus","wp-plugin-downloader","wp-theme-downloader","https:\u002F\u002Fpluginbazar.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmonster-downloader.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":11,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":47,"requires_php":17,"tags":87,"homepage":92,"download_link":93,"security_score":94,"vuln_count":13,"unpatched_count":13,"last_vuln_date":95,"fetched_at":27},"hide-real-download-path","Hide Real Download Path","1.6","Deepak S","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeepaks\u002F","\u003Cp>Plugin helps you to hide real\u002Fdirect path of files hosted on your server for download and make your files secure from unauthorized download. It also maintains a log of all downloads done using it and provide capability to disallow direct linking (hot linking) to your files from other website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>You can:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Allow or restrict hotlink (direct download) of your files from other website\u002Fexternal links.\u003C\u002Fli>\n\u003Cli>Restrict ‘download only’ from link on your website\u003C\u002Fli>\n\u003Cli>View log of individual download\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It support multiple files extensions including:\u003Cbr \u002F>\nzip \u002F pdf \u002F doc \u002F xls \u002F ppt \u002F exe \u002F gif \u002F png \u002F jpg \u002F jpeg \u002F mp3 \u002F wav \u002F mpeg \u002F mpg \u002F mpe \u002F mov \u002F avi \u002F xlsx\u003C\u002Fp>\n\u003Cp>*\u003Cstrong>Step by step configuration guideline\u003C\u002Fstrong> in Settings sections of plugin after activation\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Version 1.5 changes:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Corrupt file bug fixed\u003Cbr \u002F>\n– Easy step by step guide added in admin to configure plugin\u003Cbr \u002F>\n– Generate Root path dynamically\u003Cbr \u002F>\n– Support for xlsx added\u003C\u002Fp>\n","This plugin help to hide real download path of your files on server and allow file downloading using a common URL. Also maintain log of your downloads …",10370,76,14,"2014-10-20T09:55:00.000Z","4.0.38",[88,89,75,90,91],"disable-direct-download","hide-download-path","hot-linking","secure-file","http:\u002F\u002Fxlab.biz\u002Fhide-download-path-of-file-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-real-download-path.zip",63,"2025-09-05 00:00:00",{"slug":97,"name":98,"version":77,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":11,"num_ratings":105,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":17,"tags":109,"homepage":110,"download_link":111,"security_score":11,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"ez-downloader","EZ-Downloader","Abolfazl Edalati","https:\u002F\u002Fprofiles.wordpress.org\u002Fdrowranger\u002F","\u003Cp>Install Plugin with URL\u003C\u002Fp>\n\u003Ch3>توضیحات\u003C\u002Fh3>\n\u003Cp>پلاگین را نصب کنید\u003C\u002Fp>\n\u003Cp>سپس داخل فیلد پلاگین لینک دانلود مستقیم پلاگین مورد نظر خود را وارد کنید.\u003C\u002Fp>\n\u003Cp>بعد روی دکمه نصب کلیک کنید تا پلاگین مورد نظر دانلود و نصب شود.\u003C\u002Fp>\n\u003Cp>توجه کنید لینک باید حاوی فایل اصلی پلاگین باشد ( یعنی فقط فایل های پلاگین داخلش باشه نه اینکه پلاگین داخل یک فایل دیگه و راهنما ها باشه )\u003C\u002Fp>\n\u003Cp>لینک های غیر مستقیم توسط پلاگین دانلود نمیشود.\u003C\u002Fp>\n\u003Cp>اگر خوشتون اومد و دوست داشتید نظر بدید و امتیاز 5 ستاره ثبت کنید.\u003C\u002Fp>\n\u003Ch3>ویدیو آموزشی\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FzgGtPl3JhZg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n","Install Plugin with URL",60,1662,9,"2025-09-26T12:11:00.000Z","6.8.5","3.0.1",[21],"https:\u002F\u002Fwiraweb.net\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fez-downloader.1.6.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":11,"num_ratings":13,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":17,"tags":125,"homepage":130,"download_link":131,"security_score":11,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"direct-download-for-woocommerce","Direct Download for WooCommerce","1.19","Kamalyon","https:\u002F\u002Fprofiles.wordpress.org\u002Fkamalyon\u002F","\u003Cp>This plugin allows customers to download virtual, downloadable, and free products directly from the product page without adding them to the cart. It’s perfect for stores that offer free digital downloads.\u003C\u002Fp>\n","Direct Download for WooCommerce allows customers to download virtual, downloadable, and free products directly from the product page.",40,740,"2025-11-28T19:13:00.000Z","6.9.4","4.0",[19,126,127,128,129],"download","free-products","virtual-products","woocommerce","https:\u002F\u002Fkamalyon.com\u002Fdirect-download-for-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdirect-download-for-woocommerce.1.19.zip",{"attackSurface":133,"codeSignals":159,"taintFlows":170,"riskAssessment":208,"analyzedAt":216},{"hooks":134,"ajaxHandlers":155,"restRoutes":156,"shortcodes":157,"cronEvents":158,"entryPointCount":25,"unprotectedCount":25},[135,141,145,151],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","plugins_loaded","load_text_domain","downloadify-wp.php",33,{"type":136,"name":142,"callback":143,"file":139,"line":144},"admin_enqueue_scripts","load_admin_scripts",68,{"type":146,"name":147,"callback":148,"priority":149,"file":150,"line":84},"filter","plugin_action_links","render_plugin_actions_link",10,"includes\\class-hooks.php",{"type":136,"name":152,"callback":153,"file":150,"line":154},"admin_init","downloading_objects",15,[],[],[],[],{"dangerousFunctions":160,"sqlUsage":161,"outputEscaping":163,"fileOperations":25,"externalRequests":25,"nonceChecks":13,"capabilityChecks":25,"bundledLibraries":169},[],{"prepared":25,"raw":25,"locations":162},[],{"escaped":164,"rawEcho":13,"locations":165},4,[166],{"file":150,"line":167,"context":168},136,"raw output",[],[171,197],{"entryPoint":172,"graph":173,"unsanitizedCount":25,"severity":196},"downloading_objects (includes\\class-hooks.php:63)",{"nodes":174,"edges":192},[175,179,185,188],{"id":176,"type":177,"label":178,"file":150,"line":83},"n0","source","$_GET (x2)",{"id":180,"type":181,"label":182,"file":150,"line":183,"wp_function":184},"n1","sink","header() [Header Injection]",132,"header",{"id":186,"type":177,"label":187,"file":150,"line":83},"n2","$_GET",{"id":189,"type":181,"label":190,"file":150,"line":167,"wp_function":191},"n3","echo() [XSS]","echo",[193,195],{"from":176,"to":180,"sanitized":194},true,{"from":186,"to":189,"sanitized":194},"low",{"entryPoint":198,"graph":199,"unsanitizedCount":25,"severity":196},"\u003Cclass-hooks> (includes\\class-hooks.php:0)",{"nodes":200,"edges":205},[201,202,203,204],{"id":176,"type":177,"label":178,"file":150,"line":83},{"id":180,"type":181,"label":182,"file":150,"line":183,"wp_function":184},{"id":186,"type":177,"label":187,"file":150,"line":83},{"id":189,"type":181,"label":190,"file":150,"line":167,"wp_function":191},[206,207],{"from":176,"to":180,"sanitized":194},{"from":186,"to":189,"sanitized":194},{"summary":209,"deductions":210},"The \"downloadify-wp\" v1.0.1 plugin exhibits a strong security posture based on the provided static analysis.  The absence of any AJAX handlers, REST API routes, shortcodes, or cron events, particularly unprotected ones, indicates a very small attack surface. The code also demonstrates good practices with 100% of SQL queries using prepared statements and a high percentage (80%) of output escaping. The presence of a nonce check is also a positive indicator. Taint analysis revealing no unsanitized paths further reinforces this. The plugin's vulnerability history being entirely clear of CVEs suggests a history of secure development and maintenance.\n\nDespite the overwhelmingly positive findings, the analysis does highlight a minor area for attention: the lack of capability checks. While the attack surface is currently minimal and well-protected by nonce checks, relying solely on nonces without capability checks could become a concern if new features are introduced that expose sensitive operations. However, given the current state of the code, this is a low-priority concern. Overall, \"downloadify-wp\" v1.0.1 appears to be a secure plugin, with no immediate critical or high-risk vulnerabilities identified.",[211,214],{"reason":212,"points":213},"No capability checks found",3,{"reason":215,"points":164},"20% of output not properly escaped","2026-03-16T20:36:26.587Z",{"wat":218,"direct":226},{"assetPaths":219,"generatorPatterns":221,"scriptPaths":222,"versionParams":224},[220],"\u002Fwp-content\u002Fplugins\u002Fdownloadify-wp\u002Fassets\u002Fadmin\u002Fjs\u002Fscripts.js",[],[223],"assets\u002Fadmin\u002Fjs\u002Fscripts.js",[225],"downloadify-wp\u002Fassets\u002Fadmin\u002Fjs\u002Fscripts.js?ver=",{"cssClasses":227,"htmlComments":228,"htmlAttributes":229,"restEndpoints":230,"jsGlobals":231,"shortcodeOutput":233},[],[],[],[],[232],"downloadifyWp",[]]