[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwTHUsYjlizhhjQBnkCvDJ1n-JJCpnGVRUnf9RfUbpxc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":58,"crawl_stats":36,"alternatives":66,"analysis":173,"fingerprints":266},"dx-delete-attached-media","DX Delete Attached Media","2.0.6","Mario Peshev","https:\u002F\u002Fprofiles.wordpress.org\u002Fnofearinc\u002F","\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fx51scLO71U0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>DX Delete Attached Media deletes all of the attached media files to your posts once they get deleted from the system. The standard core behavior deletes posts alone without taking care of related images. Now you can maintain your install and get rid of all solo attachments getting into your posts via the Media button and used nowhere else.\u003C\u002Fp>\n\u003Cp>\u003Cem>The plugin works with WooCommerce and Easy Digital Downloads.\u003C\u002Fem>\u003C\u002Fp>\n","Automatically deletes attached media from posts and custom post types added via the Media button.",4000,54695,98,28,"2023-12-19T08:51:00.000Z","6.3.8","4.5","7.4",[20,21,22],"attachment","media","post","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdx-delete-attached-media\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdx-delete-attached-media.2.0.6.zip",84,2,0,"2023-10-16 00:00:00","2026-03-15T15:16:48.613Z",[31,46],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":6,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":45},"CVE-2023-46073","dx-delete-attached-media-cross-site-request-forgery-via-addtobase","DX Delete Attached Media \u003C= 2.0.5.1 - Cross-Site Request Forgery via add_to_base","The DX Delete Attached Media plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.5.1. This is due to missing or incorrect nonce validation on the add_to_base function. This makes it possible for unauthenticated attackers to modify the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=2.0.5.1","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2024-01-22 19:56:02",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F961d6d1d-46e8-489f-ac5f-51b55c5a0460?source=api-prod",99,{"id":47,"url_slug":48,"title":49,"description":50,"plugin_slug":4,"theme_slug":36,"affected_versions":51,"patched_in_version":52,"severity":38,"cvss_score":39,"cvss_vector":53,"vuln_type":41,"published_date":54,"updated_date":42,"references":55,"days_to_patch":57},"WF-7b78004e-caa5-4478-ba16-5f1a10e31541-dx-delete-attached-media","dx-delete-attached-media-missing-authorization-to-settings-update","DX Delete Attached Media \u003C= 2.0.2 - Missing Authorization to Settings Update","The DX Delete Attached Media plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the add_to_base function in versions up to, and including, 2.0.2. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to update plugin settings.","\u003C=2.0.2","2.0.3","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","2023-05-04 00:00:00",[56],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7b78004e-caa5-4478-ba16-5f1a10e31541?source=api-prod",264,{"slug":59,"display_name":7,"profile_url":8,"plugin_count":60,"total_installs":61,"avg_security_score":62,"avg_patch_time_days":63,"trust_score":64,"computed_at":65},"nofearinc",13,5120,86,164,69,"2026-04-04T05:39:02.123Z",[67,87,109,134,153],{"slug":68,"name":69,"version":70,"author":71,"author_profile":72,"description":73,"short_description":74,"active_installs":75,"downloaded":76,"rating":77,"num_ratings":78,"last_updated":79,"tested_up_to":16,"requires_at_least":80,"requires_php":18,"tags":81,"homepage":84,"download_link":85,"security_score":86,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"autoremove-attachments","Autoremove Attachments","1.3.1","Polygon Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fpolygonthemes\u002F","\u003Cp>Autoremove Attachments helps you keep the Media Library clean by deleting all media files attached as child attachments to a post, page, or custom post type when the parent is deleted.\u003C\u002Fp>\n\u003Cp>By default, when you delete content from your website, regardless if it’s a post, a page, a product, or any kind of post type, WordPress keeps the media files previously associated with it, even if after the removal of your content they are not used anywhere else.\u003C\u002Fp>\n\u003Cp>Autoremove Attachments tries to solve this problem by automating the removal of all media files that have a child-parent relationship with the removed content. (so you don’t have to manually track and remove orphan files left on your server)\u003C\u002Fp>\n\u003Ch3>Important Considerations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>A soft delete that places your post, page, or custom post type in Trash will not trigger the removal of its child attachments. The purge happens when you empty your trash.\u003C\u002Fli>\n\u003Cli>When you delete a post, page or custom post type, we try to determine if its child attachments are used anywhere else on your website. If they are, we do not remove them, to prevent broken links.\u003C\u002Fli>\n\u003Cli>The additional checks before the automatic removal can be disabled from the Media Settings for improved performance on large websites with thousands of posts and media files.\u003C\u002Fli>\n\u003Cli>The plugin only removes files tracked by WordPress. Some poorly coded themes generate additional thumbnail sizes that are not tracked by WordPress and this always leads to orphan files left on your server.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Compatibility and Third-Party Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-digital-downloads\" rel=\"ugc\">Easy Digital Downloads\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>All themes and plugins that do things the WordPress way\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you use a plugin to optimize and clean your database of revisions, trashed posts, etc, make sure you use one that relies on native WordPress functions to perform the maintenance tasks. We recommend \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-sweep\" rel=\"ugc\">WP-Sweep\u003C\u002Fa>.\u003C\u002Fp>\n","Remove child attachments when parent post, page or custom post type is deleted.",3000,34470,100,15,"2023-08-12T00:30:00.000Z","5.8",[20,82,21,83,22],"custom-post-type","page","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fautoremove-attachments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautoremove-attachments.zip",85,{"slug":88,"name":89,"version":90,"author":91,"author_profile":92,"description":93,"short_description":94,"active_installs":95,"downloaded":96,"rating":25,"num_ratings":97,"last_updated":98,"tested_up_to":99,"requires_at_least":100,"requires_php":101,"tags":102,"homepage":105,"download_link":106,"security_score":107,"vuln_count":26,"unpatched_count":27,"last_vuln_date":108,"fetched_at":29},"lh-add-media-from-url","LH Add Media From Url","1.30","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>This plugin allow you to grab image from remote url and save into your own word press media library. By doing so, you never worried if the remote image was removed by its owner. This also save you steps to download the image to local computer and upload again to your own WordPress. There is also a JavaScript bookmarklet that helps to automate the process if you are surfing the internet and find something you would like to add to the library\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatically downloads and adds the file to the media library.\u003C\u002Fli>\n\u003Cli>After the uploading is successful, you are redirected to the edit screen\u003C\u002Fli>\n\u003Cli>Once the bookmarklet is installed you don’t even need to copy and paste a url (just navigate to the url and select the bookmark).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-add-media-from-url\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-add-media-from-url\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Translation credits\u003C\u002Fh3>\n","Upload files from an url to wordpress media library, either enter file urls in an onsite input box or click a bookmarklet.",2000,37732,9,"2024-08-20T14:07:00.000Z","6.6.5","5.0","",[20,103,104,21,22],"bookmarklet","download","https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-add-media-from-url\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-add-media-from-url.zip",91,"2024-08-20 17:25:05",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":95,"downloaded":117,"rating":13,"num_ratings":118,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":122,"tags":123,"homepage":129,"download_link":130,"security_score":131,"vuln_count":132,"unpatched_count":132,"last_vuln_date":133,"fetched_at":29},"wow-media-library-fix","Fix Media Library","2.0","wowpress.host","https:\u002F\u002Fprofiles.wordpress.org\u002Fwowpresshost\u002F","\u003Cp>Fix Media Library fixes inconsistency between wp-content\u002Fuploads folder and\u003Cbr \u002F>\ndatabase.\u003Cbr \u002F>\nFixes corrupted Media Library database records.\u003Cbr \u002F>\nDesigned to run smoothly against huge Media Libraries containing hundreds of thousands of images.\u003C\u002Fp>\n\u003Cp>Useful when:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Really old database is used and there are a lot of problems with Media Library found\u003C\u002Fli>\n\u003Cli>New thumbnail sizes are registered\u003C\u002Fli>\n\u003Cli>Some thumbnail sizes are not used anymore (theme change, upgrade), but image files are still exists\u003C\u002Fli>\n\u003Cli>There are Media Library entries present pointing to image files that don’t exist anymore\u003C\u002Fli>\n\u003Cli>Some entries in Media Library are not displayed, while image files are present (_wp_attachment_metadata meta field corrupted)\u003C\u002Fli>\n\u003Cli>There are a lot of images in wp-content\u002Fuploads folder that are no longer used\u003C\u002Fli>\n\u003Cli>There are duplicate attachments pointing to the same image file\u003C\u002Fli>\n\u003Cli>Images are used by website, but you can’t find them in Media Library\u003C\u002Fli>\n\u003Cli>You want to update attachments GUID fields containing old\u002Fstaging urls\u003C\u002Fli>\n\u003Cli>Detects major database corruptions affecting media library functionality\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>At \u003Ca href=\"https:\u002F\u002Fwowpress.host\u002F\" rel=\"nofollow ugc\">WowPress.host\u003C\u002Fa> company we regularly migrate very old databases and clean it up to make sure website using it is running smoothly. Those databases have all different kinds of inconsistencies collected during years or even decades of usage, and Media Library is the most common problematic piece of data here.\u003Cbr \u002F>\nThat plugin helps to solve most common problems related to Media Library data.\u003C\u002Fp>\n\u003Cp>We use a lot of open-source tools in our work, and therefore decided publish our own tools so that those can be used by the community too.\u003C\u002Fp>\n\u003Ch4>Need Help? Found A Bug? Want To Contribute Code?\u003C\u002Fh4>\n\u003Cp>Support for this plugin is provided via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwow-media-library-fix\" rel=\"ugc\">WordPress.org forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The source code for this plugin is available on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwowpress-host\u002Fwow-media-library-fix\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Paid support at \u003Ca href=\"https:\u002F\u002Fwowpress.host\u002Fprofessional-services\u002F\" rel=\"nofollow ugc\">WowPress.host\u003C\u002Fa>.\u003C\u002Fp>\n","Fix Media Library inconsistency between database and wp-content\u002Fuploads folder contents. Unused image files, broken media library entries, missing att …",37302,32,"2018-12-18T10:26:00.000Z","5.0.25","4.6","5.3",[124,125,126,127,128],"attachments","media-library","post-thumbnail","thumbnail","thumbnails","https:\u002F\u002Fwowpress.host\u002Fplugins\u002Fwow-","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwow-media-library-fix.2.0.zip",63,1,"2025-12-12 00:00:00",{"slug":135,"name":136,"version":112,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":25,"num_ratings":143,"last_updated":144,"tested_up_to":145,"requires_at_least":146,"requires_php":147,"tags":148,"homepage":151,"download_link":152,"security_score":77,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"delete-post-with-attachments","Delete Post with Attachments","Alsvin Tech","https:\u002F\u002Fprofiles.wordpress.org\u002Falsvin\u002F","\u003Cp>By default, when you delete a post or page, any associated media files or attachments to that post do not get deleted. Keeping these orphan files to your server will eat up a lot of precious web space for no reason.\u003C\u002Fp>\n\u003Cp>Using this plugin when you delete a post, any associated attachments will also get deleted automatically.\u003C\u002Fp>\n\u003Cp>Before deleting any media file or attachment the plugin smartly checks that the attachment is not in use elsewhere, i.e. on any other post, page, or product.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Works with popular Page Builders:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Elementor\u003C\u002Fli>\n\u003Cli>Thrive Architect\u003C\u002Fli>\n\u003Cli>Divi Builder\u003C\u002Fli>\n\u003Cli>Brizy\u003C\u002Fli>\n\u003Cli>and many more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Works with all popular plugins such as:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads\u003C\u002Fli>\n\u003Cli>LearnDash\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003Cli>MemberPress\u003C\u002Fli>\n\u003Cli>Paid Memberships Pro\u003C\u002Fli>\n\u003Cli>and many more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>No configuration required\u003C\u002Fli>\n\u003Cli>Just activate and use\u003C\u002Fli>\n\u003Cli>Save your precious server storage\u003C\u002Fli>\n\u003Cli>Works automatically on post\u002Fpage deletion\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple plugin to delete attached media files e.g. images\u002Fvideos\u002Fdocuments, when the post is deleted. Supports Elementor, Divi Builder, Thrive Archit …",1000,8958,6,"2025-08-19T14:34:00.000Z","6.8.5","4.1","5.6",[20,149,150,21,22],"cleanup","delete","https:\u002F\u002Fwww.alsvin-tech.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdelete-post-with-attachments.2.0.zip",{"slug":154,"name":155,"version":156,"author":157,"author_profile":158,"description":159,"short_description":160,"active_installs":141,"downloaded":161,"rating":162,"num_ratings":163,"last_updated":164,"tested_up_to":165,"requires_at_least":166,"requires_php":167,"tags":168,"homepage":171,"download_link":172,"security_score":86,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"find-posts-using-attachment","Find Posts Using Attachment","1.0","Sergey Biryukov","https:\u002F\u002Fprofiles.wordpress.org\u002Fsergeybiryukov\u002F","\u003Cp>Allows to find all posts where a particular attachment (image, video, etc.) is used.\u003C\u002Fp>\n\u003Cp>Adds a “Used In” column to the list view in Media Library, as well as to the attachment details modal.\u003C\u002Fp>\n\u003Cp>Finds posts that use the image (including any of its intermediate sizes) in post content, or as a featured image. Works with custom post types too.\u003C\u002Fp>\n\u003Cp>Inspired by a \u003Ca href=\"http:\u002F\u002Fwptavern.com\u002Fthe-problem-with-image-attachments-in-wordpress\" rel=\"nofollow ugc\">WP Tavern post\u003C\u002Fa> on image attachments.\u003C\u002Fp>\n","Allows to find all posts where a particular attachment is used.",12609,88,27,"2021-06-01T20:21:00.000Z","5.8.13","3.5","5.2.4",[20,169,21,170],"image","posts","http:\u002F\u002Fwptavern.com\u002Fthe-problem-with-image-attachments-in-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffind-posts-using-attachment.1.0.zip",{"attackSurface":174,"codeSignals":217,"taintFlows":256,"riskAssessment":257,"analyzedAt":265},{"hooks":175,"ajaxHandlers":208,"restRoutes":214,"shortcodes":215,"cronEvents":216,"entryPointCount":132,"unprotectedCount":27},[176,182,186,190,193,197,201,205],{"type":177,"name":178,"callback":179,"file":180,"line":181},"action","before_delete_post","delete_attachments","dx-delete-attached-media.php",43,{"type":177,"name":183,"callback":184,"file":180,"line":185},"admin_notices","dx_dam_screen",44,{"type":177,"name":187,"callback":188,"file":180,"line":189},"plugins_loaded","dx_dam_domain",53,{"type":177,"name":183,"callback":191,"file":180,"line":192},"dx_dam_activation_welcome",157,{"type":177,"name":194,"callback":195,"file":180,"line":196},"admin_menu","dx_dam_page",184,{"type":177,"name":198,"callback":199,"file":180,"line":200},"admin_enqueue_scripts","add_dx_dam_js",326,{"type":177,"name":202,"callback":203,"file":180,"line":204},"init","dxdam_admin_user",346,{"type":177,"name":206,"callback":203,"file":180,"line":207},"after_setup_theme",347,[209],{"action":210,"nopriv":211,"callback":210,"hasNonce":212,"hasCapCheck":211,"file":180,"line":213},"add_to_base",false,true,353,[],[],[],{"dangerousFunctions":218,"sqlUsage":219,"outputEscaping":221,"fileOperations":27,"externalRequests":27,"nonceChecks":132,"capabilityChecks":26,"bundledLibraries":255},[],{"prepared":27,"raw":27,"locations":220},[],{"escaped":222,"rawEcho":78,"locations":223},5,[224,227,229,231,233,235,238,240,242,244,246,247,249,251,253],{"file":180,"line":225,"context":226},253,"raw output",{"file":180,"line":228,"context":226},268,{"file":180,"line":230,"context":226},269,{"file":180,"line":232,"context":226},273,{"file":180,"line":234,"context":226},274,{"file":236,"line":237,"context":226},"templates\\dx-dam-help-page.php",3,{"file":236,"line":239,"context":226},52,{"file":236,"line":241,"context":226},61,{"file":236,"line":243,"context":226},74,{"file":236,"line":245,"context":226},82,{"file":236,"line":162,"context":226},{"file":236,"line":248,"context":226},93,{"file":236,"line":250,"context":226},110,{"file":236,"line":252,"context":226},118,{"file":236,"line":254,"context":226},126,[],[],{"summary":258,"deductions":259},"The plugin \"dx-delete-attached-media\" v2.0.6 exhibits a generally strong security posture in its current static analysis.  It boasts a small attack surface with only one AJAX handler, crucially protected by authentication. The complete absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests are excellent indicators of secure coding practices. Furthermore, the presence of nonce and capability checks reinforces its commitment to authorization.",[260,262],{"reason":261,"points":222},"Outputs are not consistently escaped",{"reason":263,"points":264},"Known medium severity vulnerabilities in history",10,"2026-03-16T18:14:50.874Z",{"wat":267,"direct":272},{"assetPaths":268,"generatorPatterns":269,"scriptPaths":270,"versionParams":271},[],[],[],[],{"cssClasses":273,"htmlComments":276,"htmlAttributes":277,"restEndpoints":283,"jsGlobals":284,"shortcodeOutput":285},[274,275],"dx-template-wrapper","content-wrapper",[],[278,279,280,281,282],"name=\"enable-feature\"","name=\"date_sort_new\"","name=\"date_sort_old\"","name=\"with_parent\"","name=\"without_parent\"",[],[],[]]