[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpAEm8sgsU5JH4ag33mxtILvi3JR9fIVP5T0gyRjrAx4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":133,"fingerprints":180},"ecom-email-health-check","eCommerce Email Health Check","1.0.2","Ahmed Saeed","https:\u002F\u002Fprofiles.wordpress.org\u002Fengahmeds3ed\u002F","\u003Cp>Stop worrying about lost eCommerce emails! This free, simple plugin helps you diagnose your store’s email delivery health in minutes. It runs a series of checks to identify common issues that cause emails to end up in spam or fail to send altogether.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Email Sending Test:\u003C\u002Fstrong> A one-click test to confirm if your site can send emails.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sender Address Check:\u003C\u002Fstrong> Verifies that your “From” address is configured correctly to avoid being flagged as spam.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SPF Record Validation:\u003C\u002Fstrong> Checks if your domain has a crucial SPF record to authenticate your emails.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy-to-Read Health Report:\u003C\u002Fstrong> Get a clear, actionable report with a summary of your email delivery status.\u003C\u002Fli>\n\u003C\u002Ful>\n","A free, simple tool to diagnose and test your eCommerce email delivery, ensuring orders and notifications reach customers.",0,225,100,1,"2025-08-25T20:31:00.000Z","6.8.5","5.0","",[20,21,22,23,24],"deliverability","e-commerce","email","smtp","woocommerce","https:\u002F\u002Fgithub.com\u002Fcodesir-co\u002Fecom-email-health-check","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fecom-email-health-check.1.0.2.zip",null,"2026-03-15T14:54:45.397Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"engahmeds3ed",2,93,30,89,"2026-04-05T10:20:52.446Z",[38,62,79,96,116],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":57,"download_link":58,"security_score":35,"vuln_count":59,"unpatched_count":11,"last_vuln_date":60,"fetched_at":61},"wp-mail-logging","WP Mail Logging","1.16.0","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>WP Mail Logging is the most popular plugin for logging emails sent from your WordPress site. Simply activate it and it will work immediately, no extra configuration is needed.\u003C\u002Fp>\n\u003Ch3>Are your WordPress emails not being sent or delivered?\u003C\u002Fh3>\n\u003Cp>Use this plugin to log all outgoing emails from your WordPress site. If there are any errors when sending the email from your site, our email logs will catch that error and display it to you.\u003C\u002Fp>\n\u003Cp>This will allow you to debug and fix your email sending issue.\u003C\u002Fp>\n\u003Ch3>Did a client not receive your email?\u003C\u002Fh3>\n\u003Cp>Our email logs allow you to resend any email that was sent from your site. No more lost emails!\u003C\u002Fp>\n\u003Ch3>Do you just want to keep a record of all emails sent from your site?\u003C\u002Fh3>\n\u003Cp>By default, WordPress and your web host do not log, store or keep track of emails sent from your website.\u003C\u002Fp>\n\u003Cp>This plugin will allow you to do just that. Our email logs will store every email that is sent from your WordPress site.\u003C\u002Fp>\n\u003Cp>You can search and view a particular email log, inspect its content or attachments, and even resend that email.\u003C\u002Fp>\n\u003Ch3>What email information is logged?\u003C\u002Fh3>\n\u003Cp>All emails sent from your WordPress site are logged. And here is the information that is stored:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Email Subject\u003C\u002Fli>\n\u003Cli>Email Content (HTML or text)\u003C\u002Fli>\n\u003Cli>Email Attachments\u003C\u002Fli>\n\u003Cli>Email Headers (to, from, reply-to, cc, bcc, …)\u003C\u002Fli>\n\u003Cli>Error Message (in case there was an error while attempting to send the email)\u003C\u002Fli>\n\u003Cli>IP Address of originating server (can be enabled in the settings)\u003C\u002Fli>\n\u003Cli>Date and Time of the email\u003C\u002Fli>\n\u003Cli>Receiver (the TO email address)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why are my logged emails still not delivered to the inbox?\u003C\u002Fh3>\n\u003Cp>There are a lot of steps that emails have to make in order to be delivered to the recipient’s inbox.\u003C\u002Fp>\n\u003Cp>When your WordPress site sends an email, there’s no guarantee it will be delivered.\u003C\u002Fp>\n\u003Cp>This is what the email’s journey looks like:\u003C\u002Fp>\n\u003Col>\n\u003Cli>WordPress creates an email\u003C\u002Fli>\n\u003Cli>WordPress passes the email to your website host and that email gets logged by our plugin\u003C\u002Fli>\n\u003Cli>The host server takes the email and sends it (SMTP or Mail Transfer Agent)\u003C\u002Fli>\n\u003Cli>Recipient server receives or blocks the email\u003C\u002Fli>\n\u003Cli>If the email is accepted, the spam filter decides if it goes to the inbox or the spam folder\u003C\u002Fli>\n\u003Cli>Recipients see the email and might open it.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>This plugin does not track delivery after step 2.\u003C\u002Fp>\n\u003Cp>If you have deliverability issues, we suggest installing the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-mail-smtp\u002F\" rel=\"ugc\">WP Mail SMTP\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>WP Mail SMTP fixes WordPress email deliverability problems, you can choose between 12 email providers (Gmail, Outlook, SendLayer, Mailgun, …) to resolve your email sending issue and it’s super easy to set up. WP Mail SMTP is trusted by more than 3 million websites.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>The plugin was created and launched in 2014 by \u003Ca href=\"https:\u002F\u002Fno3x.de\u002F\" rel=\"nofollow ugc\">Christian Zöller\u003C\u002Fa>.\u003C\u002Fp>\n","Log, view, and resend all emails sent from your WordPress site. Great for resolving email sending issues or keeping a copy for auditing.",300000,4360548,94,349,"2026-02-19T07:13:00.000Z","6.9.4","5.3","7.4",[20,22,55,23,56],"email-log","spam","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-mail-logging\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mail-logging.1.16.0.zip",6,"2026-02-27 17:58:35","2026-03-15T15:16:48.613Z",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":13,"downloaded":70,"rating":11,"num_ratings":11,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":18,"tags":74,"homepage":18,"download_link":77,"security_score":78,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":61},"carrot-quest","Carrot quest","2.1.1","carrotquest","https:\u002F\u002Fprofiles.wordpress.org\u002Fcarrotquest\u002F","\u003Cp>Carrot quest совмещает в себе все инструменты для автоматизации маркетинга, продаж и коммуникации с пользователями. Поддерживает WooCommerce 5.x, 6.x, 7.x (до 7.1.0 версии).\u003C\u002Fp>\n\u003Ch3>Описание\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">Carrot quest\u003C\u002Fa> — инструмент для создания чат-ботов и других инструментов автоматизации маркетинга. С помощью Carrot quest вы можете создавать и настраивать чат-ботов для сайта и мессенджеров, размещать формы подписки и опросники на сайте, настраивать триггеры и многое другое.\u003C\u002Fp>\n\u003Cp>Это удобный инструмент для автоматизации \u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Ffor-marketing-teams\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">маркетинга\u003C\u002Fa> и \u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Fsales\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">продаж\u003C\u002Fa>, который поможет вам повысить вовлеченность аудитории и собрать важные данные о клиентах.\u003C\u002Fp>\n\u003Cp>У Carrot quest есть ряд преимуществ по сравнению с другими платформами автоматизации маркетинга:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Интуитивно понятный интерфейс: у Carrot quest простой и удобный интерфейс, который позволяет создавать, настраивать чат-ботов и другие инструменты автоматизации маркетинга без программирования.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Fintegration\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">Интеграция с различными платформами\u003C\u002Fa>: Carrot quest может интегрироваться с различными платформами, например, с CRM-системами, социальными сетями и мессенджерами. Это позволяет использовать сервис в маркетинговых кампаниях.\u003C\u002Fli>\n\u003Cli>Гибкие настройки: в Carrot quest большой набор настроек, которые позволяют настроить чат-ботов и другие инструменты автоматизации маркетинга под свои нужды.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Femail-marketing\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">Email-рассылки\u003C\u002Fa>: кроме чат-ботов и других инструментов автоматизации маркетинга, в Carrot quest также можно собирать и отправлять email-рассылки. Вы можете создавать шаблоны писем, расписывать сценарии рассылок и автоматически запускать их, что позволяет эффективно взаимодействовать с вашей аудиторией и продвигать свой бизнес через email-канал.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Fchatbot\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">Чат-боты\u003C\u002Fa>: вы можете настроить автоматические ответы на часто задаваемые вопросы, создавать \u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Fchatbot\u002Ftemplates\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">различные сценарии\u003C\u002Fa> для общения с пользователями, отправлять уведомления и предложения, собирать контактные данные и многое другое. Кроме того, Carrot quest поддерживает интеграцию с различными мессенджерами: WhatsApp, Facebook Messenger, Telegram и др., что позволяет использовать его в различных каналах коммуникации с клиентами.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.carrotquest.io\u002Flead-manager\u002F?utm_source=wordpress&utm_medium=marketplace&utm_campaign=intagration\" rel=\"nofollow ugc\">Удобная аналитика\u003C\u002Fa>: в Carrot quest есть подробная аналитика о поведении пользователей, эффективности чат-ботов и других инструментов автоматизации маркетинга.\u003C\u002Fli>\n\u003Cli>Поддержка: в Carrot quest вы можете настроить круглосуточную техническую поддержку для своих пользователей.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>В целом, в Carrot quest есть много возможностей для создания, настройки чат-ботов и других инструментов автоматизации маркетинга, что делает его удобным и гибким инструментом для маркетинговых кампаний.\u003C\u002Fp>\n","Carrot quest совмещает в себе все инструменты для автоматизации маркетинга, продаж и коммуникации с пользователями. Поддерживает WooCommerce 5.x, 6.",4665,"2023-04-08T03:11:00.000Z","5.7.15","4.2",[66,21,75,76,24],"email-campaigns","widgets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcarrot-quest.2.1.1.zip",85,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":13,"num_ratings":14,"last_updated":89,"tested_up_to":51,"requires_at_least":90,"requires_php":53,"tags":91,"homepage":94,"download_link":95,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":61},"custom-smtp","Custom SMTP: Email Deliverability – FREE & Easy-to-use","2.1.0","Nicolas Verlhiac","https:\u002F\u002Fprofiles.wordpress.org\u002Fnicolasverlhiac\u002F","\u003Ch3>Add Mail SMTP settings for WordPress\u003C\u002Fh3>\n\u003Cp>\u003Cem>Looking to modify the SMTP on your WordPress site?\u003C\u002Fem>\u003Cbr \u002F>\nOur Custom SMTP solution offers you this possibility, allowing you to easily change your WordPress SMTP settings, ensuring your emails consistently land in the recipient’s inbox.\u003C\u002Fp>\n\u003Cp>Custom SMTP solves your email deliverability problems by reconfiguring WordPress to use a proper SMTP provider when sending emails.\u003C\u002Fp>\n\u003Cp>What’s more, our intuitive settings page and comprehensive documentation will guide you through the process, making the task of modifying your SMTP settings easier than ever.\u003C\u002Fp>\n\u003Cp>Custom SMTP is a free tool, packed with all the essential features you need to send your WordPress emails with absolute confidence!\u003C\u002Fp>\n\u003Ch3>Built-in Email Logging\u003C\u002Fh3>\n\u003Cp>Never wonder if your emails were sent again. Custom SMTP automatically logs every email sent from your WordPress site – including WooCommerce order notifications, contact form submissions, and password resets. Preview email content directly in wp-admin, debug delivery issues with detailed error messages, and export logs for compliance.\u003C\u002Fp>\n\u003Ch3>Configuration Options\u003C\u002Fh3>\n\u003Cp>You can set the following options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>From Name & Email\u003C\u002Fstrong> – Specify the sender name and email address for all outgoing emails\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SMTP Host\u003C\u002Fstrong> – Your email provider’s server (e.g., smtp.gmail.com)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SMTP Port\u003C\u002Fstrong> – Common ports: 587 (TLS), 465 (SSL), 25 (None)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Encryption\u003C\u002Fstrong> – Choose between None, SSL, or TLS\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Authentication\u003C\u002Fstrong> – Enable\u002Fdisable SMTP authentication for relay servers\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Username & Password\u003C\u002Fstrong> – Your SMTP credentials (password stored encrypted)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Provider Presets\u003C\u002Fstrong> – One-click configuration for Gmail, Outlook, iCloud, SendGrid, AWS SES, and more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>SMTP Configuration\u003C\u002Fstrong>\u003Cbr \u002F>\n* Configure any SMTP server (Gmail, Outlook, SendGrid, Mailgun, AWS SES, etc.)\u003Cbr \u002F>\n* Support for SSL\u002FTLS encryption\u003Cbr \u002F>\n* Optional SMTP authentication for relay servers\u003Cbr \u002F>\n* Test connection without sending emails\u003Cbr \u002F>\n* Send test emails to verify configuration\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Logging & Debugging\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Zero configuration\u003C\u002Fstrong> – Logging works out of the box\u003Cbr \u002F>\n* Track all emails sent from WordPress, WooCommerce, Contact Form 7, and any plugin\u003Cbr \u002F>\n* View delivery status (sent\u002Ffailed) with detailed error messages\u003Cbr \u002F>\n* \u003Cstrong>Debug wp_mail errors easily\u003C\u002Fstrong> – See exactly why emails fail\u003Cbr \u002F>\n* Store email headers for advanced troubleshooting\u003Cbr \u002F>\n* Search by recipient, subject, or status\u003Cbr \u002F>\n* Filter by date range (Today, 7 days, 30 days)\u003Cbr \u002F>\n* Export logs to CSV for reporting and compliance\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Preview & Content\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Preview email body directly from wp-admin\u003C\u002Fstrong> – No need to send test emails\u003Cbr \u002F>\n* View HTML source code of any logged email\u003Cbr \u002F>\n* Outlook-style sidebar for quick preview\u003Cbr \u002F>\n* Download any email as HTML file for archiving\u003Cbr \u002F>\n* Optional content storage (disabled by default for privacy)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security\u003C\u002Fstrong>\u003Cbr \u002F>\n* SMTP password encrypted in database (AES-256-CBC)\u003Cbr \u002F>\n* All admin actions protected with nonces\u003Cbr \u002F>\n* Capability checks on all operations\u003C\u002Fp>\n","Effortlessly configure WordPress SMTP and monitor all sent emails. Built-in email logging with preview, error debugging, and WooCommerce support.",90,2756,"2026-02-04T22:21:00.000Z","6.0",[22,55,92,23,93],"mail-log","woocommerce-email","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-smtp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-smtp.2.1.0.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":13,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":17,"requires_php":53,"tags":109,"homepage":112,"download_link":113,"security_score":114,"vuln_count":14,"unpatched_count":11,"last_vuln_date":115,"fetched_at":61},"mail-control","Mail Control – Email Customizer, SMTP Deliverability, logging, open and click Tracking","0.3.9","Rahal Aboulfeth","https:\u002F\u002Fprofiles.wordpress.org\u002Frahalaboulfeth\u002F","\u003Cp>Design and customize your emails using WordPress native customizer (compatible with WooCommerce), control your SMTP email deliverability, track your emails clicks and openings (reads), and allow defering the emails as a background process to speed up your pages.\u003C\u002Fp>\n\u003Cp>With Mail Control, you will have a better control over how your emails are handled by wordpress (and WooCommerce) from email design and customization to smtp delivery and click tracking.\u003C\u002Fp>\n\u003Ch3>Email Designer using WordPress native customizer\u003C\u002Fh3>\n\u003Cp>Design beautiful emails using the WooCommerce compatible Email Customizer. The UI provided by WordPress Native Customizer makes it easy to customize the look and feel of your emails.\u003C\u002Fp>\n\u003Ch3>Tracking and logging emails opening and clicks\u003C\u002Fh3>\n\u003Cp>This will allow you to optimize how you craft your emails content and get the better of your email marketing.\u003C\u002Fp>\n\u003Ch3>Sending Emails via an SMTP server\u003C\u002Fh3>\n\u003Cp>For a better deliverability for your emails, Mail Control lets you setup easily you favorite SMTP server.\u003C\u002Fp>\n\u003Ch3>Testing Email Deliverability of your SMTP server\u003C\u002Fh3>\n\u003Cp>Help you make sure your smtp servers checks all the requierements for the perfect deliverability by testing your SFP, DKIM and DMARC setup (and more on this to come).\u003C\u002Fp>\n\u003Ch3>Sending the emails by a background process to speed up your pages\u003C\u002Fh3>\n\u003Cp>No more page timeout because the smtp server take too much time to respond, defer your emails and let a cronjob take care of sending your emails in a separate process.\u003C\u002Fp>\n\u003Ch3>Having a log of all the emails sent (or failed) by wordpress\u003C\u002Fh3>\n\u003Cp>You can find all the emails handled by wordpress (or still in the queue), and resend them if needed.\u003C\u002Fp>\n\u003Ch3>More features and documentation coming\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.wpmailcontrol.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">Mail Control Online Documentation\u003C\u002Fa> writing is in progress.\u003C\u002Fp>\n","Design and customize email templates, control your SMTP email deliverability, track your emails clicks and openings, and send them as background task.",60,2305,4,"2025-03-22T17:45:00.000Z","6.7.5",[22,110,111,55,23],"email-customizer","email-deliverability","https:\u002F\u002Fwww.wpmailcontrol.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmail-control.0.3.9.zip",91,"2023-07-10 00:00:00",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":11,"num_ratings":11,"last_updated":126,"tested_up_to":51,"requires_at_least":127,"requires_php":53,"tags":128,"homepage":131,"download_link":132,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":61},"email-essentials","Email Essentials","6.0.3","Acato","https:\u002F\u002Fprofiles.wordpress.org\u002Facato\u002F","\u003Cp>Email Essentials vastly reduces the chances of your emails being marked as spam or being rejected. Originally a debugging tool, it has grown into a full-fledged email enhancement plugin.\u003C\u002Fp>\n\u003Cp>Please note that this plugin is not a “we support any type of transport” Email plugin. For other protocols than SMTP, but rather to enhance the email sending capabilities of WordPress.\u003Cbr \u002F>\nIf you need to send emails with other protocols than SMTP, this plugin is not for you. You might want to look at plugins like Post SMTP (not affiliated).\u003C\u002Fp>\n\u003Cp>And since version 6.0.0, after more than 10 years of development, this plugin is now a FOSS plugin, meaning it is free to use, modify and distribute under the GPLv2 license.\u003C\u002Fp>\n\u003Cp>In return, we ask you to support the development of this plugin by contributing to the codebase, reporting bugs, and helping others in the community.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Responsible disclosure:\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you find a vulnerability, please email us at \u003Ca href=\"mailto:responsibledisclosure@acato.nl\" rel=\"nofollow ugc\">responsibledisclosure@acato.nl\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Set a good From name and email address, automatically correcting it if needed. For example, a contact form is sent from the visitors email address, resulting in an invalid Sender address. This plugin will correct it to a valid email address. This plugin automatically corrects it.\u003C\u002Fli>\n\u003Cli>Correct envelope-from address; often forgotten, but important for deliverability.\u003C\u002Fli>\n\u003Cli>Reformat as HTML with plain text alternative; will detect the use of HTML ensures that emails are sent as HTML with a plain text alternative.\u003C\u002Fli>\n\u003Cli>Process shortcodes in your email content.\u003C\u002Fli>\n\u003Cli>UTF8 recoding, to ensure that special characters are correctly encoded in the email.\u003C\u002Fli>\n\u003Cli>Email Essentials allows for adding CSS, header, footer, and body template using filters, see below.\u003C\u002Fli>\n\u003Cli>Convert CSS to inline styles for better support in email clients\u003C\u002Fli>\n\u003Cli>SMTP configuration\u003C\u002Fli>\n\u003Cli>Send emails to multiple addressees as separate emails\u003C\u002Fli>\n\u003Cli>S\u002FMIME signing, using a supplied certificate, to ensure the authenticity of the email.\u003C\u002Fli>\n\u003Cli>DKIM signing, and providing all information needed to set up DKIM signing for your domain.\u003C\u002Fli>\n\u003Cli>Allow redirecting emails sent to the administrator to other email addresses based on the email subject.\u003C\u002Fli>\n\u003Cli>Allow redirecting emails sent to the moderators (e.g., for comments).\u003C\u002Fli>\n\u003Cli>Keep a history of outgoing emails (debugging, cleared on deactivation)\u003C\u002Fli>\n\u003Cli>Email receipt tracking (for investigative purposes only, see GDPR note)\u003C\u002Fli>\n\u003Cli>Re-send button for failed emails\u003C\u002Fli>\n\u003Cli>Allow sending emails delayed, to prevent sending too many emails at once. (Beta feature)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Important Note\u003C\u002Fh3>\n\u003Cp>This tool is for users who understand email delivery. If unsure, ask for help.\u003C\u002Fp>\n\u003Cp>\u003Cem>Under GDPR, storing and tracking emails is prohibited. The history feature is for investigative purposes only!\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>Email Essentials uses one external service by default, two if you create and define your own IP services.\u003C\u002Fp>\n\u003Col>\n\u003Cli>CloudFlare DNS over HTTPS (DoH). This is used to resolve domain names to IP addresses when (for example) checking SPF or DKIM records. In theory, it is possible to use PHPs own \u003Ccode>dns_get_record\u003C\u002Fcode> function, but in practice this often fails due to server DNS-resolve misconfiguration. Using CloudFlare’s DoH service ensures reliable DNS resolution. We only send the hostname (the domain part) to CloudFlare, no other data. Explicitly, we do NOT send any other information.\u003C\u002Fli>\n\u003Cli>The plugin can use an IP-address relay service to accurately determine the sender’s IP address. This is required to accurately check that the sender’s IP address is authorized to send email for the domain (SPF check). To use this, you will need to set up your own service, see documentation on filter \u003Ccode>acato_email_essentials_ip_services\u003C\u002Fcode>. Without this service, IP detection can be inaccurate because it will use the website itself as a relay. Use of a reverse proxy, load balancer etc. can lead to incorrect IP detection.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>WordPress Filters\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ccode>acato_email_essentials_settings\u003C\u002Fcode> — Filter plugin settings.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_defaults\u003C\u002Fcode> — Filter default settings.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_subject\u003C\u002Fcode> — Filter email subject.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_body\u003C\u002Fcode> — Filter HTML body of the email.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_head\u003C\u002Fcode> — Filter HEAD section of HTML email.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_css\u003C\u002Fcode> — Filter CSS for the email.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_minify_css\u003C\u002Fcode> — Filter CSS minification.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_mail_is_throttled\u003C\u002Fcode> — Check if mail should be throttled.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_mail_throttle_time_window\u003C\u002Fcode> — Set mail throttle time window.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_mail_throttle_max_count_per_time_window\u003C\u002Fcode> — Set max emails per time window.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_mail_throttle_batch_size\u003C\u002Fcode> — Set mail batch size.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_ip_services\u003C\u002Fcode> — Define custom IP services for accurately determining the sender’s IP address.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_ip_service\u003C\u002Fcode> — Filter individual IP service URLs.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_website_root_path\u003C\u002Fcode> — Filter to supply the correct website root path in case of non-standard setups.\u003C\u002Fli>\n\u003Cli>\u003Ccode>acato_email_essentials_development_tlds\u003C\u002Fcode> — Filter development\u002Flocal TLDs.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WordPress Filters in detail\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Plugin Settings\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_settings\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (array) \u003Ccode>$settings\u003C\u002Fcode> The current settings of the plugin.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (array) The new settings of the plugin.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_defaults\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (array) \u003Ccode>$defaults\u003C\u002Fcode> The current default settings of the plugin.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (array) The new default settings of the plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Content\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_subject\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$the_subject\u003C\u002Fcode> Subject for the email.\u003Cbr \u002F>\n– (PHPMailer) \u003Ccode>$mailer\u003C\u002Fcode> The PHPMailer object (by reference).\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) The (altered) Subject.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_body\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$should_be_html\u003C\u002Fcode> A text that should be html, but might not yet be, your job to make a nice HTML body.\u003Cbr \u002F>\n– (PHPMailer) \u003Ccode>$mailer\u003C\u002Fcode> The PHPMailer object (by reference).\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) A text that should be html.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_head\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$the_head_section\u003C\u002Fcode> HTML that is the HEAD section of the HTML email.\u003Cbr \u002F>\n– (PHPMailer) \u003Ccode>$mailer\u003C\u002Fcode> The PHPMailer object (by reference).\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) The altered HEAD section of the HTML email.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_css\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$the_css\u003C\u002Fcode> CSS for the email (empty by default).\u003Cbr \u002F>\n– (PHPMailer) \u003Ccode>$mailer\u003C\u002Fcode> The PHPMailer object (by reference).\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) The (altered) CSS.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_minify_css\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$css\u003C\u002Fcode> CSS to be minified.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) The minified CSS.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Mail Throttling\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_mail_is_throttled\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (bool) \u003Ccode>$is_throttled\u003C\u002Fcode> Whether the mail is currently throttled.\u003Cbr \u002F>\n– (string) \u003Ccode>$ip\u003C\u002Fcode> The sender’s IP address.\u003Cbr \u002F>\n– (int) \u003Ccode>$mails_recently_sent\u003C\u002Fcode> Number of mails recently sent from this IP.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (bool) Whether the mail should be throttled.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_mail_throttle_time_window\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (int) \u003Ccode>$time_window\u003C\u002Fcode> Time window in seconds for counting sent emails.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (int) The (altered) time window in seconds.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_mail_throttle_max_count_per_time_window\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (int) \u003Ccode>$count\u003C\u002Fcode> Maximum number of emails allowed per time window.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (int) The (altered) maximum count.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_mail_throttle_batch_size\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (int) \u003Ccode>$size\u003C\u002Fcode> Number of emails to send in a single batch.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (int) The (altered) batch size.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>IP Detection\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_ip_services\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (array) \u003Ccode>$services\u003C\u002Fcode> The current list of IP services used to determine the sender’s IP address.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (array) The (altered) list of IP services.\u003C\u002Fp>\n\u003Cp>The services must be keyed with \u003Ccode>ipv4\u003C\u002Fcode>, \u003Ccode>ipv6\u003C\u002Fcode> and \u003Ccode>dual-stack\u003C\u002Fcode>. The values must be URLs that return the IP address in plain text.\u003Cbr \u002F>\nThe dual-stack service should return an IPv6 address if available, otherwise an IPv4 address, never both.\u003C\u002Fp>\n\u003Cp>You can set-up your own service like this;\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You will need a webserver that can run PHP, and you need a DNS service that allows you to manually add records.\u003C\u002Fli>\n\u003Cli>You will need three webspaces, for example; ipv4.myservice.com, ipv6.myservice.com and dual-stack.myservice.com.\n\u003Cul>\n\u003Cli>You could use the same webspace for all three, but you will still need three subdomains on the service.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>For the ipv4 subdomain, ONLY register an A record, pointing to the webserver’s IP address.\u003C\u002Fli>\n\u003Cli>For the ipv6 subdomain, ONLY register an AAAA record, pointing to the webserver’s IPv6 address.\u003C\u002Fli>\n\u003Cli>For the dual-stack subdomain, register both an A and an AAAA record, pointing to the webserver’s IP addresses.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Create a file called \u003Ccode>index.php\u003C\u002Fcode> in each of the webspaces with the following content:\u003C\u002Fp>\n\u003Cp>\u003Ccode>php\u003Cbr \u002F>\n\u003C?php\u003Cbr \u002F>\nheader('Content-Type: text\u002Fplain');\u003Cbr \u002F>\nprint $_SERVER['REMOTE_ADDR'];\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>That’s it. You can now use these services in the plugin settings like this;\u003C\u002Fp>\n\u003Cpre>\u003Ccode>`php\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>add_filter(‘acato_email_essentials_ip_services’, ‘my_custom_ip_services’);\u003Cbr \u002F>\nfunction my_custom_ip_services($services) {\u003Cbr \u002F>\n    \u002F\u002F Add your custom services here\u003Cbr \u002F>\n    $services[‘ipv4’] = ‘https:\u002F\u002Fipv4.myservice.com’;\u003Cbr \u002F>\n    $services[‘ipv6’] = ‘https:\u002F\u002Fipv6.myservice.com’;\u003Cbr \u002F>\n    $services[‘dual-stack’] = ‘https:\u002F\u002Fdual-stack.myservice.com’;\u003Cbr \u002F>\n    return $services;\u003Cbr \u002F>\n}\u003Cbr \u002F>\n    `\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_ip_service\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$service\u003C\u002Fcode> The URL of the IP service for the given type.\u003Cbr \u002F>\n– (string) \u003Ccode>$type\u003C\u002Fcode> The type of IP service (‘ipv4’, ‘ipv6’, or ‘dual-stack’).\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) The (altered) IP service URL.\u003C\u002Fp>\n\u003Cp>Filter to modify individual IP service URLs based on type.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_website_root_path\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (string) \u003Ccode>$path\u003C\u002Fcode> The current website root path.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (string) The (possibly altered) website root path.\u003C\u002Fp>\n\u003Cp>Filter to supply the correct website root path in case of non-standard setups.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>acato_email_essentials_development_tlds\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Parameters:\u003Cbr \u002F>\n– (array) \u003Ccode>$tlds\u003C\u002Fcode> Array of top-level domains considered as development environments.\u003C\u002Fp>\n\u003Cp>Expected return:\u003Cbr \u002F>\n– (array) The (altered) array of development TLDs.\u003C\u002Fp>\n\u003Cp>Filter to modify which TLDs are treated as development\u002Flocal environments. Default values are ‘local’ and ‘test’.\u003C\u002Fp>\n\u003Ch3>Scripts\u002Fstyles\u003C\u002Fh3>\n\u003Cp>In the \u003Ccode>public\u002Fscripts\u003C\u002Fcode> and \u003Ccode>public\u002Fstyles\u003C\u002Fcode> folder you find the JS and CSS files used in the plugin admin area.\u003Cbr \u002F>\nThese files are processed with Webpack, just so it works in all recent browsers. Script is nearly identical to the source.\u003C\u002Fp>\n\u003Cp>You can find the source files in the \u003Ccode>src\u002Fscripts\u003C\u002Fcode> and \u003Ccode>src\u002Fstyles\u003C\u002Fcode> folders.\u003C\u002Fp>\n\u003Cp>If you feel the need to modify these files, you can change them there, and run \u003Ccode>npm install ; npm run build\u003C\u002Fcode> to create the production files.\u003C\u002Fp>\n\u003Ch3>Translation files\u003C\u002Fh3>\n\u003Cp>You can use \u003Ccode>npm run i18n\u003C\u002Fcode> to generate the POT file for translation, update the PO files in the \u003Ccode>languages\u003C\u002Fcode> folder, and compile to MO\u002Fphp files.\u003Cbr \u002F>\nThis is a one-task-does-all; run it, change the translations, run it again. Done.\u003Cbr \u002F>\nSee package.json for more details or individual commands.\u003C\u002Fp>\n\u003Ch3>Tools\u003C\u002Fh3>\n\u003Cp>In the \u003Ccode>tools\u003C\u002Fcode> folder you will find a script to generate DKIM keys, should you want to use DKIM signing.\u003Cbr \u002F>\nrename to remove the .txt extension and run it in a shell.\u003C\u002Fp>\n\u003Cp>Tools are provided as-is, without support. Use at your own risk. Read the scripts before using them.\u003C\u002Fp>\n\u003Cp>You DO NOT HAVE TO USE these scripts, you can generate DKIM keys with any tool you like.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>For advanced configuration and custom IP services, see the plugin documentation or source code.\u003C\u002Fp>\n","A plugin to make WordPress outgoing emails better and less likely to be marked as spam.",40,146,"2026-03-03T12:44:00.000Z","5.6",[20,129,22,130,23],"dkim","smime","https:\u002F\u002Fgithub.com\u002Facato-plugins\u002Femail-essentials","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Femail-essentials.6.0.3.zip",{"attackSurface":134,"codeSignals":167,"taintFlows":175,"riskAssessment":176,"analyzedAt":179},{"hooks":135,"ajaxHandlers":163,"restRoutes":164,"shortcodes":165,"cronEvents":166,"entryPointCount":11,"unprotectedCount":11},[136,142,146,151,154,158,161],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","admin_init","ecehc_do_redirect","ecom-email-health-check.php",74,{"type":137,"name":143,"callback":144,"file":140,"line":145},"plugins_loaded","closure",77,{"type":137,"name":147,"callback":148,"file":149,"line":150},"admin_menu","add_admin_menu","includes\\class-ecehc-admin-page.php",9,{"type":137,"name":138,"callback":152,"file":149,"line":153},"handle_test_email",10,{"type":137,"name":155,"callback":156,"file":149,"line":157},"admin_enqueue_scripts","enqueue_admin_styles",11,{"type":137,"name":159,"callback":144,"file":149,"line":160},"admin_notices",47,{"type":137,"name":159,"callback":144,"file":149,"line":162},51,[],[],[],[],{"dangerousFunctions":168,"sqlUsage":169,"outputEscaping":171,"fileOperations":11,"externalRequests":11,"nonceChecks":14,"capabilityChecks":32,"bundledLibraries":174},[],{"prepared":11,"raw":11,"locations":170},[],{"escaped":172,"rawEcho":11,"locations":173},8,[],[],[],{"summary":177,"deductions":178},"The \"ecom-email-health-check\" v1.0.2 plugin exhibits a strong security posture based on the provided static analysis.  The absence of any detected attack surface points (AJAX handlers, REST API routes, shortcodes, cron events) is a significant strength, as it minimizes the potential entry points for attackers. Furthermore, the code analysis reveals good development practices, including 100% usage of prepared statements for SQL queries, proper output escaping for all outputs, and the presence of nonce and capability checks.  The lack of file operations and external HTTP requests also reduces the risk of common vulnerabilities. Taint analysis shows no identified flows with unsanitized paths, further indicating robust input validation and sanitization. The plugin's vulnerability history is clean, with no known CVEs, which suggests a well-maintained and secure codebase over time.  The plugin's strengths lie in its minimal attack surface, secure coding practices for data handling, and a clean historical record.  There are no apparent weaknesses identified in the provided data that would warrant significant concern.",[],"2026-03-17T06:08:58.630Z",{"wat":181,"direct":188},{"assetPaths":182,"generatorPatterns":184,"scriptPaths":185,"versionParams":186},[183],"\u002Fwp-content\u002Fplugins\u002Fecom-email-health-check\u002Fassets\u002Fstyle.css",[],[],[187],"ecom-email-health-check\u002Fassets\u002Fstyle.css?ver=1.0.0",{"cssClasses":189,"htmlComments":190,"htmlAttributes":191,"restEndpoints":192,"jsGlobals":193,"shortcodeOutput":194},[],[],[],[],[],[]]