[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHTkFdL27D2lrtepkL5TT7FCDNqjAnb4BcjCA-Y8p5mU":3,"$f8jkO8XeosjFtMxbZNKoNNHN_cs-J6kcMhxVRHyhilr0":241,"$f4fc4hOwVKqi7f6NXYN1B-aa36uhKVhJ0SEsBVVzjiBg":246},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":40,"analysis":123,"fingerprints":215},"edd-metrics","EDD Metrics","1.0","Scott Bolinger","https:\u002F\u002Fprofiles.wordpress.org\u002Fscottopolis\u002F","\u003Cp>Get the important metrics for your business, such as average revenue per customer, renewal rate, refund rate, and more. Support EDD Software Licensing add-on for renewal rates, and EDD Recurring Payments for subscription information.\u003C\u002Fp>\n\u003Cp>Included metrics:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Net Revenue (Properly subtracts refunds)\u003C\u002Fli>\n\u003Cli>Sales\u003C\u002Fli>\n\u003Cli>Average revenue per customer\u003C\u002Fli>\n\u003Cli>Estimated monthly revenue\u003C\u002Fli>\n\u003Cli>Refunds\u003C\u002Fli>\n\u003Cli>Discounts\u003C\u002Fli>\n\u003Cli>Renewals, and renewal rate (if EDD Software Licensing is active)\u003C\u002Fli>\n\u003Cli>Subscriptions (if EDD Recurring Payments is active)\u003C\u002Fli>\n\u003Cli>Recurring revenue this period and next 30 days\u003C\u002Fli>\n\u003Cli>Earnings by download\u003C\u002Fli>\n\u003Cli>Earnings by gateway\u003C\u002Fli>\n\u003Cli>New customers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Charts are displayed on the detail page along with other metrics.\u003C\u002Fp>\n\u003Cp>To contribute or report an issue, please use the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fscottopolis\u002Fedd-metrics\" rel=\"nofollow ugc\">EDD Metrics Github\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin is inspired by (and basically a total copy of) \u003Ca href=\"https:\u002F\u002Fbaremetrics.com\u002F\" rel=\"nofollow ugc\">Baremetrics\u003C\u002Fa>. I would have just used Baremetrics instead of building a new plugin, except that Baremetrics is very specific to SaaS businesses, and doesn’t really work for EDD.\u003C\u002Fp>\n","Better reports for Easy Digital Downloads, similar to Baremetrics.",80,4765,100,17,"2018-11-16T22:26:00.000Z","4.9.29","4.0","",[20,21,22,23,24],"analytics","easy-digital-downloads","edd","metrics","statistics","http:\u002F\u002Fmetricswp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fedd-metrics.1.0.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":34,"display_name":7,"profile_url":8,"plugin_count":35,"total_installs":36,"avg_security_score":27,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"scottopolis",4,1200,11,84,"2026-05-20T01:10:54.230Z",[41,60,77,93,109],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":28,"num_ratings":28,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":58,"download_link":59,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"romiltec-analytics-tracking","Romiltec Analytics Tracking","1.0.0","romiltecsrl","https:\u002F\u002Fprofiles.wordpress.org\u002Fromiltecsrl\u002F","\u003Cp>Romiltec Analytics Tracking provides seamless Matomo analytics integration for WordPress sites. The plugin automatically tracks Post IDs as Custom Dimension 1 on single post pages, allowing you to analyze individual content performance in your Matomo dashboard.\u003C\u002Fp>\n\u003Cp>Perfect for publishers, bloggers, and content marketers who want detailed insights into their content performance using self-hosted Matomo analytics.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic Post ID Tracking – Post IDs are automatically tracked as Custom Dimension 1 on single post pages\u003C\u002Fli>\n\u003Cli>Matomo Integration – Full Matomo analytics integration with customizable URL and Site ID\u003C\u002Fli>\n\u003Cli>Scroll Depth Tracking – Automatically tracks user scroll depth at 25%, 50%, 75%, and 100% milestones\u003C\u002Fli>\n\u003Cli>Time on Page Tracking – Accurate time measurement with heartbeat timer (tracks active viewing time)\u003C\u002Fli>\n\u003Cli>Performance Optimized – Lightweight and cache-safe implementation\u003C\u002Fli>\n\u003Cli>Easy Configuration – Simple admin interface with validation\u003C\u002Fli>\n\u003Cli>Translation Ready – Full internationalization support\u003C\u002Fli>\n\u003Cli>Security First – Input sanitization and capability checks\u003C\u002Fli>\n\u003Cli>No External Dependencies – Works with your self-hosted Matomo installation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin\u003C\u002Fli>\n\u003Cli>Configure your Matomo URL and Site ID in Settings > Romiltec Analytics\u003C\u002Fli>\n\u003Cli>Set up Custom Dimension 1 in your Matomo dashboard\u003C\u002Fli>\n\u003Cli>The plugin automatically tracks all pageviews and sends Post IDs for single posts\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Active Matomo analytics installation (self-hosted or cloud)\u003C\u002Fli>\n\u003Cli>HTTPS recommended for security\u003C\u002Fli>\n\u003C\u002Ful>\n","Professional Matomo analytics integration with automatic Post ID tracking as custom dimensions.",30,181,"2026-02-09T15:09:00.000Z","6.9.4","5.0","7.4",[20,56,23,24,57],"matomo","tracking","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fromiltec-analytics-tracking\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fromiltec-analytics-tracking.1.0.0.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":28,"num_ratings":28,"last_updated":70,"tested_up_to":52,"requires_at_least":71,"requires_php":18,"tags":72,"homepage":75,"download_link":76,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"edd-geckoboard","Easy Digital Downloads – Geckoboard","1.0.1","DigitalME","https:\u002F\u002Fprofiles.wordpress.org\u002Fdigitalmeactivecampaign\u002F","\u003Cp>The EDD Geckoboard extension provides near-realtime stats regarding your EDD website through the Geckoboard KPI dashboard platform. Currently, the extension supports the following widgets:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Sales (Bar\u002FColumn Graph & Number Widgets)\u003C\u002Fli>\n\u003Cli>Extensions (Bar\u002FColumn Graph & Number Widgets)\u003C\u002Fli>\n\u003Cli>Recent Purchases (List Widget)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Follow this plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FSection214\u002FEDD-Geckoboard\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Allow site owners to display EDD statistics through Geckoboard",10,1960,"2026-02-03T20:13:00.000Z","3.7",[21,22,73,24,74],"geckoboard","stats","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fedd-geckoboard\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fedd-geckoboard.1.0.1.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":68,"downloaded":85,"rating":28,"num_ratings":28,"last_updated":86,"tested_up_to":87,"requires_at_least":17,"requires_php":88,"tags":89,"homepage":91,"download_link":92,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"enhanced-ecommerce-plus-easy-digital-downloads","Enhanced Ecommerce Plus for Easy Digital Downloads","1.2","Shivanand Sharma","https:\u002F\u002Fprofiles.wordpress.org\u002Fvarun21\u002F","\u003Cp>A simple yet powerful plugin that let’s you benifit from Enhanced Ecommerce Tracking in Google Analytics for Easy Digital Downloads.\u003C\u002Fp>\n\u003Cp>This plugin has no dependencies and works independently of any other Google Analytics tracking you have on the site without any duplication.\u003C\u002Fp>\n","Enhanced Ecommerce Tracking in Google Analytics for Easy Digital Downloads",2855,"2022-04-26T05:03:00.000Z","5.9.13","5.6",[20,21,22,90],"marketing","https:\u002F\u002Fwp-social-proof.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenhanced-ecommerce-plus-easy-digital-downloads.1.2.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":28,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":52,"requires_at_least":103,"requires_php":104,"tags":105,"homepage":107,"download_link":108,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"edd-user-admin-purchases-column","User Admin Purchases Column for Easy Digital Downloads","1.0.6","Marcel Pol","https:\u002F\u002Fprofiles.wordpress.org\u002Fmpol\u002F","\u003Cp>See basic statistics of customers for the Easy Digital Downloads e-commerce plugin.\u003Cbr \u002F>\nThis plugin will show the number of orders a customer has made on the overview of the users table.\u003Cbr \u002F>\nOn the user profile you will see the number of orders, products bought and total amount spent.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Translations can be added very easily through \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fedd-user-admin-purchases-column\" rel=\"nofollow ugc\">GlotPress\u003C\u002Fa>.\u003Cbr \u002F>\nYou can start translating strings there for your locale. They need to be validated though, so if there’s no validator yet, and you want to apply for being validator (PTE), please post it on the support forum.\u003Cbr \u002F>\nI will make a request on make\u002Fpolyglots to have you added as validator for this plugin\u002Flocale.\u003C\u002Fp>\n\u003Ch4>Contributions\u003C\u002Fh4>\n\u003Cp>This plugin is also available in \u003Ca href=\"https:\u002F\u002Fcodeberg.org\u002Fcyclotouriste\u002Fedd-user-admin-purchases-column\" rel=\"nofollow ugc\">Codeberg\u003C\u002Fa>.\u003C\u002Fp>\n","See basic statistics of customers for the Easy Digital Downloads e-commerce plugin.",1902,"2026-01-10T09:22:00.000Z","4.1","7.0",[106,21,22,24],"customer-statistics","https:\u002F\u002Fzenoweb.nl","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fedd-user-admin-purchases-column.1.0.6.zip",{"slug":110,"name":111,"version":63,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":28,"downloaded":116,"rating":28,"num_ratings":28,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":18,"tags":120,"homepage":121,"download_link":122,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"foxmetrics","FoxMetrics","FoxMetrics Team","https:\u002F\u002Fprofiles.wordpress.org\u002Ffoxmetricsteam\u002F","\u003Cp>FoxMetrics is software that helps you overcome the challenges with siloed systems and \u003Ca href=\"https:\u002F\u002Fwww.foxmetrics.com\u002Fproducts\u002F\" rel=\"nofollow ugc\">products\u003C\u002Fa>. It captures, stores, and unlocks data generated from the web, \u003Ca href=\"https:\u002F\u002Fwww.foxmetrics.com\u002Fblog\u002Fmobile-ecommerce-best-practices\u002F\" rel=\"nofollow ugc\">mobile\u003C\u002Fa>, and other sources and drive value from customer behavioral data.\u003C\u002Fp>\n\u003Cp>FoxMetrics is also a complete Google Analytics alternative that offers a full set of web analytics features, security, privacy, and more.\u003C\u002Fp>\n\u003Cp>This plugin automatically inserts your \u003Ca href=\"https:\u002F\u002Fwww.foxmetrics.com\u002F\" rel=\"nofollow ugc\">FoxMetrics\u003C\u002Fa> tracking code into each page of your website. To use this plugin, a FoxMetrics account is required, which provides you with an application ID that you will need during the installation of the plugin.\u003C\u002Fp>\n\u003Ch4>FoxMetrics Solutions:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Web Analytics\u003C\u002Fli>\n\u003Cli>Marketing Analytics\u003C\u002Fli>\n\u003Cli>Business Intelligence\u003C\u002Fli>\n\u003Cli>Unified Customer View\u003C\u002Fli>\n\u003Cli>ECommerce Analytics\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>FoxMetrics Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Dashboards\u003C\u002Fli>\n\u003Cli>Insights\u003C\u002Fli>\n\u003Cli>Custom Report\u003C\u002Fli>\n\u003Cli>Raw Data Access (SQL)\u003C\u002Fli>\n\u003Cli>Custom Data Models\u003C\u002Fli>\n\u003Cli>Support for multiple data sources\u003C\u002Fli>\n\u003C\u002Ful>\n","FoxMetrics is software that helps you overcome the challenges with siloed systems and products. It captures, stores, and unlocks data generated from t &hellip;",942,"2021-10-21T08:43:00.000Z","5.8.13","3.0",[20,110,24,74,57],"https:\u002F\u002Fwww.foxmetrics.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffoxmetrics.1.0.1.zip",{"attackSurface":124,"codeSignals":172,"taintFlows":202,"riskAssessment":203,"analyzedAt":214},{"hooks":125,"ajaxHandlers":160,"restRoutes":168,"shortcodes":169,"cronEvents":170,"entryPointCount":171,"unprotectedCount":171},[126,132,136,142,145,150,155],{"type":127,"name":128,"callback":129,"file":130,"line":131},"action","admin_menu","settings_page","edd-metrics.php",102,{"type":127,"name":133,"callback":134,"file":130,"line":135},"plugins_loaded","EDD_Metrics_load",184,{"type":137,"name":138,"callback":139,"file":140,"line":141},"filter","metrics_json_output","revenue_callback","includes\\class-edd-metrics-detail.php",58,{"type":137,"name":138,"callback":143,"file":140,"line":144},"get_single_product_detail",59,{"type":127,"name":146,"callback":147,"file":148,"line":149},"edd_metrics_dash_sidebar","do_sidebar","includes\\class-edd-metrics-functions.php",64,{"type":127,"name":151,"callback":152,"file":153,"line":154},"admin_notices","missing_edd_notice","includes\\class.extension-activation.php",70,{"type":127,"name":156,"callback":157,"priority":13,"file":158,"line":159},"admin_enqueue_scripts","EDD_Metrics_admin_scripts","includes\\scripts.php",51,[161,165],{"action":162,"nopriv":163,"callback":162,"hasNonce":163,"hasCapCheck":163,"file":148,"line":164},"metrics_batch_1",false,66,{"action":166,"nopriv":163,"callback":166,"hasNonce":163,"hasCapCheck":163,"file":148,"line":167},"metrics_batch_2",68,[],[],[],2,{"dangerousFunctions":173,"sqlUsage":174,"outputEscaping":180,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":201},[],{"prepared":28,"raw":175,"locations":176},1,[177],{"file":148,"line":178,"context":179},898,"$wpdb->get_var() with variable interpolation",{"escaped":181,"rawEcho":182,"locations":183},8,7,[184,187,189,191,193,195,198],{"file":148,"line":185,"context":186},117,"raw output",{"file":148,"line":188,"context":186},174,{"file":148,"line":190,"context":186},548,{"file":148,"line":192,"context":186},552,{"file":153,"line":194,"context":186},90,{"file":196,"line":197,"context":186},"includes\\view-dashboard.php",106,{"file":199,"line":200,"context":186},"includes\\view-metrics-details.php",5,[],[],{"summary":204,"deductions":205},"The \"edd-metrics\" plugin version 1.0 presents a significant security risk due to its unprotected AJAX handlers. The analysis reveals two AJAX entry points, both lacking any authentication or capability checks. This creates a wide-open attack surface, allowing any unauthenticated user to potentially interact with these handlers, leading to an unknown but potentially severe impact on the WordPress site.  The lack of nonce checks further exacerbates this issue, making it easier for attackers to craft malicious requests.\n\nThe static analysis also highlights a critical concern regarding SQL queries.  The plugin executes one SQL query, and 100% of them are not using prepared statements. This is a major vulnerability that could lead to SQL injection attacks, allowing attackers to manipulate or extract sensitive data from the database. While there is no recorded vulnerability history for this plugin, this does not guarantee its safety. The current state of the code, particularly the unprotected AJAX and raw SQL queries, suggests a disregard for fundamental WordPress security practices.\n\nIn conclusion, while the plugin does not bundle libraries or make external HTTP requests, the presence of unprotected AJAX handlers and raw SQL queries significantly outweighs these positive observations. The plugin's security posture is poor, and immediate attention is required to address these critical vulnerabilities to prevent potential exploitation.",[206,208,210,212],{"reason":207,"points":68},"Unprotected AJAX handlers",{"reason":209,"points":68},"No nonce checks on AJAX",{"reason":211,"points":68},"Raw SQL without prepared statements",{"reason":213,"points":200},"Insufficient output escaping","2026-03-16T21:25:58.133Z",{"wat":216,"direct":232},{"assetPaths":217,"generatorPatterns":224,"scriptPaths":225,"versionParams":226},[218,219,220,221,222,223],"\u002Fwp-content\u002Fplugins\u002Fedd-metrics\u002Fassets\u002Fjs\u002Fmoment.js","\u002Fwp-content\u002Fplugins\u002Fedd-metrics\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fedd-metrics\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fedd-metrics\u002Fassets\u002Fjs\u002FCalendar.js","\u002Fwp-content\u002Fplugins\u002Fedd-metrics\u002Fassets\u002Fjs\u002FChart.min.js","\u002Fwp-content\u002Fplugins\u002Fedd-metrics\u002Fassets\u002Fcss\u002Fcalendar.css",[],[218,219,221,222],[227,228,229,230,231],"edd-metrics\u002Fassets\u002Fjs\u002Fadmin.js?ver=","edd-metrics\u002Fassets\u002Fcss\u002Fadmin.css?ver=","edd-metrics\u002Fassets\u002Fjs\u002Fmoment.js?ver=","edd-metrics\u002Fassets\u002Fjs\u002FCalendar.js?ver=","edd-metrics\u002Fassets\u002Fjs\u002FChart.min.js?ver=",{"cssClasses":233,"htmlComments":235,"htmlAttributes":236,"restEndpoints":237,"jsGlobals":238,"shortcodeOutput":240},[234],"edd-metrics-wrap",[],[],[],[239],"eddMetrics",[],{"error":242,"url":243,"statusCode":244,"statusMessage":245,"message":245},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fedd-metrics\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":171,"versions":247},[248,253],{"version":6,"download_url":26,"svn_tag_url":249,"released_at":29,"has_diff":163,"diff_files_changed":250,"diff_lines":29,"trac_diff_url":251,"vulnerabilities":252,"is_current":242},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fedd-metrics\u002Ftags\u002F1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fedd-metrics%2Ftags%2F0.7&new_path=%2Fedd-metrics%2Ftags%2F1.0",[],{"version":254,"download_url":255,"svn_tag_url":256,"released_at":29,"has_diff":163,"diff_files_changed":257,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":258,"is_current":163},"0.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fedd-metrics.0.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fedd-metrics\u002Ftags\u002F0.7\u002F",[],[]]