[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fztagsgejZJhCS1kqGtHBMlmp5nh0SOFiXYsT4nGBTys":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":14,"requires_at_least":14,"requires_php":14,"tags":15,"homepage":21,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":34,"analysis":148,"fingerprints":210},"esma-ul-husna","Esmâ-ül Hüsnâ","1.0","sustun","https:\u002F\u002Fprofiles.wordpress.org\u002Fsustun\u002F","\u003Cp>“En güzel isimler Allah’ındır. O’na o güzel isimleriyle duâ edin. Ve O’nun isimleri hakkında gerçeği çarpıtanları bırakın, onlar yaptıklarının cezâsına çarptırılacaklardır.” Âraf 180\u003C\u002Fp>\n\u003Cp>Resulullah (sav) buyurdular ki: “Allah’ın doksan dokuz ismi vardır. Kim bunları ezberlerse cennete girer. Allah tektir, teki sever.” Buhari, Da’avat 68; Müslim, Zikr 5, (2677); Tirmizi, Da’avat 87, (3502)\u003C\u002Fp>\n","Allah'ın 99 ismini rastgele bir şekilde sayfanızda gösterebileceğiniz bileşen içeren bir eklenti.",10,1963,0,"",[16,17,18,19,20],"allah","esma","husna","isim","name","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fesma-ul-husna\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fesma-ul-husna.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},8,90,89,30,86,"2026-04-05T22:11:27.625Z",[35,61,84,108,130],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":14,"download_link":57,"security_score":58,"vuln_count":11,"unpatched_count":13,"last_vuln_date":59,"fetched_at":60},"wps-hide-login","WPS Hide Login","1.9.18","Remy Perona","https:\u002F\u002Fprofiles.wordpress.org\u002Ftabrisrp\u002F","\u003Ch4>English\u003C\u002Fh4>\n\u003Cp>\u003Cem>WPS Hide Login\u003C\u002Fem> is a very light plugin that lets you easily and safely change the url of the login form page to anything you want. It doesn’t literally rename or change files in core, nor does it add rewrite rules. It simply intercepts page requests and works on any WordPress website. The wp-admin directory and wp-login.php page become inaccessible, so you should bookmark or remember the url. Deactivating this plugin brings your site back exactly to the state it was before.\u003C\u002Fp>\n\u003Cp>This plugin is kindly proposed by \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpshidelogin\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> the specialized WordPress web host.\u003C\u002Fp>\n\u003Cp>Discover also our other free extensions:\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-limit-login\u002F\" rel=\"ugc\">WPS Limit Login\u003C\u002Fa> to block brute force attacks.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"ugc\">WPS Bidouille\u003C\u002Fa> to optimize your WordPress and get more info.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"ugc\">WPS Cleaner\u003C\u002Fa> to clean your WordPress site.\u003C\u002Fp>\n\u003Cp>This plugin is only maintained, which means we do not guarantee free support. Consider reporting a problem and be patient.\u003C\u002Fp>\n\u003Ch4>Français\u003C\u002Fh4>\n\u003Cp>\u003Cem>WPS Hide Login\u003C\u002Fem> est un plugin très léger qui vous permet de changer facilement et en toute sécurité l’url de la page de formulaire de connexion. Il ne renomme pas littéralement ou ne modifie pas les fichiers dans le noyau, ni n’ajoute des règles de réécriture. Il intercepte simplement les demandes de pages et fonctionne sur n’importe quel site WordPress. Le répertoire wp-admin et la page wp-login.php deviennent inaccessibles, vous devez donc ajouter un signet ou vous souvenir de l’URL. Désactiver ce plugin ramène votre site exactement à l’état dans lequel il était auparavant.\u003C\u002Fp>\n\u003Cp>Ce plugin vous est gentiment proposé par \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpshidelogin\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> l’hébergeur spécialisé WordPress.\u003C\u002Fp>\n\u003Cp>Plus d’infos sur son utilisation : \u003Ca href=\"https:\u002F\u002Fwpformation.com\u002Fwps-hide-login-url-connexion-wordpress\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpformation.com\u002Fwps-hide-login-url-connexion-wordpress\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Découvrez également nos autres extensions gratuites :\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-limit-login\u002F\" rel=\"nofollow ugc\">WPS Limit Login\u003C\u002Fa> pour bloquer les attaques par force brute.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"nofollow ugc\">WPS Bidouille\u003C\u002Fa> pour optimiser votre WordPress et faire le plein d’infos.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"nofollow ugc\">WPS Cleaner\u003C\u002Fa> pour nettoyer votre site WordPress.\u003C\u002Fp>\n\u003Cp>Ce plugin est seulement maintenu, ce qui signifie que nous ne garantissons pas un support gratuit. Envisagez de signaler un problème et soyez patient.\u003C\u002Fp>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Ch4>English\u003C\u002Fh4>\n\u003Cp>Requires WordPress 4.1 or higher. All login related things such as the registration form, lost password form, login widget and expired sessions just keep working.\u003C\u002Fp>\n\u003Cp>It’s also compatible with any plugin that hooks in the login form, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>BuddyPress,\u003C\u002Fli>\n\u003Cli>bbPress,\u003C\u002Fli>\n\u003Cli>Jetpack,\u003C\u002Fli>\n\u003Cli>WPS Limit Login,\u003C\u002Fli>\n\u003Cli>and User Switching.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Obviously it doesn’t work with plugins or themes that \u003Cem>hardcoded\u003C\u002Fem> wp-login.php.\u003C\u002Fp>\n\u003Cp>Works with multisite, with subdomains and subfolders. Activating it for a network allows you to set a networkwide default. Individual sites can still rename their login page to something else.\u003C\u002Fp>\n\u003Cp>If you’re using a \u003Cstrong>page caching plugin\u003C\u002Fstrong> other than WP Rocket, you should add the slug of the new login url to the list of pages not to cache. WP Rocket is already fully compatible with the plugin.\u003C\u002Fp>\n\u003Ch4>Français\u003C\u002Fh4>\n\u003Cp>Nécessite WordPress 4.1 ou supérieur. Toutes les choses liées à la connexion telles que le formulaire d’inscription, le formulaire de mot de passe perdu, le widget de connexion et les sessions expirées continuent de fonctionner.\u003C\u002Fp>\n\u003Cp>Il est également compatible avec tout plugin qui se connecte au formulaire de connexion, notamment:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>BuddyPress,\u003C\u002Fli>\n\u003Cli>bbPress,\u003C\u002Fli>\n\u003Cli>Jetpack,\u003C\u002Fli>\n\u003Cli>WPS Limit Login,\u003C\u002Fli>\n\u003Cli>and User Switching.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Évidemment, cela ne fonctionne pas avec les plugins ou les thèmes \u003Cem>hardcoded\u003C\u002Fem> wp-login.php.\u003C\u002Fp>\n\u003Cp>Fonctionne en multisite, avec sous-domaines ou sous dossiers. L’activer pour un réseau vous permet de définir une valeur par défaut pour l’ensemble du réseau. Les sites individuels peuvent toujours renommer leur page de connexion pour autre chose.\u003C\u002Fp>\n\u003Cp>Si vous utilisez un \u003Cstrong>plugin de mise en cache de pages\u003C\u002Fstrong> autre que WP Rocket, vous devez ajouter le slug de la nouvelle URL de connexion à la liste des pages à ne pas mettre en cache. WP Rocket est déjà entièrement compatible avec le plugin.\u003C\u002Fp>\n","Change wp-login.php to anything you want.",2000000,30498017,96,2101,"2026-01-12T08:47:00.000Z","6.9.4","4.1","7.0",[52,53,54,55,56],"custom-login-url","login","rename","wp-login","wp-login-php","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwps-hide-login.1.9.18.zip",95,"2024-06-24 00:00:00","2026-03-15T15:16:48.613Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":45,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":82,"download_link":83,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":60},"edit-author-slug","Edit Author Slug","1.9.2","Brandon Allen","https:\u002F\u002Fprofiles.wordpress.org\u002Fcnorris23\u002F","\u003Cp>This plugin allows full control of your user permalinks, allowing you to change both the author base (the ‘\u002Fauthor\u002F’ portion of the author URLs), and the author slug (defaults to the username of the author). You can set the author base globally, or you can set it to be user-specific based on a user’s role. You now have the power to craft the perfect URL structure for you Author pages.\u003C\u002Fp>\n\u003Cp>WordPress default structure \u003Cem>http:\u002F\u002Fexample.com\u002Fauthor\u002Fusername\u002F\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>Edit Author Slug allows for \u003Cem>http:\u002F\u002Fexample.com\u002Fninja\u002Fmaster-ninja\u002F\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>Using a role-based author base would allow for \u003Cem>http:\u002F\u002Fexample.com\u002Fida\u002Fmaster-splinter\u002F\u003C\u002Fem> (for an Administrator Role), or \u003Cem>http:\u002F\u002Fexample.com\u002Fkoga\u002Fleonardo\u002F\u003C\u002Fem> (for a Subscriber Role).\u003C\u002Fp>\n\u003Cp>Development of this plugin takes place on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthebrandonallen\u002Fedit-author-slug\u002F\" title=\"Edit Author Slug on Github\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. Pull requests are always welcome!\u003C\u002Fp>\n\u003Cp>Translations should be submitted to \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fedit-author-slug\" rel=\"nofollow ugc\">Translate WordPress\u003C\u002Fa>.\u003C\u002Fp>\n","Allows an admin (or capable user) to edit the author slug of a user, and change the author base.",100000,1525613,84,"2025-05-27T04:15:00.000Z","6.8.5","5.8","7.4",[77,78,79,80,81],"author","author-base","author-slug","nicename","user-nicename","https:\u002F\u002Fgithub.com\u002Fthebrandonallen\u002Fedit-author-slug\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fedit-author-slug.1.9.2.zip",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":95,"last_updated":96,"tested_up_to":73,"requires_at_least":97,"requires_php":98,"tags":99,"homepage":104,"download_link":105,"security_score":23,"vuln_count":106,"unpatched_count":13,"last_vuln_date":107,"fetched_at":60},"phoenix-media-rename","Phoenix Media Rename","3.13.1","crossi72","https:\u002F\u002Fprofiles.wordpress.org\u002Fcrossi72\u002F","\u003Cp>Greatly improve your SEO: rename your media files with the “Phoenix Media Rename” plugin.\u003C\u002Fp>\n\u003Cp>A complete guide to use and configure Phoenix Media Rename is available at \u003Ca href=\"https:\u002F\u002Fwww.eurosoftlab.com\u002Fen\u002Fphoenix-media-rename\u002F\" rel=\"nofollow ugc\">Phoenix Media Rename official page\u003C\u002Fa>\u003C\u002Fp>\n","The Phoenix Media Rename plugin allows you to easily rename (and retitle) your media files, once uploaded.",50000,1468694,94,75,"2025-09-25T07:49:00.000Z","5.0","8.0",[100,101,102,54,103],"file","image","media","retitle","https:\u002F\u002Fwww.eurosoftlab.com\u002Fen\u002Fphoenix-media-rename\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphoenix-media-rename.3.13.1.zip",1,"2021-10-06 00:00:00",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":48,"requires_at_least":121,"requires_php":75,"tags":122,"homepage":125,"download_link":126,"security_score":127,"vuln_count":128,"unpatched_count":13,"last_vuln_date":129,"fetched_at":60},"media-file-renamer","Media File Renamer: Rename for better SEO (AI-Powered)","6.2.3","Jordy Meow","https:\u002F\u002Fprofiles.wordpress.org\u002Ftigroumeow\u002F","\u003Cp>\u003Cstrong>Media File Renamer is the smart, AI-powered solution for renaming your WordPress media files.\u003C\u002Fstrong> It automatically gives your media files and their metadata (Title, ALT Text, Description) clean, SEO-friendly names. Whether you’re uploading new files or updating your entire media library, this plugin makes it easy.\u003C\u002Fp>\n\u003Cp>It’s the perfect companion to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fseo-engine\u002F\" rel=\"ugc\">SEO Engine\u003C\u002Fa> for a complete SEO workflow! Explore \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fmedia-file-renamer\u002F\" rel=\"nofollow ugc\">our official site\u003C\u002Fa> to get started.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cp>🤖 \u003Cstrong>AI-Powered Renaming\u003C\u002Fstrong>\u003Cbr \u002F>\nUse AI Vision to analyze your images and generate meaningful filenames automatically. Smart suggestions help you pick the best name every time.\u003C\u002Fp>\n\u003Cp>📁 \u003Cstrong>Bulk Operations\u003C\u002Fstrong>\u003Cbr \u002F>\nRename your entire media library at once, or work through files one by one. Filter by status (Pending, Renamed, Locked) to stay organized.\u003C\u002Fp>\n\u003Cp>🔄 \u003Cstrong>Metadata Sync\u003C\u002Fstrong>\u003Cbr \u002F>\nAutomatically update Title, ALT Text, Caption, and Description after renaming. Keep everything consistent without the manual work.\u003C\u002Fp>\n\u003Cp>🔒 \u003Cstrong>Lock System\u003C\u002Fstrong>\u003Cbr \u002F>\nLock files to prevent accidental renaming. Auto-lock after manual or automatic renames for extra safety.\u003C\u002Fp>\n\u003Ch3>Compatibility\u003C\u002Fh3>\n\u003Cp>Media File Renamer is compatible with a wide range of WordPress features and plugins, including support for Retina and WebP images, re-scaled images from WP 5.3 onwards, PDF Thumbnails, UTF8 files, and optimized images. It handles various encoding types, ensuring your media library is always organized. Some page builders like Avia Layout Builder may limit renaming due to encryption.\u003C\u002Fp>\n\u003Ch3>Pro Version\u003C\u002Fh3>\n\u003Cp>In the \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fmedia-file-renamer\u002F\" rel=\"nofollow ugc\">Pro Version\u003C\u002Fa>, you’ll find many exciting features, like AI Vision and Suggestions for smart renaming, and anonymize your files for extra privacy. Easily move files across directories in bulk, sync metadata such as ALT texts and titles, and even number your files for better organization.\u003C\u002Fp>\n\u003Ch3>Important\u003C\u002Fh3>\n\u003Cp>Renaming or moving files can be risky, so it’s vital to take precautions and make a backup before using Media File Renamer. Start by renaming files individually to ensure page references update correctly, as some plugins might interfere with the process. If issues arise post-renaming, try clearing your cache to fix outdated references. Still facing problems? Use the Undo feature to revert filenames. For further assistance, visit our \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fmedia-file-renamer\u002Fissues\u002F\" rel=\"nofollow ugc\">support page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>A Simpler Plugin\u003C\u002Fh3>\n\u003Cp>If you only need a simple field to modify the filename, you can also try \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fphoenix-media-rename\" rel=\"ugc\">Phoenix Media Rename\u003C\u002Fa>. It’s simpler, and just does that. Yes, we are friends!\u003C\u002Fp>\n","Rename filenames and media metadata for SEO and tidiness. Using AI, manually, in bulk, or in so many other ways!",40000,3223566,92,434,"2026-03-09T23:15:00.000Z","6.0",[100,102,123,54,124],"move","seo","https:\u002F\u002Fmeowapps.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedia-file-renamer.6.2.3.zip",97,5,"2023-12-26 00:00:00",{"slug":131,"name":132,"version":133,"author":134,"author_profile":135,"description":136,"short_description":137,"active_installs":116,"downloaded":138,"rating":29,"num_ratings":139,"last_updated":140,"tested_up_to":73,"requires_at_least":141,"requires_php":14,"tags":142,"homepage":146,"download_link":147,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":60},"username-changer","Username Changer","3.2.3","DigitalME","https:\u002F\u002Fprofiles.wordpress.org\u002Fdigitalmeactivecampaign\u002F","\u003Cp>Finally fix WordPress’s biggest username limitation! WordPress permanently locks usernames by default, but Username Changer breaks through this restriction, giving you complete control over user identities on your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why You Need This Plugin:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Fix username mistakes instantly:\u003Cbr \u002F>\n– Made a typo during user registration? Fix it in seconds!\u003Cbr \u002F>\n– Need to standardize usernames across your organization? Done!\u003Cbr \u002F>\n– User wants to change their login name for security? No problem!\u003C\u002Fp>\n\u003Cp>Enhanced security and professionalism:\u003Cbr \u002F>\n– Quickly update compromised usernames without losing user data\u003Cbr \u002F>\n– Maintain brand consistency with standardized naming conventions\u003Cbr \u002F>\n– Resolve username conflicts when merging sites or migrating users\u003C\u002Fp>\n\u003Cp>Trusted solution since 2011 with continuous updates and improvements.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features That Make Username Changing Effortless:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>✓ One-click username updates directly from user profiles\u003Cbr \u002F>\n✓ Preserve all user data, posts, and metadata during changes\u003Cbr \u002F>\n✓ Zero data loss – everything stays intact\u003Cbr \u002F>\n✓ Email notifications when usernames are changed\u003Cbr \u002F>\n✓ Nickname support for additional flexibility\u003Cbr \u002F>\n✓ Multisite compatible – manage usernames across your entire network\u003Cbr \u002F>\n✓ Proper username sanitization to prevent security issues\u003Cbr \u002F>\n✓ SQL-optimized performance that won’t slow down your site\u003Cbr \u002F>\n✓ Clean, standards-compliant code that works with other plugins\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect For:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>WordPress Agencies:\u003Cbr \u002F>\n– Standardize client usernames across multiple sites\u003Cbr \u002F>\n– Fix registration errors during site migrations\u003Cbr \u002F>\n– Maintain professional username conventions\u003C\u002Fp>\n\u003Cp>Security-Conscious Site Owners:\u003Cbr \u002F>\n– Quickly change usernames if security concerns arise\u003Cbr \u002F>\n– Update generic usernames (like “admin”) to improve security\u003Cbr \u002F>\n– Rotate usernames as part of security protocols\u003C\u002Fp>\n\u003Cp>Community & Membership Sites:\u003Cbr \u002F>\n– Allow users to update their own usernames (when configured)\u003Cbr \u002F>\n– Resolve username disputes between members\u003Cbr \u002F>\n– Maintain clean, consistent member directories\u003C\u002Fp>\n\u003Cp>Content Sites with Multiple Authors:\u003Cbr \u002F>\n– Works seamlessly with Co-Authors Plus and other author plugins\u003Cbr \u002F>\n– Update author usernames without breaking content associations\u003Cbr \u002F>\n– Keep author profiles consistent and professional\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Simple Setup – Powerful Results:\u003C\u002Fstrong>\u003Cbr \u002F>\n1. Install the plugin (30 seconds)\u003Cbr \u002F>\n2. Navigate to any user’s profile page\u003Cbr \u002F>\n3. Change the username instantly\u003Cbr \u002F>\n4. That’s it! The change applies across your entire site\u003C\u002Fp>\n\u003Cp>No complicated settings, no technical headaches – just the username freedom WordPress should have included by default!\u003C\u002Fp>\n","Unlock the power to change WordPress usernames with complete security and data integrity.",462141,70,"2025-11-20T15:55:00.000Z","3.0",[143,53,144,145],"display-name","user","username","https:\u002F\u002Fwww.digitalme.cc","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusername-changer.3.2.3.zip",{"attackSurface":149,"codeSignals":161,"taintFlows":196,"riskAssessment":197,"analyzedAt":209},{"hooks":150,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":13,"unprotectedCount":13},[151],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","widgets_init","anonymous","esma-ul-husna.php",158,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":166,"outputEscaping":168,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":195},[163],{"fn":164,"file":155,"line":156,"context":165},"create_function","add_action('widgets_init', create_function('', 'return register_widget(\"euh_widget\");'));",{"prepared":13,"raw":13,"locations":167},[],{"escaped":169,"rawEcho":170,"locations":171},3,11,[172,175,177,179,181,183,185,187,189,191,193],{"file":155,"line":173,"context":174},127,"raw output",{"file":155,"line":176,"context":174},128,{"file":155,"line":178,"context":174},132,{"file":155,"line":180,"context":174},134,{"file":155,"line":182,"context":174},137,{"file":155,"line":184,"context":174},138,{"file":155,"line":186,"context":174},139,{"file":155,"line":188,"context":174},150,{"file":155,"line":190,"context":174},151,{"file":155,"line":192,"context":174},153,{"file":155,"line":194,"context":174},154,[],[],{"summary":198,"deductions":199},"The \"esma-ul-husna\" v1.0 plugin exhibits a mixed security posture. On the positive side, the plugin has a minimal attack surface with no registered AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all SQL queries are properly prepared, and there are no file operations or external HTTP requests, which are generally good security practices. The absence of any recorded vulnerabilities or CVEs also suggests a history of stable code. \n\nHowever, several significant concerns emerge from the static analysis. The presence of the `create_function` is a critical red flag, as this function is deprecated and can lead to severe security vulnerabilities if not handled with extreme care, especially if its arguments are user-controlled. The low percentage (21%) of properly escaped output is also a major concern, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. The complete lack of nonce checks and capability checks, coupled with zero documented flows in taint analysis, might create a false sense of security; without proper checks, an attacker could potentially exploit any future or undiscovered entry points. \n\nIn conclusion, while the plugin's attack surface and reliance on prepared statements are strengths, the use of `create_function` and the widespread lack of output escaping present substantial security risks. The absence of vulnerability history is positive but doesn't negate the inherent risks identified in the code. Addressing the output escaping and the `create_function` usage should be a priority.",[200,203,205,207],{"reason":201,"points":202},"Use of create_function",15,{"reason":204,"points":28},"Low percentage of properly escaped output",{"reason":206,"points":128},"No nonce checks",{"reason":208,"points":128},"No capability checks","2026-03-16T23:24:27.373Z",{"wat":211,"direct":220},{"assetPaths":212,"generatorPatterns":215,"scriptPaths":216,"versionParams":217},[213,214],"\u002Fwp-content\u002Fplugins\u002Fesma-ul-husna\u002Feuh-widget.css","\u002Fwp-content\u002Fplugins\u002Fesma-ul-husna\u002Feuh-widget.js",[],[214],[218,219],"esma-ul-husna\u002Feuh-widget.css?ver=","esma-ul-husna\u002Feuh-widget.js?ver=",{"cssClasses":221,"htmlComments":224,"htmlAttributes":225,"restEndpoints":226,"jsGlobals":227,"shortcodeOutput":228},[222,223],"euh-widget-title","euh-widget-content",[],[],[],[],[]]