[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$flY7yahKakdQX8RrDv-ASSApzSJNzUB5YbQdZOWiREu8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":147,"fingerprints":189},"file-change-monitor","File Change Monitor","1.0.4","Osman","https:\u002F\u002Fprofiles.wordpress.org\u002Foyagmur\u002F","\u003Cp>File Change Monitor is a lightweight WordPress plugin that detects file changes in your core, theme, and plugin directories, helping you monitor unauthorized modifications or malware injections.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Scans critical WordPress directories (wp-admin, wp-includes, wp-content\u002Fthemes, wp-content\u002Fplugins)\u003C\u002Fli>\n\u003Cli>Detects file additions, modifications, and deletions\u003C\u002Fli>\n\u003Cli>Sends alert via email to the admin email address\u003C\u002Fli>\n\u003Cli>Lightweight and fast\u003C\u002Fli>\n\u003Cli>No configuration required – install and activate\u003C\u002Fli>\n\u003C\u002Ful>\n","Detects file changes in WordPress core, themes, and plugins. Sends email alerts to the site admin.",10,1120,0,"2025-10-21T11:05:00.000Z","6.8.5","5.0","7.2",[19,20,21,22,23],"file-change","file-integrity","malware-detection","security","wordpress-monitor","https:\u002F\u002Fpuub.net\u002Ffile-change-monitor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffile-change-monitor.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"oyagmur",1,30,94,"2026-04-04T10:44:06.193Z",[37,61,79,100,124],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":16,"requires_php":51,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":13,"last_vuln_date":60,"fetched_at":28},"website-file-changes-monitor","Melapress File Monitor","2.3.0","Melapress","https:\u002F\u002Fprofiles.wordpress.org\u002Fmelapress\u002F","\u003Ch3>Get notified of file and permission changes on your WordPress sites and boost reliability & security\u003C\u002Fh3>\n\u003Cp>Melapress File Monitor is a WordPress file integrity monitoring plugin that keeps track of file and permission changes on your WordPress websites. It enables you to promptly identify code changes, file and directory permission changes, leftover files, malicious code, and malware injections – and take action.\u003C\u002Fp>\n\u003Cp>Install \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fwordpress-file-monitor\u002F?utm_source=wp+repo&utm_medium=repo+link&utm_campaign=wordpress_org&utm_content=mfm\" rel=\"nofollow ugc\">Melapress File Monitor\u003C\u002Fa> on your website to:\u003Cbr \u002F>\n*   Detect malware, infected files or files altered by bad actors\u003Cbr \u002F>\n*   Keep track of the last code changes on your website for easier troubleshooting\u003Cbr \u002F>\n*   Identify changes in file and directory permissions\u003Cbr \u002F>\n*   Identify leftover & backup files that can lead to sensitive business & technical data exposure\u003Cbr \u002F>\n*   Spot malware injections early to avoid irreparable site damage\u003Cbr \u002F>\n*   Conduct essential WordPress forensic analysis after a cyberattack.\u003C\u002Fp>\n\u003Cp>The plugin allows you to monitor and log file and permission changes across your WordPress site. You can see changes directly in the WordPress dashboard for easy access. You can also configure the plugin to send you file and permission change alerts through email whenever it detects a change; keeping you informed wherever you are.\u003C\u002Fp>\n\u003Cp>It helps you easily spot leftover and backup files that could leave your website exposed, and detect malware and code changes, so you can remove the files and clean malware infections at the earliest possible.\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Cp>Melapress File Monitor is a very easy to use plugin with zero admin work.\u003C\u002Fp>\n\u003Ch4>No False Alarms – Just Genuine Alerts!\u003C\u002Fh4>\n\u003Cp>This plugin uses an exclusive smart technology that detects WordPress core updates, plugin & theme installs, uninstalls, and updates.\u003C\u002Fp>\n\u003Cp>When you update the WordPress core, install a new plugin, update a theme, or delete a plugin it won’t flood you with hundreds of alerts prompting a false alarm. You only get alerted of genuine file and permission changes that can have an effect on the functionality and security of your WordPress site!\u003C\u002Fp>\n\u003Ch4>Instant Email Notifications\u003C\u002Fh4>\n\u003Cp>After a scan, the plugin sends an email with the list of file and permission changes it identifies on your WordPress sites and multisite networks.\u003C\u002Fp>\n\u003Cp>The email includes all the details you require to track WordPress file changes, such as:\u003Cbr \u002F>\n* The filename and the path of the file\u003Cbr \u002F>\n* A count of how many files were added, modified or deleted\u003Cbr \u002F>\n* A highlight of the site admin changes that caused the file changes, such as the plugins or themes installs, uninstalls, and updates.\u003C\u002Fp>\n\u003Ch4>Scans ALL Your Files, Including Custom Code\u003C\u002Fh4>\n\u003Cp>Melapress File Monitor can scan any type of file and it is not limited to WordPress and PHP files. Apart from the WordPress core files, plugins and themes files, it will also scan any other custom code files that you might have on your WordPress site.\u003C\u002Fp>\n\u003Cp>It also compares the WordPress core files of your website to the list of files on the official WordPress repository, so it will also alert you if a WordPress core file has been tampered with, or changed. You can also choose to exclude specific files, directories, and extensions for complete control.\u003C\u002Fp>\n\u003Cp>To learn more on both the file integrity monitoring technologies the plugin uses refer to \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fsupport\u002Fkb\u002Fwebsite-file-changes-monitor-how-plugin-detects-file-changes\u002F?utm_source=wp+repo&utm_medium=repo+link&utm_campaign=wordpress_org&utm_content=mfm\" rel=\"nofollow ugc\">how the plugin detects file changes on WordPress\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>WordPress Multisite Networks Support\u003C\u002Fh4>\n\u003Cp>The Melapress File Monitor plugin can also detect file changes on WordPress multisite networks. When installed on a network, the plugin configuration and alerts are only available to the super administrators, preventing possible disclosure of sensitive information that could jeopardize the security of the sites on the network.\u003C\u002Fp>\n\u003Ch4>Other Notable Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Optimized scanning technology that does not affect the performance of your site\u003C\u002Fli>\n\u003Cli>Fully configurable file scan frequency (hourly, daily, weekly, time of the day)\u003C\u002Fli>\n\u003Cli>Instant file integrity scans with just a click of a button\u003C\u002Fli>\n\u003Cli>Ability to exclude directories, files, and file types from the scan\u003C\u002Fli>\n\u003Cli>Configurable maximum file size to scan\u003C\u002Fli>\n\u003Cli>File changes data only available to administrators for better security\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Free Plugin Support\u003C\u002Fh3>\n\u003Cp>Support is available for free via:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fadmin-notices-manager\u002F?utm_source=wp+repo&utm_medium=repo+link&utm_campaign=wordpress_org&utm_content=mfm\" rel=\"ugc\">forums\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fsupport\u002F?utm_source=wp+repo&utm_medium=repo+link&utm_campaign=wordpress_org&utm_content=anm\" rel=\"nofollow ugc\">email\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>MAINTAINED & SUPPORTED BY MELAPRESS\u003C\u002Fh3>\n\u003Cp>Melapress builds high-quality niche WordPress security & management plugins, including WP Activity Log, Melapress Login Security, and others.\u003C\u002Fp>\n\u003Cp>Visit the \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002F?utm_source=wp+repo&utm_medium=repo+link&utm_campaign=wordpress_org&utm_content=anm\" rel=\"nofollow ugc\">Melapress website\u003C\u002Fa> for more information about the company and the plugins it develops.\u003C\u002Fp>\n\u003Ch3>Install the plugin from within WordPress\u003C\u002Fh3>\n\u003Cp>WordPress security is easy with Melapress File Monitor. Simply:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Navigate to Plugins > Add New, from your WordPress dashboard\u003C\u002Fli>\n\u003Cli>Search for Melapress File Monitor\u003C\u002Fli>\n\u003Cli>Install & activate the plugin from your Plugins page\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Install the plugin manually (via file upload)\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Download the plugin from the WordPress plugins repository\u003C\u002Fli>\n\u003Cli>Unzip the zip file and upload the folder to the \u003Ccode>\u002Fwp-content\u002Fplugins\u002F\u003C\u002Fcode> directory\u003C\u002Fli>\n\u003Cli>Activate the Melapress File Monitor plugin through the Plugins page in WordPress\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Translate the plugin in your own language\u003C\u002Fh3>\n\u003Cp>If you want to help us translate this plugin in your own language please \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fcontact\u002F?utm_source=wp+repo&utm_medium=repo+link&utm_campaign=wordpress_org&utm_content=mfm\" rel=\"nofollow ugc\">contact us\u003C\u002Fa>. We will credit all translators.\u003C\u002Fp>\n","Get email alerts for file and permission changes on your WordPress sites. No false positives!",5000,127993,82,31,"2026-02-26T09:10:00.000Z","6.9.4","8.0",[53,54,55,21,22],"file-monitor","file-security","file-changes","http:\u002F\u002Fmelapress.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwebsite-file-changes-monitor.2.3.0.zip",95,4,"2025-07-03 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":11,"downloaded":69,"rating":26,"num_ratings":32,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":73,"download_link":77,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"files-inspector","Files Inspector","0.1","alexhee","https:\u002F\u002Fprofiles.wordpress.org\u002Falexhee\u002F","\u003Cp>This plugin is used to detect changes based on the dates that you have run an inspection to the files within\u003Cbr \u002F>\nthe wordpress instance. With this, you can see if there is a modification, addition or deletion to the files\u003Cbr \u002F>\nand compare the changes based on the date. Besides that, it can be used as a security tools to point out\u003Cbr \u002F>\nwhich files has been altered ever since there’s a compromised.\u003C\u002Fp>\n\u003Cp>This plugin do not write or change any of your file permission. All it does is just read the information of\u003Cbr \u002F>\neach files and folders under the wordpress instance.\u003C\u002Fp>\n","Compare files changes within wordpress.",1532,"2014-12-16T14:43:00.000Z","4.0.38","3.1","",[75,55,76,62,22],"file","file-compare","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffiles-inspector.zip",85,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":13,"downloaded":87,"rating":13,"num_ratings":13,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":98,"download_link":99,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-track-keeper","WP Track Kepper","1.0","De paragon","https:\u002F\u002Fprofiles.wordpress.org\u002Fde-paragon\u002F","\u003Cp>WP Track Keeper watches over your WordPress directory files and send email and Or SMS notification to your defined Email and Or phone number.\u003Cbr \u002F>\nFile tracking information provided by Wp-Track-keeper helps to analyse security lapses or track other changes or updates on your wordpress directory.\u003C\u002Fp>\n\u003Cp>** Features **\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Send Hack alert notification to predefined email and, or phone number. \u003C\u002Fli>\n\u003Cli>The hack alert email contains information and location of added \u002F altered\u002Fmodified or deleted files from your wordpress directory.\u003C\u002Fli>\n\u003Cli>Track Keeper keeps track of all files within your wordpress directory and statistics of file changes \u003C\u002Fli>\n\u003Cli>Be the first to know when your files are altered and take decisive action.\u003C\u002Fli>\n\u003Cli>Define reference file and maintain the file state until need updates arise.\u003C\u002Fli>\n\u003Cli>You can decide how often (Hourly, Twice daily, Once Daily) you want “Track Keeper” to check for file changes \u003C\u002Fli>\n\u003Cli>Tracker does not only report file changes by hackers or intruders, it also report file changes during wordpress update, plugin update, theme update, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Track Keeper watches over your Wordpress directory files and send email and Or SMS notification to your defined Email and Or phone number.",1002,"2019-10-03T10:05:00.000Z","5.2.24","3.5","5.6",[93,94,95,96,97],"file-change-notification","hack","hack-alert","notification","wordpress-security","http:\u002F\u002Fmrparagon.me\u002Fwp-track-keeper\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-track-keeper.1.0.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":34,"num_ratings":110,"last_updated":111,"tested_up_to":50,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":119,"download_link":120,"security_score":121,"vuln_count":122,"unpatched_count":13,"last_vuln_date":123,"fetched_at":28},"wordfence","Wordfence Security – Firewall, Malware Scan, and Login Security","8.1.4","Mark Maunder","https:\u002F\u002Fprofiles.wordpress.org\u002Fmmaunder\u002F","\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fi4ZN2TwlaBE?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>THE MOST POPULAR WORDPRESS FIREWALL & SECURITY SCANNER\u003C\u002Fh4>\n\u003Cp>WordPress security requires a team of dedicated analysts researching the latest malware variants and WordPress exploits, turning them into firewall rules and malware signatures, and releasing those to customers in real-time.\u003C\u002Fp>\n\u003Cp>Choose the right protection for you: \u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fproducts\u002Fpricing\u002F\" rel=\"nofollow ugc\">Wordfence Free, Premium, Care or Response\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Wordfence is widely acknowledged as the number one WordPress security research team in the World. Our plugin provides a comprehensive suite of security features, and our team’s research is what powers our plugin and provides the level of security that we are known for.\u003C\u002Fp>\n\u003Cp>At Wordfence, WordPress security isn’t a division of our business – WordPress security is all we do. We employ a global 24-hour dedicated incident response team that provides our priority customers with a 1 hour response time for any security incident.\u003C\u002Fp>\n\u003Cp>The sun never sets on our global security team and we run a sophisticated threat intelligence platform to aggregate, analyze and produce ground breaking security research on the newest security threats.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Wordfence Security includes an endpoint firewall, malware scanner, robust login security features, live traffic views, and more.\u003C\u002Fstrong> Our \u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002F\" rel=\"nofollow ugc\">Threat Defense Feed\u003C\u002Fa> arms Wordfence with the newest firewall rules, malware signatures, and malicious IP addresses it needs to keep your website safe.\u003C\u002Fp>\n\u003Cp>Rounded out by 2FA and a suite of additional features, Wordfence is the most comprehensive WordPress security solution available.\u003C\u002Fp>\n\u003Ch3>🔥 WORDPRESS FIREWALL\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Ffirewall\u002F\" rel=\"nofollow ugc\">Web Application Firewall\u003C\u002Fa>\u003C\u002Fstrong> identifies and blocks malicious traffic. Built and maintained by a large team focused 100% on WordPress security.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-time firewall rule and malware signature [Premium]\u003C\u002Fstrong> updates via the Threat Defense Feed (free version is delayed by 30 days).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Fblocking\u002F\" rel=\"nofollow ugc\">Real-time IP Blocklist\u003C\u002Fa> [Premium]\u003C\u002Fstrong> blocks all requests from the most malicious IPs, protecting your site while reducing load.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Protects your site at the endpoint\u003C\u002Fstrong>, enabling deep integration with WordPress. Unlike cloud alternatives, it does not break encryption, cannot be bypassed and cannot leak data.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Fscan\u002F\" rel=\"nofollow ugc\">Integrated malware scanner\u003C\u002Fa>\u003C\u002Fstrong> blocks requests that include malicious code or content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Ffirewall\u002Fbrute-force\u002F\" rel=\"nofollow ugc\">Protection from brute force\u003C\u002Fa>\u003C\u002Fstrong> attacks by limiting login attempts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📡 WORDPRESS SECURITY SCANNER\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Malware scanner\u003C\u002Fstrong> checks core files, themes and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-time malware signature updates [Premium]\u003C\u002Fstrong> via the Threat Defense Feed (free version is delayed by 30 days).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Compares with WordPress.org repository\u003C\u002Fstrong> your core files, themes and plugins, checking their integrity and reporting any changes to you.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Repair WordPress core, theme, and plugin files\u003C\u002Fstrong> that have changed by overwriting them with a pristine, original version. Delete any files that don’t belong easily within the Wordfence interface.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Malware Removal Tools\u003C\u002Fstrong> “Delete File” and “Delete All Deletable Files” options allow for efficient malware removal. Remember to investigate the scan results and backup files first!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checks your site for known security vulnerabilities\u003C\u002Fstrong> and alerts you to any issues. Also alerts you to potential security issues when a plugin has been closed or abandoned.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checks your content safety\u003C\u002Fstrong> by scanning file contents, posts and comments for dangerous URLs and suspicious content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checks to see if your site or IP have been blocklisted [Premium]\u003C\u002Fstrong> for malicious activity, generating spam or other security issues.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔒 LOGIN SECURITY\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Ftools\u002Ftwo-factor-authentication\u002F\" rel=\"nofollow ugc\">Two-factor authentication (2FA)\u003C\u002Fa>\u003C\u002Fstrong>, one of the most secure forms of remote system authentication available via any TOTP-based authenticator app or service.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Flogin-security\u002F\" rel=\"nofollow ugc\">Login Page CAPTCHA\u003C\u002Fa>\u003C\u002Fstrong> stops bots from logging in.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Flogin-security\u002F#woocommerce-and-custom-integrations\" rel=\"nofollow ugc\">2FA for WooCommerce and custom integrations\u003C\u002Fa>\u003C\u002Fstrong> allow for 2FA to be setup on custom account pages\u003C\u002Fli>\n\u003Cli>\u003Cstrong>XML-RPC\u003C\u002Fstrong> options including disabling or adding 2FA.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Password Security:\u003C\u002Fstrong> Block logins for administrators using known compromised passwords.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📋 SECURITY AUDIT LOG [Premium]\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Faudit-log\" rel=\"nofollow ugc\">The Audit Log\u003C\u002Fa>\u003C\u002Fstrong> monitors all changes and actions in security-sensitive areas of the site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remote tamper-proof data storage\u003C\u002Fstrong> via Wordfence Central.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Monitor events and actions\u003C\u002Fstrong> ranging  from user creation and editing to plugin\u002Ftheme installation and updates to post and page changes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Configurable\u003C\u002Fstrong> to log all events or significant events only, which includes all authentication, site configuration, and site functionality events.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌐 WORDFENCE CENTRAL\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fproducts\u002Fwordfence-central\u002F\" rel=\"nofollow ugc\">Wordfence Central\u003C\u002Fa>\u003C\u002Fstrong> is a powerful and efficient way to manage the security for multiple sites in one place.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Centralized management:\u003C\u002Fstrong> Efficiently assess the security status of all your websites in one view. View detailed security findings without leaving Wordfence Central.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Powerful templates\u003C\u002Fstrong> make configuring Wordfence a breeze.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Highly configurable alerts\u003C\u002Fstrong> can be delivered via email, SMS or Slack. Improve the signal to noise ratio by leveraging severity level options and a daily digest option.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Track and alert on important security events\u003C\u002Fstrong> including administrator logins, breached password usage and surges in attack activity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free to use\u003C\u002Fstrong> for unlimited sites.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🛠️ SECURITY TOOLS\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Ftools\u002Flive-traffic\u002F\" rel=\"nofollow ugc\">Live Traffic\u003C\u002Fa>\u003C\u002Fstrong> monitors visits and hack attempts not shown in other analytics packages in real time; including origin, their IP address, the time of day and time spent on your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Block attackers by IP\u003C\u002Fstrong> or build advanced rules based on IP Range, Hostname, User Agent and Referrer.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fhelp\u002Fblocking\u002Fcountry-blocking\u002F\" rel=\"nofollow ugc\">Country blocking\u003C\u002Fa>\u003C\u002Fstrong> available with Wordfence Premium.\u003C\u002Fli>\n\u003C\u002Ful>\n","Firewall, Malware Scanner, Two Factor Auth, and Comprehensive Security Features, powered by our 24-hour team. Make security a priority with Wordfence.",5000000,406617999,4829,"2025-12-20T21:06:00.000Z","4.7","7.0",[115,116,117,118,22],"2fa","firewall","malware","scanner","https:\u002F\u002Fwww.wordfence.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwordfence.8.1.4.zip",96,12,"2022-09-06 00:00:00",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":134,"num_ratings":135,"last_updated":136,"tested_up_to":50,"requires_at_least":137,"requires_php":138,"tags":139,"homepage":143,"download_link":144,"security_score":145,"vuln_count":32,"unpatched_count":13,"last_vuln_date":146,"fetched_at":28},"hostinger","Hostinger Tools","3.0.59","Hostinger","https:\u002F\u002Fprofiles.wordpress.org\u002Fhostinger\u002F","\u003Cp>Hostinger Tools is an all-in-one plugin designed to streamline essential tasks for WordPress site administrators. This plugin offers a range of features to help you manage your site’s information, maintenance mode, security, and redirects effectively.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cem>Basic Info\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Displays the current WordPress version with automatic update checks.\u003C\u002Fli>\n\u003Cli>Shows the current PHP version with automatic update checks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Maintenance Mode\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easily enable or disable maintenance mode for your site.\u003C\u002Fli>\n\u003Cli>Provide a URL to bypass maintenance mode for selected users.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Security\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable or disable XML-RPC requests to enhance your site’s security.\u003C\u002Fli>\n\u003Cli>Enable or disable Authorize application page to enhance your site’s security.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Redirects\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Force all URLs to use HTTPS for secure browsing.\u003C\u002Fli>\n\u003Cli>Force all URLs to use WWW to ensure consistency in site access.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>LLMs.txt Generation\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically generate a structured LLMs.txt file in Markdown format.\u003C\u002Fli>\n\u003Cli>Include website title, description, posts, pages, and products (if WooCommerce is active).\u003C\u002Fli>\n\u003Cli>Keep the file updated when content changes or new content is published.\u003C\u002Fli>\n\u003Cli>Help AI-powered tools better understand and interact with your website content.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Hostinger Tools is the new version of the previous Hostinger plugin, offering an updated and enhanced experience.\u003Cbr \u002F>\nThe Onboarding assistant and the Learning section previously included in this plugin were moved to the separate plugin Hostinger Easy Onboarding.\u003C\u002Fp>\n","Simplified WordPress management. Manage site info, maintenance, security, & redirects.",3000000,16730722,60,25,"2026-03-03T11:48:00.000Z","5.5","8.1",[125,140,141,22,142],"https","maintenance","tools","https:\u002F\u002Fhostinger.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhostinger.3.0.59.zip",99,"2024-01-05 00:00:00",{"attackSurface":148,"codeSignals":169,"taintFlows":177,"riskAssessment":178,"analyzedAt":188},{"hooks":149,"ajaxHandlers":163,"restRoutes":164,"shortcodes":165,"cronEvents":166,"entryPointCount":13,"unprotectedCount":13},[150,156,160],{"type":151,"name":152,"callback":153,"file":154,"line":155},"filter","cron_schedules","file_change_monitor_custom_schedule","file-change-monitor.php",67,{"type":157,"name":158,"callback":159,"file":154,"line":47},"action","wp","file_change_monitor_schedule_event",{"type":157,"name":161,"callback":162,"file":154,"line":78},"file_change_monitor_cron_hook","file_change_monitor_check",[],[],[],[167],{"hook":161,"callback":161,"file":154,"line":168},79,{"dangerousFunctions":170,"sqlUsage":171,"outputEscaping":173,"fileOperations":175,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":176},[],{"prepared":13,"raw":13,"locations":172},[],{"escaped":13,"rawEcho":13,"locations":174},[],2,[],[],{"summary":179,"deductions":180},"The file-change-monitor plugin version 1.0.4 exhibits a generally strong security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, or shortcodes with inadequate authentication checks is a significant strength, minimizing the plugin's direct attack surface. Furthermore, the code's adherence to prepared statements for SQL queries and proper output escaping demonstrates good development practices. The vulnerability history being entirely clear also suggests a well-maintained and secure codebase to date.\n\nHowever, a notable concern arises from the complete lack of nonce checks and capability checks across all entry points. While the current entry points are limited, this absence represents a potential weakness if new functionalities are added or if the existing cron event is exploited in conjunction with other vulnerabilities. The presence of file operations, though not explicitly flagged as malicious, always warrants careful consideration in terms of potential path traversal or unauthorized file access if not handled with extreme caution. The lack of any taint analysis results also means that potential vulnerabilities related to unsanitized user input being used in file operations or other sensitive functions may have been missed.\n\nIn conclusion, file-change-monitor v1.0.4 is currently a very secure plugin with a minimal attack surface and no recorded vulnerabilities. The developers have implemented good security practices concerning SQL and output. The primary area for improvement and potential future risk lies in the complete absence of nonce and capability checks, which should be addressed to ensure ongoing security as the plugin evolves. The presence of file operations also suggests a need for continued vigilance.",[181,183,185],{"reason":182,"points":11},"Missing nonce checks",{"reason":184,"points":11},"Missing capability checks",{"reason":186,"points":187},"File operations present, potential for misuse",5,"2026-03-17T00:35:52.557Z",{"wat":190,"direct":195},{"assetPaths":191,"generatorPatterns":192,"scriptPaths":193,"versionParams":194},[],[],[],[],{"cssClasses":196,"htmlComments":197,"htmlAttributes":198,"restEndpoints":199,"jsGlobals":200,"shortcodeOutput":201},[],[],[],[],[],[]]