[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fX79SCI65-DDXXSgUZGXUtEPmFq_AMZAqfvq55rJgxAk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":134,"fingerprints":164},"fix-email-return-path","Fix Email Return-Path","1.0.5","mishalpatel","https:\u002F\u002Fprofiles.wordpress.org\u002Fmishalpatel\u002F","\u003Cp>This plugin sets the PHPMailer Sender (return-path) the same as the From address if it’s not correctly set.\u003C\u002Fp>\n","Simple plugin that sets the PHPMailer->Sender variable so that the return-path is correctly set when using wp_mail.",200,1858,20,1,"2020-09-03T05:13:00.000Z","5.5.18","3.0.1","",[20,21,22],"phpmailer","return-path","sender","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffix-email-return-path.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},2,220,30,84,"2026-04-05T14:55:49.722Z",[36,54,77,98,113],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":17,"requires_php":18,"tags":50,"homepage":18,"download_link":53,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"wp-mail-returnpath","wp_mail return-path","1.1.1","barnz99","https:\u002F\u002Fprofiles.wordpress.org\u002Fbarnz99\u002F","\u003Cp>This plugin sets the PHPMailer Sender (return-path) the same as the From address if it’s not correctly set.\u003C\u002Fp>\n\u003Cp>Mitigates the “via” and “The actual sender of” Notification in Outlook and stops email going to spam\u002Fjunk because of the mismatch between From and Return-Path headers.\u003C\u002Fp>\n\u003Cp>This usually occurs on shared hosting servers when local user \u002F domain is used as default for the return-path header and WordPress only sets the From header.\u003C\u002Fp>\n","Simple plugin that correctly sets the return-path header when using wp_mail. Mitigates the \"via\" and \"The actual sender of\" Notif &hellip;",5000,32902,100,9,"2023-12-11T13:31:00.000Z","6.3.8",[51,20,21,22,52],"outlook","wp-mail","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mail-returnpath.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":75,"download_link":76,"security_score":46,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"stop-wp-emails-going-to-spam","Stop WP Emails Going to Spam","2.2.1","fullworks","https:\u002F\u002Fprofiles.wordpress.org\u002Ffullworks\u002F","\u003Cp>Emails generated from within WordPress often end up in your spam or junk folder, This plugin helps you sort that out. The default settings of this plugin can often be enough to solve your problem.\u003C\u002Fp>\n\u003Cp>When using the default PHP mailer in WordPress, especially on shared servers, emails will often be set to spam or junk by receiving email systems. This can be very frustrating and important notifications can be missed by you or your clients.\u003C\u002Fp>\n\u003Cp>Why does this happen? One problem is the “envelope sender” not being set, and many hosts will recommend that you install a plugin to set the “envelope sender”, this is the main purpose of this plugin.\u003C\u002Fp>\n\u003Cp>Along with setting the “envelope sender” this plugin also displays your Sender Permitted From (SPF) and checks your server IP is in the SPF record, if there is one.\u003C\u002Fp>\n\u003Cp>Optionally this plugin allows you to change the name and email address of the default WordPress notification email easily.\u003C\u002Fp>\n\u003Cp>If you use an SMTP email plugin or use an API based transactional email plugin, this plugin will add no value; it is built to support the default PHP mailer only.\u003C\u002Fp>\n\u003Ch4>PHP 8.0 compatible\u003C\u002Fh4>\n\u003Cp>Tested on PHP 8.4\u003C\u002Fp>\n\u003Ch4>Features Include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Checks email SPF health\u003C\u002Fli>\n\u003Cli>Checks if your IP is blacklisted\u003C\u002Fli>\n\u003Cli>Set envelope sender when missing\u003C\u002Fli>\n\u003Cli>Allows you to change the default WordPress sending email\u003C\u002Fli>\n\u003Cli>Allows you to change the default WordPress sending email name\u003C\u002Fli>\n\u003Cli>Allows you to set the sending email domain\u003C\u002Fli>\n\u003C\u002Ful>\n","Fixes WordPress emails going to spam\u002Fjunk folders. The default settings often resolve the issue.",10000,165353,96,51,"2025-12-15T13:14:00.000Z","6.9.4","4.8.1","7.4",[71,72,73,20,74],"email","envelope-sender","phpmail","spam","https:\u002F\u002Ffullworksplugins.com\u002Fproducts\u002Fstop-wp-emails-going-to-spam\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstop-wp-emails-going-to-spam.2.2.1.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":46,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":18,"tags":91,"homepage":94,"download_link":95,"security_score":96,"vuln_count":14,"unpatched_count":25,"last_vuln_date":97,"fetched_at":27},"send-from","Send From","2.5","Benjamin Buddle","https:\u002F\u002Fprofiles.wordpress.org\u002Fmahoskye\u002F","\u003Cp>I have issues with my hosting service not allowing me to easily set the ‘From line’ for my server email. Whenever a new user signs up they see username@hostingservice.com even though they should see user@site.com. Before Send From you would be required to modify your installation of WordPress just about every time you do an update. No longer! With Send From, you simply go into your admin panel and set what the end user will see on their emails from line.\u003C\u002Fp>\n\u003Ch3>Support Questions\u003C\u002Fh3>\n\u003Cp>If there are any issues that crop up, I will be happy to take a look at solving them. However, due to many factors, I can’t offer active support for the plugin.\u003C\u002Fp>\n\u003Ch3>Security\u003C\u002Fh3>\n\u003Cp>CVE: CVE-2025-46469 – Cross-site scripting (Stored XSS) in plugin settings.\u003C\u002Fp>\n\u003Cp>Summary: A stored XSS issue was reported in older versions of this plugin where un-sanitized input saved in plugin options could later be rendered into the admin interface without proper escaping. The repository has been updated to sanitize incoming option values and escape output when rendering form fields. The plugin also validates the test-send email address.\u003C\u002Fp>\n\u003Cp>Mitigation applied in this repository:\u003Cbr \u002F>\n– Sanitize email values with WordPress’ sanitize_email() before saving.\u003Cbr \u002F>\n– Sanitize name fields with sanitize_text_field() before saving.\u003Cbr \u002F>\n– Escape values when printed into HTML attributes using esc_attr().\u003Cbr \u002F>\n– Validate test-send addresses with is_email() and refuse to save invalid addresses.\u003C\u002Fp>\n","Plugin for modifying the from line on all emails coming from WordPress.",600,14218,8,"2025-10-10T02:42:00.000Z","6.4.8","5.9",[71,92,20,22,93],"mail-from","smtp","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsend-from\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsend-from.2.5.zip",99,"2025-04-24 00:00:00",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":11,"downloaded":106,"rating":25,"num_ratings":25,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":18,"download_link":112,"security_score":46,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"improve-email-spam-score","Improve Email Spam Score – Improves forms phpmail spam score","1.3","Teet Bergmann","https:\u002F\u002Fprofiles.wordpress.org\u002Fteetb\u002F","\u003Cp>This plugin adds a email return-path and envelope-from address to the wp_mail () function. Which reduces the spam score sent from your website form.\u003C\u002Fp>\n","This plugin adds a email return-path and envelope-from address to the wp_mail () function. Which reduces the spam score sent from your website form.",1185,"2026-01-04T00:43:00.000Z","6.8.5","5.5","5.6",[71,72,73,20],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimprove-email-spam-score.1.3.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":123,"num_ratings":124,"last_updated":125,"tested_up_to":67,"requires_at_least":126,"requires_php":69,"tags":127,"homepage":130,"download_link":131,"security_score":132,"vuln_count":14,"unpatched_count":25,"last_vuln_date":133,"fetched_at":27},"site-mailer","Site Mailer – SMTP Replacement, Email API Deliverability & Email Log","1.4.3","Elementor","https:\u002F\u002Fprofiles.wordpress.org\u002Felemntor\u002F","\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F1hOxkEO-22I?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Has your WordPress site stopped sending emails? Are emails from your WordPress site landing in spam or not getting delivered? Are customers complaining about missing messages?\u003C\u002Fp>\n\u003Cp>With \u003Cstrong>Site Mailer\u003C\u002Fstrong>, you can say goodbye to email issues. Our easy-to-use tool ensures all emails reach their destination while providing you with a detailed email log to track and resend messages if needed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Enhance your email management effortlessly\u003C\u002Fstrong>. Site Mailer eliminates the need for complex SMTP plugins, providing a streamlined solution for reliable email deliverability. Troubleshoot and monitor with ease using our intuitive interface, so you never miss another email.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Ch4>High Deliverability\u003C\u002Fh4>\n\u003Cp>Ensure your emails consistently reach your audience’s inbox with optimized sending methods designed to maximize deliverability and minimize spam risk.\u003C\u002Fp>\n\u003Ch4>Use Your Custom Domain\u003C\u002Fh4>\n\u003Cp>Send emails with your custom domain — or get started quickly with our default email so no email will be lost once you start working with Site Mailer.\u003C\u002Fp>\n\u003Ch4>No Integration or SMTP Plugin Needed\u003C\u002Fh4>\n\u003Cp>Site Mailer works seamlessly without the need for additional API integration or SMTP plugins. This means less hassle and more efficient email management.\u003C\u002Fp>\n\u003Ch4>Easy Setup\u003C\u002Fh4>\n\u003Cp>Get started with Site Mailer in no time. Our intuitive setup process ensures you can configure and start using the plugin quickly and effortlessly.\u003C\u002Fp>\n\u003Ch4>30-Day Log Retention\u003C\u002Fh4>\n\u003Cp>The plugin includes 30 days of email log retention, allowing you to easily track and review your email activity.\u003C\u002Fp>\n\u003Ch4>Compatibility with Popular Plugins\u003C\u002Fh4>\n\u003Cp>Site Mailer has been tested to be fully compatible with most popular WordPress plugins, including Elementor Pro, WooCommerce, Contact Form 7, WPForms and more.\u003C\u002Fp>\n\u003Ch4>Reputation Management\u003C\u002Fh4>\n\u003Cp>Safeguard your email sending reputation with intelligent features that enhance your sender score, ensuring consistent inbox placement and reducing the risk of emails being marked as spam.\u003C\u002Fp>\n\u003Ch4>Email Testing\u003C\u002Fh4>\n\u003Cp>Send a test email to confirm your site is properly configured for seamless transactional email delivery.\u003C\u002Fp>\n\u003Ch4>Resend Failed Emails\u003C\u002Fh4>\n\u003Cp>Did an email fail to deliver? Easily resend it with a single click to ensure your message reaches its intended recipient.\u003C\u002Fp>\n\u003Ch4>Suppression List\u003C\u002Fh4>\n\u003Cp>Enable easy unsubscribe options for your emails. Track and manage all unsubscribed recipients directly in the Suppressions tab.\u003C\u002Fp>\n\u003Ch3>Benefits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>No Integration Needed\u003C\u002Fstrong>: Use Site Mailer without the need for additional plugins or integrations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Troubleshooting\u003C\u002Fstrong>: Efficiently troubleshoot and resend emails when necessary.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Spam Reduction\u003C\u002Fstrong>: Our plugin will keep your emails out of the spam folder, ensuring that your important messages reach their intended recipients.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Built by the Elementor team\u003C\u002Fstrong>: Leverage the trust and reliability of a solution developed by Elementor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Get Started Today\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Transform your website’s email management with Site Mailer!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>For more information about Site Mailer, visit our \u003Ca href=\"https:\u002F\u002Fgo.elementor.com\u002Fwp-repo-wp-dash-sm-product-page\u002F\" rel=\"nofollow ugc\">official website\u003C\u002Fa>.\u003Cbr \u002F>\nIf you have any questions or need support, feel free to \u003Ca href=\"https:\u002F\u002Fgo.elementor.com\u002Fwp-repo-wp-dash-sm-contact-us\u002F\" rel=\"nofollow ugc\">contact us\u003C\u002Fa> or visit our \u003Ca href=\"https:\u002F\u002Fgo.elementor.com\u002Fwp-repo-wp-dash-sm-help-center\u002F\" rel=\"nofollow ugc\">help center\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin requires a connection to an active Elementor account in order to identify the user and provide the user with the purchased service. This connection is triggered manually by the user via the plugin’s settings panel. Learn more our \u003Ca href=\"https:\u002F\u002Fgo.elementor.com\u002Fwp-repo-wp-dash-sm-term-and-conditions\u002F\" rel=\"nofollow ugc\">terms and conditions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin uses a 3rd party service operated by Elementor, which accepts Email information including but not limited to (from, to, cc,bcc addresses, email body, subject line and attachments). This flow is triggered automatically on every email sending process utilizing the native WordPress \u003Ccode>wp_mail\u003C\u002Fcode> function.\u003C\u002Fp>\n\u003Ch3>Related Plugins\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimage-optimization\u002F\" rel=\"ugc\">Image Optimizer\u003C\u002Fa>: Superior image compression for faster, high-quality website performance.\u003C\u002Fp>\n","Effortlessly manage transactional emails with Site Mailer. High deliverability, logs and statistics, and no SMTP plugins needed.",200000,1804250,40,13,"2026-02-17T13:35:00.000Z","6.6",[71,128,129,22,93],"email-api","email-log","https:\u002F\u002Felementor.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsite-mailer.1.4.3.zip",98,"2025-02-27 23:34:36",{"attackSurface":135,"codeSignals":147,"taintFlows":154,"riskAssessment":155,"analyzedAt":163},{"hooks":136,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":25,"unprotectedCount":25},[137],{"type":138,"name":139,"callback":140,"file":141,"line":142},"action","phpmailer_init","fix_from","fix-email-return-path.php",12,[],[],[],[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":151,"fileOperations":25,"externalRequests":25,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":153},[],{"prepared":25,"raw":25,"locations":150},[],{"escaped":25,"rawEcho":25,"locations":152},[],[],[],{"summary":156,"deductions":157},"The static analysis of the \"fix-email-return-path\" plugin v1.0.5 reveals a generally strong security posture.  The absence of any identified entry points like AJAX handlers, REST API routes, shortcodes, or cron events significantly reduces the plugin's attack surface.  Furthermore, the code shows excellent practices regarding dangerous functions, SQL queries (all prepared statements), and output escaping, with no identified issues in these areas. The lack of file operations and external HTTP requests also contributes positively to its security. Taint analysis shows no flows with unsanitized paths, indicating a good level of sanitization within the analyzed code.\n\nThe vulnerability history is also exceptionally clean, with zero known CVEs recorded for this plugin. This suggests a well-maintained codebase and a proactive approach to security by the developers.  The lack of any recorded common vulnerability types further reinforces this positive trend.\n\nWhile the plugin's current state appears very secure, the absence of nonce and capability checks, although not immediately exploitable due to the lack of entry points, represents a potential future risk should entry points be added without adequate protection.  However, based on the provided data, the plugin demonstrates a robust security foundation and a strong track record, making it a low-risk option.",[158,161],{"reason":159,"points":160},"No Nonce checks detected",5,{"reason":162,"points":160},"No Capability checks detected","2026-03-16T20:27:27.445Z",{"wat":165,"direct":171},{"assetPaths":166,"generatorPatterns":167,"scriptPaths":168,"versionParams":169},[],[],[],[170],"fix-email-return-path\u002Ffix-email-return-path.php?ver=1.0.5",{"cssClasses":172,"htmlComments":173,"htmlAttributes":174,"restEndpoints":175,"jsGlobals":176,"shortcodeOutput":177},[],[],[],[],[],[]]