[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fa6OF5lmDrys9kHdBE1j7jv4kR08IZFEdNRAdOkerRHU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":15,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":44,"crawl_stats":35,"alternatives":51,"analysis":151,"fingerprints":301},"fix-multiple-redirects","Fix Multiple Redirects","1.2.3","jurajpuchky","https:\u002F\u002Fprofiles.wordpress.org\u002Fjurajpuchky\u002F","\u003Cp>Help users to fix problems with multiple redirects and canonical redirects.\u003Cbr \u002F>\n– advice to configure DNS records, prevent canonical problems.\u003Cbr \u002F>\n– By disable canonical redirect filters.\u003Cbr \u002F>\n– By disable redicrecting filters.\u003Cbr \u002F>\n– By fixing .htaccess file.\u003Cbr \u002F>\n– Some FAQ with experience.\u003Cbr \u002F>\n– Increase speed of wordpress fine url recognition for SEO by .htaccess file.\u003Cbr \u002F>\n– Fixed issue with force redirect to WWW\u003Cbr \u002F>\n– If you wish you can promote us, with small link in tail of post\u002Fpage or donate only ONE $.\u003C\u002Fp>\n\u003Cp>Home page: \u003Ca href=\"http:\u002F\u002Fwww.devtech.cz\u002F\" title=\"Devtech - supports preshashop plugin,wordpress plugin,vpn,b2b,eshop,blog,annonce,link,seo,proxy,mailing,affiliate\" rel=\"nofollow ugc\">Devtech\u003C\u002Fa>\u003C\u002Fp>\n","Fix multiple redirects and canonical redirects. And increase speed of wordpress fine url recognition for SEO by .htaccess file.",40,10369,4,"2013-02-16T10:15:00.000Z","","2.6",[18,19,20,21,22],"canonical","fix","multiple","redirects","seo","http:\u002F\u002Fwww.devtech.cz\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffix-multiple-redirects.1.2.3.zip",63,1,"2025-10-08 00:00:00","2026-03-15T15:16:48.613Z",[30],{"id":31,"url_slug":32,"title":33,"description":34,"plugin_slug":4,"theme_slug":35,"affected_versions":36,"patched_in_version":35,"severity":37,"cvss_score":38,"cvss_vector":39,"vuln_type":40,"published_date":27,"updated_date":41,"references":42,"days_to_patch":35},"CVE-2025-48092","fix-multiple-redirects-reflected-cross-site-scripting","Fix Multiple Redirects \u003C= 1.2.3 - Reflected Cross-Site Scripting","The Fix Multiple Redirects plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.2.3","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-10-29 14:54:26",[43],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fac9ea266-d3a5-4140-9bee-86de031ca4e7?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":45,"total_installs":46,"avg_security_score":47,"avg_patch_time_days":48,"trust_score":49,"computed_at":50},2,50,74,30,76,"2026-04-05T01:53:23.468Z",[52,75,93,110,131],{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":62,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":15,"tags":67,"homepage":15,"download_link":72,"security_score":73,"vuln_count":74,"unpatched_count":74,"last_vuln_date":35,"fetched_at":28},"quick-301-redirects","Quick 301 Redirects","1.1.8","Premio","https:\u002F\u002Fprofiles.wordpress.org\u002Fpremio\u002F","\u003Cp>\u003Cstrong>The fastest and easiest way to do 301 redirects. You can set each redirect individually or bulk upload unlimited number of 301 redirects using a CSV file.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can use Quick 301 Redirects for small website with just a few pages and also for sites with thousands of pages. Use Quick 301 Redirects to set up your 301 redirects in seconds, you can redirect internally to your domain or to any other domain.\u003C\u002Fp>\n\u003Ch4>Set 301 Redirects Manually Or In Bulk\u003C\u002Fh4>\n\u003Cp>Manage all your website’s 301 redirects without any professional knowledge. All you need is to install our plugin, and the leave the rest to our super simple UI (RTL supported).\u003C\u002Fp>\n\u003Cp>Our super simple UI will enable you to set your redirects manually one-by-one or using a CSV file for bulk upload.\u003C\u002Fp>\n\u003Cp>New! After saving your 301 301 redirects you’ll see a link button near each redirect that’ll allow you to test each and every 301 redirect.\u003C\u002Fp>\n\u003Cp>New! You can now export your 301 redirects into a CSV file.\u003C\u002Fp>\n","The fastest & easiest way to do 301 redirects. You can set each redirect or bulk upload unlimited number of 301 redirects using a CSV file",7000,42067,92,12,"2025-09-23T06:21:00.000Z","6.8.5","3.1",[68,69,21,70,71],"301","301-redirects","seo-redirects","url-redirects","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquick-301-redirects.1.1.8.zip",100,0,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":73,"num_ratings":26,"last_updated":85,"tested_up_to":65,"requires_at_least":86,"requires_php":15,"tags":87,"homepage":91,"download_link":92,"security_score":73,"vuln_count":74,"unpatched_count":74,"last_vuln_date":35,"fetched_at":28},"canonical-link","Canonical Link","1.6","Web Guy","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebguyio\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fsupport\" rel=\"nofollow ugc\">💬 Ask Question\u003C\u002Fa> | \u003Ca href=\"mailto:webguywork@gmail.com\" rel=\"nofollow ugc\">📧 Email Me\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Adds the canonical link to your site (\u003Ca href=\"https:\u002F\u002Fwikipedia.org\u002Fwiki\u002FCanonical_link_element\" rel=\"nofollow ugc\">Learn More\u003C\u002Fa>).\u003C\u002Fp>\n\u003Cp>Activate and then set your permalinks to “Post name” under \u003Cem>Settings > Permalinks\u003C\u002Fem>. That’s it.\u003C\u002Fp>\n\u003Cp>Verify that it’s working correctly with the \u003Ca href=\"https:\u002F\u002Faddons.mozilla.org\u002Faddon\u002Fcanonical-link\u002F\" rel=\"nofollow ugc\">Firefox add-on\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Supports the ability to customize the canonical link for any specific page, post, or even custom post types (including WooCommerce Products and bbPress Topics).\u003C\u002Fp>\n","Adds the canonical link to your site (https:\u002F\u002Fwikipedia.org\u002Fwiki\u002FCanonical_link_element). Activate and then set your permalinks to \"Post name&quo &hellip;",3000,16555,"2026-01-21T13:48:00.000Z","5.0",[18,88,89,22,90],"canonicalization","clean-url","seo-friendly","https:\u002F\u002Fwebguy.io\u002Fblog\u002Fsuper-simple-dynamic-canonical-link-code\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcanonical-link.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":74,"num_ratings":74,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":15,"download_link":109,"security_score":62,"vuln_count":74,"unpatched_count":74,"last_vuln_date":35,"fetched_at":28},"canonical-seo","Canonical SEO","1.0.0","Toma","https:\u002F\u002Fprofiles.wordpress.org\u002Ftoma21207\u002F","\u003Cp>This plugin adds ability to customize  the canonical URL and meta description.\u003Cbr \u002F>\nThese params are used by crowlers and bots (like Google) to rank your site (SEO)\u003C\u002Fp>\n\u003Cp>Plugin is completelly free to use, it has no links, ads or any kind of upsale.\u003C\u002Fp>\n\u003Cp>Hope you find it usefull.\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n","Plugin adds posibility to edit canonical URL and meta description",1000,843,"2025-02-11T12:25:00.000Z","6.7.5","4.7","7.4",[18,108,22],"meta_description","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcanonical-seo.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":74,"num_ratings":74,"last_updated":120,"tested_up_to":65,"requires_at_least":121,"requires_php":106,"tags":122,"homepage":127,"download_link":128,"security_score":129,"vuln_count":26,"unpatched_count":74,"last_vuln_date":130,"fetched_at":28},"seopress-for-mainwp","SEOPress for MainWP","1.5","Benjamin Denis","https:\u002F\u002Fprofiles.wordpress.org\u002Frainbowgeek\u002F","\u003Cp>This is a free add-on for MainWP plugin.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FuzWtaXCg-r8?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>✔ Quickly edit your global SEOPress settings:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Titles and metas\u003C\u002Fli>\n\u003Cli>XML – HTML Sitemap\u003C\u002Fli>\n\u003Cli>Social Networks\u003C\u002Fli>\n\u003Cli>Analytics\u003C\u002Fli>\n\u003Cli>Instant Indexing\u003C\u002Fli>\n\u003Cli>Advanced\u003C\u002Fli>\n\u003Cli>Redirections \u002F 404 (*)\u003C\u002Fli>\n\u003Cli>Structured data types (*)\u003C\u002Fli>\n\u003Cli>robots.txt (*)\u003C\u002Fli>\n\u003Cli>Local Business (*)\u003C\u002Fli>\n\u003Cli>Breadcrumbs (*)\u003C\u002Fli>\n\u003Cli>WooCommerce (*)\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads (*)\u003C\u002Fli>\n\u003Cli>Google Search Console (*)\u003C\u002Fli>\n\u003Cli>Google News (*)\u003C\u002Fli>\n\u003Cli>URL rewriting (*)\u003C\u002Fli>\n\u003Cli>RSS feeds (*)\u003C\u002Fli>\n\u003Cli>White label (*)\u003C\u002Fli>\n\u003Cli>AI (*)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>(*\u003Ca href=\"https:\u002F\u002Fwww.seopress.org\u002Fwordpress-seo-plugins\u002Fpro\u002F\" rel=\"nofollow ugc\">SEOPress PRO\u003C\u002Fa> required)\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>✔ Import \u002F export your SEOPress configuration from a site to another in seconds.\u003Cbr \u002F>\n✔ GDPR ready\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp\u002F\" rel=\"ugc\">MainWP dashboard (>= 4.2.7)\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp-child\u002F\" rel=\"ugc\">MainWP child plugin on at least 1 sub-site (>= 4.2.6)\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-seopress\u002F\" rel=\"ugc\">SEOPress Free (>= 5.9) installed and activated on the MainWP dashboard and at least 1 sub-site\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.seopress.org\u002Fwordpress-seo-plugins\u002Fpro\u002F\" rel=\"nofollow ugc\">SEOPress PRO (>= 5.9, optional) installed and activated on the MainWP dashboard and at least 1 sub-site\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","SEOPress for MainWP extension, is an-addon for MainWP and SEOPress plugins. Edit your SEOPress global settings directly from MainWP dashboard site.",900,13036,"2025-07-02T08:57:00.000Z","6.0",[123,124,22,125,126],"mainwp","multiple-wordpress-sites","wordpress-management","wordpress-manager","https:\u002F\u002Fwww.seopress.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fseopress-for-mainwp.1.5.zip",98,"2025-07-25 00:00:00",{"slug":132,"name":133,"version":134,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":139,"downloaded":140,"rating":141,"num_ratings":13,"last_updated":142,"tested_up_to":143,"requires_at_least":66,"requires_php":15,"tags":144,"homepage":148,"download_link":149,"security_score":150,"vuln_count":74,"unpatched_count":74,"last_vuln_date":35,"fetched_at":28},"canonical-seo-content-syndication","Canonical SEO Content Syndication WordPress Plugin","3.0","Harsh Agrawal","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenharsh\u002F","\u003Cp>Content syndication is a process of amplifying your content to other blogs without hurting the SEO of your original content. You can let other blogs to republish your content in exact format with rel=canonical tag.\u003C\u002Fp>\n\u003Cp>You can read about Rel=canonical tag here at pt.4: https:\u002F\u002Fsupport.google.com\u002Fwebmasters\u002Fanswer\u002F139066?hl=en\u003C\u002Fp>\n\u003Cp>In this guide you can learn everything about using content syndication for content marketing: http:\u002F\u002Fwww.shoutmeloud.com\u002Frelcanonical-wordpresss-content-syndication-seo.html\u003C\u002Fp>\n\u003Cp>\u003Cem>Canonical SEO Content syndication plugin\u003C\u002Fem> adds a meta box at post editor section. You can add permalink of post where the content was originally published. Popular blogs like bufferblog, readwriteweb are taking advantage of content syndication and rel=canonical tags.\u003C\u002Fp>\n","Canonical SEO Content syndication plugin adds rel=canonical tag for content syndication. The meta box is added at edit post section.",500,15480,80,"2019-04-01T12:55:00.000Z","5.1.22",[18,145,146,147,22],"content-marketing","content-syndication","search-engine-optimisation","https:\u002F\u002Fwww.shoutmeloud.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcanonical-seo-content-syndication.zip",85,{"attackSurface":152,"codeSignals":177,"taintFlows":219,"riskAssessment":285,"analyzedAt":300},{"hooks":153,"ajaxHandlers":173,"restRoutes":174,"shortcodes":175,"cronEvents":176,"entryPointCount":74,"unprotectedCount":74},[154,160,165,169],{"type":155,"name":156,"callback":157,"file":158,"line":159},"action","admin_init","FIXMTPLREDIR_register_settings","fix-multiple-redirects.php",181,{"type":161,"name":162,"callback":163,"file":158,"line":164},"filter","the_content","FIXMTPLREDIR_promotionOnContent",187,{"type":155,"name":166,"callback":167,"file":158,"line":168},"admin_menu","FIXMTPLREDIR_init_menu",189,{"type":155,"name":170,"callback":171,"priority":74,"file":158,"line":172},"init","FIXMTPLREDIR_init",192,[],[],[],[],{"dangerousFunctions":178,"sqlUsage":179,"outputEscaping":181,"fileOperations":217,"externalRequests":74,"nonceChecks":74,"capabilityChecks":74,"bundledLibraries":218},[],{"prepared":74,"raw":74,"locations":180},[],{"escaped":74,"rawEcho":182,"locations":183},15,[184,188,190,192,194,196,197,199,201,203,205,208,211,213,215],{"file":185,"line":186,"context":187},"include\\admin-ui\\settings.php",45,"raw output",{"file":185,"line":189,"context":187},84,{"file":185,"line":191,"context":187},90,{"file":185,"line":193,"context":187},126,{"file":185,"line":195,"context":187},137,{"file":185,"line":195,"context":187},{"file":185,"line":198,"context":187},198,{"file":185,"line":200,"context":187},241,{"file":185,"line":202,"context":187},284,{"file":185,"line":204,"context":187},299,{"file":206,"line":207,"context":187},"include\\component\\FilterCheckbox.php",22,{"file":209,"line":210,"context":187},"include\\component\\PluginPromotionOnContent.php",26,{"file":209,"line":212,"context":187},27,{"file":209,"line":214,"context":187},34,{"file":209,"line":216,"context":187},35,3,[],[220,237,248,257,271],{"entryPoint":221,"graph":222,"unsanitizedCount":26,"severity":37},"FIXMTPLREDIR_getHtAccessFile (fix-multiple-redirects.php:97)",{"nodes":223,"edges":234},[224,229],{"id":225,"type":226,"label":227,"file":158,"line":228},"n0","source","$_SERVER['DOCUMENT_ROOT']",99,{"id":230,"type":231,"label":232,"file":158,"line":129,"wp_function":233},"n1","sink","file_get_contents() [SSRF\u002FLFI]","file_get_contents",[235],{"from":225,"to":230,"sanitized":236},false,{"entryPoint":238,"graph":239,"unsanitizedCount":26,"severity":37},"FIXMTPLREDIR_setHtAccessFile (fix-multiple-redirects.php:102)",{"nodes":240,"edges":246},[241,243],{"id":225,"type":226,"label":227,"file":158,"line":242},104,{"id":230,"type":231,"label":244,"file":158,"line":242,"wp_function":245},"file_put_contents() [File Write]","file_put_contents",[247],{"from":225,"to":230,"sanitized":236},{"entryPoint":249,"graph":250,"unsanitizedCount":26,"severity":37},"FIXMTPLREDIR_backupHtAccessFile (fix-multiple-redirects.php:108)",{"nodes":251,"edges":255},[252,254],{"id":225,"type":226,"label":227,"file":158,"line":253},109,{"id":230,"type":231,"label":244,"file":158,"line":253,"wp_function":245},[256],{"from":225,"to":230,"sanitized":236},{"entryPoint":258,"graph":259,"unsanitizedCount":217,"severity":37},"\u003Cfix-multiple-redirects> (fix-multiple-redirects.php:0)",{"nodes":260,"edges":268},[261,262,263,266],{"id":225,"type":226,"label":227,"file":158,"line":228},{"id":230,"type":231,"label":232,"file":158,"line":129,"wp_function":233},{"id":264,"type":226,"label":265,"file":158,"line":242},"n2","$_SERVER['DOCUMENT_ROOT'] (x2)",{"id":267,"type":231,"label":244,"file":158,"line":242,"wp_function":245},"n3",[269,270],{"from":225,"to":230,"sanitized":236},{"from":264,"to":267,"sanitized":236},{"entryPoint":272,"graph":273,"unsanitizedCount":26,"severity":37},"\u003Csettings> (include\\admin-ui\\settings.php:0)",{"nodes":274,"edges":282},[275,278,281],{"id":225,"type":226,"label":276,"file":185,"line":277},"$_POST['current_htaccess']",44,{"id":230,"type":279,"label":280,"file":185,"line":277},"transform","→ FIXMTPLREDIR_setHtAccessFile()",{"id":264,"type":231,"label":244,"file":158,"line":242,"wp_function":245},[283,284],{"from":225,"to":230,"sanitized":236},{"from":230,"to":264,"sanitized":236},{"summary":286,"deductions":287},"The 'fix-multiple-redirects' plugin v1.2.3 exhibits a mixed security posture. On the positive side, its attack surface appears minimal with no detectable AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, it demonstrates good practice by using prepared statements for all SQL queries and avoids external HTTP requests. However, significant concerns arise from the code analysis, particularly the complete lack of output escaping (0% properly escaped) and the presence of 5 taint flows with unsanitized paths. While the taint analysis did not flag critical or high severity issues, the sheer number of unsanitized flows suggests a high likelihood of cross-site scripting (XSS) vulnerabilities if these flows involve user-supplied input that is later rendered in the browser. The vulnerability history further exacerbates these concerns, showing one known CVE that remains unpatched, with a past common vulnerability type being XSS. This indicates a recurring issue with input sanitization and output escaping, which, when combined with the current static analysis findings, presents a substantial risk.",[288,291,293,295,298],{"reason":289,"points":290},"Unpatched CVE exists",17,{"reason":292,"points":182},"All output is unescaped",{"reason":294,"points":63},"Unsanitized paths in taint flows",{"reason":296,"points":297},"No capability checks",5,{"reason":299,"points":297},"No nonce checks","2026-03-16T22:20:49.265Z",{"wat":302,"direct":307},{"assetPaths":303,"generatorPatterns":304,"scriptPaths":305,"versionParams":306},[],[],[],[],{"cssClasses":308,"htmlComments":309,"htmlAttributes":310,"restEndpoints":311,"jsGlobals":312,"shortcodeOutput":314},[],[],[],[],[313],"FIXMTPLREDIR_isDebug",[]]