[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ffAgp_i3sBUhe5QSR5KPA9ys7j4qWHuZcB5izojZ_QXU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":79,"fingerprints":1222},"folder-auditor","Guard Dog Security & Site Lock","6.6","WP Fix It - WordPress Experts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpfixit\u002F","\u003Cp>\u003Cstrong>Guard Dog Security & Site Lock\u003C\u002Fstrong> helps WordPress administrators keep their installations clean and secure.\u003C\u002Fp>\n\u003Cp>Over time, it’s common for orphaned plugin or theme folders to build up in your wp-content directory. These stray folders may be the result of incomplete uninstallations, leftover files from updates, or abandoned code that was never fully removed. While they might seem harmless at first glance, they can create confusion, waste storage space, and in some cases pose a serious security risk.\u003C\u002Fp>\n\u003Cp>Hackers often exploit these forgotten folders by hiding backdoors or malicious scripts inside them, knowing that site owners rarely check for or even notice such files. An orphaned folder can act as an open invitation for unauthorized access, giving attackers a quiet place to operate undetected.\u003Cbr \u002F>\nBy identifying and removing these unused folders, you not only keep your WordPress installation clean and organized but also close off potential entry points that could otherwise be used to compromise your site. The Guard Dog Security plugin makes this process simple, scanning your directories to uncover anything that doesn’t belong and highlighting it for review before it becomes a problem.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>SITE LOCK – Only found here!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>One of the easiest ways for a hacked user to damage your site is by adding or changing the physical files that WordPress relies on. If attackers can place hidden scripts, modify plugin or theme files, or inject malicious code, they gain the power to compromise your entire site.\u003C\u002Fp>\n\u003Cp>The Site Lock feature in Guard Dog Security protects against this by allowing you to lock all folders and files in your installation and make them read-only. Once locked, no new files can be added, no existing files can be changed, and nothing can be removed. This ensures that the foundation of your WordPress site remains untouched, even if someone attempts to exploit vulnerabilities or gain access.\u003C\u002Fp>\n\u003Cp>When updates or changes are needed, you can unlock the system with a single action, perform your updates, and then reapply the lock. This simple but powerful safeguard gives you complete control over your site’s file structure and adds a layer of security that goes beyond what most WordPress plugins offer.\u003C\u002Fp>\n\u003Cp>This plugin scans the following directories:\u003Cbr \u002F>\n– WordPress Root (main installation folder)\u003Cbr \u002F>\n– wp-content Folder (wp-content\u002F)\u003Cbr \u002F>\n– Plugins Folder (wp-content\u002Fplugins\u002F)\u003Cbr \u002F>\n– Themes Folder (wp-content\u002Fthemes\u002F)\u003Cbr \u002F>\n– Uploads Folder (wp-content\u002Fuploads\u002F)\u003Cbr \u002F>\n– htaccess files\u003Cbr \u002F>\n– Database tables\u003C\u002Fp>\n\u003Cp>Guard Dog Security takes a disk-first approach. It crawls your entire WordPress installation and inventories every single file and folder, not just plugins and themes. Everything is presented in a clear interface where you can open items to view their contents, mark them to ignore, delete them if they are not needed, or download a copy for backup or investigation.\u003C\u002Fp>\n\u003Cp>Because it works directly from what is actually on disk, you are never limited by what WordPress shows in the admin. You can quickly spot unfamiliar files, tidy up leftovers from old plugins or themes, and pull down suspicious items for review, all without leaving the dashboard. It provides a fast and transparent way to see exactly what is on your server and take action immediately.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features\u003C\u002Fstrong>\u003Cbr \u002F>\n– Finds plugin folders not listed on the Plugins screen (hidden or orphaned)\u003Cbr \u002F>\nScans for plugin folders that exist in your WordPress installation but aren’t showing on the Plugins screen.\u003Cbr \u002F>\n– Detects missing plugin folders referenced by active or installed plugins\u003Cbr \u002F>\nIdentifies when active or installed plugins are missing their associated folders.\u003Cbr \u002F>\n– Lists top-level folders and files in key WordPress directories\u003Cbr \u002F>\nDisplays top-level files and folders within critical WordPress directories for easy auditing.\u003Cbr \u002F>\n– Fully lock all folders and files to make them read only\u003Cbr \u002F>\nLets you make all folders and files read-only for maximum protection.\u003Cbr \u002F>\n– Configure security headers\u003Cbr \u002F>\nAdds and manages HTTP security headers to harden your site against common threats.\u003Cbr \u002F>\n– Configure user security\u003Cbr \u002F>\nProvides settings to strengthen account and login security for WordPress users.\u003Cbr \u002F>\n– Infection scanner\u003Cbr \u002F>\nScan all site files to find any suspicious files\u003Cbr \u002F>\n– Zero configuration setup\u003Cbr \u002F>\nEnable scheduled scans to find any suspicious files and send you an email report\u003Cbr \u002F>\n– As many emails receipts as you like\u003Cbr \u002F>\nWorks right after install and activation—no complex setup required.\u003C\u002Fp>\n","Audit your site to keep WordPress clean and secure. Enable our one-of-a-kind SITE LOCK to give your site the ultimate security.",200,5148,100,4,"2026-02-25T13:08:00.000Z","6.9.4","5.0","7.4",[20,21,22,23],"easy-security","file-permissions","folder-permissions","site-lock","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffolder-auditor.6.6.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":13,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"wpfixit",9,8630,30,94,"2026-04-04T14:37:53.034Z",[38,59],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":24,"short_description":44,"active_installs":45,"downloaded":46,"rating":26,"num_ratings":26,"last_updated":24,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":56,"download_link":57,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":58},"pausepage","PausePage","1.1","Guru Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fguruplugins\u002F","Effortless Coming Soon and Maintenance Mode - redirect all visitors to a selected page while allowing admins full access.",20,302,"6.8.5","6.0","7.0",[51,52,53,54,55],"admin-access","coming-soon","maintenance-mode","site-lockout","under-construction","https:\u002F\u002Fplugins.guru-is.com\u002Fproduct\u002Fpausepage","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpausepage.1.1.zip","2026-03-15T10:48:56.248Z",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":26,"downloaded":67,"rating":26,"num_ratings":26,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":76,"download_link":77,"security_score":78,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"igniterauth","HTTP Authentication site lock","1.0.0","Affilipoint","https:\u002F\u002Fprofiles.wordpress.org\u002Frramroop\u002F","\u003Cp>IgniterAuth protects your website from the being accessible to the public and bots. It’s particularly useful when deploying beta or staging environments to make the site inaccessible to the public and also protect it from being crawled and indexed by search bots.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>Plugin featured overview:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works with any WordPress theme\u003C\u002Fli>\n\u003Cli>Visible only to non logged in users\u003C\u002Fli>\n\u003Cli>Give your users access using a custom username\u002Fpassword or by using the WP site credentials.\u003C\u002Fli>\n\u003Cli>Enable ‘noindex’ meta tags and ‘X-Robots-Tag: noindex’ in the header of your site\u003C\u002Fli>\n\u003Cli>Translation ready\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Notes\u003C\u002Fh4>\n\u003Cp>Our aim is to help you get the most out of your WordPress site both with our Plugins and Themes.\u003C\u002Fp>\n\u003Cp>If you feel that we have achieved this by using this plugin, please \u003Ca href=\"\" rel=\"nofollow ugc\">leave us a review\u003C\u002Fa>. We appreciate it very much and your feedback helps us develop better plugins and themes.\u003C\u002Fp>\n\u003Cp>Thank you\u003Cbr \u002F>\nJames\u003C\u002Fp>\n\u003Ch4>Privacy Statement\u003C\u002Fh4>\n\u003Cp>This plugin does not collect any personal information about you. When you activate, disactivate and remove the plugin a ping is sent to our server for usage statistics.\u003C\u002Fp>\n","Restrict your site from the public while it's in development, staging or maintenance mode.",1323,"2023-05-18T09:22:00.000Z","6.1.10","5.4",[72,73,74,23,75],"authentication","development","noindex","staging","https:\u002F\u002Faffilipoint.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Figniterauth.1.0.zip",85,{"attackSurface":80,"codeSignals":666,"taintFlows":900,"riskAssessment":1216,"analyzedAt":1221},{"hooks":81,"ajaxHandlers":536,"restRoutes":639,"shortcodes":653,"cronEvents":654,"entryPointCount":34,"unprotectedCount":665},[82,89,93,96,100,104,107,111,113,118,120,125,127,131,135,138,142,146,150,154,158,162,165,169,173,177,181,185,189,193,197,201,205,209,213,217,221,225,229,233,237,241,245,249,253,257,261,265,269,273,277,281,285,289,293,297,301,304,308,312,316,320,324,328,332,336,340,345,350,353,356,359,363,367,371,375,379,383,387,391,393,395,399,404,407,412,415,417,421,423,426,429,432,435,438,442,443,446,448,451,455,457,460,463,466,469,473,475,477,480,483,485,488,491,494,497,499,502,505,508,511,514,517,520,523,526,529,531,534],{"type":83,"name":84,"callback":85,"priority":86,"file":87,"line":88},"action","admin_enqueue_scripts","closure",10,"folder-auditor.php",41,{"type":83,"name":90,"callback":91,"file":87,"line":92},"admin_init","wpfa_redirect_after_activation",123,{"type":83,"name":94,"callback":85,"file":87,"line":95},"plugins_loaded",133,{"type":83,"name":97,"callback":98,"file":87,"line":99},"load-toplevel_page_guard-dog-security","wpfa_ensure_report_exclusions",156,{"type":101,"name":102,"callback":85,"priority":86,"file":87,"line":103},"filter","plugin_row_meta",181,{"type":101,"name":105,"callback":85,"file":87,"line":106},"cron_schedules",207,{"type":83,"name":108,"callback":109,"file":87,"line":110},"site_lock_auto_renable","wpfa_run_site_lock_auto_renable",230,{"type":83,"name":90,"callback":85,"file":87,"line":112},237,{"type":83,"name":114,"callback":115,"file":116,"line":117},"rest_api_init","register_routes","includes\\bridge\\status.php",18,{"type":83,"name":114,"callback":85,"file":119,"line":14},"includes\\bridge\\unlock-relock.php",{"type":83,"name":121,"callback":122,"file":123,"line":124},"admin_post_wpfa_export_html","handle_export_html","includes\\handlers\\handler-actions.php",19,{"type":83,"name":126,"callback":122,"file":123,"line":45},"admin_post_nopriv_wpfa_export_html",{"type":83,"name":128,"callback":129,"file":123,"line":130},"admin_menu","register_gd_admin_page",23,{"type":83,"name":132,"callback":133,"file":123,"line":134},"admin_post_folder_auditor_download","handle_download",29,{"type":83,"name":136,"callback":137,"file":123,"line":34},"admin_post_folder_auditor_delete","handle_delete",{"type":83,"name":139,"callback":140,"file":123,"line":141},"admin_post_folder_auditor_file_download","handle_file_download",31,{"type":83,"name":143,"callback":144,"file":123,"line":145},"admin_post_folder_auditor_file_delete","handle_file_delete",32,{"type":83,"name":147,"callback":148,"file":123,"line":149},"admin_post_folder_auditor_plugins_root_bulk","handle_plugins_root_bulk",34,{"type":83,"name":151,"callback":152,"file":123,"line":153},"admin_post_folder_auditor_plugin_never_lock","handle_plugin_never_lock",35,{"type":83,"name":155,"callback":156,"file":123,"line":157},"admin_post_folder_auditor_plugin_allow_lock","handle_plugin_allow_lock",36,{"type":83,"name":159,"callback":160,"file":123,"line":161},"admin_post_folder_auditor_theme_download","handle_theme_download",40,{"type":83,"name":163,"callback":164,"file":123,"line":88},"admin_post_folder_auditor_theme_delete","handle_theme_delete",{"type":83,"name":166,"callback":167,"file":123,"line":168},"admin_post_folder_auditor_theme_file_download","handle_theme_file_download",42,{"type":83,"name":170,"callback":171,"file":123,"line":172},"admin_post_folder_auditor_theme_file_delete","handle_theme_file_delete",43,{"type":83,"name":174,"callback":175,"file":123,"line":176},"admin_post_folder_auditor_themes_root_bulk","handle_themes_root_bulk",45,{"type":83,"name":178,"callback":179,"file":123,"line":180},"admin_post_folder_auditor_upload_download","handle_upload_download",48,{"type":83,"name":182,"callback":183,"file":123,"line":184},"admin_post_folder_auditor_upload_delete","handle_upload_delete",49,{"type":83,"name":186,"callback":187,"file":123,"line":188},"admin_post_folder_auditor_upload_file_download","handle_upload_file_download",50,{"type":83,"name":190,"callback":191,"file":123,"line":192},"admin_post_folder_auditor_upload_file_delete","handle_upload_file_delete",51,{"type":83,"name":194,"callback":195,"file":123,"line":196},"admin_post_folder_auditor_upload_deep_file_download","handle_upload_deep_file_download",52,{"type":83,"name":198,"callback":199,"file":123,"line":200},"admin_post_folder_auditor_upload_deep_file_delete","handle_upload_deep_file_delete",53,{"type":83,"name":202,"callback":203,"file":123,"line":204},"admin_post_folder_auditor_upload_deep_file_delete_all","handle_upload_deep_file_delete_all",54,{"type":83,"name":206,"callback":207,"file":123,"line":208},"admin_post_folder_auditor_upload_never_lock","handle_upload_never_lock",57,{"type":83,"name":210,"callback":211,"file":123,"line":212},"admin_post_folder_auditor_upload_allow_lock","handle_upload_allow_lock",58,{"type":83,"name":214,"callback":215,"file":123,"line":216},"admin_post_folder_auditor_content_download","handle_content_download",61,{"type":83,"name":218,"callback":219,"file":123,"line":220},"admin_post_folder_auditor_content_delete","handle_content_delete",62,{"type":83,"name":222,"callback":223,"file":123,"line":224},"admin_post_folder_auditor_content_file_download","handle_content_file_download",63,{"type":83,"name":226,"callback":227,"file":123,"line":228},"admin_post_folder_auditor_content_file_delete","handle_content_file_delete",64,{"type":83,"name":230,"callback":231,"file":123,"line":232},"admin_post_folder_auditor_content_never_lock","handle_content_never_lock",66,{"type":83,"name":234,"callback":235,"file":123,"line":236},"admin_post_folder_auditor_content_allow_lock","handle_content_allow_lock",67,{"type":83,"name":238,"callback":239,"file":123,"line":240},"admin_post_folder_auditor_root_download","handle_root_download",70,{"type":83,"name":242,"callback":243,"file":123,"line":244},"admin_post_folder_auditor_root_delete","handle_root_delete",71,{"type":83,"name":246,"callback":247,"file":123,"line":248},"admin_post_folder_auditor_root_file_download","handle_root_file_download",72,{"type":83,"name":250,"callback":251,"file":123,"line":252},"admin_post_folder_auditor_root_file_delete","handle_root_file_delete",73,{"type":83,"name":254,"callback":255,"file":123,"line":256},"admin_post_folder_auditor_root_never_lock","handle_root_never_lock",75,{"type":83,"name":258,"callback":259,"file":123,"line":260},"admin_post_folder_auditor_root_allow_lock","handle_root_allow_lock",76,{"type":83,"name":262,"callback":263,"file":123,"line":264},"admin_post_folder_auditor_root_bulk","handle_root_bulk",77,{"type":83,"name":266,"callback":267,"file":123,"line":268},"admin_post_folder_auditor_root_folders_bulk","handle_root_folders_bulk",78,{"type":83,"name":270,"callback":271,"file":123,"line":272},"admin_post_folder_auditor_htaccess_download","handle_htaccess_download",81,{"type":83,"name":274,"callback":275,"file":123,"line":276},"admin_post_folder_auditor_htaccess_delete","handle_htaccess_delete",82,{"type":83,"name":278,"callback":279,"file":123,"line":280},"admin_post_folder_auditor_htaccess_delete_all","handle_htaccess_delete_all",83,{"type":83,"name":282,"callback":283,"file":123,"line":284},"admin_post_folder_auditor_ignore_add","handle_ignore_add",87,{"type":83,"name":286,"callback":287,"file":123,"line":288},"admin_post_folder_auditor_ignore_remove","handle_ignore_remove",88,{"type":83,"name":290,"callback":291,"file":123,"line":292},"admin_post_folder_auditor_htaccess_bulk","handle_htaccess_bulk",91,{"type":83,"name":294,"callback":295,"file":123,"line":296},"admin_post_folder_auditor_htaccess_ignore_all","handle_htaccess_ignore_all",92,{"type":83,"name":298,"callback":299,"file":123,"line":300},"admin_post_folder_auditor_wpcontent_bulk","handle_wpcontent_bulk",93,{"type":83,"name":302,"callback":303,"file":123,"line":35},"admin_post_folder_auditor_uploads_root_bulk","handle_uploads_root_bulk",{"type":83,"name":305,"callback":306,"file":123,"line":307},"admin_post_folder_auditor_uploads_php_bulk","handle_uploads_php_bulk",95,{"type":83,"name":309,"callback":310,"file":123,"line":311},"admin_notices","wpfa_delete_notice",98,{"type":83,"name":313,"callback":314,"file":123,"line":315},"admin_post_wpfa_run_scan","wpfa_handle_run_scan",104,{"type":83,"name":317,"callback":318,"file":123,"line":319},"admin_post_wpfa_export_scan","wpfa_handle_export_scan",107,{"type":83,"name":321,"callback":322,"file":323,"line":130},"admin_post_folder_auditor_sus_download","wpfa_sus_handle_download","includes\\handlers\\handler-scanner.php",{"type":83,"name":325,"callback":326,"file":323,"line":327},"admin_post_folder_auditor_sus_delete","wpfa_sus_handle_delete",24,{"type":83,"name":329,"callback":330,"file":323,"line":331},"admin_post_folder_auditor_sus_bulk","wpfa_sus_handle_bulk",25,{"type":83,"name":333,"callback":334,"file":323,"line":335},"admin_post_folder_auditor_sus_delete_all","wpfa_sus_handle_delete_all",26,{"type":83,"name":337,"callback":338,"file":323,"line":339},"admin_post_folder_auditor_sus_ignore_all","wpfa_sus_handle_ignore_all",27,{"type":101,"name":341,"callback":342,"file":343,"line":344},"wp_mail_content_type","wpfa_mail_html_content_type","includes\\handlers\\handler-settings.php",553,{"type":101,"name":346,"callback":347,"priority":348,"file":343,"line":349},"wp_mail_from_name","wpfa_force_from_name_static",9999,554,{"type":83,"name":90,"callback":351,"file":343,"line":352},"wpfa_register_settings",611,{"type":101,"name":105,"callback":354,"file":343,"line":355},"wpfa_cron_schedules",612,{"type":83,"name":309,"callback":357,"priority":26,"file":343,"line":358},"wpfa_hide_core_settings_notices",615,{"type":83,"name":360,"callback":361,"priority":86,"file":343,"line":362},"add_option_wpfa_report_settings","wpfa_report_settings_added",621,{"type":83,"name":364,"callback":365,"priority":86,"file":343,"line":366},"update_option_wpfa_report_settings","wpfa_maybe_reschedule_report",623,{"type":83,"name":368,"callback":369,"file":343,"line":370},"wpfa_send_report_event","wpfa_send_scheduled_report",626,{"type":83,"name":372,"callback":373,"file":343,"line":374},"admin_post_wpfa_send_report_now","wpfa_send_report_now",629,{"type":83,"name":376,"callback":377,"priority":86,"file":343,"line":378},"add_option_wpfa_scan_settings","wpfa_scan_settings_added",636,{"type":83,"name":380,"callback":381,"priority":86,"file":343,"line":382},"update_option_wpfa_scan_settings","wpfa_maybe_reschedule_scan",638,{"type":83,"name":384,"callback":385,"file":343,"line":386},"wpfa_run_infection_scan_event","wpfa_run_scheduled_infection_scan",641,{"type":101,"name":388,"callback":389,"priority":86,"file":343,"line":390},"wp_redirect","wpfa_settings_tag_redirect",644,{"type":101,"name":341,"callback":342,"file":343,"line":392},1158,{"type":101,"name":346,"callback":347,"priority":348,"file":343,"line":394},1159,{"type":83,"name":396,"callback":85,"file":397,"line":398},"admin_head","includes\\helpers\\admin.php",291,{"type":101,"name":400,"callback":85,"priority":401,"file":402,"line":403},"site_status_tests",1000,"includes\\helpers\\lock-system\\folder-locker.php",168,{"type":101,"name":405,"callback":85,"priority":86,"file":402,"line":406},"site_status_test_result",190,{"type":101,"name":408,"callback":409,"priority":348,"file":410,"line":411},"filesystem_method","force_direct_method","includes\\helpers\\lock-system\\traits\\WPFA_Folder_Locker_Trait_Actions.php",11,{"type":83,"name":309,"callback":413,"file":410,"line":414},"render_notices",21,{"type":83,"name":84,"callback":416,"file":410,"line":331},"enqueue_assets",{"type":101,"name":418,"callback":419,"priority":420,"file":410,"line":339},"request_filesystem_credentials","maybe_block_fs_modal",1,{"type":83,"name":84,"callback":422,"file":410,"line":134},"enqueue_lock_blocker",{"type":83,"name":424,"callback":425,"file":410,"line":141},"admin_footer","render_lock_modal",{"type":83,"name":427,"callback":428,"priority":161,"file":410,"line":153},"admin_bar_menu","admin_bar_status",{"type":83,"name":396,"callback":430,"file":410,"line":431},"admin_bar_css",37,{"type":83,"name":433,"callback":430,"file":410,"line":434},"wp_head",39,{"type":83,"name":90,"callback":436,"file":437,"line":141},"register_settings","includes\\helpers\\security-headers.php",{"type":83,"name":439,"callback":440,"file":437,"line":441},"send_headers","maybe_send_headers",33,{"type":83,"name":84,"callback":416,"file":437,"line":431},{"type":83,"name":309,"callback":444,"file":445,"line":224},"woo_conflict_notice","includes\\helpers\\user-security.php",{"type":83,"name":309,"callback":447,"file":445,"line":319},"render_admin_notice",{"type":83,"name":90,"callback":449,"file":445,"line":450},"maybe_disable_all_users_when_woo_active",111,{"type":83,"name":452,"callback":453,"priority":26,"file":445,"line":454},"init","attach_block_user_enumeration",125,{"type":83,"name":452,"callback":456,"priority":26,"file":445,"line":95},"attach_disable_all_user_creation",{"type":83,"name":90,"callback":458,"file":445,"line":459},"register_user_security_settings",139,{"type":83,"name":452,"callback":461,"priority":26,"file":445,"line":462},"attach_blockers",145,{"type":83,"name":452,"callback":464,"priority":26,"file":445,"line":465},"attach_limit_login_attempts",171,{"type":83,"name":452,"callback":467,"priority":26,"file":445,"line":468},"attach_block_email_login",177,{"type":101,"name":470,"callback":471,"file":445,"line":472},"xmlrpc_enabled","__return_false",371,{"type":83,"name":94,"callback":85,"priority":26,"file":445,"line":474},402,{"type":83,"name":452,"callback":85,"priority":26,"file":445,"line":476},422,{"type":101,"name":478,"callback":85,"priority":420,"file":445,"line":479},"authenticate",478,{"type":101,"name":478,"callback":85,"priority":481,"file":445,"line":482},99,502,{"type":101,"name":478,"callback":85,"priority":13,"file":445,"line":484},620,{"type":101,"name":486,"callback":85,"priority":26,"file":445,"line":487},"pre_user_login",920,{"type":101,"name":489,"callback":85,"priority":26,"file":445,"line":490},"rest_pre_insert_user",928,{"type":101,"name":492,"callback":85,"priority":26,"file":445,"line":493},"map_meta_cap",950,{"type":101,"name":495,"callback":85,"priority":26,"file":445,"line":496},"pre_option_users_can_register",964,{"type":101,"name":470,"callback":471,"file":445,"line":498},968,{"type":101,"name":500,"callback":85,"file":445,"line":501},"rest_endpoints",978,{"type":83,"name":503,"callback":85,"priority":26,"file":445,"line":504},"parse_request",1002,{"type":83,"name":506,"callback":85,"priority":26,"file":445,"line":507},"template_redirect",1014,{"type":101,"name":509,"callback":85,"priority":86,"file":445,"line":510},"oembed_response_data",1028,{"type":101,"name":512,"callback":85,"file":445,"line":513},"editable_roles",1062,{"type":83,"name":515,"callback":85,"priority":86,"file":445,"line":516},"user_profile_update_errors",1072,{"type":101,"name":518,"callback":85,"priority":26,"file":445,"line":519},"add_user_metadata",1091,{"type":101,"name":521,"callback":85,"priority":26,"file":445,"line":522},"update_user_metadata",1111,{"type":83,"name":524,"callback":85,"priority":26,"file":445,"line":525},"set_user_role",1133,{"type":83,"name":527,"callback":85,"priority":26,"file":445,"line":528},"user_register",1145,{"type":101,"name":489,"callback":85,"priority":26,"file":445,"line":530},1163,{"type":101,"name":532,"callback":85,"file":445,"line":533},"pre_option_default_role",1215,{"type":101,"name":470,"callback":471,"file":445,"line":535},1219,[537,541,544,547,551,555,559,563,567,571,575,579,583,587,589,592,596,599,601,605,609,612,615,619,623,627,631,635],{"action":538,"nopriv":539,"callback":85,"hasNonce":539,"hasCapCheck":539,"file":540,"line":411},"wpfa_ping",false,"includes\\class-wp-folder-auditor.php",{"action":542,"nopriv":539,"callback":543,"hasNonce":539,"hasCapCheck":539,"file":123,"line":335},"wpfa_load_tab","wpfa_ajax_load_tab",{"action":545,"nopriv":539,"callback":546,"hasNonce":539,"hasCapCheck":539,"file":123,"line":441},"folder_auditor_plugin_file_view","handle_plugin_file_view_ajax",{"action":548,"nopriv":539,"callback":549,"hasNonce":539,"hasCapCheck":539,"file":123,"line":550},"folder_auditor_theme_file_view","handle_theme_file_view_ajax",44,{"action":552,"nopriv":539,"callback":553,"hasNonce":539,"hasCapCheck":539,"file":123,"line":554},"folder_auditor_upload_file_view","handle_upload_file_view_ajax",55,{"action":556,"nopriv":539,"callback":557,"hasNonce":539,"hasCapCheck":539,"file":123,"line":558},"folder_auditor_upload_deep_file_view","handle_upload_deep_file_view_ajax",56,{"action":560,"nopriv":539,"callback":561,"hasNonce":539,"hasCapCheck":539,"file":123,"line":562},"folder_auditor_content_file_view","handle_content_file_view_ajax",65,{"action":564,"nopriv":539,"callback":565,"hasNonce":539,"hasCapCheck":539,"file":123,"line":566},"folder_auditor_root_file_view","handle_root_file_view_ajax",74,{"action":568,"nopriv":539,"callback":569,"hasNonce":539,"hasCapCheck":539,"file":123,"line":570},"folder_auditor_htaccess_view","handle_htaccess_view_ajax",84,{"action":572,"nopriv":539,"callback":573,"hasNonce":539,"hasCapCheck":539,"file":123,"line":574},"wpfa_start_scan","wpfa_ajax_start_scan",105,{"action":576,"nopriv":539,"callback":577,"hasNonce":539,"hasCapCheck":539,"file":123,"line":578},"wpfa_step_scan","wpfa_ajax_step_scan",106,{"action":580,"nopriv":539,"callback":581,"hasNonce":539,"hasCapCheck":539,"file":123,"line":582},"wpfa_cancel_scan","wpfa_ajax_cancel_scan",108,{"action":584,"nopriv":539,"callback":584,"hasNonce":539,"hasCapCheck":539,"file":585,"line":586},"run_blacklist_checker","includes\\handlers\\handler-blacklist-checker.php",3,{"action":584,"nopriv":588,"callback":584,"hasNonce":539,"hasCapCheck":539,"file":585,"line":14},true,{"action":590,"nopriv":539,"callback":85,"hasNonce":539,"hasCapCheck":539,"file":591,"line":236},"gds_refresh_plugin","includes\\handlers\\handler-plugin-refresher.php",{"action":593,"nopriv":539,"callback":594,"hasNonce":588,"hasCapCheck":588,"file":323,"line":595},"wpfa_view_file","wpfa_sus_handle_view",28,{"action":597,"nopriv":539,"callback":85,"hasNonce":539,"hasCapCheck":539,"file":343,"line":598},"wpfa_toggle_site_lock_auto_enable",16,{"action":600,"nopriv":539,"callback":85,"hasNonce":539,"hasCapCheck":539,"file":343,"line":554},"wpfa_toggle_admin_bar_lock_status_display",{"action":602,"nopriv":539,"callback":603,"hasNonce":588,"hasCapCheck":588,"file":343,"line":604},"wpfa_save_scan_settings","wpfa_save_scan_settings_ajax",607,{"action":606,"nopriv":539,"callback":607,"hasNonce":588,"hasCapCheck":588,"file":343,"line":608},"wpfa_save_report_settings","wpfa_save_report_settings_ajax",608,{"action":373,"nopriv":539,"callback":610,"hasNonce":588,"hasCapCheck":588,"file":343,"line":611},"wpfa_send_report_now_ajax",630,{"action":613,"nopriv":539,"callback":613,"hasNonce":588,"hasCapCheck":588,"file":614,"line":411},"wpfa_run_ssl_checker","includes\\handlers\\handler-ssl-checker.php",{"action":616,"nopriv":539,"callback":617,"hasNonce":588,"hasCapCheck":588,"file":445,"line":618},"wpfa_toggle_block_new_admins","ajax_toggle_block_new_admins",101,{"action":620,"nopriv":539,"callback":621,"hasNonce":588,"hasCapCheck":588,"file":445,"line":622},"wpfa_toggle_block_all_user_creation","ajax_toggle_block_all_user_creation",117,{"action":624,"nopriv":539,"callback":625,"hasNonce":588,"hasCapCheck":588,"file":445,"line":626},"wpfa_toggle_block_user_enumeration","ajax_toggle_block_user_enumeration",121,{"action":628,"nopriv":539,"callback":629,"hasNonce":588,"hasCapCheck":588,"file":445,"line":630},"wpfa_toggle_disable_xmlrpc","ajax_toggle_disable_xmlrpc",151,{"action":632,"nopriv":539,"callback":633,"hasNonce":588,"hasCapCheck":588,"file":445,"line":634},"wpfa_toggle_limit_login_attempts","ajax_toggle_limit_login_attempts",153,{"action":636,"nopriv":539,"callback":637,"hasNonce":588,"hasCapCheck":588,"file":445,"line":638},"wpfa_toggle_block_email_login","ajax_toggle_block_email_login",155,[640,648],{"namespace":641,"route":642,"methods":643,"callback":645,"permissionCallback":646,"file":119,"line":647},"guard-dog-security\u002Fv1","\u002Flock-all",[644],"GET","wpfa_rest_lock_all","wpfa_rest_token_ok",6,{"namespace":641,"route":649,"methods":650,"callback":651,"permissionCallback":646,"file":119,"line":652},"\u002Funlock-all",[644],"wpfa_rest_unlock_all",12,[],[655,657,659,661,663],{"hook":108,"callback":108,"file":87,"line":656},219,{"hook":108,"callback":108,"file":87,"line":658},243,{"hook":108,"callback":108,"file":343,"line":660},38,{"hook":384,"callback":384,"file":343,"line":662},144,{"hook":368,"callback":368,"file":343,"line":664},927,17,{"dangerousFunctions":667,"sqlUsage":668,"outputEscaping":670,"fileOperations":598,"externalRequests":898,"nonceChecks":78,"capabilityChecks":200,"bundledLibraries":899},[],{"prepared":14,"raw":26,"locations":669},[],{"escaped":671,"rawEcho":319,"locations":672},1429,[673,676,679,681,684,687,689,692,694,696,699,701,704,706,708,710,712,714,717,718,721,724,726,728,730,732,735,737,739,740,742,744,746,748,750,752,755,757,760,762,763,765,767,769,771,773,776,778,780,782,784,786,788,790,792,794,796,798,801,803,805,807,809,811,813,815,817,819,821,823,826,828,830,832,834,836,837,839,841,843,845,847,849,851,853,855,857,859,861,863,865,867,870,872,874,875,877,879,881,883,885,887,889,891,892,894,896],{"file":540,"line":674,"context":675},15,"raw output",{"file":677,"line":678,"context":675},"includes\\handlers\\handler-content.php",479,{"file":677,"line":680,"context":675},613,{"file":682,"line":683,"context":675},"includes\\handlers\\handler-htaccess.php",874,{"file":685,"line":686,"context":675},"includes\\handlers\\handler-plugins.php",429,{"file":685,"line":688,"context":675},836,{"file":690,"line":691,"context":675},"includes\\handlers\\handler-root.php",472,{"file":690,"line":693,"context":675},616,{"file":323,"line":695,"context":675},287,{"file":697,"line":698,"context":675},"includes\\handlers\\handler-themes.php",466,{"file":697,"line":700,"context":675},766,{"file":702,"line":703,"context":675},"includes\\handlers\\handler-uploads.php",1130,{"file":702,"line":705,"context":675},1278,{"file":702,"line":707,"context":675},1550,{"file":397,"line":709,"context":675},325,{"file":397,"line":711,"context":675},418,{"file":713,"line":232,"context":675},"includes\\helpers\\health-score\\health-score-functions.php",{"file":715,"line":716,"context":675},"includes\\helpers\\html-export.php",80,{"file":715,"line":481,"context":675},{"file":719,"line":720,"context":675},"includes\\helpers\\lock-system\\traits\\WPFA_Folder_Locker_Trait_Assets.php",338,{"file":722,"line":723,"context":675},"includes\\helpers\\scanner\\scanner.php",686,{"file":445,"line":725,"context":675},47,{"file":445,"line":727,"context":675},392,{"file":445,"line":729,"context":675},412,{"file":445,"line":731,"context":675},435,{"file":733,"line":734,"context":675},"includes\\views\\view-content.php",279,{"file":733,"line":736,"context":675},289,{"file":733,"line":738,"context":675},531,{"file":733,"line":358,"context":675},{"file":733,"line":741,"context":675},667,{"file":733,"line":743,"context":675},851,{"file":733,"line":745,"context":675},869,{"file":733,"line":747,"context":675},883,{"file":733,"line":749,"context":675},901,{"file":733,"line":751,"context":675},911,{"file":753,"line":754,"context":675},"includes\\views\\view-file-remover.php",252,{"file":753,"line":756,"context":675},267,{"file":758,"line":759,"context":675},"includes\\views\\view-htaccess-files.php",187,{"file":758,"line":761,"context":675},382,{"file":758,"line":474,"context":675},{"file":758,"line":764,"context":675},465,{"file":758,"line":766,"context":675},545,{"file":758,"line":768,"context":675},563,{"file":758,"line":770,"context":675},637,{"file":758,"line":772,"context":675},745,{"file":774,"line":775,"context":675},"includes\\views\\view-plugins.php",337,{"file":774,"line":777,"context":675},564,{"file":774,"line":779,"context":675},676,{"file":774,"line":781,"context":675},779,{"file":774,"line":783,"context":675},880,{"file":774,"line":785,"context":675},939,{"file":774,"line":787,"context":675},957,{"file":774,"line":789,"context":675},1033,{"file":774,"line":791,"context":675},1051,{"file":774,"line":793,"context":675},1065,{"file":774,"line":795,"context":675},1083,{"file":774,"line":797,"context":675},1093,{"file":799,"line":800,"context":675},"includes\\views\\view-root.php",309,{"file":799,"line":802,"context":675},390,{"file":799,"line":804,"context":675},485,{"file":799,"line":806,"context":675},503,{"file":799,"line":808,"context":675},587,{"file":799,"line":810,"context":675},693,{"file":799,"line":812,"context":675},711,{"file":799,"line":814,"context":675},739,{"file":799,"line":816,"context":675},757,{"file":799,"line":818,"context":675},781,{"file":799,"line":820,"context":675},797,{"file":799,"line":822,"context":675},805,{"file":824,"line":825,"context":675},"includes\\views\\view-scanner.php",413,{"file":824,"line":827,"context":675},434,{"file":824,"line":829,"context":675},506,{"file":824,"line":831,"context":675},731,{"file":824,"line":833,"context":675},846,{"file":824,"line":835,"context":675},1535,{"file":824,"line":707,"context":675},{"file":824,"line":838,"context":675},1560,{"file":824,"line":840,"context":675},1565,{"file":824,"line":842,"context":675},1572,{"file":844,"line":768,"context":675},"includes\\views\\view-themes.php",{"file":844,"line":846,"context":675},662,{"file":844,"line":848,"context":675},756,{"file":844,"line":850,"context":675},776,{"file":844,"line":852,"context":675},865,{"file":844,"line":854,"context":675},976,{"file":844,"line":856,"context":675},994,{"file":844,"line":858,"context":675},1022,{"file":844,"line":860,"context":675},1040,{"file":844,"line":862,"context":675},1070,{"file":844,"line":864,"context":675},1088,{"file":844,"line":866,"context":675},1098,{"file":868,"line":869,"context":675},"includes\\views\\view-uploads.php",269,{"file":868,"line":871,"context":675},362,{"file":868,"line":873,"context":675},535,{"file":868,"line":349,"context":675},{"file":868,"line":876,"context":675},631,{"file":868,"line":878,"context":675},687,{"file":868,"line":880,"context":675},703,{"file":868,"line":882,"context":675},813,{"file":868,"line":884,"context":675},891,{"file":868,"line":886,"context":675},909,{"file":868,"line":888,"context":675},1023,{"file":868,"line":890,"context":675},1073,{"file":868,"line":519,"context":675},{"file":868,"line":893,"context":675},1115,{"file":868,"line":895,"context":675},1131,{"file":868,"line":897,"context":675},1139,2,[],[901,923,938,951,964,976,989,1002,1013,1026,1038,1049,1062,1073,1084,1094,1102,1115,1128,1139,1148,1158,1168,1178,1188,1197,1207],{"entryPoint":902,"graph":903,"unsanitizedCount":420,"severity":922},"wpfa_run_ssl_checker (includes\\handlers\\handler-ssl-checker.php:16)",{"nodes":904,"edges":919},[905,909,913],{"id":906,"type":907,"label":908,"file":614,"line":188},"n0","source","$_POST",{"id":910,"type":911,"label":912,"file":614,"line":188},"n1","transform","→ wpfa_render_ssl_checker_html()",{"id":914,"type":915,"label":916,"file":614,"line":917,"wp_function":918},"n2","sink","echo() [XSS]",268,"echo",[920,921],{"from":906,"to":910,"sanitized":539},{"from":910,"to":914,"sanitized":539},"medium",{"entryPoint":924,"graph":925,"unsanitizedCount":420,"severity":922},"\u003Chandler-ssl-checker> (includes\\handlers\\handler-ssl-checker.php:0)",{"nodes":926,"edges":934},[927,928,929,930,932],{"id":906,"type":907,"label":908,"file":614,"line":335},{"id":910,"type":915,"label":916,"file":614,"line":917,"wp_function":918},{"id":914,"type":907,"label":908,"file":614,"line":188},{"id":931,"type":911,"label":912,"file":614,"line":188},"n3",{"id":933,"type":915,"label":916,"file":614,"line":917,"wp_function":918},"n4",[935,936,937],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":539},{"from":931,"to":933,"sanitized":539},{"entryPoint":939,"graph":940,"unsanitizedCount":26,"severity":950},"handle_content_download (includes\\handlers\\handler-content.php:381)",{"nodes":941,"edges":948},[942,944],{"id":906,"type":907,"label":908,"file":677,"line":943},391,{"id":910,"type":915,"label":945,"file":677,"line":946,"wp_function":947},"header() [Header Injection]",473,"header",[949],{"from":906,"to":910,"sanitized":588},"low",{"entryPoint":952,"graph":953,"unsanitizedCount":26,"severity":950},"handle_content_file_download (includes\\handlers\\handler-content.php:567)",{"nodes":954,"edges":961},[955,957,959,960],{"id":906,"type":907,"label":908,"file":677,"line":956},575,{"id":910,"type":915,"label":945,"file":677,"line":958,"wp_function":947},609,{"id":914,"type":907,"label":908,"file":677,"line":956},{"id":931,"type":915,"label":916,"file":677,"line":680,"wp_function":918},[962,963],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":965,"graph":966,"unsanitizedCount":26,"severity":950},"\u003Chandler-content> (includes\\handlers\\handler-content.php:0)",{"nodes":967,"edges":973},[968,970,971,972],{"id":906,"type":907,"label":969,"file":677,"line":943},"$_POST (x2)",{"id":910,"type":915,"label":945,"file":677,"line":946,"wp_function":947},{"id":914,"type":907,"label":908,"file":677,"line":956},{"id":931,"type":915,"label":916,"file":677,"line":680,"wp_function":918},[974,975],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":977,"graph":978,"unsanitizedCount":26,"severity":950},"handle_file_download (includes\\handlers\\handler-plugins.php:379)",{"nodes":979,"edges":986},[980,982,984,985],{"id":906,"type":907,"label":908,"file":685,"line":981},387,{"id":910,"type":915,"label":945,"file":685,"line":983,"wp_function":947},425,{"id":914,"type":907,"label":908,"file":685,"line":981},{"id":931,"type":915,"label":916,"file":685,"line":686,"wp_function":918},[987,988],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":990,"graph":991,"unsanitizedCount":26,"severity":950},"handle_download (includes\\handlers\\handler-plugins.php:736)",{"nodes":992,"edges":999},[993,995,997,998],{"id":906,"type":907,"label":908,"file":685,"line":994},744,{"id":910,"type":915,"label":945,"file":685,"line":996,"wp_function":947},832,{"id":914,"type":907,"label":908,"file":685,"line":994},{"id":931,"type":915,"label":916,"file":685,"line":688,"wp_function":918},[1000,1001],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1003,"graph":1004,"unsanitizedCount":26,"severity":950},"\u003Chandler-plugins> (includes\\handlers\\handler-plugins.php:0)",{"nodes":1005,"edges":1010},[1006,1007,1008,1009],{"id":906,"type":907,"label":969,"file":685,"line":981},{"id":910,"type":915,"label":945,"file":685,"line":983,"wp_function":947},{"id":914,"type":907,"label":969,"file":685,"line":981},{"id":931,"type":915,"label":916,"file":685,"line":686,"wp_function":918},[1011,1012],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1014,"graph":1015,"unsanitizedCount":26,"severity":950},"handle_root_download (includes\\handlers\\handler-root.php:372)",{"nodes":1016,"edges":1023},[1017,1019,1021,1022],{"id":906,"type":907,"label":908,"file":690,"line":1018},380,{"id":910,"type":915,"label":945,"file":690,"line":1020,"wp_function":947},468,{"id":914,"type":907,"label":908,"file":690,"line":1018},{"id":931,"type":915,"label":916,"file":690,"line":691,"wp_function":918},[1024,1025],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1027,"graph":1028,"unsanitizedCount":26,"severity":950},"handle_root_file_download (includes\\handlers\\handler-root.php:568)",{"nodes":1029,"edges":1035},[1030,1032,1033,1034],{"id":906,"type":907,"label":908,"file":690,"line":1031},576,{"id":910,"type":915,"label":945,"file":690,"line":355,"wp_function":947},{"id":914,"type":907,"label":908,"file":690,"line":1031},{"id":931,"type":915,"label":916,"file":690,"line":693,"wp_function":918},[1036,1037],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1039,"graph":1040,"unsanitizedCount":26,"severity":950},"\u003Chandler-root> (includes\\handlers\\handler-root.php:0)",{"nodes":1041,"edges":1046},[1042,1043,1044,1045],{"id":906,"type":907,"label":969,"file":690,"line":1018},{"id":910,"type":915,"label":945,"file":690,"line":1020,"wp_function":947},{"id":914,"type":907,"label":969,"file":690,"line":1018},{"id":931,"type":915,"label":916,"file":690,"line":691,"wp_function":918},[1047,1048],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1050,"graph":1051,"unsanitizedCount":26,"severity":950},"wpfa_sus_handle_download (includes\\handlers\\handler-scanner.php:261)",{"nodes":1052,"edges":1059},[1053,1055,1057,1058],{"id":906,"type":907,"label":908,"file":323,"line":1054},263,{"id":910,"type":915,"label":945,"file":323,"line":1056,"wp_function":947},283,{"id":914,"type":907,"label":908,"file":323,"line":1054},{"id":931,"type":915,"label":916,"file":323,"line":695,"wp_function":918},[1060,1061],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1063,"graph":1064,"unsanitizedCount":26,"severity":950},"\u003Chandler-scanner> (includes\\handlers\\handler-scanner.php:0)",{"nodes":1065,"edges":1070},[1066,1067,1068,1069],{"id":906,"type":907,"label":908,"file":323,"line":1054},{"id":910,"type":915,"label":945,"file":323,"line":1056,"wp_function":947},{"id":914,"type":907,"label":908,"file":323,"line":1054},{"id":931,"type":915,"label":916,"file":323,"line":695,"wp_function":918},[1071,1072],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1074,"graph":1075,"unsanitizedCount":26,"severity":950},"wpfa_save_report_settings_ajax (includes\\handlers\\handler-settings.php:653)",{"nodes":1076,"edges":1082},[1077,1078],{"id":906,"type":907,"label":908,"file":343,"line":846},{"id":910,"type":915,"label":1079,"file":343,"line":1080,"wp_function":1081},"update_option() [Settings Manipulation]",674,"update_option",[1083],{"from":906,"to":910,"sanitized":588},{"entryPoint":1085,"graph":1086,"unsanitizedCount":26,"severity":950},"wpfa_save_scan_settings_ajax (includes\\handlers\\handler-settings.php:686)",{"nodes":1087,"edges":1092},[1088,1090],{"id":906,"type":907,"label":908,"file":343,"line":1089},696,{"id":910,"type":915,"label":1079,"file":343,"line":1091,"wp_function":1081},702,[1093],{"from":906,"to":910,"sanitized":588},{"entryPoint":1095,"graph":1096,"unsanitizedCount":26,"severity":950},"\u003Chandler-settings> (includes\\handlers\\handler-settings.php:0)",{"nodes":1097,"edges":1100},[1098,1099],{"id":906,"type":907,"label":969,"file":343,"line":846},{"id":910,"type":915,"label":1079,"file":343,"line":1080,"wp_function":1081},[1101],{"from":906,"to":910,"sanitized":588},{"entryPoint":1103,"graph":1104,"unsanitizedCount":26,"severity":950},"handle_theme_file_download (includes\\handlers\\handler-themes.php:391)",{"nodes":1105,"edges":1112},[1106,1108,1110,1111],{"id":906,"type":907,"label":908,"file":697,"line":1107},403,{"id":910,"type":915,"label":945,"file":697,"line":1109,"wp_function":947},460,{"id":914,"type":907,"label":908,"file":697,"line":1107},{"id":931,"type":915,"label":916,"file":697,"line":698,"wp_function":918},[1113,1114],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1116,"graph":1117,"unsanitizedCount":26,"severity":950},"handle_theme_download (includes\\handlers\\handler-themes.php:622)",{"nodes":1118,"edges":1125},[1119,1121,1123,1124],{"id":906,"type":907,"label":908,"file":697,"line":1120},634,{"id":910,"type":915,"label":945,"file":697,"line":1122,"wp_function":947},760,{"id":914,"type":907,"label":908,"file":697,"line":1120},{"id":931,"type":915,"label":916,"file":697,"line":700,"wp_function":918},[1126,1127],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1129,"graph":1130,"unsanitizedCount":26,"severity":950},"\u003Chandler-themes> (includes\\handlers\\handler-themes.php:0)",{"nodes":1131,"edges":1136},[1132,1133,1134,1135],{"id":906,"type":907,"label":969,"file":697,"line":1107},{"id":910,"type":915,"label":945,"file":697,"line":1109,"wp_function":947},{"id":914,"type":907,"label":969,"file":697,"line":1107},{"id":931,"type":915,"label":916,"file":697,"line":698,"wp_function":918},[1137,1138],{"from":906,"to":910,"sanitized":588},{"from":914,"to":931,"sanitized":588},{"entryPoint":1140,"graph":1141,"unsanitizedCount":26,"severity":950},"\u003Cadmin> (includes\\helpers\\admin.php:0)",{"nodes":1142,"edges":1146},[1143,1144],{"id":906,"type":907,"label":969,"file":397,"line":331},{"id":910,"type":915,"label":916,"file":397,"line":1145,"wp_function":918},416,[1147],{"from":906,"to":910,"sanitized":588},{"entryPoint":1149,"graph":1150,"unsanitizedCount":26,"severity":950},"ajax_toggle_disable_xmlrpc (includes\\helpers\\user-security.php:289)",{"nodes":1151,"edges":1156},[1152,1154],{"id":906,"type":907,"label":908,"file":445,"line":1153},301,{"id":910,"type":915,"label":1079,"file":445,"line":1155,"wp_function":1081},303,[1157],{"from":906,"to":910,"sanitized":588},{"entryPoint":1159,"graph":1160,"unsanitizedCount":26,"severity":950},"ajax_toggle_limit_login_attempts (includes\\helpers\\user-security.php:323)",{"nodes":1161,"edges":1166},[1162,1164],{"id":906,"type":907,"label":908,"file":445,"line":1163},333,{"id":910,"type":915,"label":1079,"file":445,"line":1165,"wp_function":1081},335,[1167],{"from":906,"to":910,"sanitized":588},{"entryPoint":1169,"graph":1170,"unsanitizedCount":26,"severity":950},"ajax_toggle_block_email_login (includes\\helpers\\user-security.php:345)",{"nodes":1171,"edges":1176},[1172,1174],{"id":906,"type":907,"label":908,"file":445,"line":1173},355,{"id":910,"type":915,"label":1079,"file":445,"line":1175,"wp_function":1081},357,[1177],{"from":906,"to":910,"sanitized":588},{"entryPoint":1179,"graph":1180,"unsanitizedCount":26,"severity":950},"ajax_toggle_block_user_enumeration (includes\\helpers\\user-security.php:650)",{"nodes":1181,"edges":1186},[1182,1184],{"id":906,"type":907,"label":908,"file":445,"line":1183},666,{"id":910,"type":915,"label":1079,"file":445,"line":1185,"wp_function":1081},668,[1187],{"from":906,"to":910,"sanitized":588},{"entryPoint":1189,"graph":1190,"unsanitizedCount":26,"severity":950},"ajax_toggle_block_new_admins (includes\\helpers\\user-security.php:682)",{"nodes":1191,"edges":1195},[1192,1194],{"id":906,"type":907,"label":908,"file":445,"line":1193},698,{"id":910,"type":915,"label":1079,"file":445,"line":1091,"wp_function":1081},[1196],{"from":906,"to":910,"sanitized":588},{"entryPoint":1198,"graph":1199,"unsanitizedCount":26,"severity":950},"ajax_toggle_block_all_user_creation (includes\\helpers\\user-security.php:720)",{"nodes":1200,"edges":1205},[1201,1203],{"id":906,"type":907,"label":908,"file":445,"line":1202},736,{"id":910,"type":915,"label":1079,"file":445,"line":1204,"wp_function":1081},740,[1206],{"from":906,"to":910,"sanitized":588},{"entryPoint":1208,"graph":1209,"unsanitizedCount":26,"severity":950},"\u003Cuser-security> (includes\\helpers\\user-security.php:0)",{"nodes":1210,"edges":1214},[1211,1213],{"id":906,"type":907,"label":1212,"file":445,"line":1153},"$_POST (x6)",{"id":910,"type":915,"label":1079,"file":445,"line":1155,"wp_function":1081},[1215],{"from":906,"to":910,"sanitized":588},{"summary":1217,"deductions":1218},"The Folder Auditor plugin v6.6 presents a mixed security posture.  A significant strength lies in its complete absence of known vulnerabilities and a strong adherence to secure coding practices, particularly with SQL queries being 100% prepared and the vast majority of output being properly escaped. This indicates a development team that is aware of common web security pitfalls.\n\nHowever, the plugin exposes a considerable attack surface through its 28 AJAX handlers, with a concerning 17 of these lacking any authentication checks. This is the primary area of concern, as any user, even an unauthenticated one, could potentially interact with these unprotected endpoints. While the taint analysis did not reveal critical or high-severity issues with unsanitized paths, the sheer number of unprotected AJAX handlers creates a substantial opportunity for potential abuse or denial-of-service attacks if input validation on these endpoints is insufficient. The plugin also has a good track record with no recorded vulnerabilities, suggesting a generally stable and well-maintained codebase.\n\nIn conclusion, Folder Auditor v6.6 is a plugin with a solid foundation regarding SQL and output sanitization, coupled with an excellent vulnerability history. The primary weakness is the high number of unauthenticated AJAX handlers, which presents a significant risk that needs to be addressed. Mitigation would involve implementing robust authentication and authorization checks on all AJAX endpoints.",[1219],{"reason":1220,"points":86},"Unprotected AJAX handlers","2026-03-16T20:25:43.100Z",{"wat":1223,"direct":1232},{"assetPaths":1224,"generatorPatterns":1227,"scriptPaths":1228,"versionParams":1229},[1225,1226],"\u002Fwp-content\u002Fplugins\u002Ffolder-auditor\u002Fassets\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Ffolder-auditor\u002Fassets\u002Fadmin.js",[],[1226],[1230,1231],"folder-auditor\u002Fassets\u002Fstyle.css?ver=","folder-auditor\u002Fassets\u002Fadmin.js?ver=",{"cssClasses":1233,"htmlComments":1237,"htmlAttributes":1264,"restEndpoints":1266,"jsGlobals":1267,"shortcodeOutput":1269},[1234,1235,1236],"site-lock-link","run-audit-notice","site-lock-notice",[1238,1239,1240,1241,1242,1243,1244,1245,1246,1247,1248,1249,1250,1251,1252,1253,1254,1255,1256,1257,1258,1259,1260,1261,1262,1263],"\u003C!-- Start: Guard Dog Security & Site Lock -->","\u003C!-- End: Guard Dog Security & Site Lock -->","\u003C!-- Guard Dog Security & Site Lock: Admin Bar Settings -->","\u003C!-- Guard Dog Security & Site Lock: Lock Status Check -->","\u003C!-- Guard Dog Security & Site Lock: Site Lock Status -->","\u003C!-- Guard Dog Security & Site Lock: User Enumeration Settings -->","\u003C!-- Guard Dog Security & Site Lock: New Admin Settings -->","\u003C!-- Guard Dog Security & Site Lock: XMLRPC Settings -->","\u003C!-- Guard Dog Security & Site Lock: Login Attempts Settings -->","\u003C!-- Guard Dog Security & Site Lock: Folder & File Auditor Settings -->","\u003C!-- Guard Dog Security & Site Lock: Audit Logs -->","\u003C!-- Guard Dog Security & Site Lock: Audit Log Details -->","\u003C!-- Guard Dog Security & Site Lock: Site Lock Settings -->","\u003C!-- Guard Dog Security & Site Lock: Site Lock Details -->","\u003C!-- Guard Dog Security & Site Lock: Site Lock Content Exclusions -->","\u003C!-- Guard Dog Security & Site Lock: Exclude Folder\u002FFile -->","\u003C!-- Guard Dog Security & Site Lock: Excluded Files -->","\u003C!-- Guard Dog Security & Site Lock: Folders -->","\u003C!-- Guard Dog Security & Site Lock: Files -->","\u003C!-- Guard Dog Security & Site Lock: Restore Defaults -->","\u003C!-- Guard Dog Security & Site Lock: Restore All Defaults -->","\u003C!-- Guard Dog Security & Site Lock: Audit Log Actions -->","\u003C!-- Guard Dog Security & Site Lock: Folder Auditor Logs -->","\u003C!-- Guard Dog Security & Site Lock: File Auditor Logs -->","\u003C!-- Guard Dog Security & Site Lock: Site Lock Logs -->","\u003C!-- Guard Dog Security & Site Lock: Audit Log Entry -->",[1265],"data-folder-auditor-id",[],[1268],"WPFA_AjaxTabs",[]]