[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjeY6vyibZYp9e1Xb5K7zJJJAnUbO9vAkCxRDeCxbl0k":3,"$fZq6X4MYhUwa1nwvwH-s_j4iWra8uSFlIszCWyKmMqWU":265,"$fovlh1nJgjVTk5CLWcQ8oxaYSg5JNNhNIL-pfjcxNe3o":269},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":36,"analysis":136,"fingerprints":238},"frontend-editor-for-avada","PressPilot Frontend Editor for Avada","1.0.0","CardeeTech.","https:\u002F\u002Fprofiles.wordpress.org\u002Fcardeetech\u002F","\u003Cp>PressPilot Frontend Editor for Avada lets authenticated users create and edit standard WordPress posts directly from the frontend, without accessing wp-admin.\u003C\u002Fp>\n\u003Cp>Designed for editorial workflows where non-admin users need a clean writing experience while administrators keep full control over permissions, status transitions, authorship, and media uploads.\u003C\u002Fp>\n\u003Cp>Developed and maintained by \u003Ca href=\"https:\u002F\u002Fcardee.tech\u002F\" rel=\"nofollow ugc\">CardeeTech\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key capabilities:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Frontend create\u002Fedit form for standard posts\u003C\u002Fli>\n\u003Cli>Frontend listing of posts with direct edit links\u003C\u002Fli>\n\u003Cli>TinyMCE editor, excerpt, categories, tags, post status, and scheduled date\u003C\u002Fli>\n\u003Cli>Featured image upload or external URL (with SSRF protections)\u003C\u002Fli>\n\u003Cli>Avada Builder native elements for the two core shortcodes\u003C\u002Fli>\n\u003Cli>Internationalization-ready (fully translatable)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Security highlights:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Nonce validation on all form submissions (\u003Ccode>_ppfenonce\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>Capability-gated operations (\u003Ccode>edit_posts\u003C\u002Fcode>, \u003Ccode>edit_post\u003C\u002Fcode>, \u003Ccode>edit_others_posts\u003C\u002Fcode>, \u003Ccode>publish_posts\u003C\u002Fcode>, \u003Ccode>upload_files\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>Strict sanitization and escaping throughout\u003C\u002Fli>\n\u003Cli>External image URL hardening: HTTPS-only, blocks localhost\u002Fprivate\u002Flink-local\u002Fmetadata endpoints\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Avada integration:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>When Avada Builder is active, the plugin registers native Avada Builder elements for both shortcodes, so editors can add the frontend form and posts list using the visual drag-and-drop builder without writing shortcode syntax.\u003C\u002Fp>\n\u003Ch3>Shortcodes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ccode>[ppfe_edit_post]\u003C\u002Fcode> — Main create\u002Fedit form.\u003C\u002Fli>\n\u003Cli>\u003Ccode>[ppfe_my_posts]\u003C\u002Fcode> — Current user’s post list with edit links.\u003C\u002Fli>\n\u003Cli>\u003Ccode>[ppfe_form]\u003C\u002Fcode> — Alias of \u003Ccode>[ppfe_edit_post]\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Attributes for \u003Ccode>[ppfe_my_posts]\u003C\u002Fcode>:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>edit_page\u003C\u002Fcode> — URL of the editor page (e.g. \u003Ccode>edit_page=\"\u002Fwrite\u002F\"\u003C\u002Fcode>)\u003C\u002Fli>\n\u003C\u002Ful>\n","Let authenticated users create and edit posts from the frontend — no wp-admin needed. Built for Avada, works with any theme.",0,82,"2026-03-25T17:18:00.000Z","6.9.4","6.1","7.4",[18,19,20,21,22],"avada","frontend-editor","frontend-publishing","post-editor","user-generated-content","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrontend-editor-for-avada.1.0.0.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"cardeetech",1,30,94,"2026-05-20T05:24:41.625Z",[37,58,75,97,117],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":33,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":16,"tags":51,"homepage":55,"download_link":56,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":57},"postease-frontend-editor","PostEase – Frontend Post Editor & Inline Content Editing for WordPress","1.0","Labib Ahmed","https:\u002F\u002Fprofiles.wordpress.org\u002Flabibahmed42\u002F","\u003Cp>\u003Cstrong>PostEase – Frontend Editor\u003C\u002Fstrong> allows you (and selected roles) to edit WordPress posts, pages, and custom post types directly from the frontend. No need to navigate to the backend editor.\u003C\u002Fp>\n\u003Cp>Perfect for site owners, content managers, or clients who want a simple way to update content without the full WordPress dashboard.\u003C\u002Fp>\n\u003Cp>Try real time.\u003C\u002Fp>\n\u003Ch3>Demo Login Details\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fquickfronteditor.webdevocean.com\u002F?p=2030\" rel=\"nofollow ugc\">Login Here\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Username: demo\u003C\u002Fli>\n\u003Cli>Password: Demo1234\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check out the demo video:\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fe1pOnX7PgKA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Frontend “Quick Edit” button for posts, pages, and custom post types\u003Cbr \u002F>\n– Edit title and content with the familiar WordPress TinyMCE editor\u003Cbr \u002F>\n– Add & edit custom fields (meta keys) defined in the plugin settings\u003Cbr \u002F>\n– Role-based access control (choose who can use the editor)\u003Cbr \u002F>\n– Enable\u002Fdisable supported post types\u003Cbr \u002F>\n– Option to load Bootstrap 5 (or use your theme’s styles)\u003Cbr \u002F>\n– Shortcode \u003Ccode>[fqe_button]\u003C\u002Fcode> to display the edit button anywhere\u003Cbr \u002F>\n– Secure AJAX saving with WordPress nonces & capability checks\u003Cbr \u002F>\n– Works with media uploads inside the editor\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>PostEase – Frontend Editor is designed to give content editors a seamless way to update content without needing backend access. Ideal for client-facing websites, news portals, and content-heavy sites.\u003C\u002Fp>\n","Edit WordPress posts and pages directly from the frontend using a clean modal editor. Simple, fast, and secure frontend post editing for all roles.",469,90,2,"2025-11-12T20:46:00.000Z","6.8.5","5.0",[19,52,21,53,54],"inline-editing","quick-edit","wordpress-content-editor","http:\u002F\u002Fwebdevocean.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpostease-frontend-editor.1.0.zip","2026-04-06T09:54:40.288Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":11,"downloaded":66,"rating":11,"num_ratings":11,"last_updated":67,"tested_up_to":14,"requires_at_least":68,"requires_php":16,"tags":69,"homepage":73,"download_link":74,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"recode-front-html-editor","Re{code} Front HTML Editor","3.6.9","re{code}commerce","https:\u002F\u002Fprofiles.wordpress.org\u002Frecodecommerce\u002F","\u003Cp>\u003Cstrong>Re{code} Front HTML Editor\u003C\u002Fstrong> adds a fixed toolbar to the frontend of your WordPress site (visible only to users who can edit the current post). Click \u003Cstrong>Edit\u003C\u002Fstrong>, modify the HTML directly in the editor, then hit \u003Cstrong>Save & Preview\u003C\u002Fstrong> — the page updates in place with no reload required.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Live on-page editing\u003C\u002Fstrong> — no page reload, no switching to the backend\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight plain textarea editor\u003C\u002Fstrong> — no external dependencies, works everywhere\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Format toolbar\u003C\u002Fstrong> — Bold, Italic, Strikethrough, Highlight, Inline code, H2, H3, Paragraph, Blockquote, UL, OL, Insert link, Insert image\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Keyboard shortcuts\u003C\u002Fstrong> — Ctrl+E (open\u002Fclose), Ctrl+S (save), Escape (cancel), Ctrl+B\u002FI\u002FK\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Snippets\u003C\u002Fstrong> — save any HTML block as a toolbar button; use {|} to mark where the cursor lands after inserting\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Element Picker\u003C\u002Fstrong> — click any element on the page to discover its CSS selector, navigate ancestor breadcrumbs, and copy it to Settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dark and Light themes\u003C\u002Fstrong> configurable in Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Front HTML Editor\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Configurable content selector\u003C\u002Fstrong> — choose from popular theme defaults or enter any custom CSS selector\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure\u003C\u002Fstrong> — nonce-verified AJAX, \u003Ccode>edit_post\u003C\u002Fcode> capability check per-post, content sanitized with \u003Ccode>wp_kses_post\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Works with Twenty* themes, Astra, GeneratePress, Kadence, Divi, OceanWP, Flatsome, and most other themes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Visit any post or page on the frontend while logged in as an editor or administrator\u003C\u002Fli>\n\u003Cli>The \u003Cstrong>✏️ HTML Editor\u003C\u002Fstrong> toolbar appears at the top of the page\u003C\u002Fli>\n\u003Cli>Click \u003Cstrong>Edit\u003C\u002Fstrong> — the plugin loads the raw \u003Ccode>post_content\u003C\u002Fcode> from the database into the editor\u003C\u002Fli>\n\u003Cli>Edit the HTML, use the format toolbar or keyboard shortcuts\u003C\u002Fli>\n\u003Cli>Click \u003Cstrong>💾 Save & Preview\u003C\u002Fstrong> — your changes are saved and the page content updates instantly\u003C\u002Fli>\n\u003Cli>Use \u003Cstrong>🎯 Pick element\u003C\u002Fstrong> if the editor can’t find the content area — click any block to get its CSS selector\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Custom Snippets\u003C\u002Fh4>\n\u003Cp>Go to \u003Cstrong>Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Front HTML Editor \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Custom Snippets\u003C\u002Fstrong> to add reusable HTML blocks.\u003Cbr \u002F>\nEach snippet gets its own button in the editor toolbar.\u003Cbr \u002F>\nUse \u003Ccode>{|}\u003C\u002Fcode> in the HTML code to control where the cursor appears after the snippet is inserted.\u003C\u002Fp>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cdiv class=\"see-also-block\">\u003Cdiv class=\"see-also-title\">See also:\u003C\u002Fdiv>\u003Cul>\u003Cli>\u003Ca href=\"{|}\">\u003C\u002Fa>\u003C\u002Fli>\u003C\u002Ful>\u003C\u002Fdiv>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Security\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>AJAX requests are nonce-verified\u003C\u002Fli>\n\u003Cli>Every action checks \u003Ccode>current_user_can('edit_post', $post_id)\u003C\u002Fcode> for the specific post\u003C\u002Fli>\n\u003Cli>Saved content passes through \u003Ccode>wp_kses_post\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>The toolbar is never rendered for unauthenticated users or users without edit rights for the current post\u003C\u002Fli>\n\u003C\u002Ful>\n","Frontend HTML editor for WordPress — edit post_content directly on the page and preview changes instantly without a page reload.",183,"2026-03-18T03:56:00.000Z","5.9",[70,19,71,72,21],"content-editor","html-editor","inline-editor","https:\u002F\u002Frecodecommerce.com\u002Fwordpress-plugins\u002Frecode-front-html-editor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecode-front-html-editor.3.6.9.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":46,"num_ratings":85,"last_updated":86,"tested_up_to":14,"requires_at_least":87,"requires_php":23,"tags":88,"homepage":93,"download_link":94,"security_score":12,"vuln_count":95,"unpatched_count":11,"last_vuln_date":96,"fetched_at":27},"wp-editor","WP Editor","1.2.9.3","benjaminprojas","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenjaminprojas\u002F","\u003Cp>WP Editor is a plugin for WordPress that replaces the default plugin and theme editors as well as the page\u002Fpost editor. Using integrations with CodeMirror and FancyBox to create a feature rich environment, WP Editor completely reworks the default WordPress file editing capabilities. Using Asynchronous Javascript and XML (AJAX) to retrieve files and folders, WP Editor sets a new standard for speed and reliability in a web-based editing atmosphere.\u003C\u002Fp>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>CodeMirror\u003C\u002Fli>\n\u003Cli>Active Line Highlighting\u003C\u002Fli>\n\u003Cli>Line Numbers\u003C\u002Fli>\n\u003Cli>Line Wrapping\u003C\u002Fli>\n\u003Cli>Eight Editor Themes with Syntax Highlighting\u003C\u002Fli>\n\u003Cli>Fullscreen Editing (ESC, F11)\u003C\u002Fli>\n\u003Cli>Text Search (CMD + F, CTRL + F)\u003C\u002Fli>\n\u003Cli>Individual Settings for Each Editor\u003C\u002Fli>\n\u003Cli>FancyBox for image viewing\u003C\u002Fli>\n\u003Cli>AJAX File Browser\u003C\u002Fli>\n\u003Cli>Allowed Extensions List\u003C\u002Fli>\n\u003Cli>Easy to use Settings Section\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Editor is a plugin for WordPress that replaces the default plugin and theme editors as well as the page\u002Fpost editor.",30000,1080551,95,"2026-03-11T18:50:00.000Z","3.9",[89,90,91,21,92],"code-editor","page-editor","plugin-editor","theme-editor","http:\u002F\u002Fwpeditor.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-editor.1.2.9.3.zip",10,"2026-04-30 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":107,"num_ratings":32,"last_updated":108,"tested_up_to":109,"requires_at_least":50,"requires_php":23,"tags":110,"homepage":23,"download_link":115,"security_score":116,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"avadanta-companion","Avadanta Companion","1.5.9","Avadanta Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Favadantathemes\u002F","\u003Cp>Avadanta Companion plugin adds Extra sections and functionality to the Avadnata theme. This plugin for only Avadnata theme. Avadanta Companion is a plugin build for enhance the functionality of Avadanta WordPress Theme.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.avadantathemes.com\u002Fproduct\u002Favadanta-free-multipurpose-business-wordpress-theme\u002F\" rel=\"nofollow ugc\">Avadanta Theme\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.avadantathemes.com\u002Fproduct\u002Fteczilla-free\u002F\" rel=\"nofollow ugc\">Teczilla Theme\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin is the for Avadanta themes. It creates the slider section , service section, portfolio section and testimonial on home page in the Avadanta theme.\u003Cbr \u002F>\nAvadanta is a plugin build to enhance the functionality of WordPress Theme made by Avadanta.\u003C\u002Fp>\n\u003Cp>This plugin create repeater controls in the customizer settings allowing you to create a live site without moving out to customizer screen. Right now plugin have a support for Avadanta WordPress Theme. In future this plugin will support other themes by Avadanta.\u003C\u002Fp>\n","TO Enhance Avadanta WordPress Themes functionality.",2000,121009,20,"2023-07-29T17:47:00.000Z","6.2.9",[111,112,113,114],"avadanta","section","widget","widgets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Favadanta-companion.1.5.9.zip",85,{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":25,"num_ratings":127,"last_updated":128,"tested_up_to":14,"requires_at_least":50,"requires_php":129,"tags":130,"homepage":134,"download_link":135,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"double-opt-in","Double Opt-In for Contact Form 7 & Avada – Secure, GDPR-Compliant Email Verification","3.7.2","Forge12 Interactive GmbH","https:\u002F\u002Fprofiles.wordpress.org\u002Fforge12\u002F","\u003Cp>\u003Cstrong>Double Opt-In\u003C\u002Fstrong> adds a mandatory email verification step to your Contact Form 7 and Avada forms.\u003Cbr \u002F>\nWhen a visitor submits your form, the original mail is \u003Cstrong>not\u003C\u002Fstrong> sent immediately. Instead, the plugin:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Stores the submission in a secure database table.\u003C\u002Fli>\n\u003Cli>Sends a confirmation email with a unique, time-limited link.\u003C\u002Fli>\n\u003Cli>Only after the visitor clicks that link is the original form mail delivered.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>This ensures:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Only \u003Cstrong>valid, verified email addresses\u003C\u002Fstrong> reach your inbox.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR \u002F DSGVO requirements\u003C\u002Fstrong> are met with proper consent tracking, IP logging, and data retention.\u003C\u002Fli>\n\u003Cli>Your database stays \u003Cstrong>clean and reliable\u003C\u002Fstrong> — no fake or mistyped addresses.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Seamless integration with \u003Cstrong>Contact Form 7\u003C\u002Fstrong> and \u003Cstrong>Avada Forms\u003C\u002Fstrong>.\u003Cbr \u002F>\nEnable Double Opt-In per form, customize confirmation emails with a visual editor, and manage data retention with ease.\u003C\u002Fp>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>A visitor fills out your Contact Form 7 or Avada form and clicks submit.\u003C\u002Fli>\n\u003Cli>The plugin intercepts the submission, stores the form data, and generates a unique hash.\u003C\u002Fli>\n\u003Cli>A confirmation email is sent to the visitor’s email address containing a verification link.\u003C\u002Fli>\n\u003Cli>The visitor clicks the link. The plugin verifies the hash, marks the opt-in as confirmed, and sends the original form mail (as if the form was just submitted).\u003C\u002Fli>\n\u003Cli>The confirmed opt-in is logged in the admin dashboard with timestamps and IP addresses for full GDPR compliance.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Quick Start\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.forge12.com\u002Fblog\u002Fso-verwendest-du-das-double-opt-in-fuer-contact-form-7\u002F\" rel=\"nofollow ugc\">Read the Quick Guide\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Visual Email Editor\u003C\u002Fstrong> — drag & drop block-based email template editor with live preview and mobile preview\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Double Opt-In for Contact Form 7\u003C\u002Fstrong> — per-form activation with full CF7 integration\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Double Opt-In for Avada Forms\u003C\u002Fstrong> — works with Avada’s built-in form builder \u003Cem>(Note: Moving to Pro in version 3.8.0)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Centralized Form Settings\u003C\u002Fstrong> — manage all form integrations from a single admin panel\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email Template Presets\u003C\u002Fstrong> — choose from pre-built templates or create your own\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Send Test Email\u003C\u002Fstrong> — preview your confirmation emails before going live\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Confirmation Pages\u003C\u002Fstrong> — redirect users to a specific page after confirmation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dynamic Conditions\u003C\u002Fstrong> — enable opt-in based on user input (e.g. only when a checkbox is checked)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Resend Confirmation\u003C\u002Fstrong> — resend the confirmation email from the admin dashboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Delete Confirmation Modal\u003C\u002Fstrong> — safety dialog before deleting an opt-in record to prevent accidental deletion\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR Consent Export\u003C\u002Fstrong> — export individual consent records as JSON or CSV directly from the opt-in detail view\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CAPTCHA Compatibility\u003C\u002Fstrong> — automatically bypasses Forge12 Captcha, Google reCAPTCHA, and hCaptcha during opt-in confirmation to ensure mail delivery\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rate Limiting\u003C\u002Fstrong> — configurable IP and email rate limits to prevent abuse\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Error Redirect Page\u003C\u002Fstrong> — redirect users to a custom page when an opt-in error occurs (rate limit, invalid email)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Token Expiry\u003C\u002Fstrong> — confirmation links expire after a configurable time period\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR Data Storage\u003C\u002Fstrong> — tracks Form ID, Email, Registration\u002FConfirmation Date & IP, Consent Text\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR Anonymization\u003C\u002Fstrong> — anonymize personal data instead of deleting it\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Privacy Tools\u003C\u002Fstrong> — integrates with WordPress personal data export and erasure requests\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic Cleanup\u003C\u002Fstrong> — configurable auto-deletion of confirmed and unconfirmed entries\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Category System\u003C\u002Fstrong> — organize opt-ins into categories for better management\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pagination & Search\u003C\u002Fstrong> — search and filter opt-in records in the admin dashboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Tooltips\u003C\u002Fstrong> — contextual help tooltips throughout the admin interface\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Multisite\u003C\u002Fstrong> — network-wide activation creates tables on all sites automatically\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer Hooks\u003C\u002Fstrong> — 18 action hooks, 23 filters, and 11 typed events for full extensibility\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pro Features\u003C\u002Fh4>\n\u003Cp>Unlock the full potential of Double Opt-In with the \u003Ca href=\"https:\u002F\u002Fwww.forge12.com\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa>:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Additional Form Integrations:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Double Opt-In for Elementor Forms\u003C\u002Fstrong> — seamless integration with Elementor’s form widget\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Double Opt-In for WPForms\u003C\u002Fstrong> — full support for WPForms submissions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Double Opt-In for Gravity Forms\u003C\u002Fstrong> — complete Gravity Forms integration\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Email Validation & Spam Protection:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Unique Email Validation\u003C\u002Fstrong> — prevent duplicate submissions per email address (block, silent, or redirect mode)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>MX Validation\u003C\u002Fstrong> — verify that the email domain has a valid mail server before sending\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Domain Blocklist\u003C\u002Fstrong> — block disposable and temporary email domains\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Email & Communication:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Double Opt-Out System\u003C\u002Fstrong> — unique opt-out links per submission with confirmation emails\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Opt-In Reminder System\u003C\u002Fstrong> — automatic reminders for unconfirmed opt-ins via cron\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Conditional Email Templates\u003C\u002Fstrong> — dynamic content blocks based on form data\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Column Layouts\u003C\u002Fstrong> — 2-column, 3-column, and sidebar layouts in the email editor\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image & Social Blocks\u003C\u002Fstrong> — add images and social media icons to your emails\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Analytics & Export:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Analytics Dashboard\u003C\u002Fstrong> — charts and statistics for opt-in\u002Fopt-out rates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CSV Export\u003C\u002Fstrong> — export all opt-in records for external processing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>User Management:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Auto User Creation\u003C\u002Fstrong> — automatically create WordPress users after opt-in confirmation with configurable role assignment\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Support:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Premium Support\u003C\u002Fstrong> — priority email support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy & Telemetry\u003C\u002Fh3>\n\u003Cp>Starting with version \u003Cstrong>3.1.0\u003C\u002Fstrong>, the Double Opt-In plugin includes \u003Cstrong>optional anonymous telemetry\u003C\u002Fstrong> (opt-out).\u003Cbr \u002F>\nThis helps us understand which features are used most, so we can improve usability and remove unused complexity.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>We never sell or share data.\u003C\u002Fstrong>\u003Cbr \u002F>\nTelemetry is used \u003Cstrong>only for product improvement and maintenance\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>Telemetry data collected\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>plugin_slug\u003C\u002Fcode>, \u003Ccode>plugin_version\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>snapshot_date\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>settings_json\u003C\u002Fcode> (anonymized plugin settings)\u003C\u002Fli>\n\u003Cli>\u003Ccode>features_json\u003C\u002Fcode> (enabled features)\u003C\u002Fli>\n\u003Cli>\u003Ccode>created_at\u003C\u002Fcode>, \u003Ccode>first_seen\u003C\u002Fcode>, \u003Ccode>last_seen\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>counters_json\u003C\u002Fcode> (opt-in\u002Fopt-out event counts)\u003C\u002Fli>\n\u003Cli>\u003Ccode>wp_version\u003C\u002Fcode>, \u003Ccode>php_version\u003C\u002Fcode>, \u003Ccode>locale\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>GDPR \u002F DSGVO Compliance\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>No personal data, no cookies, no user tracking.\u003C\u002Fli>\n\u003Cli>Legal basis: \u003Cem>Art. 6 Abs. 1 lit. f DSGVO\u003C\u002Fem> (legitimate interest — plugin optimization).\u003C\u002Fli>\n\u003Cli>Telemetry is fully optional and can be disabled anytime in \u003Cstrong>Double Opt-In > Settings\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect your forms with GDPR-compliant Double Opt-In. Ensure valid emails, prevent fake signups, and stay compliant with Contact Form 7 and Avada.",1000,17413,8,"2026-03-14T13:13:00.000Z","8.0",[18,131,118,132,133],"contact-form-7","email-verification","gdpr","https:\u002F\u002Fwww.forge12.com\u002Fblog\u002Fso-verwendest-du-das-double-opt-in-fuer-contact-form-7\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdouble-opt-in.zip",{"attackSurface":137,"codeSignals":219,"taintFlows":231,"riskAssessment":232,"analyzedAt":237},{"hooks":138,"ajaxHandlers":190,"restRoutes":206,"shortcodes":207,"cronEvents":216,"entryPointCount":217,"unprotectedCount":218},[139,145,148,153,157,162,166,170,174,178,182,184,187],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","admin_post_nopriv_ppfe_save_post","handle_admin_post","classes\u002FActions\u002FSavePost.php",24,{"type":140,"name":146,"callback":142,"file":143,"line":147},"admin_post_ppfe_save_post",25,{"type":140,"name":149,"callback":150,"priority":107,"file":151,"line":152},"init","maybe_register","classes\u002FIntegrations\u002FAvada.php",21,{"type":140,"name":154,"callback":155,"file":151,"line":156},"fusion_builder_before_init","register_elements",28,{"type":140,"name":158,"callback":159,"priority":107,"file":160,"line":161},"admin_menu","register_menu","includes\u002Fclass-ppfe-admin.php",16,{"type":140,"name":163,"callback":164,"file":160,"line":165},"admin_enqueue_scripts","enqueue_assets",17,{"type":140,"name":167,"callback":168,"file":160,"line":169},"admin_init","register_settings",18,{"type":140,"name":171,"callback":172,"file":160,"line":173},"admin_notices","maybe_show_setup_notice",19,{"type":140,"name":175,"callback":176,"file":160,"line":177},"admin_head","closure",47,{"type":140,"name":179,"callback":180,"file":181,"line":165},"wp","maybe_enqueue_front","includes\u002Fclass-ppfe-assets.php",{"type":140,"name":163,"callback":183,"file":181,"line":107},"enqueue_admin",{"type":140,"name":149,"callback":185,"priority":32,"file":186,"line":173},"register","includes\u002Fclass-ppfe-shortcodes.php",{"type":140,"name":149,"callback":176,"file":188,"line":189},"presspilot-frontend-editor.php",29,[191,196,200,203],{"action":192,"nopriv":193,"callback":194,"hasNonce":193,"hasCapCheck":193,"file":181,"line":195},"ppfe_save_post",false,"handle_ajax",23,{"action":192,"nopriv":197,"callback":198,"hasNonce":193,"hasCapCheck":193,"file":181,"line":199},true,"ajax_nopriv",26,{"action":201,"nopriv":193,"callback":202,"hasNonce":193,"hasCapCheck":193,"file":181,"line":189},"ppfe_create_pages","handle_ajax_create_pages",{"action":204,"nopriv":193,"callback":205,"hasNonce":193,"hasCapCheck":193,"file":181,"line":33},"ppfe_dismiss_setup","handle_ajax_dismiss_setup",[],[208,211,214],{"tag":209,"callback":210,"file":186,"line":199},"ppfe_form","anonymous",{"tag":212,"callback":210,"file":186,"line":213},"ppfe_edit_post",27,{"tag":215,"callback":210,"file":186,"line":156},"ppfe_my_posts",[],7,4,{"dangerousFunctions":220,"sqlUsage":221,"outputEscaping":223,"fileOperations":11,"externalRequests":32,"nonceChecks":229,"capabilityChecks":165,"bundledLibraries":230},[],{"prepared":11,"raw":11,"locations":222},[],{"escaped":224,"rawEcho":32,"locations":225},264,[226],{"file":160,"line":227,"context":228},899,"raw output",3,[],[],{"summary":233,"deductions":234},"The \"frontend-editor-for-avada\" plugin v1.0.0 exhibits a mixed security posture. On the positive side, the code demonstrates good practices regarding SQL queries and output escaping, with 100% of queries using prepared statements and all outputs being properly escaped. The absence of known CVEs and a clean vulnerability history also suggests a level of diligence in maintaining security. However, a significant concern arises from the attack surface analysis, which reveals 4 unprotected AJAX handlers out of a total of 7 entry points. This lack of authentication checks on a substantial portion of its entry points presents a clear risk, as any unauthenticated user could potentially trigger these handlers.\n\nWhile the taint analysis found no unsanitized paths, indicating no readily apparent data flow vulnerabilities, the unprotected AJAX handlers remain a critical weakness. The plugin relies on 3 nonce checks, which is a positive indicator for some of its functionalities, but these checks are not applied universally across all its AJAX endpoints. The plugin's vulnerability history being completely clear is encouraging, but it should not be taken as a guarantee of future security. The identified unprotected AJAX handlers are the most prominent security concern and require immediate attention.",[235],{"reason":236,"points":95},"Unprotected AJAX handlers","2026-04-16T14:31:29.536Z",{"wat":239,"direct":250},{"assetPaths":240,"generatorPatterns":244,"scriptPaths":245,"versionParams":246},[241,242,243,241,242,243],"\u002Fwp-content\u002Fplugins\u002Ffrontend-editor-for-avada\u002Fassets\u002Fcss\u002Feditor-app.css","\u002Fwp-content\u002Fplugins\u002Ffrontend-editor-for-avada\u002Fassets\u002Fjs\u002Feditor-app.js","\u002Fwp-content\u002Fplugins\u002Ffrontend-editor-for-avada\u002Fassets\u002Fjs\u002Feditor-vendors.js",[],[243,242],[247,248,249,247,248,249],"frontend-editor-for-avada\u002Fassets\u002Fcss\u002Feditor-app.css?ver=","frontend-editor-for-avada\u002Fassets\u002Fjs\u002Feditor-vendors.js?ver=","frontend-editor-for-avada\u002Fassets\u002Fjs\u002Feditor-app.js?ver=",{"cssClasses":251,"htmlComments":258,"htmlAttributes":259,"restEndpoints":262,"jsGlobals":263,"shortcodeOutput":264},[252,253,254,255,256,257],"ppfe-setup-notice","ppfe-create-pages-btn","ppfe-dismiss-setup-btn","ppfe-notice-dismiss","ppfe-create-pages-status","ppfe-notice-status",[],[260,261,260],"data-ppfe-setup-notice","data-nonce",[],[],[],{"error":197,"url":266,"statusCode":267,"statusMessage":268,"message":268},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Ffrontend-editor-for-avada\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":32,"versions":270},[271],{"version":6,"download_url":24,"svn_tag_url":272,"released_at":26,"has_diff":193,"diff_files_changed":273,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":274,"is_current":197},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Ffrontend-editor-for-avada\u002Ftags\u002F1.0.0\u002F",[],[]]