[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbDJsNNtKjVH_YDQz6fojzoSHAYnW-ybTKFNLSIuh-oQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":100,"crawl_stats":38,"alternatives":108,"analysis":216,"fingerprints":407},"gd-bbpress-attachments","GD bbPress Attachments","4.9.3","Milan Petrovic","https:\u002F\u002Fprofiles.wordpress.org\u002Fgdragon\u002F","\u003Cp>GD bbPress Attachments is an easy-to-use plugin for WordPress and bbPress for implementing file upload for bbPress Forums topics and replies. You can control file sizes from the main plugin settings panel, or you can change some attachments settings for each forum individually. Currently, included features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Attachments are handled through WordPress media library. \u003C\u002Fli>\n\u003Cli>Limit the number of files to upload at once.\u003C\u002Fli>\n\u003Cli>Embed a list of attached files into topics and replies.\u003C\u002Fli>\n\u003Cli>Attachment icon in the topic list for topics with attachments.\u003C\u002Fli>\n\u003Cli>Attachments icons for file types in the attachments list.\u003C\u002Fli>\n\u003Cli>Option to control if visitors can see a list of attachments.\u003C\u002Fli>\n\u003Cli>Display uploaded images as thumbnails.\u003C\u002Fli>\n\u003Cli>Control thumbnail size.\u003C\u002Fli>\n\u003Cli>Control thumbnail CLASS and REL attributes.\u003C\u002Fli>\n\u003Cli>Upload errors can be logged.\u003C\u002Fli>\n\u003Cli>Post author and administrators can see errors.\u003C\u002Fli>\n\u003Cli>Tool to clean up uploads error log entries from postmeta table.\u003C\u002Fli>\n\u003Cli>Administration: attachments count for topics and replies.\u003C\u002Fli>\n\u003Cli>Administration: metabox for settings override for forums.\u003C\u002Fli>\n\u003Cli>Administration: metabox with attachments list and errors for topics and replies.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>bbPress Plugin Versions\u003C\u002Fh4>\n\u003Cp>GD bbPress Attachments 4.8 supports bbPress 2.6.2 or newer. Older bbPress versions are no longer supported!\u003C\u002Fp>\n\u003Ch4>More free Dev4Press plugins for bbPress\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgd-forum-manager-for-bbpress\u002F\" rel=\"ugc\">GD Forum Manager\u003C\u002Fa> – quick and bulk forums and topics edit\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgd-members-directory-for-bbpress\u002F\" rel=\"ugc\">GD Members Directory\u003C\u002Fa> – add new page with list of all forum members\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgd-bbpress-tools\u002F\" rel=\"ugc\">GD bbPress Tools\u003C\u002Fa> – various expansion tools for forums\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgd-power-search-for-bbpress\u002F\" rel=\"ugc\">powerSearch for bbPress\u003C\u002Fa> – add advanced search to the bbPress topics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgd-topic-polls\u002F\" rel=\"ugc\">topicPolls for bbPress\u003C\u002Fa> – add polls to the bbPress topics\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Upgrade to forumToolbox for bbPress\u003C\u002Fh4>\n\u003Cp>AKA: GD bbPress Toolbox Pro. The Pro version contains 63 features, with over 500 options to control the integration:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enhanced attachments features\u003C\u002Fli>\n\u003Cli>Limit file types attachments upload\u003C\u002Fli>\n\u003Cli>Add custom file types for upload\u003C\u002Fli>\n\u003Cli>BBCodes editor toolbar\u003C\u002Fli>\n\u003Cli>Report topics and replies\u003C\u002Fli>\n\u003Cli>Say thanks to forum members\u003C\u002Fli>\n\u003Cli>Various SEO features\u003C\u002Fli>\n\u003Cli>Various privacy features\u003C\u002Fli>\n\u003Cli>Enable TinyMCE editor\u003C\u002Fli>\n\u003Cli>Private topics and replies\u003C\u002Fli>\n\u003Cli>Auto closing of inactive topics\u003C\u002Fli>\n\u003Cli>Notification email control\u003C\u002Fli>\n\u003Cli>Show user stats in topics and replies\u003C\u002Fli>\n\u003Cli>Track new and unread topics\u003C\u002Fli>\n\u003Cli>Mute Forums and Users\u003C\u002Fli>\n\u003Cli>Great new responsive admin UI\u003C\u002Fli>\n\u003Cli>Setup Wizard\u003C\u002Fli>\n\u003Cli>Forum based settings overrides\u003C\u002Fli>\n\u003Cli>Edit: BuddyPress support\u003C\u002Fli>\n\u003Cli>40 BBCodes (including Hide and Spoiler)\u003C\u002Fli>\n\u003Cli>19 more Topics Views\u003C\u002Fli>\n\u003Cli>9 additional widgets\u003C\u002Fli>\n\u003Cli>Many great tweaks\u003C\u002Fli>\n\u003Cli>And much, much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With more features on the roadmap exclusively for a Pro version.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>More information about \u003Ca href=\"https:\u002F\u002Fwww.dev4press.com\u002Fplugins\u002Fgd-bbpress-toolbox\u002F\" rel=\"nofollow ugc\">forumToolbox for bbbPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>More Premium plugins with \u003Ca href=\"https:\u002F\u002Fwww.dev4press.com\u002Fbbpress-club\u002F\" rel=\"nofollow ugc\">bbPress Plugins Club\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Implement attachments upload to the topics and replies in bbPress plugin through a media library and add additional forum-based controls.",6000,322677,86,26,"2025-12-26T11:17:00.000Z","6.9.4","6.0","7.4",[20,21,22,23,24],"attachments","bbpress","dev4press","limit","upload","https:\u002F\u002Fwww.dev4press.com\u002Fplugins\u002Fgd-bbpress-attachments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgd-bbpress-attachments.4.9.3.zip",96,5,0,"2024-11-19 16:03:01","2026-03-15T15:16:48.613Z",[33,49,63,76,91],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2024-11278","gd-bbpress-attachments-reflected-cross-site-scripting","GD bbPress Attachments \u003C= 4.7.2 - Reflected Cross-Site Scripting","The GD bbPress Attachments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 4.7.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=4.7.2","4.7.3","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-11-20 04:31:28",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F6f598cfc-4d41-4d22-95f0-47efdb7d07a2?source=api-prod",1,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":44,"published_date":58,"updated_date":59,"references":60,"days_to_patch":62},"CVE-2022-45816","gd-bbpress-attachments-authenticated-administrator-stored-cross-site-scripting","GD bbPress Attachments \u003C= 4.3.1 - Authenticated (Administrator+) Stored Cross-Site Scripting","The GD bbPress Attachments plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in versions up to, and including, 4.3.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.","\u003C=4.3.1","4.4",5.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2022-12-05 00:00:00","2024-01-22 19:56:02",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F642c03f4-f12c-4ae2-a4ab-4f49d6bd033c?source=api-prod",414,{"id":64,"url_slug":65,"title":66,"description":67,"plugin_slug":4,"theme_slug":38,"affected_versions":68,"patched_in_version":69,"severity":41,"cvss_score":70,"cvss_vector":71,"vuln_type":44,"published_date":72,"updated_date":59,"references":73,"days_to_patch":75},"WF-c62cb055-2816-40dc-b25b-395d7e230c9f-gd-bbpress-attachments","gd-bbpress-attachments-stored-cross-site-scripting","GD bbPress Attachments \u003C= 2.5 - Stored Cross-Site Scripting","The GD bbPress Attachments plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘$error[‘file’]’ variable in versions up to, and including, 2.5 due to insufficient input sanitization and output escaping. This makes it possible for authorized attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=2.5","2.6",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2018-05-14 00:00:00",[74],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc62cb055-2816-40dc-b25b-395d7e230c9f?source=api-prod",2080,{"id":77,"url_slug":78,"title":79,"description":80,"plugin_slug":4,"theme_slug":38,"affected_versions":81,"patched_in_version":82,"severity":83,"cvss_score":84,"cvss_vector":85,"vuln_type":86,"published_date":87,"updated_date":59,"references":88,"days_to_patch":90},"CVE-2015-5482","gd-bbpress-attachments-directory-traversal","GD bbPress Attachments \u003C 2.3 - Directory Traversal","Directory traversal vulnerability in the GD bbPress Attachments plugin before 2.3 for WordPress allows remote administrators to include and execute arbitrary local files via a .. (dot dot) in the tab parameter in the gdbbpress_attachments page to wp-admin\u002Fedit.php.","\u003C2.3","2.3","high",7.2,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Control of Filename for Include\u002FRequire Statement in PHP Program ('PHP Remote File Inclusion')","2015-07-09 00:00:00",[89],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F25543955-15b0-4dda-9636-c116db7f2838?source=api-prod",3120,{"id":92,"url_slug":93,"title":94,"description":95,"plugin_slug":4,"theme_slug":38,"affected_versions":81,"patched_in_version":82,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":96,"updated_date":59,"references":97,"days_to_patch":99},"CVE-2015-5481","gd-bbpress-attachments-reflected-cross-site-scripting-2","GD bbPress Attachments \u003C 2.3 - Reflected Cross-Site Scripting","Cross-site scripting (XSS) vulnerability in forms\u002Fpanels.php in the GD bbPress Attachments plugin before 2.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter in the gdbbpress_attachments page to wp-admin\u002Fedit.php.","2015-07-08 00:00:00",[98],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7a1f91a3-6b8d-4be4-817c-9c88d2349723?source=api-prod",3121,{"slug":101,"display_name":7,"profile_url":8,"plugin_count":102,"total_installs":103,"avg_security_score":104,"avg_patch_time_days":105,"trust_score":106,"computed_at":107},"gdragon",17,12460,94,1235,75,"2026-04-04T03:51:46.036Z",[109,131,156,174,193],{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":119,"num_ratings":120,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":124,"tags":125,"homepage":124,"download_link":129,"security_score":130,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"bbpress-multi-image-uploader","bbPress Multi Image Uploader","1.0.6","Ankit Gade","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpgurudev\u002F","\u003Cp>This plugin allows you to upload images to bbPress topics and replies. Code is flexible so that you can customize the plugin according to requirement.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy to install and setup.\u003C\u002Fli>\n\u003Cli>Easily customizable.\u003C\u002Fli>\n\u003Cli>Upload images to topics and replies in bbPress.\u003C\u002Fli>\n\u003Cli>Remove uploaded images when editing topics and replies.\u003C\u002Fli>\n\u003Cli>Compatible with bbPress Private Replies plugin.\u003C\u002Fli>\n\u003Cli>Strong support.\u003C\u002Fli>\n\u003Cli>For customization according to your need contact: http:\u002F\u002Fsharethingz.com\u002Fcontact\u002F\u003C\u002Fli>\n\u003Cli>Very lighweight code.\u003C\u002Fli>\n\u003C\u002Ful>\n","Upload multiple images to bbPress topics and replies.",100,10778,90,8,"2018-04-20T11:55:00.000Z","4.9.29","4.0","",[20,21,126,127,128],"bbpress-attachments","bbpress-media-upload","image","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-multi-image-uploader.zip",85,{"slug":132,"name":133,"version":134,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":139,"downloaded":140,"rating":141,"num_ratings":142,"last_updated":143,"tested_up_to":144,"requires_at_least":145,"requires_php":145,"tags":146,"homepage":124,"download_link":152,"security_score":153,"vuln_count":154,"unpatched_count":29,"last_vuln_date":155,"fetched_at":31},"tuxedo-big-file-uploads","Big File Uploads – Increase Maximum File Upload Size","2.1.7","Infinite Uploads","https:\u002F\u002Fprofiles.wordpress.org\u002Fbww\u002F","\u003Cp>\u003Cstrong>Big File Uploads lets you upload large media files directly to the media library with the WordPress media uploader. Increase your maximum upload size to any value – as large as your available disk space allows – and add file chunking to avoid server timeout errors.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Bypass the upload limits on your server, set by your hosting provider, that prevent you from uploading large files to your media library.\u003C\u002Fp>\n\u003Cp>Big File Uploads automatically detects upload limits set by your server or hosting provider, allows you to increase the maximum upload size, and prevents timeout errors by uploading files in chunks.\u003C\u002Fp>\n\u003Cp>No messing with Apache\u002FPHP initialization files or settings. Just activate the plugin, set the upload size as large as you like, and use the media uploader as you normally would.\u003C\u002Fp>\n\u003Ch3>Big File Uploads Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Set maximum file upload file size as large as your hosts available storage\u003C\u002Fli>\n\u003Cli>Upload large files to your media without FTP or SFTP\u003C\u002Fli>\n\u003Cli>Built-in file chunking (upload large files in small pieces preventing timeout errors)\u003C\u002Fli>\n\u003Cli>Control maximum upload size limit\u003C\u002Fli>\n\u003Cli>Get smart recommendations based on available space in your temporary uploads directory\u003C\u002Fli>\n\u003Cli>Set maximum file size for each user role with upload capabilities (Administrator, Editor, Author)\u003C\u002Fli>\n\u003Cli>Set the max file size in Megabytes (MB) or Gigabytes (GB)\u003C\u002Fli>\n\u003Cli>Works with any server or hosting provider\u003C\u002Fli>\n\u003Cli>Upload any size file directly to a connected Infinite Uploads cloud account\u003C\u002Fli>\n\u003Cli>Super simple configuration and small plugin footprint that doesn’t bog down WordPress\u003C\u002Fli>\n\u003Cli>Uploads directory disk utility for quickly analyzing storage usage in your media library\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>★★★★★\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>“This is just perfect, EXACTLY what I needed to bypass the Cloudflare upload limit. Thank you very much!!” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fusers\u002Fshamank\u002F\" rel=\"ugc\">shamank\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>★★★★★\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>“Excellent plugin for changing the upload size for the Media Library uploads. Even though my host allowed me a bigger upload limit (from 64MB to 200MB) I could’nt make it work. This plugin solved my problem, fast and easy. Right after the installation, I changed the size, and I was able to upload my big file. Works like a charm, thanks guys.” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fusers\u002Fynskalad\u002F\" rel=\"ugc\">ynskalad\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Easily Increase Maximum File Uploads\u003C\u002Fh3>\n\u003Cp>Fix “The Uploaded File Exceeds the upload_max_filesize” error that is so common when you are trying to upload big files to your WordPress media library. Set a new max file size in Big File Uploads to bypass limitations set by the server or your host.\u003C\u002Fp>\n\u003Ch3>Set Upload Size Based on User Role\u003C\u002Fh3>\n\u003Cp>Big File Uploads lets you set a new maximum upload size limit for all uploads or customize the maximum file upload size for each of your user roles with upload capabilities. Set custom upload limits for Administrators, Editors, Authors, or even custom roles.\u003C\u002Fp>\n\u003Ch3>Uploads Disk Utility\u003C\u002Fh3>\n\u003Cp>The Big File Uploads plugin includes a media library disk utility that shows a breakdown of the files in your uploads directory by type and size. See how many images, videos, archives, documents, code, and other files (like audio) there are and how much space they’re taking up.\u003C\u002Fp>\n\u003Ch3>FTP\u002FSFTP Client-free File Uploading\u003C\u002Fh3>\n\u003Cp>Upload files right to the WordPress media library without additional credentials and settings. Skip the protocol settings, server names, port numbers, usernames, long passwords, and private keys. Manage upload size and simplify your workflow for yourself or your clients.\u003C\u002Fp>\n\u003Ch3>Widely Compatible\u003C\u002Fh3>\n\u003Cp>Other plugins simply rewrite the .htaccess or php.ini files in an attempt to adjust the server configuration which does not work with many hosts or causes timeouts. Big File Uploads changes how files are processed and uploads files in chunks (separate smaller pieces) before handing it off to WordPress making it universally compatible with most major hosting services.\u003C\u002Fp>\n\u003Ch3>Wanna make your media library infinitely scalable? Move your big files and uploads directory to the cloud.\u003C\u002Fh3>\n\u003Cp>Big File Uploads is built to work with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Finfinite-uploads\u002F\" rel=\"ugc\">Infinite Uploads\u003C\u002Fa> to make your site’s upload directory infinitely scalable. A large WordPress media library can slow down your server and run up the cost of bandwidth and storage with your hosting provider. Move your uploads directory to the Infinite Uploads cloud to save on storage and bandwidth and improve site performance and security. Learn more about \u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002F?utm_source=wordpress.org&utm_medium=readme&utm_campaign=bfu_readme&utm_term=promo\" rel=\"nofollow ugc\">Infinite Uploads cloud storage and content delivery network\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Extend Big File Uploads to your forms!\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002Fbig-file-form-uploads\u002F\" rel=\"nofollow ugc\">Big File Form Uploads\u003C\u002Fa> is a paid add-on that  extends the functionality of increasing the maximum WordPress file upload size to your favorite form plugins for WordPress, including Contact Form 7, Gravity Forms, and Forminator! Set the limit in Big File Uploads, and that carries over to your file uploads in your forms to let your users upload big files! \u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002Fbig-file-form-uploads\u002F\" rel=\"nofollow ugc\">Learn more about Big File Form Uploads!\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin does not collect or share any data. Site admins can optionally subscribe to email updates which is subject to our \u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002Fprivacy\u002F?utm_source=wordpress.org&utm_medium=readme&utm_campaign=bfu_readme&utm_term=privacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>About Us\u003C\u002Fh3>\n\u003Cp>Infinite Uploads builds WordPress plugins and is a premium cloud storage provider and content delivery network (CDN) for all your WordPress media files. Learn more here:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002F?utm_source=wordpress.org&utm_medium=readme&utm_campaign=bfu_readme&utm_term=about_us\" rel=\"nofollow ugc\">infiniteuploads.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Learn how to manage large files on our blog:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002Fblog\u002F?utm_source=wordpress.org&utm_medium=readme&utm_campaign=bfu_readme&utm_term=blog\" rel=\"nofollow ugc\">Infinite Uploads Blog, Tips, Tricks, How-tos, and News\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fuglyrobot\u002Fbig-file-uploads\" rel=\"nofollow ugc\">Contribute to the plugin’s development on Github!\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Want to use your WordPress site to train an AI chatbot to provide instant answers to your customers? Check out our sister project \u003Ca href=\"https:\u002F\u002Fdocsbot.ai\u002F?utm_source=wordpress.org&utm_medium=readme&utm_campaign=bfu_readme\" rel=\"nofollow ugc\">DocsBot AI\u003C\u002Fa>!\u003C\u002Fp>\n\u003Cp>Enjoy!\u003C\u002Fp>\n\u003Ch3>Contact and Credits\u003C\u002Fh3>\n\u003Cp>Maintained by the cloud architects and WordPress engineers at \u003Ca href=\"https:\u002F\u002Finfiniteuploads.com\u002F?utm_source=wordpress.org&utm_medium=readme&utm_campaign=bfu_readme&utm_term=credits\" rel=\"nofollow ugc\">Infinite Uploads\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Big File Uploads was originally “Tuxedo Big File Uploads” created by Trevor Anderson (\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fandtrev\u002F\" rel=\"nofollow ugc\">@andtrev on WordPress.org\u003C\u002Fa>), 2015-2021. Find Trevor on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fandtrev\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Enable large file uploads in the built-in WordPress media uploader via file chunking, and set maximum upload file size to any value based on user role &hellip;",100000,1237994,98,380,"2025-09-02T06:12:00.000Z","6.8.5","5.6",[147,148,149,150,151],"increase-file-size-limit","increase-upload-limit","max-upload-file-size","post-max-size","upload-limit","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftuxedo-big-file-uploads.2.1.7.zip",99,2,"2024-09-06 00:00:00",{"slug":157,"name":158,"version":159,"author":160,"author_profile":161,"description":162,"short_description":163,"active_installs":164,"downloaded":165,"rating":141,"num_ratings":141,"last_updated":166,"tested_up_to":16,"requires_at_least":123,"requires_php":167,"tags":168,"homepage":171,"download_link":172,"security_score":153,"vuln_count":154,"unpatched_count":29,"last_vuln_date":173,"fetched_at":31},"wp-maximum-upload-file-size","EasyMedia – Increase Media Upload File Size | Role-Based Upload Limit | Increase Execution Time","3.0.4","CodePopular","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodepopular\u002F","\u003Ch3>\u003Cstrong>Increases the upload file size limit to any value with one click\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>The \u003Cstrong>EasyMedia\u003C\u002Fstrong> plugin automatically detects your WordPress and server upload limits, displaying them in a simple dashboard. Instantly increase your upload size and easily upload large files like backups, videos, or ZIP archives directly to your WordPress media library — even if your hosting restricts upload limits.\u003C\u002Fp>\n\u003Ch3>If you ever searched for:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>“Increase WordPress upload limit plugin”\u003C\u002Fli>\n\u003Cli>“Best plugin to upload large files”\u003C\u002Fli>\n\u003Cli>“Set upload quota for users or roles”\u003C\u002Fli>\n\u003Cli>“Restrict file types for authors”\u003C\u002Fli>\n\u003Cli>“Show upload logs in WordPress”\u003C\u002Fli>\n\u003Cli>“Media manager plugin with file stats”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>✅ Then \u003Cstrong>EasyMedia\u003C\u002Fstrong> is the solution you need.\u003C\u002Fp>\n\u003Ch3>🧩 \u003Cstrong>Core Features (Free Version)\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>🔼 Increase Upload File Size Limit\u003C\u002Fstrong>\u003Cbr \u002F>\nRaise your WordPress upload limit to any value without editing code or php.ini files. Upload big videos, ZIPs, and backups seamlessly.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⏱️ Increase Maximum Execution Time\u003C\u002Fstrong>\u003Cbr \u002F>\nAvoid “Maximum Execution Time Exceeded” errors. Increase execution time to handle large file uploads smoothly.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>👥 Role-Based Upload Limits\u003C\u002Fstrong>\u003Cbr \u002F>\nSet custom upload size limits for different WordPress roles (Administrator, Editor, Author, etc.) to prevent storage overuse.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>💾 Memory Limit Set\u003C\u002Fstrong>\u003Cbr \u002F>\nLarge file uploads often fail due to low PHP memory limits. You can easily increase the memory limit from the plugin setting page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>💽 System Status Dashboard\u003C\u002Fstrong>\u003Cbr \u002F>\nView your current PHP upload limit, max execution time, memory limit, and other important settings at a glance.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🧰 Simple, Clean UI\u003C\u002Fstrong>\u003Cbr \u002F>\nAccess settings easily from your WP \u003Cstrong>Dashboard \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Media \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> EasyMedia\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>Where to find the Option to Increase Upload Limit.\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>After installing and activating the plugin, go to your dashboard and navigate to \u003Cstrong>Media > EasyMedia\u003C\u002Fstrong>. From there, you can easily adjust your upload limits and execution time settings.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>Increase Maximum Execution Time.\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>Sometimes WordPress users can’t upload new files due to extended execution time limits. With this plugin, you can increase the execution time to avoid these issues. Simply set the execution time in the input field according to your needs.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>Plugin Renamed: MaxUploader is now EasyMedia\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>We’ve rebranded MaxUploader to EasyMedia for a better, more user-friendly experience.\u003Cbr \u002F>\nDon’t worry — all your existing settings will remain intact. The plugin continues to provide the same core functionality, including increasing upload file size limits and execution time, with an improved interface and additional features.\u003C\u002Fp>\n\u003Cp>If you previously used MaxUploader, you can safely update to EasyMedia — it’s the same plugin, just with a new name and enhanced design.\u003C\u002Fp>\n\u003Ch3>💬 \u003Cstrong>Why EasyMedia?\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>🖼️ Upload large files easily (no manual PHP editing)\u003C\u002Fli>\n\u003Cli>👥 Limit upload size by role or user\u003C\u002Fli>\n\u003Cli>🧩 Restrict specific file types\u003C\u002Fli>\n\u003Cli>⚡ Increase execution time in one click\u003C\u002Fli>\n\u003Cli>📊 Monitor uploads and media usage\u003C\u002Fli>\n\u003Cli>💪 Compatible with all hosting providers\u003C\u002Fli>\n\u003Cli>🔒 Improves security and accountability\u003C\u002Fli>\n\u003Cli>🧠 Recommended by developers for smart file management\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>\u003Cstrong>🚀 Upgrade to EasyMedia Pro for Advanced Features\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>Take your media management to the next level with \u003Ca href=\"http:\u002F\u002Fcodepopular.com\u002Fproduct\u002Feasymedia\" rel=\"nofollow ugc\">EasyMedia Pro\u003C\u002Fa>!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Pro Features Include:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>📊 Upload Logs & Tracking\u003C\u002Fstrong> – Monitor all file uploads with detailed logging, including user, file name, size, type, and timestamp. With the EasyMedia Pro Upload Logs module, you can see where each attachment is used across your site (posts, pages, or products).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>👥 Set User Storage Disk Limit\u003C\u002Fstrong> – Set individual upload limits for specific users that override global settings. With this module, you can specially set the disk limit per individual user. This way we can handle over upload issue from the Editor and Author\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>📄 File Type Restriction\u003C\u002Fstrong> – The EasyMedia plugin sets user file type restriction. With this module, you can only allow specific types of files for the user. Sometimes, Editor or Author roles only need specific file types (like images), and ZIP or executable uploads can be disallowed for them. This feature makes that possible.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>🎭 Role-Based Restrictions\u003C\u002Fstrong> – Configure different upload limits based on WordPress user roles (Administrator, Editor, Author, etc.) This module can help to define the upload limit per role which WordPress by default does not come with\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>📁 Media Manager\u003C\u002Fstrong> – Display file sizes directly in media library columns and attachment details. This feature is acting as a File management plugin where you can manager your WordPress site all files and folders.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>📈 Upload Statistics Dashboard\u003C\u002Fstrong> – View comprehensive statistics including top uploads, recent uploads, and overall usage. You can see the graphical interface of your media library and the top uploader list.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>🔍 Advanced Reporting\u003C\u002Fstrong> – Export upload logs and generate detailed reports for analysis\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>⚡ Auto-Install Dependency\u003C\u002Fstrong> – Automatically installs and configures the main plugin if needed\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>🛡️ Better Security\u003C\u002Fstrong> – Track who uploads what and when for improved security and accountability\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>🎯 Priority Support\u003C\u002Fstrong> – Get faster support and regular updates. We focus on one-to-one priority support.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fcodepopular.com\u002Fproduct\u002Feasymedia\" rel=\"nofollow ugc\">\u003Cstrong>Get EasyMedia Pro Now \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan>\u003C\u002Fstrong>\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fcodepopular.com\u002Fdocs\u002Feasymedia\" rel=\"nofollow ugc\">\u003Cstrong>Get Read Documentation \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan>\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Recommended Elementor Plugin\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Funlimited-theme-addons\u002F\" rel=\"ugc\">Unlimited Theme Addons\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n","EasyMedia - Increase the maximum upload file size limit to any value. Increase upload limit - upload large files effortlessly.",80000,1218819,"2026-01-25T08:18:00.000Z","7.0",[169,147,148,170,149],"easymedia","large-file-upload","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-maximum-upload-file-size\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-maximum-upload-file-size.3.0.4.zip","2024-11-22 17:05:12",{"slug":175,"name":176,"version":177,"author":178,"author_profile":179,"description":180,"short_description":181,"active_installs":182,"downloaded":183,"rating":184,"num_ratings":185,"last_updated":186,"tested_up_to":187,"requires_at_least":188,"requires_php":189,"tags":190,"homepage":191,"download_link":192,"security_score":130,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"upload-max-file-size","Increase Maximum Upload File Size","2.0.4","WP Media","https:\u002F\u002Fprofiles.wordpress.org\u002Fwp_media\u002F","\u003Cp>\u003Cstrong>Increase upload file size limit to any value with one click.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Plugin automatically detects upload limits set by WordPress and by the server \u002F hosting provider, and displays them.\u003C\u002Fp>\n\u003Cp>Access plugin’s settings from the main WP admin menu.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Please read the maximum possible values displayed in the plugin and if needed contact your hosting provider.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>If you need help, please use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fupload-max-file-size\u002F\" rel=\"ugc\">official plugin support forum\u003C\u002Fa>. We reply to all messages ASAP!\u003C\u002Fp>\n","Increase maximum upload file size limit to any value. Increase upload limit - upload large files.",40000,932537,78,101,"2023-08-14T06:49:00.000Z","5.8.13","3.0","5.3",[147,148,149,150,151],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fupload-max-file-size\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fupload-max-file-size.2.0.4.zip",{"slug":194,"name":195,"version":196,"author":197,"author_profile":198,"description":199,"short_description":200,"active_installs":201,"downloaded":202,"rating":203,"num_ratings":204,"last_updated":205,"tested_up_to":206,"requires_at_least":207,"requires_php":167,"tags":208,"homepage":212,"download_link":213,"security_score":214,"vuln_count":48,"unpatched_count":29,"last_vuln_date":215,"fetched_at":31},"file-upload-types","File Upload Types by WPForms","1.5.0","Jared Atchison","https:\u002F\u002Fprofiles.wordpress.org\u002Fjaredatch\u002F","\u003Ch3>WordPress File Upload Types Plugin\u003C\u002Fh3>\n\u003Cp>Do you want to let your WordPress website accept uploads from your users for more file types and to freely upload files? We created the File Upload Types plugin to make it simple for anyone to easily add support for any file types with any extension or MIME type.\u003C\u002Fp>\n\u003Ch4>How WordPress File Uploads Work\u003C\u002Fh4>\n\u003Cp>By default, WordPress only allows \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FUploading_Files#About_Uploading_Files_on_Dashboard\" rel=\"nofollow ugc\">certain file types\u003C\u002Fa> to be uploaded to your website’s media library.\u003C\u002Fp>\n\u003Cp>If someone tries to upload a file type outside of these whitelisted WordPress file extensions, this can be the cause of the \u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002Fcommon-wordpress-errors-and-how-to-fix-them\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"common WordPress error\" rel=\"friend nofollow ugc\">common WordPress error\u003C\u002Fa> \u003Ccode>Sorry, this file type is not permitted for security reasons\u003C\u002Fcode> message.\u003C\u002Fp>\n\u003Cp>It can be frustrating if you’ve \u003Ca href=\"https:\u002F\u002Fwpforms.com\u002Fhow-to-create-a-file-upload-form-in-wordpress\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtypes&utm_content=readme\" rel=\"friend\" title=\"\ncreated a file upload form\">created a file upload form\u003C\u002Fa> in WordPress but the file type you want to accept is a file extension that’s not allowed.\u003C\u002Fp>\n\u003Cp>This plugin lets your website upload more file types beyond the limited file extension types that WordPress allows by default.\u003C\u002Fp>\n\u003Ch4>How does the File Upload Types plugin work?\u003C\u002Fh4>\n\u003Cp>The File Upload Types plugin works by letting you adjust the internal file whitelist, letting you manually control which types of file extensions your WordPress website can upload.\u003C\u002Fp>\n\u003Cp>This way, you can accept any file type through your website and\u002For any contact form plugin like \u003Ca href=\"https:\u002F\u002Fwww.wpforms.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtypes&utm_content=readme\" title=\"WPForms\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>What file types can I upload to WordPress with this plugin?\u003C\u002Fh4>\n\u003Cp>The File Upload Types plugin lets you allow uploads of any file extension, including custom file types.\u003C\u002Fp>\n\u003Cp>Some common file extension types this plugin lets you add that WordPress doesn’t support natively include:\u003C\u002Fp>\n\u003Cp>.ai\u003Cbr \u002F>\n.zip\u003Cbr \u002F>\n.xml\u003Cbr \u002F>\n.svg\u003Cbr \u002F>\n.csv\u003Cbr \u002F>\n.mobi\u003Cbr \u002F>\n.cad\u003Cbr \u002F>\n.dwg\u003Cbr \u002F>\n.dxf\u003C\u002Fp>\n\u003Cp>…and any other file extensions that exist, including custom file types.\u003C\u002Fp>\n\u003Cp>We hope that you find the File Upload Types plugin helpful!\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>This plugin was created by the team behind \u003Ca href=\"https:\u002F\u002Fwpforms.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa> – the best drag & drop form builder for WordPress.\u003C\u002Fp>\n\u003Ch3>What’s Next\u003C\u002Fh3>\n\u003Cp>If you like this plugin, then consider checking out our other projects:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpforms.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"OptinMonster\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa> – The best WordPress Contact Form Plugin.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Foptinmonster.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"OptinMonster\" rel=\"friend nofollow ugc\">OptinMonster\u003C\u002Fa> – Get more email subscribers with the most popular conversion optimization plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.monsterinsights.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"MonsterInsights\" rel=\"friend nofollow ugc\">MonsterInsights\u003C\u002Fa> – See the stats that matter and grow your business with confidence. Best Google Analytics plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.seedprod.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"SeedProd\" rel=\"friend nofollow ugc\">SeedProd\u003C\u002Fa> – Jumpstart your website with the #1 Coming Soon & Maintenance Mode plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpmailsmtp.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" rel=\"nofollow ugc\">WP Mail SMTP\u003C\u002Fa> – Improve email deliverability for your contact form with the most popular SMTP plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frafflepress.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" rel=\"nofollow ugc\">RafflePress\u003C\u002Fa> – The Best WordPress giveaway and contest plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"WPBeginner\" rel=\"friend nofollow ugc\">WPBeginner\u003C\u002Fa> to learn from our \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fwp-tutorials\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"WordPress Tutorials\" rel=\"friend nofollow ugc\">WordPress tutorials\u003C\u002Fa> and find out about other \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fplugins\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"Best WordPress plugins\" rel=\"friend nofollow ugc\">best WordPress plugins\u003C\u002Fa>.\u003C\u002Fp>\n","Easily allow WordPress to accept and upload any file type extension or MIME type, including custom file types.",30000,242227,80,20,"2024-10-23T14:00:00.000Z","6.6.5","5.5",[20,209,210,211,24],"file-upload","files","mime","https:\u002F\u002Fwpforms.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffile-upload-types.1.5.0.zip",91,"2024-10-24 20:07:47",{"attackSurface":217,"codeSignals":342,"taintFlows":376,"riskAssessment":395,"analyzedAt":406},{"hooks":218,"ajaxHandlers":338,"restRoutes":339,"shortcodes":340,"cronEvents":341,"entryPointCount":29,"unprotectedCount":29},[219,225,228,231,237,241,244,248,251,254,258,261,264,268,272,275,279,281,284,287,291,294,298,300,304,308,311,313,316,319,322,327,329,333,336],{"type":220,"name":221,"callback":222,"file":223,"line":224},"action","after_setup_theme","load","code\\admin.php",12,{"type":220,"name":226,"callback":226,"file":223,"line":227},"admin_init",48,{"type":220,"name":229,"callback":229,"file":223,"line":230},"admin_menu",49,{"type":232,"name":233,"callback":234,"priority":235,"file":223,"line":236},"filter","plugin_action_links","plugin_actions",10,51,{"type":232,"name":238,"callback":239,"priority":235,"file":223,"line":240},"plugin_row_meta","plugin_links",52,{"type":220,"name":221,"callback":222,"priority":28,"file":242,"line":243},"code\\class.php",46,{"type":220,"name":245,"callback":246,"priority":48,"file":242,"line":247},"init","init_thumbnail_size",83,{"type":220,"name":245,"callback":249,"file":242,"line":250},"delete_attachments",84,{"type":220,"name":252,"callback":253,"file":242,"line":13},"before_delete_post","delete_post",{"type":232,"name":255,"callback":256,"file":257,"line":227},"support_forum_url","forumtoolbox_premium_support_forum_url","code\\freemius.php",{"type":232,"name":259,"callback":260,"file":257,"line":236},"pricing\u002Fdisable_single_package","__return_true",{"type":232,"name":262,"callback":263,"file":257,"line":240},"pricing\u002Fshow_annual_in_monthly","__return_false",{"type":232,"name":265,"callback":266,"file":257,"line":267},"checkout\u002Fparameters","closure",54,{"type":220,"name":269,"callback":222,"file":270,"line":271},"bbp_init","code\\front.php",29,{"type":220,"name":273,"callback":273,"file":270,"line":274},"wp_enqueue_scripts",43,{"type":220,"name":276,"callback":277,"file":270,"line":278},"bbp_theme_before_reply_form_submit_wrapper","embed_form",45,{"type":220,"name":280,"callback":277,"file":270,"line":243},"bbp_theme_before_topic_form_submit_wrapper",{"type":220,"name":282,"callback":283,"priority":235,"file":270,"line":227},"bbp_edit_reply","edit_reply",{"type":220,"name":285,"callback":286,"priority":235,"file":270,"line":230},"bbp_edit_topic","edit_topic",{"type":220,"name":288,"callback":289,"priority":235,"file":270,"line":290},"bbp_new_reply","save_reply",50,{"type":220,"name":292,"callback":293,"priority":235,"file":270,"line":236},"bbp_new_topic","save_topic",{"type":232,"name":295,"callback":296,"priority":117,"file":270,"line":297},"bbp_get_reply_content","embed_attachments",53,{"type":232,"name":299,"callback":296,"priority":117,"file":270,"line":267},"bbp_get_topic_content",{"type":220,"name":301,"callback":302,"file":270,"line":303},"bbp_theme_before_topic_title","show_attachments_icon",57,{"type":232,"name":305,"callback":306,"file":270,"line":307},"wp_save_post_revision_post_has_changed","post_has_changed",228,{"type":220,"name":221,"callback":222,"file":309,"line":310},"code\\meta.php",9,{"type":220,"name":226,"callback":226,"file":309,"line":312},13,{"type":220,"name":229,"callback":314,"file":309,"line":315},"admin_meta",14,{"type":220,"name":317,"callback":317,"file":309,"line":318},"admin_head",15,{"type":220,"name":320,"callback":321,"file":309,"line":102},"save_post","save_edit_forum",{"type":220,"name":323,"callback":324,"priority":325,"file":309,"line":326},"manage_topic_posts_columns","admin_post_columns",1000,19,{"type":220,"name":328,"callback":324,"priority":325,"file":309,"line":204},"manage_reply_posts_columns",{"type":220,"name":330,"callback":331,"priority":325,"file":309,"line":332},"manage_topic_posts_custom_column","admin_columns_data",22,{"type":220,"name":334,"callback":331,"priority":325,"file":309,"line":335},"manage_reply_posts_custom_column",23,{"type":220,"name":221,"callback":222,"file":337,"line":310},"code\\tools.php",[],[],[],[],{"dangerousFunctions":343,"sqlUsage":344,"outputEscaping":349,"fileOperations":29,"externalRequests":29,"nonceChecks":28,"capabilityChecks":48,"bundledLibraries":371},[],{"prepared":154,"raw":48,"locations":345},[346],{"file":337,"line":347,"context":348},40,"$wpdb->query() with variable interpolation",{"escaped":350,"rawEcho":351,"locations":352},93,7,[353,356,358,361,363,365,368],{"file":270,"line":354,"context":355},243,"raw output",{"file":309,"line":357,"context":355},134,{"file":359,"line":360,"context":355},"forms\\attachments\\meta_files.php",21,{"file":359,"line":362,"context":355},30,{"file":359,"line":364,"context":355},33,{"file":366,"line":367,"context":355},"forms\\more\\toolbox.php",44,{"file":369,"line":370,"context":355},"forms\\panels.php",36,[372],{"name":373,"version":374,"knownCves":375},"Freemius","1.0",[],[377],{"entryPoint":378,"graph":379,"unsanitizedCount":29,"severity":394},"\u003Cpanels> (forms\\panels.php:0)",{"nodes":380,"edges":391},[381,385],{"id":382,"type":383,"label":384,"file":369,"line":351},"n0","source","$_GET",{"id":386,"type":387,"label":388,"file":369,"line":389,"wp_function":390},"n1","sink","echo() [XSS]",41,"echo",[392],{"from":382,"to":386,"sanitized":393},true,"low",{"summary":396,"deductions":397},"The gd-bbpress-attachments plugin (v4.9.3) exhibits a mixed security posture. On the positive side, the static analysis shows no identified dangerous functions, no file operations, and no external HTTP requests, which are good indicators of secure coding practices. The plugin also has a perfect score for output escaping and a very low number of critical or high severity taint flows, suggesting that direct user input is generally handled with care to prevent immediate code execution or sensitive data leakage. The presence of nonce and capability checks, while limited, is a start in securing its entry points.\n\nHowever, the plugin's vulnerability history is a significant concern. With a total of 5 known CVEs, including one high and four medium severity issues, this indicates a recurring pattern of security weaknesses. The common types of past vulnerabilities, Cross-site Scripting and PHP Remote File Inclusion, are critical threats that, if not fully mitigated, could be exploited. The fact that there are currently no unpatched CVEs is a positive sign that recent versions have addressed these specific historical issues, but the sheer number and severity of past vulnerabilities suggest that the plugin's codebase may have underlying architectural flaws or that security testing and development practices need improvement.\n\nIn conclusion, while the immediate static analysis for version 4.9.3 reveals a relatively clean codebase with good output sanitization and limited attack surface, the plugin's extensive history of high and medium severity vulnerabilities, particularly those related to XSS and RFI, warrants caution. Users should ensure they are on the latest version and remain vigilant for any new security advisories, as past patterns suggest a potential for future vulnerabilities.",[398,401,404],{"reason":399,"points":400},"Multiple past high\u002Fmedium severity CVEs",18,{"reason":402,"points":403},"Bundled outdated library: Freemius v1.0",3,{"reason":405,"points":154},"Limited capability checks","2026-03-16T18:02:15.894Z",{"wat":408,"direct":420},{"assetPaths":409,"generatorPatterns":413,"scriptPaths":414,"versionParams":416},[410,411,412],"\u002Fwp-content\u002Fplugins\u002Fgd-bbpress-attachments\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fgd-bbpress-attachments\u002Fcss\u002Ffrontend.css","\u002Fwp-content\u002Fplugins\u002Fgd-bbpress-attachments\u002Fjs\u002Fgd-bbpress-attachments.js",[],[415],"js\u002Fgd-bbpress-attachments.js",[417,418,419],"gd-bbpress-attachments\u002Fcss\u002Fadmin.css?ver=","gd-bbpress-attachments\u002Fcss\u002Ffrontend.css?ver=","gd-bbpress-attachments\u002Fjs\u002Fgd-bbpress-attachments.js?ver=",{"cssClasses":421,"htmlComments":425,"htmlAttributes":426,"restEndpoints":429,"jsGlobals":430,"shortcodeOutput":432},[422,423,424],"gd-attachment-upload-form","gd-attachment-list","gd-attachment-item",[],[427,428],"data-gdatt-topic-id","data-gdatt-reply-id",[],[431],"gd_bbpress_attachments_vars",[433,434],"[gd_attachments_form]","[gd_attachments_list]"]