[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fP49mMj-0_5dG1Q1fGfzHh_EF7NeY0QCkiwT-T3S6U-w":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":117,"fingerprints":163},"hashchecker","Hash Checker","1.2.2","Paul Menard","https:\u002F\u002Fprofiles.wordpress.org\u002Fpmenard\u002F","\u003Cp>Provide a method to verify your WordPress core files match the original downloaded version.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.codehooligans.com\u002F2008\u002F03\u002F01\u002Fcheck-wordpress-core-files-for-hacks\u002F\" title=\"Check WordPress Core Files for Hacks\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa>\u003C\u002Fp>\n","Provide a method to verify your WordPress core files match the original downloaded version.",10,3014,0,"2009-07-16T14:59:00.000Z","2.8.1","2.0.1","",[19,20,21,22],"admin","core","file-checker","hacks","http:\u002F\u002Fwww.codehooligans.com\u002F2008\u002F03\u002F01\u002Fcheck-wordpress-core-files-for-hacks\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhashchecker.1.2.2.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"pmenard",4,240,30,84,"2026-04-04T13:06:08.711Z",[37,58,75,90,104],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":56,"download_link":57,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wp-sanitize-file-name-plus","WP Sanitize File Name Plus","1.0.3","Yslo","https:\u002F\u002Fprofiles.wordpress.org\u002Fyslo\u002F","\u003Cp>Empty spaces and special characters can create some problems.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Improved default function \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fsanitize_file_name\" rel=\"nofollow ugc\">sanitize_file_name()\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Remove latin special characters used in file name\u003C\u002Fli>\n\u003Cli>Make file name lowercase\u003C\u002Fli>\n\u003C\u002Ful>\n","Sanitize file names and enhance security.",1000,41720,100,8,"2017-12-20T22:24:00.000Z","4.9.29","3.0",[19,20,53,54,55],"image","images","uploads","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-sanitize-file-name-plus\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-sanitize-file-name-plus.1.0.3.zip",{"slug":59,"name":60,"version":61,"author":41,"author_profile":42,"description":62,"short_description":63,"active_installs":45,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":50,"requires_at_least":68,"requires_php":17,"tags":69,"homepage":73,"download_link":74,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wp-updates-settings","WP Updates Settings","1.1.4","\u003Cp>Allows you the ability to set Updates and Automatic Background Updates through Settings panel.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Show\u002Fhide Updates notification\u003C\u002Fli>\n\u003Cli>Use default WordPress behaviors\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Updates capabilities to Administrator users\u003C\u002Fli>\n\u003Cli>Set Major Core Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Minor Core Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Plugin Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Theme Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Translation files Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Auto Core Update Notification emails.\u003C\u002Fli>\n\u003Cli>Add Updates panel (Settings > Updates)\u003C\u002Fli>\n\u003Cli>Contextual Help\u003C\u002Fli>\n\u003Cli>Translation MO\u002FPO files\u003C\u002Fli>\n\u003Cli>Multisite\u003C\u002Fli>\n\u003Cli>Desactivate restore default WordPress behavior\u003C\u002Fli>\n\u003Cli>Uninstall restore default WordPress behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress updates settings through UI (User Interface).",21138,88,5,"2017-12-20T22:09:00.000Z","3.7",[19,70,71,20,72],"automatic","background","updates","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-updates-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-updates-settings.1.1.4.zip",{"slug":76,"name":77,"version":78,"author":41,"author_profile":42,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":48,"last_updated":84,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":85,"homepage":88,"download_link":89,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wp-login-timeout-settings","WP Login Timeout Settings","1.1.3","\u003Cp>Allows you the ability to set login timeout Settings panel.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set default login timeout\u003C\u002Fli>\n\u003Cli>Set login ‘Remember me’ timeout\u003C\u002Fli>\n\u003Cli>Set special timeout for Users with a specific capability. eg. : You can set longer\u002Fshorter login timeout to Administrators using “edit_theme_options” capability. (see \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FRoles_and_Capabilities\" rel=\"nofollow ugc\">Roles and Capabilities in WordPress Codex\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Use default WordPress behaviors\u003C\u002Fli>\n\u003Cli>Add Updates panel (Settings > Login timeout)\u003C\u002Fli>\n\u003Cli>Contextual Help\u003C\u002Fli>\n\u003Cli>Translation MO\u002FPO files\u003C\u002Fli>\n\u003Cli>Desactivate restore default WordPress behavior\u003C\u002Fli>\n\u003Cli>Uninstall restore default WordPress behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress Login Timeout through UI (User Interface).",800,14423,70,"2017-12-20T22:30:00.000Z",[19,70,86,20,87],"cookie","timeout","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-login-timeout-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-timeout-settings.1.1.3.zip",{"slug":91,"name":92,"version":93,"author":41,"author_profile":42,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":47,"num_ratings":98,"last_updated":99,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":100,"homepage":102,"download_link":103,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wp-excerpt-settings","WP Excerpt Settings","1.1.2","\u003Cp>Allows you the ability to set Excerpt through Settings panel.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set text to symbolize the excerpt end\u003C\u002Fli>\n\u003Cli>Set words length used by automatic excerpt\u003C\u002Fli>\n\u003Cli>Use default WordPress behaviors\u003C\u002Fli>\n\u003Cli>Excerpt settings added on Reading Settings (Settings > Reading)\u003C\u002Fli>\n\u003Cli>Contextual Help\u003C\u002Fli>\n\u003Cli>Translation MO\u002FPO files\u003C\u002Fli>\n\u003Cli>Desactivate restore default WordPress behavior\u003C\u002Fli>\n\u003Cli>Uninstall restore default WordPress behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress Excerpt through UI (User Interface).",200,8475,2,"2017-12-20T22:37:00.000Z",[19,70,20,101,72],"theme","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-excerpt-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-excerpt-settings.1.1.2.zip",{"slug":105,"name":106,"version":107,"author":41,"author_profile":42,"description":108,"short_description":109,"active_installs":47,"downloaded":110,"rating":13,"num_ratings":13,"last_updated":111,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":112,"homepage":115,"download_link":116,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wp-theme-plugin-editor-disable","WP Theme Plugin Editor Disable","1.0.0","\u003Cp>WordPress, by default, allows you the ability edit theme and plugin files directly from within the WordPress control panel.\u003C\u002Fp>\n\u003Cp>If you never change files directly on your WordPress site, there’s absolutely no need to have this feature available to you or your administrators.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable WordPress Theme\u002FPlugin Editor\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin disable Wordpress Theme\u002FPlugin Editor.",12880,"2017-12-20T22:57:00.000Z",[19,20,113,114,101],"editor","security","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-theme-plugin-editor-disable\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-theme-plugin-editor-disable.1.0.0.zip",{"attackSurface":118,"codeSignals":137,"taintFlows":155,"riskAssessment":156,"analyzedAt":162},{"hooks":119,"ajaxHandlers":133,"restRoutes":134,"shortcodes":135,"cronEvents":136,"entryPointCount":13,"unprotectedCount":13},[120,126,129],{"type":121,"name":122,"callback":123,"file":124,"line":125},"action","admin_menu","add_nav","wphashchecker.php",26,{"type":121,"name":127,"callback":127,"file":124,"line":128},"admin_head",29,{"type":121,"name":130,"callback":131,"file":124,"line":132},"init","install",32,[],[],[],[],{"dangerousFunctions":138,"sqlUsage":139,"outputEscaping":141,"fileOperations":153,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":154},[],{"prepared":13,"raw":13,"locations":140},[],{"escaped":13,"rawEcho":31,"locations":142},[143,147,149,151],{"file":144,"line":145,"context":146},"generate_hash.php",60,"raw output",{"file":124,"line":148,"context":146},65,{"file":124,"line":150,"context":146},111,{"file":124,"line":152,"context":146},132,3,[],[],{"summary":157,"deductions":158},"The \"hashchecker\" v1.2.2 plugin exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs, unpatched vulnerabilities, or recorded common vulnerability types in its history is a significant positive indicator. Furthermore, the code analysis reveals no identified attack surface points (AJAX, REST API, shortcodes, cron events) and no use of dangerous functions. All SQL queries are properly prepared, and there are no external HTTP requests or taint analysis findings, which are all excellent security practices. However, a notable concern arises from the output escaping. With 4 total outputs and 0% properly escaped, this presents a significant risk. Insufficient output escaping can lead to Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the website, potentially compromising user sessions or defacing the site. While other security aspects are well-handled, this single area of weakness warrants attention and mitigation.",[159],{"reason":160,"points":161},"0% output escaping on 4 outputs",6,"2026-03-17T01:12:22.162Z",{"wat":164,"direct":169},{"assetPaths":165,"generatorPatterns":166,"scriptPaths":167,"versionParams":168},[],[],[],[],{"cssClasses":170,"htmlComments":171,"htmlAttributes":172,"restEndpoints":173,"jsGlobals":174,"shortcodeOutput":175},[],[],[],[],[],[176,177,178,179,180,181,182],"\u003Ch2>Checking files for WordPress version ","\u003Ch3>Mis-matched file:\u003C\u002Fh3>","\u003Cp>The following files on your system do not match the original files provided for the given WordPress release. \u003C\u002Fp>","\u003Ch3>Congratulations!\u003C\u002Fh3>","\u003Cp>All check are successfull. Your WordPress core files are in tact.\u003C\u002Fp>","\u003Ch3>Missing core files:\u003C\u002Fh3>","\u003Cp>The following files are part of the original WordPress release but are missing from your site\u003C\u002Fp>"]