[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$frztj5uU_PzLZLmhOO5waDQcja3fOp1Sd-2WkEagEiNM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":48,"crawl_stats":37,"alternatives":54,"analysis":154,"fingerprints":333},"hostinger","Hostinger Tools","3.0.59","Hostinger","https:\u002F\u002Fprofiles.wordpress.org\u002Fhostinger\u002F","\u003Cp>Hostinger Tools is an all-in-one plugin designed to streamline essential tasks for WordPress site administrators. This plugin offers a range of features to help you manage your site’s information, maintenance mode, security, and redirects effectively.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cem>Basic Info\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Displays the current WordPress version with automatic update checks.\u003C\u002Fli>\n\u003Cli>Shows the current PHP version with automatic update checks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Maintenance Mode\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easily enable or disable maintenance mode for your site.\u003C\u002Fli>\n\u003Cli>Provide a URL to bypass maintenance mode for selected users.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Security\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable or disable XML-RPC requests to enhance your site’s security.\u003C\u002Fli>\n\u003Cli>Enable or disable Authorize application page to enhance your site’s security.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Redirects\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Force all URLs to use HTTPS for secure browsing.\u003C\u002Fli>\n\u003Cli>Force all URLs to use WWW to ensure consistency in site access.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>LLMs.txt Generation\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically generate a structured LLMs.txt file in Markdown format.\u003C\u002Fli>\n\u003Cli>Include website title, description, posts, pages, and products (if WooCommerce is active).\u003C\u002Fli>\n\u003Cli>Keep the file updated when content changes or new content is published.\u003C\u002Fli>\n\u003Cli>Help AI-powered tools better understand and interact with your website content.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Hostinger Tools is the new version of the previous Hostinger plugin, offering an updated and enhanced experience.\u003Cbr \u002F>\nThe Onboarding assistant and the Learning section previously included in this plugin were moved to the separate plugin Hostinger Easy Onboarding.\u003C\u002Fp>\n","Simplified WordPress management. Manage site info, maintenance, security, & redirects.",3000000,16730722,60,25,"2026-03-03T11:48:00.000Z","6.9.4","5.5","8.1",[4,20,21,22,23],"https","maintenance","security","tools","https:\u002F\u002Fhostinger.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhostinger.3.0.59.zip",99,1,0,"2024-01-05 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2023-6751","hostinger-missing-authorization-to-maintenance-mode-activation","Hostinger \u003C= 1.9.7 - Missing Authorization to Maintenance Mode Activation","The Hostinger plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the function publish_website in all versions up to, and including, 1.9.7. This makes it possible for unauthenticated attackers to enable and disable maintenance mode.",null,"\u003C=1.9.7","1.9.8","high",7.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","Missing Authorization","2024-07-29 21:37:34",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fd89cf759-5e5f-43e2-90a9-a8e554653ee1?source=api-prod",207,{"slug":4,"display_name":7,"profile_url":8,"plugin_count":49,"total_installs":50,"avg_security_score":51,"avg_patch_time_days":47,"trust_score":52,"computed_at":53},2,4000000,100,79,"2026-04-03T19:56:45.756Z",[55,72,92,112,134],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":51,"downloaded":63,"rating":28,"num_ratings":28,"last_updated":64,"tested_up_to":16,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":70,"download_link":71,"security_score":51,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"weborado-helper","Weborado Helper","1.0.4","Weborado","https:\u002F\u002Fprofiles.wordpress.org\u002Fweborado\u002F","\u003Cp>Weborado Helper is a practical WordPress plugin that provides essential tools for site administrators to maintain and optimize their WordPress websites. This plugin focuses on version monitoring, security enhancements, and performance recommendations.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cem>Security Features\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Displays current WordPress version with update recommendations\u003C\u002Fli>\n\u003Cli>Shows PHP version with compatibility checks\u003C\u002Fli>\n\u003Cli>XML-RPC protection to enhance site security\u003C\u002Fli>\n\u003Cli>Security recommendations based on best practices\u003C\u002Fli>\n\u003Cli>Easy-to-use security controls\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Performance Optimization\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WordPress performance best practices recommendations\u003C\u002Fli>\n\u003Cli>Caching strategy guidance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Marketing Guidance\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Lead generation recommendations for WordPress sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Weborado Helper is designed to be your essential companion for WordPress site management, providing practical tools and recommendations to keep your site secure, optimized, and effective.\u003C\u002Fp>\n","Essential tools for WordPress site administrators to monitor versions, enhance security, and improve performance.",1253,"2026-01-06T07:50:00.000Z","5.8","7.4",[68,21,69,22,23],"hosting","performance","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fweborado-helper.1.0.4.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":11,"downloaded":80,"rating":81,"num_ratings":82,"last_updated":83,"tested_up_to":16,"requires_at_least":84,"requires_php":66,"tags":85,"homepage":89,"download_link":90,"security_score":26,"vuln_count":49,"unpatched_count":28,"last_vuln_date":91,"fetched_at":30},"really-simple-ssl","Really Simple Security – Simple and Performant Security (formerly Really Simple SSL)","9.5.8","Really Simple Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Freallysimpleplugins\u002F","\u003Cp>Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate.\u003C\u002Fp>\n\u003Ch3>Really simple, Effective and Performant WordPress Security\u003C\u002Fh3>\n\u003Cp>Really Simple Security is the most lightweight and easy-to-use security plugin for WordPress. It secures your WordPress website with SSL certificate generation, including proper 301 https redirection and SSL enforcement, scanning for possible vulnerabilities, Login Protection and implementing essential WordPress hardening features.\u003C\u002Fp>\n\u003Cp>We believe that security should have the absolute minimum effect on website performance, user experience and maintainability. Therefore, Really Simple Security is:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Lightweight:\u003C\u002Fstrong> Every security feature is developed with a modular approach and with performance in mind. Disabled features won’t load any redundant code.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy-to-use:\u003C\u002Fstrong> 1-minute configuration with short onboarding setup.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security Features\u003C\u002Fh3>\n\u003Ch4>Easy SSL Migration\u003C\u002Fh4>\n\u003Cp>Migrates your website to HTTPS and enforces SSL in just one click.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>301 redirect via PHP or .htaccess\u003C\u002Fli>\n\u003Cli>Secure cookies\u003C\u002Fli>\n\u003Cli>Let’s Encrypt: Install an SSL Certificate if your hosting provider supports manual installation.\u003C\u002Fli>\n\u003Cli>Server Health Check: Your server configuration is every bit as important for your website security.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress Hardening\u003C\u002Fh4>\n\u003Cp>Tweak your configuration and keep WordPress fortified and safe by tackling potential weaknesses.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Prevent code execution in the uploads folder\u003C\u002Fli>\n\u003Cli>Prevent login feedback and disable user enumeration\u003C\u002Fli>\n\u003Cli>Disable XML-RPC\u003C\u002Fli>\n\u003Cli>Disable directory browsing\u003C\u002Fli>\n\u003Cli>Username restrictions (block ‘admin’ and public names)\u003C\u002Fli>\n\u003Cli>and much more..\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Vulnerability Detection\u003C\u002Fh4>\n\u003Cp>Get notified when plugins, themes or WP core contain vulnerabilities and need appropriate action.\u003C\u002Fp>\n\u003Ch4>Login Protection\u003C\u002Fh4>\n\u003Cp>Allow or enforce Two-Factor Authentication (2FA) for specific user roles. Users receive a two-factor code via Email.\u003C\u002Fp>\n\u003Ch3>Improve Security with Really Simple Security Pro\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Freally-simple-ssl.com\u002F\" rel=\"nofollow ugc\">Protect your site with all essential security features by upgrading to Really Simple Security Pro.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Advanced SSL enforcement\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Mixed Content Scan & Fixer. Detect files that are requested over HTTP and fix them to HTTPS, both Front- and Back-end.\u003C\u002Fli>\n\u003Cli>Enable HTTP Strict Transport Security and configure your site for the HSTS Preload list.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Firewall\u003C\u002Fh4>\n\u003Cp>Really Simple Security Pro includes a performant and efficient WordPress firewall, to stop bots, crawlers and bad actors with IP and username blocks.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>404 blocking – Blocks crawlers as they trigger unusual numbers of 404 errors.\u003C\u002Fli>\n\u003Cli>Region blocking – Only allow\u002Fblock access to your site from specific regions.\u003C\u002Fli>\n\u003Cli>Automated and customisable Firewall rules.\u003C\u002Fli>\n\u003Cli>IP blocklist and allowlist.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Security Headers\u003C\u002Fh4>\n\u003Cp>Security headers protect your site visitors against the risk of clickjacking, cross-site-forgery attacks, stealing login credentials and malware.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Independent of your Server Configuration, works on Apache, LiteSpeed, NGINX, etc.\u003C\u002Fli>\n\u003Cli>Protect your website visitors with X-XSS Protection, X-Content-Type-Options, X-Frame-Options, a Referrer Policy and CORS headers.\u003C\u002Fli>\n\u003Cli>Automatically generate your WordPress-tailored Content Security Policy.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Vulnerability Measures\u003C\u002Fh4>\n\u003Cp>When a vulnerability is detected in a plugin, theme or WordPress core you will get notified accordingly. With Vulnerability Measures, you can configure simple but effective measures to make sure that a critical vulnerability won’t remain unattended.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Force update: An update process will be tried multiple times until it can be assumed development of a theme or plugin is abandoned. You will be notified during these steps.\u003C\u002Fli>\n\u003Cli>Quarantine: When a plugin or theme can’t be updated to solve a vulnerability, Really Simple Security can quarantine the plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Advanced Site Hardening\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choose a custom login URL\u003C\u002Fli>\n\u003Cli>Automated File Permissions check and fixer\u003C\u002Fli>\n\u003Cli>Rename and randomize your database prefix\u003C\u002Fli>\n\u003Cli>Change the debug.log file location to a non-public folder\u003C\u002Fli>\n\u003Cli>Disable application passwords\u003C\u002Fli>\n\u003Cli>Control admin creation\u003C\u002Fli>\n\u003Cli>Disable HTTP methods, reducing HTTP requests\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Login Protection\u003C\u002Fh4>\n\u003Cp>Secure your website’s login process and user accounts with powerful security measures.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Two-Step verification (Email login)\u003C\u002Fli>\n\u003Cli>2FA (two factor authentication) with TOTP\u003C\u002Fli>\n\u003Cli>Passwordless login with passkey login\u003C\u002Fli>\n\u003Cli>Enforce strong passwords and frequent password change\u003C\u002Fli>\n\u003Cli>Limit Login Attempts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With Limit Login Attempts you can configure a threshold to temporarily or permanently block IP addresses or (non-existing) usernames. You can also throw a CAPTCHA after a failed login (hCaptcha or Google reCaptcha)\u003C\u002Fp>\n\u003Ch4>Access Control\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Restrict access to your site for specific regions.\u003C\u002Fli>\n\u003Cli>Add specific IP addresses or IP ranges to the Blocklist or Allowlist.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Useful Links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Freally-simple-ssl.com\u002Fknowledge-base-overview\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Freally-simple-ssl.com\u002Fdefinitions\u002F\" rel=\"nofollow ugc\">Security Definitions\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Freally-simple-ssl\" rel=\"nofollow ugc\">Translate Really Simple Security\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FReally-Simple-Plugins\u002Freally-simple-ssl\u002Fissues\" rel=\"nofollow ugc\">Issues & pull requests\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FReally-Simple-Plugins\u002Freally-simple-ssl\u002Flabels\u002Ffeature%20request\" rel=\"nofollow ugc\">Feature requests\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Love Really Simple Security?\u003C\u002Fh3>\n\u003Cp>If you want to support the continuing development of this plugin, please consider buying \u003Ca href=\"https:\u002F\u002Fwww.really-simple-ssl.com\u002Fpro\u002F\" rel=\"nofollow ugc\">Really Simple Security Pro\u003C\u002Fa>, which includes some excellent security features and premium support.\u003C\u002Fp>\n\u003Ch3>About Really Simple Plugins\u003C\u002Fh3>\n\u003Cp>Our mission is to make complex WordPress requirements really easy. Really Simple Security is developed by \u003Ca href=\"https:\u002F\u002Fwww.really-simple-ssl.com\u002Fabout-us\" rel=\"nofollow ugc\">Really Simple Plugins\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For generating SSL certificates, Really Simple Security uses the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffbett\u002Fle-acme2-php\u002F\" rel=\"nofollow ugc\">le acme2 PHP\u003C\u002Fa> Let’s Encrypt client library, thanks to ‘fbett’ for providing it. Vulnerability Detection uses WP Vulnerability, an open-source initiative by Javier Casares. Want to join as a collaborator? We’re on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Freally-simple-plugins\u002Freally-simple-ssl\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> as well!\u003C\u002Fp>\n","Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate.",205655178,98,8803,"2026-02-26T10:57:00.000Z","6.6",[86,20,22,87,88],"2fa","two-factor","vulnerabilities","https:\u002F\u002Freally-simple-ssl.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freally-simple-ssl.9.5.8.zip","2025-01-24 00:00:00",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":51,"num_ratings":102,"last_updated":103,"tested_up_to":16,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":109,"download_link":110,"security_score":51,"vuln_count":27,"unpatched_count":28,"last_vuln_date":111,"fetched_at":30},"xo-security","XO Security","3.10.8","ishitaka","https:\u002F\u002Fprofiles.wordpress.org\u002Fishitaka\u002F","\u003Cp>XO Security is a plugin to enhance login related security.\u003Cbr \u002F>\nThis plugin does not write to .htaccess file. Besides Apache, LiteSpeed, Nginx and IIS also work.\u003C\u002Fp>\n\u003Ch4>Functions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Record login log.\u003C\u002Fli>\n\u003Cli>Limit login attempts.\u003C\u002Fli>\n\u003Cli>Add Captcha to the login form and comment form.\u003C\u002Fli>\n\u003Cli>Change the URL of the login page.\u003C\u002Fli>\n\u003Cli>Enable two-factor authentication (2FA) for login.\u003C\u002Fli>\n\u003Cli>Login Alert.\u003C\u002Fli>\n\u003Cli>Disable login by mail address.\u003C\u002Fli>\n\u003Cli>Disable login by user name.\u003C\u002Fli>\n\u003Cli>Change login error message.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC and XML-RPC Pingback.\u003C\u002Fli>\n\u003Cli>Disable REST API.\u003C\u002Fli>\n\u003Cli>Disable author archive page.\u003C\u002Fli>\n\u003Cli>Remove comment author class of comments list.\u003C\u002Fli>\n\u003Cli>Remove the username from the oEmbed response data.\u003C\u002Fli>\n\u003Cli>WooCommerce login page protection.\u003C\u002Fli>\n\u003Cli>Anti-spam comment.\u003C\u002Fli>\n\u003Cli>Hide WordPress version information.\u003C\u002Fli>\n\u003Cli>Edit the author slug.\u003C\u002Fli>\n\u003Cli>Disable RSS and Atom feeds.\u003C\u002Fli>\n\u003Cli>Activate maintenance mode.\u003C\u002Fli>\n\u003Cli>Delete the readme.html file.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress multisite considerations\u003C\u002Fh4>\n\u003Cp>If you set the login page separately for the main site and the subsite, you will not be able to use the password loss function of the subsite. We recommend that you set the login page to be common to all sites.\u003C\u002Fp>\n","XO Security is a plugin to enhance login related security.",30000,351892,11,"2025-12-06T00:29:00.000Z","4.9","5.6",[107,108,21,22,87],"brute-force","login","https:\u002F\u002Fxakuro.com\u002Fwordpress\u002Fxo-security\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fxo-security.3.10.8.zip","2017-02-07 00:00:00",{"slug":113,"name":114,"version":115,"author":113,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":81,"num_ratings":121,"last_updated":122,"tested_up_to":16,"requires_at_least":123,"requires_php":66,"tags":124,"homepage":129,"download_link":130,"security_score":131,"vuln_count":132,"unpatched_count":28,"last_vuln_date":133,"fetched_at":30},"mainwp","MainWP Dashboard: Self-hosted WordPress Management for Agencies","6.0.3","https:\u002F\u002Fprofiles.wordpress.org\u002Fmainwp\u002F","\u003Cp>Managing multiple WordPress sites can be a time-consuming and frustrating task. The \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002F\" rel=\"nofollow ugc\">MainWP Dashboard\u003C\u002Fa> empowers you to take back your time by allowing you to efficiently manage and secure all your WordPress sites from your own centralized Dashboard.\u003C\u002Fp>\n\u003Cp>Designed for agencies, freelancers, and web professionals, MainWP offers comprehensive control with a privacy-first approach. Harness the power of MainWP for updates, backups, and more, ensuring your sites are always running smoothly and securely.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features for Advanced WordPress Management:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Centralized Updates: Keep all your WordPress sites up-to-date with single-click updates.\u003C\u002Fli>\n\u003Cli>Secure Backups: Implement scheduled or on-demand backups for complete site security.\u003C\u002Fli>\n\u003Cli>Manage both your sites and your clients with the Client Management module\u003C\u002Fli>\n\u003Cli>The built-in Cost Tracker allows you to easily keep track of client costs\u003C\u002Fli>\n\u003Cli>Private and Self-hosted: Your data stays yours, with full privacy and control.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Stop the Software as a Service (SaaS) Treadmill:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Built on WordPress’s core principles, the MainWP Dashboard plugin is uniquely positioned as the go-to solution for WordPress management. It combines ease of use with robust features and unmatched privacy.\u003C\u002Fp>\n\u003Cp>The MainWP plugins are open-source and privacy-focused and come with their own privacy policies to ensure that the plugins do not collect any personally identifiable information (PII).\u003C\u002Fp>\n\u003Cp>The MainWP Dashboard is extendable, allowing third-party developers to hook into it. It also provides support for CLI and has its own REST API, so anything you need or want to run your business your way can be developed for your MainWP Dashboard.\u003C\u002Fp>\n\u003Cp>All of this makes MainWP the best non-SaaS alternative to ManageWP, InfiniteWP, WPRemote, and WP Umbrella.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Getting Started with MainWP:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>MainWP is designed to be user-friendly and intuitive, even for those new to WordPress management plugins. With a straightforward setup process and a clean, organized dashboard, you’ll be able to start managing your WordPress sites efficiently in no time.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Setting up MainWP is straightforward—install the dashboard on a private WordPress site, add the MainWP Child plugin to your other WordPress sites, and take control.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Your Guarantee of Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The MainWP plugins come with their own \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-plugin-privacy-policy\u002F\" rel=\"nofollow ugc\">privacy policies\u003C\u002Fa> to ensure that the plugins do not collect any personally identifiable information (PII).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How Is MainWP Free? What’s the Catch? How Will You Continue to Pay Development Costs?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>MainWP Dashboard is \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-free-features\u002F\" rel=\"nofollow ugc\">100% FREE\u003C\u002Fa> and always will be. Whether you manage 5 sites or 5,000, the core dashboard remains free.\u003C\u002Fp>\n\u003Cp>We make money by offering \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fsignup\u002F\" rel=\"nofollow ugc\">MainWP Pro\u003C\u002Fa>, which provides access to a wide range of premium add-ons. These premium add-ons are organized into two clear categories:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Integrations:\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd-ons in this category enable seamless connections with popular third-party services and plugins, allowing you to integrate the tools you already use directly into your MainWP Dashboard.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Extensions:\u003C\u002Fstrong>\u003Cbr \u002F>\nThese are custom-built, standalone add-ons developed exclusively for the MainWP Dashboard, designed to add unique and specialized functionality to enhance your WordPress management experience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more details, visit our \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-add-ons\u002F\" rel=\"nofollow ugc\">Premium Add-ons\u003C\u002Fa> page and see how our free and pro features compare at \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Ffree-vs-pro\u002F\" rel=\"nofollow ugc\">Free vs. Pro: Know the Difference\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Experience the MainWP Difference\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Are you ready to take the hassle out of managing your WordPress sites? MainWP makes it easy to keep everything updated, secure, and running just the way you need it. With over 20k site owners trusting MainWP with over 700k WordPress sites, every day, you’ll quickly see how much simpler website management can be. Try it today and feel the difference for yourself!\u003C\u002Fp>\n","Run updates, backups, security and reporting across all client sites from your own server. Keep data private and prove your value with branded reports &hellip;",20000,1648191,2341,"2026-03-10T15:41:00.000Z","6.2",[125,126,22,127,128],"backups","manage-multiple-wordpress-sites","update","wordpress-maintenance","https:\u002F\u002Fmainwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmainwp.6.0.3.zip",97,6,"2024-02-27 00:00:00",{"slug":135,"name":136,"version":137,"author":138,"author_profile":139,"description":140,"short_description":141,"active_installs":142,"downloaded":143,"rating":144,"num_ratings":145,"last_updated":146,"tested_up_to":16,"requires_at_least":147,"requires_php":70,"tags":148,"homepage":152,"download_link":153,"security_score":51,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"brozzme-db-prefix-change","Brozzme DB Prefix & Tools Addons","1.3.5","Benoti","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenoti\u002F","\u003Cp>Brozzme DB Prefix is a one click tool to modify your database prefix everywhere (database and wp-config.php).\u003C\u002Fp>\n\u003Cp>To apply a new prefix, you just need to verify that the wp-config.php is writable and that the Alter rights of the database are enable.\u003C\u002Fp>\n\u003Cp>A single entry is need : the new database prefix. The plugin will generate a new one for you. You only have to press the button if you are ok with the generated prefix. Of course, the prefix can be modify to fit your needs.\u003C\u002Fp>\n\u003Cp>This plugin doesn’t have any options settings.\u003C\u002Fp>\n\u003Cp>Since 1.3 : New tools will be add !\u003C\u002Fp>\n\u003Cul>\n\u003Cli>mysql dump : export whole database in a single click or more click if you need options 😉\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Have a look to the other Brozzme plugins \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fbrozzme\u002F\" rel=\"ugc\">search : Brozzme\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Link to \u003Ca href=\"https:\u002F\u002Fbrozzme.com\u002F\" title=\"Brozzme\" rel=\"nofollow ugc\">Brozzme\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=221\" title=\"WPServeur WordPress Hosting\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa>.\u003C\u002Fp>\n","Easily change your WordPress DB prefix, save time, increase security.",10000,132961,94,55,"2026-01-21T16:50:00.000Z","4.7",[149,150,151,22,23],"config","database","prefix","https:\u002F\u002Fbrozzme.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrozzme-db-prefix-change.1.3.5.zip",{"attackSurface":155,"codeSignals":302,"taintFlows":321,"riskAssessment":322,"analyzedAt":332},{"hooks":156,"ajaxHandlers":298,"restRoutes":299,"shortcodes":300,"cronEvents":301,"entryPointCount":28,"unprotectedCount":28},[157,163,167,170,175,180,183,186,191,196,201,205,209,213,218,222,226,231,234,236,237,241,244,247,250,253,256,259,263,267,270,274,278,280,281,285,287,288,293],{"type":158,"name":159,"callback":160,"file":161,"line":162},"action","admin_notices","closure","hostinger.php",78,{"type":158,"name":164,"callback":165,"file":161,"line":166},"plugins_loaded","hostinger_load_menus",138,{"type":158,"name":164,"callback":168,"file":161,"line":169},"load_plugin",148,{"type":158,"name":171,"callback":172,"priority":28,"file":173,"line":174},"admin_init","define_ajax_events","includes\\Admin\\Ajax.php",17,{"type":158,"name":176,"callback":177,"file":178,"line":179},"admin_enqueue_scripts","admin_styles","includes\\Admin\\Assets.php",42,{"type":158,"name":176,"callback":181,"file":178,"line":182},"admin_scripts",43,{"type":158,"name":176,"callback":184,"file":178,"line":185},"global_styles",46,{"type":158,"name":187,"callback":188,"file":189,"line":190},"admin_footer","rate_plugin","includes\\Admin\\Hooks.php",24,{"type":192,"name":193,"callback":194,"priority":195,"file":189,"line":14},"filter","wp_kses_allowed_html","custom_kses_allowed_html",10,{"type":192,"name":197,"callback":198,"file":199,"line":200},"hostinger_admin_menu_bar_items","add_admin_bar_items","includes\\Admin\\Menu.php",15,{"type":192,"name":202,"callback":203,"file":199,"line":204},"hostinger_menu_subpages","sub_menu",16,{"type":158,"name":206,"callback":160,"file":207,"line":208},"init","includes\\Admin\\Redirects.php",30,{"type":158,"name":164,"callback":210,"file":211,"line":212},"anonymous","includes\\Bootstrap.php",63,{"type":158,"name":214,"callback":215,"file":216,"line":217},"wp_footer","register_styles","includes\\ComingSoon.php",20,{"type":158,"name":219,"callback":220,"file":216,"line":221},"template_redirect","coming_soon",21,{"type":192,"name":223,"callback":224,"file":216,"line":225},"wp_headers","modify_headers",22,{"type":192,"name":227,"callback":228,"file":229,"line":230},"xmlrpc_enabled","check_xmlrpc_enabled","includes\\Hooks.php",14,{"type":192,"name":232,"callback":233,"file":229,"line":200},"wp_is_application_passwords_available","check_authentication_password_enabled",{"type":192,"name":223,"callback":235,"file":229,"line":204},"check_pingback",{"type":158,"name":206,"callback":164,"file":229,"line":174},{"type":158,"name":238,"callback":239,"file":229,"line":240},"update_option_woocommerce_coming_soon","litespeed_flush_cache",18,{"type":158,"name":242,"callback":239,"file":229,"line":243},"update_option_woocommerce_store_pages_only",19,{"type":158,"name":245,"callback":246,"priority":195,"file":229,"line":217},"upgrader_process_complete","disable_auth_passwords_on_update",{"type":158,"name":248,"callback":249,"priority":195,"file":229,"line":221},"transition_post_status","handle_transition_post_status",{"type":158,"name":251,"callback":252,"priority":195,"file":229,"line":225},"updated_option","handle_updated_option",{"type":158,"name":206,"callback":206,"file":254,"line":255},"includes\\LlmsTxtGenerator\\LlmsTxtGenerator.php",37,{"type":158,"name":248,"callback":257,"priority":195,"file":254,"line":258},"on_post_status_change",102,{"type":158,"name":260,"callback":261,"file":254,"line":262},"hostinger_tools_settings_saved","on_settings_saved",103,{"type":158,"name":264,"callback":265,"priority":195,"file":254,"line":266},"update_option_blogname","on_blog_change",104,{"type":158,"name":268,"callback":265,"priority":195,"file":254,"line":269},"update_option_blogdescription",105,{"type":158,"name":271,"callback":272,"file":254,"line":273},"activate_woocommerce\u002Fwoocommerce.php","on_woocommerce_activation",106,{"type":158,"name":275,"callback":276,"file":254,"line":277},"deactivate_woocommerce\u002Fwoocommerce.php","on_woocommerce_deactivation",107,{"type":158,"name":206,"callback":206,"file":279,"line":14},"includes\\LlmsTxtGenerator.php",{"type":158,"name":248,"callback":257,"priority":195,"file":279,"line":144},{"type":158,"name":282,"callback":283,"file":279,"line":284},"hostinger_tools_setting_enable_llms_txt_update","on_settings_update",95,{"type":158,"name":264,"callback":265,"priority":195,"file":279,"line":286},96,{"type":158,"name":268,"callback":265,"priority":195,"file":279,"line":131},{"type":158,"name":289,"callback":290,"file":291,"line":292},"wp_enqueue_scripts","enqueue_preview_css","includes\\Preview\\Assets.php",13,{"type":158,"name":294,"callback":295,"file":296,"line":297},"rest_api_init","register_routes","includes\\Rest\\Routes.php",31,[],[],[],[],{"dangerousFunctions":303,"sqlUsage":304,"outputEscaping":306,"fileOperations":28,"externalRequests":27,"nonceChecks":27,"capabilityChecks":319,"bundledLibraries":320},[],{"prepared":49,"raw":28,"locations":305},[],{"escaped":243,"rawEcho":307,"locations":308},5,[309,312,314,316,317],{"file":161,"line":310,"context":311},85,"raw output",{"file":313,"line":49,"context":311},"includes\\Admin\\Views\\Partials\\RateUs.php",{"file":315,"line":132,"context":311},"includes\\Views\\ComingSoon.php",{"file":315,"line":190,"context":311},{"file":315,"line":318,"context":311},27,4,[],[],{"summary":323,"deductions":324},"The Hostinger plugin v3.0.59 exhibits a generally strong security posture based on the static analysis. The absence of any attack surface (AJAX handlers, REST API routes, shortcodes, cron events) with unprotected entry points is a significant strength.  The code also demonstrates good practices with 100% of SQL queries using prepared statements, a healthy percentage of output being properly escaped, and the presence of nonce and capability checks. The lack of file operations and dangerous functions further bolsters its security. However, the presence of one historical high-severity vulnerability, though currently patched, does indicate a past weakness that warrants attention. The single external HTTP request is a minor point of interest, but without further context, it's difficult to assess its risk. The lack of taint analysis results prevents a deeper understanding of potential data flow vulnerabilities.",[325,327,330],{"reason":326,"points":240},"One historical high severity CVE",{"reason":328,"points":329},"Only 79% of output properly escaped",3,{"reason":331,"points":49},"Single external HTTP request","2026-03-16T16:56:40.938Z",{"wat":334,"direct":345},{"assetPaths":335,"generatorPatterns":338,"scriptPaths":339,"versionParams":341},[336,337],"\u002Fwp-content\u002Fplugins\u002Fhostinger\u002Fassets\u002Fcss\u002Fplugin-rating.min.css","\u002Fwp-content\u002Fplugins\u002Fhostinger\u002Fassets\u002Fcss\u002Fhostinger-global.min.css",[],[340],"\u002Fwp-content\u002Fplugins\u002Fhostinger\u002Fvue-frontend\u002Fdist\u002Fmain.js",[342,343,344],"hostinger\u002Fassets\u002Fcss\u002Fplugin-rating.min.css?ver=","hostinger\u002Fassets\u002Fcss\u002Fhostinger-global.min.css?ver=","hostinger\u002Fvue-frontend\u002Fdist\u002Fmain.js?ver=",{"cssClasses":346,"htmlComments":348,"htmlAttributes":349,"restEndpoints":350,"jsGlobals":352,"shortcodeOutput":354},[347],"hts-theme-settings",[],[],[351],"\u002Fwp-json\u002Fhostinger-tools-plugin\u002Fv1",[353],"hostinger_tools_data",[]]