[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjXYNBI1DJW8Emg8MzdwfZskcQdwbKCLr4vAQa6nCVQo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":144,"fingerprints":355},"htaccess-server-info-server-status","Apache Status & Info","3.3.0","Pierre Lannoy","https:\u002F\u002Fprofiles.wordpress.org\u002Fpierrelannoy\u002F","\u003Cp>When you want to use \u003Ca href=\"https:\u002F\u002Fhttpd.apache.org\u002Fdocs\u002F2.4\u002Fen\u002Fmod\u002Fmod_info.html\" rel=\"nofollow ugc\">server-info\u003C\u002Fa> and\u002For \u003Ca href=\"https:\u002F\u002Fhttpd.apache.org\u002Fdocs\u002Fcurrent\u002Fen\u002Fmod\u002Fmod_status.html\" rel=\"nofollow ugc\">server-status\u003C\u002Fa> with Apache server, you must modify (right in your \u003Ccode>.htaccess\u003C\u002Fcode> file) the rewrite rules generated by WordPress. And you must do it each time WordPress modify and regenerates the rules.\u003Cbr \u002F>\n\u003Cstrong>Apache Status & Info\u003C\u002Fstrong> do it for you, without you having to intervene. Just activate it and that’s it!\u003C\u002Fp>\n\u003Cp>In addition to this, \u003Cstrong>Apache Status & Info\u003C\u002Fstrong> allows you to monitor your Apache configuration and settings, right in your WordPress admin (see screenshots for example).\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Apache Status & Info\u003C\u002Fstrong> is part of \u003Ca href=\"https:\u002F\u002Fperfops.one\u002F\" rel=\"nofollow ugc\">PerfOps One\u003C\u002Fa>, a suite of free and open source WordPress plugins dedicated to observability and operations performance.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Apache Status & Info\u003C\u002Fstrong> is a free and open source plugin for WordPress. It integrates many other free and open source works (as-is or modified). Please, see ‘about’ tab in the plugin settings to see the details.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>This plugin is free and provided without warranty of any kind. Use it at your own risk, I’m not responsible for any improper use of this plugin, nor for any damage it might cause to your site. Always backup all your data before installing a new plugin.\u003C\u002Fp>\n\u003Cp>Anyway, I’ll be glad to help you if you encounter issues when using this plugin. Just use the support section of this plugin page.\u003C\u002Fp>\n\u003Ch4>Privacy\u003C\u002Fh4>\n\u003Cp>This plugin, as any piece of software, is neither compliant nor non-compliant with privacy laws and regulations. It is your responsibility to use it with respect for the personal data of your users and applicable laws.\u003C\u002Fp>\n\u003Cp>This plugin doesn’t set any cookie in the user’s browser.\u003C\u002Fp>\n\u003Cp>This plugin doesn’t handle personally identifiable information (PII).\u003C\u002Fp>\n\u003Ch4>Donation\u003C\u002Fh4>\n\u003Cp>If you like this plugin or find it useful and want to thank me for the work done, please consider making a donation to \u003Ca href=\"https:\u002F\u002Fwww.laquadrature.net\u002Fen\" rel=\"nofollow ugc\">La Quadrature Du Net\u003C\u002Fa> or the \u003Ca href=\"https:\u002F\u002Fwww.eff.org\u002F\" rel=\"nofollow ugc\">Electronic Frontier Foundation\u003C\u002Fa> which are advocacy groups defending the rights and freedoms of citizens on the Internet. By supporting them, you help the daily actions they perform to defend our fundamental freedoms!\u003C\u002Fp>\n","Apache server-info and server-status monitoring right in your WordPress admin.",100,12681,3,"2025-11-22T11:56:00.000Z","6.9.4","6.2","8.1",[19,20,21,22,23],"apache","htaccess","server-info","server-status","stackdriver","https:\u002F\u002Fperfops.one\u002Fhtaccess-server-info-server-status","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhtaccess-server-info-server-status.3.3.0.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"pierrelannoy",12,15110,99,65,87,"2026-04-03T19:23:09.250Z",[39,61,84,105,125],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":57,"download_link":58,"security_score":34,"vuln_count":59,"unpatched_count":26,"last_vuln_date":60,"fetched_at":28},"phpinfo-wp","phpinfo() WP","6.1","Exeebit","https:\u002F\u002Fprofiles.wordpress.org\u002Fexeebit\u002F","\u003Cp>A simple wordpress plugin to look up information about server and PHP’s configuration and manage server configurations.\u003C\u002Fp>\n\u003Cp>This plugin gives a large amount of information about the current state of PHP. This includes information about PHP compilation options and extensions, the PHP version, server information and environment (if compiled as a module), the PHP environment, OS version information, paths, master and local values of configuration options, HTTP headers. For making information concise, PHP license has been removed.\u003C\u002Fp>\n\u003Cp>You can see what extensions are enabled in your server through this plugin. Except these, you can edit or set Server configuration values like max_file_uploads, upload_max_filesize, etc. You can edit or set any directive values through this plugin easily.\u003C\u002Fp>\n\u003Ch3>Updates\u003C\u002Fh3>\n\u003Cp>Added an option to look up some basic information like root directory size, a number of activated and installed plugin, media directory size etc.\u003C\u002Fp>\n","A simple plugin to look up server info and manage server configuration of wordpress site",3000,43302,84,5,"2025-05-03T17:53:00.000Z","6.8.5","4.7","5.0",[19,20,56,21],"phpinfo","http:\u002F\u002Fexeebit.com\u002Fwordpress-plugins\u002Fphpinfo-wp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphpinfo-wp.zip",2,"2024-06-19 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":15,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":80,"download_link":81,"security_score":82,"vuln_count":50,"unpatched_count":26,"last_vuln_date":83,"fetched_at":28},"redirection","Redirection","5.7.5","John Godley","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnny5\u002F","\u003Cp>Redirection is the most popular redirect manager for WordPress. With it you can easily manage 301 redirections, keep track of 404 errors, and generally tidy up any loose ends your site may have. This can help reduce errors and improve your site ranking.\u003C\u002Fp>\n\u003Cp>Redirection is designed to be used on sites with a few redirects to sites with thousands of redirects.\u003C\u002Fp>\n\u003Cp>It has been a WordPress plugin for over 10 years and has been recommended countless times. And it’s free!\u003C\u002Fp>\n\u003Cp>Full documentation can be found at \u003Ca href=\"https:\u002F\u002Fredirection.me\" rel=\"nofollow ugc\">https:\u002F\u002Fredirection.me\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Redirection is compatible with PHP from 7.4 to 8.4.\u003C\u002Fp>\n\u003Ch4>Redirect manager\u003C\u002Fh4>\n\u003Cp>Create and manage redirects quickly and easily without needing Apache or Nginx knowledge. If your WordPress supports permalinks then you can use Redirection to redirect any URL.\u003C\u002Fp>\n\u003Cp>There is full support for regular expressions so you can create redirect patterns to match any number of URLs. You can match query parameters and even pass them through to the target URL.\u003C\u002Fp>\n\u003Cp>The plugin can also be configured to monitor when post or page permalinks are changed and automatically create a redirect to the new URL.\u003C\u002Fp>\n\u003Ch4>Conditional redirects\u003C\u002Fh4>\n\u003Cp>In addition to straightforward URL matching you can redirect based on other conditions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login status – redirect only if the user is logged in or logged out\u003C\u002Fli>\n\u003Cli>WordPress capability – redirect if the user is able to perform a certain capability\u003C\u002Fli>\n\u003Cli>Browser – redirect if the user is using a certain browser\u003C\u002Fli>\n\u003Cli>Referrer – redirect if the user visited the link from another page\u003C\u002Fli>\n\u003Cli>Cookies – redirect if a particular cookie is set\u003C\u002Fli>\n\u003Cli>HTTP headers – redirect based on a HTTP header\u003C\u002Fli>\n\u003Cli>Custom filter – redirect based on your own WordPress filter\u003C\u002Fli>\n\u003Cli>IP address – redirect if the client IP address matches\u003C\u002Fli>\n\u003Cli>Server – redirect another domain if also hosted on this server\u003C\u002Fli>\n\u003Cli>Page type – redirect if the current page is a 404\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Full logging\u003C\u002Fh4>\n\u003Cp>A configurable logging option allows to view all redirects occurring on your site, including information about the visitor, the browser used, and the referrer. A ‘hit’ count is maintained for each redirect so you can see if a URL is being used.\u003C\u002Fp>\n\u003Cp>Logs can be exported for external viewing, and can be searched and filtered for more detailed investigation.\u003C\u002Fp>\n\u003Cp>Display geographic information about an IP address, as well as a full user agent information, to try and understand who the visitor is.\u003C\u002Fp>\n\u003Cp>You are able to disable or reduce IP collection to meet the legal requirements of your geographic region, and can change the amount of information captured from the bare minimum to HTTP headers.\u003C\u002Fp>\n\u003Cp>You can also log any redirect happening on your site, including those performed outside of Redirection.\u003C\u002Fp>\n\u003Ch4>Add HTTP headers\u003C\u002Fh4>\n\u003Cp>HTTP headers can be added to redirects or your entire site that help reduce the impact of redirects or help increase security. You can also add your own custom headers.\u003C\u002Fp>\n\u003Ch4>Track 404 errors\u003C\u002Fh4>\n\u003Cp>Redirection will keep track of all 404 errors that occur on your site, allowing you to track down and fix problems.\u003C\u002Fp>\n\u003Cp>Errors can be grouped to show where you should focus your attention, and can be redirected in bulk.\u003C\u002Fp>\n\u003Ch4>Query parameter handling\u003C\u002Fh4>\n\u003Cp>You can match query parameters exactly, ignore them, and even pass them through to your target.\u003C\u002Fp>\n\u003Ch4>Migrate Permalinks\u003C\u002Fh4>\n\u003Cp>Changed your permalink structure? You can migrate old permalinks simply by entering the old permalink structure. Multiple migrations are supported.\u003C\u002Fp>\n\u003Ch4>Apache & Nginx support\u003C\u002Fh4>\n\u003Cp>By default Redirection will manage all redirects using WordPress. However you can configure it so redirects are automatically saved to a .htaccess file and handled by Apache itself.\u003C\u002Fp>\n\u003Cp>If you use Nginx then you can export redirects to an Nginx rewrite rules file.\u003C\u002Fp>\n\u003Ch4>Fine-grained permissions\u003C\u002Fh4>\n\u003Cp>Fine-grained permissions are available so you can customise the plugin for different users. This makes it particularly suitable for client sites where you may want to prevent certain actions, and remove functionality.\u003C\u002Fp>\n\u003Ch4>Import & Export\u003C\u002Fh4>\n\u003Cp>The plugin has a fully-featured import and export system and you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Import and export to Apache .htaccess\u003C\u002Fli>\n\u003Cli>Export to Nginx rewrite rules\u003C\u002Fli>\n\u003Cli>Copy redirects between sites using JSON\u003C\u002Fli>\n\u003Cli>Import and export to CSV for viewing in a spreadsheet\u003C\u002Fli>\n\u003Cli>Use WP CLI to automate import and export\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also import from the following plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple 301 Redirects\u003C\u002Fli>\n\u003Cli>SEO Redirection\u003C\u002Fli>\n\u003Cli>Safe Redirect Manager\u003C\u002Fli>\n\u003Cli>Rank Math\u003C\u002Fli>\n\u003Cli>WordPress old slug redirects\u003C\u002Fli>\n\u003Cli>Quick Post\u002FPages redirects\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Search Regex compatible\u003C\u002Fh4>\n\u003Cp>Redirection is compatible with \u003Ca href=\"https:\u002F\u002Fsearchregex.com\" rel=\"nofollow ugc\">Search Regex\u003C\u002Fa>, allowing you to bulk update your redirects.\u003C\u002Fp>\n\u003Ch4>Wait, it’s free?\u003C\u002Fh4>\n\u003Cp>Yes, it’s really free. There’s no premium version and no need to pay money to get access to features. This is a dedicated redirect management plugin.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Please submit bugs, patches, and feature requests to:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjohngodley\u002Fredirection\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fjohngodley\u002Fredirection\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Please submit translations to:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fredirection\" rel=\"nofollow ugc\">https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fredirection\u003C\u002Fa>\u003C\u002Fp>\n","Manage 301 redirects, track 404 errors, and improve your site. No knowledge of Apache or Nginx required.",2000000,71280127,88,689,"2026-03-01T07:42:00.000Z","6.5","7.4",[77,78,19,20,79],"301","404","redirect","https:\u002F\u002Fredirection.me\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fredirection.5.7.5.zip",97,"2018-11-14 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":50,"last_updated":95,"tested_up_to":96,"requires_at_least":97,"requires_php":98,"tags":99,"homepage":98,"download_link":103,"security_score":104,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"spiderblocker","Spider Blocker","1.3.7","Niteo","https:\u002F\u002Fprofiles.wordpress.org\u002Fniteoweb\u002F","\u003Cp>Spider Blocker blocks most common bots that consume bandwidth and slow down your blog.\u003Cbr \u002F>\nIt accomplishes this by using .htaccess file to minimize impact on your website. It’s hidden from external scanners.\u003C\u002Fp>\n\u003Cp>Spider Blocker is specifically designed for Apache servers with mod_rewrite enabled, allowing you to effortlessly safeguard your website from the most prevalent bots that hamper performance and drain resources.\u003C\u002Fp>\n\u003Ch4>Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Block Unlimited bots from viewing your site\u003C\u002Fli>\n\u003Cli>Easy Export\u002FImport rules (comes with most common list of bots)\u003C\u002Fli>\n\u003Cli>Zero Footprint\u003C\u002Fli>\n\u003C\u002Ful>\n","SpiderBlocker will block most common bots that consume bandwidth and slow down your blog.",20000,612410,80,"2024-05-07T13:39:00.000Z","6.5.8","4.0","",[19,100,101,20,102],"block","bots","seo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspiderblocker.1.3.7.zip",92,{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":71,"num_ratings":115,"last_updated":116,"tested_up_to":52,"requires_at_least":117,"requires_php":118,"tags":119,"homepage":123,"download_link":124,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"custom-php-settings","Custom PHP Settings","2.4.1","cyclonecode","https:\u002F\u002Fprofiles.wordpress.org\u002Fcyclonecode\u002F","\u003Cp>This plugin can be used to customize php settings for you WordPress installation.\u003C\u002Fp>\n\u003Cp>The plugin will modify either the \u003Cstrong>.htaccess\u003C\u002Fstrong> file or \u003Cstrong>.user.ini\u003C\u002Fstrong> file in order to change the current php settings directly from within the settings page.\u003C\u002Fp>\n\u003Cp>Since the configuration file needs to be modified this file \u003Cstrong>must\u003C\u002Fstrong> be writable for this plugin to work as expected.\u003C\u002Fp>\n\u003Ch4>Apache module\u003C\u002Fh4>\n\u003Cp>When PHP is running as an Apache module the \u003Cstrong>.htaccess\u003C\u002Fstrong> file will be used to set customized settings; make sure so that this file \u003Cstrong>exists\u003C\u002Fstrong> and is \u003Cstrong>writable\u003C\u002Fstrong> by the webserver.\u003C\u002Fp>\n\u003Ch4>CGI\u002FFast-CGI\u003C\u002Fh4>\n\u003Cp>If instead PHP is running in CGI\u002FFast-CGI mode then a custom INI file will be used. The name of this file depends on the value of \u003Cstrong>user_ini.filename\u003C\u002Fstrong> in the php configuration, by default it is \u003Cstrong>.user.ini\u003C\u002Fstrong>.\u003Cbr \u002F>\nYou can check the name of you custom INI file in the \u003Cstrong>PHP Information\u003C\u002Fstrong> table. The custom INI file should be placed under the root folder and \u003Cstrong>most\u003C\u002Fstrong> be \u003Cstrong>writable\u003C\u002Fstrong> by the webserver.\u003C\u002Fp>\n\u003Cp>Notice that there is also a \u003Cstrong>User INI file cache TTL\u003C\u002Fstrong> value in the information table, this value tells how long the custom INI file will be cached before it gets reloaded.\u003Cbr \u002F>\nFor instance, if this value is set to 300 then any changes to your custom INI file will not be reflected for up to 5 minutes. The name for this setting in the php configuration is \u003Cstrong>user_ini.cache_ttl\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>One important thing is to make sure that your \u003Ccode>.user.ini\u003C\u002Fcode> file is blocked by your webserver. If you are running NGINX this can be done by adding:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>location ~ \u002F\\.user\\.ini {\n  deny all;\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>to your server configuration. The same thing using Apache is done by adding the following to the configuration if not already done:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003CFiles .user.ini>\norder allow,deny\ndeny from all\n\u003C\u002FFiles>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Available Settings\u003C\u002Fh4>\n\u003Cp>The settings table will display all non-system php settings that can be customized by the plugin. All modified settings will be displayed in red in this table.\u003C\u002Fp>\n\u003Cp>Some settings might be displayed in red because they are changed somewhere else, perhaps through a customized php.ini file, by WordPress itself, a plugin or in some other way.\u003Cbr \u002F>\nFor instance if you have enabled \u003Cstrong>WP_DEBUG\u003C\u002Fstrong> in your \u003Cstrong>wp-config.php\u003C\u002Fstrong> file the \u003Cstrong>error_reporting\u003C\u002Fstrong> setting will turn red.\u003C\u002Fp>\n\u003Cp>If you have questions or perhaps some idea on things that should be added you can also try \u003Ca href=\"https:\u002F\u002Fjoin.slack.com\u002Ft\u002Fcyclonecode\u002Fshared_invite\u002Fzt-6bdtbdab-n9QaMLM~exHP19zFDPN~AQ\" rel=\"nofollow ugc\">slack\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Multiple Configurations\u003C\u002Fh4>\n\u003Cp>The premium version adds support for creating multiple named configurations which all can hold their own custom PHP settings.\u003Cbr \u002F>\nYou will then be able to easily switch between the different configurations entries applying them to you configuration file.\u003C\u002Fp>\n\u003Ch4>Environment Variables\u003C\u002Fh4>\n\u003Cp>In the premium version, when running PHP as an apache module and using an \u003Cstrong>.htaccess\u003C\u002Fstrong> file for configuration, you are able\u003Cbr \u002F>\nto add custom environment variables. These will be accessible by using the super global \u003Cstrong>$_SERVER\u003C\u002Fstrong> array.\u003Cbr \u002F>\nIn order for this to work you will need to have the mod_env module enabled in your apache setup.\u003C\u002Fp>\n\u003Ch4>Resources\u003C\u002Fh4>\n\u003Cp>A complete list of settings that can be modified can be found here: \u003Ca href=\"http:\u002F\u002Fphp.net\u002Fmanual\u002Fen\u002Fini.list.php\" rel=\"nofollow ugc\">List of php.ini directives\u003C\u002Fa>\u003Cbr \u002F>\nNotice that directives marked as \u003Ccode>PHP_INI_SYSTEM\u003C\u002Fcode> can not be modified.\u003C\u002Fp>\n\u003Ch3>Warning\u003C\u002Fh3>\n\u003Cp>Make sure you know how a value should be configured and what different settings do before changing anything.\u003Cbr \u002F>\nThis is important since some settings might render your page inaccessible, depending on what value you are using.\u003Cbr \u002F>\nA good example of this is the \u003Cstrong>variables_order\u003C\u002Fstrong> configuration:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Sets the order of the EGPCS (Environment, Get, Post, Cookie, and Server) variable parsing. For example, if variables_order is set to “SP” then PHP will create the superglobals $_SERVER and $_POST, but not create $_ENV, $_GET, and $_COOKIE. Setting to “” means no superglobals will be set.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>If this value would be configured to \u003Cstrong>EPCS\u003C\u002Fstrong> then no \u003Cstrong>$_GET\u003C\u002Fstrong> superglobal would be set which would make your page inaccessible.\u003C\u002Fp>\n\u003Cp>Another example is setting the \u003Cstrong>post_max_size\u003C\u002Fstrong> to a very low value so that no form data is sent to the server, which in turn would result in that form data is never saved.\u003C\u002Fp>\n\u003Cp>If you by mistake changed some value and your site is now inaccessible you could simply manually remove everything from between the plugin markers in your \u003Cstrong>.htaccess\u003C\u002Fstrong> file:\u003C\u002Fp>\n\u003Cpre>\u003Ccode># BEGIN CUSTOM PHP SETTINGS PRO\nphp_value variables_order EPCS  \u003C-- Remove\n# END CUSTOM PHP SETTINGS PRO\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If you are running PHP in CGI\u002FFast-CGI mode then instead remove everything between the plugins markers in your \u003Cstrong>.user.ini\u003C\u002Fstrong> file:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>; BEGIN CUSTOM PHP SETTINGS\nphp_value variables_order EPCS  \u003C-- Remove\n; END CUSTOM PHP SETTINGS\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>If you run into any trouble, don’t hesitate to add a new topic under the support section:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcustom-php-settings\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcustom-php-settings\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can also try contacting me on \u003Ca href=\"https:\u002F\u002Fjoin.slack.com\u002Ft\u002Fcyclonecode\u002Fshared_invite\u002Fzt-6bdtbdab-n9QaMLM~exHP19zFDPN~AQ\" rel=\"nofollow ugc\">slack\u003C\u002Fa>.\u003C\u002Fp>\n","This plugin makes it possible to override php settings.",10000,407953,15,"2025-11-20T20:06:00.000Z","4.1.0","5.6",[19,120,20,121,122],"apache2","php","settings","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-php-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-php-settings.2.4.1.zip",{"slug":21,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":47,"downloaded":132,"rating":133,"num_ratings":134,"last_updated":135,"tested_up_to":52,"requires_at_least":136,"requires_php":137,"tags":138,"homepage":142,"download_link":143,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"Server Info","0.0.1","Usman Ali Qureshi","https:\u002F\u002Fprofiles.wordpress.org\u002Fusmanaliqureshi\u002F","\u003Cp>This plugin will show you useful information about the hosting server you are using e.g. PHP version, MySQL version, Server OS, Server Protocol, Server IP and other useful information. You can use the information displayed by this plugin to update any settings which is crucial for your website performance and other aspects.\u003C\u002Fp>\n\u003Cp>You will see the information about:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PHP Version\u003C\u002Fli>\n\u003Cli>Operating System\u003C\u002Fli>\n\u003Cli>Server IP\u003C\u002Fli>\n\u003Cli>Server Hostname\u003C\u002Fli>\n\u003Cli>MySQL Version\u003C\u002Fli>\n\u003Cli>System Uptime\u003C\u002Fli>\n\u003Cli>Active Theme\u003C\u002Fli>\n\u003Cli>Active Plugins\u003C\u002Fli>\n\u003Cli>Database Name\u003C\u002Fli>\n\u003Cli>Database Username\u003C\u002Fli>\n\u003Cli>Database Hostname\u003C\u002Fli>\n\u003Cli>Database Charset\u003C\u002Fli>\n\u003Cli>Database Collate\u003C\u002Fli>\n\u003Cli>WordPress Debugging (Enabled\u002FDisabled)\u003C\u002Fli>\n\u003Cli>WordPress Memory Limit\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please rate the Plugin if you find it useful, thanks.\u003C\u002Fp>\n","This plugin will show you very useful information about your hosting server such as PHP version, Server OS, Server IP etc.",56532,72,10,"2025-05-19T05:40:00.000Z","5.2","7.3",[139,140,21,22,141],"admin","dashboard","widget","https:\u002F\u002Fgithub.com\u002Fusmanaliqureshi\u002Fserver-info","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fserver-info.zip",{"attackSurface":145,"codeSignals":271,"taintFlows":346,"riskAssessment":347,"analyzedAt":354},{"hooks":146,"ajaxHandlers":238,"restRoutes":251,"shortcodes":252,"cronEvents":269,"entryPointCount":270,"unprotectedCount":59},[147,152,157,162,165,167,170,173,175,177,179,181,184,186,189,192,194,198,202,206,210,214,219,222,225,228,231,233],{"type":148,"name":149,"callback":149,"file":150,"line":151},"filter","init_perfopsone_admin_menus","admin\\class-hsiss-admin.php",177,{"type":148,"name":153,"callback":154,"priority":134,"file":155,"line":156},"mod_rewrite_rules","modify_rules","includes\\features\\class-rules.php",44,{"type":148,"name":158,"callback":159,"file":160,"line":161},"perfopsone_plugin_info","anonymous","includes\\plugin\\class-core.php",71,{"type":163,"name":164,"callback":159,"file":160,"line":133},"action","init",{"type":163,"name":164,"callback":159,"file":160,"line":166},73,{"type":163,"name":168,"callback":159,"file":160,"line":169},"wp_head",74,{"type":163,"name":171,"callback":159,"file":160,"line":172},"admin_enqueue_scripts",90,{"type":163,"name":171,"callback":159,"file":160,"line":174},91,{"type":163,"name":176,"callback":159,"file":160,"line":104},"admin_menu",{"type":163,"name":176,"callback":159,"file":160,"line":178},93,{"type":163,"name":176,"callback":159,"file":160,"line":180},94,{"type":163,"name":182,"callback":159,"file":160,"line":183},"admin_init",95,{"type":148,"name":185,"callback":159,"file":160,"line":82},"plugin_row_meta",{"type":163,"name":187,"callback":159,"file":160,"line":188},"admin_notices",98,{"type":163,"name":190,"callback":159,"file":160,"line":191},"wp_enqueue_scripts",112,{"type":163,"name":190,"callback":159,"file":160,"line":193},113,{"type":148,"name":195,"callback":196,"file":197,"line":35},"plugins_api","plugin_info","includes\\plugin\\class-updater.php",{"type":148,"name":199,"callback":200,"file":197,"line":201},"site_transient_update_plugins","info_update",66,{"type":163,"name":203,"callback":204,"priority":134,"file":197,"line":205},"upgrader_process_complete","info_reset",67,{"type":148,"name":207,"callback":208,"file":197,"line":209},"clean_url","filter_logo",68,{"type":148,"name":211,"callback":211,"file":212,"line":213},"perfopsone_apcu_info","includes\\system\\class-apcu.php",51,{"type":148,"name":215,"callback":216,"file":217,"line":218},"site_status_tests","perfopsone_test_objectcache","includes\\system\\class-sitehealth.php",77,{"type":148,"name":215,"callback":220,"file":217,"line":221},"perfopsone_test_opcache",78,{"type":148,"name":215,"callback":223,"file":217,"line":224},"perfopsone_test_shmop",79,{"type":148,"name":215,"callback":226,"file":217,"line":227},"perfopsone_test_i18n",81,{"type":148,"name":229,"callback":230,"file":217,"line":174},"debug_information","perfopsone_info",{"type":148,"name":229,"callback":196,"file":217,"line":232},109,{"type":163,"name":234,"callback":235,"file":236,"line":237},"admin_bar_menu","finalize","perfopsone\\class-adminbar.php",54,[239,242,245],{"action":240,"nopriv":241,"callback":159,"hasNonce":241,"hasCapCheck":241,"file":160,"line":34},"hide_hsiss_nag",false,{"action":243,"nopriv":241,"callback":244,"hasNonce":241,"hasCapCheck":241,"file":160,"line":11},"hsiss_get_status","Hsiss\\Plugin\\Feature\\StatusInsights",{"action":246,"nopriv":241,"callback":247,"hasNonce":248,"hasCapCheck":248,"file":249,"line":250},"poo_switch_autoupdate","poo_switch_autoupdate_callback",true,"perfopsone\\functions.php",32,[],[253,258,262,266],{"tag":254,"callback":255,"file":256,"line":257},"hsiss-wpcli","sc_get_helpfile","includes\\features\\class-wpcli.php",40,{"tag":259,"callback":260,"file":160,"line":261},"hsiss-changelog","sc_get_changelog",75,{"tag":263,"callback":264,"file":160,"line":265},"hsiss-libraries","sc_get_list",76,{"tag":267,"callback":268,"file":160,"line":218},"hsiss-statistics","sc_get_raw",[],7,{"dangerousFunctions":272,"sqlUsage":273,"outputEscaping":290,"fileOperations":13,"externalRequests":270,"nonceChecks":344,"capabilityChecks":59,"bundledLibraries":345},[],{"prepared":274,"raw":275,"locations":276},11,4,[277,281,283,287],{"file":278,"line":279,"context":280},"includes\\system\\class-cache.php",346,"$wpdb->get_col() with variable interpolation",{"file":278,"line":282,"context":280},349,{"file":284,"line":285,"context":286},"includes\\system\\class-database.php",241,"$wpdb->get_var() with variable interpolation",{"file":288,"line":289,"context":280},"includes\\system\\class-option.php",217,{"escaped":291,"rawEcho":292,"locations":293},33,24,[294,298,301,303,305,306,308,309,311,312,314,317,319,320,322,324,326,328,330,332,334,336,339,342],{"file":295,"line":296,"context":297},"admin\\partials\\htaccess-server-info-server-status-admin-insights-info.php",21,"raw output",{"file":299,"line":300,"context":297},"admin\\partials\\htaccess-server-info-server-status-admin-insights-status.php",36,{"file":299,"line":302,"context":297},39,{"file":299,"line":304,"context":297},43,{"file":299,"line":156,"context":297},{"file":307,"line":250,"context":297},"admin\\partials\\htaccess-server-info-server-status-admin-settings-about.php",{"file":307,"line":291,"context":297},{"file":307,"line":310,"context":297},34,{"file":307,"line":302,"context":297},{"file":307,"line":313,"context":297},42,{"file":315,"line":316,"context":297},"admin\\partials\\htaccess-server-info-server-status-admin-settings-main.php",82,{"file":318,"line":291,"context":297},"admin\\partials\\htaccess-server-info-server-status-admin-settings-options.php",{"file":318,"line":291,"context":297},{"file":321,"line":161,"context":297},"includes\\system\\class-form.php",{"file":321,"line":323,"context":297},106,{"file":321,"line":325,"context":297},136,{"file":321,"line":327,"context":297},170,{"file":321,"line":329,"context":297},209,{"file":321,"line":331,"context":297},251,{"file":321,"line":333,"context":297},294,{"file":321,"line":335,"context":297},316,{"file":337,"line":338,"context":297},"includes\\system\\class-nag.php",127,{"file":340,"line":341,"context":297},"perfopsone\\class-menus.php",471,{"file":340,"line":343,"context":297},524,6,[],[],{"summary":348,"deductions":349},"The 'htaccess-server-info-server-status' plugin v3.3.0 exhibits a mixed security posture. On the positive side, it has no recorded historical vulnerabilities and its code analysis shows no critical findings like dangerous functions or unsanitized taint flows. The majority of SQL queries use prepared statements, and there are a reasonable number of nonce and capability checks in place. However, there are notable areas of concern. The plugin exposes two AJAX handlers without authentication checks, which presents a significant attack vector. While the static analysis doesn't reveal specific exploitable flaws in these handlers, their unprotected nature is a considerable risk. Furthermore, less than 60% of output is properly escaped, indicating a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is not sufficiently sanitized before display. The plugin also performs several file operations and external HTTP requests, which, while not inherently insecure, can become vulnerabilities if not handled with extreme care regarding input validation and error handling. In conclusion, while the plugin benefits from a clean vulnerability history, the presence of unprotected AJAX endpoints and inadequate output escaping are significant weaknesses that require attention.",[350,352],{"reason":351,"points":134},"Unprotected AJAX handlers",{"reason":353,"points":50},"Insufficient output escaping","2026-03-16T20:58:58.922Z",{"wat":356,"direct":370},{"assetPaths":357,"generatorPatterns":366,"scriptPaths":367,"versionParams":368},[358,359,360,361,362,363,364,365],"\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fcss\u002Fswitchery.min.css","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fcss\u002Ftooltip.min.css","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fjs\u002Fswitchery.min.js","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fjs\u002Flivesstatus.js","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fjs\u002Fmain.js","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fjs\u002Flivesstatus.js?ver=1000","\u002Fwp-content\u002Fplugins\u002Fhtaccess-server-info-server-status\u002Fassets\u002Fjs\u002Fmain.js?ver=1000",[],[361,362,363],[369],"?ver=1000",{"cssClasses":371,"htmlComments":377,"htmlAttributes":378,"restEndpoints":380,"jsGlobals":381,"shortcodeOutput":383},[372,373,374,375,376],"hsiss-dashboard","hsiss-row","hsiss-box","hsiss-box-40-60-line","hsiss-about-logo",[],[379],"data-hsiss-nonce",[],[382],"livestatus",[384,385],"[hsiss-libraries]","[hsiss-changelog]"]