[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuZu0qZlXPR_dCJOVNSX1zF27ARPAjcIbn7_v-2wFKr0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":131,"fingerprints":244},"image-copyright-manager","Image Copyright Manager","1.4.0","jespermhl","https:\u002F\u002Fprofiles.wordpress.org\u002Fjespermhl\u002F","\u003Cp>Image Copyright Manager adds a custom field for copyright information to WordPress media attachments. This allows you to store copyright details for your images and other media files, and display them on your website using shortcodes. Version 1.3.0 introduces advanced SEO fields for “Creator” and “Copyright Notice” which are automatically output as JSON-LD for Google Image SEO.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add copyright information to any media file in WordPress\u003C\u002Fli>\n\u003Cli>Automatic Metadata Extraction (EXIF, IPTC, XMP) from Lightroom and other software\u003C\u002Fli>\n\u003Cli>Complete Google Image SEO support (Creator, Copyright Notice, Credit Text, License URL, Acquire License URL)\u003C\u002Fli>\n\u003Cli>Automatic JSON-LD Schema.org output for Google Image SEO license badge\u003C\u002Fli>\n\u003Cli>Support for HTML links in copyright information\u003C\u002Fli>\n\u003Cli>Integrated into Media Modal and Edit Media screen\u003C\u002Fli>\n\u003Cli>Shortcode to display all media with copyright information\u003C\u002Fli>\n\u003Cli>Translation ready\u003C\u002Fli>\n\u003Cli>Secure and follows WordPress coding standards\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcode Usage\u003C\u002Fh4>\n\u003Cp>Display all media with copyright information:\u003C\u002Fp>\n\u003Cpre>[imagcoma]\u003C\u002Fpre>\n\u003Cp>Customize the display:\u003C\u002Fp>\n\u003Cpre>[imagcoma orderby=\"title\" order=\"ASC\"]\u003C\u002Fpre>\n\u003Cp>Customize heading and texts:\u003C\u002Fp>\n\u003Cpre>[imagcoma heading=\"Image Sources\" heading_tag=\"h2\"]\u003C\u002Fpre>\n\u003Cp>Fully customized example:\u003C\u002Fp>\n\u003Cpre>[imagcoma heading=\"Photo Credits\" heading_tag=\"h4\" no_sources_text=\"No images found\" copyright_label=\"Source:\" view_media_text=\"View Image\"]\u003C\u002Fpre>\n\u003Ch4>Shortcode Parameters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>orderby\u003C\u002Fcode> – Sort by date, title, etc. (default: date)\u003C\u002Fli>\n\u003Cli>\u003Ccode>order\u003C\u002Fcode> – ASC or DESC (default: DESC)\u003C\u002Fli>\n\u003Cli>\u003Ccode>heading\u003C\u002Fcode> – Custom heading text (default: “Image Sources”)\u003C\u002Fli>\n\u003Cli>\u003Ccode>heading_tag\u003C\u002Fcode> – HTML heading tag: h1, h2, h3, h4, h5, h6 (default: h3)\u003C\u002Fli>\n\u003Cli>\u003Ccode>no_sources_text\u003C\u002Fcode> – Text displayed when no sources are found (default: “No image sources with copyright information found.”)\u003C\u002Fli>\n\u003Cli>\u003Ccode>copyright_label\u003C\u002Fcode> – Label for copyright information (default: “Copyright:”)\u003C\u002Fli>\n\u003Cli>\u003Ccode>view_media_text\u003C\u002Fcode> – Text for the “View Media” link (default: “View Media”)\u003C\u002Fli>\n\u003C\u002Ful>\n","Add copyright information to WordPress media files with a custom field and display them using shortcodes. Now includes JSON-LD for Image SEO.",10,582,0,"2026-02-18T00:07:00.000Z","6.9.4","6.4","7.4",[19,20,21,22,23],"attachments","copyright","images","media","metadata","https:\u002F\u002Fmahelwebdesign.com\u002Fimage-copyright-manager\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-copyright-manager.1.4.0.zip",100,null,"2026-03-15T14:54:45.397Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,94,"2026-04-04T09:11:05.005Z",[36,56,76,97,114],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":26,"downloaded":44,"rating":26,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":52,"download_link":53,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":55},"image-sizes-panel","Image Sizes Panel","0.4","Ben Huson","https:\u002F\u002Fprofiles.wordpress.org\u002Fhusobj\u002F","\u003Cp>Display a meta box when viewing a media item in the admin that display all generated images sizes.\u003C\u002Fp>\n","Display a meta box when viewing a media item in the admin that display all generated images sizes.",5362,3,"2022-02-22T00:05:00.000Z","5.9.13","3.9","",[19,21,22,51],"sizes","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimage-sizes-panel\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-sizes-panel.0.4.zip",85,"2026-03-15T15:16:48.613Z",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":13,"num_ratings":13,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":74,"download_link":75,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":55},"wp-copyright","WP Copyright","2.0.4","zitrusblau","https:\u002F\u002Fprofiles.wordpress.org\u002Fzitrusblau\u002F","\u003Cp>This plugin can be used as a discrete but efficient tool for websites which have to make sure that copyright information for images is mandatory.\u003C\u002Fp>\n\u003Cp>How it works: It simply blurs all uploaded images. The original only gets restored when the copyright info is set.\u003Cbr \u002F>\nThe text field for the copyright info is provided as a form field in the attachment details view.\u003C\u002Fp>\n\u003Cp>A simple but elegant solution to enforce copyright discipline among authors and editors.\u003C\u002Fp>\n\u003Cp>This plugin is compatible with the plugin “Enhanced Media Library” (tested with version 2.4.5).\u003C\u002Fp>\n","Enforces copyright discipline by blurring all uploaded images as long as the associated copyright info is undefined.",60,3863,"2019-01-23T10:03:00.000Z","4.9.29","4.6","5.6",[71,20,21,72,73],"blur","media-manager","media-upload","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-copyright","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-copyright.2.0.5.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":13,"num_ratings":13,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":93,"download_link":94,"security_score":95,"vuln_count":31,"unpatched_count":31,"last_vuln_date":96,"fetched_at":55},"wp-tesseract","WP Tesseract","1.0.2","tattersoftware","https:\u002F\u002Fprofiles.wordpress.org\u002Ftattersoftware\u002F","\u003Cp>A plugin for extracting text from attached images using \u003Ca href=\"http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FOptical_character_recognition\" rel=\"nofollow ugc\">OCR\u003C\u002Fa> via \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftesseract-ocr\u002F\" rel=\"nofollow ugc\">Tesseract\u003C\u002Fa>.\u003Cbr \u002F>\nThis plugin adds a new post named for each image upload containing any recognized text characters within the file.\u003Cbr \u002F>\nThis text can then be edited for accuracy and used elsewhere on the site.\u003C\u002Fp>\n\u003Cp>The OCR plugin requires a supported version of PHP with the GD extension and the following command line utility:\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftesseract-ocr\" rel=\"nofollow ugc\">Tesseract\u003C\u002Fa> for the actual OCR\u003Cbr \u002F>\nThis utility must be manually installed on your server and executable by PHP.\u003Cbr \u002F>\n\u003Cstrong>This process, and consequently this plugin, is recommended only for advanced users.\u003C\u002Fstrong>\u003C\u002Fp>\n","A plugin for extracting text from attached images using OCR via Tesseract.",50,2828,"2020-08-13T13:04:00.000Z","5.5.0","2.9","7.2",[19,21,22,91,92],"ocr","optical-text-recognition","https:\u002F\u002Fgithub.com\u002Ftattersoftware\u002Fwp-tesseract","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-tesseract.1.0.4.zip",63,"2025-09-26 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":32,"downloaded":105,"rating":64,"num_ratings":106,"last_updated":107,"tested_up_to":47,"requires_at_least":108,"requires_php":49,"tags":109,"homepage":112,"download_link":113,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":55},"auto-delete-unattached-media","Auto Delete Unattached Media","1.0","Wong Siong Kiat","https:\u002F\u002Fprofiles.wordpress.org\u002Fwongsiongkiat\u002F","\u003Cp>Auto Delete Unattached Media is a plugin that will automatically delete unattached\u002Funused media\u002Fimages\u002Fattachments every minute. It will be supported and maintained until at least 2022, or as long as is necessary.\u003C\u002Fp>\n\u003Cp>Once activated, it will work silently in the background. There is no other configuration, the auto delete unattached media settings screens are enabled or disabled by either enabling or disabling this plugin. I recommend you deactivate this plugin when there are no unused media\u002Fimages\u002Fattachments left.\u003C\u002Fp>\n","Automatically delete unattached\u002Funused media\u002Fimages\u002Fattachments every minute silently in the background.",4408,2,"2022-02-03T01:58:00.000Z","4.9",[19,21,22,110,111],"unattached","unused","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fauto-delete-unattached-media\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-delete-unattached-media.1.0.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":11,"downloaded":122,"rating":13,"num_ratings":13,"last_updated":123,"tested_up_to":124,"requires_at_least":125,"requires_php":69,"tags":126,"homepage":129,"download_link":130,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":55},"air-download-attachments","AIR Download Attachments","1.0.1","Dan Zakirov","https:\u002F\u002Fprofiles.wordpress.org\u002Falexodiy\u002F","\u003Cp>The AIR Download Attachments plugin adds a “Download All Attachments” button to posts, allowing users to download all attached images as a zip archive.\u003C\u002Fp>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Adds a “Download All Attachments” button to the post content.\u003C\u002Fli>\n\u003Cli>Creates a zip archive containing all attached images.\u003C\u002Fli>\n\u003Cli>Automatically generates a temporary folder for storing the zip archive.\u003C\u002Fli>\n\u003Cli>Provides localized translations for the plugin.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>If you wish to help translate this plugin, you are most welcome!\u003Cbr \u002F>\nTo contribute, please visit \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fair-download-attachments\u002F\" rel=\"nofollow ugc\">translate.wordpress.org\u003C\u002Fa>\u003C\u002Fp>\n","The AIR Download Attachments plugin adds a \"Download All Attachments\" button to posts, allowing users to download all attached images as a z …",1043,"2023-11-26T10:41:00.000Z","6.4.8","4.8",[19,127,21,22,128],"download","zip","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fair-download-attachments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fair-download-attachments.1.0.1.zip",{"attackSurface":132,"codeSignals":219,"taintFlows":234,"riskAssessment":235,"analyzedAt":243},{"hooks":133,"ajaxHandlers":210,"restRoutes":211,"shortcodes":212,"cronEvents":218,"entryPointCount":31,"unprotectedCount":13},[134,140,146,150,154,158,162,166,169,174,178,182,186,189,193,196,200,204,208],{"type":135,"name":136,"callback":137,"file":138,"line":139},"action","plugins_loaded","imagcoma_init","image-copyright-manager.php",53,{"type":141,"name":142,"callback":143,"file":144,"line":145},"filter","manage_media_columns","add_copyright_column","includes\\class-imagcoma-admin-columns.php",19,{"type":135,"name":147,"callback":148,"priority":11,"file":144,"line":149},"manage_media_custom_column","display_copyright_column",20,{"type":141,"name":151,"callback":152,"file":144,"line":153},"manage_upload_sortable_columns","register_sortable_column",21,{"type":141,"name":155,"callback":156,"priority":11,"file":144,"line":157},"posts_join_paged","copyright_column_join",22,{"type":141,"name":159,"callback":160,"priority":11,"file":144,"line":161},"posts_orderby","copyright_column_orderby",23,{"type":135,"name":163,"callback":163,"file":164,"line":165},"init","includes\\class-imagcoma-core.php",29,{"type":135,"name":167,"callback":168,"file":164,"line":32},"admin_init","check_version",{"type":141,"name":170,"callback":171,"file":172,"line":173},"the_content","auto_display_copyright","includes\\class-imagcoma-display.php",46,{"type":135,"name":175,"callback":176,"file":172,"line":177},"wp_enqueue_scripts","enqueue_styles",47,{"type":141,"name":179,"callback":180,"priority":11,"file":172,"line":181},"wp_get_attachment_image_attributes","collect_rendered_image_id",48,{"type":135,"name":183,"callback":184,"priority":149,"file":172,"line":185},"wp_footer","output_json_ld",49,{"type":135,"name":187,"callback":188,"file":172,"line":84},"wp_head","output_single_attachment_json_ld",{"type":141,"name":190,"callback":191,"priority":11,"file":192,"line":157},"attachment_fields_to_edit","add_copyright_field_to_media_modal","includes\\class-imagcoma-meta-boxes.php",{"type":141,"name":194,"callback":195,"priority":11,"file":192,"line":161},"attachment_fields_to_save","save_copyright_data",{"type":135,"name":197,"callback":198,"file":199,"line":161},"add_attachment","extract_metadata_on_upload","includes\\class-imagcoma-metadata-extractor.php",{"type":141,"name":201,"callback":202,"priority":11,"file":199,"line":203},"wp_generate_attachment_metadata","extract_metadata_after_generation",24,{"type":135,"name":205,"callback":206,"file":207,"line":153},"admin_menu","add_settings_page","includes\\class-imagcoma-settings.php",{"type":135,"name":167,"callback":209,"file":207,"line":157},"init_settings",[],[],[213],{"tag":214,"callback":215,"file":216,"line":217},"imagcoma","render_shortcode","includes\\class-imagcoma-shortcodes.php",18,[],{"dangerousFunctions":220,"sqlUsage":221,"outputEscaping":224,"fileOperations":106,"externalRequests":13,"nonceChecks":13,"capabilityChecks":31,"bundledLibraries":233},[],{"prepared":222,"raw":13,"locations":223},4,[],{"escaped":203,"rawEcho":45,"locations":225},[226,229,231],{"file":172,"line":227,"context":228},204,"raw output",{"file":172,"line":230,"context":228},225,{"file":207,"line":232,"context":228},114,[],[],{"summary":236,"deductions":237},"The \"image-copyright-manager\" v1.4.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any known vulnerabilities, coupled with the secure handling of SQL queries using prepared statements and a high percentage of properly escaped output, indicates good development practices. The plugin also avoids external HTTP requests and does not bundle libraries, which reduces potential attack vectors.  \n\nHowever, there are a couple of areas that warrant attention. The plugin lacks nonce checks, which is a critical security mechanism for preventing Cross-Site Request Forgery (CSRF) attacks, especially on any form submissions or actions initiated by the plugin. Furthermore, while the attack surface is small with only one shortcode and no unprotected entry points identified in this analysis, the absence of capability checks on this shortcode means any authenticated user could potentially trigger its functionality, regardless of their role. The lack of any recorded vulnerability history is positive, but it doesn't negate the need for robust security measures like nonce and proper capability checks.",[238,240],{"reason":239,"points":11},"Missing nonce checks",{"reason":241,"points":242},"Missing capability checks on shortcode",7,"2026-03-16T23:34:01.650Z",{"wat":245,"direct":254},{"assetPaths":246,"generatorPatterns":249,"scriptPaths":250,"versionParams":251},[247,248],"\u002Fwp-content\u002Fplugins\u002Fimage-copyright-manager\u002Fassets\u002Fcss\u002Fimagcoma-frontend.css","\u002Fwp-content\u002Fplugins\u002Fimage-copyright-manager\u002Fassets\u002Fjs\u002Fimagcoma-frontend.js",[],[248],[252,253],"image-copyright-manager\u002Fassets\u002Fcss\u002Fimagcoma-frontend.css?ver=","image-copyright-manager\u002Fassets\u002Fjs\u002Fimagcoma-frontend.js?ver=",{"cssClasses":255,"htmlComments":257,"htmlAttributes":258,"restEndpoints":260,"jsGlobals":262,"shortcodeOutput":264},[256],"imagcoma-copyright-display",[],[259],"data-imagcoma-attachment-id",[261],"\u002Fwp-json\u002Fimagcoma\u002Fv1\u002Fattachment\u002F",[263],"imagcoma_frontend_params",[265],"[imagcoma_display_copyright"]