[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$foAU4NqxqtDM1d3XAEFktKTO3GwJCcUpQo29mEm7ff8U":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":142,"fingerprints":596},"issues-tracker","Issues Tracker","1.16","Oleksandr Lysyi","https:\u002F\u002Fprofiles.wordpress.org\u002Flysyiweb\u002F","\u003Cp>Issues Tracker allows you view and search WordPress logs, receive security advice, track 404 errors, and view your server settings.\u003C\u002Fp>\n\u003Cp>We’ve designed the Issues Tracker plugin with accessibility and simplicity in mind. Say goodbye to the hassle of reading and searching through the debug.log file on your server. With the Issues Tracker, you can access and search logs directly within your CMS, making them easily readable and searchable.\u003C\u002Fp>\n\u003Cp>Additionally, our plugin provides email notifications for various error events and covers more issues than a typical WP health checker.\u003C\u002Fp>\n\u003Cp>Enhance your website’s security and performance with these key features:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Debug Log Viewer\u003C\u002Fstrong>\u003Cbr \u002F>\nEffortlessly view notices, warnings, and errors from the WordPress debug.log file in a user-friendly table format. Utilize advanced search options (by error type, line, and file) and pagination for quick and convenient log management.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress 404 Errors\u003C\u002Fstrong>\u003Cbr \u002F>\nIdentify and list all 404 (page not found) errors on your website, and configure email notifications for these events. For example, receive email alerts for every 404 event.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Advisor\u003C\u002Fstrong>\u003Cbr \u002F>\nReceive expert recommendations on server and site settings to boost your website’s speed and security. Get notified via email if your server’s condition deteriorates.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Server info\u003C\u002Fstrong>\u003Cbr \u002F>\nKeep track of all your server settings in one centralized location. Issues Tracker automatically parses the \u003Ccode>phpinfo()\u003C\u002Fcode> output, providing you with comprehensive server information. No need to dig into the server configuration files manually – everything is neatly displayed for you.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Website Checks\u003C\u002Fstrong>\u003Cbr \u002F>\nOur plugin evaluates your website based on various criteria, including:\u003Cbr \u002F>\n– Checking if the database username used in wp-config.php is widely used.\u003Cbr \u002F>\n– Verifying the security of the database password in wp-config.php.\u003Cbr \u002F>\n– Examining the state of the WP_DEBUG_DISPLAY constant.\u003Cbr \u002F>\n– Ensuring you are not using the default database prefix.\u003Cbr \u002F>\n– Verifying SSL (https) encryption status.\u003Cbr \u002F>\n– Checking the PHP version for updates.\u003Cbr \u002F>\n– Confirming that the WordPress version matches the HTML code.\u003Cbr \u002F>\n– Checking if search engines allowed to index a website\u003C\u002Fp>\n\u003Cp>…and many more checks in future releases.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Dashboard\u003C\u002Fstrong>\u003Cbr \u002F>\nMonitor all your website’s performance and security issues conveniently from one central location. Access log file entries, server checks, and 404 error reports in a single dashboard.\u003C\u002Fp>\n\u003Ch3>Tested up to\u003C\u002Fh3>\n\u003Cp>WordPress Version: 6.7.1\u003Cbr \u002F>\nPHP Version: 8.2.0\u003C\u002Fp>\n\u003Cp>Issues Tracker helps monitor WordPress logs, track 404 errors, view server settings, and receive security advice\u003C\u002Fp>\n\u003Ch3>Notice: Transition to Debug Log Viewer\u003C\u002Fh3>\n\u003Cp>We are no longer maintaining \u003Cstrong>Issues Tracker\u003C\u002Fstrong> as we’ve launched a better plugin for debugging: \u003Cstrong>Debug Log Viewer\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>To continue receiving updates, new features, and support, please:\u003Cbr \u002F>\n1. \u003Cstrong>Uninstall Issues Tracker\u003C\u002Fstrong>.\u003Cbr \u002F>\n2. \u003Cstrong>Install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdebug-log-viewer\u002F\" rel=\"ugc\">Debug Log Viewer\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All premium features from Issues Tracker are included in Debug Log Viewer at no cost.\u003C\u002Fp>\n\u003Cp>Thank you for your trust and support! If you have any questions or feedback, feel free to contact us via \u003Ca href=\"mailto:sanchoclo@gmail.com\" rel=\"nofollow ugc\">Email\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Pro Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Receive Email notifications when the Advisor module detects security issues\u003C\u002Fli>\n\u003Cli>Get Email notifications in case of 404 request hourly or once per day\u003C\u002Fli>\n\u003Cli>Get Email notifications with new entries in the debug.log to keep you inform about problems on the site\u003C\u002Fli>\n\u003Cli>Enjoy priority email support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Use cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cem>Debugging WordPress Sites:\u003C\u002Fem> Developers can use the plugin to identify, track, and resolve bugs in WordPress themes or plugins. This is crucial for maintaining site performance, security, and overall functionality.\u003C\u002Fli>\n\u003Cli>\u003Cem>Monitoring Website Health:\u003C\u002Fem> Website administrators and webmasters can see advice and hints how to improve performance and stability of their website. This proactive monitoring helps in maintaining a smooth and efficient operation of the website, ensuring a better user experience.\u003C\u002Fli>\n\u003Cli>\u003Cem>Real-Time 404 Error Detection:\u003C\u002Fem> When a visitor encounters a 404 error (page not found) on your website, whether due to a broken link in a post, page, or image, the “Issues Tracker” plugin immediately captures this URL. It presents these 404 URLs in an organized table, allowing for swift review and rechecking with just one click. For Pro plan users, the plugin offers additional convenience by sending instant email notifications whenever a new 404 error is detected, ensuring you’re always up-to-date and can address these issues promptly to maintain a smooth user experience on your site.\u003C\u002Fli>\n\u003C\u002Ful>\n","Issues Tracker allows you view and search WordPress logs, receive security advice, track 404 errors, and view your server settings.",50,4421,100,3,"2024-12-02T09:59:00.000Z","6.7.5","4.6","5.4",[20,21,22,23,24],"debug","error-tracking","logging","security","wp_debug","https:\u002F\u002Fissues-tracker.top\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fissues-tracker.1.16.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"lysyiweb",2,1050,96,44,85,"2026-04-04T07:12:51.159Z",[41,62,77,98,121],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":13,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":60,"download_link":61,"security_score":38,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"log-deprecated-notices","Log Deprecated Notices","0.4.1","Andrew Nacin","https:\u002F\u002Fprofiles.wordpress.org\u002Fnacin\u002F","\u003Cp>This plugin logs the usage of deprecated files, functions, and function arguments. It identifies where the deprecated functionality is being used and offers the alternative if available.\u003C\u002Fp>\n\u003Cp>This is a plugin for developers. WP_DEBUG is not needed, though its general usage is strongly recommended. Deprecated notices normally exposed by WP_DEBUG will be logged instead.\u003C\u002Fp>\n\u003Cp>This plugin also logs incorrect function usage, which WordPress started reporting in 3.1.\u003C\u002Fp>\n\u003Cp>Please report any bugs to plugins in a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Flog-deprecated-notices\" rel=\"ugc\">support thread\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This is young software. It works, but there’s a lot left on the todo (check out the Other Notes tab). Have an idea? Let me know.\u003C\u002Fp>\n\u003Ch3>Ideas\u003C\u002Fh3>\n\u003Cp>These are the various things on the @todo:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Plugin identification. Also, an unobstrusive note on plugins page next to said plugins.\u003C\u002Fli>\n\u003Cli>Perhaps the ability to auto-purge the log.\u003C\u002Fli>\n\u003Cli>Ability to filter on file or plugin in which the deprecated functionality is used.\u003C\u002Fli>\n\u003Cli>Offer some kind of better multisite support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Want to add something here? I’m all ears. plugins at \u003Ca href=\"http:\u002F\u002Fandrewnacin.com\u002F\" rel=\"nofollow ugc\">andrewnacin.com\u003C\u002Fa> or @\u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fnacin\" rel=\"nofollow ugc\">nacin\u003C\u002Fa> on Twitter.\u003C\u002Fp>\n\u003Cp>I will prioritize these tasks based on feedback, so let me know what you’d like to see.\u003C\u002Fp>\n","Logs the usage of deprecated files, functions, and function arguments, and identifies where the deprecated functionality is being used.",1000,165887,10,"2021-06-25T14:17:00.000Z","5.8.13","3.0","",[57,58,59,22,24],"admin","deprecated","e_notice","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Flog-deprecated-notices\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flog-deprecated-notices.0.4.1.zip",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":51,"downloaded":70,"rating":28,"num_ratings":28,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":55,"tags":74,"homepage":75,"download_link":76,"security_score":38,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"log-deprecated-notices-extender","Log Deprecated Notices Extender","0.1.2","Joey Kudish","https:\u002F\u002Fprofiles.wordpress.org\u002Fjkudish\u002F","\u003Cp>This developer-oriented WordPress plugin extends Log Deprecated Notices to show a link in the WP 3.3+ Toolbar. Based on \u003Ca href=\"http:\u002F\u002Fnacin.com\" rel=\"nofollow ugc\">Andrew Nacin\u003C\u002Fa>‘s \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Flog-deprecated-notices\u002F\" rel=\"ugc\">Log Deprecated Notices\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin is built and maintained by \u003Ca href=\"http:\u002F\u002Fjkudish.com\" title=\"Joachim Kudish\" rel=\"nofollow ugc\">Joachim Kudish\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Follow development, fork and contribute on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjkudish\u002FLogDeprecatedNoticesExtender\" rel=\"nofollow ugc\">github\u003C\u002Fa>\u003C\u002Fp>\n","This developer-oriented WordPress plugin extends Andrew Nacin's Log Deprecated Notices to show a link in the WP 3.3+ Toolbar.",2501,"2012-01-14T23:19:00.000Z","3.4.2","3.3",[57,58,59,22,24],"http:\u002F\u002Fjkudish.com\u002Flog-deprecated-notices-extender\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flog-deprecated-notices-extender.0.1.2.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":28,"num_ratings":28,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":96,"download_link":97,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"milesweb-tools","MilesWeb Tools","1.0.2","MilesWeb","https:\u002F\u002Fprofiles.wordpress.org\u002Fmilesweb\u002F","\u003Cp>\u003Cstrong>MilesWeb Tools\u003C\u002Fstrong> is a powerful WordPress plugin designed to enhance your site’s functionality and security. It helps you manage security settings, maintenance mode, enforce HTTPS, disable file editing, log user activity, track storage usage, and provides detailed insights into active and inactive themes and plugins.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable\u002Fdisable maintenance mode.\u003C\u002Fli>\n\u003Cli>Force HTTPS redirection.\u003C\u002Fli>\n\u003Cli>Disable file editing in the WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC to prevent security vulnerabilities.\u003C\u002Fli>\n\u003Cli>Track user logins.\u003C\u002Fli>\n\u003Cli>Display active theme details and inactive theme storage usage.\u003C\u002Fli>\n\u003Cli>Show active\u002Finactive plugins, including their size, and memory usage.\u003C\u002Fli>\n\u003Cli>Identify outdated plugins and themes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Short Description\u003C\u002Fh3>\n\u003Cp>Manage security, maintenance, and user logging while monitoring storage usage in one plugin.\u003C\u002Fp>\n\u003Ch3>License & Credits\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under GPLv2 or later. Contributions from the WordPress community are appreciated.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, visit MilesWeb Support or the WordPress support forums.\u003C\u002Fp>\n","MilesWeb Tools is a powerful WordPress plugin designed to enhance your site's functionality and security. It helps you manage security settings,  &hellip;",7000,16743,"2025-07-25T11:31:00.000Z","6.8.5","5.6","7.4",[92,93,23,94,95],"maintenance","plugin-info","storage-usage","user-logging","https:\u002F\u002Fmilesweb.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmilesweb-tools.1.0.2.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":28,"num_ratings":28,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":55,"tags":111,"homepage":116,"download_link":117,"security_score":118,"vuln_count":119,"unpatched_count":28,"last_vuln_date":120,"fetched_at":30},"developer-loggers-for-simple-history","Developer Loggers for Simple History","0.5.1","Pär Thernström","https:\u002F\u002Fprofiles.wordpress.org\u002Feskapism\u002F","\u003Cp>Bring more loggers to \u003Ca href=\"https:\u002F\u002Fsimple-history.com\" rel=\"nofollow ugc\">WordPress user history plugin Simple History\u003C\u002Fa>.\u003Cbr \u002F>\nThat are useful for developers during development of a site or to maintain a live site.\u003C\u002Fp>\n\u003Ch3>Important\u003C\u002Fh3>\n\u003Cp>Please note that this plugin is no longer actively maintained and only receives security fixes.\u003C\u002Fp>\n\u003Ch3>Modern and up to date alternatives\u003C\u002Fh3>\n\u003Cp>For an up to date alternative please see the \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fadd-ons\u002Fdebug-and-monitor\u002F\" rel=\"nofollow ugc\">Debug & Monitor add-on\u003C\u002Fa> which logs WP REST API requests, sent emails, HTTP API requests, and WP cron jobs.\u003C\u002Fp>\n\u003Ch3>Get more features with Simple History Premium\u003C\u002Fh3>\n\u003Cp>Need advanced WordPress audit logging capabilities? Simple History Premium extends your site monitoring with powerful features:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Enhanced WordPress Activity Logging:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Advanced Analytics Dashboard\u003C\u002Fstrong> – Comprehensive stats and visual activity tracking\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Event Logging\u003C\u002Fstrong> – Add manual entries and notifications to your audit trail\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Stealth Mode\u003C\u002Fstrong> – Control user access with granular permissions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Log Retention\u003C\u002Fstrong> – Configure automatic cleanup or keep logs indefinitely\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Export Tools\u003C\u002Fstrong> – Export logs in CSV\u002FJSON format for analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Features\u003C\u002Fstrong> – IP anonymization and login attempt location tracking\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fpremium\u002F\" rel=\"nofollow ugc\">» \u003Cstrong>Get Simple History Premium\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Included loggers and plugins\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Post to Slack\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All your events is posted to a \u003Ca href=\"https:\u002F\u002Fslack.com\u002F\" rel=\"nofollow ugc\">Slack\u003C\u002Fa> channel of your choice, using an \u003Ca href=\"https:\u002F\u002Fapi.slack.com\u002Fincoming-webhooks\" rel=\"nofollow ugc\">incoming webhook\u003C\u002Fa>. Yes, with this plugin enabled\u003Cbr \u002F>\nthere is no need what so ever to ever leave Slack to see what’s happening on your site or the site of your\u003Cbr \u002F>\nclients or… well, on any site where you have Simple Histor and this plugin enabled.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WP_Mail-logger\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>See all mails sent with wp_mail(), no matter what the recipient address is.\u003Cbr \u002F>\nchangelog\u003C\u002Fp>\n\u003Cp>\u003Cstrong>404 logger\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>View page visits that load the 404 template.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>JavaScript error logger\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>See what JavaScript errors users that visit your site is getting.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>SystemLog logger\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Log all messages from Simple History to the syslog on the server. With this logger enabled there is no need to use the beautiful GUI of Simple History ;).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>HTTP API logger\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Log all usage of HTTP calls from functions like wp_remote_post() and wp_remote_get().\u003C\u002Fp>\n\u003Cp>You can the URL requested, the arguments posted and the full returned result, including server headers.\u003C\u002Fp>\n\u003Cp>The time for the request to complete is also logged. Great for debugging!\u003C\u002Fp>\n","Useful loggers for SimpleHistory for developers during development of a site or to maintain a live site.",400,7569,"2025-09-15T07:32:00.000Z","6.4.8","4.4",[112,113,114,22,115],"debugging","developer","email","simple-history","https:\u002F\u002Fgithub.com\u002Fbonny\u002FDeveloper-Loggers-for-Simple-History","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdeveloper-loggers-for-simple-history.0.5.1.zip",99,1,"2025-09-16 00:00:00",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":131,"num_ratings":132,"last_updated":133,"tested_up_to":134,"requires_at_least":135,"requires_php":55,"tags":136,"homepage":139,"download_link":140,"security_score":27,"vuln_count":119,"unpatched_count":28,"last_vuln_date":141,"fetched_at":30},"enable-wp-debug-from-admin-dashboard","Debug Bar – Enable WP_DEBUG from admin dashboard","1.93","Puvox Software","https:\u002F\u002Fprofiles.wordpress.org\u002Fpuvoxsoftware\u002F","\u003Ch4>[ ✅ 𝐒𝐄𝐂𝐔𝐑𝐄 𝐏𝐋𝐔𝐆𝐈𝐍𝐒 b𝓎 𝒫𝓊𝓋𝑜𝓍] :\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>• Revised for security to be reliable and free of vulnerability holes.\u003Cbr \u002F>\n  • Efficient, not to add any extra load\u002Fslowness to site.\u003Cbr \u002F>\n  • Don’t collect private data.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Plugin Description\u003C\u002Fh4>\n\u003Cp>READ DESCRIPTION BEFORE INSTALLING!\u003Cbr \u002F>\nEasily enable\u002Fdisable WP_DEBUG with one single click from Admin Toolbar. What’s more, this plugin is failsafe & clever – in case of errors, it automatically exits the WP_DEBUG mode, thus, you won’t face any problems.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works with \u003Ccode>Debug Bar\u003C\u002Fcode> plugin. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>NOTE\u003C\u002Fh4>\n\u003Cp>Plugin modifies \u003Ccode>wp-config.php\u003C\u002Fcode>. However, on some sites, this might cause some conflict with existing wp-config, causing to interfere the page-load. So, use at your own responsibility. If unsure, use on test site.\u003C\u002Fp>\n\u003Ch4>Available Options\u003C\u002Fh4>\n\u003Cp>See all available options and their description on plugin’s settings page.\u003C\u002Fp>\n","[ ✅ 𝐒𝐄𝐂𝐔𝐑𝐄 𝐏𝐋𝐔𝐆𝐈𝐍𝐒 b𝓎 𝒫𝓊𝓋𝑜𝓍]  You can easily enable WP_DEBUG using a toolbar button. READ DESCRIPTION!",200,15439,36,5,"2024-10-30T11:24:00.000Z","6.5.8","6.0",[57,20,137,138,24],"enable","wp","https:\u002F\u002Fpuvox.software\u002Fsoftware\u002Fwordpress-plugins\u002F?plugin=enable-wp-debug-from-admin-dashboard","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenable-wp-debug-from-admin-dashboard.zip","2022-08-01 00:00:00",{"attackSurface":143,"codeSignals":244,"taintFlows":447,"riskAssessment":579,"analyzedAt":595},{"hooks":144,"ajaxHandlers":175,"restRoutes":241,"shortcodes":242,"cronEvents":243,"entryPointCount":179,"unprotectedCount":179},[145,151,155,159,163,166,170],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","admin_enqueue_scripts","istkr_admin_assets_enqueue","controllers\\HooksController.php",16,{"type":146,"name":152,"callback":153,"file":149,"line":154},"template_redirect","istkr_template_redirect",51,{"type":146,"name":156,"callback":157,"file":149,"line":158},"admin_init","closure",65,{"type":146,"name":160,"callback":161,"file":149,"line":162},"admin_notices","istkr_ask_to_leave_review_handler",67,{"type":146,"name":156,"callback":164,"file":149,"line":165},"istkr_review_handler",70,{"type":146,"name":167,"callback":168,"file":149,"line":169},"admin_head","istkr_init_gtm",98,{"type":146,"name":171,"callback":172,"priority":173,"file":174,"line":51},"admin_menu","istkr_main_menu",9,"controllers\\MenuController.php",[176,180,183,186,190,194,198,202,206,209,211,214,217,220,223,226,229,232,235,238],{"action":177,"nopriv":178,"callback":177,"hasNonce":178,"hasCapCheck":178,"file":149,"line":179},"istkr_get_log_data",false,20,{"action":181,"nopriv":178,"callback":181,"hasNonce":178,"hasCapCheck":178,"file":149,"line":182},"istkr_get_log_stat",21,{"action":184,"nopriv":178,"callback":184,"hasNonce":178,"hasCapCheck":178,"file":149,"line":185},"istkr_run_check",23,{"action":187,"nopriv":178,"callback":188,"hasNonce":178,"hasCapCheck":178,"file":149,"line":189},"istkr_change_advisor_notifications_status","istkr_change_notifications_status",24,{"action":191,"nopriv":178,"callback":192,"hasNonce":178,"hasCapCheck":178,"file":149,"line":193},"istkr_log_viewer_clear_log","istkr_clear_log",27,{"action":195,"nopriv":178,"callback":196,"hasNonce":178,"hasCapCheck":178,"file":149,"line":197},"istkr_log_viewer_download_log","istkr_download_log",28,{"action":199,"nopriv":178,"callback":200,"hasNonce":178,"hasCapCheck":178,"file":149,"line":201},"istkr_change_log_viewer_notifications_status","istkr_change_log_notifications_status",29,{"action":203,"nopriv":178,"callback":204,"hasNonce":178,"hasCapCheck":178,"file":149,"line":205},"istkr_log_viewer_live_update","istkr_live_update",30,{"action":207,"nopriv":178,"callback":157,"hasNonce":178,"hasCapCheck":178,"file":149,"line":208},"istkr_log_viewer_enable_logging",32,{"action":210,"nopriv":178,"callback":157,"hasNonce":178,"hasCapCheck":178,"file":149,"line":131},"istkr_toggle_debug_mode",{"action":212,"nopriv":178,"callback":157,"hasNonce":178,"hasCapCheck":178,"file":149,"line":213},"istkr_toggle_debug_scripts",39,{"action":215,"nopriv":178,"callback":157,"hasNonce":178,"hasCapCheck":178,"file":149,"line":216},"istkr_toggle_debug_log_scripts",42,{"action":218,"nopriv":178,"callback":157,"hasNonce":178,"hasCapCheck":178,"file":149,"line":219},"istkr_toggle_display_errors",45,{"action":221,"nopriv":178,"callback":221,"hasNonce":178,"hasCapCheck":178,"file":149,"line":222},"istkr_get_404_log",52,{"action":224,"nopriv":178,"callback":188,"hasNonce":178,"hasCapCheck":178,"file":149,"line":225},"istkr_change_404_notifications_status",53,{"action":227,"nopriv":178,"callback":227,"hasNonce":178,"hasCapCheck":178,"file":149,"line":228},"istkr_get_current_user_email",54,{"action":230,"nopriv":178,"callback":230,"hasNonce":178,"hasCapCheck":178,"file":149,"line":231},"istkr_get_404_count",55,{"action":233,"nopriv":178,"callback":233,"hasNonce":178,"hasCapCheck":178,"file":149,"line":234},"istkr_404_clear_log",57,{"action":236,"nopriv":178,"callback":236,"hasNonce":178,"hasCapCheck":178,"file":149,"line":237},"istkr_404_recheck_path",58,{"action":239,"nopriv":178,"callback":239,"hasNonce":178,"hasCapCheck":178,"file":149,"line":240},"istkr_404_remove_path",59,[],[],[],{"dangerousFunctions":245,"sqlUsage":246,"outputEscaping":261,"fileOperations":150,"externalRequests":14,"nonceChecks":119,"capabilityChecks":28,"bundledLibraries":439},[],{"prepared":247,"raw":248,"locations":249},14,4,[250,253,255,258],{"file":251,"line":225,"context":252},"controllers\\404Controller.php","$wpdb->get_results() with variable interpolation",{"file":251,"line":254,"context":252},103,{"file":256,"line":257,"context":252},"migrations\\Migrations.php",17,{"file":259,"line":260,"context":252},"models\\AdvisorModel.php",71,{"escaped":182,"rawEcho":262,"locations":263},94,[264,267,269,271,273,275,277,279,281,283,285,287,289,291,293,295,298,300,302,304,306,308,310,312,314,316,318,320,322,324,326,328,330,332,334,337,339,341,343,345,347,349,352,354,356,359,362,364,365,366,368,369,370,372,373,374,376,378,380,381,383,384,385,386,388,389,391,392,394,396,398,400,401,403,405,407,409,411,413,414,415,416,417,419,421,422,423,425,427,430,432,434,435,437],{"file":251,"line":265,"context":266},136,"raw output",{"file":251,"line":268,"context":266},187,{"file":251,"line":270,"context":266},207,{"file":251,"line":272,"context":266},213,{"file":251,"line":274,"context":266},230,{"file":251,"line":276,"context":266},236,{"file":251,"line":278,"context":266},253,{"file":251,"line":280,"context":266},258,{"file":251,"line":282,"context":266},295,{"file":251,"line":284,"context":266},300,{"file":251,"line":286,"context":266},306,{"file":251,"line":288,"context":266},329,{"file":251,"line":290,"context":266},334,{"file":292,"line":208,"context":266},"controllers\\AdvisorController.php",{"file":292,"line":294,"context":266},38,{"file":296,"line":297,"context":266},"controllers\\LogController.php",64,{"file":296,"line":299,"context":266},123,{"file":296,"line":301,"context":266},140,{"file":296,"line":303,"context":266},176,{"file":296,"line":305,"context":266},201,{"file":296,"line":307,"context":266},206,{"file":296,"line":309,"context":266},222,{"file":296,"line":311,"context":266},228,{"file":296,"line":313,"context":266},244,{"file":296,"line":315,"context":266},250,{"file":296,"line":317,"context":266},270,{"file":296,"line":319,"context":266},276,{"file":296,"line":321,"context":266},296,{"file":296,"line":323,"context":266},302,{"file":296,"line":325,"context":266},322,{"file":296,"line":327,"context":266},332,{"file":296,"line":329,"context":266},367,{"file":296,"line":331,"context":266},512,{"file":296,"line":333,"context":266},562,{"file":335,"line":336,"context":266},"controllers\\ScheduleTrait.php",34,{"file":335,"line":338,"context":266},43,{"file":335,"line":340,"context":266},68,{"file":335,"line":342,"context":266},76,{"file":335,"line":344,"context":266},87,{"file":335,"line":346,"context":266},113,{"file":335,"line":348,"context":266},118,{"file":350,"line":351,"context":266},"controllers\\ServiceController.php",25,{"file":353,"line":201,"context":266},"helpers\\utils.php",{"file":355,"line":247,"context":266},"issues-tracker\\autoload.php",{"file":357,"line":358,"context":266},"issues-tracker\\composer\\platform_check.php",19,{"file":360,"line":361,"context":266},"views\\components\\header.tpl.php",7,{"file":360,"line":363,"context":266},8,{"file":360,"line":179,"context":266},{"file":360,"line":185,"context":266},{"file":360,"line":367,"context":266},26,{"file":360,"line":201,"context":266},{"file":360,"line":208,"context":266},{"file":360,"line":371,"context":266},40,{"file":360,"line":216,"context":266},{"file":360,"line":219,"context":266},{"file":360,"line":375,"context":266},47,{"file":377,"line":173,"context":266},"views\\components\\log-missing-debug-file.tpl.php",{"file":379,"line":173,"context":266},"views\\components\\log-wp-config-not-writable.tpl.php",{"file":379,"line":150,"context":266},{"file":382,"line":225,"context":266},"views\\pages\\404-redirects.php",{"file":382,"line":234,"context":266},{"file":382,"line":340,"context":266},{"file":382,"line":165,"context":266},{"file":387,"line":213,"context":266},"views\\pages\\advisor.php",{"file":387,"line":240,"context":266},{"file":387,"line":390,"context":266},79,{"file":387,"line":118,"context":266},{"file":387,"line":393,"context":266},119,{"file":387,"line":395,"context":266},139,{"file":387,"line":397,"context":266},159,{"file":387,"line":399,"context":266},180,{"file":387,"line":129,"context":266},{"file":387,"line":402,"context":266},220,{"file":387,"line":404,"context":266},245,{"file":387,"line":406,"context":266},249,{"file":387,"line":408,"context":266},261,{"file":387,"line":410,"context":266},263,{"file":412,"line":367,"context":266},"views\\pages\\dashboard.php",{"file":412,"line":205,"context":266},{"file":412,"line":375,"context":266},{"file":412,"line":234,"context":266},{"file":412,"line":158,"context":266},{"file":412,"line":418,"context":266},82,{"file":412,"line":420,"context":266},91,{"file":412,"line":36,"context":266},{"file":412,"line":346,"context":266},{"file":412,"line":424,"context":266},122,{"file":412,"line":426,"context":266},127,{"file":428,"line":429,"context":266},"views\\pages\\log.php",22,{"file":428,"line":431,"context":266},106,{"file":428,"line":433,"context":266},110,{"file":428,"line":424,"context":266},{"file":428,"line":436,"context":266},124,{"file":438,"line":216,"context":266},"views\\pages\\server-info.php",[440,443],{"name":441,"version":29,"knownCves":442},"DataTables",[],{"name":444,"version":445,"knownCves":446},"Freemius","1.0",[],[448,475,488,496,511,519,531,561,571],{"entryPoint":449,"graph":450,"unsanitizedCount":119,"severity":474},"istkr_404_recheck_path (controllers\\404Controller.php:266)",{"nodes":451,"edges":470},[452,457,463,465],{"id":453,"type":454,"label":455,"file":251,"line":456},"n0","source","$_POST",273,{"id":458,"type":459,"label":460,"file":251,"line":461,"wp_function":462},"n1","sink","get_row() [SQLi]",281,"get_row",{"id":464,"type":454,"label":455,"file":251,"line":456},"n2",{"id":466,"type":459,"label":467,"file":251,"line":468,"wp_function":469},"n3","wp_remote_get() [SSRF]",289,"wp_remote_get",[471,473],{"from":453,"to":458,"sanitized":472},true,{"from":464,"to":466,"sanitized":178},"medium",{"entryPoint":476,"graph":477,"unsanitizedCount":119,"severity":474},"istkr_log_viewer_enable_logging (controllers\\LogController.php:184)",{"nodes":478,"edges":486},[479,482],{"id":453,"type":454,"label":480,"file":296,"line":481},"$_SERVER",194,{"id":458,"type":459,"label":483,"file":296,"line":484,"wp_function":485},"file_put_contents() [File Write]",195,"file_put_contents",[487],{"from":453,"to":458,"sanitized":178},{"entryPoint":489,"graph":490,"unsanitizedCount":119,"severity":474},"\u003CLogController> (controllers\\LogController.php:0)",{"nodes":491,"edges":494},[492,493],{"id":453,"type":454,"label":480,"file":296,"line":481},{"id":458,"type":459,"label":483,"file":296,"line":484,"wp_function":485},[495],{"from":453,"to":458,"sanitized":178},{"entryPoint":497,"graph":498,"unsanitizedCount":28,"severity":510},"istkr_ask_to_leave_review_handler (controllers\\ReviewController.php:25)",{"nodes":499,"edges":508},[500,504],{"id":453,"type":454,"label":501,"file":502,"line":503},"$_GET (x2)","controllers\\ReviewController.php",31,{"id":458,"type":459,"label":505,"file":502,"line":506,"wp_function":507},"echo() [XSS]",35,"echo",[509],{"from":453,"to":458,"sanitized":472},"low",{"entryPoint":512,"graph":513,"unsanitizedCount":28,"severity":510},"\u003CReviewController> (controllers\\ReviewController.php:0)",{"nodes":514,"edges":517},[515,516],{"id":453,"type":454,"label":501,"file":502,"line":503},{"id":458,"type":459,"label":505,"file":502,"line":506,"wp_function":507},[518],{"from":453,"to":458,"sanitized":472},{"entryPoint":520,"graph":521,"unsanitizedCount":119,"severity":530},"istkr_handle_404 (controllers\\404Controller.php:26)",{"nodes":522,"edges":528},[523,525],{"id":453,"type":454,"label":480,"file":251,"line":524},49,{"id":458,"type":459,"label":526,"file":251,"line":225,"wp_function":527},"get_results() [SQLi]","get_results",[529],{"from":453,"to":458,"sanitized":178},"high",{"entryPoint":532,"graph":533,"unsanitizedCount":34,"severity":530},"\u003C404Controller> (controllers\\404Controller.php:0)",{"nodes":534,"edges":555},[535,536,537,538,539,541,543,545,550,552],{"id":453,"type":454,"label":480,"file":251,"line":524},{"id":458,"type":459,"label":526,"file":251,"line":225,"wp_function":527},{"id":464,"type":454,"label":455,"file":251,"line":456},{"id":466,"type":459,"label":460,"file":251,"line":461,"wp_function":462},{"id":540,"type":454,"label":455,"file":251,"line":456},"n4",{"id":542,"type":459,"label":467,"file":251,"line":468,"wp_function":469},"n5",{"id":544,"type":454,"label":455,"file":251,"line":456},"n6",{"id":546,"type":459,"label":547,"file":251,"line":548,"wp_function":549},"n7","get_var() [SQLi]",359,"get_var",{"id":551,"type":454,"label":455,"file":251,"line":456},"n8",{"id":553,"type":459,"label":526,"file":251,"line":554,"wp_function":527},"n9",371,[556,557,558,559,560],{"from":453,"to":458,"sanitized":178},{"from":464,"to":466,"sanitized":472},{"from":540,"to":542,"sanitized":178},{"from":544,"to":546,"sanitized":472},{"from":551,"to":553,"sanitized":472},{"entryPoint":562,"graph":563,"unsanitizedCount":119,"severity":530},"istkr_run_check (controllers\\AdvisorController.php:26)",{"nodes":564,"edges":569},[565,566],{"id":453,"type":454,"label":455,"file":292,"line":503},{"id":458,"type":459,"label":567,"file":292,"line":336,"wp_function":568},"call_user_func() [RCE]","call_user_func",[570],{"from":453,"to":458,"sanitized":178},{"entryPoint":572,"graph":573,"unsanitizedCount":119,"severity":530},"\u003CAdvisorController> (controllers\\AdvisorController.php:0)",{"nodes":574,"edges":577},[575,576],{"id":453,"type":454,"label":455,"file":292,"line":503},{"id":458,"type":459,"label":567,"file":292,"line":336,"wp_function":568},[578],{"from":453,"to":458,"sanitized":178},{"summary":580,"deductions":581},"The \"issues-tracker\" plugin v1.16 exhibits significant security concerns primarily due to a large, unprotected attack surface and inadequate output escaping. With 20 AJAX handlers, all lacking authentication checks, any unauthenticated user could potentially interact with these endpoints.  This is further exacerbated by the taint analysis, which reveals 7 flows with unsanitized paths, including 4 of high severity, indicating potential for code injection or manipulation.  The limited proper output escaping (18%) suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities across many output points.\n\nWhile the plugin has no recorded CVEs or bundled outdated libraries aside from Freemius v1.0 which is generally well-maintained, this positive history should not overshadow the immediate risks identified in the static analysis. The absence of capability checks on AJAX handlers is a critical oversight.  The plugin demonstrates some good practices by using prepared statements for most SQL queries and including a single nonce check, but these are insufficient to mitigate the overarching security gaps.  The conclusion is that this plugin, in its current state, presents a substantial security risk that requires immediate attention, particularly regarding the unprotected AJAX endpoints and the identified taint flows.",[582,584,587,589,591,593],{"reason":583,"points":51},"All AJAX handlers lack auth checks",{"reason":585,"points":586},"High severity unsanitized taint flows",12,{"reason":588,"points":363},"Many unsanitized path taint flows",{"reason":590,"points":363},"Low percentage of properly escaped output",{"reason":592,"points":51},"No capability checks on AJAX handlers",{"reason":594,"points":14},"Bundled Freemius v1.0 library","2026-03-16T22:03:26.671Z",{"wat":597,"direct":612},{"assetPaths":598,"generatorPatterns":604,"scriptPaths":605,"versionParams":606},[599,600,601,602,603],"\u002Fwp-content\u002Fplugins\u002Fissues-tracker\u002Fassets\u002Fcss\u002Fthemes\u002Fdark-mode.css","\u002Fwp-content\u002Fplugins\u002Fissues-tracker\u002Fassets\u002Fcss\u002Fthemes\u002Fdefault.css","\u002Fwp-content\u002Fplugins\u002Fissues-tracker\u002Fassets\u002Fcss\u002Fvariables.css","\u002Fwp-content\u002Fplugins\u002Fissues-tracker\u002Fassets\u002Fcss\u002Fissues-tracker.css","\u002Fwp-content\u002Fplugins\u002Fissues-tracker\u002Fassets\u002Fjs\u002Fissues-tracker.js",[],[603],[607,608,609,610,611],"issues-tracker\u002Fassets\u002Fcss\u002Fthemes\u002Fdark-mode.css?ver=","issues-tracker\u002Fassets\u002Fcss\u002Fthemes\u002Fdefault.css?ver=","issues-tracker\u002Fassets\u002Fcss\u002Fvariables.css?ver=","issues-tracker\u002Fassets\u002Fcss\u002Fissues-tracker.css?ver=","issues-tracker\u002Fassets\u002Fjs\u002Fissues-tracker.js?ver=",{"cssClasses":613,"htmlComments":618,"htmlAttributes":619,"restEndpoints":621,"jsGlobals":625,"shortcodeOutput":627},[614,615,616,617],"istkr-table","istkr-log-viewer","istkr-advisor","istkr-404",[],[620],"data-type=\"issues-tracker\"",[622,623,624],"\u002Fwp-json\u002Fissues-tracker\u002Fv1\u002Flog","\u002Fwp-json\u002Fissues-tracker\u002Fv1\u002Fadvisor","\u002Fwp-json\u002Fissues-tracker\u002Fv1\u002F404",[626],"issues_tracker_ajax_object",[]]