[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fB1gGDxJXmRmTonQ3sUe_nfB9a6PbfwbaJh79GAAhlf0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":141,"fingerprints":213},"jetpack-module-control","Module Control for Jetpack","1.7.2","Rolf Allard van Hagen","https:\u002F\u002Fprofiles.wordpress.org\u002Fravanh\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjetpack\u002F\" rel=\"ugc\">Jetpack\u003C\u002Fa> adds powerful features, but sometimes we don’t want them all… This light-weigth but effective plugin brings additional control over Jetpack.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Blacklist \u002F remove individual Jetpack modules.\u003C\u002Fli>\n\u003Cli>Optionally prevent module auto-activation on connection or after an upgrade.\u003C\u002Fli>\n\u003Cli>Optionally run Jetpack “unplugged”, without a WordPress.com connection.\u003C\u002Fli>\n\u003Cli>Single site and Multisite compatible.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Examples\u003C\u002Fh4>\n\u003Cp>In most use cases, a carefully considered combination of Jetpack modules can be a really good thing. But not always is much consideration being done beforehand. Or site admins just don’t know all the implications…\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Using Jetpack on a network? Then network incompatible WAF (Web Application Firewall) module should be blacklisted to prevent accidental activation!\u003C\u002Fli>\n\u003Cli>Do you already use a light box provided by your theme or another plugin? Then blacklist the Carousel module to prevent accidental activation.\u003C\u002Fli>\n\u003Cli>Or you’re running a Multisite and do not want any admins monitoring uptime with the Monitor module just to call you every time their site is briefly inaccessible?\u003C\u002Fli>\n\u003Cli>Offer your own backup service? Backlist VaultPress if you do not care for VaultPress competition.\u003C\u002Fli>\n\u003Cli>You’re running a school network and sites are managed by minors who are not allowed to sign up for an account at WordPress.com? Then use the Jetpack Offline Mode option to allow usage of modules that do not require a connection.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Any one of Jetpack’s modules can bring overlapping or even conflicting functionality. In such cases, being able to prevent (accidental) activation is a good thing.\u003C\u002Fp>\n\u003Ch4>Single site and Multisite\u003C\u002Fh4>\n\u003Cp>Although the original idea arose on a multisite installation, Module Control for Jetpack is developed for both single and multisite installations.\u003C\u002Fp>\n\u003Cp>On \u003Cstrong>multisite\u003C\u002Fstrong>, it can only be network activated and allows global rules for Jetpack on all sites. At this point it also allows per-site changes by Super Admin only. Jetpack itself can, but does not need to be network activated. In that case, activate Jetpack on the main site and then network-activate Module Control.\u003C\u002Fp>\n\u003Cp>For \u003Cstrong>single site\u003C\u002Fstrong> installations, plugin settings can be locked down by adding \u003Ccode>define('JETPACK_MC_LOCKDOWN', true)\u003C\u002Fcode> to wp-config.php for complete security. This can be useful to prevent other admins being able to reactivate blacklisted modules.\u003C\u002Fp>\n\u003Ch4>Development\u003C\u002Fh4>\n\u003Cp>The project can be forked and or contributed to on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FRavanH\u002Fjetpack-module-control\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>All contributions — be it in the form of feature requests, bug reports, translations or code — are welcome!\u003C\u002Fp>\n","Your Jetpack, Controlled.",1000,51094,96,11,"2025-06-25T14:40:00.000Z","6.8.5","4.6","",[20,21,22,23,24],"blacklist-jetpack-modules","jetpack","jetpack-light","slim-jetpack","unplug-jetpack","https:\u002F\u002Fstatus301.net\u002Fwordpress-plugins\u002Fjetpack-module-control\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjetpack-module-control.1.7.2.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"ravanh",8,111380,95,293,76,"2026-04-04T06:30:48.880Z",[41,62,85,101,122],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":18,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":18,"tags":55,"homepage":59,"download_link":60,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"slimjetpack","Slim Jetpack","2.7.0.1","WingerSpeed","https:\u002F\u002Fprofiles.wordpress.org\u002Fwingerspeed\u002F","Slim version of Jetpack unlinked from WordPress.com :) Supercharge your self-hosted wp site even you're NOT WP.COM users.",2000,122976,86,24,"2017-11-28T14:15:00.000Z","3.7.41","3.6",[21,23,56,57,58],"tweets","twitter","views","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fslimjetpack\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fslimjetpack.2.7.0.1.zip",85,{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":77,"tags":78,"homepage":83,"download_link":84,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"jetpack-protect","Jetpack Protect","4.4.1","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>Free daily vulnerability scans & WordPress security, powered by WPScan (an Automattic brand) and its 60,000+ vulnerability database. No setup needed!\u003C\u002Fp>\n\u003Ch3>TOTAL SITE SECURITY FROM WORDPRESS EXPERTS\u003C\u002Fh3>\n\u003Cp>Jetpack Protect is a free and essential WordPress security plugin that scans your site and warns you about vulnerabilities, keeping your site one step ahead of security threats. It’s easy to use; setup requires just a few clicks!\u003C\u002Fp>\n\u003Cp>By upgrading Protect, you also unlock malware scanning with one-click fixes for most issues and instant notifications when threats are detected. Our automated Web Application Firewall (WAF) also protects your site from bad actors around the clock.\u003C\u002Fp>\n\u003Cp>Jetpack Protect is created by WordPress experts; our parent company Automattic is behind Jetpack, WordPress.com, WooCommerce, WPScan, and much more. There is no better company to understand the security needs of WordPress sites.\u003C\u002Fp>\n\u003Ch3>WHAT DOES JETPACK PROTECT (FREE) CHECK FOR?\u003C\u002Fh3>\n\u003Cp>Jetpack Protect scans your site on a daily basis and warns you about:\u003Cbr \u002F>\n– The version of WordPress installed, and any associated vulnerabilities\u003Cbr \u002F>\n– What plugins are installed, and any related vulnerabilities\u003Cbr \u002F>\n– What themes are installed, and any associated vulnerabilities\u003C\u002Fp>\n\u003Ch4>What are vulnerabilities? Why do I need to scan my site regularly?\u003C\u002Fh4>\n\u003Cp>Site vulnerabilities are flaws in a website’s code that weaken the site’s overall security. These can be introduced to a site in various ways, in most cases unintentionally.\u003C\u002Fp>\n\u003Cp>Some of the ways vulnerabilities can be introduced to a site are:\u003Cbr \u002F>\n– Poorly written site code\u003Cbr \u002F>\n– Plugin and theme bugs\u003Cbr \u002F>\n– WordPress version bugs\u003Cbr \u002F>\n– System misconfigurations\u003C\u002Fp>\n\u003Cp>If a bad actor detects a vulnerability on your site, they can exploit it to access sensitive information, update your site, and more to damage your business or brand.\u003C\u002Fp>\n\u003Cp>That’s why it’s essential to use a reputable and reliable vulnerability & malware site scanner like Jetpack Protect to safeguard your site.\u003C\u002Fp>\n\u003Ch4>Can I use Jetpack Scan to fix a site that is already infected?\u003C\u002Fh4>\n\u003Cp>Jetpack Protect (Scan) detects and prevents attacks, but is not designed to fully clean up sites infected before it was active. If your site has malware, take immediate action to clean it up and remove the malicious code.\u003C\u002Fp>\n\u003Cp>To clean up your site, we suggest using a malware removal tool, or if possible restore from a backup taken before the infection. We recommend using Jetpack VaultPress Backup in conjunction with Jetpack Scan to secure your website.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fsupport\u002Fscan\u002Fhow-to-clean-your-hacked-wordpress-site\u002F\" rel=\"nofollow ugc\">Learn more about cleaning your site\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>BRUTE FORCE ATTACK PROTECTION\u003C\u002Fh3>\n\u003Cp>Jetpack Protect blocks unwanted login attempts from malicious botnets and distributed attacks.\u003C\u002Fp>\n\u003Ch4>Is my site under attack?\u003C\u002Fh4>\n\u003Cp>Brute force attacks are the most common form of hacking — and hackers don’t discriminate. As the most commonly used Content Management System on the web, WordPress sites make an attractive target for hackers looking to exploit code vulnerabilities unique to WordPress.\u003C\u002Fp>\n\u003Cp>Using large networks of computers known as botnets, hackers can try to gain access to your site by using thousands of different combinations of usernames and passwords until they find the right one.\u003C\u002Fp>\n\u003Cp>Recently, attackers have found a way to “amplify” these attacks against the WordPress XML-RPC file – making it easier for attackers to try and break into your site.\u003C\u002Fp>\n\u003Cp>WordPress brute force attacks can:\u003Cbr \u002F>\n– Slow down your site (or cause it to stop responding) because of repeated server requests.\u003Cbr \u002F>\n– Allow unauthorized access to your site for hackers to modify your code or insert spammy links.\u003Cbr \u002F>\n– Put your site content and data at risk.\u003C\u002Fp>\n\u003Cp>That’s where Jetpack Protect comes in. Our state-of-the-art security tools automatically block these attacks, protecting your WordPress site from unauthorized access.\u003C\u002Fp>\n\u003Cp>On average, Jetpack blocks 5,193 WordPress brute force attacks over a site’s lifetime. It allows you to protect yourself against both traditional brute force attacks and distributed brute force attacks that use many servers against your site.\u003C\u002Fp>\n\u003Ch3>UPGRADE PROTECT TO REMOVE MALWARE IN ONE CLICK AND BE PROTECTED BY OUR WAF\u003C\u002Fh3>\n\u003Cp>By upgrading Protect, you unlock total site security from WordPress experts:\u003Cbr \u002F>\n– Automated daily malware scanning in addition to vulnerability checks\u003Cbr \u002F>\n– One-click fixes for most issues\u003Cbr \u002F>\n– Web Application Firewall (WAF) with automatic rule updates\u003Cbr \u002F>\n– Instant email notifications when threats are detected\u003Cbr \u002F>\n– Priority support from WordPress experts\u003C\u002Fp>\n\u003Ch4>What is malware? Why do I need to protect against it?\u003C\u002Fh4>\n\u003Cp>Malware is malicious code or software that has been created by bad actors to disrupt, damage, or gain access to your site. There are many ways that malware can get onto your WordPress site. The most common method is through attackers using vulnerable plugins or themes to install malware.\u003C\u002Fp>\n\u003Cp>Similar to the vulnerabilities listed above, bad actors can use malware to capture sensitive information, damage your site, and harm your business or brand.\u003C\u002Fp>\n\u003Cp>Jetpack Protect instantly notifies you of any threats detected, with one-click fixes for most issues.\u003C\u002Fp>\n\u003Ch4>What is a Web Application Firewall (WAF)?\u003C\u002Fh4>\n\u003Cp>A web application firewall blocks traffic and malicious requests to your site from known bad actors.\u003C\u002Fp>\n\u003Cp>As threats are detected, new rules are added to Jetpack Protect’s firewall, which provides around-the-clock protection for your WordPress site.\u003C\u002Fp>\n\u003Ch3>OVER 53,500 REGISTERED VULNERABILITIES IN OUR DATABASE\u003C\u002Fh3>\n\u003Cp>WordPress security is something that evolves over time. Jetpack Protect leverages the extensive database of WPScan, an Automattic brand. All vulnerabilities are entered into our database by dedicated WordPress security professionals and updated constantly as new information becomes available.\u003C\u002Fp>\n\u003Ch3>JETPACK PROTECT IS EASY TO SETUP AND USE\u003C\u002Fh3>\n\u003Cp>There’s nothing to configure – the setup process is as easy as:\u003Cbr \u002F>\n1. Install and activate the plugin\u003Cbr \u002F>\n2. Set up it with one click.\u003C\u002Fp>\n\u003Cp>After you activate the plugin, Jetpack Protect will run daily automatic malware scans on your WordPress site and update you on vulnerabilities associated with your installed plugins, themes, and WordPress core.\u003C\u002Fp>\n\u003Ch3>WITH 💚 BY JETPACK\u003C\u002Fh3>\n\u003Cp>This is just the start!\u003C\u002Fp>\n\u003Cp>We are working hard to bring more features and improvements to Jetpack Protect. Let us know your thoughts and ideas!\u003C\u002Fp>\n\u003Ch3>FURTHER READING\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002F\" rel=\"nofollow ugc\">Jetpack: Security, performance, and growth tools made for WordPress sites by the WordPress experts.\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>You can follow the \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fjetpack?lang=en\" rel=\"nofollow ugc\">Jetpack Twitter\u003C\u002Fa> account to catch up on our latest WordPress security recommendations and updates.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fblog\u002Fcategory\u002Fsecurity\u002Fpage\u002F3\u002F\" rel=\"nofollow ugc\">WordPress Security: How to Protect Your Site From Hackers\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fblog\u002Fshould-you-use-jetpack-for-wordpress-security\u002F\" rel=\"nofollow ugc\">Should You Use Jetpack for WordPress Security?\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fblog\u002Fjetpack-acquires-wordpress-vulnerability-database-wpscan\u002F#more-139339\" rel=\"nofollow ugc\">Jetpack Acquires WordPress Vulnerability Database WPScan\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Free daily vulnerability scans & WordPress security, powered by WPScan (an Automattic brand) and its 60,000+ vulnerability database. No setup needed!",100000,2292886,94,120,"2025-11-21T02:10:00.000Z","6.9.4","6.7","7.2",[21,79,80,81,82],"malware","protect","scan","security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjetpack-protect","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjetpack-protect.4.4.1.zip",{"slug":86,"name":87,"version":88,"author":66,"author_profile":67,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":93,"num_ratings":94,"last_updated":95,"tested_up_to":75,"requires_at_least":76,"requires_php":77,"tags":96,"homepage":99,"download_link":100,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"jetpack-backup","Jetpack VaultPress Backup","3.7.1","\u003Cp>Jetpack VaultPress Backup is a plugin that gives you cloud-based backups and one-click restores without needing to install the full Jetpack plugin. The most proven WordPress backup plugin with over 270 million backups. Save each change and get back online fast with one-click restores.\u003C\u002Fp>\n\u003Cp>Note: To use this plugin you will need to have a paid Jetpack plan that includes Backup.\u003C\u002Fp>\n\u003Cp>\u003Ciframe title=\"VideoPress Video Player\" aria-label='VideoPress Video Player' width='750' height='422' src='https:\u002F\u002Fvideo.wordpress.com\u002Fembed\u002FVNRR7Mkj?hd=0&cover=1' frameborder='0' allowfullscreen allow='clipboard-write'>\u003C\u002Fiframe>\u003Cscript src='https:\u002F\u002Fv0.wordpress.com\u002Fjs\u002Fnext\u002Fvideopress-iframe.js?m=1674852142'>\u003C\u002Fscript>\u003C\u002Fp>\n\u003Ch3>Restoring your site has never been easier\u003C\u002Fh3>\n\u003Cp>If you make money from your site, or spend hours perfecting content, you need WordPress backups. Protect your investment by getting your site back online in seconds. Our automated WordPress backup plugin is powerful enough for pros, but easy enough for beginners.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy-to-use plugin with one-click restores\u003C\u002Fli>\n\u003Cli>Restore from anywhere with the Jetpack mobile app\u003C\u002Fli>\n\u003Cli>Restore even if your site is offline\u003C\u002Fli>\n\u003Cli>No developer required\u003C\u002Fli>\n\u003Cli>Best-in-class support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>If your host’s servers go down, you’re covered\u003C\u002Fh3>\n\u003Cp>Host backups offer some protection but may not be sufficient to fully safeguard your valuable data. They often have limitations, such as single daily backups only, on-site storage, and clunky interfaces.\u003C\u002Fp>\n\u003Cp>Unlock the VaultPress Backup advantage:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Unmatched Security: Safeguard every change in real-time in the ultra-secure Jetpack Cloud.\u003C\u002Fli>\n\u003Cli>Instant Recovery: Restore your site even when your host is down.\u003C\u002Fli>\n\u003Cli>Backups built specifically for WordPress and WooCommerce sites.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Reliability you can trust\u003C\u002Fh3>\n\u003Cp>Jetpack VaultPress Backup is built on WordPress.com’s world‑class infrastructure, so you can be sure your site is safe and can be recovered at any moment. Host backups are often time‑consuming and require technical expertise to restore. You’ve got more important things to do.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Backups of all files including WordPress database backups, theme file backups and plugin backups\u003C\u002Fli>\n\u003Cli>Backups of all WooCommerce customer and order data\u003C\u002Fli>\n\u003Cli>Redundant copies made on multiple servers\u003C\u002Fli>\n\u003Cli>Off-site \u002F cloud backups so there’s no load on your server\u003C\u002Fli>\n\u003Cli>Global server infrastructure\u003C\u002Fli>\n\u003Cli>Tested to ensure no conflicts with major plugins or hosts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Backups built for WooCommerce\u003C\u002Fh3>\n\u003Cp>Backups are essential for eCommerce stores. New orders come in at any moment, so you need a plan to keep your order and customer data safe. That’s why we designed the Jetpack VaultPress Backup plugin specifically with WooCommerce in mind.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Restore your site to any past state while keeping all orders and products current\u003C\u002Fli>\n\u003Cli>Protect your customer data and stay GDPR compliant\u003C\u002Fli>\n\u003Cli>Custom WooCommerce table backups\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>A must‑have for WordPress site builders\u003C\u002Fh3>\n\u003Cp>Save hours of time developing and maintaining sites by restoring to any point. Just one change pays for itself. Real‑time backups go beyond a snapshot to give you total power and flexibility. The activity log lets you know exactly what action (and who) broke the site, so you can look like a pro for your clients.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Full, incremental, and differential backups in real-time\u003C\u002Fli>\n\u003Cli>Start a backup anytime with the \u003Cstrong>Back up now\u003C\u002Fstrong> button\u003C\u002Fli>\n\u003Cli>Complete list of all site changes\u003C\u002Fli>\n\u003Cli>Quickly restore from any point\u003C\u002Fli>\n\u003Cli>Be empowered to experiment with the look and feel of your site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Expert Support\u003C\u002Fh3>\n\u003Cp>We have a global team of Happiness Engineers ready to provide incredible support. Ask your questions in the support forum or \u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fcontact-support\" rel=\"nofollow ugc\">contact us directly\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Get Started\u003C\u002Fh3>\n\u003Cp>Installation is free, quick, and easy. It only takes a few minutes to install Jetpack VaultPress Backup.\u003C\u002Fp>\n\u003Cp>Note: To use this plugin you will need to have a paid Jetpack plan that includes Backup.\u003C\u002Fp>\n","Save each change and get back online fast with one-click restores. The most proven WordPress backup plugin with over 270 million backups.",20000,328631,90,34,"2025-11-20T23:41:00.000Z",[97,21,98],"backup","restore","https:\u002F\u002Fjetpack.com\u002Fjetpack-backup","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjetpack-backup.3.7.1.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":114,"requires_at_least":115,"requires_php":18,"tags":116,"homepage":18,"download_link":121,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"tiled-gallery-carousel-without-jetpack","Tiled Gallery Carousel Without JetPack","3.1","ThemePacific","https:\u002F\u002Fprofiles.wordpress.org\u002Fraja3c\u002F","\u003Cp>\u003Cem>Working on Gutenberg version of Tiled Gallery. Soon, We’ll Release it. Until then, You can use this Tiled Gallery Plugin with Classi WP Editor.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>There is no doubt that JetPack packed with tons of features. However, many users don’t want all that monstrous codes in their blog for one or two modules. Also, You should connect your blog to wordpress.com to get the JetPack features.\u003C\u002Fp>\n\u003Cp>I really like that Tiled Gallery with Full Screen carousel module in JetPack and don’t want other modules. That’s why I’ve made the this Tiled Gallery Carousel Without JetPack Plugin from JetPack.\u003C\u002Fp>\n\u003Cp>Tiled Gallery with carousel will completely transform your galleries to new look and your users will love this. Tiled Gallery allows you to display image galleries in following styles, a rectangular mosaic, a square mosaic, and a circular grid.\u003C\u002Fp>\n\u003Cp>Demo Tiled Gallery :  \u003Ca href=\"http:\u002F\u002Fdemo.themepacific.com\u002Fplugin-tiled-gallery-carousel\u002F2013\u002F10\u002F13\u002Ftiled-gallery-carousel-without-jetpack-wordpress-plugin\u002F\" title=\"Demo Link\" rel=\"nofollow ugc\">Demo link\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>If you like this plugin then follow ThemePacific on \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fthemepacific\" title=\"Twitter\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>, \u003Ca href=\"http:\u002F\u002Ffacebook.com\u002Fthemepacific\" title=\"Facebook\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fplus.google.com\u002Fu\u002F0\u002F111626044701452949912\" title=\"Google+\" rel=\"nofollow ugc\">Google+\u003C\u002Fa>\u003C\u002Fp>\n","Tiled Gallery with Full Screen Carousel slideshow without Jetpack.",10000,276849,88,55,"2020-04-02T10:17:00.000Z","5.4.19","3.4.1",[117,118,21,119,120],"carousel","gallery-carousel","lightbox","tiled-gallery","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftiled-gallery-carousel-without-jetpack.3.1.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":27,"num_ratings":132,"last_updated":133,"tested_up_to":75,"requires_at_least":134,"requires_php":135,"tags":136,"homepage":18,"download_link":140,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"stop-xml-rpc-attacks","Stop XML-RPC Attacks","2.0.0","Pascal CESCATO","https:\u002F\u002Fprofiles.wordpress.org\u002Fpcescato\u002F","\u003Cp>Stop XML-RPC Attacks protects your WordPress site from XML-RPC brute force attacks, DDoS attempts, and reconnaissance probes while maintaining compatibility with essential services like Jetpack and WooCommerce.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Three security modes: Full Disable, Guest Disable, or Selective Blocking\u003C\u002Fli>\n\u003Cli>Blocks dangerous methods: system.multicall, pingback.ping, and more\u003C\u002Fli>\n\u003Cli>Compatible with Jetpack and WooCommerce\u003C\u002Fli>\n\u003Cli>Optional user enumeration blocking\u003C\u002Fli>\n\u003Cli>Attack logging for monitoring\u003C\u002Fli>\n\u003Cli>Zero configuration required – works out of the box\u003C\u002Fli>\n\u003Cli>Clean, intuitive admin interface\u003C\u002Fli>\n\u003C\u002Ful>\n","Blocks dangerous XML-RPC methods while preserving Jetpack, WooCommerce, and mobile apps compatibility.",6000,26717,4,"2026-01-01T13:41:00.000Z","6.0","7.4",[137,138,21,82,139],"brute-force","ddos","xmlrpc","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstop-xml-rpc-attacks.2.0.0.zip",{"attackSurface":142,"codeSignals":178,"taintFlows":200,"riskAssessment":201,"analyzedAt":212},{"hooks":143,"ajaxHandlers":174,"restRoutes":175,"shortcodes":176,"cronEvents":177,"entryPointCount":28,"unprotectedCount":28},[144,151,155,159,164,169],{"type":145,"name":146,"callback":147,"priority":148,"file":149,"line":150},"filter","jetpack_get_default_modules","manual_control",99,"jetpack-module-control.php",47,{"type":145,"name":152,"callback":153,"file":149,"line":154},"jetpack_offline_mode","development_mode",48,{"type":145,"name":156,"callback":157,"file":149,"line":158},"jetpack_get_available_modules","blacklist",49,{"type":160,"name":161,"callback":162,"priority":14,"file":149,"line":163},"action","admin_init","init",51,{"type":160,"name":165,"callback":166,"priority":167,"file":149,"line":168},"admin_menu","control_submenus",1001,52,{"type":145,"name":170,"callback":171,"priority":172,"file":149,"line":173},"wp_default_autoload_value","autoload_value",10,53,[],[],[],[],{"dangerousFunctions":179,"sqlUsage":180,"outputEscaping":182,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":199},[],{"prepared":28,"raw":28,"locations":181},[],{"escaped":183,"rawEcho":184,"locations":185},1,6,[186,190,192,193,195,197],{"file":187,"line":188,"context":189},"inc\\class-settings.php",424,"raw output",{"file":187,"line":191,"context":189},427,{"file":187,"line":191,"context":189},{"file":187,"line":194,"context":189},432,{"file":187,"line":196,"context":189},470,{"file":187,"line":198,"context":189},485,[],[],{"summary":202,"deductions":203},"The \"jetpack-module-control\" plugin v1.7.2 exhibits a strong security posture based on the provided static analysis. There are no identified entry points like AJAX handlers, REST API routes, or shortcodes that lack authentication or permission checks, indicating a well-designed attack surface. The absence of dangerous functions, file operations, external HTTP requests, and raw SQL queries further reinforces this positive assessment.  The plugin also demonstrates good practices by utilizing prepared statements for any SQL queries, though the total number of queries is zero.\n\nHowever, a significant concern arises from the low rate of proper output escaping (14%). This suggests that data displayed by the plugin may not be sufficiently sanitized, potentially leading to cross-site scripting (XSS) vulnerabilities if any user-supplied data is rendered without adequate escaping.  The lack of nonce checks and capability checks, combined with the low output escaping rate, points to potential areas where an attacker could exploit the plugin.  The vulnerability history is clean, with no recorded CVEs, which is a positive indicator.  However, the absence of historical vulnerabilities, coupled with the identified output escaping issue, might suggest that either the plugin has not been extensively tested for XSS or the identified issue has not yet been exploited or discovered.\n\nIn conclusion, while the plugin has a minimal attack surface and avoids common dangerous practices, the critical weakness in output escaping presents a tangible risk. The lack of historical vulnerabilities should not lead to complacency, especially given the identified code signals. Addressing the output escaping mechanism is paramount to improving its overall security.",[204,207,210],{"reason":205,"points":206},"Low rate of properly escaped output",7,{"reason":208,"points":209},"No nonce checks",5,{"reason":211,"points":209},"No capability checks","2026-03-16T18:48:51.183Z",{"wat":214,"direct":223},{"assetPaths":215,"generatorPatterns":218,"scriptPaths":219,"versionParams":220},[216,217],"\u002Fwp-content\u002Fplugins\u002Fjetpack-module-control\u002Finc\u002Fcss\u002Fjetpack-module-control.css","\u002Fwp-content\u002Fplugins\u002Fjetpack-module-control\u002Finc\u002Fjs\u002Fjetpack-module-control.js",[],[217],[221,222],"jetpack-module-control\u002Finc\u002Fcss\u002Fjetpack-module-control.css?ver=","jetpack-module-control\u002Finc\u002Fjs\u002Fjetpack-module-control.js?ver=",{"cssClasses":224,"htmlComments":225,"htmlAttributes":226,"restEndpoints":228,"jsGlobals":229,"shortcodeOutput":230},[],[],[227],"data-jetpack-mc-setting",[],[],[]]