[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7SAc5v1ozGb7U4m17ZjCNsBKgXt6_ieYPN33wnhZtrw":3,"$f1FyOvDnK9QE_MsHQWbYKwWiONf-Xqj2WTvlDBmCpI5U":249,"$fWhONBUT92Amkho4lDj7Uwu-ZFTX_dWAMfQ-B6xYzwFs":254},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":36,"analysis":148,"fingerprints":235},"launches-from-spacex","Launches from SpaceX","1.0.0","yugensoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fyugensoft\u002F","\u003Cp>Show your visitors upcoming and recent SpaceX launches in your sidebar.\u003C\u002Fp>\n\u003Cp>Uses the r-spacex API: https:\u002F\u002Fgithub.com\u002Fr-spacex\u002FSpaceX-API\u003C\u002Fp>\n","Show your visitors upcoming and recent SpaceX launches in your sidebar. Uses the r-spacex API: https:\u002F\u002Fgithub.com\u002Fr-spacex\u002FSpaceX-API",10,5667,0,"2018-09-05T06:55:00.000Z","4.9.29","4.9","5.6",[19,20,21,22,23],"astronomy","rockets","space","space-x","spacex","https:\u002F\u002Fyugensoft.com\u002Fplugins\u002Flaunches-from-spacex","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flaunches-from-spacex.1.0.0.zip",85,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},2,30,84,"2026-05-20T09:11:07.550Z",[37,58,84,108,129],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":57},"nasa-astrology-picture-of-the-day","NASA Picture of the Day","1.0","ianwww","https:\u002F\u002Fprofiles.wordpress.org\u002Fianwww\u002F","\u003Cp>This simple plugin will grab the NASA Astronomy Picture of the Day and create a new post with it. You can choose which username it will post under as well as whether or not to go ahead and publish on creation.\u003C\u002Fp>\n\u003Cp>Using this plugin will required you get an API Key from NASA, which is very easy to get. This does not utilize an RSS feed and does not post duplicates.\u003C\u002Fp>\n","Allow your readers to enjoy NASA's Astronomy Picture of the Day on your blog with this easy to use and setup plugin.",20,2222,"2015-05-14T21:49:00.000Z","4.2.39","4.0","",[52,19,53,54,21],"apod","nasa","pic-of-the-day","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnasa-astrology-picture-of-the-day","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnasa-astrology-picture-of-the-day.zip","2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":80,"download_link":81,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":83},"imsanity","Imsanity","2.9.0","nosilver4u","https:\u002F\u002Fprofiles.wordpress.org\u002Fnosilver4u\u002F","\u003Cp>Automatically resize huge image uploads with Imsanity. Choose whatever size and quality you like, and let Imsanity do the rest.  When a contributor uploads an image that is larger than the configured size, Imsanity will automatically scale it down to the configured size and replace the original image.\u003C\u002Fp>\n\u003Cp>Imsanity also provides a bulk-resize feature to resize previously uploaded images and free up disk space. You may resize individual images from the Media Library’s List View.\u003C\u002Fp>\n\u003Cp>This plugin is ideal for blogs that do not require hi-resolution original images to be stored and\u002For the contributors don’t want (or understand how) to scale images before uploading.\u003C\u002Fp>\n\u003Cp>You may report security issues through our Patchstack Vulnerability Disclosure Program. The Patchstack team helps validate, triage and handle any security vulnerabilities. \u003Ca href=\"https:\u002F\u002Fpatchstack.com\u002Fdatabase\u002Fvdp\u002Fimsanity\" rel=\"nofollow ugc\">Report a security vulnerability.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatically scales large image uploads to a more “sane” size\u003C\u002Fli>\n\u003Cli>Bulk resize feature to resize existing images\u003C\u002Fli>\n\u003Cli>Selectively resize images directly in the Media Library (List View)\u003C\u002Fli>\n\u003Cli>Allows configuration of max width\u002Fheight and JPG quality\u003C\u002Fli>\n\u003Cli>Optionally converts BMP and PNG files to JPG for more savings\u003C\u002Fli>\n\u003Cli>Once enabled, Imsanity requires no actions on the part of the user\u003C\u002Fli>\n\u003Cli>Uses WordPress built-in image scaling functions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Imsanity is available in several languages, each of which will be downloaded automatically when you install the plugin. To help translate it into your language, visit https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fimsanity\u003C\u002Fp>\n\u003Ch4>Contribute\u003C\u002Fh4>\n\u003Cp>Imsanity is developed at https:\u002F\u002Fgithub.com\u002Fnosilver4u\u002Fimsanity (pull requests are welcome)\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Originally written by Jason Hinkle (RIP). Maintained and developed by \u003Ca href=\"https:\u002F\u002Fewww.io\" rel=\"nofollow ugc\">Shane Bishop\u003C\u002Fa> with special thanks to my \u003Ca href=\"https:\u002F\u002Fwww.iamsecond.com\u002F\" rel=\"nofollow ugc\">Lord and Savior\u003C\u002Fa>.\u003C\u002Fp>\n","Automatically resizes huge image uploads. Are contributors uploading huge photos? Tired of manually resizing your images? Imsanity to the rescue!",200000,4476993,98,291,"2026-02-10T17:08:00.000Z","6.9.4","6.6","7.4",[75,76,77,78,79],"image","quality","resize","scale","space-saver","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimsanity\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimsanity.2.9.0.zip",100,"2026-04-16T10:56:18.058Z",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":95,"last_updated":96,"tested_up_to":71,"requires_at_least":97,"requires_php":50,"tags":98,"homepage":103,"download_link":104,"security_score":105,"vuln_count":106,"unpatched_count":13,"last_vuln_date":107,"fetched_at":83},"png-to-jpg","PNG to JPG","4.5","kubiq","https:\u002F\u002Fprofiles.wordpress.org\u002Fkubiq\u002F","\u003Cp>Convert PNG images to JPG, free up web space and speed up your webpage\u003C\u002Fp>\n\u003Cul>\n\u003Cli>set quality of converted JPG\u003C\u002Fli>\n\u003Cli>auto convert on upload\u003C\u002Fli>\n\u003Cli>auto convert on upload only when PNG has no transparency\u003C\u002Fli>\n\u003Cli>only convert image if JPG filesize is lower than PNG filesize\u003C\u002Fli>\n\u003Cli>leave original PNG images on the server\u003C\u002Fli>\n\u003Cli>convert existing PNG image to JPG\u003C\u002Fli>\n\u003Cli>bulk convert existing PNG images to JPG\u003C\u002Fli>\n\u003Cli>conversion statistics\u003C\u002Fli>\n\u003C\u002Ful>\n","Convert PNG images to JPG, free up web space and speed up your webpage",10000,154007,94,40,"2025-12-01T23:56:00.000Z","3.0.1",[99,75,100,101,102],"convert","media","optimize","save-space","https:\u002F\u002Fwp-speedup.eu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpng-to-jpg.4.5.zip",99,1,"2022-05-06 13:18:00",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":71,"requires_at_least":49,"requires_php":50,"tags":121,"homepage":127,"download_link":128,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":83},"disk-usage-sunburst","Disk Usage Sunburst","1.1.8","RAIDBOXES","https:\u002F\u002Fprofiles.wordpress.org\u002Fraidboxes\u002F","\u003Cp>This plugin (\u003Ccode>Tools\u003C\u002Fcode> -> \u003Ccode>Disk Usage\u003C\u002Fcode>) shows all files of your WordPress installation at once. These are displayed in a so\u003Cbr \u002F>\ncalled “Sunburst Chart”. Each arc of the chart is either a directory or a file. Move your mouse over an arc to see the size\u003Cbr \u002F>\nof the file or directory. The bigger the arc is the bigger is the file\u002Fdirectory.\u003C\u002Fp>\n\u003Cp>Very useful to determine the biggest files in your WordPress installation!\u003C\u002Fp>\n\u003Cp>Click on an arc to zoom in, and click in the circle to zoom out again.\u003C\u002Fp>\n\u003Cp>Questions? Drop us a mail: wp-dev (at) \u003Ca href=\"http:\u002F\u002Fraidboxes.de\" rel=\"nofollow ugc\">raidboxes.de\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Thanks\u003C\u002Fh3>\n\u003Cp>Thanks to Mike Bostock for his great “d3js”:  http:\u002F\u002Fd3js.org\u003C\u002Fp>\n\u003Cp>Thanks to Mike Bostock for his awesome “Zoomable Sunburst” implementation: http:\u002F\u002Fbl.ocks.org\u002Fmbostock\u002F4348373\u003C\u002Fp>\n\u003Cp>Thanks to Jeffrey Sambells for his “Human Readable File Size with PHP”: http:\u002F\u002Fjeffreysambells.com\u002F2012\u002F10\u002F25\u002Fhuman-readable-filesize-php\u003C\u002Fp>\n","Visualize and drill down the disk usage of your whole WordPress installation. Find and identify big files immediately!",9000,115131,96,36,"2026-01-13T13:42:00.000Z",[122,123,124,125,126],"big-files","disk-consumption","disk-space","disk-usage","file-consumption","https:\u002F\u002Fraidboxes.io\u002Fen\u002Fdisk-usage-sunburst-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisk-usage-sunburst.zip",{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":139,"num_ratings":11,"last_updated":140,"tested_up_to":141,"requires_at_least":142,"requires_php":50,"tags":143,"homepage":145,"download_link":146,"security_score":147,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":83},"my-simple-space","My Simple Space","1.2.9","idowebwork","https:\u002F\u002Fprofiles.wordpress.org\u002Fmannweb\u002F","\u003Cp>Display the total size space usage as well:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>wp-content total size\u003C\u002Fli>\n\u003Cli>wp-content\u002Fplugins size\u003C\u002Fli>\n\u003Cli>wp-content\u002Fthemes size\u003C\u002Fli>\n\u003Cli>wp-content\u002Fuploads size\u003C\u002Fli>\n\u003Cli>database size\u003C\u002Fli>\n\u003Cli>Total available memory \u002F used memory\u003C\u002Fli>\n\u003Cli>PHP Version and OS (32\u002F64 bit)\u003C\u002Fli>\n\u003C\u002Ful>\n","Disk Space, Database and Memory Usage in the dashboard.",8000,69516,88,"2024-09-16T17:31:00.000Z","6.6.5","4.6.0",[144,124],"database-size","https:\u002F\u002Fidoweb.work\u002Fresources\u002Fplugins-themes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-simple-space.1.2.9.zip",92,{"attackSurface":149,"codeSignals":163,"taintFlows":221,"riskAssessment":222,"analyzedAt":234},{"hooks":150,"ajaxHandlers":159,"restRoutes":160,"shortcodes":161,"cronEvents":162,"entryPointCount":13,"unprotectedCount":13},[151,156],{"type":152,"name":153,"callback":154,"file":155,"line":45},"action","widgets_init","closure","class-spacex-launches.php",{"type":152,"name":157,"callback":154,"file":155,"line":158},"wp_enqueue_scripts",23,[],[],[],[],{"dangerousFunctions":164,"sqlUsage":165,"outputEscaping":167,"fileOperations":106,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":220},[],{"prepared":13,"raw":13,"locations":166},[],{"escaped":13,"rawEcho":168,"locations":169},28,[170,174,176,178,180,182,184,185,186,187,189,191,193,195,197,198,200,202,203,205,206,208,209,211,213,215,217,219],{"file":171,"line":172,"context":173},"views\u002Flaunch.php",3,"raw output",{"file":171,"line":175,"context":173},4,{"file":171,"line":177,"context":173},7,{"file":171,"line":179,"context":173},9,{"file":171,"line":181,"context":173},14,{"file":171,"line":183,"context":173},15,{"file":171,"line":45,"context":173},{"file":171,"line":168,"context":173},{"file":171,"line":33,"context":173},{"file":171,"line":188,"context":173},39,{"file":171,"line":190,"context":173},43,{"file":171,"line":192,"context":173},47,{"file":171,"line":194,"context":173},51,{"file":196,"line":106,"context":173},"views\u002Fwidget.php",{"file":196,"line":175,"context":173},{"file":196,"line":199,"context":173},27,{"file":201,"line":32,"context":173},"views\u002Fwidget_admin.php",{"file":201,"line":175,"context":173},{"file":201,"line":204,"context":173},6,{"file":201,"line":177,"context":173},{"file":201,"line":207,"context":173},12,{"file":201,"line":181,"context":173},{"file":201,"line":210,"context":173},16,{"file":201,"line":212,"context":173},17,{"file":201,"line":214,"context":173},22,{"file":201,"line":216,"context":173},24,{"file":201,"line":218,"context":173},26,{"file":201,"line":199,"context":173},[],[],{"summary":223,"deductions":224},"The \"launches-from-spacex\" plugin, in version 1.0.0, exhibits a mixed security posture. On the positive side, it demonstrates good practices by not exposing any AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, it has no known vulnerabilities (CVEs) and avoids dangerous functions and external HTTP requests.  The SQL queries that are present are also correctly prepared, which is a significant strength.\n\nHowever, several concerning areas are highlighted by the static analysis. The most critical weakness is that 100% of its output is not properly escaped. This opens the door to potential Cross-Site Scripting (XSS) vulnerabilities if any of the plugin's outputs are derived from user-controlled input. The single file operation also represents a potential entry point for file manipulation vulnerabilities if not handled securely.  The absence of nonce and capability checks on any potential, albeit currently non-existent, entry points is also a notable gap.\n\nGiven the lack of historical vulnerabilities, it's difficult to draw strong conclusions about past security practices beyond the current version. The strengths lie in the limited attack surface and secure database interactions. The primary weakness is the pervasive lack of output escaping, which, despite the current limited attack surface, poses a significant risk of XSS if the plugin's functionality were to expand or if user input is processed in any way that is not immediately obvious from this static analysis. Overall, while the current plugin has a small footprint, the unescaped output requires immediate attention.",[225,227,229,232],{"reason":226,"points":183},"0% properly escaped output",{"reason":228,"points":172},"1 file operation without explicit checks",{"reason":230,"points":231},"0 Nonce checks present",5,{"reason":233,"points":231},"0 Capability checks present","2026-04-16T11:39:35.708Z",{"wat":236,"direct":242},{"assetPaths":237,"generatorPatterns":239,"scriptPaths":240,"versionParams":241},[238],"\u002Fwp-content\u002Fplugins\u002Flaunches-from-spacex\u002Fassets\u002Fcss\u002Fspacex-launches.css",[],[],[],{"cssClasses":243,"htmlComments":244,"htmlAttributes":245,"restEndpoints":246,"jsGlobals":247,"shortcodeOutput":248},[],[],[],[],[],[],{"error":250,"url":251,"statusCode":252,"statusMessage":253,"message":253},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Flaunches-from-spacex\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":106,"versions":255},[256],{"version":6,"download_url":25,"svn_tag_url":257,"released_at":27,"has_diff":258,"diff_files_changed":259,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":260,"is_current":250},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Flaunches-from-spacex\u002Ftags\u002F1.0.0\u002F",false,[],[]]