[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fLcIdFuW3SeoXiXwuy--q2Dkg_3WES0IDUi2W8mbgu84":3,"$fUJcG7VzuQZJ2-i3Cdl-6QJ3atZTi7ZfYS6AXal5-5oc":295},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":21,"download_link":22,"security_score":23,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":35,"analysis":137,"fingerprints":272},"live-demo-sandbox","Live Demo Sandbox – Demo Site per Visitor","1.0.1","JK","https:\u002F\u002Fprofiles.wordpress.org\u002Fjayedul\u002F","\u003Cp>Introducing a powerful WordPress plugin that creates a unique sandbox environment for each visitor. Perfect for showcasing custom-made themes and plugins, this tool allows potential customers to experience your products firsthand, ensuring a tailored and engaging demonstration every time.\u003C\u002Fp>\n\u003Cp>Typically, we create a single site for all visitors, allowing them to post random content that ultimately spoils the experience for others. If we want to implement a sandbox mechanism where every visitor gets a fresh setup that is deleted after a certain period, we usually have to rely on third-party services, which might not be ideal in all cases.\u003C\u002Fp>\n\u003Cp>To resolve the issue, this plugin offers sandbox mechanism on the same server as the main site. It eliminates the need for additional servers and quickly sets up a new instance for each visitor by leveraging WP Multisite. Doesn’t alternate the existing site BTW.\u003C\u002Fp>\n\u003Ch3>Get In Touch\u003C\u002Fh3>\n\u003Cp>Please get in touch with us with any questions.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fsolidie.com\u002F#contact\" rel=\"nofollow ugc\">Click Here to Contact Us\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Please share your valuable review \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flive-demo-sandbox\u002F#reviews\" rel=\"ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Documentation and Support\u003C\u002Fh4>\n\u003Cp>If you have any questions or problems using this plugin, you can write here in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Flive-demo-sandbox\u002F\" rel=\"ugc\">support channel\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>There are several minified JavaScript file that are built with React JS and compiled with Webpack. If you want to access the unminified files for this plugin, you can do so from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FSolidie\u002Flive-demo-sandbox\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n","A powerful WordPress plugin that creates a sandbox for each visitor, ideal for showcasing custom-made themes and plugins.",0,1260,"2024-10-26T16:05:00.000Z","6.6.5","5.3","7.4",[18,19,20],"instance","live-demo","sandbox","https:\u002F\u002Fsolidie.com\u002Flive-demo-sandbox\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flive-demo-sandbox.1.0.1.zip",92,null,"2026-04-16T10:56:18.058Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"jayedul",3,10,95,30,91,"2026-04-18T23:01:05.028Z",[36,59,81,100,119],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"widget-instance","Widget Instance","0.9.4","Global","https:\u002F\u002Fprofiles.wordpress.org\u002Fglobal_1981\u002F","\u003Cp>Widgets are normally displayed as part of a sidebar using the dynamic_sidebar()\u003Cbr \u002F>\nfunction. There is the_widget function for static widgets, but there is no\u003Cbr \u002F>\nequivalent for specific widgets configured in the Appearance > Widgets area.\u003C\u002Fp>\n\u003Cp>The Widget Instance plugin allows WordPress users of all abilities to display\u003Cbr \u002F>\nthese widgets outside of the sidebars they have been assigned to.\u003C\u002Fp>\n\u003Cp>Features\u003C\u002Fp>\n\u003Col>\n\u003Cli>A wysiwyg editor button for selecting available widgets,\u003C\u002Fli>\n\u003Cli>A shortcode [widget_instance id=”[widget_id]”],\u003C\u002Fli>\n\u003Cli>A theme action do_action(‘widget_instance’, [widget_id]) and finally\u003C\u002Fli>\n\u003Cli>Utility functions for developers get_widget_instance and widget_instance\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Usage\u003C\u002Fp>\n\u003Cul>\n\u003Cli>[widget_instance id=”[widget_id]”]\u003C\u002Fli>\n\u003Cli>do_action(‘widget_instance’, ‘[widget_id]’);\u003C\u002Fli>\n\u003Cli>the_widget_instance(‘[widget_id]’);\u003C\u002Fli>\n\u003Cli>get_the_widget_instance(‘[widget_id]’);\u003C\u002Fli>\n\u003C\u002Ful>\n","Display an active widget added to a sidebar within the editor or by using a shortcode, function or action.",500,13338,68,9,"2018-07-11T11:52:00.000Z","4.9.29","2.9.1","",[53,54,37,55],"display-widget","widget","widgets","http:\u002F\u002Fbcooling.com.au","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwidget-instance.zip",85,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":16,"tags":74,"homepage":79,"download_link":80,"security_score":69,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"sandbox-payment-gateway","Sandbox Payment Gateway for WooCommerce","1.0.4","webmonk","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebmonk\u002F","\u003Cp>Sandbox Payment Gateway eliminates the need to create coupons or configure real payment gateways when testing your WooCommerce checkout. It provides two fake payment methods that simulate real checkout behavior without processing any actual payments.\u003C\u002Fp>\n\u003Ch4>Sandbox Credit Card\u003C\u002Fh4>\n\u003Cp>Accepts any valid credit card number with Luhn algorithm validation, expiry date checks, and CVV verification.\u003C\u002Fp>\n\u003Ch4>Sandbox ACH \u002F eCheck\u003C\u002Fh4>\n\u003Cp>Accepts check name, routing number (9 digits), and account number (4-17 digits). Successful payments are placed on-hold to simulate real-world eCheck verification.\u003C\u002Fp>\n\u003Ch4>Simulating a successful credit card transaction\u003C\u002Fh4>\n\u003Cp>Use any valid credit card details (e.g. card number 4111111111111111).\u003C\u002Fp>\n\u003Ch4>Simulating a failed credit card transaction\u003C\u002Fh4>\n\u003Cp>Use card number 4929000000022 with a valid expiry and CVV.\u003C\u002Fp>\n\u003Ch4>Simulating a successful eCheck transaction\u003C\u002Fh4>\n\u003Cp>Use any valid 9-digit routing number and 4-17 digit account number.\u003C\u002Fp>\n\u003Ch4>Simulating a failed eCheck transaction\u003C\u002Fh4>\n\u003Cp>Use routing number 000000000 with any valid account number.\u003C\u002Fp>\n\u003Ch4>Refunds\u003C\u002Fh4>\n\u003Cp>Both gateways support refunds from the WooCommerce admin order page. Since payments are simulated, refunds simply log a note on the order.\u003C\u002Fp>\n\u003Ch4>Development\u003C\u002Fh4>\n\u003Cp>The development of this plugin happens at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebmonk\u002Fsandbox-payment-gateway\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you want to contribute, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebmonk\u002Fsandbox-payment-gateway\" rel=\"nofollow ugc\">fork the project\u003C\u002Fa> and send a pull request.\u003C\u002Fp>\n","Fake credit card and ACH\u002FeCheck payment gateways for testing WooCommerce checkout flows.",300,4207,100,1,"2026-03-22T02:21:00.000Z","6.8.5","4.7",[75,76,20,77,78],"demo","payment-gateways","testing","woocommerce","http:\u002F\u002Fcodemypain.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsandbox-payment-gateway.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":14,"requires_at_least":94,"requires_php":95,"tags":96,"homepage":98,"download_link":99,"security_score":23,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"playground","Sandbox Site powered by Playground","0.1.8","Bero","https:\u002F\u002Fprofiles.wordpress.org\u002Fberislavgrgicak\u002F","\u003Cp>With this plugin, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create a copy of your site in a private WordPress Playground instance.\u003C\u002Fli>\n\u003Cli>Test plugins from the WordPress plugin directory without actually installing them on your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Your site is cloned in Playground by copying all the files and a database into WordPress Playground. It may sound scary, but your data stays safely with you and is \u003Cstrong>not\u003C\u002Fstrong> uploaded to any cloud service. Instead, your site’s data is shipped directly to your web browser where it stays only as long as you keep your browser tab open. That’s right! WordPress Playground runs a copy of your site directly on your device.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch4>Starting a sandbox\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Open \u003Ccode>\u002Fwp-admin\u002F\u003C\u002Fcode> on your site\u003C\u002Fli>\n\u003Cli>Click on \u003Cem>Sandbox Site\u003C\u002Fem> in the \u003Cem>Tools\u003C\u002Fem> menu to load WordPress Playground with a copy of your site content\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Testing a plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Open \u003Ccode>\u002Fwp-admin\u002F\u003C\u002Fcode> on your site\u003C\u002Fli>\n\u003Cli>Click on \u003Cem>Add Plugins\u003C\u002Fem> in the \u003Cem>Plugins\u003C\u002Fem> menu\u003C\u002Fli>\n\u003Cli>Find a plugin you want to test\u003C\u002Fli>\n\u003Cli>Click the \u003Cem>Preview Now\u003C\u002Fem> button\u003C\u002Fli>\n\u003Cli>The plugin will be installed and activated in WordPress Playground with a copy of your site content\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>All features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Start a sandbox of your site\u003C\u002Fli>\n\u003Cli>Preview a plugin installation from the WordPress.org repository\u003C\u002Fli>\n\u003Cli>Export Playground snapshots using Tools > Export\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Resources\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWordPress\u002Fplayground-tools\u002Ftree\u002Ftrunk\u002Fpackages\u002Fplayground\" rel=\"nofollow ugc\">Source code\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Fplayground\" rel=\"nofollow ugc\">WordPress Playground\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.github.io\u002Fwordpress-playground\u002F\" rel=\"nofollow ugc\">WordPress Playground repository\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For any issues or questions about the WordPress Playground plugin, please open a GitHub issue in the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWordPress\u002Fplayground-tools\" rel=\"nofollow ugc\">playground-tools\u003C\u002Fa> repository.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This is an early preview to gather feedback and apply polish. This plugin isn’t yet a well-rounded and feature-complete solution.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>The WordPress Playground Plugin is licensed under the GNU General Public License v2.0. This is a free software license that allows you to use, modify, and distribute the software, provided you adhere to its terms and conditions.\u003C\u002Fp>\n","Short description\n\nEnables running a sandbox of your site using WordPress Playground (https:\u002F\u002Fgithub.com\u002FWordPress\u002Fwordpress-playground)",40,5061,80,2,"2024-06-12T22:00:00.000Z","6.0","8.0",[82,20,97],"staging","https:\u002F\u002Fgithub.com\u002FWordPress\u002Fplayground-tools\u002Ftree\u002Ftrunk\u002Fpackages\u002Fplayground","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplayground.0.1.8.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":69,"num_ratings":70,"last_updated":110,"tested_up_to":51,"requires_at_least":111,"requires_php":51,"tags":112,"homepage":117,"download_link":118,"security_score":58,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"multiple-ajax-calendar","Multiple Ajax Calendar","2.2","Xavier Serrano","https:\u002F\u002Fprofiles.wordpress.org\u002Fxavierserranoa\u002F","\u003Cp>Multiple AJAX Calendar is a plugin that will display an AJAX enabled WordPress calendar Widget. This enhances the functionality of the standard wordpress calendar by:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Allows navigating through months without reloading the page.\u003C\u002Fli>\n\u003Cli>Allows Multiple Instances of the calendar\u003C\u002Fli>\n\u003Cli>Displays the posts of each day on a tooltip with their thumbnail\u003C\u002Fli>\n\u003Cli>Add to posts and pages with a shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Tested up to: 3.8.1\u003Cbr \u002F>\nStable tag: 2.2\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cblockquote>\n\u003Cblockquote>\n\u003Cblockquote>\n\u003Cblockquote>\n\u003Cblockquote>\n\u003Cblockquote>\n\u003Cp>.r894745\u003Cbr \u002F>\n              License: GPLv3\u003Cbr \u002F>\n              License URI: http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.html\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003Cp>Multiple AJAX Calendar is a plugin that will display an AJAX enabled WordPress Calendar Widget with the ability to add more than one in a page. It now also displays the links of the posts of each day on a tooltip for easy access.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Full documentation can be found on the \u003Ca href=\"http:\u002F\u002Fthesquaremedia.com\u002Fblog\u002Fplugins\u002Fmultiple-ajax-calendar\u002F\" rel=\"nofollow ugc\">Multiple Ajax Calendar\u003C\u002Fa> page.\u003C\u002Fp>\n","The wordpress calendar widget enhanced to allow multiple instances of it in one page.",20,5040,"2014-04-16T18:56:00.000Z","2.9",[113,114,115,116,54],"ajax","calendar","instances","multiple","http:\u002F\u002Fthesquaremedia.com\u002Fblog\u002Fplugins\u002Fmultiple-ajax-calendar\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultiple-ajax-calendar.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":30,"downloaded":127,"rating":69,"num_ratings":29,"last_updated":128,"tested_up_to":129,"requires_at_least":15,"requires_php":16,"tags":130,"homepage":135,"download_link":136,"security_score":69,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"siteskite","SiteSkite: Manage Multiple Sites, Maintenance, Backups, Updates, Sandbox, Monitoring & More","1.2.12","SiteSkite","https:\u002F\u002Fprofiles.wordpress.org\u002Fsiteskite\u002F","\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.siteskite.com\u002F\" rel=\"nofollow ugc\">SiteSkite\u003C\u002Fa>\u003C\u002Fstrong> is a WebOps for WordPress site maintenance platform built for agencies, developers, and site owners who manage multiple websites.\u003C\u002Fp>\n\u003Cp>With built-in AI Chat and MCP. SiteSkite goes beyond unline traditional site maintenance plugins to give you more power, automation, and visibility across all your sites. It allows you to \u003Cstrong>create new websites from backups\u003C\u002Fstrong>, use \u003Cstrong>prebuilt blueprints\u003C\u002Fstrong>, manage updates in bulk, monitor uptime, automate backups, and control everything from one centralized dashboard.\u003C\u002Fp>\n\u003Cp>Whether you manage 1 site or 100+, SiteSkite simplifies WordPress maintenance and scales with your workflow.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> SiteSkite only manages your website after you connect it using a secure API key.\u003Cbr \u002F>\nAll plugin installation, activation, and maintenance actions must be initiated from your SiteSkite account — ensuring full control and secure access.\u003C\u002Fp>\n\u003Ch3>💡 What SiteSkite Helps You Do\u003C\u002Fh3>\n\u003Cp>✔️ Manage multiple WordPress sites from one dashboard\u003Cbr \u002F>\n✔️ Automate backups & restore anytime\u003Cbr \u002F>\n✔️ SiteSkite AI: Privacy Safe-AI that manage your site\u003Cbr \u002F>\n✔️ SiteSkite MCP Server: Manage your sites directly from Claude.ai, ChatGPT, and Cursor AI.\u003Cbr \u002F>\n✔️ Advanced Site Recovery: Keep your site up & live even it has Fatal Error.\u003Cbr \u002F>\n✔️ Snapshot backup & incremental backup support\u003Cbr \u002F>\n✔️ Create blueprints for rapid deployment\u003Cbr \u002F>\n✔️ Launch sandbox site\u003Cbr \u002F>\n✔️ Spin new sites from existing backups (On SiteSkite servers)\u003Cbr \u002F>\n✔️ Store backups in your own cloud (BYO cloud)\u003Cbr \u002F>\n✔️ Vulerabilities detection guard\u003Cbr \u002F>\n✔️ Monitor uptime & site health across all sites\u003Cbr \u002F>\n✔️ Bulk update, activate, deactivate, and delete plugins\u002Fthemes\u003Cbr \u002F>\n✔️ Roll back plugin\u002Ftheme versions safely\u003Cbr \u002F>\n✔️ Add team members & organize sites into workspaces\u003Cbr \u002F>\n✔️ WP Canvas (Maintenance mode, Debug, Search & Replace, Indexing control, WP Reset & more)\u003Cbr \u002F>\n✔️ Manage WP Admin Users & Roles\u003Cbr \u002F>\n✔️ Track Core Web Vitals performance\u003Cbr \u002F>\n✔️ Install curated plugin presets with WP Essentials\u003Cbr \u002F>\n✔️ White-label the plugin for agency clients\u003Cbr \u002F>\n✔️ Automated Reports for your customers\u003Cbr \u002F>\n✔️ Preety logs view for Error, Debug and Custom logs\u003Cbr \u002F>\n✔️ White Lable plugin for your agency & customers\u003Cbr \u002F>\n✔️ and much more…\u003C\u002Fp>\n\u003Cp>Built to simplify workflows and scale your WordPress operations without stress.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fauth-platform.siteskite.com\u002Fregister\" rel=\"nofollow ugc\">Get started\u003C\u002Fa>\u003C\u002Fstrong> in minutes.\u003C\u002Fp>\n\u003Ch3>🚀 Key Features\u003C\u002Fh3>\n\u003Ch4>🔄 Backups & Restore\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>On-demand, daily, or weekly backups  \u003C\u002Fli>\n\u003Cli>Full, database-only, or file-only backups  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Incremental backups\u003C\u002Fstrong> (resource-efficient)  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Classic snapshot backups\u003C\u002Fstrong> (full archive)  \u003C\u002Fli>\n\u003Cli>Restore with a click  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>☁ BYO Cloud Storage\u003C\u002Fh4>\n\u003Cp>Use your own cloud storage, including:\u003Cbr \u002F>\n– Google Drive\u003Cbr \u002F>\n– Dropbox\u003Cbr \u002F>\n– AWS S3\u003Cbr \u002F>\n– BackBlaze B2\u003Cbr \u002F>\n– pCloud\u003C\u002Fp>\n\u003Ch4>⚙️ Bulk WordPress Actions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Update plugins, themes, and core  \u003C\u002Fli>\n\u003Cli>Activate\u002FDeactivate\u002FDelete plugins & themes  \u003C\u002Fli>\n\u003Cli>Rollback plugin & theme versions  \u003C\u002Fli>\n\u003Cli>Install bulk plugins from presets  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🧰 WP Canvas Tools\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Maintenance Mode  \u003C\u002Fli>\n\u003Cli>WP Debug  \u003C\u002Fli>\n\u003Cli>Search & Replace  \u003C\u002Fli>\n\u003Cli>Permalink settings  \u003C\u002Fli>\n\u003Cli>WP Reset  \u003C\u002Fli>\n\u003Cli>Site Indexing toggle  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>📊 Performance & Monitoring\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Uptime monitoring  \u003C\u002Fli>\n\u003Cli>BirdEye status overview  \u003C\u002Fli>\n\u003Cli>Core Web Vitals metrics  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>👥 Collaboration & Scaling\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Workspaces to group sites & clients  \u003C\u002Fli>\n\u003Cli>Add users, team members, and clients  \u003C\u002Fli>\n\u003Cli>White-label plugin branding  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🛍 Marketplace Access\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Browse tools, presets, and digital assets  \u003C\u002Fli>\n\u003Cli>Wishlist & follow sellers  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔗 Learn More\u003C\u002Fh3>\n\u003Cp>🌐 Website: https:\u002F\u002Fwww.siteskite.com\u003Cbr \u002F>\n📘 Documentation: https:\u002F\u002Fknowledgebase.siteskite.com\u003C\u002Fp>\n\u003Ch3>🧭 Who is SiteSkite for?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress website owners  \u003C\u002Fli>\n\u003Cli>Agencies managing client sites  \u003C\u002Fli>\n\u003Cli>Freelancers & developers  \u003C\u002Fli>\n\u003Cli>Hosting providers offering WP upkeep  \u003C\u002Fli>\n\u003Cli>Anyone who wants peace of mind & automation  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to external services to perform backups, restores, and operational callbacks. Below is a list of services, what they are used for, what data is sent, and relevant policies.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Dropbox\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Uploading and downloading backup archives to the site owner’s Dropbox.\u003C\u002Fli>\n\u003Cli>What data is sent and when: Backup file contents and related metadata (e.g., file name and size) during backup and restore operations initiated by the administrator.\u003C\u002Fli>\n\u003Cli>Endpoints: \u003Ccode>https:\u002F\u002Fcontent.dropboxapi.com\u003C\u002Fcode>, \u003Ccode>https:\u002F\u002Fapi.dropboxapi.com\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Policies: Terms https:\u002F\u002Fwww.dropbox.com\u002Fterms · Privacy https:\u002F\u002Fwww.dropbox.com\u002Fprivacy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Google Drive\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Uploading and downloading backup archives to the site owner’s Google Drive.\u003C\u002Fli>\n\u003Cli>What data is sent and when: Backup file contents and related metadata during backup and restore operations initiated by the administrator.\u003C\u002Fli>\n\u003Cli>Endpoints: \u003Ccode>https:\u002F\u002Fwww.googleapis.com\u002Fdrive\u002Fv3\u002Ffiles\u003C\u002Fcode> and related upload endpoints such as \u003Ccode>https:\u002F\u002Fwww.googleapis.com\u002Fupload\u002Fdrive\u002Fv3\u002Ffiles\u003C\u002Fcode> (resumable\u002Fmultipart uploads).\u003C\u002Fli>\n\u003Cli>Policies: Terms https:\u002F\u002Fpolicies.google.com\u002Fterms · Privacy https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Amazon S3\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Uploading and downloading backup archives to the site owner’s Amazon S3 bucket.\u003C\u002Fli>\n\u003Cli>What data is sent and when: Backup file contents and related metadata during backup and restore operations initiated by the administrator.\u003C\u002Fli>\n\u003Cli>Endpoints: Region-specific S3 REST API (e.g., \u003Ccode>https:\u002F\u002Fs3.\u003Cregion>.amazonaws.com\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>Policies: Service Terms https:\u002F\u002Faws.amazon.com\u002Fservice-terms\u002F · Privacy https:\u002F\u002Faws.amazon.com\u002Fprivacy\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Backblaze B2\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Uploading and downloading backup archives to the site owner’s Backblaze B2 bucket.\u003C\u002Fli>\n\u003Cli>What data is sent and when: Backup file contents and related metadata during backup and restore operations initiated by the administrator.\u003C\u002Fli>\n\u003Cli>Endpoints: Backblaze B2 API (e.g., \u003Ccode>https:\u002F\u002Fapi.backblazeb2.com\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>Policies: Terms https:\u002F\u002Fwww.backblaze.com\u002Fcompany\u002Flegal\u002Fterms.html · Privacy https:\u002F\u002Fwww.backblaze.com\u002Fcompany\u002Fprivacy.html\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>pCloud\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Uploading and downloading backup archives to the site owner’s pCloud storage.\u003C\u002Fli>\n\u003Cli>What data is sent and when: Backup file contents and related metadata during backup and restore operations initiated by the administrator.\u003C\u002Fli>\n\u003Cli>Endpoints: pCloud API (e.g., \u003Ccode>https:\u002F\u002Fapi.pcloud.com\u003C\u002Fcode>) and regional variants such as \u003Ccode>https:\u002F\u002Feapi.pcloud.com\u003C\u002Fcode> (EU) and \u003Ccode>https:\u002F\u002Fasiaapi.pcloud.com\u003C\u002Fcode> (Asia). OAuth token exchange: \u003Ccode>https:\u002F\u002Fmy.pcloud.com\u002Foauth2_token\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Policies: Terms https:\u002F\u002Fwww.pcloud.com\u002Fterms.html · Privacy https:\u002F\u002Fwww.pcloud.com\u002Fprivacy-policy.html\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>SiteSkite endpoints (operational callbacks and validation)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Validating the plugin API key, linking a site, downloading managed assets, and sending operational status callbacks to SiteSkite services. Some staging endpoints may be used for validation or asset download during testing.\u003C\u002Fli>\n\u003Cli>What data is sent and when: Site identifier and operation status metadata (e.g., backup\u002Frestore status) during validation and callbacks. For asset downloads, only the requested asset path is transmitted. Backup contents are never sent to SiteSkite; only selected metadata required to coordinate operations.\u003C\u002Fli>\n\u003Cli>Policies: Terms https:\u002F\u002Fwww.siteskite.com\u002Fterms-of-service · Privacy https:\u002F\u002Fwww.siteskite.com\u002Fprivacy-policy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>WordPress.org (downloads)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>What it’s used for: Downloading official WordPress core translation files when requested by an administrator.\u003C\u002Fli>\n\u003Cli>What data is sent and when: The request URL includes the WordPress core version and language code to retrieve the matching translation archive; no personal data is sent.\u003C\u002Fli>\n\u003Cli>Endpoints: \u003Ccode>https:\u002F\u002Fdownloads.wordpress.org\u002Ftranslation\u002Fcore\u002F\u003Cversion>\u002F\u003Clocale>.zip\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Policies: Terms https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F · Privacy https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notes:\u003Cbr \u002F>\n– Data is transmitted only when you initiate an action that requires it (e.g., starting a backup\u002Frestore, validating your API key, or downloading translations).\u003Cbr \u002F>\n– You choose and configure the cloud storage provider(s) to be used.\u003C\u002Fp>\n","Manage multiple WordPress sites from one dashboard. Automate backups, maintenance reports, updates, uptime monitoring, AI tools, Sandbox sites and mor &hellip;",1968,"2026-04-06T19:07:00.000Z","6.9.4",[131,132,133,134,20],"backups","bulk-update","monitoring","reports","https:\u002F\u002Fsiteskite.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsiteskite.1.2.12.zip",{"attackSurface":138,"codeSignals":211,"taintFlows":236,"riskAssessment":264,"analyzedAt":271},{"hooks":139,"ajaxHandlers":193,"restRoutes":207,"shortcodes":208,"cronEvents":209,"entryPointCount":210,"unprotectedCount":92},[140,146,150,156,160,164,168,171,174,177,181,184,188,189],{"type":141,"name":142,"callback":143,"file":144,"line":145},"action","admin_menu","registerMenu","classes\\Setup\\AdminPage.php",28,{"type":141,"name":147,"callback":148,"file":144,"line":149},"admin_enqueue_scripts","enqueueMediaPicker",29,{"type":151,"name":152,"callback":153,"file":154,"line":155},"filter","cron_schedules","customInterval","classes\\Setup\\Cron.php",25,{"type":141,"name":157,"callback":158,"file":154,"line":159},"init","siteDeletion",26,{"type":141,"name":157,"callback":161,"file":162,"line":163},"createSandbox","classes\\Setup\\SandboxSetup.php",22,{"type":141,"name":147,"callback":165,"priority":166,"file":167,"line":149},"adminScripts",11,"classes\\Setup\\Scripts.php",{"type":141,"name":147,"callback":169,"priority":47,"file":167,"line":170},"scriptTranslation",32,{"type":141,"name":157,"callback":172,"file":167,"line":173},"loadTextDomain",35,{"type":141,"name":147,"callback":175,"file":167,"line":176},"loadVariables",38,{"type":141,"name":157,"callback":178,"file":179,"line":180},"slds_redirect_home_to_demo","snippets\\ext-installer.php",17,{"type":141,"name":157,"callback":182,"file":179,"line":183},"slds_active_state_logger",18,{"type":141,"name":185,"callback":186,"file":179,"line":187},"wp_enqueue_scripts","slds_multisite_scripts_load",19,{"type":141,"name":147,"callback":186,"file":179,"line":108},{"type":141,"name":190,"callback":191,"file":179,"line":192},"template_redirect","slds_handle_404_sandbox",21,[194,199,202,205],{"action":195,"nopriv":196,"callback":195,"hasNonce":196,"hasCapCheck":197,"file":179,"line":198},"slds_complete_setup",false,true,24,{"action":200,"nopriv":197,"callback":201,"hasNonce":196,"hasCapCheck":196,"file":179,"line":155},"slds_login_to_admin","slds_admin_login",{"action":203,"nopriv":197,"callback":204,"hasNonce":196,"hasCapCheck":196,"file":179,"line":145},"slds_init_internal_session","slds_internal_session",{"action":206,"nopriv":197,"callback":206,"hasNonce":197,"hasCapCheck":196,"file":179,"line":149},"slds_internal_request",[],[],[],4,{"dangerousFunctions":212,"sqlUsage":213,"outputEscaping":232,"fileOperations":234,"externalRequests":29,"nonceChecks":70,"capabilityChecks":92,"bundledLibraries":235},[],{"prepared":183,"raw":214,"locations":215},5,[216,220,224,226,230],{"file":217,"line":218,"context":219},"classes\\Models\\DB.php",154,"$wpdb->query() with variable interpolation",{"file":221,"line":222,"context":223},"classes\\Models\\Instance.php",153,"$wpdb->get_results() with variable interpolation",{"file":221,"line":225,"context":219},337,{"file":227,"line":228,"context":229},"classes\\Models\\Sandbox.php",141,"$wpdb->get_var() with variable interpolation",{"file":227,"line":231,"context":223},155,{"escaped":145,"rawEcho":11,"locations":233},[],13,[],[237,255],{"entryPoint":238,"graph":239,"unsanitizedCount":70,"severity":254},"homePage (classes\\Setup\\AdminPage.php:79)",{"nodes":240,"edges":252},[241,246],{"id":242,"type":243,"label":244,"file":144,"line":245},"n0","source","$_SERVER",86,{"id":247,"type":248,"label":249,"file":144,"line":250,"wp_function":251},"n1","sink","echo() [XSS]",89,"echo",[253],{"from":242,"to":247,"sanitized":196},"medium",{"entryPoint":256,"graph":257,"unsanitizedCount":70,"severity":263},"\u003CAdminPage> (classes\\Setup\\AdminPage.php:0)",{"nodes":258,"edges":261},[259,260],{"id":242,"type":243,"label":244,"file":144,"line":245},{"id":247,"type":248,"label":249,"file":144,"line":250,"wp_function":251},[262],{"from":242,"to":247,"sanitized":196},"low",{"summary":265,"deductions":266},"The \"live-demo-sandbox\" v1.0.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices in output escaping, with 100% of outputs being properly escaped, and a high percentage (78%) of its SQL queries utilize prepared statements. The absence of known CVEs and a clean vulnerability history suggests a generally stable and well-maintained codebase concerning external vulnerabilities. However, the plugin's attack surface is a notable concern. It exposes four AJAX handlers, two of which lack any authentication checks. This creates a significant risk of unauthorized actions if these handlers are exploitable. While taint analysis did not reveal critical or high severity issues, the presence of two flows with unsanitized paths, even if not leading to critical vulnerabilities in this version, warrants caution and suggests potential areas for future improvement.\n\nOverall, the plugin's strength lies in its internal code hygiene regarding output and SQL, but its external-facing attack surface, particularly the unprotected AJAX endpoints, is a clear vulnerability. The lack of historical vulnerabilities is a positive indicator, but it does not negate the immediate risks presented by the current static analysis findings. A balanced approach would be to address the unprotected AJAX handlers as a priority while continuing to monitor for any emerging vulnerabilities in future updates.",[267,269],{"reason":268,"points":30},"AJAX handlers without auth checks",{"reason":270,"points":214},"Flows with unsanitized paths","2026-03-17T06:40:44.913Z",{"wat":273,"direct":282},{"assetPaths":274,"generatorPatterns":277,"scriptPaths":278,"versionParams":279},[275,276],"\u002Fwp-content\u002Fplugins\u002Flive-demo-sandbox\u002Fdist\u002Fadmin-dashboard.js","\u002Fwp-content\u002Fplugins\u002Flive-demo-sandbox\u002Fdist\u002Flibraries\u002Ftranslation-loader.js",[],[275,276],[280,281],"live-demo-sandbox\u002Fadmin-dashboard.js?ver=","live-demo-sandbox\u002Flibraries\u002Ftranslation-loader.js?ver=",{"cssClasses":283,"htmlComments":284,"htmlAttributes":285,"restEndpoints":290,"jsGlobals":291,"shortcodeOutput":293},[],[],[286,287,288,289],"id=\"Solidie_Sandbox_Backend_Dashboard\"","data-configs","data-hosts","data-meta_data",[],[292],"window.slds_demo_user_auto_created",[294,287,288,289],"\u003Cdiv \nid=\"Solidie_Sandbox_Backend_Dashboard\"",{"slug":4,"current_version":6,"total_versions":92,"versions":296},[297,302],{"version":6,"download_url":22,"svn_tag_url":298,"released_at":24,"has_diff":196,"diff_files_changed":299,"diff_lines":24,"trac_diff_url":300,"vulnerabilities":301,"is_current":197},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Flive-demo-sandbox\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Flive-demo-sandbox%2Ftags%2F1.0.0&new_path=%2Flive-demo-sandbox%2Ftags%2F1.0.1",[],{"version":303,"download_url":304,"svn_tag_url":305,"released_at":24,"has_diff":196,"diff_files_changed":306,"diff_lines":24,"trac_diff_url":24,"vulnerabilities":307,"is_current":196},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flive-demo-sandbox.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Flive-demo-sandbox\u002Ftags\u002F1.0.0\u002F",[],[]]