[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNgxM3Ldb0xkqfPfB69zAtW6u3HvRVdIbUJg0cPlNjxc":3,"$fbGyeftbbHhFRBxdgNQTK_oo6xd-qJSpNbYeOXl02ueE":205,"$fxOGzF--Kmnto7GRpmwGpWmDGcrdf-wWDxQSElAFsoSQ":210},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":41,"analysis":141,"fingerprints":184},"media-upload-admin-widget","Name: Media Upload Admin Widget","1.0","ChrisHurst","https:\u002F\u002Fprofiles.wordpress.org\u002Fchrishurst\u002F","\u003Cp>Adds a Widget to Admin Dashboard for Drag and Drop Media Upload.\u003C\u002Fp>\n\u003Cp>Developer Website: http:\u002F\u002FMyWebsiteAdvisor.com\u002F\u003C\u002Fp>\n\u003Cp>Plugin Support: http:\u002F\u002FMyWebsiteAdvisor.com\u002Fsupport\u002F\u003C\u002Fp>\n\u003Cp>Plugin Page: http:\u002F\u002FMyWebsiteAdvisor.com\u002Ftools\u002Fwordpress-plugins\u002Fmedia-upload-admin-widget\u002F\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002FMyWebsiteAdvisor.com\u002Ftools\u002Fwordpress-plugins\u002Fmedia-upload-admin-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Premium Version with Advanced Features\u003C\u002Fstrong>\u003C\u002Fa> including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Display Only To Specified User Roles.\u003C\u002Fli>\n\u003Cli>Choose the Default Column (left or right) for the Admin Widget.\u003C\u002Fli>\n\u003Cli>Choose the Default Position (top or bottom) for the Admin Widget\u003C\u002Fli>\n\u003Cli>Change the Default Admin Widget Title.\u003C\u002Fli>\n\u003Cli>Lifetime Priority Support and Updates!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Learn More Here: http:\u002F\u002Fmywebsiteadvisor.com\u002Ftools\u002Fwordpress-plugins\u002Fmedia-upload-admin-widget\u002F\u003C\u002Fp>\n\u003Cp>Requirements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>To-do:\u003C\u002Fp>\n","Adds a Widget to Admin Dashboard for Drag and Drop Media Upload.",10,2474,100,1,"2013-05-05T16:42:00.000Z","3.5.2","3.0","",[20,21,22,23,24],"admin","media","photo","upload","widget","http:\u002F\u002Fmywebsiteadvisor.com\u002Ftools\u002Fwordpress-plugins\u002Fmedia-upload-admin-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedia-upload-admin-widget.1.0.zip",85,0,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":34,"display_name":7,"profile_url":8,"plugin_count":35,"total_installs":36,"avg_security_score":37,"avg_patch_time_days":38,"trust_score":39,"computed_at":40},"chrishurst",21,1770,84,2044,68,"2026-05-20T01:44:57.772Z",[42,66,85,104,124],{"slug":43,"name":44,"version":45,"author":46,"author_profile":47,"description":48,"short_description":49,"active_installs":50,"downloaded":51,"rating":52,"num_ratings":53,"last_updated":54,"tested_up_to":55,"requires_at_least":56,"requires_php":57,"tags":58,"homepage":62,"download_link":63,"security_score":37,"vuln_count":14,"unpatched_count":28,"last_vuln_date":64,"fetched_at":65},"add-from-server","Add From Server","3.4.5","Dion Hulse","https:\u002F\u002Fprofiles.wordpress.org\u002Fdd32\u002F","\u003Cp>This plugin offers limited support. Please do not expect new features or too many bugfixes. Features may be removed at any time.\u003C\u002Fp>\n\u003Cp>Add From Server is designed to help ease the pain of bad web hosts, allowing you to upload files via FTP or SSH and later import them into WordPress.\u003C\u002Fp>\n\u003Cp>This plugin is NOT designed to..\u003Cbr \u002F>\n * Be used as a replacement for the file uploader\u003Cbr \u002F>\n * Be used for migration of websites\u003Cbr \u002F>\n * Re-import your files after moving webhosting\u003Cbr \u002F>\n * Batch import media\u003C\u002Fp>\n\u003Cp>This plugins IS designed to..\u003Cbr \u002F>\n * Import files which are larger than your hosting allows to be uploaded.\u003Cbr \u002F>\n * Import files which are too large for your internet connections upload speed.\u003C\u002Fp>\n\u003Cp>WordPress does a better job of file uploads than this plugin, so please consider your needs before you use it.\u003C\u002Fp>\n\u003Cp>You may also want to look at using WP-CLI for media import purposes:\u003Cbr \u002F>\nhttps:\u002F\u002Fdeveloper.wordpress.org\u002Fcli\u002Fcommands\u002Fmedia\u002Fimport\u002F\u003C\u002Fp>\n","Add From Server is designed to help ease the pain of bad web hosts, allowing you to upload files via FTP or SSH and later import them into WordPress.",60000,1320732,92,239,"2020-12-11T07:32:00.000Z","5.5.18","5.4","7.0",[20,59,21,60,61],"import","post","uploads","https:\u002F\u002Fdd32.id.au\u002Fwordpress-plugins\u002Fadd-from-server\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadd-from-server.3.4.5.zip","2016-08-08 00:00:00","2026-04-16T10:56:18.058Z",{"slug":67,"name":68,"version":69,"author":70,"author_profile":71,"description":72,"short_description":73,"active_installs":74,"downloaded":75,"rating":76,"num_ratings":77,"last_updated":78,"tested_up_to":79,"requires_at_least":80,"requires_php":18,"tags":81,"homepage":83,"download_link":84,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":65},"media-deduper","Media Deduper","1.5.9","cornershop","https:\u002F\u002Fprofiles.wordpress.org\u002Fcornershop\u002F","\u003Cp>Media Deduper will find and eliminate duplicate images and attachments from your WordPress media library. After installing, you’ll have a new “Manage Duplicates” option in your Media section.\u003C\u002Fp>\n\u003Cp>Before Media Deduper can identify duplicate assets, it will build an index of all the files in your media library, which can take some time. Once that’s done, however, Media Deduper automatically adds new uploads to its index, so you shouldn’t have to generate the index again.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Need faster indexing? \u003Ca href=\"https:\u002F\u002Fwww.mediadeduper.com\u002F\" rel=\"nofollow ugc\">Check out Media Deduper Pro\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Once up and running, Media Deduper provides you with a “Manage Duplicates” page listing all of your duplicate media files. The list makes it easy to see and delete duplicate files: delete one and its twin will disappear from the list because it’s then no longer a duplicate. Easy! By default, the list is sorted by file size, so you can focus on deleting the files that will free up the most space.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Use this plugin at your own risk. The plugin developers are not responsible for any lost data or site issues as a result of using this plugin.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Media Deduper comes with a “Smart Delete” option that prevents a post’s Featured Image from being deleted, even if that image is found to be a duplicate elsewhere on the site.\u003C\u002Fp>\n\u003Cp>If a post has a featured image that’s a duplicate file, Smart Delete will re-assign that post’s image to an already-in-use copy of the image before deleting the duplicate so that the post’s appearance is unaffected. This feature only tracks Featured Images, and not images used in galleries, post bodies, shortcodes, meta fields, or anywhere else.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Looking for more features? \u003Ca href=\"https:\u002F\u002Fwww.mediadeduper.com\u002F\" rel=\"nofollow ugc\">Media Deduper Pro\u003C\u002Fa> includes features for image fields from several popular plugins as well.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Note that duplicate identification is based on the data of the files themselves, not any titles, captions or other metadata you may have provided in the WordPress admin.\u003C\u002Fp>\n\u003Cp>Media Deduper can differentiate between 1.) media items that are duplicates because the media files they link to have the same data and 2.) those that actually point to the same data file, which can happen with a plugin like WP Job Manager or Duplicate Post.\u003C\u002Fp>\n\u003Cp>As with any plugin that can perform destructive operations on your database and\u002For files, using Media Deduper can result in permanent data loss if you’re not careful. \u003Cstrong>Back up your data before you try out Media Deduper! Please!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Use this plugin at your own risk. The plugin developers are not responsible for any lost data or site issues as a result of using this plugin.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Need more support? \u003Ca href=\"https:\u002F\u002Fwww.mediadeduper.com\u002F\" rel=\"nofollow ugc\">Media Deduper Pro\u003C\u002Fa> includes dedicated support from Cornershop Creative.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cp>Media Deduper requires PHP 7.0 or later.\u003C\u002Fp>\n","Save disk space and bring some order to the chaos of your media library by removing and preventing duplicate files.",9000,171002,76,43,"2025-12-03T19:24:00.000Z","6.9.4","4.3",[20,82,21,23],"attachments","https:\u002F\u002Fwww.mediadeduper.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedia-deduper.1.5.9.zip",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":79,"requires_at_least":98,"requires_php":18,"tags":99,"homepage":102,"download_link":103,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":65},"wen-featured-image","WEN Featured Image","2.0","WEN Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fwenthemes\u002F","\u003Ch3>WEN Featured Image\u003C\u002Fh3>\n\u003Cp>WEN Featured Image helps you to manage featured image for your posts or pages in easy way. Featured image is displayed in the separate column in the listings. You can easily add\u002Fedit\u002Fremove featured image from the listing page. You can also force featured image for selected post types.\u003C\u002Fp>\n\u003Cp>Plugin: \u003Ca href=\"http:\u002F\u002Fwenthemes.com\u002Fitem\u002Fwordpress-plugins\u002Fwen-featured-image\u002F\" rel=\"nofollow ugc\">Home Page\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Serbo-Croatian – \u003Ca href=\"http:\u002F\u002Fwebhostinggeeks.com\u002F\" rel=\"nofollow ugc\">Borisa Djuraskovic\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plugin, please \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fwen-featured-image\" rel=\"ugc\">rate and review\u003C\u002Fa>.\u003Cbr \u002F>\nIf you have any question, suggestion or issue, please \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwen-featured-image\" rel=\"ugc\">post here\u003C\u002Fa>.\u003C\u002Fp>\n","Add featured image column in listings. Add\u002Fchange\u002Fremove featured image directly from the listing page",3000,62242,88,9,"2026-03-25T16:13:00.000Z","4.0",[20,100,101,21,23],"featured-image","image","https:\u002F\u002Fwenthemes.com\u002Fitem\u002Fwordpress-plugins\u002Fwen-featured-image\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwen-featured-image.2.0.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":114,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":119,"tags":120,"homepage":122,"download_link":123,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":65},"default-media-uploader-view","Default Media Uploader View","1.0.8","leemon","https:\u002F\u002Fprofiles.wordpress.org\u002Fleemon\u002F","\u003Cp>WordPress 3.5 introduced an entirely new media uploader which streamlined the way one handles and uploads images to posts. Unfortunately,\u003Cbr \u002F>\nsince then, the default view for the media library is “All media items” instead of “Uploaded to this post”. This plugin sets “Uploaded to this post” as the default view.\u003C\u002Fp>\n","Sets \"Uploaded to this post\" instead of \"All media items\" as the default view in the media uploader.",500,15497,96,13,"2019-05-16T09:55:00.000Z","5.2.24","3.5","5.3",[20,82,121,21,23],"filter","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdefault-media-uploader-view\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdefault-media-uploader-view.1.0.8.zip",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":13,"num_ratings":134,"last_updated":135,"tested_up_to":136,"requires_at_least":17,"requires_php":18,"tags":137,"homepage":139,"download_link":140,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":65},"wp-upload-rename","wp_upload_rename","1.2","Nolan Chou","https:\u002F\u002Fprofiles.wordpress.org\u002Fzhounan0120\u002F","\u003Cp>Sometimes we forgot change our file to a available name. So the plugin can help you auto change your upload file.\u003Cbr \u002F>\nI will add a filetype option of setting in next version.\u003Cbr \u002F>\nAnd a rename popup before the file upload if you change setting in future, default value is post_name.\u003C\u002Fp>\n","Change upload filename to random characters \u002F random numbers \u002F date \u002F other by yourself.",200,5276,5,"2019-05-05T08:34:00.000Z","5.1.22",[20,101,138,21,23],"images","http:\u002F\u002Fwww.nolanchou.com\u002Fwp_upload_rename\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-upload-rename.zip",{"attackSurface":142,"codeSignals":158,"taintFlows":174,"riskAssessment":175,"analyzedAt":183},{"hooks":143,"ajaxHandlers":154,"restRoutes":155,"shortcodes":156,"cronEvents":157,"entryPointCount":28,"unprotectedCount":28},[144,149],{"type":121,"name":145,"callback":146,"priority":11,"file":147,"line":148},"plugin_row_meta","add_plugin_links","media-upload-admin-widget.php",25,{"type":150,"name":151,"callback":152,"file":147,"line":153},"action","wp_dashboard_setup","add_dashboard_widget",28,[],[],[],[],{"dangerousFunctions":159,"sqlUsage":160,"outputEscaping":162,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":14,"bundledLibraries":173},[],{"prepared":28,"raw":28,"locations":161},[],{"escaped":28,"rawEcho":163,"locations":164},4,[165,168,169,171],{"file":147,"line":166,"context":167},70,"raw output",{"file":147,"line":166,"context":167},{"file":147,"line":170,"context":167},75,{"file":147,"line":172,"context":167},77,[],[],{"summary":176,"deductions":177},"The \"media-upload-admin-widget\" plugin, version 1.0, exhibits a generally good security posture with no identified vulnerabilities in its history and a clean taint analysis. The static analysis indicates a very small attack surface with zero entry points, which is a positive sign. Furthermore, all identified SQL queries utilize prepared statements, mitigating the risk of SQL injection. The plugin also correctly implements a capability check for its single code signal.\n\nHowever, there are notable concerns regarding output escaping. With four total outputs identified, none are properly escaped. This is a significant weakness that could lead to Cross-Site Scripting (XSS) vulnerabilities if the data being output is not inherently safe or is dynamically generated. The absence of nonce checks on any potential entry points (though none were detected) and the lack of specific checks for AJAX handlers or REST API routes (even though their count is zero) also leave theoretical avenues for exploitation if the attack surface were to expand in future versions.\n\nIn conclusion, while the plugin currently benefits from a small attack surface and secure database interactions, the unescaped output is a critical flaw that needs immediate attention. The lack of historical vulnerabilities is encouraging but doesn't negate the risks presented by the current code analysis. Developers should prioritize addressing the output escaping issue to improve the plugin's overall security.",[178,181],{"reason":179,"points":180},"All identified outputs are unescaped",15,{"reason":182,"points":134},"No nonce checks detected","2026-04-16T11:36:16.821Z",{"wat":185,"direct":192},{"assetPaths":186,"generatorPatterns":187,"scriptPaths":188,"versionParams":190},[],[],[189],"\u002Fwp-content\u002Fplugins\u002Fmedia-upload-admin-widget\u002Fjs\u002Fdrag_drop.js",[191],"media-upload-admin-widget\u002Fjs\u002Fdrag_drop.js?ver=",{"cssClasses":193,"htmlComments":197,"htmlAttributes":198,"restEndpoints":200,"jsGlobals":201,"shortcodeOutput":204},[194,195,196],"media-upload-form","type-form","validate",[],[199],"id=\"file-form\"",[],[202,203],"var post_id =","var shortform =",[],{"error":206,"url":207,"statusCode":208,"statusMessage":209,"message":209},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fmedia-upload-admin-widget\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":14,"versions":211},[212],{"version":6,"download_url":26,"svn_tag_url":213,"released_at":29,"has_diff":214,"diff_files_changed":215,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":216,"is_current":206},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmedia-upload-admin-widget\u002Ftags\u002F1.0\u002F",false,[],[]]