[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOSkBirE6jhgvxEgNDQWuwgKpl91X9IsJekvZppIu59o":3,"$fAJJgpZb8Uq_Fo72T_R9u09b8LnpxqPdOW4qJLGFWkok":419,"$fRBgLcVqhrwD7r7oDpQjRTrnzXJ2xq1tlKBn3SYfgopM":424},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":37,"analysis":141,"fingerprints":381},"pandora-fms-wp","Pandora FMS WP – Monitoring WordPress from Pandora FMS","2.0","Ártica PFMS","https:\u002F\u002Fprofiles.wordpress.org\u002Farticast\u002F","\u003Cp>Pandora FMS WP is a \u003Cstrong>monitoring plugin for WordPress\u003C\u002Fstrong>. 100% free and OpenSource. It collect basic information from your WordPress and allow Pandora FMS to retrieve it remotely using a REST API. Some examples are new posts, comments or user logins in last hour. It also monitor if new plugins or themes has been isntalled, if a new user has been created of if a bruteforce login attempt has been made recently. You can expand easily by defining custom SQL queries to monitor other plugins or create your own SQL to collect information and sent it to Pandora FMS.\u003C\u002Fp>\n\u003Cp>This plugin has been developed by \u003Ca href=\"https:\u002F\u002Fpandorafms.com\" title=\"Pandora FMS team\" rel=\"nofollow ugc\">Pandora FMS team\u003C\u002Fa>. Sourcecode is available at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FarticaST\u002Fpandorafms-wp\u002F\" title=\"https:\u002F\u002Fgithub.com\u002FarticaST\u002Fpandorafms-wp\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002FarticaST\u002Fpandorafms-wp\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Sections:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Dashboard:\u003C\u002Fstrong> here, you can view a summary of the items monitored: plugins updated, version of WP and if they need an update, total users, new posts in last 24hr, new replies in 24hr and other checks.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Audit records:\u003C\u002Fstrong> You can view a table with user access data: users, IP, if the login has been correct or incorrect and how many times, and the date of the last access. Also can see if new plugins or themes have been installed and the date on which these events occurred.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>General Setup:\u003C\u002Fstrong> Set general options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>API Settings\n\u003Cul>\n\u003Cli>List of IPs with access to the API.\u003C\u002Fli>\n\u003Cli>Set the time to show new data in the API.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Delete Logs Time\n\u003Cul>\n\u003Cli>Clean fields of filesystem table with status deleted for data older than X days\u003C\u002Fli>\n\u003Cli>Remove the status ¨new¨ on fields of filesystem table for data older than X days\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Custom SQL queries\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Prerequisites\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>PandoraFMS-WP requires (optionally) a plugin for REST API, called “JSON REST API”. Only needed if you want to integrate the monitoring\u002Fstatus information of the WP site into a central management console with Pandora FMS. This is an optional feature, you can manage all information from WordPress itself.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>If your WordPress version is lower than 4.7, you must have the \u003Ca href=\"https:\u002F\u002Fes.wordpress.org\u002Fplugins\u002Frest-api\u002F\" title=\"WP REST API (v2)\" rel=\"nofollow ugc\">WP REST API (v2)\u003C\u002Fa> plugin installed to use the API. (This plugin requires version 4.6 or higher).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Limitations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WP Multisite not supported on this version. \u003C\u002Fli>\n\u003Cli>To use the WordPress API REST, you need version 4.6 or higher.\u003C\u002Fli>\n\u003C\u002Ful>\n","Plugin for monitoring Wordpress with Pandora FMS. Collect data from your wordpress and make it accessible from outside using the REST API.",10,1537,100,1,"2022-02-09T22:52:00.000Z","5.9.13","4.7","",[20,21,22,23],"audit","monitoring","secure","security","https:\u002F\u002Fgithub.com\u002FarticaST\u002Fpandorafms-wp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpandora-fms-wp.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"articast",30,84,"2026-05-20T09:10:05.302Z",[38,58,76,98,121],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":27,"downloaded":46,"rating":27,"num_ratings":27,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":57},"fbs-activity-tracker","FBS Activity Tracker","1.0.1","Fazle Bari","https:\u002F\u002Fprofiles.wordpress.org\u002Ffazlebari\u002F","\u003Cp>FBS Activity Tracker is a powerful, modern WordPress plugin that provides comprehensive user activity monitoring and audit logging capabilities. Built with a completely custom-designed dashboard interface, it offers real-time insights into user actions and system changes without relying on default WordPress admin styles.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>🔍 Comprehensive Activity Tracking\u003C\u002Fstrong>\u003Cbr \u002F>\n* User login\u002Flogout (successful and failed attempts)\u003Cbr \u002F>\n* Post and page creation, editing, deletion, and trashing\u003Cbr \u002F>\n* Plugin activation and deactivation\u003Cbr \u002F>\n* Theme switching\u003Cbr \u002F>\n* User profile updates and registrations\u003Cbr \u002F>\n* WordPress settings changes\u003C\u002Fp>\n\u003Cp>\u003Cstrong>📊 Modern Dashboard Interface\u003C\u002Fstrong>\u003Cbr \u002F>\n* Completely custom-designed interface (no WordPress admin styles)\u003Cbr \u002F>\n* Real-time activity feed with live updates\u003Cbr \u002F>\n* Card-based statistics overview\u003Cbr \u002F>\n* Advanced filtering and search capabilities\u003Cbr \u002F>\n* Responsive design for all devices\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚡ Advanced Filtering System\u003C\u002Fstrong>\u003Cbr \u002F>\n* Filter by user, action type, object type\u003Cbr \u002F>\n* Date range filtering (preset and custom ranges)\u003Cbr \u002F>\n* Full-text search across log details\u003Cbr \u002F>\n* Bulk actions for selected logs\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛡️ Security & Performance\u003C\u002Fstrong>\u003Cbr \u002F>\n* Custom database table for optimal performance\u003Cbr \u002F>\n* Automatic cleanup of old logs (configurable retention)\u003Cbr \u002F>\n* SQL injection protection with prepared statements\u003Cbr \u002F>\n* Nonce verification for all AJAX requests\u003Cbr \u002F>\n* User capability checks for admin access\u003C\u002Fp>\n\u003Cp>\u003Cstrong>📈 Data Management\u003C\u002Fstrong>\u003Cbr \u002F>\n* Export logs in JSON format\u003Cbr \u002F>\n* Bulk delete functionality\u003Cbr \u002F>\n* Configurable log retention period\u003Cbr \u002F>\n* Automatic daily cleanup\u003Cbr \u002F>\n* Infinite scroll for large datasets\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🎨 Modern Design System\u003C\u002Fstrong>\u003Cbr \u002F>\n* CSS Grid and Flexbox layouts\u003Cbr \u002F>\n* CSS custom properties for easy theming\u003Cbr \u002F>\n* Smooth animations and transitions\u003Cbr \u002F>\n* Dark mode support\u003Cbr \u002F>\n* Accessibility features (ARIA, keyboard navigation)\u003C\u002Fp>\n\u003Ch4>Free Version Includes\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Core activity tracking for essential user actions\u003C\u002Fli>\n\u003Cli>Modern dashboard with real-time activity feed\u003C\u002Fli>\n\u003Cli>Advanced filtering and search capabilities\u003C\u002Fli>\n\u003Cli>Basic statistics (today’s activity, active users, total logs)\u003C\u002Fli>\n\u003Cli>Bulk actions (delete, export selected logs)\u003C\u002Fli>\n\u003Cli>Automatic log cleanup (30-day retention)\u003C\u002Fli>\n\u003Cli>Responsive design for all devices\u003C\u002Fli>\n\u003Cli>Export functionality (JSON format)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Website Administrators\u003C\u002Fstrong> – Monitor user activities and system changes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Professionals\u003C\u002Fstrong> – Track login attempts and suspicious activities\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Managers\u003C\u002Fstrong> – Keep track of content changes and updates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developers\u003C\u002Fstrong> – Debug issues and monitor plugin\u002Ftheme changes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Business Owners\u003C\u002Fstrong> – Ensure compliance and audit requirements\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Technical Specifications\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Database\u003C\u002Fstrong>: Custom table \u003Ccode>wp_fbs_activity_logs\u003C\u002Fcode> for optimal performance\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security\u003C\u002Fstrong>: All data sanitized, validated, and escaped\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance\u003C\u002Fstrong>: Indexed database queries, AJAX loading, infinite scroll\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Compatibility\u003C\u002Fstrong>: WordPress 5.0+, PHP 7.4+, MySQL 5.6+\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Standards\u003C\u002Fstrong>: Follows WordPress coding standards and best practices\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Installation\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Upload the plugin files to \u003Ccode>\u002Fwp-content\u002Fplugins\u002Ffbs-activity-tracker\u002F\u003C\u002Fcode> directory\u003C\u002Fli>\n\u003Cli>Activate the plugin through the ‘Plugins’ screen in WordPress\u003C\u002Fli>\n\u003Cli>Navigate to ‘Activity Tracker’ in the admin menu to access the dashboard\u003C\u002Fli>\n\u003Cli>Start monitoring user activities immediately\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Frequently Asked Questions\u003C\u002Fh4>\n\u003Ch4>Does this plugin affect site performance?\u003C\u002Fh4>\n\u003Cp>No, FBS Activity Tracker is designed for optimal performance. It uses a custom database table with proper indexing, AJAX-based loading, and automatic cleanup of old logs to ensure minimal impact on your site’s performance.\u003C\u002Fp>\n\u003Ch4>How long are logs kept?\u003C\u002Fh4>\n\u003Cp>By default, logs are kept for 30 days and automatically cleaned up daily. This retention period is configurable in the plugin settings.\u003C\u002Fp>\n\u003Ch4>Can I export the activity logs?\u003C\u002Fh4>\n\u003Cp>Yes, you can export logs in JSON format. The plugin supports both bulk export of selected logs and full export with applied filters.\u003C\u002Fp>\n\u003Ch4>Is the plugin secure?\u003C\u002Fh4>\n\u003Cp>Absolutely. The plugin follows WordPress security best practices including data sanitization, validation, nonce verification, capability checks, and SQL injection protection with prepared statements.\u003C\u002Fp>\n\u003Ch4>Does it work with multisite?\u003C\u002Fh4>\n\u003Cp>Yes, FBS Activity Tracker is fully compatible with WordPress multisite installations and will track activities across all sites in the network.\u003C\u002Fp>\n\u003Ch4>Can I customize the dashboard appearance?\u003C\u002Fh4>\n\u003Cp>Yes, the plugin uses CSS custom properties (variables) for easy theming. You can customize colors, spacing, and other design elements through CSS.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, feature requests, or bug reports, please visit our support page or contact us directly.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>FBS Activity Tracker collects and stores user activity data locally on your WordPress installation. No data is sent to external servers. All data is stored in your database and can be exported or deleted at any time. The plugin respects user privacy and only tracks activities that are necessary for security and audit purposes.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by Fazle Bari with modern web technologies and WordPress best practices.\u003C\u002Fp>\n\u003Ch3>Donate\u003C\u002Fh3>\n\u003Cp>If you find this plugin useful, please consider making a donation to support continued development and improvements.\u003C\u002Fp>\n","A modern, granular user activity and audit log WordPress plugin with a custom-designed dashboard interface for comprehensive site monitoring.",192,"2025-12-07T06:32:00.000Z","6.9.4","5.0","7.4",[52,53,21,23,54],"activity-log","audit-log","user-tracking","https:\u002F\u002Fgithub.com\u002Ffazlebarisn\u002Ffbs-secure-optimize","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffbs-activity-tracker.1.0.1.zip","2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":27,"downloaded":66,"rating":27,"num_ratings":27,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":72,"download_link":73,"security_score":74,"vuln_count":14,"unpatched_count":27,"last_vuln_date":75,"fetched_at":29},"liaison-site-prober","Liaison Site Prober","1.2.2","liaison","https:\u002F\u002Fprofiles.wordpress.org\u002Fliaison\u002F","\u003Cp>\u003Cstrong>A lightweight and easy-to-use plugin to secure and monitor your WordPress website.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Have you ever wondered when your website changed — and who did it?\u003Cbr \u002F>\nLiaison Site Prober makes it easy to track your WordPress site’s change history and user activities.\u003C\u002Fp>\n\u003Cp>With Liaison Site Prober, you can easily monitor:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Who logged in, logged out, or attempted (and failed) to log in.  \u003C\u002Fli>\n\u003Cli>When a post was published or updated — and by whom.  \u003C\u002Fli>\n\u003Cli>When a plugin or theme was activated, deactivated, or modified.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Export to CSV\u003C\u002Fstrong> — Quickly export your website’s activity log for auditing or backup purposes.\u003C\u002Fp>\n\u003Cp>The plugin tracks:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Posts\u003C\u002Fstrong> – Created, updated, deleted  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories\u003C\u002Fstrong> – Created, updated, deleted  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomies\u003C\u002Fstrong> – Created, updated, deleted  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comments\u003C\u002Fstrong> – Created, approved, unapproved, trashed, untrashed, spammed, unspammed, deleted  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Users\u003C\u002Fstrong> – Login, logout, failed login, profile updated, registered, deleted  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugins\u003C\u002Fstrong> – Installed, updated, activated, deactivated, modified  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Themes\u003C\u002Fstrong> – Installed, updated, deleted, activated, modified (via Editor or Customizer)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Data Storage Isolation\u003C\u002Fh3>\n\u003Cp>To keep your WordPress database clean and easy to back up,\u003Cbr \u002F>\nall log data is stored in a dedicated custom table, fully isolated from your site’s core content.\u003C\u002Fp>\n","Liaison Site Prober helps you log and track key changes and user actions on your WordPress website — giving you better visibility and security.",373,"2026-03-12T09:58:00.000Z","6.8.5","6.8",[52,53,23,71],"site-monitoring","https:\u002F\u002Fgithub.com\u002Fliaisontw\u002Fwp-site-prober_svn_git","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fliaison-site-prober.1.2.2.zip",99,"2026-04-23 19:17:51",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":13,"num_ratings":86,"last_updated":87,"tested_up_to":48,"requires_at_least":88,"requires_php":50,"tags":89,"homepage":93,"download_link":94,"security_score":95,"vuln_count":96,"unpatched_count":27,"last_vuln_date":97,"fetched_at":29},"mainwp-child","MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites","6.0.8","mainwp","https:\u002F\u002Fprofiles.wordpress.org\u002Fmainwp\u002F","\u003Cp>\u003Cstrong>The MainWP Child Plugin securely connects the WordPress sites you want to manage to the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp\u002F\" rel=\"ugc\">MainWP Dashboard\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The MainWP Child plugin creates a secure connection between your WordPress sites and your self-hosted MainWP Dashboard, enabling you to efficiently manage WP installations from a single, centralized location.\u003C\u002Fp>\n\u003Cp>With MainWP Child and the MainWP Dashboard, you can update themes, plugins, and WordPress core across all connected sites, perform backups and security scans, manage posts, pages, users, and comments in bulk, and integrate with popular plugins like WooCommerce, Yoast SEO, and Wordfence.\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp\u002F\" rel=\"ugc\">MainWP Dashboard\u003C\u002Fa> also offers features for cost tracking and client management, making it an all-in-one solution for agencies and freelancers looking to manage WP sites efficiently. The functionality can be further extended with a growing library of \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-add-ons\u002F\" rel=\"nofollow ugc\">MainWP Add-ons\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fmainwp.com\u002F\" rel=\"nofollow ugc\">MainWP\u003C\u002Fa> is the ideal solution for freelancers and agencies managing client sites, developers and designers working on multiple projects, marketers and content managers overseeing various websites, and anyone responsible for maintaining multiple WordPress sites.\u003C\u002Fp>\n\u003Ch4>Why Choose MainWP for WordPress Management?\u003C\u002Fh4>\n\u003Cp>MainWP is 100% free and open-source, with no monthly fees, even for unlimited sites.\u003C\u002Fp>\n\u003Cp>As a self-hosted solution, it offers maximum control and privacy. MainWP provides comprehensive site management features and is highly customizable with add-ons and developer hooks.  The MainWP Child plugin even comes with its own privacy policy to guarantee your \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-plugin-privacy-policy\u002F\" rel=\"nofollow ugc\">privacy while using MainWP\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>All of this makes MainWP the best non-SaaS alternative to ManageWP, InfiniteWP, WPRemote, and WP Umbrella.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>MainWP Child, combined with the MainWP Dashboard, offers secure management of unlimited WordPress sites, one-click updates for plugins, themes, and WordPress core, automated backups and security monitoring, bulk management of posts, pages, users, and comments, white-labeling and custom branding options, and \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-add-ons\u002F\" rel=\"nofollow ugc\">powerful add-ons\u003C\u002Fa> for WooCommerce, Yoast SEO, Wordfence, and more.\u003C\u002Fp>\n\u003Ch4>Expand Your MainWP Dashboard with Add-ons\u003C\u002Fh4>\n\u003Cp>MainWP offers a growing library of add-ons that add advanced functionality to your Dashboard. From client reporting to SEO management, MainWP add-ons provide the tools you need to deliver top-notch service to your clients.\u003C\u002Fp>\n\u003Ch4>Join the MainWP Community\u003C\u002Fh4>\n\u003Cp>MainWP is more than just a plugin; it’s a thriving community of WordPress professionals. Join our \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002FMainWPUsers\u002F\" rel=\"nofollow ugc\">MainWP Users Facebook Group\u003C\u002Fa> to connect with other users, share advice, and stay updated on the latest features and add-ons.\u003C\u002Fp>\n\u003Ch4>Developer-Friendly\u003C\u002Fh4>\n\u003Cp>MainWP is built with developers in mind. We provide extensive documentation, hooks, and an API to help you create custom extensions and integrations for the MainWP platform.  We have a site at \u003Ca href=\"https:\u002F\u002Fmainwp.dev\" rel=\"nofollow ugc\">MainWP.dev\u003C\u002Fa> dedicated to MainWP developers.\u003C\u002Fp>\n\u003Ch4>Get Started with MainWP Today\u003C\u002Fh4>\n\u003Cp>Take control of your WordPress site management with MainWP and the MainWP Child plugin. With its powerful features, unlimited site connections, and user-friendly interface, MainWP is the smart choice for anyone managing multiple WordPress sites.\u003C\u002Fp>\n\u003Ch4>Learn More About MainWP\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmainwp.com\" rel=\"nofollow ugc\">MainWP Website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fkb\u002F\" rel=\"nofollow ugc\">MainWP Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcommunity.mainwp.com\u002Fc\u002Fsupport\u002Fmainwp-support\u002F\" rel=\"nofollow ugc\">MainWP Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fblog\u002F\" rel=\"nofollow ugc\">MainWP Blog\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmainwp\u002F\" rel=\"nofollow ugc\">MainWP on GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","MainWP Child establishes a secure link between your WordPress sites and your self-hosted MainWP Dashboard, simplifying site management.",700000,43098022,70,"2026-04-14T15:40:00.000Z","6.2",[90,21,23,91,92],"backups","site-management","update","https:\u002F\u002Fmainwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmainwp-child.6.0.8.zip",91,7,"2024-12-12 00:00:00",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":117,"download_link":118,"security_score":26,"vuln_count":119,"unpatched_count":27,"last_vuln_date":120,"fetched_at":29},"aryo-activity-log","Activity Log – Monitor & Record User Changes","2.11.2","Elementor","https:\u002F\u002Fprofiles.wordpress.org\u002Felemntor\u002F","\u003Cp>\u003Cstrong>AN EASY TO USE & FULLY SUPPORTED WORDPRESS ACTIVITY LOG PLUGIN\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Want to monitor and track your WordPress website activity? Find out exactly who does what on your WordPress website with this plugin. Activity Log is like an airplane’s black box that logs every action in the WordPress admin, and lets you see exactly what users are doing on your WordPress website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If someone is trying to hack your site\u003C\u002Fli>\n\u003Cli>When a post was published, and who published it\u003C\u002Fli>\n\u003Cli>If a plugin\u002Ftheme was activated\u002Fdeactivated\u003C\u002Fli>\n\u003Cli>Suspicious admin activity\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It’s so essential; you’ll wonder how you ever managed your website without it. The plugin is also lightning fast and works behind the scenes, so it doesn\\’t affect site and admin performance. For optimal performance, we built the plugin so that it runs on a separate table in the database.\u003C\u002Fp>\n\u003Cp>If you have more than a handful of users, keeping track of who did what is virtually impossible. This plugin solves that issue by tracking what actions were initiated by which users, and displaying it in an easy-to-use and easy-to-filter view on the dashboard of your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New! Introducing Email Logging\u003C\u002Fstrong> – Capture all emails sent from your WordPress site for streamlined debugging and compliance. Gain better visibility into email communication, aiding both troubleshooting and record-keeping. This is particularly beneficial for WooCommerce stores, allowing you to easily track sent emails alongside other critical site events.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Export to CSV\u003C\u002Fstrong> – Export your Activity Log data records to CSV. Developers can easily add support for custom data formats with our new dedicated Export API.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Privacy and GDPR Compliance\u003C\u002Fstrong> – We provide the tools to help you adhere to GDPR compliance standards, including Export\u002FErasure of data via the WordPress Privacy Tools.\u003C\u002Fp>\n\u003Ch3>With the Activity Log you can record:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress\u003C\u002Fstrong> – Core updates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Posts\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pages\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Post Type\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tags\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomies\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Menus\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comments\u003C\u002Fstrong> – Created, approved, unapproved, trashed, untrashed, spammed, unspammed, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Users\u003C\u002Fstrong> – Login, logout, login failed, update profile, registered, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugins\u003C\u002Fstrong> – Installed, updated, activated, deactivated, changed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Themes\u003C\u002Fstrong> – Installed, updated, deleted, activated, changed (Editor and Customizer)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widgets\u003C\u002Fstrong> – Added to sidebar, deleted from sidebar, order widgets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Setting\u003C\u002Fstrong> – General, writing, reading, discussion, media, permalinks\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Options\u003C\u002Fstrong> – Extended custom settings for 3rd party plugins\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Export\u003C\u002Fstrong> – Exported activity log file\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce\u003C\u002Fstrong> – Track products, orders, customers, and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>bbPress\u003C\u002Fstrong> – Forums, topics, replies, taxonomies, and other actions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Emails sent from WordPress site\u003C\u002Fstrong> – Sending successful, sending failed\u003C\u002Fli>\n\u003Cli>There’s more, of course, but you get the point…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For each event recorded by the activity log, the following details are also logged:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Date and time of occurrence\u003C\u002Fli>\n\u003Cli>User and user role responsible for the change\u003C\u002Fli>\n\u003Cli>Source IP address from which the change originated\u003C\u002Fli>\n\u003Cli>Affected object where the change occurred\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin doesn\\’t require any kind of setup; it works right out of the box (just another reason people love it)!\u003C\u002Fp>\n\u003Ch3>Data Storage and Performance Optimization\u003C\u002Fh3>\n\u003Cp>In order to ensure optimal performance of your website, all events and logs data are stored in a dedicated custom table within your WordPress database. This approach significantly reduces the impact on your website’s performance, ensuring seamless operation even during peak traffic periods.\u003C\u002Fp>\n\u003Ch3>Uninstall Clean-up\u003C\u002Fh3>\n\u003Cp>We understand the importance of maintaining a clean and efficient database environment. That’s why our plugin features an uninstall hook that seamlessly removes all traces of its presence from your website when uninstalling. This meticulous clean-up process ensures that your database remains lean and clutter-free even after our plugin has been removed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>With our optimized data storage, thorough logging, and meticulous clean-up process, you can trust that our plugin will enhance the functionality and security of your WordPress site without compromising its performance.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>What users have to say\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cem>“Its tools, particularly for data privacy and GDPR compliance, make it indispensable for websites operating within European Union boundaries or dealing with EU citizens’ data”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fblog.hubspot.com\u002Fwebsite\u002F8-best-plugins-tracking-user-activity-wordpress\" rel=\"nofollow ugc\">HubSpot.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“If you’re after a competent WP security audit log plugin with all the basic features you need, Activity Log is it!”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002Fplugins\u002Fwordpress-activity-log-plugins\u002F\" rel=\"nofollow ugc\">WPAstra.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Activity Log features a remarkably straightforward dashboard interface, providing administrators with an at-a-glance understanding of site interactions”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.malcare.com\u002Fblog\u002Fwordpress-activity-log\u002F\" rel=\"nofollow ugc\">Malcare.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Best 10 Free WordPress Plugins of the Month: Keeping tabs on what your users do with their access to the Dashboard”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fmanagewp.com\u002Fbest-free-wordpress-plugins-july-2014\" rel=\"nofollow ugc\">ManageWP.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Thanks to this step, we’ve discovered that our site was undergoing a brute force attack”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fartdriver.com\u002Fblog\u002Fwordpress-site-hacked-solution-time\" rel=\"nofollow ugc\">Artdriver.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Optimized code – The plugin itself is blazing fast and leaves almost no footprint on the server”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.freshtechtips.com\u002F2014\u002F01\u002Fbest-audit-trail-plugins-for-wordpress.html\" rel=\"nofollow ugc\">FreshTechTips.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Activity Log lets you track a huge range of activities. Overall, very easy to use and setup”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Ftips-tricks\u002F5-best-ways-to-monitor-wordpress-activity-via-the-dashboard\" rel=\"nofollow ugc\">ElegantThemes.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contributions:\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Would you like to contribute to this plugin?\u003C\u002Fstrong> You’re more than welcome to submit your pull requests on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpojome\u002Factivity-log\" rel=\"nofollow ugc\">GitHub repo\u003C\u002Fa>. And, if you have any notes about the code, please open a ticket on the issue tracker.\u003C\u002Fp>\n","This top rated Activity Log plugin helps you monitor & log all changes and actions on your WordPress site, so you can remain secure and organized.",200000,4007371,86,74,"2024-11-12T14:55:00.000Z","6.7.5","6.0","7.0",[52,53,115,23,116],"email-log","user-log","https:\u002F\u002Factivitylog.io\u002F?utm_source=wp-plugins&utm_campaign=plugin-uri&utm_medium=wp-dash","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faryo-activity-log.2.11.2.zip",9,"2024-11-20 17:10:23",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":131,"num_ratings":132,"last_updated":133,"tested_up_to":113,"requires_at_least":17,"requires_php":134,"tags":135,"homepage":139,"download_link":140,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"block-bad-queries","BBQ Firewall – Fast & Powerful Firewall Security","20260205","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cblockquote>\n\u003Cp>🔥 Install, activate, and done!\u003Cbr \u002F>\n  🔥 Powerful protection from WP’s \u003Cstrong>fastest\u003C\u002Fstrong> firewall plugin.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fblock-bad-queries\u002F\" rel=\"nofollow ugc\">BBQ Firewall\u003C\u002Fa> is a lightweight, blazing-fast firewall plugin that protects your site against a wide range of threats. BBQ checks all incoming traffic and quietly blocks bad requests containing nasty stuff like \u003Ccode>eval(\u003C\u002Fcode>, \u003Ccode>base64_\u003C\u002Fcode>, and excessively long request-strings. This is a simple yet solid solution for sites that are unable to use a \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002F8g-firewall\u002F\" rel=\"nofollow ugc\">strong Apache\u002F.htaccess firewall\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>🔥 Adds a strong firewall to ANY WordPress site\u003Cbr \u002F>\n  🔥 Works with all WordPress plugins and themes\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Powerful Protection\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>BBQ protects your site against many threats:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>SQL injection attacks\u003C\u002Fli>\n\u003Cli>Executable file uploads\u003C\u002Fli>\n\u003Cli>Directory traversal attacks\u003C\u002Fli>\n\u003Cli>Unsafe character requests\u003C\u002Fli>\n\u003Cli>Excessively long requests\u003C\u002Fli>\n\u003Cli>PHP remote\u002Ffile execution\u003C\u002Fli>\n\u003Cli>XSS, XXE, and related attacks\u003C\u002Fli>\n\u003Cli>Protects against bad bots\u003C\u002Fli>\n\u003Cli>Protects against bad referrers\u003C\u002Fli>\n\u003Cli>Protects against bad POST content\u003C\u002Fli>\n\u003Cli>Protects against many other bad requests\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>🔥 Works great with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblackhole-bad-bots\u002F\" rel=\"ugc\">Blackhole for Bad Bots\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbanhammer\u002F\" rel=\"ugc\">Banhammer\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Awesome Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>BBQ provides all the best firewall features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Rated \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblock-bad-queries\u002F#reviews\" rel=\"ugc\">5 stars\u003C\u002Fa> at WordPress.org\u003C\u002Fli>\n\u003Cli>100% plug-&-play, zero configuration\u003C\u002Fli>\n\u003Cli>100% focused on security and performance\u003C\u002Fli>\n\u003Cli>Blocks a wide range of malicious URL requests\u003C\u002Fli>\n\u003Cli>Fastest Web Application Firewall (WAF) for WordPress\u003C\u002Fli>\n\u003Cli>Based on the \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002F7g-firewall\u002F\" rel=\"nofollow ugc\">7G\u003C\u002Fa>\u002F\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002F8g-firewall\u002F\" rel=\"nofollow ugc\">8G Firewall\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Scans all incoming traffic and blocks bad requests\u003C\u002Fli>\n\u003Cli>Scans all types of requests: GET, POST, PUT, DELETE, etc.\u003C\u002Fli>\n\u003Cli>Protects against known bad bots and referrers\u003C\u002Fli>\n\u003Cli>Works silently behind the scenes to protect your site\u003C\u002Fli>\n\u003Cli>Hassle-free security plugin that’s easy to use\u003C\u002Fli>\n\u003Cli>Thoroughly tested, error-free performance\u003C\u002Fli>\n\u003Cli>Extremely low rate of false positives\u003C\u002Fli>\n\u003Cli>Compatible with other security plugins\u003C\u002Fli>\n\u003Cli>Regularly updated and “future proof”\u003C\u002Fli>\n\u003Cli>Firewall \u003C 10 kilobytes in size\u003C\u002Fli>\n\u003Cli>Lightweight, fast and flexible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>🔥 For advanced protection and features, check out \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro &raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Exclusive Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Customize firewall via plugin settings\u003C\u002Fli>\n\u003Cli>Easily add or remove firewall patterns\u003C\u002Fli>\n\u003Cli>Easily add Jeff Starr’s \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fultimate-ai-block-list\u002F\" rel=\"nofollow ugc\">AI Block List\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Send Email Alerts for blocked requests\u003C\u002Fli>\n\u003Cli>Quickly enable\u002Fdisable firewall rules\u003C\u002Fli>\n\u003Cli>Disable firewall for logged-in users\u003C\u002Fli>\n\u003Cli>Block excessively long URI requests\u003C\u002Fli>\n\u003Cli>Protect against XML-RPC exploits\u003C\u002Fli>\n\u003Cli>Block any individual IP address\u003C\u002Fli>\n\u003Cli>Block entire ranges of IP addresses\u003C\u002Fli>\n\u003Cli>Protect against user-ID phishing\u003C\u002Fli>\n\u003Cli>Redirect all blocked requests\u003C\u002Fli>\n\u003Cli>Display a custom “blocked” message\u003C\u002Fli>\n\u003Cli>Set your own response status code\u003C\u002Fli>\n\u003Cli>Complete inline documentation\u003C\u002Fli>\n\u003Cli>Statistics for blocked requests\u003C\u002Fli>\n\u003Cli>Tools to reset options and patterns\u003C\u002Fli>\n\u003Cli>Import and Export firewall patterns\u003C\u002Fli>\n\u003Cli>One-click pattern testing\u003C\u002Fli>\n\u003Cli>Whitelist IP addresses\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>..plus everything the free version can do and more.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>🔥 Learn more and \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">get BBQ Pro &raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin does not collect or store any user data. It does not set any cookies, and it does not connect to any third-party locations. Thus, this plugin does not affect user privacy in any way.\u003C\u002Fp>\n\u003Cp>BBQ Firewall is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>🔥 BBQ = Block Bad Queries\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thank you! 🙂\u003C\u002Fp>\n","The fastest firewall plugin for WordPress. Protect against a wide range of threats with minimal performance impact.",100000,3272188,98,156,"2026-03-27T17:52:00.000Z","7.1",[136,137,22,23,138],"bots","firewall","web-application-firewall","https:\u002F\u002Fperishablepress.com\u002Fblock-bad-queries\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblock-bad-queries.20260205.zip",{"attackSurface":142,"codeSignals":292,"taintFlows":362,"riskAssessment":363,"analyzedAt":380},{"hooks":143,"ajaxHandlers":189,"restRoutes":199,"shortcodes":287,"cronEvents":288,"entryPointCount":291,"unprotectedCount":291},[144,149,153,157,161,166,170,173,176,180,182,185],{"type":145,"name":146,"callback":146,"file":147,"line":148},"action","user_register","includes\u002FPandoraFMS_WP.class.php",421,{"type":145,"name":150,"callback":151,"file":147,"line":152},"wp_login","user_login",422,{"type":145,"name":154,"callback":155,"file":147,"line":156},"wp_login_failed","user_login_failed",423,{"type":145,"name":158,"callback":159,"file":147,"line":160},"wp_dashboard_setup","show_dashboard",528,{"type":145,"name":162,"callback":163,"file":164,"line":165},"wp_print_scripts","my_wp_enqueue_script","pandorafms-wp.php",41,{"type":145,"name":167,"callback":168,"file":164,"line":169},"admin_footer","ajax",43,{"type":145,"name":171,"callback":171,"file":164,"line":172},"cron_clean_logs",53,{"type":145,"name":174,"callback":174,"file":164,"line":175},"rest_api_init",58,{"type":145,"name":177,"callback":178,"file":164,"line":179},"admin_notices","show_message_version_wp",73,{"type":145,"name":181,"callback":181,"file":164,"line":109},"init",{"type":145,"name":183,"callback":183,"file":164,"line":184},"admin_init",75,{"type":145,"name":186,"callback":187,"file":164,"line":188},"admin_menu","add_admin_menu_entries",76,[190,195],{"action":191,"nopriv":192,"callback":193,"hasNonce":192,"hasCapCheck":192,"file":164,"line":194},"check_admin_user_enabled",false,"ajax_check_admin_user_enabled",44,{"action":196,"nopriv":192,"callback":197,"hasNonce":192,"hasCapCheck":192,"file":164,"line":198},"check_plugins_pending_update","ajax_check_plugins_pending_update",45,[200,207,212,217,222,227,232,237,242,247,252,257,262,267,272,277,282],{"namespace":201,"route":202,"methods":203,"callback":205,"permissionCallback":28,"file":147,"line":206},"pandorafms_wp","\u002Fonline",[204],"GET","apirest_online",270,{"namespace":201,"route":208,"methods":209,"callback":210,"permissionCallback":28,"file":147,"line":211},"\u002Fsite_name",[204],"apirest_site_name",277,{"namespace":201,"route":213,"methods":214,"callback":215,"permissionCallback":28,"file":147,"line":216},"\u002Fversion",[204],"apirest_version",284,{"namespace":201,"route":218,"methods":219,"callback":220,"permissionCallback":28,"file":147,"line":221},"\u002Fwp_version",[204],"apirest_wp_version",291,{"namespace":201,"route":223,"methods":224,"callback":225,"permissionCallback":28,"file":147,"line":226},"\u002Fadmin",[204],"apirest_admin_user",298,{"namespace":201,"route":228,"methods":229,"callback":230,"permissionCallback":28,"file":147,"line":231},"\u002Fnew_account",[204],"apirest_new_account",306,{"namespace":201,"route":233,"methods":234,"callback":235,"permissionCallback":28,"file":147,"line":236},"\u002Ftheme_registered",[204],"apirest_theme_registered",313,{"namespace":201,"route":238,"methods":239,"callback":240,"permissionCallback":28,"file":147,"line":241},"\u002Fplugin_registered",[204],"apirest_plugin_registered",320,{"namespace":201,"route":243,"methods":244,"callback":245,"permissionCallback":28,"file":147,"line":246},"\u002Fnew_posts",[204],"apirest_check_new_posts",327,{"namespace":201,"route":248,"methods":249,"callback":250,"permissionCallback":28,"file":147,"line":251},"\u002Fnew_comments",[204],"apirest_check_new_comments",334,{"namespace":201,"route":253,"methods":254,"callback":255,"permissionCallback":28,"file":147,"line":256},"\u002Fplugin_update",[204],"apirest_check_plugin_update",341,{"namespace":201,"route":258,"methods":259,"callback":260,"permissionCallback":28,"file":147,"line":261},"\u002Fcore_update",[204],"apirest_check_core_update",348,{"namespace":201,"route":263,"methods":264,"callback":265,"permissionCallback":28,"file":147,"line":266},"\u002Fuser_login",[204],"apirest_user_login",355,{"namespace":201,"route":268,"methods":269,"callback":270,"permissionCallback":28,"file":147,"line":271},"\u002Ffailed_login",[204],"apirest_failed_login",362,{"namespace":201,"route":273,"methods":274,"callback":275,"permissionCallback":28,"file":147,"line":276},"\u002Fcustom_sql_1",[204],"apirest_custom_1",369,{"namespace":201,"route":278,"methods":279,"callback":280,"permissionCallback":28,"file":147,"line":281},"\u002Fcustom_sql_2",[204],"apirest_custom_2",376,{"namespace":201,"route":283,"methods":284,"callback":285,"permissionCallback":28,"file":147,"line":286},"\u002Fbruteforce",[204],"apirest_bruteforce",383,[],[289],{"hook":171,"callback":171,"file":164,"line":290},51,19,{"dangerousFunctions":293,"sqlUsage":294,"outputEscaping":327,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":361},[],{"prepared":295,"raw":296,"locations":297},13,12,[298,302,304,307,309,311,314,316,319,321,323,325],{"file":299,"line":300,"context":301},"includes\u002FPFMS_AdminPages.class.php",394,"$wpdb->get_results() with unsafe: $tablename",{"file":299,"line":303,"context":301},435,{"file":305,"line":306,"context":301},"includes\u002FPFMS_ApiRest.class.php",174,{"file":305,"line":308,"context":301},387,{"file":305,"line":310,"context":301},431,{"file":147,"line":312,"context":313},115,"$wpdb->get_results() with unsafe: $tablename, $pfms_wp->items_per_page",{"file":147,"line":315,"context":301},157,{"file":147,"line":317,"context":318},453,"$wpdb->get_results() with unsafe: $tablename_users",{"file":147,"line":320,"context":301},875,{"file":147,"line":322,"context":301},914,{"file":147,"line":324,"context":301},1034,{"file":147,"line":326,"context":301},1067,{"escaped":328,"rawEcho":329,"locations":330},179,15,[331,333,335,337,339,341,343,345,347,348,350,352,354,356,358],{"file":299,"line":261,"context":332},"raw output",{"file":299,"line":334,"context":332},584,{"file":299,"line":336,"context":332},844,{"file":299,"line":338,"context":332},849,{"file":299,"line":340,"context":332},854,{"file":299,"line":342,"context":332},855,{"file":299,"line":344,"context":332},856,{"file":299,"line":346,"context":332},857,{"file":299,"line":320,"context":332},{"file":147,"line":349,"context":332},760,{"file":147,"line":351,"context":332},1257,{"file":147,"line":353,"context":332},1260,{"file":147,"line":355,"context":332},1273,{"file":147,"line":357,"context":332},1276,{"file":359,"line":360,"context":332},"includes\u002Fpagination.class.php",77,[],[],{"summary":364,"deductions":365},"The \"pandora-fms-wp\" v2.0 plugin presents a significant security risk due to its extensive, unprotected attack surface. All identified entry points, including AJAX handlers and REST API routes, lack essential authentication and permission checks. This means any unauthenticated user could potentially interact with and manipulate these endpoints, leading to unintended behavior or exploitation. While the plugin demonstrates good practices in other areas, such as a high percentage of properly escaped output and the absence of dangerous functions or file operations, the lack of access control on its entry points overshadows these strengths.\n\nThe static analysis did not reveal any direct vulnerabilities like dangerous functions or critical taint flows. Furthermore, the plugin has no recorded vulnerability history, which is a positive sign suggesting diligent maintenance. However, this lack of history does not negate the immediate risks posed by the unprotected attack surface. The absence of nonce checks on AJAX handlers and capability checks on REST API routes is a critical oversight that requires immediate attention to prevent potential cross-site scripting (XSS) or other injection attacks.\n\nIn conclusion, while the plugin shows promise in its handling of output and its clean vulnerability record, the unauthenticated nature of its AJAX and REST API endpoints creates a substantial and immediate security concern. The development team must prioritize implementing robust authentication and authorization mechanisms for all entry points to mitigate these risks. Without these fundamental security controls, the plugin remains highly susceptible to exploitation by malicious actors.",[366,368,370,372,374,377],{"reason":367,"points":11},"AJAX handlers without auth checks",{"reason":369,"points":11},"REST API routes without permission callbacks",{"reason":371,"points":11},"No nonce checks",{"reason":373,"points":11},"No capability checks",{"reason":375,"points":376},"SQL queries with prepared statements only 52%",5,{"reason":378,"points":379},"Outputs not properly escaped (8%)",4,"2026-04-16T12:37:49.529Z",{"wat":382,"direct":393},{"assetPaths":383,"generatorPatterns":387,"scriptPaths":388,"versionParams":389},[384,385,386],"\u002Fwp-content\u002Fplugins\u002Fpandora-fms-wp\u002Fjs\u002Fpfms-admin.js","\u002Fwp-content\u002Fplugins\u002Fpandora-fms-wp\u002Fcss\u002Fpfms-admin.css","\u002Fwp-content\u002Fplugins\u002Fpandora-fms-wp\u002Fcss\u002Fpfms-plugin.css",[],[384],[390,391,392],"pandora-fms-wp\u002Fjs\u002Fpfms-admin.js?ver=","pandora-fms-wp\u002Fcss\u002Fpfms-admin.css?ver=","pandora-fms-wp\u002Fcss\u002Fpfms-plugin.css?ver=",{"cssClasses":394,"htmlComments":395,"htmlAttributes":411,"restEndpoints":412,"jsGlobals":415,"shortcodeOutput":418},[],[396,397,398,399,400,401,402,403,404,405,406,407,408,409,410],"\u003C!-- PFMS_AdminPages init -->","\u003C!-- PFMS_Widget_Dashboard init -->","\u003C!-- PFMS_Hooks init -->","\u003C!-- PFMS_ApiRest init -->","\u003C!-- END ==== HOOKS FOR INSTALL (OR REGISTER) AND UNINSTALL =========== -->","\u003C!-- INIT === AJAX HOOKS ==============================================","\u003C!-- END ==== AJAX HOOKS ============================================== -->","\u003C!-- INIT === CRON HOOKS ============================================== -->","\u003C!-- END ==== CRON HOOKS ============================================== -->","\u003C!-- INIT === API REST HOOKS ========================================== -->","\u003C!-- END ==== API REST HOOKS ========================================== -->","\u003C!-- INIT === ADD NAME OF DIR PANDORA PLUGIN ========================= -->","\u003C!-- END === ADD NAME OF DIR PANDORA PLUGIN =========================== -->","\u003C!-- INIT === ANOTHER HOOKS =========================================== -->","\u003C!-- END ==== ANOTHER HOOKS =========================================== -->",[],[413,414],"\u002Fwp-json\u002Fpandora-fms-wp\u002Fv1\u002Fget_data","\u002Fwp-json\u002Fpandora-fms-wp\u002Fv1\u002Fsave_data",[416,417],"pfms_admin","pfms_wp_var",[],{"error":420,"url":421,"statusCode":422,"statusMessage":423,"message":423},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fpandora-fms-wp\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":27,"versions":425},[]]