[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4s0PtVlEZ_U_87X6SNyDrE120iUwvInEl20D_2MU_W4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":127,"fingerprints":203},"plugin-activation-status","Plugin Activation Status","1.0.2.1","Curtiss Grymala","https:\u002F\u002Fprofiles.wordpress.org\u002Fcgrymala\u002F","\u003Cp>Plugin Activation Status makes it easier for owners of multisite and multi-network WordPress installations to perform plugin audits on their installations. The plugin generates a list of plugins that are not currently active on any sites or networks. It generates a separate list of plugins that are active somewhere within the installation, and provides details about where and how those plugins are activated.\u003C\u002Fp>\n\u003Cp>This plugin first retrieves a full list of all of the plugins that are network-activated throughout your installation. Then, it loops through all of the sites in your installation, retrieving a list of all of the active plugins on each site. Next, it runs a diff between the full list of installed plugins and the list of all active plugins.\u003C\u002Fp>\n\u003Cp>Once it retrieves all of that information, it outputs two separate lists.\u003C\u002Fp>\n\u003Cp>The first list is the list of Inactive Plugins; all plugins that are installed, but not activated anywhere within WordPress will be listed there. The second list shows all of the Active Plugins; all plugins that are installed and activated somewhere within WordPress are shown there.\u003C\u002Fp>\n\u003Cp>Within the Active Plugins list, each plugin also has a list of all of the places the plugin is active (at the top, a list of all of the places it’s network-active; at the bottom, all of the places it’s normally-activated).\u003C\u002Fp>\n\u003Cp>When the plugin generates the lists of plugins, it stores those lists as site options in the database, so the lists can be retrieved for reference without using any additional server resources. If you would like to remove those cached lists and generate new lists, you simply have to click the Continue button on the admin page.\u003C\u002Fp>\n","Scans a multisite or multi-network installation to identify all plugins that are active or not.",100,26167,92,14,"2018-04-03T19:04:00.000Z","4.9.29","3.8","",[20,21,22,23,24],"active","multi-network","multisite","network-active","plugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugin-activation-status.1.0.2.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":26,"computed_at":37},"cgrymala",8,2340,87,30,"2026-04-04T02:12:08.761Z",[39,58,76,93,110],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":11,"num_ratings":14,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":11,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"plugin-report","Plugin Report","2.2.2","Torsten Landsiedel","https:\u002F\u002Fprofiles.wordpress.org\u002Fzodiac1978\u002F","\u003Cp>A WordPress plugin that provides detailed information about currently installed plugins.\u003C\u002Fp>\n\u003Ch3>Plugin Report will allow you to:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Spot plugins that are no longer maintained.\u003C\u002Fli>\n\u003Cli>Get a quick overview of the “plugin health” of your site.\u003C\u002Fli>\n\u003Cli>Provide clients with a detailed report, right from their own dashboard, or as CSV spreadsheet.\u003C\u002Fli>\n\u003Cli>Find plugins that are no longer active on multisite installs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Thanks to Roy Tanck for trusting me to adopt this great plugin. Hartelijk bedankt!\u003C\u002Fp>\n\u003Cp>Special thanks go to \u003Ca href=\"http:\u002F\u002Ftristen.ca\u002F\" rel=\"nofollow ugc\">Tristen Forsythe Brown\u003C\u002Fa> for the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftristen\u002Ftablesort\" rel=\"nofollow ugc\">tablesort JavaScript library\u003C\u002Fa> licensed under the MIT License.\u003C\u002Fp>\n","A WordPress plugin that provides detailed information about currently installed plugins.",1000,26304,"2026-01-18T12:46:00.000Z","6.9.4","4.6","5.6",[54,22,55,24],"admin","plugin-info","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fplugin-report\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugin-report.2.2.2.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":16,"requires_at_least":71,"requires_php":18,"tags":72,"homepage":74,"download_link":75,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"multisite-plugin-manager","Multisite Plugin Manager","3.1.6","Aaron Edwards","https:\u002F\u002Fprofiles.wordpress.org\u002Fuglyrobot\u002F","\u003Cp>Plugin management for WordPress Multisite that supports the native plugins page and the WPMU DEV Pro Sites plugin! Used on thousands of multisite installs across the web.\u003Cbr \u002F>\nPreviously known as \u003Cstrong>WPMU Plugin Manager\u003C\u002Fstrong>, it uses a backend options page to adjust plugin permissions for all the sites in your network.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Select what plugins sites have access to\u003C\u002Fli>\n\u003Cli>Choose plugins to Auto-Activate for all new blogs\u003C\u002Fli>\n\u003Cli>Mass activate\u002Fdeactivate a plugin on all sites in your network (Very Handy!)\u003C\u002Fli>\n\u003Cli>Assign special plugin access permissions for specific sites in your network\u003C\u002Fli>\n\u003Cli>And as Super Admin, you can override all these to activate specific plugins on the sites you choose!\u003C\u002Fli>\n\u003Cli>Removes the plugin meta row links (Version, Author, Plugin) and any update messages for blog admins\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Also, if you use the excellent \u003Ca href=\"https:\u002F\u002Fpremium.wpmudev.org\u002Fproject\u002Fpro-sites\u002F\" rel=\"nofollow ugc\">Pro Sites plugin from WPMU DEV\u003C\u002Fa> you will be able to charge for access to certain plugins!\u003C\u002Fp>\n\u003Cp>A free plugin by Aaron Edwards of \u003Ca href=\"http:\u002F\u002Fuglyrobot.com\u002F\" rel=\"nofollow ugc\">UglyRobot Web Development\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fuglyrobot\u002Fmultisite-plugin-manager\" rel=\"nofollow ugc\">Contribute on GitHub\u003C\u002Fa>\u003C\u002Fp>\n","The essential plugin for every multisite install! Manage plugin access permissions across your entire multisite network.",200,107575,84,23,"2020-08-18T01:52:00.000Z","3.7.3",[22,24,73],"wpmu","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fmultisite-plugin-manager\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisite-plugin-manager.3.1.6.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":11,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":18,"tags":90,"homepage":91,"download_link":92,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"multisite-plugin-stats","Multisite Plugin Stats","1.1","ljg3","https:\u002F\u002Fprofiles.wordpress.org\u002Fljg3\u002F","\u003Cp>This plugin was designed to let you know a little bit more about what plugins your users are running on your multisite install. It’s useful it you’re trying to clean up unused plugins, or determine plugin popularity.\u003C\u002Fp>\n","A multisite plugin to show plugin activations across all your sites.",40,6481,2,"2012-06-22T19:25:00.000Z","3.4.2","3.1",[22,24],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fmultisite-plugin-stats\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisite-plugin-stats.1.1.zip",{"slug":94,"name":95,"version":79,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":36,"downloaded":100,"rating":11,"num_ratings":101,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":18,"tags":105,"homepage":108,"download_link":109,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"multi-site-plugins-add-new","Multi Site Plugins Add New","Pippin Williamson","https:\u002F\u002Fprofiles.wordpress.org\u002Fmordauk\u002F","\u003Cp>Adds an “Add New” sub menu item to the Plugins menu of all sites inside of a network for network admins.\u003C\u002Fp>\n","Adds an \"Add New\" sub menu item to the Plugins menu of all sites inside of a network for network admins.",6126,7,"2018-10-21T15:17:00.000Z","5.0.25","3.3",[106,107,22,24],"add-new","multi-site","http:\u002F\u002Fpippinsplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmulti-site-plugins-add-new.1.1.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":120,"num_ratings":101,"last_updated":121,"tested_up_to":122,"requires_at_least":89,"requires_php":18,"tags":123,"homepage":125,"download_link":126,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"proper-network-activation","Proper Network Activation","1.0.5","scribu","https:\u002F\u002Fprofiles.wordpress.org\u002Fscribu\u002F","\u003Cp>When running WordPress MultiSite, you have a very handy feature called network activation. It allows you to activate a plugin for the entire network of sites. The trouble is that it only does half the job.\u003C\u002Fp>\n\u003Cp>Some plugins have an install procedure that is meant to be run only on activation. However, when you do a network activation, that install procedure is only run for the current site. So, you end up with plugins not working properly on all the other sites.\u003C\u002Fp>\n\u003Cp>What this plugin does:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>when doing a network de\u002Factivation, it triggers the de\u002Factivation hook on all sites in the network\u003C\u002Fli>\n\u003Cli>when creating a new site, it triggers the activation hook for all active network plugins on that site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fscribu.net\u002Fwordpress\u002Fproper-network-activation\" rel=\"nofollow ugc\">Plugin News\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fscribu.net\" rel=\"nofollow ugc\">Author’s Site\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Development\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Contribute Code at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fscribu\u002Fwp-proper-network-activation\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fscribu\u002Fwp-proper-network-activation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contribute Translations at \u003Ca href=\"https:\u002F\u002Ftranslate.foe-services.de\u002Fprojects\u002Fproper-network-activation\" rel=\"nofollow ugc\">https:\u002F\u002Ftranslate.foe-services.de\u002Fprojects\u002Fproper-network-activation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Avoid errors when using WordPress MultiSite network activation",20,32400,86,"2013-03-14T12:57:00.000Z","3.5.2",[124,54,22,24],"activation","http:\u002F\u002Fscribu.net\u002Fwordpress\u002Fproper-network-activation","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fproper-network-activation.zip",{"attackSurface":128,"codeSignals":157,"taintFlows":196,"riskAssessment":197,"analyzedAt":202},{"hooks":129,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":156,"entryPointCount":27,"unprotectedCount":27},[130,136,140,144,148],{"type":131,"name":132,"callback":133,"file":134,"line":135},"action","init","load_textdomain","class-plugin-activation-status.php",34,{"type":131,"name":137,"callback":138,"file":134,"line":139},"network_admin_menu","admin_menu",36,{"type":131,"name":141,"callback":142,"file":134,"line":143},"admin_init","add_meta_boxes",37,{"type":131,"name":145,"callback":146,"file":134,"line":147},"admin_enqueue_scripts","enqueue_scripts",38,{"type":131,"name":149,"callback":150,"file":151,"line":152},"plugins_loaded","inst_plugin_activation_status","plugin-activation-status.php",21,[],[],[],[],{"dangerousFunctions":158,"sqlUsage":159,"outputEscaping":167,"fileOperations":27,"externalRequests":27,"nonceChecks":86,"capabilityChecks":194,"bundledLibraries":195},[],{"prepared":160,"raw":86,"locations":161},16,[162,165],{"file":134,"line":163,"context":164},478,"$wpdb->get_col() with variable interpolation",{"file":134,"line":166,"context":164},487,{"escaped":168,"rawEcho":169,"locations":170},3,11,[171,174,176,178,180,182,184,186,188,190,192],{"file":134,"line":172,"context":173},276,"raw output",{"file":134,"line":175,"context":173},300,{"file":134,"line":177,"context":173},311,{"file":134,"line":179,"context":173},319,{"file":134,"line":181,"context":173},356,{"file":134,"line":183,"context":173},362,{"file":134,"line":185,"context":173},365,{"file":134,"line":187,"context":173},380,{"file":134,"line":189,"context":173},383,{"file":134,"line":191,"context":173},398,{"file":134,"line":193,"context":173},413,1,[],[],{"summary":198,"deductions":199},"The plugin \"plugin-activation-status\" v1.0.2.1 demonstrates a strong security posture based on the provided static analysis. The absence of an attack surface (AJAX handlers, REST API routes, shortcodes, cron events) significantly reduces the potential for external exploitation. Furthermore, the code signals indicate good practices with a high percentage of SQL queries using prepared statements and the presence of nonce and capability checks. The lack of dangerous functions, file operations, and external HTTP requests further bolsters its security. The complete absence of any recorded vulnerabilities, including historical ones, is a very positive indicator. However, a significant concern arises from the low percentage (21%) of properly escaped outputs. This means a substantial portion of data outputted by the plugin might be vulnerable to Cross-Site Scripting (XSS) attacks if user-supplied data is not properly sanitized before display. While the taint analysis shows no flows, this is likely due to the limited scope of analysis or the plugin's simple functionality. The low output escaping is the primary weakness that needs attention to achieve a truly robust security profile.",[200],{"reason":201,"points":33},"Low percentage of properly escaped output","2026-03-16T20:39:04.203Z",{"wat":204,"direct":211},{"assetPaths":205,"generatorPatterns":207,"scriptPaths":208,"versionParams":209},[206],"\u002Fwp-content\u002Fplugins\u002Fplugin-activation-status\u002Fplugin-activation-status.css",[],[],[210],"plugin-activation-status.css?ver=0.2.3",{"cssClasses":212,"htmlComments":213,"htmlAttributes":216,"restEndpoints":219,"jsGlobals":220,"shortcodeOutput":221},[],[214,215],"\u003C!-- CSS File Location: ","-->",[217,218],"id=\"poststuff\"","class=\"wrap metabox-holder\"",[],[],[]]