[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fXvRJoNTZHF32Up_kml3ijxRzahpTSCfLrbBEUSn0NAc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":47,"crawl_stats":37,"alternatives":53,"analysis":146,"fingerprints":264},"plugin-groups","Plugin Groups","2.0.9","David Cramer","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesertsnowman\u002F","\u003Cp>If you have a lot of plugins installed, it can be difficult to manage them all. Now you can organize the plugins admin page by grouping your plugins by purpose. Each group will be displayed as a plugin status tabs in the plugins admin page, so you can easily filter which plugins you are viewing by group.\u003C\u002Fp>\n\u003Cp>A free plugin by \u003Ca href=\"https:\u002F\u002Fcramer.co.za\" rel=\"nofollow ugc\">David Cramer\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FDavidCramer\u002Fplugin-groups\" rel=\"nofollow ugc\">Contribute to the development on GitHub\u003C\u002Fa>\u003C\u002Fp>\n","Organize plugins in the Plugins Admin Page by creating groups and filter types",1000,27148,86,30,"2024-02-20T06:45:00.000Z","6.4.8","5.3","",[20,21,4,22,23],"plugin-filter","plugin-group","plugin-organizer","plugin-status-filter","https:\u002F\u002Fcramer.co.za","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugin-groups.zip",85,1,0,"2024-02-20 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":27},"CVE-2024-1108","plugin-groups-missing-authorization-to-unauthenticated-denial-of-service","Plugin Groups \u003C= 2.0.6 - Missing Authorization to Unauthenticated Denial of Service","The Plugin Groups plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the admin_init() function in all versions up to, and including, 2.0.6. This makes it possible for unauthenticated attackers to change the settings of the plugin, which can also cause a denial of service due to a misconfiguration.",null,"\u003C=2.0.6","2.0.7","medium",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:L","Missing Authorization","2024-02-21 03:11:16",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8298f1fb-3165-40e3-9192-805a07c14cae?source=api-prod",{"slug":48,"display_name":7,"profile_url":8,"plugin_count":49,"total_installs":50,"avg_security_score":26,"avg_patch_time_days":27,"trust_score":51,"computed_at":52},"desertsnowman",6,1130,90,"2026-04-04T04:13:47.986Z",[54,74,96,116,132],{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":18,"download_link":73,"security_score":26,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"plugins-in-groups","Plugins In Groups","1.0.2","Karol Sawka","https:\u002F\u002Fprofiles.wordpress.org\u002Fkarlosky\u002F","\u003Cp>With this plugin you can create the groups on the plugins page.\u003Cbr \u002F>\nThen you can assign the plugins to these groups and filter them by the tags.\u003Cbr \u002F>\nEach plugin can have more tags (groups) assigned so you can sort and filter them as you want. It allows you to keep your plugins page clean and you can manage the plugins in bulk.\u003C\u002Fp>\n","Organize the WP plugins in the groups. With this plugin you can keep your plugins page clear, manage them in bulk and filter plugins by the tags.",10,1255,100,3,"2018-09-05T19:41:00.000Z","4.9.29","3.9","5.0",[20,21,4,71,72],"plugins","plugins-groups","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-in-groups.zip",{"slug":22,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":18,"tags":88,"homepage":92,"download_link":93,"security_score":94,"vuln_count":27,"unpatched_count":28,"last_vuln_date":95,"fetched_at":30},"Plugin Organizer","10.2.4","Jeff Sterup","https:\u002F\u002Fprofiles.wordpress.org\u002Ffoomagoo\u002F","\u003Cp>This plugin allows you to do the following:\u003Cbr \u002F>\n1. Change the order that your plugins are loaded.\u003Cbr \u002F>\n2. Selectively disable plugins by any post type or wordpress managed URL.\u003Cbr \u002F>\n3. Adds grouping to the plugin admin age.\u003C\u002Fp>\n\u003Cp>WARNING: Reordering or disabling plugins can have catastrophic affects on your site.  It can cause issues with plugins and can render your site inaccessible.\u003C\u002Fp>\n","Change plugin order and selectively enable\u002Fdisable plugins on each post\u002Fpage.",10000,771323,94,227,"2025-11-29T17:12:00.000Z","6.9.4","4.6.0",[89,90,22,91],"disable-plugins-by-post-or-page","plugin-load-order","turn-off-plugins-for-post-or-page","https:\u002F\u002Fwww.sterup.com\u002Fwordpress-plugins\u002Fplugin-organizer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugin-organizer.10.2.4.zip",99,"2025-12-08 00:00:00",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":62,"downloaded":104,"rating":28,"num_ratings":28,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":18,"tags":108,"homepage":114,"download_link":115,"security_score":26,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"disable-plugins","Disable Plugins","1.0.1","kynatro","https:\u002F\u002Fprofiles.wordpress.org\u002Fkynatro\u002F","\u003Cp>One of WordPress’ biggest bottlenecks is that it loads every single plugin that\u003Cbr \u002F>\nis active on your WordPress installation on every single post\u002Fpage no matter\u003Cbr \u002F>\nwhether they are needed for that post\u002Fpage or not. This plugin will allow you\u003Cbr \u002F>\nto create simple rewrite rules to exclude a plugin or plugins from any URI\u003Cbr \u002F>\npattern match. This is a great way to reduce the memory footprint, SQL queries\u003Cbr \u002F>\nrun at page load, load times, and improve site response speed.\u003C\u002Fp>\n\u003Cp>This is NOT a normal WordPress plugin, but an \u003Cem>mu\u003C\u002Fem> (must use) plugin and requires\u003Cbr \u002F>\nspecial installation instructions. Please see the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdisable-plugins\" rel=\"ugc\">installation section\u003C\u002Fa> for more\u003Cbr \u002F>\ninformation.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Requirements:\u003C\u002Fstrong> PHP5+, WordPress 2.9.x+\u003C\u002Fp>\n","Manage which plugins load on what page with simple regular expression pattern matches similar to an Apache .htaccess file",4163,"2014-06-07T15:41:00.000Z","3.9.40","2.9.0",[109,110,111,112,113],"disable-plugin","mu-plugin","plugin-filtering","plugin-manager","specific-page","http:\u002F\u002Fwww.hellobar.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-plugins.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":62,"downloaded":124,"rating":64,"num_ratings":125,"last_updated":126,"tested_up_to":127,"requires_at_least":68,"requires_php":18,"tags":128,"homepage":130,"download_link":131,"security_score":26,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"wp-plugin-packer","WP Plugin Packer","1.0.0","AZdv","https:\u002F\u002Fprofiles.wordpress.org\u002Fazdv\u002F","\u003Cp>WP Plugin Packer lets you create plugin packs (=groups) to export and import to various WordPress websites.\u003C\u002Fp>\n","WP Plugin Packer lets you create plugin packs (=groups) to export and import to various WordPress websites.",2138,2,"2015-03-19T10:21:00.000Z","4.1.42",[129,21,71],"packs","https:\u002F\u002Fgithub.com\u002FAZdv\u002Fwp-plugin-packer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-plugin-packer.zip",{"slug":133,"name":134,"version":119,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":28,"downloaded":139,"rating":28,"num_ratings":28,"last_updated":140,"tested_up_to":141,"requires_at_least":142,"requires_php":143,"tags":144,"homepage":18,"download_link":145,"security_score":26,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"disable-plugins-on-pages-posts","Disable Plugins on Pages Posts (Plugin Load Organizer)","Amin Nazemi","https:\u002F\u002Fprofiles.wordpress.org\u002Faminnz\u002F","\u003Cp>Regarding WordPress performance, we have a part to say around plugins. Each plugin includes PHP code that has got to be executed,\u003Cbr \u002F>\nmore often than not incorporates scripts and styles, and may indeed run extra inquiries against the database.\u003Cbr \u002F>\nThis implies that pointless plugins can influence page speed and may have a negative effect on the user encounter and your page positioning on google searches and speed insight ranking.\u003C\u002Fp>\n\u003Cp>** Usage **\u003Cbr \u002F>\nJust install it in your wordpress website and go to wp-admin -> settings -> plugin load organizer\u003Cbr \u002F>\nthere are two options available :\u003Cbr \u002F>\n1. Disabling the plugins in the specific pages\u003Cbr \u002F>\n2. Disabling the plugins based on the post-type\u003C\u002Fp>\n","This plugin is focusing on organizing the load of plugins in all around the WordPress and can help you to reduce the HTTP requests and running PHP cod &hellip;",2962,"2022-08-16T07:52:00.000Z","6.0.11","5.4","5.6",[22],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-plugins-on-pages-posts.1.0.0.zip",{"attackSurface":147,"codeSignals":239,"taintFlows":251,"riskAssessment":252,"analyzedAt":263},{"hooks":148,"ajaxHandlers":235,"restRoutes":236,"shortcodes":237,"cronEvents":238,"entryPointCount":28,"unprotectedCount":28},[149,155,161,165,169,171,175,178,181,184,188,192,195,199,203,207,211,214,218,222,226,230],{"type":150,"name":151,"callback":152,"file":153,"line":154},"action","init","Plugin_Groups\\activate_plugin_groups","bootstrap.php",22,{"type":156,"name":157,"callback":158,"file":159,"line":160},"filter","bulk_actions-plugins","add_actions","classes\\class-bulk-actions.php",39,{"type":156,"name":162,"callback":163,"priority":62,"file":159,"line":164},"handle_bulk_actions-plugins","handle_bulk_action",40,{"type":150,"name":166,"callback":167,"file":168,"line":160},"load-plugin-install.php","enqueue_script","classes\\class-extras.php",{"type":156,"name":170,"callback":158,"priority":62,"file":168,"line":164},"plugin_install_action_links",{"type":150,"name":151,"callback":172,"file":173,"line":174},"plugin_groups_init","classes\\class-plugin-groups.php",128,{"type":150,"name":176,"callback":176,"file":173,"line":177},"admin_init",129,{"type":150,"name":179,"callback":179,"file":173,"line":180},"admin_menu",130,{"type":150,"name":182,"callback":179,"file":173,"line":183},"network_admin_menu",131,{"type":150,"name":185,"callback":186,"file":173,"line":187},"admin_enqueue_scripts","enqueue_assets",132,{"type":156,"name":189,"callback":190,"file":173,"line":191},"views_plugins","add_groups",133,{"type":156,"name":193,"callback":190,"file":173,"line":194},"views_plugins-network",134,{"type":156,"name":196,"callback":197,"file":173,"line":198},"all_plugins","catch_selected_group",135,{"type":156,"name":200,"callback":201,"priority":62,"file":173,"line":202},"show_advanced_plugins","filter_shown_status",136,{"type":156,"name":204,"callback":205,"file":173,"line":206},"site_transient_update_plugins","alter_update_plugins",137,{"type":150,"name":208,"callback":209,"file":173,"line":210},"pre_current_active_plugins","render_group_navigation",138,{"type":156,"name":157,"callback":212,"file":173,"line":213},"bulk_actions",139,{"type":150,"name":215,"callback":216,"priority":64,"file":173,"line":217},"admin_bar_menu","admin_bar_item",140,{"type":156,"name":219,"callback":220,"priority":62,"file":173,"line":221},"self_admin_url","append_group_to_self",141,{"type":156,"name":223,"callback":224,"file":173,"line":225},"plugin_action_links","append_group_to_actions",142,{"type":150,"name":227,"callback":228,"file":229,"line":160},"rest_api_init","register_routes","classes\\class-rest.php",{"type":150,"name":231,"callback":232,"file":233,"line":234},"admin_notices","plugin_groups_php_ver","plugincore.php",26,[],[],[],[],{"dangerousFunctions":240,"sqlUsage":241,"outputEscaping":243,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":65,"bundledLibraries":250},[],{"prepared":28,"raw":28,"locations":242},[],{"escaped":62,"rawEcho":125,"locations":244},[245,248],{"file":173,"line":246,"context":247},307,"raw output",{"file":233,"line":249,"context":247},36,[],[],{"summary":253,"deductions":254},"The static analysis of plugin-groups v2.0.9 reveals a generally positive security posture. The plugin exhibits a clean attack surface with no apparent entry points like AJAX handlers, REST API routes, or shortcodes that are exposed without authentication. Crucially, it uses prepared statements for all SQL queries, which is a strong defense against SQL injection. The output escaping is also reasonably good, with only a small percentage of outputs not properly escaped.\n\nHowever, there are some areas for improvement and concern. The presence of 3 capability checks suggests that some functionality does rely on user roles, and while not explicitly detailed as a risk in the static analysis, the absence of nonce checks across all entry points (though there are none) and the 100% lack of taint analysis data could indicate a blind spot. The vulnerability history shows a single medium-severity CVE related to missing authorization, which was patched. This past vulnerability, even if resolved, highlights a potential recurring issue and suggests that authorization checks need to be meticulously implemented and reviewed.\n\nIn conclusion, plugin-groups v2.0.9 demonstrates good development practices regarding SQL injection and attack surface management. The primary concerns stem from the potential for overlooked authorization flaws, as indicated by past vulnerabilities, and the lack of comprehensive taint analysis which could mask subtle issues. While the current version appears free of critical static analysis findings and unpatched CVEs, vigilance regarding authorization and continued code auditing is recommended.",[255,258,260],{"reason":256,"points":257},"Past medium CVE (Missing Authorization)",7,{"reason":259,"points":65},"Small percentage of unescaped output",{"reason":261,"points":262},"Lack of taint analysis data",5,"2026-03-16T19:02:19.789Z",{"wat":265,"direct":276},{"assetPaths":266,"generatorPatterns":269,"scriptPaths":270,"versionParams":273},[267,268],"\u002Fwp-content\u002Fplugins\u002Fplugin-groups\u002Fjs\u002Fbulk-handler.asset.php","\u002Fwp-content\u002Fplugins\u002Fplugin-groups\u002Fjs\u002Finstall.asset.php",[],[271,272],"\u002Fwp-content\u002Fplugins\u002Fplugin-groups\u002Fjs\u002Fbulk-handler.js","\u002Fwp-content\u002Fplugins\u002Fplugin-groups\u002Fjs\u002Finstall.js",[274,275],"plugin-groups\u002Fjs\u002Fbulk-handler.js?ver=","plugin-groups\u002Fjs\u002Finstall.js?ver=",{"cssClasses":277,"htmlComments":278,"htmlAttributes":279,"restEndpoints":281,"jsGlobals":283,"shortcodeOutput":285},[],[],[280],"data-plugin",[282],"\u002Fwp-json\u002Fplugin-groups\u002Fadd",[284],"plgData",[]]