[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fUqffwOWoenrNd5pc0SpElzxJyxCSmYB4Jm_JeTlxMso":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":62,"crawl_stats":38,"alternatives":69,"analysis":179,"fingerprints":801},"prevent-direct-access","Prevent Direct Access – Protect WordPress Files","2.8.8.4","WP Folio Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fbuildwps\u002F","\u003Cp>Prevent Direct Access (PDA) offers a simple solution to protect your WordPress files as well as prevent Google, other search engines and unwanted users from indexing and stealing your hard-to-produce ebooks, documents, and videos.\u003C\u002Fp>\n\u003Cp>We’ve created an intuitive user interface directly in your Media Library. It’s simple and easy to use. You’ll be able to protect your private files in no time.\u003C\u002Fp>\n\u003Ch4>An Inside Look at Prevent Direct Access (PDA) Gold\u003C\u002Fh4>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F37wP7TTcW4Q?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Our PDA Lite version offers the following features:\u003C\u002Fp>\n\u003Ch3>Protect Unlimited WordPress Media Library File Uploads\u003C\u002Fh3>\n\u003Cp>Prevent Direct Access is designed to protect all your WordPress media files such as images (PNG, JPEG), documents (PDF, DOCX, PPTX), audios, and videos (MP4, MP3) that you upload to your website under Media Library or via Media, Pages or Posts.\u003C\u002Fp>\n\u003Cp>Once protected, only admin users and the file’s author can access them directly. Unwanted users will be redirected to your 404 not found page when attempting to read and download these file URLs.\u003C\u002Fp>\n\u003Cp>You can protect unlimited file uploads with our PDA Lite alone.\u003C\u002Fp>\n\u003Ch3>Customize “No Access” Page\u003C\u002Fh3>\n\u003Cp>Instead of redirecting unauthorized users to the 404 page, you can show them a custom page, e.g registration or login page. Users will have to log into your site in order to access these protected files.\u003C\u002Fp>\n\u003Ch3>Auto-generate Private URLs\u003C\u002Fh3>\n\u003Cp>Once a WordPress file is protected, Prevent Direct Access will automatically generate a private download link containing a random string for you to access or share this private file with others.\u003C\u002Fp>\n\u003Cp>You can then copy that private download link to clipboard and subsequently paste it on your browsers and\u002For email by clicking on the Copy URL button.\u003C\u002Fp>\n\u003Ch3>Restrict Access based on IP Addresses\u003C\u002Fh3>\n\u003Cp>Private Download Links can be accessed by anyone who knows the exact URL. You have an option to block unwanted IP addresses from accessing your private links. You can also expire them automatically by clicks or time with our PDA Gold version.\u003C\u002Fp>\n\u003Ch3>Block Google from Indexing your Files\u003C\u002Fh3>\n\u003Cp>Prevent Direct Access (PDA) explicitly tells Google and other search engines not to index any of your protected files so that their content and original URLs will never appear on the search results.\u003C\u002Fp>\n\u003Ch3>Prevent Image Hotlinking\u003C\u002Fh3>\n\u003Cp>Our plugin also stops others from stealing and using your images on their website by linking them directly from your website, which could slow down your website significantly.\u003C\u002Fp>\n\u003Ch3>Protect WordPress Uploads Directory\u003C\u002Fh3>\n\u003Cp>The \u003Ccode>wp-content\u002Fuploads\u003C\u002Fcode> folder where all your uploaded images and files are stored will also be protected. No one will be able to see and browse the content on that folder anymore.\u003C\u002Fp>\n\u003Ch3>Disable Copy and Right Click\u003C\u002Fh3>\n\u003Cp>Our plugin provides you with an option to disable text selection and right-click on all your web pages to prevent content theft.\u003C\u002Fp>\n\u003Ch3>Restrict Media Library Access\u003C\u002Fh3>\n\u003Cp>Instead of allowing users to view all file uploads in Media Library, you can restrict users to view their own ones only.\u003C\u002Fp>\n\u003Cp>We also provide a premium \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fextensions\u002Fwordpress-restrict-page-file-access\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Folder Protection\u003C\u002Fa> feature that allows you to protect all files inside the private folder with just one-click.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch4>Prevent Direct Access Gold Version\u003C\u002Fh4>\n\u003Cp>Our \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Ffeatures\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">PDA Gold\u003C\u002Fa> offers more advanced features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Protect unlimited files and all file types\u003C\u002Fli>\n\u003Cli>Encrypt protected files to stop unauthorized downloads from viewing\u003C\u002Fli>\n\u003Cli>Protect new file uploads automatically or on the fly\u003C\u002Fli>\n\u003Cli>Restrict protected file access to logged-in users or custom user roles\u003C\u002Fli>\n\u003Cli>Search and replace unprotected URLs in content\u003C\u002Fli>\n\u003Cli>Create & customize unlimited Private Download Links\u003C\u002Fli>\n\u003Cli>Expire Private Download Links by days and clicks\u003C\u002Fli>\n\u003Cli>Protect all files under specific folders on WordPress root and uploads directory with our \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fextensions\u002Fwordpress-restrict-page-file-access\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Folder Protection\u003C\u002Fa> feature.\u003C\u002Fli>\n\u003Cli>Grant individual or multiple files access via Referrer Links\u003C\u002Fli>\n\u003Cli>Restrict access to WooCommerce order page by IP addresses using \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fextensions\u002Fwoocommerce-integration\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">WooCommerce Integration\u003C\u002Fa> extension\u003C\u002Fli>\n\u003Cli>Sync or offload multiple files to Amazon S3, search & replace unprotected URLs in content and set their expiration time with \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fextensions\u002Famazon-s3-wordpress-uploads\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Amazon S3 Integration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Upload multiple files directly from your local to Amazon S3 or Wasabi using \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-s3-smart-upload\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"ugc\">WordPress Amazon S3 – Wasabi Smart File Uploads Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fextensions\u002Fwordpress-multisite-integration?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Integrate with WordPress Multisite Network\u003C\u002Fa> and top membership plugins\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fdocs\u002Fgrant-learndash-courses-access-enrolled-students\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Integrate with LearnDash plugin\u003C\u002Fa> to grant course materials access to enrolled students only\u003C\u002Fli>\n\u003Cli>Protect multiple files at once and many other premium features\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check out our \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Ffeatures\u002F?utm_source=wp.org&utm_medium=premium-after-gold-features&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Prevent Direct Access (PDA) Gold\u003C\u002Fa> now.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Documentation and support\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>For documentation and tutorials go to our \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fdocs\u002F?utm_source=wp.org&utm_medium=documentations-and-support&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Check out \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fdocs\u002Fcompatible-wordpress-plugins\u002F?utm_source=wp.org&utm_medium=documentations-and-support&utm_campaign=pda-lite\" rel=\"nofollow ugc\">compatible hosting, themes, and plugins\u003C\u002Fa> with PPWP\u003C\u002Fli>\n\u003Cli>If you have any more questions or want to request new features, contact us through \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fcontact\u002F?utm_source=wp.org&utm_medium=documentations-and-support&utm_campaign=pda-lite\" rel=\"nofollow ugc\">this form\u003C\u002Fa> or drop us an email at \u003Ca href=\"mailto:hello@preventdirectaccess.com\" rel=\"nofollow ugc\">hello@preventdirectaccess.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy Policy\u003C\u002Fh4>\n\u003Cp>PDA is designed to fully respect and protect personal information of its users. It does not collect any user information without your consent.\u003C\u002Fp>\n\u003Cp>We’re using GetResponse to communicate with our users in case they would like to opt in and receive future updates from us.\u003C\u002Fp>\n\u003Cp>User’s emails will be first sent to an external API on our secure server before getting managed by GetResponse.\u003C\u002Fp>\n\u003Cp>Please see our complete \u003Ca href=\"https:\u002F\u002Fpreventdirectaccess.com\u002Fprivacy-policy\u002F?utm_source=wp.org&utm_medium=privacy-policy&utm_campaign=pda-lite\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.getresponse.com\u002Flegal\u002Fprivacy\" rel=\"nofollow ugc\">GetResponse’s\u003C\u002Fa>.\u003C\u002Fp>\n","A simple way to prevent search engines and the public from indexing and accessing your files without complex user authentication.",10000,251967,94,292,"2025-12-23T11:52:00.000Z","6.9.4","4.7","5.6.1",[20,21,22,23,24],"copy-protection","downloads","folder-protection","protection","uploads","https:\u002F\u002Fpreventdirectaccess.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprevent-direct-access.2.8.8.4.zip",98,2,0,"2025-04-24 00:00:00","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-3861","prevent-direct-access-incorrect-authorization-to-authenticated-contributor-multiple-media-actions","Prevent Direct Access 2.8.6 - 2.8.8.2 - Incorrect Authorization to Authenticated (Contributor+) Multiple Media Actions","The Prevent Direct Access – Protect WordPress Files plugin for WordPress is vulnerable to unauthorized access and modification of data| due to a misconfigured capability check on the 'pda_lite_custom_permission_check' function in versions 2.8.6 to 2.8.8.2. This makes it possible for authenticated attackers, with Contributor-level access and above, to access and change the protection status of media.",null,">=2.8.6 \u003C=2.8.8.2","2.8.8.3","medium",5.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:N","Incorrect Authorization","2025-04-25 05:25:07",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F2ed83916-3cf7-4fc6-a16f-45b40cedc721?source=api-prod",1,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":30,"updated_date":59,"references":60,"days_to_patch":48},"CVE-2025-3923","prevent-direct-access-protect-wordpress-files-unauthenticated-sensitive-information-exposure","Prevent Direct Access – Protect WordPress Files \u003C= 2.8.8 - Unauthenticated Sensitive Information Exposure","The Prevent Direct Access – Protect WordPress Files plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.8.8 via the 'generate_unique_string' due to insufficient randomness of the generated file name. This makes it possible for unauthenticated attackers to extract sensitive data including files protected by the plugin if the attacker can determine the file name.","\u003C=2.8.8","2.8.8.1",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2025-04-25 05:25:08",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff648a9ca-a72f-418e-bf1b-ad4ecc27d365?source=api-prod",{"slug":63,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":64,"avg_security_score":65,"avg_patch_time_days":66,"trust_score":67,"computed_at":68},"buildwps",40000,97,81,86,"2026-04-04T15:12:33.886Z",[70,92,117,138,159],{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":78,"downloaded":79,"rating":29,"num_ratings":29,"last_updated":80,"tested_up_to":81,"requires_at_least":82,"requires_php":83,"tags":84,"homepage":89,"download_link":90,"security_score":91,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"undasecure","UndaSecure","1.2.16","asantosundanet","https:\u002F\u002Fprofiles.wordpress.org\u002Fasantosundanet\u002F","\u003Cp>This plugins adds markers in \u002F.htaccess and \u002Fwp-content\u002Fuploads\u002F.htaccess to secure against attacks and optimize Apache configurations for SEO propouses.\u003C\u002Fp>\n\u003Cp>Sets protection in ROOT\u002F.htaccess for wp-config.php, .htaccess, xmlrpc.php, wp-cron.php.\u003Cbr \u002F>\nSets block author scans in ROOT\u002F.htaccess.\u003C\u002Fp>\n\u003Cp>Sets GZIP\u002FDEFLATE in ROOT\u002F.htaccess.\u003Cbr \u002F>\nSets Header add Access-Control-Allow-Origin in ROOT\u002F.htaccess.\u003Cbr \u002F>\nSets ExpiresActive in ROOT\u002F.htaccess.\u003Cbr \u002F>\nSets Header unset Etag in ROOT\u002F.htaccess.\u003C\u002Fp>\n\u003Cp>Create or add to \u002Fwp-content\u002Fuploads\u002F.htaccess protection for files only.\u003C\u002Fp>\n\u003Cp>Removes files on each WP update to prevent exposing WP version number (readme.html, wp-config-sample.php, license.txt).\u003C\u002Fp>\n","Adds secure optimizations to .htaccess file",10,1341,"2018-04-06T07:59:00.000Z","4.9.29","4.0","",[85,86,87,71,88],"htaccess-protection","optimization","secure","uploads-folder-protection","https:\u002F\u002Fwww.undanet.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fundasecure.1.2.16.zip",85,{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":103,"last_updated":104,"tested_up_to":16,"requires_at_least":105,"requires_php":83,"tags":106,"homepage":112,"download_link":113,"security_score":114,"vuln_count":115,"unpatched_count":29,"last_vuln_date":116,"fetched_at":31},"wp-content-copy-protector","WP Content Copy Protection & No Right Click","3.6.6","wp-buy","https:\u002F\u002Fprofiles.wordpress.org\u002Fwp-buy\u002F","\u003Cp>This wp plugin protect the posts content from being copied by any other web site author , you dont want your content to spread without your permission!!\u003Cbr \u002F>\nThe plugin will keep your posts and home page protected by multiple techniques (JavaScript + CSS), this techniques does not found in any other wordpress plugin and you will own it for free with this plugin\u003C\u002Fp>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.wp-buy.com\u002Fproduct\u002Fwp-content-copy-protection-pro\u002F?src=wp1\" rel=\"nofollow ugc\">\u003Cstrong>PRO Version Features\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fli>\n\u003Cp>Protect Your Valuable Content with WP Content Copy Protection & No Right Click\u003C\u002Fp>\n\u003Cp>Are you tired of seeing your original content copied and spread across the web without your permission? The WP Content Copy Protection & No Right Click plugin is here to safeguard your posts and home page from unauthorized copying.\u003C\u002Fp>\n\u003Cp>\u003Cem>Key Features:\u003C\u002Fem>\u003Cbr \u002F>\nContent Protection:\u003Cbr \u002F>\nEnsure your hard work remains yours. This plugin employs advanced content-protection techniques to keep your text and images safe from being copied by other web authors.\u003C\u002Fp>\n\u003Cp>\u003Cem>Copy Protection:\u003C\u002Fem>\u003Cbr \u002F>\nWith robust copy protection mechanisms, this plugin prevents unauthorized duplication of your content. It effectively disables common methods used for content theft, ensuring your intellectual property remains secure.\u003C\u002Fp>\n\u003Cp>\u003Cem>Copyright Enforcement:\u003C\u002Fem>\u003Cbr \u002F>\nMaintain control over your copyrighted material. The plugin acts as a virtual guardian, enforcing copyright rules and deterring potential infringers.\u003C\u002Fp>\n\u003Cp>\u003Cem>Disable Right Click:\u003C\u002Fem>\u003Cbr \u002F>\nStop users from right-clicking on your content. By disabling right-click functionality, this plugin adds an extra layer of security, preventing easy access to the context menu used for copying content.\u003C\u002Fp>\n\u003Cp>\u003Cem>Deny Copy Paste:\u003C\u002Fem>\u003Cbr \u002F>\nBlock the ability to copy and paste your content. This plugin uses a combination of JavaScript and CSS techniques to make copying and pasting from your site nearly impossible.\u003C\u002Fp>\n\u003Cp>\u003Cem>Control Who Can Copy:\u003C\u002Fem>\u003Cbr \u002F>\nTake charge of your content distribution. With this plugin, you have the power to control who can and cannot copy your content, giving you peace of mind that your work is protected.\u003C\u002Fp>\n\u003Cp>\u003Cem>Watermark Images (Pro Version):\u003C\u002Fem>\u003Cbr \u002F>\nUpgrade to the Pro version to add watermarks to your images. This feature ensures that even if your images are copied, they will still carry your watermark, maintaining your brand visibility and deterring unauthorized use.\u003C\u002Fp>\n\u003Cp>\u003Cem>Unique Benefits:\u003C\u002Fem>\u003Cbr \u002F>\nUnparalleled Protection: Unlike other WordPress plugins, our unique combination of JavaScript and CSS techniques offers a level of protection not found elsewhere.\u003Cbr \u002F>\nFree to Use: Enjoy all these powerful features without any cost. Protect your content with the free version of our plugin, and upgrade to the Pro version for additional benefits like image watermarking.\u003Cbr \u002F>\nUser-Friendly: Easy to install and configure, this plugin requires no technical expertise, making it accessible for all WordPress users.\u003Cbr \u002F>\nEnsure your content remains yours with the WP Content Copy Protection & No Right Click plugin. Protect your work, enforce your copyright, and control who can copy your content—all for free.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Easy to Install\u003C\u002Fstrong>:\u003Cbr \u002F>\nRead the installation steps to find that this plugin does not need any coding or theme editing, just use your mouse..\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Basic Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Protect your content from selection and copy. this plugin makes protecting\u003Cbr \u002F>\nyour posts extremely simple without yelling at your readers\u003C\u002Fli>\n\u003Cli>No one can save images from your site.\u003C\u002Fli>\n\u003Cli>No right click or context menu.\u003C\u002Fli>\n\u003Cli>Show alert message, Image Ad or HTML Ad on save images or right click.\u003C\u002Fli>\n\u003Cli>Disable the following keys&nbsp; CTRL+A, CTRL+C, CTRL+X,CTRL+S or CTRL+V.\u003C\u002Fli>\n\u003Cli>Advanced and easy to use control panel.\u003C\u002Fli>\n\u003Cli>No one can right click images on your site if you want\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>The Pro Edition Features include:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.wp-buy.com\u002Fproduct\u002Fwp-content-copy-protection-pro\u002F?src=wp2\" rel=\"nofollow ugc\">\u003Cstrong>PRO version product page\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Watermarking\u003C\u002Fli>\n\u003Cli>Using htacsess rules\u003C\u002Fli>\n\u003Cli>Support jquery overlay protection\u003C\u002Fli>\n\u003Cli>Get full Control on Right click or context menu\u003C\u002Fli>\n\u003Cli>Show alert messages, when user made right click on images, text boxes, links, plain text.. etc\u003C\u002Fli>\n\u003Cli>Admin can exclude Home page Or Single posts from being copy protected \u003C\u002Fli>\n\u003Cli>Admin can disable copy protection for admin users.\u003C\u002Fli>\n\u003Cli>3 protection layers (JavaScript protection, RightClick protection, CSS protection)\u003C\u002Fli>\n\u003Cli>Aggressive image protection (its near impossible for expert users to steal your images !!)\u003C\u002Fli>\n\u003Cli>compatible with all major theme frameworks\u003C\u002Fli>\n\u003Cli>compatible with all major browsers\u003C\u002Fli>\n\u003Cli>Tested in IE9, IE10, Firefox, Google Chrome, Opera\u003C\u002Fli>\n\u003Cli>Disables image drag and drop function\u003C\u002Fli>\n\u003Cli>Works on smart phones and iphones – solved since 2-10-2015 & updated at 13-11-2015\u003C\u002Fli>\n\u003Cli>Ability to set varying levels of protection per page or post.\u003C\u002Fli>\n\u003C\u002Ful>\n","This WP plugin protects posts from being copied (content copy protection). Keep your content safe from unauthorized distribution!",100000,4798380,96,1113,"2026-01-05T12:54:00.000Z","4.8",[107,108,109,110,111],"content-copy-protection","content-protection","image-protection","no-right-click","prevent-copy","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fw-p-content-copy-protector\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-content-copy-protector.3.6.6.zip",95,4,"2024-10-15 00:00:00",{"slug":118,"name":119,"version":120,"author":119,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":102,"num_ratings":126,"last_updated":127,"tested_up_to":16,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":134,"download_link":135,"security_score":136,"vuln_count":48,"unpatched_count":29,"last_vuln_date":137,"fetched_at":31},"protect-uploads","Protect Uploads","0.6.0","https:\u002F\u002Fprofiles.wordpress.org\u002Falticreation\u002F","\u003Cp>The uploads directory is where the files of the WordPress library are stored. Unfortunelty, this directory is not protected. A person who wants to see all your library could list it instantly going to : http:\u002F\u002Fyourwebsite\u002Fwp-content\u002Fuploads . This plugin will hide the content by adding an index.php file on the root of your uploads directory or by setting an htaccess which will return a 403 error (Forbidden Access).\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Depending on your server setting, the htaccess option could be disabled.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>New Features in Version 0.6.0:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Image Watermarking\u003C\u002Fstrong>: Add text watermarks to your uploaded images with customizable position, opacity, and font size.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Right-Click Protection\u003C\u002Fstrong>: Prevent users from right-clicking to download or save your images.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Password Protection\u003C\u002Fstrong>: Secure individual media files with passwords. Multiple passwords can be set for each file with custom labels.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Access Logging\u003C\u002Fstrong>: Track who accesses your password-protected files with detailed logs including IP address and user agent.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Available languages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Italian (thanks to Marko97)\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect your uploads directory. Prevent browsing, add watermarks, disable right-click, and password-protect files. For more information, visit protect &hellip;",30000,1372443,12,"2025-12-28T21:59:00.000Z","3.0.1","7.0",[131,23,132,24,133],"password-protection","security","watermark","https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fprotect-uploads\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprotect-uploads.0.6.0.zip",100,"2022-08-13 00:00:00",{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":146,"downloaded":147,"rating":148,"num_ratings":149,"last_updated":150,"tested_up_to":16,"requires_at_least":82,"requires_php":83,"tags":151,"homepage":154,"download_link":155,"security_score":156,"vuln_count":157,"unpatched_count":29,"last_vuln_date":158,"fetched_at":31},"secure-copy-content-protection","Secure Copy Content Protection and Content Locking","5.0.5","Ays Pro","https:\u002F\u002Fprofiles.wordpress.org\u002Fays-pro\u002F","\u003Ch3>WordPress Copy Content Protection\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fays-pro.com\u002Fwordpress\u002Fsecure-copy-content-protection\" rel=\"nofollow ugc\">WordPress Content Protection plugin pricing\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F34T7sp0\" rel=\"nofollow ugc\">Secure Copy Content Protection Free Demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F38GxXix\" rel=\"nofollow ugc\">Secure Copy Content Protection Pro Demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fays-pro.com\u002Fwordpress-copy-content-protection-user-manual\u002F\" rel=\"nofollow ugc\">Secure Copy Content Protection Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FwhYBGV703SM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fays-pro.com\u002Fwordpress\u002Fsecure-copy-content-protection\" rel=\"nofollow ugc\">WordPress Copy Protection plugin\u003C\u002Fa> is aimed at protecting web content from being plagiarized.\u003C\u002Fp>\n\u003Cp>As soon as Copy Protection plugin is activated it disables the \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=8qkEDvf8HAg&\" rel=\"nofollow ugc\">right click\u003C\u002Fa>, copy paste, content selection and copy shortcut keys on your website thus preventing content theft as well as web scraping, which are very popular nowadays.  Besides all the abovementioned copy methods Copy Protection allows to disable inspect elements and provides a protected site, where no copyright infringement may occur.\u003C\u002Fp>\n\u003Ch3>Demos\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fays-demo.com\u002Fpassword-protection\u002F\" rel=\"nofollow ugc\">Password Protection\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fays-demo.com\u002Fsubscribe-to-view\u002F\" rel=\"nofollow ugc\">Subscribe to View\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fays-demo.com\u002Fcontent-paywall\u002F\" rel=\"nofollow ugc\">Content Paywall\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Secure your website content in easy steps – you just need to download and install the plugin from your WordPress dashboard. Thanks to its \u003Cstrong>beginner-friendly interface\u003C\u002Fstrong>, you can easily enable copy protection and be ready against copy attacks.\u003C\u002Fp>\n\u003Cp>Note, that this plugin protects content both on \u003Cstrong>PC and mobile devices\u003C\u002Fstrong>. Very easy and quick to use, this plugin will prevent plagiarism on your websites and preserve your unique and individual approaches. Moreover, you can make money by selling your copyright and getting revenue from your content.\u003C\u002Fp>\n\u003Cp>What function does the plugin have? By choosing post type you will have a function on the page to protect content selection. So the plugin prevents copy. In any case, if you use the plugin you cannot see copy paste in your site. This is an anti-copy plugin. And the one weapon for content protection is the plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Content copy protection\u003C\u002Fli>\n\u003Cli>Notification text\u003C\u002Fli>\n\u003Cli>Disable left click\u003C\u002Fli>\n\u003Cli>Disable right click\u003C\u002Fli>\n\u003Cli>Disable Developer Tools\u003C\u002Fli>\n\u003Cli>Disable Drag\u002FDrop\u003C\u002Fli>\n\u003Cli>Disable F3\u003C\u002Fli>\n\u003Cli>Disable F6\u003C\u002Fli>\n\u003Cli>Disable F9\u003C\u002Fli>\n\u003Cli>Disable F12\u003C\u002Fli>\n\u003Cli>Disable CTRL+C\u003C\u002Fli>\n\u003Cli>Disable CTRL+V\u003C\u002Fli>\n\u003Cli>Disable CTRL+X\u003C\u002Fli>\n\u003Cli>Disable CTRL+S\u003C\u002Fli>\n\u003Cli>Disable CTRL+A\u003C\u002Fli>\n\u003Cli>Disable CTRL+U\u003C\u002Fli>\n\u003Cli>Disable CTRL+F\u003C\u002Fli>\n\u003Cli>Disable CTRL+P\u003C\u002Fli>\n\u003Cli>Disable CTRL+H\u003C\u002Fli>\n\u003Cli>Disable CTRL+L\u003C\u002Fli>\n\u003Cli>Disable CTRL+K\u003C\u002Fli>\n\u003Cli>Disable CTRL+O\u003C\u002Fli>\n\u003Cli>Disable ALT+D\u003C\u002Fli>\n\u003Cli>Style settings\u003C\u002Fli>\n\u003Cli>Block content with password\u003C\u002Fli>\n\u003Cli>Subscribe to view content\u003C\u002Fli>\n\u003Cli>Mailchimp integration\u003C\u002Fli>\n\u003Cli>Export results (CSV, XLSX, JSON)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fays-pro.com\u002Fwordpress\u002Fsecure-copy-content-protection\" rel=\"nofollow ugc\">PRO\u003C\u002Fa> Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Includes ALL Free version Features and\u003C\u002Fli>\n\u003Cli>Block by IP, IP address blocking\u003C\u002Fli>\n\u003Cli>Block by Country, Geo-blocking\u003C\u002Fli>\n\u003Cli>Front\u002Fback blocker\u003C\u002Fli>\n\u003Cli>Block Rest api\u003C\u002Fli>\n\u003Cli>Protection by user roles\u003C\u002Fli>\n\u003Cli>Protection by post\u002Fpost type\u003C\u002Fli>\n\u003Cli>Paid content via PayPal (PayPal paywall)\u003C\u002Fli>\n\u003Cli>Watermark images\u003C\u002Fli>\n\u003Cli>More on the way …\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>SEO\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>From the point of view of SEO, it is worth saying goodbye to copy and paste. The plugin will ensure the copyright sign. Your copyright text will be in \u003Cstrong>safe from content theft\u003C\u002Fstrong>. It will disable all kinds of copy paste from your site. By installing this plugin you will start to say “stop copy” from your content. In another word, it is called anti-copy paste.\u003C\u002Fli>\n\u003Cli>We know that Google doesn’t like a copy. It wants unique and no copy text. And for example, if your domain is a new one and the ones who have an old domain copy from you, because of them you may appear on the blacklist of Google. To avoid such situation install the plugin and will have a \u003Cstrong>copyright intellectual property\u003C\u002Fstrong>. Consequently, this will bring the right Google page rank for your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>How disable right click on a website?  You just need to install a plugin.\u003C\u002Fp>\n\u003Ch3>Protection\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>In the part of protection here comes a watermark, but nowadays modern thieves can easily erase it. That is why you should turn off no right click and drag and drop and again you will have a copy-protected text and image.\u003C\u002Fli>\n\u003Cli>We approve that it is trustworthy. For instance, if the client sees the same content in another site he may think that the plagiarism is yours. But it is a big infringement of copyright which you can protect. Here again, comes for the help the plugin which will avoid theft of copyright. Use copyright symbols in the plugin and there will not be an outflow of information.\u003C\u002Fli>\n\u003Cli>The next vital question is: Can a website be copyrighted and the answer will be No. You will not meet any infringement with the plugin. There is a law of international copyright and plugin will be like a confirmation of that law.\u003C\u002Fli>\n\u003Cli>The plugin can help to protect your personal files. Such as personal information. For instance, if you are a blogger, journalist or you work in the sphere of film, sport and in any field that wants personal information protection in that case the plugin is just for you. You just disable copy shortcut keys, disable inspect elements and your personal information will not be in hands of thieves. Which is really very disgusting. So that is why you just install the plugin in a few seconds and will have a copyrighted blog.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>So the main reason why to choose the plugin. It is easy to use, easy to install and ensures your fire protection. To protect your personal information and avoid any kinds of plagiarism or web scraping, just install the plugin. And it is vital to repeat that you will get a copyright infringement protection. And this plugin will be the patent for your personal information. If there exists the law of infringement protection then without any doubt this plugin is the confirmation of that law.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fays-pro.com\u002Fwordpress\u002Fsecure-copy-content-protection\" rel=\"nofollow ugc\">PRO\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fays-demo.com\u002Fsecure-copy-content-protection-pro-demo\u002F\" rel=\"nofollow ugc\">DEMO\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fays-pro.com\u002Fwordpress-copy-content-protection-user-manual\" rel=\"nofollow ugc\">DOCUMENTATION\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Block content with a password: (Content Locker)\u003C\u002Fh3>\n\u003Cp>This field is designed to protect parts of your content. Restrict content with a password by using a simple shortcode. You can create multiple shortcodes and write a password for each. Then you just need to copy the shortcode, go to posts\u002Fpages and edit an already created post or add a new one. Put your content between the parts of the shortcode, in the place where is written “Content” ([ays_block id=’1′] Content [\u002Fays_block]).\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Shortcode – a new shortcode is created automatically after pressing “Add new” button.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Password – write the password that a user has to fill in to be able to see the content. The number in the orange square shows the number of users who entered the password to see the content.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Only for – choose a user role and enable a certain user to see the content without entering the password. The number in the orange square shows the number of times the content was viewed by a user role.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Schedule – there is a possibility to show the restricted content for a certain period of time and after that it will be disappeared from the page.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Subscribe to view: (Gated Content)\u003C\u002Fh3>\n\u003Cp>This field enables you to \u003Cstrong>hide the content\u003C\u002Fstrong> of any part of your post and show only when the user writes his\u002Fher email address.\u003Cbr \u002F>\nEach time when a new user arrives at your website, scrolls down and comes across the hidden content,\u003Cbr \u002F>\nit will require the email address to continue reading.\u003Cbr \u002F>\nDo you want to know your website visitors? This feature will perfectly fulfill your need. It is an amazing tool for gathering leads.\u003Cbr \u002F>\nIt will allow you to implement a customer-centric strategy on your website by segmenting and remarketing your leads.\u003Cbr \u002F>\nMoreover, its attention-capturing appearance will also help to increase user engagement and arouse curiosity.\u003C\u002Fp>\n\u003Ch3>Operation Systems\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Windows\u003C\u002Fli>\n\u003Cli>Linux\u003C\u002Fli>\n\u003Cli>Mac\u003C\u002Fli>\n\u003Cli>Android\u003C\u002Fli>\n\u003Cli>IOS\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Browsers\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Google Chrome\u003C\u002Fli>\n\u003Cli>Mozilla Firefox\u003C\u002Fli>\n\u003Cli>Opera\u003C\u002Fli>\n\u003Cli>Internet Explorer\u003C\u002Fli>\n\u003Cli>Safari\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Blocked Shortcuts\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Google Chrome – CTRL+SHIFT+I | CTRL+SHIFT+J | CTRL+C | F12 | CTRL+SHIFT+U\u003C\u002Fli>\n\u003Cli>Mozilla Firefox – CTRL+SHIFT+I | CTRL+SHIFT+J | CTRL+C | F12 | CTRL+SHIFT+U | F7 | F5\u003C\u002Fli>\n\u003Cli>Opera – CTRL+SHIFT+I | CTRL+SHIFT+J | CTRL+C | CTRL+SHIFT+E |\u003C\u002Fli>\n\u003Cli>Internet Explorer – F12 | CTRL+SHIFT+U | CTRL+C | F12+CTRL\u003C\u002Fli>\n\u003Cli>Safari – Cmd+Opt+I | Cmd+Opt+J | Cmd+Opt+C | Cmd+Opt+U\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It’s your chance to protect your content with our powerful Copy Protection plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New Chart Builder plugin:\u003C\u002Fstrong> Create static and dynamic charts for your WordPress website using our \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchart-builder\u002F\" rel=\"ugc\">WordPress Chart plugin\u003C\u002Fa>. Transfer your data into charts easily.\u003C\u002Fp>\n\u003Cp>Don’t forget, in case of any problems or upcoming questions feel free to contact us via e-mail at info@ays-pro.com or via \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsecure-copy-content-protection\u002F\" rel=\"ugc\">FREE SUPPORT FORUM\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Other plugins from Ays Pro Team\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fquiz-maker\u002F\" rel=\"ugc\">Quiz Maker\u003C\u002Fa> for creating advanced quizzes and exams easily and quickly.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsurvey-maker\u002F\" rel=\"ugc\">Survey Maker\u003C\u002Fa> for collecting data and analyze it.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffox-lms\u002F\" rel=\"ugc\">Fox LMS\u003C\u002Fa> for building, organizing, and sharing online courses from your WordPress site.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpoll-maker\u002F\" rel=\"ugc\">Poll Maker\u003C\u002Fa> for creating powerful and interactive polls. \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fays-popup-box\u002F\" rel=\"ugc\">Popup Box\u003C\u002Fa>, an easy way to create eye-catching and engaging popups. \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchart-builder\u002F\" rel=\"ugc\">Chartify\u003C\u002Fa> to build both static and dynamic charts, graphs and diagrams. \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-form\u002F\" rel=\"ugc\">Easy Form\u003C\u002Fa> to create various forms for your website. \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fays-chatgpt-assistant\u002F\" rel=\"ugc\">AI ChatBot\u003C\u002Fa> to generate high-quality content for your blog, and finding the answer to any questions in seconds.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpersonal-dictionary\u002F\" rel=\"ugc\">Personal Dictionary\u003C\u002Fa> to create and organize their vocabulary lists, study and memorize the words.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffaq-builder-ays\u002F\" rel=\"ugc\">FAQ Builder\u003C\u002Fa> to display Frequently Asked Questions on your website with a beautiful accordion. \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fays-slider\u002F\" rel=\"ugc\">Image Slider\u003C\u002Fa> give the aility to grab your audience’s attention with amazing and entertaining slideshows.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fays-random-posts-and-pages\u002F\" rel=\"ugc\">Random Posts and Pages Widget\u003C\u002Fa> for creating internal links and encouraging visitor engagement on your website.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fays-facebook-popup-likebox\u002F\" rel=\"ugc\">Popup Like box\u003C\u002Fa> to promote your Facebook page and add number of Likes.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-related-posts\u002F\" rel=\"ugc\">Advanced Related Posts\u003C\u002Fa> allows you to show a related posts list on your website after a post or via a widget.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgallery-photo-gallery\u002F\" rel=\"ugc\">Photo Gallery\u003C\u002Fa> for displaying responsive image gallery with awesome layout options.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fportfolio-responsive-gallery\u002F\" rel=\"ugc\">Portfolio Responsive Gallery\u003C\u002Fa> to showcase beautiful image galleries on your WordPress websites.\u003C\u002Fli>\n\u003C\u002Ful>\n","Copy Protection plugin is activated it disables the right click, copy paste, content selection and copy shortcut keys",20000,2744710,84,61,"2026-03-11T06:32:00.000Z",[107,108,20,152,153],"copyright","disable-right-click","https:\u002F\u002Fays-pro.com\u002Fwordpress\u002Fsecure-copy-content-protection\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsecure-copy-content-protection.5.0.5.zip",83,15,"2026-02-24 20:52:46",{"slug":160,"name":161,"version":162,"author":163,"author_profile":164,"description":165,"short_description":166,"active_installs":167,"downloaded":168,"rating":169,"num_ratings":170,"last_updated":171,"tested_up_to":172,"requires_at_least":173,"requires_php":83,"tags":174,"homepage":177,"download_link":178,"security_score":136,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-copy-protect-with-color-design","WP Content Copy Protection with Color Design","2.4.2","Kazuki Yanamoto","https:\u002F\u002Fprofiles.wordpress.org\u002Fkazukiyanamoto\u002F","\u003Cp>WP Content Copy Protection with Color Design provides you security for wordpress website.\u003Cbr \u002F>\nIt protects from copying the content, stealing data, and also images from your pages.\u003Cbr \u002F>\nYou can also exclude pages and posts.\u003C\u002Fp>\n\u003Cp>If someone right click, It`ll show an alert window with messages. You can change the color of the alert window that matches to your web site.\u003C\u002Fp>\n\u003Cp>WP Content Copy Protection selecting texts, and disable drag and drop images to your computer.\u003Cbr \u002F>\nBy not selecting texts, users cannot CTRL+C, CTRL+A, CTRL+X, CTRL+V and CTRL+P.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>You can also disable right click without giving the alert window.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>You can change the alert messages by yourself.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>You can exlude login users from the option page.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>You can exclude pages and posts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>You can protect only specified pages and posts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>You can protect print preview page (CTRL+P).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","This plugin will protect the posts content from copying by disable right click and disable selecting text. You can exclude pages and posts.",6000,169485,90,24,"2025-10-10T04:36:00.000Z","6.8.5","3.0",[175,107,176,108,20],"content","content-theft","https:\u002F\u002Fglobal-s-h.com\u002Fwp_protect\u002Fen\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-copy-protect-with-color-design.2.4.2.zip",{"attackSurface":180,"codeSignals":340,"taintFlows":701,"riskAssessment":789,"analyzedAt":800},{"hooks":181,"ajaxHandlers":313,"restRoutes":336,"shortcodes":337,"cronEvents":338,"entryPointCount":339,"unprotectedCount":48},[182,188,192,196,201,206,209,213,217,220,223,226,230,231,234,236,238,242,246,250,254,258,262,266,270,274,276,281,284,287,290,294,297,301,305,310],{"type":183,"name":184,"callback":185,"priority":78,"file":186,"line":187},"filter","wp_prepare_attachment_for_js","maybe_add_protection_border_class","includes\\modules\\Grid_View\\loader.php",13,{"type":183,"name":189,"callback":190,"priority":78,"file":186,"line":191},"attachment_fields_to_edit","maybe_add_checkbox_protection",17,{"type":183,"name":193,"callback":194,"priority":78,"file":186,"line":195},"attachment_fields_to_save","update_protection_status",18,{"type":197,"name":198,"callback":199,"file":186,"line":200},"action","wp_enqueue_media","enqueue_media",19,{"type":197,"name":202,"callback":203,"file":204,"line":205},"admin_notices","multisite_admin_notices","prevent-direct-access.php",63,{"type":197,"name":207,"callback":203,"file":204,"line":208},"network_admin_notices",64,{"type":197,"name":210,"callback":211,"file":204,"line":212},"admin_init","handle_flush_rewrite_rules",74,{"type":197,"name":214,"callback":215,"file":204,"line":216},"wp_footer","prevent_right_click",79,{"type":183,"name":218,"callback":219,"file":204,"line":66},"mod_rewrite_rules","htaccess_contents",{"type":183,"name":221,"callback":222,"file":204,"line":156},"pre_get_posts","hide_posts_media_by_other",{"type":197,"name":224,"callback":225,"file":204,"line":67},"admin_enqueue_scripts","admin_load_js",{"type":197,"name":227,"callback":228,"file":204,"line":229},"delete_post","delete_prevent_direct_access",93,{"type":197,"name":202,"callback":202,"file":204,"line":13},{"type":197,"name":232,"callback":233,"file":204,"line":114},"init","my_endpoint",{"type":197,"name":210,"callback":235,"file":204,"line":102},"check_htaccess_updated",{"type":197,"name":237,"callback":237,"file":204,"line":65},"parse_query",{"type":197,"name":239,"callback":240,"file":204,"line":241},"admin_menu","pda_add_settings_page",99,{"type":183,"name":243,"callback":244,"priority":78,"file":204,"line":245},"plugin_row_meta","register_plugins_links",104,{"type":183,"name":247,"callback":248,"priority":78,"file":204,"line":249},"robots_txt","pda_custom_robots_txt",105,{"type":197,"name":251,"callback":252,"priority":78,"file":204,"line":253},"the_posts","modify_protected_media",107,{"type":197,"name":255,"callback":256,"file":204,"line":257},"plugins_loaded","pda_load_text_domain",108,{"type":197,"name":259,"callback":260,"priority":78,"file":204,"line":261},"upgrader_process_complete","create_new_table_and_migrate_data",110,{"type":197,"name":263,"callback":264,"priority":78,"file":204,"line":265},"rest_api_init","pda_rest_api_init_cb",112,{"type":197,"name":267,"callback":268,"priority":29,"file":204,"line":269},"manage_media_custom_column","media_custom_columns",248,{"type":183,"name":271,"callback":272,"file":204,"line":273},"manage_upload_columns","free_add_upload_columns",249,{"type":183,"name":218,"callback":219,"file":204,"line":275},950,{"type":197,"name":239,"callback":277,"priority":278,"file":279,"line":280},"wpfolio_pda_anylc_remove_admin_menu",999,"wpfolio-analytics\\includes\\class-anylc-admin.php",31,{"type":197,"name":239,"callback":282,"priority":157,"file":279,"line":283},"wpfolio_pda_anylc_register_admin_menu",34,{"type":197,"name":210,"callback":285,"file":279,"line":286},"wpfolio_pda_anylc_admin_init_process",37,{"type":197,"name":202,"callback":288,"file":279,"line":289},"wpfolio_pda_anylc_optin_notice",40,{"type":197,"name":291,"callback":292,"file":279,"line":293},"admin_footer","wpfolio_pda_anylc_optout_popup",43,{"type":197,"name":210,"callback":295,"file":279,"line":296},"redirect_optin_page",45,{"type":197,"name":298,"callback":299,"file":279,"line":300},"wp_loaded","wpfolio_pda_anylc_action_process",48,{"type":197,"name":224,"callback":302,"file":303,"line":304},"wpfolio_pda_anylc_admin_script_style","wpfolio-analytics\\includes\\class-anylc-script.php",20,{"type":197,"name":306,"callback":307,"priority":78,"file":308,"line":309},"activated_plugin","wpfolio_pda_anylc_plugin_activation","wpfolio-analytics\\wpfolio-analytics.php",253,{"type":197,"name":255,"callback":311,"priority":126,"file":308,"line":312},"wpfolio_pda_anylc_plugins_loaded",267,[314,320,324,327,329,333],{"action":315,"nopriv":316,"callback":317,"hasNonce":318,"hasCapCheck":316,"file":204,"line":319},"myaction",false,"so_wp_ajax_function",true,87,{"action":321,"nopriv":316,"callback":322,"hasNonce":316,"hasCapCheck":316,"file":204,"line":323},"regenerate-url","so_wp_ajax_regenerate_url",88,{"action":325,"nopriv":316,"callback":325,"hasNonce":318,"hasCapCheck":316,"file":204,"line":326},"pda_lite_update_general_settings",89,{"action":328,"nopriv":316,"callback":328,"hasNonce":318,"hasCapCheck":316,"file":204,"line":169},"pda_lite_update_ip_restriction_settings",{"action":330,"nopriv":316,"callback":331,"hasNonce":318,"hasCapCheck":316,"file":204,"line":332},"pda_free_subscribe","pda_ajax_pda_free_subscribe",91,{"action":334,"nopriv":316,"callback":335,"hasNonce":318,"hasCapCheck":316,"file":204,"line":27},"pda_subscribe","pda_ajax_subscribe",[],[],[],6,{"dangerousFunctions":341,"sqlUsage":342,"outputEscaping":359,"fileOperations":115,"externalRequests":696,"nonceChecks":126,"capabilityChecks":569,"bundledLibraries":697},[],{"prepared":280,"raw":339,"locations":343},[344,348,350,352,354,357],{"file":345,"line":346,"context":347},"includes\\db-init.php",29,"$wpdb->get_var() with variable interpolation",{"file":345,"line":332,"context":349},"$wpdb->query() with variable interpolation",{"file":345,"line":351,"context":349},101,{"file":345,"line":353,"context":347},120,{"file":355,"line":356,"context":347},"includes\\repository.php",351,{"file":355,"line":358,"context":349},370,{"escaped":360,"rawEcho":361,"locations":362},165,221,[363,367,369,370,371,373,375,377,378,380,382,383,384,385,386,388,390,392,394,396,398,400,402,404,406,408,410,412,414,416,418,420,422,424,427,429,431,432,435,437,440,442,443,445,447,449,451,453,455,457,458,459,460,461,463,465,467,468,470,471,472,473,475,477,479,480,481,482,483,484,485,486,487,488,490,492,493,495,497,498,499,501,502,504,506,507,509,511,512,515,517,518,520,521,522,523,524,525,526,527,528,530,532,534,536,537,538,539,540,541,542,543,545,547,549,551,552,553,554,555,556,558,559,560,561,564,565,566,567,570,571,572,573,574,576,577,578,579,581,582,583,584,585,587,588,589,591,592,593,594,596,597,598,600,601,603,604,605,606,607,608,610,611,613,614,616,617,618,619,620,622,623,625,626,627,629,630,631,632,634,635,636,638,640,642,644,645,646,648,650,652,654,655,657,659,661,663,665,667,669,671,672,673,675,677,678,679,680,681,682,683,684,685,687,689,690,691,692,693,694,695],{"file":364,"line":365,"context":366},"includes\\modules\\Grid_View\\service.php",92,"raw output",{"file":368,"line":157,"context":366},"includes\\partials\\go-pro.php",{"file":368,"line":191,"context":366},{"file":368,"line":170,"context":366},{"file":368,"line":372,"context":366},30,{"file":368,"line":374,"context":366},36,{"file":368,"line":376,"context":366},42,{"file":368,"line":300,"context":366},{"file":368,"line":379,"context":366},54,{"file":368,"line":381,"context":366},72,{"file":368,"line":212,"context":366},{"file":368,"line":148,"context":366},{"file":368,"line":332,"context":366},{"file":368,"line":136,"context":366},{"file":368,"line":387,"context":366},115,{"file":368,"line":389,"context":366},118,{"file":368,"line":391,"context":366},133,{"file":368,"line":393,"context":366},136,{"file":368,"line":395,"context":366},151,{"file":368,"line":397,"context":366},154,{"file":368,"line":399,"context":366},175,{"file":368,"line":401,"context":366},178,{"file":368,"line":403,"context":366},194,{"file":368,"line":405,"context":366},197,{"file":368,"line":407,"context":366},212,{"file":368,"line":409,"context":366},215,{"file":368,"line":411,"context":366},237,{"file":368,"line":413,"context":366},240,{"file":368,"line":415,"context":366},255,{"file":368,"line":417,"context":366},258,{"file":368,"line":419,"context":366},273,{"file":368,"line":421,"context":366},276,{"file":368,"line":423,"context":366},294,{"file":425,"line":426,"context":366},"includes\\partials\\subscribe.php",14,{"file":425,"line":428,"context":366},21,{"file":425,"line":430,"context":366},32,{"file":425,"line":283,"context":366},{"file":433,"line":434,"context":366},"includes\\setting.php",114,{"file":433,"line":436,"context":366},117,{"file":438,"line":439,"context":366},"includes\\settings_page.php",129,{"file":438,"line":441,"context":366},187,{"file":438,"line":403,"context":366},{"file":438,"line":444,"context":366},209,{"file":438,"line":446,"context":366},224,{"file":438,"line":448,"context":366},225,{"file":438,"line":450,"context":366},245,{"file":438,"line":452,"context":366},327,{"file":438,"line":454,"context":366},330,{"file":456,"line":170,"context":366},"includes\\views\\autoload_view.php",{"file":456,"line":372,"context":366},{"file":456,"line":372,"context":366},{"file":456,"line":365,"context":366},{"file":456,"line":351,"context":366},{"file":456,"line":462,"context":366},139,{"file":456,"line":464,"context":366},141,{"file":456,"line":466,"context":366},148,{"file":456,"line":397,"context":366},{"file":469,"line":78,"context":366},"includes\\views\\view-prevent-direct-access-lite-allow-web-crawlers.php",{"file":469,"line":426,"context":366},{"file":469,"line":200,"context":366},{"file":469,"line":428,"context":366},{"file":474,"line":78,"context":366},"includes\\views\\view-prevent-direct-access-lite-attchment-protection.php",{"file":474,"line":476,"context":366},25,{"file":474,"line":478,"context":366},27,{"file":474,"line":346,"context":366},{"file":474,"line":280,"context":366},{"file":474,"line":283,"context":366},{"file":474,"line":283,"context":366},{"file":474,"line":286,"context":366},{"file":474,"line":286,"context":366},{"file":474,"line":289,"context":366},{"file":474,"line":289,"context":366},{"file":474,"line":293,"context":366},{"file":489,"line":195,"context":366},"includes\\views\\view-prevent-direct-access-lite-auto-create-private-link.php",{"file":489,"line":491,"context":366},22,{"file":489,"line":478,"context":366},{"file":489,"line":494,"context":366},28,{"file":496,"line":304,"context":366},"includes\\views\\view-prevent-direct-access-lite-auto-protect-new-file-upload.php",{"file":496,"line":170,"context":366},{"file":496,"line":372,"context":366},{"file":500,"line":191,"context":366},"includes\\views\\view-prevent-direct-access-lite-block-access-info-file.php",{"file":500,"line":428,"context":366},{"file":500,"line":503,"context":366},26,{"file":505,"line":200,"context":366},"includes\\views\\view-prevent-direct-access-lite-disable-directory-listing.php",{"file":505,"line":304,"context":366},{"file":508,"line":200,"context":366},"includes\\views\\view-prevent-direct-access-lite-enable-remote-log.php",{"file":508,"line":510,"context":366},23,{"file":508,"line":494,"context":366},{"file":513,"line":514,"context":366},"includes\\views\\view-prevent-direct-access-lite-encryption-info.php",9,{"file":516,"line":78,"context":366},"includes\\views\\view-prevent-direct-access-lite-faq-tab.php",{"file":516,"line":126,"context":366},{"file":516,"line":519,"context":366},16,{"file":516,"line":191,"context":366},{"file":516,"line":195,"context":366},{"file":516,"line":200,"context":366},{"file":516,"line":510,"context":366},{"file":516,"line":503,"context":366},{"file":516,"line":494,"context":366},{"file":516,"line":430,"context":366},{"file":516,"line":286,"context":366},{"file":516,"line":529,"context":366},39,{"file":516,"line":531,"context":366},41,{"file":516,"line":533,"context":366},44,{"file":516,"line":535,"context":366},46,{"file":516,"line":300,"context":366},{"file":516,"line":300,"context":366},{"file":516,"line":300,"context":366},{"file":516,"line":300,"context":366},{"file":516,"line":300,"context":366},{"file":516,"line":300,"context":366},{"file":516,"line":300,"context":366},{"file":516,"line":544,"context":366},50,{"file":516,"line":546,"context":366},53,{"file":516,"line":548,"context":366},58,{"file":550,"line":426,"context":366},"includes\\views\\view-prevent-direct-access-lite-file-access-permission.php",{"file":550,"line":519,"context":366},{"file":550,"line":200,"context":366},{"file":550,"line":304,"context":366},{"file":550,"line":510,"context":366},{"file":550,"line":476,"context":366},{"file":557,"line":195,"context":366},"includes\\views\\view-prevent-direct-access-lite-force-download.php",{"file":557,"line":491,"context":366},{"file":557,"line":478,"context":366},{"file":557,"line":346,"context":366},{"file":562,"line":563,"context":366},"includes\\views\\view-prevent-direct-access-lite-force-htaccess.php",11,{"file":562,"line":126,"context":366},{"file":562,"line":426,"context":366},{"file":562,"line":519,"context":366},{"file":568,"line":569,"context":366},"includes\\views\\view-prevent-direct-access-lite-grant-protection-roles.php",5,{"file":568,"line":514,"context":366},{"file":568,"line":426,"context":366},{"file":568,"line":157,"context":366},{"file":568,"line":157,"context":366},{"file":575,"line":514,"context":366},"includes\\views\\view-prevent-direct-access-lite-guides-for-multisite.php",{"file":575,"line":426,"context":366},{"file":575,"line":157,"context":366},{"file":575,"line":519,"context":366},{"file":580,"line":563,"context":366},"includes\\views\\view-prevent-direct-access-lite-handle-big-file.php",{"file":580,"line":519,"context":366},{"file":580,"line":428,"context":366},{"file":580,"line":510,"context":366},{"file":580,"line":476,"context":366},{"file":586,"line":191,"context":366},"includes\\views\\view-prevent-direct-access-lite-hide-wordpress-version.php",{"file":586,"line":428,"context":366},{"file":586,"line":503,"context":366},{"file":590,"line":200,"context":366},"includes\\views\\view-prevent-direct-access-lite-nginx.php",{"file":590,"line":476,"context":366},{"file":590,"line":494,"context":366},{"file":590,"line":280,"context":366},{"file":590,"line":595,"context":366},33,{"file":590,"line":283,"context":366},{"file":590,"line":544,"context":366},{"file":590,"line":599,"context":366},60,{"file":590,"line":212,"context":366},{"file":602,"line":126,"context":366},"includes\\views\\view-prevent-direct-access-lite-no-access-page.php",{"file":602,"line":519,"context":366},{"file":602,"line":191,"context":366},{"file":602,"line":491,"context":366},{"file":602,"line":491,"context":366},{"file":602,"line":595,"context":366},{"file":609,"line":200,"context":366},"includes\\views\\view-prevent-direct-access-lite-prevent-hotlinking.php",{"file":609,"line":428,"context":366},{"file":612,"line":200,"context":366},"includes\\views\\view-prevent-direct-access-lite-prevent-right-click.php",{"file":612,"line":428,"context":366},{"file":615,"line":187,"context":366},"includes\\views\\view-prevent-direct-access-lite-private-url-prefix.php",{"file":615,"line":191,"context":366},{"file":615,"line":476,"context":366},{"file":615,"line":476,"context":366},{"file":615,"line":476,"context":366},{"file":621,"line":200,"context":366},"includes\\views\\view-prevent-direct-access-lite-ptotect-file.php",{"file":621,"line":428,"context":366},{"file":624,"line":195,"context":366},"includes\\views\\view-prevent-direct-access-lite-remove-license-and-all-data.php",{"file":624,"line":491,"context":366},{"file":624,"line":478,"context":366},{"file":628,"line":195,"context":366},"includes\\views\\view-prevent-direct-access-lite-replace-content-options.php",{"file":628,"line":491,"context":366},{"file":628,"line":478,"context":366},{"file":628,"line":346,"context":366},{"file":633,"line":510,"context":366},"includes\\views\\view-prevent-direct-access-lite-subscribe-form.php",{"file":633,"line":478,"context":366},{"file":633,"line":280,"context":366},{"file":633,"line":637,"context":366},47,{"file":633,"line":639,"context":366},51,{"file":633,"line":641,"context":366},55,{"file":643,"line":195,"context":366},"includes\\views\\view-prevent-direct-access-lite-use-redirect-url.php",{"file":643,"line":491,"context":366},{"file":643,"line":478,"context":366},{"file":204,"line":647,"context":366},313,{"file":204,"line":649,"context":366},325,{"file":204,"line":651,"context":366},495,{"file":204,"line":653,"context":366},501,{"file":204,"line":653,"context":366},{"file":204,"line":656,"context":366},510,{"file":204,"line":658,"context":366},1107,{"file":204,"line":660,"context":366},1108,{"file":204,"line":662,"context":366},1109,{"file":204,"line":664,"context":366},1110,{"file":204,"line":666,"context":366},1192,{"file":279,"line":668,"context":366},355,{"file":670,"line":300,"context":366},"wpfolio-analytics\\templates\\analytic.php",{"file":670,"line":544,"context":366},{"file":670,"line":208,"context":366},{"file":670,"line":674,"context":366},67,{"file":670,"line":676,"context":366},77,{"file":670,"line":156,"context":366},{"file":670,"line":148,"context":366},{"file":670,"line":169,"context":366},{"file":670,"line":332,"context":366},{"file":670,"line":65,"context":366},{"file":670,"line":27,"context":366},{"file":670,"line":245,"context":366},{"file":670,"line":245,"context":366},{"file":686,"line":546,"context":366},"wpfolio-analytics\\templates\\offers.php",{"file":688,"line":510,"context":366},"wpfolio-analytics\\templates\\optout-popup.php",{"file":688,"line":476,"context":366},{"file":688,"line":503,"context":366},{"file":688,"line":503,"context":366},{"file":688,"line":503,"context":366},{"file":688,"line":494,"context":366},{"file":688,"line":529,"context":366},{"file":688,"line":289,"context":366},3,[698],{"name":699,"version":38,"knownCves":700},"Select2",[],[702,738,760],{"entryPoint":703,"graph":704,"unsanitizedCount":29,"severity":737},"\u003Cprevent-direct-access> (prevent-direct-access.php:0)",{"nodes":705,"edges":732},[706,711,715,721,724,727],{"id":707,"type":708,"label":709,"file":204,"line":710},"n0","source","$_POST",648,{"id":712,"type":713,"label":714,"file":204,"line":710},"n1","transform","→ get_post_meta_by_post_id()",{"id":716,"type":717,"label":718,"file":355,"line":719,"wp_function":720},"n2","sink","get_row() [SQLi]",127,"get_row",{"id":722,"type":708,"label":709,"file":204,"line":723},"n3",851,{"id":725,"type":713,"label":726,"file":204,"line":723},"n4","→ get_protected_posts()",{"id":728,"type":717,"label":729,"file":355,"line":730,"wp_function":731},"n5","get_results() [SQLi]",340,"get_results",[733,734,735,736],{"from":707,"to":712,"sanitized":316},{"from":712,"to":716,"sanitized":318},{"from":722,"to":725,"sanitized":316},{"from":725,"to":728,"sanitized":318},"low",{"entryPoint":739,"graph":740,"unsanitizedCount":48,"severity":759},"show_file_from_private_link (download.php:373)",{"nodes":741,"edges":754},[742,746,748,750,752,753],{"id":707,"type":708,"label":743,"file":744,"line":745},"$_GET","download.php",379,{"id":712,"type":713,"label":747,"file":744,"line":745},"→ get_advance_file_by_url()",{"id":716,"type":717,"label":718,"file":355,"line":749,"wp_function":720},222,{"id":722,"type":708,"label":743,"file":744,"line":751},396,{"id":725,"type":713,"label":714,"file":744,"line":751},{"id":728,"type":717,"label":718,"file":355,"line":719,"wp_function":720},[755,756,757,758],{"from":707,"to":712,"sanitized":316},{"from":712,"to":716,"sanitized":316},{"from":722,"to":725,"sanitized":316},{"from":725,"to":728,"sanitized":318},"high",{"entryPoint":761,"graph":762,"unsanitizedCount":696,"severity":759},"\u003Cdownload> (download.php:0)",{"nodes":763,"edges":782},[764,765,766,767,768,769,770,774,777],{"id":707,"type":708,"label":743,"file":744,"line":745},{"id":712,"type":713,"label":747,"file":744,"line":745},{"id":716,"type":717,"label":718,"file":355,"line":749,"wp_function":720},{"id":722,"type":708,"label":743,"file":744,"line":751},{"id":725,"type":713,"label":714,"file":744,"line":751},{"id":728,"type":717,"label":718,"file":355,"line":719,"wp_function":720},{"id":771,"type":708,"label":772,"file":744,"line":773},"n6","$_GET (x2)",620,{"id":775,"type":713,"label":776,"file":744,"line":773},"n7","→ send_file_to_client()",{"id":778,"type":717,"label":779,"file":744,"line":780,"wp_function":781},"n8","header() [Header Injection]",500,"header",[783,784,785,786,787,788],{"from":707,"to":712,"sanitized":316},{"from":712,"to":716,"sanitized":316},{"from":722,"to":725,"sanitized":316},{"from":725,"to":728,"sanitized":318},{"from":771,"to":775,"sanitized":316},{"from":775,"to":778,"sanitized":316},{"summary":790,"deductions":791},"The 'prevent-direct-access' plugin version 2.8.8.4 presents a mixed security posture. While it demonstrates a good effort in using prepared statements for SQL queries (84%) and has a substantial number of nonce and capability checks (12 and 5 respectively), several concerns warrant attention. The presence of one AJAX handler without authentication checks is a significant risk, opening a potential backdoor for unauthorized actions. Furthermore, taint analysis revealing two flows with unsanitized paths, both categorized as high severity, indicates a potential for serious vulnerabilities if these paths are exploited. The plugin also shows a concerning trend of medium-severity vulnerabilities in its history, particularly related to incorrect authorization and exposure of sensitive information, even though there are no currently unpatched CVEs. This suggests a recurring pattern of authorization and information disclosure issues that, while patched historically, indicate potential weaknesses in the plugin's underlying security logic. The moderate output escaping (43%) also leaves room for potential cross-site scripting (XSS) vulnerabilities.\n\nOverall, the plugin has strengths in its approach to database queries and some security checks. However, the unprotected AJAX handler and high-severity unsanitized paths from taint analysis are critical concerns that significantly elevate the risk. The historical pattern of authorization and information exposure vulnerabilities, even if patched, is a red flag that requires careful monitoring and potentially deeper code review. The moderate output escaping rate adds to the overall risk profile. While no critical or high vulnerabilities are currently unpatched, the identified weaknesses require immediate attention to mitigate potential exploits and improve the plugin's security resilience.",[792,794,796,798],{"reason":793,"points":78},"Unprotected AJAX handler",{"reason":795,"points":157},"High severity unsanitized paths (2 flows)",{"reason":797,"points":78},"Medium severity historical CVEs (2)",{"reason":799,"points":339},"Low output escaping rate (43%)","2026-03-16T17:44:09.761Z",{"wat":802,"direct":823},{"assetPaths":803,"generatorPatterns":812,"scriptPaths":813,"versionParams":814},[804,805,806,807,808,809,810,811],"\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fcss\u002Fpda-grid-view.css","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fcss\u002Fpda-styles.css","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fjs\u002Fpda-admin.js","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fjs\u002Fpda-grid-view.js","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fjs\u002Fpda-settings.js","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fjs\u002Fpda-script.js","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fjs\u002Fpda-uploader.js","\u002Fwp-content\u002Fplugins\u002Fprevent-direct-access\u002Fassets\u002Fjs\u002Fpda-woo.js",[],[806,807,808,809,810,811],[815,816,817,818,819,820,821,822],"prevent-direct-access\u002Fassets\u002Fcss\u002Fpda-grid-view.css?ver=","prevent-direct-access\u002Fassets\u002Fcss\u002Fpda-styles.css?ver=","prevent-direct-access\u002Fassets\u002Fjs\u002Fpda-admin.js?ver=","prevent-direct-access\u002Fassets\u002Fjs\u002Fpda-grid-view.js?ver=","prevent-direct-access\u002Fassets\u002Fjs\u002Fpda-settings.js?ver=","prevent-direct-access\u002Fassets\u002Fjs\u002Fpda-script.js?ver=","prevent-direct-access\u002Fassets\u002Fjs\u002Fpda-uploader.js?ver=","prevent-direct-access\u002Fassets\u002Fjs\u002Fpda-woo.js?ver=",{"cssClasses":824,"htmlComments":827,"htmlAttributes":829,"restEndpoints":843,"jsGlobals":848,"shortcodeOutput":852},[825,826],"pda-grid-view-wrapper","pda-premium-widget",[828],"Hide protected file later.",[830,831,832,833,834,835,836,837,838,839,840,841,842],"data-pda-plugin-url","data-pda-download-url","data-pda-pricing-url","data-pda-id","data-pda-folder-id","data-pda-file-id","data-pda-url","data-pda-filename","data-pda-path","data-pda-type","data-pda-post-id","data-pda-nonce","data-pda-setting-nonce",[844,845,846,847],"\u002Fwp-json\u002Fpda-fss\u002Fv1\u002Fcontent","\u002Fwp-json\u002Fpda\u002Fv1\u002Fsettings","\u002Fwp-json\u002Fpda\u002Fv1\u002Fupdates","\u002Fwp-json\u002Fpda\u002Fv1\u002Flicense",[849,850,851],"pda_ajax_object","pda_grid_view_params","pda_vars",[]]