[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYvQiybOHP0Os6WczxoMipJ3tJHRJiSA03mXHIdvmrzo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":133,"crawl_stats":38,"alternatives":141,"analysis":243,"fingerprints":505},"real-time-auto-find-and-replace","Better Find and Replace – AI-Powered Suggestions","1.8.0","CodeSolz","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodesolz\u002F","\u003Ch4>Smart Search, Replace & Media Tool (with AI) for WordPress\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002Four-products\u002Fwordpress-plugin\u002Freal-time-auto-find-and-replace\u002F?utm_campaign=wordpress-org-visitor&utm_medium=learn_more_about_dokan&utm_source=WordPress.org\" rel=\"nofollow ugc\">Better Find and Replace\u003C\u002Fa> lets you easily search and replace text, HTML, links and media across your entire WordPress site — no coding needed. Perfect for database cleanup, content updates or post-migration edits.\u003C\u002Fp>\n\u003Cp>Replace text or media in bulk with full support for serialized data, custom tables and dry-run previews. AI-powered suggestions help you rewrite or improve content instantly, making your edits smarter and faster.\u003C\u002Fp>\n\u003Cp>Easily find and replace images using drag-and-drop and auto-regenerate thumbnails. You can also update or add  alt text, captions and metadata with the suggestion of AI for better SEO.\u003C\u002Fp>\n\u003Cp>Want to \u003Cstrong>change content without editing your database\u003C\u002Fstrong>? Use real-time masking to update text, links or HTML before the page loads — instantly and safely.\u003C\u002Fp>\n\u003Cp>Built for developers, agencies and site owners, individual ( everyone ) who want fast, accurate control over their content management system — all in one clean, intuitive interface.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>AI-Powered Suggestions\u003C\u002Fstrong> – Use artificial intelligence (AI) to get smart replacement suggestions, enhancing accuracy and efficiency.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy to Use\u003C\u002Fstrong> – Clean, user-friendly interface designed for effortless navigation and configuration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Search and Replace Text\u003C\u002Fstrong> – Find and replace any text across your site, whether in static or dynamic content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Search and Replace Ajax\u002FjQuery Content\u003C\u002Fstrong> – Works seamlessly with content loaded via Ajax or jQuery on the frontend.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Find and Replace URLs\u003C\u002Fstrong> – Quickly search and replace outdated or incorrect URLs throughout your website.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Replace Images and Attachment URLs\u003C\u002Fstrong> – Replace image links and attachment URLs site-wide with precision.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Word Masking\u003C\u002Fstrong> – Mask specific words site-wide using flexible find and replace rules.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Temporary Find-Replace Rules\u003C\u002Fstrong> – Create live, non-permanent replacements without altering your database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Edit Footer Credit\u003C\u002Fstrong> – Remove or update footer text without modifying HTML or database content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HTML Code Replacement\u003C\u002Fstrong> – Replace anything within HTML code blocks, tags, or content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-Time Image Replacement\u003C\u002Fstrong> – Replace images instantly during page rendering for dynamic updates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comment Word Filtering\u003C\u002Fstrong> – Automatically find and replace inappropriate words in user-submitted comments.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Language Replacement\u003C\u002Fstrong> – Change words or phrases from one language to another across your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>RegEx Supported\u003C\u002Fstrong> – Use regular expressions for complex and pattern-based search and replace operations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HTML Tag & Attribute Replacement\u003C\u002Fstrong> – Locate and replace specific HTML tags or attributes throughout your content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightning Fast Database Replace\u003C\u002Fstrong> – High-speed search and replace operations in posts, postmeta, options, and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Table Selection\u003C\u002Fstrong> – Choose specific database tables for targeted replacements.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dry Run Preview\u003C\u002Fstrong> – See a preview of all replacements before applying them to the database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Whole Word Match\u003C\u002Fstrong> – Replace only exact word matches in the database to avoid partial replacements.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Serialized Data Support\u003C\u002Fstrong> – Safely search and replace serialized data without breaking structure or integrity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remove Serialized Items\u003C\u002Fstrong> – Delete specific items from serialized arrays in the database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role-Based Access\u003C\u002Fstrong> – Assign plugin management to specific user roles for better control.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Gutenberg and Page Builder Compatible\u003C\u002Fstrong> – Fully supports real-time replacements inside block editors and builders.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Targeted DB Replacement\u003C\u002Fstrong> – Refine search by limiting database replacements to post titles, content, or excerpts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>How to replace in DB?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Start by generating a report\u003C\u002Fstrong>: Select the \u003Cstrong>Dry Run\u003C\u002Fstrong> option located at the bottom of the settings section.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Review the report\u003C\u002Fstrong>: A modal window will appear, showing the specific rows and data that will be affected by the replacement.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Proceed if satisfied\u003C\u002Fstrong>: If the preview looks accurate and matches what you intend to replace, simply close the report window, uncheck \u003Cstrong>Dry Run\u003C\u002Fstrong>, and click the \u003Cstrong>Find & Replace\u003C\u002Fstrong> button.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>⚠️ Attention:\u003C\u002Fstrong> Please carefully review the dry run report before making any changes. Once replacements are applied to the database, they \u003Cstrong>cannot be undone\u003C\u002Fstrong>. The PRO version includes an undo feature, but it must be installed before performing the replacement.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>✅ Important Tip:\u003C\u002Fstrong> Always run a dry report first to ensure your search term and replacement are correct. If anything looks off, adjust the keyword and repeat the process until the preview shows the desired results.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Pro Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Database Replacement Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Powerful search and replace in database\u003C\u002Fli>\n\u003Cli>Ultimate solution for search & replace in serialized data & remove item \u003C\u002Fli>\n\u003Cli>Automatic backup of the search and replacement data\u003C\u002Fli>\n\u003Cli>Ultimate easy solution for restore data what you have replaced by mistake\u003C\u002Fli>\n\u003Cli>Ability to check & replace each item separately which going to be replaced in the database\u003C\u002Fli>\n\u003Cli>Bulk Replacement on report’s page, generate by dry run option\u003C\u002Fli>\n\u003Cli>All tables in database\u003C\u002Fli>\n\u003Cli>Search and replace \u003Cstrong>Unicode Characters\u003C\u002Fstrong> \u003Cem>UTF-8  ( e.g: U+0026, REČA )\u003C\u002Fem> in Database\u003C\u002Fli>\n\u003Cli>Additional filtering options in default \u002F custom URLs \u003C\u002Fli>\n\u003Cli>Filter new comments before inserting into Database \u003C\u002Fli>\n\u003Cli>Filter new post before inserting into Database (Good for auto post generation website)\u003C\u002Fli>\n\u003Cli>Special feature to search and replace in \u003Cstrong>large table\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Real-Time Rendering Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>RegEx supported\u003C\u002Fli>\n\u003Cli>Advance Regex – Powerful code blocks \u002F multi-lines find and replace in real-time (masking) rendering\u003C\u002Fli>\n\u003Cli>Advance Regex – Any (CSS \u002F JS \u002F HTML) code Block find and replacement in real-time (masking) rendering\u003C\u002Fli>\n\u003Cli>Masking on Shortcodes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advance filtering options\u003C\u002Fstrong> :-\n\u003Cul>\n\u003Cli>Case insensitive – search and replace case sensitive or insensitive\u003C\u002Fli>\n\u003Cli>Whole Word – search and replace whole word \u003C\u002Fli>\n\u003Cli>Unicode – search and replace Unicode Characters\u003C\u002Fli>\n\u003Cli>Skip posts \u002F page \u002F custom taxonomies etc.. urls\u003C\u002Fli>\n\u003Cli>Skip CSS – External, Internal, Inline\u003C\u002Fli>\n\u003Cli>Skip JavaScript – External, Internal\u003C\u002Fli>\n\u003Cli>Skip pages – if you don’t want to apply rules on any specific page\u003C\u002Fli>\n\u003Cli>Skip posts – if you don’t want to apply rules on any specific posts\u003C\u002Fli>\n\u003Cli>Bypass rule  – keep texts unchanged on specific area with special pattern\u003C\u002Fli>\n\u003Cli>Bypass rule  – keep base links \u002F urls ( post, pages, custom taxonomies etc..) unchanged where find word exists in that URL.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Advance Regex – Code blocks \u002F multi lines find and replacement example – (Real-time Rendering)\u003C\u002Fh4>\n\u003Cp>\u003Cem>Find code block and replace with your own or keep blank *replacement field\u003C\u002Fem> to remove code block. Let consider the following CSS code block for replace. Put following\u003Cbr \u002F>\ncode block in find field*\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cstyle media=\"screen\">\n    html { margin-top: 32px !important; }\n    * html body { margin-top: 32px !important; }\n    @media screen and ( max-width: 782px ) {\n        html { margin-top: 46px !important; }\n        * html body { margin-top: 46px !important; }\n    }\n\u003C\u002Fstyle>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cem>Then put following code block in *Replace\u003C\u002Fem> field to replace the above code block*\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cstyle>\n.site-title a{color: red;}\n\u003C\u002Fstyle>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Join the elite web professionals who enjoy \u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002Four-products\u002Fwordpress-plugin\u002Freal-time-auto-find-and-replace\u002F?utm_source=wordpress.org&utm_medium=README\" rel=\"nofollow ugc\">Better Find And Replace Pro!\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>➡️ Basic Documentation To Get Started\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Setup Video Guide – How to install and setup search and replace rules\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FnDv6T72sRfc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>👉 Real-time search and replace\u003C\u002Fp>\n\u003Cul>\n\u003Cli>General options for filtering\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Freal-time-find-replace\u002Fgeneral-options\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Advance options for filtering\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Freal-time-find-replace\u002Fadvance-filters\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>👉 Search and replace in Database\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Fsearch-replace-in-database\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Find and replace in Database tables\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Fsearch-replace-in-database\u002Ffind-and-replace-in-tables\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Find and replace in Database URLs\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Fsearch-replace-in-database\u002Ffind-and-replace-urls\u002F\" rel=\"nofollow ugc\">Live Demo &  Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Forum and Feature Request\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Ch4>For Quick Support, feature request and bug reporting\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Visit our website \u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002F?utm_source=wordpress.org&utm_medium=README&utm_campaign=real-time-auto-find-and-replace\" rel=\"nofollow ugc\">To Get Instant Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli> For more dedicated support or feature request write to us at \u003Ca href=\"mailto:support@codesolz.net\" rel=\"nofollow ugc\">support@codesolz.net\u003C\u002Fa> or create a ticket \u003Ca href=\"http:\u002F\u002Fsupport.codesolz.net\u002Fpublic\u002Fcreate-ticket\" rel=\"nofollow ugc\"> Support Center\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Visit our forum to share your experience or request features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Visit our \u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002Fforum\u002F?utm_source=wordpress.org&utm_medium=README&utm_campaign=real-time-auto-find-and-replace\" rel=\"nofollow ugc\">forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>As it’s open source, check our github development Status\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Check development status or issues in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FCodeSolz\u002Freal-time-auto-find-and-replace\" rel=\"nofollow ugc\"> github.com\u002FCodeSolz\u002Freal-time-auto-find-and-replace \u003C\u002Fa>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n","Search and replace text, images, URLs, footer credits, code blocks or jQuery-Ajax content in real time or in Database, easy user-interface",50000,1239976,92,167,"2026-03-08T21:56:00.000Z","6.9.4","5.2","7.2",[20,21,22,23,24],"database","replace","search","search-and-replace","search-replace","https:\u002F\u002Fcodesolz.net\u002Four-products\u002Fwordpress-plugin\u002Freal-time-auto-find-and-replace\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freal-time-auto-find-and-replace.1.8.0.zip",89,7,0,"2025-11-07 00:00:00","2026-03-15T15:16:48.613Z",[33,49,62,77,90,105,120],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-9334","better-find-and-replace-authenticated-subscriber-limited-code-injection","Better Find and Replace \u003C= 1.7.7 - Authenticated (Subscriber+) Limited Code Injection","The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to Limited Code Injection in all versions up to, and including, 1.7.7. This is due to insufficient input validation and restriction on the 'rtafar_ajax' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to call arbitrary plugin functions and execute code within those functions.",null,"\u003C=1.7.7","1.7.8","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Control of Generation of Code ('Code Injection')","2025-11-08 05:52:43",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F232f3a15-3bd3-44fa-aa07-f055e8fcda88?source=api-prod",1,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":54,"cvss_score":55,"cvss_vector":56,"vuln_type":57,"published_date":58,"updated_date":59,"references":60,"days_to_patch":48},"CVE-2025-12360","better-find-and-replace-missing-authorization","Better Find and Replace \u003C= 1.7.7 - Missing Authorization","The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to unauthorized API usage due to a missing capability check on the rtafar_ajax() function in all versions up to, and including, 1.7.7. This makes it possible for authenticated attackers, with Subscriber-level access, to trigger OpenAI API key usage resulting in quota consumption potentially incurring cost.","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Improper Authorization","2025-11-05 19:08:46","2025-11-06 07:27:06",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F757e41dd-d72f-4e87-a087-c5c38bd727e5?source=api-prod",{"id":63,"url_slug":64,"title":65,"description":66,"plugin_slug":4,"theme_slug":38,"affected_versions":67,"patched_in_version":68,"severity":54,"cvss_score":69,"cvss_vector":70,"vuln_type":71,"published_date":72,"updated_date":73,"references":74,"days_to_patch":76},"CVE-2025-53466","better-find-and-replace-authenticated-administrator-stored-cross-site-scripting","Better Find and Replace \u003C= 1.7.6 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Better Find and Replace plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.","\u003C=1.7.6","1.7.7",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-09-22 00:00:00","2025-09-29 15:57:31",[75],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F9240aa50-f8b4-47c9-bedd-cffd4e1b4d58?source=api-prod",8,{"id":78,"url_slug":79,"title":80,"description":81,"plugin_slug":4,"theme_slug":38,"affected_versions":82,"patched_in_version":83,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":84,"published_date":85,"updated_date":86,"references":87,"days_to_patch":89},"CVE-2025-24734","better-find-and-replace-missing-authorization-to-authenticated-subscriber-privilege-escalation","Better Find and Replace \u003C= 1.6.7 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation","The Better Find and Replace plugin for WordPress is vulnerable to unauthorized Privilege Escalation due to a missing capability check on the db_string_replace() function in all versions up to, and including, 1.6.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to replace values in the database that can be leveraged to achieve privilege escalation.","\u003C=1.6.7","1.6.8","Missing Authorization","2025-01-27 00:00:00","2025-02-20 16:27:34",[88],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F00b24f2f-af29-4297-b253-3242dc56542f?source=api-prod",25,{"id":91,"url_slug":92,"title":93,"description":94,"plugin_slug":4,"theme_slug":38,"affected_versions":95,"patched_in_version":96,"severity":41,"cvss_score":97,"cvss_vector":98,"vuln_type":99,"published_date":100,"updated_date":101,"references":102,"days_to_patch":104},"CVE-2024-39636","better-find-and-replace-unauthenticated-php-object-injection","Better Find and Replace \u003C= 1.6.1 - Unauthenticated PHP Object Injection","The Better Find and Replace plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.6.1 via deserialization of untrusted input from the 'str' parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.","\u003C=1.6.1","1.6.2",8.3,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:N\u002FUI:R\u002FS:C\u002FC:H\u002FI:H\u002FA:H","Deserialization of Untrusted Data","2024-07-29 00:00:00","2024-08-09 20:48:38",[103],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4b5d1190-3c1e-4cb8-b64b-894ffb1b1f38?source=api-prod",12,{"id":106,"url_slug":107,"title":108,"description":109,"plugin_slug":4,"theme_slug":38,"affected_versions":110,"patched_in_version":111,"severity":41,"cvss_score":112,"cvss_vector":113,"vuln_type":114,"published_date":115,"updated_date":116,"references":117,"days_to_patch":119},"CVE-2022-1472","better-find-and-replace-admin-sql-injection","Better Find and Replace \u003C= 1.3.5 - Admin+ SQL Injection","The Better Find and Replace WordPress plugin before 1.3.6 does not properly sanitise, validate and escape various parameters before using them in an SQL statement, leading to an SQL Injection","\u003C1.3.6","1.3.6",7.2,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2022-05-30 00:00:00","2024-01-22 19:56:02",[118],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe26b7e73-2d04-493a-a7d9-2276bc0e1ba8?source=api-prod",603,{"id":121,"url_slug":122,"title":123,"description":124,"plugin_slug":4,"theme_slug":38,"affected_versions":125,"patched_in_version":126,"severity":54,"cvss_score":127,"cvss_vector":128,"vuln_type":71,"published_date":129,"updated_date":116,"references":130,"days_to_patch":132},"CVE-2021-24676","better-find-and-replace-reflected-cross-site-scripting","Better Find and Replace \u003C= 1.2.8 - Reflected Cross-Site Scripting","The Better Find and Replace WordPress plugin before 1.2.9 does not escape the 's' GET parameter before outputting back in the All Masking Rules page, leading to a Reflected Cross-Site Scripting issue","\u003C=1.2.8","1.2.9",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2021-09-06 00:00:00",[131],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F879bd819-5513-4253-b6e0-a34dbebae287?source=api-prod",869,{"slug":134,"display_name":7,"profile_url":8,"plugin_count":135,"total_installs":136,"avg_security_score":137,"avg_patch_time_days":138,"trust_score":139,"computed_at":140},"codesolz",2,50060,67,217,56,"2026-04-04T15:37:42.603Z",[142,165,187,204,225],{"slug":143,"name":144,"version":145,"author":146,"author_profile":147,"description":148,"short_description":149,"active_installs":150,"downloaded":151,"rating":152,"num_ratings":153,"last_updated":154,"tested_up_to":16,"requires_at_least":155,"requires_php":156,"tags":157,"homepage":161,"download_link":162,"security_score":163,"vuln_count":135,"unpatched_count":29,"last_vuln_date":164,"fetched_at":31},"better-search-replace","Better Search Replace","1.4.10","WP Engine","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpengine\u002F","\u003Cp>When moving your WordPress site to a new domain or server, you will likely run into a need to run a search\u002Freplace on the database for everything to work correctly. Fortunately, there are several plugins available for this task, however, all have a different approach to a few key features. This plugin consolidates the best features from these plugins, incorporating the following features in one simple plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Serialization support for all tables\u003C\u002Fli>\n\u003Cli>The ability to select specific tables\u003C\u002Fli>\n\u003Cli>The ability to run a “dry run” to see how many fields will be updated\u003C\u002Fli>\n\u003Cli>No server requirements aside from a running installation of WordPress\u003C\u002Fli>\n\u003Cli>WordPress Multisite support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Time-saving features available in the Pro version:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View exactly what changed during a search\u002Freplace\u003C\u002Fli>\n\u003Cli>Backup and import the database while running a search\u002Freplace\u003C\u002Fli>\n\u003Cli>Priority email support from the developer of the plugin\u003C\u002Fli>\n\u003Cli>Save or load custom profiles for quickly repeating a search\u002Freplace in the future\u003C\u002Fli>\n\u003Cli>Support and updates for 1 year\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fbettersearchreplace.com\u002F\" rel=\"nofollow ugc\">Learn more about Better Search Replace Pro\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>The search and replace functionality is heavily based on interconnect\u002Fit’s great and open-source Search Replace DB script, modified to use WordPress native database functions to ensure compatibility.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Want to contribute?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Feel free to open an issue or submit a pull request on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdeliciousbrains\u002Fbetter-search-replace\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","A simple plugin to update URLs or other text in a database.",1000000,17311737,86,541,"2025-12-08T17:21:00.000Z","3.0.1","",[23,24,158,159,160],"search-replace-database","update-database-urls","update-live-url","https:\u002F\u002Fbettersearchreplace.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-search-replace.1.4.10.zip",98,"2024-01-24 00:00:00",{"slug":166,"name":167,"version":168,"author":169,"author_profile":170,"description":171,"short_description":172,"active_installs":173,"downloaded":174,"rating":175,"num_ratings":176,"last_updated":177,"tested_up_to":16,"requires_at_least":178,"requires_php":179,"tags":180,"homepage":182,"download_link":183,"security_score":184,"vuln_count":185,"unpatched_count":48,"last_vuln_date":186,"fetched_at":31},"cm-on-demand-search-and-replace","CM Search And Replace – Optimize content edits with a powerful search and replace tool","1.5.5","CreativeMindsSolutions","https:\u002F\u002Fprofiles.wordpress.org\u002Fcreativemindssolutions\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fpurchase-cm-on-demand-search-and-replace-plugin-for-wordpress\u002F\" rel=\"nofollow ugc\">Pro Plugin Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.videolessonsplugin.com\u002Fvideo-lesson\u002Flesson\u002Fsearch-replace-wordpress-plugin\u002F\" rel=\"nofollow ugc\">Videos\u003C\u002Fa>  | \u003Ca href=\"https:\u002F\u002Fcreativeminds.helpscoutdocs.com\u002Fcategory\u002F282-search-and-replace-cmsr\" rel=\"nofollow ugc\">User Guide\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Use our WordPress Search and Replace plugin to perform live search\u002Freplace operations on words, phrases, and HTML within your WordPress site’s content, without altering the underlying database.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>⭐ \u003Cem>We’re excited to present the renewed version of CM Search and Replace! Featuring a brand-new, intuitive design, the plugin is now more user-friendly than ever, making it easier to create and manage your search and replace rules with precision.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>With this powerful WordPress find replace plugin, you’ll be able to modify the content of posts, pages, comments, titles, and excerpts just before they are displayed on the front end without any need to make changes to the WordPress database.\u003C\u002Fp>\n\u003Cp>This WordPress plugin generates dynamic rules that enable consistent replacement of HTML and text generated not only by your page content but also plugins before a page is loaded to a user’s browser.\u003C\u002Fp>\n\u003Ch3>Search Replace Premium Edition\u003C\u002Fh3>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fpurchase-cm-on-demand-search-and-replace-plugin-for-wordpress\u002F\" rel=\"nofollow ugc\">Search and Replace Plugin Premium edition\u003C\u002Fa> includes even more powerful features, such as: store search and replace changes to databse, log all changes made, regex support, time based search and replace rules and much more.\u003C\u002Fp>\n\u003Ch3>Search Replace Plugin Introduction Video (Pro Version)\u003C\u002Fh3>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F124893784\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch3>WordPress Search Replace Plugin Use-Cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Profanity Filter\u003C\u002Fstrong> – Our WordPress plugin gives you the ability to censor bad words posted in comments, content generated by plugins, as well as pages or posts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HTML Replacement\u003C\u002Fstrong> – Replace HTML code on the fly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image Replacement\u003C\u002Fstrong> – Replace images on the fly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Schedule Content\u003C\u002Fstrong> – Schedule content changes for particular dates or durations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Database Changes\u003C\u002Fstrong> – Make permament changes to the content in the database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Log Changes\u003C\u002Fstrong> – Log all changes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WordPress Search Replace Plugin Basic Version Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create any number of rules for replacing regular text and html.\u003C\u002Fli>\n\u003Cli>Applies replacement rules that can help in standarizing WordPress posts and pages.\u003C\u002Fli>\n\u003Cli>Performs replacements only locally and doesn’t save them to the database.\u003C\u002Fli>\n\u003Cli>Supports scanning content for case sensitive words.\u003C\u002Fli>\n\u003Cli>Choose if to search and replace content in images URLs.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WordPress Search Replace Plugin Pro Version Features\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fsearch-and-replace-plugin-for-wordpress\u002F#features\" rel=\"nofollow ugc\">Pro Version Detailed Features List\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Define search\u002Freplace rules for site and page titles, content, excerpts, link, comments and images.\u003C\u002Fli>\n\u003Cli>Support custom posts types.\u003C\u002Fli>\n\u003Cli>Support Regex rules.\u003C\u002Fli>\n\u003Cli>Support search replace based on timeframes.\u003C\u002Fli>\n\u003Cli>Support search replace only on specific posts.\u003C\u002Fli>\n\u003Cli>Support search replace only on specific post categories, tags or other taxonomies.\u003C\u002Fli>\n\u003Cli>Rules Management – pause, edit, delete and easily change the order of rules.\u003C\u002Fli>\n\u003Cli>Includes log for changes that are made on the fly.\u003C\u002Fli>\n\u003Cli>Includes log for permanent changes in the database.\u003C\u002Fli>\n\u003Cli>Import and export rules.\u003C\u002Fli>\n\u003Cli>Search within rules.\u003C\u002Fli>\n\u003Cli>Frontend widget to turn rules on and off.\u003C\u002Fli>\n\u003Cli>Ensures additional content support for plugins like Yoast, BBPress, WooCommerce, ACF and CM Tooltip Glossary.\u003C\u002Fli>\n\u003Cli>Optionally, commit replacement rules to the database so they will be permanent.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Follow Us\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fcategory\u002Fwordpress\u002F\" rel=\"nofollow ugc\">Blog\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fcmplugins\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Fcreativeminds\" rel=\"nofollow ugc\">LinkedIn\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fcmindschannel\" rel=\"nofollow ugc\">YouTube\u003C\u002Fa> |  \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fcmplugins\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Suggested Plugins by CreativeMinds\u003C\u002Fh3>\n\u003Cp>List of all \u003Ca href=\"https:\u002F\u002Fwww.cminds.com\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa> by CreativeMinds\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fglossaryplugin.com\u002F\" rel=\"nofollow ugc\">CM Tooltip Glossary\u003C\u002Fa> – Easily creates a Glossary, Encyclopaedia or Dictionary of your website’s terms and shows them as a tooltip in posts and pages when hovering. With many more powerful features.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.downloadmanagerplugin.com\u002F\" rel=\"nofollow ugc\">CM Download Manager\u003C\u002Fa> – Allows users to upload, manage, track and support documents or files in a download directory listing database for others to contribute, use and comment upon.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.answersplugin.com\u002F\" rel=\"nofollow ugc\">CM Answers Plugin\u003C\u002Fa> – A fully-featured WordPress Questions & Answers Plugin that allows you to build multiple discussion forum systems Just like StackOverflow, Yahoo Answers and Quora, Now with MicroPayments and Anonymous posting support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WordPress Search and Replace Plugin Frequently Asked Questions\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fpurchase-cm-on-demand-search-and-replace-plugin-for-wordpress\u002F#plugin-faq\" rel=\"nofollow ugc\">More FAQ’s\u003C\u002Fa>\u003C\u002Fp>\n","Search and replace words, phrases, and HTML within your website posts and pages.",2000,153686,84,15,"2026-01-29T11:01:00.000Z","5.4.0","5.2.4",[20,181,21,23,24],"find","http:\u002F\u002Fwww.cminds.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcm-on-demand-search-and-replace.zip",74,6,"2025-08-14 00:00:00",{"slug":188,"name":189,"version":190,"author":191,"author_profile":192,"description":193,"short_description":194,"active_installs":29,"downloaded":195,"rating":196,"num_ratings":48,"last_updated":156,"tested_up_to":197,"requires_at_least":198,"requires_php":199,"tags":200,"homepage":201,"download_link":202,"security_score":196,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":203},"quick-search-replace","Quick Search Replace","1.0.0","Delower Hossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdelower\u002F","\u003Cp>Quick Search Replace provides a user-friendly interface to run comprehensive search and replace operations on your WordPress database. This tool is designed to search through \u003Cstrong>every column\u003C\u002Fstrong> of your selected tables, making it a powerful utility for site migrations (e.g., changing domains or switching to HTTPS).\u003C\u002Fp>\n\u003Cp>It correctly handles serialized data and automatically flushes permalinks after a migration to prevent 404 errors.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Comprehensive Search:\u003C\u002Fstrong> Performs replacements in all columns of the selected tables.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Serialization Support:\u003C\u002Fstrong> Correctly handles serialized PHP arrays and objects.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Select Specific Tables:\u003C\u002Fstrong> You have full control to choose exactly which tables to include in the operation.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dry Run:\u003C\u002Fstrong> Perform a “dry run” to see a report of how many database fields would be changed, without making any actual modifications.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Permalink Flushing:\u003C\u002Fstrong> Automatically flushes WordPress rewrite rules after a live run to ensure your site’s links don’t break.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Multisite Support:\u003C\u002Fstrong> Fully multisite-aware, listing all tables across the network.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>EXTREME WARNING:\u003C\u002Fstrong> This tool is powerful and modifies your database directly. Because it searches every column, it can change sensitive data like user logins, hashed passwords, and post GUIDs if they match your search string. \u003Cstrong>ALWAYS create a full backup of your database before using this tool.\u003C\u002Fstrong>\u003C\u002Fp>\n","A simple and powerful tool to run search and replace queries on your WordPress database, with full serialization and multisite support.",191,100,"6.8.5","6.0","8.0",[23,24,158,159,160],"https:\u002F\u002Fdelowerhossain.com\u002Fplugins\u002Fquick-search-replace","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquick-search-replace.1.0.0.zip","2026-03-15T10:48:56.248Z",{"slug":205,"name":206,"version":207,"author":208,"author_profile":209,"description":210,"short_description":211,"active_installs":212,"downloaded":213,"rating":214,"num_ratings":215,"last_updated":216,"tested_up_to":16,"requires_at_least":217,"requires_php":218,"tags":219,"homepage":223,"download_link":224,"security_score":196,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"go-live-update-urls","Go Live Update Urls","7.0.7","Mat Lipe","https:\u002F\u002Fprofiles.wordpress.org\u002Fmat-lipe\u002F","\u003Ch3>Change the domain on your site with one click.\u003C\u002Fh3>\n\u003Cp>Goes through entire site and replaces all instances of an old URL with a new one. Used most often when changing the domain of your site.\u003C\u002Fp>\n\u003Cp>Automatically detects and handles special domain circumstances to give you an accurate update every time without side effects.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Developed and supported by \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002F\" rel=\"nofollow ugc\">OnPoint Plugins\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Database table by table selection.\u003C\u002Fli>\n\u003Cli>Updates serialized data in core tables.\u003C\u002Fli>\n\u003Cli>Updates encoded URL.\u003C\u002Fli>\n\u003Cli>Easy to use admin page – which may be found under Tools.\u003C\u002Fli>\n\u003Cli>Works on both multisite and single site installs.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Updates Entire Site Including\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Posts\u003C\u002Fli>\n\u003Cli>Pages\u003C\u002Fli>\n\u003Cli>Image URLs\u003C\u002Fli>\n\u003Cli>Excerpts\u003C\u002Fli>\n\u003Cli>Post meta data\u003C\u002Fli>\n\u003Cli>Custom post types\u003C\u002Fli>\n\u003Cli>Widgets and widget data\u003C\u002Fli>\n\u003Cli>Options and settings\u003C\u002Fli>\n\u003Cli>And much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Domain Update Process\u003C\u002Fh3>\n\u003Cp>Full step-by-step instructions for a changing a site’s domain \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fhow-to-change-your-domain-name-on-wordpress\u002F\" rel=\"nofollow ugc\">may be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Included Language Translations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>English (en_US).\u003C\u002Fli>\n\u003Cli>French (fr_FR).\u003C\u002Fli>\n\u003Cli>German (de_DE).\u003C\u002Fli>\n\u003Cli>Spanish (es_ES).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Developers\u003C\u002Fh3>\n\u003Cp>Developer docs \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002Fdeveloper-docs-go-live-update-urls\u002F\" rel=\"nofollow ugc\">may be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Troubleshooting\u003C\u002Fh3>\n\u003Cp>Troubleshooting information \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002Fgo-live-update-urls-troubleshooting\u002F\" rel=\"nofollow ugc\">may be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>Send pull requests via the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flipemat\u002Fgo-live-update-urls\u002F\" rel=\"nofollow ugc\">Github Repo\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Go PRO\u003C\u002Fh3>\n\u003Cp>Our \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fproduct\u002Fgo-live-update-urls-pro\u002F?utm_source=readme&utm_campaign=gopro&utm_medium=dot-org\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa> brings additional functionality to this plugin. Check out \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002Fgo-live-update-urls-pro-demo\u002F?utm_source=demo&utm_campaign=gopro&utm_medium=dot-org\" rel=\"nofollow ugc\">the demo\u003C\u002Fa> to see if the PRO version is useful for you.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Updates database tables created by plugins.\u003C\u002Fli>\n\u003Cli>Database tables are organized into simple intuitive sections.\u003C\u002Fli>\n\u003Cli>Ability to choose between tables or sections.\u003C\u002Fli>\n\u003Cli>Ability to convert relative URL into absolute URL.\u003C\u002Fli>\n\u003Cli>Updates serialized data across any table.\u003C\u002Fli>\n\u003Cli>Updates encoded URL across any table.\u003C\u002Fli>\n\u003Cli>Updates JSON data across any table.\u003C\u002Fli>\n\u003Cli>Ability to test URL changes before running them.\u003C\u002Fli>\n\u003Cli>URL testing report is provided for peace of mind.\u003C\u002Fli>\n\u003Cli>Option to fix common mistakes automatically when entering a URL.\u003C\u002Fli>\n\u003Cli>View and use history of your site’s address.\u003C\u002Fli>\n\u003Cli>Accessible update history including count and location of updated URL. \u003Cstrong>New\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Predictive URL automatically fill in the “Old URL” and “New URL.”\u003C\u002Fli>\n\u003Cli>Real time reporting of count and location of URL which will be updated.\u003C\u002Fli>\n\u003Cli>Report of count and location of URL which were updated.\u003C\u002Fli>\n\u003Cli>WP-CLI support for updating URL from the command line.\u003C\u002Fli>\n\u003Cli>Priority support with access to members only support area.\u003C\u002Fli>\n\u003C\u002Ful>\n","Change the domain on your site with one click.",80000,2274092,90,59,"2026-02-03T18:57:00.000Z","6.2.0","7.4.0",[20,220,23,221,222],"domain","update-urls","urls","https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgo-live-update-urls.7.0.7.zip",{"slug":226,"name":227,"version":228,"author":229,"author_profile":230,"description":231,"short_description":232,"active_installs":233,"downloaded":234,"rating":235,"num_ratings":28,"last_updated":236,"tested_up_to":16,"requires_at_least":237,"requires_php":238,"tags":239,"homepage":241,"download_link":242,"security_score":196,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"search-replace-wpcode","Search & Replace Everything by WPCode – Find and Replace Media, Text, Links, and More","1.0.9","WPCode","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpcodeteam\u002F","\u003Ch4>Powerful Search & Replace for WordPress\u003C\u002Fh4>\n\u003Cp>Search & Replace Everything by WPCode enables you to efficiently manage your website’s content directly from the WordPress admin. This tool is essential for site migrations, content updates, or any situation where batch find and replace text and image replacements are needed.\u003C\u002Fp>\n\u003Cp>With an intuitive interface, you can perform detailed find and replace operations across your entire database. Select specific tables, toggle case sensitivity, and preview changes before committing. Serialized data is fully supported. Designed to handle large websites, this plugin operates smoothly without the need for external tools.\u003C\u002Fp>\n\u003Ch4>Features Include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Text Replacement\u003C\u002Fstrong> – Find and replace text across multiple database tables with support for serialized data and options for case-sensitive search.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Replace Image\u003C\u002Fstrong> – Directly replace images from the media library, automatically regenerating thumbnails to ensure visual consistency.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Replace Media\u003C\u002Fstrong> – Manage and replace media files of various formats across your entire site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Preview Changes\u003C\u002Fstrong> – Always see a “dry-run” preview of the changes to ensure accuracy before applying them.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Large Sites Supported\u003C\u002Fstrong> – Optimized for performance, capable of handling large databases efficiently.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Table Selection\u003C\u002Fstrong> – Choose specific tables to search and replace text, ensuring that only the necessary data is affected.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Introducing Search & Replace Everything Pro\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>While Search & Replace Everything offers many powerful features for free, we have also created a Pro version that includes advanced features to further improve your workflows like the ability to \u003Cstrong>undo\u003C\u002Fstrong> Search & Replace operations and replacing images directly from the Gutenberg editor. \u003Ca href=\"https:\u002F\u002Flibrary.wpcode.com\u002Fsr-pricing?utm_source=wprepo&utm_medium=link&utm_campaign=srliteplugin\" rel=\"nofollow ugc\">Click here to purchase Search & Replace Everything Pro now!\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Use Cases\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Site Migrations\u003C\u002Fstrong> – Quickly update URLs or any site data when moving your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Updates\u003C\u002Fstrong> – Easily replace outdated information or bulk update content across posts, pages, and custom post types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image Management\u003C\u002Fstrong> – Replace outdated images and avoid duplicate uploads.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media Updates\u003C\u002Fstrong> – Replace media files in any format across your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Tips for Using Search & Replace\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Backup Your Database\u003C\u002Fstrong> – While the plugin is safe to use, it’s always a good idea to make a backup before making changes.\u003C\u002Fp>\n\u003Cp>Common mistakes to avoid when replacing text:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Partial Matches – Ensure that you’re not replacing partial matches that could affect unintended content. For example, replacing “cat” could affect “category” or “concatenate”.\u003C\u002Fli>\n\u003Cli>Case Sensitivity – Be mindful of case sensitivity when replacing text. If you’re looking to replace “Cat” with “Dog”, ensure that you’re not affecting “cat” or “CAT”.\u003C\u002Fli>\n\u003Cli>URL Replacements – Always use the same format for both the search and replace values. For example if your search term has a trailing slash, ensure that the replacement term also has a trailing slash. E.g., “example.com\u002F” to “example.net\u002F” instead of “example.com\u002F” to “example.net”.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Getting Started\u003C\u002Fh4>\n\u003Cp>After installing Search & Replace Everything by WPCode, look for the new menu item under \u003Ccode>WP Admin > Tools > WP Search & Replace\u003C\u002Fcode>. From there, you can start managing your content and perform find and replace operations for text or images across your entire website.\u003C\u002Fp>\n","Search and Replace everything in WordPress. Easily find and replace media, images, text, links and more with a single click using a simple user interf &hellip;",20000,104189,78,"2025-12-10T13:16:00.000Z","5.5","7.0",[20,240,21,22,24],"media","https:\u002F\u002Fwpcode.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-replace-wpcode.1.0.9.zip",{"attackSurface":244,"codeSignals":365,"taintFlows":428,"riskAssessment":490,"analyzedAt":504},{"hooks":245,"ajaxHandlers":354,"restRoutes":362,"shortcodes":363,"cronEvents":364,"entryPointCount":135,"unprotectedCount":29},[246,253,257,259,264,268,272,276,280,283,287,290,295,299,303,306,310,315,319,323,328,332,337,340,343,346,350],{"type":247,"name":248,"callback":249,"priority":250,"file":251,"line":252},"action","admin_enqueue_scripts","rtrar_action_admin_enqueue_scripts",10,"core\\actions\\RTAFAR_EnqueueScript.php",22,{"type":247,"name":254,"callback":255,"file":251,"line":256},"wp_enqueue_scripts","rtrarAppRegisterVars",24,{"type":247,"name":254,"callback":258,"priority":214,"file":251,"line":89},"rtrarAppEnqueueScripts",{"type":260,"name":261,"callback":262,"priority":250,"file":263,"line":256},"filter","bfrp_url_types","getAllProUrlOptions","core\\actions\\RTAFAR_Hooks.php",{"type":260,"name":265,"callback":266,"priority":250,"file":263,"line":267},"bfrp_select_tables","getAllTblList",27,{"type":260,"name":269,"callback":270,"priority":250,"file":263,"line":271},"bfrp_should_load_page_assets","bfrpShouldLoadPageAssets",30,{"type":260,"name":273,"callback":274,"priority":250,"file":263,"line":275},"bfrp_should_load_form_assets","bfrpShouldLoadFormAssets",31,{"type":247,"name":277,"callback":278,"file":279,"line":215},"admin_menu","rtafar_register_menu","core\\actions\\RTAFAR_RegisterMenu.php",{"type":247,"name":248,"callback":281,"file":279,"line":282},"rtafar_load_settings_scripts",378,{"type":247,"name":284,"callback":285,"file":279,"line":286},"admin_footer","rtafar_load_admin_footer_script",384,{"type":247,"name":284,"callback":288,"file":279,"line":289},"closure",416,{"type":260,"name":291,"callback":292,"priority":250,"file":293,"line":294},"plugin_row_meta","rtafar_plugin_row_meta","core\\actions\\RTAFAR_WP_Hooks.php",32,{"type":247,"name":296,"callback":297,"file":293,"line":298},"template_redirect","rtafar_filter_contents",34,{"type":247,"name":300,"callback":301,"priority":250,"file":293,"line":302},"upgrader_process_complete","rtafarAfterUpgrade",37,{"type":247,"name":277,"callback":304,"priority":89,"file":293,"line":305},"rtafar_current_screen_options",40,{"type":260,"name":307,"callback":308,"priority":176,"file":293,"line":309},"set-screen-option","rtafar_set_amr_per_page",41,{"type":247,"name":311,"callback":312,"priority":313,"file":293,"line":314},"init","rtafar_role_caps",11,44,{"type":260,"name":316,"callback":317,"priority":176,"file":293,"line":318},"ure_capabilities_groups_tree","rtafar_ure_capabilities",45,{"type":260,"name":320,"callback":321,"priority":176,"file":293,"line":322},"ure_custom_capability_groups","rtafar_ure_custom_capability_groups",46,{"type":247,"name":324,"callback":325,"file":326,"line":327},"admin_init","action_admin_init","core\\admin\\builders\\NoticeBuilder.php",28,{"type":247,"name":329,"callback":330,"file":326,"line":331},"admin_notices","action_admin_notices",29,{"type":260,"name":333,"callback":334,"file":335,"line":336},"big_image_size_threshold","__return_false","core\\admin\\functions\\MediaImageReplacer.php",88,{"type":247,"name":284,"callback":338,"file":339,"line":322},"rtafarAddNewRuleScripts","core\\admin\\options\\pages\\AddNewRule.php",{"type":247,"name":284,"callback":341,"file":342,"line":318},"default_page_scripts","core\\admin\\options\\pages\\ReplaceInDB.php",{"type":247,"name":311,"callback":344,"file":345,"line":235},"init_textdomain","real-time-auto-find-and-replace.php",{"type":247,"name":311,"callback":347,"priority":348,"file":345,"line":349},"rtaafr_init_function",14,81,{"type":247,"name":351,"callback":352,"priority":353,"file":345,"line":175},"plugins_loaded","rtaafr_check_db",17,[355,361],{"action":356,"nopriv":357,"callback":356,"hasNonce":358,"hasCapCheck":358,"file":359,"line":360},"rtafar_ajax",false,true,"core\\actions\\RTAFAR_CustomAjax.php",21,{"action":356,"nopriv":358,"callback":356,"hasNonce":358,"hasCapCheck":358,"file":359,"line":252},[],[],[],{"dangerousFunctions":366,"sqlUsage":367,"outputEscaping":380,"fileOperations":29,"externalRequests":48,"nonceChecks":135,"capabilityChecks":267,"bundledLibraries":424},[],{"prepared":353,"raw":368,"locations":369},3,[370,374,377],{"file":371,"line":372,"context":373},"core\\admin\\functions\\ProActions.php",47,"$wpdb->get_results() with variable interpolation",{"file":375,"line":376,"context":373},"core\\admin\\options\\functions\\AllMaskingRulesList.php",235,{"file":375,"line":378,"context":379},246,"$wpdb->get_var() with variable interpolation",{"escaped":381,"rawEcho":360,"locations":382},55,[383,386,388,390,392,394,396,398,400,402,404,406,408,410,412,413,415,417,418,420,421],{"file":279,"line":384,"context":385},199,"raw output",{"file":279,"line":387,"context":385},207,{"file":279,"line":389,"context":385},224,{"file":279,"line":391,"context":385},232,{"file":279,"line":393,"context":385},254,{"file":279,"line":395,"context":385},262,{"file":279,"line":397,"context":385},282,{"file":279,"line":399,"context":385},288,{"file":279,"line":401,"context":385},312,{"file":279,"line":403,"context":385},321,{"file":279,"line":405,"context":385},344,{"file":279,"line":407,"context":385},353,{"file":279,"line":409,"context":385},422,{"file":326,"line":411,"context":385},102,{"file":326,"line":411,"context":385},{"file":326,"line":414,"context":385},104,{"file":326,"line":416,"context":385},106,{"file":375,"line":336,"context":385},{"file":375,"line":419,"context":385},96,{"file":375,"line":411,"context":385},{"file":422,"line":423,"context":385},"core\\admin\\options\\pages\\AllMaskingRules.php",54,[425],{"name":426,"version":38,"knownCves":427},"Select2",[],[429,444,457,465,474,482],{"entryPoint":430,"graph":431,"unsanitizedCount":48,"severity":54},"generate_page (core\\admin\\options\\pages\\AllMaskingRules.php:39)",{"nodes":432,"edges":442},[433,437],{"id":434,"type":435,"label":436,"file":422,"line":309},"n0","source","$_GET",{"id":438,"type":439,"label":440,"file":422,"line":423,"wp_function":441},"n1","sink","echo() [XSS]","echo",[443],{"from":434,"to":438,"sanitized":357},{"entryPoint":445,"graph":446,"unsanitizedCount":29,"severity":456},"rtafar_ajax (core\\actions\\RTAFAR_CustomAjax.php:71)",{"nodes":447,"edges":454},[448,450],{"id":434,"type":435,"label":449,"file":359,"line":175},"$_POST",{"id":438,"type":439,"label":451,"file":359,"line":452,"wp_function":453},"call_user_func() [RCE]",148,"call_user_func",[455],{"from":434,"to":438,"sanitized":358},"low",{"entryPoint":458,"graph":459,"unsanitizedCount":29,"severity":456},"\u003CRTAFAR_CustomAjax> (core\\actions\\RTAFAR_CustomAjax.php:0)",{"nodes":460,"edges":463},[461,462],{"id":434,"type":435,"label":449,"file":359,"line":175},{"id":438,"type":439,"label":451,"file":359,"line":452,"wp_function":453},[464],{"from":434,"to":438,"sanitized":358},{"entryPoint":466,"graph":467,"unsanitizedCount":29,"severity":456},"rtafr_page_add_rule (core\\actions\\RTAFAR_RegisterMenu.php:179)",{"nodes":468,"edges":472},[469,471],{"id":434,"type":435,"label":436,"file":279,"line":470},184,{"id":438,"type":439,"label":440,"file":279,"line":384,"wp_function":441},[473],{"from":434,"to":438,"sanitized":358},{"entryPoint":475,"graph":476,"unsanitizedCount":29,"severity":456},"\u003CRTAFAR_RegisterMenu> (core\\actions\\RTAFAR_RegisterMenu.php:0)",{"nodes":477,"edges":480},[478,479],{"id":434,"type":435,"label":436,"file":279,"line":470},{"id":438,"type":439,"label":440,"file":279,"line":384,"wp_function":441},[481],{"from":434,"to":438,"sanitized":358},{"entryPoint":483,"graph":484,"unsanitizedCount":48,"severity":456},"\u003CAllMaskingRules> (core\\admin\\options\\pages\\AllMaskingRules.php:0)",{"nodes":485,"edges":488},[486,487],{"id":434,"type":435,"label":436,"file":422,"line":309},{"id":438,"type":439,"label":440,"file":422,"line":423,"wp_function":441},[489],{"from":434,"to":438,"sanitized":357},{"summary":491,"deductions":492},"The \"real-time-auto-find-and-replace\" plugin v1.8.0 presents a mixed security picture.  On the positive side, the static analysis reveals a limited attack surface with no unprotected entry points, a strong emphasis on capability checks, and the majority of SQL queries employing prepared statements. The absence of dangerous functions and file operations is also a good indicator. However, the presence of unsanitized paths in taint analysis, even if not flagged as critical or high severity in this scan, warrants attention as it suggests potential avenues for unexpected behavior or manipulation.\n\nThe vulnerability history for this plugin is a significant concern. With 7 known CVEs, including 4 high and 3 medium severity issues, the plugin has a track record of introducing serious security flaws. The common vulnerability types like Code Injection, Authorization issues, Deserialization, SQL Injection, and Cross-site Scripting indicate a recurring pattern of insecure coding practices. The fact that there are currently no unpatched vulnerabilities is a positive, but the historical trend suggests a high likelihood of future vulnerabilities if development practices do not improve.\n\nIn conclusion, while v1.8.0 has made some strides in immediate security measures like authentication and input sanitization for its entry points, the plugin's past security incidents and the identified taint flow issues are red flags. Users should proceed with caution, understanding that the plugin has a history of significant vulnerabilities. Ongoing vigilance and rapid patching of any future issues will be critical.",[493,496,498,500,502],{"reason":494,"points":495},"Vulnerability history: 7 known CVEs, including 4 high and 3 medium",20,{"reason":497,"points":250},"Taint analysis: 2 flows with unsanitized paths",{"reason":499,"points":185},"SQL queries: 12% (2.4, rounded to 2 or 3) not using prepared statements",{"reason":501,"points":104},"Output escaping: 28% (21.28, rounded to 21 or 22) not properly escaped",{"reason":503,"points":368},"Bundled library: Select2 (potential outdatedness or vulnerabilities)","2026-03-16T17:19:20.607Z",{"wat":506,"direct":515},{"assetPaths":507,"generatorPatterns":510,"scriptPaths":511,"versionParams":512},[508,509],"\u002Fwp-content\u002Fplugins\u002Freal-time-auto-find-and-replace\u002Fassets\u002Fjs\u002Frtafar.admin.global.min.js","\u002Fwp-content\u002Fplugins\u002Freal-time-auto-find-and-replace\u002Fassets\u002Fcss\u002Frtafar-admin-global-style.min.css",[],[508],[513,514],"rtafar.admin.global.min.js?ver=","rtafar-admin-global-style.min.css?ver=",{"cssClasses":516,"htmlComments":517,"htmlAttributes":518,"restEndpoints":520,"jsGlobals":521,"shortcodeOutput":523},[],[],[519],"data-rtafr-admin-global-init",[],[522],"window.rtafr",[]]