[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGvl8QbIu9Sfxa_IJMRdJZo2hHXVmWJ17666Ezx3iwY0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":63,"crawl_stats":38,"alternatives":71,"analysis":171,"fingerprints":299},"real-time-find-and-replace","Real-Time Find and Replace","4.3","Marios Alexandrou","https:\u002F\u002Fprofiles.wordpress.org\u002Fmarios-alexandrou\u002F","\u003Cp>This plugin allows you to dynamically (i.e. at the time when a page is generated) replace code and text from themes and other plugins with code and text of your choosing before a page is delivered to a user’s browser.\u003C\u002Fp>\n\u003Cp>Because the find and replace happens in real-time no changes are needed to plugins or themes which means upgrades remain easy!\u003C\u002Fp>\n\u003Cp>A \u003Ca href=\"https:\u002F\u002Finfolific.com\u002Ftechnology\u002Fsoftware-worth-using\u002Freal-time-find-and-replace-for-wordpress\u002F#pro-version\" rel=\"nofollow ugc\">pro version\u003C\u002Fa> (a lifetime license is less than $15) with additional filtering options, setting export\u002Fimport functionality, and the ability to modify admin pages is available.\u003C\u002Fp>\n\u003Cp>Here are some common uses:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Want to selectively translate text that is being output by another plugin? You can do that.\u003C\u002Fli>\n\u003Cli>Trying to tweak the text on a product or shopping cart page? No problem.\u003C\u002Fli>\n\u003Cli>Hoping to remove footer text from a theme without modifying the theme? That’s easy.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Here are some \u003Ca href=\"https:\u002F\u002Finfolific.com\u002Ftechnology\u002Finternet\u002Fhandiest-wordpress-plugin-youve-never-heard-of\u002F\" rel=\"nofollow ugc\">more examples\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>And some \u003Ca href=\"https:\u002F\u002Finfolific.com\u002Ftechnology\u002Finternet\u002Fwordpress-seo-with-real-time-find-and-replace-plugin\u002F\" rel=\"nofollow ugc\">tips for those interested in on-page SEO\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Remember, all of the above can be done WITHOUT modifying themes or plugin files so you’ll always be able to upgrade them without having to worry about losing custom edits.\u003C\u002Fp>\n","Set up find and replace rules that are executed AFTER a page is generated by WordPress, but BEFORE it is sent to a user's browser.",80000,896251,88,83,"2025-12-29T14:20:00.000Z","6.9.4","5.0","",[20,21,22,23,24],"find-and-replace","on-demand-replace","replace","search","search-and-replace","http:\u002F\u002Finfolific.com\u002Ftechnology\u002Fsoftware-worth-using\u002Freal-time-find-and-replace-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freal-time-find-and-replace.zip",98,2,0,"2020-04-27 00:00:00","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2020-13641","real-time-find-and-replace-cross-site-request-forgery-to-stored-cross-site-scripting","Real-Time Find and Replace \u003C= 3.9 - Cross-Site Request Forgery to Stored Cross-Site Scripting","An issue was discovered in the Real-Time Find and Replace plugin before 4.0.2 for WordPress. The far_options_page function did not do any nonce verification, allowing for requests to be forged on behalf of an administrator. The find and replace rules could be updated with malicious JavaScript, allowing for that be executed later in the victims browser.",null,"\u003C=3.9","4.0.2","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Cross-Site Request Forgery (CSRF)","2024-01-22 19:56:02",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe2e62675-e3d5-4545-bb80-0330da966368?source=api-prod",1366,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":45,"references":60,"days_to_patch":62},"WF-2950eb91-a232-42c5-8a28-96b770cb7c48-real-time-find-and-replace","real-time-find-and-replace-cross-site-scripting","Real-Time Find and Replace \u003C= 3.8 - Cross-Site Scripting","The Real-Time Find and Replace plugin for WordPress is vulnerable to Cross-Site Scripting via the ‘REQUEST_URI’ parameter in versions before 3.9 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=3.6","3.9",7.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:L","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2017-04-14 00:00:00",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F2950eb91-a232-42c5-8a28-96b770cb7c48?source=api-prod",2475,{"slug":64,"display_name":7,"profile_url":8,"plugin_count":65,"total_installs":66,"avg_security_score":67,"avg_patch_time_days":68,"trust_score":69,"computed_at":70},"marios-alexandrou",7,195200,99,1456,78,"2026-04-03T23:06:34.221Z",[72,93,112,132,152],{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":17,"requires_php":86,"tags":87,"homepage":18,"download_link":91,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"easy-search-replace","Easy Search Replace – Find & Replace Text\u002FHTML\u002FURLs, Remove Footer Credit","1.1.2","Uzair","https:\u002F\u002Fprofiles.wordpress.org\u002Feasywpstuff\u002F","\u003Cp>The \u003Cstrong>Easy Search Replace\u003C\u002Fstrong> plugin lets you \u003Cstrong>find and replace\u003C\u002Fstrong> any text, HTML, or URL across your WordPress site in real time—without editing files or the database.\u003Cbr \u002F>\nIt’s the safest way to do \u003Cstrong>search and replace\u003C\u002Fstrong> on front-end output. Update branding, fix old links, or \u003Cstrong>remove footer credit\u003C\u002Fstrong> with a few clicks.\u003C\u002Fp>\n\u003Cp>Target replacements precisely with:\u003Cbr \u002F>\n– CSS selectors (e.g., \u003Ccode>.footer\u003C\u002Fcode>, \u003Ccode>#site-title\u003C\u002Fcode>, \u003Ccode>h2\u003C\u002Fcode>)\u003Cbr \u002F>\n– Post Types (Posts, Pages, CPTs)\u003Cbr \u002F>\n– Specific Post IDs (comma separated)\u003Cbr \u002F>\n– Exact URLs (one per line)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why it’s safe:\u003C\u002Fstrong>\u003Cbr \u002F>\nAll changes are applied dynamically at render time. Disable the plugin and your original content is unchanged.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Popular use cases\u003C\u002Fstrong>\u003Cbr \u002F>\n– Remove or replace theme footer credits.\u003Cbr \u002F>\n– Replace company names, links, or copyright lines.\u003Cbr \u002F>\n– Update outdated or HTTP\u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan>HTTPS URLs.\u003Cbr \u002F>\n– Find\u002Freplace only inside specific HTML elements.\u003Cbr \u002F>\n– Limit changes to selected posts\u002Fpages\u002FURLs.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Real-time \u003Cstrong>search replace\u003C\u002Fstrong> and \u003Cstrong>find replace\u003C\u002Fstrong> for text, HTML, and URLs.  \u003C\u002Fli>\n\u003Cli>Remove footer credit or any unwanted text\u002Flink.  \u003C\u002Fli>\n\u003Cli>Optional \u003Cstrong>CSS selector\u003C\u002Fstrong> targeting (classes, IDs, tags).  \u003C\u002Fli>\n\u003Cli>Limit by \u003Cstrong>post type\u003C\u002Fstrong>, \u003Cstrong>post ID\u003C\u002Fstrong>, or \u003Cstrong>URL\u003C\u002Fstrong>.  \u003C\u002Fli>\n\u003Cli>Case-insensitive mode (Ignore Case).  \u003C\u002Fli>\n\u003Cli>Multiple rules, executed in order.  \u003C\u002Fli>\n\u003Cli>Lightweight: parses DOM only when selector rules exist.  \u003C\u002Fli>\n\u003Cli>Clean, simple settings UI.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Open \u003Cstrong>Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Easy Search Replace\u003C\u002Fstrong>.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Find\u003C\u002Fstrong>: Enter text\u002FHTML\u002FURL to search.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Replace with\u003C\u002Fstrong>: Enter the replacement (leave empty to remove—great for footer credits).  \u003C\u002Fli>\n\u003Cli>\u003Cem>(Optional)\u003C\u002Fem> \u003Cstrong>CSS Selector\u003C\u002Fstrong> to restrict to specific elements (e.g., \u003Ccode>.site-footer\u003C\u002Fcode>, \u003Ccode>#main\u003C\u002Fcode>, \u003Ccode>h1\u003C\u002Fcode>).  \u003C\u002Fli>\n\u003Cli>\u003Cem>(Optional)\u003C\u002Fem> Limit by \u003Cstrong>Post Types\u003C\u002Fstrong>, \u003Cstrong>Post IDs\u003C\u002Fstrong>, or \u003Cstrong>URLs\u003C\u002Fstrong> (one per line).  \u003C\u002Fli>\n\u003Cli>Enable \u003Cstrong>Ignore Case\u003C\u002Fstrong> if needed.  \u003C\u002Fli>\n\u003Cli>Add multiple rules and \u003Cstrong>Save Changes\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Examples\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Replace text globally\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Find: Old Company\u003Cbr \u002F>\nReplace: New Company\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Remove footer credit (selector-based)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Find: Powered by MyTheme\u003Cbr \u002F>\nReplace:\u003Cbr \u002F>\nSelector: .site-footer\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Replace URL site-wide\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Find: http:\u002F\u002Foldsite.com\u003Cbr \u002F>\nReplace: https:\u002F\u002Fnewsite.com\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Only on specific posts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Find: Coming Soon\u003Cbr \u002F>\nReplace: Launching Now\u003Cbr \u002F>\nPost IDs: 25,47,88\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Case-insensitive\u003C\u002Fstrong>\u003Cbr \u002F>\nEnable \u003Cstrong>Ignore Case\u003C\u002Fstrong> to match “WordPress”, “wordpress”, etc.\u003C\u002Fp>\n","Real-time search & replace for text, HTML, and URLs. Target elements, post types\u002FIDs\u002FURLs. Safely remove footer credit no database changes.",300,2697,86,3,"2025-11-10T13:57:00.000Z","6.8.5","7.2",[88,20,89,24,90],"find-replace","remove-footer-credit","search-replace","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-search-replace.1.1.2.zip",100,{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":92,"num_ratings":103,"last_updated":104,"tested_up_to":85,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":110,"download_link":111,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"word-replace","Word Replace","0.8.0","mehdi jalili","https:\u002F\u002Fprofiles.wordpress.org\u002Fmehdijalili\u002F","\u003Cp>The plugin provides an optimized replace function. It incorporates a dynamic real-time word\u002Ftext replacing feature.\u003C\u002Fp>\n\u003Ch3>More Details\u003C\u002Fh3>\n\u003Cp>Ideal for bulk updates and site migrations, it offers powerful tools to find and replace any text and special characters across your website.\u003C\u002Fp>\n\u003Cp>The real-time replacement employs an advanced word masking technique to search and replace text and special characters, leaving no trace behind. The find and replace process takes place before the website is\u003Cbr \u002F>\nrendered in the browser and does not impact any other files or databases. With this ultimate solution, replace the particular text you want in the header, body, footer credits,\u003Cbr \u002F>\nor any other content within your website without touching the database, with the help of an easy-to-use user interface.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Entire Website – if you want to apply rules all over the website\u003C\u002Fli>\n\u003Cli>Particular Page – if you want to apply rules on particular pages\u003C\u002Fli>\n\u003Cli>Particular Post – if you want to apply rules on particular posts\u003C\u002Fli>\n\u003Cli>Unicode – replace Unicode characters\u003C\u002Fli>\n\u003Cli>Easy-to-use and user-friendly options\u003C\u002Fli>\n\u003Cli>Replace any text without touching the database\u003C\u002Fli>\n\u003Cli>Replace text loaded by \u003Cstrong>Ajax\u002FjQuery\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Remove or change footer credit without touching the database or HTML code\u003C\u002Fli>\n\u003Cli>Mask bad words posted in comments \u003C\u002Fli>\n\u003Cli>Change different languages’ content to your own language\u003C\u002Fli>\n\u003Cli>Real-time replace compatible with Gutenberg and other block\u002Fpage builders\u003C\u002Fli>\n\u003Cli>Ultimate easy solution to restore data you have replaced by mistake\u003C\u002Fli>\n\u003Cli>Replace \u003Cstrong>Unicode characters\u003C\u002Fstrong> \u003Cem>UTF-8  (e.g.: U+0026, REČA)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Easy to undo the changes by removing the specific rule\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Questions and Feature Requests\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Ch4>For quick support, feature requests, and bug reporting\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> For more dedicated support or feature requests, write to us at \u003Ca href=\"mailto:jalilimehdi.1366@gmail.com\" rel=\"nofollow ugc\">jalilimehdi.1366@gmail.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>As it’s open source, check our GitHub development status\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Check development status or issues on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmehdi-jalili\u002Fw-replace\" rel=\"nofollow ugc\">github.com\u002Fmehdi-jalili\u002Fw-replace\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n","Easily Replace text, footer credits, jQuery\u002FAjax loaded text or anything in real-time.",90,953,1,"2025-09-17T16:37:00.000Z","6.4","7.4",[108,20,22,24,109],"block-editor","search-replace-elementor","https:\u002F\u002Fgithub.com\u002Fmehdi-jalili\u002Fword-replace\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fword-replace.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":82,"num_ratings":122,"last_updated":123,"tested_up_to":16,"requires_at_least":124,"requires_php":18,"tags":125,"homepage":129,"download_link":130,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":131,"fetched_at":31},"better-search-replace","Better Search Replace","1.4.10","WP Engine","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpengine\u002F","\u003Cp>When moving your WordPress site to a new domain or server, you will likely run into a need to run a search\u002Freplace on the database for everything to work correctly. Fortunately, there are several plugins available for this task, however, all have a different approach to a few key features. This plugin consolidates the best features from these plugins, incorporating the following features in one simple plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Serialization support for all tables\u003C\u002Fli>\n\u003Cli>The ability to select specific tables\u003C\u002Fli>\n\u003Cli>The ability to run a “dry run” to see how many fields will be updated\u003C\u002Fli>\n\u003Cli>No server requirements aside from a running installation of WordPress\u003C\u002Fli>\n\u003Cli>WordPress Multisite support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Time-saving features available in the Pro version:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View exactly what changed during a search\u002Freplace\u003C\u002Fli>\n\u003Cli>Backup and import the database while running a search\u002Freplace\u003C\u002Fli>\n\u003Cli>Priority email support from the developer of the plugin\u003C\u002Fli>\n\u003Cli>Save or load custom profiles for quickly repeating a search\u002Freplace in the future\u003C\u002Fli>\n\u003Cli>Support and updates for 1 year\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fbettersearchreplace.com\u002F\" rel=\"nofollow ugc\">Learn more about Better Search Replace Pro\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>The search and replace functionality is heavily based on interconnect\u002Fit’s great and open-source Search Replace DB script, modified to use WordPress native database functions to ensure compatibility.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Want to contribute?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Feel free to open an issue or submit a pull request on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdeliciousbrains\u002Fbetter-search-replace\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","A simple plugin to update URLs or other text in a database.",1000000,17311737,541,"2025-12-08T17:21:00.000Z","3.0.1",[24,90,126,127,128],"search-replace-database","update-database-urls","update-live-url","https:\u002F\u002Fbettersearchreplace.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-search-replace.1.4.10.zip","2024-01-24 00:00:00",{"slug":133,"name":134,"version":135,"author":136,"author_profile":137,"description":138,"short_description":139,"active_installs":11,"downloaded":140,"rating":101,"num_ratings":141,"last_updated":142,"tested_up_to":16,"requires_at_least":143,"requires_php":144,"tags":145,"homepage":150,"download_link":151,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"go-live-update-urls","Go Live Update Urls","7.0.7","Mat Lipe","https:\u002F\u002Fprofiles.wordpress.org\u002Fmat-lipe\u002F","\u003Ch3>Change the domain on your site with one click.\u003C\u002Fh3>\n\u003Cp>Goes through entire site and replaces all instances of an old URL with a new one. Used most often when changing the domain of your site.\u003C\u002Fp>\n\u003Cp>Automatically detects and handles special domain circumstances to give you an accurate update every time without side effects.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Developed and supported by \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002F\" rel=\"nofollow ugc\">OnPoint Plugins\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Database table by table selection.\u003C\u002Fli>\n\u003Cli>Updates serialized data in core tables.\u003C\u002Fli>\n\u003Cli>Updates encoded URL.\u003C\u002Fli>\n\u003Cli>Easy to use admin page – which may be found under Tools.\u003C\u002Fli>\n\u003Cli>Works on both multisite and single site installs.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Updates Entire Site Including\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Posts\u003C\u002Fli>\n\u003Cli>Pages\u003C\u002Fli>\n\u003Cli>Image URLs\u003C\u002Fli>\n\u003Cli>Excerpts\u003C\u002Fli>\n\u003Cli>Post meta data\u003C\u002Fli>\n\u003Cli>Custom post types\u003C\u002Fli>\n\u003Cli>Widgets and widget data\u003C\u002Fli>\n\u003Cli>Options and settings\u003C\u002Fli>\n\u003Cli>And much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Domain Update Process\u003C\u002Fh3>\n\u003Cp>Full step-by-step instructions for a changing a site’s domain \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fhow-to-change-your-domain-name-on-wordpress\u002F\" rel=\"nofollow ugc\">may be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Included Language Translations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>English (en_US).\u003C\u002Fli>\n\u003Cli>French (fr_FR).\u003C\u002Fli>\n\u003Cli>German (de_DE).\u003C\u002Fli>\n\u003Cli>Spanish (es_ES).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Developers\u003C\u002Fh3>\n\u003Cp>Developer docs \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002Fdeveloper-docs-go-live-update-urls\u002F\" rel=\"nofollow ugc\">may be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Troubleshooting\u003C\u002Fh3>\n\u003Cp>Troubleshooting information \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002Fgo-live-update-urls-troubleshooting\u002F\" rel=\"nofollow ugc\">may be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>Send pull requests via the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flipemat\u002Fgo-live-update-urls\u002F\" rel=\"nofollow ugc\">Github Repo\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Go PRO\u003C\u002Fh3>\n\u003Cp>Our \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fproduct\u002Fgo-live-update-urls-pro\u002F?utm_source=readme&utm_campaign=gopro&utm_medium=dot-org\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa> brings additional functionality to this plugin. Check out \u003Ca href=\"https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002Fgo-live-update-urls-pro-demo\u002F?utm_source=demo&utm_campaign=gopro&utm_medium=dot-org\" rel=\"nofollow ugc\">the demo\u003C\u002Fa> to see if the PRO version is useful for you.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Updates database tables created by plugins.\u003C\u002Fli>\n\u003Cli>Database tables are organized into simple intuitive sections.\u003C\u002Fli>\n\u003Cli>Ability to choose between tables or sections.\u003C\u002Fli>\n\u003Cli>Ability to convert relative URL into absolute URL.\u003C\u002Fli>\n\u003Cli>Updates serialized data across any table.\u003C\u002Fli>\n\u003Cli>Updates encoded URL across any table.\u003C\u002Fli>\n\u003Cli>Updates JSON data across any table.\u003C\u002Fli>\n\u003Cli>Ability to test URL changes before running them.\u003C\u002Fli>\n\u003Cli>URL testing report is provided for peace of mind.\u003C\u002Fli>\n\u003Cli>Option to fix common mistakes automatically when entering a URL.\u003C\u002Fli>\n\u003Cli>View and use history of your site’s address.\u003C\u002Fli>\n\u003Cli>Accessible update history including count and location of updated URL. \u003Cstrong>New\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Predictive URL automatically fill in the “Old URL” and “New URL.”\u003C\u002Fli>\n\u003Cli>Real time reporting of count and location of URL which will be updated.\u003C\u002Fli>\n\u003Cli>Report of count and location of URL which were updated.\u003C\u002Fli>\n\u003Cli>WP-CLI support for updating URL from the command line.\u003C\u002Fli>\n\u003Cli>Priority support with access to members only support area.\u003C\u002Fli>\n\u003C\u002Ful>\n","Change the domain on your site with one click.",2274092,59,"2026-02-03T18:57:00.000Z","6.2.0","7.4.0",[146,147,24,148,149],"database","domain","update-urls","urls","https:\u002F\u002Fonpointplugins.com\u002Fgo-live-update-urls\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgo-live-update-urls.7.0.7.zip",{"slug":153,"name":154,"version":155,"author":156,"author_profile":157,"description":158,"short_description":159,"active_installs":160,"downloaded":161,"rating":162,"num_ratings":163,"last_updated":164,"tested_up_to":16,"requires_at_least":165,"requires_php":86,"tags":166,"homepage":167,"download_link":168,"security_score":169,"vuln_count":65,"unpatched_count":29,"last_vuln_date":170,"fetched_at":31},"real-time-auto-find-and-replace","Better Find and Replace – AI-Powered Suggestions","1.8.0","CodeSolz","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodesolz\u002F","\u003Ch4>Smart Search, Replace & Media Tool (with AI) for WordPress\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002Four-products\u002Fwordpress-plugin\u002Freal-time-auto-find-and-replace\u002F?utm_campaign=wordpress-org-visitor&utm_medium=learn_more_about_dokan&utm_source=WordPress.org\" rel=\"nofollow ugc\">Better Find and Replace\u003C\u002Fa> lets you easily search and replace text, HTML, links and media across your entire WordPress site — no coding needed. Perfect for database cleanup, content updates or post-migration edits.\u003C\u002Fp>\n\u003Cp>Replace text or media in bulk with full support for serialized data, custom tables and dry-run previews. AI-powered suggestions help you rewrite or improve content instantly, making your edits smarter and faster.\u003C\u002Fp>\n\u003Cp>Easily find and replace images using drag-and-drop and auto-regenerate thumbnails. You can also update or add  alt text, captions and metadata with the suggestion of AI for better SEO.\u003C\u002Fp>\n\u003Cp>Want to \u003Cstrong>change content without editing your database\u003C\u002Fstrong>? Use real-time masking to update text, links or HTML before the page loads — instantly and safely.\u003C\u002Fp>\n\u003Cp>Built for developers, agencies and site owners, individual ( everyone ) who want fast, accurate control over their content management system — all in one clean, intuitive interface.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>AI-Powered Suggestions\u003C\u002Fstrong> – Use artificial intelligence (AI) to get smart replacement suggestions, enhancing accuracy and efficiency.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy to Use\u003C\u002Fstrong> – Clean, user-friendly interface designed for effortless navigation and configuration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Search and Replace Text\u003C\u002Fstrong> – Find and replace any text across your site, whether in static or dynamic content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Search and Replace Ajax\u002FjQuery Content\u003C\u002Fstrong> – Works seamlessly with content loaded via Ajax or jQuery on the frontend.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Find and Replace URLs\u003C\u002Fstrong> – Quickly search and replace outdated or incorrect URLs throughout your website.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Replace Images and Attachment URLs\u003C\u002Fstrong> – Replace image links and attachment URLs site-wide with precision.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Word Masking\u003C\u002Fstrong> – Mask specific words site-wide using flexible find and replace rules.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Temporary Find-Replace Rules\u003C\u002Fstrong> – Create live, non-permanent replacements without altering your database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Edit Footer Credit\u003C\u002Fstrong> – Remove or update footer text without modifying HTML or database content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HTML Code Replacement\u003C\u002Fstrong> – Replace anything within HTML code blocks, tags, or content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-Time Image Replacement\u003C\u002Fstrong> – Replace images instantly during page rendering for dynamic updates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comment Word Filtering\u003C\u002Fstrong> – Automatically find and replace inappropriate words in user-submitted comments.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Language Replacement\u003C\u002Fstrong> – Change words or phrases from one language to another across your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>RegEx Supported\u003C\u002Fstrong> – Use regular expressions for complex and pattern-based search and replace operations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HTML Tag & Attribute Replacement\u003C\u002Fstrong> – Locate and replace specific HTML tags or attributes throughout your content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightning Fast Database Replace\u003C\u002Fstrong> – High-speed search and replace operations in posts, postmeta, options, and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Table Selection\u003C\u002Fstrong> – Choose specific database tables for targeted replacements.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dry Run Preview\u003C\u002Fstrong> – See a preview of all replacements before applying them to the database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Whole Word Match\u003C\u002Fstrong> – Replace only exact word matches in the database to avoid partial replacements.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Serialized Data Support\u003C\u002Fstrong> – Safely search and replace serialized data without breaking structure or integrity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remove Serialized Items\u003C\u002Fstrong> – Delete specific items from serialized arrays in the database.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role-Based Access\u003C\u002Fstrong> – Assign plugin management to specific user roles for better control.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Gutenberg and Page Builder Compatible\u003C\u002Fstrong> – Fully supports real-time replacements inside block editors and builders.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Targeted DB Replacement\u003C\u002Fstrong> – Refine search by limiting database replacements to post titles, content, or excerpts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>How to replace in DB?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Start by generating a report\u003C\u002Fstrong>: Select the \u003Cstrong>Dry Run\u003C\u002Fstrong> option located at the bottom of the settings section.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Review the report\u003C\u002Fstrong>: A modal window will appear, showing the specific rows and data that will be affected by the replacement.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Proceed if satisfied\u003C\u002Fstrong>: If the preview looks accurate and matches what you intend to replace, simply close the report window, uncheck \u003Cstrong>Dry Run\u003C\u002Fstrong>, and click the \u003Cstrong>Find & Replace\u003C\u002Fstrong> button.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>⚠️ Attention:\u003C\u002Fstrong> Please carefully review the dry run report before making any changes. Once replacements are applied to the database, they \u003Cstrong>cannot be undone\u003C\u002Fstrong>. The PRO version includes an undo feature, but it must be installed before performing the replacement.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>✅ Important Tip:\u003C\u002Fstrong> Always run a dry report first to ensure your search term and replacement are correct. If anything looks off, adjust the keyword and repeat the process until the preview shows the desired results.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Pro Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Database Replacement Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Powerful search and replace in database\u003C\u002Fli>\n\u003Cli>Ultimate solution for search & replace in serialized data & remove item \u003C\u002Fli>\n\u003Cli>Automatic backup of the search and replacement data\u003C\u002Fli>\n\u003Cli>Ultimate easy solution for restore data what you have replaced by mistake\u003C\u002Fli>\n\u003Cli>Ability to check & replace each item separately which going to be replaced in the database\u003C\u002Fli>\n\u003Cli>Bulk Replacement on report’s page, generate by dry run option\u003C\u002Fli>\n\u003Cli>All tables in database\u003C\u002Fli>\n\u003Cli>Search and replace \u003Cstrong>Unicode Characters\u003C\u002Fstrong> \u003Cem>UTF-8  ( e.g: U+0026, REČA )\u003C\u002Fem> in Database\u003C\u002Fli>\n\u003Cli>Additional filtering options in default \u002F custom URLs \u003C\u002Fli>\n\u003Cli>Filter new comments before inserting into Database \u003C\u002Fli>\n\u003Cli>Filter new post before inserting into Database (Good for auto post generation website)\u003C\u002Fli>\n\u003Cli>Special feature to search and replace in \u003Cstrong>large table\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Real-Time Rendering Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>RegEx supported\u003C\u002Fli>\n\u003Cli>Advance Regex – Powerful code blocks \u002F multi-lines find and replace in real-time (masking) rendering\u003C\u002Fli>\n\u003Cli>Advance Regex – Any (CSS \u002F JS \u002F HTML) code Block find and replacement in real-time (masking) rendering\u003C\u002Fli>\n\u003Cli>Masking on Shortcodes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advance filtering options\u003C\u002Fstrong> :-\n\u003Cul>\n\u003Cli>Case insensitive – search and replace case sensitive or insensitive\u003C\u002Fli>\n\u003Cli>Whole Word – search and replace whole word \u003C\u002Fli>\n\u003Cli>Unicode – search and replace Unicode Characters\u003C\u002Fli>\n\u003Cli>Skip posts \u002F page \u002F custom taxonomies etc.. urls\u003C\u002Fli>\n\u003Cli>Skip CSS – External, Internal, Inline\u003C\u002Fli>\n\u003Cli>Skip JavaScript – External, Internal\u003C\u002Fli>\n\u003Cli>Skip pages – if you don’t want to apply rules on any specific page\u003C\u002Fli>\n\u003Cli>Skip posts – if you don’t want to apply rules on any specific posts\u003C\u002Fli>\n\u003Cli>Bypass rule  – keep texts unchanged on specific area with special pattern\u003C\u002Fli>\n\u003Cli>Bypass rule  – keep base links \u002F urls ( post, pages, custom taxonomies etc..) unchanged where find word exists in that URL.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Advance Regex – Code blocks \u002F multi lines find and replacement example – (Real-time Rendering)\u003C\u002Fh4>\n\u003Cp>\u003Cem>Find code block and replace with your own or keep blank *replacement field\u003C\u002Fem> to remove code block. Let consider the following CSS code block for replace. Put following\u003Cbr \u002F>\ncode block in find field*\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cstyle media=\"screen\">\n    html { margin-top: 32px !important; }\n    * html body { margin-top: 32px !important; }\n    @media screen and ( max-width: 782px ) {\n        html { margin-top: 46px !important; }\n        * html body { margin-top: 46px !important; }\n    }\n\u003C\u002Fstyle>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cem>Then put following code block in *Replace\u003C\u002Fem> field to replace the above code block*\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cstyle>\n.site-title a{color: red;}\n\u003C\u002Fstyle>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Join the elite web professionals who enjoy \u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002Four-products\u002Fwordpress-plugin\u002Freal-time-auto-find-and-replace\u002F?utm_source=wordpress.org&utm_medium=README\" rel=\"nofollow ugc\">Better Find And Replace Pro!\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>➡️ Basic Documentation To Get Started\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Setup Video Guide – How to install and setup search and replace rules\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FnDv6T72sRfc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>👉 Real-time search and replace\u003C\u002Fp>\n\u003Cul>\n\u003Cli>General options for filtering\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Freal-time-find-replace\u002Fgeneral-options\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Advance options for filtering\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Freal-time-find-replace\u002Fadvance-filters\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>👉 Search and replace in Database\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Fsearch-replace-in-database\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Find and replace in Database tables\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Fsearch-replace-in-database\u002Ffind-and-replace-in-tables\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Find and replace in Database URLs\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.codesolz.net\u002Fbetter-find-and-replace\u002Fsearch-replace-in-database\u002Ffind-and-replace-urls\u002F\" rel=\"nofollow ugc\">Live Demo &  Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Forum and Feature Request\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Ch4>For Quick Support, feature request and bug reporting\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Visit our website \u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002F?utm_source=wordpress.org&utm_medium=README&utm_campaign=real-time-auto-find-and-replace\" rel=\"nofollow ugc\">To Get Instant Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli> For more dedicated support or feature request write to us at \u003Ca href=\"mailto:support@codesolz.net\" rel=\"nofollow ugc\">support@codesolz.net\u003C\u002Fa> or create a ticket \u003Ca href=\"http:\u002F\u002Fsupport.codesolz.net\u002Fpublic\u002Fcreate-ticket\" rel=\"nofollow ugc\"> Support Center\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Visit our forum to share your experience or request features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Visit our \u003Ca href=\"https:\u002F\u002Fcodesolz.net\u002Fforum\u002F?utm_source=wordpress.org&utm_medium=README&utm_campaign=real-time-auto-find-and-replace\" rel=\"nofollow ugc\">forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>As it’s open source, check our github development Status\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> Check development status or issues in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FCodeSolz\u002Freal-time-auto-find-and-replace\" rel=\"nofollow ugc\"> github.com\u002FCodeSolz\u002Freal-time-auto-find-and-replace \u003C\u002Fa>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n","Search and replace text, images, URLs, footer credits, code blocks or jQuery-Ajax content in real time or in Database, easy user-interface",50000,1239976,92,167,"2026-03-08T21:56:00.000Z","5.2",[146,22,23,24,90],"https:\u002F\u002Fcodesolz.net\u002Four-products\u002Fwordpress-plugin\u002Freal-time-auto-find-and-replace\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freal-time-auto-find-and-replace.1.8.0.zip",89,"2025-11-07 00:00:00",{"attackSurface":172,"codeSignals":194,"taintFlows":248,"riskAssessment":287,"analyzedAt":298},{"hooks":173,"ajaxHandlers":190,"restRoutes":191,"shortcodes":192,"cronEvents":193,"entryPointCount":29,"unprotectedCount":29},[174,180,186],{"type":175,"name":176,"callback":177,"file":178,"line":179},"action","admin_menu","far_add_pages","real-time-find-and-replace.php",274,{"type":181,"name":182,"callback":183,"priority":184,"file":178,"line":185},"filter","plugin_row_meta","far_plugin_meta",10,277,{"type":175,"name":187,"callback":188,"file":178,"line":189},"template_redirect","far_template_redirect",280,[],[],[],[],{"dangerousFunctions":195,"sqlUsage":196,"outputEscaping":198,"fileOperations":29,"externalRequests":29,"nonceChecks":103,"capabilityChecks":29,"bundledLibraries":247},[],{"prepared":29,"raw":29,"locations":197},[],{"escaped":199,"rawEcho":200,"locations":201},5,22,[202,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245],{"file":178,"line":203,"context":204},127,"raw output",{"file":178,"line":206,"context":204},131,{"file":178,"line":208,"context":204},133,{"file":178,"line":210,"context":204},137,{"file":178,"line":212,"context":204},139,{"file":178,"line":214,"context":204},144,{"file":178,"line":216,"context":204},145,{"file":178,"line":218,"context":204},147,{"file":178,"line":220,"context":204},148,{"file":178,"line":222,"context":204},150,{"file":178,"line":224,"context":204},151,{"file":178,"line":226,"context":204},154,{"file":178,"line":228,"context":204},158,{"file":178,"line":230,"context":204},161,{"file":178,"line":232,"context":204},162,{"file":178,"line":234,"context":204},165,{"file":178,"line":236,"context":204},166,{"file":178,"line":238,"context":204},169,{"file":178,"line":240,"context":204},170,{"file":178,"line":242,"context":204},176,{"file":178,"line":244,"context":204},177,{"file":178,"line":246,"context":204},193,[],[249,276],{"entryPoint":250,"graph":251,"unsanitizedCount":29,"severity":275},"far_options_page (real-time-find-and-replace.php:52)",{"nodes":252,"edges":271},[253,258,264,267],{"id":254,"type":255,"label":256,"file":178,"line":257},"n0","source","$_POST",55,{"id":259,"type":260,"label":261,"file":178,"line":262,"wp_function":263},"n1","sink","update_option() [Settings Manipulation]",87,"update_option",{"id":265,"type":255,"label":266,"file":178,"line":67},"n2","$_SERVER['REQUEST_URI']",{"id":268,"type":260,"label":269,"file":178,"line":67,"wp_function":270},"n3","echo() [XSS]","echo",[272,274],{"from":254,"to":259,"sanitized":273},true,{"from":265,"to":268,"sanitized":273},"low",{"entryPoint":277,"graph":278,"unsanitizedCount":29,"severity":275},"\u003Creal-time-find-and-replace> (real-time-find-and-replace.php:0)",{"nodes":279,"edges":284},[280,281,282,283],{"id":254,"type":255,"label":256,"file":178,"line":257},{"id":259,"type":260,"label":261,"file":178,"line":262,"wp_function":263},{"id":265,"type":255,"label":266,"file":178,"line":67},{"id":268,"type":260,"label":269,"file":178,"line":67,"wp_function":270},[285,286],{"from":254,"to":259,"sanitized":273},{"from":265,"to":268,"sanitized":273},{"summary":288,"deductions":289},"The \"real-time-find-and-replace\" v4.3 plugin exhibits a mixed security posture.  On the positive side, the static analysis reveals a seemingly small attack surface with no exposed AJAX handlers, REST API routes, shortcodes, or cron events that lack authentication or permission checks.  The code also demonstrates good practices regarding SQL queries, using prepared statements exclusively, and includes a nonce check.  However, a significant concern arises from the low percentage of properly escaped output (19%), suggesting a high likelihood of Cross-Site Scripting (XSS) vulnerabilities, especially given the plugin's history.\n\nThe vulnerability history is a major red flag, with two past high-severity vulnerabilities, specifically CSRF and XSS. The fact that there are no currently unpatched vulnerabilities is positive, but the pattern of past XSS and CSRF issues, particularly the last one being in 2020, indicates a historical weakness in input sanitization and output escaping that needs ongoing vigilance. The lack of critical taint flows and dangerous functions in the current analysis is reassuring, but it does not entirely mitigate the risks posed by the poor output escaping.\n\nIn conclusion, while the plugin has improved in some areas like SQL handling and reducing its direct attack surface, the significant unescaped output and the historical pattern of XSS and CSRF vulnerabilities point to a moderate to high risk. Users should be cautious, and developers should prioritize addressing the output escaping issues to prevent potential XSS attacks.",[290,293,296],{"reason":291,"points":292},"High percentage of unescaped output",15,{"reason":294,"points":295},"History of High Severity CVEs (XSS, CSRF)",20,{"reason":297,"points":184},"Past vulnerabilities indicate ongoing risk","2026-03-16T17:12:40.081Z",{"wat":300,"direct":307},{"assetPaths":301,"generatorPatterns":304,"scriptPaths":305,"versionParams":306},[302,303],"\u002Fwp-content\u002Fplugins\u002Freal-time-find-and-replace\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Freal-time-find-and-replace\u002Fjs\u002Fmain.js",[],[303],[],{"cssClasses":308,"htmlComments":313,"htmlAttributes":314,"restEndpoints":325,"jsGlobals":326,"shortcodeOutput":330},[309,310,311,312],"far-items","far_itemlist","side-label","side-label-long",[],[315,316,317,318,319,320,321,322,323,324],"id=\"far-items\"","id=\"far_itemlist\"","name=\"farfind[]\"","name=\"farreplace[]\"","name=\"farregex[]\"","name=\"faradmin[]\"","name=\"farposttype[]\"","name=\"farquerystring[]\"","name=\"farreferrer[]\"","name=\"faruseragent[]\"",[],[327,328,329],"far_admin_scripts","addFormField","far_plugin_settings",[]]