[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fB8MT7jlmb3X8zukvZSPY1L5hwWLvNXMlPdjsjAOKSqI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":78,"fingerprints":145},"related-documents-widget","Related Documents Widget","2.1.2","Dan","https:\u002F\u002Fprofiles.wordpress.org\u002Fdz203comcom\u002F","\u003Cp>Creates a widget that displays attached media that can be added to the sidebar.\u003C\u002Fp>\n\u003Cp>The widget options include:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Determine wether links will open in a new window\u003C\u002Fli>\n\u003Cli>Omit images from being displayed in the output\u003C\u002Fli>\n\u003Cli>Provide a list of pages to exclude from the output\u003C\u002Fli>\n\u003Cli>Use a specific widget title (i.e. Related Documents)\u003C\u002Fli>\n\u003C\u002Fol>\n","Adds a widget that displays uploaded media related to a post or page in the sidebar.",30,3894,100,1,"2012-07-16T19:41:00.000Z","3.4.2","2.8","",[20,21,22,23,24],"display-documents","display-media","media-uploads","related-documents","related-media","http:\u002F\u002Fdrzdigital.com\u002Fwordpress-plugins\u002Frelated-documents-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frelated-documents-widget.2.1.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":11,"trust_score":36,"computed_at":37},"dz203comcom",2,80,84,"2026-04-04T17:00:54.546Z",[39,59],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":34,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":18,"download_link":58,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"max-upload-file-size-manager","Max Upload File Size Manager","1.0.0","BrainFleck Solutions","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainfleck\u002F","\u003Cp>Max Upload File Size Manager empowers you to effortlessly overcome your hosting provider’s file size limits (up to 2 GB) by allowing seamless uploads of large files. Additionally, you can extend the upload size limit beyond 2 GB, accommodating even larger files. With this plugin, you can easily set a maximum upload size tailored to your needs, customize limits based on user roles, and keep track of your storage usage alongside essential PHP settings. Elevate your file management experience with our intuitive features designed for both site administrators and users.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Extended File Size Options: Increase the maximum upload file size beyond 2 GB to accommodate your specific requirements.\u003C\u002Fli>\n\u003Cli>Customizable Upload Size: Set the maximum upload file size according to your needs in Megabytes (MB) or Gigabytes (GB).\u003C\u002Fli>\n\u003Cli>Role-Based Limits: Tailor file size limits based on user roles, granting specific upload capabilities to different user types.\u003C\u002Fli>\n\u003Cli>Storage Usage Analysis: Monitor your storage usage with detailed insights, including total file counts, file types, and overall storage size.\u003C\u002Fli>\n\u003Cli>PHP Configuration Display: Access important PHP ini configuration details, such as PHP version, maximum upload limits, and active extensions (e.g., zipArchive, MBString, Dom).\u003C\u002Fli>\n\u003Cli>User-Friendly Interface: Enjoy a simple and intuitive interface that makes it easy to manage file uploads without any technical expertise.\u003C\u002Fli>\n\u003Cli>Error Handling and Notifications: Receive clear error messages and notifications during the upload process to help users troubleshoot any issues quickly.\u003C\u002Fli>\n\u003Cli>Compatibility with Popular Plugins: Seamlessly integrate with popular WordPress plugins, ensuring smooth operation within your existing site setup.\u003Cbr \u002F>\nWith these robust features, the Max Upload File Size Manager plugin enhances your file management capabilities, making it easier than ever to handle large file uploads on your WordPress site!\u003C\u002Fli>\n\u003C\u002Ful>\n","Max Upload File Size Manager empowers you to effortlessly overcome your hosting provider's file size limits (up to 2 GB) by allowing seamless upl …",200,2527,"2025-04-26T11:20:00.000Z","6.7.5","6.3","7.4",[54,55,22,56,57],"big-file-uploads","increase-upload-file-size","storage-usage-analysis","wordpress-increase-max-file-uploads","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmax-upload-file-size-manager.1.0.0.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":35,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":18,"download_link":75,"security_score":76,"vuln_count":14,"unpatched_count":14,"last_vuln_date":77,"fetched_at":30},"filepicker-media-uploader","Filestack","2.0.8","shanaver","https:\u002F\u002Fprofiles.wordpress.org\u002Fshanaver\u002F","\u003Cp>Use Filestack to upload files directly from Facebook, Instagram, Google Images and more for your WordPress site, without ever leaving WordPress.\u003C\u002Fp>\n","Use Filestack to upload files directly from Facebook, Instagram, Google Images and more for your WordPress site, without ever leaving WordPress.",20,3686,3,"2016-11-21T20:09:00.000Z","4.7.32","3.0.1",[74],"filestack-filepicker-filepicker-io-media-uploads-facebook-dropbox-google-drive-box-skydrive-instagram-picasa-instagram-flickr-github-evernote-alfresco","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffilepicker-media-uploader.2.0.8.zip",63,"2026-02-17 16:17:30",{"attackSurface":79,"codeSignals":95,"taintFlows":132,"riskAssessment":133,"analyzedAt":144},{"hooks":80,"ajaxHandlers":91,"restRoutes":92,"shortcodes":93,"cronEvents":94,"entryPointCount":28,"unprotectedCount":28},[81,87],{"type":82,"name":83,"callback":84,"file":85,"line":86},"action","widgets_init","related_docs_widget_init","rd-widget.php",159,{"type":82,"name":88,"callback":89,"file":85,"line":90},"wp_enqueue_scripts","rd_widget_add_styles",160,[],[],[],[],{"dangerousFunctions":96,"sqlUsage":97,"outputEscaping":99,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":131},[],{"prepared":28,"raw":28,"locations":98},[],{"escaped":28,"rawEcho":100,"locations":101},19,[102,105,107,109,111,113,115,116,117,118,120,121,122,123,125,126,127,129,130],{"file":85,"line":103,"context":104},88,"raw output",{"file":85,"line":106,"context":104},89,{"file":85,"line":108,"context":104},93,{"file":85,"line":110,"context":104},94,{"file":85,"line":112,"context":104},99,{"file":85,"line":114,"context":104},128,{"file":85,"line":114,"context":104},{"file":85,"line":114,"context":104},{"file":85,"line":114,"context":104},{"file":85,"line":119,"context":104},129,{"file":85,"line":119,"context":104},{"file":85,"line":119,"context":104},{"file":85,"line":119,"context":104},{"file":85,"line":124,"context":104},130,{"file":85,"line":124,"context":104},{"file":85,"line":124,"context":104},{"file":85,"line":128,"context":104},131,{"file":85,"line":128,"context":104},{"file":85,"line":128,"context":104},[],[],{"summary":134,"deductions":135},"The static analysis for 'related-documents-widget' v2.1.2 reveals a plugin with a seemingly very small attack surface, as indicated by zero AJAX handlers, REST API routes, shortcodes, and cron events. This lack of direct entry points is a positive sign. Furthermore, the absence of dangerous functions, file operations, and external HTTP requests contributes to a generally robust code foundation. The SQL queries are also commendably 100% prepared, mitigating risks of injection vulnerabilities in database interactions.\n\nHowever, a significant concern arises from the output escaping. With 100% of outputs not being properly escaped, there is a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic data displayed by the plugin could potentially be manipulated by an attacker to execute malicious scripts in the user's browser. The complete lack of nonce and capability checks across all potential entry points (though currently zero) also suggests a disregard for fundamental WordPress security practices, which could become a serious issue if new entry points are introduced in future updates.\n\nGiven the complete absence of historical vulnerabilities, the plugin has a positive track record. However, this historical data should not overshadow the critical findings in the static analysis. The lack of output escaping represents a significant weakness that needs immediate attention. In conclusion, while the plugin demonstrates strengths in avoiding common risky functions and database vulnerabilities, the pervasive lack of output escaping poses a serious XSS risk. The absence of security checks for entry points is also a concern for future maintainability.",[136,139,142],{"reason":137,"points":138},"100% of outputs not properly escaped",8,{"reason":140,"points":141},"0 capability checks on entry points",5,{"reason":143,"points":141},"0 nonce checks on entry points","2026-03-16T22:23:23.035Z",{"wat":146,"direct":152},{"assetPaths":147,"generatorPatterns":149,"scriptPaths":150,"versionParams":151},[148],"\u002Fwp-content\u002Fplugins\u002Frelated-documents-widget\u002Fcss\u002Frd-widget.css",[],[],[],{"cssClasses":153,"htmlComments":155,"htmlAttributes":156,"restEndpoints":161,"jsGlobals":162,"shortcodeOutput":163},[154],"related_docs_widget",[],[157,158,159,160],"id=\"related_docs_widget-widget-title\"","id=\"related_docs_widget-widget-exclude\"","id=\"related_docs_widget-widget-excludeImages\"","id=\"related_docs_widget-widget-newWindow\"",[],[],[]]