[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fTOM445l7dwubRn4sQCsc0da7WfiRhXqchjQC6LNjHls":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":59,"fingerprints":161},"rename-featured-image","Rename Featured Image","1.0","Hrishikesh Vaipurkar","https:\u002F\u002Fprofiles.wordpress.org\u002Fhrishiv90\u002F","\u003Cp>This plugin updates the image title (post title) and file name which is set as featured image when publishing the post.\u003C\u002Fp>\n\u003Ch4>Bulk Rename\u003C\u002Fh4>\n\u003Cp>This plugin has settings page through which you can rename the title and file name of all the post featured images to their respective post title. It has filter to check if already same file name (from the attachment url) as of post title.\u003Cbr \u002F>\nThe post title is sanitized before applying as new name to attached image.\u003C\u002Fp>\n\u003Cp>It has an “Force Rename button” for renaming all images forcefully. It helps to update partially renamed images and disable the filter mentioned above.\u003C\u002Fp>\n","This plugin uses WordPress hooks and updates the featured image title and file name.",50,2456,100,1,"2015-07-05T10:55:00.000Z","4.2.39","4.1","",[20,21,22,23,24],"featured-image-rename","rename-image","rename-post-attachment","rename-post-thumbnail","rename-thumbnail","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frename-featured-image.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"hrishiv90",30,84,"2026-04-05T04:00:09.731Z",[37],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":14,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":57,"download_link":58,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"file-media-renamer-for-seo","File Media Renamer for SEO","1.1","Alex Somale","https:\u002F\u002Fprofiles.wordpress.org\u002Falexwebitaly\u002F","\u003Cp>File Media Renamer for SEO is a lightweight and fast WordPress plugin designed to improve your website’s SEO by allowing you to rename media files directly from the WordPress Media Library.\u003Cbr \u002F>\nThe plugin automatically updates all references to renamed files throughout your website, ensuring no broken links or missing images.\u003C\u002Fp>\n\u003Cp>The plugin focuses on safe renaming, performance, and SEO best practices, with features to keep your media metadata aligned with new filenames and preserve search equity via 301 redirects.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Ch4>Individual File Renaming\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Rename any media file directly from the WordPress Media Library\u003C\u002Fli>\n\u003Cli>Convert file names to SEO-optimized formats automatically\u003C\u002Fli>\n\u003Cli>Update all references to the renamed file across your website\u003C\u002Fli>\n\u003Cli>Rename all thumbnail sizes along with the main file\u003C\u002Fli>\n\u003Cli>Built-in rename history with quick undo\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Bulk Renaming\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Rename multiple files at once via Media Library bulk actions\u003C\u002Fli>\n\u003Cli>Sequential naming (e.g., new-name-1, new-name-2) for consistent batches\u003C\u002Fli>\n\u003Cli>Real-time progress and batch processing up to 50 files\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>AI Renaming with OpenAI Key for Bulk and Individual\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Rename multiple files at once via Media Library bulk actions with AI button\u003C\u002Fli>\n\u003Cli>Rename any media file directly from the WordPress Media Library with AI\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Automatic Content Updates\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Updates references in posts, pages, custom post types, and metadata\u003C\u002Fli>\n\u003Cli>Handles serialized data structures\u003C\u002Fli>\n\u003Cli>Efficient background processing via WordPress cron\u003C\u002Fli>\n\u003Cli>Automatic cache clearing after operations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>SEO Enhancements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Optionally update media titles to match the new file name\u003C\u002Fli>\n\u003Cli>Automatically update alt text attributes for better accessibility and SEO\u003C\u002Fli>\n\u003Cli>Converts hyphens\u002Funderscores to readable titles\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Redirect Management\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Creates 301 redirects from old file URLs to new ones\u003C\u002Fli>\n\u003Cli>Stores redirects in a dedicated database table for performance\u003C\u002Fli>\n\u003Cli>Handles redirects for all thumbnail sizes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Advanced Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Prevents filename conflicts by generating unique names\u003C\u002Fli>\n\u003Cli>Validates files before renaming for safety\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch4>Individual File Renaming\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Go to \u003Cstrong>Media \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Library\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Click on a file to open the attachment details.\u003C\u002Fli>\n\u003Cli>Enter the new SEO name in the \u003Cstrong>SEO Name\u003C\u002Fstrong> field.\u003C\u002Fli>\n\u003Cli>Click \u003Cstrong>Save SEO Name\u003C\u002Fstrong> — all references will update automatically.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Bulk Renaming\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Switch the Media Library to \u003Cstrong>List view\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Select multiple files and choose \u003Cstrong>Rename\u003C\u002Fstrong> from \u003Cstrong>Bulk actions\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Enter a base name and click \u003Cstrong>Start Rename\u003C\u002Fstrong> to process all selected files.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>History and Undo\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>View the rename history for any file in the attachment details.\u003C\u002Fli>\n\u003Cli>Click any previous name to revert instantly (last 2 versions kept).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Settings\u003C\u002Fh3>\n\u003Cp>Find settings under \u003Cstrong>Media \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> FMR Settings\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Rename Title\u003C\u002Fstrong> — Automatically update the media title when renaming files\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rename Alt Text\u003C\u002Fstrong> — Automatically update the alt text attribute when renaming files\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Custom table: \u003Ccode>wp_fmrseo_redirects\u003C\u002Fcode> for redirect mappings\u003C\u002Fli>\n\u003Cli>Background processing for large operations (WordPress cron)\u003C\u002Fli>\n\u003Cli>File validation and conflict prevention\u003C\u002Fli>\n\u003Cli>Optimized database queries and cache management\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 4.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.0 or higher\u003C\u002Fli>\n\u003Cli>Write permissions for the uploads directory\u003C\u002Fli>\n\u003C\u002Ful>\n","Rename media files with SEO-friendly names, auto-update references, alt\u002Ftitle sync, and 301 redirects — fast and safe.",80,537,"2026-02-23T16:32:00.000Z","6.9.4","4.0","7.0",[52,53,54,55,56],"alt-text","bulk-rename-images","image-seo","image-titles","rename-media-files","https:\u002F\u002Ffilemediarenamerwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffile-media-renamer-for-seo.1.1.zip",{"attackSurface":60,"codeSignals":91,"taintFlows":119,"riskAssessment":147,"analyzedAt":160},{"hooks":61,"ajaxHandlers":87,"restRoutes":88,"shortcodes":89,"cronEvents":90,"entryPointCount":27,"unprotectedCount":27},[62,68,72,77,83],{"type":63,"name":64,"callback":65,"file":66,"line":67},"action","admin_menu","wpRFP_add_plugin_page","admin\\wpRFP-options.php",19,{"type":63,"name":69,"callback":70,"file":66,"line":71},"admin_init","wpRFP_page_init",20,{"type":63,"name":73,"callback":74,"priority":75,"file":66,"line":76},"publish_post","wpRFP_rename_fimg",10,21,{"type":63,"name":78,"callback":79,"priority":80,"file":81,"line":82},"wp_enqueue_scripts","wpRFP_enqueue_assets",999,"index.php",61,{"type":63,"name":84,"callback":85,"file":81,"line":86},"widgets_init","wpRFP_register",72,[],[],[],[],{"dangerousFunctions":92,"sqlUsage":93,"outputEscaping":95,"fileOperations":96,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":118},[],{"prepared":27,"raw":27,"locations":94},[],{"escaped":96,"rawEcho":75,"locations":97},2,[98,101,103,105,107,109,111,113,114,116],{"file":66,"line":99,"context":100},123,"raw output",{"file":66,"line":102,"context":100},126,{"file":66,"line":104,"context":100},133,{"file":66,"line":106,"context":100},165,{"file":66,"line":108,"context":100},234,{"file":66,"line":110,"context":100},249,{"file":66,"line":112,"context":100},250,{"file":66,"line":112,"context":100},{"file":66,"line":115,"context":100},251,{"file":66,"line":117,"context":100},252,[],[120,138],{"entryPoint":121,"graph":122,"unsanitizedCount":14,"severity":137},"wpRFP_create_admin_page (admin\\wpRFP-options.php:63)",{"nodes":123,"edges":134},[124,129],{"id":125,"type":126,"label":127,"file":66,"line":128},"n0","source","$_POST",75,{"id":130,"type":131,"label":132,"file":66,"line":106,"wp_function":133},"n1","sink","echo() [XSS]","echo",[135],{"from":125,"to":130,"sanitized":136},false,"medium",{"entryPoint":139,"graph":140,"unsanitizedCount":14,"severity":146},"\u003CwpRFP-options> (admin\\wpRFP-options.php:0)",{"nodes":141,"edges":144},[142,143],{"id":125,"type":126,"label":127,"file":66,"line":128},{"id":130,"type":131,"label":132,"file":66,"line":106,"wp_function":133},[145],{"from":125,"to":130,"sanitized":136},"low",{"summary":148,"deductions":149},"The \"rename-featured-image\" plugin version 1.0 exhibits a mixed security posture.  On the positive side, it has no known CVEs, no bundled libraries, and its SQL queries are all properly prepared.  The attack surface appears minimal with no AJAX handlers, REST API routes, shortcodes, or cron events, further reducing potential entry points.\n\nHowever, significant concerns arise from the static analysis.  The lack of any capability checks or nonce checks on what appear to be file operations is a critical oversight.  The taint analysis revealing two flows with unsanitized paths, even without a critical or high severity rating, indicates a potential for path traversal or insecure file handling.  Furthermore, a very low percentage (17%) of output escaping is a substantial risk, as it could lead to cross-site scripting (XSS) vulnerabilities if any user-controlled data is displayed without proper sanitization.\n\nIn conclusion, while the plugin boasts a clean vulnerability history and uses prepared statements for SQL, the absence of fundamental security checks like capability and nonce validation, coupled with insecure file path handling and poor output escaping, presents a notable risk. These weaknesses outweigh the strengths, particularly in the context of potential XSS and file manipulation vulnerabilities.",[150,153,156,158],{"reason":151,"points":152},"Unsanitized paths in taint flows",15,{"reason":154,"points":155},"Low percentage of properly escaped output",8,{"reason":157,"points":75},"Missing capability checks",{"reason":159,"points":75},"Missing nonce checks","2026-03-16T22:00:28.391Z",{"wat":162,"direct":171},{"assetPaths":163,"generatorPatterns":166,"scriptPaths":167,"versionParams":168},[164,165],"\u002Fwp-content\u002Fplugins\u002Frename-featured-image\u002Fadmin\u002Fjs\u002FwpRFP-admin.js","\u002Fwp-content\u002Fplugins\u002Frename-featured-image\u002Fadmin\u002Fcss\u002FwpRFP-admin.css",[],[164],[169,170],"rename-featured-image\u002Fadmin\u002Fcss\u002FwpRFP-admin.css?ver=","rename-featured-image\u002Fadmin\u002Fjs\u002FwpRFP-admin.js?ver=",{"cssClasses":172,"htmlComments":174,"htmlAttributes":175,"restEndpoints":176,"jsGlobals":177,"shortcodeOutput":178},[173],"wpRFP-admin",[],[],[],[],[]]