[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fXwSFpOAlU74ArB5owW7kT0Uc58PxrVgY8ktzkhON8e0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":20,"download_link":21,"security_score":22,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":33,"analysis":139,"fingerprints":198},"sakura-rs-wp-ssl","Easy SSL Plugin for SAKURA Rental Server","1.4.0","sakurainternet","https:\u002F\u002Fprofiles.wordpress.org\u002Fsakurainternet\u002F","\u003Cp>このプラグインはさくらのレンタルサーバをご利用頂いているお客様専用のプラグインです。さくらのレンタルサーバ以外にセットアップされたWordPress上でSSLを有効化すると、サイト閲覧ができなくなります。\u003C\u002Fp>\n\u003Ch4>プラグインについて\u003C\u002Fh4>\n\u003Cp>このプラグインはさくらのレンタルサーバ上のWordPressサイトの設定を変更して、常時SSLを簡単に行えるプラグインです。以下の設定が自動的に行われます。\u003Cbr \u002F>\n・.htaccessを書き換えて自動的にhttpsのURLへリダイレクトします。\u003Cbr \u002F>\n・サイト内の投稿のURLをhttpからhttpsに置換します。\u003Cbr \u002F>\n・サイト設定のサイトURLをhttpからhttpsに置換します。\u003Cbr \u002F>\n・www付きのドメインを利用している場合のリダイレクトループを防止します。\u003Cbr \u002F>\n※プラグインを停止すると上記設定は解除されます。\u003C\u002Fp>\n\u003Cp>SSL証明書の購入や設定はお客様で事前に必要となりますのでご注意ください。\u003C\u002Fp>\n\u003Cp>詳しいプラグインの使い方・注意事項は\u003Ca href=\"https:\u002F\u002Fhelp.sakura.ad.jp\u002Fhc\u002Fja\u002Farticles\u002F115000047641\" title=\"サポートサイト\" rel=\"nofollow ugc\">サポートサイト\u003C\u002Fa>をご確認ください。\u003C\u002Fp>\n\u003Cp>■ LICENSE\u003Cbr \u002F>\n– ALL PHP files: GPLv2\u003Cbr \u002F>\n– client\u002Fjs\u002Friot.min.js: MIT\u003C\u002Fp>\n","このプラグインはさくらのレンタルサーバ上のWordPressで、常時SSL化を簡単に行えるプラグインです。さくらのレンタルサーバ以外では動作しません。",50000,159345,0,"2019-11-25T02:46:00.000Z","5.3.21","4.7.0","5.6",[19],"ssl","https:\u002F\u002Fhelp.sakura.ad.jp\u002Fhc\u002Fja\u002Farticles\u002F115000047641","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsakura-rs-wp-ssl.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":29,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},3,82000,90,204,72,"2026-04-05T23:56:48.177Z",[34,58,81,102,120],{"slug":35,"name":36,"version":37,"author":36,"author_profile":38,"description":39,"short_description":40,"active_installs":41,"downloaded":42,"rating":43,"num_ratings":44,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":53,"download_link":54,"security_score":55,"vuln_count":56,"unpatched_count":13,"last_vuln_date":57,"fetched_at":24},"cloudflare","Cloudflare","4.14.2","https:\u002F\u002Fprofiles.wordpress.org\u002Fcloudflare\u002F","\u003Ch4>What this plugin can do for you\u003C\u002Fh4>\n\u003Cp>[https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=DWANhxoDxFI]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Automatic Platform Optimization (APO)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Speed up your WordPress site by up to 300% with Cloudflare’s Automatic Platform Optimization (APO) plugin. APO allows Cloudflare to serve your entire WordPress site from our edge network of over 250+ data centers worldwide ensuring fast & reliable performance for your visitors no matter where they are.\u003C\u002Fp>\n\u003Cp>Optimizing your WordPress site with multiple plugins can be overwhelming. Take your WordPress site’s performance to the next level by switching to a single plugin for CDN, intelligent caching, and other key WordPress optimizations with Cloudflare (APO). Visit our \u003Ca href=\"https:\u002F\u002Fblog.cloudflare.com\u002Fautomatic-platform-optimizations-starting-with-wordpress\u002F\" rel=\"nofollow ugc\">announcement blog\u003C\u002Fa> to learn more about APO.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What makes APO different from other caching plugins?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The key differentiating factor between Cloudflare APO and other traditional page caching and CDN solutions is its ability to directly cache static HTML at Cloudflare’s edge. Every other plugin and CDN will cache your static assets (images, javascript, CSS), but none help you cache the actual content on your site (the HTML) using a massive edge network like Cloudflare’s.\u003C\u002Fp>\n\u003Cp>APO intelligently caches your HTML pages and will automatically purge content from the cache that you update, so users will always see the latest content without compromising the performance of pages that haven’t been recently updated\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What you get with Cloudflare APO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>APO is a $5 add-on with Cloudflare’s free plan and comes with an unlimited amount of subdomains. With APO you also get to leverage many of the other benefits of Cloudflare such as \u003Cstrong>Free DNS, Free Automated SSL Certificates, Free DDoS Mitigation, and more.\u003C\u002Fstrong> APO is free for all paid plan users so if you have Cloudflare Pro or Business already you can just turn it on. You can compare all our plans \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fplans\u002F?utm_source=promo&utm_medium=social&utm_term=&utm_content=&utm_campaign=g421o-pl-apo-wordpress-plans\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Protect your WordPress site with Cloudflare’s Web Application Firewall (WAF)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Cloudflare’s WAF is available on all our \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fplans\u002F?utm_source=promo&utm_medium=social&utm_term=&utm_content=&utm_campaign=g421o-pl-apo-wordpress-plans\" rel=\"nofollow ugc\">paid plans\u003C\u002Fa> and comes with built-in rulesets, specifically tailored to mitigate WordPress threats and vulnerabilities. These security rules are regularly updated by our team of experts. At the flip of a switch, you’ll have your WAF up and running without any difficult adjustments to your site. With over 26 million internet properties under our protection, you can sleep easy knowing Cloudflare has your back.\u003C\u002Fp>\n\u003Ch4>Additional features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Header rewrite to prevent a redirect loop when Cloudflare’s Universal SSL is enabled\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Change Cloudflare settings from within the plugin itself without needing to navigate to the cloudflare.com dashboard. You can change settings for cache purge, security level, Always Online, and image optimization\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>View analytics such as total visitors, bandwidth saved, and threats blocked\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Support for \u003Ca href=\"https:\u002F\u002Fblog.cloudflare.com\u002Fannouncing-support-for-http-2-server-push-2\u002F\" rel=\"nofollow ugc\">HTTP2\u002FServer Push\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","All of Cloudflare’s performance and security benefits in a simple one-click install.",200000,9150323,70,179,"2025-12-22T16:44:00.000Z","6.9.0","5.0","7.4",[35,50,51,52,19],"ddos","seo","speed","https:\u002F\u002Fblog.cloudflare.com\u002Fnew-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcloudflare.4.14.2.zip",99,2,"2024-01-04 00:00:00",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":78,"download_link":79,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24},"cloudflare-flexible-ssl","Flexible SSL for CloudFlare","1.3.1","Paul","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaultgoodchild\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Ficwp.io\u002F6z\" rel=\"nofollow ugc\">Click For Full Implementation Guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Using CloudFlare® Flexible SSL on WordPress isn’t as simple as just turning it on.\u003C\u002Fp>\n\u003Cp>This plugin forms an \u003Cstrong>integral part\u003C\u002Fstrong> to enabling Flexible SSL on WordPress and prevents infinite redirect loops when loading WordPress sites under Cloudflare’s Flexible SSL system.\u003C\u002Fp>\n\u003Cp>\u003Cem>Cloudflare is a registered trademark of Cloudflare, Inc.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>One Dollar Plugin is not affiliated in any way with Cloudflare, Inc. This plugin provided separately and completely independently.\u003C\u002Fp>\n\u003Cp>Remember: This plugin is just part of the installation process for Flexible SSL. \u003Ca href=\"https:\u002F\u002Ficwp.io\u002F6z\" rel=\"nofollow ugc\">Please follow the full guide\u003C\u002Fa>\u003C\u002Fp>\n","Fix For Redirect Loops on WordPress with CloudFlare's Flexible\u002FUniversal SSL.",100000,1174275,96,51,"2025-12-23T10:10:00.000Z","6.9.4","3.2.0","5.2",[35,75,76,19,77],"flexible-ssl","redirect-loop","universal-ssl","https:\u002F\u002Ficwp.io\u002Fcloudflaresslpluginauthor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcloudflare-flexible-ssl.1.3.1.zip",100,{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":66,"downloaded":89,"rating":90,"num_ratings":91,"last_updated":92,"tested_up_to":71,"requires_at_least":93,"requires_php":94,"tags":95,"homepage":100,"download_link":101,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24},"https-redirection","Easy HTTPS Redirection (SSL)","2.0.0","mra13","https:\u002F\u002Fprofiles.wordpress.org\u002Fmra13\u002F","\u003Ch4>Only use this plugin if you have installed SSL certificate on your site and HTTPS is working correctly\u003C\u002Fh4>\n\u003Cp>Once you’ve installed an SSL certificate on your site, it’s important to ensure that your webpages are accessed via their secure HTTPS URLs.\u003C\u002Fp>\n\u003Cp>To improve SEO and user security, you want search engines and visitors to always use the HTTPS version of your pages. This plugin makes that easy by automatically redirecting users to the HTTPS version whenever they try to access the non-HTTPS (HTTP) version of a page.\u003C\u002Fp>\n\u003Ch3>Example\u003C\u002Fh3>\n\u003Cp>Let’s say you want to ensure the following page is always accessed over HTTPS:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Fwww.example.com\u002Fcheckout\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If a visitor tries to access:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>http:\u002F\u002Fwww.example.com\u002Fcheckout\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The plugin will automatically redirect them to the secure version:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Fwww.example.com\u002Fcheckout\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This ensures that visitors always access the HTTPS version of your pages or site.\u003C\u002Fp>\n\u003Cp>You can choose to automatically redirect your entire domain to HTTPS, or selectively apply HTTPS redirection to specific pages.\u003C\u002Fp>\n\u003Ch3>Video Tutorials\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FoyJgRFCM6u8?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FLtyBraB64v8?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>Force Load Static Files Using HTTPS\u003C\u002Fh3>\n\u003Cp>If you started using SSL from day 1 of your site then all your static files are already embedded using HTTPS URL. You have no issue there.\u003C\u002Fp>\n\u003Cp>However, if you have an existing website where you have a lot of static files that are embedded in your posts and pages using NON-HTTPS URL then you will need to change those. Otherwise, the browser will show an SSL warning to your visitors.\u003C\u002Fp>\n\u003Cp>This plugin has an option that will allow you to force load those static files using HTTPS URL dynamically.\u003C\u002Fp>\n\u003Cp>This will help you make the webpage fully compatible with SSL.\u003C\u002Fp>\n\u003Ch3>SSL Certificate Expiry Notification\u003C\u002Fh3>\n\u003Cp>This plugin includes a feature that allows you to receive email notifications when your SSL certificate is about to expire. It helps ensure your website remains secure and accessible over HTTPS.\u003C\u002Fp>\n\u003Cp>You can configure the recipient email address and specify how many days in advance the notification should be sent. By default, the notification is sent 7 days before expiry, but you can adjust this to suit your preference.\u003C\u002Fp>\n\u003Cp>This feature is especially useful for site owners who may not frequently check their SSL status, or for those managing multiple websites. By receiving timely alerts, you can renew your SSL certificate in advance and prevent potential downtime or security warnings.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Automatically redirect all HTTP traffic to HTTPS\u003C\u002Fli>\n\u003Cli>Option to force HTTPS on the entire site\u003C\u002Fli>\n\u003Cli>Option to selectively apply HTTPS redirection to specific pages\u003C\u002Fli>\n\u003Cli>Helps search engines index the secure versions of your pages\u003C\u002Fli>\n\u003Cli>Improves site security and user trust\u003C\u002Fli>\n\u003Cli>Force load static files (images, js, css etc) using a HTTPS URL\u003C\u002Fli>\n\u003Cli>SSL certificate expiry notification – Option to send SSL expiry notifications to a specific email address\u003C\u002Fli>\n\u003Cli>Easily see which SSL certificates on your site are approaching their expiry date.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>View more details on the \u003Ca href=\"https:\u002F\u002Fwww.tipsandtricks-hq.com\u002Fwordpress-easy-https-redirection-plugin\" rel=\"nofollow ugc\">HTTPS Redirection plugin\u003C\u002Fa> page.\u003C\u002Fp>\n","The plugin allows an automatic redirection to the \"HTTPS\" version\u002FURL of the site. Make your site SSL compatible easily.",1169853,84,71,"2025-12-02T03:12:00.000Z","6.5","",[96,97,98,99,19],"force-ssl","https","insecure-content","redirection","https:\u002F\u002Fwww.tipsandtricks-hq.com\u002Fwordpress-easy-https-redirection-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhttps-redirection.2.0.0.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":66,"downloaded":110,"rating":68,"num_ratings":111,"last_updated":112,"tested_up_to":71,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":118,"download_link":119,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24},"ssl-insecure-content-fixer","SSL Insecure Content Fixer","2.7.2","webaware","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebaware\u002F","\u003Cp>Clean up your WordPress website’s HTTPS insecure content and mixed content warnings. Installing the SSL Insecure Content Fixer plugin will solve most insecure content warnings with little or no effort. The remainder can be diagnosed with a few simple tools.\u003C\u002Fp>\n\u003Cp>When you install SSL Insecure Content Fixer, its default settings are activated and it will automatically perform some basic fixes on your website using the Simple fix level. You can select more comprehensive fix levels as needed by your website.\u003C\u002Fp>\n\u003Cp>WordPress Multisite gets a network settings page. This can be used to set default settings for all sites within a network, so that network administrators only need to specify settings on sites that have requirements differing from the network defaults.\u003C\u002Fp>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fssl.webaware.net.au\u002F\" rel=\"nofollow ugc\">SSL Insecure Content Fixer website\u003C\u002Fa> for more details.\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>Many thanks to the generous efforts of our translators:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Bulgarian (bg_BG) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fbg\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Bulgarian translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Chinese simplified (zh_CN) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fzh-cn\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Chinese translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_CA) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fen-ca\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the English (Canadian) translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_GB) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fen-gb\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the English (British) translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_ZA) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fen-za\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the English (South African) translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Dutch (nl_NL) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fnl\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Dutch translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>German (de_DE) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fde\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the German translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>French (fr_FR) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Ffr\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the French translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian (it_IT) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fit\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Italian translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Japanese (ja) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fja\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Japanese translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Russian (ru_RU) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fru\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Russian translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Spanish (es_ES) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fes\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Spanish translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’d like to help out by translating this plugin, please \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">sign up for an account and dig in\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>SSL Insecure Content Fixer does not collect any personally identifying information, and does not set any cookies.\u003C\u002Fp>\n","Clean up WordPress website HTTPS insecure content",2650141,221,"2025-12-14T04:38:00.000Z","4.0","5.3",[97,98,116,117,19],"mixed-content","partially-encrypted","https:\u002F\u002Fssl.webaware.net.au\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fssl-insecure-content-fixer.2.7.2.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":44,"last_updated":131,"tested_up_to":71,"requires_at_least":132,"requires_php":73,"tags":133,"homepage":135,"download_link":136,"security_score":55,"vuln_count":137,"unpatched_count":13,"last_vuln_date":138,"fetched_at":24},"wp-force-ssl","WP Force SSL & HTTPS SSL Redirect","1.68","WebFactory","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebfactory\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpforcessl.com\u002F?ref=wporg\" rel=\"nofollow ugc\">WP Force SSL\u003C\u002Fa> helps you redirect insecure HTTP traffic to secure HTTPS and fix SSL errors \u003Cstrong>without touching any code\u003C\u002Fstrong>. Activate Force SSL and everything will be set and SSL enabled. The entire site will move to HTTPS using your SSL certificate. It works with any SSL certificate. It can be free SSL certificate from Let’s Encrypt or a paid SSL certificate.\u003C\u002Fp>\n\u003Cp>How to add SSL & enable SSL? Most hosting companies support the free SSL certificate from Let’s Encrypt, so login to your hosting panel and add SSL certificate. You’ll see a button labeled “Add SSL Certificate” or “Add Let’s Encrypt Certificate” and after that it’s 1 click to have the SSL enabled on your site with WP Force SSL. If that doesn’t work get \u003Ca href=\"https:\u002F\u002Fwpforcessl.com\u002F\" rel=\"nofollow ugc\">WP Force SSL PRO\u003C\u002Fa> and it’ll generate free SSL certificate for your site. And will regenerate SSL certificate every 90 days.\u003C\u002Fp>\n\u003Cp>Access WP Force SSL settings via the main Settings menu -> WP Force SSL.\u003C\u002Fp>\n\u003Ch4>SSL Tests available in the plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>is site on localhost?\u003C\u002Fli>\n\u003Cli>check SSL certificate\u003C\u002Fli>\n\u003Cli>check SSL certificate expiry date\u003C\u002Fli>\n\u003Cli>is latest version of Force SSL used?\u003C\u002Fli>\n\u003Cli>are known incompatible SSL plugins active?\u003C\u002Fli>\n\u003Cli>is WP address URL set for SSL?\u003C\u002Fli>\n\u003Cli>is WP home URL set for SSL?\u003C\u002Fli>\n\u003Cli>is SSL monitoring enabled (pro feature)\u003C\u002Fli>\n\u003Cli>is HTTPS redirection working?\u003C\u002Fli>\n\u003Cli>is file redirection working (pro feature)\u003C\u002Fli>\n\u003Cli>is HSTS enabled?\u003C\u002Fli>\n\u003Cli>check mixed-content issue (pro feature)\u003C\u002Fli>\n\u003Cli>is htaccess available & writable?\u003C\u002Fli>\n\u003Cli>is 404 redirection enabled (pro feature)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Settings\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>redirect HTTP to HTTPS\u003C\u002Fli>\n\u003Cli>fix mixed-content (pro)\u003C\u002Fli>\n\u003Cli>enable HSTS\u003C\u002Fli>\n\u003Cli>force secure cookies (pro)\u003C\u002Fli>\n\u003Cli>cross-site scripting protection (pro)\u003C\u002Fli>\n\u003Cli>expect CT header\u003C\u002Fli>\n\u003Cli>X-Frame options\u003C\u002Fli>\n\u003Cli>show WP Force SSL menu in admin bar\u003C\u002Fli>\n\u003Cli>show WP Force SSL widget in admin dashboard\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>SSL certificate testing tool\u003C\u002Fh4>\n\u003Cp>WP Force SSL comes with an SSL certificate testing tool. It tests if the SSL certificate is valid, properly installed & up-to date.\u003C\u002Fp>\n\u003Ch4>Need support?\u003C\u002Fh4>\n\u003Cp>We’re here for you! Things get frustrating when they don’t work so make sure you \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-force-ssl\u002F\" rel=\"ugc\">open a support topic\u003C\u002Fa> in the official Force SSL forum. We answer all questions within a few hours!\u003C\u002Fp>\n\u003Ch4>External Assets\u003C\u002Fh4>\n\u003Cp>A big thank you to \u003Ca href=\"https:\u002F\u002Fsweetalert2.github.io\u002F\" rel=\"nofollow ugc\">SweetAlert2\u003C\u002Fa> authors which we use to make alerts nicer. And to \u003Ca href=\"https:\u002F\u002Fdepositphotos.com\u002F248496280\u002Fstock-illustration-online-payment-protection-system-concept.html\" rel=\"nofollow ugc\">DepositPhotos\u003C\u002Fa> for the lovely header image.\u003C\u002Fp>\n","Enable SSL & HTTPS redirect with 1 click! Add SSL certificate & WP Force SSL to redirect site from HTTP to HTTPS & fix SSL errors.",90000,1746375,94,"2025-12-03T20:17:00.000Z","4.6",[96,97,116,19,134],"ssl-certificate","https:\u002F\u002Fwpforcessl.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-force-ssl.1.68.zip",1,"2024-06-07 00:00:00",{"attackSurface":140,"codeSignals":170,"taintFlows":184,"riskAssessment":185,"analyzedAt":197},{"hooks":141,"ajaxHandlers":166,"restRoutes":167,"shortcodes":168,"cronEvents":169,"entryPointCount":13,"unprotectedCount":13},[142,148,153,158,162],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","redirect_canonical","fix_redirect_loop","modules\\model\\redirect-fixture.php",49,{"type":143,"name":149,"callback":150,"file":151,"line":152},"admin_menu","define_menus","modules\\view\\menus.php",50,{"type":143,"name":154,"callback":155,"file":156,"line":157},"admin_init","update_settings","sakura-rs-ssl.php",92,{"type":143,"name":159,"callback":160,"file":156,"line":161},"admin_notices","admin_alert",142,{"type":143,"name":163,"callback":164,"file":156,"line":165},"admin_enqueue_scripts","admin_scripts",155,[],[],[],[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":182,"externalRequests":13,"nonceChecks":137,"capabilityChecks":13,"bundledLibraries":183},[],{"prepared":13,"raw":13,"locations":173},[],{"escaped":13,"rawEcho":56,"locations":175},[176,180],{"file":177,"line":178,"context":179},"modules\\view\\components.php",53,"raw output",{"file":156,"line":181,"context":179},123,4,[],[],{"summary":186,"deductions":187},"The \"sakura-rs-wp-ssl\" v1.4.0 plugin exhibits a strong security posture in several key areas, notably a complete absence of known vulnerabilities and a clean slate in taint analysis. The static analysis reveals no apparent attack surface through common WordPress entry points like AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, the code demonstrates responsible SQL query handling by exclusively using prepared statements and includes a nonce check, indicating an effort to prevent common cross-site request forgery attacks. However, the analysis also highlights significant concerns. The plugin performs file operations which, without proper validation or sanitization, could be a vector for directory traversal or arbitrary file operations. A critical weakness lies in the complete lack of output escaping. This means any data displayed to users, particularly if it originates from user input or external sources, is vulnerable to cross-site scripting (XSS) attacks. The absence of capability checks and unprotected entry points (though reported as zero, the lack of explicit checks on the file operations is a concern) suggests that certain operations might not be adequately protected against unauthorized access.",[188,191,194],{"reason":189,"points":190},"Output is not properly escaped",8,{"reason":192,"points":193},"File operations without explicit auth checks",7,{"reason":195,"points":196},"No capability checks",5,"2026-03-16T17:17:24.259Z",{"wat":199,"direct":208},{"assetPaths":200,"generatorPatterns":203,"scriptPaths":204,"versionParams":205},[201,202],"\u002Fwp-content\u002Fplugins\u002Fsakura-rs-wp-ssl\u002Fclient\u002Fjs\u002Friot.min.js","\u002Fwp-content\u002Fplugins\u002Fsakura-rs-wp-ssl\u002Fclient\u002Fjs\u002Ftags.js",[],[201,202],[206,207],"sakura-rs-wp-ssl\u002Fclient\u002Fjs\u002Friot.min.js?ver=","sakura-rs-wp-ssl\u002Fclient\u002Fjs\u002Ftags.js?ver=",{"cssClasses":209,"htmlComments":210,"htmlAttributes":211,"restEndpoints":212,"jsGlobals":213,"shortcodeOutput":215},[],[],[],[],[214],"riot",[]]