[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHAgG_X_nUo7c_Z8qhcGLnW9nUn5NpSyDQrQbS07lIpY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":17,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":141,"fingerprints":222},"searchreplace","searchReplace","1.2.2","Joost","https:\u002F\u002Fprofiles.wordpress.org\u002Fjberculo\u002F","\u003Cp>Ever annoyed when you had to add that same opening sentence or image to a blogpost for the gazzilionth time? Or always wanted to have an easy way to insert youtube video’s to your site?\u003Cbr \u002F>\nDespair no more, now there is searchReplace. Well, there probably are a number of similar plugins, but this one is different: it is mine. 🙂\u003C\u002Fp>\n\u003Cp>The plugin makes it possible to search for certain texts and replace them, in both comments and posts. It does not alter your database contents.\u003Cbr \u002F>\nFor example, you could add the string “[topicimage]” to searchReplace and replace that with your default image tag.\u003Cbr \u002F>\nWhen changing your default image you only have to change the searchReplace item to change it site wide!\u003C\u002Fp>\n\u003Cp>The plugin supports regular expressions as well, which makes it possible to do url replacements, or other more advanced search and replace commands.\u003C\u002Fp>\n\u003Cp>Uses: Implementing BBcode (pre configured), replace foul language, easy YouTube insertion (pre configured) etc.\u003C\u002Fp>\n\u003Cp>It has the following features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easily add, edit and delete rules\u003C\u002Fli>\n\u003Cli>simple search and replace option\u003C\u002Fli>\n\u003Cli>regular expression search and replace option\u003C\u002Fli>\n\u003Cli>apply rules to comments, posts or both at once\u003C\u002Fli>\n\u003Cli>Pre installed with BBcode (minus smilies and tables) http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FBBCode\u003C\u002Fli>\n\u003C\u002Ful>\n","SearchReplace checks for and replaces content in your posts, pages and\u002For comments. Fully configurable.",20,4559,0,"2024-12-31T17:50:00.000Z","6.7.5","2.9.1","",[19,20,21,22,23],"comments","posts","regular-expression","replace","search","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearchreplace.1.2.2.zip",92,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":32,"trust_score":34,"computed_at":35},"jberculo",2,30,96,91,"2026-04-05T04:27:36.509Z",[37,59,78,96,120],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"search-regex","Search Regex","3.4.1","John Godley","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnny5\u002F","\u003Cp>Search Regex adds a powerful set of search and replace functions to WordPress posts, pages, custom post types, and other data sources. These go beyond the standard searching capabilities, and allow you to search and replace almost any data stored on your site. In addition to simple searches you have the full power of PHP’s regular expressions at your disposal.\u003C\u002Fp>\n\u003Cp>You can use this to do things like:\u003Cbr \u002F>\n– Help migrate a site from one domain to another\u003Cbr \u002F>\n– Update URLs in links and images\u003Cbr \u002F>\n– Perform site-wide changes\u003C\u002Fp>\n\u003Cp>Search filters can be created to match any column of any WordPress table. For example:\u003Cbr \u002F>\n– Find all posts in a category\u003Cbr \u002F>\n– Find all post meta data without a post\u003Cbr \u002F>\n– Find all posts in a date range\u003C\u002Fp>\n\u003Cp>Search Regex handles small and large sites.\u003C\u002Fp>\n\u003Cp>Search Regex has been tested with PHP from 7.4 to 8.4.\u003C\u002Fp>\n\u003Ch3>What can I search?\u003C\u002Fh3>\n\u003Cp>You can search:\u003Cbr \u002F>\n– Posts\u003Cbr \u002F>\n– Pages\u003Cbr \u002F>\n– Any custom post type\u003Cbr \u002F>\n– Comments (including spam)\u003Cbr \u002F>\n– Users\u003Cbr \u002F>\n– Meta data\u003Cbr \u002F>\n– WordPress options\u003C\u002Fp>\n\u003Cp>Full regular expression support is provided, and you can capture data and use it in the replacement.\u003C\u002Fp>\n\u003Ch3>Actions\u003C\u002Fh3>\n\u003Cp>A variety of actions can be performed on matching results:\u003Cbr \u002F>\n– Modify and replace the result\u003Cbr \u002F>\n– Delete the result\u003Cbr \u002F>\n– Export to CSV and SQL\u003Cbr \u002F>\n– Perform custom PHP action\u003C\u002Fp>\n\u003Ch3>Modify and Replace Data\u003C\u002Fh3>\n\u003Cp>Results can be individually modified by clicking on the item to change, and using the popup modifier.\u003C\u002Fp>\n\u003Cp>Bulk modifications can be performed against all matching results.\u003C\u002Fp>\n\u003Cp>The types of modification depend on the data being changed:\u003Cbr \u002F>\n– Numbers can be added or subtracted to existing numbers\u003Cbr \u002F>\n– Hours, days, weeks, and months, can be added to dates\u003Cbr \u002F>\n– Tags and categories can be added, removed, and substitued\u003C\u002Fp>\n\u003Cp>Custom shortcodes are supported that allow dynamic data to be included:\u003Cbr \u002F>\n– Add the current date and time, in any format, to content\u003Cbr \u002F>\n– Insert data from other columns. For example, insert the category into the title\u003Cbr \u002F>\n– Transform existing data. For example, convert case, change underscores to dashes.\u003C\u002Fp>\n\u003Ch3>Example uses\u003C\u002Fh3>\n\u003Cp>Some ideas for potential uses:\u003Cbr \u002F>\n– Delete all comments that match a phrase\u003Cbr \u002F>\n– Add a category to all matching posts\u003Cbr \u002F>\n– Remove orphaned meta data\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Please submit bugs, patches, and feature requests to:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjohngodley\u002Fsearch-regex\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fjohngodley\u002Fsearch-regex\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Please submit translations to:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsearch-regex\" rel=\"nofollow ugc\">https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsearch-regex\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>Translations are provided by WordPress itself. You can update the translations by going to the Dashboard > Updates section of WP admin.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Full documentation can be found on the \u003Ca href=\"http:\u002F\u002Fsearchregex.com\u002F\" rel=\"nofollow ugc\">Search Regex\u003C\u002Fa> site.\u003C\u002Fp>\n","Search Regex adds a powerful set of search and replace functions to WordPress posts, pages, custom post types, and other data.",100000,2391051,94,97,"2026-02-28T15:49:00.000Z","6.9.4","6.5","7.4",[54,55,21,22,23],"database","regex","https:\u002F\u002Fsearchregex.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-regex.3.4.1.zip",100,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":13,"num_ratings":13,"last_updated":69,"tested_up_to":70,"requires_at_least":70,"requires_php":17,"tags":71,"homepage":74,"download_link":75,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":77},"lj-user-ex","LJ user ex","0.2","melfa","https:\u002F\u002Fprofiles.wordpress.org\u002Fmelfa\u002F","\u003Cp>Replaces \u003Clj user=”username”\u002F> and \u003Clj comm=”community”\u002F> with correct HTML code. Like “LJ user” plugin, but supports both \u003Clj user=”username”\u002F> and \u003Clj user=”username”> forms, plus communities.\u003C\u002Fp>\n","Replaces \u003Clj user=\"username\"\u002F> and \u003Clj comm=\"community\"\u002F> with correct HTML code.",10,2375,"2008-03-23T18:47:00.000Z","2.3.3",[19,72,73,20,22],"links","livejournal","http:\u002F\u002Felfimov.com\u002Flj-user-ex\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flj-user-ex.zip",85,"2026-03-15T14:54:45.397Z",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":17,"short_description":84,"active_installs":67,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":17,"tested_up_to":88,"requires_at_least":17,"requires_php":17,"tags":89,"homepage":93,"download_link":94,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":95},"seo-comment-paging","SEO Comment Paging","1.0","William Henostroza","https:\u002F\u002Fprofiles.wordpress.org\u002Fwihe\u002F","El objetivo de este plugin es mejorar el posicionamiento de buscadores colocando las etiquetas meta noindex y nofollow en la paginacion de comentarios (disponibles en WordPress 2.7+) evitando de esta manera el duplicado de contenidos, se aplica a todas las paginas individuales de nuestro blog.",4000,80,1,"2.7",[90,19,20,91,92],"comment","search-engine-optimization","seo","http:\u002F\u002Fwww.wihe.net\u002Fseo-evitar-contenido-duplicado-comentarios-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fseo-comment-paging.zip","2026-03-15T10:48:56.248Z",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":106,"num_ratings":107,"last_updated":108,"tested_up_to":50,"requires_at_least":109,"requires_php":17,"tags":110,"homepage":116,"download_link":117,"security_score":118,"vuln_count":31,"unpatched_count":13,"last_vuln_date":119,"fetched_at":27},"better-search-replace","Better Search Replace","1.4.10","WP Engine","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpengine\u002F","\u003Cp>When moving your WordPress site to a new domain or server, you will likely run into a need to run a search\u002Freplace on the database for everything to work correctly. Fortunately, there are several plugins available for this task, however, all have a different approach to a few key features. This plugin consolidates the best features from these plugins, incorporating the following features in one simple plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Serialization support for all tables\u003C\u002Fli>\n\u003Cli>The ability to select specific tables\u003C\u002Fli>\n\u003Cli>The ability to run a “dry run” to see how many fields will be updated\u003C\u002Fli>\n\u003Cli>No server requirements aside from a running installation of WordPress\u003C\u002Fli>\n\u003Cli>WordPress Multisite support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Time-saving features available in the Pro version:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View exactly what changed during a search\u002Freplace\u003C\u002Fli>\n\u003Cli>Backup and import the database while running a search\u002Freplace\u003C\u002Fli>\n\u003Cli>Priority email support from the developer of the plugin\u003C\u002Fli>\n\u003Cli>Save or load custom profiles for quickly repeating a search\u002Freplace in the future\u003C\u002Fli>\n\u003Cli>Support and updates for 1 year\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fbettersearchreplace.com\u002F\" rel=\"nofollow ugc\">Learn more about Better Search Replace Pro\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>The search and replace functionality is heavily based on interconnect\u002Fit’s great and open-source Search Replace DB script, modified to use WordPress native database functions to ensure compatibility.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Want to contribute?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Feel free to open an issue or submit a pull request on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdeliciousbrains\u002Fbetter-search-replace\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","A simple plugin to update URLs or other text in a database.",1000000,17311737,86,541,"2025-12-08T17:21:00.000Z","3.0.1",[111,112,113,114,115],"search-and-replace","search-replace","search-replace-database","update-database-urls","update-live-url","https:\u002F\u002Fbettersearchreplace.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-search-replace.1.4.10.zip",98,"2024-01-24 00:00:00",{"slug":111,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":45,"downloaded":127,"rating":106,"num_ratings":128,"last_updated":129,"tested_up_to":130,"requires_at_least":131,"requires_php":132,"tags":133,"homepage":137,"download_link":138,"security_score":139,"vuln_count":31,"unpatched_count":13,"last_vuln_date":140,"fetched_at":27},"Search & Replace","3.2.3","WP Media","https:\u002F\u002Fprofiles.wordpress.org\u002Fwp_media\u002F","\u003Cp>With Search & Replace you can search for everything and replace this with everything \u003Cstrong>but before\u003C\u002Fstrong> you do this you can easily \u003Cstrong>create\u003C\u002Fstrong> a simple \u003Cstrong>database backup\u003C\u002Fstrong> and restore it.\u003C\u002Fp>\n\u003Cp>For avoiding problem please keep in mind that this plugin search and replace strictly what is specified in “Replace With”.\u003Cbr \u002F>\nCommon error example:\u003Cbr \u002F>\nSearch For: http:\u002F\u002Fweb.com\u002Fwordpress\u002F\u003Cbr \u002F>\nReplace With: http:\u002F\u002Fneuweb.com\u002Fwordpress\u003Cbr \u002F>\nThe url become something like: http:\u002F\u002Fneuweb.com\u002Fwordpresscontent\u002F…\u003C\u002Fp>\n\u003Cp>Correct “Replace with”:\u003Cbr \u002F>\nSearch For: http:\u002F\u002Fweb.com\u002Fwordpress\u002F\u003Cbr \u002F>\nReplace With: http:\u002F\u002Fneuweb.com\u002Fwordpress\u002F\u003Cbr \u002F>\nThe url become something like: http:\u002F\u002Fneuweb.com\u002Fwordpress\u002Fcontent\u002F…\u003C\u002Fp>\n\u003Cp>\u003Cstrong>We have implemented special features!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The first one is “Replace a Domain \u002F URL” that is useful for a quick and simple transfer or a migration of a WordPress site.\u003Cbr \u002F>\nThe second feature is full support for serialized data. There are a lot more features – check them out! 🙂\u003C\u002Fp>\n\u003Cp>Our goal with this plugin is to give you a good solution for manipulating your data for both Developers and Users of WordPress.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> This plugin requires PHP 5.6 or higher to be activated.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwp-media\u002Fsearch-and-replace\" rel=\"nofollow ugc\">\u003Cstrong>Checkout our GitHub Repository\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Search & replace data in your WordPress database\u003C\u002Fli>\n\u003Cli>Change domain\u002FURL of WordPress installation\u003C\u002Fli>\n\u003Cli>Handle serialized data\u003C\u002Fli>\n\u003Cli>Choose dry run or download SQL file\u003C\u002Fli>\n\u003Cli>Change table prefix\u003C\u002Fli>\n\u003Cli>Backup & restore your database\u003C\u002Fli>\n\u003Cli>WordPress Multisite support\u003C\u002Fli>\n\u003Cli>Localized and ready for your own language\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Crafted by WP Media\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Made by \u003Ca href=\"https:\u002F\u002Fwp-media.me\" rel=\"nofollow ugc\">WP Media\u003C\u002Fa>\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>Donation?\u003C\u002Fh4>\n\u003Cp>You want to donate – we prefer a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fsearch-and-replace?rate=5#postform\" rel=\"ugc\">positive review\u003C\u002Fa>, not more.\u003C\u002Fp>\n","Search & Replace data in your database with WordPress admin, replace domains\u002FURLs of your WordPress installation.",3178923,282,"2024-08-26T10:40:00.000Z","6.5.8","4.0","5.6",[134,135,22,23,136],"import","migrate","sql","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch-and-replace\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-and-replace.3.2.3.zip",87,"2024-07-11 00:00:00",{"attackSurface":142,"codeSignals":162,"taintFlows":176,"riskAssessment":204,"analyzedAt":221},{"hooks":143,"ajaxHandlers":158,"restRoutes":159,"shortcodes":160,"cronEvents":161,"entryPointCount":13,"unprotectedCount":13},[144,150,154],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_menu","searchReplace_add_option_page","searchReplace.php",208,{"type":145,"name":151,"callback":152,"file":148,"line":153},"the_content","searchReplaceContent",209,{"type":145,"name":155,"callback":156,"file":148,"line":157},"comment_text","searchReplaceComment",210,[],[],[],[],{"dangerousFunctions":163,"sqlUsage":168,"outputEscaping":170,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":175},[164],{"fn":165,"file":148,"line":166,"context":167},"unserialize",184,"$searchReplace_options = unserialize($searchReplaceInit);",{"prepared":13,"raw":13,"locations":169},[],{"escaped":13,"rawEcho":87,"locations":171},[172],{"file":148,"line":173,"context":174},145,"raw output",[],[177,195],{"entryPoint":178,"graph":179,"unsanitizedCount":87,"severity":194},"searchReplace_option_page (searchReplace.php:43)",{"nodes":180,"edges":191},[181,186],{"id":182,"type":183,"label":184,"file":148,"line":185},"n0","source","$_GET",136,{"id":187,"type":188,"label":189,"file":148,"line":173,"wp_function":190},"n1","sink","echo() [XSS]","echo",[192],{"from":182,"to":187,"sanitized":193},false,"medium",{"entryPoint":196,"graph":197,"unsanitizedCount":87,"severity":203},"\u003CsearchReplace> (searchReplace.php:0)",{"nodes":198,"edges":201},[199,200],{"id":182,"type":183,"label":184,"file":148,"line":185},{"id":187,"type":188,"label":189,"file":148,"line":173,"wp_function":190},[202],{"from":182,"to":187,"sanitized":193},"low",{"summary":205,"deductions":206},"The searchreplace plugin v1.2.2 exhibits a mixed security posture. On one hand, it shows strong adherence to secure coding practices by exclusively using prepared statements for SQL queries and demonstrating no known historical vulnerabilities (CVEs). The absence of a significant attack surface, including no AJAX handlers, REST API routes, shortcodes, or cron events, is also a positive indicator, reducing the potential for direct exploitation.\n\nHowever, the static analysis reveals critical weaknesses. The presence of the `unserialize` function, especially without any apparent capability or nonce checks, is a significant concern. This function is notoriously dangerous as it can lead to Remote Code Execution (RCE) if an attacker can control the data being unserialized. Furthermore, the taint analysis indicates two flows with unsanitized paths, although they are not classified as critical or high severity. The most alarming finding is that 100% of the output is not properly escaped, presenting a clear Cross-Site Scripting (XSS) risk.\n\nIn conclusion, while the plugin benefits from a small attack surface and a clean vulnerability history, the identified risks associated with `unserialize`, unsanitized taint flows, and particularly unescaped output represent substantial security concerns that require immediate attention. The lack of observed protection mechanisms like nonce and capability checks around dangerous functions amplifies these risks.",[207,210,213,216,219],{"reason":208,"points":209},"Dangerous function 'unserialize' used without apparent checks",15,{"reason":211,"points":212},"2 flows with unsanitized paths identified",6,{"reason":214,"points":215},"100% of output not properly escaped",8,{"reason":217,"points":218},"No nonce checks detected",5,{"reason":220,"points":218},"No capability checks detected","2026-03-16T22:48:58.622Z",{"wat":223,"direct":228},{"assetPaths":224,"generatorPatterns":225,"scriptPaths":226,"versionParams":227},[],[],[],[],{"cssClasses":229,"htmlComments":230,"htmlAttributes":231,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":234},[],[],[],[],[],[]]