[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYztrsfGkpoPHRl8gVao5kxV7wllWG2mYpL_ll7MSeIw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":143,"fingerprints":194},"see-attachments","See attachments","1.5.4","ramon fincken","https:\u002F\u002Fprofiles.wordpress.org\u002Framon-fincken\u002F","\u003Cp>Shows all attachments for a post or page in a box on the edit page. Supports all custom post types.\u003C\u002Fp>\n\u003Cp>Images by: \u003Ca href=\"http:\u002F\u002F24charlie.deviantart.com\u002Fart\u002FBlack-Pearl-Files-78798192\" rel=\"nofollow ugc\">24charlie.deviantart.com\u003C\u002Fa>\u003Cbr \u002F>\n\u003Cbr \u002F>Coding by: \u003Ca href=\"https:\u002F\u002Fwww.mijnpress.nl\" rel=\"nofollow ugc\">MijnPress.nl\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002F#!\u002Framonfincken\" rel=\"nofollow ugc\">Twitter profile\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Framon-fincken\u002F\" rel=\"nofollow ugc\">More plugins\u003C\u002Fa>\u003C\u002Fp>\n","Shows all attachments for a post or page in a box on the edit page. Supports all custom post types.",20,6804,0,"2023-01-10T07:42:00.000Z","4.9.29","3.0","",[19,20,21,22,23],"attach","attachment","page","post","see","https:\u002F\u002Fwww.mijnpress.nl","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsee-attachments.1.5.4.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"ramon-fincken",12,4510,91,249,73,"2026-04-05T02:02:53.773Z",[39,59,79,101,122],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":16,"requires_php":17,"tags":53,"homepage":56,"download_link":57,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"attachments","Attachments","3.5.11","Jon Christopher","https:\u002F\u002Fprofiles.wordpress.org\u002Fjchristopher\u002F","\u003Cp>\u003Cstrong>Extensive\u003C\u002Fstrong> usage instructions are \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjchristopher\u002Fattachments\u002F#attachments\" rel=\"nofollow ugc\">available on GitHub\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Attachments allows you to simply append any number of items from your WordPress Media Library to Posts, Pages, and Custom Post Types.\u003C\u002Fp>\n\u003Ch4>Associate Media items with posts\u003C\u002Fh4>\n\u003Cp>The idea behind Attachments is to give developers the ability to directly associate Media items with any post. This is accomplished by adding a meta box to post edit screens as determined by the developer. Once Media items have been associated with a post, you’re able to retrieve those Attachments and include them directly within your template files using any specific markup you wish.\u003C\u002Fp>\n\u003Ch4>Integrate Attachments within your theme with fine grained control\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Attachments does not automatically integrate itself with your theme.\u003C\u002Fstrong> Since the idea behind Attachments is to allow integration of Media within posts using developer-crafted, unique markup, \u003Cem>it’s up to you to integrate with your theme\u003C\u002Fem>. The most basic integration includes editing the \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTemplate_Hierarchy\" rel=\"nofollow ugc\">appropriate template file\u003C\u002Fa> and adding your call(s) to Attachments. For example, if you have set up Attachments to be used with your Posts entries, edit \u003Ccode>single.php\u003C\u002Fcode> to include the following within The Loop:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php $attachments = new Attachments( 'attachments' ); \u002F* pass the instance name *\u002F ?>\n\u003C?php if( $attachments->exist() ) : ?>\n  \u003Ch3>Attachments\u003C\u002Fh3>\n  \u003Cp>Total Attachments: \u003C?php echo $attachments->total(); ?>\u003C\u002Fp>\n  \u003Cul>\n    \u003C?php while( $attachments->get() ) : ?>\n      \u003Cli>\n        ID: \u003C?php echo $attachments->id(); ?>\u003Cbr \u002F>\n        Type: \u003C?php echo $attachments->type(); ?>\u003Cbr \u002F>\n        Subtype: \u003C?php echo $attachments->subtype(); ?>\u003Cbr \u002F>\n        URL: \u003C?php echo $attachments->url(); ?>\u003Cbr \u002F>\n        Image: \u003C?php echo $attachments->image( 'thumbnail' ); ?>\u003Cbr \u002F>\n        Source: \u003C?php echo $attachments->src( 'full' ); ?>\u003Cbr \u002F>\n        Size: \u003C?php echo $attachments->filesize(); ?>\u003Cbr \u002F>\n        Title Field: \u003C?php echo $attachments->field( 'title' ); ?>\u003Cbr \u002F>\n        Caption Field: \u003C?php echo $attachments->field( 'caption' ); ?>\n      \u003C\u002Fli>\n    \u003C?php endwhile; ?>\n  \u003C\u002Ful>\n\u003C?php endif; ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>That snippet will request all of the existing Attachments defined for the current Post within The Loop, and retrieve each itemized property for that Attachment. Using the provided details you’re able to integrate the attached Media items in any way you please.\u003C\u002Fp>\n\u003Cp>There is a lot more information on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjchristopher\u002Fattachments\" rel=\"nofollow ugc\">Attachments’ GitHub page\u003C\u002Fa>. Please contribute!\u003C\u002Fp>\n\u003Ch3>Roadmap\u003C\u002Fh3>\n\u003Cp>Please see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjchristopher\u002Fattachments\u002Fblob\u002Fmaster\u002Fdocs\u002Froadmap.md\" rel=\"nofollow ugc\">Attachments on GitHub\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Extensive\u003C\u002Fstrong> usage instructions are \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjchristopher\u002Fattachments\u002Fblob\u002Fmaster\u002Fdocs\u002Fusage.md\" rel=\"nofollow ugc\">available on GitHub\u003C\u002Fa>\u003C\u002Fp>\n","Attachments allows you to simply append any number of items from your WordPress Media Library to Posts, Pages, and Custom Post Types",9000,281160,96,53,"2025-12-30T15:11:00.000Z","6.9.4",[20,21,54,55,22],"pdf","picture","https:\u002F\u002Fgithub.com\u002Fjchristopher\u002Fattachments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fattachments.3.5.11.zip",100,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":58,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":77,"download_link":78,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"autoremove-attachments","Autoremove Attachments","1.3.1","Polygon Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fpolygonthemes\u002F","\u003Cp>Autoremove Attachments helps you keep the Media Library clean by deleting all media files attached as child attachments to a post, page, or custom post type when the parent is deleted.\u003C\u002Fp>\n\u003Cp>By default, when you delete content from your website, regardless if it’s a post, a page, a product, or any kind of post type, WordPress keeps the media files previously associated with it, even if after the removal of your content they are not used anywhere else.\u003C\u002Fp>\n\u003Cp>Autoremove Attachments tries to solve this problem by automating the removal of all media files that have a child-parent relationship with the removed content. (so you don’t have to manually track and remove orphan files left on your server)\u003C\u002Fp>\n\u003Ch3>Important Considerations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>A soft delete that places your post, page, or custom post type in Trash will not trigger the removal of its child attachments. The purge happens when you empty your trash.\u003C\u002Fli>\n\u003Cli>When you delete a post, page or custom post type, we try to determine if its child attachments are used anywhere else on your website. If they are, we do not remove them, to prevent broken links.\u003C\u002Fli>\n\u003Cli>The additional checks before the automatic removal can be disabled from the Media Settings for improved performance on large websites with thousands of posts and media files.\u003C\u002Fli>\n\u003Cli>The plugin only removes files tracked by WordPress. Some poorly coded themes generate additional thumbnail sizes that are not tracked by WordPress and this always leads to orphan files left on your server.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Compatibility and Third-Party Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-digital-downloads\" rel=\"ugc\">Easy Digital Downloads\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>All themes and plugins that do things the WordPress way\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you use a plugin to optimize and clean your database of revisions, trashed posts, etc, make sure you use one that relies on native WordPress functions to perform the maintenance tasks. We recommend \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-sweep\" rel=\"ugc\">WP-Sweep\u003C\u002Fa>.\u003C\u002Fp>\n","Remove child attachments when parent post, page or custom post type is deleted.",3000,34470,15,"2023-08-12T00:30:00.000Z","6.3.8","5.8","7.4",[20,75,76,21,22],"custom-post-type","media","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fautoremove-attachments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautoremove-attachments.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":58,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":98,"download_link":99,"security_score":100,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"auto-attachments-cleaner","Auto Attachments Cleaner","1.0.4","Stefano","https:\u002F\u002Fprofiles.wordpress.org\u002Fstefacchio\u002F","\u003Cp>Automatically deletes attachments (images, videos, files etc…) linked to a page, post or custom post type when it is deleted.\u003Cbr \u002F>\nSupport Woo Commerce and all plugins that support Custom Post Types.\u003C\u002Fp>\n\u003Cp>This plugin deletes also relative thumbnails of images.\u003C\u002Fp>\n\u003Cp>Goodbye junk, orphaned and forgotten files clogging up server space over time!\u003C\u002Fp>\n\u003Ch4>Author Plugin Website\u003C\u002Fh4>\n\u003Cp>Here you can find other premium plugins:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.stefanofattori.it\u002Fwordpress\u002Fplugins\u002F\" rel=\"nofollow ugc\">Stefano Fattori – WordPress Plugins\u003C\u002Fa>\u003C\u002Fp>\n","Automatically deletes attachments on post delete",70,1227,3,"2025-03-01T17:45:00.000Z","6.7.5","5.0","7.0",[40,95,76,96,97],"custom-posts-type","pages","posts","https:\u002F\u002Fwww.stefanofattori.it\u002Fwordpress\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-attachments-cleaner.1.0.4.zip",92,{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":58,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":17,"tags":115,"homepage":120,"download_link":121,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"all-round-order","All Round Order","1.1.0","WebuddySoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fitsjinlie\u002F","\u003Cp>This plugin let you order all items(pages, posts, custom post types and attachments) easily by using a drag and drop sortable javascript.\u003C\u002Fp>\n\u003Cp>No configuration is necessary.\u003C\u002Fp>\n","Order all items(Pages, Posts, Custom Post Types and attachments) easily with a drag and drop feature",40,4713,1,"2015-02-10T01:43:00.000Z","4.1.0","3.6",[116,117,118,119],"attachment-order","custom-post-type-order","page-order","post-order","http:\u002F\u002Fstore.webuddysoft.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fall-round-order.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":109,"downloaded":130,"rating":58,"num_ratings":111,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":134,"tags":135,"homepage":141,"download_link":142,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"peps-media-seo","PEPS Media SEO Simple","3.11","peps23","https:\u002F\u002Fprofiles.wordpress.org\u002Fpeps23\u002F","\u003Cp>PEPS Media SEO Simple, some features:\u003Cbr \u002F>\n– The plugin is totally free and has no paid or pro-version. You can use it to the max!\u003Cbr \u002F>\n– Very lightweight, just +\u002F-15kb of code.\u003Cbr \u002F>\n– This plugin adds features that WordPress or themes often lack by default.\u003Cbr \u002F>\n– Edit the title and description tag of any post or page.\u003Cbr \u002F>\n– Set a social share image from your media library.\u003Cbr \u002F>\n– Adds Twitter card tags.\u003Cbr \u002F>\n– Open Graph Protocol tags are automatically generated for each page or post, based on the information you enter. Like OG: title, description, share image, url, alt tags etc.\u003Cbr \u002F>\n– If you are an admin it lets you add custom code to the header, after body open and footer sections of each page.\u003Cbr \u002F>\n– Thus you can easily add custom CSS or JavaScript, Google Analytics, Tag Manager code or some third party code.\u003Cbr \u002F>\n– Set a single page or post to ‘noindex’ so search engines won’t show that page or post in the search results.\u003Cbr \u002F>\n– Option to disable Attachment Pages (from WP 6.4).\u003Cbr \u002F>\n– Option to disable the ‘user’, ‘author’, ‘category’, ‘tags’, ‘testemonial’ sitemaps.\u003Cbr \u002F>\n– Option to include the sitemaps of your website’s translations into the main sitemap.\u003Cbr \u002F>\n– Ooptin to exclude a specific page or post from the sitemap.\u003Cbr \u002F>\n– Option to disable author pages.\u003Cbr \u002F>\n– A [year] shortcode is available, so you can easily display the current year anywhere.\u003Cbr \u002F>\n– You can also use shortcodes in the title and meta description fields.\u003C\u002Fp>\n","Set a custom page\u002Fpost title, description and social share image. Adds OG Meta tags and Twitter card tags automatically. Add custom code to header, bo &hellip;",4177,"2023-11-13T15:00:00.000Z","6.4.8","3.3","5.6",[136,137,138,139,140],"disable-attachment-pages","og-meta","page-title","post-title","seo","https:\u002F\u002Fpepsmedia.nl\u002Fplugins\u002Fpeps-media-seo\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpeps-media-seo.3.11.zip",{"attackSurface":144,"codeSignals":161,"taintFlows":187,"riskAssessment":188,"analyzedAt":193},{"hooks":145,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":13,"unprotectedCount":13},[146,152],{"type":147,"name":148,"callback":149,"priority":150,"file":151,"line":50},"filter","plugin_row_meta","addPluginContent_",10,"see-attachments.php",{"type":153,"name":154,"callback":155,"file":151,"line":156},"action","add_meta_boxes","plugin_see_attachments_add_custom_box",120,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":111,"bundledLibraries":186},[],{"prepared":13,"raw":13,"locations":164},[],{"escaped":13,"rawEcho":166,"locations":167},8,[168,172,174,176,178,180,182,184],{"file":169,"line":170,"context":171},"mijnpress_plugin_framework.php",132,"raw output",{"file":169,"line":173,"context":171},242,{"file":169,"line":175,"context":171},269,{"file":151,"line":177,"context":171},72,{"file":151,"line":179,"context":171},97,{"file":151,"line":181,"context":171},98,{"file":151,"line":183,"context":171},99,{"file":151,"line":185,"context":171},107,[],[],{"summary":189,"deductions":190},"The 'see-attachments' plugin v1.5.4 exhibits a strong security posture in several key areas. The absence of known CVEs and a clean vulnerability history indicate a well-maintained and secure plugin. The code analysis reveals no dangerous functions, raw SQL queries, file operations, or external HTTP requests, which are common sources of vulnerabilities.  Furthermore, the plugin uses prepared statements for its SQL queries and has a capability check in place.\n\nHowever, there are significant concerns regarding output escaping.  With 100% of its outputs unescaped, this presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is displayed by the plugin without proper sanitization could be exploited.  While the attack surface is minimal and there are no critical taint flows or unsanitized paths identified, the lack of output escaping is a critical flaw that needs immediate attention. The plugin's strengths lie in its clean history and lack of exploitable code patterns, but the pervasive output escaping issue significantly undermines its overall security.",[191],{"reason":192,"points":69},"100% of outputs are unescaped","2026-03-16T22:58:36.915Z",{"wat":195,"direct":201},{"assetPaths":196,"generatorPatterns":198,"scriptPaths":199,"versionParams":200},[197],"\u002Fwp-content\u002Fplugins\u002Fsee-attachments\u002Fimages\u002F",[],[],[],{"cssClasses":202,"htmlComments":203,"htmlAttributes":205,"restEndpoints":207,"jsGlobals":208,"shortcodeOutput":209},[],[204],"\u003C!-- end div for attachment -->",[206],"style",[],[],[]]