[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3-WGpmyNlBa-jVC0twLGzVyvCyZ8W3JirCyCeU3HOv4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":137,"fingerprints":223},"simple-automatic-updates","Simple Automatic Updates","0.1.3","Jon Tejnung","https:\u002F\u002Fprofiles.wordpress.org\u002Fxpoon\u002F","\u003Cp>This plugin will give you three alternatives for managing your WordPress updates:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Update automatically\u003C\u002Fstrong> – This updates WordPress\u002Fthemes\u002Fplugins automatically and sends an email to the site admin when an update has been performed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Update automatically (no email)\u003C\u002Fstrong> – Same as the first alternative, but without the email.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Inform about updates once a week\u003C\u002Fstrong> – This will send an email to the admin once a week if there are anything that can be updated.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notice that only plugins\u002Fthemes that resides in the WordPress\u003Cbr \u002F>\nrepository will be updated\u002Finformed about.\u003C\u002Fp>\n\u003Cp>The plugin has not been tested and is not primarily made for multi site-installations.\u003C\u002Fp>\n","Activate automatic updates or weekly notifications for the site.",2000,22860,100,1,"2019-06-11T06:58:00.000Z","5.2.24","4.0","",[20,21,22,23],"auto","security","update","upgrade","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-automatic-updates.0.1.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"xpoon",30,84,"2026-04-05T01:34:59.701Z",[36,54,73,92,115],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":13,"downloaded":44,"rating":26,"num_ratings":26,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":52,"download_link":53,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"auto-update-wp-and-disable-e-mail-notifications","Automatic updates for WordPress without email notifications","1.1","Wilbrink Design","https:\u002F\u002Fprofiles.wordpress.org\u002Fwilbrinkdesign\u002F","\u003Cp>Due to security requirements it is very important to keep your WordPress site up-to-date. This plugin will auto update\u002Fupgrade WordPress Core, Themes, Plugins and Translations. Email notifications about WordPress updates will be disabled.\u003C\u002Fp>\n","Keep your WordPress site up-to-date and disable email notifications about WordPress updates.",3109,"2026-01-04T14:23:00.000Z","6.9.4","5.5","7.0",[50,51,22,23],"auto-update","auto-upgrade","https:\u002F\u002Fgithub.com\u002Fwilbrinkdesign\u002FWordPress\u002Ftree\u002Fmain\u002Fauto-update-wp-and-disable-e-mail-notifications","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-update-wp-and-disable-e-mail-notifications.1.1.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":32,"downloaded":62,"rating":26,"num_ratings":26,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":18,"tags":66,"homepage":71,"download_link":72,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"wpuppy","WPuppy","1.3.4.2","Sem Wong","https:\u002F\u002Fprofiles.wordpress.org\u002Fsem-wong\u002F","\u003Cp>WPuppy is software for automatically updating WordPress Plugins, Themes and Core.\u003Cbr \u002F>\nThis has been created especially for WordPress Developers and Designer Agencies.\u003C\u002Fp>\n\u003Cp>How does it work? WPuppy creates a backup and a snapshot, updates the components and creates another snapshot.\u003Cbr \u002F>\nThen it compares the websites based on the snapshots and functionalities. When all is OK, all is ready.\u003Cbr \u002F>\nWhen there is a difference, the website is rolled-back to its previous state and you are being informed about this.\u003C\u002Fp>\n\u003Cp>You stop wasting time on updating websites and can’t be taken off guard by failed updates.\u003Cbr \u002F>\nThis allows you to spend your time more effectively on creating added value for your clients, rather than fixing things!\u003C\u002Fp>\n\u003Cp>Go to \u003Ca href=\"http:\u002F\u002Fwww.wpuppy.com\u002F?utm_source=wordpress%20plugin%20directory\" rel=\"nofollow ugc\">WPuppy.com\u003C\u002Fa> to sign up for a free trial!\u003C\u002Fp>\n","WPuppy is software for automatically updating Wordpress Plugins, Themes and Core.",7049,"2018-06-26T08:08:00.000Z","4.8.28","3.7",[21,67,68,69,70],"update-plugins","updates","wordpress-auto-update","wordpress-update-services","http:\u002F\u002Fwww.wpuppy.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpuppy.1.3.4.2.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":13,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":18,"tags":87,"homepage":18,"download_link":91,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"svn-auto-upgrade","SVN Auto Upgrade","1.2","Modern Tribe, Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fmoderntribe\u002F","\u003Cp>Description: Hook into plugin and core upgrader to support SVN driven sites. Now you can freely use the WordPress auto upgrade features without worrying about the Subversion impact. Just upgrade in WordPress and then commit the changes in SVN.\u003C\u002Fp>\n\u003Cp>Additionally, this plugin displays the current SVN version in the footer of your admin panel and uses the SVN version to append to your CSS and Javascript embeds so that every time you update from SVN, your media files are cleared form cache.\u003C\u002Fp>\n\u003Cp>Requires that your system permissions allow shell_exec() to execute svn commands.\u003C\u002Fp>\n\u003Cp>Donate – if this is generating enough revenue to support our time it makes all the difference in the world\u003Cbr \u002F>\nhttps:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_s-xclick&hosted_button_id=7GVFAADMQ96WA\u003C\u002Fp>\n\u003Ch4>To Do\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Account for SVN externals\u003C\u002Fli>\n\u003Cli>Test to ensure the plugin is compatible with your server (that you can run exec svn commands)\u003C\u002Fli>\n\u003Cli>Build an auto commit option? Not sure if this is a good idea.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>It’s pretty straight forward. When you auto upgrade a plugin or the core, this plugin automatically svn adds and removes files appropriately. That way you can keep your entire WordPress install in SVN.\u003C\u002Fp>\n","Description: Hook into plugin and core upgrader to support SVN driven sites. Now you can freely use the WordPress auto upgrade features without worryi &hellip;",10,3025,2,"2012-02-26T13:39:00.000Z","3.3.2","3.0",[88,89,90,22,23],"autoupdate","subversion","svn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsvn-auto-upgrade.1.2.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":13,"num_ratings":102,"last_updated":103,"tested_up_to":46,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":110,"download_link":111,"security_score":112,"vuln_count":113,"unpatched_count":26,"last_vuln_date":114,"fetched_at":28},"mainwp-child","MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites","6.0.2","mainwp","https:\u002F\u002Fprofiles.wordpress.org\u002Fmainwp\u002F","\u003Cp>\u003Cstrong>The MainWP Child Plugin securely connects the WordPress sites you want to manage to the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp\u002F\" rel=\"ugc\">MainWP Dashboard\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The MainWP Child plugin creates a secure connection between your WordPress sites and your self-hosted MainWP Dashboard, enabling you to efficiently manage WP installations from a single, centralized location.\u003C\u002Fp>\n\u003Cp>With MainWP Child and the MainWP Dashboard, you can update themes, plugins, and WordPress core across all connected sites, perform backups and security scans, manage posts, pages, users, and comments in bulk, and integrate with popular plugins like WooCommerce, Yoast SEO, and Wordfence.\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp\u002F\" rel=\"ugc\">MainWP Dashboard\u003C\u002Fa> also offers features for cost tracking and client management, making it an all-in-one solution for agencies and freelancers looking to manage WP sites efficiently. The functionality can be further extended with a growing library of \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-add-ons\u002F\" rel=\"nofollow ugc\">MainWP Add-ons\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fmainwp.com\u002F\" rel=\"nofollow ugc\">MainWP\u003C\u002Fa> is the ideal solution for freelancers and agencies managing client sites, developers and designers working on multiple projects, marketers and content managers overseeing various websites, and anyone responsible for maintaining multiple WordPress sites.\u003C\u002Fp>\n\u003Ch4>Why Choose MainWP for WordPress Management?\u003C\u002Fh4>\n\u003Cp>MainWP is 100% free and open-source, with no monthly fees, even for unlimited sites.\u003C\u002Fp>\n\u003Cp>As a self-hosted solution, it offers maximum control and privacy. MainWP provides comprehensive site management features and is highly customizable with add-ons and developer hooks.  The MainWP Child plugin even comes with its own privacy policy to guarantee your \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-plugin-privacy-policy\u002F\" rel=\"nofollow ugc\">privacy while using MainWP\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>All of this makes MainWP the best non-SaaS alternative to ManageWP, InfiniteWP, WPRemote, and WP Umbrella.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>MainWP Child, combined with the MainWP Dashboard, offers secure management of unlimited WordPress sites, one-click updates for plugins, themes, and WordPress core, automated backups and security monitoring, bulk management of posts, pages, users, and comments, white-labeling and custom branding options, and \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fmainwp-add-ons\u002F\" rel=\"nofollow ugc\">powerful add-ons\u003C\u002Fa> for WooCommerce, Yoast SEO, Wordfence, and more.\u003C\u002Fp>\n\u003Ch4>Expand Your MainWP Dashboard with Add-ons\u003C\u002Fh4>\n\u003Cp>MainWP offers a growing library of add-ons that add advanced functionality to your Dashboard. From client reporting to SEO management, MainWP add-ons provide the tools you need to deliver top-notch service to your clients.\u003C\u002Fp>\n\u003Ch4>Join the MainWP Community\u003C\u002Fh4>\n\u003Cp>MainWP is more than just a plugin; it’s a thriving community of WordPress professionals. Join our \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002FMainWPUsers\u002F\" rel=\"nofollow ugc\">MainWP Users Facebook Group\u003C\u002Fa> to connect with other users, share advice, and stay updated on the latest features and add-ons.\u003C\u002Fp>\n\u003Ch4>Developer-Friendly\u003C\u002Fh4>\n\u003Cp>MainWP is built with developers in mind. We provide extensive documentation, hooks, and an API to help you create custom extensions and integrations for the MainWP platform.  We have a site at \u003Ca href=\"https:\u002F\u002Fmainwp.dev\" rel=\"nofollow ugc\">MainWP.dev\u003C\u002Fa> dedicated to MainWP developers.\u003C\u002Fp>\n\u003Ch4>Get Started with MainWP Today\u003C\u002Fh4>\n\u003Cp>Take control of your WordPress site management with MainWP and the MainWP Child plugin. With its powerful features, unlimited site connections, and user-friendly interface, MainWP is the smart choice for anyone managing multiple WordPress sites.\u003C\u002Fp>\n\u003Ch4>Learn More About MainWP\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmainwp.com\" rel=\"nofollow ugc\">MainWP Website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fkb\u002F\" rel=\"nofollow ugc\">MainWP Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcommunity.mainwp.com\u002Fc\u002Fsupport\u002Fmainwp-support\u002F\" rel=\"nofollow ugc\">MainWP Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fblog\u002F\" rel=\"nofollow ugc\">MainWP Blog\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmainwp\u002F\" rel=\"nofollow ugc\">MainWP on GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","MainWP Child establishes a secure link between your WordPress sites and your self-hosted MainWP Dashboard, simplifying site management.",700000,40485018,70,"2026-03-10T15:46:00.000Z","6.2","7.4",[107,108,21,109,22],"backups","monitoring","site-management","https:\u002F\u002Fmainwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmainwp-child.6.0.2.zip",91,7,"2024-12-12 00:00:00",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":46,"requires_at_least":128,"requires_php":18,"tags":129,"homepage":133,"download_link":134,"security_score":135,"vuln_count":113,"unpatched_count":26,"last_vuln_date":136,"fetched_at":28},"iwp-client","InfiniteWP Client","1.13.5","revmakx","https:\u002F\u002Fprofiles.wordpress.org\u002Frevmakx\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Finfinitewp.com\u002F\" title=\"Manage Multiple WordPress\" rel=\"nofollow ugc\">InfiniteWP\u003C\u002Fa> allows users to manage unlimited number of WordPress sites from their own server.\u003C\u002Fp>\n\u003Cp>Main features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Self-hosted system: Resides on your own server and totally under your control\u003C\u002Fli>\n\u003Cli>One-click updates for WordPress, plugins and themes across all your sites\u003C\u002Fli>\n\u003Cli>Instant backup and restore your entire site or just the database\u003C\u002Fli>\n\u003Cli>One-click access to all WP admin panels\u003C\u002Fli>\n\u003Cli>Bulk Manage plugins & themes: Activate & Deactive multiple plugins & themes on multiple sites simultaneously\u003C\u002Fli>\n\u003Cli>Bulk Install plugins & themes in multiple sites at once\u003C\u002Fli>\n\u003Cli>and more..\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit us at \u003Ca href=\"https:\u002F\u002Finfinitewp.com\u002F\" title=\"Manage Multiple WordPress\" rel=\"nofollow ugc\">InfiniteWP.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Check out the \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=s35ZoW95cnU\" rel=\"nofollow ugc\">InfiniteWP Overview Video\u003C\u002Fa> below.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fs35ZoW95cnU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Credits: \u003Ca href=\"http:\u002F\u002Fprelovac.com\u002Fvladimir\" rel=\"nofollow ugc\">Vladimir Prelovac\u003C\u002Fa> for his worker plugin on which the client plugin is being developed.\u003C\u002Fp>\n","Install this plugin on unlimited sites and manage them all from a central dashboard. This plugin communicates with your InfiniteWP Admin Panel.",200000,8204351,88,177,"2026-02-26T10:35:00.000Z","3.1",[130,131,132,21,68],"backup","multi-site","multiple-admin","http:\u002F\u002Finfinitewp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fiwp-client.1.13.5.zip",90,"2025-01-07 00:00:00",{"attackSurface":138,"codeSignals":201,"taintFlows":211,"riskAssessment":212,"analyzedAt":222},{"hooks":139,"ajaxHandlers":195,"restRoutes":196,"shortcodes":197,"cronEvents":198,"entryPointCount":26,"unprotectedCount":26},[140,146,150,153,156,159,161,164,169,172,174,176,178,180,181,182,187,191],{"type":141,"name":142,"callback":143,"file":144,"line":145},"filter","allow_dev_auto_core_updates","__return_false","sau-automatic-mode.class.php",21,{"type":141,"name":147,"callback":148,"file":144,"line":149},"allow_minor_auto_core_updates","__return_true",22,{"type":141,"name":151,"callback":148,"file":144,"line":152},"allow_major_auto_core_updates",23,{"type":141,"name":154,"callback":148,"file":144,"line":155},"auto_update_plugin",24,{"type":141,"name":157,"callback":148,"file":144,"line":158},"auto_update_theme",25,{"type":141,"name":160,"callback":143,"file":144,"line":32},"auto_core_update_send_email",{"type":141,"name":162,"callback":143,"file":144,"line":163},"send_core_update_notification_email",31,{"type":165,"name":166,"callback":167,"priority":81,"file":144,"line":168},"action","upgrader_process_complete","sau_upgrader_process_complete",38,{"type":141,"name":142,"callback":143,"file":170,"line":171},"sau-manual-mode.class.php",14,{"type":141,"name":147,"callback":143,"file":170,"line":173},15,{"type":141,"name":151,"callback":143,"file":170,"line":175},16,{"type":141,"name":154,"callback":143,"file":170,"line":177},17,{"type":141,"name":157,"callback":143,"file":170,"line":179},18,{"type":141,"name":160,"callback":143,"file":170,"line":152},{"type":141,"name":162,"callback":143,"file":170,"line":155},{"type":165,"name":183,"callback":184,"file":185,"line":186},"plugins_loaded","sau_load_textdomain","simple-automatic-updates.php",86,{"type":165,"name":188,"callback":189,"file":185,"line":190},"sau_check_updates","sau_cron_check",161,{"type":165,"name":192,"callback":193,"file":185,"line":194},"admin_init","sau_custom_options",182,[],[],[],[199],{"hook":188,"callback":188,"file":185,"line":200},108,{"dangerousFunctions":202,"sqlUsage":203,"outputEscaping":205,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":210},[],{"prepared":26,"raw":26,"locations":204},[],{"escaped":14,"rawEcho":14,"locations":206},[207],{"file":185,"line":208,"context":209},227,"raw output",[],[],{"summary":213,"deductions":214},"The \"simple-automatic-updates\" plugin, version 0.1.3, presents a generally good security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, or shortcodes significantly limits its attack surface. Furthermore, the code demonstrates a strong commitment to secure coding practices by utilizing prepared statements for all SQL queries and performing file operations. The lack of external HTTP requests also mitigates potential risks associated with compromised external services. \n\nHowever, there are notable areas for improvement. The plugin has a complete lack of capability checks and nonce checks. While there are no direct entry points identified as unprotected, the absence of these fundamental WordPress security mechanisms means that any newly introduced functionality, even if not immediately apparent as an attack vector, could be exploited by authenticated users without proper authorization. The 50% rate of improperly escaped output, though applied to only two outputs, indicates a potential for Cross-Site Scripting (XSS) vulnerabilities if these outputs are user-controllable. The plugin's vulnerability history is clean, with no recorded CVEs, which is a positive indicator. \n\nIn conclusion, while the plugin benefits from a small attack surface and secure database interactions, the complete absence of capability and nonce checks, coupled with unescaped output, represents a significant weakness. This suggests that while the plugin is currently not a known target for zero-day exploits, it is not hardened against potential privilege escalation or XSS attacks, especially if future updates introduce new features or expose existing ones more broadly. Addressing these points would substantially improve its security.",[215,217,219],{"reason":216,"points":173},"Missing capability checks",{"reason":218,"points":173},"Missing nonce checks",{"reason":220,"points":221},"Unescaped output",4,"2026-03-16T18:36:24.562Z",{"wat":224,"direct":229},{"assetPaths":225,"generatorPatterns":226,"scriptPaths":227,"versionParams":228},[],[],[],[],{"cssClasses":230,"htmlComments":231,"htmlAttributes":232,"restEndpoints":233,"jsGlobals":234,"shortcodeOutput":235},[],[],[],[],[],[]]