[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fG-_woexP7xuyzWiOGuKOg5YcdH3XqjcI0BMSKdkUMO4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":135,"fingerprints":201},"test-email-redirector","Test Email Redirector","1.3.3","Zaib Makda","https:\u002F\u002Fprofiles.wordpress.org\u002Fconnectzaib\u002F","\u003Cp>The Test Email Redirector ensures no accidental emails reach real users during WordPress development, staging, or testing. Redirect’s all outgoing emails to a designated test address. Additional features include optional CC\u002FBCC addresses and the ability to include original recipient information in the forwarded email.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Redirect all outgoing emails to a test email address.\u003Cbr \u002F>\n– Add optional CC and BCC addresses.\u003Cbr \u002F>\n– Include original recipient information in the forwarded email.\u003Cbr \u002F>\n– Enable or disable email redirection without deactivating the plugin.\u003Cbr \u002F>\n– Fully configurable via the WordPress admin Tools menu.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later. See the \u003Ca href=\"https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\" rel=\"nofollow ugc\">License URI\u003C\u002Fa> for details.\u003C\u002Fp>\n","Redirects all outgoing WordPress emails to a specified test address for development and testing purposes.",60,534,0,"2025-08-01T09:59:00.000Z","6.8.5","5.0","7.2",[19,20,21,22],"development","email","forward","testing","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftest-email-redirector.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"connectzaib",1,30,94,"2026-04-05T02:50:08.350Z",[36,53,70,91,114],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":13,"downloaded":44,"rating":13,"num_ratings":13,"last_updated":45,"tested_up_to":15,"requires_at_least":46,"requires_php":47,"tags":48,"homepage":51,"download_link":52,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"mailcatcher-client","MailcatcherClient","1.0.0","Johannes Przymusinski","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohannesprzymusinski\u002F","\u003Cp>Mailcatcher for WordPress seamlessly connects your WordPress site to \u003Ca href=\"https:\u002F\u002Fmailcatcher.dev\u002F\" rel=\"nofollow ugc\">Mailcatcher\u003C\u002Fa>, a cloud-based service designed to capture and display emails sent from development and test environments. This integration ensures that no real emails are dispatched during testing, allowing developers to review and debug email content safely and efficiently.\u003C\u002Fp>\n\u003Cp>Key features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Effortless Integration\u003C\u002Fstrong>: Redirect all outgoing emails from your WordPress site to Mailcatcher without complex configurations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Project Support\u003C\u002Fstrong>: Organize test emails by project within Mailcatcher, maintaining clarity across multiple development initiatives.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Permissions & Sharing\u003C\u002Fstrong>: Collaborate with team members or clients by granting tailored access to specific projects and their associated emails.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cloud-Based Convenience\u003C\u002Fstrong>: Access your intercepted emails anytime, anywhere, without the need for local installations or server setups.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Seamless Attachment Handling\u003C\u002Fstrong>: View, download, and test email attachments directly within the Mailcatcher interface.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information about Mailcatcher and its features, visit \u003Ca href=\"https:\u002F\u002Fmailcatcher.dev\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fmailcatcher.dev\u002F\u003C\u002Fa>.\u003C\u002Fp>\n","Integrate your WordPress development environment with Mailcatcher to effortlessly capture and view outgoing emails during testing.",178,"2025-08-23T11:10:00.000Z","6.0","8.0",[19,20,49,50,22],"mailcatcher","smtp","https:\u002F\u002Fmailcatcher.dev","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmailcatcher-client.1.0.0.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":25,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":23,"tags":67,"homepage":68,"download_link":69,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"stop-emails","Stop Emails","1.2.1","Sal Ferrarello","https:\u002F\u002Fprofiles.wordpress.org\u002Fsalcode\u002F","\u003Cp>Stops outgoing emails sent from WordPress.  This plugin stops\u003Cbr \u002F>\noutgoing emails generated by WordPress core, plugins, and themes.\u003Cbr \u002F>\nEmails sent using the \u003Ccode>wp_mail()\u003C\u002Fcode> function, will not be sent.\u003Cbr \u002F>\nIn the case where an author does not use the recommended \u003Ccode>wp_mail()\u003C\u002Fcode>\u003Cbr \u002F>\nfunction and instead sends the email using another mechanism, an email will\u003Cbr \u002F>\nstill be sent.\u003C\u002Fp>\n\u003Cp>This plugin allows you to suspend sending emails when doing development work.\u003Cbr \u002F>\nAny calls to \u003Ccode>wp_mail()\u003C\u002Fcode> will fail silently.  WordPress\u003Cbr \u002F>\nwill operate as if the email were sent successfully\u003Cbr \u002F>\nbut no email will actually be sent.\u003C\u002Fp>\n\u003Cp>On the admin menu page Settings > Stop Emails, there is the option\u003Cbr \u002F>\nto log all emails to the PHP error log.  By default this logging is\u003Cbr \u002F>\ndisabled.\u003C\u002Fp>\n\u003Cp>NOTE: If using the PHP \u003Ccode>mail()\u003C\u002Fcode> function directly, this\u003Cbr \u002F>\nplugin will NOT stop the emails.\u003C\u002Fp>\n\u003Cp>Built by \u003Ca href=\"http:\u002F\u002Fsalferrarello.com\u002F\" rel=\"nofollow ugc\">Sal Ferrarello\u003C\u002Fa> \u002F \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fsalcode\" rel=\"nofollow ugc\">@salcode\u003C\u002Fa>\u003C\u002Fp>\n","Stop all outgoing emails sent from WordPress.",5000,76809,12,"2026-01-13T02:08:00.000Z","6.9.4","3.6",[19,20],"http:\u002F\u002Fsalferrarello.com\u002Fstop-emails-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstop-emails.1.2.1.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":78,"downloaded":79,"rating":25,"num_ratings":80,"last_updated":81,"tested_up_to":15,"requires_at_least":23,"requires_php":23,"tags":82,"homepage":86,"download_link":87,"security_score":88,"vuln_count":89,"unpatched_count":13,"last_vuln_date":90,"fetched_at":27},"wp-reroute-email","WP Reroute Email","1.5.2","Sajjad Hossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fmsh134\u002F","\u003Cp>This plugin intercepts all outgoing emails from a WordPress site, sent using the wp_mail() function, and reroutes them to a predefined configurable email address. This is useful in case where you do not want email sent from a WordPress site to reach the users. For an example, to resolve an issue you downloaded production database to your development site and you want no email is sent to production users when testing. You may enable this plugin in development server and reroute emails to your given email address.\u003C\u002Fp>\n\u003Cp>WP Reroute Email provides options for adding your own text or the recipients address at the bottom of the mail.\u003C\u002Fp>\n\u003Cp>You may also save a copy of the email to database and view them from the interface.\u003C\u002Fp>\n\u003Cp>Now, you will be able to disable rerouting based on the subject texts.\u003C\u002Fp>\n","This plugin reroutes all outgoing emails from a WordPress site (sent using the wp_mail() function) to a predefined configurable email address.",1000,28119,9,"2025-07-06T06:59:00.000Z",[83,84,20,85],"developer-tool","development-server","mail","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwp-reroute-email\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-reroute-email.1.5.2.zip",98,3,"2023-07-05 00:00:00",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":99,"downloaded":100,"rating":101,"num_ratings":102,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":111,"download_link":112,"security_score":113,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"sf-adminbar-tools","Admin Bar Tools","4.0","Grégory Viguier","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreglone\u002F","\u003Cp>The plugin adds a new tab in your admin bar with simple but useful indications and tools.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Displays the number of queries in your page and the amount of time to generate the page.\u003C\u002Fli>\n\u003Cli>Displays the php memory usage and php memory limits (constants \u003Ccode>WP_MEMORY_LIMIT\u003C\u002Fcode> and \u003Ccode>WP_MAX_MEMORY_LIMIT\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>displays the php version and WP version.\u003C\u002Fli>\n\u003Cli>Displays \u003Ccode>WP_DEBUG\u003C\u002Fcode>, \u003Ccode>SCRIPT_DEBUG\u003C\u002Fcode>, \u003Ccode>WP_DEBUG_LOG\u003C\u002Fcode>, \u003Ccode>WP_DEBUG_DISPLAY\u003C\u002Fcode>, and error reporting values.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>In your site front-end:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Lists the template and all template parts used in the current page (template parts added with \u003Ccode>get_template_part()\u003C\u002Fcode>). Compatible with WooCommerce’s templates.\u003C\u002Fli>\n\u003Cli>\u003Ccode>$wp_query\u003C\u002Fcode>: this will open a lightbox displaying the content of \u003Ccode>$wp_query\u003C\u002Fcode>. Click the lightbox title to reload the value, click outside the lightbox to close it.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>In your site administration:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Admin hooks: lists some oftenly used hooks (like \u003Ccode>admin_init\u003C\u002Fcode>). The indicator to the right of the line tells you how many times the hook has been triggered by a callback. A “P” means the hook has a parameter: hover it for more details. Click a hook (on its text) to auto-select its code, for example: click \u003Cem>admin_init\u003C\u002Fem> to select \u003Ccode>add_action( 'admin_init', '' );\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>$current_screen\u003C\u002Fcode>: displays the value of 4 properties of this object: \u003Ccode>id\u003C\u002Fcode>, \u003Ccode>base\u003C\u002Fcode>, \u003Ccode>parent_base\u003C\u002Fcode>, \u003Ccode>parent_file\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>$...now\u003C\u002Fcode>: displays the value of the well-known variables \u003Ccode>$pagenow\u003C\u002Fcode>, \u003Ccode>$typenow\u003C\u002Fcode>, and \u003Ccode>$taxnow\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>On a user profile page, \u003Ccode>$userdata\u003C\u002Fcode>: : this will open a lightbox displaying the user’s data.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can decide who’s gonna use this plugin (go to your profile page for all the settings). This way, the plugin’s items won’t show up to other users (your client for example).\u003Cbr \u002F>\nAlso, a new menu item \u003Ccode>Code Tester\u003C\u002Fcode> will appear. There you are able to do some tests with your code.\u003C\u002Fp>\n","Adds some small development tools to the admin bar.",400,15121,96,8,"2021-01-18T16:09:00.000Z","5.6.0","4.7","5.6",[108,19,109,22,110],"debug","query","tests","https:\u002F\u002Fwww.screenfeed.fr\u002Fsf-abt\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsf-adminbar-tools.zip",85,{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":124,"num_ratings":125,"last_updated":126,"tested_up_to":127,"requires_at_least":94,"requires_php":23,"tags":128,"homepage":132,"download_link":133,"security_score":113,"vuln_count":31,"unpatched_count":13,"last_vuln_date":134,"fetched_at":27},"woo-email-control","Woo Email Control","1.061","findshorty","https:\u002F\u002Fprofiles.wordpress.org\u002Ffindshorty\u002F","\u003Cp>This enhancement to the Woocommerce email system allows you to get more control of your Woocommerce emails.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add product images of any size – \u003Cem>(requires Woocommerce 2.6+)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Embed and attach email images\u003C\u002Fli>\n\u003Cli>Easier selection of email header image (replaces the Woocommerce default functionality)\u003C\u002Fli>\n\u003Cli>Display product categories for each line item\u003C\u002Fli>\n\u003Cli>Display product SKU for each line item\u003C\u002Fli>\n\u003Cli>Test your emails either in your browser or emailed to your email address using data from real orders\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is compatible with either the standard email templates, or your custom templates, as long as you retain the correct hooks and filters used by the standard templates.\u003C\u002Fp>\n\u003Cp>The plugin also gives you the option of attaching and embedding any images within the email, including the header image if you have chosen one.\u003Cbr \u002F>\nThis prevents the user having to “load images” when they receive the email, reduces the chances of your emails being considered as spam with most providers, and prevents your images becoming “not found” if the user or your website are offline.\u003C\u002Fp>\n\u003Cp>\u003Cem>Be careful not to overuse large embedded images as it does increase the size of your emails.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Woo Email Control also provides a very useful testing facility, whereby you can either view any email directly within the browser, or send it to your email address. The preview emails contain live data for any order, not simply the empty template – great for checking your custom email templates without having to create or edit a new test order each time.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please note\u003C\u002Fstrong> This is an Add-on for Woocommerce and requires Woocommerce 2.5+ (2.6+ for product images)\u003C\u002Fp>\n","Get better control of your Woocommerce emails. Add product images & embed them in emails. Test emails in your browser and via email.",300,7916,88,5,"2016-08-08T13:34:00.000Z","4.5.33",[129,20,130,22,131],"control","embed-images","woocommerce","http:\u002F\u002Fwww.findshorty.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-email-control.zip","2016-07-18 00:00:00",{"attackSurface":136,"codeSignals":161,"taintFlows":194,"riskAssessment":195,"analyzedAt":200},{"hooks":137,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":13,"unprotectedCount":13},[138,144,147,150,153],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","admin_menu","closure","test-email-redirector.php",20,{"type":139,"name":145,"callback":141,"file":142,"line":146},"admin_init",40,{"type":139,"name":148,"callback":141,"file":142,"line":149},"admin_notices",140,{"type":139,"name":151,"callback":141,"priority":25,"file":142,"line":152},"admin_bar_menu",154,{"type":154,"name":155,"callback":141,"file":142,"line":156},"filter","wp_mail",174,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":192,"bundledLibraries":193},[],{"prepared":13,"raw":13,"locations":164},[],{"escaped":166,"rawEcho":63,"locations":167},10,[168,171,172,174,176,178,180,182,184,186,188,190],{"file":142,"line":169,"context":170},92,"raw output",{"file":142,"line":88,"context":170},{"file":142,"line":173,"context":170},101,{"file":142,"line":175,"context":170},105,{"file":142,"line":177,"context":170},108,{"file":142,"line":179,"context":170},112,{"file":142,"line":181,"context":170},115,{"file":142,"line":183,"context":170},119,{"file":142,"line":185,"context":170},122,{"file":142,"line":187,"context":170},126,{"file":142,"line":189,"context":170},129,{"file":142,"line":191,"context":170},147,2,[],[],{"summary":196,"deductions":197},"The plugin 'test-email-redirector' v1.3.3 presents a seemingly strong security posture based on the provided static analysis and vulnerability history. The absence of any entry points like AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface. Furthermore, the code signals indicate no dangerous functions, all SQL queries use prepared statements, and there are no file operations or external HTTP requests. The vulnerability history is also clean, with no recorded CVEs, suggesting a mature and stable codebase.\n\nHowever, a key concern arises from the output escaping. With 22 total outputs, only 45% are properly escaped. This means a significant portion of the plugin's output is susceptible to Cross-Site Scripting (XSS) vulnerabilities if any user-supplied data is incorporated into these unescaped outputs. While taint analysis shows no identified unsanitized paths, the lack of proper output escaping is a concrete risk that could be exploited if an indirect path for malicious input exists or is discovered.\n\nIn conclusion, the plugin excels in limiting its attack surface and avoiding common risky practices like raw SQL or dangerous functions. The clean vulnerability history is a positive indicator. The primary weakness lies in the insufficient output escaping, which warrants attention and mitigation to prevent potential XSS attacks. This specific concern is the main area for potential risk in an otherwise well-secured plugin.",[198],{"reason":199,"points":102},"Insufficient output escaping","2026-03-16T21:40:51.396Z",{"wat":202,"direct":207},{"assetPaths":203,"generatorPatterns":204,"scriptPaths":205,"versionParams":206},[],[],[],[],{"cssClasses":208,"htmlComments":210,"htmlAttributes":211,"restEndpoints":217,"jsGlobals":218,"shortcodeOutput":219},[209],"zbet-email-forwarder-status",[],[212,213,214,215,216],"name=\"zbet_email_forwarder_enabled\"","name=\"zbet_email_forwarder_email\"","name=\"zbet_email_forwarder_cc\"","name=\"zbet_email_forwarder_bcc\"","name=\"zbet_email_forwarder_send_original_info\"",[],[],[]]