[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuAXM3VOaQ1Zxqt5mzimR06_r2Gj-xf1d9pZMInMzorA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":128,"fingerprints":220},"unwanted-cleaner","Unwanted Cleaner","1.1.5","Presskopp","https:\u002F\u002Fprofiles.wordpress.org\u002Fpresskopp\u002F","\u003Cp>The \u003Cstrong>Unwanted Cleaner\u003C\u002Fstrong> plugin helps you automatically remove unnecessary plugins and themes from your WordPress site. Designed to streamline your site management, it ensures that any plugins or themes you designate as “unwanted” are deleted immediately after WordPress core updates. You can also manually remove unwanted plugins and themes at any time through a simple interface in the admin dashboard.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Automatic Cleanups:\u003C\u002Fstrong> Automatically removes specified plugins and themes after WordPress core updates, keeping your site clutter-free.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Manual Deletions:\u003C\u002Fstrong> Easily delete unwanted plugins and themes from your admin dashboard whenever you choose, without waiting for an update.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Management:\u003C\u002Fstrong> Add or remove items from your unwanted list through an intuitive settings page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Search Feature:\u003C\u002Fstrong> Quickly find and add any plugin or theme to the unwanted list using a built-in search functionality.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is ideal for users who wish to prevent unwanted items from being reinstalled during core updates or who prefer to keep their WordPress installation clean and optimized with minimal effort.\u003Cbr \u002F>\nUninstall plugins and themes automatically by selecting them as unwanted.\u003C\u002Fp>\n","Unwanted plugins and themes are automatically removed during WordPress core updates, or you can delete them manually at any time in your dashboard.",0,1325,"2025-11-28T15:16:00.000Z","6.9.4","6.5","7.0",[18,19,20,21,22],"clean","core","delete","plugins","themes","https:\u002F\u002Fpresskopp.com\u002Funwanted-cleaner","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Funwanted-cleaner.1.1.5.zip",100,null,"2026-03-15T14:54:45.397Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"presskopp",2,30,94,"2026-04-05T03:29:28.150Z",[36,58,76,94,110],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":33,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":57},"automatic-updater","Advanced Automatic Updates","1.0.2","Gary Pendergast","https:\u002F\u002Fprofiles.wordpress.org\u002Fpento\u002F","\u003Cp>Advanced Automatic Updates adds extra options to WordPress’ built-in Automatic Updates feature. On top of security updates, it also supports installing major releases, plugins, themes, or even regular SVN checkouts!\u003C\u002Fp>\n\u003Cp>If you’re working on a WordPress Multisite install, it will properly restrict the options page to your Network Admin.\u003C\u002Fp>\n\u003Cp>While this will be useful for the vast majority of sites, please exercise caution, particularly if you have any custom themes or plugins running on your site.\u003C\u002Fp>\n","Adds extra options to WordPress' built-in Automatic Updates feature.",30000,255107,61,"2021-06-04T00:46:00.000Z","5.0.25","3.7","",[19,21,52,22,53],"stable","updates","http:\u002F\u002Fpento.net\u002Fprojects\u002Fautomatic-updater-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautomatic-updater.1.0.2.zip",85,"2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":11,"num_ratings":11,"last_updated":68,"tested_up_to":69,"requires_at_least":50,"requires_php":70,"tags":71,"homepage":73,"download_link":74,"security_score":75,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":57},"site-update-notification","Site Update Notification","1.0","Rakib Hossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fwprakibhossain\u002F","\u003Cp>Site Update Notification is a simple WordPress plugin that sends email notifications to administrators when plugins, themes, or WordPress need updates.\u003C\u002Fp>\n\u003Cp>This plugin checks for available updates for plugins, themes, and WordPress core every day and sends an email notification with the list of updates that need to be installed.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Sends email notifications for plugin updates\u003C\u002Fli>\n\u003Cli>Sends email notifications for theme updates\u003C\u002Fli>\n\u003Cli>Sends email notifications for WordPress core updates\u003C\u002Fli>\n\u003Cli>Customizable email address\u003C\u002Fli>\n\u003Cli>Easy-to-use and lightweight\u003C\u002Fli>\n\u003C\u002Ful>\n","A plugin that sends email notifications when plugins, themes, or WordPress need updates.",50,548,"2025-01-06T14:15:00.000Z","8.1.30","5.6",[19,72,21,22,53],"notifications","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsite-update-notification\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsite-update-notification.1.0.zip",92,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":25,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":50,"tags":90,"homepage":92,"download_link":93,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":57},"l7-automatic-updates","L7 Automatic Updates","2.0.0","Jeff","https:\u002F\u002Fprofiles.wordpress.org\u002Fjeffreysmattson\u002F","\u003Cp>A simple plugin that gives you the flexibility to set whether you want individual plugins to update or not.  This is something I find very useful on many of my sites.  Some plugins have been edited by previous Developers and they cannot be updated.  Other plugins on the same site still need to be updated.  You can set this to update the ones that can be updated automatically and don’t need specific attention.\u003C\u002Fp>\n\u003Cp>Choose whether you want the updater to update even though you are using a version control system such as SVN or git.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Users can set automatic updates:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>For Major WordPress Releases\u003C\u002Fli>\n\u003Cli>For Minor WordPress Releases\u003C\u002Fli>\n\u003Cli>For Themes\u003C\u002Fli>\n\u003Cli>For All Plugins\u003C\u002Fli>\n\u003Cli>For Individual Plugins\u003C\u002Fli>\n\u003Cli>Change notification email address.\u003C\u002Fli>\n\u003C\u002Ful>\n","Set individual plugins, major and minor WordPress releases, themes and all plugins to automatically update.",10,1885,1,"2017-09-02T03:51:00.000Z","4.8.28","3.8.2",[91,19,21,22,53],"automatic","http:\u002F\u002Flayer7web.com\u002Fprojects\u002Fl7-automatic-updates","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fl7-automatic-updates.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":84,"downloaded":102,"rating":25,"num_ratings":86,"last_updated":103,"tested_up_to":14,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":108,"download_link":109,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":57},"update-intervals","Update Intervals","1.05","Katsushi Kawamori","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatsushi-kawamori\u002F","\u003Cp>Change the intervals of automatic updates.\u003C\u002Fp>\n\u003Ch4>Changeable\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Core and their translations\u003C\u002Fli>\n\u003Cli>Plugins and their translations\u003C\u002Fli>\n\u003Cli>Themes and their translations\u003C\u002Fli>\n\u003C\u002Ful>\n","Change the intervals of automatic updates.",2757,"2025-11-25T22:08:00.000Z","4.7","8.0",[19,21,22,107],"update","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fupdate-intervals\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fupdate-intervals.1.05.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":84,"downloaded":118,"rating":25,"num_ratings":86,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":122,"tags":123,"homepage":126,"download_link":127,"security_score":75,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":57},"wp-contributions","WP Contributions","1.3.1","Michael Beckwith","https:\u002F\u002Fprofiles.wordpress.org\u002Ftw2113\u002F","\u003Cp>Provides an easy way to display your WordPress.org Themes, Plugins, Core tickets, and Codex contributions with handy widgets and template tags.\u003C\u002Fp>\n\u003Cp>WordPress wouldn’t be as amazing as it is without all of the contributors to the project. The community is proud of each and every contributor. Display some of your contributions to the project using handy widgets or template tags in your custom theme.  Currently, you can display your contributions to WordPress core, the WordPress Codex, your WordPress Plugins, or your WordPress themes.\u003C\u002Fp>\n\u003Cp>There are four handy widgets available for you that are easily configured and added to your sidebar.  You just need to add your theme or plugin slug to display a theme or plugin or enter your WordPress.org username to display core or codex contributions.\u003C\u002Fp>\n\u003Cp>There are two shortcodes available, and some handy template tags if you desire to add them in your custom theme.  More info on shortcodes and template tags are available under the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-contributions\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>We want to give a big thanks to the great plugin, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-core-contributions-widget\u002F\" rel=\"ugc\">Core Contributions Widget\u003C\u002Fa> by Eric Mann, Michael Fields, John P. Bloch, Mike Bijon, and Konstantin Obenland. We forked part of this plugin to include Core and Codex Contributions. If you would just like widgets to display Core and Codex Contributions, we recommend downloading their plugin.\u003C\u002Fp>\n\u003Ch3>Available shortcodes\u003C\u002Fh3>\n\u003Ch3>Show a Plugin Card\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>[wp_contributions_plugin_card slug=\"your-plugin-slug\"]\u003Ch3>Show a Theme Card\u003C\u002Fh3>\n[wp_contributions_theme_card slug=\"your-theme-slug\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Not sure what shortcodes are? \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FShortcode\" rel=\"nofollow ugc\">Learn more here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>How do I add a widget?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Visit Appearance -> Widgets in your WordPress Admin.\u003C\u002Fli>\n\u003Cli>Drag any of the WP Contributions widgets to the sidebar where you want them to appear.\u003C\u002Fli>\n\u003Cli>For the plugin and them widgets, enter a widget title and enter the slug of the plugin you would like to display. The slug of a plugin can be found by looking at the URL of the plugin page.  For instance, Jetpack is found at \u003Ccode>https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjetpack\u002F\u003C\u002Fcode> which makes the plugin slug \u003Ccode>jetpack\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>For Core and Codex contributions, enter a title, your WordPress.org username, and the number of contributions you would like to display. It will display the most recent contributions. There will be a link to display more contributions so people can view any after the number you input.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>What template tags are available?\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>\u003C?php wp_contributions_plugin_card( $plugin_slug ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Displays a the plugin information for a plugin. Just pass the slug of the plugin as \u003Ccode>$plugin_slug\u003C\u002Fcode> to display the plugin information card.  This function will echo your results to your template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php wp_contributions_theme_card( $theme_slug ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Displays a the theme information for a theme. Just pass the slug of the theme as \u003Ccode>$theme_slug\u003C\u002Fcode> to display the theme information card.  This function will echo your results to your template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php wp_contributions_author_plugin_cards( $username ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Displays all plugins for a plugin author.  Just pass the WordPress.org username as \u003Ccode>$username\u003C\u002Fcode> to display all plugin cards for that user.  This function will echo your results to your template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php wp_contributions_author_theme_cards( $username ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Displays all plugins for a theme author.  Just pass the WordPress.org username as \u003Ccode>$username\u003C\u002Fcode> to display all theme cards for that user.  This function will echo your results to your template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php wp_contributions_core_contributions_card( $username, $count ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Displays Core contributions for a WordPress.org user.  Just pass the WordPress.org username as \u003Ccode>$username\u003C\u002Fcode> to display the contributions for that user. Optionally, you can also pass in \u003Ccode>$count\u003C\u002Fcode> to control the number of contributions to display. Default count is set at 5. This function will echo your results to your template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php wp_contributions_codex_contributions_card( $username, $count ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Displays Codex contributions for a WordPress.org user.  Just pass the WordPress.org username as \u003Ccode>$username\u003C\u002Fcode> to display the contributions for that user. Optionally, you can also pass in \u003Ccode>$count\u003C\u002Fcode> to control the number of contributions to display. Default count is set at 5. This function will echo your results to your template.\u003C\u002Fp>\n\u003Ch4>How do I integrate directly in a theme?\u003C\u002Fh4>\n\u003Cp>Copy either the individual template file: e.g. \u003Ccode>\u002Fwp-content\u002Fwp-contributions-theme-card-template.php\u003C\u002Fcode>, or the plugin’s entire template folder into your theme’s folder (\u003Ccode>\u002Fwp-content\u002Fplugins\u002Fwp-contributions\u002Ftemplates\u002F\u003C\u002Fcode>), and override anything you desire.\u003C\u002Fp>\n","Provides an easy way to display your WordPress.org Themes, Plugins, Core tickets, and Codex contributions with handy widgets and template tags.",2928,"2024-09-06T14:42:00.000Z","6.6.5","3.8.0","7.4",[124,125,19,21,22],"codex","contributions","https:\u002F\u002Fmichaelbox.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-contributions.1.3.1.zip",{"attackSurface":129,"codeSignals":163,"taintFlows":171,"riskAssessment":214,"analyzedAt":219},{"hooks":130,"ajaxHandlers":153,"restRoutes":160,"shortcodes":161,"cronEvents":162,"entryPointCount":86,"unprotectedCount":11},[131,137,141,145,149],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","init","uncl_init","includes\\uncl-class-unwanted-cleaner.php",21,{"type":132,"name":138,"callback":139,"priority":84,"file":135,"line":140},"upgrader_process_complete","uncl_core_upgrade_flag",25,{"type":132,"name":142,"callback":143,"priority":84,"file":135,"line":144},"shutdown","uncl_delete_unwanted_shutdown",26,{"type":132,"name":146,"callback":147,"file":135,"line":148},"admin_menu","add_admin_menu",31,{"type":132,"name":150,"callback":151,"file":135,"line":152},"admin_enqueue_scripts","uncl_enqueue_admin_scripts",43,[154],{"action":155,"nopriv":156,"callback":157,"hasNonce":158,"hasCapCheck":158,"file":135,"line":159},"uncl_handler",false,"uncl_unwanted_plugins_handler",true,40,[],[],[],{"dangerousFunctions":164,"sqlUsage":165,"outputEscaping":167,"fileOperations":11,"externalRequests":11,"nonceChecks":86,"capabilityChecks":31,"bundledLibraries":170},[],{"prepared":11,"raw":11,"locations":166},[],{"escaped":168,"rawEcho":11,"locations":169},5,[],[],[172,201],{"entryPoint":173,"graph":174,"unsanitizedCount":31,"severity":200},"uncl_unwanted_plugins_handler (includes\\uncl-class-unwanted-cleaner.php:331)",{"nodes":175,"edges":196},[176,181,187,190,194],{"id":177,"type":178,"label":179,"file":135,"line":180},"n0","source","$_POST (x2)",343,{"id":182,"type":183,"label":184,"file":135,"line":185,"wp_function":186},"n1","sink","update_option() [Settings Manipulation]",359,"update_option",{"id":188,"type":178,"label":179,"file":135,"line":189},"n2",348,{"id":191,"type":192,"label":193,"file":135,"line":189},"n3","transform","→ uncl_save_unwanted_list()",{"id":195,"type":183,"label":184,"file":135,"line":46,"wp_function":186},"n4",[197,198,199],{"from":177,"to":182,"sanitized":158},{"from":188,"to":191,"sanitized":156},{"from":191,"to":195,"sanitized":156},"low",{"entryPoint":202,"graph":203,"unsanitizedCount":31,"severity":200},"\u003Cuncl-class-unwanted-cleaner> (includes\\uncl-class-unwanted-cleaner.php:0)",{"nodes":204,"edges":210},[205,206,207,208,209],{"id":177,"type":178,"label":179,"file":135,"line":180},{"id":182,"type":183,"label":184,"file":135,"line":185,"wp_function":186},{"id":188,"type":178,"label":179,"file":135,"line":189},{"id":191,"type":192,"label":193,"file":135,"line":189},{"id":195,"type":183,"label":184,"file":135,"line":46,"wp_function":186},[211,212,213],{"from":177,"to":182,"sanitized":158},{"from":188,"to":191,"sanitized":156},{"from":191,"to":195,"sanitized":156},{"summary":215,"deductions":216},"The \"unwanted-cleaner\" v1.1.5 plugin exhibits a generally strong security posture based on the provided static analysis.  It correctly implements nonce checks and capability checks for its single AJAX entry point, and all SQL queries are protected by prepared statements. Furthermore, all identified output operations are properly escaped, and there are no file operations or external HTTP requests, significantly reducing the attack surface and potential for common web vulnerabilities. The plugin also boasts a clean vulnerability history, with no known CVEs and no previously recorded vulnerabilities. This suggests a well-maintained and security-conscious development approach.\n\nDespite these strengths, there is a notable concern identified in the taint analysis: two flows were found with unsanitized paths. While these did not escalate to critical or high severity, the presence of unsanitized paths in any form presents a potential risk, particularly if the plugin's functionality evolves or if an attacker discovers a way to exploit these flows under specific conditions. The lack of any recorded vulnerabilities in its history is positive, but the taint analysis indicates a need for heightened scrutiny on how user-supplied data, even if indirectly, influences path operations within the plugin.",[217],{"reason":218,"points":84},"Unsanitized paths found in taint analysis","2026-03-17T06:08:56.172Z",{"wat":221,"direct":232},{"assetPaths":222,"generatorPatterns":226,"scriptPaths":227,"versionParams":228},[223,224,225],"\u002Fwp-content\u002Fplugins\u002Funwanted-cleaner\u002Fincludes\u002Fassets\u002Fcss\u002Fbootstrap.min.css","\u002Fwp-content\u002Fplugins\u002Funwanted-cleaner\u002Fincludes\u002Fassets\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Funwanted-cleaner\u002Fincludes\u002Fassets\u002Fjs\u002Fbootstrap.bundle.min.js",[],[225],[229,230,231],"unwanted-cleaner\u002Fincludes\u002Fassets\u002Fcss\u002Fbootstrap.min.css?ver=","unwanted-cleaner\u002Fincludes\u002Fassets\u002Fcss\u002Fstyle.css?ver=","unwanted-cleaner\u002Fincludes\u002Fassets\u002Fjs\u002Fbootstrap.bundle.min.js?ver=",{"cssClasses":233,"htmlComments":236,"htmlAttributes":237,"restEndpoints":243,"jsGlobals":244,"shortcodeOutput":245},[234,235],"uncl-unwanted-plugins-list","uncl-unwanted-themes-list",[],[238,239,240,241,242],"data-bs-toggle","data-bs-target","data-bs-dismiss","data-bs-backdrop","data-bs-keyboard",[],[],[]]