[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fK0GrDaIDf16c18bvdyrnc50nvqL2bJclsfIAcOmxnYs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":23,"security_score":13,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":81,"fingerprints":186},"upload-larger-plugins","Upload Larger Plugins","2.0","David Anderson \u002F Team Updraft","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidanderson\u002F","\u003Cp>This plugin replaces the built-in WordPress plugin uploader with one that allows you to upload a plugin of any size.\u003C\u002Fp>\n\u003Cp>This is something you might need if your web hosting has a low maximum file upload limit (some default PHP installs have 2MB), and the plugin you wish to install is too large for this.\u003C\u002Fp>\n\u003Cp>It accomplishes this task by replacing WordPress’s default plugin uploader with a more sophisticated component that can upload larger files in chunks. You just install this plugin, activate it, and that’s it – you can now get back to the real work.\u003C\u002Fp>\n\u003Cp>Want to see some more quality plugins and products?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca title=\"WordPress backup, clone and restoration\" href=\"https:\u002F\u002Fupdraftplus.com\u002F\" rel=\"nofollow ugc\">UpdraftPlus – best WordPress backup, clone and restore plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca title=\"WooCommerce extensions for WordPress\" href=\"https:\u002F\u002Fwww.simbahosting.co.uk\u002Fs3\u002Fshop\u002F\" rel=\"nofollow ugc\">Some other premium WordPress plugins (mostly WooCommerce extensions)\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidanderson#content-plugins\" rel=\"nofollow ugc\">Other free plugins on my WordPress profile page\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Copyright 2014- David Anderson\u003C\u002Fp>\n\u003Cp>MIT License:\u003C\u002Fp>\n\u003Cp>Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the “Software”), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and\u002For sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:\u003C\u002Fp>\n\u003Cp>The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.\u003C\u002Fp>\n\u003Cp>THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\u003C\u002Fp>\n","Install plugins of any size (i.e. work around web hosting limits)",7000,144485,100,20,"2025-11-17T22:15:00.000Z","6.9.4","3.3","",[20,21,22,4],"plugins-installation","plupload","upload-file-limit","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fupload-larger-plugins.2.0.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"davidanderson",16,6440540,98,1197,78,"2026-04-04T21:12:25.750Z",[37,58],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":55,"download_link":56,"security_score":57,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26},"resize-images-before-upload","Resize images before upload","1.8","WPsites","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpsites\u002F","\u003Cp>Resize your images before they are uploaded to your website (server), no need to use image editing software. Drag+drop images from your digital camera to WordPress. This plugin works best in HTML5 compatible web browsers such as Chrome or Firefox.\u003C\u002Fp>\n\u003Cp>If your web browser does not support HTML5 then this plugin will swap your image uploader runtime to the Adobe Flash version which makes sure the resize function works across more web browsers. The side effect to this is drag+drop will be disabled since this is not supported in Flash (everything works in HTML5 compatible browsers). If you experience issues or drag+drop is more important to you than resizing images then you can disable the Flash override in your settings -> media.\u003C\u002Fp>\n\u003Cp>This plugin does not work on the iPhone or iPad.\u003C\u002Fp>\n\u003Cp>This plugin removes the upload file size limit and turns on the resize function.\u003C\u002Fp>\n\u003Cp>Once this plugin is enabled your images will be resized in the browser before being uploaded to your website (server).\u003C\u002Fp>\n\u003Cp>This plugin adds an additional setting to your settings -> media page that allows you to specify the image quality when being resized. The quality value can range from 1-100. The higher the quality the larger the file size. The default value is 80 which reduces the file size whilst still maintaining a decent quality image. You can also set the resize dimensions for this plugin here to, if you weren’t happy inheriting the default large image size settings.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Less bandwidth used for your host when uploading your images\u003C\u002Fli>\n\u003Cli>No more massive images uploaded to your site for users to sit waiting to view\u002Fdownload\u003C\u002Fli>\n\u003Cli>You can drag images right off your digital camera onto the WordPress uploader, getting them online in a flash.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you want to force the resized image width\u002Fheight, overriding the media settings (making it so multisite users cannot change this value etc) you can do this in wp-config.php by setting two constants:\u003C\u002Fp>\n\u003Cp>define( ‘RIBU_RESIZE_WIDTH’, 1000 ); \u002F\u002F1000 px wide\u003Cbr \u002F>\ndefine( ‘RIBU_RESIZE_HEIGHT’, 900 ); \u002F\u002F900 px high\u003C\u002Fp>\n\u003Cp>define( ‘RIBU_RESIZE_QUALITY’, 75 ); \u002F\u002F0-100, 100 being high quality\u003Cbr \u002F>\ndefined( ‘RIBU_MAX_UPLOAD_SIZE’ ‘2097152b’ ) ); \u002F\u002Fsize in bytes\u003C\u002Fp>\n\u003Cp>To work, any settings added to your wp-config.php file should be done above the line that reads:\u003Cbr \u002F>\n\u002F* That’s all, stop editing! Happy blogging. *\u002F\u003C\u002Fp>\n\u003Cp>Find the plugin on github: https:\u002F\u002Fgithub.com\u002FWPsites\u002FResize-images-before-upload\u003C\u002Fp>\n\u003Ch3>Contributors\u003C\u002Fh3>\n\u003Cp>Simon Dunton – http:\u002F\u002Fwww.wpsites.co.uk\u003C\u002Fp>\n","Automatically resizes your images right in your browser, before uploading.",1000,59337,92,22,"2017-11-28T16:39:00.000Z","3.6.1","3.0",[53,21,54],"images","resize","https:\u002F\u002Fgithub.com\u002FWPsites\u002FResize-images-before-upload","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fresize-images-before-upload.1.8.zip",85,{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":24,"num_ratings":24,"last_updated":68,"tested_up_to":16,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":76,"download_link":77,"security_score":78,"vuln_count":79,"unpatched_count":24,"last_vuln_date":80,"fetched_at":26},"gf-multi-uploader","Multi Uploader for Gravity Forms","1.1.8","sh1zen","https:\u002F\u002Fprofiles.wordpress.org\u002Fsh1zen\u002F","\u003Cp>This is an advanced upload plugin for those who need a little more than the default multi file upload of Gravity Forms.\u003C\u002Fp>\n\u003Cp>The plugin options page provides you with granular control over many Plupload parameters from file extension filters to chunked uploading and runtimes.\u003C\u002Fp>\n\u003Cp>All files are uploaded to the WordPress media library on successful form submission making for easy access and management.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FEATURES\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Cem>Safety:\u003C\u002Fem>\u003C\u002Fstrong> validation of both file extension and mime type.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Cem>Privacy:\u003C\u002Fem>\u003C\u002Fstrong> filenames changed once added to media library.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Cem>Advanced Customization:\u003C\u002Fem>\u003C\u002Fstrong> many options and many hooks to modify any plugin rule.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Cem>Large File Support:\u003C\u002Fem>\u003C\u002Fstrong> enabled by chunked file uploads.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Cem>Media library integration:\u003C\u002Fem>\u003C\u002Fstrong> all files are uploaded to the WordPress media library on successful form submission making for easy access and management.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Cem>Entry list creation integration:\u003C\u002Fem>\u003C\u002Fstrong>  A list of all correctly uploaded files, with relative link.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>DONATIONS\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin is free and always will be, but if you are feeling generous and want to show your support, you can buy me a\u003Cbr \u002F>\nbeer or coffee \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fdonate?business=dev.sh1zen%40outlook.it&item_name=Thank+you+in+advanced+for+the+kind+donations.+You+will+sustain+me+developing+GF-Multi-Uploader.&currency_code=EUR\" rel=\"nofollow ugc\">here\u003C\u002Fa>, I will really appreciate it.\u003C\u002Fp>\n\u003Ch3>Hooks\u003C\u002Fh3>\n\u003Cp>Filters:\u003Cbr \u002F>\n* ‘gfmu_plugin_locale’\u003Cbr \u002F>\n* ‘gfmu_before_attach_uploads’\u003Cbr \u002F>\n* ‘gfmu_maybe_insert_attachment’\u003Cbr \u002F>\n* ‘gfmu_server_validation_args’\u003Cbr \u002F>\n* ‘gfmu_insert_attachment_args’\u003Cbr \u002F>\n* ‘gfmu_field_options’\u003Cbr \u002F>\n* ‘gfmu_save_entry’\u003C\u002Fp>\n","Chunked Multiple file uploads, from images, videos to pdf. Files stored in WP Media Library.",30,4277,"2025-12-16T17:57:00.000Z","5.0","7.4",[72,73,74,21,75],"file-uploader","gravity-forms","gravity-forms-uploader","uploader","https:\u002F\u002Fgithub.com\u002Fsh1zen\u002Fgf-multi-uploader","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgf-multi-uploader.1.1.8.zip",88,2,"2025-12-11 15:06:36",{"attackSurface":82,"codeSignals":128,"taintFlows":152,"riskAssessment":179,"analyzedAt":185},{"hooks":83,"ajaxHandlers":118,"restRoutes":124,"shortcodes":125,"cronEvents":126,"entryPointCount":127,"unprotectedCount":24},[84,90,93,96,100,103,106,110,113,116],{"type":85,"name":86,"callback":86,"priority":87,"file":88,"line":89},"action","install_plugins_upload",9,"upload-larger-plugins.php",33,{"type":85,"name":91,"callback":91,"file":88,"line":92},"install_plugins_pre_upload",34,{"type":85,"name":94,"callback":94,"file":88,"line":95},"admin_enqueue_scripts",35,{"type":85,"name":97,"callback":98,"file":88,"line":99},"plugins_loaded","load_translations",36,{"type":85,"name":101,"callback":101,"file":88,"line":102},"admin_head",37,{"type":85,"name":104,"callback":104,"file":88,"line":105},"admin_init",39,{"type":107,"name":108,"callback":108,"file":88,"line":109},"filter","install_plugin_overwrite_actions",43,{"type":107,"name":111,"callback":111,"file":88,"line":112},"upload_dir",110,{"type":85,"name":114,"callback":114,"file":88,"line":115},"upgrader_process_complete",111,{"type":107,"name":111,"callback":111,"file":88,"line":117},212,[119],{"action":120,"nopriv":121,"callback":120,"hasNonce":122,"hasCapCheck":122,"file":88,"line":123},"ulp_plupload_action",false,true,38,[],[],[],1,{"dangerousFunctions":129,"sqlUsage":130,"outputEscaping":132,"fileOperations":87,"externalRequests":24,"nonceChecks":127,"capabilityChecks":150,"bundledLibraries":151},[],{"prepared":24,"raw":24,"locations":131},[],{"escaped":79,"rawEcho":133,"locations":134},7,[135,138,140,142,144,146,148],{"file":88,"line":136,"context":137},235,"raw output",{"file":88,"line":139,"context":137},272,{"file":88,"line":141,"context":137},279,{"file":88,"line":143,"context":137},333,{"file":88,"line":145,"context":137},390,{"file":88,"line":147,"context":137},399,{"file":88,"line":149,"context":137},406,4,[],[153,171],{"entryPoint":154,"graph":155,"unsanitizedCount":24,"severity":170},"ulp_plupload_action (upload-larger-plugins.php:198)",{"nodes":156,"edges":168},[157,162],{"id":158,"type":159,"label":160,"file":88,"line":161},"n0","source","$_POST (x2)",240,{"id":163,"type":164,"label":165,"file":88,"line":166,"wp_function":167},"n1","sink","fopen() [File Access]",251,"fopen",[169],{"from":158,"to":163,"sanitized":122},"low",{"entryPoint":172,"graph":173,"unsanitizedCount":24,"severity":170},"\u003Cupload-larger-plugins> (upload-larger-plugins.php:0)",{"nodes":174,"edges":177},[175,176],{"id":158,"type":159,"label":160,"file":88,"line":161},{"id":163,"type":164,"label":165,"file":88,"line":166,"wp_function":167},[178],{"from":158,"to":163,"sanitized":122},{"summary":180,"deductions":181},"The \"upload-larger-plugins\" v2.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of known CVEs and the use of prepared statements for all SQL queries are significant strengths. Furthermore, the plugin implements nonce and capability checks on its entry points, indicating an effort to secure against common attack vectors. The taint analysis also reveals no critical or high severity unsanitized path flows, suggesting that sensitive data handling within the plugin is likely robust.\n\nHowever, there are areas of concern that warrant attention. The most notable weakness lies in the output escaping, where only 22% of the nine observed outputs are properly escaped. This leaves a significant portion of the plugin's output potentially vulnerable to cross-site scripting (XSS) attacks if the data processed by these outputs originates from untrusted sources. While the attack surface is small and appears protected, the lack of comprehensive output escaping is a weakness that could be exploited. \n\nIn conclusion, the plugin has commendable security practices in place, particularly regarding SQL injection and authorization. The lack of a vulnerability history is also a positive sign. The primary risk identified is the insufficient output escaping, which could lead to XSS vulnerabilities. Addressing this issue would significantly improve the plugin's overall security.",[182],{"reason":183,"points":184},"Insufficient output escaping",6,"2026-03-16T18:01:22.037Z",{"wat":187,"direct":194},{"assetPaths":188,"generatorPatterns":190,"scriptPaths":191,"versionParams":192},[189],"\u002Fwp-content\u002Fplugins\u002Fupload-larger-plugins\u002Fadmin.js",[],[189],[193],"upload-larger-plugins\u002Fadmin.js?ver=",{"cssClasses":195,"htmlComments":196,"htmlAttributes":197,"restEndpoints":198,"jsGlobals":199,"shortcodeOutput":202},[],[],[],[],[200,201],"window.ulplion","ulplion",[]]