[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fb9Ln94uKDDbP0jikNV5WjDKjJbQ36A54lsStEtTNBAc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":146,"fingerprints":274},"upress-link","uPress Link","1.3.1","Ilan Firsov","https:\u002F\u002Fprofiles.wordpress.org\u002Filanraid\u002F","\u003Cp>uPress Link is a companion plugin for the WordPress hosting manager \u003Ca href=\"https:\u002F\u002Fwww.upress.io\" rel=\"nofollow ugc\">uPress\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Simple interface to manage the most frequently used features from uPress\u003C\u002Fli>\n\u003Cli>Manage auto updating, auto redirection and firewall settings\u003C\u002Fli>\n\u003Cli>Manage CDN (Content Delivery Network) settings\u003C\u002Fli>\n\u003Cli>Manage uPress optimization settings\u003C\u002Fli>\n\u003Cli>More features coming soon…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>NOTE\u003C\u002Fstrong>\u003Cbr \u002F>\n* This plugin does not work as a standalone. It requires an account with \u003Ca href=\"https:\u002F\u002Fwww.upress.io\" rel=\"nofollow ugc\">uPress\u003C\u002Fa>.\u003Cbr \u002F>\n* Some features require that specific settings will be enabled in uPress\u003C\u002Fp>\n","uPress Link is a companion plugin for the WordPress hosting manager at https:\u002F\u002Fwww.upress.io",200,2815,0,"2016-12-07T12:02:00.000Z","4.6.30","4.0","",[19,20,21,22,23],"companion","hosting","link","manager","upress","https:\u002F\u002Fwww.upress.io","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fupress-link.1.3.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"ilanraid",1,30,84,"2026-04-04T03:51:28.440Z",[37,56,79,99,121],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":17,"download_link":55,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"link-manager","Link Manager","0.1-beta","Andrew Nacin","https:\u002F\u002Fprofiles.wordpress.org\u002Fnacin\u002F","\u003Cp>In WordPress 3.5, the Link Manager (which some use to build blogrolls) will\u003Cbr \u002F>\nbe disabled by default. If you have links when you update, it’ll still be there.\u003Cbr \u002F>\nBut you can use this plugin to ensure it will always be there, even if you\u003Cbr \u002F>\nupdate to a later version of WordPress or remove all of your current links.\u003C\u002Fp>\n","Enables the Link Manager that existed in WordPress until version 3.5.",20000,417113,90,33,"2017-11-28T04:40:00.000Z","6.1.10","3.5",[53,38,54],"blogroll","links","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flink-manager.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"ezcache","ezCache","1.6.6","uPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fupress\u002F","\u003Cp>EzCache is an easy and innovative cache plugin that will help you significantly improve your site speed.\u003Cbr \u002F>\nThe plugin comes in a simple and easy installation, without the need for advanced technical knowledge, offers you the opportunity to make your site much faster in a few simple steps, cache pages on your site, automatically optimize images using WebP format to reduce the size of your site’s images by tens of percent and save You need the extra image minimization plugin.\u003C\u002Fp>\n\u003Cp>In addition, the plugin allows you to minimize advanced HTML files, JAVA SCRIPT files\u003Cbr \u002F>\nAnd CSS files\u003Cbr \u002F>\nIn the advanced settings of the extension, you can easily save advanced settings, such as:\u003Cbr \u002F>\nConfigure caching by page type, set cached links,\u003Cbr \u002F>\nExclude certain user types.\u003Cbr \u002F>\nAnd of course, you can always view statistics that will always keep you updated on your site’s caching performance.\u003C\u002Fp>\n\u003Cp>We created ezCash to take the new decade’s speed experience and bring it to your WordPress sites easily and quickly\u003C\u002Fp>\n","EzCache is an easy and innovative cache plugin that will help you significantly improve your site speed.",10000,113930,92,5,"2025-07-30T13:37:00.000Z","6.8.5","4.6","5.6",[73,74,20,75,23],"boost","cache","speed","https:\u002F\u002Fezcache.app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fezcache.zip",100,{"slug":80,"name":81,"version":82,"author":60,"author_profile":61,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":87,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":16,"requires_php":17,"tags":91,"homepage":95,"download_link":96,"security_score":97,"vuln_count":32,"unpatched_count":13,"last_vuln_date":98,"fetched_at":28},"booter-bots-crawlers-manager","Booter – Bots & Crawlers Manager","1.5.8","\u003Cp>Booter – Bots & Crawlers Manager is a preventative measure (treatment in advance) and treatment of damages caused by crawlers and bots.\u003Cbr \u002F>\nThe plugin uses a number of existing technologies which are known by crawlers and bots and takes them one step forward – smartly and almost completely automatically.\u003Cbr \u002F>\nTo allow the plugin to function correctly, you must follow the instructions and manually enter some data (which must be done by a human being to avoid errors).\u003C\u002Fp>\n\u003Ch4>At the prevention level\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Booter allows you to manage and create an advanced dynamic robots.txt file.\u003C\u002Fli>\n\u003Cli>View a 404 error log to see the most common bad links.\u003C\u002Fli>\n\u003Cli>Blocking bad bots that cause high server loads due to very frequent page crawls, or are used to search for security vulnerabilities.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>At the treatment level\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Booter allows you to limit the amount of requests from crawlers and bots, if or when they exceed the specified amount of requests per minute, it will be rejected for a specified period of time.\u003C\u002Fli>\n\u003Cli>Rejecting links that we do not want in the fastest way, not by just blocking but by sending the appropriate HTTP status code to make search engines forget them.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Instructions for use in case of damage treatment\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Activate the plugin.\u003C\u002Fli>\n\u003Cli>Enable the 404 error log option.\u003C\u002Fli>\n\u003Cli>Set the access rate limit.\u003C\u002Fli>\n\u003Cli>Watch the 404 log, try to find common parts in the URLs that repeats most often.\u003C\u002Fli>\n\u003Cli>Enter the common parts to the “reject links” page, and ensure the rejection code is 410.\u003C\u002Fli>\n\u003Cli>Clear the 404 error log.\u003C\u002Fli>\n\u003Cli>Repeat the process once every few hours until the 404 error log remains blank.\u003C\u002Fli>\n\u003Cli>Check the status of your website’s index coverage every few days.\u003C\u002Fli>\n\u003C\u002Fol>\n","Booter - Bots & Crawlers Manager is a preventative measure (treatment in advance) and treatment of damages caused by crawlers and bots.",8000,69358,88,13,"2026-02-16T10:26:00.000Z","6.9.4",[20,92,93,94,23],"rate-limit","request","security","https:\u002F\u002Fbooter.app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbooter-bots-crawlers-manager.zip",99,"2026-01-25 00:00:00",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":85,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":90,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":119,"download_link":120,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"permalink-manager-for-woocommerce","Permalink Manager for WooCommerce","1.0.8.2","BeRocket","https:\u002F\u002Fprofiles.wordpress.org\u002Fberocket\u002F","\u003Cp>Permalink Manager for WooCommerce is developed to provide your store nicer urls.\u003C\u002Fp>\n\u003Ch4>Main advantages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Redirect duplicate pages with the 301 status\u003C\u002Fli>\n\u003Cli>Option to configure product, category and tag separately from each other\u003C\u002Fli>\n\u003Cli>Option to remove tags base added by WooCommerce\u003C\u002Fli>\n\u003Cli>Great work speed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>General options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Prefix – option to add extra level to the link\u003C\u002Fli>\n\u003Cli>Update breadcrumbs – option to add Prefix( extra level ) to the WooCommerce breadcrumbs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Product options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Only slug can be seen\u003C\u002Fli>\n\u003Cli>Main product category + product slugs\u003C\u002Fli>\n\u003Cli>Main category full hierarchy + product slug\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Category options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Only slug can be seen\u003C\u002Fli>\n\u003Cli>Main category full hierarchy + product slug\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Tag options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Only slug can be seen\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pre-configured options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic adding of 301 redirects to duplicated pages to improve SEO and site navigation\u003C\u002Fli>\n\u003Cli>Use YOAST SEO plugin primary categories\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>This plugin is compatible with\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce-ajax-filters\u002F\" rel=\"ugc\">Advanced AJAX Product Filters\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Yoast SEO\u003C\u002Fli>\n\u003Cli>WPML WooCommerce Multilingual\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fberocket.com\u002Fplugins\u002F?utm_source=wordpress_org&utm_medium=plugin_links&utm_campaign=permalink_manager\" rel=\"nofollow ugc\">BeRocket’s plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Permalink Manager for WooCommerce improves your store permalinks and remove product, product_category and product_tag slugs from the URL.",49236,98,26,"2026-03-11T15:53:00.000Z","5.0","7.0",[114,115,116,117,118],"permalink-editor","permalink-manager","remove-url","seo","url","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpermalink-manager-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpermalink-manager-for-woocommerce.1.0.8.2.zip",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":131,"num_ratings":132,"last_updated":133,"tested_up_to":69,"requires_at_least":134,"requires_php":135,"tags":136,"homepage":142,"download_link":143,"security_score":108,"vuln_count":144,"unpatched_count":13,"last_vuln_date":145,"fetched_at":28},"simple-urls","Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management","145","Andrew Fiebert","https:\u002F\u002Fprofiles.wordpress.org\u002Fmollusk\u002F","\u003Cp>Simple URLs helps you manage and organize links directly inside WordPress. It’s useful for affiliate marketers, bloggers, and anyone who wants more control over outbound links.\u003C\u002Fp>\n\u003Ch3>What you can do with Simple URLs\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create short, clean URLs with custom slugs  \u003C\u002Fli>\n\u003Cli>Cloak affiliate links with optional attributes (new window, nofollow, sponsored)  \u003C\u002Fli>\n\u003Cli>Organize and edit links from a central dashboard  \u003C\u002Fli>\n\u003Cli>Insert links from the editor while writing posts  \u003C\u002Fli>\n\u003Cli>Track basic click counts on your links  \u003C\u002Fli>\n\u003Cli>Works with both the Block Editor and Classic Editor  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why it’s helpful\u003C\u002Fh3>\n\u003Cp>With Simple URLs, you don’t need spreadsheets to keep track of affiliate links. Update a link once in your dashboard, and it’s automatically updated everywhere it’s used on your site.\u003C\u002Fp>\n\u003Cp>When writing new content, you can quickly search for a link in the editor and insert it without leaving the page. This helps keep your workflow smooth and lets you stay focused on creating content.\u003C\u002Fp>\n\u003Ch3>Getting started\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install and activate Simple URLs.  \u003C\u002Fli>\n\u003Cli>Go to \u003Cstrong>Simple URLs \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Add New\u003C\u002Fstrong>.  \u003C\u002Fli>\n\u003Cli>Enter the destination URL, slug, and any attributes.  \u003C\u002Fli>\n\u003Cli>Save your link and insert it into posts or pages.  \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>That’s all there is to it — manage as many links as you need, all in one place.\u003C\u002Fp>\n\u003Ch3>Looking for advanced features?\u003C\u002Fh3>\n\u003Cp>For comparison tables, product grids, or performance reports, see our separate plugin \u003Ca href=\"https:\u002F\u002Fgetlasso.co\u002Fdocs\u002F\" rel=\"nofollow ugc\">Lasso Documentation\u003C\u002Fa>.\u003C\u002Fp>\n","Simple URLs helps you to manage links, create product displays, and grow your affiliate marketing business.",4000,260134,60,44,"2026-03-03T15:22:00.000Z","5.1","7.2",[137,138,139,140,141],"affiliate","affiliate-link-manager","affiliate-marketing","amazon-affiliate","link-cloaking","https:\u002F\u002Fgetlasso.co\u002F?utm_source=SimpleURLs&utm_medium=WP","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-urls.zip",6,"2023-10-11 00:00:00",{"attackSurface":147,"codeSignals":189,"taintFlows":221,"riskAssessment":261,"analyzedAt":273},{"hooks":148,"ajaxHandlers":167,"restRoutes":185,"shortcodes":186,"cronEvents":187,"entryPointCount":188,"unprotectedCount":32},[149,155,159,163],{"type":150,"name":151,"callback":152,"file":153,"line":154},"action","admin_menu","upl_admin_menu","upress-link.php",51,{"type":150,"name":156,"callback":157,"file":153,"line":158},"admin_init","upl_admin_init",52,{"type":150,"name":160,"callback":161,"file":153,"line":162},"admin_enqueue_scripts","upl_admin_enqueue_scripts",53,{"type":150,"name":164,"callback":165,"file":153,"line":166},"edit_post","upl_edit_post_action",63,[168,173,178,182],{"action":169,"nopriv":170,"callback":171,"hasNonce":170,"hasCapCheck":170,"file":153,"line":172},"check_api_key",false,"upl_ajax_check_api_key",56,{"action":174,"nopriv":170,"callback":175,"hasNonce":176,"hasCapCheck":176,"file":153,"line":177},"send_request","upl_ajax_send_request",true,57,{"action":179,"nopriv":170,"callback":180,"hasNonce":176,"hasCapCheck":176,"file":153,"line":181},"fix_media_upload_path","upl_ajax_fix_media_upload_path",59,{"action":183,"nopriv":170,"callback":184,"hasNonce":176,"hasCapCheck":176,"file":153,"line":131},"database_search_and_replace","upl_ajax_database_search_and_replace",[],[],[],4,{"dangerousFunctions":190,"sqlUsage":195,"outputEscaping":205,"fileOperations":13,"externalRequests":196,"nonceChecks":196,"capabilityChecks":188,"bundledLibraries":220},[191],{"fn":192,"file":153,"line":193,"context":194},"unserialize",402,"if ( is_string( $data ) && ( $unserialized = @unserialize( $data ) ) !== false ) {",{"prepared":196,"raw":197,"locations":198},3,2,[199,202],{"file":153,"line":200,"context":201},271,"$wpdb->get_results() with variable interpolation",{"file":153,"line":203,"context":204},276,"$wpdb->get_row() with variable interpolation",{"escaped":188,"rawEcho":144,"locations":206},[207,210,212,214,216,218],{"file":208,"line":67,"context":209},"admin\\options.php","raw output",{"file":208,"line":211,"context":209},32,{"file":208,"line":213,"context":209},41,{"file":153,"line":215,"context":209},206,{"file":153,"line":217,"context":209},226,{"file":153,"line":219,"context":209},356,[],[222,240],{"entryPoint":223,"graph":224,"unsanitizedCount":13,"severity":239},"upl_ajax_send_request (upress-link.php:154)",{"nodes":225,"edges":237},[226,231],{"id":227,"type":228,"label":229,"file":153,"line":230},"n0","source","$_POST",160,{"id":232,"type":233,"label":234,"file":153,"line":235,"wp_function":236},"n1","sink","wp_remote_post() [SSRF]",166,"wp_remote_post",[238],{"from":227,"to":232,"sanitized":176},"low",{"entryPoint":241,"graph":242,"unsanitizedCount":32,"severity":260},"\u003Cupress-link> (upress-link.php:0)",{"nodes":243,"edges":256},[244,245,246,249,253],{"id":227,"type":228,"label":229,"file":153,"line":230},{"id":232,"type":233,"label":234,"file":153,"line":235,"wp_function":236},{"id":247,"type":228,"label":229,"file":153,"line":248},"n2",409,{"id":250,"type":251,"label":252,"file":153,"line":248},"n3","transform","→ recursive_unserialize_replace()",{"id":254,"type":233,"label":255,"file":153,"line":193,"wp_function":192},"n4","unserialize() [Object Injection]",[257,258,259],{"from":227,"to":232,"sanitized":176},{"from":247,"to":250,"sanitized":170},{"from":250,"to":254,"sanitized":170},"high",{"summary":262,"deductions":263},"The upress-link plugin v1.3.1 presents a mixed security posture. While it exhibits some good security practices, such as a moderate number of capability checks and a decent percentage of SQL queries using prepared statements, there are significant areas of concern. The presence of one unprotected AJAX handler is a critical vulnerability that could allow unauthorized actions if exploited. Furthermore, the taint analysis revealing a flow with unsanitized paths is alarming, suggesting a potential for serious security issues like remote code execution or data breaches. The function unserialize, when used improperly, is a known vector for object injection vulnerabilities, and its presence warrants careful scrutiny.\n\nDespite the lack of recorded past vulnerabilities, the current static analysis findings are substantial enough to indicate a non-trivial risk. The combination of an unprotected entry point and a critical taint flow suggests that the plugin is not as robust as its vulnerability history might imply. Developers should prioritize addressing the unprotected AJAX handler and thoroughly investigating and sanitizing the identified unsanitized path flow. The limited number of entry points is a positive, but the security of each must be ensured. Overall, while there are positive aspects, the identified risks necessitate immediate attention to prevent potential exploitation.",[264,267,269,271],{"reason":265,"points":266},"Unprotected AJAX handler",10,{"reason":268,"points":266},"Taint flow with unsanitized paths (high severity)",{"reason":270,"points":67},"Dangerous function 'unserialize' found",{"reason":272,"points":196},"Low percentage of properly escaped output (40%)","2026-03-16T20:27:53.032Z",{"wat":275,"direct":288},{"assetPaths":276,"generatorPatterns":281,"scriptPaths":282,"versionParams":283},[277,278,279,280],"\u002Fwp-content\u002Fplugins\u002Fupress-link\u002Fadmin\u002Fcss\u002Flc_switch.css","\u002Fwp-content\u002Fplugins\u002Fupress-link\u002Fadmin\u002Fcss\u002Fupress-link.css","\u002Fwp-content\u002Fplugins\u002Fupress-link\u002Fadmin\u002Fjs\u002Flc_switch.min.js","\u002Fwp-content\u002Fplugins\u002Fupress-link\u002Fadmin\u002Fjs\u002Fupress-link.js",[],[279,280],[284,285,286,287],"lc_switch?ver=","upress-link.js?ver=","lc_switch.css?ver=","upress-link.css?ver=",{"cssClasses":289,"htmlComments":291,"htmlAttributes":292,"restEndpoints":295,"jsGlobals":297,"shortcodeOutput":299},[290],"lc_switch",[],[293,294],"data-switch-on","data-switch-off",[296],"\u002Fwp-json\u002Fupress-link\u002Fv1\u002Fsome-endpoint",[298],"upressAjax",[]]