[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ff4BM87kZmzBwDeR9D_aomDevmBPVicXk-nQSI2DZ00E":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":136,"fingerprints":326},"used-media-identifier","Used Media Identifier","1.0.0","Anil Parmar","https:\u002F\u002Fprofiles.wordpress.org\u002Fglorywebs\u002F","\u003Cp>Used Media Identifier is built to find and eliminate the risks of over-using same images for your posts from your WordPress media library.\u003C\u002Fp>\n\u003Cp>An advantage to e-commerce business owners and designers- this plugin will automatically highlight the images that are identical from your existing gallery and file names via WordPress admin panel.\u003C\u002Fp>\n\u003Cp>If you have a bulk of images and you are not able to find the used images which is used in different area in the website then this plugin will helps you to find the used images from media library.\u003C\u002Fp>\n\u003Ch3>Features that you’ll love\u003C\u002Fh3>\n\u003Cp>Automate bulk image duplication analysis\u003Cbr \u002F>\nCreate and manage image icon\u003Cbr \u002F>\nSupports custom label\u003Cbr \u002F>\nHide labels\u003Cbr \u002F>\nHighlight used Images\u003C\u002Fp>\n","Here is a short description of the plugin.  This should be no more than 150 characters.  No markup here.",10,1133,0,"2017-09-06T11:29:00.000Z","4.8.28","4.0","",[19,20,21,22,23],"icon","image","management","media","used-images","http:\u002F\u002Fwww.glorywebs.com\u002Fused_media_identifier","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fused-media-identifier.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"glorywebs",1,30,84,"2026-04-05T09:48:40.732Z",[37,55,76,97,117],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":32,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":53,"download_link":54,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"rename-media","Rename Media","0.1.3","John Godley","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnny5\u002F","\u003Cp>Enhances the WordPress media library by allowing you to rename the underlying media files. Any change to a media item’s title will result in the media filename also being changed.\u003C\u002Fp>\n\u003Cp>See the screenshot for more details of where to rename media files.\u003C\u002Fp>\n\u003Cp>Note that all thumbnails will also be renamed. If you are using a caching plugin, such as WP Super Cache, then you will need to clear your cache so that any references are updated. This plugin does not update existing direct links to files (links inside a WordPress gallery will change).\u003C\u002Fp>\n","Rename underlying media files from the WordPress media management interface",80,12277,20,"2014-11-21T11:17:00.000Z","4.1.42","2.9",[20,21,22,52],"rename","http:\u002F\u002Furbangiraffe.com\u002Fplugins\u002Frename-media\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frename-media.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":13,"num_ratings":13,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":17,"tags":68,"homepage":17,"download_link":74,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"social-media-icons-wp","Social Media Icons WP – Add Custom Social Icons & Links with Shortcode","0.1.0","Niriksha Patel","https:\u002F\u002Fprofiles.wordpress.org\u002Fnirikshapatel05\u002F","\u003Cp>Social Media Icons WP lets you easily display your social profiles using a shortcode. Choose from 150+ Font Awesome icons or upload your own SVG or image icons. You can customize the icon style, color, spacing, and layout, and sort them with drag and drop. Ideal for bloggers, businesses, or developers who want full control over their social links.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Upload your own icons or choose from Font Awesome\u003C\u002Fli>\n\u003Cli>Drag-and-drop sorting of icons\u003C\u002Fli>\n\u003Cli>Live preview while customizing\u003C\u002Fli>\n\u003Cli>Shortcode support for use in headers, footers, posts, or sidebars\u003C\u002Fli>\n\u003Cli>Available 150 + font awesome icons\u003C\u002Fli>\n\u003Cli>SVG support for icons\u003C\u002Fli>\n\u003Cli>Vertical and horizontal layouts\u003C\u002Fli>\n\u003Cli>Fully customizable:\n\u003Cul>\n\u003Cli>Icons color\u003C\u002Fli>\n\u003Cli>Hover icon color \u003C\u002Fli>\n\u003Cli>Size of the icons\u003C\u002Fli>\n\u003Cli>Border\u003C\u002Fli>\n\u003Cli>Alignment option\u003C\u002Fli>\n\u003Cli>Horizontal \u002F Vertical spacing between icons\u003C\u002Fli>\n\u003Cli>Hover transition duration option\u003C\u002Fli>\n\u003Cli>Hover Effect\u003C\u002Fli>\n\u003Cli>Icon shape style\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Separate styles for different shortcode placements\u003C\u002Fli>\n\u003Cli>Open links in new tab, set rel attributes, enable tooltips\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Demos\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftastewp.com\u002Fnew?pre-installed-plugin-slug=social-media-icons-wp&redirect=edit.php%3Fpost_type%3Dsocial_media_icon&ni=true\" rel=\"nofollow ugc\">Try Demo Here\u003C\u002Fa>\u003C\u002Fp>\n","Add social media icons using Font Awesome or custom images. Easily sort, style, and display icons anywhere via shortcode.",60,2126,"2026-01-29T17:45:00.000Z","6.9.4","4.7",[69,70,71,72,73],"font-awesome","icon-links","image-icons","social-icons","social-media","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-icons-wp.0.1.0.zip",100,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":13,"num_ratings":13,"last_updated":86,"tested_up_to":66,"requires_at_least":87,"requires_php":88,"tags":89,"homepage":95,"download_link":96,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"thumbnail-remover","Thumbnail Remover and Size Manager","2.0.0","Mehdi Rezaei","https:\u002F\u002Fprofiles.wordpress.org\u002Fmehdiraized\u002F","\u003Cp>Thumbnail Remover and Size Manager 2.0 is a safer and more complete media-maintenance workflow for WordPress.\u003C\u002Fp>\n\u003Cp>Instead of deleting thumbnails blindly, the plugin now helps you:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Preview cleanup results before removing files\u003C\u002Fli>\n\u003Cli>Move thumbnails to plugin Trash instead of deleting permanently\u003C\u002Fli>\n\u003Cli>Restore trashed thumbnails later if needed\u003C\u002Fli>\n\u003Cli>Process large libraries in batches with visible progress\u003C\u002Fli>\n\u003Cli>Detect orphan thumbnails left behind on disk\u003C\u002Fli>\n\u003Cli>Detect probably unused media items across post content, featured images, and common builder data\u003C\u002Fli>\n\u003Cli>Regenerate missing image sizes in batches\u003C\u002Fli>\n\u003Cli>Review per-size analytics including file counts, storage usage, missing sizes, and orphan counts\u003C\u002Fli>\n\u003Cli>Disable selected image sizes for future uploads\u003C\u002Fli>\n\u003Cli>Create zip backups for all uploads or a specific year\u002Fmonth folder\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This release is built for site owners, developers, agencies, and anyone trying to reduce thumbnail bloat without risking accidental data loss.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Dry run \u002F preview before cleanup\u003C\u002Fli>\n\u003Cli>Trash and Restore workflow for safer deletion\u003C\u002Fli>\n\u003Cli>Batch processing with real progress for scan, cleanup, and regeneration\u003C\u002Fli>\n\u003Cli>Unused media detection\u003C\u002Fli>\n\u003Cli>Orphan thumbnail detection\u003C\u002Fli>\n\u003Cli>Regenerate missing sizes\u003C\u002Fli>\n\u003Cli>Per-size analytics dashboard\u003C\u002Fli>\n\u003Cli>Image size disable controls for future uploads\u003C\u002Fli>\n\u003Cli>Media backup export to zip\u003C\u002Fli>\n\u003C\u002Ful>\n","Safely analyze, preview, trash, restore, regenerate, and manage WordPress thumbnails and image sizes.",50,1134,"2026-03-14T13:44:00.000Z","5.0","7.4",[90,91,92,93,94],"cleanup","image-optimization","media-management","regenerate-thumbnails","thumbnails","https:\u002F\u002Fgithub.com\u002Fmehdiraized\u002Fthumbnail-remover\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthumbnail-remover.2.0.0.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":47,"downloaded":105,"rating":13,"num_ratings":13,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":17,"download_link":116,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"pixrem","PixRem – Unused Image Cleaner","1.0.3","OM Media","https:\u002F\u002Fprofiles.wordpress.org\u002Fommediasa\u002F","\u003Cp>\u003Cstrong>PixRem\u003C\u002Fstrong> scans your WordPress site to find images no longer in use and helps you safely delete them to save storage space and improve performance.\u003C\u002Fp>\n\u003Cp>Key benefits:\u003Cbr \u002F>\n– 🕵️‍♂️ \u003Cstrong>Comprehensive detection\u003C\u002Fstrong>: scans posts, pages, custom post types, serialized data, ACF, Elementor, Divi, Bricks, WPBakery\u003Cbr \u002F>\n– 🛒 \u003Cstrong>WooCommerce support\u003C\u002Fstrong>: finds featured & gallery images\u003Cbr \u002F>\n– ⚙️ \u003Cstrong>Theme options & SEO\u003C\u002Fstrong>: custom logos, backgrounds, Yoast OG images, site icon\u003Cbr \u002F>\n– 🛡 \u003Cstrong>Automatic backup\u003C\u002Fstrong>: every deleted image is saved to \u002Fwp-content\u002Fuploads\u002Fpixrem-backups\u002FYYYY\u002FMM\u002F\u003Cbr \u002F>\n– 📝 \u003Cstrong>Log system\u003C\u002Fstrong>: review all deletions and restore individual images\u003Cbr \u002F>\n– 🔒 \u003Cstrong>Whitelist \u002F Exclude\u003C\u002Fstrong>: prevent deletion of critical files by ID or path\u003C\u002Fp>\n","Find and delete unused images in your Media Library. Backup, restore, whitelist, and scan support for all major page builders.",328,"2025-09-22T20:27:00.000Z","6.8.5","5.4","7.2",[111,112,113,114,115],"image-optimizer","media-cleaner","media-library","remove-images","unused-images","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpixrem.1.0.3.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":11,"downloaded":125,"rating":75,"num_ratings":126,"last_updated":17,"tested_up_to":15,"requires_at_least":127,"requires_php":128,"tags":129,"homepage":133,"download_link":134,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":135},"amw-clear-upload-folder","AMW Clear Upload Folder","1.1.5","alim511","https:\u002F\u002Fprofiles.wordpress.org\u002Falim511\u002F","\u003Cp>\u003Cstrong>\u003Cbr \u002F>\nBefore using this plugin, please make sure that you BACKUP ‘upload’ folder. This is the most important step!\u003Cbr \u002F>\nAlso do not forget Rescan Images every time you change settings\u003Cbr \u002F>\n\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cstrong>\u003Cbr \u002F>\nPlease note that ‘max_execution_time’ PHP setting should be minimum 90 seconds for the correct script work.\u003Cbr \u002F>\n\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>AMW Clear Upload Folder will compare images entries from the database with filenames in upload directory.\u003Cbr \u002F>\nAll files that are missing in the database will be removed from the filesystem.\u003C\u002Fp>\n\u003Ch3>HOW TO USE\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install and activate plugin\u003C\u002Fli>\n\u003Cli>Go to the ‘Settings’ tab and choose needed settings. Please note everytime you make changes to the settings,\u003Cbr \u002F>\nyou need to rescan images on the ‘List of files’ tab\u003C\u002Fli>\n\u003Cli>Go to ‘List of folders’ tab under plugin page and choose folders that you DO NOT WANT to clean\u003C\u002Fli>\n\u003Cli>After this you can navigate to ‘Main’ tab and click ‘Run cleaner’ button\u003C\u002Fli>\n\u003Cli>That’s all plugin will start cleaning files\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>If you think, that you found a bug in our AMW Clear Upload Folder plugin or have any question contact us at alimov.dmitriy.me[at]gmail.com\u003C\u002Fp>\n\u003Ch3>DISCLAIMER\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>NO WARRANTY, USE IT AT YOUR OWN RISK!\u003C\u002Fstrong>\u003C\u002Fp>\n","Removes unused files from the 'uploads' folder",1825,3,"4.4.2","5.5",[130,131,22,115,132],"clear-uploads","images","uploads","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Famw-clear-upload-folder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Famw-clear-upload-folder.zip","2026-03-15T10:48:56.248Z",{"attackSurface":137,"codeSignals":188,"taintFlows":264,"riskAssessment":312,"analyzedAt":325},{"hooks":138,"ajaxHandlers":184,"restRoutes":185,"shortcodes":186,"cronEvents":187,"entryPointCount":13,"unprotectedCount":13},[139,145,148,151,156,160,165,168,171,173,176,179,182],{"type":140,"name":141,"callback":142,"priority":11,"file":143,"line":144},"action","admin_footer","new_wp_print_media_templates","admin\\class-used-media-identifier-admin.php",107,{"type":140,"name":146,"callback":142,"priority":11,"file":143,"line":147},"wp_footer",108,{"type":140,"name":149,"callback":142,"priority":11,"file":143,"line":150},"customize_controls_print_footer_scripts",109,{"type":152,"name":153,"callback":154,"priority":11,"file":143,"line":155},"filter","wp_prepare_attachment_for_js","update_media_attachment_url",110,{"type":140,"name":157,"callback":158,"file":143,"line":159},"post-plupload-upload-ui","media_upload_flash_bypass",237,{"type":140,"name":161,"callback":162,"file":163,"line":164},"plugins_loaded","anonymous","includes\\class-used-media-identifier.php",147,{"type":140,"name":166,"callback":162,"file":163,"line":167},"admin_menu",162,{"type":140,"name":169,"callback":162,"file":163,"line":170},"admin_enqueue_scripts",166,{"type":140,"name":169,"callback":162,"file":163,"line":172},167,{"type":140,"name":174,"callback":162,"file":163,"line":175},"admin_init",168,{"type":140,"name":177,"callback":162,"file":163,"line":178},"post_updated",169,{"type":140,"name":180,"callback":162,"file":163,"line":181},"wp_enqueue_scripts",184,{"type":140,"name":180,"callback":162,"file":163,"line":183},185,[],[],[],[],{"dangerousFunctions":189,"sqlUsage":190,"outputEscaping":192,"fileOperations":32,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":263},[],{"prepared":13,"raw":13,"locations":191},[],{"escaped":193,"rawEcho":194,"locations":195},34,37,[196,199,201,203,204,206,208,209,211,213,215,217,219,221,222,224,226,228,230,232,233,236,238,240,242,244,246,248,250,251,253,255,257,258,259,260,261],{"file":143,"line":197,"context":198},182,"raw output",{"file":143,"line":200,"context":198},410,{"file":143,"line":202,"context":198},411,{"file":143,"line":202,"context":198},{"file":143,"line":205,"context":198},607,{"file":143,"line":207,"context":198},608,{"file":143,"line":207,"context":198},{"file":143,"line":210,"context":198},779,{"file":143,"line":212,"context":198},1102,{"file":143,"line":214,"context":198},1103,{"file":143,"line":216,"context":198},1104,{"file":143,"line":218,"context":198},1108,{"file":143,"line":220,"context":198},1109,{"file":143,"line":220,"context":198},{"file":143,"line":223,"context":198},1183,{"file":143,"line":225,"context":198},1184,{"file":143,"line":227,"context":198},1185,{"file":143,"line":229,"context":198},1189,{"file":143,"line":231,"context":198},1190,{"file":143,"line":231,"context":198},{"file":234,"line":235,"context":198},"admin\\class-used-media-identifier-settings.php",64,{"file":234,"line":237,"context":198},127,{"file":234,"line":239,"context":198},137,{"file":234,"line":241,"context":198},142,{"file":234,"line":243,"context":198},143,{"file":234,"line":245,"context":198},144,{"file":234,"line":247,"context":198},145,{"file":234,"line":249,"context":198},146,{"file":234,"line":167,"context":198},{"file":234,"line":252,"context":198},163,{"file":234,"line":254,"context":198},164,{"file":234,"line":256,"context":198},165,{"file":234,"line":256,"context":198},{"file":234,"line":170,"context":198},{"file":234,"line":172,"context":198},{"file":234,"line":172,"context":198},{"file":234,"line":262,"context":198},174,[],[265,283,291,304],{"entryPoint":266,"graph":267,"unsanitizedCount":13,"severity":282},"new_wp_print_media_templates (admin\\class-used-media-identifier-admin.php:156)",{"nodes":268,"edges":279},[269,274],{"id":270,"type":271,"label":272,"file":143,"line":273},"n0","source","$_SERVER['REQUEST_URI'] (x2)",271,{"id":275,"type":276,"label":277,"file":143,"line":273,"wp_function":278},"n1","sink","echo() [XSS]","echo",[280],{"from":270,"to":275,"sanitized":281},true,"low",{"entryPoint":284,"graph":285,"unsanitizedCount":13,"severity":282},"\u003Cclass-used-media-identifier-admin> (admin\\class-used-media-identifier-admin.php:0)",{"nodes":286,"edges":289},[287,288],{"id":270,"type":271,"label":272,"file":143,"line":273},{"id":275,"type":276,"label":277,"file":143,"line":273,"wp_function":278},[290],{"from":270,"to":275,"sanitized":281},{"entryPoint":292,"graph":293,"unsanitizedCount":32,"severity":282},"media_file_settings_page (admin\\class-used-media-identifier-settings.php:84)",{"nodes":294,"edges":301},[295,298],{"id":270,"type":271,"label":296,"file":234,"line":297},"$_POST['hideonmedia']",130,{"id":275,"type":276,"label":299,"file":234,"line":297,"wp_function":300},"update_option() [Settings Manipulation]","update_option",[302],{"from":270,"to":275,"sanitized":303},false,{"entryPoint":305,"graph":306,"unsanitizedCount":32,"severity":282},"\u003Cclass-used-media-identifier-settings> (admin\\class-used-media-identifier-settings.php:0)",{"nodes":307,"edges":310},[308,309],{"id":270,"type":271,"label":296,"file":234,"line":297},{"id":275,"type":276,"label":299,"file":234,"line":297,"wp_function":300},[311],{"from":270,"to":275,"sanitized":303},{"summary":313,"deductions":314},"The 'used-media-identifier' v1.0.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by having no known vulnerabilities (CVEs) and zero identified dangerous functions. The absence of external HTTP requests and the use of prepared statements for all SQL queries are also significant strengths, indicating a conscious effort to avoid common web attack vectors. However, several areas raise concerns. The limited attack surface is notable, but the complete lack of nonce and capability checks across any entry points is a significant weakness, leaving potential avenues for exploitation if any such points were to be introduced or discovered later. Furthermore, the low percentage of properly escaped output (48%) suggests a risk of Cross-Site Scripting (XSS) vulnerabilities, particularly if user-supplied data is involved in these unescaped outputs. The taint analysis revealing flows with unsanitized paths, although not classified as critical or high severity, warrants attention as it points to potential issues with handling file paths. The vulnerability history, while currently clean, could be misleading if the plugin has not been extensively tested or if this is its first release, and therefore its long-term security track record is unproven.\n\nOverall, while the plugin appears to have a solid foundation by avoiding known dangerous practices like raw SQL and external requests, the lack of input validation and output escaping is a notable risk. The unsanitized paths in the taint analysis, coupled with the low output escaping rate, are the most concrete technical risks identified. The complete absence of nonces and capability checks presents a structural weakness that could become critical if the plugin evolves or if new entry points are added without proper security considerations. Given the current state, the primary risks revolve around potential XSS and file manipulation vulnerabilities stemming from inadequate sanitization and escaping.",[315,317,320,323],{"reason":316,"points":11},"Low proper output escaping rate (48%)",{"reason":318,"points":319},"Taint analysis: Unsantized paths found",7,{"reason":321,"points":322},"No nonce checks on any entry points",5,{"reason":324,"points":322},"No capability checks on any entry points","2026-03-17T00:59:11.609Z",{"wat":327,"direct":336},{"assetPaths":328,"generatorPatterns":331,"scriptPaths":332,"versionParams":333},[329,330],"\u002Fwp-content\u002Fplugins\u002Fused-media-identifier\u002Fcss\u002Fused-media-identifier-admin.css","\u002Fwp-content\u002Fplugins\u002Fused-media-identifier\u002Fjs\u002Fused-media-identifier-admin.js",[],[330],[334,335],"used-media-identifier-admin.css?ver=","used-media-identifier-admin.js?ver=",{"cssClasses":337,"htmlComments":339,"htmlAttributes":340,"restEndpoints":343,"jsGlobals":344,"shortcodeOutput":346},[338],"media-modal",[],[341,342],"is_badge","dateymd",[],[345],"window.used_media_identifier_admin",[]]