[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fEbOwd7xsS30fWJoYFL11XuLsZ3lzlocRDVp69xtZmmI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":34,"analysis":130,"fingerprints":880},"watchman-site7","WatchMan-Site7","4.2.0","adminkov","https:\u002F\u002Fprofiles.wordpress.org\u002Fadminkov\u002F","\u003Cp>The plugin keeps a log of site visits, both by humans and by robots.\u003Cbr \u002F>\nThe main functions of the plugin are:\u003Cbr \u002F>\n1. Records the date and time of visiting the site, where the visitor came from, which page he visited, the visitor’s browser.\u003Cbr \u002F>\n2. Records the result of the visit: without login, with login, successful login, unsuccessful login, the visitor belongs to the black list.\u003Cbr \u002F>\n4. Blacklisting of a visitor with simultaneous blocking of access to the site for a certain period of time.\u003Cbr \u002F>\n5. Export of records of site visits to an external file for further analysis.\u003Cbr \u002F>\n6. Automatic screen refresh mode using SSE technology (server-sent events).\u003Cbr \u002F>\n8. System file editor: index.php, robots.txt, htaccess, wp-config.php\u003Cbr \u002F>\n9. Displaying and Deleting cron events.\u003Cbr \u002F>\n10. Statistics of site visits in tabular and graphical form.\u003Cbr \u002F>\n12. admin console to run commands PHP and WordPress.\u003Cbr \u002F>\n13. debug_log viewing the WP, PHP debug log of site.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fadminkov.bcr.by\u002F\" rel=\"nofollow ugc\">Plugin home page\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=iB-7anPcUxU&list=PLe_4Q0gv64g3WgA1Mo_S3arSrK3htZ1Nt\" rel=\"nofollow ugc\">Demo video – [RU]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fadminkov.bcr.by\u002Fdoc\u002Fwatchman-site7\u002Fapi_doc\u002Findex.html\" rel=\"nofollow ugc\">API Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fadminkov.bcr.by\u002Fdoc\u002Fwatchman-site7\u002Fuser_doc\u002Findex.htm\" rel=\"nofollow ugc\">User Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can send a letter to the developer at: klenitskiy.oleg@mail.ru\u003C\u002Fp>\n\u003Ch3>Features include:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Filters I level: by date, by country, by visitor’s roles\u003C\u002Fli>\n\u003Cli>Filters II level: by logged, by unlogged, by login errors, by visits of robots, by visitors from the black list\u003C\u002Fli>\n\u003Cli>Report of selected site visit records\u003C\u002Fli>\n\u003Cli>Log auto-truncation\u003C\u002Fli>\n\u003Cli>File editor: index.php\u003C\u002Fli>\n\u003Cli>File editor: robots.txt\u003C\u002Fli>\n\u003Cli>File editor: .htaccess\u003C\u002Fli>\n\u003Cli>File editor: wp-config.php\u003C\u002Fli>\n\u003Cli>Manage cron – events of site\u003C\u002Fli>\n\u003Cli>Statistics of visits to the site\u003C\u002Fli>\n\u003Cli>Built-in console for managing WordPress environment.\u003C\u002Fli>\n\u003Cli>Widget: site visits count with automatic update of visits data\u003C\u002Fli>\n\u003Cli>Information about the IP of the visitor\u003C\u002Fli>\n\u003Cli>Black list of visitors and blocking the IP, or user name, or user agent for the selected period of time\u003C\u002Fli>\n\u003Cli>Automatic updating of the list of site visits using SSE technology\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Translations:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>English [en_EN]\u003C\u002Fli>\n\u003Cli>Russian [ru_RU]\u003C\u002Fli>\n\u003C\u002Ful>\n","Control of site visits, system files.",10,4577,90,2,"2025-12-05T00:23:00.000Z","6.9.4","","7.4",[20,21,22],"cron","security","statistic","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwatchman-site7\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwatchman-site7.4.2.0.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":31,"avg_security_score":25,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},30,94,"2026-04-04T03:52:43.487Z",[35,56,76,94,113],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":25,"num_ratings":45,"last_updated":46,"tested_up_to":16,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":54,"download_link":55,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"divewp-boost-site-performance","DiveWP – Boost Site Performance with Clear, Actionable Steps","2.3.3","Oleg Petrov","https:\u002F\u002Fprofiles.wordpress.org\u002Freplikon\u002F","\u003Ch4>🔌 NEW: Plugins Management\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Monitor and manage all installed plugins from one place.\u003C\u002Fstrong> DiveWP’s \u003Cstrong>Plugins Management\u003C\u002Fstrong> feature shows every plugin with active\u002Finactive status, update availability, and “Up to date” state. View details and changelog from WordPress.org, and activate or deactivate plugins without leaving the dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Plugins Management & Abilities API:\u003C\u002Fstrong> Use the \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode> ability so AI assistants can list plugins, fetch description and changelog for a plugin, or activate\u002Fdeactivate a plugin by file path.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What Plugins Management Delivers:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Unified plugin list\u003C\u002Fstrong> – All installed plugins with status pills (Active, Inactive, Update Available, Up to date)\u003Cbr \u002F>\n* \u003Cstrong>Dashboard overview\u003C\u002Fstrong> – Green and red pill counts on the main dashboard for quick health overview\u003Cbr \u002F>\n* \u003Cstrong>Details drawer\u003C\u002Fstrong> – Overview, full description, and changelog from WordPress.org\u003Cbr \u002F>\n* \u003Cstrong>Toggle activation\u003C\u002Fstrong> – Activate or deactivate plugins from the card or drawer\u003Cbr \u002F>\n* \u003Cstrong>Search\u003C\u002Fstrong> – Filter plugins by name, author, or description\u003Cbr \u002F>\n* \u003Cstrong>Abilities API\u003C\u002Fstrong> – Operations: list (all plugins), details (wp.org info for one plugin), toggle (activate\u002Fdeactivate)\u003C\u002Fp>\n\u003Ch4>🤖 NEW: AI Capabilities & WordPress Abilities API\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Talk to your WordPress site through AI!\u003C\u002Fstrong> DiveWP integrates with the \u003Cstrong>WordPress Abilities API\u003C\u002Fstrong> and Model Context Protocol (MCP), so AI tools like Cursor, Claude, and ChatGPT can query your site’s health and diagnostics directly—no copy-paste needed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Abilities API & MCP:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>11 Diagnostic Abilities\u003C\u002Fstrong> – Server insights, cron monitoring, plugins management, database health, security audits, and more via the Abilities API\u003Cbr \u002F>\n* \u003Cstrong>Zero Copy-Paste\u003C\u002Fstrong> – AI agents run diagnostics through MCP without manual log sharing\u003Cbr \u002F>\n* \u003Cstrong>Secure Authentication\u003C\u002Fstrong> – WordPress Application Passwords for safe, controlled access\u003Cbr \u002F>\n* \u003Cstrong>Step-by-Step Setup\u003C\u002Fstrong> – “AI Capabilities” tab guides you through 3-step configuration for Abilities API and MCP clients\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Available Abilities:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fserver-insights\u003C\u002Fcode> – Full server health & config check\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> – Monitor WP-Cron and Action Scheduler; background tasks & overdue jobs\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fdb-insights\u003C\u002Fcode> – Database size & optimization status\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fsecurity-insights\u003C\u002Fcode> – Vulnerability & configuration audit\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fperformance-checks\u003C\u002Fcode> – Caching & optimization discovery\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Ftheme-builder-insights\u003C\u002Fcode> – Theme and page builder health\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fwoocommerce-best-practices\u003C\u002Fcode> – WooCommerce optimization\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fseo-optimization\u003C\u002Fcode> – SEO configuration audit\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Femail-communications\u003C\u002Fcode> – Email delivery & SMTP status\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fhosting-benchmark-latest\u003C\u002Fcode> – Latest benchmark results\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode> – List installed plugins, fetch wp.org details\u002Fchangelog, or toggle plugin activation (operations: list, details, toggle)\u003C\u002Fp>\n\u003Ch4>⏰ NEW: Cron Job Manager & WP-Cron Monitoring\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Take control of WordPress cron jobs and scheduled tasks.\u003C\u002Fstrong> DiveWP’s \u003Cstrong>Cron Job Manager\u003C\u002Fstrong> gives you a clear view of WP-Cron and Action Scheduler so you can spot overdue jobs, slow hooks, and misconfigured cron setups.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cron Jobs & Abilities API:\u003C\u002Fstrong> Use the \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> ability so AI assistants can inspect your cron status, overdue tasks, and recommendations without opening the admin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What the Cron Job Manager Delivers:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Real-time cron monitoring\u003C\u002Fstrong> – WP-Cron and Action Scheduler in one dashboard\u003Cbr \u002F>\n* \u003Cstrong>Hook performance\u003C\u002Fstrong> – Execution time and memory per cron hook\u003Cbr \u002F>\n* \u003Cstrong>Overdue & orphan detection\u003C\u002Fstrong> – Find stuck or orphaned scheduled tasks\u003Cbr \u002F>\n* \u003Cstrong>Execution history\u003C\u002Fstrong> – Filterable, paginated cron run history\u003Cbr \u002F>\n* \u003Cstrong>Health guidance\u003C\u002Fstrong> – System health and cron configuration tips\u003C\u002Fp>\n\u003Ch4>🚀 Hosting Performance Benchmark – Know If You Need to Upgrade!\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Measure how your hosting handles your WordPress site!\u003C\u002Fstrong> DiveWP’s comprehensive Hosting Performance Benchmark is a powerful enterprise-grade testing system that evaluates your hosting environment through real-world performance tests.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What It Tests:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Database Performance\u003C\u002Fstrong> – Tests INSERT, SELECT, UPDATE operations, datetime functions, and aggregate operations (8 comprehensive tests)\u003Cbr \u002F>\n* \u003Cstrong>Server Resources\u003C\u002Fstrong> – Evaluates CPU, memory, I\u002FO, and network capabilities (5 resource tests)\u003Cbr \u002F>\n* \u003Cstrong>Concurrency Handling\u003C\u002Fstrong> – Measures how your hosting performs under multiple simultaneous requests (4 concurrency tests)\u003Cbr \u002F>\n* \u003Cstrong>E-commerce Performance\u003C\u002Fstrong> – Tests WooCommerce-like operations including price calculations, shipping, and inventory checks (3 performance tests)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Benefits:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>20+ Individual Tests\u003C\u002Fstrong> – Comprehensive evaluation across 4 major categories\u003Cbr \u002F>\n* \u003Cstrong>Real-World Simulation\u003C\u002Fstrong> – Tests simulate actual WordPress operations, not synthetic benchmarks\u003Cbr \u002F>\n* \u003Cstrong>6-Minute Complete Analysis\u003C\u002Fstrong> – Get detailed insights in approximately 6 minutes\u003Cbr \u002F>\n* \u003Cstrong>Actionable Results\u003C\u002Fstrong> – Understand if your current hosting is sufficient or if you need to upgrade\u003Cbr \u002F>\n* \u003Cstrong>Cross-Database Compatible\u003C\u002Fstrong> – Works with MySQL, MariaDB, PostgreSQL, SQLite, and SQL Server\u003Cbr \u002F>\n* \u003Cstrong>Optimized for Shared Hosting\u003C\u002Fstrong> – Designed to work efficiently even on shared hosting environments\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect For:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Site owners wondering if their hosting plan is sufficient\u003Cbr \u002F>\n* Users experiencing slow performance and wanting to identify bottlenecks\u003Cbr \u002F>\n* Anyone considering upgrading their hosting plan\u003Cbr \u002F>\n* Developers evaluating hosting performance for client sites\u003C\u002Fp>\n\u003Ch4>🎯 Transform Your WP Journey\u003C\u002Fh4>\n\u003Cp>Discover your site’s true potential by understanding exactly what’s happening under the hood. DiveWP provides clear insights about Performance, Security, and Best Practices – all explained in plain English. Take control of your digital presence by learning as you optimize!\u003C\u002Fp>\n\u003Ch4>🔍 Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>🔌 NEW: Plugins Management\u003C\u002Fstrong>\u003Cbr \u002F>\n* Unified list of all installed plugins with status (Active, Inactive, Update Available, Up to date)\u003Cbr \u002F>\n* Dashboard counts green (up to date) and red (updates available) pills for quick overview\u003Cbr \u002F>\n* Details drawer with overview, WordPress.org description, and changelog\u003Cbr \u002F>\n* Toggle plugin activation from card or drawer; search by name, author, or description\u003Cbr \u002F>\n* Abilities API: \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode> (list, details, toggle) for AI-assisted plugin management\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⏰ NEW: Cron Job Manager & WP-Cron Monitoring\u003C\u002Fstrong>\u003Cbr \u002F>\n* Real-time WP-Cron and Action Scheduler tracking\u003Cbr \u002F>\n* Monitor hook performance and execution time\u003Cbr \u002F>\n* Detect orphaned and overdue tasks\u003Cbr \u002F>\n* Identify problematic cron hooks affecting performance\u003Cbr \u002F>\n* Complete execution history with filtering and pagination\u003Cbr \u002F>\n* Integrates with Abilities API via \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> for AI-assisted cron diagnostics\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🤖 NEW: AI Capabilities & WordPress Abilities API\u003C\u002Fstrong>\u003Cbr \u002F>\n* WordPress Abilities API and MCP let AI assistants query your site for diagnostics\u003Cbr \u002F>\n* 11 abilities for server, cron jobs, plugins, security, database, and performance insights\u003Cbr \u002F>\n* Works with Cursor, Claude Desktop, ChatGPT, and other MCP clients\u003Cbr \u002F>\n* Secure access via WordPress Application Passwords\u003Cbr \u002F>\n* Step-by-step setup guide in “AI Capabilities” tab\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🚀 Hosting Performance Benchmark\u003C\u002Fstrong>\u003Cbr \u002F>\n* Comprehensive hosting evaluation with 20+ real-world performance tests\u003Cbr \u002F>\n* Database, resource, concurrency, and e-commerce performance analysis\u003Cbr \u002F>\n* Determine if your hosting plan is sufficient for your site\u003Cbr \u002F>\n* Cross-database compatibility (MySQL, MariaDB, PostgreSQL, SQLite, SQL Server)\u003Cbr \u002F>\n* Optimized for shared hosting environments\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Deep Site Insights\u003C\u002Fstrong>\u003Cbr \u002F>\n* Understand your site inside out\u003Cbr \u002F>\n* Comprehensive analysis of core functions\u003Cbr \u002F>\n* Database health monitoring\u003Cbr \u002F>\n* User activity tracking\u003Cbr \u002F>\n* Everything explained in plain English\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚡ Performance & Speed\u003C\u002Fstrong>\u003Cbr \u002F>\n* Clear performance insights\u003Cbr \u002F>\n* Actionable optimization steps\u003Cbr \u002F>\n* Speed improvement recommendations\u003Cbr \u002F>\n* Learn what affects your site’s performance\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛡️ Security & Best Practices\u003C\u002Fstrong>\u003Cbr \u002F>\n* Proactive security checks\u003Cbr \u002F>\n* Easy-to-follow hardening recommendations\u003Cbr \u002F>\n* Learn WordPress security best practices\u003Cbr \u002F>\n* Implement as you learn\u003C\u002Fp>\n\u003Cp>\u003Cstrong>📊 Database Health\u003C\u002Fstrong>\u003Cbr \u002F>\n* Optimize database performance\u003Cbr \u002F>\n* Clear insights into tables and structure\u003Cbr \u002F>\n* Cleanup recommendations\u003Cbr \u002F>\n* Learn database management without being a tech expert\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🎯 SEO & Visibility\u003C\u002Fstrong>\u003Cbr \u002F>\n* Practical SEO recommendations\u003Cbr \u002F>\n* Essential optimization techniques\u003Cbr \u002F>\n* Improve search engine rankings\u003Cbr \u002F>\n* Learn while implementing\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛍️ WooCommerce Optimization\u003C\u002Fstrong>\u003Cbr \u002F>\n* Specialized store insights\u003Cbr \u002F>\n* Performance optimization\u003Cbr \u002F>\n* Checkout process analysis\u003Cbr \u002F>\n* Shopping experience improvements\u003C\u002Fp>\n\u003Cp>\u003Cstrong>📧 Email System Monitor\u003C\u002Fstrong>\u003Cbr \u002F>\n* Detailed logging and diagnostics\u003Cbr \u002F>\n* Track email system performance\u003Cbr \u002F>\n* Ensure reliable communication\u003Cbr \u002F>\n* Monitor delivery status\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🎨 Theme & Builder Analysis\u003C\u002Fstrong>\u003Cbr \u002F>\n* Theme performance insights\u003Cbr \u002F>\n* Page builder optimization\u003Cbr \u002F>\n* Visual elements analysis\u003Cbr \u002F>\n* Speed optimization guidance\u003C\u002Fp>\n\u003Ch4>💡 How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Install & Scan:\u003C\u002Fstrong> Quick installation and automatic site analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Get Clear Insights:\u003C\u002Fstrong> Receive easy-to-understand explanations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Learn Best Practices:\u003C\u002Fstrong> Understand WordPress through your own site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Implement Changes:\u003C\u002Fstrong> Follow actionable recommendations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Monitor Progress:\u003C\u002Fstrong> Track improvements and keep learning\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>🎯 Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress Beginners:\u003C\u002Fstrong> Finally understand what’s happening on your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Store Owners:\u003C\u002Fstrong> Optimize WooCommerce performance and boost sales\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Agency Teams:\u003C\u002Fstrong> Maintain multiple sites while learning best practices\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Creators:\u003C\u002Fstrong> Improve site visibility while mastering WordPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🌟 What’s New in 2.3.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: Plugins Management\u003C\u002Fli>\n\u003Cli>New “Plugins Management” feature: view all installed plugins with status pills (Active, Inactive, Update Available, Up to date)\u003C\u002Fli>\n\u003Cli>Dashboard overview counts green (up to date) and red (updates available) pills alongside other feature statuses\u003C\u002Fli>\n\u003Cli>Details drawer with overview, full description, and changelog from WordPress.org\u003C\u002Fli>\n\u003Cli>Activate\u002Fdeactivate plugins from the card or drawer; search by name, author, or description\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: Abilities API – \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Operations: list (all plugins with status), details (wp.org description and changelog for one plugin), toggle (activate\u002Fdeactivate by plugin file)\u003C\u002Fli>\n\u003Cli>AI assistants can list plugins, fetch plugin info, or change activation state via MCP\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🌟 What’s New in 2.2.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: AI Capabilities & WordPress Abilities API\u003C\u002Fli>\n\u003Cli>New “AI Capabilities” tab with step-by-step setup guide\u003C\u002Fli>\n\u003Cli>10 diagnostic abilities for AI agents (server, cron jobs, database, security, performance, and more)\u003C\u002Fli>\n\u003Cli>Support for Cursor, Claude Desktop, ChatGPT via Model Context Protocol (MCP)\u003C\u002Fli>\n\u003Cli>Secure access using WordPress Application Passwords\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: Cron Job Manager & WP-Cron Monitoring\u003C\u002Fli>\n\u003Cli>Full cron jobs dashboard: WP-Cron and Action Scheduler in one place\u003C\u002Fli>\n\u003Cli>Hook performance, overdue and orphan detection, execution history\u003C\u002Fli>\n\u003Cli>Abilities API integration: \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> for AI-driven cron diagnostics\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: REST API Access Logging in User Events\u003C\u002Fli>\n\u003Cli>Track API access via Application Passwords in the event log\u003C\u002Fli>\n\u003Cli>Monitor AI agent activity and external integrations\u003C\u002Fli>\n\u003Cli>Throttled logging to prevent flood from MCP bursts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IMPROVED\u003C\u002Fstrong>: Cron Jobs Feature Enhancements\u003C\u002Fli>\n\u003Cli>Aligned AJAX and server health calculations for consistent status display\u003C\u002Fli>\n\u003Cli>“Potential orphan” terminology for clearer task identification\u003C\u002Fli>\n\u003Cli>Added Alternate Cron explanation footnote\u003C\u002Fli>\n\u003Cli>Visual accent pills for Important\u002FRecommendation notes in task modals\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Need help? We’re here for you!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>📚 \u003Ca href=\"https:\u002F\u002Fdivewp.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>💬 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fdivewp\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>🐞 \u003Ca href=\"https:\u002F\u002Fdivewp.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Bug Reports and Contact\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>DiveWP respects your privacy and that of your users. We do not collect any personal data. All analysis is performed locally on your server.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>DiveWP is proudly created and maintained by Oleg Petrov.\u003C\u002Fp>\n","Learn WP Best Practices Through Your Own Site! Get clear insights about Performance, Security, and Best Practices – explained in plain English.",200,1884,6,"2026-02-26T08:16:00.000Z","6.8","7.2",[50,51,52,21,53],"abilities-api","cron-jobs","performance-optimization","site-health","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdivewp-boost-site-performance\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdivewp-boost-site-performance.2.3.3.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":26,"num_ratings":26,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":48,"tags":69,"homepage":74,"download_link":75,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"simple-ip-logger","Simple IP Logger","1.0.1","ネトデジ編集部","https:\u002F\u002Fprofiles.wordpress.org\u002Fminikuru\u002F","\u003Cp>Simple IP Logger is a lightweight WordPress plugin that lets you:\u003Cbr \u002F>\n– Log visitor IP addresses when accessing specific pages or all pages\u003Cbr \u002F>\n– View logs with access date\u002Ftime, IP address, post ID, and referer\u003Cbr \u002F>\n– Set target post IDs to monitor\u003Cbr \u002F>\n– Exclude IPs such as admin\u002Fstaff from being logged\u003Cbr \u002F>\n– Check logs from the admin screen with pagination and filters\u003Cbr \u002F>\n– View access statistics by unique IPs and access counts\u003Cbr \u002F>\n– Use asynchronous logging via Ajax for performance\u003C\u002Fp>\n\u003Cp>This plugin is useful for confirming actual visits from ads (e.g. Google Ads), detecting suspicious access patterns, or simply tracking visitor behavior without user accounts.\u003C\u002Fp>\n\u003Cp>No external tracking, no bloat – just simple, self-hosted logging.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>日本語による説明：\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Simple IP Logger（シンプルIPロガー）は、特定のページまたは全ページへのアクセスIPを記録・可視化できる軽量なWordPressプラグインです。\u003C\u002Fp>\n\u003Cul>\n\u003Cli>投稿・固定ページのアクセスIPを記録\u003C\u002Fli>\n\u003Cli>記録された日時・IP・投稿ID・リファラーを管理画面で一覧表示\u003C\u002Fli>\n\u003Cli>特定の投稿IDのみ記録する、除外IPを設定する、など柔軟なログ管理が可能\u003C\u002Fli>\n\u003Cli>Google広告などの広告流入が「実際にあったかどうか」も確認できます\u003C\u002Fli>\n\u003Cli>Ajaxによる軽量な記録方式で、ユーザーの表示速度に影響を与えません\u003C\u002Fli>\n\u003Cli>IP別アクセス統計も管理画面から確認可能\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>使いやすく、かつ自己完結型でプライバシーを重視した設計です。\u003C\u002Fp>\n","ページ単位でアクセスIPアドレスを記録する軽量プラグイン。アクセス傾向の監視、不要なIPのフィルタリング、広告トラフィックの検証に役立ちます。",40,468,"2025-04-20T10:47:00.000Z","6.8.5","5.6",[70,71,72,21,73],"analytics","ip-logging","monitoring","statistics","https:\u002F\u002Fminikuru.co.jp\u002Fproducts-tools\u002Fwordpress-plugins\u002Fsimple-ip-logger\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-ip-logger.1.0.1.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":31,"downloaded":84,"rating":26,"num_ratings":26,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":88,"tags":89,"homepage":91,"download_link":92,"security_score":93,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"aati-wp-finetuning","AATI WP Finetuning","0.9.2","jseutens","https:\u002F\u002Fprofiles.wordpress.org\u002Fjseutens\u002F","\u003Cp>Fine tuning a WP setup by removing or adding options , just for easy updating setting on all my personal sites. If useful for someone else , use it 🙂\u003C\u002Fp>\n\u003Cp>Add form submission IP’s to fail2ban for Contact Form 7 and WS Form PRO.\u003Cbr \u002F>\nLog unkown user logins and wrong logins to fail2ban.\u003C\u002Fp>\n\u003Cp>Change the layout of the login form if you add a logo file , background file can be uploaded to but only is used when the special logo is uploaded.\u003C\u002Fp>\n","Fine tuning a WP setup by removing or adding options , just for easy updating setting on all my personal sites. If useful for someone else , use it :- &hellip;",2499,"2024-11-17T08:50:00.000Z","6.7.5","6.2.2","8.0",[90],"aati-finetuning-fail2ban-login-logon-security-cronjob","https:\u002F\u002Fgithub.com\u002Fjseutens\u002Faati-wp-finetuning\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faati-wp-finetuning.zip",92,{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":31,"downloaded":102,"rating":25,"num_ratings":103,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":17,"tags":107,"homepage":110,"download_link":111,"security_score":112,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"access-watch","Access Watch: Security and Traffic Insights","2.0.0-end-of-life","François Hodierne","https:\u002F\u002Fprofiles.wordpress.org\u002Fznarfor\u002F","\u003Cp>\u003Cstrong>End of life\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>The Access Watch plugin for WordPress is not supported anymore and the plugin is unactive.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The Access Watch plugin is a traffic analysis and security service. Our technology processes visitor activity on your WordPress website and delivers insights to improve site security and performance.\u003C\u002Fp>\n\u003Cp>Using innovative pattern matching and signature identification, our real-time analysis clearly breaks down your traffic between human and robots, immediately identifying threats and enabling you to block them from abusing your website. All in a beautiful and easy-to-use dashboard!\u003C\u002Fp>\n\u003Cp>Access Watch is highly efficient in detecting and mitigating numerous website threats, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>brute force attacks\u003C\u002Fli>\n\u003Cli>comment spam & trackback spam\u003C\u002Fli>\n\u003Cli>contact form spam\u003C\u002Fli>\n\u003Cli>suspicious registrations\u003C\u002Fli>\n\u003Cli>suspicious xml-rpc requests (spam, attacks)\u003C\u002Fli>\n\u003Cli>referer spam (also known as referral\u002Freferrer spam)\u003C\u002Fli>\n\u003C\u002Ful>\n","Understand precisely the robot traffic on your website and take actions to improve performance and security.",12446,12,"2018-11-26T09:16:00.000Z","4.9.29","4.0",[70,108,21,109,73],"dashboard","spam","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Faccess-watch\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faccess-watch.zip",85,{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":26,"num_ratings":26,"last_updated":123,"tested_up_to":67,"requires_at_least":68,"requires_php":48,"tags":124,"homepage":128,"download_link":129,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"dynamic-counter-update","FHDCU Dynamic Counter Update","1.1","forkanhossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fforkanhossain\u002F","\u003Cp>\u003Cstrong>FHDCU Dynamic Counter Update\u003C\u002Fstrong> is a simple yet powerful WordPress plugin designed to dynamically display a counter that updates itself every minute. The counter value is incremented by a random number (between 8 and 9) and saved to the database. You can easily display the counter anywhere on your site using a shortcode, and manually manage its value via an intuitive settings page in the WordPress admin.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Dynamic Updates\u003C\u002Fstrong>: The counter automatically increases by a random value every minute.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Integration\u003C\u002Fstrong>: Use the \u003Ccode>[fhdcu_dynamic_counter]\u003C\u002Fcode> shortcode to display the counter on any page or post.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Manual Reset\u003C\u002Fstrong>: Set or reset the counter value via the admin settings page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Cron Job\u003C\u002Fstrong>: Runs on a lightweight, custom one-minute cron schedule.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Frontend Styling\u003C\u002Fstrong>: Includes default CSS and JavaScript for seamless integration.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>To display the counter, simply add the following shortcode to a page or post:\u003Cbr \u002F>\n    [fhdcu_dynamic_counter]\u003C\u002Fp>\n\u003Cp>The counter will dynamically update its value every minute.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPL v3 or later. For more information, visit the official license page:\u003Cbr \u002F>\nhttps:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.html\u003C\u002Fp>\n","A dynamic counter plugin that increments by a random value every minute and saves it in the database for display anywhere on your site.",20,1004,"2025-06-30T10:35:00.000Z",[125,20,126,127,73],"counter","random-increment","shortcode","https:\u002F\u002Fgithub.com\u002Fforkanhossain\u002Fdynamic-counter-update","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdynamic-counter-update.1.1.zip",{"attackSurface":131,"codeSignals":257,"taintFlows":808,"riskAssessment":869,"analyzedAt":879},{"hooks":132,"ajaxHandlers":216,"restRoutes":250,"shortcodes":251,"cronEvents":252,"entryPointCount":196,"unprotectedCount":196},[133,139,143,147,151,155,159,163,167,172,176,181,185,189,193,198,202,205,209,213],{"type":134,"name":135,"callback":136,"file":137,"line":138},"action","plugins_loaded","wms7_load_locale","class-wms7-core.php",45,{"type":134,"name":140,"callback":141,"file":137,"line":142},"init","wms7_init_visit_actions",46,{"type":134,"name":144,"callback":145,"file":137,"line":146},"admin_init","wms7_main_settings",47,{"type":134,"name":148,"callback":149,"file":137,"line":150},"admin_menu","wms7_admin_menu",48,{"type":134,"name":152,"callback":153,"file":137,"line":154},"admin_head","wms7_screen_options",49,{"type":134,"name":156,"callback":157,"file":137,"line":158},"wms7_truncate","wms7_truncate_log",50,{"type":134,"name":160,"callback":161,"file":137,"line":162},"wms7_htaccess","wms7_ctrl_htaccess",51,{"type":134,"name":164,"callback":165,"priority":26,"file":137,"line":166},"preprocess_comment","wms7_trackbacks_check",52,{"type":168,"name":169,"callback":170,"file":137,"line":171},"filter","wp_authenticate_user","wms7_authenticate_user",54,{"type":168,"name":173,"callback":174,"priority":11,"file":137,"line":175},"screen_settings","wms7_screen_settings_add",55,{"type":168,"name":177,"callback":178,"priority":179,"file":137,"line":180},"set-screen-option","wms7_screen_settings_save",11,56,{"type":168,"name":182,"callback":183,"priority":103,"file":137,"line":184},"rest_endpoints","wms7_disable_list_users_posts",59,{"type":168,"name":186,"callback":187,"file":137,"line":188},"xmlrpc_methods","wms7_remove_xmlrpc_methods",62,{"type":168,"name":190,"callback":191,"priority":11,"file":137,"line":192},"admin_body_class","wms7_folded_menu",65,{"type":134,"name":194,"callback":195,"priority":196,"file":137,"line":197},"wp_login","wms7_login_success",9,234,{"type":134,"name":199,"callback":200,"priority":196,"file":137,"line":201},"wp_login_failed","wms7_login_failed",237,{"type":134,"name":135,"callback":203,"file":204,"line":112},"wms7_languages","watchman-site7.php",{"type":134,"name":206,"callback":207,"file":204,"line":208},"wp_enqueue_scripts","wms7_enqueue_scripts_frontend",111,{"type":134,"name":210,"callback":211,"file":204,"line":212},"admin_enqueue_scripts","wms7_enqueue_scripts_backend",141,{"type":134,"name":214,"callback":215,"file":204,"line":43},"widgets_init","wms7_load_widget",[217,222,226,230,233,237,241,244,248],{"action":218,"nopriv":219,"callback":220,"hasNonce":219,"hasCapCheck":219,"file":204,"line":221},"query",false,"wms7_query",212,{"action":223,"nopriv":219,"callback":224,"hasNonce":219,"hasCapCheck":219,"file":204,"line":225},"complete","wms7_complete",217,{"action":227,"nopriv":219,"callback":228,"hasNonce":219,"hasCapCheck":219,"file":204,"line":229},"reload","wms7_reload",222,{"action":20,"nopriv":219,"callback":231,"hasNonce":219,"hasCapCheck":219,"file":204,"line":232},"wms7_sse_cron",231,{"action":234,"nopriv":219,"callback":235,"hasNonce":219,"hasCapCheck":219,"file":204,"line":236},"backend","wms7_sse_backend",236,{"action":238,"nopriv":219,"callback":239,"hasNonce":219,"hasCapCheck":219,"file":204,"line":240},"frontend","wms7_sse_frontend",241,{"action":238,"nopriv":242,"callback":239,"hasNonce":219,"hasCapCheck":219,"file":204,"line":243},true,242,{"action":245,"nopriv":219,"callback":246,"hasNonce":219,"hasCapCheck":219,"file":204,"line":247},"ip_internal","wms7_ip_internal_visitor",247,{"action":245,"nopriv":242,"callback":246,"hasNonce":219,"hasCapCheck":219,"file":204,"line":249},248,[],[],[253,255],{"hook":156,"callback":156,"file":137,"line":254},68,{"hook":160,"callback":160,"file":137,"line":256},71,{"dangerousFunctions":258,"sqlUsage":259,"outputEscaping":304,"fileOperations":26,"externalRequests":806,"nonceChecks":14,"capabilityChecks":11,"bundledLibraries":807},[],{"prepared":188,"raw":260,"locations":261},19,[262,265,269,271,273,275,277,280,282,284,286,288,290,292,294,296,298,300,302],{"file":137,"line":263,"context":264},1942,"$wpdb->get_results() with variable interpolation",{"file":266,"line":267,"context":268},"class-wms7-list-table.php",651,"$wpdb->query() with variable interpolation",{"file":266,"line":270,"context":264},664,{"file":266,"line":272,"context":268},686,{"file":266,"line":274,"context":264},695,{"file":266,"line":276,"context":264},814,{"file":266,"line":278,"context":279},901,"$wpdb->get_var() with variable interpolation",{"file":266,"line":281,"context":279},902,{"file":266,"line":283,"context":279},903,{"file":266,"line":285,"context":279},904,{"file":266,"line":287,"context":279},905,{"file":266,"line":289,"context":279},906,{"file":266,"line":291,"context":279},988,{"file":266,"line":293,"context":279},989,{"file":266,"line":295,"context":279},990,{"file":266,"line":297,"context":279},991,{"file":266,"line":299,"context":279},992,{"file":266,"line":301,"context":279},993,{"file":303,"line":112,"context":264},"includes\\wms7-statistic.php",{"escaped":305,"rawEcho":306,"locations":307},120,289,[308,311,313,315,316,317,319,320,321,323,325,327,328,329,331,332,333,335,337,339,340,341,343,344,345,347,349,351,352,353,355,356,358,359,360,362,363,364,365,367,368,370,371,372,373,375,376,378,380,382,384,386,388,390,392,394,396,398,400,402,404,406,408,410,412,414,416,418,420,422,424,426,428,430,432,434,436,438,440,442,444,446,448,450,452,453,455,457,459,460,462,464,466,467,469,471,473,474,476,478,480,482,484,486,488,490,492,494,496,498,500,502,504,506,508,510,512,513,515,517,519,521,523,525,527,529,530,532,534,535,537,539,541,543,544,546,548,550,551,553,555,556,557,559,561,562,563,565,567,568,569,571,573,574,575,577,579,580,581,583,585,586,587,588,589,591,592,594,595,597,598,600,601,603,604,605,606,608,609,610,612,614,615,617,618,619,620,621,622,623,625,627,629,631,632,634,636,638,640,642,644,646,648,650,652,655,656,658,660,662,664,666,668,670,671,672,674,676,678,680,682,683,685,686,688,689,691,692,694,695,696,698,700,701,702,704,706,708,710,712,714,716,718,719,721,723,725,727,728,730,731,733,735,737,739,741,743,745,747,749,751,752,754,755,757,758,760,762,764,766,768,770,772,774,776,778,780,782,784,786,788,790,793,794,797,800,801,803,805],{"file":137,"line":309,"context":310},1093,"raw output",{"file":137,"line":312,"context":310},1094,{"file":137,"line":314,"context":310},1101,{"file":137,"line":314,"context":310},{"file":137,"line":314,"context":310},{"file":137,"line":318,"context":310},1106,{"file":137,"line":318,"context":310},{"file":137,"line":318,"context":310},{"file":137,"line":322,"context":310},1113,{"file":137,"line":324,"context":310},1114,{"file":137,"line":326,"context":310},1123,{"file":137,"line":326,"context":310},{"file":137,"line":326,"context":310},{"file":137,"line":330,"context":310},1129,{"file":137,"line":330,"context":310},{"file":137,"line":330,"context":310},{"file":137,"line":334,"context":310},1137,{"file":137,"line":336,"context":310},1138,{"file":137,"line":338,"context":310},1145,{"file":137,"line":338,"context":310},{"file":137,"line":338,"context":310},{"file":137,"line":342,"context":310},1150,{"file":137,"line":342,"context":310},{"file":137,"line":342,"context":310},{"file":137,"line":346,"context":310},1160,{"file":137,"line":348,"context":310},1174,{"file":137,"line":350,"context":310},1185,{"file":137,"line":350,"context":310},{"file":137,"line":350,"context":310},{"file":137,"line":354,"context":310},1192,{"file":137,"line":354,"context":310},{"file":137,"line":357,"context":310},1204,{"file":137,"line":357,"context":310},{"file":137,"line":357,"context":310},{"file":137,"line":361,"context":310},1211,{"file":137,"line":361,"context":310},{"file":137,"line":361,"context":310},{"file":137,"line":361,"context":310},{"file":137,"line":366,"context":310},1219,{"file":137,"line":366,"context":310},{"file":137,"line":369,"context":310},1231,{"file":137,"line":369,"context":310},{"file":137,"line":369,"context":310},{"file":137,"line":369,"context":310},{"file":137,"line":374,"context":310},1238,{"file":137,"line":374,"context":310},{"file":137,"line":377,"context":310},1270,{"file":137,"line":379,"context":310},1273,{"file":137,"line":381,"context":310},1291,{"file":137,"line":383,"context":310},1384,{"file":137,"line":385,"context":310},1389,{"file":137,"line":387,"context":310},1390,{"file":137,"line":389,"context":310},1391,{"file":137,"line":391,"context":310},1392,{"file":137,"line":393,"context":310},1399,{"file":137,"line":395,"context":310},1600,{"file":137,"line":397,"context":310},1601,{"file":137,"line":399,"context":310},1612,{"file":137,"line":401,"context":310},1623,{"file":137,"line":403,"context":310},1633,{"file":137,"line":405,"context":310},1634,{"file":137,"line":407,"context":310},1653,{"file":137,"line":409,"context":310},1664,{"file":137,"line":411,"context":310},1675,{"file":137,"line":413,"context":310},1686,{"file":137,"line":415,"context":310},1696,{"file":137,"line":417,"context":310},1706,{"file":137,"line":419,"context":310},1707,{"file":137,"line":421,"context":310},1717,{"file":137,"line":423,"context":310},1718,{"file":137,"line":425,"context":310},1736,{"file":137,"line":427,"context":310},1743,{"file":137,"line":429,"context":310},1751,{"file":137,"line":431,"context":310},1759,{"file":137,"line":433,"context":310},1767,{"file":137,"line":435,"context":310},1774,{"file":137,"line":437,"context":310},1789,{"file":137,"line":439,"context":310},1792,{"file":137,"line":441,"context":310},1795,{"file":137,"line":443,"context":310},1798,{"file":137,"line":445,"context":310},1801,{"file":137,"line":447,"context":310},1804,{"file":137,"line":449,"context":310},1842,{"file":137,"line":451,"context":310},1843,{"file":137,"line":451,"context":310},{"file":137,"line":454,"context":310},1844,{"file":137,"line":456,"context":310},1845,{"file":137,"line":458,"context":310},1848,{"file":137,"line":458,"context":310},{"file":137,"line":461,"context":310},1849,{"file":137,"line":463,"context":310},1850,{"file":137,"line":465,"context":310},1853,{"file":137,"line":465,"context":310},{"file":137,"line":468,"context":310},1854,{"file":137,"line":470,"context":310},1855,{"file":137,"line":472,"context":310},1858,{"file":137,"line":472,"context":310},{"file":137,"line":475,"context":310},1859,{"file":137,"line":477,"context":310},1860,{"file":137,"line":479,"context":310},1890,{"file":137,"line":481,"context":310},1891,{"file":137,"line":483,"context":310},1892,{"file":137,"line":485,"context":310},1926,{"file":137,"line":487,"context":310},1927,{"file":137,"line":489,"context":310},1962,{"file":137,"line":491,"context":310},1963,{"file":137,"line":493,"context":310},1964,{"file":137,"line":495,"context":310},1965,{"file":137,"line":497,"context":310},1966,{"file":137,"line":499,"context":310},1967,{"file":137,"line":501,"context":310},2004,{"file":137,"line":503,"context":310},2005,{"file":137,"line":505,"context":310},2059,{"file":137,"line":507,"context":310},2067,{"file":137,"line":509,"context":310},2165,{"file":137,"line":511,"context":310},2168,{"file":137,"line":511,"context":310},{"file":137,"line":514,"context":310},2171,{"file":137,"line":516,"context":310},2213,{"file":137,"line":518,"context":310},2214,{"file":137,"line":520,"context":310},2215,{"file":137,"line":522,"context":310},2216,{"file":137,"line":524,"context":310},2217,{"file":137,"line":526,"context":310},2230,{"file":137,"line":528,"context":310},2233,{"file":137,"line":528,"context":310},{"file":137,"line":531,"context":310},2238,{"file":137,"line":533,"context":310},2241,{"file":137,"line":533,"context":310},{"file":137,"line":536,"context":310},2245,{"file":137,"line":538,"context":310},2248,{"file":137,"line":540,"context":310},2254,{"file":137,"line":542,"context":310},2257,{"file":137,"line":542,"context":310},{"file":137,"line":545,"context":310},2265,{"file":137,"line":547,"context":310},2276,{"file":266,"line":549,"context":310},147,{"file":266,"line":549,"context":310},{"file":266,"line":552,"context":310},149,{"file":266,"line":554,"context":310},150,{"file":266,"line":554,"context":310},{"file":266,"line":554,"context":310},{"file":266,"line":558,"context":310},152,{"file":266,"line":560,"context":310},153,{"file":266,"line":560,"context":310},{"file":266,"line":560,"context":310},{"file":266,"line":564,"context":310},155,{"file":266,"line":566,"context":310},156,{"file":266,"line":566,"context":310},{"file":266,"line":566,"context":310},{"file":266,"line":570,"context":310},158,{"file":266,"line":572,"context":310},159,{"file":266,"line":572,"context":310},{"file":266,"line":572,"context":310},{"file":266,"line":576,"context":310},161,{"file":266,"line":578,"context":310},162,{"file":266,"line":578,"context":310},{"file":266,"line":578,"context":310},{"file":266,"line":582,"context":310},164,{"file":266,"line":584,"context":310},165,{"file":266,"line":584,"context":310},{"file":266,"line":584,"context":310},{"file":266,"line":43,"context":310},{"file":266,"line":43,"context":310},{"file":266,"line":590,"context":310},202,{"file":266,"line":590,"context":310},{"file":266,"line":593,"context":310},204,{"file":266,"line":593,"context":310},{"file":266,"line":596,"context":310},206,{"file":266,"line":596,"context":310},{"file":266,"line":599,"context":310},208,{"file":266,"line":599,"context":310},{"file":266,"line":602,"context":310},210,{"file":266,"line":602,"context":310},{"file":266,"line":221,"context":310},{"file":266,"line":221,"context":310},{"file":266,"line":607,"context":310},214,{"file":266,"line":607,"context":310},{"file":266,"line":607,"context":310},{"file":266,"line":611,"context":310},216,{"file":613,"line":150,"context":310},"class-wms7-widget.php",{"file":613,"line":158,"context":310},{"file":613,"line":616,"context":310},53,{"file":613,"line":171,"context":310},{"file":613,"line":171,"context":310},{"file":613,"line":171,"context":310},{"file":613,"line":171,"context":310},{"file":613,"line":175,"context":310},{"file":613,"line":180,"context":310},{"file":613,"line":624,"context":310},57,{"file":613,"line":626,"context":310},61,{"file":613,"line":628,"context":310},80,{"file":613,"line":630,"context":310},81,{"file":613,"line":630,"context":310},{"file":613,"line":633,"context":310},82,{"file":613,"line":635,"context":310},127,{"file":613,"line":637,"context":310},128,{"file":613,"line":639,"context":310},129,{"file":613,"line":641,"context":310},130,{"file":613,"line":643,"context":310},131,{"file":613,"line":645,"context":310},132,{"file":613,"line":647,"context":310},133,{"file":613,"line":649,"context":310},134,{"file":613,"line":651,"context":310},135,{"file":653,"line":654,"context":310},"includes\\wms7-btns-service.php",89,{"file":653,"line":13,"context":310},{"file":653,"line":657,"context":310},96,{"file":653,"line":659,"context":310},97,{"file":653,"line":661,"context":310},98,{"file":653,"line":663,"context":310},99,{"file":653,"line":665,"context":310},104,{"file":653,"line":667,"context":310},105,{"file":653,"line":669,"context":310},106,{"file":653,"line":641,"context":310},{"file":653,"line":643,"context":310},{"file":653,"line":673,"context":310},137,{"file":653,"line":675,"context":310},138,{"file":653,"line":677,"context":310},139,{"file":653,"line":679,"context":310},140,{"file":653,"line":681,"context":310},142,{"file":653,"line":681,"context":310},{"file":653,"line":684,"context":310},143,{"file":653,"line":684,"context":310},{"file":653,"line":687,"context":310},144,{"file":653,"line":687,"context":310},{"file":653,"line":690,"context":310},145,{"file":653,"line":690,"context":310},{"file":653,"line":693,"context":310},151,{"file":653,"line":558,"context":310},{"file":653,"line":560,"context":310},{"file":653,"line":697,"context":310},154,{"file":653,"line":699,"context":310},166,{"file":653,"line":699,"context":310},{"file":653,"line":699,"context":310},{"file":653,"line":703,"context":310},169,{"file":653,"line":705,"context":310},172,{"file":653,"line":707,"context":310},175,{"file":653,"line":709,"context":310},177,{"file":653,"line":711,"context":310},182,{"file":653,"line":713,"context":310},187,{"file":653,"line":715,"context":310},192,{"file":653,"line":717,"context":310},197,{"file":653,"line":590,"context":310},{"file":653,"line":720,"context":310},207,{"file":653,"line":722,"context":310},219,{"file":653,"line":724,"context":310},220,{"file":653,"line":726,"context":310},221,{"file":653,"line":229,"context":310},{"file":653,"line":729,"context":310},232,{"file":653,"line":197,"context":310},{"file":653,"line":732,"context":310},274,{"file":653,"line":734,"context":310},275,{"file":653,"line":736,"context":310},276,{"file":653,"line":738,"context":310},277,{"file":653,"line":740,"context":310},309,{"file":653,"line":742,"context":310},325,{"file":653,"line":744,"context":310},329,{"file":653,"line":746,"context":310},345,{"file":653,"line":748,"context":310},365,{"file":653,"line":750,"context":310},380,{"file":653,"line":750,"context":310},{"file":653,"line":753,"context":310},381,{"file":653,"line":753,"context":310},{"file":653,"line":756,"context":310},382,{"file":653,"line":756,"context":310},{"file":653,"line":759,"context":310},385,{"file":653,"line":761,"context":310},407,{"file":653,"line":763,"context":310},408,{"file":653,"line":765,"context":310},414,{"file":653,"line":767,"context":310},415,{"file":653,"line":769,"context":310},416,{"file":653,"line":771,"context":310},417,{"file":653,"line":773,"context":310},457,{"file":653,"line":775,"context":310},458,{"file":653,"line":777,"context":310},464,{"file":653,"line":779,"context":310},465,{"file":653,"line":781,"context":310},466,{"file":653,"line":783,"context":310},467,{"file":653,"line":785,"context":310},472,{"file":653,"line":787,"context":310},473,{"file":653,"line":789,"context":310},474,{"file":791,"line":792,"context":310},"includes\\wms7-query.php",63,{"file":791,"line":192,"context":310},{"file":795,"line":796,"context":310},"includes\\wms7-reload.php",26,{"file":798,"line":799,"context":310},"includes\\wms7-sse-backend.php",25,{"file":798,"line":796,"context":310},{"file":802,"line":799,"context":310},"includes\\wms7-sse-cron.php",{"file":804,"line":799,"context":310},"includes\\wms7-sse-frontend.php",{"file":804,"line":796,"context":310},1,[],[809,826,835,849,861],{"entryPoint":810,"graph":811,"unsanitizedCount":824,"severity":825},"wms7_visit_manager (class-wms7-core.php:1167)",{"nodes":812,"edges":822},[813,817],{"id":814,"type":815,"label":816,"file":137,"line":350},"n0","source","$_POST['id'] (x4)",{"id":818,"type":819,"label":820,"file":137,"line":350,"wp_function":821},"n1","sink","echo() [XSS]","echo",[823],{"from":814,"to":818,"sanitized":219},4,"medium",{"entryPoint":827,"graph":828,"unsanitizedCount":806,"severity":825},"wms7_settings (class-wms7-core.php:1377)",{"nodes":829,"edges":833},[830,832],{"id":814,"type":815,"label":831,"file":137,"line":391},"$_SERVER['SERVER_SOFTWARE']",{"id":818,"type":819,"label":820,"file":137,"line":391,"wp_function":821},[834],{"from":814,"to":818,"sanitized":219},{"entryPoint":836,"graph":837,"unsanitizedCount":26,"severity":848},"\u003Cclass-wms7-core> (class-wms7-core.php:0)",{"nodes":838,"edges":845},[839,840,841,843],{"id":814,"type":815,"label":816,"file":137,"line":350},{"id":818,"type":819,"label":820,"file":137,"line":350,"wp_function":821},{"id":842,"type":815,"label":831,"file":137,"line":391},"n2",{"id":844,"type":819,"label":820,"file":137,"line":391,"wp_function":821},"n3",[846,847],{"from":814,"to":818,"sanitized":242},{"from":842,"to":844,"sanitized":242},"low",{"entryPoint":850,"graph":851,"unsanitizedCount":806,"severity":848},"prepare_items (class-wms7-list-table.php:835)",{"nodes":852,"edges":859},[853,856],{"id":814,"type":815,"label":854,"file":266,"line":855},"$_POST['s']",842,{"id":818,"type":819,"label":857,"file":266,"line":855,"wp_function":858},"update_option() [Settings Manipulation]","update_option",[860],{"from":814,"to":818,"sanitized":219},{"entryPoint":862,"graph":863,"unsanitizedCount":26,"severity":848},"\u003Cclass-wms7-list-table> (class-wms7-list-table.php:0)",{"nodes":864,"edges":867},[865,866],{"id":814,"type":815,"label":854,"file":266,"line":855},{"id":818,"type":819,"label":857,"file":266,"line":855,"wp_function":858},[868],{"from":814,"to":818,"sanitized":242},{"summary":870,"deductions":871},"The watchman-site7 v4.2.0 plugin presents a concerning security posture due to a significant attack surface exposed without proper authentication. All nine identified AJAX handlers lack authentication checks, creating a direct pathway for unauthorized actions. This is compounded by a low rate of proper output escaping, with only 29% of outputs being securely handled, increasing the risk of cross-site scripting (XSS) vulnerabilities. While the plugin avoids dangerous functions and file operations, and the majority of SQL queries utilize prepared statements, these strengths are overshadowed by the critical lack of security controls on its primary entry points. The absence of any recorded vulnerability history might suggest a lack of past exploitation or thorough auditing, but it does not negate the inherent risks identified in the current code analysis.  This plugin requires immediate attention to implement nonce and capability checks on all AJAX handlers and to improve output escaping practices to mitigate potential security breaches.",[872,874,876],{"reason":873,"points":11},"AJAX handlers without auth checks",{"reason":875,"points":45},"Low rate of proper output escaping",{"reason":877,"points":878},"Total entry points without auth checks",5,"2026-03-17T00:21:52.975Z",{"wat":881,"direct":896},{"assetPaths":882,"generatorPatterns":888,"scriptPaths":889,"versionParams":894},[883,884,885,886,887],"\u002Fwp-content\u002Fplugins\u002Fwatchman-site7\u002Fjs\u002Fwms7-frontend.js","\u002Fwp-content\u002Fplugins\u002Fwatchman-site7\u002Fjs\u002Fwms7_webrtc.js","\u002Fwp-content\u002Fplugins\u002Fwatchman-site7\u002Fjs\u002Fwms7-backend.js","\u002Fwp-content\u002Fplugins\u002Fwatchman-site7\u002Fjs\u002Fwms7-console.js","\u002Fwp-content\u002Fplugins\u002Fwatchman-site7\u002Fcss\u002Fwms7-backend-style.css",[],[890,891,892,893],"js\u002Fwms7-frontend.js","js\u002Fwms7_webrtc.js","js\u002Fwms7-backend.js","js\u002Fwms7-console.js",[895],"v.4.2.0",{"cssClasses":897,"htmlComments":898,"htmlAttributes":899,"restEndpoints":900,"jsGlobals":901,"shortcodeOutput":906},[],[],[],[],[902,903,904,905],"wms7_ajax_url","wms7_stun_server","wms7_id","wms7_url",[]]