[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYpolC5CSlvNx2bt3pOSx3Pc-DYI4UVvhhmGwwW5QXiw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":41,"fingerprints":79},"wc-delete-product-images","Delete product images for WooCommerce","2.0","Eduard Doloc","https:\u002F\u002Fprofiles.wordpress.org\u002Frwky\u002F","\u003Cp>This small and lightweight plugin deletes all product images automatically when the product is deleted (from trash).\u003C\u002Fp>\n\u003Cp>The plugin uses the “before_delete_post” action and runs a delete (wp_delete_post) for the product ID that is being deleted, this is done automatically and works with any number of products (server performance limited)\u003C\u002Fp>\n\u003Cp>Contributions are welcomed on \u003Ccode>https:\u002F\u002Fgithub.com\u002Frwkyyy\u002Fdelete-product-images-for-wc\u003C\u002Fcode>\u003C\u002Fp>\n","Removes product assigned images (featured and gallery only) on product delete.",1000,9072,100,6,"2025-01-29T09:18:00.000Z","6.5.8","4.7","7.4",[20,21,22,23,24],"product-images-delete","product-images-remove","remove-product-images-automatically","woocommerce-product-images-delete","woocommerce-product-images-remove","https:\u002F\u002Fuprise.ro","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-delete-product-images.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"rwky",4,1100,94,30,90,"2026-04-03T21:33:33.680Z",[],{"attackSurface":42,"codeSignals":62,"taintFlows":71,"riskAssessment":72,"analyzedAt":78},{"hooks":43,"ajaxHandlers":58,"restRoutes":59,"shortcodes":60,"cronEvents":61,"entryPointCount":28,"unprotectedCount":28},[44,49,53],{"type":45,"name":46,"callback":47,"file":48,"line":37},"action","plugins_loaded","uprise_wc_delete_images_init","delete-product-images-wc.php",{"type":45,"name":50,"callback":51,"file":48,"line":52},"admin_notices","uprise_wc_delete_images_wc_version_notice",69,{"type":45,"name":54,"callback":55,"priority":56,"file":48,"line":57},"before_delete_post","uprise_wc_delete_product_images",10,75,[],[],[],[],{"dangerousFunctions":63,"sqlUsage":64,"outputEscaping":66,"fileOperations":28,"externalRequests":28,"nonceChecks":69,"capabilityChecks":28,"bundledLibraries":70},[],{"prepared":28,"raw":28,"locations":65},[],{"escaped":67,"rawEcho":28,"locations":68},17,[],1,[],[],{"summary":73,"deductions":74},"The 'wc-delete-product-images' plugin v2.0 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the attack surface. Crucially, all identified SQL queries use prepared statements, and all output is properly escaped, mitigating common risks of SQL injection and cross-site scripting (XSS). The presence of a nonce check and the lack of external HTTP requests further bolster its security.\n\nThe taint analysis shows no flows with unsanitized paths, indicating a lack of readily exploitable injection vulnerabilities. The plugin's vulnerability history is also clean, with no known CVEs, suggesting a proactive approach to security by its developers. This combination of a small attack surface, secure coding practices, and a clean history points to a plugin that is currently well-protected.\n\nWhile the plugin's current version appears secure, the lack of capability checks on the single nonce check warrants a minor consideration. However, given the extremely limited attack surface and the overall secure implementation, the current risks are very low. The strength of this plugin lies in its minimal exposure and adherence to core WordPress security principles where implemented.",[75],{"reason":76,"points":77},"Missing capability checks on nonce",5,"2026-03-16T18:45:00.447Z",{"wat":80,"direct":89},{"assetPaths":81,"generatorPatterns":84,"scriptPaths":85,"versionParams":86},[82,83],"\u002Fwp-content\u002Fplugins\u002Fwc-delete-product-images\u002Fassets\u002Fcss\u002Fbackend-style.css","\u002Fwp-content\u002Fplugins\u002Fwc-delete-product-images\u002Fassets\u002Fjs\u002Fbackend-script.js",[],[83],[87,88],"wc-delete-product-images\u002Fassets\u002Fcss\u002Fbackend-style.css?ver=","wc-delete-product-images\u002Fassets\u002Fjs\u002Fbackend-script.js?ver=",{"cssClasses":90,"htmlComments":91,"htmlAttributes":92,"restEndpoints":93,"jsGlobals":94,"shortcodeOutput":95},[],[],[],[],[],[]]