[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHcekR-i8CynYpajVzBilnvV3T3lUYASmHBqGP93apGg":3,"$fvA0Eg0O9kfmorYSneTkZOjiY4_eihfNnbrVyD7NVcag":307,"$frwKCbf7C1ORzGMpyff11leBeraRkLKdvdmUrUwJBnck":312},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":36,"analysis":131,"fingerprints":285},"wm-secure-and-optimize","WM Secure and Optimize","1.0.2","Selvakumaran Krishnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fselvaklnc\u002F","\u003Cp>WM Secure and Optimize plugin is your all-in-one solution for managing both the security and performance of your WordPress website. It’s a free and open-source plugin developed and maintained by \u003Ca href=\"https:\u002F\u002Fwww.wikimint.com\u002Fp\u002Fdeveloper-innovation-hub.html\" rel=\"nofollow ugc\">Wikimint Developer\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Enhanced Security:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Harden the security of your site with advanced protection measures.\u003C\u002Fli>\n\u003Cli>Set up robust site protection to safeguard against potential threats.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Performance Optimization:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Optimize your site’s performance by disabling and removing unnecessary features.\u003C\u002Fli>\n\u003Cli>Fine-tune settings for optimal speed and responsiveness.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Under Construction\u002FMaintenance Mode:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easily put your site under construction or maintenance mode.\u003C\u002Fli>\n\u003Cli>Choose from a variety of maintenance page themes to keep your visitors informed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch3>Security Configuration:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Access the ‘Security’ section in the plugin settings to harden your site’s security.\u003C\u002Fli>\n\u003Cli>Configure options for firewall protection, login attempt monitoring, and more.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Performance Optimization:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Navigate to the ‘Performance’ section to optimize your site’s speed.\u003C\u002Fli>\n\u003Cli>Disable and remove unwanted features for a streamlined user experience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Maintenance Mode:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Visit the ‘Maintenance Mode’ section to enable or disable construction\u002Fmaintenance mode.\u003C\u002Fli>\n\u003Cli>Explore various maintenance page themes to keep your visitors engaged during downtime.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cp>🛡 \u003Cstrong>Robust Security Measures\u003C\u002Fstrong>: Implement top-notch security protocols to safeguard your site from malicious attacks and unauthorized access. “WM Secure and Optimize” provides a comprehensive suite of security features, including firewall protection, login attempt monitoring, and more.\u003C\u002Fp>\n\u003Cp>⚙️ \u003Cstrong>Performance Optimization\u003C\u002Fstrong>: Say goodbye to sluggish load times. Our plugin streamlines your website’s performance, optimizing images, caching content, and fine-tuning settings for optimal speed. Experience a faster, more responsive site that keeps visitors engaged.\u003C\u002Fp>\n\u003Cp>🔐 \u003Cstrong>Enhanced Login Security\u003C\u002Fstrong>: Protect your login pages with advanced security measures. Choose from multi-factor authentication options, CAPTCHA integration, and IP blocking to fortify your site’s first line of defense.\u003C\u002Fp>\n\u003Cp>🚀 \u003Cstrong>Effortless Setup and Configuration\u003C\u002Fstrong>: No technical expertise required. With a user-friendly interface, “WM Secure and Optimize” ensures a hassle-free setup. Configure security and performance settings with ease, and start seeing results immediately.\u003C\u002Fp>\n\u003Cp>📈 \u003Cstrong>Detailed Analytics\u003C\u002Fstrong>: Gain insights into your site’s security and performance with detailed analytics. Track login attempts, monitor resource usage, and receive actionable data to make informed decisions for further optimization.\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Regular Updates and Support\u003C\u002Fstrong>: Stay ahead of the curve with regular updates that adapt to evolving security challenges. Our dedicated support team is ready to assist you with any questions or issues you may encounter.\u003C\u002Fp>\n\u003Cp>🔒 \u003Cstrong>Peace of Mind for Site Owners\u003C\u002Fstrong>: Rest easy knowing that your WordPress site is fortified against potential threats and delivering a seamless experience for your visitors.\u003C\u002Fp>\n\u003Ch3>Support and Feedback\u003C\u002Fh3>\n\u003Cp>If you encounter any issues or have questions, feel free to reach out to our \u003Ca href=\"https:\u002F\u002Fdeveloper.wikimint.com\u002Fp\u002Fcontact.html\" rel=\"nofollow ugc\">support team\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>We appreciate your feedback! Share your experience and suggestions to help us improve “WM Secure and Optimize” for everyone.\u003C\u002Fp>\n\u003Cp>Download “WM Secure and Optimize” now and take the first step towards a more secure and high-performing WordPress website.\u003C\u002Fp>\n\u003Cp>WM Secure and Optimize: Enhance Your WordPress Site’s Security and Performance\u003C\u002Fp>\n\u003Cp>Boost the security and performance of your WordPress website with the powerful “WM Secure and Optimize” plugin. This all-in-one solution is designed to fortify your site against potential threats while optimizing its speed for an unparalleled user experience.\u003C\u002Fp>\n\u003Ch3>Online Web Tools Integration\u003C\u002Fh3>\n\u003Cp>Enhance your web development experience with seamlessly \u003Ca href=\"https:\u002F\u002Fdeveloper.wikimint.com\u002Fp\u002Ftools.html\" rel=\"nofollow ugc\">integrated online web tools\u003C\u002Fa> here developed by Wikimint Developer.\u003C\u002Fp>\n\u003Cp>Stay within character limits seamlessly with real-time tracking, optimizing your messaging for various platforms.\u003C\u002Fp>\n","One place for site security and site performance. Secure and optimize your site to perform better. WM Secure and Optimize",0,1233,100,1,"2023-11-22T17:41:00.000Z","6.4.8","5.6",[19,20,21,22,23],"hardening","minify","performance","protection","security","https:\u002F\u002Fdeveloper.wikimint.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwm-secure-and-optimize.1.0.2.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"selvaklnc",30,84,"2026-05-19T22:54:30.647Z",[37,56,76,96,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":17,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"netsensai-shield","NETSENSAI Shield","1.4.9","Rafal Gierlicki","https:\u002F\u002Fprofiles.wordpress.org\u002Frgierlicki\u002F","\u003Cp>NETSENSAI Shield offers a range of security features, including:\u003C\u002Fp>\n\u003Cp>Changing the login URL to reduce brute force attack risks.\u003C\u002Fp>\n\u003Cp>Disabling the REST API (WP API JSON) for non-logged-in users.\u003C\u002Fp>\n\u003Cp>Disabling XML-RPC to prevent unauthorized access.\u003C\u002Fp>\n\u003Cp>Disabling the WordPress file editor to avoid accidental or malicious changes.\u003C\u002Fp>\n\u003Cp>Disabling Application Passwords to block unauthorized API access.\u003C\u002Fp>\n\u003Cp>Applying advanced HTTP security headers (e.g., HSTS, X-Frame-Options, Content-Security-Policy).\u003C\u002Fp>\n\u003Cp>Integration with W3 Total Cache:\u003C\u002Fp>\n\u003Cp>Permanently disable .htaccess writes by W3TC\u003C\u002Fp>\n\u003Cp>Runtime disabling of Page Cache UI\u003C\u002Fp>\n\u003Cp>One-time full cache flush on first admin page load\u003C\u002Fp>\n\u003Cp>Automatic cache flush on Secure Options save\u003C\u002Fp>\n\u003Cp>Physical cleanup and permanent disable via the W3TC API\u003C\u002Fp>\n\u003Cp>Suppression of Site Health REST API availability notices for non-logged-in users (removes false Site Health errors while maintaining full API blocking).\u003C\u002Fp>\n\u003Cp>In addition, the plugin provides helpful user feedback:\u003C\u002Fp>\n\u003Cp>Email notifications when the login URL changes – sends a localized HTML email (Polish or English) with your old and new login links, change date and the plugin logo, so you remember to update your bookmarks.\u003C\u002Fp>\n\u003Cp>Admin popup when disabling the WP API JSON – displays a friendly modal warning that disabling the REST API may break plugins like WooCommerce or contact forms. The popup includes a purchase link to upgrade to the PRO version if you need this feature without losing functionality.\u003C\u002Fp>\n\u003Cp>Scoped styling – the custom colour for the “Save changes” button is now limited to the Secure Options page, so other admin pages keep the default WordPress look.\u003C\u002Fp>\n\u003Cp>Promotional banner assistant – notifies administrators of summer discount codes and NETSENSAI Shield PRO features.\u003C\u002Fp>\n\u003Cp>The free version provides both core and advanced Level 3 security functionalities. A PRO version offers extended support, additional features, and automatic protection enhancements.\u003C\u002Fp>\n","Hardens and protects your site by locking down login, REST API, XML‑RPC, file editor, and applying HTTP security headers.",1000,6232,5,"2025-10-14T20:18:00.000Z","6.8.5","",[52,19,22,23,53],"cybersecurity","wordpress-security","https:\u002F\u002Fwww.netsensai.pl\u002Fstore\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnetsensai-shield.1.4.9.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":13,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":74,"download_link":75,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"jethost-total-care","JetHost Total Care – Security & Enhancements","2.4.1","JetHost","https:\u002F\u002Fprofiles.wordpress.org\u002Fjethost\u002F","\u003Cp>JetHost Total Care simplifies your WordPress management by consolidating essential features like security, site enhancements and performance into a single, user-friendly plugin. This eliminates the need for multiple plugins, reducing conflicts, improving performance, and streamlining your workflow.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Ch4>Optimize WordPress Core:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Configure AutoSave intervals.\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable WordPress revisions.\u003C\u002Fli>\n\u003Cli>Limit revisions number.\u003C\u002Fli>\n\u003Cli>Media Trash control.\u003C\u002Fli>\n\u003Cli>Adjust memory limits for improved performance.\u003C\u002Fli>\n\u003Cli>Enhance security by hiding your WordPress version, disabling directory listing, and controlling error reporting.\u003C\u002Fli>\n\u003Cli>Protect core WordPress files and directories from unauthorized access.\u003C\u002Fli>\n\u003Cli>Disable WordPress emojis to improve frontend performance.\u003C\u002Fli>\n\u003Cli>Remove default Dashicons on the frontend for faster load times.\u003C\u002Fli>\n\u003Cli>Disable WordPress embeds to reduce unnecessary scripts and requests.\u003C\u002Fli>\n\u003Cli>Remove the jQuery Migrate library from the frontend if not needed by the theme or plugins.\u003C\u002Fli>\n\u003Cli>Limit login attempts to block brute-force attacks and protect user accounts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress Heartbeat API Control:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Manage the frequency of the WordPress Heartbeat API to optimize performance and reduce server load.\u003C\u002Fli>\n\u003Cli>Set different heartbeat intervals or disable it completely for:\n\u003Cul>\n\u003Cli>Admin Dashboard – Maintain responsive experience for admins and editors.\u003C\u002Fli>\n\u003Cli>Post\u002FPage Editor – Ensure autosave works efficiently without overloading the server.\u003C\u002Fli>\n\u003Cli>Website Frontend – Minimize unnecessary background requests for visitors.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Author Security:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Prevent user enumeration for enhanced security.\u003C\u002Fli>\n\u003Cli>Disable “List Users” functionality.\u003C\u002Fli>\n\u003Cli>Customize author slugs and base URLs for better control.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Admin Enhancements:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Duplicate any post or page with one click.\u003C\u002Fli>\n\u003Cli>Hide the admin bar on the frontend for all or selected user roles.\u003C\u002Fli>\n\u003Cli>Replace the default WordPress logo with your own on the login screen.\u003C\u002Fli>\n\u003Cli>Disable Theme and Plugin file editors for better security.\u003C\u002Fli>\n\u003Cli>Switch entirely to the Classic Editor by disabling Gutenberg.\u003C\u002Fli>\n\u003Cli>Password protect the entire website from unauthorized access.\u003C\u002Fli>\n\u003Cli>Set custom redirects after login and logout.\u003C\u002Fli>\n\u003Cli>Change the default WordPress login URL to protect against brute-force attacks.\u003C\u002Fli>\n\u003Cli>Under Maintenance Mode – When activated, visitors who are not logged in will see a maintenance notice on the site’s frontend. Logged-in users can continue working in the website without interruptions.\u003C\u002Fli>\n\u003Cli>Disable search engine indexing to discourage search engines from listing the site while it is under construction.\u003C\u002Fli>\n\u003Cli>Enable SVG uploads with automatic sanitization for safe use of vector graphics.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Comment Management:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable future comments on posts, pages, and media attachments.\u003C\u002Fli>\n\u003Cli>Optionally hide existing comments for a cleaner frontend and improved performance.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Database Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Check Database Health – Scan your database to see the number of optimizable items.\u003C\u002Fli>\n\u003Cli>One-Click Optimization – Select the items you want to clean and optimize instantly.\n\u003Cul>\n\u003Cli>Optimize Database Tables\u003C\u002Fli>\n\u003Cli>Clean Post Revisions\u003C\u002Fli>\n\u003Cli>Clean Auto-draft Posts\u003C\u002Fli>\n\u003Cli>Clean Trashed Posts\u003C\u002Fli>\n\u003Cli>Delete Comments Marked as Spam\u003C\u002Fli>\n\u003Cli>Delete Unapproved Comments\u003C\u002Fli>\n\u003Cli>Delete Trashed Comments\u003C\u002Fli>\n\u003Cli>Clean Expired Transients\u003C\u002Fli>\n\u003Cli>Clean All Transients\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Scheduled Optimization – Automate cleanups by setting optimization frequency (Daily, Weekly, Monthly).\u003C\u002Fli>\n\u003Cli>Last Optimization Log – Quickly view the last optimization date and time.\u003C\u002Fli>\n\u003C\u002Ful>\n","JetHost Total Care simplifies WordPress management by consolidating features like security, site enhancements and performance into a single plugin.",700,2480,3,"2026-04-02T14:06:00.000Z","6.9.4","5.5","7.4",[72,73,21,22,23],"enhancements","optimization","https:\u002F\u002Fwww.jethost.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjethost-total-care.2.4.1.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":13,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":50,"tags":90,"homepage":93,"download_link":94,"security_score":95,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"sar-one-click-security","SAR One Click Security","1.3","Samuel Aguilera","https:\u002F\u002Fprofiles.wordpress.org\u002Fsamuelaguilera\u002F","\u003Cp>There’s a lot of WordPress security plugins with many many options and pages to setup. And that is fine if you know what to do.\u003Cbr \u002F>\nBut most of the times, you don’t need so much or simply you’re not sure about what to set or not.\u003C\u002Fp>\n\u003Cp>This plugin adds some extra security to your WordPress with only one click. \u003Cstrong>No options page, just activate it!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>Like many other security plugins SAR One Click Security adds well known .htaccess rules, but only the ones probed to be safe to use in almost any type of site (including WooCommerce stores), to protect your WordPress from common attacks. This allows you to have a safer WordPress without worries about what protection you should be using.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Turn off ServerSignature directive, that may leak information about your web server.\u003C\u002Fli>\n\u003Cli>Turn off directory listing, avoiding bad configured hostings to leak your files.\u003C\u002Fli>\n\u003Cli>Blocks public access (from web) to following files that may leak information about your WordPress install: .htaccess, license.txt, readme.html, wp-config.php, wp-config-sample.php, install.php\u003C\u002Fli>\n\u003Cli>Blocks access to wp-login.php to dummy bots trying to register in WordPress sites that have registration disabled.\u003C\u002Fli>\n\u003Cli>Blocks requests looking for timthumb.php, reducing server load caused by bots trying to find it. (*)\u003C\u002Fli>\n\u003Cli>Blocks TRACE and TRACK request methods, preventing XST attacks.\u003C\u002Fli>\n\u003Cli>Blocks direct posting to wp-comments-post.php (most spammers do this) and access with blank User Agent, reducing spam comments a lot and also server load.\u003C\u002Fli>\n\u003Cli>Blocks direct access to PHP files in wp-content directory (this includes subdirectories like plugins or themes). Protecting you from a huge number of 0day exploits.\u003C\u002Fli>\n\u003Cli>Blocks direct POST to wp-login.php and access with blank User Agent, preventing most brute-force attacks and reducing server load.\u003C\u002Fli>\n\u003Cli>Blocks access to .txt files under any plugin\u002Ftheme directory to prevent scans for installed plugins\u002Fthemes.\u003C\u002Fli>\n\u003Cli>Blocks any query string trying to get a copy of the wp-config.php file.\u003C\u002Fli>\n\u003Cli>Blocks gf_page=upload query string argument, this was deprecated in Gravity Forms on May 2015, if your copy of Gravity Forms still uses it, update now!\u003C\u002Fli>\n\u003Cli>Removes version information from page headers. This includes not only the page header (html or xhtml) but also feed headers (rss, rss2, atom, rdf) and opml comments. Only the version number is removed, not the entire generator information.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>(*) If your theme uses TimThumb, you can disable that blocking rule, check FAQ before installing the plugin to see how.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 3.9.2 or higher. (Works with WordPress network\u002Fmultisite installation).\u003C\u002Fli>\n\u003Cli>Apache 2.4.x web server\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It has been tested in many servers including large providers like HostGator, Godaddy and 1&1 with optimal results, and it will work fine in any decent hosting service (that allows you to set options from .htaccess files).\u003C\u002Fp>\n\u003Cp>Anyway, if you get any problem after activating the plugin, check FAQ for instructions on how to manually uninstall it.\u003C\u002Fp>\n\u003Cp>If you’re not sure of which server is your hosting company using or if they allow to use custom .htaccess rules, I would recommend you to contact with your host support \u003Cstrong>before\u003C\u002Fstrong> installing the plugin.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>To apply above mentioned security rules simply install and activate the plugin, no options page, no user setup!\u003C\u002Fp>\n\u003Cp>If you need to remove the security rules for some reason, simply deactivate the plugin. If you want to add them again, activate the plugin again, that easy 😉\u003C\u002Fp>\n\u003Cp>And remember, \u003Cstrong>if your theme uses TimThumb, check FAQ before installing the plugin\u003C\u002Fstrong>.\u003C\u002Fp>\n","Adds some extra security to your WordPress with only one click.",200,13682,7,"2025-03-03T20:53:00.000Z","6.7.5","3.9.2",[91,19,92,22,23],"firewall","htaccess","http:\u002F\u002Fwww.samuelaguilera.com\u002Farchivo\u002Fprotege-wordpress-facilmente.xhtml","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsar-one-click-security.1.3.zip",92,{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":84,"downloaded":104,"rating":11,"num_ratings":11,"last_updated":105,"tested_up_to":68,"requires_at_least":106,"requires_php":107,"tags":108,"homepage":112,"download_link":113,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"security-hardener","Security Hardener","2.2.0","Marc Armengou","https:\u002F\u002Fprofiles.wordpress.org\u002Fmarc4\u002F","\u003Cp>\u003Cstrong>Security Hardener\u003C\u002Fstrong> applies WordPress security best practices based on the \u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Fadvanced-administration\u002Fsecurity\u002Fhardening\u002F\" rel=\"nofollow ugc\">WordPress Advanced Administration \u002F Security \u002F Hardening\u003C\u002Fa> documentation and widely accepted hardening measures. It uses WordPress core functions and follows best practices without modifying core files.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>File Security:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Disable file editor in WordPress admin\u003Cbr \u002F>\n* Optionally disable all file modifications (blocks updates – use with caution)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>XML-RPC Protection:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Disable XML-RPC completely (enabled by default)\u003Cbr \u002F>\n* Remove pingback methods when XML-RPC is enabled\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Pingback Protection:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Disable self-pingbacks\u003Cbr \u002F>\n* Remove X-Pingback header\u003Cbr \u002F>\n* Block incoming pingbacks\u003C\u002Fp>\n\u003Cp>\u003Cstrong>User Enumeration Protection:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Block \u003Ccode>\u002F?author=N\u003C\u002Fcode> queries (returns 404)\u003Cbr \u002F>\n* Secure REST API user endpoints (require authentication)\u003Cbr \u002F>\n* Remove users from XML sitemaps\u003Cbr \u002F>\n* Prevent canonical redirects that expose usernames\u003Cbr \u002F>\n* Optionally block author feed pages (\u003Ccode>\u002Fauthor\u002Fusername\u002Ffeed\u002F\u003C\u002Fcode>)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Login Security:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Generic error messages (no username\u002Fpassword hints)\u003Cbr \u002F>\n* Login honeypot — silently blocks bots before any credential check\u003Cbr \u002F>\n* IP-based rate limiting with configurable thresholds\u003Cbr \u002F>\n* Security event logging (last 100 events)\u003Cbr \u002F>\n* Automatic blocking after failed attempts\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security Headers:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>X-Frame-Options: SAMEORIGIN\u003C\u002Fcode> (clickjacking protection)\u003Cbr \u002F>\n* \u003Ccode>X-Content-Type-Options: nosniff\u003C\u002Fcode> (MIME sniffing protection)\u003Cbr \u002F>\n* \u003Ccode>Referrer-Policy: strict-origin-when-cross-origin\u003C\u002Fcode>\u003Cbr \u002F>\n* \u003Ccode>Permissions-Policy\u003C\u002Fcode> (restricts geolocation, microphone, camera)\u003Cbr \u002F>\n* Optional HSTS (HTTP Strict Transport Security) for HTTPS sites — max-age set to 1 year\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Additional Hardening:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Hide WordPress version (meta generator tag and asset query strings)\u003Cbr \u002F>\n* Remove obsolete wp_head items (RSD, WLW manifest, shortlink, emoji scripts)\u003Cbr \u002F>\n* Security event logging system\u003Cbr \u002F>\n* Optionally disable Application Passwords for API authentication\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>⚠️ \u003Cstrong>Important:\u003C\u002Fstrong> Always test security settings in a staging environment first. Some features may affect third-party integrations or plugins.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Privacy:\u003C\u002Fstrong> This plugin does not send data to external services and does not create custom database tables. It stores plugin settings and a security event log in the WordPress options table, and uses transients for temporary login attempt tracking. All data is preserved on uninstall by default and only deleted if the “Delete all data on uninstall” option is explicitly enabled.\u003C\u002Fp>\n","Basic hardening: secure headers, login honeypot, user enumeration blocking, generic login errors, rate limiting, and more.",990,"2026-04-02T19:24:00.000Z","6.9","8.2",[109,19,110,111,23],"brute-force","headers","login-protection","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsecurity-hardener\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsecurity-hardener.2.2.0.zip",{"slug":115,"name":116,"version":117,"author":115,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":13,"num_ratings":66,"last_updated":123,"tested_up_to":88,"requires_at_least":124,"requires_php":125,"tags":126,"homepage":129,"download_link":130,"security_score":95,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"shieldup","ShieldUp – Bad Bots, Scrapers, Attackers","1.0.1","https:\u002F\u002Fprofiles.wordpress.org\u002Fshieldup\u002F","\u003Cp>Tired of bad bots, scrapers, attackers and sluggish website performance?\u003C\u002Fp>\n\u003Cp>By providing real-time monitoring of accessing IPs, HTTP codes, URLs, and user agents, organized analytics, customizable timeline and visualizations, ShieldUp will help you indentify and combat threats like bad bots, scrapers, malicous attackers.\u003C\u002Fp>\n\u003Cp>Which will improve website security and performance by reducing the load on your server resources for a snappy website and great user experience.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cp>🛡️ \u003Cstrong>Advanced Security\u003C\u002Fstrong>: ShieldUp protects your site from malicious bots, scrapers, attackers and hackers, shielding your website from potential threats.\u003C\u002Fp>\n\u003Cp>🚀 \u003Cstrong>Optimized Performance\u003C\u002Fstrong>: Improve website speed and user experience by eliminating  unnecessary requests from scrapers, bad bots and brute force attackers\u003C\u002Fp>\n\u003Cp>🗃️ \u003Cstrong>Comprehensive Data Collection\u003C\u002Fstrong>: ShieldUp logs and archive accessing IPs, HTTP response codes, URLs, user agents, timestamps, etc.\u003C\u002Fp>\n\u003Cp>📊 \u003Cstrong>Detailed Data Insights\u003C\u002Fstrong>: ShieldUp will analyze, organize and displays IP data based on IP ranges, request counts, details, offering a comprehensive view of your traffic within user-friendly tables.\u003C\u002Fp>\n\u003Cp>📅 \u003Cstrong>Custom Time Period\u003C\u002Fstrong>: Select specific time ranges through an intuitive calendar feature for in-depth data analysis.\u003C\u002Fp>\n\u003Cp>📈 \u003Cstrong>Visualize Data\u003C\u002Fstrong>: Easily visualize traffic trends and patterns with our user-friendly graphs.\u003C\u002Fp>\n\u003Cp>🛠️ \u003Cstrong>IP Tools\u003C\u002Fstrong>: Helps you with actions like retrieving detailed IP information from DB or third-party tools.\u003C\u002Fp>\n\u003Cp>🌐 \u003Cstrong>Cloudflare Integration (Pro)\u003C\u002Fstrong>: Seamlessly connect your website to Cloudflare, enhancing security and performance even further by leverage Cloudflare’s powerful features.\u003C\u002Fp>\n\u003Cp>⚙️ \u003Cstrong>Advanced IP Management (Pro)\u003C\u002Fstrong>: Take control with a click. Manage IPs and IP ranges effortlessly, with actions like blocking, JavaScript challenges, whitelisting, or remove rules using Cloudflare’s firewall through the plugin.\u003C\u002Fp>\n\u003Cp>💼 \u003Cstrong>Centralized IP Database (Pro)\u003C\u002Fstrong>: Keep all IPs controlled by your WP plugin and Cloudflare in a centralized database for efficient management and tracking.\u003C\u002Fp>\n\u003Cp>📝 \u003Cstrong>User Activity Logging (Pro)\u003C\u002Fstrong>: Maintain detailed logs of all IP controls by users, ensuring accountability and providing a historical record of security actions.\u003C\u002Fp>\n\u003Cp>🏆 \u003Cstrong>Priority Support (Pro)\u003C\u002Fstrong>: Pro members get priority support, so you can expect quick help with any questions or issues.\u003C\u002Fp>\n\u003Ch3>\u003Cem>Please Note: Yes, the Pro version is undeniably impressive. However, the free version is really what you need and will get the job done.\u003C\u002Fem>\u003C\u002Fh3>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>1. Installation and Activation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Start by downloading and installing the ShieldUp plugin. Once activated, it seamlessly integrates with your WordPress, ready to work its magic.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Data Collection\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ShieldUp starts by collecting crucial data about the traffic to your website. It keeps a record of accessing IPs, including HTTP response codes, URLs, user agents, and timestamps. This data is organized into user-friendly tables and presented through interactive graphs, allowing you to gain valuable insights into your website’s traffic patterns.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. Select, Organize and Display Data\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can choose a specific time frame, making it easy to identify which IPs are accessing your site the most. It also groups IPs into \u002F16 and \u002F24 ranges and along with graphical representation helps you visualize trends, spot unusual activity and potential security threats.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. Cloudflare Integration (Pro)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ShieldUp seamlessly integrates with Cloudflare in PRO version, enhancing your website’s security even further. Using the Cloudflare API, you can manage IPs and IP ranges right from your WordPress dashboard. Implement blocks, JavaScript challenges, whitelist entries, or remove rules with just a few clicks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>5. IP Tools & IP Management\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Each IP listed in the user-friendly interface comes with action buttons, enabling you to ban IPs in your website’s firewall or CloudFlare, retrieve detailed IP information from third-party tools, and perform other custom actions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>6. Enhanced Security\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ShieldUp employs advanced security measures to protect your website from a wide range of threats. It identifies and blocks malicious bots, scrapers, attackers, and hackers, ensuring that your website remains secure.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>7. Optimized Website Performance\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In addition to security, ShieldUp optimizes your website’s performance. It achieves this by filtering out unnecessary requests from bad bots, scrapers and other unwanted traffic. This optimization reduces the load on your server resources, resulting in a snappy and responsive website and great user experience.\u003C\u002Fp>\n\u003Ch3>Firewalls, What we recommend?\u003C\u002Fh3>\n\u003Cp>One of the best options would be a hardware-type firewall, but we wouldn’t be in this situation if we had one.\u003C\u002Fp>\n\u003Cp>The next best option for managing HTTP and HTTPS traffic is a cloud-based firewall, such as CloudFlare, especially when it is available for free and offers a wide range of excellent features. In addition to that, we also use CSF for other security solutions and to manage traffic and ports related to services like mail and SSH.\u003C\u002Fp>\n\u003Cp>So, why do we think CloudFlare is a better solution for HTTP and HTTPS trafic, than “Traditional” Server\u002FSoftware-Based Firewall (CSF) especially Plugin-Like Firewalls (WordPress Plugins)?\u003C\u002Fp>\n\u003Cp>Traditional firewalls, while valuable, have limitations when compared to Cloudflare’s robust security and performance capabilities. These firewalls primarily protect your server or website by consuming server resources, leaving them vulnerable to large-scale attacks, among other things. In contrast, Cloudflare operates a global network that defends against threats at the network edge, providing superior DDoS protection and accelerated content delivery. By choosing Cloudflare, you gain a comprehensive, cloud-based solution that strengthens your website’s resilience and speed, effectively surpassing the capabilities of traditional local firewalls when it comes to HTTP and HTTPS trafic.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Here are some of the main features of CloudFlare:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Global Network Security:\u003C\u002Fstrong> Cloudflare operates a vast global network that acts as a protective shield for your website, filtering out malicious traffic and threats before they even reach your server. This distributed approach ensures that attacks are mitigated at the network edge, preserving your server resources.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Content Caching:\u003C\u002Fstrong> Cloudflare’s caching infrastructure stores copies of your website’s content at data centers around the world. This means visitors experience faster load times as they access cached content from a server nearest to them, reducing server load and improving website responsiveness.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Web Application Firewall (WAF):\u003C\u002Fstrong> Cloudflare offers a comprehensive Web Application Firewall that can be finely tuned to your specific needs. It provides a robust defense against common web application attacks, such as SQL injection and cross-site scripting (XSS), without the need for additional on-site firewall plugins.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>IP Control and Access Management:\u003C\u002Fstrong> Cloudflare’s firewall allows you to control and manage IP access with precision. You can easily set rules to block or allow specific IPs, IP ranges, or countries, giving you granular control over who can access your website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>DDoS Protection:\u003C\u002Fstrong> Cloudflare’s network is designed to withstand large-scale DDoS attacks, providing a shield against volumetric threats that would overwhelm on-site firewalls. This ensures uninterrupted website availability.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Performance Optimization:\u003C\u002Fstrong> Cloudflare’s content delivery network (CDN) optimizes the delivery of your website’s assets, including images, scripts, and stylesheets, resulting in reduced latency and faster load times for your visitors.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Scalability and Reliability:\u003C\u002Fstrong> Cloudflare’s infrastructure is highly scalable and redundant, ensuring that your website remains available even during traffic spikes or server failures.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>By integrating Cloudflare with your WordPress site, you not only enhance security but also optimize performance, reduce server load, and simplify IP access control, all while benefiting from Cloudflare’s global network and advanced security features. It’s a comprehensive solution that takes your website’s protection and performance to the next level.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This is why we use it on all our websites, including the Pro version of this plugin as well. Therefore, we strongly recommend that you use it for your website if you haven’t already, whether you intend to use this plugin or not.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please note that we still use and recommend that you use a ‘Traditional’ server\u002Fsoftware-based firewall like CSF, in conjunction with CloudFlare, to cover various security aspects such as traffic\u002Fports for mail, FTP, SSH, etc.\u003C\u002Fstrong>\u003C\u002Fp>\n","ShieldUp helps you to tackle bad bots, scrapers, hackers, enhancing website security and optimizing performance for a seamless user experience.",80,1775,"2024-11-17T11:00:00.000Z","5.3.2","7.2.1",[127,128,21,22,23],"activity-log","bad-bots","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fshieldup","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshieldup.1.0.1.zip",{"attackSurface":132,"codeSignals":191,"taintFlows":276,"riskAssessment":277,"analyzedAt":284},{"hooks":133,"ajaxHandlers":187,"restRoutes":188,"shortcodes":189,"cronEvents":190,"entryPointCount":11,"unprotectedCount":11},[134,140,144,147,153,158,161,165,170,176,180,184],{"type":135,"name":136,"callback":137,"file":138,"line":139},"action","admin_init","wmso_wikimint_maint_settings_init","includes\u002Fmaint.php",18,{"type":135,"name":136,"callback":141,"file":142,"line":143},"wmso_wikimint_optimize_settings_init","includes\u002Foptimize.php",15,{"type":135,"name":136,"callback":145,"file":146,"line":143},"wmso_wikimint_security_settings_init","includes\u002Fsecurity.php",{"type":148,"name":149,"callback":150,"file":151,"line":152},"filter","the_generator","wmso_wikimint_security_remove_version","public\u002Fexecute.php",11,{"type":148,"name":154,"callback":155,"priority":156,"file":151,"line":157},"style_loader_src","wmso_wikimint_remove_css_js_version",9999,24,{"type":148,"name":159,"callback":155,"priority":156,"file":151,"line":160},"script_loader_src",25,{"type":148,"name":162,"callback":163,"file":151,"line":164},"xmlrpc_enabled","__return_false",51,{"type":135,"name":166,"callback":167,"file":168,"line":169},"get_header","wmso_wikimint_source_compression_start","public\u002Fminpublic.php",152,{"type":148,"name":171,"callback":172,"priority":173,"file":174,"line":175},"plugin_action_links","wmso_wikimint_shortcut_links",10,"wm-secure-optimize.php",20,{"type":135,"name":177,"callback":178,"file":174,"line":179},"admin_menu","wmso_wikimint_security_menu",49,{"type":135,"name":181,"callback":182,"file":174,"line":183},"admin_enqueue_scripts","wmso_wikimint_enqueue_admin_links",65,{"type":135,"name":166,"callback":185,"file":174,"line":186},"wmso_wikimint_maintenance_mode",187,[],[],[],[],{"dangerousFunctions":192,"sqlUsage":193,"outputEscaping":195,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":274,"bundledLibraries":275},[],{"prepared":11,"raw":11,"locations":194},[],{"escaped":14,"rawEcho":196,"locations":197},39,[198,201,203,205,207,209,211,213,215,217,219,220,222,224,226,227,229,231,233,235,238,240,243,245,246,248,250,252,254,256,258,260,261,263,265,267,269,271,272],{"file":138,"line":199,"context":200},22,"raw output",{"file":138,"line":202,"context":200},38,{"file":138,"line":204,"context":200},57,{"file":138,"line":206,"context":200},73,{"file":138,"line":208,"context":200},101,{"file":138,"line":210,"context":200},104,{"file":138,"line":212,"context":200},107,{"file":138,"line":214,"context":200},110,{"file":142,"line":216,"context":200},19,{"file":142,"line":218,"context":200},36,{"file":142,"line":204,"context":200},{"file":142,"line":221,"context":200},83,{"file":142,"line":223,"context":200},109,{"file":142,"line":225,"context":200},135,{"file":146,"line":216,"context":200},{"file":146,"line":228,"context":200},35,{"file":146,"line":230,"context":200},55,{"file":146,"line":232,"context":200},76,{"file":146,"line":234,"context":200},97,{"file":236,"line":237,"context":200},"public\u002Fmaintpage.php",99,{"file":236,"line":239,"context":200},102,{"file":241,"line":242,"context":200},"public\u002Fmpages\u002Fmpage1.php",48,{"file":241,"line":244,"context":200},62,{"file":241,"line":183,"context":200},{"file":247,"line":242,"context":200},"public\u002Fmpages\u002Fmpage2.php",{"file":247,"line":249,"context":200},205,{"file":247,"line":251,"context":200},207,{"file":253,"line":242,"context":200},"public\u002Fmpages\u002Fmpage3.php",{"file":253,"line":255,"context":200},188,{"file":253,"line":257,"context":200},189,{"file":259,"line":242,"context":200},"public\u002Fmpages\u002Fmpage4.php",{"file":259,"line":26,"context":200},{"file":259,"line":262,"context":200},88,{"file":174,"line":264,"context":200},131,{"file":174,"line":266,"context":200},132,{"file":174,"line":268,"context":200},133,{"file":174,"line":270,"context":200},134,{"file":174,"line":225,"context":200},{"file":174,"line":273,"context":200},136,2,[],[],{"summary":278,"deductions":279},"The \"wm-secure-and-optimize\" v1.0.2 plugin exhibits a generally positive security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points significantly reduces the plugin's attack surface. Furthermore, the complete reliance on prepared statements for SQL queries and the lack of file operations or external HTTP requests are strong indicators of secure coding practices in these areas. The plugin also has no recorded vulnerabilities, which is a very positive sign for its current security.\n\nHowever, a significant concern arises from the low percentage of properly escaped output. With 40 total outputs and only 3% properly escaped, this indicates a substantial risk of cross-site scripting (XSS) vulnerabilities. Any user-controlled input that is displayed without proper sanitization or escaping could be exploited by attackers. The lack of nonce checks on any entry points, while seemingly benign given the zero attack surface, could become a significant issue if new entry points are introduced in future versions without adequate protection. The presence of capability checks is good, but their effectiveness is undermined by the output escaping issue.\n\nIn conclusion, while the plugin is free of known vulnerabilities and demonstrates good practices in many critical areas like SQL and file handling, the widespread lack of output escaping presents a clear and present danger of XSS attacks. This weakness overshadows the otherwise strong security foundation. Developers should prioritize addressing the output escaping issue to significantly improve the plugin's overall security.",[280,282],{"reason":281,"points":143},"Low percentage of properly escaped output",{"reason":283,"points":47},"No nonce checks on entry points","2026-04-16T14:42:09.902Z",{"wat":286,"direct":295},{"assetPaths":287,"generatorPatterns":290,"scriptPaths":291,"versionParams":292},[288,289],"\u002Fwp-content\u002Fplugins\u002Fwm-secure-and-optimize\u002Fadmin\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwm-secure-and-optimize\u002Fadmin\u002Fscript.js",[],[289],[293,294],"wm-secure-and-optimize\u002Fadmin\u002Fstyle.css?ver=","wm-secure-and-optimize\u002Fadmin\u002Fscript.js?ver=",{"cssClasses":296,"htmlComments":300,"htmlAttributes":301,"restEndpoints":303,"jsGlobals":304,"shortcodeOutput":306},[297,298,299],"wmso-anchor","tablinks","tabcontent",[],[302],"data-tab",[],[305],"openWMoptions",[],{"error":308,"url":309,"statusCode":310,"statusMessage":311,"message":311},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwm-secure-and-optimize\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":66,"versions":313},[314,320,326],{"version":6,"download_url":25,"svn_tag_url":315,"released_at":27,"has_diff":316,"diff_files_changed":317,"diff_lines":27,"trac_diff_url":318,"vulnerabilities":319,"is_current":308},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwm-secure-and-optimize\u002Ftags\u002F1.0.2\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwm-secure-and-optimize%2Ftags%2F1.0.1&new_path=%2Fwm-secure-and-optimize%2Ftags%2F1.0.2",[],{"version":117,"download_url":321,"svn_tag_url":322,"released_at":27,"has_diff":316,"diff_files_changed":323,"diff_lines":27,"trac_diff_url":324,"vulnerabilities":325,"is_current":316},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwm-secure-and-optimize.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwm-secure-and-optimize\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwm-secure-and-optimize%2Ftags%2F1.0.0&new_path=%2Fwm-secure-and-optimize%2Ftags%2F1.0.1",[],{"version":327,"download_url":328,"svn_tag_url":329,"released_at":27,"has_diff":316,"diff_files_changed":330,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":331,"is_current":316},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwm-secure-and-optimize.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwm-secure-and-optimize\u002Ftags\u002F1.0.0\u002F",[],[]]