[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpLJ_g9rdA5hmWzuznZO5hayRi1jcQZJ6UOJWGlW32EQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":140,"fingerprints":258},"wp-choose-thumb","WP-Choose-Thumb","1.3.6","Dave Ligthart","https:\u002F\u002Fprofiles.wordpress.org\u002Fdaveligthart-1\u002F","\u003Cp>A simple way to choose a default thumbnail for your post.\u003C\u002Fp>\n\u003Cp>Works alongside the featured image core functionality.\u003C\u002Fp>\n\u003Cp>For theme usage:\u003C\u002Fp>\n\u003Ch4>Add this function where you want the thumbnail to appear\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>\u003C?php if(function_exists('wct_thumb')){ wct_thumb(); } ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","A simple way to add a default thumbnail to your post.",20,10605,100,1,"2012-12-18T08:43:00.000Z","3.5.2","2.7","",[20,21,22,23,24],"attachments","thumb","thumbnail","thumbnails","thumbs","http:\u002F\u002Fdaveligthart.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-choose-thumb.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"daveligthart-1",4,6050,91,30,88,"2026-04-04T23:31:10.389Z",[41,64,82,100,120],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":51,"num_ratings":52,"last_updated":53,"tested_up_to":54,"requires_at_least":55,"requires_php":56,"tags":57,"homepage":60,"download_link":61,"security_score":62,"vuln_count":14,"unpatched_count":14,"last_vuln_date":63,"fetched_at":30},"wow-media-library-fix","Fix Media Library","2.0","wowpress.host","https:\u002F\u002Fprofiles.wordpress.org\u002Fwowpresshost\u002F","\u003Cp>Fix Media Library fixes inconsistency between wp-content\u002Fuploads folder and\u003Cbr \u002F>\ndatabase.\u003Cbr \u002F>\nFixes corrupted Media Library database records.\u003Cbr \u002F>\nDesigned to run smoothly against huge Media Libraries containing hundreds of thousands of images.\u003C\u002Fp>\n\u003Cp>Useful when:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Really old database is used and there are a lot of problems with Media Library found\u003C\u002Fli>\n\u003Cli>New thumbnail sizes are registered\u003C\u002Fli>\n\u003Cli>Some thumbnail sizes are not used anymore (theme change, upgrade), but image files are still exists\u003C\u002Fli>\n\u003Cli>There are Media Library entries present pointing to image files that don’t exist anymore\u003C\u002Fli>\n\u003Cli>Some entries in Media Library are not displayed, while image files are present (_wp_attachment_metadata meta field corrupted)\u003C\u002Fli>\n\u003Cli>There are a lot of images in wp-content\u002Fuploads folder that are no longer used\u003C\u002Fli>\n\u003Cli>There are duplicate attachments pointing to the same image file\u003C\u002Fli>\n\u003Cli>Images are used by website, but you can’t find them in Media Library\u003C\u002Fli>\n\u003Cli>You want to update attachments GUID fields containing old\u002Fstaging urls\u003C\u002Fli>\n\u003Cli>Detects major database corruptions affecting media library functionality\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>At \u003Ca href=\"https:\u002F\u002Fwowpress.host\u002F\" rel=\"nofollow ugc\">WowPress.host\u003C\u002Fa> company we regularly migrate very old databases and clean it up to make sure website using it is running smoothly. Those databases have all different kinds of inconsistencies collected during years or even decades of usage, and Media Library is the most common problematic piece of data here.\u003Cbr \u002F>\nThat plugin helps to solve most common problems related to Media Library data.\u003C\u002Fp>\n\u003Cp>We use a lot of open-source tools in our work, and therefore decided publish our own tools so that those can be used by the community too.\u003C\u002Fp>\n\u003Ch4>Need Help? Found A Bug? Want To Contribute Code?\u003C\u002Fh4>\n\u003Cp>Support for this plugin is provided via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwow-media-library-fix\" rel=\"ugc\">WordPress.org forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The source code for this plugin is available on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwowpress-host\u002Fwow-media-library-fix\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Paid support at \u003Ca href=\"https:\u002F\u002Fwowpress.host\u002Fprofessional-services\u002F\" rel=\"nofollow ugc\">WowPress.host\u003C\u002Fa>.\u003C\u002Fp>\n","Fix Media Library inconsistency between database and wp-content\u002Fuploads folder contents. Unused image files, broken media library entries, missing att &hellip;",2000,37302,98,32,"2018-12-18T10:26:00.000Z","5.0.25","4.6","5.3",[20,58,59,22,23],"media-library","post-thumbnail","https:\u002F\u002Fwowpress.host\u002Fplugins\u002Fwow-","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwow-media-library-fix.2.0.zip",63,"2025-12-12 00:00:00",{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":13,"num_ratings":14,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":18,"tags":77,"homepage":80,"download_link":81,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"recent-post-lazy-load","Recent Post Lazy Load","1.0.1","Sajid K.Shaikh","https:\u002F\u002Fprofiles.wordpress.org\u002Fcontact4sajid\u002F","\u003Cp>The Widget with some options. This plugin is based on the well-known WordPress default widget ‘Recent Posts’ and enhanced to display thumbnails of the posts.\u003C\u002Fp>\n\u003Cp>The thumbnails will be built from the featured image of a post content. If there is neither a featured image nor a content image then you can hide the thumbnail.\u003C\u002Fp>\n\u003Cp>The thumbnails appears left-aligned to the post titles. You can set the width and heigth of the thumbnails in the list.\u003C\u002Fp>\n\u003Cp>The widget and shortcode is available. You can insert through widget on any sidebar any where easily.\u003C\u002Fp>\n","Easy and fast load plugin to display in the sidebar a list of linked titles and thumbnails of the most recent postings through shortcodes etc.",10,3636,"2018-02-25T09:00:00.000Z","4.9.29","3.6",[78,79,21,23,24],"shortcode","shortcodes","http:\u002F\u002Fsksdev.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecent-post-lazy-load.zip",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":72,"downloaded":90,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":91,"requires_at_least":92,"requires_php":18,"tags":93,"homepage":97,"download_link":98,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":99},"simple-thumbs","Simple Thumbs","0.4.1","Pär Thernström","https:\u002F\u002Fprofiles.wordpress.org\u002Feskapism\u002F","\u003Cp>** This plugin will no longer be updated. **\u003C\u002Fp>\n\u003Cp>This plugin does three things:\u003C\u002Fp>\n\u003Col>\n\u003Cli>It creates rewrite rules that let you create nice urls for your images,\u003Cbr \u002F>\nlike “http:\u002F\u002Fexample.com\u002Fimage\u002F55\u002FDSC_0001.jpg” instead of “http:\u002F\u002Fexample.com\u002Fwordpress\u002Fwp-content\u002Fuploads\u002F2010\u002F02\u002FDSC_0001.jpg””\u003C\u002Fli>\n\u003Cli>It let’s you resize and crop images. And you can add unsharp filter to them too.\u003C\u002Fli>\n\u003Cli>It adds a function, simple_thumbs_img() and with this function you can create ready-to-go IMG-tags\u003Cbr \u002F>\nthat outputs the correct width and height, even if you choose to resize or crop your image.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Rewrite Rules\u002FNice Image URLs example\u003C\u002Fh4>\n\u003Cp>Instead of this URL:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fwordpress\u002Fwp-content\u002Fuploads\u002F2010\u002F02\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Your image can have this URL, where 55 is the Attachment ID:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Shorter and sweeter.\u003Cbr \u002F>\nBut there’s more! You can also send in some arguments:\u003C\u002Fp>\n\u003Cp>Resize the image to be 150px in width:\u003Cbr \u002F>\n    http:\u002F\u002Fexample.com\u002Fimage\u002F55:w150\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Resize the image to be 150px in width, and give it another name (you can name the image to whatever you want)\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55:w150\u002Fmy-cool-image.jpg\u003C\u002Fp>\n\u003Cp>Resize the image to 150px in height:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55:h150\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Resize the image to stay within 150px in height and width:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55:w150:h150\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Crop the image to exactly 150px in width and height:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55:w150:h150\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Make a small thumb, and also add an unsharp filter:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55:w175:h75:c1:u1\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Make a small thumb, and also add an unsharp filter, and output as png:\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55:w175:h75:c1:u1:fp\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Same as above, but with pipe as the delimeter (you can choose between ,._- and |):\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.com\u002Fimage\u002F55|w175|h75|c1|u1|fp\u002FDSC_0001.jpg\u003C\u002Fp>\n\u003Cp>Please note that all the resize stuff where made without adding any querystring to the URL.\u003Cbr \u002F>\nThis is good for Search Engine Optimization (SEO) reasones, but also for caching reasons.\u003Cbr \u002F>\nGoogle Page Speed will for example give you a higher score because of this! 🙂\u003C\u002Fp>\n\u003Cp>All generated images will be cached, so only the first call to each URL restults in an actual resize of the image.\u003Cbr \u002F>\nImages are also sent with far future expires headers, so if a user returns to your page all images should load blazingly fast.\u003C\u002Fp>\n\u003Ch4>simple_thumbs_img(): The Magic Function\u003C\u002Fh4>\n\u003Cp>simple_thumbs_img() generates IMG tags for you, with the correct width & height attributes set, even after resize.\u003C\u002Fp>\n\u003Cp>With no width and height values set, the page may be redrawn several times, resulting in a very “jumpy” page.\u003Cbr \u002F>\nUsing Simple Thumb to create your image tag will solve this problem.\u003C\u002Fp>\n\u003Cp>Lack of width and height atributes in img-tags can also lead to\u003Cbr \u002F>\nerrors when JavaScript ondomready calculations are made while images are still loading, since\u003Cbr \u002F>\nit can’t determine the size of the image.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>    \u003C?php\n\n    \u002F\u002F get img tag with nice url for image with id 55, with the correct width and height attributes set.\n    \u002F\u002F do whatever you wan't with it\n    $img_src = simple_thumbs_img(\"id=55&tag=1\");\n\n    \u002F\u002F print img tag with nice url for image with id 55, with the correct width and height attributes set.\n    echo simple_thumbs_img(\"id=55&tag=1\");\n\n    \u002F\u002F print img tag with nice url for image with id 55, and resize it to be a thumb that has the max size 75x75,\n    \u002F\u002F with the correct width and height attributes set.\n    echo simple_thumbs_img(\"id=55&tag=1&w=75&h=75\");\n\n    \u002F\u002F print img tag with nice url for image with id 55, and crop it to be a thumb that has the excact size 75x75,\n    \u002F\u002Fwith the correct width and height attributes set, and add an alt text\n    echo simple_thumbs_img(\"id=55&tag=1&w=75&h=75&m=c&alt=My alternative text\");\n\n    ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Resize modes\u003C\u002Fh4>\n\u003Cp>Control the way the thumbs are created by adding parameter “m”, as in “mode”.\u003Cbr \u002F>\nTo learn how they work just experiment a bit.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>within = mw\u003C\u002Fli>\n\u003Cli>crop = mc\u003C\u002Fli>\n\u003Cli>portrait = mp\u003C\u002Fli>\n\u003Cli>landscape = ml\u003C\u002Fli>\n\u003Cli>auto = ma\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Filters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>unsharp mask – good for making small thumbnails appear to have more detail. Once you’ve gone unsharp, you don’t want to go back! 🙂\u003Cbr \u002F>\nu0 for note, u3 for sharpest\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Donation and more plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>If you like this plugin don’t forget to \u003Ca href=\"http:\u002F\u002Fexample.com\u002Fsida\u002Fdonate\u002F\" rel=\"nofollow ugc\">donate to support further development\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>More \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fprofile\u002Feskapism\" rel=\"ugc\">WordPress CMS plugins\u003C\u002Fa> by the same author.\u003C\u002Fli>\n\u003C\u002Ful>\n","Create image thumbs from WP attachments, w\u002F option to crop & fit to wanted size & create IMG-tags w\u002F correct width & height attributes.",4859,"3.0.5","3.0",[94,95,96,23,24],"gd","image","photos","http:\u002F\u002Feskapism.se\u002Fcode-playground\u002Fsimple-thumbs\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-thumbs.zip","2026-03-15T10:48:56.248Z",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":118,"download_link":119,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"regenerate-thumbnails","Regenerate Thumbnails","3.1.6","Alex Mills","https:\u002F\u002Fprofiles.wordpress.org\u002Fviper007bond\u002F","\u003Cp>Regenerate Thumbnails allows you to regenerate all thumbnail sizes for one or more images that have been uploaded to your Media Library.\u003C\u002Fp>\n\u003Cp>This is useful for situations such as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>A new thumbnail size has been added and you want past uploads to have a thumbnail in that size.\u003C\u002Fli>\n\u003Cli>You’ve changed the dimensions of an existing thumbnail size, for example via Settings â Media.\u003C\u002Fli>\n\u003Cli>You’ve switched to a new WordPress theme that uses featured images of a different size.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It also offers the ability to delete old, unused thumbnails in order to free up server space.\u003C\u002Fp>\n\u003Ch4>In Memory of Alex Mills\u003C\u002Fh4>\n\u003Cp>In February 2019 Alex Mills, the author of this plugin, \u003Ca href=\"https:\u002F\u002Falex.blog\u002F2019\u002F02\u002F27\u002Ffrom-alexs-family\u002F\" rel=\"nofollow ugc\">passed away\u003C\u002Fa>. He leaves behind a number of plugins which will be maintained by Automattic and members of the WordPress community. If this plugin is useful to you please consider donating to the Oregon Health and Science University. You can find more information \u003Ca href=\"https:\u002F\u002Falex.blog\u002F2019\u002F03\u002F13\u002Fin-memory-of-alex-donation-link-update\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Alternatives\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>WP-CLI\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you have command line access to your server, I highly recommend using \u003Ca href=\"https:\u002F\u002Fwp-cli.org\u002F\" rel=\"nofollow ugc\">WP-CLI\u003C\u002Fa> instead of this plugin as it’s faster (no HTTP requests overhead) and can be run inside of a \u003Ccode>screen\u003C\u002Fcode> for those with many thumbnails. For details, see the documentation of its \u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Fcli\u002Fcommands\u002Fmedia\u002Fregenerate\u002F\" rel=\"nofollow ugc\">\u003Ccode>media regenerate\u003C\u002Fcode> command\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Jetpack’s Photon Module\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002F\" rel=\"nofollow ugc\">Jetpack\u003C\u002Fa> is a plugin by Automattic, makers of WordPress.com. It gives your self-hosted WordPress site some of the functionality that is available to WordPress.com-hosted sites.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002Fsupport\u002Fphoton\u002F\" rel=\"nofollow ugc\">The Photon module\u003C\u002Fa> makes the images on your site be served from WordPress.com’s global content delivery network (CDN) which should speed up the loading of images. Importantly though it can create thumbnails on the fly which means you’ll never need to use this plugin.\u003C\u002Fp>\n\u003Cp>I personally use Photon on my own website.\u003C\u002Fp>\n\u003Cp>\u003Cem>Disclaimer: I work for Automattic but I would recommend Photon even if I didn’t.\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch4>Need Help? Found A Bug? Want To Contribute Code?\u003C\u002Fh4>\n\u003Cp>Support for this plugin is provided via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fregenerate-thumbnails\" rel=\"ugc\">WordPress.org forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The source code for this plugin is available on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fautomattic\u002Fregenerate-thumbnails\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Regenerate the thumbnails for one or more of your image uploads. Useful when changing their sizes or your theme.",1000000,22530302,92,395,"2025-08-20T15:56:00.000Z","6.8.5","4.7","5.2.4",[59,117,22,23],"post-thumbnails","https:\u002F\u002Falex.blog\u002Fwordpress-plugins\u002Fregenerate-thumbnails\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fregenerate-thumbnails.3.1.6.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":135,"tags":136,"homepage":138,"download_link":139,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"force-regenerate-thumbnails","Force Regenerate Thumbnails","2.3.0","nosilver4u","https:\u002F\u002Fprofiles.wordpress.org\u002Fnosilver4u\u002F","\u003Cp>Force Regenerate Thumbnails allows you to delete all old images sizes and REALLY regenerate the thumbnails for your uploads.\u003C\u002Fp>\n\u003Cp>Regenerate all thumbnails from the Tools admin menu. Regenerate batches of images via the Media Library list mode. Select the images to regenerate and then use the Bulk Actions drop-down menu to Force Regenerate Thumbnails. Use attachment actions to regenerate thumbnails for a single image.\u003C\u002Fp>\n\u003Cp>Several filters exist for advanced usage. See more via \u003Ca href=\"https:\u002F\u002Fgist.github.com\u002Fnosilver4u\u002Feb858df10521aece2044a3a15ccdd17b\" rel=\"nofollow ugc\">this gist\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You may report security issues through our Patchstack Vulnerability Disclosure Program. The Patchstack team helps validate, triage and handle any security vulnerabilities. \u003Ca href=\"https:\u002F\u002Fpatchstack.com\u002Fdatabase\u002Fvdp\u002Fforce-regenerate-thumbnails\" rel=\"nofollow ugc\">Report a security vulnerability.\u003C\u002Fa>\u003C\u002Fp>\n","Delete and REALLY force thumbnail regeneration.",200000,4859122,94,183,"2026-02-17T15:52:00.000Z","6.9.4","6.6","7.4",[137,101,22,23],"force","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fforce-regenerate-thumbnails\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fforce-regenerate-thumbnails.2.3.0.zip",{"attackSurface":141,"codeSignals":176,"taintFlows":215,"riskAssessment":242,"analyzedAt":257},{"hooks":142,"ajaxHandlers":172,"restRoutes":173,"shortcodes":174,"cronEvents":175,"entryPointCount":28,"unprotectedCount":28},[143,149,153,157,161,164,168],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","plugins_loaded","anonymous","wp-choose-thumb.php",17,{"type":144,"name":150,"callback":151,"file":147,"line":152},"admin_menu","wct_create_menu",21,{"type":144,"name":154,"callback":155,"file":147,"line":156},"admin_init","wct_register_options",22,{"type":144,"name":158,"callback":159,"file":147,"line":160},"admin_head","wct_admin_head",313,{"type":144,"name":150,"callback":162,"file":147,"line":163},"wct_init",314,{"type":144,"name":165,"callback":166,"file":147,"line":167},"publish_post","wct_edit_post",315,{"type":169,"name":170,"callback":166,"file":147,"line":171},"filter","edit_post",316,[],[],[],[],{"dangerousFunctions":177,"sqlUsage":181,"outputEscaping":183,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":214},[178],{"fn":179,"file":147,"line":148,"context":180},"create_function","add_action('plugins_loaded', create_function('', 'wct_load_textdomain();') );",{"prepared":28,"raw":28,"locations":182},[],{"escaped":28,"rawEcho":184,"locations":185},14,[186,190,192,194,196,197,198,200,202,204,206,208,210,212],{"file":187,"line":188,"context":189},"settings.php",18,"raw output",{"file":187,"line":191,"context":189},23,{"file":187,"line":193,"context":189},31,{"file":195,"line":37,"context":189},"wct-thumb-loader.php",{"file":195,"line":193,"context":189},{"file":195,"line":52,"context":189},{"file":195,"line":199,"context":189},55,{"file":195,"line":201,"context":189},105,{"file":147,"line":203,"context":189},123,{"file":147,"line":205,"context":189},127,{"file":147,"line":207,"context":189},185,{"file":147,"line":209,"context":189},223,{"file":147,"line":211,"context":189},238,{"file":147,"line":213,"context":189},308,[],[216,233],{"entryPoint":217,"graph":218,"unsanitizedCount":14,"severity":232},"wct_load_thumbs (wct-thumb-loader.php:89)",{"nodes":219,"edges":229},[220,224],{"id":221,"type":222,"label":223,"file":195,"line":36},"n0","source","$_REQUEST",{"id":225,"type":226,"label":227,"file":195,"line":201,"wp_function":228},"n1","sink","echo() [XSS]","echo",[230],{"from":221,"to":225,"sanitized":231},false,"medium",{"entryPoint":234,"graph":235,"unsanitizedCount":14,"severity":241},"\u003Cwct-thumb-loader> (wct-thumb-loader.php:0)",{"nodes":236,"edges":239},[237,238],{"id":221,"type":222,"label":223,"file":195,"line":36},{"id":225,"type":226,"label":227,"file":195,"line":201,"wp_function":228},[240],{"from":221,"to":225,"sanitized":231},"low",{"summary":243,"deductions":244},"The wp-choose-thumb v1.3.6 plugin exhibits a mixed security posture. On the positive side, it demonstrates excellent practices regarding SQL queries, utilizing prepared statements exclusively, and has no recorded vulnerability history (CVEs). The absence of shortcodes, cron events, and REST API routes, along with a low attack surface count of AJAX handlers, suggests a limited external exposure. However, significant concerns arise from the static analysis. The presence of the `create_function` dangerous function is a critical red flag, as it can be exploited for code injection. Furthermore, a complete lack of output escaping (0% properly escaped) across 14 identified outputs is a serious vulnerability, opening the door to Cross-Site Scripting (XSS) attacks. The taint analysis revealing two flows with unsanitized paths, though not classified as critical or high, warrants investigation in conjunction with the unescaped outputs. The lack of nonce checks and capability checks also contributes to potential security weaknesses, especially if the identified unsanitized paths can be triggered by unauthenticated users.",[245,248,250,253,255],{"reason":246,"points":247},"Dangerous function: create_function",15,{"reason":249,"points":72},"Output escaping: 0% properly escaped",{"reason":251,"points":252},"Taint analysis: Unsanitized paths found",5,{"reason":254,"points":252},"Nonce checks: Missing",{"reason":256,"points":252},"Capability checks: Missing","2026-03-16T22:46:35.603Z",{"wat":259,"direct":265},{"assetPaths":260,"generatorPatterns":262,"scriptPaths":263,"versionParams":264},[261],"\u002Fwp-content\u002Fplugins\u002Fwp-choose-thumb\u002Fresources\u002Fimages\u002Fajax-loader.gif",[],[],[],{"cssClasses":266,"htmlComments":272,"htmlAttributes":275,"restEndpoints":283,"jsGlobals":284,"shortcodeOutput":292},[267,268,269,270,271],"wct_loading","wct_thumbs","wct_prev","wct_next","wct_refresh",[273,274],"WP-Choose-Thumb Javascript. http:\u002F\u002Fdaveligthart.com","Thumb loader.",[276,277,278,279,280,281,282],"id=\"wct_loading\"","id=\"wct_thumbs\"","id=\"wct_prev\"","id=\"wct_next\"","id=\"wct_refresh\"","name=\"wct_thumb\"","name=\"wct_thumb_id\"",[],[285,286,287,288,289,267,290,291,162],"wct_cur_offset","wct_offset","wct_load_thumb_next","wct_load_thumb_prev","wct_load","wct_loaded","wct_load_thumbs",[]]