[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fLgDXljh4kbyni2irUuBZ7LdQ12Zx2prZc8wzy8TjOF0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":120,"fingerprints":228},"wp-editor-imgur-button","WP Editor Imgur Button","1.1","codehay","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodehay\u002F","\u003Cp>Insert button upload image to imgur.com using api and add to comment box\u003C\u002Fp>\n\u003Cp>In wp-admin click Setting \u002F Imgur Uploader Settings to insert imgur Client ID before start plugin, if you checked Add TinyMCE to Comments box checkbox it will add tinymce editor in comments box in frontend.\u003C\u002Fp>\n","Insert button upload image to imgur.com using api and add to comment box",10,1950,0,"2016-08-02T15:18:00.000Z","4.5.33","1.0","",[19,20,21,22,23],"front-end-upload","imgur","imgur-comment","imgur-plugin","imgur-uploader","http:\u002F\u002Fcodehay.net\u002Fq\u002Fplugin-them-button-upload-anh-len-imgur-com-cho-tinymce-editor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-editor-imgur-button.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-04T05:03:24.630Z",[36,61,79,90,102],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":56,"download_link":57,"security_score":11,"vuln_count":58,"unpatched_count":59,"last_vuln_date":60,"fetched_at":28},"nmedia-user-file-uploader","Frontend File Manager Plugin","23.6","N-Media","https:\u002F\u002Fprofiles.wordpress.org\u002Fnmedia\u002F","\u003Cp>N-Media Frontend File Manager empowers WordPress users to securely upload files that are accessible only to admins. Each user’s files are stored in a private directory, ensuring only they can download or delete their own files after logging in. To unlock even more advanced control, explore the PRO features below. Use the following shortcode to integrate the plugin on your site: \u003Cstrong>[ffmwp]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security Enhancements (v23.6)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Fixed critical email relay vulnerability\u003Cbr \u002F>\n– Enhanced nonce verification across all AJAX functions\u003Cbr \u002F>\n– Added rate limiting for uploads, deletions, and directory creation\u003Cbr \u002F>\n– Improved file type validation and MIME checking\u003Cbr \u002F>\n– Strengthened authorization checks\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Live Demo Instructions\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fnajeebmedia.com\u002Ffilemanager-demo\" rel=\"nofollow ugc\">Click here\u003C\u002Fa> to launch the demo.\u003Cbr \u002F>\n– Once live, go to \u003Cstrong>Settings > NM Demo\u003C\u002Fstrong>.\u003Cbr \u002F>\n– Click \u003Cstrong>Initialize Demo: File Manager\u003C\u002Fstrong> to set up demo pages.\u003Cbr \u002F>\n– Start exploring the plugin’s features!\u003C\u002Fp>\n\u003Ch3>Quick Video Overview\u003C\u002Fh3>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F285132267\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Secure File Uploading\u003C\u002Fstrong>: Protect files with secure upload and storage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User-Friendly UI\u003C\u002Fstrong>: Fast, responsive, and visually appealing interface.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Search & Sorting Filters\u003C\u002Fstrong>: Easily locate files with search and filter options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Detailed File Popups\u003C\u002Fstrong>: View file information at a glance.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable File Type & Size Limits\u003C\u002Fstrong>: Set specific upload restrictions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Labels for Buttons\u003C\u002Fstrong>: Personalize the upload and save buttons.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-Time Upload Progress Bar\u003C\u002Fstrong>: Track upload progress visually.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image Thumbnails\u003C\u002Fstrong>: See previews for image files.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Detailed Admin View\u003C\u002Fstrong>: Manage and view file details in the admin dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Pro Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Directory Creation\u003C\u002Fstrong>: Users can create custom directories.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Maximum File Upload Control\u003C\u002Fstrong>: Set individual file upload limits.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File Count Per User\u003C\u002Fstrong>: Limit the number of files each user can upload.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role-Based File Size Quota\u003C\u002Fstrong>: Define upload quotas based on user roles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email Notifications\u003C\u002Fstrong>: Configure alerts for file uploads.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automated Filename Prefixes\u003C\u002Fstrong>: Use timestamp prefixes for file organization.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Guest Uploads\u003C\u002Fstrong>: Allow guest users to upload files.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File Sharing\u003C\u002Fstrong>: Enable users to share files via email.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File Grouping\u003C\u002Fstrong>: Organize files into groups for easy access.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Unlimited Download Areas\u003C\u002Fstrong>: Create multiple download sections.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom File Metadata\u003C\u002Fstrong>: Attach custom fields to files, adding valuable context.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Visual Composer Compatibility\u003C\u002Fstrong>: Easily integrate with Visual Composer.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Download Areas\u003C\u002Fh3>\n\u003Cp>The Download Manager feature lets you create unlimited download pages and specify file sources based on user roles, specific users, or groups. Grant access selectively to individual users or entire roles.\u003Cbr \u002F>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F287895466\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\u003C\u002Fp>\n\u003Ch3>Custom File Metadata\u003C\u002Fh3>\n\u003Cp>Admin can create custom metadata fields for files, adding extra detail to each upload. Metadata fields are easy to set up using drag-and-drop functionality and can include:\u003Cbr \u002F>\n– \u003Cstrong>Text\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Textarea\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Select\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Checkbox\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Masked Format (customized)\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Email\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Date Picker\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Image Upload\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Checkbox\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fnajeebmedia.com\u002Fwordpress-plugin\u002Fwp-front-end-file-upload-and-download-manager\u002F\" rel=\"nofollow ugc\">Get the Pro Version\u003C\u002Fa>\u003C\u002Fstrong> to unlock advanced features for a comprehensive file management experience.\u003C\u002Fp>\n","N-Media Frontend File Manager plugin enables WordPress site users to upload, manage, and share files directly from the frontend with secure storage an &hellip;",1000,198767,80,43,"2026-01-28T04:42:00.000Z","6.9.4","3.5",[52,53,19,54,55],"file-uploader","file-uploaders","user-files","user-files-manager","https:\u002F\u002Fnajeebmedia.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnmedia-user-file-uploader.23.6.zip",25,3,"2026-02-17 00:00:00",{"slug":62,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":11,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":77,"download_link":78,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-imgur","0.7.1","Darshan Sawardekar","https:\u002F\u002Fprofiles.wordpress.org\u002Fdsawardekar\u002F","\u003Cp>WP-Imgur syncs your Media Library to \u003Ca href=\"http:\u002F\u002Fimgur.com\" rel=\"nofollow ugc\">Imgur\u003C\u002Fa>, and serves your images\u003Cbr \u002F>\nfrom Imgur servers.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Syncs images from \u002Fwp-content to an Album on Imgur.\u003C\u002Fli>\n\u003Cli>Auto Syncs new uploads.\u003C\u002Fli>\n\u003Cli>Auto Syncs image edits.\u003C\u002Fli>\n\u003Cli>Takes into account different image sizes.\u003C\u002Fli>\n\u003Cli>Does not modify the Media Library, and is easily uninstallable.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Thanks to Alan Schaaf and the Imgur team.\u003C\u002Fli>\n\u003C\u002Ful>\n","CDN Plugin that serves your Media Library from Imgur.com.",4412,96,6,"2014-08-07T13:15:00.000Z","3.9.40","3.5.0",[75,76,20],"cdn","image-cdn","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-imgur","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-imgur.0.7.1.zip",{"slug":80,"name":80,"version":63,"author":81,"author_profile":82,"description":83,"short_description":67,"active_installs":11,"downloaded":84,"rating":85,"num_ratings":31,"last_updated":86,"tested_up_to":15,"requires_at_least":73,"requires_php":17,"tags":87,"homepage":88,"download_link":89,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-imgur-extra","Ahmad Fikrizaman","https:\u002F\u002Fprofiles.wordpress.org\u002Ffikrizaman\u002F","\u003Cp>WP Imgur Extra syncs your Media Library to \u003Ca href=\"http:\u002F\u002Fimgur.com\" rel=\"nofollow ugc\">Imgur\u003C\u002Fa>, and serves your images\u003Cbr \u002F>\nfrom Imgur servers with the option to enable https for imgur link.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Syncs images from \u002Fwp-content to an Album on Imgur.\u003C\u002Fli>\n\u003Cli>Auto Syncs new uploads.\u003C\u002Fli>\n\u003Cli>Auto Syncs image edits.\u003C\u002Fli>\n\u003Cli>Enable or disable https Imgur link\u003C\u002Fli>\n\u003Cli>Takes into account different image sizes.\u003C\u002Fli>\n\u003Cli>Does not modify the Media Library, and is easily uninstallable.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Based on WP Imgur by dsawardekar.\u003C\u002Fli>\n\u003C\u002Ful>\n",1697,20,"2016-06-01T18:36:00.000Z",[75,76,20],"http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-imgur-extra","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-imgur-extra.zip",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":11,"downloaded":98,"rating":46,"num_ratings":31,"last_updated":99,"tested_up_to":17,"requires_at_least":17,"requires_php":17,"tags":100,"homepage":17,"download_link":101,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-imgur-plus","WP Imgur Plus","1.0.1","skalero01","https:\u002F\u002Fprofiles.wordpress.org\u002Fskalero01\u002F","\u003Cp>Serves your Media Library from imgur.com, changes the library to Imgur and save space in the hard drive! Based in WP Imgur plugin.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Changes image url from all website to imgur.\u003C\u002Fli>\n\u003Cli>Save bandwith and space.\u003C\u002Fli>\n\u003Cli>All the images can be removed from the server and images will still work\u003C\u002Fli>\n\u003Cli>It have an import tool to move all your images to imgur.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>This plugin is based in WP Imgur Plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n","Plugin based in WP Imgur Plus, allows to upload to Imgur the Images from Wordpress.",3057,"2015-11-05T19:18:00.000Z",[75,76,20],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-imgur-plus.1.0.1.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":13,"downloaded":110,"rating":13,"num_ratings":13,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":17,"download_link":118,"security_score":119,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"image-upload-for-imgur","Image Upload for Imgur","1.0.5","threadi","https:\u002F\u002Fprofiles.wordpress.org\u002Fthreadi\u002F","\u003Cp>Upload images in Block Editor directly to Imgur. You need \u003Ca href=\"https:\u002F\u002Fapi.imgur.com\u002Foauth2\u002Faddclient\" rel=\"nofollow ugc\">API credentials\u003C\u002Fa> from Imgur to use this plugin.\u003C\u002Fp>\n\u003Ch3>Hints\u003C\u002Fh3>\n\u003Cp>This plugin is not part of Imgur’s services. It was developed independently to make the good service of Imgur usable in WordPress. Questions about Imgur itself should be directed to their support: \u003Ca href=\"https:\u002F\u002Fhelp.imgur.com\" rel=\"nofollow ugc\">https:\u002F\u002Fhelp.imgur.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The Imgur logo as part of all distributed icons is a trademark of \u003Ca href=\"https:\u002F\u002Fimgur.com\u002Ftos\" rel=\"nofollow ugc\">MediaLab.Ai Inc.\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Repository\u003C\u002Fh3>\n\u003Cp>The development repository is on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthreadi\u002Fimage-upload-for-imgur\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Upload images in Block Editor directly to Imgur.",1161,"2025-05-15T18:08:00.000Z","6.8.5","5.9","8.0",[116,20,117],"image","upload","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-upload-for-imgur.1.0.5.zip",100,{"attackSurface":121,"codeSignals":178,"taintFlows":188,"riskAssessment":216,"analyzedAt":227},{"hooks":122,"ajaxHandlers":166,"restRoutes":174,"shortcodes":175,"cronEvents":176,"entryPointCount":177,"unprotectedCount":177},[123,128,133,136,139,143,147,150,153,155,157,159,163],{"type":124,"name":125,"callback":126,"file":127,"line":58},"filter","comment_form_defaults","gk_comment_form","imgur-upload.php",{"type":129,"name":130,"callback":131,"file":127,"line":132},"action","init","imgur_add_my_tc_button",26,{"type":129,"name":130,"callback":134,"file":127,"line":135},"imgur_tc_css",27,{"type":129,"name":130,"callback":137,"file":127,"line":138},"imgur_action_js",28,{"type":124,"name":140,"callback":141,"file":127,"line":142},"mce_external_plugins","imgur_add_tiny_plugin",32,{"type":124,"name":144,"callback":145,"file":127,"line":146},"mce_buttons","imgur_register_my_tc_button",33,{"type":129,"name":148,"callback":131,"file":127,"line":149},"admin_head",37,{"type":129,"name":151,"callback":134,"file":127,"line":152},"admin_enqueue_scripts",38,{"type":129,"name":130,"callback":137,"file":127,"line":154},39,{"type":124,"name":140,"callback":141,"file":127,"line":156},48,{"type":124,"name":144,"callback":145,"file":127,"line":158},49,{"type":129,"name":160,"callback":161,"file":162,"line":59},"admin_menu","closure","option-file.php",{"type":129,"name":164,"callback":161,"file":162,"line":165},"admin_init",7,[167,171],{"action":168,"nopriv":169,"callback":168,"hasNonce":169,"hasCapCheck":169,"file":127,"line":170},"imgur_uploader_action",false,112,{"action":168,"nopriv":172,"callback":168,"hasNonce":169,"hasCapCheck":169,"file":127,"line":173},true,113,[],[],[],2,{"dangerousFunctions":179,"sqlUsage":180,"outputEscaping":182,"fileOperations":177,"externalRequests":31,"nonceChecks":13,"capabilityChecks":177,"bundledLibraries":187},[],{"prepared":13,"raw":13,"locations":181},[],{"escaped":59,"rawEcho":31,"locations":183},[184],{"file":127,"line":185,"context":186},103,"raw output",[],[189,207],{"entryPoint":190,"graph":191,"unsanitizedCount":31,"severity":206},"imgur_uploader_action (imgur-upload.php:79)",{"nodes":192,"edges":204},[193,198],{"id":194,"type":195,"label":196,"file":127,"line":197},"n0","source","$_FILES",81,{"id":199,"type":200,"label":201,"file":127,"line":202,"wp_function":203},"n1","sink","fopen() [File Access]",86,"fopen",[205],{"from":194,"to":199,"sanitized":169},"medium",{"entryPoint":208,"graph":209,"unsanitizedCount":13,"severity":215},"\u003Cimgur-upload> (imgur-upload.php:0)",{"nodes":210,"edges":213},[211,212],{"id":194,"type":195,"label":196,"file":127,"line":197},{"id":199,"type":200,"label":201,"file":127,"line":202,"wp_function":203},[214],{"from":194,"to":199,"sanitized":172},"low",{"summary":217,"deductions":218},"The wp-editor-imgur-button plugin version 1.1 presents a concerning security posture due to its unprotected AJAX handlers. While the plugin demonstrates good practices by utilizing prepared statements for all SQL queries and has a clean vulnerability history with no known CVEs, the absence of authentication checks on two AJAX entry points creates a significant attack surface. This could allow unauthenticated users to trigger potentially malicious actions or expose sensitive information if the AJAX actions are not inherently safe. The presence of one unsanitized path flow in the taint analysis, though not classified as critical or high severity, further indicates a potential for unexpected behavior or vulnerabilities that were not fully mitigated. The lack of nonce checks on these critical entry points exacerbates the risk, making it easier for attackers to forge requests. Overall, the plugin has some strengths in its coding practices like SQL sanitization and a lack of past vulnerabilities, but the unprotected AJAX endpoints are a substantial weakness that requires immediate attention.",[219,222,225],{"reason":220,"points":221},"Unprotected AJAX handlers",8,{"reason":223,"points":224},"Flows with unsanitized paths",5,{"reason":226,"points":165},"No nonce checks on AJAX handlers","2026-03-17T00:27:10.541Z",{"wat":229,"direct":237},{"assetPaths":230,"generatorPatterns":234,"scriptPaths":235,"versionParams":236},[231,232,233],"\u002Fwp-content\u002Fplugins\u002Fwp-editor-imgur-button\u002Fstyle\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwp-editor-imgur-button\u002Fjs\u002Fbutton.js","\u002Fwp-content\u002Fplugins\u002Fwp-editor-imgur-button\u002Fjs\u002Fajax-action.js",[],[232,233],[],{"cssClasses":238,"htmlComments":239,"htmlAttributes":240,"restEndpoints":241,"jsGlobals":242,"shortcodeOutput":244},[],[],[],[],[243],"sb_imgur_ajax",[]]