[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZWtrz4YHqlB72PEj79m3oDdZO7egN8CYuFyhcGfHUaM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":143,"fingerprints":255},"wp-multitarget-uploads-sync-tool","WP-MultiTarget-Uploads-Sync-Tool","1.0.6","evlos","https:\u002F\u002Fprofiles.wordpress.org\u002Fevlos\u002F","\u003Cp>A WordPress plugin which able to sync attachments to multiple FTP targets. And all the documents can be found after install it.\u003C\u002Fp>\n","A WordPress plugin which able to sync attachments to multiple FTP targets.",10,2266,40,1,"2012-12-30T08:24:00.000Z","3.4.2","3.4.0","",[20,21,22,23,24],"attachments","images","imgbed","sync","upload","http:\u002F\u002Frainmoe.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-multitarget-uploads-sync-tool.1.0.6.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},2,20,30,84,"2026-04-04T09:19:04.479Z",[39,63,83,104,124],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":14,"last_vuln_date":62,"fetched_at":30},"auto-upload-images","Auto Upload Images","3.3.2","Ali Irani","https:\u002F\u002Fprofiles.wordpress.org\u002Fairani\u002F","\u003Cp>When you want to save a post, this plugin search for image urls which exists in post and automatically upload and import external images to the WordPress upload directory and add images to the media library and then replace new image urls with old urls.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatically find images in posts and save them to the your server and wp media library\u003C\u002Fli>\n\u003Cli>Update posts with new image urls in your server\u003C\u002Fli>\n\u003Cli>Add images saved by plugin to the WordPress media library\u003C\u002Fli>\n\u003Cli>Select custom post types for excluding auto upload images\u003C\u002Fli>\n\u003Cli>Choose exclude domain to save images from this domain address\u003C\u002Fli>\n\u003Cli>Choose custom your base url for images\u003C\u002Fli>\n\u003Cli>Choose custom images file name with patterns\u003C\u002Fli>\n\u003Cli>Choose custom image alt name with patterns\u003C\u002Fli>\n\u003Cli>Choose max width and height for images uploaded\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Persian (fa_IR) – \u003Ca href=\"https:\u002F\u002Firani.im\" rel=\"nofollow ugc\">Ali Irani\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Español (es) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdiegoh\" rel=\"nofollow ugc\">Diego Herrera\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Russion (ru_RU) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Frad96\" rel=\"nofollow ugc\">Артём Рябков\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>German (de_DE) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftillz\" rel=\"nofollow ugc\">Till Zimmermann\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>French (fr_FR) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMalaiac\" rel=\"nofollow ugc\">Malaiac\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Korean (ko_KR) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fluvrei\" rel=\"nofollow ugc\">Shodan\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian (it_IT) – Patryk Chmura\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Firani.im\u002Fwp-auto-upload-images.html\" rel=\"nofollow ugc\">Official Plugin Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fairani\u002Fwp-auto-upload\" rel=\"nofollow ugc\">Github Repository\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fairani\u002Fwp-auto-upload\u002Fissues\u002Fnew\" rel=\"nofollow ugc\">Report Issues\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Firani.im\u002Fwp-auto-upload-images.html#donate\" rel=\"nofollow ugc\">Make a Donation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically detect external images in the post content and import images to your site then adding to the media library and replace image urls.",30000,323518,86,104,"2022-12-16T10:32:00.000Z","6.1.10","2.7",[55,56,57,21,24],"auto","automatically","image","https:\u002F\u002Firani.im\u002Fwp-auto-upload-images.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-upload-images.3.3.2.zip",58,3,"2025-06-19 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":47,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":18,"tags":77,"homepage":18,"download_link":81,"security_score":82,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"clean-image-filenames","Clean Image Filenames","1.5","Upperdog","https:\u002F\u002Fprofiles.wordpress.org\u002Fupperdog\u002F","\u003Cp>This plugin automatically converts language accent characters in filenames when uploading to the media library. Characters are converted into browser and server friendly, non-accent characters.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Converts accent characters to non-accent, latin equivalents in Swedish, Danish, German, and more.\u003C\u002Fli>\n\u003Cli>Removes special characters like exclamation marks, periods, hashtags, and more.\u003C\u002Fli>\n\u003Cli>Lets you choose if you want to convert only image files, or all file types.\u003C\u002Fli>\n\u003Cli>Makes site and server migrations easier thanks to non-accent character filenames.\u003C\u002Fli>\n\u003Cli>Provides filter hook for developers who want to specify which file types to convert.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Examples\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Räksmörgås.jpg \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> raksmorgas.jpg\u003C\u002Fli>\n\u003Cli>Æblegrød_FTW!.gif \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> aeblegrod-ftw.gif\u003C\u002Fli>\n\u003Cli>Château de Ferrières.png \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> chateau-de-ferrieres.png\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Worth noting\u003C\u002Fh3>\n\u003Cp>The plugin only converts filenames when the files are being uploaded. It can not convert existing files.\u003C\u002Fp>\n\u003Ch3>Filter for developers\u003C\u002Fh3>\n\u003Cp>This filter provides developers a way to specify which file types the plugin should convert. This filter overrides the plugin settings on the media settings page. For a complete list of mime types, see \u003Ca href=\"http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FInternet_media_type\" rel=\"nofollow ugc\">Wikipedia\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The following example will convert PDF, JPEG and PNG files only:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>function my_clean_image_filenames_mime_types() {\n    $mime_types = array(\n        'application\u002Fpdf',\n        'image\u002Fjpeg',\n        'image\u002Fpng',\n    );\n    return $mime_types;\n}\nadd_filter( 'clean_image_filenames_mime_types', 'my_clean_image_filenames_mime_types' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","This plugin automatically converts language accent characters to non-accent characters in filenames when uploading to the media library.",335219,92,21,"2026-01-14T09:45:00.000Z","6.9.4","2.9",[78,21,79,80,24],"files","media","sanitize","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclean-image-filenames.1.5.zip",100,{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":47,"downloaded":91,"rating":92,"num_ratings":34,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":100,"download_link":101,"security_score":102,"vuln_count":14,"unpatched_count":28,"last_vuln_date":103,"fetched_at":30},"file-upload-types","File Upload Types by WPForms","1.5.0","Jared Atchison","https:\u002F\u002Fprofiles.wordpress.org\u002Fjaredatch\u002F","\u003Ch3>WordPress File Upload Types Plugin\u003C\u002Fh3>\n\u003Cp>Do you want to let your WordPress website accept uploads from your users for more file types and to freely upload files? We created the File Upload Types plugin to make it simple for anyone to easily add support for any file types with any extension or MIME type.\u003C\u002Fp>\n\u003Ch4>How WordPress File Uploads Work\u003C\u002Fh4>\n\u003Cp>By default, WordPress only allows \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FUploading_Files#About_Uploading_Files_on_Dashboard\" rel=\"nofollow ugc\">certain file types\u003C\u002Fa> to be uploaded to your website’s media library.\u003C\u002Fp>\n\u003Cp>If someone tries to upload a file type outside of these whitelisted WordPress file extensions, this can be the cause of the \u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002Fcommon-wordpress-errors-and-how-to-fix-them\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"common WordPress error\" rel=\"friend nofollow ugc\">common WordPress error\u003C\u002Fa> \u003Ccode>Sorry, this file type is not permitted for security reasons\u003C\u002Fcode> message.\u003C\u002Fp>\n\u003Cp>It can be frustrating if you’ve \u003Ca href=\"https:\u002F\u002Fwpforms.com\u002Fhow-to-create-a-file-upload-form-in-wordpress\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtypes&utm_content=readme\" rel=\"friend\" title=\"\ncreated a file upload form\">created a file upload form\u003C\u002Fa> in WordPress but the file type you want to accept is a file extension that’s not allowed.\u003C\u002Fp>\n\u003Cp>This plugin lets your website upload more file types beyond the limited file extension types that WordPress allows by default.\u003C\u002Fp>\n\u003Ch4>How does the File Upload Types plugin work?\u003C\u002Fh4>\n\u003Cp>The File Upload Types plugin works by letting you adjust the internal file whitelist, letting you manually control which types of file extensions your WordPress website can upload.\u003C\u002Fp>\n\u003Cp>This way, you can accept any file type through your website and\u002For any contact form plugin like \u003Ca href=\"https:\u002F\u002Fwww.wpforms.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtypes&utm_content=readme\" title=\"WPForms\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>What file types can I upload to WordPress with this plugin?\u003C\u002Fh4>\n\u003Cp>The File Upload Types plugin lets you allow uploads of any file extension, including custom file types.\u003C\u002Fp>\n\u003Cp>Some common file extension types this plugin lets you add that WordPress doesn’t support natively include:\u003C\u002Fp>\n\u003Cp>.ai\u003Cbr \u002F>\n.zip\u003Cbr \u002F>\n.xml\u003Cbr \u002F>\n.svg\u003Cbr \u002F>\n.csv\u003Cbr \u002F>\n.mobi\u003Cbr \u002F>\n.cad\u003Cbr \u002F>\n.dwg\u003Cbr \u002F>\n.dxf\u003C\u002Fp>\n\u003Cp>…and any other file extensions that exist, including custom file types.\u003C\u002Fp>\n\u003Cp>We hope that you find the File Upload Types plugin helpful!\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>This plugin was created by the team behind \u003Ca href=\"https:\u002F\u002Fwpforms.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa> – the best drag & drop form builder for WordPress.\u003C\u002Fp>\n\u003Ch3>What’s Next\u003C\u002Fh3>\n\u003Cp>If you like this plugin, then consider checking out our other projects:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpforms.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"OptinMonster\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa> – The best WordPress Contact Form Plugin.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Foptinmonster.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"OptinMonster\" rel=\"friend nofollow ugc\">OptinMonster\u003C\u002Fa> – Get more email subscribers with the most popular conversion optimization plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.monsterinsights.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"MonsterInsights\" rel=\"friend nofollow ugc\">MonsterInsights\u003C\u002Fa> – See the stats that matter and grow your business with confidence. Best Google Analytics plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.seedprod.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"SeedProd\" rel=\"friend nofollow ugc\">SeedProd\u003C\u002Fa> – Jumpstart your website with the #1 Coming Soon & Maintenance Mode plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpmailsmtp.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" rel=\"nofollow ugc\">WP Mail SMTP\u003C\u002Fa> – Improve email deliverability for your contact form with the most popular SMTP plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frafflepress.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" rel=\"nofollow ugc\">RafflePress\u003C\u002Fa> – The Best WordPress giveaway and contest plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"WPBeginner\" rel=\"friend nofollow ugc\">WPBeginner\u003C\u002Fa> to learn from our \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fwp-tutorials\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"WordPress Tutorials\" rel=\"friend nofollow ugc\">WordPress tutorials\u003C\u002Fa> and find out about other \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fplugins\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=fileuploadtyes&utm_content=readme\" title=\"Best WordPress plugins\" rel=\"friend nofollow ugc\">best WordPress plugins\u003C\u002Fa>.\u003C\u002Fp>\n","Easily allow WordPress to accept and upload any file type extension or MIME type, including custom file types.",242227,80,"2024-10-23T14:00:00.000Z","6.6.5","5.5","7.0",[20,98,78,99,24],"file-upload","mime","https:\u002F\u002Fwpforms.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffile-upload-types.1.5.0.zip",91,"2024-10-24 20:07:47",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":114,"num_ratings":115,"last_updated":116,"tested_up_to":75,"requires_at_least":117,"requires_php":18,"tags":118,"homepage":122,"download_link":123,"security_score":82,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"lightbox-photoswipe","Lightbox with PhotoSwipe","5.8.3","Arno Welzel","https:\u002F\u002Fprofiles.wordpress.org\u002Fawelzel\u002F","\u003Cp>This plugin integrates PhotoSwipe to WordPress. All linked images in a post or page will be displayed using PhotoSwipe, regardless if they are part of a gallery or single images.\u003C\u002Fp>\n\u003Cp>More about the original version of PhotoSwipe see here: \u003Ca href=\"http:\u002F\u002Fphotoswipe.com\" rel=\"nofollow ugc\">http:\u002F\u002Fphotoswipe.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can also display EXIF data from supported image types.\u003C\u002Fp>\n\u003Cp>As of version 4.0.0 this plugin requires at least WordPress 5.3 and PHP 7.0. Older PHP version will cause problems. In this case you have to upgrade your PHP version or ask your hoster to do so. Please note that WordPress itself also recommends at least PHP 7.4 – see \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Frequirements\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fabout\u002Frequirements\u002F\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Please keep in mind: not the visible thumbnail is relevant, but only the image link. Images should always be linked to the file and not to the attachment page. Since version 5.6.1 there is an option to fix attachment links which can be enabled if needed – however this may slow down your website since then all links on a page will be checked if they are attachment links.\u003C\u002Fp>\n","Integration of PhotoSwipe (http:\u002F\u002Fphotoswipe.com) for WordPress.",20000,937902,98,113,"2026-02-26T16:27:00.000Z","5.3",[20,119,21,120,121],"gallery","lightbox","photoswipe","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flightbox-photoswipe\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightbox-photoswipe.5.8.3.zip",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":36,"num_ratings":134,"last_updated":135,"tested_up_to":136,"requires_at_least":137,"requires_php":138,"tags":139,"homepage":141,"download_link":142,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"disable-big-image-threshold","Disable \"BIG Image\" Threshold","1.0","Jonathan Desrosiers","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesrosj\u002F","\u003Cp>In WordPress 5.3, several improvements were made to how images are processed. One of these improvements was the concept of “BIG images”. When an image is uploaded that exceeds the “BIG image” threshold (2560 by default), a new “full” size image is generated. This new image is then used instead of the true original when generating image subsizes to reduce server load.\u003C\u002Fp>\n\u003Cp>Prior to 5.3, it was possible for the originally uploaded image to be displayed on the front-end, even when they were not “web ready”. Unnecessarily large images can be bad for performance and wastes bandwidth (which is unfortunate for those with slow Internet, or bandwidth caps by their service plans). This new full size image will now be displayed instead.\u003C\u002Fp>\n\u003Cp>There are some scenarios where disabling this threshold would be desired, though. Maybe you run a photography site that\u003Cbr \u002F>\nneeds to display original images, or your theme has full screen backgrounds.\u003C\u002Fp>\n\u003Cp>This plugin disables the “BIG” image threshold and preserves the true originally uploaded image as the full size.\u003C\u002Fp>\n\u003Cp>For more information on the improvements to image processing in WordPress 5.3, check out these \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2019\u002F10\u002F09\u002Fintroducing-handling-of-big-images-in-wordpress-5-3\u002F\" rel=\"nofollow ugc\">developer\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2019\u002F10\u002F11\u002Fupdates-to-image-processing-in-wordpress-5-3\u002F\" rel=\"nofollow ugc\">notes\u003C\u002Fa> on the \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F\" rel=\"nofollow ugc\">Making WordPress Core blog\u003C\u002Fa>.\u003C\u002Fp>\n","Disables the \"BIG image\" threshold introduced in WordPress 5.3.",10000,75196,35,"2022-08-02T19:39:00.000Z","6.0.11","5.2","5.6",[140,21,24],"big-images","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdisable-big-image-threshold","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-big-image-threshold.1.0.zip",{"attackSurface":144,"codeSignals":165,"taintFlows":241,"riskAssessment":242,"analyzedAt":254},{"hooks":145,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":164,"entryPointCount":28,"unprotectedCount":28},[146,152,157],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","admin_menu","adminMenu","index.php",105,{"type":153,"name":154,"callback":155,"file":150,"line":156},"filter","the_content","addAfterTheContent",109,{"type":147,"name":158,"callback":159,"file":150,"line":160},"save_post","addWhenSavingPost",110,[],[],[],[],{"dangerousFunctions":166,"sqlUsage":167,"outputEscaping":184,"fileOperations":28,"externalRequests":14,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":240},[],{"prepared":28,"raw":168,"locations":169},6,[170,173,175,177,179,182],{"file":150,"line":171,"context":172},144,"$wpdb->get_results() with variable interpolation",{"file":150,"line":174,"context":172},151,{"file":150,"line":176,"context":172},159,{"file":150,"line":178,"context":172},161,{"file":150,"line":180,"context":181},185,"$wpdb->get_var() with variable interpolation",{"file":150,"line":183,"context":181},616,{"escaped":28,"rawEcho":185,"locations":186},29,[187,190,192,194,196,198,200,202,203,205,206,208,210,212,214,216,217,219,221,223,224,225,227,228,230,232,234,236,238],{"file":150,"line":188,"context":189},123,"raw output",{"file":150,"line":191,"context":189},270,{"file":150,"line":193,"context":189},273,{"file":150,"line":195,"context":189},327,{"file":150,"line":197,"context":189},331,{"file":150,"line":199,"context":189},338,{"file":150,"line":201,"context":189},426,{"file":150,"line":201,"context":189},{"file":150,"line":204,"context":189},438,{"file":150,"line":204,"context":189},{"file":150,"line":207,"context":189},480,{"file":150,"line":209,"context":189},483,{"file":150,"line":211,"context":189},485,{"file":150,"line":213,"context":189},488,{"file":150,"line":215,"context":189},489,{"file":150,"line":215,"context":189},{"file":150,"line":218,"context":189},490,{"file":150,"line":220,"context":189},494,{"file":150,"line":222,"context":189},499,{"file":150,"line":222,"context":189},{"file":150,"line":222,"context":189},{"file":150,"line":226,"context":189},503,{"file":150,"line":226,"context":189},{"file":150,"line":229,"context":189},515,{"file":150,"line":231,"context":189},638,{"file":150,"line":233,"context":189},649,{"file":150,"line":235,"context":189},656,{"file":150,"line":237,"context":189},748,{"file":150,"line":239,"context":189},755,[],[],{"summary":243,"deductions":244},"The \"wp-multitarget-uploads-sync-tool\" v1.0.6 plugin presents a concerning security posture, despite a lack of documented historical vulnerabilities. The static analysis reveals significant issues related to data handling. Notably, 100% of SQL queries are not using prepared statements, indicating a high risk of SQL injection vulnerabilities. Furthermore, the lack of output escaping across all detected outputs suggests a high probability of cross-site scripting (XSS) vulnerabilities. The absence of nonce and capability checks on any entry points, coupled with the absence of any documented entry points like AJAX handlers, REST API routes, or shortcodes, is contradictory and raises questions about the thoroughness of the static analysis or the plugin's actual functionality. However, the identified external HTTP request warrants further investigation to ensure it is not being used in a malicious manner.\n\nWhile the plugin has no recorded CVEs, this does not guarantee its security. The widespread lack of basic security practices like prepared statements and output escaping in the code itself is a major red flag. The plugin's potential attack surface is masked by the lack of documented entry points, but the underlying code quality issues are substantial. Without further context or a deeper analysis of the plugin's actual functionality and interaction points, it is difficult to definitively assess its overall risk. However, based solely on the provided static analysis, the plugin exhibits several critical security weaknesses.",[245,247,250,252],{"reason":246,"points":34},"All SQL queries lack prepared statements",{"reason":248,"points":249},"No output escaping detected",15,{"reason":251,"points":11},"No nonce checks detected",{"reason":253,"points":11},"No capability checks detected","2026-03-17T01:05:35.287Z",{"wat":256,"direct":261},{"assetPaths":257,"generatorPatterns":258,"scriptPaths":259,"versionParams":260},[],[],[],[],{"cssClasses":262,"htmlComments":263,"htmlAttributes":264,"restEndpoints":265,"jsGlobals":266,"shortcodeOutput":267},[],[],[],[],[],[]]