[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbzsSzAhTuBLTVZgJ5x5Qw4IZX6zk7OPIGU86f_N2I8I":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":138,"fingerprints":304},"wp-plugin-packer","WP Plugin Packer","1.0.0","AZdv","https:\u002F\u002Fprofiles.wordpress.org\u002Fazdv\u002F","\u003Cp>WP Plugin Packer lets you create plugin packs (=groups) to export and import to various WordPress websites.\u003C\u002Fp>\n","WP Plugin Packer lets you create plugin packs (=groups) to export and import to various WordPress websites.",10,2138,100,2,"2015-03-19T10:21:00.000Z","4.1.42","3.9","",[20,21,22],"packs","plugin-group","plugins","https:\u002F\u002Fgithub.com\u002FAZdv\u002Fwp-plugin-packer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-plugin-packer.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"azdv",1,30,84,"2026-04-04T09:04:01.465Z",[37,55,68,93,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":11,"downloaded":45,"rating":13,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":17,"requires_php":49,"tags":50,"homepage":18,"download_link":54,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"plugins-in-groups","Plugins In Groups","1.0.2","Karol Sawka","https:\u002F\u002Fprofiles.wordpress.org\u002Fkarlosky\u002F","\u003Cp>With this plugin you can create the groups on the plugins page.\u003Cbr \u002F>\nThen you can assign the plugins to these groups and filter them by the tags.\u003Cbr \u002F>\nEach plugin can have more tags (groups) assigned so you can sort and filter them as you want. It allows you to keep your plugins page clean and you can manage the plugins in bulk.\u003C\u002Fp>\n","Organize the WP plugins in the groups. With this plugin you can keep your plugins page clear, manage them in bulk and filter plugins by the tags.",1255,3,"2018-09-05T19:41:00.000Z","4.9.29","5.0",[51,21,52,22,53],"plugin-filter","plugin-groups","plugins-groups","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-in-groups.zip",{"slug":56,"name":57,"version":58,"author":56,"author_profile":59,"description":60,"short_description":61,"active_installs":26,"downloaded":62,"rating":13,"num_ratings":14,"last_updated":18,"tested_up_to":63,"requires_at_least":18,"requires_php":18,"tags":64,"homepage":18,"download_link":66,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":67},"plugpacket","PlugPacket","1.2","https:\u002F\u002Fprofiles.wordpress.org\u002Fplugpacket\u002F","\u003Cp>With PlugPacket you can install a list of plugins one after the other by clicking on the installation button.\u003Cbr \u002F>\nPlugPacket automatically activates the installed plugins.\u003Cbr \u002F>\nYou can also choose to install a single plugin by clicking on the green circle next to it.\u003Cbr \u002F>\nFurthermore, PlugPacket displays which plugins are already activated by a green checkmark icon.\u003C\u002Fp>\n","PlugPacket provides you with different packs to install your favorite plugins easily, based on our selection. PlugPacket does all that for you with on &hellip;",2763,"6.0.11",[65,20,22],"installer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugpacket.1.2.zip","2026-03-15T10:48:56.248Z",{"slug":69,"name":70,"version":71,"author":72,"author_profile":73,"description":74,"short_description":75,"active_installs":76,"downloaded":77,"rating":78,"num_ratings":79,"last_updated":80,"tested_up_to":81,"requires_at_least":82,"requires_php":83,"tags":84,"homepage":89,"download_link":90,"security_score":91,"vuln_count":14,"unpatched_count":26,"last_vuln_date":92,"fetched_at":28},"wp-rollback","WP Rollback – Rollback Plugins and Themes","3.0.12","Devin Walker","https:\u002F\u002Fprofiles.wordpress.org\u002Fdlocc\u002F","\u003Cp>Quickly and easily rollback any theme or plugin from WordPress.org to any previous (or newer) version without any of the manual fuss. Works just like the plugin updater, except you’re rolling back (or forward) to a specific version. No need for manually downloading and FTPing the files or learning Subversion. This plugin takes care of the trouble for you.\u003C\u002Fp>\n\u003Ch4>🔙 Rollback WordPress.org Plugins and Themes\u003C\u002Fh4>\n\u003Cp>While it’s considered best practice to always keep your WordPress plugins and themes updated, we understand there are times you may need to quickly revert to a previous version. This plugin makes that process as easy as a few mouse clicks. Simply select the version of the plugin or theme that you’d like to rollback to, confirm, and in a few moments you’ll be using the version requested. No more fumbling to find the version, downloading, unzipping, FTPing, learning Subversion or hair pulling.\u003C\u002Fp>\n\u003Cp>For advanced features like premium plugin\u002Ftheme support (Envato, Kadence Pro, Astra Pro, etc.), comprehensive activity logging, multisite network support, and priority support, consider upgrading to \u003Ca href=\"https:\u002F\u002Fwprollback.com\u002F\" rel=\"nofollow ugc\">WP Rollback Pro\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Muy Importante (Very Important): Always Test and Backup\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Important Disclaimer:\u003C\u002Fstrong> This plugin is not intended to be used without first taking the proper precautions to ensure zero data loss or site downtime. Always be sure you have first tested the rollback on a staging or development site prior to using WP Rollback on a live site.\u003C\u002Fp>\n\u003Cp>We provide no (zero) assurances, guarantees, or warranties that the plugin, theme, or WordPress version you are downgrading to will work as you expect. Use this plugin at your own risk.\u003C\u002Fp>\n\u003Ch4>Translation Ready\u003C\u002Fh4>\n\u003Cp>Do you speak another language? Want to contribute in a meaningful way to WP Rollback? There’s no better way than to help us translate the plugin. This plugin is translation ready. Simply header over to the WP Rollback \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fwp-rollback\u002F\" rel=\"nofollow ugc\">translation project\u003C\u002Fa> that’s powered by WordPress.org volunteer translators. There you can contribute to the translation of the plugin into your language.\u003C\u002Fp>\n\u003Ch4>Support and Documentation\u003C\u002Fh4>\n\u003Cp>We answer all free user support requests \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-rollback\" rel=\"ugc\">on the WordPress.org support forum\u003C\u002Fa>. For pro users, please submit your questions to \u003Ca href=\"https:\u002F\u002Fwprollback.com\u002F?utm_campaign=free-plugin&utm_medium=free-plugin&utm_source=readme\" rel=\"nofollow ugc\">WP Rollback Pro support\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>WP Rollback was created to be as intuitive to the natural WordPress experience as possible. We believe that once you activate WP Rollback, you’ll quickly discover exactly how it works without question.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>BUT!!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>We do have documentation on our website. See \u003Ca href=\"https:\u002F\u002Fdocs.wprollback.com\u002F?utm_source=free-plugin&utm_medium=readme&utm_campaign=documentation\" rel=\"nofollow ugc\">WP Rollback Documentation\u003C\u002Fa>.\u003C\u002Fp>\n","Rollback (or forward) any WordPress.org plugin, theme, or block like a boss.",300000,4310141,98,213,"2026-02-27T18:26:00.000Z","6.9.4","6.5","7.4",[85,22,86,87,88],"downgrade","revert","rollback","version","https:\u002F\u002Fwprollback.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rollback.3.0.12.zip",99,"2015-06-28 00:00:00",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":103,"num_ratings":104,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":108,"tags":109,"homepage":113,"download_link":114,"security_score":115,"vuln_count":116,"unpatched_count":26,"last_vuln_date":117,"fetched_at":28},"download-plugin","Download Plugin","2.4.0","Metagauss","https:\u002F\u002Fprofiles.wordpress.org\u002Fmetagauss\u002F","\u003Ch4>Download Plugin for WordPress\u003C\u002Fh4>\n\u003Cp>Download Plugin can easily download plugins, themes, users, blog posts, pages, comments, attachments, and more directly from your WordPress dashboard. Download Plugin can also download data from any plugin that uses custom post types, including WooCommerce products, Easy Digital Downloads, Portfolio Post Types, Slider Revolution, bbPress, WP Job Manager, JetPack, and many more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Plugins\u003C\u002Fstrong>: A download button is placed beside each plugin, allowing you to download the plugin in a zip file format. You can also select multiple plugins and use the bulk download option to download all selected plugins with a single click.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Themes\u003C\u002Fstrong>: Similar to plugins, a download button is placed beside each theme in your WordPress dashboard. You can download themes in a zip file format.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Users\u003C\u002Fstrong>: With the Download Plugin, you can download individual user data or multiple users’ metadata in a CSV file format. This feature simplifies user data management, allowing easy download and save user information.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Blog Posts\u003C\u002Fstrong>: Export blog posts individually or in bulk with just a click. Download Plugin allows you to download blog posts in a CSV format for backup or migration purposes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Pages\u003C\u002Fstrong>: Download single or multiple pages from your WordPress site. This feature is perfect for backing up your content or transferring pages between sites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Custom Posts\u003C\u002Fstrong>: Download data from plugin that use custom post types. Download single custom post or a bulk download of multiple posts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Download Comments\u003C\u002Fstrong>: Download comments either individually or in bulk. Save user feedback and engagement safely.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Just activate this plugin.\u003C\u002Fli>\n\u003Cli>You can see Download link below each plugin name on plugins page.\u003C\u002Fli>\n\u003Cli>Click on any of them and that plugin’s zip will be downloaded to your computer.\u003C\u002Fli>\n\u003Cli>Cheers!\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cblockquote>\n\u003Cp>Must-have utility plugin that allows you to download any plugin directly from WordPress Dashboard!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>WordPress download plugin is a utility plugin that does one thing, and does it perfectly. It may sound simple, but this feature plugs a hole in current set of WordPress plugin functionality. As a site admin you must be aware that you can search and install WordPress plugins directly from the dashboard, or you can upload the plugin as zip files, assuming you received it from another site (for example, a commercial plugin). Once installed, all plugins list themselves inside Dashboard -> Plugins page. After deactivating and deleting them, they simply disappear. All files are removed from the server instantly. WordPress does not allow you to backup or download the plugins before you jettison them from your site. If you also manage your server and are fairly comfortable doing so, you may find a more contrived way to download installed plugins via directory manager app or FTP. Obviously, this requires more than a single click and not for everyone.\u003C\u002Fp>\n\u003Cp>What exactly are plugins and how this plugin helps you save time or bail you out from difficult situations? Plugins are files and\u002F or directories, which are created inside your WordPress installation (defined by WordPress) when you first install them. Both active and deactivated files reside inside them. When you upload zip package of a plugin, WordPress extracts it and places the directory inside it in the plugins folder. Our plugin allows you to reverse the process. It will convert any plugin installed on your site into a zip package ready to be reinstalled later or moved to another site. It accomplishes this by simply adding a new link “Download” under the plugin title to already existing links. It is a single click process and hardly takes any time. Our plugin does not create any other page in the dashboard or clutter menus. It is lightweight, efficient and completely invisible until you need it.\u003C\u002Fp>\n\u003Cp>So why would you need it? While there can be many reasons, here are the primary we think you will find it useful.\u003C\u002Fp>\n\u003Ch4>A. Backup\u003C\u002Fh4>\n\u003Cp>The foremost and most common reason – when you wish to make backup of the plugin for future installation.\u003C\u002Fp>\n\u003Ch4>B. Premium\u002F Commercial Plugins\u003C\u002Fh4>\n\u003Cp>If you have purchased the plugin from a vendor site, you may want to make a backup of your new purchase to make sure you have it handy if the vendor is no longer available or your account is expired. Please note: Do check terms of use for commercial plugins on publisher’s site.\u003C\u002Fp>\n\u003Ch4>C. Migrating to a different site\u003C\u002Fh4>\n\u003Cp>So you have found yourselves dependent on some specific plugins that you want to use on all of your sites? You can download these plugins from your current site do a folder on your hard disk from where you can upload to your other sites.\u003C\u002Fp>\n\u003Ch4>D. Preserving Changes\u003C\u002Fh4>\n\u003Cp>If you DIY type and made modifications to plugin files to suit your requirements, you will want to make sure you have an archived copy of the plugin if the files get overwritten by an update etc.\u003C\u002Fp>\n\u003Ch4>Starter Guide\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fmetagauss.com\u002Fdownload-plugin-guide\u002F\" rel=\"nofollow ugc\">Checkout Download plugin guide\u003C\u002Fa> for more information.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins (Free Download From WordPress.org)\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdownload-theme\u002F\" rel=\"ugc\">Download Theme Plugin:\u003C\u002Fa> allows you to download any theme from your WordPress admin panel’s Appearance page.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-registration-form-builder-with-submission-manager\u002F\" rel=\"ugc\">User Registration and Login Plugin:\u003C\u002Fa> Take total control of end-to-end user registration process on your site with RegistrationMagic plugin.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fprofilegrid-user-profiles-groups-and-communities\u002F\" rel=\"ugc\">User Profiles and Membership Plugin:\u003C\u002Fa> Build awesome user profiles, restrict content and launch memberships with ProfileGrid plugin.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feventprime-event-calendar-management\u002F\" rel=\"ugc\">User Events and Calendar Plugin:\u003C\u002Fa> Manage user events, sell tickets and publish event calendar with EventPrime plugin.\u003C\u002Fp>\n","Download any plugin from your WordPress admin panel's Plugins page by just one click! Now, download themes, users, blog posts, pages, custom post &hellip;",50000,930336,88,22,"2026-03-06T07:06:00.000Z","6.8.5","4.8","5.6",[110,94,111,112,22],"download","download-plugin-zip","plugin-zip","http:\u002F\u002Fmetagauss.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdownload-plugin.2.4.0.zip",94,5,"2025-07-03 13:38:05",{"slug":119,"name":120,"version":40,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":115,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":136,"download_link":137,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"automatic-updater","Advanced Automatic Updates","Gary Pendergast","https:\u002F\u002Fprofiles.wordpress.org\u002Fpento\u002F","\u003Cp>Advanced Automatic Updates adds extra options to WordPress’ built-in Automatic Updates feature. On top of security updates, it also supports installing major releases, plugins, themes, or even regular SVN checkouts!\u003C\u002Fp>\n\u003Cp>If you’re working on a WordPress Multisite install, it will properly restrict the options page to your Network Admin.\u003C\u002Fp>\n\u003Cp>While this will be useful for the vast majority of sites, please exercise caution, particularly if you have any custom themes or plugins running on your site.\u003C\u002Fp>\n","Adds extra options to WordPress' built-in Automatic Updates feature.",30000,255107,61,"2021-06-04T00:46:00.000Z","5.0.25","3.7",[132,22,133,134,135],"core","stable","themes","updates","http:\u002F\u002Fpento.net\u002Fprojects\u002Fautomatic-updater-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautomatic-updater.1.0.2.zip",{"attackSurface":139,"codeSignals":185,"taintFlows":202,"riskAssessment":291,"analyzedAt":303},{"hooks":140,"ajaxHandlers":171,"restRoutes":182,"shortcodes":183,"cronEvents":184,"entryPointCount":14,"unprotectedCount":32},[141,147,151,154,158,162,166,169],{"type":142,"name":143,"callback":144,"file":145,"line":146},"action","admin_menu","plugin_packer_menu","admin\\class-wp-plugin-packer-admin.php",28,{"type":142,"name":148,"callback":149,"file":145,"line":150},"admin_init","plugin_packer_init",29,{"type":142,"name":152,"callback":153,"file":145,"line":33},"upload_mimes","add_json_mime",{"type":142,"name":155,"callback":156,"priority":91,"file":145,"line":157},"upgrader_process_complete","add_plugin_to_pack",33,{"type":142,"name":159,"callback":160,"file":145,"line":161},"admin_notices","missing_plugins_notices",34,{"type":142,"name":163,"callback":164,"file":165,"line":103},"plugins_loaded","anonymous","includes\\class-wp-plugin-packer.php",{"type":142,"name":167,"callback":164,"file":165,"line":168},"admin_enqueue_scripts",103,{"type":142,"name":167,"callback":164,"file":165,"line":170},104,[172,178],{"action":173,"nopriv":174,"callback":175,"hasNonce":176,"hasCapCheck":174,"file":145,"line":177},"wp_plugin_packer_import_file",false,"import_file",true,31,{"action":179,"nopriv":174,"callback":180,"hasNonce":174,"hasCapCheck":174,"file":145,"line":181},"sanitize_title","handle_sanitize_title",32,[],[],[],{"dangerousFunctions":186,"sqlUsage":187,"outputEscaping":189,"fileOperations":32,"externalRequests":26,"nonceChecks":46,"capabilityChecks":26,"bundledLibraries":201},[],{"prepared":26,"raw":26,"locations":188},[],{"escaped":190,"rawEcho":191,"locations":192},7,4,[193,195,197,199],{"file":145,"line":91,"context":194},"raw output",{"file":145,"line":196,"context":194},130,{"file":145,"line":198,"context":194},248,{"file":145,"line":200,"context":194},377,[],[203,240,252,282],{"entryPoint":204,"graph":205,"unsanitizedCount":14,"severity":239},"plugin_packer_init (admin\\class-wp-plugin-packer-admin.php:68)",{"nodes":206,"edges":234},[207,212,216,222,226,229],{"id":208,"type":209,"label":210,"file":145,"line":211},"n0","source","$_GET['plugin']",76,{"id":213,"type":214,"label":215,"file":145,"line":211},"n1","transform","→ handle_delete_plugin()",{"id":217,"type":218,"label":219,"file":145,"line":220,"wp_function":221},"n2","sink","wp_redirect() [Open Redirect]",391,"wp_redirect",{"id":223,"type":209,"label":224,"file":145,"line":225},"n3","$_POST['plugin_packs']",82,{"id":227,"type":214,"label":228,"file":145,"line":225},"n4","→ set_plugin_packs()",{"id":230,"type":218,"label":231,"file":145,"line":232,"wp_function":233},"n5","update_option() [Settings Manipulation]",137,"update_option",[235,236,237,238],{"from":208,"to":213,"sanitized":174},{"from":213,"to":217,"sanitized":174},{"from":223,"to":227,"sanitized":174},{"from":227,"to":230,"sanitized":174},"medium",{"entryPoint":241,"graph":242,"unsanitizedCount":32,"severity":239},"missing_plugins_notices (admin\\class-wp-plugin-packer-admin.php:353)",{"nodes":243,"edges":250},[244,247],{"id":208,"type":209,"label":245,"file":145,"line":246},"$_GET",374,{"id":213,"type":218,"label":248,"file":145,"line":200,"wp_function":249},"echo() [XSS]","echo",[251],{"from":208,"to":213,"sanitized":174},{"entryPoint":253,"graph":254,"unsanitizedCount":14,"severity":239},"\u003Cclass-wp-plugin-packer-admin> (admin\\class-wp-plugin-packer-admin.php:0)",{"nodes":255,"edges":275},[256,259,263,264,265,266,267,269,271,273],{"id":208,"type":209,"label":257,"file":145,"line":258},"$_POST",263,{"id":213,"type":218,"label":260,"file":145,"line":261,"wp_function":262},"file_get_contents() [SSRF\u002FLFI]",265,"file_get_contents",{"id":217,"type":209,"label":245,"file":145,"line":246},{"id":223,"type":218,"label":248,"file":145,"line":200,"wp_function":249},{"id":227,"type":209,"label":210,"file":145,"line":211},{"id":230,"type":214,"label":215,"file":145,"line":211},{"id":268,"type":218,"label":219,"file":145,"line":220,"wp_function":221},"n6",{"id":270,"type":209,"label":224,"file":145,"line":225},"n7",{"id":272,"type":214,"label":228,"file":145,"line":225},"n8",{"id":274,"type":218,"label":231,"file":145,"line":232,"wp_function":233},"n9",[276,277,278,279,280,281],{"from":208,"to":213,"sanitized":176},{"from":217,"to":223,"sanitized":176},{"from":227,"to":230,"sanitized":174},{"from":230,"to":268,"sanitized":174},{"from":270,"to":272,"sanitized":174},{"from":272,"to":274,"sanitized":174},{"entryPoint":283,"graph":284,"unsanitizedCount":26,"severity":290},"import_file (admin\\class-wp-plugin-packer-admin.php:259)",{"nodes":285,"edges":288},[286,287],{"id":208,"type":209,"label":257,"file":145,"line":258},{"id":213,"type":218,"label":260,"file":145,"line":261,"wp_function":262},[289],{"from":208,"to":213,"sanitized":176},"low",{"summary":292,"deductions":293},"The \"wp-plugin-packer\" v1.0.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, using prepared statements for all SQL queries, and having no recorded vulnerabilities or CVEs in its history. This suggests a generally careful development approach regarding common web security pitfalls. However, the static analysis reveals significant areas for concern.\n\nThe plugin's attack surface is relatively small but contains a critical weakness: one of its two AJAX handlers lacks proper authentication checks. This presents a direct avenue for unauthorized actions if exploited. Furthermore, the taint analysis indicates that a substantial portion of analyzed data flows (3 out of 4) involve unsanitized paths, even though no critical or high-severity vulnerabilities were found in this analysis. This could imply a latent risk of path traversal or similar vulnerabilities that might not be immediately apparent without further deeper investigation or specific exploit attempts.\n\nWhile the absence of historical vulnerabilities is a positive indicator, it doesn't negate the risks identified in the current code. The lack of capability checks on an AJAX handler and the presence of unsanitized paths are significant security liabilities that need immediate attention. The plugin's strengths lie in its SQL handling and lack of historical issues, but its current implementation introduces notable risks that could be exploited by attackers.",[294,296,299,301],{"reason":295,"points":11},"AJAX handler without auth checks",{"reason":297,"points":298},"Unsanitized paths in taint flows",8,{"reason":300,"points":46},"Low output escaping percentage",{"reason":302,"points":116},"No capability checks","2026-03-17T01:13:13.512Z",{"wat":305,"direct":314},{"assetPaths":306,"generatorPatterns":308,"scriptPaths":309,"versionParams":311},[307],"\u002Fwp-content\u002Fplugins\u002Fwp-plugin-packer\u002Fadmin\u002Fcss\u002Fwp-plugin-packer-admin.css",[],[310],"\u002Fwp-content\u002Fplugins\u002Fwp-plugin-packer\u002Fadmin\u002Fjs\u002Fwp-plugin-packer-admin.js",[312,313],"wp-plugin-packer\u002Fadmin\u002Fcss\u002Fwp-plugin-packer-admin.css?ver=","wp-plugin-packer\u002Fadmin\u002Fjs\u002Fwp-plugin-packer-admin.js?ver=",{"cssClasses":315,"htmlComments":332,"htmlAttributes":333,"restEndpoints":336,"jsGlobals":337,"shortcodeOutput":339},[316,317,318,319,320,321,322,22,323,324,325,326,327,328,88,329,330,331],"drag-and-drop","single-pack","single-pack-title","select-pack","pack-title","pack-slug","widefat","active","inactive","missing","plugin-name","plugin-title","plugin-title-value","version-value","plugin_file_name","placeholder",[],[334,335],"data-hint","data-hint=\"Click to edit\"",[],[338],"translationStrings",[]]