[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f-wPl__hW1zDHsb7qs_bOGleOZY8zbWfHSHvZ6T_p2IE":3,"$fxqnUnmKpOGuUeU6VJXBFHpMuYKlOooGHRHWhvl3cg4Y":257,"$fT701FmvIO1_X3jKyGO9hCBKjRuoxr2C1_OvskKyc-Rw":262},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":57,"analysis":152,"fingerprints":240},"wp-secure-maintainance","WP Secure Maintenance","1.7","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>Want to lock your site for Maintenance or Development? Then this is the right Plugin. Using WP Secure Maintenance you can lock the whole site with a seceret PIN.\u003C\u002Fp>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set password to protect your site for maintenance or development\u003C\u002Fli>\n\u003Cli>Set your own logo or use default logo\u003C\u002Fli>\n\u003Cli>Change placeholder text for WP Secure Maintenance login form\u003C\u002Fli>\n\u003Cli>Change Submit button label for WP Secure Maintenance’s login form\u003C\u002Fli>\n\u003Cli>Change Error text for WP Secure Maintenance’s login form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Docs & Support\u003C\u002Fh4>\n\u003Cp>Will be available soon.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>If you are looking for WordPress Admin Security, use our Free WP SECURE ADMIN plugin.\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsecure-wp-admin\u002F\" rel=\"ugc\">WP SECURE ADMIN\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Interested in contributing to WP Secure Maintenance\u003C\u002Fstrong>\u003Cbr \u002F>\nHead over to the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwpexpertsio\u002FWP-Secure-Maintainance\" rel=\"nofollow ugc\">WP Secure Maintenance \u003Cstrong>GitHub Repository\u003C\u002Fstrong>\u003C\u002Fa> to find out how you can pitch in 😉\u003C\u002Fp>\n","Want to lock your site for Maintenance or Development? Then this is the right Plugin",1000,56575,72,5,"2024-06-20T07:15:00.000Z","6.5.8","5.2","7.0",[20,21,22,23],"development","maintenance","maintenance-lock","site-security","https:\u002F\u002Fwpexperts.io\u002Fproducts\u002Fwp-secure-maintenance\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.7.zip",91,1,0,"2024-06-21 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":27,"patch_diff_files":47,"patch_trac_url":38,"research_status":38,"research_verified":48,"research_rounds_completed":28,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":48,"poc_model_used":38,"poc_verification_depth":38},"CVE-2024-4753","wp-secure-maintenance-authenticated-admin-stored-cross-site-scripting","WP Secure Maintenance \u003C= 1.6 - Authenticated (Admin+) Stored Cross-Site Scripting","The WP Secure Maintenance plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=1.6","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-06-21 15:33:01",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F902c017d-c907-4335-9e1e-1d23580d9caf?source=api-prod",[],false,{"slug":50,"display_name":7,"profile_url":8,"plugin_count":51,"total_installs":52,"avg_security_score":53,"avg_patch_time_days":54,"trust_score":55,"computed_at":56},"saadiqbal",89,1428550,93,267,74,"2026-05-19T16:32:42.162Z",[58,79,96,114,133],{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":28,"num_ratings":28,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":78,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"beapi-maintenance-mode","BEAPI – Maintenance Mode","1.0.5","BE API","https:\u002F\u002Fprofiles.wordpress.org\u002Fbeapi\u002F","\u003Cp>This simple and lightweight WordPress maintenance plugin puts the site into maintenance mode. The major advantage, compared to existing plugins, is that there are no options, it is ready to use!\u003C\u002Fp>\n\u003Cp>It was think, while in maintenance mode, to :\u003Cbr \u002F>\n– Not impact your SEO by sending a ‘503 Service Unavailable’ status to all unauthenticated clients. This means that it will inhibits search engines from both losing your site’s existing content and indexing your maintenance page as well, so your site will not lose its rankings while it is out of service. Content will even be hidden from consumers of the site’s RSS or Atom feeds.\u003Cbr \u002F>\n– Make continually work the login\u002Floggout process.\u003Cbr \u002F>\n– It handle the \u003Cem>activate process in multisite\u003C\u002Fem>, which a lot of existing plugins don’t.\u003Cbr \u002F>\n– If people are logged in they will have the site displayed as normal\u002Fexpected.\u003C\u002Fp>\n\u003Ch3>How ?\u003C\u002Fh3>\n\u003Cp>We would like to precise that this plugin is simple as pie, anyone can use it but still dev-oriented. The idea is to not have a bunch of options to set before using it, in fact not only one! Because, it is a really pain when working on a multisite.\u003Cbr \u002F>\nThat is why there as still two filter for developers, which come in the section below.\u003C\u002Fp>\n\u003Ch3>IPs whitelist\u003C\u002Fh3>\n\u003Cp>In certain conditions, it is useful to not trigger the maintenance mode. That’s why you can add a file to your project (mu-plugins) to specify a range of IPs to whitelist. At the agency we use it with our VPN IP.\u003Cbr \u002F>\nPlease find an example of implementation on the following \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FBeAPI\u002Fbea-plugin-defaults\u002Fblob\u002Fmaster\u002Fdefault-beapi-maintenance-mode.php\" rel=\"nofollow ugc\">github\u003C\u002Fa>;\u003C\u002Fp>\n\u003Ch3>Customize the maintenance mode template\u003C\u002Fh3>\n\u003Cp>By default it is the file located in the templates folder : \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FBeAPI\u002Fbeapi-maintenance-mode\u002Fblob\u002Fmaster\u002Ftemplates\u002Fmaintenance.php\" rel=\"nofollow ugc\">maintenance.php\u003C\u002Fa>\u003Cbr \u002F>\nBut you can customize this template using the following implementation on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FBeAPI\u002Fbea-plugin-defaults\u002Fblob\u002Fmaster\u002Fdefault-beapi-maintenance-mode.php\" rel=\"nofollow ugc\">github\u003C\u002Fa>, with a custom template placed wherever you want.\u003C\u002Fp>\n\u003Ch3>Composer\u003C\u002Fh3>\n\u003Cp>It is possible to activate the plugin by composer \u003Ccode>wp plugin activate beapi-maitenance-mode [--network]\u003C\u002Fcode>\u003Cbr \u002F>\nIf you are a developer and the plugin is not installed, you could also just use a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FBeAPI\u002Fcomposer-go-maintenance\" rel=\"nofollow ugc\">dedicated composer command\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Who ?\u003C\u002Fh3>\n\u003Cp>Created by \u003Ca href=\"https:\u002F\u002Fbeapi.fr\" rel=\"nofollow ugc\">Be API\u003C\u002Fa>, the French WordPress leader agency since 2009. Based in Paris, we are more than 30 people and always \u003Ca href=\"https:\u002F\u002Fbeapi.workable.com\" rel=\"nofollow ugc\">hiring\u003C\u002Fa> some fun and talented guys. So we will be pleased to work with you.\u003C\u002Fp>\n\u003Cp>This plugin is only maintained, which means we do not guarantee some free support. Consider reporting an \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FBeAPI\u002Fbea-media-analytics\u002Fissues\" rel=\"nofollow ugc\">issue\u003C\u002Fa> and be patient.\u003C\u002Fp>\n\u003Cp>To facilitate the process of submitting an issue and quicker answer, we only use Github, so don’t use WP.Org support, it will not be considered.\u003C\u002Fp>\n","Puts your WordPress site into maintenance mode by sending a 'Error 503: Access Denied\u002FForbidden' status to all unauthenticated clients.",100,4685,"2019-04-02T12:39:00.000Z","4.9.29","4.7","5.6",[73,74,20,21,75],"503","admin","under-construction","https:\u002F\u002Fgithub.com\u002FBeAPI\u002Fbeapi-maintenance-mode","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbeapi-maintenance-mode.1.0.5.zip",85,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":55,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":93,"download_link":95,"security_score":78,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"302-moved-temporarily","302 Moved Temporarily","1.2","Jordan Patterson","https:\u002F\u002Fprofiles.wordpress.org\u002Fbigfoot13442\u002F","\u003Cp>Redirects any unauthenticated users to another url and sends them a ‘302 Moved Temporarily’ status.\u003Cbr \u002F>\nIdeal for sites that are under development especially if the site is being moved or currently has an older version.\u003Cbr \u002F>\nAdds an item to the ‘Options’ menu on the admin panel where you can enter the site you want to redirect users to.\u003C\u002Fp>\n","Need to redirect your visitors temporarily? This plugin will redirect any unauthenticated users to another url and still allow logged in users to use  &hellip;",70,11631,3,"2013-05-18T11:23:00.000Z","3.5.2","2.7","",[74,20,21,75],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002F302-moved-temporarily.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":66,"num_ratings":27,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":112,"download_link":113,"security_score":78,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"ez-coming-soon","EZ Coming Soon","1.0.4","wphelpdeskuk","https:\u002F\u002Fprofiles.wordpress.org\u002Fwphelpdeskuk\u002F","\u003Cp>Display a fully customisable coming soon and maintenance page to your WordPress site. Use the basic pages provided by the plugin or add your own template to your child theme.\u003C\u002Fp>\n\u003Cp>No complicated settings, and no visual builders. Just a straightforward one-button setup so you can focus on building your website.\u003C\u002Fp>\n\u003Cp>The plugin also blocks access via the REST API and via XML-RPC so users can’t jump to see what you are building.\u003C\u002Fp>\n\u003Ch4>Full Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>None – Doesn’t block access to the site\u003C\u002Fli>\n\u003Cli>Blank Screen – Only displays a white screen\u003C\u002Fli>\n\u003Cli>Maintenance Mode – Displays maintenance mode text (Editable via the “Maintenance Mode Options” page in settings)\u003C\u002Fli>\n\u003Cli>Basic Message – Displays a basic message (Editable via the “Basic Message Options” page in settings)\u003C\u002Fli>\n\u003Cli>Use Template – Displays a template file defined in your theme called \u003Ccode>coming_soon.php\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Login Screen – Redirects all requests to the login screen\u003C\u002Fli>\n\u003C\u002Ful>\n","Display a basic coming soon page or maintenance page on demand. Or display your own coming soon page using your theme!",30,2153,"2023-11-30T11:46:00.000Z","6.4.8","6.2.2","7.4",[111,20,21],"coming-soon","https:\u002F\u002Fsupport.watchthedot.com\u002Four-plugins\u002Feasy-coming-soon\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fez-coming-soon.1.0.4.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":28,"num_ratings":28,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":93,"tags":127,"homepage":131,"download_link":132,"security_score":78,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"simple-under-construction","Simple Under Construction","1.0.0","Shrinivas","https:\u002F\u002Fprofiles.wordpress.org\u002Fshrinitech\u002F","\u003Cp>Simple under construction adds a mobile friendly, animated under construction page to your website with social media icons.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features of Simple Under Construction\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to use with minimal options\u003C\u002Fli>\n\u003Cli>Animated under construction symbol\u003C\u002Fli>\n\u003Cli>Social media icons\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check out the live demo of \u003Ca href=\"http:\u002F\u002Ftechsini.com\u002Four-wordpress-plugins\u002Fsimple-under-construction\" rel=\"nofollow ugc\">Simple under construction\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Checkout Our other WordPress Plugins\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftechsini.com\u002Four-wordpress-plugins\u002Ffluid-notification-bar\u002F\" rel=\"nofollow ugc\">Fluid Notification Bar\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftechsini.com\u002Four-wordpress-plugins\u002Fsimple-adblock-notice\u002F\" rel=\"nofollow ugc\">Simple Adblock Notice\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftechsini.com\u002Four-wordpress-plugins\u002Felegant-subscription-popup\u002F\" rel=\"nofollow ugc\">Elegant Subscription Popup\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fmasterblogster.com\u002Fplugins\u002Fdisable-right-click\u002F\" rel=\"nofollow ugc\">Disable Right Click\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fmasterblogster.com\u002Fplugins\u002Fads-within-paragraph\u002F\" rel=\"nofollow ugc\">Ads Within Paragraph\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Credits\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Under construction animation credit http:\u002F\u002Fcodepen.io\u002FJoeAnzalone\u002Fpen\u002FdAnsb\u003C\u002Fp>\n","Simple under construction adds a mobile friendly, animated under construction page to your website with social media icons.",20,5632,"2015-08-11T10:51:00.000Z","4.2.39","3.0",[111,128,75,129,130],"coming-soon-page","under-development","website-maintenance","http:\u002F\u002Ftechsini.com\u002Four-wordpress-plugins\u002Fsimple-under-construction","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-under-construction.1.0.zip",{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":66,"num_ratings":143,"last_updated":144,"tested_up_to":18,"requires_at_least":145,"requires_php":109,"tags":146,"homepage":150,"download_link":151,"security_score":66,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"anticache","Anti-Cache Kit","4.1.0","Fernando Tellado","https:\u002F\u002Fprofiles.wordpress.org\u002Ffernandot\u002F","\u003Cp>\u003Cstrong>Anti-Cache Kit\u003C\u002Fstrong> is a development tool for WordPress developers and designers who need to bypass all caching and optimization mechanisms during development, testing, or troubleshooting.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Development tool only. Do not leave active on production sites.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Key features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Cache and optimization management\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically detects and flushes 16+ cache plugins\u003C\u002Fli>\n\u003Cli>Deactivates optimization plugins that interfere with debugging (Perfmatters, FlyingPress, WP Asset CleanUp, and more)\u003C\u002Fli>\n\u003Cli>Clears object cache (Redis, Memcached) and OPcache\u003C\u002Fli>\n\u003Cli>Clears hosting-specific caches (SiteGround, Cloudflare, Kinsta)\u003C\u002Fli>\n\u003Cli>Prevents browser caching for administrators\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Server-level cache prevention\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatic timestamped backup of .htaccess before any modification\u003C\u002Fli>\n\u003Cli>Injects .htaccess rules to disable SiteGround cache via environment variables\u003C\u002Fli>\n\u003Cli>Sets no-cache, no-store headers at server level for all visitors\u003C\u002Fli>\n\u003Cli>Disables ETags and mod_expires to prevent conditional caching\u003C\u002Fli>\n\u003Cli>Sends CDN\u002Fproxy bypass headers (X-Accel-Expires, Surrogate-Control)\u003C\u002Fli>\n\u003Cli>Automatically restores original .htaccess on plugin deactivation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Debug mode activation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatic timestamped backup of wp-config.php before any modification\u003C\u002Fli>\n\u003Cli>Comments out conflicting definitions with visible markers instead of deleting them\u003C\u002Fli>\n\u003Cli>Enables WP_DEBUG, WP_DEBUG_LOG, and SCRIPT_DEBUG (errors go to wp-content\u002Fdebug.log)\u003C\u002Fli>\n\u003Cli>Disables WordPress cache (WP_CACHE = false)\u003C\u002Fli>\n\u003Cli>Safely modifies wp-config.php using WordPress Filesystem API\u003C\u002Fli>\n\u003Cli>Restores original wp-config.php from backup on plugin deactivation (plain copy, no processing)\u003C\u002Fli>\n\u003Cli>Timestamped backups are kept for reference until the plugin is deleted\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Maintenance mode\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Optional status page for non-logged visitors\u003C\u002Fli>\n\u003Cli>Quick toggle from admin bar\u003C\u002Fli>\n\u003Cli>Customizable via filter hook\u003C\u002Fli>\n\u003Cli>Self-contained output with aggressive cache prevention headers (503, no-store, Surrogate-Control)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported cache plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WP Rocket\u003C\u002Fli>\n\u003Cli>W3 Total Cache\u003C\u002Fli>\n\u003Cli>WP Super Cache\u003C\u002Fli>\n\u003Cli>WP Fastest Cache\u003C\u002Fli>\n\u003Cli>LiteSpeed Cache\u003C\u002Fli>\n\u003Cli>SiteGround Optimizer\u003C\u002Fli>\n\u003Cli>WP Optimize\u003C\u002Fli>\n\u003Cli>Hummingbird (WPMU DEV)\u003C\u002Fli>\n\u003Cli>Breeze (Cloudways)\u003C\u002Fli>\n\u003Cli>Autoptimize\u003C\u002Fli>\n\u003Cli>Cache Enabler\u003C\u002Fli>\n\u003Cli>Surge\u003C\u002Fli>\n\u003Cli>Redis Object Cache\u003C\u002Fli>\n\u003Cli>Powered Cache\u003C\u002Fli>\n\u003Cli>Comet Cache\u003C\u002Fli>\n\u003Cli>Swift Performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported optimization plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Perfmatters\u003C\u002Fli>\n\u003Cli>FlyingPress\u003C\u002Fli>\n\u003Cli>WP Asset CleanUp\u003C\u002Fli>\n\u003Cli>Object Cache 4 Everyone\u003C\u002Fli>\n\u003Cli>Zero Config Performance (WPO Tweaks)\u003C\u002Fli>\n\u003Cli>Clearfy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported hosting caches\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>SiteGround (via .htaccess environment variables and plugin API)\u003C\u002Fli>\n\u003Cli>Cloudflare (both new and legacy namespaces)\u003C\u002Fli>\n\u003Cli>Kinsta\u003C\u002Fli>\n\u003Cli>Generic hosting cache systems\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Developer Information\u003C\u002Fh3>\n\u003Ch4>Hooks and Filters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>ayudawp_anticache_maintenance_data\u003C\u002Fcode> – Filter to customize maintenance page data (heading, status, message, retry)\u003C\u002Fli>\n\u003Cli>\u003Ccode>ayudawp_anticache_cache_plugins\u003C\u002Fcode> – Filter to modify the list of supported cache and optimization plugins\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Constants\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>AYUDAWP_ANTICACHE_VERSION\u003C\u002Fcode> – Plugin version\u003C\u002Fli>\n\u003Cli>\u003Ccode>AYUDAWP_ANTICACHE_PLUGIN_DIR\u003C\u002Fcode> – Plugin directory path\u003C\u002Fli>\n\u003Cli>\u003Ccode>AYUDAWP_ANTICACHE_PLUGIN_URL\u003C\u002Fcode> – Plugin directory URL\u003C\u002Fli>\n\u003Cli>\u003Ccode>AYUDAWP_ANTICACHE_PLUGIN_BASENAME\u003C\u002Fcode> – Plugin basename for hooks\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Code examples\u003C\u002Fh4>\n\u003Cp>Customize maintenance page:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'ayudawp_anticache_maintenance_data', function( $data ) {\n    $data['heading'] = 'My Site Name';\n    $data['status'] = 'Updating...';\n    $data['message'] = 'We are deploying a new version. Back in a few minutes.';\n    return $data;\n} );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Add a custom cache plugin:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'ayudawp_anticache_cache_plugins', function( $plugins ) {\n    $plugins['my-cache\u002Fmy-cache.php'] = array(\n        'name' => 'My Cache Plugin',\n        'type' => 'cache',\n    );\n    return $plugins;\n} );\u003Ch3>Support\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Need help or have suggestions?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fservicios.ayudawp.com\u002F\" rel=\"nofollow ugc\">Official website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fanticache\u002F\" rel=\"ugc\">WordPress support forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002FAyudaWordPressES\" rel=\"nofollow ugc\">YouTube channel\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fayudawp.com\u002F\" rel=\"nofollow ugc\">Documentation and tutorials\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Love the plugin?\u003C\u002Fstrong> Please leave us a 5-star review and help spread the word!\u003C\u002Fp>\n\u003Ch3>About AyudaWP\u003C\u002Fh3>\n\u003Cp>We are specialists in WordPress security, SEO, and performance optimization plugins. We create tools that solve real problems for WordPress site owners while maintaining the highest coding standards and accessibility requirements.\u003C\u002Fp>\n","Flushes and deactivates cache and optimization plugins, enables debug mode, and provides maintenance mode for WordPress development.",10,860,4,"2026-04-02T19:24:00.000Z","5.0",[147,148,20,21,149],"cache","debug","troubleshooting","https:\u002F\u002Fservicios.ayudawp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fanticache.4.1.0.zip",{"attackSurface":153,"codeSignals":180,"taintFlows":228,"riskAssessment":229,"analyzedAt":239},{"hooks":154,"ajaxHandlers":176,"restRoutes":177,"shortcodes":178,"cronEvents":179,"entryPointCount":28,"unprotectedCount":28},[155,161,166,170,174],{"type":156,"name":157,"callback":158,"priority":122,"file":159,"line":160},"action","init","wpsp_display_security_form","inc\\wpsp_functions.php",214,{"type":156,"name":162,"callback":163,"file":164,"line":165},"admin_menu","wpsp_registerMenu","wp_secure_maintainance.php",27,{"type":156,"name":167,"callback":168,"file":164,"line":169},"admin_init","wpsp_settings",28,{"type":156,"name":171,"callback":172,"file":164,"line":173},"admin_enqueue_scripts","wpsp_enqueue_scripts",29,{"type":156,"name":171,"callback":175,"file":164,"line":104},"closure",[],[],[],[],{"dangerousFunctions":181,"sqlUsage":182,"outputEscaping":184,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":227},[],{"prepared":28,"raw":28,"locations":183},[],{"escaped":173,"rawEcho":122,"locations":185},[186,189,191,193,196,198,199,201,203,205,207,209,211,213,215,217,219,221,223,225],{"file":159,"line":187,"context":188},60,"raw output",{"file":159,"line":190,"context":188},138,{"file":159,"line":192,"context":188},189,{"file":194,"line":195,"context":188},"inc\\wpsp_options.php",8,{"file":194,"line":197,"context":188},9,{"file":194,"line":141,"context":188},{"file":164,"line":200,"context":188},203,{"file":164,"line":202,"context":188},215,{"file":164,"line":204,"context":188},216,{"file":164,"line":206,"context":188},228,{"file":164,"line":208,"context":188},229,{"file":164,"line":210,"context":188},237,{"file":164,"line":212,"context":188},246,{"file":164,"line":214,"context":188},254,{"file":164,"line":216,"context":188},280,{"file":164,"line":218,"context":188},296,{"file":164,"line":220,"context":188},304,{"file":164,"line":222,"context":188},312,{"file":164,"line":224,"context":188},320,{"file":164,"line":226,"context":188},328,[],[],{"summary":230,"deductions":231},"The \"wp-secure-maintainance\" plugin v1.7 exhibits a mixed security posture. On the positive side, the static analysis reveals no apparent attack surface (AJAX handlers, REST API routes, shortcodes, cron events) that are directly exposed or unprotected. The code also demonstrates good practices by exclusively using prepared statements for its SQL queries and performing no file operations or external HTTP requests. However, there are significant concerns regarding output escaping, with 41% of outputs not being properly escaped. This, coupled with the absence of nonce and capability checks on any potential entry points (though none are identified), presents a notable risk. The plugin's vulnerability history is concerning; while there are no currently unpatched CVEs, the presence of one known CVE, particularly one related to Cross-Site Scripting (XSS) which was last patched on June 21, 2024, indicates a past vulnerability that required remediation. The lack of taint analysis data makes it difficult to assess the impact of unsanitized inputs, but the unescaped outputs alone are a significant weakness. The conclusion is that while the plugin has a small attack surface and uses secure SQL practices, the substantial amount of unescaped output and the history of XSS vulnerabilities suggest a need for careful review and ongoing monitoring. The absence of clear capability checks on any potential entry points is also a weakness, as it relies on the assumption that all potential interactions would be properly authorized by WordPress core, which might not always be the case in complex environments.",[232,235,237],{"reason":233,"points":234},"Unescaped output identified",12,{"reason":236,"points":195},"No capability checks found",{"reason":238,"points":14},"Known CVE history","2026-03-16T18:43:14.475Z",{"wat":241,"direct":250},{"assetPaths":242,"generatorPatterns":245,"scriptPaths":246,"versionParams":247},[243,244],"\u002Fwp-content\u002Fplugins\u002Fwp-secure-maintainance\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwp-secure-maintainance\u002Fjs\u002Fwpsp-scripts.js",[],[244],[248,249],"wp-secure-maintainance\u002Fcss\u002Fstyle.css?ver=","wp-secure-maintainance\u002Fjs\u002Fwpsp-scripts.js?ver=",{"cssClasses":251,"htmlComments":252,"htmlAttributes":253,"restEndpoints":254,"jsGlobals":255,"shortcodeOutput":256},[],[],[],[],[],[],{"error":258,"url":259,"statusCode":260,"statusMessage":261,"message":261},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwp-secure-maintainance\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":197,"versions":263},[264,269,277,285,293,301,309,316,324],{"version":6,"download_url":25,"svn_tag_url":265,"released_at":38,"has_diff":48,"diff_files_changed":266,"diff_lines":38,"trac_diff_url":267,"vulnerabilities":268,"is_current":258},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.6&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.7",[],{"version":270,"download_url":271,"svn_tag_url":272,"released_at":38,"has_diff":48,"diff_files_changed":273,"diff_lines":38,"trac_diff_url":274,"vulnerabilities":275,"is_current":48},"1.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.5&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.6",[276],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":278,"download_url":279,"svn_tag_url":280,"released_at":38,"has_diff":48,"diff_files_changed":281,"diff_lines":38,"trac_diff_url":282,"vulnerabilities":283,"is_current":48},"1.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.4.1&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.5",[284],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":286,"download_url":287,"svn_tag_url":288,"released_at":38,"has_diff":48,"diff_files_changed":289,"diff_lines":38,"trac_diff_url":290,"vulnerabilities":291,"is_current":48},"1.4.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.4.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.4.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.4&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.4.1",[292],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":294,"download_url":295,"svn_tag_url":296,"released_at":38,"has_diff":48,"diff_files_changed":297,"diff_lines":38,"trac_diff_url":298,"vulnerabilities":299,"is_current":48},"1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.3&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.4",[300],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":302,"download_url":303,"svn_tag_url":304,"released_at":38,"has_diff":48,"diff_files_changed":305,"diff_lines":38,"trac_diff_url":306,"vulnerabilities":307,"is_current":48},"1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.2&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.3",[308],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":82,"download_url":310,"svn_tag_url":311,"released_at":38,"has_diff":48,"diff_files_changed":312,"diff_lines":38,"trac_diff_url":313,"vulnerabilities":314,"is_current":48},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.1&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.2",[315],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":317,"download_url":318,"svn_tag_url":319,"released_at":38,"has_diff":48,"diff_files_changed":320,"diff_lines":38,"trac_diff_url":321,"vulnerabilities":322,"is_current":48},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-secure-maintainance%2Ftags%2F1.0&new_path=%2Fwp-secure-maintainance%2Ftags%2F1.1",[323],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"version":325,"download_url":326,"svn_tag_url":327,"released_at":38,"has_diff":48,"diff_files_changed":328,"diff_lines":38,"trac_diff_url":38,"vulnerabilities":329,"is_current":48},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-secure-maintainance.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-secure-maintainance\u002Ftags\u002F1.0\u002F",[],[330],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6}]