[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjoiu2OjwmoGb9dG-uv23iJaqqy-9S2gKQYISt_56HYk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":142,"fingerprints":317},"wp-uploads-stats","WP Uploads Stats","1.0.3","Marin Atanasov","https:\u002F\u002Fprofiles.wordpress.org\u002Ftyxla\u002F","\u003Cp>WP Uploads Stats provides you with detailed statistics about your WordPress media uploads and attachments.\u003C\u002Fp>\n\u003Cp>To reach the page that reveals all uploads and media statistics, go to Media -> Uploads Stats in the administration.\u003C\u002Fp>\n\u003Cp>This page shows various file, media and uploads statistics data and graphs, presented to the user as user-friendly modules. The following statistics modules are available:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Overview\u003C\u002Fli>\n\u003Cli>Files by Type\u003C\u002Fli>\n\u003Cli>Files by Type – Chart\u003C\u002Fli>\n\u003Cli>Size by Year\u003C\u002Fli>\n\u003Cli>Size by Year – Chart\u003C\u002Fli>\n\u003Cli>Attachments by Type\u003C\u002Fli>\n\u003Cli>Attachments by Type – Chart\u003C\u002Fli>\n\u003Cli>Attachments by Author\u003C\u002Fli>\n\u003Cli>Attachments by Author – Chart\u003C\u002Fli>\n\u003Cli>Attachments by Year\u003C\u002Fli>\n\u003Cli>Attachments by Year – Chart\u003C\u002Fli>\n\u003Cli>Attachments by Post Type\u003C\u002Fli>\n\u003Cli>Attachments by Post Type – Chart\u003C\u002Fli>\n\u003Cli>Attachments by Month\u002FYear\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please, refer to the Configuration section for additional information on how you can tailor the statistics page to your needs.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>Each user can configure the order of appearance, as well as visibility of each module. These settings are separate for each user, so every different user can have different statistics module configuration. The settings that users can configure are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Module visibility – allows the users to hide\u002Fshow a particular module. To do that, while in the Uploads Stats page, click the Screen Options in the top right portion of the screen, and toggle the checkbox next to your preferred module.\u003C\u002Fli>\n\u003Cli>Module order – allows the users to move the modules in their preferred order. To do that, click and hold the mouse on the icon with squares in the top right portion of your preferred module, then drag it to your preferred location.\u003C\u002Fli>\n\u003Cli>Module minimized\u002Fmaximized – allows the users to minimize or restore a particular module. A minimized module will still appear on the screen (if enabled in Screen Options), but only its title will be visible – no data or charts will be shown for it. To minimize\u002Frestore a module, click the dash or restore icon in the top right portion of your preferred module.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Further customization for developers\u003C\u002Fh3>\n\u003Cp>WP Uploads Stats is very flexible and completely customizable – it embraces the WordPress Plugin API by using actions and filters where necessary. It has a flexible template system, which allows developers to change the template of each module, as well the main template that renders all modules. Also, the module system is built to be extendable, so creating new modules is easy by building custom plugins or integrating custom code in the active theme.\u003C\u002Fp>\n\u003Cp>If you are trying to build something on top of this plugin, and you need help or guidance – feel free to post a support topic in the WordPress Plugin Directory.\u003C\u002Fp>\n\u003Ch3>Ideas and bug reports\u003C\u002Fh3>\n\u003Cp>Any ideas for new modules or any other additional functionality that users would benefit from are welcome.\u003C\u002Fp>\n\u003Cp>Also, plugin translators are very welcome!\u003C\u002Fp>\n\u003Cp>If you have an idea for a new feature, or you want to report a bug, or you wish to help with translating, feel free to do it here in the Support tab, or you can do it at the Github repository of the project:\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fgithub.com\u002Ftyxla\u002FWP-Uploads-Stats\u002F\u003C\u002Fp>\n","Provides you with detailed statistics about your WordPress media uploads and attachments.",10,2744,100,3,"2016-04-11T18:04:00.000Z","4.5.33","3.8","",[20,21,22,23,24],"attachment","statistics","stats","upload","wp","https:\u002F\u002Fgithub.com\u002Ftyxla\u002FWP-Uploads-Stats","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-uploads-stats.1.0.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"tyxla",7,4460,86,1,90,"2026-04-04T14:11:51.657Z",[41,61,82,102,124],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":51,"num_ratings":34,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":18,"tags":55,"homepage":58,"download_link":59,"security_score":27,"vuln_count":37,"unpatched_count":28,"last_vuln_date":60,"fetched_at":30},"wp-stats","WP-Stats","2.56","Lester Chan","https:\u002F\u002Fprofiles.wordpress.org\u002Fgamerz\u002F","\u003Ch3>Usage (Create Stats Page)\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to ‘WP-Admin -> Pages -> Add New’\u003C\u002Fli>\n\u003Cli>Type any title you like in the page’s title area\u003C\u002Fli>\n\u003Cli>If you ARE using nice permalinks, after typing the title, WordPress will generate the permalink to the page. You will see an ‘Edit’ link just beside the permalink.\u003C\u002Fli>\n\u003Cli>Click ‘Edit’ and type in ‘stats’ in the text field (without the quotes) and click ‘Save’.\u003C\u002Fli>\n\u003Cli>Type \u003Ccode>[page_stats]\u003C\u002Fcode> in the page’s content area\u003C\u002Fli>\n\u003Cli>Click ‘Publish’\u003C\u002Fli>\n\u003Cli>If you ARE NOT using nice permalinks, you need to go to \u003Ccode>WP-Admin -> Settings -> Stats\u003C\u002Fcode> and under ‘Stats URL’, you need to fill in the URL to the Stats Page you created above.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Usage (With Widget)\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to \u003Ccode>WP-Admin -> Appearance -> Widgets\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>The widget name is \u003Ccode>Stats\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Build Status\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftravis-ci.org\u002Flesterchan\u002Fwp-stats\" rel=\"nofollow ugc\">\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flesterchan\u002Fwp-stats\" title=\"https:\u002F\u002Fgithub.com\u002Flesterchan\u002Fwp-stats\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Flesterchan\u002Fwp-stats\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fdev.wp-plugins.org\u002Fbrowser\u002Fwp-stats\u002Fi18n\u002F\" title=\"http:\u002F\u002Fdev.wp-plugins.org\u002Fbrowser\u002Fwp-stats\u002Fi18n\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fdev.wp-plugins.org\u002Fbrowser\u002Fwp-stats\u002Fi18n\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Plugin icon by \u003Ca href=\"http:\u002F\u002Fwww.simpleicon.com\" rel=\"nofollow ugc\">SimpleIcon\u003C\u002Fa> from \u003Ca href=\"http:\u002F\u002Fwww.flaticon.com\" rel=\"nofollow ugc\">Flaticon\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>I spent most of my free time creating, updating, maintaining and supporting these plugins, if you really love my plugins and could spare me a couple of bucks, I will really appreciate it. If not feel free to use it without any obligations.\u003C\u002Fp>\n","Display your WordPress blog statistics. Ranging from general total statistics, some of my plugins statistics and top 10 statistics.",3000,335338,52,"2023-08-09T03:06:00.000Z","6.2.9","5.5",[56,21,22,42,57],"stat","wp-stat","https:\u002F\u002Flesterchan.net\u002Fportfolio\u002Fprogramming\u002Fphp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-stats.2.56.zip","2015-06-17 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":13,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":18,"download_link":81,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"file-upload-for-wpforms","File Upload For WPForms – Filenzo","1.1.0","wpdebuglog","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdebuglog\u002F","\u003Cp>This plugin adds a custom \u003Cstrong>File Upload Field\u003C\u002Fstrong> to WPForms, enabling users to:\u003Cbr \u002F>\n– Upload files (e.g., PDF, images, documents) via frontend forms.\u003Cbr \u002F>\n– Restrict file types and sizes.\u003Cbr \u002F>\n– Securely store uploaded files in the WordPress uploads directory.\u003Cbr \u002F>\n– Attach files to email notifications (optional).\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Add the File Upload Field to a Form\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Edit or create a WPForm.  \u003C\u002Fli>\n\u003Cli>Drag and drop the \u003Cstrong>“File Upload”\u003C\u002Fstrong> field into your form.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Configure Field Settings\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Allowed File Types\u003C\u002Fstrong>: Specify extensions (e.g., \u003Ccode>pdf, jpg, png\u003C\u002Fcode>).  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Max File Size\u003C\u002Fstrong>: Set a limit (e.g., 10MB).  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Storage Location\u003C\u002Fstrong>: Files are saved to \u003Ccode>\u002Fwp-content\u002Fuploads\u002Fwpxform-uploads\u002F\u003C\u002Fcode>.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Attach Files to Email Notifications\u003C\u002Fstrong> (Optional):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable the “Attach Files to Email” option in the form’s \u003Cstrong>Notifications\u003C\u002Fstrong> settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Drag-and-drop file upload support.  \u003C\u002Fli>\n\u003Cli>Server-side validation for file types and sizes.  \u003C\u002Fli>\n\u003Cli>Unique filenames to prevent conflicts.  \u003C\u002Fli>\n\u003Cli>Compatible with WPForms Lite\u002FPro.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pro Addons\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpdebuglog.com\u002Fdownloads\u002Ffile-uploads-to-wpforms\u002F\" rel=\"nofollow ugc\">Advanced Filedrop For WPForms\u003C\u002Fa>\u003Cbr \u002F>\nAdd Drag and Drop File Uploads to WPForms\u003C\u002Fli>\n\u003C\u002Ful>\n","Enhance WPForms with a secure file upload field, allowing users to upload files directly through forms.",1000,4848,16,"2026-01-25T08:38:00.000Z","6.9.4","6.6","7.0",[77,78,79,80],"attachments","file-upload","forms","wpforms","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffile-upload-for-wpforms.1.1.0.zip",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":18,"tested_up_to":94,"requires_at_least":18,"requires_php":18,"tags":95,"homepage":99,"download_link":100,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":101},"extrawatch-pro","ExtraWatch PRO (Live Stats, Heatmap, Click tracking, Download Monitor and more)","2.3.2697 PRO","matto3c","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatto3c\u002F","\u003Cp>Analyze your visitor behaviour, optimize website and then increase conversions and sales. Once called the “Swiss Army Knife” for every WordPress website. See map of clicks on Heatmap, Facebook, Twitter and other Media\u003Cbr \u002F>\nIf you’re using static plugins like WP Slimstat, this plugin will give you completely different real-time experience.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Support\u003C\u002Fstrong>\u003Cbr \u002F>\n  The ExtraWatch team does not provide support for the plugin on the WordPress.org forums. Support is available to people who bought the \u003Ca href=\"https:\u002F\u002Fwww.extrawatch.com\u002Fbuy\u002F\" rel=\"nofollow ugc\">PRO version of the plugin\u003C\u002Fa> only.\u003Cbr \u002F>\n  Note that the ExtraWatch PRO plugin has several extra features too so it might be well worth your investment!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FOELeZHt8kbE?version=3&rel=0&showsearch=0&showinfo=0&iv_load_policy=1&fs=1&hl=en-US&autohide=2&vq=hd1080&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>PRO version features:\u003C\u002Fh4>\n\u003Ch4>Android mobile app\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>access your stats with one-click from your mobile screen\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>See map of clicks on Heatmap\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>see the most “active” spots of your website, optimize page to get better conversions and sales\u003C\u002Fli>\n\u003Cli>monitoring of unique ids of clicked elements and possibility to set them as goals and watch how it changes in time\u003C\u002Fli>\n\u003Cli>tracks also link clicks\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Monitor Downloaded files\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>transparent way how to monitor which files your users have downloaded\u003C\u002Fli>\n\u003Cli>interactive HTML5 line chart\u003C\u002Fli>\n\u003Cli>referer monitoring – from where was file referenced (your own site or 3rd party site)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Monitor User activity\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>detect last user activity\u003C\u002Fli>\n\u003Cli>report and send alert emails when users share same login from different IP\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Facebook, Twitter and other Media\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>detection from where your users came from such as: facebook, twitter, RSS, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Mobile devices detection\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>detect most common Android, iOS and other devices and their types\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Check Search Engines Reports\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>check percentage of traffic from search engines\u003C\u002Fli>\n\u003Cli>list of keywords by which users found your website and their stats\u003C\u002Fli>\n\u003Cli>increase and decrease of search result position and their trends\u003C\u002Fli>\n\u003Cli>list of most common unique keyphrases so you can export them to 3rd party tool to monitor and increase search rank position\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Traffic Flow\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>an interactive HTML5 chart of flow of traffic between your pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Directory Sizes\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>you can monitor which other extensions are taking up your hosting space\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Database Status\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>monitoring of increase \u002F decrease of database table sizes in time\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Front-end widgets\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>displays number of visits per specific time period\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Purchase the ExtraWatch PRO lifetime license:\u003Cbr \u002F>\nhttps:\u002F\u002Fwww.extrawatch.com\u002Fbuy?utm_campaign=&utm_source=wordpress.org&utm_medium=web&utm_content=wp_plugin_page\u003C\u002Fp>\n\u003Ch4>Live Stats\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>allows you to “watch” your visitors as they come to your website in real time\u003C\u002Fli>\n\u003Cli>total time of each user session\u003C\u002Fli>\n\u003Cli>monitor when user has left the website, marking session as inactive\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Nightly Email Reports\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>summary report sent overnight so you can chech how your site performs in the morning\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Goals\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>allows you to track various types of user actions, such as: visited page, page title, username, IP address, came from, country, URL and Form parameters, option to block or redirect such users\u003C\u002Fli>\n\u003Cli>import \u002F export goals\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Graphs\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>section contains daily and weekly bar charts for pages, goals, users .. etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Anti-spam\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>contains list of pre-defined spam words and blocked IP addresses, you can add your “bad words” into this list based on which the IP addresses will be blocked from your website\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>History\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>same as live stats but for previous days\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Settings\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>various configuration params + 32 world languages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Other\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>asynchronous tracking – does not affect page speed\u003C\u002Fli>\n\u003Cli>possibility to use also cloud-based version which stores data on 3rd party server\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Not found any other feature?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>ask for it using live chat or open a support ticke\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information and demos please visit: http:\u002F\u002Fwww.extrawatch.com\u003C\u002Fp>\n\u003Cul>\n\u003Cli>translations: brazilian portuguese, dutch, french, german, greek, russian, slovak, slovenian, spanish, swedish, czech, danish, lithuanian, polish italian, turkish, latvian, ukrainian, bulgarian\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Complete description of all features:\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.extrawatch.com\u002Ffeatures\u002F\u003C\u002Fp>\n\u003Cp>Watch the demos here:\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.extrawatch.com\u002Fdemos\u002F\u003C\u002Fp>\n\u003Cp>Live working demo deployed at:\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.codegravitydemo.com\u002Fwordpress\u002FPRO\u002F\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fwww.codegravitydemo.com\u002Fwordpress\u002FPRO\u002Fwp-admin\u002F\u003C\u002Fp>\n\u003Cp>username: admin\u003Cbr \u002F>\npassword: demo\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","Optimize website and increase sales. Watch your visitors in real time, Click Heatmap, Conversion Tracking, Download monitor, Anti-spam, Email Reports",30,40218,80,12,"5.4.19",[96,97,21,22,98],"analytics","slimstat","wp-slimstat","http:\u002F\u002Fwww.extrawatch.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fextrawatch-pro.zip","2026-03-15T10:48:56.248Z",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":112,"num_ratings":113,"last_updated":114,"tested_up_to":73,"requires_at_least":115,"requires_php":116,"tags":117,"homepage":120,"download_link":121,"security_score":122,"vuln_count":14,"unpatched_count":28,"last_vuln_date":123,"fetched_at":30},"burst-statistics","Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative)","3.2.3","Burst Statistics B.V.","https:\u002F\u002Fprofiles.wordpress.org\u002Fburstbv\u002F","\u003Ch4>Finally, analytics that you’ll actually use.\u003C\u002Fh4>\n\u003Cp>Google Analytics is overkill. Other WordPress statistics plugins are cluttered and confusing. You just want to know what’s happening on your site – without a data science degree.\u003C\u002Fp>\n\u003Cp>Burst Statistics gives you a clean, intuitive analytics dashboard focused on the metrics that actually matter. \u003Cstrong>No external accounts. No complex setup. Install, activate, and understand your traffic in seconds.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Trusted by \u003Cstrong>200,000+ WordPress sites\u003C\u002Fstrong>. Built by the experienced team behind UpdraftPlus, WP-Optimize, and All-In-One Security.\u003C\u002Fp>\n\u003Ch4>What our users are saying\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>“Finally, an analytics plugin I can actually explain to clients.”\u003Cbr \u002F>\n  — @anguskeystone on wordpress.org\u003C\u002Fp>\n\u003Cp>“I tried WP Statistics and Independent Analytics, but they’re overloaded and confusing. Burst’s UI is intuitive and focused on what matters to me.”\u003Cbr \u002F>\n  — @vallered on wordpress.org\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Why Burst Statistics?\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Designed to be actionable\u003C\u002Fstrong>\u003Cbr \u002F>\nOther analytics plugins throw everything at you. Burst shows what matters — visitors, pageviews, referrers, top pages — in a dashboard you’ll actually use. No overload of data. No confusing menus.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Privacy-first by design\u003C\u002Fstrong>\u003Cbr \u002F>\nAll statistics stay on your server. No external tracking. Your data is yours – we never see it without your explicit permission.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Zero setup friction\u003C\u002Fstrong>\u003Cbr \u002F>\nInstall, activate, done. No Google accounts, no tracking codes, no configuration headaches. Start seeing live visitors immediately.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Built for WordPress\u003C\u002Fstrong>\u003Cbr \u002F>\nNot a port from another platform. Designed specifically for WordPress with native performance and seamless integration.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Fast and lightweight\u003C\u002Fstrong>\u003Cbr \u002F>\nOptimized database queries, no bloated scripts (\u003C4kb tracking script), no external dependencies slowing down your pages. Designed to track accurately even when using aggressive server-side caching.\u003C\u002Fp>\n\u003Cp>\u003Ch4>Features\u003C\u002Fh4>\n\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Understand your traffic\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View table of top performing pages and posts\u003C\u002Fli>\n\u003Cli>Track key metrics (Visitors, Sessions, Pageviews, Bounce Rate)\u003C\u002Fli>\n\u003Cli>Breakdown of visitors by device (Desktop, Tablet, Mobile)\u003C\u002Fli>\n\u003Cli>Filter data by custom date ranges\u003C\u002Fli>\n\u003Cli>Compare traffic over time\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Real-time analytics\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Identify the real-time source for live visitors\u003C\u002Fli>\n\u003Cli>View the specific pages users are visiting now\u003C\u002Fli>\n\u003Cli>See a live count of active users on your site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>See what content performs\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Top pages and posts ranked by views\u003C\u002Fli>\n\u003Cli>Compare any date range\u003C\u002Fli>\n\u003Cli>Track individual page performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Custom conversion tracking\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Track views, clicks and hooks\u003C\u002Fli>\n\u003Cli>Track WooCommerce sales\u003C\u002Fli>\n\u003Cli>Track custom events or hooks\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Privacy without compromise\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>100% self-hosted — all statistics stored locally in your WordPress database\u003C\u002Fli>\n\u003Cli>Cookieless tracking option (no consent banner required in some countries)\u003C\u002Fli>\n\u003Cli>Designed to support GDPR, CCPA, DSGVO, AVG, RGPD, and PECR compliance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Stay informed\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Weekly or monthly email reports delivered to your inbox\u003C\u002Fli>\n\u003Cli>Compare periods to spot trends\u003C\u002Fli>\n\u003Cli>Get notified when tracking does not work\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>From the creators of UpdraftPlus, WP Optimize and All In One Security\u003C\u002Fh4>\n\u003Cp>Burst Statistics was created by experienced developers who also created:\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fupdraftplus\u002F\" rel=\"ugc\">UpdraftPlus: WP Backup & Migration Plugin\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fall-in-one-wp-security-and-firewall\u002F\" rel=\"ugc\">All-In-One Security (AIOS) – Security and Firewall\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-optimize\u002F\" rel=\"ugc\">WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Who is Burst for?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Bloggers & content creators\u003C\u002Fstrong> — See which posts resonate with your audience\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Small business owners\u003C\u002Fstrong> — Understand your traffic without complexity\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce stores\u003C\u002Fstrong> — Track visitor behavior and sales (Burst Pro – Business plan)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Agencies & freelancers\u003C\u002Fstrong> — Manage analytics for your clients (Burst Pro – Agency plan)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Privacy-conscious site owners\u003C\u002Fstrong> — GDPR-compliant stats without consent banners\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Anyone tired of Google Analytics\u003C\u002Fstrong> — Get clarity instead of confusion\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Unlock comprehensive insights into your website’s user behaviour with Burst Pro. Benefit from advanced features designed to improve performance, boost engagement, and drive conversions. \u003Ca href=\"https:\u002F\u002Fburst-statistics.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Get Burst Pro now.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Free vs Pro\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Burst Statistics (Free)\u003C\u002Fstrong> includes everything you need to understand your website traffic: visitors, pageviews, referrers, top content, device stats, goal tracking, email reports, and more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Burst Pro\u003C\u002Fstrong> adds advanced features for businesses and professionals:\u003C\u002Fp>\n\u003Cp>CREATOR PLAN\u003Cbr \u002F>\n* UTM campaign tracking — See which marketing efforts drive results\u003Cbr \u002F>\n* Geographic data — Country and city-level visitor insights\u003Cbr \u002F>\n* Advanced filtering — Segment data by any dimension\u003Cbr \u002F>\n* Data archiving settings — Keep your database lean automatically\u003Cbr \u002F>\n* Priority support — Direct contact with our developers (You’ll speak to actual humans!)\u003C\u002Fp>\n\u003Cp>BUSINESS PLAN\u003Cbr \u002F>\n* Everything in the creator plan +\u003Cbr \u002F>\n* Full sales dashboard — Understand what content brings in the most revenue\u003Cbr \u002F>\n* Revenue attribution — Connect WooCommerce sales to traffic sources\u003C\u002Fp>\n\u003Cp>AGENCY PLAN\u003Cbr \u002F>\n* Everything in the business plan +\u003Cbr \u002F>\n* Reporting — Generate shareable reports\u003C\u002Fp>\n\u003Cp>All Burst Pro plans include \u003Cstrong>priority support\u003C\u002Fstrong>.  You’ll have direct contact with our developers (You’ll speak to actual humans!)\u003C\u002Fp>\n\u003Ch4>Learn More\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fburst-statistics.com\u002Fburst-statistics-vs-google-analytics\u002F\" rel=\"nofollow ugc\">Burst Statistics vs Google Analytics\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fburst-statistics.com\u002Fwhy-is-burst-privacy-friendly\u002F\" rel=\"nofollow ugc\">Privacy & GDPR Compliance\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fburst-statistics.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Burst Pro Pricing\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy and Data Sharing\u003C\u002Fh4>\n\u003Cp>Burst Statistics includes an \u003Cstrong>optional\u003C\u002Fstrong> data sharing program. It is disabled by default. You can enable it under Burst Statistics \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Data Sharing, and you can turn it off again at any time from the same location.\u003Cbr \u002F>\nWhen enabled, the plugin sends a small set of aggregated, anonymized metrics to Burst Statistics’ servers once per month. This includes traffic statistics (visitors, pageviews, bounce rate, session duration), database row counts and query performance timings. No personal data, IP addresses, domain names, or visitor information is ever transmitted. All data is aggregated on your server before it leaves, making it impossible to trace back to your website or any individual user.\u003C\u002Fp>\n\u003Cp>We use this data to:\u003Cbr \u002F>\n* build anonymous industry benchmarks so you can compare your site’s performance against peers;\u003Cbr \u002F>\n* understand which features are most used, so we can prioritize development effectively;\u003Cbr \u002F>\n* know which WordPress and PHP versions are in active use, so we can make informed support decisions;\u003Cbr \u002F>\n* identify slow database queries across real-world installs, so we can improve plugin performance for everyone.\u003C\u002Fp>\n\u003Cp>For the complete list of data fields collected and full details on how the data is used, please read our \u003Ca href=\"https:\u002F\u002Fburst-statistics.com\u002Fhow-we-handle-anonymous-usage-data\u002F\" rel=\"nofollow ugc\">Data Sharing Policy\u003C\u002Fa>.\u003Cbr \u002F>\nThis feature connects to: https:\u002F\u002Fapi.burst-statistics.com\u003C\u002Fp>\n\u003Ch4>Installation\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Go to \u003Cstrong>Plugins \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Add New\u003C\u002Fstrong> in your WordPress dashboard\u003C\u002Fli>\n\u003Cli>Search for \u003Cstrong>Burst\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Click \u003Cstrong>Install Now\u003C\u002Fstrong>, then \u003Cstrong>Activate\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Visit \u003Cstrong>Statistics \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Dashboard\u003C\u002Fstrong> to see your analytics\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>That’s it. No external accounts. No tracking codes to paste. Burst starts collecting statistics immediately.\u003C\u002Fp>\n","Analytics you'll actually use. Privacy-friendly, zero config, and designed to be actionable. Get insights, not just raw data.",200000,7013207,98,173,"2026-03-12T07:52:00.000Z","6.4","8.0",[96,118,119,21,22],"gdpr","privacy","https:\u002F\u002Fwww.wordpress.org\u002Fplugins\u002Fburst-statistics","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fburst-statistics.3.2.3.zip",96,"2025-06-27 00:00:00",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":122,"num_ratings":134,"last_updated":135,"tested_up_to":73,"requires_at_least":136,"requires_php":137,"tags":138,"homepage":140,"download_link":141,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"statify","Statify","1.8.5","pluginkollektiv","https:\u002F\u002Fprofiles.wordpress.org\u002Fpluginkollektiv\u002F","\u003Cp>Statify provides a straightforward and compact access to the number of site views. It is privacy-friendly as it uses neither cookies nor a third party.\u003C\u002Fp>\n\u003Cp>An interactive chart is followed by lists of the most common reference sources and target pages. The period of statistics and length of lists can be set directly in the dashboard widget.\u003C\u002Fp>\n\u003Ch3>Data Privacy\u003C\u002Fh3>\n\u003Cp>In direct comparison to statistics services such as \u003Cem>Google Analytics\u003C\u002Fem>, \u003Cem>WordPress.com Stats\u003C\u002Fem> and \u003Cem>Matomo (Piwik)\u003C\u002Fem> \u003Cem>Statify\u003C\u002Fem> doesn’t process and store personal data as e.g. IP addresses – \u003Cem>Statify\u003C\u002Fem> counts site views, not visitors.\u003C\u002Fp>\n\u003Cp>Absolute privacy compliance coupled with transparent procedures: A locally in WordPress created database table consists of only four fields (ID, date, source, target) and can be viewed at any time, cleaned up and cleared by the administrator.\u003C\u002Fp>\n\u003Cp>Due to this tracking approach, Statify is 100% compliant with GDPR and serves as an lightweight alternative to other tracking services.\u003C\u002Fp>\n\u003Ch3>Display of the widget\u003C\u002Fh3>\n\u003Cp>The plugin configuration can be changed directly in the \u003Cem>Statify\u003C\u002Fem> Widget on the dashboard by clicking the \u003Cem>Configure\u003C\u002Fem> link.\u003C\u002Fp>\n\u003Cp>The amount of links shown in the \u003Cem>Statify\u003C\u002Fem> Widget can be set as well as the option to only count views from today. Of course, older entries are not deleted when changing this setting.\u003C\u002Fp>\n\u003Cp>The statistics for the dashboard widget are cached for four minutes.\u003C\u002Fp>\n\u003Ch3>Period of data saving\u003C\u002Fh3>\n\u003Cp>\u003Cem>Statify\u003C\u002Fem> stores the data only for a limited period (default: two weeks), longer intervals can be selected as option in the widget. Data which is older than the selected period is deleted by a daily cron job.\u003C\u002Fp>\n\u003Cp>An increase in the database volume can be expected because all statistic values are collected and managed in the local WordPress database (especially if you increase the period of data saving).\u003C\u002Fp>\n\u003Ch3>JavaScript tracking for caching compatibility\u003C\u002Fh3>\n\u003Cp>For compatibility with caching plugins like \u003Ca href=\"http:\u002F\u002Fcachify.de\" rel=\"nofollow ugc\">Cachify\u003C\u002Fa> \u003Cem>Statify\u003C\u002Fem> offers an optional switchable tracking via JavaScript. This function allows reliable count of cached blog pages.\u003C\u002Fp>\n\u003Cp>For this to work correctly, the active theme has to call \u003Ccode>wp_footer()\u003C\u002Fcode>, typically in a file named \u003Ccode>footer.php\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Ch3>Skip tracking for spam referrers\u003C\u002Fh3>\n\u003Cp>The comment blacklist can be enabled to skip tracking for views with a referrer URL listed in comment blacklist, i. e. which considered as spam.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>If you’ve problems or think you’ve found a bug (e.g. you’re experiencing unexpected behavior), please post at the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fstatify\" rel=\"ugc\">support forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Active development of this plugin is handled \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpluginkollektiv\u002Fstatify\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Pull requests for documented bugs are highly appreciated.\u003C\u002Fli>\n\u003Cli>If you want to help us translate this plugin you can do so \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fstatify\" rel=\"nofollow ugc\">on WordPress Translate\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Visitor statistics for WordPress with focus on data protection, transparency and clarity. Perfect as a widget in your WordPress Dashboard.",100000,2377836,50,"2025-12-21T16:02:00.000Z","4.7","5.2",[96,139,119,21,22],"pageviews","https:\u002F\u002Fstatify.pluginkollektiv.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatify.1.8.5.zip",{"attackSurface":143,"codeSignals":194,"taintFlows":302,"riskAssessment":303,"analyzedAt":316},{"hooks":144,"ajaxHandlers":186,"restRoutes":191,"shortcodes":192,"cronEvents":193,"entryPointCount":37,"unprotectedCount":37},[145,150,154,158,162,169,172,175,179,183],{"type":146,"name":147,"callback":148,"file":149,"line":71},"action","admin_menu","add_submenu_page","core\\class-admin-menu.php",{"type":146,"name":151,"callback":152,"file":153,"line":90},"init","load","core\\class-module-manager.php",{"type":146,"name":155,"callback":156,"file":153,"line":157},"admin_init","setup",33,{"type":146,"name":159,"callback":159,"priority":11,"file":160,"line":161},"screen_settings","core\\class-module-screen-options.php",15,{"type":163,"name":164,"callback":165,"priority":166,"file":167,"line":168},"filter","wp_uploads_stats_modules","sort_modules",20,"core\\class-module-settings.php",19,{"type":146,"name":170,"callback":170,"file":171,"line":27},"plugins_loaded","wp-uploads-stats.php",{"type":163,"name":164,"callback":173,"file":171,"line":174},"get_modules",114,{"type":146,"name":176,"callback":177,"file":171,"line":178},"wp_uploads_stats_render","render_modules",117,{"type":146,"name":180,"callback":181,"file":171,"line":182},"admin_enqueue_scripts","enqueue_scripts",120,{"type":146,"name":180,"callback":184,"file":171,"line":185},"enqueue_styles",123,[187],{"action":188,"nopriv":189,"callback":190,"hasNonce":189,"hasCapCheck":189,"file":167,"line":71},"wpus_save_module_settings",false,"handle_save",[],[],[],{"dangerousFunctions":195,"sqlUsage":196,"outputEscaping":215,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":301},[],{"prepared":28,"raw":197,"locations":198},6,[199,203,205,207,209,211],{"file":200,"line":201,"context":202},"modules\\attachment-author\\module.php",17,"$wpdb->get_results() with variable interpolation",{"file":204,"line":201,"context":202},"modules\\attachment-by-month-year\\module.php",{"file":206,"line":201,"context":202},"modules\\attachment-by-year\\module.php",{"file":208,"line":201,"context":202},"modules\\attachment-post-type\\module.php",{"file":210,"line":201,"context":202},"modules\\attachment-type\\module.php",{"file":212,"line":213,"context":214},"modules\\overview\\module.php",41,"$wpdb->get_col() with variable interpolation",{"escaped":197,"rawEcho":216,"locations":217},59,[218,222,224,227,228,230,231,233,234,235,236,238,239,241,243,244,247,248,249,250,251,253,254,255,256,258,259,260,261,263,264,266,268,269,270,271,273,274,275,276,278,279,280,281,283,284,285,287,288,289,290,292,293,294,295,296,298,299,300],{"file":219,"line":220,"context":221},"core\\class-module-base.php",84,"raw output",{"file":223,"line":14,"context":221},"templates\\main.php",{"file":225,"line":226,"context":221},"templates\\module-attachment-author-chart.php",5,{"file":225,"line":226,"context":221},{"file":225,"line":229,"context":221},9,{"file":225,"line":229,"context":221},{"file":232,"line":226,"context":221},"templates\\module-attachment-author.php",{"file":232,"line":226,"context":221},{"file":232,"line":168,"context":221},{"file":232,"line":166,"context":221},{"file":237,"line":197,"context":221},"templates\\module-attachment-by-month-year.php",{"file":237,"line":197,"context":221},{"file":237,"line":240,"context":221},14,{"file":237,"line":242,"context":221},18,{"file":237,"line":168,"context":221},{"file":245,"line":246,"context":221},"templates\\module-attachment-by-year-chart.php",8,{"file":245,"line":246,"context":221},{"file":245,"line":93,"context":221},{"file":245,"line":93,"context":221},{"file":245,"line":93,"context":221},{"file":252,"line":226,"context":221},"templates\\module-attachment-by-year.php",{"file":252,"line":226,"context":221},{"file":252,"line":168,"context":221},{"file":252,"line":166,"context":221},{"file":257,"line":226,"context":221},"templates\\module-attachment-post-type-chart.php",{"file":257,"line":226,"context":221},{"file":257,"line":229,"context":221},{"file":257,"line":229,"context":221},{"file":262,"line":226,"context":221},"templates\\module-attachment-post-type.php",{"file":262,"line":226,"context":221},{"file":262,"line":265,"context":221},22,{"file":267,"line":226,"context":221},"templates\\module-attachment-type-chart.php",{"file":267,"line":226,"context":221},{"file":267,"line":229,"context":221},{"file":267,"line":229,"context":221},{"file":272,"line":226,"context":221},"templates\\module-attachment-type.php",{"file":272,"line":226,"context":221},{"file":272,"line":168,"context":221},{"file":272,"line":166,"context":221},{"file":277,"line":226,"context":221},"templates\\module-file-type-chart.php",{"file":277,"line":226,"context":221},{"file":277,"line":229,"context":221},{"file":277,"line":229,"context":221},{"file":282,"line":34,"context":221},"templates\\module-file-type.php",{"file":282,"line":34,"context":221},{"file":282,"line":265,"context":221},{"file":286,"line":197,"context":221},"templates\\module-overview.php",{"file":286,"line":197,"context":221},{"file":286,"line":240,"context":221},{"file":286,"line":161,"context":221},{"file":291,"line":246,"context":221},"templates\\module-size-by-year-chart.php",{"file":291,"line":246,"context":221},{"file":291,"line":93,"context":221},{"file":291,"line":93,"context":221},{"file":291,"line":93,"context":221},{"file":297,"line":226,"context":221},"templates\\module-size-by-year.php",{"file":297,"line":226,"context":221},{"file":297,"line":168,"context":221},{"file":297,"line":166,"context":221},[],[],{"summary":304,"deductions":305},"The wp-uploads-stats v1.0.3 plugin exhibits a concerning security posture due to significant vulnerabilities in its code analysis. The presence of one unprotected AJAX handler represents a major entry point for potential attacks without any authentication or authorization mechanisms. Furthermore, the complete absence of nonce checks on this AJAX handler exacerbates the risk, allowing for cross-site request forgery (CSRF) attacks. The code analysis also reveals a substantial lack of security best practices, particularly with 100% of SQL queries not utilizing prepared statements, which can lead to SQL injection vulnerabilities. A mere 9% of outputs being properly escaped is also a significant weakness, increasing the risk of cross-site scripting (XSS) attacks.\n\nWhile the plugin has no recorded vulnerability history (CVEs), this is not indicative of a secure plugin, especially given the current code quality. The lack of history might simply mean it hasn't been extensively audited or exploited yet. The absence of taint analysis results and dangerous functions might be due to the scope of the static analysis rather than genuine security. The plugin's strengths are minimal, perhaps its small attack surface and lack of file operations or external HTTP requests offer some limited protection. However, the critical findings in the code analysis, particularly the unprotected AJAX handler and widespread unescaped outputs and raw SQL, far outweigh these minor strengths, rendering the plugin highly risky for deployment.",[306,308,310,312,314],{"reason":307,"points":11},"Unprotected AJAX handler detected",{"reason":309,"points":11},"Missing nonce checks on AJAX handlers",{"reason":311,"points":226},"SQL queries not using prepared statements",{"reason":313,"points":34},"Low percentage of properly escaped output",{"reason":315,"points":226},"No capability checks on entry points","2026-03-16T23:57:04.629Z",{"wat":318,"direct":328},{"assetPaths":319,"generatorPatterns":322,"scriptPaths":323,"versionParams":325},[320,321],"\u002Fwp-content\u002Fplugins\u002Fwp-uploads-stats\u002Fcss\u002F","\u002Fwp-content\u002Fplugins\u002Fwp-uploads-stats\u002Fjs\u002F",[],[324],"\u002Fwp-content\u002Fplugins\u002Fwp-uploads-stats\u002Fjs\u002Fwp-uploads-stats.js",[326,327],"wp-uploads-stats\u002Fcss\u002Fwp-uploads-stats.css?ver=","wp-uploads-stats\u002Fjs\u002Fwp-uploads-stats.js?ver=",{"cssClasses":329,"htmlComments":330,"htmlAttributes":331,"restEndpoints":332,"jsGlobals":333,"shortcodeOutput":335},[],[],[],[],[334],"WP_Uploads_Stats",[]]