[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fXTHAraddHh7-4eM7MbElsFlyFYzJsepJdeiQcE7lKZM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":16,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":130,"fingerprints":199},"zedna-auto-update","Zedna Auto Update","1.0","Radek Mezulanik","https:\u002F\u002Fprofiles.wordpress.org\u002Fzedna\u002F","\u003Cp>Just check what updates you want to be automatic and don’t care anymore.\u003C\u002Fp>\n","Allow automatic update for Core, Plugins, Themes, Translations and send a notification about that.",0,867,"2020-06-26T11:34:00.000Z","5.4.19","5.0","",[18,19,20,21,22],"auto","core","theme","translation","update","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzedna-auto-update.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"zedna",15,570,87,2856,70,"2026-04-04T06:25:36.093Z",[37,60,79,96,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":16,"tags":52,"homepage":58,"download_link":59,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"wp-automatic-updates","WP Automatic Updates","1.1.6","Ankit Singla","https:\u002F\u002Fprofiles.wordpress.org\u002Faksingla\u002F","\u003Cp>An easy-to-use plugin settings panel where you can set automatic updates on or off for themes, plugins, and core updates from plugin options.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>In a matter of few clicks, you will be able to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Set Minor\u002FMajor Core Updates\u003C\u002Fli>\n\u003Cli>Set Plugin Updates\u003C\u002Fli>\n\u003Cli>Set Theme Updates\u003C\u002Fli>\n\u003Cli>Set Translations Updates\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Dutch\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress automatic updates settings through backend options. Just install, setup and forget.",400,27182,100,2,"2018-08-16T12:22:00.000Z","4.8.28","3.7",[53,54,55,56,57],"automatic-updates","background-updates","core-updates","plugin-updates","translation-updates","http:\u002F\u002Fwww.omaksolutions.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-automatic-updates.1.1.6.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":47,"num_ratings":48,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":16,"tags":73,"homepage":77,"download_link":78,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"wp-excerpt-settings","WP Excerpt Settings","1.1.2","Yslo","https:\u002F\u002Fprofiles.wordpress.org\u002Fyslo\u002F","\u003Cp>Allows you the ability to set Excerpt through Settings panel.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set text to symbolize the excerpt end\u003C\u002Fli>\n\u003Cli>Set words length used by automatic excerpt\u003C\u002Fli>\n\u003Cli>Use default WordPress behaviors\u003C\u002Fli>\n\u003Cli>Excerpt settings added on Reading Settings (Settings > Reading)\u003C\u002Fli>\n\u003Cli>Contextual Help\u003C\u002Fli>\n\u003Cli>Translation MO\u002FPO files\u003C\u002Fli>\n\u003Cli>Desactivate restore default WordPress behavior\u003C\u002Fli>\n\u003Cli>Uninstall restore default WordPress behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress Excerpt through UI (User Interface).",200,8475,"2017-12-20T22:37:00.000Z","4.9.29","3.0",[74,75,19,20,76],"admin","automatic","updates","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-excerpt-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-excerpt-settings.1.1.2.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":47,"downloaded":87,"rating":11,"num_ratings":11,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":94,"download_link":95,"security_score":47,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"auto-update","Auto Update","1.0.2","Valeriu Tihai","https:\u002F\u002Fprofiles.wordpress.org\u002Fvaleriutihai\u002F","\u003Cp>Auto Update is built for site owners who want WordPress to stay current without logging in to run updates manually.\u003C\u002Fp>\n\u003Cp>It keeps WordPress core, plugins, and themes updated automatically, which helps reduce maintenance work, apply security fixes sooner, and keep the site closer to the latest stable releases.\u003C\u002Fp>\n\u003Cp>Once activated, it enables both minor and major core updates and allows installed plugins and themes to update in the background.\u003C\u002Fp>\n\u003Cp>There is no settings page. Activate the plugin and let WordPress handle updates automatically.\u003C\u002Fp>\n","Keeps WordPress core, plugins, and themes updated automatically to reduce manual maintenance and improve security.",3683,"2026-03-14T02:42:00.000Z","6.9.4","5.8","7.4",[53,54,55,56,93],"theme-updates","https:\u002F\u002Fstylishwp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-update.1.0.2.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":47,"num_ratings":106,"last_updated":107,"tested_up_to":50,"requires_at_least":108,"requires_php":16,"tags":109,"homepage":112,"download_link":113,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"l7-automatic-updates","L7 Automatic Updates","2.0.0","Jeff","https:\u002F\u002Fprofiles.wordpress.org\u002Fjeffreysmattson\u002F","\u003Cp>A simple plugin that gives you the flexibility to set whether you want individual plugins to update or not.  This is something I find very useful on many of my sites.  Some plugins have been edited by previous Developers and they cannot be updated.  Other plugins on the same site still need to be updated.  You can set this to update the ones that can be updated automatically and don’t need specific attention.\u003C\u002Fp>\n\u003Cp>Choose whether you want the updater to update even though you are using a version control system such as SVN or git.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Users can set automatic updates:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>For Major WordPress Releases\u003C\u002Fli>\n\u003Cli>For Minor WordPress Releases\u003C\u002Fli>\n\u003Cli>For Themes\u003C\u002Fli>\n\u003Cli>For All Plugins\u003C\u002Fli>\n\u003Cli>For Individual Plugins\u003C\u002Fli>\n\u003Cli>Change notification email address.\u003C\u002Fli>\n\u003C\u002Ful>\n","Set individual plugins, major and minor WordPress releases, themes and all plugins to automatically update.",10,1885,1,"2017-09-02T03:51:00.000Z","3.8.2",[75,19,110,111,76],"plugins","themes","http:\u002F\u002Flayer7web.com\u002Fprojects\u002Fl7-automatic-updates","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fl7-automatic-updates.zip",{"slug":115,"name":116,"version":6,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":11,"downloaded":121,"rating":11,"num_ratings":11,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":125,"tags":126,"homepage":128,"download_link":129,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"disable-wp-automatic-updates","Disable Plugins, Themes and Core Updates","Ciprian Craciun","https:\u002F\u002Fprofiles.wordpress.org\u002Fevalcraciun\u002F","\u003Cp>This plugin disable plugins, themes and core updates for WordPress and also the notifications.\u003C\u002Fp>\n\u003Cp>It’s \u003Cem>very\u003C\u002Fem> important that you keep your WordPress theme, core and plugins up to date. If you don’t, your blog or website could\u003Cbr \u002F>\nbe \u003Cstrong>susceptible to security vulnerabilities\u003C\u002Fstrong> or performance issues.\u003C\u002Fp>\n\u003Cp>If you use this plugin, make sure you keep yourself up to date with new releases of your active WordPress version, plugins\u003Cbr \u002F>\nand themes and update them as new versions are released (simply by deactivating this plugin for a short time).\u003C\u002Fp>\n","This plugin disable plugins, themes and core updates for WordPress and also the notifications.",1165,"2018-12-10T13:25:00.000Z","5.0.25","2.8","5.6",[80,19,127,20,76],"disable","http:\u002F\u002Fstefaniq.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-wp-automatic-updates.zip",{"attackSurface":131,"codeSignals":181,"taintFlows":191,"riskAssessment":192,"analyzedAt":198},{"hooks":132,"ajaxHandlers":177,"restRoutes":178,"shortcodes":179,"cronEvents":180,"entryPointCount":11,"unprotectedCount":11},[133,139,143,147,152,155,158,161,164,167,170,173],{"type":134,"name":135,"callback":136,"file":137,"line":138},"action","admin_menu","zedna_auto_update_menu","zedna-autoupdate.php",19,{"type":134,"name":140,"callback":141,"file":137,"line":142},"admin_init","zedna_auto_update_settings",92,{"type":134,"name":144,"callback":145,"file":137,"line":146},"plugins_loaded","loadTextDomain",108,{"type":148,"name":149,"callback":150,"file":137,"line":151},"filter","auto_update_core","__return_true",112,{"type":148,"name":153,"callback":150,"file":137,"line":154},"allow_dev_auto_core_updates",113,{"type":148,"name":156,"callback":150,"file":137,"line":157},"allow_minor_auto_core_updates",114,{"type":148,"name":159,"callback":150,"file":137,"line":160},"allow_major_auto_core_updates",115,{"type":148,"name":162,"callback":150,"file":137,"line":163},"auto_update_theme",119,{"type":148,"name":165,"callback":150,"file":137,"line":166},"auto_update_plugin",123,{"type":148,"name":168,"callback":150,"file":137,"line":169},"auto_update_translation",127,{"type":148,"name":171,"callback":150,"file":137,"line":172},"auto_core_update_send_email",132,{"type":134,"name":174,"callback":175,"priority":104,"file":137,"line":176},"wp_loaded","zedna_auto_update",135,[],[],[],[],{"dangerousFunctions":182,"sqlUsage":183,"outputEscaping":185,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":190},[],{"prepared":11,"raw":11,"locations":184},[],{"escaped":11,"rawEcho":106,"locations":186},[187],{"file":137,"line":188,"context":189},73,"raw output",[],[],{"summary":193,"deductions":194},"The 'zedna-auto-update' v1.0 plugin exhibits a strong security posture in several key areas. The static analysis reveals a remarkably small attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, the code demonstrates a commitment to secure data handling by exclusively using prepared statements for all SQL queries.  The absence of dangerous functions, file operations, and external HTTP requests also contributes positively to its security. The lack of any recorded vulnerabilities in its history is a significant strength, suggesting a history of stable and secure development.  However, a critical concern arises from the output escaping. With one total output identified and none being properly escaped, there is a significant risk of Cross-Site Scripting (XSS) vulnerabilities. This oversight can allow malicious code to be injected into the plugin's output, potentially impacting users.\n\nWhile the plugin is to be commended for its minimal attack surface and secure SQL practices, the unescaped output represents a tangible and potentially severe risk. The taint analysis showing zero flows, while positive, is limited by the absence of any identified entry points or potentially vulnerable code constructs. In conclusion, the plugin has demonstrated good security practices in its foundational code and history, but the unescaped output is a glaring weakness that needs immediate attention to prevent XSS attacks. Addressing this specific issue would significantly improve the plugin's overall security.",[195],{"reason":196,"points":197},"Unescaped output detected",6,"2026-03-17T06:49:53.938Z",{"wat":200,"direct":205},{"assetPaths":201,"generatorPatterns":202,"scriptPaths":203,"versionParams":204},[],[],[],[],{"cssClasses":206,"htmlComments":209,"htmlAttributes":210,"restEndpoints":216,"jsGlobals":217,"shortcodeOutput":218},[207,208],"wrap","form-table",[],[211,212,213,214,215],"name=\"zedna_update_core\"","name=\"zedna_update_plugins\"","name=\"zedna_update_themes\"","name=\"zedna_update_translation\"","name=\"zedna_update_send_email\"",[],[],[]]