WP Beacon

WP All Import – Drag & Drop Import for CSV, XML, Excel & Google Sheets

wp-all-import · by wpallimport · wordpress.org ↗ · SVN ↗
Acquired by Soflyy (WP All Import / Oxygen Builder). New committers from that team's naming convention are expected and will not fire takeover events. source ↗
Active installs
100k+
Current version
4.0.1
Added
2012-07-24
Last updated
2026-03-04 (2mo ago)
First seen by beacon
1mo ago
Total downloads
5,325,969

Alerts (0)

No open alerts.

Show 1 resolved alert
Medium code_scan_match Resolved · code_scan_fp_class_genre_encoding 2026-05-05 11:37:49 (17d ago)
Slugwp-all-import
Finding count16
Findings
PatternKindFileLineSnippetConfidence
base64_decodebuiltinclasses/handler.php79$session_clear = \maybe_unserialize( base64_decode( $session ) );medium
base64_decodebuiltinclasses/api.php454if ( $file_type == 'images' && base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed ) {medium
base64_decodebuiltinclasses/api.php475$img = @imagecreatefromstring(base64_decode($url));medium
base64_decodebuiltinhelpers/wp_all_import_base64_decode_image.php11return base64_decode($image);medium
base64_decodebuiltinhelpers/wp_all_import_is_base64_encoded.php13$decoded = base64_decode($data, true);medium
eval_callbuiltinhelpers/functions.php80return (eval ("return ($str);")) ? $then : $else;medium
gzinflatebuiltinlibraries/wpaipclzip.lib.php3,584$v_file_content = @gzinflate($v_buffer);medium
gzinflatebuiltinlibraries/wpaipclzip.lib.php3,789$v_file_content = gzinflate($v_buffer);medium
gzinflatebuiltinlibraries/wpaipclzip.lib.php3,890if (($p_string = @gzinflate($v_data)) === false) {medium
base64_decodebuiltinmodels/import/record.php2,451$gallery_images[] = json_decode(base64_decode($img), true);medium
base64_decodebuiltinmodels/import/record.php2,952'image_url' => (base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed) ? '' : $url,medium
base64_decodebuiltinmodels/import/record.php2,962'image_url' => (base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed) ? '' : $url,medium
base64_decodebuiltinmodels/import/record.php3,087'image_url' => (base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed) ? '' : $urlmedium
createfuncbuiltincontrollers/controller/admin.php59$filter = create_function('$str', 'return "http://" == $str || "ftp://" == $str ? "" : $str;');medium
createfuncbuiltinplugin.php831$exception_handler = create_function('$e', 'trigger_error($e->getMessage(), E_USER_ERROR);');medium
Resolved sha5d228a243d81e4fe9cefa0111f81850af74ad9da
View raw JSON
{
    "slug": "wp-all-import",
    "finding_count": 16,
    "findings": [
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "classes/handler.php",
            "line": 79,
            "snippet": "$session_clear = \\maybe_unserialize( base64_decode( $session ) );",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "classes/api.php",
            "line": 454,
            "snippet": "if ( $file_type == 'images' && base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed ) {",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "classes/api.php",
            "line": 475,
            "snippet": "$img = @imagecreatefromstring(base64_decode($url));",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "helpers/wp_all_import_base64_decode_image.php",
            "line": 11,
            "snippet": "return base64_decode($image);",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "helpers/wp_all_import_is_base64_encoded.php",
            "line": 13,
            "snippet": "$decoded = base64_decode($data, true);",
            "confidence": "medium"
        },
        {
            "pattern": "eval_call",
            "kind": "builtin",
            "file": "helpers/functions.php",
            "line": 80,
            "snippet": "return (eval (\"return ($str);\")) ? $then : $else;",
            "confidence": "medium"
        },
        {
            "pattern": "gzinflate",
            "kind": "builtin",
            "file": "libraries/wpaipclzip.lib.php",
            "line": 3584,
            "snippet": "$v_file_content = @gzinflate($v_buffer);",
            "confidence": "medium"
        },
        {
            "pattern": "gzinflate",
            "kind": "builtin",
            "file": "libraries/wpaipclzip.lib.php",
            "line": 3789,
            "snippet": "$v_file_content = gzinflate($v_buffer);",
            "confidence": "medium"
        },
        {
            "pattern": "gzinflate",
            "kind": "builtin",
            "file": "libraries/wpaipclzip.lib.php",
            "line": 3890,
            "snippet": "if (($p_string = @gzinflate($v_data)) === false) {",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "models/import/record.php",
            "line": 2451,
            "snippet": "$gallery_images[] = json_decode(base64_decode($img), true);",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "models/import/record.php",
            "line": 2952,
            "snippet": "'image_url' => (base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed) ? '' : $url,",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "models/import/record.php",
            "line": 2962,
            "snippet": "'image_url' => (base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed) ? '' : $url,",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "models/import/record.php",
            "line": 3087,
            "snippet": "'image_url' => (base64_encode(base64_decode($url)) == $url && $is_base64_images_allowed) ? '' : $url",
            "confidence": "medium"
        },
        {
            "pattern": "createfunc",
            "kind": "builtin",
            "file": "controllers/controller/admin.php",
            "line": 59,
            "snippet": "$filter = create_function('$str', 'return \"http://\" == $str || \"ftp://\" == $str ? \"\" : $str;');",
            "confidence": "medium"
        },
        {
            "pattern": "createfunc",
            "kind": "builtin",
            "file": "plugin.php",
            "line": 831,
            "snippet": "$exception_handler = create_function('$e', 'trigger_error($e->getMessage(), E_USER_ERROR);');",
            "confidence": "medium"
        }
    ],
    "resolved_sha": "5d228a243d81e4fe9cefa0111f81850af74ad9da"
}

SVN committers (5)

Accounts with actual commit access to wp-all-import on plugins.svn.wordpress.org, reconstructed from svn log. This is the list that matters for ownership changes — not the readme contributors.

Committer Member since Commits First commit Latest commit
Soflyy 2012-04-16 167 2012-07-24 · r576437 2023-08-08 · r2949613
WP All Import 2015-01-15 20 2021-03-17 · r2498005 2025-01-23 · r3227124
Cory Young account 2025-01-30 12 2025-04-03 · r3265955 2026-03-04 · r3474757
ix3 2014-08-26 1 2025-12-05 · r3412580 2025-12-05 · r3412580
plugin-master 2007-03-09 1 2012-07-21 · r575416 2012-07-21 · r575416

Readme contributors (2)

Names the plugin's readme declares as contributors. A soft signal — anyone can be listed. The SVN access column is the ground-truth cross-reference: does this contributor actually commit code?

Contributor Member since SVN access Status
Soflyy 2012-04-16 167 commits Active
WP All Import 2015-01-15 20 commits Active

Versions (86 most recent)

Version Released Download
4.0.1 2026-03-04 · 2mo ago zip
4.0.0 2026-01-29 · 3mo ago zip
3.9.6 2025-10-28 · 6mo ago zip
3.9.5 2025-09-22 · 8mo ago zip
3.9.4 2025-09-09 · 8mo ago zip
3.9.3 2025-09-04 · 8mo ago zip
3.9.2 2025-06-04 · 11mo ago zip
3.9.1 2025-04-14 · 1y ago zip
3.9.0 2025-04-03 · 1y ago zip
3.8.0 2025-01-23 · 1y ago zip
3.7.9 2024-11-25 · 1y ago zip
3.7.8 2024-09-11 · 1y ago zip
3.7.7 2024-07-24 · 1y ago zip
3.7.6 2024-06-19 · 1y ago zip
3.7.5 2024-05-13 · 2y ago zip
3.7.4 2024-04-11 · 2y ago zip
3.7.4-beta-1.0 2023-12-25 · 2y ago zip
3.7.3 2023-11-08 · 2y ago zip
3.7.3-beta-1.0 2023-08-30 · 2y ago zip
3.7.2 2023-08-08 · 2y ago zip
3.7.1 2023-02-07 · 3y ago zip
3.7.0 2022-10-04 · 3y ago zip
3.6.9 2022-09-29 · 3y ago zip
3.6.8 2022-09-22 · 3y ago zip
3.6.7 2022-06-03 · 3y ago zip
3.6.6 2022-02-10 · 4y ago zip
3.6.5 2021-12-07 · 4y ago zip
3.6.4 2021-11-22 · 4y ago zip
3.6.3 2021-11-02 · 4y ago zip
3.6.2 2021-09-25 · 4y ago zip
3.6.1 2021-07-22 · 4y ago zip
3.6.0 2021-07-16 · 4y ago zip
3.5.9 2021-05-22 · 5y ago zip
3.5.8 2021-05-22 · 5y ago zip
3.5.7 2021-05-19 · 5y ago zip
3.5.6 2021-03-17 · 5y ago zip
3.5.5 2020-10-07 · 5y ago zip
3.5.4 2020-08-11 · 5y ago zip
3.5.3 2020-06-19 · 5y ago zip
3.5.2 2019-11-13 · 6y ago zip
3.5.1 2019-07-14 · 6y ago zip
3.5.0 2019-05-10 · 7y ago zip
3.4.9 2019-02-20 · 7y ago zip
3.4.8 2018-05-22 · 8y ago zip
3.4.6 2018-03-07 · 8y ago zip
3.4.7 2018-03-07 · 8y ago zip
3.4.5 2017-08-07 · 8y ago zip
3.4.4 2017-06-09 · 8y ago zip
3.4.3 2017-04-26 · 9y ago zip
3.4.2 2017-02-18 · 9y ago zip
3.4.1 2017-02-11 · 9y ago zip
3.4.0 2016-12-22 · 9y ago zip
3.3.9 2016-12-21 · 9y ago zip
3.3.8 2016-09-28 · 9y ago zip
3.3.7 2016-08-15 · 9y ago zip
3.3.6 2016-05-02 · 10y ago zip
3.3.5 2016-03-13 · 10y ago zip
3.3.4 2016-01-27 · 10y ago zip
3.3.3 2015-10-05 · 10y ago zip
3.3.2 2015-09-09 · 10y ago zip
3.3.1 2015-08-31 · 10y ago zip
3.3.0 2015-08-21 · 10y ago zip
3.2.9 2015-06-09 · 10y ago zip
3.2.8 2015-05-21 · 11y ago zip
3.2.7 2015-04-08 · 11y ago zip
3.2.6 2015-04-06 · 11y ago zip
3.2.5 2015-03-12 · 11y ago zip
3.2.4 2015-02-26 · 11y ago zip
3.2.3 2015-01-15 · 11y ago zip
3.2.0 2014-11-29 · 11y ago zip
3.2.2 2014-11-24 · 11y ago zip
3.2.1 2014-11-14 · 11y ago zip
3.1.5 2014-08-28 · 11y ago zip
3.1.4 2014-06-12 · 11y ago zip
3.1.3 2014-05-02 · 12y ago zip
3.1.2 2014-04-21 · 12y ago zip
3.1.1 2014-01-15 · 12y ago zip
3.1.0 2013-12-25 · 12y ago zip
3.0.4 2013-12-12 · 12y ago zip
3.0.3 2013-10-21 · 12y ago zip
3.0.2 2013-06-26 · 12y ago zip
3.0.1 2013-06-07 · 12y ago zip
3.0 2013-04-02 · 13y ago zip
2.14 2013-03-06 · 13y ago zip
2.13 2012-09-11 · 13y ago zip
2.12 2012-07-25 · 13y ago zip