[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBdSpUW2X1hqP4QjYXRDs7YVhXMCXeeKeIQccQxvl7dA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":17,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":140,"fingerprints":163},"allgrainbeer","AllGrain.Beer","1.0.0","Nagmay","https:\u002F\u002Fprofiles.wordpress.org\u002Fgabrielmcgovern\u002F","\u003Cp>Adds oEmbed support for \u003Ca href=\"http:\u002F\u002Fallgrain.beer\u002F\" title=\"Brew better beer!\" rel=\"nofollow ugc\">AllGrain.Beer\u003C\u002Fa>\u003Cbr \u002F>\nTry adding a recipe URL to your post or page!\u003C\u002Fp>\n","Adds oEmbed support for AllGrain.Beer",10,1756,0,"2019-10-11T00:56:00.000Z","5.2.24","3.7","",[19,4,20,21,22],"allgrain-beer","beer","embed","oembed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fallgrainbeer.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"gabrielmcgovern",5,250,30,84,"2026-04-04T15:13:30.291Z",[36,61,80,103,123],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":13,"last_vuln_date":60,"fetched_at":26},"embed-pdf-viewer","Embed PDF Viewer","2.4.8","Andy Fragen","https:\u002F\u002Fprofiles.wordpress.org\u002Fafragen\u002F","\u003Cp>Embed a PDF from the Media Library or elsewhere via oEmbed or as a block into an \u003Ccode>iframe\u003C\u002Fcode> tag. The URL only has to be world reachable link. Chrome uses Google Doc Viewer as Chrome seems to automatically rendered embedded JS in PDFs automatically. Uses Google Doc Viewer with mobile.\u003C\u002Fp>\n\u003Cp>Inspired by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdirtysuds-embed-pdf\u002F\" rel=\"ugc\">Embed PDF\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frv-embed-pdf\u002F\" rel=\"ugc\">RV Embed PDF\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Many thanks to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fakirk\" rel=\"nofollow ugc\">Alex Kirk\u003C\u002Fa> for making Embed PDF Viewer compatible with the new block editor.\u003C\u002Fp>\n\u003Cp>Development on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fafragen\u002Fembed-pdf-viewer\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. Pull requests are welcome against the \u003Ccode>develop\u003C\u002Fcode> branch.\u003C\u002Fp>\n\u003Ch3>Known Issues\u003C\u002Fh3>\n\u003Cp>Occasionally Google Doc Viewer will not correctly load the PDF. Reloading the page should correct the issue, though this may need to be done several times.\u003C\u002Fp>\n","Embed a PDF from the Media Library or elsewhere via oEmbed or as a block into an iframe tag.",20000,307147,94,19,"2026-02-21T16:59:00.000Z","7.0","6.0","7.4",[53,21,22,54,55],"block","pdf","viewer","https:\u002F\u002Fgithub.com\u002Fafragen\u002Fembed-pdf-viewer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembed-pdf-viewer.2.4.8.zip",99,2,"2024-12-19 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":17,"tags":76,"homepage":17,"download_link":78,"security_score":79,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"disable-embeds","Disable Embeds","1.5.0","Pascal Birchler","https:\u002F\u002Fprofiles.wordpress.org\u002Fswissspidy\u002F","\u003Cp>What this plugin does:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Prevents others from embedding your site.\u003C\u002Fli>\n\u003Cli>Prevents you from embedding other non-whitelisted sites.\u003C\u002Fli>\n\u003Cli>Disables all JavaScript related to the feature.\u003C\u002Fli>\n\u003Cli>Removes support for the WordPress embed block in the new block editor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Just activate the plugin and you’re good to go.\u003C\u002Fp>\n\u003Cp>Want embeds back again? Simply deactivate the plugin.\u003C\u002Fp>\n","Don’t like the enhanced embeds in WordPress 4.4? Easily disable the feature using this plugin.",10000,270545,86,20,"2025-04-08T09:00:00.000Z","6.8.5","4.4",[21,77,22],"embeds","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-embeds.1.5.0.zip",100,{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":69,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":94,"tags":95,"homepage":17,"download_link":100,"security_score":79,"vuln_count":101,"unpatched_count":13,"last_vuln_date":102,"fetched_at":26},"embed-privacy","Embed Privacy","1.12.3","epiphyt","https:\u002F\u002Fprofiles.wordpress.org\u002Fepiphyt\u002F","\u003Cp>Content embedded from external sites such as YouTube or Twitter is loaded immediately when visitors access your site. Embed Privacy addresses this issue and prevents the loading of these contents until the visitor decides to allow loading of external content.\u003Cbr \u002F>\nBut Embed Privacy not only protects your visitor’s privacy but also makes your site load faster.\u003C\u002Fp>\n\u003Cp>All embeds will be replaced by placeholders, ready for you to apply style as you wish. With only a couple of lines of CSS.\u003C\u002Fp>\n\u003Cp>By clicking on the placeholder the respective content will then be loaded.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note: This plugins requires the PHP extension \u003Ca href=\"https:\u002F\u002Fwww.php.net\u002Fmanual\u002Fen\u002Fbook.dom.php\" rel=\"nofollow ugc\">“Document Object Model” (php-dom)\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n","Embed Privacy prevents the loading of embedded external content and allows your site visitors to opt-in.",531266,98,26,"2026-01-20T16:55:00.000Z","6.9.4","5.9","5.6",[96,97,22,98,99],"gutenberg","iframes","performance","privacy","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembed-privacy.1.12.3.zip",1,"2023-11-18 00:00:00",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":79,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":117,"tags":118,"homepage":121,"download_link":122,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"oembed-plus","oEmbed Plus","1.6","Ayesh Karunaratne","https:\u002F\u002Fprofiles.wordpress.org\u002Fayeshrajans\u002F","\u003Cp>Adds support for embedding Facebook and Instagram posts in Block Editor (Gutenberg) and Classic Editor. This feature was removed in WordPress core due to deprecation of legacy APIs WordPress core used.\u003C\u002Fp>\n\u003Cp>Prior to WordPress 5.5.1, WordPress had support to embed Instagram and Facebook photos, videos, notes, quizes, etc in posts created with Block Editor and Classic Editor. However, Facebook removed this legacy API in October 2020, and this plugin implements the new APIs to bring back support for Facebook and Instagram content embedding.\u003C\u002Fp>\n\u003Cp>Note that you will need to register a Facebook developer account and create an app to get API credentials that this plugin uses. There is no coding necessary, but an API key needs to be created and set for the plugin.\u003C\u002Fp>\n\u003Cp>Detailed setup instructions are available in \u003Ca href=\"https:\u002F\u002Fphp.watch\u002Farticles\u002Fwordpress-facebook-instagram-oembed\" rel=\"nofollow ugc\">oEmbed Plus guide at PHP.Watch\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This project is not owned, endorsed, or otherwise affiliated with Facebook Inc. or Instagram LLC.\u003C\u002Fp>\n","Adds support for embedding Facebook and Instagram posts in Block Editor (Gutenberg) and Classic Editor.",4000,108320,7,"2021-07-15T10:24:00.000Z","5.6.17","4.9","7.1",[21,119,120,22],"facebook","instagram","https:\u002F\u002Fphp.watch\u002Farticles\u002Fwordpress-facebook-instagram-oembed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foembed-plus.1.6.zip",{"slug":124,"name":125,"version":126,"author":125,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":132,"num_ratings":72,"last_updated":133,"tested_up_to":92,"requires_at_least":134,"requires_php":51,"tags":135,"homepage":138,"download_link":139,"security_score":79,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"embedly","Embedly","4.9.3","https:\u002F\u002Fprofiles.wordpress.org\u002Fembedly\u002F","\u003Cp>Enhance the default WordPress embedding to get previews for any article,\u003Cbr \u002F>\nincluding your own blog posts. You also get embeds for YouTube, Vimeo, Twitch,\u003Cbr \u002F>\nGoogle Maps, and Embedly’s growing list of \u003Ca href=\"https:\u002F\u002Fembed.ly\u002Fproviders\" rel=\"nofollow ugc\">1000+ supported\u003Cbr \u002F>\nproviders\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You can customize the style of the embeds, to optimize for darker WP themes,\u003Cbr \u002F>\nalignment, and width. In addition, social buttons can be added around the embeds\u003Cbr \u002F>\nto make it easier to share content from your blog posts.\u003C\u002Fp>\n\u003Cp>If you have an Embedly Cards account, you can link it to the plugin with your Embedly API key. Not only does this remove branding from the cards, it also gives you access to analytics and viewer behaviors for most popular music and video player embeds (YouTube, Vimeo, Instagram, SoundCloud). Find out how many people viewed your embeds for how long. To learn more about Embedly Cards please visit \u003Ca href=\"https:\u002F\u002Fembed.ly\u002Fcards\" rel=\"nofollow ugc\">our website\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Using it is as simple as the default WordPress embedding. Embed media by pasting its URL in a single line when writing a post.\u003C\u002Fp>\n\u003Cp>The plugin automatically displays an embed of the media in the WordPress post editor.\u003C\u002Fp>\n\u003Cp>Fair Warning: This plugin generates static HTML content for your posts.  After you deactivate\u003Cbr \u002F>\nthe plugin, that HTML will still remain behind in all posts where the plugin was used to create\u003Cbr \u002F>\nembeds.\u003C\u002Fp>\n","The Embedly Plugin extends WordPress's auto-embed feature to give your blog more media types and style options.",2000,203815,70,"2026-02-20T06:02:00.000Z","5.0",[21,136,22,54,137],"image","video","https:\u002F\u002Fembed.ly\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembedly.4.9.3.zip",{"attackSurface":141,"codeSignals":147,"taintFlows":154,"riskAssessment":155,"analyzedAt":162},{"hooks":142,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":13,"unprotectedCount":13},[],[],[],[],[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":151,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":153},[],{"prepared":13,"raw":13,"locations":150},[],{"escaped":13,"rawEcho":13,"locations":152},[],[],[],{"summary":156,"deductions":157},"The static analysis of the 'allgrainbeer' v1.0.0 plugin reveals a remarkably clean codebase with no identified vulnerabilities in its attack surface, code signals, or taint flows. The absence of AJAX handlers, REST API routes, shortcodes, and cron events, or at least their complete absence of unprotected entry points, indicates a limited attack surface. Furthermore, the complete lack of dangerous functions, reliance on prepared statements for all SQL queries, proper output escaping, and absence of file operations or external HTTP requests are all strong indicators of good security practices. The vulnerability history being entirely clear further reinforces this positive security posture.\n\nHowever, the complete absence of nonce checks and capability checks across the entire plugin, as indicated by the static analysis, presents a significant concern. While there are currently no exposed entry points, any future additions or modifications that introduce such points without proper authorization checks could be easily exploited. The plugin's current strengths lie in its well-handled internal operations, but its lack of explicit access control mechanisms leaves a gap that needs attention. A proactive approach to implementing these checks is crucial for maintaining its secure state.",[158,160],{"reason":159,"points":11},"Missing nonce checks",{"reason":161,"points":11},"Missing capability checks","2026-03-17T00:56:20.078Z",{"wat":164,"direct":169},{"assetPaths":165,"generatorPatterns":166,"scriptPaths":167,"versionParams":168},[],[],[],[],{"cssClasses":170,"htmlComments":171,"htmlAttributes":172,"restEndpoints":173,"jsGlobals":174,"shortcodeOutput":175},[],[],[],[],[],[]]