[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsTjOJxdAvrzim_JX1CjPUr1sUYnSN7lz3ZgN0RuwbVU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":76,"crawl_stats":38,"alternatives":83,"analysis":189,"fingerprints":433},"amministrazione-trasparente","Amministrazione Trasparente","9.1","Marco Milesi","https:\u002F\u002Fprofiles.wordpress.org\u002Fmilmor\u002F","\u003Cp>Plugin completo per la gestione documentale di Amministrazione Trasparente nelle Pubbliche Amministrazioni (D.lgs. 33\u002F2013)\u003C\u002Fp>\n\u003Ch3>Descrizione\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Amministrazione Trasparente\u003C\u002Fstrong> è il plugin WordPress più completo per la gestione dei documenti e delle sezioni richieste dalla normativa italiana sulla trasparenza amministrativa (D.lgs. 33\u002F2013 e successive integrazioni).\u003Cbr \u002F>\nPermette di pubblicare, organizzare e mantenere aggiornate tutte le informazioni obbligatorie direttamente dal tuo sito WordPress, senza servizi esterni.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Gestisci facilmente sezioni, documenti, allegati e filtri, con un’interfaccia intuitiva e aggiornata alle ultime disposizioni di legge.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Caratteristiche principali\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Aggiornamento costante\u003C\u002Fstrong> tecnico e normativo\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Inserimento rapido\u003C\u002Fstrong> e intuitivo dei documenti\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Catalogazione avanzata\u003C\u002Fstrong> tramite tassonomie, tag e filtri amministrativi\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Soluzione ideale\u003C\u002Fstrong> per ogni tipo di contenuto (documenti, testo, link, allegati…)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Gestione avanzata dei ruoli\u003C\u002Fstrong> (“map-cap ready”)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reindirizzamento\u003C\u002Fstrong> delle voci a link esterni\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Personalizzazione grafica\u003C\u002Fstrong> e numerosi shortcode\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widget personalizzabili\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Compatibilità\u003C\u002Fstrong> con tutti i temi WordPress, incluso supporto specifico per temi PA (PASW2013, Design Comuni, ecc.)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard avanzata\u003C\u002Fstrong> per la panoramica e la gestione delle tipologie e dei documenti\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Filtri rapidi\u003C\u002Fstrong> per gruppi, ricerca e documenti vecchi (>5 anni)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Notifiche e avvisi\u003C\u002Fstrong> per una gestione più sicura e trasparente\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contatti & Supporto\u003C\u002Fh3>\n\u003Cp>Per qualsiasi informazione, segnalazione di problemi o feedback, visita \u003Ca href=\"https:\u002F\u002Fwww.wpgov.it\u002F\" rel=\"nofollow ugc\">wpgov.it\u003C\u002Fa>\u003Cbr \u002F>\nDocumentazione completa: \u003Ca href=\"https:\u002F\u002Fdocs.wpgov.it\u002Fdocs\u002Fcategory\u002Famministrazione-trasparente\" rel=\"nofollow ugc\">docs.wpgov.it\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Installazione\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Scarica e installa il plugin tramite la directory di WordPress o carica manualmente la cartella.\u003C\u002Fli>\n\u003Cli>Attiva il plugin tramite il menu ‘Plugin’ di WordPress.\u003C\u002Fli>\n\u003Cli>Configura le sezioni e le opzioni tramite il menu “Trasparenza” nel back-end.\u003C\u002Fli>\n\u003Cli>Consulta la \u003Ca href=\"https:\u002F\u002Fdocs.wpgov.it\u002Fdocs\u002Fcategory\u002Famministrazione-trasparente\" rel=\"nofollow ugc\">documentazione online\u003C\u002Fa> per tutte le funzionalità avanzate.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Video guida:\u003Cbr \u002F>\nhttps:\u002F\u002Fwww.youtube.com\u002Fwatch?v=qWj9hvzNSlg\u003C\u002Fp>\n","Plugin completo per la gestione documentale di Amministrazione Trasparente nelle Pubbliche Amministrazioni (D.lgs. 33\u002F2013)",1000,70293,98,25,"2025-08-29T07:15:00.000Z","6.9.4","4.2","",[20,21,22,23,24],"amministrazione","aperta","atti","documenti","trasparente","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Famministrazione-trasparente\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Famministrazione-trasparente.9.1.zip",97,3,0,"2025-08-30 16:22:25","2026-03-15T15:16:48.613Z",[33,48,62],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2025-5083","amministrazione-trasparente-authenticated-administrator-stored-cross-site-scripting-via-printr-function","Amministrazione Trasparente \u003C= 9.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via print_r Function","The Amministrazione Trasparente plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 9.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=9.0","medium",5.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-08-31 04:25:49",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8741bbdf-ddd9-41f7-8d22-b9350f2cf659?source=api-prod",1,{"id":49,"url_slug":50,"title":51,"description":52,"plugin_slug":4,"theme_slug":38,"affected_versions":53,"patched_in_version":54,"severity":40,"cvss_score":55,"cvss_vector":56,"vuln_type":43,"published_date":57,"updated_date":58,"references":59,"days_to_patch":61},"CVE-2023-45758","amministrazione-trasparente-authenticated-administrator-stored-cross-site-scripting","Amministrazione Trasparente \u003C= 8.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Amministrazione Trasparente plugin for WordPress is vulnerable to Stored Cross-Site Scripting via settings in versions up to, and including, 8.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only impacts multi-site installations and installations where unfiltered_html has been disabled.","\u003C=8.0.2","8.0.5",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2023-10-12 00:00:00","2024-01-22 19:56:02",[60],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1ef02ecc-6a7b-4782-a891-a1d66d770c81?source=api-prod",103,{"id":63,"url_slug":64,"title":65,"description":66,"plugin_slug":4,"theme_slug":38,"affected_versions":67,"patched_in_version":68,"severity":40,"cvss_score":69,"cvss_vector":70,"vuln_type":71,"published_date":72,"updated_date":58,"references":73,"days_to_patch":75},"CVE-2021-4398","amministrazione-trasparente-cross-site-request-forgery-bypass","Amministrazione Trasparente \u003C= 7.1 - Cross-Site Request Forgery Bypass","The Amministrazione Trasparente plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including,  7.1. This is due to missing or incorrect nonce validation on the at_save_aturl_meta() function. This makes it possible for unauthenticated attackers to update meta data via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=7.1","7.1.1",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2021-07-05 00:00:00",[74],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F6358fc29-5b09-481a-9040-a7890b61f419?source=api-prod",932,{"slug":77,"display_name":7,"profile_url":8,"plugin_count":78,"total_installs":79,"avg_security_score":27,"avg_patch_time_days":80,"trust_score":81,"computed_at":82},"milmor",13,12590,280,77,"2026-04-04T08:17:11.445Z",[84,101,120,144,166],{"slug":85,"name":86,"version":87,"author":7,"author_profile":8,"description":88,"short_description":89,"active_installs":11,"downloaded":90,"rating":91,"num_ratings":28,"last_updated":92,"tested_up_to":16,"requires_at_least":93,"requires_php":18,"tags":94,"homepage":97,"download_link":98,"security_score":13,"vuln_count":99,"unpatched_count":29,"last_vuln_date":100,"fetched_at":31},"anac-xml-viewer","ANAC XML Viewer","1.8.3","\u003Cp>ANAC XML VIEWER è un plugin WordPress pensato per le PA utile alla pubblicazione di bandi di gara ai fini della trasparenza (D.lgs 33\u002F2013) e l’adeguamento normativo richiesto dall’Autorità Nazionale Anticorruzione (specifiche tecniche art. 1 comma 32 Legge n. 190\u002F2012).\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fcdn082kZogk?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Caratteristiche\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Visualizzazione tabellare dei bandi di gara a partire da un dataset XML già generato\u003C\u002Fli>\n\u003Cli>Importazione del dataset tramite copia\u002Fincolla del contenuto del file o URL.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>ATTENZIONE\u003C\u002Fstrong> | \u003Cstrong>“For each author’s protection [***] we want to make certain that everyone understands that there is no warranty for this free software.\u003C\u002Fstrong> In accordo con la licenza GPL v.2 con cui questo software viene fornito, \u003Cstrong>declino\u003C\u002Fstrong> ogni responsabilità per eventuali inadempimenti legislativi e\u002Fo altri problemi legali e\u002Fo tecnici derivanti, implicitamente o esplicitamente, dall’utilizzo di questo plugin WordPress o da un’affrettata configurazione dello stesso (ivi compresi eventuali aggiornamenti). E’ compito del gestore del sito assicurarsi che il modulo funzioni correttamente e adempia agli obblighi di legge e, al contempo, è obbligo degli operatori\u002Fimpiegati\u002Fdipendenti\u002Ffunzionari preposti alla gestione dell’Amministrazione Trasparente la pubblicazione degli opportuni dati.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>EN\u003C\u002Fstrong> | This plugin is only intended for \u003Cstrong>schools, universities, municipalities and local authorities\u003C\u002Fstrong> of \u003Cstrong>ITALY\u003C\u002Fstrong> and respects their legal parameters.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Software per la visualizzazione di dataset XML su tracciato ANAC (ex AVCP -Legge 190\u002F2012 Art 1.32).",19077,100,"2026-01-19T10:15:00.000Z","4.3",[20,95,22,23,96],"anac","xml","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fanac-xml-viewer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fanac-xml-viewer.1.8.3.zip",2,"2025-11-26 00:00:00",{"slug":102,"name":103,"version":104,"author":7,"author_profile":8,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":91,"num_ratings":28,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":18,"tags":112,"homepage":116,"download_link":117,"security_score":118,"vuln_count":47,"unpatched_count":29,"last_vuln_date":119,"fetched_at":31},"amministrazione-aperta","Amministrazione Aperta","3.8.2","\u003Cp>Amministrazione Aperta è un plugin nato per assolvere all’obbligo normativo per la gestione opendata di \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Famministrazione-trasparente\" title=\"Amministrazione Trasparente Plugin per WordPress\" rel=\"ugc\">Amministrazione Trasparente\u003C\u002Fa>, per i quali è richiesta la pubblicazione di sovvenzioni, contributi, sussidi, vantaggi economici, incarichi e consulenze.\u003C\u002Fp>\n\u003Cp>Questo plugin permette un facile inserimento di tutti i dati tramite l’interfaccia di amministrazione di WordPress, e possiede shortcode personalizzabili per la visualizzazione in forma tabellare di tutte le informazioni, nel pieno rispetto dei più severi parametri di accessibilità vigenti:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>consultazione più agevole possibile;\u003C\u002Fli>\n\u003Cli>indicizzazione nei motori di ricerca;\u003C\u002Fli>\n\u003Cli>visualizzazioni con funzioni di esportazione, il trattamento e il riutilizzo dei dati.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Funzioni del Plugin\u003C\u002Fh4>\n\u003Cp>Tramite questa estensione è possibile gestire in maniera semplice e veloce tutte le informazioni richieste per assolvere all’obbligo di legge.\u003Cbr \u002F>\nIn particolare, è possibile inserire direttamente dal pannello di amministrazione di WordPress tutti i dati necessari:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Titolo\u003C\u002Fli>\n\u003Cli>Importo (previsto\u002Ferogato)\u003C\u002Fli>\n\u003Cli>Beneficiario\u003C\u002Fli>\n\u003Cli>Dati Fiscali\u003C\u002Fli>\n\u003Cli>Norma\u003C\u002Fli>\n\u003Cli>Modalità\u003C\u002Fli>\n\u003Cli>Responsabile\u003C\u002Fli>\n\u003Cli>Determina\u003C\u002Fli>\n\u003Cli>Data (inizio\u002Ffine)\u003C\u002Fli>\n\u003Cli>Eventuali file allegati tramite upload e testo a piacere (editor WYSIWYG)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>L’utente finale potrà dunque:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Visualizzare e navigare tutte le spese, cercare quella interessata o catalogarle per data, nome,…\u003C\u002Fli>\n\u003Cli>Esportare i dati in formato CSV, XLS (Excel), PDF\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>ATTENZIONE\u003C\u002Fstrong> | \u003Cstrong>“For each author’s protection [***] we want to make certain that everyone understands that there is no warranty for this free software.\u003C\u002Fstrong> In accordo con la licenza GPL v.2 con cui questo software viene fornito, \u003Cstrong>declino\u003C\u002Fstrong> ogni responsabilità per eventuali inadempimenti legislativi e\u002Fo altri problemi legali e\u002Fo tecnici derivanti, implicitamente o esplicitamente, dall’utilizzo di questo plugin WordPress o da un’affrettata configurazione dello stesso (ivi compresi eventuali aggiornamenti). E’ compito del gestore del sito assicurarsi che il modulo funzioni correttamente e adempia agli obblighi di legge e, al contempo, è obbligo degli operatori\u002Fimpiegati\u002Fdipendenti\u002Ffunzionari preposti alla gestione dell’Amministrazione Trasparente la pubblicazione degli opportuni dati.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>EN\u003C\u002Fstrong> | This plugin is developed for \u003Cstrong>schools, universities, municipalities and local authorities\u003C\u002Fstrong> of \u003Cstrong>ITALY\u003C\u002Fstrong> and respects their legal parameters. The installation of this plugin on amateur websites and\u002For portals not subject to ‘Amministrazione Trasparente’ legislation is a waste of time since the purpose of this software is the posting of data in a legal and validated way.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Software per la pubblicazione di concessioni (sovvenzioni, contributi, sussidi e vantaggi economici) e incarichi, anche in formato open data, come ric &hellip;",200,13002,"2022-10-12T23:01:00.000Z","6.1.10","4.4",[20,21,113,114,115],"comuni","pa","spese","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Famministrazione-aperta\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Famministrazione-aperta.zip",85,"2022-03-23 00:00:00",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":131,"last_updated":132,"tested_up_to":16,"requires_at_least":133,"requires_php":134,"tags":135,"homepage":141,"download_link":142,"security_score":91,"vuln_count":47,"unpatched_count":29,"last_vuln_date":143,"fetched_at":31},"tinymce-advanced","Advanced Editor Tools","5.9.2","Andrew Ozz","https:\u002F\u002Fprofiles.wordpress.org\u002Fazaozz\u002F","\u003Cp>Advanced Editor Tools (previously TinyMCE Advanced) introduces a “Classic Paragraph” block for the block editor (Gutenberg).\u003Cbr \u002F>\nIf you are not quite ready to switch to the block editor, or have plugins that cannot be used there (yet), using the Classic Paragraph block is your best option. It lets you to continue to use the familiar TinyMCE editor for most tasks, and at the same time gives you full access to all blocks and new features in the block editor.\u003C\u002Fp>\n\u003Cp>Version 5.5 continues to improve and enhance the new features introduced in version 5.0 of the plugin. It includes an improved “Clear Formatting” button, several advanced settings for tables, and importing and exporting of the settings to a file.\u003C\u002Fp>\n\u003Cp>If you want to continue to use the previous (“classic”) editor in WordPress 5.0 and newer, this plugin has an option to replace the new editor with the previous one. If you prefer to have access to both editors side by side or to allow your users to switch editors, it would be better to install the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor plugin\u003C\u002Fa>. Advanced Editor Tools is fully compatible with the classic editor plugin and similar plugins that restore use of the previous WordPress editor.\u003C\u002Fp>\n\u003Cp>As always this plugin will let you add, remove and arrange the buttons that are shown on the Visual Editor toolbar in the Classic Paragraph and Classic blocks in the block editor, and in the classic editor (when enabled by a plugin). There you can configure up to four rows of buttons including Font Sizes, Font Family, text and background colors, tables, etc.\u003C\u002Fp>\n\u003Cp>It includes 15 plugins for \u003Ca href=\"https:\u002F\u002Fwww.tiny.cloud\u002F\" rel=\"nofollow ugc\">TinyMCE\u003C\u002Fa> that are automatically enabled or disabled depending on the buttons you have chosen.\u003Cbr \u002F>\nIn addition this plugin adds options for keeping the paragraph tags in text mode and importing the CSS classes from the theme’s editor-style.css.\u003C\u002Fp>\n\u003Ch4>Some of the features added by this plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>“Classic Paragraph” block that can be used instead of or together with the standard Paragraph block.\u003C\u002Fli>\n\u003Cli>An option to set the Classic Paragraph or Classic block as the default block in the block editor.\u003C\u002Fli>\n\u003Cli>Supports converting of most default blocks to classic paragraphs, and from classic paragraphs back to the default blocks.\u003C\u002Fli>\n\u003Cli>Support for creating and editing tables in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>More options when inserting lists in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>Search and Replace in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>Ability to set Font Family and Font Sizes in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>And many others.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy\u003C\u002Fh4>\n\u003Cp>Advanced Editor Tools does not collect or store any user related data. It does not set cookies, and it does not connect to any third-party websites. It only uses functionality that is available in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002F\" rel=\"ugc\">WordPress\u003C\u002Fa>, and in the \u003Ca href=\"https:\u002F\u002Ftinymce.com\u002F\" rel=\"nofollow ugc\">TinyMCE editor\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>In that terms Advanced Editor Tools does not affect your website’s user privacy in any way.\u003C\u002Fp>\n","Extends and enhances the block editor (Gutenberg) and the classic editor (TinyMCE).",2000000,35126516,90,351,"2025-12-08T15:02:00.000Z","5.9","5.6",[136,137,138,139,140],"block-editor","classic-editor","editor","formatting","gutenberg","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftinymce-advanced\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftinymce-advanced.5.9.2.zip","2014-09-08 00:00:00",{"slug":145,"name":146,"version":147,"author":148,"author_profile":149,"description":150,"short_description":151,"active_installs":152,"downloaded":153,"rating":154,"num_ratings":155,"last_updated":156,"tested_up_to":157,"requires_at_least":158,"requires_php":18,"tags":159,"homepage":164,"download_link":165,"security_score":118,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"advanced-excerpt","Advanced Excerpt","4.4.1","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Cp>This plugin adds several improvements to WordPress’ default way of creating excerpts.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Keeps HTML markup in the excerpt (and you get to choose which tags are included)\u003C\u002Fli>\n\u003Cli>Trims the excerpt to a given length using either character count or word count\u003C\u002Fli>\n\u003Cli>Only the ‘real’ text is counted (HTML is ignored but kept)\u003C\u002Fli>\n\u003Cli>Customizes the excerpt length and the ellipsis character that are used\u003C\u002Fli>\n\u003Cli>Completes the last word or sentence in an excerpt (no weird cuts)\u003C\u002Fli>\n\u003Cli>Adds a \u003Cem>read-more\u003C\u002Fem> link to the text\u003C\u002Fli>\n\u003Cli>Ignores custom excerpts and use the generated one instead\u003C\u002Fli>\n\u003Cli>Theme developers can use \u003Ccode>the_advanced_excerpt()\u003C\u002Fcode> for even more control (see the FAQ)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Most of the above features are optional and\u002For can be customized by the user or theme developer.\u003C\u002Fp>\n\u003Cp>Banner image credit – \u003Ca href=\"https:\u002F\u002Fwww.flickr.com\u002Fphotos\u002Fchillihead\u002F\" rel=\"nofollow ugc\">chillihead\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Original plugin author – \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fbasvd\" rel=\"nofollow ugc\">basvd\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Useful Resources\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwhat-is-wordpress\u002F\" rel=\"friend nofollow ugc\">What is WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwordpress-themes\" rel=\"friend nofollow ugc\">Fee Themes\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwordpress-plugins\u002F\" rel=\"friend nofollow ugc\">plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Control the appearance of WordPress post excerpts",80000,1542295,86,101,"2024-01-19T20:32:00.000Z","6.4.8","3.2",[160,161,139,162,163],"content","excerpt","post","post-excerpt","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-excerpt\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-excerpt.4.4.1.zip",{"slug":167,"name":168,"version":169,"author":170,"author_profile":171,"description":172,"short_description":173,"active_installs":174,"downloaded":175,"rating":176,"num_ratings":177,"last_updated":178,"tested_up_to":16,"requires_at_least":179,"requires_php":180,"tags":181,"homepage":187,"download_link":188,"security_score":91,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"woocommerce-payfast-gateway","WooCommerce Payfast Gateway","1.7.5","WooCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoocommerce\u002F","\u003Cp>Give customers more flexibility and increase your bottom line with Payfast — one of South Africa’s most popular payment gateways.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fast, \u003Cstrong>super-secure\u003C\u002Fstrong> payments from almost anywhere in the world.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>subscriptions\u003C\u002Fstrong>, \u003Cstrong>deposits\u003C\u002Fstrong>, and \u003Cstrong>pre-orders\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get started\u003C\u002Fh4>\n\u003Cp>This extension requires a Payfast merchant account. \u003Ca href=\"https:\u002F\u002Fpayfast.io\u002Fgateway-aggregator-selector\u002F\" rel=\"nofollow ugc\">Sign up for free\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>How does it work?\u003C\u002Fh4>\n\u003Cp>At checkout, customers are automatically taken to Payfast to pay for their orders. Once payment is complete, Payfast redirects them to your store to continue shopping.\u003C\u002Fp>\n\u003Ch4>Fast, super-secure, and scalable\u003C\u002Fh4>\n\u003Cp>Pay it safe, every time. Payfast is trusted by \u003Cstrong>more than 100,000\u003C\u002Fstrong> South African businesses, with security that exceeds industry standards. It’s PCI DSS-compliant and also supports 18+ popular payment methods. In a nutshell, WooCommerce Payfast Gateway is the fastest, smartest, and safest way to accept payments online.\u003C\u002Fp>\n\u003Ch4>Boost your bottom line\u003C\u002Fh4>\n\u003Cp>Payfast is compatible with \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-pre-orders\u002F\" rel=\"nofollow ugc\">WooCommerce Pre-Orders\u003C\u002Fa>, giving your shoppers the ultimate flexibility. \u003Cstrong>Convert more customers\u003C\u002Fstrong> by letting them make deposits, order in advance, or subscribe to your products and services. You win each way!\u003C\u002Fp>\n","Give customers more flexibility and increase your bottom line with Payfast — one of South Africa’s most popular payment gateways.",30000,871750,60,7,"2026-02-24T19:05:00.000Z","6.7","7.4",[182,183,184,185,186],"automattic","credit-card","payfast","payment-request","woocommerce","https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fpayfast-payment-gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-payfast-gateway.1.7.5.zip",{"attackSurface":190,"codeSignals":317,"taintFlows":393,"riskAssessment":422,"analyzedAt":432},{"hooks":191,"ajaxHandlers":291,"restRoutes":292,"shortcodes":293,"cronEvents":316,"entryPointCount":177,"unprotectedCount":29},[192,197,199,203,206,209,212,217,220,223,226,228,231,232,235,239,242,245,249,253,257,260,263,266,269,273,276,280,283,286],{"type":193,"name":194,"callback":195,"file":196,"line":78},"action","init","closure","amministrazionetrasparente.php",{"type":193,"name":194,"callback":195,"file":196,"line":198},53,{"type":193,"name":200,"callback":201,"file":196,"line":202},"admin_head-edit-tags.php","at_remove_tax_parent_dropdown",183,{"type":193,"name":204,"callback":201,"file":196,"line":205},"admin_head-term.php",184,{"type":193,"name":207,"callback":201,"file":196,"line":208},"admin_head-post.php",185,{"type":193,"name":210,"callback":201,"file":196,"line":211},"admin_head-post-new.php",186,{"type":213,"name":214,"callback":215,"file":196,"line":216},"filter","template_include","at_force_template",261,{"type":193,"name":218,"callback":195,"file":196,"line":219},"admin_enqueue_scripts",264,{"type":193,"name":221,"callback":195,"file":196,"line":222},"restrict_manage_posts",269,{"type":193,"name":224,"callback":195,"file":196,"line":225},"admin_init",289,{"type":193,"name":218,"callback":195,"file":196,"line":227},312,{"type":193,"name":229,"callback":195,"file":196,"line":230},"admin_menu",319,{"type":193,"name":218,"callback":195,"file":196,"line":131},{"type":193,"name":233,"callback":195,"file":196,"line":234},"pre_get_posts",381,{"type":213,"name":236,"callback":195,"priority":237,"file":196,"line":238},"dci_get_breadcrumb_items",10,402,{"type":213,"name":240,"callback":195,"file":196,"line":241},"get_the_archive_title",442,{"type":193,"name":243,"callback":195,"file":196,"line":244},"admin_notices",453,{"type":193,"name":243,"callback":246,"file":247,"line":248},"adminMessages","backend.php",4,{"type":193,"name":250,"callback":251,"file":247,"line":252},"manage_amm-trasparente_posts_columns","modified_column_register",5,{"type":193,"name":254,"callback":255,"priority":237,"file":247,"line":256},"manage_amm-trasparente_posts_custom_column","modified_column_display",6,{"type":193,"name":258,"callback":259,"file":247,"line":177},"manage_edit-amm-trasparente_sortable_columns","modified_column_register_sortable",{"type":193,"name":194,"callback":261,"file":262,"line":256},"register_blocks","gutenberg.php",{"type":193,"name":264,"callback":265,"file":262,"line":177},"wp_enqueue_scripts","register_frontend_scripts",{"type":193,"name":267,"callback":195,"file":268,"line":28},"add_meta_boxes","redirector.php",{"type":193,"name":270,"callback":271,"priority":47,"file":268,"line":272},"save_post","at_save_aturl_meta",49,{"type":193,"name":274,"callback":195,"priority":47,"file":268,"line":275},"template_redirect",58,{"type":213,"name":277,"callback":278,"priority":237,"file":268,"line":279},"page_link","at_redirect_by_custom_field",70,{"type":213,"name":281,"callback":278,"priority":237,"file":268,"line":282},"post_link",71,{"type":213,"name":284,"callback":195,"priority":237,"file":268,"line":285},"get_sample_permalink_html",113,{"type":193,"name":287,"callback":288,"file":289,"line":290},"widgets_init","at_register_widgets","widget\\widget.php",106,[],[],[294,297,300,303,306,309,313],{"tag":295,"callback":195,"file":196,"line":296},"at-head",191,{"tag":298,"callback":195,"file":196,"line":299},"at-desc",198,{"tag":301,"callback":195,"file":196,"line":302},"at-table",205,{"tag":304,"callback":195,"file":196,"line":305},"at-list",212,{"tag":307,"callback":195,"file":196,"line":308},"at-sezioni",219,{"tag":310,"callback":311,"file":196,"line":312},"at-search","at_search_shtc",231,{"tag":4,"callback":314,"file":262,"line":315},"shortcode_amministrazione_trasparente",8,[],{"dangerousFunctions":318,"sqlUsage":319,"outputEscaping":321,"fileOperations":29,"externalRequests":29,"nonceChecks":47,"capabilityChecks":47,"bundledLibraries":392},[],{"prepared":29,"raw":29,"locations":320},[],{"escaped":322,"rawEcho":323,"locations":324},158,34,[325,328,330,332,334,336,337,338,340,342,345,347,349,351,353,355,358,361,362,364,366,368,370,372,374,376,378,380,382,384,386,387,388,390],{"file":196,"line":326,"context":327},177,"raw output",{"file":196,"line":329,"context":327},207,{"file":196,"line":331,"context":327},214,{"file":196,"line":333,"context":327},278,{"file":196,"line":335,"context":327},282,{"file":196,"line":335,"context":327},{"file":247,"line":14,"context":327},{"file":247,"line":339,"context":327},43,{"file":247,"line":341,"context":327},44,{"file":343,"line":344,"context":327},"checkup.php",181,{"file":343,"line":346,"context":327},192,{"file":343,"line":348,"context":327},195,{"file":343,"line":350,"context":327},241,{"file":352,"line":341,"context":327},"dashboard.php",{"file":352,"line":354,"context":327},153,{"file":356,"line":357,"context":327},"includes\\pasw2013\\paswarchive-tipologie.php",27,{"file":359,"line":360,"context":327},"includes\\pasw2013\\paswsingle-tipologie.php",35,{"file":268,"line":237,"context":327},{"file":268,"line":363,"context":327},16,{"file":365,"line":78,"context":327},"shortcodes\\shortcodes-head.php",{"file":367,"line":237,"context":327},"shortcodes\\shortcodes-php-archive.php",{"file":369,"line":177,"context":327},"shortcodes\\shortcodes-search.php",{"file":369,"line":371,"context":327},28,{"file":373,"line":14,"context":327},"shortcodes\\shortcodes-sezioni.php",{"file":373,"line":375,"context":327},30,{"file":373,"line":377,"context":327},51,{"file":373,"line":379,"context":327},54,{"file":373,"line":381,"context":327},56,{"file":373,"line":383,"context":327},110,{"file":373,"line":385,"context":327},111,{"file":289,"line":323,"context":327},{"file":289,"line":339,"context":327},{"file":289,"line":389,"context":327},57,{"file":289,"line":391,"context":327},95,[],[394,413],{"entryPoint":395,"graph":396,"unsanitizedCount":29,"severity":412},"\u003Camministrazionetrasparente> (amministrazionetrasparente.php:0)",{"nodes":397,"edges":409},[398,403],{"id":399,"type":400,"label":401,"file":196,"line":402},"n0","source","$_GET",458,{"id":404,"type":405,"label":406,"file":196,"line":407,"wp_function":408},"n1","sink","echo() [XSS]",463,"echo",[410],{"from":399,"to":404,"sanitized":411},true,"low",{"entryPoint":414,"graph":415,"unsanitizedCount":47,"severity":412},"\u003Cdashboard> (dashboard.php:0)",{"nodes":416,"edges":419},[417,418],{"id":399,"type":400,"label":401,"file":352,"line":357},{"id":404,"type":405,"label":406,"file":352,"line":341,"wp_function":408},[420],{"from":399,"to":404,"sanitized":421},false,{"summary":423,"deductions":424},"The \"amministrazione-trasparente\" plugin version 9.1 exhibits a mixed security posture. On the positive side, the static analysis reveals good practices such as the absence of dangerous functions, the use of prepared statements for all SQL queries, and a decent proportion of properly escaped output. The plugin also incorporates at least one nonce check and one capability check, which are crucial for preventing common web vulnerabilities.\n\nHowever, concerns arise from the taint analysis, which identified one flow with an unsanitized path. While classified as not critical or high severity, this indicates a potential weakness where user-supplied data might be processed in an insecure manner, potentially leading to vulnerabilities if exploited. Furthermore, the plugin's history of three medium-severity CVEs, primarily involving Cross-site Scripting and Cross-Site Request Forgery, is a significant concern. The fact that the last vulnerability was very recent (2025-08-30) suggests a pattern of introducing exploitable flaws, even if they are consistently patched.\n\nIn conclusion, while the plugin demonstrates some strong security fundamentals, the presence of an unsanitized path in taint analysis and its history of medium-severity vulnerabilities necessitate careful attention. The plugin is not inherently insecure, but the recurring nature of past issues and the identified taint flow indicate areas that require diligent monitoring and potential further hardening to mitigate ongoing risks.",[425,427,430],{"reason":426,"points":315},"Taint flow with unsanitized path",{"reason":428,"points":429},"History of 3 medium severity CVEs",15,{"reason":431,"points":248},"82% of outputs properly escaped (implies 18% not)","2026-03-16T18:45:42.249Z",{"wat":434,"direct":446},{"assetPaths":435,"generatorPatterns":443,"scriptPaths":444,"versionParams":445},[436,437,438,439,440,441,442],"\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fcss\u002Fat-custom.css","\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fcss\u002Fat-style.css","\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fcss\u002Fdatatable\u002FdataTables.bootstrap.min.css","\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fcss\u002Fdatatable\u002Fdatatables.min.css","\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fjs\u002Fat-functions.js","\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fjs\u002Fdatatable\u002FdataTables.bootstrap.min.js","\u002Fwp-content\u002Fplugins\u002Famministrazione-trasparente\u002Fjs\u002Fdatatable\u002FdataTables.min.js",[],[440,442,441],[],{"cssClasses":447,"htmlComments":450,"htmlAttributes":452,"restEndpoints":454,"jsGlobals":456,"shortcodeOutput":458},[448,449],"at-content","at-table-wrapper",[451]," =========== SHORTCODES [at-head] & [at-desc] & [at-table] & [at-list] =========== ",[453],"data-at-id",[455],"\u002Fwp-json\u002Famministrazione-trasparente\u002Fv1\u002Fconfig",[457],"at_options",[459,460,461,462,463],"[at-head]","[at-desc]","[at-table]","[at-list]","[at-sezioni"]