[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYSKvM907oMmiwoAU-VDQEPBq6dyBRy8jN8H9VKUu3KQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":52,"fingerprints":118},"apoyl-autotop","[凹凸曼]自动顶贴活跃人气","1.1.0","apoyl","https:\u002F\u002Fprofiles.wordpress.org\u002Fapoyl\u002F","\u003Cp>基于用户自定义顶贴内容（比如顶、赞、顶一个，感谢分享等），无需要人工干预自动顶贴，让平台人气更加活跃。\u003C\u002Fp>\n\u003Ch3>插件功能\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>支持发完文章或更新文章后，文章后自动实现顶贴，自动活跃平台氛围\u003C\u002Fli>\n\u003Cli>支持顶贴用户名\u003C\u002Fli>\n\u003Cli>自定义顶贴内容，自动评论，支持Emoji表情\u003Cbr \u002F>\n比如\u003Cbr \u002F>\n👍顶得飞起！\u003Cbr \u002F>\n👏说得对！\u003Cbr \u002F>\n💯赞一个！\u003Cbr \u002F>\n等，分割符号英文回车换行\u003C\u002Fli>\n\u003Cli>支持随机间隔时间评论,时间秒数，比如 30~600 30秒到600秒之间随机评论，更加真实\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>以上功能部分免费,点击购买付费版：\u003Ca href=\"http:\u002F\u002Fwww.girltm.com\u002F\" rel=\"nofollow ugc\">凹凸曼插件\u003C\u002Fa>\u003Cbr \u002F>\n也可以加开发者QQ：3201361925 email: 3201361925@qq.com\u003C\u002Fp>\n","基于用户自定义顶贴内容（比如顶、赞、顶一个，感谢分享等），无需要人工干预自动顶贴，让平台人气更加活跃。",0,610,"2025-04-24T02:09:00.000Z","6.8.5","6.0","7.4",[18,19,20,21],"%e9%a1%b6%e8%b4%b4","%e6%b0%94%e6%b0%9b","%e6%b4%bb%e8%b7%83","%e4%ba%ba%e6%b0%94","http:\u002F\u002Fwww.girltm.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapoyl-autotop.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},27,710,30,94,"2026-04-04T22:25:12.122Z",[35],{"slug":36,"name":37,"version":38,"author":7,"author_profile":8,"description":39,"short_description":40,"active_installs":41,"downloaded":42,"rating":11,"num_ratings":11,"last_updated":43,"tested_up_to":44,"requires_at_least":15,"requires_php":16,"tags":45,"homepage":22,"download_link":51,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"apoyl-aicomments","[凹凸曼]AI自动回复AI自动评论","1.3.1","\u003Cp>基于DeepSeek大模型DeepSeek-V3、推理模型DeepSeek-R1、百度大模型，发完文章后，自动实现AI自动跟评论，多马甲随机回复，无需要人工干预自动回复，让平台运营更加活跃。\u003C\u002Fp>\n\u003Ch3>插件功能\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>支持发完文章或更新文章后，文章后自动实现AI回复AI跟评，帮助平台活跃人气\u003C\u002Fli>\n\u003Cli>支持最新DeepSeek-V3、DeepSeek-R1、百度大模型\u003C\u002Fli>\n\u003Cli>必须自行注册\u003Ca href=\"https:\u002F\u002Fplatform.deepseek.com\u002Fapi_keys\" rel=\"nofollow ugc\">深度求索DeepSeek平台\u003C\u002Fa> 或者 \u003Ca href=\"https:\u002F\u002Fconsole.bce.baidu.com\u002Fqianfan\u002Fais\u002Fconsole\u002FapplicationConsole\u002Fapplication\" rel=\"nofollow ugc\">百度大模型\u003C\u002Fa>并自行申请API Key和Secret Key，能正常访问百度大模型接口\u003C\u002Fli>\n\u003Cli>新增支持多马甲评论作者可自定义很多马甲，这样实现随机多个马甲评价，如凹凸曼,云端之上,AI评论等，分割符号英文,换行+\u003C\u002Fli>\n\u003Cli>新增支持评论字数限制（可选择50个字、100个字、150个字）\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>以上功能部分免费,点击购买付费版：\u003Ca href=\"http:\u002F\u002Fwww.girltm.com\u002F\" rel=\"nofollow ugc\">凹凸曼插件\u003C\u002Fa>\u003Cbr \u002F>\n也可以加开发者QQ：3201361925 email: 3201361925@qq.com\u003C\u002Fp>\n\u003Ch3>External Service Dependency\u003C\u002Fh3>\n\u003Cp>The AI Engine utilizes the API from \u003Ca href=\"https:\u002F\u002Fconsole.bce.baidu.com\u002Fqianfan\u002Fais\u002Fconsole\u002FapplicationConsole\u002Fapplication\" rel=\"nofollow ugc\">百度大模型平台\u003C\u002Fa>. This plugin does not gather any information from your 百度 account except for the number of tokens utilized. The data transmitted to the 百度 servers primarily consists of the content of your article and the context you specify. The usage shown in the plugin’s settings is just for reference. It is important to check your usage on the \u003Ca href=\"https:\u002F\u002Fconsole.bce.baidu.com\u002Fqianfan\u002Fais\u002Fconsole\u002FapplicationConsole\u002Fapplication\" rel=\"nofollow ugc\">百度 website\u003C\u002Fa> for accurate information. Please also review their \u003Ca href=\"https:\u002F\u002Fprivacy.baidu.com\u002Fpolicy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fpassport.baidu.com\u002Fstatic\u002Fpasspc-account\u002Fhtml\u002Fprotocal.html\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa> for further information.\u003Cbr \u002F>\n该插件利用第三方服务实现某些功能。具体而言，在特定情况下，它依赖百度的人工智能服务以增强其功能。请阅读以下信息，了解在何种情况下以及如何使用这个外部服务。使用百度AI授权接口通信服务https:\u002F\u002Faip.baidubce.com\u002F  如token:https:\u002F\u002Faip.baidubce.com\u002Foauth\u002F2.0\u002Ftoken\u003C\u002Fp>\n","基于DeepSeek大模型DeepSeek-V3、推理模型DeepSeek-R1、百度大模型，发完文章后，自动实现AI自动跟评论，多马甲随机回复，无需要人工干预自动回复，让平台运营更加活跃。",10,1071,"2025-12-25T08:27:00.000Z","6.9.4",[46,47,48,49,50],"ai%e6%96%87%e7%ab%a0","%e7%99%be%e5%ba%a6gpt","deepseek","%e9%a9%ac%e7%94%b2%e8%b7%9f%e8%af%84","%e6%b4%bb%e8%b7%83%e4%ba%ba%e6%b0%94","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapoyl-aicomments.zip",{"attackSurface":53,"codeSignals":74,"taintFlows":92,"riskAssessment":112,"analyzedAt":117},{"hooks":54,"ajaxHandlers":70,"restRoutes":71,"shortcodes":72,"cronEvents":73,"entryPointCount":11,"unprotectedCount":11},[55,61,64,67],{"type":56,"name":57,"callback":58,"file":59,"line":60},"action","plugins_loaded","anonymous","includes\\autotop.php",51,{"type":56,"name":62,"callback":58,"file":59,"line":63},"admin_menu",56,{"type":56,"name":65,"callback":58,"file":59,"line":66},"publish_post",57,{"type":56,"name":68,"callback":58,"file":59,"line":69},"the_content",62,[],[],[],[],{"dangerousFunctions":75,"sqlUsage":76,"outputEscaping":84,"fileOperations":11,"externalRequests":11,"nonceChecks":78,"capabilityChecks":11,"bundledLibraries":91},[],{"prepared":77,"raw":78,"locations":79},2,1,[80],{"file":81,"line":82,"context":83},"uninstall.php",8,"$wpdb->query() with variable interpolation",{"escaped":85,"rawEcho":78,"locations":86},13,[87],{"file":88,"line":89,"context":90},"admin\\partials\\setting.php",32,"raw output",[],[93],{"entryPoint":94,"graph":95,"unsanitizedCount":11,"severity":111},"\u003Csetting> (admin\\partials\\setting.php:0)",{"nodes":96,"edges":108},[97,102],{"id":98,"type":99,"label":100,"file":88,"line":101},"n0","source","$_POST",20,{"id":103,"type":104,"label":105,"file":88,"line":106,"wp_function":107},"n1","sink","update_option() [Settings Manipulation]",25,"update_option",[109],{"from":98,"to":103,"sanitized":110},true,"low",{"summary":113,"deductions":114},"The \"apoyl-autotop\" plugin version 1.1.0 exhibits a strong security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events indicates a minimal attack surface. The plugin also demonstrates good coding practices by utilizing prepared statements for a significant portion of its SQL queries and properly escaping most of its output. The presence of a nonce check further contributes to its security, preventing common cross-site request forgery attacks.\n\nThe static analysis reveals no critical or high-severity issues in taint analysis, and the vulnerability history shows no known CVEs. This suggests that the plugin has not historically been a target for significant vulnerabilities and that its current codebase is relatively clean.  However, the complete lack of capability checks is a notable weakness. While the current attack surface is zero, any future expansion or addition of functionality without proper capability checks could introduce significant privilege escalation vulnerabilities.\n\nIn conclusion, \"apoyl-autotop\" v1.1.0 appears to be a secure plugin at its current state, with no immediate exploitable vulnerabilities identified. Its minimal attack surface and adherence to basic security practices are commendable. The primary area for improvement lies in incorporating capability checks for any future development to ensure robust access control and prevent potential privilege escalation risks.",[115],{"reason":116,"points":41},"Missing capability checks","2026-03-17T06:42:45.825Z",{"wat":119,"direct":128},{"assetPaths":120,"generatorPatterns":123,"scriptPaths":124,"versionParams":125},[121,122],"\u002Fwp-content\u002Fplugins\u002Fapoyl-autotop\u002Fadmin\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fapoyl-autotop\u002Fadmin\u002Fjs\u002Fadmin.js",[],[],[126,127],"apoyl-autotop\u002Fadmin\u002Fcss\u002Fadmin.css?ver=","apoyl-autotop\u002Fadmin\u002Fjs\u002Fadmin.js?ver=",{"cssClasses":129,"htmlComments":130,"htmlAttributes":131,"restEndpoints":132,"jsGlobals":133,"shortcodeOutput":134},[],[],[],[],[],[]]