[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fax8LDj7_baZy48VOpWf8oAbMlkEHAvUvLDyGVlwEWAs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":130,"fingerprints":204},"appstore-lookup","AppStore Lookup for WordPress","1.5.1","Adam D","https:\u002F\u002Fprofiles.wordpress.org\u002Fadamdionne\u002F","\u003Cp>The AppStore Lookup is a simple WordPress plugin that provides shortcodes for querying Apple’s Lookup API to get app data from iTunes or the Mac AppStore.  You can modify it as you wish, or use the built-in options to make it fit the needs of your site.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Lookup and display data from Mac App Store and iPhone\u002FiPad App Store\u003C\u002Fli>\n\u003Cli>Display App icons\u003C\u002Fli>\n\u003Cli>Display App screenshots\u003C\u002Fli>\n\u003Cli>Up-to-date app ratings information\u003C\u002Fli>\n\u003Cli>Add Smart App Banners for iOS mobile Safari\u003C\u002Fli>\n\u003Cli>Use your Linkshare ID for download links and Smart App Banners\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fadamdionne.com\" rel=\"nofollow ugc\">Support\u003C\u002Fa>\u003C\u002Fp>\n","Adds shortcodes that display data from iOS and Mac AppStore applications.",10,3206,100,1,"2017-02-09T21:02:00.000Z","4.7.32","4.0","",[20,21,22,23,24],"appstore","ipad","iphone","itunes","mac","http:\u002F\u002Fadamdionne.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fappstore-lookup.1.5.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"adamdionne",30,84,"2026-04-04T14:55:45.818Z",[38,55,71,88,111],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":11,"downloaded":46,"rating":13,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":18,"requires_php":18,"tags":50,"homepage":53,"download_link":54,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"app-reviews-lite","App Reviews LITE","1.4","admapps","https:\u002F\u002Fprofiles.wordpress.org\u002Fadmapps\u002F","\u003Cp>App Reviews Plugin, \u003Ca href=\"http:\u002F\u002Fappreviewsplugin.com\u002F\" title=\"the best way to highlight your iOS app reviews within WordPress\" rel=\"friend nofollow ugc\">the best way to highlight your iOS app reviews within WordPress, is now available in its Lite form!\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>If you are an iOS app developer with a WordPress marketing site for your mobile app, you’ve experienced the hassle of copying\u002Fpasting reviews from the iOS App Store onto your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Ratings and reviews give your app the social proof that it needs to convince others to download it\u003C\u002Fstrong>, so it’s critical to show them on your marketing web site as well. Stop the madness of finding, copying, and pasting reviews from the App Store onto your site – let the App Reviews plugin automatically display the latest reviews for you. \u003Cstrong>5 minute setup, no maintenance required.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The App Reviews plugin gives you a shortcode to put to use on your WordPress marketing site. All you have to do is put in the app id from the iOS App Store, and the plugin will do the rest. A flexible, responsive carousel will display on your site and show off your app’s ratings and reviews to everyone who comes to your site.\u003C\u002Fp>\n\u003Cp>\u003Cem>Never copy and paste reviews from the App Store again with the App Reviews plugin!\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note: This is the lite version of the App Reviews Plugin. Want even more features and customization? \u003Ca href=\"http:\u002F\u002Fappreviewsplugin.com\u002Fpricing\u002F\" title=\"Click here to purchase the best plugin to highlight your iOS app reviews within WordPress!\" rel=\"friend nofollow ugc\">Click here to purchase the best plugin to highlight your iOS app reviews within WordPress!\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Carousel to display iOS app ratings & reviews right from the App Store in real time on your Wordpress site. No maintenance required.",2504,2,"2020-07-11T14:55:00.000Z","5.4.19",[51,21,22,23,52],"ios","marketing","http:\u002F\u002Fappreviewsplugin.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapp-reviews-lite.zip",{"slug":20,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":11,"downloaded":62,"rating":13,"num_ratings":47,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":18,"tags":66,"homepage":69,"download_link":70,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"AppStore Links","4.5.2","Ste-Bi","https:\u002F\u002Fprofiles.wordpress.org\u002Fste-bi\u002F","\u003Cp>Use this Plugin if you are tired in changing URLs and prices on every Link to the AppStore on your page. This plugin updates all Data directly from the Apple Server.  You also can setup caching-times for images and the content. If you have an PHG-ID the plugin automatically creates Affiliate Links to the AppStore.\u003C\u002Fp>\n\u003Cp>You can easily add Links to the Apple AppStore with using [app ##idnumber##] in your posts, pages or comments. The ID number is the number from the official AppStore URL.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>[appimg ##idnumber##] gives you the screenshots!\u003C\u002Fli>\n\u003Cli>[appext ##idnumber##] gives you info, screenshots and a nice border.\u003C\u002Fli>\n\u003Cli>BETA (use with care): You can use something like: [app 307658513]\u003Cstrong>Developer:\u003C\u002Fstrong>{trackname}\u003Cbr \u002F>\n\u003Cstrong>Price:\u003C\u002Fstrong>{price} {dllink}\u003Cbr \u002F>\n[\u002Fapp]\u003C\u002Fli>\n\u003Cli>With these tags: {trackname}, {sellername}, {dllink}, {price}, {stars}, {description}, {artwork100}, {artwork60}\u003Cbr \u002F>\nYou can follow us for news on Twitter: http:\u002F\u002Ftwitter.com\u002FAppStore_plugin\u003C\u002Fli>\n\u003C\u002Ful>\n","Plugin for easy linking to (Mac) AppStore Apps. You can use the PGH-ID for automatically creating Affiliate-Links",19172,"2014-02-26T13:00:00.000Z","3.7.41","2.8.0",[67,20,21,22,68],"affiliate","ipod","http:\u002F\u002Ftirolercast.ste-bi.net\u002Fwordpress-plugins\u002Fappstore-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fappstore.zip",{"slug":72,"name":73,"version":74,"author":72,"author_profile":75,"description":76,"short_description":77,"active_installs":28,"downloaded":78,"rating":28,"num_ratings":28,"last_updated":79,"tested_up_to":80,"requires_at_least":81,"requires_php":82,"tags":83,"homepage":86,"download_link":87,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"thebbapp","TheBbApp: Native Mobile App Template for WordPress","0.1.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fthebbapp\u002F","\u003Cp>The \u003Ca href=\"https:\u002F\u002Fthebbapp.com\u002F?utm_source=wordpress.org&utm_medium=plugin\" rel=\"nofollow ugc\">BbApp\u003C\u002Fa> framework lets you skip months of pain on the repetitive parts of building a very expensive app for WordPress.\u003C\u002Fp>\n\u003Cp>It includes an XCode project template and dozens of frameworks to tie them together ready for review by the app store.\u003C\u002Fp>\n\u003Cp>You can use BbApp with WordPress alone or BBPress. To enjoy a fully-featured native app just download, build in XCode, and publish.\u003C\u002Fp>\n\u003Cp>It also includes open-source PHP libraries that make it easy to integrate your existing native mobile application with WordPress.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Instant post loading\u003C\u002Fli>\n\u003Cli>Guest push alerts for new posts and comments\u003C\u002Fli>\n\u003Cli>Infinite scroll\u003C\u002Fli>\n\u003Cli>Guest posts + comments (BBPress only)\u003C\u002Fli>\n\u003Cli>Guest comments (WordPress and BBPress)\u003C\u002Fli>\n\u003Cli>Multiple post categories (WordPress only)\u003C\u002Fli>\n\u003Cli>Offline mode\u003C\u002Fli>\n\u003Cli>Mark read\u002Funread\u003C\u002Fli>\n\u003Cli>Dark mode\u003C\u002Fli>\n\u003Cli>Deep links\u003C\u002Fli>\n\u003Cli>“Install” website app banner\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Getting started\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Create an \u003Ca href=\"https:\u002F\u002Fdeveloper.apple.com\"\" rel=\"nofollow ugc\">Apple Developer\u003C\u002Fa> account\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthebbapp\u002Fwp-plugin-bb-app#getting-started\" rel=\"nofollow ugc\">Install\u003C\u002Fa> this plugin for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthebbapp\u002Fxcode-project-bb-app#getting-started\" rel=\"nofollow ugc\">Copy\u003C\u002Fa> the XCode template project\u003C\u002Fli>\n\u003C\u002Fol>\n","BbApp is a native mobile application with push alerts, instant loading and offline mode for WordPress. Also works with BBPress.",99,"2025-12-27T15:04:00.000Z","6.9.4","6.5","7.2.24",[51,21,22,84,85],"macos","native-app","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fthebbapp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthebbapp.0.1.0.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":98,"num_ratings":99,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":103,"tags":104,"homepage":108,"download_link":109,"security_score":110,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"multi-device-switcher","Multi Device Switcher","1.8.6","thingsym","https:\u002F\u002Fprofiles.wordpress.org\u002Fthingsym\u002F","\u003Cp>Multi Device Switcher plugin allows you to set a separate theme for device (Smart Phone, Tablet PC, Mobile Phone, Game and custom).\u003Cbr \u002F>\nThis plugin detects if your site is being viewed by UserAgent, and switches to selected theme.\u003Cbr \u002F>\nThe Custom Switcher can add every device.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set a separate theme for device (Smart Phone, Tablet PC, Mobile Phone, Game), switches to selected theme.\u003C\u002Fli>\n\u003Cli>Add every device by the \u003Cstrong>Custom Switcher\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Add links ‘Mobile’ or ‘PC’ in the theme by the \u003Cstrong>PC Switcher\u003C\u002Fstrong>, switch to the default theme.\u003C\u002Fli>\n\u003Cli>Switch the content of the post or page for each device by the \u003Cstrong>Display Switcher\u003C\u002Fstrong> Shortcode.\u003C\u002Fli>\n\u003Cli>Disable the switching of the theme for each url by the \u003Cstrong>Disable Switcher\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Can be using \u003Cstrong>is_multi_device()\u003C\u002Fstrong> function that detect of the device.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi Device Switcher Command\u003C\u002Fstrong> command-line tool (required WP-CLI)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>If you have any trouble, you can use the forums or report bugs.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Forum: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmulti-device-switcher\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmulti-device-switcher\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Issues: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\u002Fissues\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\u002Fissues\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Contribution\u003C\u002Fh4>\n\u003Cp>Small patches and bug reports can be submitted a issue tracker in Github. Forking on Github is another good way. You can send a pull request.\u003C\u002Fp>\n\u003Cp>Translating a plugin takes a lot of time, effort, and patience. I really appreciate the hard work from these contributors.\u003C\u002Fp>\n\u003Cp>If you have created or updated your own language pack, you can send gettext PO and MO files to author. I can bundle it into plugin.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\" rel=\"nofollow ugc\">VCS – GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmulti-device-switcher\u002F\" rel=\"ugc\">Homepage – WordPress Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fmulti-device-switcher\" rel=\"nofollow ugc\">Translate Multi Device Switcher into your language.\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also contribute by answering issues on the forums.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Forum: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmulti-device-switcher\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmulti-device-switcher\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Issues: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\u002Fissues\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\u002Fissues\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Patches and Bug Fixes\u003C\u002Fh4>\n\u003Cp>Forking on Github is another good way. You can send a pull request.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Fork \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\" rel=\"nofollow ugc\">Multi Device Switcher\u003C\u002Fa> from GitHub repository\u003C\u002Fli>\n\u003Cli>Create a feature branch: git checkout -b my-new-feature\u003C\u002Fli>\n\u003Cli>Commit your changes: git commit -am ‘Add some feature’\u003C\u002Fli>\n\u003Cli>Push to the branch: git push origin my-new-feature\u003C\u002Fli>\n\u003Cli>Create new Pull Request\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Contribute guidlines\u003C\u002Fh4>\n\u003Cp>If you would like to contribute, here are some notes and guidlines.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>All development happens on the \u003Cstrong>develop\u003C\u002Fstrong> branch, so it is always the most up-to-date\u003C\u002Fli>\n\u003Cli>The \u003Cstrong>master\u003C\u002Fstrong> branch only contains tagged releases\u003C\u002Fli>\n\u003Cli>If you are going to be submitting a pull request, please submit your pull request to the \u003Cstrong>develop\u003C\u002Fstrong> branch\u003C\u002Fli>\n\u003Cli>See about \u003Ca href=\"https:\u002F\u002Fhelp.github.com\u002Farticles\u002Ffork-a-repo\u002F\" rel=\"nofollow ugc\">forking\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fhelp.github.com\u002Farticles\u002Fusing-pull-requests\u002F\" rel=\"nofollow ugc\">pull requests\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Test Matrix\u003C\u002Fh4>\n\u003Cp>For operation compatibility between PHP version and WordPress version, see below \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher\u002Factions\" rel=\"nofollow ugc\">Github Actions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Known bugs\u003C\u002Fh4>\n\u003Cp>WordPress Core version 6.4 – 6.4.1\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Theme doesn’t switch properly\u003C\u002Fli>\n\u003Cli>Bug report: https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F59847\u003C\u002Fli>\n\u003Cli>It seems to have been caused by a change (breaking change) at https:\u002F\u002Fcore.trac.wordpress.org\u002Fchangeset\u002F56635. The bug is fixed in https:\u002F\u002Fcore.trac.wordpress.org\u002Fchangeset\u002F57129 (fixed in WordPress 6.4.2)\u003C\u002Fli>\n\u003C\u002Ful>\n","Multi Device Switcher plugin allows you to set a separate theme for device (Smart Phone, Tablet PC, Mobile Phone, Game and custom).",20000,290715,86,11,"2025-01-17T07:15:00.000Z","6.7.5","4.9","5.6",[105,21,22,106,107],"android","switcher","theme","https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fmulti-device-switcher","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmulti-device-switcher.1.8.6.zip",92,{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":13,"num_ratings":121,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":18,"tags":125,"homepage":128,"download_link":129,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"retina-2x","Retina @2x","1.6","Wouter Postma","https:\u002F\u002Fprofiles.wordpress.org\u002Fwouterpostmanl\u002F","\u003Cp>This plugin adds a simple Javascript to your WordPress website that will check for each image if there is a retina version available. This will make sure that your images (logo’s, buttons, images with text) look sharp on Apple devices with retina displays.\u003C\u002Fp>\n\u003Cp>When you have for example a logo of 200 by 200 pixels called “Logo.png”, you will need to upload a second image of 400 by 400 pixels called “Logo@2x.png” in the exact same directory.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fimulus.github.io\u002Fretinajs\u002F\" rel=\"nofollow ugc\">Retina.js by imulus\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fwouterpostmanl#content-plugins\" rel=\"nofollow ugc\">View my other plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","A plugin that looks for retina images automatically based on the @2x naming convention.",800,10993,6,"2017-05-13T15:50:00.000Z","4.8.28","3.0.1",[126,51,21,22,127],"images","retina","https:\u002F\u002Fwouterpostma.nl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fretina-2x.1.6.zip",{"attackSurface":131,"codeSignals":146,"taintFlows":172,"riskAssessment":191,"analyzedAt":203},{"hooks":132,"ajaxHandlers":142,"restRoutes":143,"shortcodes":144,"cronEvents":145,"entryPointCount":28,"unprotectedCount":28},[133,139],{"type":134,"name":135,"callback":136,"file":137,"line":138},"action","admin_init","asl_pluginoptions_init","asl-admin.php",29,{"type":134,"name":140,"callback":141,"file":137,"line":34},"admin_menu","asl_pluginoptions_add_page",[],[],[],[],{"dangerousFunctions":147,"sqlUsage":148,"outputEscaping":150,"fileOperations":170,"externalRequests":14,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":171},[],{"prepared":28,"raw":28,"locations":149},[],{"escaped":28,"rawEcho":151,"locations":152},8,[153,156,158,160,162,163,164,167],{"file":137,"line":154,"context":155},55,"raw output",{"file":137,"line":157,"context":155},60,{"file":137,"line":159,"context":155},69,{"file":137,"line":161,"context":155},74,{"file":137,"line":35,"context":155},{"file":137,"line":98,"context":155},{"file":165,"line":166,"context":155},"asl-default-data.php",40,{"file":168,"line":169,"context":155},"asl.php",374,5,[],[173],{"entryPoint":174,"graph":175,"unsanitizedCount":14,"severity":190},"\u003Casl-default-data> (asl-default-data.php:0)",{"nodes":176,"edges":187},[177,182],{"id":178,"type":179,"label":180,"file":165,"line":181},"n0","source","$_SERVER",3,{"id":183,"type":184,"label":185,"file":165,"line":166,"wp_function":186},"n1","sink","echo() [XSS]","echo",[188],{"from":178,"to":183,"sanitized":189},false,"low",{"summary":192,"deductions":193},"The \"appstore-lookup\" v1.5.1 plugin exhibits a generally good security posture with respect to its attack surface, showing no AJAX handlers, REST API routes, shortcodes, or cron events. This significantly limits the plugin's exposure to direct external manipulation. Furthermore, all identified SQL queries utilize prepared statements, indicating a strong defense against SQL injection vulnerabilities. The absence of known CVEs and past vulnerabilities is also a positive sign of a well-maintained codebase.\n\nHowever, significant concerns arise from the static code analysis. The most alarming finding is that 100% of the 8 identified output operations are not properly escaped. This leaves the plugin highly susceptible to Cross-Site Scripting (XSS) attacks, where malicious scripts could be injected and executed within a user's browser. Additionally, the taint analysis revealed one flow with an unsanitized path, which, while not classified as critical or high, still represents a potential risk for path traversal or similar vulnerabilities if not handled carefully.\n\nDespite the lack of historical vulnerabilities, the identified code signals for unescaped output and unsanitized paths warrant attention. The absence of nonce checks and capability checks on any potential entry points, though the attack surface is zero, implies that if any entry points were to be introduced in future versions without proper checks, the risks would be amplified. In conclusion, while the plugin has a minimal attack surface and good SQL practices, the prevalent lack of output escaping and the presence of an unsanitized path represent critical security weaknesses that need immediate remediation.",[194,197,199,201],{"reason":195,"points":196},"0% output escaping",16,{"reason":198,"points":151},"Unsanitized path in taint flow",{"reason":200,"points":170},"No nonce checks",{"reason":202,"points":170},"No capability checks","2026-03-16T23:51:18.225Z",{"wat":205,"direct":214},{"assetPaths":206,"generatorPatterns":209,"scriptPaths":210,"versionParams":211},[207,208],"\u002Fwp-content\u002Fplugins\u002Fappstore-lookup\u002Fcss\u002Fasl.css","\u002Fwp-content\u002Fplugins\u002Fappstore-lookup\u002Fjs\u002Fappstore-lookup.js",[],[208],[212,213],"appstore-lookup\u002Fstyle.css?ver=","appstore-lookup\u002Fappstore-lookup.js?ver=",{"cssClasses":215,"htmlComments":221,"htmlAttributes":222,"restEndpoints":224,"jsGlobals":225,"shortcodeOutput":226},[216,217,218,219,220],"asl-link","asl-link-img","asl-icon-img","asl-screenshot-list","asl-app-screenshot",[],[223],"data-id",[],[],[227,228,229,230],"\u003Ca href=","\u003Cimg src=","\u003Cul class=\"asl-screenshot-list\">","\u003Cli class=\"asl-app-screenshot\">"]