[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fAJwb2zDlQnpgA8NOc-Gyj7f2EaN58Rmt69JN_Kuk1eI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":149,"fingerprints":731},"awsom-pixgallery","AWSOM Pixgallery","4.8.0","harknell","https:\u002F\u002Fprofiles.wordpress.org\u002Fharknell\u002F","\u003Cp>AWSOM Pixgallery is an Image Gallery\u002FArchive plugin designed to make it easier for Artists or Webcomic creators to set up a portfolio of their artwork. It features Automatic Watermarking, captioning using the Visual Editor or HTML, sorting, auto-thumbnailing, Comicpress theme support, per image\u002Fgallery commenting and more. It is a WordPress native Plugin and does not require any config or file changes or outside tool integration to work; just activate the plugin and add a line of text to any post or page and your Gallery of Images will appear. All options are handled through the regular WordPress Admin interface. More features are in development now such as tagging, extensive theme control through Admin interface, and more.\u003Cbr \u002F>\nPart of the www.AWSOM.org series of WordPress Plugins developed by Harknell\u003C\u002Fp>\n\u003Ch3>Upgrading From Previous Version\u003C\u002Fh3>\n\u003Cp>To upgrade from a previous version to the 4.8.X version:\u003C\u002Fp>\n\u003Cp>1) Go to the Admin Plugins menu and deactivate the previous version of AWSOM Pixgallery.\u003C\u002Fp>\n\u003Cp>2) Delete the pixgallery folder from your wp-content\u002Fplugins folder\u003C\u002Fp>\n\u003Cp>3) copy the new awsom-pixgallery plugin folder to the wp-content\u002Fplugins folder (please note the folder name now MUST be awsom-pixgallery)\u003C\u002Fp>\n\u003Cp>4) go to the Admin Plugins menu and activate the 4.8.X version.\u003C\u002Fp>\n\u003Cp>5) Upgrade is complete.\u003C\u002Fp>\n\u003Cp>6) Optional steps: There is a new option in the Pixgallery options area to create the default cache folder used by the new version of the plugin.\u003Cbr \u002F>\nIt is not a requirement to switch to the new default cache folder if your previous one was working fine, it’s just an option.\u003Cbr \u002F>\nFor anyone having issues with their cache folder it is suggested to click the “Create Default Cache” button, which should eliminate\u003Cbr \u002F>\nyour issue. The cache folder field will then automatically update to reflect that you are using the default cache folder. You may delete the old cache folder you\u003Cbr \u002F>\nwere originally using.\u003C\u002Fp>\n\u003Cp>7) AWSOM Pixgallery now also has the ability to create a default gallery folder in your uploads folder. You can create this folder by going to the Appearance Galleries admin\u003Cbr \u002F>\nmenu and clicking the create default gallery button.\u003C\u002Fp>\n","AWSOM Pixgallery is an Image Gallery\u002FArchive plugin for Wordpress designed to make it easier for Artists or Webcomic creators to set up a portfolio of &hellip;",20,31520,0,"","6.0.11","2.0.5",[18,19,20,21,22],"admin","gallery","images","media","post","http:\u002F\u002Fwww.awsom.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawsom-pixgallery.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":31,"trust_score":33,"computed_at":34},2,30,93,89,"2026-04-04T02:50:46.592Z",[36,69,88,105,126],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":14,"short_description":42,"active_installs":11,"downloaded":43,"rating":13,"num_ratings":13,"last_updated":44,"tested_up_to":45,"requires_at_least":46,"requires_php":14,"tags":47,"homepage":14,"download_link":66,"security_score":67,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":68},"real-postimages","real.PostImages","1.3","real.master","https:\u002F\u002Fprofiles.wordpress.org\u002Frealmaster-1\u002F","Дополнительное поле записей (постов) для изображений. | English read below",2054,"2016-05-15T14:51:00.000Z","4.5.33","4.1.1",[18,48,49,50,51,52,53,54,55,56,57,19,58,20,21,59,22,60,61,62,37,63,64,65],"%d0%b0%d0%b4%d0%bc%d0%b8%d0%bd","%d0%b3%d0%b0%d0%bb%d0%b5%d1%80%d0%b5%d1%8f","%d0%b7%d0%b0%d0%bf%d0%b8%d1%81%d1%8c","%d0%b8%d0%b7%d0%be%d0%b1%d1%80%d0%b0%d0%b6%d0%b5%d0%bd%d0%b8%d1%8f","%d0%ba%d0%b0%d1%80%d1%82%d0%b8%d0%bd%d0%ba%d0%b0","%d0%ba%d0%b0%d1%80%d1%82%d0%b8%d0%bd%d0%ba%d0%b8","%d0%bc%d0%b5%d0%b4%d0%b8%d0%b0","%d0%bc%d0%b8%d0%bd%d0%b8%d0%b0%d1%82%d1%8e%d1%80%d0%b0","%d0%bc%d0%b8%d0%bd%d0%b8%d0%b0%d1%82%d1%8e%d1%80%d1%8b","%d0%bf%d0%be%d1%81%d1%82","image","%d1%80%d0%b5%d0%b0%d0%bb%d0%b8%d1%81%d1%82","post-images","postimages","real","thumb","thumbnail","thumbnails","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freal-postimages.zip",85,"2026-03-15T15:16:48.613Z",{"slug":70,"name":71,"version":72,"author":73,"author_profile":74,"description":75,"short_description":76,"active_installs":77,"downloaded":78,"rating":79,"num_ratings":80,"last_updated":81,"tested_up_to":82,"requires_at_least":83,"requires_php":14,"tags":84,"homepage":86,"download_link":87,"security_score":67,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":68},"scissors-watermark","Scissors and Watermark","3.2.1","Apollo139","https:\u002F\u002Fprofiles.wordpress.org\u002Faloziak\u002F","\u003Cp>This plugin adds cropping, resizing, and rotating functionality to WordPress’ image upload and management dialogs. Scissors also allows automatic resizing of images when they are uploaded and supports automatic and manual watermarking of images. Additionally, images that are resized in the post editor are automatically resampled to the requested size using bilinear filtering when a post is saved, which improves the perceived image quality while reducing the amount of data transferred at the same time.\u003C\u002Fp>\n\u003Cp>Custom image size supported!\u003C\u002Fp>\n\u003Cp>Check settings of this plugin after activation. Watermarking function must be set before using!\u003C\u002Fp>\n\u003Cp>Please note that WordPress versions 3.4.2 and older are not supported!\u003C\u002Fp>\n\u003Cp>This plugin builds on the plugin Scissors Continued v2.1. Many thanks to \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fhuiz\u002F\" rel=\"nofollow ugc\">huiz\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fstephanreiter\u002F\" rel=\"nofollow ugc\">stephanreiter\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsamuelaguilera\u002F\" rel=\"nofollow ugc\">samuelaguilera\u003C\u002Fa>.\u003C\u002Fp>\n","Scissors and Watermark enhances WordPress' handling of images by introducing cropping, resizing, rotating, and watermarking functionality.",200,15831,62,7,"2013-01-02T15:16:00.000Z","3.5.2","3.5",[18,19,20,85,21],"library","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fscissors-watermark\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscissors-watermark.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":13,"num_ratings":13,"last_updated":98,"tested_up_to":72,"requires_at_least":99,"requires_php":14,"tags":100,"homepage":103,"download_link":104,"security_score":67,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":68},"posts-from-images","Posts from Images","1.1.1","Davey IJzermans","https:\u002F\u002Fprofiles.wordpress.org\u002Fdaveyijzermans\u002F","\u003Cp>The user interface should be self explanatory. Include and exclude posts by entering an ID, define a custom post type and modify the inserted content and the post’s title\u003C\u002Fp>\n","Makes a post for every image in your library and optionally sets it as the the post thumbnail, adds the image and\u002For gallery to the post body.",10,2022,"2011-08-03T15:44:00.000Z","3.0",[19,20,21,101,102],"post-type","posts","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fposts-from-images\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fposts-from-images.1.1.1.zip",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":13,"downloaded":113,"rating":13,"num_ratings":13,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":117,"tags":118,"homepage":124,"download_link":125,"security_score":67,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":68},"nowy-widget","Nowy Widget for WordPress","1.0.3","Nowy Inc","https:\u002F\u002Fprofiles.wordpress.org\u002Fnowyinc\u002F","\u003Cp>The Nowy widget integrates with your website to display any posts directly from the Nowy social app into a single, customizable, and embeddable-anywhere feed from a designated business account. The Nowy widget helps travel bloggers, professional travelers, travel agencies, property management\u002Fmarketing businesses, and related service providers build their own influential social community and connect to the largest supply of user content and experiences.\u003C\u002Fp>\n\u003Ch3>Brand New Concept for Custom layout\u003C\u002Fh3>\n\u003Cp>The Nowy Widget is auto-scalable based on the website’s layout and fits perfectly.\u003C\u002Fp>\n\u003Ch3>Where is the Nowy Widget for WordPress Plugin Most Useful?\u003C\u002Fh3>\n\u003Cp>Below is one small list of which areas you can start using the Nowy Widget Showcase for WordPress Plugin.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Travel Blogger’s social content showcase\u003C\u002Fli>\n\u003Cli>Fashion\u002FShopping\u002FMerchandise social content Showcase\u003C\u002Fli>\n\u003Cli>Travel stories\u002Fexperiences social content Showcase\u003C\u002Fli>\n\u003Cli>Travel agencies’ products\u002Fservices social content showcase\u003C\u002Fli>\n\u003Cli>Photography Showcase\u003C\u002Fli>\n\u003Cli>Product Showcase\u003C\u002Fli>\n\u003Cli>Testimonial Showcase\u003C\u002Fli>\n\u003Cli>Tour content Showcase\u003C\u002Fli>\n\u003Cli>Travel-related service providers\u003C\u002Fli>\n\u003Cli>property management\u002Fmarketing businesses Gallery Showcase\u003C\u002Fli>\n\u003Cli>Image\u002FMedia Gallery\u003C\u002Fli>\n\u003Cli>Etc\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features of Nowy Widget plugin for WordPress\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Perfect mobile responsive\u003C\u002Fli>\n\u003Cli>Auto-scalable and perfectly fit in mobile or desktop\u003C\u002Fli>\n\u003Cli>Posts amounts control \u003C\u002Fli>\n\u003Cli>Filter for certain Nowy user accounts, Nowy Places, Nowy Hashtags#\u003C\u002Fli>\n\u003Cli>Select topped posts at the plugin display\u003C\u002Fli>\n\u003Cli>Multiple options for display order ascending\u002Fdescending by Timestamps, Likes, Comments counts\u003C\u002Fli>\n\u003Cli>Exclude certain users’ accounts posts\u003C\u002Fli>\n\u003Cli>Exclude certain specific posts\u003C\u002Fli>\n\u003Cli>Cross-Browsers Support (Firefox, Chrome, Safari, Opera, etc.)\u003C\u002Fli>\n\u003Cli>No Coding Skill Required\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Technical Support\u003C\u002Fh3>\n\u003Cp>We’re active for any support issues and feature suggestions. So, I hope you will love it. If you have any more questions,Feel free to \u003Ca href=\"info@nowy.io\" rel=\"nofollow ugc\">contact us\u003C\u002Fa> if you want any custom widgets for your site.\u003C\u002Fp>\n\u003Ch3>Like Nowy Widget for WordPress?\u003C\u002Fh3>\n\u003Cp>Don’t forget to rate us on [WordPress].\u003C\u002Fp>\n","The Nowy Widget plugin allows you to create, manage, edit, and customize new Nowy app social content posts gallery layout.",1005,"2023-03-20T13:16:00.000Z","6.1.10","4.8","7.0",[119,120,121,122,123],"gallery-plugin","nowy-images-showcase","nowy-posts-gallery","nowy-widget-plugin","social-media-content","https:\u002F\u002Fnowy.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnowy-widget.1.0.3.zip",{"slug":127,"name":128,"version":129,"author":130,"author_profile":131,"description":132,"short_description":133,"active_installs":134,"downloaded":135,"rating":136,"num_ratings":137,"last_updated":138,"tested_up_to":139,"requires_at_least":140,"requires_php":117,"tags":141,"homepage":144,"download_link":145,"security_score":146,"vuln_count":147,"unpatched_count":13,"last_vuln_date":148,"fetched_at":68},"add-from-server","Add From Server","3.4.5","Dion Hulse","https:\u002F\u002Fprofiles.wordpress.org\u002Fdd32\u002F","\u003Cp>This plugin offers limited support. Please do not expect new features or too many bugfixes. Features may be removed at any time.\u003C\u002Fp>\n\u003Cp>Add From Server is designed to help ease the pain of bad web hosts, allowing you to upload files via FTP or SSH and later import them into WordPress.\u003C\u002Fp>\n\u003Cp>This plugin is NOT designed to..\u003Cbr \u002F>\n * Be used as a replacement for the file uploader\u003Cbr \u002F>\n * Be used for migration of websites\u003Cbr \u002F>\n * Re-import your files after moving webhosting\u003Cbr \u002F>\n * Batch import media\u003C\u002Fp>\n\u003Cp>This plugins IS designed to..\u003Cbr \u002F>\n * Import files which are larger than your hosting allows to be uploaded.\u003Cbr \u002F>\n * Import files which are too large for your internet connections upload speed.\u003C\u002Fp>\n\u003Cp>WordPress does a better job of file uploads than this plugin, so please consider your needs before you use it.\u003C\u002Fp>\n\u003Cp>You may also want to look at using WP-CLI for media import purposes:\u003Cbr \u002F>\nhttps:\u002F\u002Fdeveloper.wordpress.org\u002Fcli\u002Fcommands\u002Fmedia\u002Fimport\u002F\u003C\u002Fp>\n","Add From Server is designed to help ease the pain of bad web hosts, allowing you to upload files via FTP or SSH and later import them into WordPress.",70000,1319395,92,239,"2020-12-11T07:32:00.000Z","5.5.18","5.4",[18,142,21,22,143],"import","uploads","https:\u002F\u002Fdd32.id.au\u002Fwordpress-plugins\u002Fadd-from-server\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadd-from-server.3.4.5.zip",84,1,"2016-08-08 00:00:00",{"attackSurface":150,"codeSignals":217,"taintFlows":601,"riskAssessment":716,"analyzedAt":730},{"hooks":151,"ajaxHandlers":213,"restRoutes":214,"shortcodes":215,"cronEvents":216,"entryPointCount":13,"unprotectedCount":13},[152,158,162,167,172,176,180,184,188,191,195,199,203,207,210],{"type":153,"name":154,"callback":155,"file":156,"line":157},"action","activate_awsom-pixgallery\u002Fpixgallery.php","PixGallery_CaptionTableInstall","pixgallery.php",5262,{"type":153,"name":159,"callback":160,"file":156,"line":161},"wp_footer","PixGallery_Footer_Credit",5271,{"type":163,"name":164,"callback":165,"priority":31,"file":156,"line":166},"filter","comment_post_redirect","Pixgallery_Comment_Proper_Return",5274,{"type":163,"name":168,"callback":169,"priority":170,"file":156,"line":171},"comments_array","Pixgallery_Comment_Show",60,5275,{"type":153,"name":173,"callback":174,"priority":96,"file":156,"line":175},"comment_form","Pixgallery_Comment_Passvars",5276,{"type":153,"name":177,"callback":178,"priority":170,"file":156,"line":179},"comment_post","Pixgallery_Comment_Tracking",5277,{"type":163,"name":181,"callback":182,"priority":96,"file":156,"line":183},"wp_title","PixGallery_EditTitle",5280,{"type":153,"name":185,"callback":186,"priority":96,"file":156,"line":187},"wp_head","PixGallery_ShareThis_Integration",5283,{"type":153,"name":185,"callback":189,"priority":96,"file":156,"line":190},"PixGallery_AddToHeader",5285,{"type":153,"name":192,"callback":193,"priority":170,"file":156,"line":194},"delete_comment","Pixgallery_CleanupTracking",5286,{"type":153,"name":185,"callback":196,"priority":197,"file":156,"line":198},"PixGallery_Header",5,5287,{"type":153,"name":200,"callback":201,"file":156,"line":202},"admin_menu","PixGallery_Options_Hook",5288,{"type":163,"name":204,"callback":205,"priority":96,"file":156,"line":206},"the_content","PixGallery_PhotoGallery",5289,{"type":163,"name":204,"callback":208,"priority":96,"file":156,"line":209},"PixGallery_PhotoGalleryNewTag",5290,{"type":163,"name":204,"callback":211,"priority":96,"file":156,"line":212},"PixGallery_Image",5291,[],[],[],[],{"dangerousFunctions":218,"sqlUsage":238,"outputEscaping":392,"fileOperations":593,"externalRequests":13,"nonceChecks":594,"capabilityChecks":595,"bundledLibraries":596},[219,223,226,228,231,233,236],{"fn":220,"file":156,"line":221,"context":222},"create_function",1286,"usort($ReversedLists, create_function('$a,$b','return strnatcasecmp($a[FileTimeCreated],$b[FileTimeC",{"fn":220,"file":156,"line":224,"context":225},1564,"usort($ReversedContentList, create_function('$a,$b','return strnatcasecmp($a[FileTimeCreated],$b[Fil",{"fn":220,"file":156,"line":227,"context":225},1581,{"fn":220,"file":156,"line":229,"context":230},1598,"usort($ReversedContentList, create_function('$a,$b','return strcasecmp($a[Name],$b[Name]);'));",{"fn":220,"file":156,"line":232,"context":230},1616,{"fn":220,"file":156,"line":234,"context":235},1633,"usort($ReversedContentList, create_function('$a,$b','return strnatcasecmp($a[sortorder],$b[sortorder",{"fn":220,"file":156,"line":237,"context":235},1651,{"prepared":147,"raw":239,"locations":240},74,[241,244,247,249,251,253,255,257,259,261,263,265,267,269,271,273,275,277,279,281,283,285,287,289,291,293,295,298,300,302,304,306,308,310,312,314,316,318,320,322,324,326,328,330,332,334,336,338,340,342,344,346,348,350,352,354,356,358,360,362,364,366,368,370,372,374,376,378,380,382,384,386,388,390],{"file":156,"line":242,"context":243},167,"$wpdb->get_var() with variable interpolation",{"file":156,"line":245,"context":246},169,"$wpdb->query() with variable interpolation",{"file":156,"line":248,"context":243},204,{"file":156,"line":250,"context":246},205,{"file":156,"line":252,"context":243},210,{"file":156,"line":254,"context":246},211,{"file":156,"line":256,"context":243},231,{"file":156,"line":258,"context":243},240,{"file":156,"line":260,"context":243},241,{"file":156,"line":262,"context":243},253,{"file":156,"line":264,"context":243},1520,{"file":156,"line":266,"context":243},1530,{"file":156,"line":268,"context":243},1898,{"file":156,"line":270,"context":243},1928,{"file":156,"line":272,"context":243},1929,{"file":156,"line":274,"context":243},1932,{"file":156,"line":276,"context":243},1953,{"file":156,"line":278,"context":243},2043,{"file":156,"line":280,"context":243},2138,{"file":156,"line":282,"context":246},2140,{"file":156,"line":284,"context":243},2144,{"file":156,"line":286,"context":243},2150,{"file":156,"line":288,"context":243},2154,{"file":156,"line":290,"context":243},2166,{"file":156,"line":292,"context":243},2178,{"file":156,"line":294,"context":243},2182,{"file":156,"line":296,"context":297},2201,"$wpdb->get_results() with variable interpolation",{"file":156,"line":299,"context":297},2204,{"file":156,"line":301,"context":243},2324,{"file":156,"line":303,"context":243},2327,{"file":156,"line":305,"context":243},2411,{"file":156,"line":307,"context":243},2414,{"file":156,"line":309,"context":243},2701,{"file":156,"line":311,"context":243},3654,{"file":156,"line":313,"context":243},3661,{"file":156,"line":315,"context":246},3663,{"file":156,"line":317,"context":246},3668,{"file":156,"line":319,"context":243},3672,{"file":156,"line":321,"context":246},3674,{"file":156,"line":323,"context":246},3680,{"file":156,"line":325,"context":246},3724,{"file":156,"line":327,"context":246},3752,{"file":156,"line":329,"context":246},3755,{"file":156,"line":331,"context":243},3796,{"file":156,"line":333,"context":297},3821,{"file":156,"line":335,"context":246},3953,{"file":156,"line":337,"context":297},4082,{"file":156,"line":339,"context":297},4138,{"file":156,"line":341,"context":297},4148,{"file":156,"line":343,"context":243},4164,{"file":156,"line":345,"context":243},4165,{"file":156,"line":347,"context":297},4174,{"file":156,"line":349,"context":297},4188,{"file":156,"line":351,"context":243},4200,{"file":156,"line":353,"context":246},4336,{"file":156,"line":355,"context":246},4360,{"file":156,"line":357,"context":297},4387,{"file":156,"line":359,"context":297},4411,{"file":156,"line":361,"context":246},4513,{"file":156,"line":363,"context":243},4658,{"file":156,"line":365,"context":243},4690,{"file":156,"line":367,"context":246},4708,{"file":156,"line":369,"context":243},4715,{"file":156,"line":371,"context":246},4781,{"file":156,"line":373,"context":246},4782,{"file":156,"line":375,"context":246},4802,{"file":156,"line":377,"context":243},4922,{"file":156,"line":379,"context":243},4938,{"file":156,"line":381,"context":243},5012,{"file":156,"line":383,"context":243},5028,{"file":156,"line":385,"context":243},5161,{"file":156,"line":387,"context":243},5166,{"file":156,"line":389,"context":243},5228,{"file":156,"line":391,"context":243},5233,{"escaped":393,"rawEcho":394,"locations":395},3,108,[396,400,402,404,406,408,410,412,414,416,418,420,422,423,424,425,427,428,430,432,434,435,437,438,439,441,442,444,445,447,448,450,451,452,454,456,457,458,460,462,463,465,466,468,470,472,474,476,478,479,481,482,484,485,487,488,489,491,493,495,497,499,501,503,505,507,509,511,513,515,517,519,521,523,525,527,529,531,533,535,537,539,541,543,545,547,549,551,553,555,557,559,561,563,565,567,569,571,573,575,577,579,581,583,585,587,589,591],{"file":397,"line":398,"context":399},"pixgallery.js.php",723,"raw output",{"file":397,"line":401,"context":399},725,{"file":156,"line":403,"context":399},177,{"file":156,"line":405,"context":399},178,{"file":156,"line":407,"context":399},179,{"file":156,"line":409,"context":399},662,{"file":156,"line":411,"context":399},825,{"file":156,"line":413,"context":399},1041,{"file":156,"line":415,"context":399},1100,{"file":156,"line":417,"context":399},3026,{"file":156,"line":419,"context":399},3029,{"file":156,"line":421,"context":399},3045,{"file":156,"line":421,"context":399},{"file":156,"line":421,"context":399},{"file":156,"line":421,"context":399},{"file":156,"line":426,"context":399},3057,{"file":156,"line":426,"context":399},{"file":156,"line":429,"context":399},3071,{"file":156,"line":431,"context":399},3078,{"file":156,"line":433,"context":399},3093,{"file":156,"line":433,"context":399},{"file":156,"line":436,"context":399},3101,{"file":156,"line":436,"context":399},{"file":156,"line":436,"context":399},{"file":156,"line":440,"context":399},3110,{"file":156,"line":440,"context":399},{"file":156,"line":443,"context":399},3117,{"file":156,"line":443,"context":399},{"file":156,"line":446,"context":399},3144,{"file":156,"line":446,"context":399},{"file":156,"line":449,"context":399},3159,{"file":156,"line":449,"context":399},{"file":156,"line":449,"context":399},{"file":156,"line":453,"context":399},3265,{"file":156,"line":455,"context":399},3291,{"file":156,"line":455,"context":399},{"file":156,"line":455,"context":399},{"file":156,"line":459,"context":399},3297,{"file":156,"line":461,"context":399},3328,{"file":156,"line":461,"context":399},{"file":156,"line":464,"context":399},3337,{"file":156,"line":464,"context":399},{"file":156,"line":467,"context":399},3349,{"file":156,"line":469,"context":399},3355,{"file":156,"line":471,"context":399},3432,{"file":156,"line":473,"context":399},3434,{"file":156,"line":475,"context":399},3436,{"file":156,"line":477,"context":399},3466,{"file":156,"line":477,"context":399},{"file":156,"line":480,"context":399},3483,{"file":156,"line":480,"context":399},{"file":156,"line":483,"context":399},3503,{"file":156,"line":483,"context":399},{"file":156,"line":486,"context":399},3525,{"file":156,"line":486,"context":399},{"file":156,"line":486,"context":399},{"file":156,"line":490,"context":399},3568,{"file":156,"line":492,"context":399},3687,{"file":156,"line":494,"context":399},3733,{"file":156,"line":496,"context":399},3800,{"file":156,"line":498,"context":399},3861,{"file":156,"line":500,"context":399},3896,{"file":156,"line":502,"context":399},3898,{"file":156,"line":504,"context":399},3959,{"file":156,"line":506,"context":399},4006,{"file":156,"line":508,"context":399},4027,{"file":156,"line":510,"context":399},4104,{"file":156,"line":512,"context":399},4105,{"file":156,"line":514,"context":399},4106,{"file":156,"line":516,"context":399},4107,{"file":156,"line":518,"context":399},4108,{"file":156,"line":520,"context":399},4109,{"file":156,"line":522,"context":399},4110,{"file":156,"line":524,"context":399},4111,{"file":156,"line":526,"context":399},4112,{"file":156,"line":528,"context":399},4114,{"file":156,"line":530,"context":399},4118,{"file":156,"line":532,"context":399},4142,{"file":156,"line":534,"context":399},4153,{"file":156,"line":536,"context":399},4156,{"file":156,"line":538,"context":399},4169,{"file":156,"line":540,"context":399},4178,{"file":156,"line":542,"context":399},4202,{"file":156,"line":544,"context":399},4203,{"file":156,"line":546,"context":399},4204,{"file":156,"line":548,"context":399},4205,{"file":156,"line":550,"context":399},4206,{"file":156,"line":552,"context":399},4207,{"file":156,"line":554,"context":399},4208,{"file":156,"line":556,"context":399},4209,{"file":156,"line":558,"context":399},4210,{"file":156,"line":560,"context":399},4212,{"file":156,"line":562,"context":399},4216,{"file":156,"line":564,"context":399},4238,{"file":156,"line":566,"context":399},4342,{"file":156,"line":568,"context":399},4428,{"file":156,"line":570,"context":399},4466,{"file":156,"line":572,"context":399},4517,{"file":156,"line":574,"context":399},4552,{"file":156,"line":576,"context":399},4555,{"file":156,"line":578,"context":399},4579,{"file":156,"line":580,"context":399},4617,{"file":156,"line":582,"context":399},4827,{"file":156,"line":584,"context":399},4830,{"file":156,"line":586,"context":399},5156,{"file":156,"line":588,"context":399},5171,{"file":156,"line":590,"context":399},5223,{"file":156,"line":592,"context":399},5238,16,8,26,[597],{"name":598,"version":599,"knownCves":600},"TinyMCE","1.0",[],[602,638,648,688,701],{"entryPoint":603,"graph":604,"unsanitizedCount":30,"severity":637},"PixGallery_PhotoGallery_Collection (pixgallery.php:1774)",{"nodes":605,"edges":631},[606,611,615,620,623,626],{"id":607,"type":608,"label":609,"file":156,"line":610},"n0","source","$_REQUEST",1828,{"id":612,"type":613,"label":614,"file":156,"line":610},"n1","transform","→ PixGallery_PrintError()",{"id":616,"type":617,"label":618,"file":156,"line":409,"wp_function":619},"n2","sink","echo() [XSS]","echo",{"id":621,"type":608,"label":609,"file":156,"line":622},"n3",2056,{"id":624,"type":613,"label":625,"file":156,"line":622},"n4","→ PixGallery_Feed()",{"id":627,"type":617,"label":628,"file":156,"line":629,"wp_function":630},"n5","fopen() [File Access]",1342,"fopen",[632,634,635,636],{"from":607,"to":612,"sanitized":633},false,{"from":612,"to":616,"sanitized":633},{"from":621,"to":624,"sanitized":633},{"from":624,"to":627,"sanitized":633},"medium",{"entryPoint":639,"graph":640,"unsanitizedCount":30,"severity":637},"PixGallery_AddToHeader (pixgallery.php:5100)",{"nodes":641,"edges":646},[642,645],{"id":607,"type":608,"label":643,"file":156,"line":644},"$_SERVER (x2)",5125,{"id":612,"type":617,"label":618,"file":156,"line":586,"wp_function":619},[647],{"from":607,"to":612,"sanitized":633},{"entryPoint":649,"graph":650,"unsanitizedCount":30,"severity":637},"\u003Cpixgallery> (pixgallery.php:0)",{"nodes":651,"edges":679},[652,655,659,662,663,666,667,669,671,673,675,677],{"id":607,"type":608,"label":653,"file":156,"line":654},"$_POST (x2)",3937,{"id":612,"type":617,"label":656,"file":156,"line":657,"wp_function":658},"update_option() [Settings Manipulation]",3955,"update_option",{"id":616,"type":608,"label":660,"file":156,"line":661},"$_POST (x5)",3608,{"id":621,"type":617,"label":618,"file":156,"line":506,"wp_function":619},{"id":624,"type":608,"label":664,"file":156,"line":665},"$_REQUEST (x2)",1807,{"id":627,"type":617,"label":618,"file":156,"line":586,"wp_function":619},{"id":668,"type":608,"label":609,"file":156,"line":610},"n6",{"id":670,"type":613,"label":614,"file":156,"line":610},"n7",{"id":672,"type":617,"label":618,"file":156,"line":409,"wp_function":619},"n8",{"id":674,"type":608,"label":609,"file":156,"line":622},"n9",{"id":676,"type":613,"label":625,"file":156,"line":622},"n10",{"id":678,"type":617,"label":628,"file":156,"line":629,"wp_function":630},"n11",[680,682,683,684,685,686,687],{"from":607,"to":612,"sanitized":681},true,{"from":616,"to":621,"sanitized":681},{"from":624,"to":627,"sanitized":681},{"from":668,"to":670,"sanitized":633},{"from":670,"to":672,"sanitized":633},{"from":674,"to":676,"sanitized":633},{"from":676,"to":678,"sanitized":633},{"entryPoint":689,"graph":690,"unsanitizedCount":13,"severity":700},"PixGallery_Manage_Galleries (pixgallery.php:3563)",{"nodes":691,"edges":697},[692,694,695,696],{"id":607,"type":608,"label":693,"file":156,"line":654},"$_POST",{"id":612,"type":617,"label":656,"file":156,"line":657,"wp_function":658},{"id":616,"type":608,"label":653,"file":156,"line":661},{"id":621,"type":617,"label":618,"file":156,"line":506,"wp_function":619},[698,699],{"from":607,"to":612,"sanitized":681},{"from":616,"to":621,"sanitized":681},"low",{"entryPoint":702,"graph":703,"unsanitizedCount":13,"severity":700},"PixGallery_Manage_Captions (pixgallery.php:4231)",{"nodes":704,"edges":713},[705,707,709,712],{"id":607,"type":608,"label":693,"file":156,"line":706},4294,{"id":612,"type":617,"label":656,"file":156,"line":708,"wp_function":658},4298,{"id":616,"type":608,"label":710,"file":156,"line":711},"$_POST (x3)",4264,{"id":621,"type":617,"label":618,"file":156,"line":574,"wp_function":619},[714,715],{"from":607,"to":612,"sanitized":681},{"from":616,"to":621,"sanitized":681},{"summary":717,"deductions":718},"The \"awsom-pixgallery\" v4.8.0 plugin presents a mixed security picture. On one hand, the static analysis indicates a very limited attack surface with no exposed AJAX handlers, REST API routes, shortcodes, or cron events that lack proper authentication or permission checks. This suggests a good understanding of secure entry point management.\n\nHowever, significant concerns arise from the code signals and taint analysis. The presence of 7 instances of the dangerous `create_function` is a major red flag, as this function can be a source of code injection vulnerabilities if not handled with extreme care. Furthermore, only a small percentage (1%) of SQL queries use prepared statements, and a similarly low 3% of outputs are properly escaped. This indicates a high risk of SQL injection and cross-site scripting (XSS) vulnerabilities, respectively. The taint analysis, while not reporting critical or high severity flows, did identify 3 flows with unsanitized paths, hinting at potential issues with file handling or path traversal that could be exploited.\n\nThe vulnerability history is notably clean, with no recorded CVEs. This might suggest that the plugin has historically been relatively secure or that vulnerabilities have not been widely discovered or reported. However, the presence of the aforementioned code quality issues means that the absence of past vulnerabilities should not be seen as a guarantee of future security. The plugin exhibits strengths in attack surface limitation but weaknesses in secure coding practices regarding SQL, output escaping, and the use of dangerous functions.",[719,722,724,726,728],{"reason":720,"points":721},"Dangerous function create_function usage",15,{"reason":723,"points":96},"Low percentage of prepared SQL statements",{"reason":725,"points":594},"Low percentage of properly escaped output",{"reason":727,"points":96},"Unsanitized paths in taint analysis",{"reason":729,"points":393},"Bundled outdated TinyMCE library","2026-03-16T22:42:09.215Z",{"wat":732,"direct":743},{"assetPaths":733,"generatorPatterns":737,"scriptPaths":738,"versionParams":739},[734,735,736],"\u002Fwp-content\u002Fplugins\u002Fawsom-pixgallery\u002Fcss\u002Fpixgallery.css","\u002Fwp-content\u002Fplugins\u002Fawsom-pixgallery\u002Fjs\u002Fjquery-lightbox.js","\u002Fwp-content\u002Fplugins\u002Fawsom-pixgallery\u002Fjs\u002Fawsom_pixgallery.js",[],[735,736],[740,741,742],"awsom-pixgallery\u002Fcss\u002Fpixgallery.css?ver=","awsom-pixgallery\u002Fjs\u002Fjquery-lightbox.js?ver=","awsom-pixgallery\u002Fjs\u002Fawsom_pixgallery.js?ver=",{"cssClasses":744,"htmlComments":746,"htmlAttributes":750,"restEndpoints":753,"jsGlobals":754,"shortcodeOutput":757},[745],"awsom_pixgallery",[747,748,749],"\u003C!-- Mod added for AWSOM options -->","\u003C!-- End Mod -->","\u003C!-- Mod PixGallery -->",[751,752],"data-lightbox-gallery","data-lightbox-title",[],[755,756],"awsom_pixgallery_options","awsom_pixgallery_config",[758],"[awsom_pixgallery]"]