[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxJGuiUdMoMz343mLFsoHNoVDAwy02ENBsOYNZ4UAWzU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":17,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":133,"fingerprints":321},"bbpress-threaded-replies","bbPress Threaded Replies","0.4.3","Jennifer M. Dodd","https:\u002F\u002Fprofiles.wordpress.org\u002Fjmdodd\u002F","\u003Cp>bbPress Threaded Replies is based on comment-display functions from WordPress\u003Cbr \u002F>\nand topic-display functions from bbPress. Settings can be adjusted on the bbPress\u003Cbr \u002F>\nForums options page of WordPress. bbPress running as a WordPress plugin is required.\u003C\u002Fp>\n\u003Cp>bbPress Threaded Replies is incompatible with the Fancy Editor; enabling threading will\u003Cbr \u002F>\nautomatically disable the Fancy Editor.\u003C\u002Fp>\n\u003Cp>The plugin checks first in the stylesheet and template directories before reverting\u003Cbr \u002F>\nto the default plugin templates.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Development funded, in part, by Ariel Meadow Stallings and the Offbeat Empire.\u003C\u002Fp>\n","Add threaded (nested) reply functionality to bbPress.",10,15640,40,2,"2012-11-11T20:01:00.000Z","3.5.2","",[19,20,21,22,23],"bbpress","hierarchical","nested","replies","threaded","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-threaded-replies.0.4.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":25,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"jmdodd",4,70,30,84,"2026-04-05T09:44:51.539Z",[38,59,79,98,119],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":17,"tags":53,"homepage":56,"download_link":57,"security_score":58,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bbpress-sort-topic-replies","bbPress – Sort topic replies","1.0.3","SandyRig","https:\u002F\u002Fprofiles.wordpress.org\u002Fsandyrig\u002F","\u003Cp>Sort topic replies in ascending or descending order for each bbPress Topic. You can choose to save setting for each topic, for the whole Forum or set globally for every Topic.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Sort Replies\u003C\u002Fli>\n\u003Cli>Show leading topic(Original Post) at the top of each page\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Adds a simple options on the Forum and Topic side bar to choose. If you want the replies to any topic, or all the topics in the selected Forum to be sorted in Ascending or Descending order.\u003C\u002Fp>\n\u003Cp>bbPress default sorting order is Ascending order. This means the latest reply shows on the last page. Some people want the latest replies to show on the first pages. If that person is you, this plugin is for you.\u003C\u002Fp>\n\u003Cp>Settings priority applies in following order: Topic>Forum>Global\u003Cbr \u002F>\nFilter looks for the settings for each topic starting at the topic level. If settings not found at the Topic level, it looks for settings for the Forum the Topic belongs to. If nothing found there either, it applies the global settings. What this means is that you can fully customize sort setting for each forum and topic.\u003C\u002Fp>\n","Sort topic replies in ascending or descending order for each bbPress Topic.",400,6893,100,6,"2025-01-07T00:50:00.000Z","6.7.5","3.8",[19,22,54,55],"sort","topic","https:\u002F\u002Fatif.rocks\u002Fsort-bbpress-topic-replies\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-sort-topic-replies.zip",92,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":17,"download_link":78,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bbpress-private-replies","bbPress – Private Replies","1.3.3","Pippin Williamson","https:\u002F\u002Fprofiles.wordpress.org\u002Fmordauk\u002F","\u003Cp>This add-on plugin for bbPress will allow your forum posters to mark their replies as private, meaning that only the original poster and forum moderators can see the content of the reply. This is a great plugin to install if you use bbPress as a support forum where users may need to share confidential information, such as site URLs, passwords, etc.\u003C\u002Fp>\n\u003Cp>If you have suggestions or bugfixes for the plugin, please report them on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpippinsplugins\u002FbbPress-Private-replies\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Private Replies for bbPress as been translated into the following languages:\u003C\u002Fp>\n\u003Col>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Dutch\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Would you like to help translate the plugin into more languages? \u003Ca href=\"http:\u002F\u002Fpippinsplugins.com\u002Fcontact\" rel=\"nofollow ugc\">Contact Pippin\u003C\u002Fa>.\u003C\u002Fp>\n","A simple plugin to allow your bbPress users to mark their replies as private.",300,30033,98,12,"2016-10-14T15:47:00.000Z","4.7.32","3.2",[19,75,76,77,22],"forums","mordauk","private-replies","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-private-replies.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":48,"num_ratings":11,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":17,"tags":92,"homepage":96,"download_link":97,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bbpress-report-content","bbPress – Report Content","1.0.5","Josh Eaton","https:\u002F\u002Fprofiles.wordpress.org\u002Fjjeaton\u002F","\u003Cp>Give your bbPress forum users the ability to report inappropriate content or spam in topics or replies. This plugin adds a “report” admin link to topics and replies, when clicked, the topic\u002Freply is assigned a post status of “User Reported”.\u003C\u002Fp>\n\u003Cp>All logged-in users can report content and see that a topic has been reported, only Moderators and up can un-report the content. Integrates with the standard Topic admin screens.\u003C\u002Fp>\n\u003Cp>When a topic is reported, a banner is shown at the top of the page indicating that the topic has been reported as inappropriate. For replies, a message is added within the reply, before the content.\u003C\u002Fp>\n\u003Cp>Requires bbPress 2.4+.\u003C\u002Fp>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cp>bbPress – Report Content is fully internationalized and ready for translation:\u003C\u002Fp>\n\u003Cp>The following translations are currently available:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Croatian (hr) – Sanjin Barac\u003C\u002Fli>\n\u003Cli>Finnish (fi) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMarkoKaartinen\" rel=\"nofollow ugc\">Marko Kaartinen\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>French (fr_FR) – \u003Ca href=\"http:\u002F\u002Ftechnocyclope.com\u002F\" rel=\"nofollow ugc\">Matthieu Durocher\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>German (de_DE) – \u003Ca href=\"http:\u002F\u002Fwww.thunderbird-mail.de\u002F\" rel=\"nofollow ugc\">Alexander Ihrig\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian (it_IT) – Barbara Lerici\u003C\u002Fli>\n\u003Cli>Polish (pl_PL) – Paulina\u003C\u002Fli>\n\u003Cli>Spanish (es_ES) – \u003Ca href=\"http:\u002F\u002Fwww.webhostinghub.com\u002F\" rel=\"nofollow ugc\">Andrew Kurtis – WebHostingHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>New language packs, or updates to existing ones, can be sent via GitHub or by \u003Ca href=\"http:\u002F\u002Fwww.josheaton.org\u002Fcontact\u002F\" rel=\"nofollow ugc\">contacting me\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Developers\u003C\u002Fh4>\n\u003Cp>Active development happens on Github: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjjeaton\u002Fbbpress-report-content\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fjjeaton\u002Fbbpress-report-content\u003C\u002Fa>. PRs welcome!\u003C\u002Fp>\n","Give your bbPress forum users the ability to report inappropriate content or spam in topics or replies.",200,16154,"2014-11-12T14:06:00.000Z","4.0.38","3.6",[19,93,22,94,95],"content","report","topics","http:\u002F\u002Fwww.josheaton.org\u002Fwordpress-plugins\u002Fbbpress-report-content\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-report-content.1.0.5.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":48,"downloaded":106,"rating":107,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":17,"tags":112,"homepage":117,"download_link":118,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bbpress-new-topics","bbPress New Topics","1.0.1","bandicootmarketing","https:\u002F\u002Fprofiles.wordpress.org\u002Ftinkerpriest\u002F","\u003Cp>A ‘New’ label will be prepended to the title of every unread topic and topic that contains unread replies. This makes it a whole lot easier for all keymasters and moderators to identify what’s been happening since last time they check in.\u003C\u002Fp>\n","Displays a \"new\" label on topics that are unread or have unread replies for all keymasters and moderators.",12471,52,7,"2015-08-18T16:04:00.000Z","4.3.34","3.5",[19,113,114,115,116],"new-replies","new-topics","notification","unread","http:\u002F\u002Fbavotasan.com\u002F2014\u002Fbbpress-new-topics-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-new-topics.1.0.1.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":48,"downloaded":127,"rating":26,"num_ratings":26,"last_updated":128,"tested_up_to":17,"requires_at_least":17,"requires_php":17,"tags":129,"homepage":17,"download_link":132,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bbpress-reply-titles","bbPress Reply Titles","1.0","Boone Gorges","https:\u002F\u002Fprofiles.wordpress.org\u002Fboonebgorges\u002F","\u003Cp>Add a Title field to bbPress replies. Requires bbPress.\u003C\u002Fp>\n\u003Cp>Originally developed for \u003Ca href=\"http:\u002F\u002Fmcnrc.org\u002F\" rel=\"nofollow ugc\">mcnrc.org at LaGuardia Community College, CUNY\u003C\u002Fa>.\u003C\u002Fp>\n","Add a Title field to bbPress replies.",3233,"2016-07-25T14:28:00.000Z",[19,22,130,131],"reply","title","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-reply-titles.1.0.zip",{"attackSurface":134,"codeSignals":281,"taintFlows":312,"riskAssessment":313,"analyzedAt":320},{"hooks":135,"ajaxHandlers":277,"restRoutes":278,"shortcodes":279,"cronEvents":280,"entryPointCount":26,"unprotectedCount":26},[136,143,147,151,155,159,164,167,172,176,180,184,188,192,196,199,202,205,208,211,214,217,220,223,226,229,232,234,237,240,243,246,249,254,258,261,264,268,271,273],{"type":137,"name":138,"callback":139,"priority":140,"file":141,"line":142},"action","bbp_init","init",11,"includes\\bbpress-threaded-replies.php",14,{"type":137,"name":144,"callback":145,"priority":11,"file":141,"line":146},"bbp_reply_metabox","extend_reply_metabox",21,{"type":137,"name":148,"callback":149,"priority":11,"file":141,"line":150},"bbp_reply_attributes_metabox_save","extend_reply_attributes_metabox_save",22,{"type":137,"name":152,"callback":153,"file":141,"line":154},"bbp_theme_before_reply_form_submit_wrapper","add_form_field",24,{"type":137,"name":156,"callback":157,"file":141,"line":158},"bbp_theme_before_reply_form","add_cancel_link",25,{"type":160,"name":161,"callback":162,"priority":11,"file":141,"line":163},"filter","bbp_has_replies","has_replies",29,{"type":160,"name":165,"callback":166,"priority":11,"file":141,"line":34},"bbp_new_reply_pre_set_terms","save_post",{"type":160,"name":168,"callback":169,"priority":170,"file":141,"line":171},"bbp_get_reply_url","reply_url",15,31,{"type":160,"name":173,"callback":174,"priority":11,"file":141,"line":175},"bbp_get_replies_per_page","replies_per_page",32,{"type":160,"name":177,"callback":178,"file":141,"line":179},"bbp_replies_pagination","replies_pagination",33,{"type":160,"name":181,"callback":182,"priority":11,"file":141,"line":183},"bbp_get_topic_pagination","get_topic_pagination",34,{"type":160,"name":185,"callback":186,"file":141,"line":187},"bbp_get_topic_pagination_count","get_topic_pagination_count",35,{"type":137,"name":189,"callback":190,"priority":11,"file":141,"line":191},"bbp_merge_topic","merge_topic",36,{"type":137,"name":193,"callback":194,"priority":11,"file":141,"line":195},"bbp_pre_split_topic","split_topic",37,{"type":137,"name":197,"callback":198,"file":141,"line":13},"bbp_new_reply_pre_extras","clean_cache",{"type":137,"name":200,"callback":198,"file":141,"line":201},"bbp_edit_reply_pre_extras",41,{"type":137,"name":203,"callback":198,"file":141,"line":204},"bbp_spam_reply",42,{"type":137,"name":206,"callback":198,"file":141,"line":207},"bbp_unspam_reply",43,{"type":137,"name":209,"callback":198,"file":141,"line":210},"bbp_delete_reply",44,{"type":137,"name":212,"callback":198,"file":141,"line":213},"bbp_trash_reply",45,{"type":137,"name":215,"callback":198,"file":141,"line":216},"bbp_untrash_reply",46,{"type":137,"name":218,"callback":198,"file":141,"line":219},"bbp_post_split_topic",47,{"type":137,"name":221,"callback":198,"file":141,"line":222},"bbp_merged_topic",48,{"type":137,"name":224,"callback":198,"file":141,"line":225},"bbp_closed_topic",49,{"type":137,"name":227,"callback":198,"file":141,"line":228},"bbp_opened_topic",50,{"type":137,"name":230,"callback":198,"file":141,"line":231},"bbp_spammed_topic",51,{"type":137,"name":233,"callback":198,"file":141,"line":107},"bbp_unspammed_topic",{"type":137,"name":235,"callback":198,"file":141,"line":236},"bbp_sticked_topic",53,{"type":137,"name":238,"callback":198,"file":141,"line":239},"bbp_unsticked_topic",54,{"type":137,"name":241,"callback":198,"file":141,"line":242},"bbp_deleted_topic",55,{"type":137,"name":244,"callback":198,"file":141,"line":245},"bbp_trashed_topic",56,{"type":137,"name":247,"callback":198,"file":141,"line":248},"bbp_untrashed_topic",57,{"type":137,"name":250,"callback":251,"priority":170,"file":252,"line":253},"bbp_admin_init","register_admin_settings","ucc-btr-loader.php",69,{"type":137,"name":255,"callback":256,"priority":11,"file":252,"line":257},"get_template_part_loop","get_template_part",78,{"type":160,"name":259,"callback":259,"priority":11,"file":252,"line":260},"bbp_get_template_part",79,{"type":137,"name":262,"callback":262,"priority":170,"file":252,"line":263},"template_redirect",81,{"type":160,"name":265,"callback":266,"file":252,"line":267},"bbp_use_wp_editor","__return_false",83,{"type":137,"name":269,"callback":270,"file":252,"line":35},"wp_enqueue_scripts","register_externals",{"type":137,"name":269,"callback":272,"file":252,"line":25},"load_externals",{"type":137,"name":274,"callback":275,"file":252,"line":276},"plugins_loaded","ucc_btr_loader",254,[],[],[],[],{"dangerousFunctions":282,"sqlUsage":283,"outputEscaping":286,"fileOperations":26,"externalRequests":26,"nonceChecks":310,"capabilityChecks":26,"bundledLibraries":311},[],{"prepared":284,"raw":26,"locations":285},8,[],{"escaped":284,"rawEcho":11,"locations":287},[288,291,293,295,297,299,301,304,306,308],{"file":141,"line":289,"context":290},68,"raw output",{"file":141,"line":292,"context":290},102,{"file":141,"line":294,"context":290},103,{"file":141,"line":296,"context":290},111,{"file":298,"line":195,"context":290},"includes\\ucc-btr-callbacks.php",{"file":298,"line":300,"context":290},89,{"file":302,"line":303,"context":290},"includes\\ucc-btr-functions.php",311,{"file":302,"line":305,"context":290},359,{"file":302,"line":307,"context":290},381,{"file":252,"line":309,"context":290},130,3,[],[],{"summary":314,"deductions":315},"The bbpress-threaded-replies v0.4.3 plugin exhibits a generally positive security posture, with several key strengths. Notably, it employs prepared statements for all its SQL queries, which is an excellent practice for preventing SQL injection vulnerabilities. The absence of file operations, external HTTP requests, and a large attack surface (no AJAX handlers, REST API routes, or shortcodes) further reduces potential exposure. The presence of nonce checks, even if limited, is also a good sign of security awareness.\n\nHowever, a significant concern arises from the code analysis regarding output escaping. With 18 total outputs and only 44% properly escaped, there is a substantial risk of cross-site scripting (XSS) vulnerabilities. Any unsanitized output rendered in the browser could be exploited by attackers. Additionally, the plugin lacks capability checks on its entry points, meaning that any potential vulnerabilities exposed through its limited attack surface would not be protected by WordPress's role-based access control. The absence of any recorded vulnerabilities in its history might indicate a lack of past scrutiny or a very simple functionality, but it does not guarantee current security.\n\nIn conclusion, while the plugin demonstrates good practices in data handling (SQL) and has a small attack surface, the significant percentage of improperly escaped output represents a clear and present danger. The lack of capability checks is another area of concern. Users should be aware of the potential for XSS attacks and consider whether the benefits of the plugin outweigh this risk, or if updates have addressed these issues.",[316,318],{"reason":317,"points":70},"Low percentage of properly escaped output",{"reason":319,"points":108},"No capability checks on entry points","2026-03-16T23:55:19.630Z",{"wat":322,"direct":329},{"assetPaths":323,"generatorPatterns":326,"scriptPaths":327,"versionParams":328},[324,325],"\u002Fwp-content\u002Fplugins\u002Fbbpress-threaded-replies\u002Fjs\u002Fbbpress-threaded-replies.js","\u002Fwp-content\u002Fplugins\u002Fbbpress-threaded-replies\u002Fcss\u002Fbbpress-threaded-replies.css",[],[324],[],{"cssClasses":330,"htmlComments":341,"htmlAttributes":344,"restEndpoints":346,"jsGlobals":347,"shortcodeOutput":349},[331,332,333,334,335,336,337,338,339,340],"btr-reply-link","btr-reply-form-wrapper","btr-reply-form","btr-reply-thread","btr-reply-level-1","btr-reply-level-2","btr-reply-level-3","btr-reply-level-4","btr-reply-level-5","btr-reply-level-6",[342,343],"\u003C!-- bbPress Threaded Replies settings -->","\u003C!-- \u002FbbPress Threaded Replies settings -->",[345],"data-depth",[],[348],"ucc_btr_ajax_object",[]]