[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fcv3LNrx7AP3KvzYQ_pwPvngb6rLSDsNu1adKxq1h2f8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":48,"crawl_stats":38,"alternatives":55,"analysis":165,"fingerprints":229},"beerxml-shortcode","BeerXML Shortcode","0.8","Derek Springer","https:\u002F\u002Fprofiles.wordpress.org\u002Fderekspringer\u002F","\u003Cp>A shortcode for displaying beer recipes. Now with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshortcode-ui\u002F\" rel=\"ugc\">Shortcake (Shortcode UI)\u003C\u002Fa> integration!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Link to a BeerXML document to display recipe details, style details, fermentables, hops, miscs, yeast, mash steps, fermentation schedule, and notes.\u003C\u002Fli>\n\u003Cli>Allows you to easily switch between U.S. & Metric measurements.\u003C\u002Fli>\n\u003Cli>Control if & how long recipe is cached.\u003C\u002Fli>\n\u003Cli>Allow readers to download the recipe directly.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It follows the basic format of:\u003C\u002Fp>\n\u003Cp>[beerxml\u003Cbr \u002F>\n    recipe={URL}\u003Cbr \u002F>\n    metric=true|false\u003Cbr \u002F>\n    download=true|false\u003Cbr \u002F>\n    style=true|false\u003Cbr \u002F>\n    mash=true|false\u003Cbr \u002F>\n    fermentation=true|false\u003Cbr \u002F>\n    mhop=true|false\u003Cbr \u002F>\n    misc=true|false\u003Cbr \u002F>\n    actuals=true|false\u003Cbr \u002F>\n    cache=-1|{seconds to cache}]\u003C\u002Fp>\n\u003Cp>Please note all options (minus recipe) are optional and have the following defaults:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>metric = false\u003C\u002Fli>\n\u003Cli>cache = 12 hours (60 x 60 x 12 seconds), -1 kills the cache and sets value to 0\u003C\u002Fli>\n\u003Cli>download = true\u003C\u002Fli>\n\u003Cli>style = true\u003C\u002Fli>\n\u003Cli>mash = true\u003C\u002Fli>\n\u003Cli>misc = true\u003C\u002Fli>\n\u003Cli>actuals = true\u003C\u002Fli>\n\u003Cli>fermentation = false\u003C\u002Fli>\n\u003Cli>mhop = false\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically insert and display beer recipes by linking to a BeerXML document.",100,7120,98,9,"2025-04-29T20:04:00.000Z","6.8.5","3.4","",[20,21,22,23,24],"beer","beerxml","homebrew","recipe","shortcode","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbeerxml-shortcode\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbeerxml-shortcode.0.8.zip",99,1,0,"2025-04-24 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2025-46511","beerxml-shortcode-authenticated-contributor-server-side-request-forgery","BeerXML Shortcode \u003C= 0.7.1 - Authenticated (Contributor+) Server-Side Request Forgery","The BeerXML Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 0.7.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to make web requests to arbitrary locations originating from the web application which can be used to query and modify information from internal services.",null,"\u003C=0.7.1","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Server-Side Request Forgery (SSRF)","2025-05-02 11:39:35",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa75f030b-8678-4de0-ae72-42a7d1eed456?source=api-prod",8,{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":52,"avg_patch_time_days":47,"trust_score":53,"computed_at":54},"derekspringer",2,200,92,88,"2026-04-04T06:57:57.924Z",[56,77,97,117,140],{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":28,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":74,"download_link":75,"security_score":76,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"beer-directory","Beer Directory","1.1","Rescue Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Frescuethemes\u002F","\u003Cp>This plugin allows home brewers, professional breweries, and beer afficianadoes to enter individual beer, beer categories, and beer details. It provides a shortcode that will allow for display management.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features include:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easily categorize and group your beer with a configurable shortcode.\u003C\u002Fli>\n\u003Cli>Enter details for your beer that include: ABV, IBU, OG, FG, SRM\u002FColor, Malts, Hops, and Yeast.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>New features\u003C\u002Fstrong>\u003Cbr \u002F>\nWe want to improve the Beer Directory plugin based on your feedback! Please let us know via the plugin’s support tab and \u003Ca href=\"http:\u002F\u002Frescuethemes.us6.list-manage.com\u002Fsubscribe?u=e996b9d9a5&id=a41af7345e\" rel=\"nofollow ugc\">subscribe to our mailing list\u003C\u002Fa> to get notified of new developments.\u003C\u002Fp>\n\u003Ch3>Credit\u003C\u002Fh3>\n\u003Cp>team-post-type – ​https:\u002F\u002Fgithub.com\u002Fdevinsays\u002Fteam-post-type\u003Cbr \u002F>\nLicense: GPL-2.0+ – http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003Cbr \u002F>\nCopyright: Devin Price, @devinsays\u003C\u002Fp>\n\u003Cp>Dashboard Glancer – http:\u002F\u002Fgamajo.com\u002Fdashboard-glancer\u003Cbr \u002F>\nLicense: GPL-2.0+ – http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003Cbr \u002F>\nCopyright: Gary Jones, Gamajo Tech\u003C\u002Fp>\n","Enables a beer post type and beer list shortcode.",30,4565,60,"2019-08-13T23:04:00.000Z","5.2.24","4.0",[20,71,72,73,22],"brew","brewery","directory","https:\u002F\u002Frescuethemes.com\u002Fbeer-directory","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbeer-directory.1.1.zip",85,{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":11,"num_ratings":28,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":18,"tags":90,"homepage":95,"download_link":96,"security_score":76,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"mailchimp-subscribe-for-food-cook-theme","Mailchimp Food-Cook Subscribe","1.40","kengimel","https:\u002F\u002Fprofiles.wordpress.org\u002Fkengimel\u002F","\u003Cp>This plugin provides a modal popup to convert visitors to your food-cook website into subscribers and in effect to take action like product discount or coupon etc.\u003C\u002Fp>\n\u003Cp>This plugin is an extract from \u003Ca href=\"http:\u002F\u002Fglobalfoodbook.com\" rel=\"nofollow ugc\">globalfoodbook.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin will work only on (woothemes enabled) websites that have setup mailchimp connect url, See food-cook docs and \u003Ca href=\"http:\u002F\u002Fkb.mailchimp.com\u002Flists\u002Fmanaging-subscribers\u002Ffind-your-list-id\" rel=\"nofollow ugc\">this\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>For more details. This plugin is built to help other \u003Ca href=\"http:\u002F\u002Fthemeforest.net\u002Fitem\u002Ffood-cook-multipurpose-food-recipe-wp-theme\u002F4915630\" rel=\"nofollow ugc\">food-cook\u003C\u002Fa> site owners (from the support group) who require this utility.\u003C\u002Fp>\n\u003Cp>It is implemented to allow easy setup and customization of a website’s newsletter subscription widget and modal popup. It is best used with food and cook recipe theme made with woo themes.\u003C\u002Fp>\n\u003Ch3>Notes to developers\u003C\u002Fh3>\n\u003Ch4>Contributing\u003C\u002Fh4>\n\u003Cp>If you would like to contribute to our suite of plugins, head on over to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fglobalfoodbook\" rel=\"nofollow ugc\">Global Food Book Labs\u003C\u002Fa>. Feel free to fork and contribute back.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Fork it (https:\u002F\u002Fgithub.com\u002Fglobalfoodbook\u002Fmailchimp-foodcook-subscribe)\u003C\u002Fli>\n\u003Cli>Create your feature branch (\u003Ccode>git checkout -b my-new-feature\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>Commit your changes (\u003Ccode>git commit -am 'Add some feature'\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>Push to the branch (\u003Ccode>git push origin my-new-feature\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>Create a new Pull Request\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Adding Screenshots to the wordpress repo\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Rename each screenshot for each step like this. For step 1 the screenshot is screenshot-1.png.\u003C\u002Fli>\n\u003Cli>The banner image is named as banner-772×250.png.\u003C\u002Fli>\n\u003Cli>Use an SVN client like smart svn or rapid svn etc to uploads these iamges to the \u002Fassets folder.\u003C\u002Fli>\n\u003Cli>After this commit and all will be picked up.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Pushing plugin to wordpress svn repo\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\n\u003Cp>Clone this repo\u003C\u002Fp>\n\u003Cpre>\u003Ccode>      git clone git@github.com:globalfoodbook\u002Fmailchimp-foodcook-subscribe.git\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>cd path\u002Fto\u002Fmailchimp-foodcook-subscribe\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>vim .git\u002Fconfig\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Add the code below:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>  [svn-remote \"svn\"]\n          url = https:\u002F\u002Fplugins.svn.wordpress.org\u002F[plugin_name]\u002Ftrunk\n          fetch = :refs\u002Fremotes\u002Fgit-svn\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Then merge the master into the new branch:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>      git svn fetch svn\n      git checkout -b svn git-svn\n      git merge master\n      git svn dcommit --username [wordpress.org username]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Then rebase that branch to the master, and you can dcommit from the master to svn\u003C\u002Fp>\n\u003Cpre>\u003Ccode>      git checkout master\n      git rebase svn\n      git branch -d svn\n      git svn dcommit --username [wordpress.org username]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","This makes easy, the setup of a website's newsletter subscription widget and modal popup. Best used in food and cook recipe theme or woothemes.",10,1565,"2015-09-16T03:22:00.000Z","4.2.39","3.0.1",[91,92,93,94,24],"food-cook","mailchimp","newsletter","recipe-plugin","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fmailchimp-subscribe-for-food-cook-theme\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmailchimp-subscribe-for-food-cook-theme.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":29,"downloaded":105,"rating":29,"num_ratings":29,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":115,"download_link":116,"security_score":11,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"cocktail-recipes","Cocktail Recipes","1.1.0","Ian S Goldstein","https:\u002F\u002Fprofiles.wordpress.org\u002Fiansgoldstein\u002F","\u003Cp>Cocktail Recipes makes it easy to add structured, readable cocktail recipes to any WordPress page or post. It uses a simple shortcode with the recipe data to render ingredients, glassware and preparation instructions. Recipes are displayed in a clean, modern layout with automatic scaling and unit conversion, rendered in a consistent theme-independent format to allow seamless integration into any website. The plugin is designed for speed, maintainability and minimal frontend impact.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Simple [cocktail] shortcode for embedding recipes\u003C\u002Fli>\n\u003Cli>Clean, responsive recipe layout\u003C\u002Fli>\n\u003Cli>Automated parsing and normalization of ingredients and garnishes\u003C\u002Fli>\n\u003Cli>Supports a complete range of mixing methods, glassware and ice types\u003C\u002Fli>\n\u003Cli>Unit detection and automatic conversions\u003C\u002Fli>\n\u003Cli>Imperial units for US and metric units for Europe, Japan and elsewhere\u003C\u002Fli>\n\u003Cli>Switchable summary and full step-by-step instruction views\u003C\u002Fli>\n\u003Cli>Controls for serving sizes and unit conversions\u003C\u002Fli>\n\u003Cli>Works with any theme; no frontend dependencies\u003C\u002Fli>\n\u003Cli>Configurable rendering options and controls via settings page\u003C\u002Fli>\n\u003Cli>Customizable CSS for integration into any design\u003C\u002Fli>\n\u003Cli>Frontend assets loaded only when required\u003C\u002Fli>\n\u003Cli>Supports Gutenberg and the classic editor\u003C\u002Fli>\n\u003Cli>Caches parsed recipes for fast rendering\u003C\u002Fli>\n\u003Cli>Accessible, semantic markup with screen-reader-friendly structure and keyboard-friendly controls\u003C\u002Fli>\n\u003Cli>Supports localization and translation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Cocktail Recipes?\u003C\u002Fh4>\n\u003Cp>Cocktail Recipes was built to solve a simple problem: cocktail recipes in WordPress posts are often unstructured and tied to a theme’s formatting. This plugin provides a consistent and reliable format which keeps content clean, portable and easy to maintain. It is optimized for bloggers, bartenders and anyone writing about cocktails. It also makes it quick and easy to include a recipe without writing out lengthy instructions. The plugin generates a complete presentation from basic input, automatically. You just list the ingredients and garnishes, specify the method, glassware and ice, and it does the rest.\u003C\u002Fp>\n\u003Ch4>Example Shortcode\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>[cocktail]\n  2 oz gin\n  1 oz St-Germain\n  3\u002F4 oz lime juice\n  method: shaken\n  glassware: coupe\n  garnish: lime twist\n[\u002Fcocktail]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.isgdev.com\u002Fsoftware\u002Fcocktail-recipes\" rel=\"nofollow ugc\">Product Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.isgdev.com\u002Fsoftware\u002Fcocktail-recipes#documentation\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcocktail-recipes\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgitlab.com\u002Fisgdev\u002Fcocktail-recipes\" rel=\"nofollow ugc\">GitLab Project\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuymeacoffee.com\u002Fiangoldstein\" rel=\"nofollow ugc\">Buy Me a Coffee\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Elegant, structured cocktail recipe rendering using a simple shortcode, with automatic formatting and unit conversion.",166,"2026-01-18T02:04:00.000Z","6.9.4","5.8","7.4",[111,112,113,114,24],"cocktails","drink","mixology","recipes","https:\u002F\u002Fwww.isgdev.com\u002Fsoftware\u002Fcocktail-recipes","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcocktail-recipes.1.1.0.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":13,"num_ratings":127,"last_updated":128,"tested_up_to":107,"requires_at_least":129,"requires_php":130,"tags":131,"homepage":136,"download_link":137,"security_score":53,"vuln_count":138,"unpatched_count":29,"last_vuln_date":139,"fetched_at":31},"shortcodes-ultimate","WP Shortcodes Plugin — Shortcodes Ultimate","7.4.9","Vova","https:\u002F\u002Fprofiles.wordpress.org\u002Fgn_themes\u002F","\u003Ch3>SHORTCODES ULIMATE – THE #1 SHORTCODES PLUGIN\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgetshortcodes.com\u002F?utm_campaign=wporg&utm_medium=readme&utm_source=description\" rel=\"nofollow ugc\">Shortcodes Ultimate\u003C\u002Fa> is a huge collection of useful elements, that you can use in the post editor, text widgets or even in template files.\u003C\u002Fp>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F507942335\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgetshortcodes.com\u002Fdocs-category\u002Fshortcodes\u002F?utm_campaign=wporg&utm_medium=readme&utm_source=features\" rel=\"nofollow ugc\">Over 50 gorgeous shortcodes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Insert shortcodes in 1 click with Live Preview\u003C\u002Fli>\n\u003Cli>Supports the Block Editor\u003C\u002Fli>\n\u003Cli>Seamlessly integrates with your theme\u003C\u002Fli>\n\u003Cli>Looks great on mobile devices\u003C\u002Fli>\n\u003Cli>Custom CSS editor is included\u003C\u002Fli>\n\u003Cli>Developer-friendly with plenty of hooks and extensive documentation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Included shortcodes\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Posts\u003C\u002Fstrong> – allows you to show specific posts anywhere\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Accordion\u003C\u002Fstrong> – simple toggle block to show\u002Fhide your content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Button\u003C\u002Fstrong> – highly-customizable button with multiple styles\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightbox\u003C\u002Fstrong> – a lightbox that you can use with virtually any element\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image Carousel\u003C\u002Fstrong> – beautiful super-customizable image carousel\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Columns\u003C\u002Fstrong> – must-have tool for creating layouts\u003C\u002Fli>\n\u003Cli>And many more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get Help\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgetshortcodes.com\u002Fdocs\u002F?utm_campaign=wporg&utm_medium=readme&utm_source=links-docs\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fshortcodes-ultimate\" rel=\"ugc\">Community Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgetshortcodes.com\u002Fsupport\u002Fopen-support-ticket\u002F?utm_campaign=wporg&utm_medium=readme&utm_source=links-support\" rel=\"nofollow ugc\">The Pro Support\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>TRY THE PRO VERSION FOR FREE\u003C\u002Fh3>\n\u003Cp>Try Shortcodes Ultimate Pro risk-free for 30 days. You are fully protected by our no questions asked refund policy!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgetshortcodes.com\u002Fpricing\u002F?utm_campaign=wporg&utm_medium=readme&utm_source=try-pro\" rel=\"nofollow ugc\">Upgrade to Pro\u003C\u002Fa>\u003C\u002Fp>\n","A comprehensive collection of visual components for your site",400000,24545518,5917,"2026-02-02T16:19:00.000Z","5.0","5.4",[132,133,134,24,135],"carousel","columns","posts","toggle","https:\u002F\u002Fgetshortcodes.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshortcodes-ultimate.7.4.9.zip",32,"2025-11-23 10:11:05",{"slug":141,"name":142,"version":143,"author":144,"author_profile":145,"description":146,"short_description":147,"active_installs":148,"downloaded":149,"rating":150,"num_ratings":151,"last_updated":152,"tested_up_to":153,"requires_at_least":154,"requires_php":18,"tags":155,"homepage":160,"download_link":161,"security_score":162,"vuln_count":163,"unpatched_count":29,"last_vuln_date":164,"fetched_at":31},"mw-wp-form","MW WP Form","5.1.0","Takashi Kitajima","https:\u002F\u002Fprofiles.wordpress.org\u002Finc2734\u002F","\u003Cp>\u003Cstrong>This plugin currently has only the minimum required maintenance releases.\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cstrong>Main maintainer has been handed over from @inc2734 to @websoudan.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>MW WP Form can create mail form with a confirmation screen using shortcode.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Form created using shortcodes\u003C\u002Fli>\n\u003Cli>Using confirmation page is possible.\u003C\u002Fli>\n\u003Cli>The page changes by the same URL or individual URL are possible.\u003C\u002Fli>\n\u003Cli>Many validation rules\u003C\u002Fli>\n\u003Cli>Saving inquiry data is possible.\u003C\u002Fli>\n\u003Cli>Displaying Chart using saved inquiry data is possible.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Official\u003C\u002Fh4>\n\u003Cp>https:\u002F\u002Fmw-wp-form.web-soudan.co.jp\u003C\u002Fp>\n\u003Ch4>GitHub\u003C\u002Fh4>\n\u003Cp>https:\u002F\u002Fgithub.com\u002Fweb-soudan\u002Fmw-wp-form\u003C\u002Fp>\n\u003Ch4>The following third-party resources\u003C\u002Fh4>\n\u003Cp>Google Charts\u003Cbr \u002F>\nSource: https:\u002F\u002Fdevelopers.google.com\u002Fchart\u002F\u003C\u002Fp>\n\u003Ch4>Contributors\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F2inc.org\" rel=\"nofollow ugc\">Takashi Kitajima\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Finc2734\" rel=\"nofollow ugc\">inc2734\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwebcre-archive.com\" rel=\"nofollow ugc\">Ryujiro Yamamoto\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fryu263\" rel=\"nofollow ugc\">ryu263\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fkee-non.com\" rel=\"nofollow ugc\">Tsujimoto Tomoyuki\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Ftomothumb\" rel=\"nofollow ugc\">tomothumb\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>[Naoyuki Ohata] ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fnanniku\" rel=\"nofollow ugc\">nanniku\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmt8.biz\u002F\" rel=\"nofollow ugc\">Kazuto Takeshita\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fmt8biz\u002F\" rel=\"nofollow ugc\">moto hachi\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.next-season.net\u002F\" rel=\"nofollow ugc\">Atsushi Ando\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fnext-season\u002F\" rel=\"nofollow ugc\">NExt-Season\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fvisualive.jp\u002F\" rel=\"nofollow ugc\">Kazuki Tomiyasu\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fkuck1u\u002F\" rel=\"nofollow ugc\">KUCKLU\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmypacecreator.net\u002F\" rel=\"nofollow ugc\">Kei Nomura\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fmypacecreator\u002F\" rel=\"nofollow ugc\">mypacecreator\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fmh35\" rel=\"nofollow ugc\">mh35\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fnojimage\" rel=\"nofollow ugc\">Takashi Nojima\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fherikutu\" rel=\"nofollow ugc\">herikutu\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftsucharoku\" rel=\"nofollow ugc\">tsucharoku\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ft-hamano\" rel=\"nofollow ugc\">Tetsuaki Hamano\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fwildworks\u002F\" rel=\"nofollow ugc\">t-hamano\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmusus\" rel=\"nofollow ugc\">Susumu Seino\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fmusus\u002F\" rel=\"nofollow ugc\">Susumu Seino\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flikr\" rel=\"nofollow ugc\">Yosuke Onoue\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Flikr\u002F\" rel=\"nofollow ugc\">likr\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fyudai524\" rel=\"nofollow ugc\">Yudai Konishi\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fyudai524\u002F\" rel=\"nofollow ugc\">Yudai Konishi\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fnoldorinfo\" rel=\"nofollow ugc\">takekoshi\u003C\u002Fa> ( \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fnoldorinfo\u002F\" rel=\"nofollow ugc\">takekoshi\u003C\u002Fa> )\u003C\u002Fli>\n\u003C\u002Ful>\n","MW WP Form is shortcode base contact form plugin. This plugin have many features. For example you can use many validation rules, inquiry data saving,  &hellip;",200000,1771027,86,22,"2024-03-13T02:48:00.000Z","6.4.8","6.0",[156,157,158,159,24],"confirm","form","mail","preview","https:\u002F\u002Fmw-wp-form.web-soudan.co.jp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmw-wp-form.5.1.0.zip",81,5,"2024-01-31 00:00:00",{"attackSurface":166,"codeSignals":197,"taintFlows":215,"riskAssessment":216,"analyzedAt":228},{"hooks":167,"ajaxHandlers":190,"restRoutes":191,"shortcodes":192,"cronEvents":196,"entryPointCount":28,"unprotectedCount":29},[168,172,175,180,184],{"type":169,"name":170,"callback":170,"file":171,"line":151},"action","init","beerxml-shortcode.php",{"type":169,"name":170,"callback":173,"file":171,"line":174},"beer_style",23,{"type":169,"name":176,"callback":177,"file":178,"line":179},"admin_menu","add_options_page","includes\\admin.php",13,{"type":169,"name":181,"callback":182,"file":178,"line":183},"admin_init","options_init",14,{"type":185,"name":186,"callback":187,"file":188,"line":189},"filter","upload_mimes","beerxml_mimes","includes\\mime.php",12,[],[],[193],{"tag":21,"callback":194,"file":171,"line":195},"beerxml_shortcode",55,[],{"dangerousFunctions":198,"sqlUsage":199,"outputEscaping":205,"fileOperations":29,"externalRequests":28,"nonceChecks":29,"capabilityChecks":29,"bundledLibraries":214},[],{"prepared":29,"raw":28,"locations":200},[201],{"file":202,"line":203,"context":204},"uninstall.php",19,"$wpdb->get_col() with variable interpolation",{"escaped":206,"rawEcho":50,"locations":207},25,[208,211],{"file":178,"line":209,"context":210},177,"raw output",{"file":212,"line":213,"context":210},"includes\\classes.php",11,[],[],{"summary":217,"deductions":218},"The \"beerxml-shortcode\" plugin v0.8 exhibits a generally good security posture based on the static analysis, with no critical or high-severity taint flows detected and a high percentage of properly escaped outputs.  The attack surface is minimal, with only one shortcode entry point and no unprotected AJAX handlers or REST API routes.  The absence of dangerous functions, file operations, and external HTTP requests further strengthens its profile.\n\nHowever, a significant concern is the single SQL query which is not using prepared statements. This presents a potential risk for SQL injection, especially if user-supplied data is directly incorporated into this query. Additionally, the lack of nonce checks and capability checks on its entry points means that any logic executed by the shortcode could potentially be triggered by any authenticated user, regardless of their role or intended permissions.  The historical vulnerability of Server-Side Request Forgery (SSRF) is also a notable pattern, even though it is currently patched. This suggests a past weakness in handling external resources or user-controlled input that could lead to such vulnerabilities.\n\nIn conclusion, while the plugin has strengths in its limited attack surface and output escaping, the unescaped SQL query and lack of proper authorization checks on the shortcode present notable weaknesses that require attention. The historical SSRF vulnerability also warrants ongoing vigilance and review of how external data is handled.",[219,222,224,226],{"reason":220,"points":221},"SQL queries not using prepared statements",7,{"reason":223,"points":163},"No nonce checks on entry points",{"reason":225,"points":163},"No capability checks on entry points",{"reason":227,"points":85},"Past medium severity SSRF vulnerability","2026-03-16T21:10:16.041Z",{"wat":230,"direct":239},{"assetPaths":231,"generatorPatterns":234,"scriptPaths":235,"versionParams":236},[232,233],"\u002Fwp-content\u002Fplugins\u002Fbeerxml-shortcode\u002Fcss\u002Fbeerxml.css","\u002Fwp-content\u002Fplugins\u002Fbeerxml-shortcode\u002Fjs\u002Fbeerxml.js",[],[233],[237,238],"beerxml-shortcode\u002Fcss\u002Fbeerxml.css?ver=","beerxml-shortcode\u002Fjs\u002Fbeerxml.js?ver=",{"cssClasses":240,"htmlComments":242,"htmlAttributes":246,"restEndpoints":256,"jsGlobals":257,"shortcodeOutput":258},[241],"beerxml-actuals",[243,244,245],"\u003C!-- BeerXML shortcode passed invalid attributes -->","\u003C!-- BeerXML shortcode source not set -->","\u003C!-- Error parsing BeerXML document -->",[23,247,248,249,250,251,252,253,254,255],"cache","metric","download","style","mash","fermentation","misc","actuals","mhop",[],[],[259,260,261,262],"\u003Ctr class='beerxml-actuals'>","\u003Cth>","\u003Ctd>","\u003C\u002Ftable>"]