[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBfl0zcQHirLpw3GVlWRc1NaA0R4aT5CxG6DZKhkP5Oo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":72,"crawl_stats":36,"alternatives":79,"analysis":196,"fingerprints":480},"better-click-to-tweet","Better Click To Share (Formerly Better Click To Tweet)","6.0.0","Ben Meredith","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenmeredithgmailcom\u002F","\u003Cp>Better Click To Share (formerly Better Click To Tweet) is the most popular plugin for allowing readers to share content on X.com (formerly Twitter).\u003C\u002Fp>\n\u003Cp>Make it dead-simple for your readers to share your content on X, using a simple shortcode or block. Readers are encouraged to share a quote, and a link to your content.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbenlikes.us\u002Fbcttps\" title=\"Premium Styles add-on\" rel=\"nofollow ugc\">Add Premium Styles\u003C\u002Fa> with just a few clicks.\u003C\u002Fli>\n\u003Cli>Using the shortcode method in the classic editor? See our \u003Ca href=\"https:\u002F\u002Fbenlikes.us\u002F7r\" title=\"power user guide\" rel=\"nofollow ugc\">Power User Guide\u003C\u002Fa> for all the tricks (remove or change the “via,” make links nofollow, change the callback URL, and more!).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Developer? Designer? Geek of any sort?\u003C\u002Fstrong> We’re always open to feature requests and PRs. You can create issues or submit pull requests at the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FBenunc\u002Fbetter-click-to-tweet\" title=\"Better Click To Share on GitHub\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa> for this plugin.\u003C\u002Fp>\n\u003Cp>Translation is managed at \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fbetter-click-to-tweet\" title=\"WordPress translation\" rel=\"nofollow ugc\">the official WordPress translation page\u003C\u002Fa>.\u003C\u002Fp>\n","Better Click To Share (formerly Better Click To Tweet) inserts styled call-out boxes into your posts so readers can share your content on X in one sim &hellip;",7000,650414,96,48,"2026-03-15T00:19:00.000Z","7.0","3.8","",[20,21,22],"click-to-social","twitter","x-com","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbetter-click-to-tweet\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-click-to-tweet.6.0.0.zip",98,3,0,"2022-11-28 00:00:00","2026-03-15T15:16:48.613Z",[31,47,58],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"WF-04bdc2ef-a7aa-45a7-b600-be832eefa32e-better-click-to-tweet","better-click-to-tweet-cross-site-request-forgery","Better Click To Tweet \u003C= 5.10.3 - Cross-Site Request Forgery","The Better Click To Tweet plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.10.3. This is due to missing or incorrect nonce validation on the welcome_page function. This makes it possible for unauthenticated attackers to invoke this function, via forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=5.10.3","5.10.4","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Cross-Site Request Forgery (CSRF)","2024-01-22 19:56:02",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F04bdc2ef-a7aa-45a7-b600-be832eefa32e?source=api-prod",421,{"id":48,"url_slug":49,"title":50,"description":51,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":52,"cvss_score":53,"cvss_vector":54,"vuln_type":55,"published_date":28,"updated_date":43,"references":56,"days_to_patch":46},"CVE-2022-45839","better-click-to-tweet-missing-authorization","Better Click To Tweet \u003C= 5.10.3 - Missing Authorization","The Better Click To Tweet plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the welcome_page function in versions up to, and including, 5.10.3. This makes it possible for unauthenticated attackers to update some of the plugin's settings.","medium",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:N","Missing Authorization",[57],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcfd1e59a-a76d-4f6d-9d22-021afd45d9af?source=api-prod",{"id":59,"url_slug":60,"title":61,"description":62,"plugin_slug":4,"theme_slug":36,"affected_versions":63,"patched_in_version":64,"severity":52,"cvss_score":65,"cvss_vector":66,"vuln_type":67,"published_date":68,"updated_date":43,"references":69,"days_to_patch":71},"WF-a4c21c56-c424-4667-a281-fa9e7241d8ad-better-click-to-tweet","better-click-to-tweet-reflected-cross-site-scripting","Better Click To Tweet \u003C= 5.10.1 - Reflected Cross-Site Scripting","The Better Click To Tweet plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 5.10.1 due to insufficient input sanitization and output escaping on the $_SERVER['REQUEST_URI'] value. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=5.10.1","5.10.2",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2022-04-27 00:00:00",[70],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa4c21c56-c424-4667-a281-fa9e7241d8ad?source=api-prod",636,{"slug":73,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":74,"avg_security_score":75,"avg_patch_time_days":76,"trust_score":77,"computed_at":78},"benmeredithgmailcom",11000,92,493,73,"2026-04-04T21:04:50.405Z",[80,105,128,154,175],{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":25,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":94,"tags":95,"homepage":100,"download_link":101,"security_score":102,"vuln_count":103,"unpatched_count":27,"last_vuln_date":104,"fetched_at":29},"nextend-facebook-connect","Nextend Social Login and Register","3.1.23","Nextendweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fnextendweb\u002F","\u003Cp>Nextend Social Login is a professional, easy to use and free WordPress plugin. It lets your visitors  register and login to your site using their social profiles (Facebook, Google, X (formerly Twitter), etc.) instead of forcing them to spend valuable time to fill out the default registration form. Besides that, they don’t need to wait for validation emails or keep track of their username and password anymore.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftry-nextend-social-login.nextendweb.com\u002Fwp-login.php\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=buPTza2-6xc&list=PLSawiBnEUNftt3EDqnP2jIXeh6q0pZ5D8&index=1\" rel=\"nofollow ugc\">Tutorial videos\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Docs\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">Support\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Pro Addon\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FbuPTza2-6xc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Nextend Social Login seamlessly integrates with your existing WordPress login and registration form. Existing users can add or remove their social accounts at their WordPress profile page. A single user can attach as many social account as they want allowing them to log in with Facebook, Google or X (formerly Twitter).\u003C\u002Fp>\n\u003Ch4>Three popular providers: Facebook, Google and X (formerly Twitter)\u003C\u002Fh4>\n\u003Cp>Providers are the services which the visitors can use to register and log in to your site. Nextend Social Login allows your visitors to log in with their account from the most popular social networks: Facebook, Google and X (formerly Twitter).\u003C\u002Fp>\n\u003Ch4>Free version features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One click registration and login via Facebook, Google and X (formerly Twitter)\u003C\u002Fli>\n\u003Cli>Your current users can easily connect their Facebook, Google or X (formerly Twitter) profiles with their account\u003C\u002Fli>\n\u003Cli>Social accounts are tied to a WordPress user account so every account can be accessed with and without social account\u003C\u002Fli>\n\u003Cli>You can define custom redirect URL after the registration (upon first login) using any of the social accounts.\u003C\u002Fli>\n\u003Cli>You can define custom redirect URL after each login with any of the enabled social accounts.\u003C\u002Fli>\n\u003Cli>Display Facebook, Google, X (formerly Twitter) profile picture as avatar\u003C\u002Fli>\n\u003Cli>Login widget and shortcodes\u003C\u002Fli>\n\u003Cli>Customizable designs to match your site\u003C\u002Fli>\n\u003Cli>Editable and translatable texts on the login buttons\u003C\u002Fli>\n\u003Cli>Very simple to setup and use\u003C\u002Fli>\n\u003Cli>Clean, user friendly UI\u003C\u002Fli>\n\u003Cli>Fast and helpful support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Additional features in the \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002F\" rel=\"nofollow ugc\">Pro addon\u003C\u002Fa>\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WooCommerce compatibility\u003C\u002Fli>\n\u003Cli>BuddyPress compatibility\u003C\u002Fli>\n\u003Cli>UserPro compatibility\u003C\u002Fli>\n\u003Cli>Ultimate Member compatibility\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads compatibility\u003C\u002Fli>\n\u003Cli>Pro providers: LinkedIn, Amazon, VKontakte, WordPress.com, Yahoo, PayPal, Disqus, Apple, GitHub, Microsoft, Line, Discord, Slack, TikTok, Steam, Twitch, Kakao, Reddit, Spotify and more coming soon\u003C\u002Fli>\n\u003Cli>Configure whether email address should be asked on registration at each provider\u003C\u002Fli>\n\u003Cli>Configure whether username should be asked on registration at each provider\u003C\u002Fli>\n\u003Cli>Choose from icons or wide buttons\u003C\u002Fli>\n\u003Cli>Several login layouts\u003C\u002Fli>\n\u003Cli>Restrict specific user roles from using the social logins. (You can restrict different roles for each provider.)\u003C\u002Fli>\n\u003Cli>Assign specific user roles to the newly registered users who use any social login provider. (You can set different roles for each provider.)\u003C\u002Fli>\n\u003Cli>Show the name of the linked providers in the Users table\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>After you activated the plugin configure and enable the provider you want to use, then the plugin will automatically\u003C\u002Fp>\n\u003Cul>\n\u003Cli>add the login buttons to the WordPress login page. See screenshot #1\u003C\u002Fli>\n\u003Cli>add the account linking buttons to the WordPress profile page. See screenshot #2\u003C\u002Fli>\n\u003C\u002Ful>\n","One click registration & login plugin for Facebook, Google, X (formerly Twitter) and more. Quick setup and easy configuration.",200000,7588989,441,"2026-02-23T09:51:00.000Z","6.9.4","4.9","7.4",[96,97,98,21,99],"facebook","google","social-login","x","https:\u002F\u002Fsocial-login.nextendweb.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnextend-facebook-connect.3.1.23.zip",89,6,"2025-11-27 14:54:41",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":13,"num_ratings":115,"last_updated":116,"tested_up_to":92,"requires_at_least":117,"requires_php":94,"tags":118,"homepage":123,"download_link":124,"security_score":125,"vuln_count":126,"unpatched_count":27,"last_vuln_date":127,"fetched_at":29},"custom-twitter-feeds","Custom Twitter Feeds – A Tweets Widget or X Feed Widget","2.5.4","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>Display a \u003Cstrong>completely customizable\u003C\u002Fstrong>, \u003Cstrong>responsive\u003C\u002Fstrong> and \u003Cstrong>search engine crawlable\u003C\u002Fstrong> X feed or Twitter feed on your website. The Custom Twitter Feeds plugin will display any user timeline posts or tweets that completely match the look and feel of your site and includes tons of customization options!\u003C\u002Fp>\n\u003Cp>\u003Ciframe loading=\"lazy\" title=\"How to Embed Twitter in WordPress for Free! Smash Balloon Custom Twitter Feeds Plugin Overview\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F1166356295?dnt=1&app_id=122963\" width=\"750\" height=\"422\" frameborder=\"0\" allow=\"autoplay; fullscreen; picture-in-picture; clipboard-write; encrypted-media; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\">\u003C\u002Fiframe>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Quick 3-Step Feed Creation\u003C\u002Fstrong> – create a Twitter feed in just 3 steps with our guided flow to help you do this, even if you’re a WordPress newbie\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Completely Customizable\u003C\u002Fstrong> – by default, your user timeline feed will inherit your theme’s styles – automatically\u003C\u002Fli>\n\u003Cli>X posts (Twitter feed) content is \u003Cstrong>crawlable by search engines\u003C\u002Fstrong>, adding SEO value to your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Completely responsive and mobile-optimized\u003C\u002Fstrong> – your Twitter feed looks great on any screen size and on any device\u003C\u002Fli>\n\u003Cli>Easily display an X Feed (Twitter feed) from any Twitter user – you can quickly connect 1 public Twitter account for absolutely free\u003C\u002Fli>\n\u003Cli>Using our Site Key and a verified email address, you can \u003Cstrong>automatically refresh your Twitter feed\u003C\u002Fstrong> once a week so you can showcase fresh Twitter content on your site at zero cost\u003C\u002Fli>\n\u003Cli>Post caching means that your Twitter feed loads \u003Cstrong>lightning fast\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Load more\u003C\u002Fstrong> of your Tweets with the ‘Load More’ button\u003C\u002Fli>\n\u003Cli>Built-in easy to use “Custom Twitter Feeds” Widget makes it easy to display tweets from any public Twitter account\u003C\u002Fli>\n\u003Cli>Fully internationalized and translatable into any language\u003C\u002Fli>\n\u003Cli>Display a beautiful header at the top of your Twitter feed\u003C\u002Fli>\n\u003Cli>Enter your own custom CSS or JavaScript for even deeper customization of your Tweets\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For simple step-by-step directions on how to set up the Custom Twitter Feeds plugin, please refer to our \u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fdoc\u002Fsetting-up-the-free-custom-twitter-feeds-wordpress-plugin\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=readme-setup&utm_content=SetupGuide'\" rel=\"nofollow ugc\">setup guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Benefits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Increase social engagement\u003C\u002Fstrong> between you and your users, customers, or fans\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Save time\u003C\u002Fstrong> by using the Custom Twitter Feeds plugin to generate dynamic, search engine crawlable content on your website\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Convert site visitors into Twitter followers\u003C\u002Fstrong> by displaying your Twitter content directly on your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Improve your SEO\u003C\u002Fstrong> as all of that quality keyword-rich Twitter content is directly embedded into your website\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Keep users on your site\u003C\u002Fstrong> by showcasing your tweets from any user timeline on WordPress\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Boost engagement\u003C\u002Fstrong> by letting site visitors reply and like your tweets directly on your site\u003C\u002Fli>\n\u003Cli>Showcase your Twitter content \u003Cstrong>your way\u003C\u002Fstrong> to perfectly match your website’s style\u003C\u002Fli>\n\u003Cli>The Custom Twitter Feeds plugin is \u003Cstrong>updated regularly\u003C\u002Fstrong> with new features, bug-fixes and solutions to comply with recent Twitter API changes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pro Version\u003C\u002Fh4>\n\u003Cp>In order to maintain the free version of Custom Twitter Feeds plugin on an ongoing basis, and to provide quick and effective support for free, we offer a Pro version of the plugin. The Pro version allows you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Display tweets from \u003Cstrong>multiple users in the same Twitter feed\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Display \u003Cstrong>photos\u003C\u002Fstrong>, \u003Cstrong>videos\u003C\u002Fstrong>, and \u003Cstrong>gifs\u003C\u002Fstrong> and view them in a \u003Cstrong>popup lightbox\u003C\u002Fstrong> directly on your site\u003C\u002Fli>\n\u003Cli>Multi-column \u003Cstrong>Masonry layout\u003C\u002Fstrong>  \u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds\u002Fdemo\u002Fmasonry\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=twitter-liteupgrade&utm_content=MasonryDemo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Show your tweets in a \u003Cstrong>Twitter slideshow\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds\u002Fdemo\u002Fcarousel\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=twitter-liteupgrade&utm_content=CarouselDemo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Choose from \u003Cstrong>professionally-made Twitter templates\u003C\u002Fstrong> so you can easily build your Twitter feed in seconds\u003C\u002Fli>\n\u003Cli>Allow \u003Cstrong>filtering\u003C\u002Fstrong> of Twitter user timelines include\u002Fexclude any\u002Fall keywords\u003C\u002Fli>\n\u003Cli>Tweet-specific \u003Cstrong>moderation system\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Visual \u003Cstrong>Twitter cards\u003C\u002Fstrong> displayed with links which support them\u003C\u002Fli>\n\u003Cli>Include \u003Cstrong>Tweet replies\u003C\u002Fstrong> (in reply to tweets)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Combine multiple Twitter feeds\u003C\u002Fstrong> into one\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatically update\u003C\u002Fstrong> your Twitter feeds up to 12 times per day so you can effortlessly display up-to-date X posts (Twitter content) to your site visitors\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Autoload more Tweets\u003C\u002Fstrong> when scrolling\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=twitter-liteupgrade&utm_content=FindOutMore\" rel=\"nofollow ugc\">Find out more about the Pro version\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Try the Pro version \u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds\u002Fdemo\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=twitter-liteupgrade&utm_content=Try-Pro-1\" rel=\"nofollow ugc\">demo here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Featured Reviews for Custom Twitter Feeds\u003C\u002Fh4>\n\u003Cp>“\u003Cem>\u003Cstrong>Great for Customization\u003C\u002Fstrong> – Great plugin! Superb customization options! Am changing all twitter feeds for all my websites to this! I have tried several Twitter plugins so far. This is the best I have come across 🙂\u003C\u002Fem>” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fgreat-for-customization-2\u002F\" rel=\"ugc\">@nehavivekpatil\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>“\u003Cem>\u003Cstrong>Excellent plug-in. Excellent support.\u003C\u002Fstrong> – Excellent instructions and guidance. Patient and prompt support for the newbies. Regular updates. You can’t lose. Thank you Smash Balloon.\u003C\u002Fem>” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fexcellent-plug-in-excellent-support-2\u002F\" rel=\"ugc\">@nuspa\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>“\u003Cem>\u003Cstrong>Amazing Support and a Great Twitter Plugin\u003C\u002Fstrong> – I am using the free version of this Twitter plugin and identified a real problem in the display on my website. I emailed support and Craig was all over the fix for me. Seven or so emails later (even on a Sunday) the problem was fixed and Craig was still reaching out to make sure all was well.\u003C\u002Fem>“\u003C\u002Fp>\n\u003Cp>\u003Cem>In a world of crappy support for premium plugins, and even worse support for free plugins, this kind of support (and listening to customers) that Craig and Smash Balloon provided me make their premium products worth every penny. In fact, I am going to buy them for my next project. They deserve it.\u003C\u002Fem>“\u003C\u002Fp>\n\u003Cp>\u003Cem>Thanks again, Craig!\u003C\u002Fem>” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Famazing-support-and-a-great-twitter-plugin\u002F\" rel=\"ugc\">@kcwebguy\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>“\u003Cem>\u003Cstrong>At last a configurable Twitter Feed that WORKS!\u003C\u002Fstrong> – I have messed with Twitter feeds on sites so many times only to be frustrated. This Plugin is the best I have tried. Stable, configurable and not too hefty a drag on performance. Well done!\u003C\u002Fem>” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fat-last-a-configurable-feed-that-works\u002F\" rel=\"ugc\">@mikemac67\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>“\u003Cem>\u003Cstrong>Everything you’ll need in a Twitter feed plugin\u003C\u002Fstrong> – We’ve tried a few Twitter feed plugins across a bunch of our sites, and this one is now our go-to favorite. Most of the others we’ve tried have either styling or performance issues, but we’ve been using this plugin for a few months now, and it’s been perfect. There are tons of customization options, the feed looks great, and… it works!\u003C\u002Fem>“\u003C\u002Fp>\n\u003Cp>\u003Cem>Kudos to the SmashBalloon team on a well supported, tightly developed, feature-packed WordPress Plugin.\u003C\u002Fem>” – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Feverything-youll-need-in-a-twitter-feed-plugin\u002F\" rel=\"ugc\">@laymanlab\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcustom-twitter-feeds\u002Freviews\u002F\" rel=\"ugc\">View the reviews\u003C\u002Fa> to see what other users are saying about the Custom Twitter Feeds plugin.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>We’re dedicated to providing the \u003Cstrong>most customizable\u003C\u002Fstrong>, \u003Cstrong>robust\u003C\u002Fstrong> and \u003Cstrong>well supported\u003C\u002Fstrong> Twitter feed plugin in the world!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Feedback or Support\u003C\u002Fh4>\n\u003Cp>We’re committed to providing the easiest-to-use, most powerful and #1 supported Twitter feed plugin in the world, so if you have an issue or any feedback on how to improve the plugin, then please \u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds\u002Fsupport\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=readme-support&utm_content=Feedback\" rel=\"nofollow ugc\">let us know\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you like the plugin then please consider leaving a review, as it really helps to support the plugin. If you have an issue, then please allow us to help you fix it before leaving a review. Just \u003Ca href=\"https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds\u002Fsupport\u002F?utm_source=twitter-free&utm_medium=readmefile&utm_campaign=readme-support&utm_content=Support\" rel=\"nofollow ugc\">let us know\u003C\u002Fa> what the problem is and we’ll get back to you right away.\u003C\u002Fp>\n","Display X posts (Twitter tweets) from any public user account in a clean, attractive looking feed that updates weekly.",100000,3374397,399,"2026-03-12T18:47:00.000Z","5.3",[119,21,120,121,122],"custom-twitter-feed","twitter-feed","twitter-widget","x-feed","https:\u002F\u002Fsmashballoon.com\u002Fcustom-twitter-feeds","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-twitter-feeds.2.5.4.zip",97,7,"2025-03-19 16:21:23",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":136,"downloaded":137,"rating":138,"num_ratings":139,"last_updated":140,"tested_up_to":92,"requires_at_least":141,"requires_php":142,"tags":143,"homepage":149,"download_link":150,"security_score":151,"vuln_count":152,"unpatched_count":27,"last_vuln_date":153,"fetched_at":29},"wpdiscuz","Comments – wpDiscuz","7.6.47","AdvancedCoding","https:\u002F\u002Fprofiles.wordpress.org\u002Fadvancedcoding\u002F","\u003Cp>AJAX realtime comment system with custom comment form and fields. Designed to supercharge WordPress native comments. Super fast and responsive with dozens of features. This is the best alternative to Disqus and Jetpack Comments, if you want to keep your comments in your database.\u003C\u002Fp>\n\u003Cp>wpDiscuz version 7 is a revolutionary perspective on the commenting world! This plugin changes your website commenting experience and provides you with new user engagement features. It’s totally improved with brand new innovative features bringing live to your website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>wpDiscuz Demo: \u003Ca href=\"https:\u002F\u002Fwpdiscuz.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpdiscuz.com\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Support Forum: \u003Ca href=\"https:\u002F\u002Fwpdiscuz.com\u002Fcommunity\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpdiscuz.com\u002Fcommunity\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>wpDiscuz GDPR: \u003Ca href=\"https:\u002F\u002Fwpdiscuz.com\u002Fgdpr\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpdiscuz.com\u002Fgdpr\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>wpDiscuz Addons: \u003Ca href=\"https:\u002F\u002Fwpdiscuz.com\u002Faddons\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpdiscuz.com\u002Faddons\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>wpDiscuz Documentation: \u003Ca href=\"https:\u002F\u002Fwpdiscuz.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpdiscuz.com\u002Fdocs\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>wpDiscuz Addons Bundle: \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-addons-bundle\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-addons-bundle\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Comments – wpDiscuz Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Three nice and modern comment layouts\u003C\u002Fli>\n\u003Cli>Brings fastest commenting experience (boosted core)\u003C\u002Fli>\n\u003Cli>Adds interactive comment box on posts and other content types\u003C\u002Fli>\n\u003Cli>Inline commenting and feedback. Commenting on post content.\u003C\u002Fli>\n\u003Cli>Live Notification with real-time updating Comment Bubble.\u003C\u002Fli>\n\u003Cli>Social Commenting with lots of Social login options\u003C\u002Fli>\n\u003Cli>Post Rating. Allows to rate posts directly on rating stars.\u003C\u002Fli>\n\u003Cli>Commenting can be allowed\u002Fdisallowed on posts and other content types\u003C\u002Fli>\n\u003Cli>Responsive comments form and comment threads design\u003C\u002Fli>\n\u003Cli>Clean, simple and easy user interface and user experience\u003C\u002Fli>\n\u003Cli>Comment list sorting by newest, oldest and most voted comments\u003C\u002Fli>\n\u003Cli>Anonymous comments ( name and email can be set as not required )\u003C\u002Fli>\n\u003Cli>Full integration with Social Network Login plugins (Facebook, Twitter…)\u003C\u002Fli>\n\u003Cli>Multi-level (nested) comment threads, with maximum levels depth setting option\u003C\u002Fli>\n\u003Cli>Allows to create a new discussion thread and reply to existing comment\u003C\u002Fli>\n\u003Cli>Ajax button “Load More Comments” instead of simple comments pagination\u003C\u002Fli>\n\u003Cli>Lazy load wpDiscuz comments on scrolling\u003C\u002Fli>\n\u003Cli>Different comment date formats, reflects WordPress date format settings\u003C\u002Fli>\n\u003Cli>Logged in users and guests can edit their comments (time-frame can be limited by admin)\u003C\u002Fli>\n\u003Cli>Automatic URLs to link conversion in comment texts\u003C\u002Fli>\n\u003Cli>Automatic image source URLs to image (HTML) conversion in comment texts\u003C\u002Fli>\n\u003Cli>Long comment text breaking function (“Read more” button)\u003C\u002Fli>\n\u003Cli>Multiple line-breaks (limited by WordPress comment filter)\u003C\u002Fli>\n\u003Cli>Comment author notification options with special checkboxes on comment form\u003C\u002Fli>\n\u003Cli>Subscription activation via additional “Confirm Subscription” email\u003C\u002Fli>\n\u003Cli>Ability to add comment system on attachment pages if it’s allowed by WordPress\u003C\u002Fli>\n\u003Cli>Fast and easy comment form with ajax validation and data submitting\u003C\u002Fli>\n\u003Cli>Fully integrated and compatible with WordPress\u003C\u002Fli>\n\u003Cli>Uses WordPress Comment system with all managing functions and features\u003C\u002Fli>\n\u003Cli>Secure and Anti-Spam features will not allow spammers to comment\u003C\u002Fli>\n\u003Cli>Comment voting with positive and negative result\u003C\u002Fli>\n\u003Cli>Smart voting system with tracking by logged-in user and cookies\u003C\u002Fli>\n\u003Cli>Quick Tags on comment form textarea\u003C\u002Fli>\n\u003Cli>Custom Comment Forms with custom fields\u003C\u002Fli>\n\u003Cli>Rating shortcode for posts via comment custom field [wpdrating] with a lot of attributes\u003C\u002Fli>\n\u003Cli>Option to overwrite comment template and style\u003C\u002Fli>\n\u003Cli>Highlighting new comments since last visit with different background\u003C\u002Fli>\n\u003Cli>Notification to comment author when comment was approved\u003C\u002Fli>\n\u003Cli>Display only parent comments with view replies (x) button\u003C\u002Fli>\n\u003Cli>Control commenters by roles (allow\u002Frestrict access to website comment area)\u003C\u002Fli>\n\u003Cli>Option to load all comments on first page load\u003C\u002Fli>\n\u003Cli>Built-in Gravatar caching\u003C\u002Fli>\n\u003Cli>Sticky Comments\u003C\u002Fli>\n\u003Cli>Closed Comments Threads (disable replies)\u003C\u002Fli>\n\u003Cli>Subscribe to User \u002F User Follow\u003C\u002Fli>\n\u003Cli>Built-in comment and comment author caching system\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Add-ons\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-addons-bundle\u002F\" rel=\"nofollow ugc\">wpDiscuz – Bundle\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-emoticons\u002F\" rel=\"nofollow ugc\">wpDiscuz – Emoticons\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-user-notifications\u002F\" rel=\"nofollow ugc\">wpDiscuz – User Notifications\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-media-uploader\u002F\" rel=\"nofollow ugc\">wpDiscuz – Media Uploader\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-embeds\u002F\" rel=\"nofollow ugc\">wpDiscuz – Embeds\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-comment-author-info\u002F\" rel=\"nofollow ugc\">wpDiscuz – Comment Author Info\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-recaptcha\u002F\" rel=\"nofollow ugc\">wpDiscuz – Google ReCaptcha\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-mycred\u002F\" rel=\"nofollow ugc\">wpDiscuz – myCRED Integration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-widgets\u002F\" rel=\"nofollow ugc\">wpDiscuz – Widgets\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-frontend-moderation\u002F\" rel=\"nofollow ugc\">wpDiscuz – Front-end Moderation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-subscribe-manager\u002F\" rel=\"nofollow ugc\">wpDiscuz – Subscription Manager\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-comment-search\u002F\" rel=\"nofollow ugc\">wpDiscuz – Comment Search\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-report-flagging\u002F\" rel=\"nofollow ugc\">wpDiscuz – Comment Report and Flagging\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-ads-manager\u002F\" rel=\"nofollow ugc\">wpDiscuz – Ads Manager\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-user-comment-mentioning\u002F\" rel=\"nofollow ugc\">wpDiscuz – User & Comment Mentioning\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-advanced-likers\u002F\" rel=\"nofollow ugc\">wpDiscuz – Advanced Likers\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-online-users\u002F\" rel=\"nofollow ugc\">wpDiscuz – Online Users\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-private-comments\u002F\" rel=\"nofollow ugc\">wpDiscuz – Private Comments\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-syntax-highlighter\u002F\" rel=\"nofollow ugc\">wpDiscuz – Syntax Highlighter\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fcomments-censure-pro\u002F\" rel=\"nofollow ugc\">Comments Censure PRO\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Integration Add-ons\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-buddypress-integration\u002F\" rel=\"nofollow ugc\">wpDiscuz – BuddyPress Integration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-tenor-integration\u002F\" rel=\"nofollow ugc\">wpDiscuz – Tenor GIFs Integration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-giphy-integration\u002F\" rel=\"nofollow ugc\">wpDiscuz – GIPHY Integration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>| \u003Ca href=\"https:\u002F\u002Fgvectors.com\u002Fproduct\u002Fwpdiscuz-voice-commenting\u002F\" rel=\"nofollow ugc\">wpDiscuz – Voice Commenting\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","AJAX powered realtime comments. Designed to extend WordPress native comments. Custom comment forms\u002Ffields. Making comments has never been so awesome!",80000,4352645,94,578,"2026-03-11T17:44:00.000Z","5.0","5.6",[144,145,146,147,148],"ajax-comments","comment","comment-fields","comment-form","comments","https:\u002F\u002Fwpdiscuz.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdiscuz.7.6.47.zip",75,24,"2025-12-25 00:00:00",{"slug":155,"name":156,"version":157,"author":158,"author_profile":159,"description":160,"short_description":161,"active_installs":162,"downloaded":163,"rating":75,"num_ratings":164,"last_updated":165,"tested_up_to":92,"requires_at_least":141,"requires_php":16,"tags":166,"homepage":18,"download_link":171,"security_score":172,"vuln_count":173,"unpatched_count":27,"last_vuln_date":174,"fetched_at":29},"wonderm00ns-simple-facebook-open-graph-tags","Open Graph and Twitter Card Tags","3.3.9","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>This plugin improves the sharing of your WordPress pages, posts, WooCommerce products, or any other post type on social media, by setting the correct Facebook Open Graph Tags.\u003C\u002Fp>\n\u003Cp>It also allows you to add the Twitter Card tags for more effective and efficient Twitter sharing results, as well as the Meta Description and Canonical tags if no other SEO plugin is setting them.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This plugin is not, in any way, affiliated or endorsed by Facebook, Twitter, Google or any other 3rd party.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can also choose to insert the “enclosure” and “media:content” tags to the RSS feeds, so that apps like RSS Graffiti and twitterfeed post the image to Facebook correctly.\u003C\u002Fp>\n\u003Cp>It allows the user to choose which tags are included, and also the default image if the post\u002Fpage doesn’t have one.\u003C\u002Fp>\n\u003Cp>It’s also possible to add an overlay logo\u002Fwatermark to the image. The plugin will resize and crop the original image to 1200×630 and then overlay the chosen 1200×630 PNG file over it.\u003Cbr \u002F>\nIt be usefull to add your brand to the image that shows up on Facebook shared links.\u003C\u002Fp>\n\u003Cp>Our settings page is discreetly kept under “Options”.\u003C\u002Fp>\n\u003Ch4>The generated (Facebook) Open Graph Tags are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>og:title\u003C\u002Fstrong>: From post\u002Fpage\u002Farchive\u002Ftag\u002F… title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:site_name\u003C\u002Fstrong>: From blog title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:url\u003C\u002Fstrong>: From the post\u002Fpage permalink.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:description\u003C\u002Fstrong>: From our specific custom field of the post\u002Fpage, or if not set post\u002Fpage excerpt if it exist, or from post\u002Fpage content. From category\u002Ftag description on its pages, if it exist. From tagline, or custom text, on all the others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image\u003C\u002Fstrong>: From our specific custom field of the post\u002Fpage, or if not set from the post\u002Fpage featured\u002Fthumbnail image, or if it doesn’t exist from the first image in the post content, or if it doesn’t exist from the first image on the post media gallery, or if it doesn’t exist from the default image defined on the options menu. The same image chosen here will be used and enclosure\u002Fmedia:content on the RSS feed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:url\u003C\u002Fstrong>: Same as \u003Cstrong>og:image\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:secure_url\u003C\u002Fstrong>: Same as \u003Cstrong>og:image\u003C\u002Fstrong> if SSL is being used.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:width\u003C\u002Fstrong> and \u003Cstrong>og:image:height\u003C\u002Fstrong>: Image dimensions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:type\u003C\u002Fstrong>: “website” or “blog” for the homepage, “product” for WooCommerce products and “article” for all the others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:author\u003C\u002Fstrong>: From the user (post author) Faceboook Profile URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:published_time\u003C\u002Fstrong>: Article published time (for posts only)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:modified_time\u003C\u002Fstrong> and \u003Cstrong>og:updated_time\u003C\u002Fstrong>: Article modified time (for posts only)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:section\u003C\u002Fstrong>: From post categories.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:publisher\u003C\u002Fstrong>: The website Facebook Page URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:locale\u003C\u002Fstrong>: From WordPress locale or chosen by the user.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>fb:admins\u003C\u002Fstrong>: From settings on the options screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>fb:app_id\u003C\u002Fstrong>: From settings on the options screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:price:amount\u003C\u002Fstrong> and \u003Cstrong>og:price:currency\u003C\u002Fstrong>: Price on WooCommerce products.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>The generated Twitter Card Tags are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>twitter:title\u003C\u002Fstrong>: Same as \u003Ccode>og:title\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:url\u003C\u002Fstrong>: Sames as \u003Ccode>og:url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:description\u003C\u002Fstrong>: Same as \u003Ccode>og:description\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:image\u003C\u002Fstrong>: Same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:creator\u003C\u002Fstrong>: From the user (post author) Twitter account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:site\u003C\u002Fstrong>: The website Twitter account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:card\u003C\u002Fstrong>: With value “summary_large_image” or “summary”.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Other Tags:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>canonical\u003C\u002Fstrong>: Same as \u003Ccode>og:url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta description\u003C\u002Fstrong>: Same as \u003Ccode>og:description\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta author\u003C\u002Fstrong>: From the user (post author) Display Name.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta publisher\u003C\u002Fstrong>: From the website title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>enclosure\u003C\u002Fstrong>: On RSS feeds, same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>media:content\u003C\u002Fstrong>: On RSS feeds, same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>3rd Party Integration:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwordpress-seo\u002F\" rel=\"ugc\">Yoast SEO\u003C\u002Fa>\u003C\u002Fstrong>: Allows you to use the title, URL (canonical), and description from the Yoast SEO plugin.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fstrong>: On product pages sets \u003Ccode>og:type\u003C\u002Fcode> to “product” and adds the price including tax to the \u003Ccode>product:price\u003C\u002Fcode> and \u003Ccode>product:availability\u003C\u002Fcode> tags. Also allows you to use the Product Category thumbnails as Open Graph Image and have Product Gallery images as additional Open Graph Images\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fbrands\u002F\" rel=\"nofollow ugc\">WooCommerce Brands\u003C\u002Fa>\u003C\u002Fstrong>: On brand pages uses the brand image as Open Graph Image \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbusiness-directory-plugin\u002F\" rel=\"ugc\">Business Directory Plugin\u003C\u002Fa>\u003C\u002Fstrong> (deprecated): Allows you to use BDP listing contents as Open Graph Tags.\u003C\u002Fli>\n\u003C\u002Ful>\n","Improve social media sharing by inserting Facebook Open Graph, Twitter Card, and SEO Meta Tags on your WordPress website pages, posts, WooCommerce pro &hellip;",60000,2301341,122,"2026-01-28T07:38:00.000Z",[96,167,168,169,170],"open-graph","open-graph-protocol","social-media","twitter-card","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwonderm00ns-simple-facebook-open-graph-tags.3.3.9.zip",99,2,"2018-06-27 00:00:00",{"slug":176,"name":177,"version":178,"author":179,"author_profile":180,"description":181,"short_description":182,"active_installs":183,"downloaded":184,"rating":185,"num_ratings":186,"last_updated":187,"tested_up_to":188,"requires_at_least":189,"requires_php":18,"tags":190,"homepage":192,"download_link":193,"security_score":194,"vuln_count":26,"unpatched_count":27,"last_vuln_date":195,"fetched_at":29},"social-media-widget","Social Media Widget","4.0.9","Blink Web Effects","https:\u002F\u002Fprofiles.wordpress.org\u002Fbmwebproperties\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fappsumo.com\u002Fsearch?tags=wordpress&utm_source=sumo&utm_medium=wp-widget&utm_campaign=social-media-widget\" rel=\"nofollow ugc\">Check out the latest WordPress deals for your site.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The Social Media Widget is a simple sidebar widget that allows users to input their social media website profile URLs and other subscription options to show an icon on the sidebar to that social media site and more that open up in a separate browser window.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Supports the following social media sites:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>MySpace\u003C\u002Fli>\n\u003Cli>FriendFeed\u003C\u002Fli>\n\u003Cli>Orkut\u003C\u002Fli>\n\u003Cli>Hyves\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>aSmallWorld\u003C\u002Fli>\n\u003Cli>About.me\u003C\u002Fli>\n\u003Cli>Skyrock\u003C\u002Fli>\n\u003Cli>VK\u003C\u002Fli>\n\u003Cli>Goodreads\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Picasa Web Albums\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>StumbleUpon\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Buzz\u003C\u002Fli>\n\u003Cli>Google Talk\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>Blogger\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Yelp\u003C\u002Fli>\n\u003Cli>Last.fm\u003C\u002Fli>\n\u003Cli>Pandora\u003C\u002Fli>\n\u003Cli>UStream\u003C\u002Fli>\n\u003Cli>IMDb\u003C\u002Fli>\n\u003Cli>Hulu\u003C\u002Fli>\n\u003Cli>Flixter\u003C\u002Fli>\n\u003Cli>FourSquare\u003C\u002Fli>\n\u003Cli>Meetup\u003C\u002Fli>\n\u003Cli>PlanCast\u003C\u002Fli>\n\u003Cli>SlideShare\u003C\u002Fli>\n\u003Cli>DeviantArt\u003C\u002Fli>\n\u003Cli>Cuttings.me\u003C\u002Fli>\n\u003Cli>Live365\u003C\u002Fli>\n\u003Cli>Digital Tunes\u003C\u002Fli>\n\u003Cli>Soundcloud\u003C\u002Fli>\n\u003Cli>BandCamp\u003C\u002Fli>\n\u003Cli>Etsy\u003C\u002Fli>\n\u003Cli>Better Business Bureau\u003C\u002Fli>\n\u003Cli>Merchant Circle\u003C\u002Fli>\n\u003Cli>Ebay\u003C\u002Fli>\n\u003Cli>Steam\u003C\u002Fli>\n\u003Cli>RSS\u003C\u002Fli>\n\u003Cli>E-mail (mailto: or a link to mailing list service)\u003C\u002Fli>\n\u003Cli>Plus create 6 of your own using a URL to an icon and URL to the service\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Select from the following icon sizes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>16×16\u003C\u002Fli>\n\u003Cli>24×24\u003C\u002Fli>\n\u003Cli>32×32\u003C\u002Fli>\n\u003Cli>64×64\u003C\u002Fli>\n\u003Cli>Custom\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Select from 4 icon packages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Web 2.0 (Default) – Icons from \u003Ca href=\"http:\u002F\u002Fwww.iconspedia.com\u002F\" rel=\"nofollow ugc\">various artists\u003C\u002Fa> \u003C\u002Fli>\n\u003Cli>Sketch – \u003Ca href=\"http:\u002F\u002Ftheg-force.deviantart.com\" rel=\"nofollow ugc\">Social Icons Hand Drawn\u003C\u002Fa> by TheG-Force and \u003Ca href=\"http:\u002F\u002Fwww.jankoatwarpspeed.com\u002Fpost\u002F2008\u002F10\u002F20\u002Fhandycons-a-free-hand-drawn-social-media-icon-set.aspx\" rel=\"nofollow ugc\">Handycons\u003C\u002Fa> by Janko At Warp Speed\u003C\u002Fli>\n\u003Cli>Heart – \u003Ca href=\"http:\u002F\u002Fthedesignsuperhero.com\u002F2009\u002F03\u002Fheart-v2-free-social-iconset-in-heart-shape\u002F\" rel=\"nofollow ugc\">Heart v2\u003C\u002Fa> by The Design Superhero\u003C\u002Fli>\n\u003Cli>Cutout – \u003Ca href=\"http:\u002F\u002Fwww.iconspedia.com\u002Fpack\u002Ficontexto-inside-2222\u002F\" rel=\"nofollow ugc\">Icontexto Inside Icons\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Custom – These will be unaltered via updates. Make sure you follow the same naming scheme as the other icons (facebook.png, twitter.png). You can look at the other icon packs if you are unsure about the naming. See the FAQ for more information on usage.\u003C\u002Fli>\n\u003Cli>Note that some of the icons in the packs were created and added for this widget by myself. Not all of the requested social media sites were included so I attempted to create icons that mimicked the original artist icons. These are unattributed to myself. I keep attribution to the original artists since it is there design I modified.\u003C\u002Fli>\n\u003Cli>All icons in this pack are licensed under the Creative Commons license. Note that some of these are non-commercial only. Please go to the sites linked above to get full information on their allowed uses.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose from multiple animations including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Fade In (you can choose the starting opacity too!)\u003C\u002Fli>\n\u003Cli>Scale (zoom in)\u003C\u002Fli>\n\u003Cli>Bounce\u003C\u002Fli>\n\u003Cli>Combo (All three)\u003C\u002Fli>\n\u003Cli>Note: Because these are all CSS3 style animations, IE6-7 aren’t supported at all, although IE8 will support Scale. In IE6-8, icons will not be animated and use 100% opacity.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Create your own image alt\u002Ftitle tags for hover-over text (i.e. Follow Us On {service})\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose whether or not to use the rel=”nofollow” tag in your links. (Recommended see http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FNofollow)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose whether or not to open links in a new tab (or browser window).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Align your widget left, center, or right.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Arrange the order of the icons however you like.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose to the number of icons per row. Currently you can have one icon per row or auto (maximum # based on the width of the container the widget is placed in).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plugin, please rate it and click “Works” for your WordPress version!\u003C\u002Fp>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>Please add a post on the WordPress.org support forums with the plugin tagged.\u003C\u002Fp>\n","Adds links to all of your social media and sharing site profiles. Tons of icons come in 3 sizes, 4 icon styles, and 4 animations.",30000,2161166,78,84,"2024-06-10T19:09:00.000Z","6.4.8","2.9.2",[96,97,191,169,21],"linkedin","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsocial-media-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-widget.4.0.9.zip",87,"2024-06-21 00:00:00",{"attackSurface":197,"codeSignals":316,"taintFlows":396,"riskAssessment":467,"analyzedAt":479},{"hooks":198,"ajaxHandlers":301,"restRoutes":302,"shortcodes":310,"cronEvents":314,"entryPointCount":173,"unprotectedCount":315},[199,205,208,214,218,223,227,231,234,237,240,245,249,254,258,263,267,271,274,278,281,285,289,292,294,298],{"type":200,"name":201,"callback":202,"file":203,"line":204},"action","admin_notices","bctt_alerts","admin-nags.php",101,{"type":200,"name":206,"callback":207,"file":203,"line":164},"current_screen","bctt_addon_notice_ignore",{"type":209,"name":210,"callback":211,"file":212,"line":213},"filter","tiny_mce_version","refresh_mce","bctt-admin.php",5,{"type":200,"name":215,"callback":216,"file":212,"line":217},"admin_menu","bctt_admin_menu",26,{"type":200,"name":219,"callback":220,"priority":221,"file":212,"line":222},"admin_init","bctt_register_settings",100,30,{"type":200,"name":224,"callback":225,"file":226,"line":26},"plugins_loaded","bctt_load_textdomain","bctt-i18n.php",{"type":200,"name":219,"callback":228,"file":229,"line":230},"bctt_welcome_redirect","bctt-welcome-functions.php",104,{"type":200,"name":215,"callback":215,"file":232,"line":233},"bctt-welcome.php",22,{"type":200,"name":219,"callback":235,"file":232,"line":236},"welcome_page",23,{"type":200,"name":238,"callback":239,"file":232,"line":152},"admin_enqueue_scripts","enqueue_scripts",{"type":200,"name":241,"callback":242,"priority":27,"file":243,"line":244},"init","bctt_init","better-click-to-tweet.php",27,{"type":200,"name":246,"callback":247,"file":243,"line":248},"rest_api_init","bctt_rest_register_connector_agreement",125,{"type":200,"name":250,"callback":251,"priority":252,"file":243,"line":253},"wp_enqueue_scripts","bctt_scripts",10,345,{"type":200,"name":255,"callback":256,"file":257,"line":103},"bctt_settings_top","bctt_settings_rebrand_link","includes\\admin-clarifier.php",{"type":200,"name":259,"callback":260,"file":261,"line":262},"wp_abilities_api_categories_init","bctt_register_ability_category","includes\\class-bctt-abilities.php",42,{"type":200,"name":264,"callback":265,"file":261,"line":266},"wp_abilities_api_init","bctt_register_abilities",197,{"type":200,"name":219,"callback":268,"priority":27,"file":269,"line":270},"bctt_updater","includes\\updater\\bctt-updater.php",160,{"type":200,"name":219,"callback":272,"priority":252,"file":269,"line":273},"activate_license",161,{"type":200,"name":219,"callback":275,"priority":276,"file":269,"line":277},"deactivate_license",11,162,{"type":200,"name":219,"callback":279,"priority":27,"file":269,"line":280},"bctt_register_addon_updaters_fallback",353,{"type":209,"name":282,"callback":283,"file":284,"line":77},"pre_set_site_transient_update_plugins","check_update","includes\\updater\\BCTT_SL_Plugin_Updater.php",{"type":209,"name":286,"callback":287,"priority":252,"file":284,"line":288},"plugins_api","plugins_api_filter",74,{"type":200,"name":219,"callback":290,"file":284,"line":291},"show_changelog",77,{"type":209,"name":282,"callback":283,"file":284,"line":293},214,{"type":200,"name":215,"callback":295,"priority":296,"file":297,"line":233},"maybe_remove_premium_styles_license_page",999,"includes\\updater\\license-page.php",{"type":200,"name":219,"callback":299,"file":297,"line":300},"bctt_register_license_option",138,[],[303],{"namespace":304,"route":305,"methods":306,"callback":308,"permissionCallback":36,"file":243,"line":309},"bctt\u002Fv1","\u002Fconnector-agreement",[307],"GET","anonymous",88,[311],{"tag":312,"callback":313,"file":243,"line":262},"bctt","bctt_shortcode",[],1,{"dangerousFunctions":317,"sqlUsage":318,"outputEscaping":320,"fileOperations":27,"externalRequests":213,"nonceChecks":173,"capabilityChecks":391,"bundledLibraries":392},[],{"prepared":27,"raw":27,"locations":319},[],{"escaped":164,"rawEcho":321,"locations":322},35,[323,326,328,331,333,335,337,339,341,343,345,347,349,351,353,356,358,360,361,363,366,367,370,372,373,375,376,377,378,379,381,383,385,387,389],{"file":212,"line":324,"context":325},398,"raw output",{"file":212,"line":327,"context":325},415,{"file":329,"line":330,"context":325},"bctt_options.php",70,{"file":329,"line":332,"context":325},82,{"file":329,"line":334,"context":325},121,{"file":329,"line":336,"context":325},133,{"file":329,"line":338,"context":325},157,{"file":329,"line":340,"context":325},179,{"file":329,"line":342,"context":325},180,{"file":329,"line":344,"context":325},181,{"file":346,"line":266,"context":325},"i18n-module.php",{"file":346,"line":348,"context":325},200,{"file":284,"line":350,"context":325},221,{"file":284,"line":352,"context":325},539,{"file":354,"line":355,"context":325},"includes\\views\\welcome\\_content.php",32,{"file":354,"line":357,"context":325},37,{"file":359,"line":26,"context":325},"includes\\views\\welcome\\_done.php",{"file":359,"line":236,"context":325},{"file":362,"line":213,"context":325},"includes\\views\\welcome\\_footer.php",{"file":364,"line":365,"context":325},"includes\\views\\welcome\\_grow.php",18,{"file":364,"line":152,"context":325},{"file":368,"line":369,"context":325},"includes\\views\\welcome\\_header.php",14,{"file":368,"line":371,"context":325},21,{"file":368,"line":236,"context":325},{"file":368,"line":374,"context":325},28,{"file":368,"line":222,"context":325},{"file":368,"line":321,"context":325},{"file":368,"line":357,"context":325},{"file":368,"line":262,"context":325},{"file":368,"line":380,"context":325},44,{"file":368,"line":382,"context":325},49,{"file":368,"line":384,"context":325},51,{"file":386,"line":217,"context":325},"includes\\views\\welcome\\_usage.php",{"file":386,"line":388,"context":325},33,{"file":386,"line":390,"context":325},38,13,[393],{"name":394,"version":36,"knownCves":395},"TinyMCE",[],[397,414,422,438,454],{"entryPoint":398,"graph":399,"unsanitizedCount":27,"severity":413},"welcome_page (bctt-welcome.php:32)",{"nodes":400,"edges":410},[401,405],{"id":402,"type":403,"label":404,"file":232,"line":262},"n0","source","$_POST['bctt-twitter']",{"id":406,"type":407,"label":408,"file":232,"line":262,"wp_function":409},"n1","sink","update_option() [Settings Manipulation]","update_option",[411],{"from":402,"to":406,"sanitized":412},true,"low",{"entryPoint":415,"graph":416,"unsanitizedCount":27,"severity":413},"\u003Cbctt-welcome> (bctt-welcome.php:0)",{"nodes":417,"edges":420},[418,419],{"id":402,"type":403,"label":404,"file":232,"line":262},{"id":406,"type":407,"label":408,"file":232,"line":262,"wp_function":409},[421],{"from":402,"to":406,"sanitized":412},{"entryPoint":423,"graph":424,"unsanitizedCount":315,"severity":413},"show_changelog (includes\\updater\\BCTT_SL_Plugin_Updater.php:467)",{"nodes":425,"edges":434},[426,429,432],{"id":402,"type":403,"label":427,"file":284,"line":428},"$_REQUEST",534,{"id":406,"type":430,"label":431,"file":284,"line":428},"transform","→ set_version_info_cache()",{"id":433,"type":407,"label":408,"file":284,"line":139,"wp_function":409},"n2",[435,437],{"from":402,"to":406,"sanitized":436},false,{"from":406,"to":433,"sanitized":436},{"entryPoint":439,"graph":440,"unsanitizedCount":315,"severity":413},"\u003CBCTT_SL_Plugin_Updater> (includes\\updater\\BCTT_SL_Plugin_Updater.php:0)",{"nodes":441,"edges":450},[442,444,445,446,448],{"id":402,"type":403,"label":427,"file":284,"line":443},494,{"id":406,"type":407,"label":408,"file":284,"line":139,"wp_function":409},{"id":433,"type":403,"label":427,"file":284,"line":428},{"id":447,"type":430,"label":431,"file":284,"line":428},"n3",{"id":449,"type":407,"label":408,"file":284,"line":139,"wp_function":409},"n4",[451,452,453],{"from":402,"to":406,"sanitized":412},{"from":433,"to":447,"sanitized":436},{"from":447,"to":449,"sanitized":436},{"entryPoint":455,"graph":456,"unsanitizedCount":27,"severity":413},"\u003C_welcome> (includes\\views\\welcome\\_welcome.php:0)",{"nodes":457,"edges":465},[458,462],{"id":402,"type":403,"label":459,"file":460,"line":461},"$_SERVER['REQUEST_URI']","includes\\views\\welcome\\_welcome.php",25,{"id":406,"type":407,"label":463,"file":460,"line":461,"wp_function":464},"echo() [XSS]","echo",[466],{"from":402,"to":406,"sanitized":412},{"summary":468,"deductions":469},"The 'better-click-to-tweet' plugin version 6.0.0 presents a mixed security posture. While it demonstrates good practices in areas like SQL query sanitization, the presence of an unprotected REST API endpoint is a significant concern, increasing the potential attack surface. The 78% proper output escaping indicates a need for further review, as the remaining 22% could still be a vector for cross-site scripting vulnerabilities, especially when considering past vulnerabilities. The vulnerability history, including a high-severity Cross-Site Request Forgery (CSRF) and Improper Neutralization of Input During Web Page Generation (XSS) issues, suggests a pattern of past security weaknesses that require ongoing vigilance.\n\nDespite the lack of currently unpatched CVEs and a generally low count of critical or high-severity taint flows, the unprotected REST API endpoint is a glaring weakness. The vulnerability history, particularly the types of past vulnerabilities, reinforces the need for thorough input validation and output escaping. While the plugin has strengths in its SQL handling and a reasonable number of capability checks, the identified entry points and historical data necessitate a cautious approach and ongoing monitoring.",[470,472,474,477],{"reason":471,"points":252},"Unprotected REST API route",{"reason":473,"points":103},"Output escaping is not 100% proper",{"reason":475,"points":476},"Vulnerability history includes high severity issues",15,{"reason":478,"points":213},"Flows with unsanitized paths found","2026-03-16T18:00:27.892Z",{"wat":481,"direct":490},{"assetPaths":482,"generatorPatterns":485,"scriptPaths":486,"versionParams":487},[483,484],"\u002Fwp-content\u002Fplugins\u002Fbetter-click-to-tweet\u002Fassets\u002Fcss\u002Fbctt-frontend.css","\u002Fwp-content\u002Fplugins\u002Fbetter-click-to-tweet\u002Fassets\u002Fjs\u002Fbctt-frontend.js",[],[484],[488,489],"better-click-to-tweet\u002Fassets\u002Fcss\u002Fbctt-frontend.css?ver=","better-click-to-tweet\u002Fassets\u002Fjs\u002Fbctt-frontend.js?ver=",{"cssClasses":491,"htmlComments":495,"htmlAttributes":496,"restEndpoints":502,"jsGlobals":504,"shortcodeOutput":507},[492,493,494],"bctt-click-to-tweet","bctt-ctt-text","bctt-ctt-btn",[],[497,498,499,500,501],"data-bctt-tweet","data-bctt-via","data-bctt-username","data-bctt-url","data-bctt-prompt",[503],"\u002Fbctt\u002Fv1\u002Fconnector-agreement",[505,506],"bctt_options","bctt_frontend",[508,509,510,511,512],"\u003Ca","class=\"twitter-share-button\"","href=\"https:\u002F\u002Ftwitter.com\u002Fintent\u002Ftweet?url=","text=","via="]