[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCjSDsQF5BQbjMLh4p459_7GcPoHVYEntJFkGQcteA3E":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":145,"fingerprints":262},"blob-mimes","Lord of the Files: Enhanced Upload Security","1.4.2","Blobfolio","https:\u002F\u002Fprofiles.wordpress.org\u002Fblobfolio\u002F","\u003Cp>WordPress relies mostly on name-based validation when deciding whether or not to allow a particular file, leaving the door open for various kinds of attacks.\u003C\u002Fp>\n\u003Cp>Lord of the Files adds to this content-based validation and sanitizing, making sure that files are what they say they are and safe for inclusion on your site.\u003C\u002Fp>\n\u003Cp>The main features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Robust \u003Cem>real\u003C\u002Fem> filetype detection;\u003C\u002Fli>\n\u003Cli>Full MIME alias mapping;\u003C\u002Fli>\n\u003Cli>SVG sanitization (if SVG uploads have been independently allowed);\u003C\u002Fli>\n\u003Cli>File upload validation debugger;\u003C\u002Fli>\n\u003Cli>Fixes issues related to \u003Ca href=\"https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F40175\" rel=\"nofollow ugc\">#40175\u003C\u002Fa> that have been present since WordPress \u003Ccode>4.7.1\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Fixes ambiguous media extensions \u003Ca href=\"https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F40921\" rel=\"nofollow ugc\">#40921\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.2 or later.\u003C\u002Fli>\n\u003Cli>PHP 7.4 or later.\u003C\u002Fli>\n\u003Cli>\u003Ccode>dom\u003C\u002Fcode> PHP extension.\u003C\u002Fli>\n\u003Cli>\u003Ccode>fileinfo\u003C\u002Fcode> PHP extension.\u003C\u002Fli>\n\u003Cli>\u003Ccode>mbstring\u003C\u002Fcode> PHP extension.\u003C\u002Fli>\n\u003Cli>\u003Ccode>xml\u003C\u002Fcode> PHP extension.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please note: it is \u003Cstrong>not safe\u003C\u002Fstrong> to run WordPress atop a version of PHP that has reached its \u003Ca href=\"http:\u002F\u002Fphp.net\u002Fsupported-versions.php\" rel=\"nofollow ugc\">End of Life\u003C\u002Fa>. Future releases of this plugin might, out of necessity, drop support for old, unmaintained versions of PHP. To ensure you continue to receive plugin updates, bug fixes, and new features, just make sure PHP is kept up-to-date. 🙂\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>This plugin does not make use of or collect any “Personal Data”.\u003C\u002Fp>\n","This plugin expands file-related security and sanity around the upload process.",1000,95238,100,11,"2025-09-17T03:38:00.000Z","6.8.5","5.2","7.4",[20,21,22,23,24],"file-validation","mime","security-plugin","svg","upload-security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblob-mimes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblob-mimes.1.4.2.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"blobfolio",4,1510,98,1122,78,"2026-04-04T21:47:52.428Z",[40,63,84,101,123],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":35,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":27,"last_vuln_date":62,"fetched_at":29},"safe-svg","Safe SVG","2.4.0","10up","https:\u002F\u002Fprofiles.wordpress.org\u002F10up\u002F","\u003Cp>Safe SVG is the best way to Allow SVG Uploads in WordPress!\u003C\u002Fp>\n\u003Cp>It gives you the ability to allow SVG uploads whilst making sure that they’re sanitized to stop SVG\u002FXML vulnerabilities affecting your site.  It also gives you the ability to preview your uploaded SVGs in the media library in all views.\u003C\u002Fp>\n\u003Ch4>Current Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Sanitised SVGs\u003C\u002Fstrong> – Don’t open up security holes in your WordPress site by allowing uploads of unsanitised files.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SVGO Optimisation\u003C\u002Fstrong> – Runs your SVGs through the SVGO tool on upload to save you space. This feature is disabled by default but can be enabled by adding the following code: \u003Ccode>add_filter( 'safe_svg_optimizer_enabled', '__return_true' );\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>View SVGs in the Media Library\u003C\u002Fstrong> – Gone are the days of guessing which SVG is the correct one, we’ll enable SVG previews in the WordPress media library.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Choose Who Can Upload\u003C\u002Fstrong> – Restrict SVG uploads to certain users on your WordPress site or allow anyone to upload.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Initially a proof of concept for \u003Ca href=\"https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F24251\" rel=\"nofollow ugc\">#24251\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>SVG Sanitization is done through the following library: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdarylldoyle\u002Fsvg-sanitizer\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fdarylldoyle\u002Fsvg-sanitizer\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>SVG Optimization is done through the following library: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsvg\u002Fsvgo\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fsvg\u002Fsvgo\u003C\u002Fa>.\u003C\u002Fp>\n","Enable SVG uploads and sanitize them to stop XML\u002FSVG vulnerabilities in your WordPress website.",1000000,12729263,77,"2026-01-04T21:05:00.000Z","6.9.4","6.6",[55,21,56,23,57],"media","security","vector","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsafe-svg\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsafe-svg.2.4.0.zip",94,6,"2024-10-17 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":48,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":18,"tags":77,"homepage":80,"download_link":81,"security_score":82,"vuln_count":61,"unpatched_count":27,"last_vuln_date":83,"fetched_at":29},"svg-support","SVG Support","2.5.14","Benbodhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenbodhi\u002F","\u003Cp>\u003Cstrong>The complete SVG solution for WordPress – secure, flexible, and easy to use.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>SVG Support enables secure SVG uploads with powerful features for both basic users and developers:\u003C\u002Fp>\n\u003Cp>✨ \u003Cstrong>Key Features\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Secure SVG uploads with automatic sanitization\u003Cbr \u002F>\n– Inline rendering for direct CSS\u002FJS manipulation\u003Cbr \u002F>\n– File size optimization through minification\u003Cbr \u002F>\n– Role-based access control\u003Cbr \u002F>\n– Advanced developer options\u003Cbr \u002F>\n– Multisite compatible\u003Cbr \u002F>\n– Full Block Editor (Gutenberg) compatibility\u003C\u002Fp>\n\u003Cp>🔒 \u003Cstrong>Security First\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Built-in sanitization removes potentially harmful code\u003Cbr \u002F>\n– Role-based upload restrictions\u003Cbr \u002F>\n– Comprehensive MIME type validation\u003C\u002Fp>\n\u003Cp>🎨 \u003Cstrong>Designer Friendly\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Direct styling of SVG elements\u003Cbr \u002F>\n– Animation support\u003Cbr \u002F>\n– Custom class targeting\u003Cbr \u002F>\n– Automatic dimension handling\u003C\u002Fp>\n\u003Cp>💻 \u003Cstrong>Developer Ready\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Advanced mode for additional features\u003Cbr \u002F>\n– REST API support\u003Cbr \u002F>\n– Gutenberg compatible\u003Cbr \u002F>\n– Extensive hooks and filters\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Basic Usage\u003C\u002Fstrong>:\u003Cbr \u002F>\n– First, install and activate SVG Support via your WordPress dashboard\u003Cbr \u002F>\n– Upload SVG files to your media library like any other image\u003Cbr \u002F>\n– Works seamlessly with Image blocks, Cover blocks and featured images\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Advanced Usage\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Enable “Advanced Mode” for minification and inline rendering\u003Cbr \u002F>\n– Customize with hooks and filters for tailored functionality\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Block Editor Usage\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Use Advanced Mode to enable inline rendering:\u003Cbr \u002F>\n  – Add the \u003Ccode>\"style-svg\"\u003C\u002Fcode> class to Image blocks\u003Cbr \u002F>\n  – Add the \u003Ccode>\"style-svg\"\u003C\u002Fcode> class to Cover blocks to render SVG backgrounds inline\u003Cbr \u002F>\n– Use “Skip Nested SVGs” setting to control inline rendering of SVGs within Cover blocks\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Classic Editor Usage\u003C\u002Fstrong>:\u003Cbr \u002F>\n– Use Advanced Mode to add the \u003Ccode>\"style-svg\"\u003C\u002Fcode> class to \u003Ccode>\u003Cimg>\u003C\u002Fcode> tags for inline rendering\u003Cbr \u002F>\n– Enable “Auto Insert Class” option for automatic class insertion in Classic Editor\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Common Issues & Solutions\u003C\u002Fstrong>:\u003Cbr \u002F>\n– SVG not displaying? Ensure dimensions are set in CSS.\u003Cbr \u002F>\n– Need help? Use the support tab and I will do my best to assist you.\u003C\u002Fp>\n\u003Ch3>Spin up a test site\u003C\u002Fh3>\n\u003Cp>With a single click, you can spin up a completely free test site to test SVG Support using TasteWP! No sign up, no cards, nothing! How cool is that? Give it a go:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Ftastewp.com\u002Fnew?pre-installed-plugin-slug=svg-support&redirect=options-general.php%3Fpage%3Dsvg-support&ni=true\" rel=\"nofollow ugc\">Click Here to spin up a test site in seconds\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Security\u003C\u002Fh3>\n\u003Cp>SVG Support prioritizes security with automatic sanitization and role-based restrictions. Only trusted users should have upload permissions. Configure settings to balance functionality and security.\u003C\u002Fp>\n\u003Ch3>Feedback\u003C\u002Fh3>\n\u003Cp>I’m open to your \u003Ca href=\"mailto:wp@benbodhi.com\" rel=\"nofollow ugc\">suggestions and feedback\u003C\u002Fa> – Thanks for using SVG Support!\u003C\u002Fp>\n\u003Cp>Follow \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fsvgsupport\" rel=\"nofollow ugc\">@SVGSupport\u003C\u002Fa> on Twitter\u003Cbr \u002F>\nFollow \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fbenbodhi\" rel=\"nofollow ugc\">@benbodhi\u003C\u002Fa> on Twitter\u003Cbr \u002F>\nFollow \u003Ca href=\"https:\u002F\u002Fwarpcast.com\u002Fbenbodhi\" rel=\"nofollow ugc\">@benbodhi\u003C\u002Fa> on Warpcast\u003C\u002Fp>\n\u003Cp>\u003Cem>Note:\u003C\u002Fem> I hope you like this plugin! Please take a moment to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fsvg-support?filter=5#postform\" rel=\"ugc\">rate it\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Development & Contributing\u003C\u002Fh3>\n\u003Cp>The development version of SVG Support is maintained on GitHub. Feel free to contribute:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Submit bug reports or feature suggestions: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbenbodhi\u002Fsvg-support\u002Fissues\" rel=\"nofollow ugc\">GitHub Issues\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contribute code via \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbenbodhi\u002Fsvg-support\u002Fpulls\" rel=\"nofollow ugc\">Pull Requests\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Development repository: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbenbodhi\u002Fsvg-support\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>Contribute translations \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsvg-support\" rel=\"nofollow ugc\">here\u003C\u002Fa>. New to translating? Check the \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fpolyglots\u002Fhandbook\u002Ftools\u002Fglotpress-translate-wordpress-org\u002F\" rel=\"nofollow ugc\">Translator Handbook\u003C\u002Fa>.\u003C\u002Fp>\n","Securely upload SVG files to your media library, with built-in sanitization and advanced features for styling and animation.",12632236,96,354,"2025-02-25T08:34:00.000Z","6.7.5","5.8",[78,41,79,23,57],"mime-type","sanitization","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsvg-support\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsvg-support.2.5.14.zip",89,"2025-02-24 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":13,"downloaded":92,"rating":13,"num_ratings":93,"last_updated":94,"tested_up_to":16,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":99,"download_link":100,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"svg-editor","SVG Editor: Upload & Change Colors","1.1","Digages","https:\u002F\u002Fprofiles.wordpress.org\u002Fdigages\u002F","\u003Cp>SVG Editor adds native support for uploading and editing SVG (Scalable Vector Graphics) directly within your WordPress Media Library. Easily change the colors of your favorite icons, images, and vector assets without needing any external design software.\u003C\u002Fp>\n\u003Cp>Whether you’re a web designer, developer, or content creator, SVG Editor is here to simplify your workflow and save you time.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Enable SVG Uploads\u003C\u002Fstrong>: Allows you to safely upload SVG files to your WordPress site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>View SVGs in Media Library\u003C\u002Fstrong>: Preview your SVG files directly within the WordPress Media Library.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Native WordPress Integration\u003C\u002Fstrong>: Works seamlessly within the WordPress Media Library.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simple Color Editing\u003C\u002Fstrong>: Change SVG colors with our intuitive interface.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sanitized SVGs\u003C\u002Fstrong>: Automatically cleans SVG code to prevent security risks and ensure safe usage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Preserves SVG Integrity\u003C\u002Fstrong>: Maintains the scalability and quality of your vector graphics.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong>: Easily edit SVG on the go.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>About Digages:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>SVG Editor is a free and open-source plugin developed and maintained by \u003Ca href=\"https:\u002F\u002Fdigages.com\u002F\" rel=\"nofollow ugc\">Digages\u003C\u002Fa>. We’re committed to creating tools that make WordPress more powerful and easier to use.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdigages.com\u002Fdonate\u002F\" rel=\"nofollow ugc\">Donate Now\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdigages.com\u002F\" rel=\"nofollow ugc\">Visit Website\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Other Plugins by Digages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdirect-payments-for-woocommerce\u002F\" rel=\"ugc\">Direct Payment for Woocommerce\u003C\u002Fa>: Direct Payments for WooCommerce makes it easy for WooCommerce store owners to accept payments directly through local and global methods with 0.0% transaction fees. Enable direct payments from your customers via bank transfers, mobile money, crypto and peer-to-peer platforms like Zelle, Venmo, Cash App e.t.c\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdirect-payments-wp\u002F\" rel=\"ugc\">Direct Payment WP\u003C\u002Fa>: Direct Payments WP is the ultimate plugin for WordPress users who want a simple and flexible way to accept payments. Whether you’re a freelancer, a small business owner, or running a membership site, Direct Payments WP empowers you to accept payments directly using customizable forms, invoices and pages.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External API Notice\u003C\u002Fh3>\n\u003Cp>This plugin optionally connects to an external API to fetch additional plugin listings. The core functionality of the plugin is fully independent and remains unaffected if the API is not used.\u003C\u002Fp>\n\u003Cp>We value user privacy and ensure that no personal or sensitive data is sent to the external API.\u003C\u002Fp>\n","SVG Editor lets you upload SVG files and change their colors directly within the WordPress Media Library.",1048,3,"2025-07-07T14:30:00.000Z","5.0","7.0",[98,55,21,23,57],"editor","https:\u002F\u002Fdigages.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsvg-editor.1.1.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":27,"num_ratings":27,"last_updated":111,"tested_up_to":16,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":117,"download_link":118,"security_score":119,"vuln_count":120,"unpatched_count":27,"last_vuln_date":121,"fetched_at":122},"easy-svg-upload","Easy SVG Upload","1.2","Delower Hossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdelower\u002F","\u003Cp>Easy SVG Upload is your go-to solution for safely enabling SVG uploads in WordPress. This powerful plugin empowers you to seamlessly incorporate SVG files into your website, all while ensuring they are meticulously sanitized to thwart any potential SVG\u002FXML vulnerabilities that could compromise your site’s security. Additionally, Easy SVG Upload offers the convenience of previewing your uploaded SVGs directly in the media library, across all views.\u003C\u002Fp>\n\u003Cp>With Easy SVG Upload, you can confidently embrace the creative potential of SVG files within your WordPress site, all within a secure and user-friendly environment.\u003C\u002Fp>\n\u003Ch4>Contributing & Bug Report\u003C\u002Fh4>\n\u003Cp>Bug reports and pull requests are welcome on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWordPress-Satkhira-Community\u002Feasy-svg-upload\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n","The easiest way to upload svg image file in your WordPress Site.",10,500,"2025-10-06T14:54:00.000Z","6.0","8.0",[102,115,78,23,116],"file-type","svg-upload","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-svg-upload","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-svg-upload.1.2.zip",99,1,"2024-10-30 14:05:35","2026-03-15T14:54:45.397Z",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":133,"num_ratings":134,"last_updated":135,"tested_up_to":52,"requires_at_least":76,"requires_php":18,"tags":136,"homepage":141,"download_link":142,"security_score":119,"vuln_count":143,"unpatched_count":27,"last_vuln_date":144,"fetched_at":29},"font-awesome","Font Awesome","5.1.3","fontawesome","https:\u002F\u002Fprofiles.wordpress.org\u002Ffontawesome\u002F","\u003Cp>The official way to use Font Awesome Free or Pro icons on your WordPress site, brought to you by the Font Awesome team.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>Our official plugin makes it easy to add Font Awesome icons to your pages, posts, and templates and includes the following features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use \u003Cstrong>Pro or Free icons\u003C\u002Fstrong>, from the latest release or a specific release.\u003C\u002Fli>\n\u003Cli>Use \u003Cstrong>custom icons\u003C\u002Fstrong> from your Pro Kits.\u003C\u002Fli>\n\u003Cli>Use a \u003Cstrong>Font Awesome Kit\u003C\u002Fstrong> to add any of our icons (including the latest Duotone styles and custom icons!), or select the Font Awesome \u003Cstrong>CDN for Version 5 icons only\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Turn on automatic \u003Cstrong>compatibility for Font Awesome Version 4\u003C\u002Fstrong> if you – or your plugins – are still using Version 4 syntax.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Troubleshoot and resolve issues\u003C\u002Fstrong> when multiple versions of Font Awesome are loading on your site from other plugins\u002Fthemes, which can cause unexpected icon display or technical issues.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>How to Use\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Install And Enable The Plugin\u003C\u002Fstrong>\u003Cbr \u002F>\n(See the Installation tab for details)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How to Add and Style Icons\u003C\u002Fstrong>\u003Cbr \u002F>\nFull docs on how to use the plugin and add icons are available on the \u003Ca href=\"https:\u002F\u002Fdocs.fontawesome.com\u002Fweb\u002Fuse-with\u002Fwordpress\u002Fadd-icons\" rel=\"nofollow ugc\">Font Awesome Docs site\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add Icons in the Block Editor\u003C\u002Fstrong>\u003Cbr \u002F>\nOnce you’ve set up your plugin, you can add icons as blocks or inline with text.\u003C\u002Fp>\n\u003Cp>To add icons as blocks, select the “Font Awesome Icon” block, and then click the “Choose Icon button” to open the Icon Chooser.\u003C\u002Fp>\n\u003Cp>To add icons inline, select the Font Awesome option in the format toolbar to open the Icon Chooser. (Note: Inline icons require at least WP 6.3.)\u003C\u002Fp>\n\u003Cp>Once you open the Icon Chooser, add icons by:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Searching for the icon you want – you can \u003Cstrong>search by icon name, category, or keyword\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Changing the Family and Style using the drop downs if you want an icon in a different style.\u003C\u002Fli>\n\u003Cli>When you see the icon you want, clicking it to enter it into the content of your page or post.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cem>Note: If you want to search and add Pro icons in the Icon Chooser, make sure you set your plugin to use a Pro Kit.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add Icons in The Classic Editor\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you need to add icons in the classic editor, you can \u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Ficons?d=gallery\" rel=\"nofollow ugc\">use the icon names in shortcodes or HTML\u003C\u002Fa>. Add an icon using shortcodes to any text area – just add the name of the icon and a style prefix, where \u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Fhow-to-use\u002Fon-the-web\u002Freferencing-icons\u002Fbasic-use\" rel=\"nofollow ugc\">the prefix is the style of icon\u003C\u002Fa> you want to use. Note that you don’t need to include the \u003Ccode>fa-\u003C\u002Fcode> part of the icon name. And if you don’t include any style prefix, the icon will default to the Classic Solid style.\u003C\u002Fp>\n\u003Cp>The shortcode for an icon looks like this:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[icon name=\"stroopwafel\"]\n\n[icon name=\"stroopwafel\" prefix=\"fa-sharp fa-light\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>You can also use basic HTML with \u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Fhow-to-use\u002Fon-the-web\u002Freferencing-icons\u002Fbasic-use\" rel=\"nofollow ugc\">standard Font Awesome syntax\u003C\u002Fa>, like this:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Ci class=\"fa-solid fa-stroopwafel\">\u003C\u002Fi>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Using Pro Icons and Features\u003C\u002Fstrong>\u003Cbr \u002F>\nTo use a Kit to power your icons, \u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Fkits\" rel=\"nofollow ugc\">create a Kit on FontAwesome.com\u003C\u002Fa> and select “Pro icons” in the Kit Settings tab. Then grab your \u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Faccount#api-tokens\" rel=\"nofollow ugc\">API Token from your Font Awesome Account page\u003C\u002Fa> and add it to your WordPress plugin settings.\u003C\u002Fp>\n\u003Cp>To use the CDN to power your icons, know that you will \u003Cstrong>only be able to use icons from Version 5\u003C\u002Fstrong>. To enable Pro icons, add your site’s domain to the list allowed domains on your \u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Faccount\u002Fcdn\" rel=\"nofollow ugc\">Font Awesome CDN Settings page\u003C\u002Fa> and then use shortcodes or HTML to add the icons into your content.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Troubleshooting with the Plugin\u003C\u002Fstrong>\u003Cbr \u002F>\nFont Awesome icons are popular, so lots of themes and plugins also load Font Awesome, and sometimes their version can conflict with yours. So we created a way to help you find and prevent those conflicting versions from affecting your icons: \u003Cstrong>The Conflict Detection Scanner\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>If the plugin seems to be set up correctly and your icons still aren’t loading and you’re not sure why, head over to the Troubleshoot tab, which has two parts:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cem>Detect Conflicts with Other Versions of Font Awesome\u003C\u002Fem> – which lets you start the conflict detection scanner to find versions of Font Awesome loading on your site.\u003C\u002Fli>\n\u003Cli>\u003Cem>Versions of Font Awesome Active on Your Site\u003C\u002Fem> – which shows the results of the scanner and lets  you prevent any conflicting versions from loading other versions of Font Awesome on your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Get more information about using the scanner for troubleshooting on the \u003Ca href=\"https:\u002F\u002Fdocs.fontawesome.com\u002Fweb\u002Fuse-with\u002Fwordpress\u002Ftroubleshoot\" rel=\"nofollow ugc\">Font Awesome WordPress docs\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Configuring\u003C\u002Fh3>\n\u003Cp>The plugin is set to serve Font Awesome Free icons as a Web Font via the Font Awesome CDN by default. You can change the CDN settings right in the plugin. If you want just the basic Free icons, you probably don’t need to make any changes to the default configuration.\u003C\u002Fp>\n\u003Cp>You can get more information about all the available settings and troubleshooting on the \u003Ca href=\"https:\u002F\u002Fdocs.fontawesome.com\u002Fweb\u002Fuse-with\u002Fwordpress\" rel=\"nofollow ugc\">Font Awesome WordPress docs\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Upgrading from Plugin Version 4\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ccode>[icon]\u003C\u002Fcode> shortcodes found in Block Editor content and elsewehre will continue to work as before,\u003Cbr \u002F>\nthough new icons added with the Icon Chooser in the Block Editor will be inline SVGs.\u003Cbr \u002F>\nPreviously added \u003Ccode>[icon]\u003C\u002Fcode> shortcodes will not be automatically be converted into the new inline SVG\u003Cbr \u002F>\nformat. If you want to convert an \u003Ccode>[icon]\u003C\u002Fcode> shortcode, delete it and re-add the icon using the Icon Chooser in the Block Editor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>See Also\u003C\u002Fh3>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FFortAwesome\u002Fwordpress-fontawesome\u002Fblob\u002Fmaster\u002FREADME.md\" rel=\"nofollow ugc\">README\u003C\u002Fa> on GitHub has details for WordPress site owners and developers.\u003C\u002Fp>\n\u003Cp>You can get more information about all the available settings and troubleshooting on the \u003Ca href=\"https:\u002F\u002Fdocs.fontawesome.com\u002Fweb\u002Fuse-with\u002Fwordpress\" rel=\"nofollow ugc\">Font Awesome WordPress docs\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>And there are \u003Ca href=\"https:\u002F\u002Ffortawesome.github.io\u002Fwordpress-fontawesome\u002F\" rel=\"nofollow ugc\">API docs\u003C\u002Fa> for developers.\u003C\u002Fp>\n","The official way to use Font Awesome Free or Pro icons on your WordPress site, brought to you by the Font Awesome team.",400000,5666760,72,61,"2025-12-17T22:34:00.000Z",[127,137,138,139,140],"icon","iconfont","svg-icon","webfont","https:\u002F\u002Ffontawesome.com\u002Fhow-to-use\u002Fon-the-web\u002Fusing-with\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffont-awesome.5.1.3.zip",2,"2022-12-22 00:00:00",{"attackSurface":146,"codeSignals":166,"taintFlows":254,"riskAssessment":255,"analyzedAt":261},{"hooks":147,"ajaxHandlers":162,"restRoutes":163,"shortcodes":164,"cronEvents":165,"entryPointCount":27,"unprotectedCount":27},[148,154,158],{"type":149,"name":150,"callback":151,"file":152,"line":153},"action","plugins_loaded","blobmimes_localize","index.php",104,{"type":149,"name":155,"callback":156,"file":152,"line":157},"admin_init","blobmimes_deactivate",115,{"type":149,"name":159,"callback":160,"file":152,"line":161},"admin_notices","blobmimes_notice",146,[],[],[],[],{"dangerousFunctions":167,"sqlUsage":168,"outputEscaping":170,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":253},[],{"prepared":27,"raw":27,"locations":169},[],{"escaped":27,"rawEcho":171,"locations":172},42,[173,176,178,181,183,185,187,189,190,192,194,195,197,200,202,204,206,208,211,212,214,215,217,219,221,223,225,226,228,230,231,233,235,237,239,240,242,243,244,245,248,251],{"file":152,"line":174,"context":175},127,"raw output",{"file":152,"line":177,"context":175},133,{"file":179,"line":180,"context":175},"templates\\debug.php",36,{"file":179,"line":182,"context":175},76,{"file":179,"line":184,"context":175},83,{"file":179,"line":186,"context":175},84,{"file":179,"line":188,"context":175},102,{"file":179,"line":153,"context":175},{"file":179,"line":191,"context":175},105,{"file":179,"line":193,"context":175},113,{"file":179,"line":157,"context":175},{"file":179,"line":196,"context":175},117,{"file":198,"line":199,"context":175},"templates\\reference.php",22,{"file":198,"line":201,"context":175},23,{"file":198,"line":203,"context":175},26,{"file":198,"line":205,"context":175},27,{"file":198,"line":207,"context":175},39,{"file":209,"line":210,"context":175},"templates\\settings.php",60,{"file":209,"line":134,"context":175},{"file":209,"line":213,"context":175},70,{"file":209,"line":133,"context":175},{"file":209,"line":216,"context":175},73,{"file":209,"line":218,"context":175},80,{"file":209,"line":220,"context":175},81,{"file":209,"line":222,"context":175},85,{"file":209,"line":224,"context":175},93,{"file":209,"line":72,"context":175},{"file":209,"line":227,"context":175},103,{"file":229,"line":201,"context":175},"templates\\sidebar-debug.php",{"file":229,"line":205,"context":175},{"file":229,"line":232,"context":175},35,{"file":229,"line":234,"context":175},45,{"file":229,"line":236,"context":175},62,{"file":229,"line":238,"context":175},87,{"file":229,"line":60,"context":175},{"file":229,"line":241,"context":175},101,{"file":229,"line":153,"context":175},{"file":229,"line":193,"context":175},{"file":229,"line":157,"context":175},{"file":246,"line":247,"context":175},"templates\\sidebar-reference.php",20,{"file":249,"line":250,"context":175},"templates\\sidebar-settings.php",29,{"file":249,"line":252,"context":175},31,[],[],{"summary":256,"deductions":257},"The \"blob-mimes\" plugin v1.4.2 exhibits a generally strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its potential attack surface. Furthermore, the code analysis reveals no dangerous functions, no unescaped output, and all SQL queries are properly prepared, which are excellent security practices. The lack of file operations and external HTTP requests further minimizes risk.\n\nThe plugin's vulnerability history is also clean, with zero known CVEs, indicating a history of secure development or prompt patching. The taint analysis showing zero flows with unsanitized paths is also a positive sign. However, a notable concern is the complete lack of output escaping for all 42 identified outputs. While there are no immediate exploit vectors apparent due to the limited attack surface, unescaped output can lead to cross-site scripting (XSS) vulnerabilities if data is ever introduced through other means or if future versions expand the attack surface.\n\nIn conclusion, the plugin is currently in a very good security state, particularly due to its minimal attack surface and absence of critical code issues. The primary weakness lies in the universal lack of output escaping, which represents a latent risk that should be addressed to ensure continued security, especially as the plugin evolves.",[258],{"reason":259,"points":260},"All outputs are unescaped",12,"2026-03-16T18:52:50.213Z",{"wat":263,"direct":272},{"assetPaths":264,"generatorPatterns":267,"scriptPaths":268,"versionParams":269},[265,266],"\u002Fwp-content\u002Fplugins\u002Fblob-mimes\u002Fassets\u002Fblob-mimes.css","\u002Fwp-content\u002Fplugins\u002Fblob-mimes\u002Fassets\u002Fblob-mimes.js",[],[266],[270,271],"blob-mimes\u002Fassets\u002Fblob-mimes.css?ver=","blob-mimes\u002Fassets\u002Fblob-mimes.js?ver=",{"cssClasses":273,"htmlComments":277,"htmlAttributes":279,"restEndpoints":281,"jsGlobals":282,"shortcodeOutput":284},[274,275,276],"blob-mimes-form","blob-mimes-help","blob-mimes-help-tip",[278],"\u003C!-- The plugin needs to be loaded into the hook. -->",[280],"data-blob-mimes-help",[],[283],"blobMimesConfig",[]]