[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOPgloRHCuraaWvWNJkkZb-Ueal4iGVYFBL96oLUp7Ps":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":130,"fingerprints":160},"bp-blog-author-link","BP Blog Author Link","2.8.1","Ron Rennick","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpmuguru\u002F","\u003Cp>The WP\u002FWPMU author link from the \u003Ccode>the_author_posts_link()\u003C\u002Fcode> template tag on the blog will link to the author’s buddypress member profile instead of the author’s posts page.\u003C\u002Fp>\n\u003Cp>This plugin will only affect blogs where buddypress is activated sitewide. It will function the same in either the mu-plugins folder or in the plugins folder and activated sitewide.\u003C\u002Fp>\n","This plugin changes the blog author links on a buddypress site to link to the author's buddypress member profile.",50,9389,100,6,"2014-06-29T13:31:00.000Z","3.9.40","3.0","",[20,21,22],"author","buddypress","wpmu","http:\u002F\u002Fwpmututorials.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-blog-author-link.2.8.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":25,"computed_at":36},"wpmuguru",10,1220,87,30,"2026-04-04T16:12:36.572Z",[38,58,74,95,115],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":48,"last_updated":49,"tested_up_to":16,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":53,"download_link":54,"security_score":55,"vuln_count":56,"unpatched_count":56,"last_vuln_date":57,"fetched_at":28},"bp-disable-activation-reloaded","BP Disable Activation Reloaded","1.2.1","Damian","https:\u002F\u002Fprofiles.wordpress.org\u002Ftimersys\u002F","\u003Cp>Based on crashutah, apeatling https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-disable-activation\u002F Disables the activation email and automatically activates new users in BuddyPress under a standard WP install and WPMU (multisite).  Also, automatically logs in the new user since the account is already active.\u003C\u002Fp>\n\u003Cp>Basically i updated the plugin and added some features like:\u003C\u002Fp>\n\u003Cp>-Option to turn off automatic login\u003Cbr \u002F>\n-Redirect options after account creation\u003C\u002Fp>\n\u003Cp>Known Bugs:\u003Cbr \u002F>\n-Doesn’t do the automatic login if you allow blog creation during the user creation in WPMU (multisite)\u003C\u002Fp>\n\u003Ch4>Install Multiple plugins at once with WpFavs\u003C\u002Fh4>\n\u003Cp>Bulk plugin installation tool, import WP favorites and create your own lists (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwpfavs\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwpfavs\u002F\u003C\u002Fa>)\u003C\u002Fp>\n\u003Ch4>Increase your twitter followers\u003C\u002Fh4>\n\u003Cp>Increase your Twitter followers with Twitter likebox Plugin (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ftwitter-like-box-reloaded\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ftwitter-like-box-reloaded\u002F\u003C\u002Fa>)\u003C\u002Fp>\n\u003Ch4>WordPress Social Invitations\u003C\u002Fh4>\n\u003Cp>Enhance your site by letting your users send Social Invitations (\u003Ca href=\"http:\u002F\u002Fwp.timersys.com\u002Fwordpress-social-invitations\u002F?utm_source=social-popup&utm_medium=readme\" rel=\"nofollow ugc\">http:\u002F\u002Fwp.timersys.com\u002Fwordpress-social-invitations\u002F\u003C\u002Fa>)\u003C\u002Fp>\n","Based on crashutah, apeatling plugin Disables the activation email and automatically activates new users in BuddyPress under a standard WP install and …",900,26606,19,"2014-08-14T15:54:00.000Z","3.6",[52,21,22],"activation","http:\u002F\u002Fwww.timersys.com\u002Fplugins-wordpress\u002Fbp-disable-activation-reloaded","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-disable-activation-reloaded.1.2.1.zip",63,1,"2025-09-22 00:00:00",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":13,"downloaded":66,"rating":26,"num_ratings":26,"last_updated":67,"tested_up_to":18,"requires_at_least":18,"requires_php":18,"tags":68,"homepage":72,"download_link":73,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"buddypress-russian-months","BuddyPress Russian Months","0.4","Slava Abakumov","https:\u002F\u002Fprofiles.wordpress.org\u002Fslaffik\u002F","\u003Cp>Plugin will transform wrong months’ cases (in date) to proper ones (according Russian grammar rules).\u003C\u002Fp>\n\u003Cp>Examples:\u003Cbr \u002F>\n* not “28 September” but “28 сентября” (Eng->Ru);\u003Cbr \u002F>\n* not “28 Сентябрь” but “28 сентября” (incorrect Ru->correct RU)\u003C\u002Fp>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fcosydale.com\" rel=\"nofollow ugc\">CosyDale.com\u003C\u002Fa> for more information.\u003C\u002Fp>\n","Plugin will transform wrong months' cases (in date) to proper ones (according Russian grammar rules).",10094,"2011-04-21T20:34:00.000Z",[21,69,70,71,22],"grammar","months","wpms","http:\u002F\u002Fcosydale.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-russian-months.0.4.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":18,"tags":89,"homepage":93,"download_link":94,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"demo-data-creator","Demo Data Creator","1.3.4","Chris Taylor","https:\u002F\u002Fprofiles.wordpress.org\u002Fmrwiblog\u002F","\u003Cp>DO NOT USE THIS PLUGIN ON A PRODUCTION SITE, OR ON A SITE WHERE YOU NEED TO KEEP THE DATA.\u003C\u002Fp>\n\u003Cp>When deleting demo data your ENTIRE WordPress database will be reset, deleting ALL your posts, pages, comments and users. ONLY USE THIS PLUGIN ON A SITE WHERE YOU KNOW THE DATABASE CAN BE WIPED.\u003C\u002Fp>\n\u003Cp>If you develop WordPress websites it’s useful to have some demo data in your system while it’s being built. This allows you to check that lists of things are displaying as they should, and that themes are working when they get data in them.\u003C\u002Fp>\n\u003Cp>Historically it’s been a pain to add that data in. Either you need to take a backup of another site and use that data, or you need to tediously create multiple users and blogs yourself. No more, not now my Demo Data Creator is in town!\u003C\u002Fp>\n\u003Cp>This WordPress, WPMU\u002FMultiSite and BuddyPress plugin gives you a new admin screen where you can enter some parameters, click a button and (after a short wait) random demo data will be created. The parameter options include:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>* Number of users to create\n* Number of blogs per user (for WPMU\u002FMultiSite)\n* Whether users must have a blog\n* Number of categories in each blog\n* Number of posts in each blog\n* Number of paragraphs in each blog post\n* Number of pages in each blog\n* Number of top-level pages\n* Number of levels to nest pages\n* Number of comments per post for each blog\n* Number of links in blogroll for each blog\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>For BuddyPress you also have:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>* Number of groups\n* Number of members per group\n* Number of wire posts for each group\n* Number of friends per user\n* Number of statuses for each user\n* Number of wire posts for each user\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Post content and comment text is automatically generated from Lorem ipsum text, for post content it’s even HTML-formatted.\u003C\u002Fp>\n\u003Cp>Thanks to derscheinwelt for the suggestion and code to create random dates for posts, and Steve at http:\u002F\u002Fslipfire.com\u002F for the wp_insert_user() code.\u003C\u002Fp>\n","Demo Data Creator is a Wordpress and BuddyPress plugin that allows a Wordpress developer to create demo users, blogs, posts, comments and more.",90,62828,70,22,"2017-01-31T20:00:00.000Z","4.7.32","2.7",[21,90,91,92,22],"data","demo","example","http:\u002F\u002Fwww.stillbreathing.co.uk\u002Fwordpress\u002Fdemo-data-creator\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdemo-data-creator.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":26,"num_ratings":26,"last_updated":105,"tested_up_to":106,"requires_at_least":18,"requires_php":18,"tags":107,"homepage":112,"download_link":113,"security_score":114,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bp-devolved-authority","BP Devolved Authority","1.2.0","Venutius","https:\u002F\u002Fprofiles.wordpress.org\u002Fvenutius\u002F","\u003Cp>BP Devolved Authority allows site administrators to devolve the ability to manage Groups, Activity, Members and Emails to other site members. For Xprofile information, you can also give specific individuals the ability to edit the xprofile fields for one or more named individuals.\u003C\u002Fp>\n\u003Cp>BuddyPress has not traditionally allowed site administrators to grant authority to manage aspect of BuddyPress to users without ‘manage_options’ capability. This plugin changes that and allows each of the BP Components to be managed by site members so long as they have the ‘edit_posts’ capability.\u003C\u002Fp>\n\u003Cp>Note that roles allowed to manage members should also have the ‘list_users’ capability, this allows the users list menu item to be displayed in the dashboard for that member.\u003C\u002Fp>\n\u003Cp>The  new feature – individual xprofile management delegation, creates a simple, secure delegation system whereby a privileged user (such as an administrator) can assign other registered BuddyPress members to be “delegates” for a given user. A delegate has the capability to view and edit Extended Profile (XProfile) fields for the delegated user. This is useful on sites where certain relationships exist between one user and another, such as legal guardianship by an adult over a child. Using delegation reduces the need to share passwords or log in to shared accounts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Roles and capabilities for the delegated xprofile feature\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin uses the built-in capabilities system as part of WordPress core, along with core BuddyPress hooks (\u003Ccode>bp_current_user_can\u003C\u002Fcode>) to check for appropriate permissions, making it both simple to customize and as secure as WP and BP core code. The custom capabilities are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>edit_user_delegates\u003C\u002Fcode> – Users with this capability can assign delegates for users they can edit (determined by \u003Ccode>edit_users\u003C\u002Fcode>).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Additionally, the following core capabilities are required:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>list_users\u003C\u002Fcode> – The delegation options implicitly enumerate all registered users, so a user must also have the \u003Ccode>list_users\u003C\u002Fcode> capability to be granted access to the Delegation user interface.\u003C\u002Fli>\n\u003Cli>\u003Ccode>edit_users\u003C\u002Fcode> – If you cannot \u003Ccode>edit_users\u003C\u002Fcode>, you cannot \u003Ccode>edit_user_delegates\u003C\u002Fcode>, either.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>When this option is enabled, the admin can go to the users extended profile tab from the Dashboard>>Users list and choose to delegate authority over the xprofile data to another site member. That site member will then find in their Dashboard>>Users menu and option to see a list of “Devolved Profiles”.\u003C\u002Fp>\n\u003Cp>Once the plugin is activated, visit the Settings>>BP Devolved Authority page to choose which roles can manage your BP Components.\u003C\u002Fp>\n\u003Cp>This plugin needs BuddyPress to work.\u003C\u002Fp>\n","This plugin allows key aspects of BuddyPress administration to be devolved to non admin users.",20,2937,"2024-07-29T05:05:00.000Z","6.6.5",[108,109,21,110,111],"administrator","bp_moderate","devolved-authority","groups","https:\u002F\u002Fbuddyuser.com\u002Fplugin-bp-devolved-authority","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-devolved-authority.1.2.0.zip",92,{"slug":116,"name":117,"version":61,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":32,"downloaded":122,"rating":123,"num_ratings":124,"last_updated":125,"tested_up_to":126,"requires_at_least":126,"requires_php":18,"tags":127,"homepage":128,"download_link":129,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bp-disable-activation","BP Disable Activation","techguy","https:\u002F\u002Fprofiles.wordpress.org\u002Fcrashutah\u002F","\u003Cp>Disables the activation email and automatically activates new users in BuddyPress under a standard WP install and WPMU (multisite).  Also, automatically logs in the new user since the account is already active.\u003C\u002Fp>\n\u003Cp>Possible Future Features:\u003Cbr \u002F>\n-Option to turn off automatic login\u003Cbr \u002F>\n-Option to not disable email\u003Cbr \u002F>\n-Redirect options after account creation\u003C\u002Fp>\n\u003Cp>Known Bugs:\u003Cbr \u002F>\n-Doesn’t do the automatic login if you allow blog creation during the user creation in WPMU (multisite)\u003C\u002Fp>\n","Disables the activation email and automatically activates new users in BuddyPress under a standard WP install and WPMU (multisite).",16744,60,2,"2010-06-09T16:37:00.000Z","2.9.2",[52,21,22],"http:\u002F\u002Fcrashutah.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-disable-activation.0.4.zip",{"attackSurface":131,"codeSignals":148,"taintFlows":155,"riskAssessment":156,"analyzedAt":159},{"hooks":132,"ajaxHandlers":144,"restRoutes":145,"shortcodes":146,"cronEvents":147,"entryPointCount":26,"unprotectedCount":26},[133,139],{"type":134,"name":135,"callback":136,"file":137,"line":138},"filter","author_link","ra_bp_filter_author","ra-bp-author-link.php",29,{"type":140,"name":141,"callback":142,"file":137,"line":143},"action","wp_head","ra_add_author_filter",31,[],[],[],[],{"dangerousFunctions":149,"sqlUsage":150,"outputEscaping":152,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":154},[],{"prepared":26,"raw":26,"locations":151},[],{"escaped":26,"rawEcho":26,"locations":153},[],[],[],{"summary":157,"deductions":158},"The static analysis of the 'bp-blog-author-link' plugin version 2.8.1 reveals a strong security posture. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. Furthermore, the code signals indicate excellent security practices, with no dangerous functions, all SQL queries using prepared statements, and all output properly escaped. The lack of file operations, external HTTP requests, nonce checks, and capability checks, while seemingly a positive, also indicates a very limited scope of functionality where these might be applicable.\n\nThe taint analysis found no unsanitized paths, which is a positive sign for data handling. The vulnerability history is also clean, with no recorded CVEs. This plugin demonstrates a commendable adherence to secure coding principles within its analyzed functionality. However, the very limited attack surface and lack of certain security checks (like nonces and capability checks) might suggest that the plugin performs very basic or no dynamic operations that would typically necessitate these.\n\nIn conclusion, 'bp-blog-author-link' v2.8.1 appears to be a very secure plugin based on this analysis. Its strengths lie in its minimal attack surface and the evident use of secure coding practices like prepared statements and output escaping. The absence of any reported vulnerabilities further bolsters its security. The main observation is the limited functionality that prevents a more comprehensive assessment of certain security controls, but within its scope, it is well-protected.",[],"2026-03-16T21:56:01.971Z",{"wat":161,"direct":166},{"assetPaths":162,"generatorPatterns":163,"scriptPaths":164,"versionParams":165},[],[],[],[],{"cssClasses":167,"htmlComments":168,"htmlAttributes":169,"restEndpoints":170,"jsGlobals":171,"shortcodeOutput":172},[],[],[],[],[],[]]