[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOwi23XyUhQEpRBMGgfBA7nPBpQ0KOoa0BGj0MMqBwTg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":138,"fingerprints":1021},"bp-groupblog","BuddyPress Groupblog","1.9.3","Boone Gorges","https:\u002F\u002Fprofiles.wordpress.org\u002Fboonebgorges\u002F","\u003Cp>Requires BuddyPress 1.7+ and PHP 5.3+.\u003C\u002Fp>\n\u003Cp>The BuddyPress Groupblog plugin extends the group functionality by enabling each group to have a single blog associated with it. Group members are automatically added to the blog and will have blog roles as set by the groupblog admin settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>P2 integration and frontend posting.\u003C\u002Fli>\n\u003Cli>Admin can set Template specific groupblogs.\u003C\u002Fli>\n\u003Cli>Allow group admins choose the desired template page themselves.\u003C\u002Fli>\n\u003Cli>Full blog theme integration. The included bp-groupblog theme mimics the group pages.\u003C\u002Fli>\n\u003Cli>Automated blog registration at group creation stage.\u003C\u002Fli>\n\u003Cli>Bypass default blog validation to allow dashes, underscores, numeral only and minimum character count.\u003C\u002Fli>\n\u003Cli>Blog privacy settings are initially inherited from group privacy settings.\u003C\u002Fli>\n\u003Cli>Group members are automatically added to the blog.\u003C\u002Fli>\n\u003Cli>Blog roles match group roles as set by the group admin.\u003C\u002Fli>\n\u003Cli>Solid error checking that the blog follows validation.\u003C\u002Fli>\n\u003Cli>Group admin tab to access the group-blog settings.\u003C\u002Fli>\n\u003Cli>Blog themes will have the ability to pull in group info and create a theme that could resemble the group exactly.\u003C\u002Fli>\n\u003Cli>Leaving the group will downgrade the member role to ‘subscriber’.\u003C\u002Fli>\n\u003Cli>Allow the group admin to select one of his\u002Fher existing blogs.\u003C\u002Fli>\n\u003Cli>A new ajax backend.\u003C\u002Fli>\n\u003C\u002Ful>\n","BuddyPress Groupblog extends the group functionality by enabling the group to have a single blog associated with it.",50,66996,66,11,"2023-07-30T16:14:00.000Z","6.2.9","3.6","",[20,21,22,23],"blogs","buddypress","content","groups","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-groupblog\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-groupblog.1.9.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"boonebgorges",27,11620,88,1864,71,"2026-04-04T13:57:59.918Z",[40,58,78,98,117],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":18,"requires_at_least":18,"requires_php":18,"tags":53,"homepage":56,"download_link":57,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"external-group-blogs","BP External Group Blogs","1.2.3","Andy Peatling","https:\u002F\u002Fprofiles.wordpress.org\u002Fapeatling\u002F","\u003Cp>Give group creators and administrators on your BuddyPress install the ability to attach\u003Cbr \u002F>\nexternal blog RSS feeds to groups.\u003C\u002Fp>\n\u003Cp>Blog posts will appear within the activity stream for the group.\u003C\u002Fp>\n\u003Cp>New posts will automatically be pulled every hour, or every 30 minutes if someone specifically visits a group page.\u003C\u002Fp>\n","Give group creators and administrators on your BuddyPress install the ability to attach",10,12073,60,2,"2013-06-21T17:20:00.000Z",[20,21,54,23,55],"feeds","rss","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fexternal-group-blogs\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexternal-group-blogs.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":35,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":18,"download_link":77,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"bp-registration-options","Registration Options for BuddyPress","4.4.5","Brian Messenlehner","https:\u002F\u002Fprofiles.wordpress.org\u002Fmessenlehner\u002F","\u003Cp>Prevent users and bots from accessing the BuddyPress or bbPress areas of your website(s) until they are approved.\u003C\u002Fp>\n\u003Cp>This BuddyPress extension allows you to enable user moderation for new members, as well as help create a private network for your users. If moderation is enabled, any new members will be denied access to your BuddyPress and bbPress areas on your site, with the exception of their own user profile. They will be allowed to edit and configure that much. They will also not be listed in the members lists on the frontend until approved. Custom messages are available so you can tailor them to the tone of your website and community. When an admin approves or denies a user, email notifications will be sent to let them know of the decision.\u003C\u002Fp>\n\u003Cp>Requires BuddyPress version 1.7 or higher and bbPress 2.0 or higher.\u003C\u002Fp>\n\u003Ch3>General Data Protection Regulation\u003C\u002Fh3>\n\u003Cp>BuddyPress Registration Options temporarily stores user IP addresses as user meta to help validate and vet pending users. Saved IP values are deleted upon both approval and denial of pending user. No other personal data is recorded.\u003C\u002Fp>\n","Moderate new BuddyPress members and fight BuddyPress spam.",1000,175480,33,"2023-03-05T15:26:00.000Z","6.0.11","5.2","5.6",[74,21,23,75,76],"admin","moderation","registration","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-registration-options.zip",{"slug":79,"name":80,"version":81,"author":7,"author_profile":8,"description":82,"short_description":83,"active_installs":66,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":95,"download_link":96,"security_score":97,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"buddypress-group-email-subscription","BuddyPress Group Email Subscription","4.2.4","\u003Cp>This powerful plugin allows users to receive email notifications of group activity. Weekly or daily digests are available. Each user can choose how they want to subscribe to their groups.\u003C\u002Fp>\n\u003Cp>Please note that this plugin requires BuddyPress, as well as the BuddyPress Groups and Activity components.\u003C\u002Fp>\n\u003Cp>EMAIL SUBSCRIPTION LEVELS\u003Cbr \u002F>\nThere are 5 levels of email subscription options:\u003C\u002Fp>\n\u003Col>\n\u003Cli>No Email – Read this group on the web\u003C\u002Fli>\n\u003Cli>Weekly Summary Email – A summary of new topics each week\u003C\u002Fli>\n\u003Cli>Daily Digest Email – All the day’s activity bundled into a single email\u003C\u002Fli>\n\u003Cli>New Topics Email – Send new topics as they arrive (but don’t send replies)\u003C\u002Fli>\n\u003Cli>All Email – Send all group activity as it arrives\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>DEFAULT SUBSCRIPTION STATUS\u003Cbr \u002F>\nGroup admins can choose one of the 5 subscription levels as a default that gets applied when new members join.\u003C\u002Fp>\n\u003Cp>DIGEST AND SUMMARY EMAILS\u003Cbr \u002F>\nThe daily digest email is sent every morning and contains all the emails from all the groups a user is subscribed to. The digest begins with a helpful topic summary. The weekly summary email contains the topic titles from the past week by default. Summary and digest timing can be configured in the back end. (The admin can view a sample of the digests and summaries in the queue by going adding this to your url: mydomain.com\u002Fsum=1. This won’t send emails just show what will be sent)\u003C\u002Fp>\n\u003Cp>HTML EMAILS\u003Cbr \u002F>\nThe digest and summary emails are sent out in multipart HTML and plain text email format. This makes the digest much more readable with better links. The email is multipart so users who need only plain text will get plain text.\u003C\u002Fp>\n\u003Cp>EMAILS FOR TOPICS I’VE STARTED OR COMMENTED ON (only available with BuddyPress legacy discussion forums)\u003Cbr \u002F>\nUsers receive email notifications when someone replies to a topic they create or comment on (similar to Facebook). This happens whether they are subscribed or not. Users can control this behaviour in their notifications page.\u003C\u002Fp>\n\u003Cp>TOPIC FOLLOW AND MUTE (only available with BuddyPress legacy discussion forums)\u003Cbr \u002F>\nUsers who are not fully subscribed to a group (ie. maybe they are on digest) can choose to get immediate email updates for specific topic threads. Any subsequent replies to that thread will be emailed to them. In an opposite way, users who are fully subscribed to a group but want to stop getting emails from a specific (perhaps annoying) thread can choose to mute that topic.  bbPress plugin users can utilize the “Subscribe” \u002F “Notify me of follow-up replies via email” option.\u003C\u002Fp>\n\u003Cp>ADMIN NOTIFICATION\u003Cbr \u002F>\nGroup admins can send out an email to all group members from the group’s admin section. This feature is helpful to quickly communicate to the whole group, but it should be used with caution.\u003C\u002Fp>\n\u003Cp>GROUP ADMINS CAN SET SUBSCRIPTION LEVEL\u003Cbr \u002F>\nGroup admins can set the subscription level for existing users on the group’s “Admin > Manage Members” page – either one by one or all at once.\u003C\u002Fp>\n\u003Cp>SPAM PROTECTION\u003Cbr \u002F>\nTo protect against spam, you can set a minimum number of days users need to be registered before their group activity will be emailed to other users. This feature is off by default, but can be enabled in the admin.\u003C\u002Fp>\n\u003Cp>TRANSLATORS\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Brazilian Portuguese – www.about.me\u002Fdennisaltermann (or www.congregacao.net)\u003C\u002Fli>\n\u003Cli>Catalan – Sara Arjona Téllez\u003C\u002Fli>\n\u003Cli>Danish – Morten Nalholm\u003C\u002Fli>\n\u003Cli>Dutch – Anja werkgroepen.net\u002Fwordpress, Tim de Hoog\u003C\u002Fli>\n\u003Cli>Farsi – Vahid Masoomi http:\u002F\u002Fwww.AzUni.ir\u003C\u002Fli>\n\u003Cli>French – http:\u002F\u002Fwww.claudegagne-photo.com, Sylvain Ghysens\u003C\u002Fli>\n\u003Cli>German – Peter Peterson, Thorsten Wollenhöfer, Jörg Lohrer\u003C\u002Fli>\n\u003Cli>Hebrew – Iggy Pritzker\u003C\u002Fli>\n\u003Cli>Italian – Stefano Russo\u003C\u002Fli>\n\u003Cli>Japanese – https:\u002F\u002Fbuddypress.org\u002Fcommunity\u002Fmembers\u002Fchestnut_jp\u002F\u003C\u002Fli>\n\u003Cli>Lithuanian – Vincent G http:\u002F\u002Fwww.Host1Free.com\u003C\u002Fli>\n\u003Cli>Russian – http:\u002F\u002Fwww.viaestvita.net\u002Fgroups\u002F\u003C\u002Fli>\n\u003Cli>Spanish – Williams Castillo, Gregor Gimmy\u003C\u002Fli>\n\u003Cli>Swedish – Thomas Schneider, Joakim Hising\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>NOTE TO PLUGIN AUTHORS\u003Cbr \u002F>\nIf your plugin posts updates to the standard BuddyPress activity stream, then group members who are subscribed via 3. Daily Digest and 5. All Email will get your updates automatically. However people subscribed as 2. Weekly Summary and 4. New Topic will not. If you feel some of your plugin’s updates are very important and want to make sure all subscribed members receive them, you can filter ‘ass_this_activity_is_important’ and return TRUE when $type matches your activity. See the ass_this_activity_is_important() function in bp-activity-subscription-functions.phpfor more info.\u003C\u002Fp>\n\u003Cp>PLUGIN SUPPORTERS:\u003Cbr \u002F>\nMajor supporters: shambhalanetwork.org & commons.gc.cuny.edu\u003Cbr \u002F>\nOther supporters: bluedotproductions.com\u003C\u002Fp>\n\u003Cp>PLUGIN DEVELOPMENT\u003Cbr \u002F>\nFor bug reports or to add patches or translation files, please visit the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fboonebgorges\u002Fbuddypress-group-email-subscription\u002F\" rel=\"nofollow ugc\">GES Github page\u003C\u002Fa>.  Contributions are definitely welcome!\u003C\u002Fp>\n","This powerful plugin allows users to receive email notifications of group activity. Weekly or daily digests are available.",230356,80,32,"2024-10-04T14:35:00.000Z","6.6.5","3.2","5.3",[92,93,94,21,23],"activities","activity","bp","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbuddypress-group-email-subscription\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-group-email-subscription.4.2.4.zip",92,{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":97,"num_ratings":48,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":18,"tags":111,"homepage":114,"download_link":115,"security_score":116,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"shortcodes-for-buddypress","Wbcom Designs – Shortcodes & Elementor Widgets For BuddyPress","2.9.1","wbcomdesigns","https:\u002F\u002Fprofiles.wordpress.org\u002Fwbcomdesigns\u002F","\u003Cp>This plugin will add an extended feature to BuddyPress. It will use Shortcode for Listing Activity Streams, Members directory, and Groups directory on any post or page within the website.\u003C\u002Fp>\n\u003Cp>With our current update, we have added three widgets to display the activity stream, member directory, and group directory using Elementor.\u003C\u002Fp>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F554193567\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch3>THEME – WORDPRESS THEME WITH OUTSTANDING BUDDYPRESS SUPPORT\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fbuddyx\u002F\" rel=\"ugc\">FREE BuddyPress Theme: BuddyX\u003C\u002Fa> – Offers unique layouts with clean code and easy-to-customise options, giving you a whole new way to visualize BuddyPress.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin generates shortcodes for Listing Activity Streams, Members, and Groups on any website post or page.",700,51623,"2025-09-22T06:44:00.000Z","6.8.5","5.0.0",[93,21,112,23,113],"buddypress-shortcodes","members","https:\u002F\u002Fgithub.com\u002Fwbcomdesigns\u002Fshortcodes-for-buddypress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshortcodes-for-buddypress.2.9.1.zip",100,{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":127,"num_ratings":128,"last_updated":129,"tested_up_to":130,"requires_at_least":131,"requires_php":90,"tags":132,"homepage":136,"download_link":137,"security_score":97,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"bp-default-data","BuddyPress Default Data","1.4.0","Slava Abakumov","https:\u002F\u002Fprofiles.wordpress.org\u002Fslaffik\u002F","\u003Cp>Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data – useful for testing purpose.\u003C\u002Fp>\n\u003Cp>All imported users will have avatars, generated by 8biticon.com and displayed by Gravatar.\u003C\u002Fp>\n\u003Cp>Please use this plugin with caution and not on a live site! Again, USE FOR TESTING THEMES AND PLUGINGS, NOT ON A STAGING SITE WITH LIVE DATA. Plugin should not mess with your live data, but not guaranteed.\u003C\u002Fp>\n\u003Cp>Clear BuddyPress button will delete all data, that was generated by this plugin: messages, groups, notifications, friends, forum posts, xprofile. Plugin won’t reimport data if clicked twice.\u003C\u002Fp>\n\u003Cp>And turn off email notifications in profile (friendship accepted and messages received) – or you will spam yourself 🙂 Imported users have these settings already turned off.\u003C\u002Fp>\n","Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data - useful for testing purpose.",400,72981,78,22,"2024-11-30T22:53:00.000Z","6.7.5","4.4",[21,23,133,134,135],"import","messages","users","https:\u002F\u002Fovirium.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-default-data.1.4.0.zip",{"attackSurface":139,"codeSignals":510,"taintFlows":839,"riskAssessment":1011,"analyzedAt":1020},{"hooks":140,"ajaxHandlers":500,"restRoutes":507,"shortcodes":508,"cronEvents":509,"entryPointCount":145,"unprotectedCount":27},[141,147,152,156,161,165,168,171,176,179,183,187,191,196,200,203,206,209,212,215,218,222,225,229,233,237,240,246,250,254,257,261,265,269,271,273,277,281,283,286,288,291,295,299,303,307,311,315,319,323,327,332,335,337,340,342,346,350,353,356,360,364,367,371,375,379,382,386,389,391,394,398,401,404,407,411,415,418,422,424,427,429,433,436,439,442,445,448,452,455,457,460,463,467,471,474,477,480,483,488,490,494,497],{"type":142,"name":143,"callback":144,"priority":145,"file":146,"line":127},"action","wp","bp_actions",1,"1.5-abstraction.php",{"type":142,"name":148,"callback":149,"priority":48,"file":150,"line":151},"wp_initialize_site","bp_groupblog_site_defaults","bp-groupblog-admin.php",815,{"type":142,"name":153,"callback":154,"file":150,"line":155},"wpmu_new_blog","bp_groupblog_blog_defaults",817,{"type":142,"name":157,"callback":158,"file":159,"line":160},"signup_blogform","nonce_fields_create","bp-groupblog-classes.php",57,{"type":142,"name":162,"callback":163,"file":159,"line":164},"bp_groupblog_create_screen_markup","bp_groupblog_signup_blog",61,{"type":142,"name":157,"callback":166,"file":159,"line":167},"nonce_fields_edit",97,{"type":142,"name":169,"callback":163,"file":159,"line":170},"bp_groupblog_edit_screen_markup",101,{"type":142,"name":172,"callback":173,"priority":145,"file":174,"line":175},"wp_enqueue_scripts","bp_groupblog_add_js","bp-groupblog-cssjs.php",45,{"type":142,"name":177,"callback":178,"file":174,"line":164},"wp_print_styles","bp_groupblog_add_screen_css",{"type":142,"name":180,"callback":181,"file":182,"line":127},"bp_loaded","bp_groupblog_includes","bp-groupblog.php",{"type":142,"name":184,"callback":185,"file":182,"line":186},"bp_setup_globals","bp_groupblog_setup_globals",103,{"type":142,"name":188,"callback":189,"file":182,"line":190},"bp_setup_nav","bp_groupblog_setup_nav",163,{"type":142,"name":192,"callback":193,"priority":194,"file":182,"line":195},"groups_join_group","bp_groupblog_just_joined_group",5,466,{"type":142,"name":197,"callback":198,"priority":48,"file":182,"line":199},"groups_promoted_member","bp_groupblog_changed_status_group",482,{"type":142,"name":201,"callback":198,"priority":48,"file":182,"line":202},"groups_demoted_member",483,{"type":142,"name":204,"callback":198,"priority":48,"file":182,"line":205},"groups_unbanned_member",484,{"type":142,"name":207,"callback":198,"priority":48,"file":182,"line":208},"groups_banned_member",485,{"type":142,"name":210,"callback":198,"priority":48,"file":182,"line":211},"groups_removed_member",486,{"type":142,"name":213,"callback":198,"priority":48,"file":182,"line":214},"groups_membership_accepted",487,{"type":142,"name":216,"callback":198,"priority":48,"file":182,"line":217},"groups_accept_invite",488,{"type":142,"name":219,"callback":220,"priority":48,"file":182,"line":221},"groups_leave_group","bp_groupblog_remove_user",521,{"type":142,"name":144,"callback":223,"priority":145,"file":182,"line":224},"bp_groupblog_process_uncouple",947,{"type":142,"name":226,"callback":227,"priority":48,"file":182,"line":228},"transition_post_status","bp_groupblog_catch_transition_post_type_status",1257,{"type":142,"name":230,"callback":231,"file":182,"line":232},"bp_activity_before_save","bp_groupblog_set_group_to_post_activity",1388,{"type":142,"name":234,"callback":235,"priority":194,"file":182,"line":236},"wp_trash_post","bp_groupblog_remove_post",1437,{"type":142,"name":238,"callback":235,"priority":194,"file":182,"line":239},"delete_post",1438,{"type":241,"name":242,"callback":243,"priority":244,"file":182,"line":245},"filter","bp_ajax_querystring","bp_groupblog_override_new_blog_post_activity_filter",20,1483,{"type":241,"name":247,"callback":248,"file":182,"line":249},"bp_activity_can_comment","bp_groupblog_activity_can_comment",1501,{"type":142,"name":251,"callback":252,"file":182,"line":253},"bp_register_activity_actions","bp_groupblog_register_activity_actions",1519,{"type":142,"name":230,"callback":255,"file":182,"line":256},"bp_groupblog_activity_before_save",1650,{"type":241,"name":258,"callback":259,"priority":48,"file":182,"line":260},"bp_activity_get_activity_id","_bp_groupblog_set_activity_id_for_groupblog_comment",1689,{"type":241,"name":262,"callback":263,"file":182,"line":264},"bp_disable_blogforum_comments","__return_true",1690,{"type":142,"name":266,"callback":267,"priority":27,"file":182,"line":268},"transition_comment_status","bp_groupblog_transition_comment_status",1692,{"type":241,"name":258,"callback":259,"priority":48,"file":182,"line":270},1716,{"type":241,"name":262,"callback":263,"file":182,"line":272},1717,{"type":241,"name":274,"callback":275,"priority":48,"file":182,"line":276},"bp_activity_post_pre_comment","bp_groupblog_activity_post_pre_comment",1721,{"type":142,"name":278,"callback":279,"priority":27,"file":182,"line":280},"delete_comment","bp_groupblog_delete_activity_on_delete_blog_comment",1754,{"type":142,"name":266,"callback":267,"priority":27,"file":182,"line":282},1790,{"type":142,"name":266,"callback":284,"priority":48,"file":182,"line":285},"bp_activity_transition_post_type_comment_status",1791,{"type":142,"name":278,"callback":279,"priority":27,"file":182,"line":287},1792,{"type":142,"name":278,"callback":289,"priority":48,"file":182,"line":290},"bp_activity_post_type_remove_comment",1793,{"type":142,"name":292,"callback":293,"file":182,"line":294},"bp_activity_after_delete","bp_groupblog_activity_after_delete",1796,{"type":241,"name":296,"callback":297,"priority":48,"file":182,"line":298},"bp_activity_get_permalink","bp_groupblog_activity_permalink",1859,{"type":142,"name":300,"callback":301,"file":182,"line":302},"bp_group_activity_filter_options","bp_groupblog_posts",1872,{"type":142,"name":304,"callback":305,"file":182,"line":306},"bp_screens","groupblog_screen_blog",1898,{"type":142,"name":308,"callback":309,"file":182,"line":310},"bp_template_content","groupblog_screen_blog_content",1900,{"type":142,"name":312,"callback":313,"file":182,"line":314},"bp_init","groupblog_redirect_group_home",1937,{"type":142,"name":316,"callback":317,"priority":48,"file":182,"line":318},"delete_blog","bp_groupblog_delete_meta",1959,{"type":241,"name":320,"callback":321,"priority":48,"file":182,"line":322},"bp_get_blog_avatar","bp_groupblog_use_group_avatar_in_site_loop",2000,{"type":142,"name":324,"callback":325,"file":326,"line":68},"bp_include","bp_groupblog_init","loader.php",{"type":142,"name":328,"callback":329,"priority":27,"file":330,"line":331},"init","mention_taxonomy","themes\\p2\\functions.php",63,{"type":241,"name":333,"callback":334,"file":330,"line":116},"the_content","p2_at_names",{"type":241,"name":336,"callback":334,"file":330,"line":170},"comment_text",{"type":241,"name":333,"callback":338,"file":330,"line":339},"p2_at_name_highlight",128,{"type":241,"name":336,"callback":338,"file":330,"line":341},129,{"type":142,"name":343,"callback":344,"file":330,"line":345},"save_post","prologue_flush_tag_cache",135,{"type":142,"name":347,"callback":348,"file":330,"line":349},"loop_start","prologue_loop",245,{"type":142,"name":351,"callback":348,"file":330,"line":352},"loop_end",246,{"type":142,"name":343,"callback":354,"priority":48,"file":330,"line":355},"p2_fix_empty_titles",357,{"type":142,"name":357,"callback":358,"file":330,"line":359},"template_redirect","p2_init_at_names",367,{"type":142,"name":361,"callback":362,"file":330,"line":363},"wp_head","p2_add_head_content",378,{"type":241,"name":357,"callback":365,"file":330,"line":366},"prologue_new_post_noajax",414,{"type":241,"name":368,"callback":369,"file":330,"line":370},"posts_distinct","search_comments_distinct",423,{"type":241,"name":372,"callback":373,"file":330,"line":374},"posts_where","search_comments_where",433,{"type":241,"name":376,"callback":377,"file":330,"line":378},"posts_join","search_comments_join",441,{"type":241,"name":333,"callback":380,"file":330,"line":381},"hilite",478,{"type":241,"name":383,"callback":384,"file":330,"line":385},"get_the_tags","hilite_tags",479,{"type":241,"name":387,"callback":380,"file":330,"line":388},"the_excerpt",480,{"type":241,"name":336,"callback":380,"file":330,"line":390},481,{"type":142,"name":361,"callback":392,"file":330,"line":393},"iphone_css",493,{"type":241,"name":395,"callback":396,"file":330,"line":397},"prologue_poweredby_link","anonymous",554,{"type":142,"name":361,"callback":399,"file":330,"line":400},"p2_background_color",672,{"type":142,"name":361,"callback":402,"file":330,"line":403},"p2_background_image",688,{"type":142,"name":361,"callback":405,"file":330,"line":406},"p2_hidden_sidebar_css",702,{"type":142,"name":408,"callback":409,"file":330,"line":410},"before_signup_form","p2_before_signup_form",708,{"type":142,"name":412,"callback":413,"file":330,"line":414},"after_signup_form","p2_after_signup_form",713,{"type":142,"name":328,"callback":328,"file":416,"line":417},"themes\\p2\\inc\\js.php",3,{"type":142,"name":419,"callback":420,"file":416,"line":421},"wp_print_scripts","enqueue_scripts",9,{"type":142,"name":361,"callback":423,"file":416,"line":14},"print_options",{"type":142,"name":425,"callback":426,"file":416,"line":190},"wp_footer","p2_toggle_threads",{"type":142,"name":328,"callback":328,"file":428,"line":417},"themes\\p2\\inc\\options-page.php",{"type":142,"name":430,"callback":431,"file":428,"line":432},"admin_menu","add_options_page",8,{"type":142,"name":328,"callback":328,"file":434,"line":435},"themes\\p2\\inc\\p2.php",15,{"type":241,"name":333,"callback":437,"file":434,"line":438},"make_clickable",21,{"type":241,"name":440,"callback":396,"file":434,"line":441},"get_user_option_use_ssl",37,{"type":241,"name":443,"callback":396,"file":434,"line":444},"flash_uploader",41,{"type":241,"name":446,"callback":396,"file":434,"line":447},"auth_redirect_scheme",42,{"type":241,"name":449,"callback":450,"file":434,"line":451},"admin_url","url_filter",43,{"type":241,"name":453,"callback":450,"file":434,"line":454},"includes_url",44,{"type":241,"name":456,"callback":450,"file":434,"line":175},"script_loader_src",{"type":241,"name":458,"callback":396,"priority":14,"file":434,"line":459},"wp_get_attachment_url",46,{"type":241,"name":461,"callback":396,"file":434,"line":462},"media_upload_form_url",47,{"type":241,"name":464,"callback":465,"file":466,"line":421},"body_class","p2_body_class","themes\\p2\\inc\\template-tags.php",{"type":241,"name":468,"callback":469,"priority":145,"file":466,"line":470},"p2_get_quote_content","p2_quote_filter_kses",143,{"type":241,"name":468,"callback":472,"file":466,"line":473},"wptexturize",144,{"type":241,"name":468,"callback":475,"file":466,"line":476},"convert_smilies",145,{"type":241,"name":468,"callback":478,"file":466,"line":479},"convert_chars",146,{"type":241,"name":468,"callback":481,"file":466,"line":482},"prepend_attachment",147,{"type":142,"name":484,"callback":485,"file":486,"line":487},"comment_post","flush_widget_cache","themes\\p2\\inc\\widgets\\recent-comments.php",7,{"type":142,"name":489,"callback":485,"file":486,"line":432},"wp_set_comment_status",{"type":142,"name":177,"callback":491,"file":492,"line":493},"bp_dtheme_enqueue_styles","themes\\p2-buddypress\\functions.php",217,{"type":142,"name":357,"callback":495,"file":492,"line":496},"bp_dtheme_add_blog_comments_js",226,{"type":142,"name":425,"callback":498,"file":492,"line":499},"bp_dtheme_js_terms",284,[501],{"action":502,"nopriv":503,"callback":504,"hasNonce":505,"hasCapCheck":503,"file":492,"line":506},"p2_post_update",false,"bp_p2_post_update",true,134,[],[],[],{"dangerousFunctions":511,"sqlUsage":522,"outputEscaping":533,"fileOperations":145,"externalRequests":27,"nonceChecks":808,"capabilityChecks":808,"bundledLibraries":838},[512,516,518],{"fn":513,"file":434,"line":514,"context":515},"create_function",4,"return create_function( '', 'return '.var_export( $value, true ).';' );",{"fn":513,"file":434,"line":14,"context":517},"return create_function( $args, $export_call.' return '.$expression.';' );",{"fn":513,"file":519,"line":520,"context":521},"themes\\p2\\inc\\widgets\\recent-tags.php",86,"usort( $post_ids_and_tags, create_function( '$a, $b', 'return $b[\"post_id\"] - $a[\"post_id\"];' ) );",{"prepared":523,"raw":417,"locations":524},13,[525,528,531],{"file":330,"line":526,"context":527},48,"$wpdb->get_results() with variable interpolation",{"file":529,"line":447,"context":530},"themes\\p2\\inc\\ajax.php","$wpdb->get_col() with variable interpolation",{"file":486,"line":532,"context":527},116,{"escaped":534,"rawEcho":535,"locations":536},160,181,[537,540,542,544,545,547,549,551,553,555,557,559,561,563,565,567,569,571,573,576,578,580,583,585,588,589,590,592,593,594,596,599,601,604,606,608,610,611,612,614,615,616,617,619,621,623,625,627,629,631,633,635,637,639,640,642,643,645,647,649,651,653,655,656,658,659,661,663,665,667,669,671,673,675,676,677,679,681,683,684,685,686,688,690,692,694,696,698,700,702,704,705,707,708,709,711,712,713,714,715,716,717,719,720,722,723,725,727,728,729,730,732,734,735,736,737,739,740,742,743,744,745,746,748,749,751,754,756,757,758,760,761,762,764,765,767,769,771,773,774,775,777,779,780,782,783,784,785,787,789,790,792,794,795,797,798,799,801,802,803,804,806,809,811,812,815,817,819,820,822,823,825,826,827,828,829,831,833,834,835,836],{"file":150,"line":538,"context":539},278,"raw output",{"file":150,"line":541,"context":539},285,{"file":150,"line":543,"context":539},287,{"file":150,"line":393,"context":539},{"file":150,"line":546,"context":539},495,{"file":150,"line":548,"context":539},522,{"file":150,"line":550,"context":539},524,{"file":150,"line":552,"context":539},567,{"file":150,"line":554,"context":539},579,{"file":159,"line":556,"context":539},64,{"file":558,"line":13,"context":539},"bp-groupblog-templatetags.php",{"file":558,"line":560,"context":539},138,{"file":558,"line":562,"context":539},165,{"file":558,"line":564,"context":539},215,{"file":558,"line":566,"context":539},236,{"file":558,"line":568,"context":539},257,{"file":558,"line":570,"context":539},340,{"file":572,"line":68,"context":539},"groupblog\\inc\\pages.php",{"file":574,"line":575,"context":539},"groupblog\\inc\\posts.php",17,{"file":574,"line":577,"context":539},24,{"file":574,"line":579,"context":539},31,{"file":581,"line":582,"context":539},"themes\\bp-groupblog\\activity-post-form.php",6,{"file":584,"line":451,"context":539},"themes\\bp-groupblog\\archive.php",{"file":586,"line":587,"context":539},"themes\\bp-groupblog\\attachment.php",36,{"file":586,"line":587,"context":539},{"file":586,"line":587,"context":539},{"file":586,"line":591,"context":539},39,{"file":586,"line":591,"context":539},{"file":586,"line":591,"context":539},{"file":595,"line":447,"context":539},"themes\\bp-groupblog\\blog.php",{"file":597,"line":598,"context":539},"themes\\bp-groupblog\\header.php",77,{"file":597,"line":600,"context":539},79,{"file":602,"line":603,"context":539},"themes\\bp-groupblog\\index.php",34,{"file":605,"line":451,"context":539},"themes\\bp-groupblog\\search.php",{"file":607,"line":441,"context":539},"themes\\bp-groupblog\\single.php",{"file":609,"line":438,"context":539},"themes\\p2\\attachment.php",{"file":609,"line":438,"context":539},{"file":609,"line":33,"context":539},{"file":613,"line":579,"context":539},"themes\\p2\\entry.php",{"file":613,"line":441,"context":539},{"file":613,"line":444,"context":539},{"file":613,"line":175,"context":539},{"file":618,"line":523,"context":539},"themes\\p2\\footer.php",{"file":330,"line":620,"context":539},148,{"file":330,"line":622,"context":539},151,{"file":330,"line":624,"context":539},167,{"file":330,"line":626,"context":539},237,{"file":330,"line":628,"context":539},289,{"file":330,"line":630,"context":539},314,{"file":330,"line":632,"context":539},544,{"file":330,"line":634,"context":539},683,{"file":330,"line":636,"context":539},696,{"file":529,"line":638,"context":539},29,{"file":529,"line":451,"context":539},{"file":529,"line":641,"context":539},59,{"file":529,"line":116,"context":539},{"file":529,"line":644,"context":539},125,{"file":529,"line":646,"context":539},208,{"file":529,"line":648,"context":539},268,{"file":529,"line":650,"context":539},269,{"file":529,"line":652,"context":539},317,{"file":654,"line":526,"context":539},"themes\\p2\\inc\\compat.php",{"file":416,"line":116,"context":539},{"file":416,"line":657,"context":539},102,{"file":416,"line":186,"context":539},{"file":416,"line":660,"context":539},104,{"file":416,"line":662,"context":539},105,{"file":416,"line":664,"context":539},106,{"file":416,"line":666,"context":539},107,{"file":416,"line":668,"context":539},108,{"file":416,"line":670,"context":539},109,{"file":416,"line":672,"context":539},112,{"file":416,"line":674,"context":539},113,{"file":416,"line":532,"context":539},{"file":428,"line":35,"context":539},{"file":466,"line":678,"context":539},38,{"file":466,"line":680,"context":539},53,{"file":466,"line":682,"context":539},62,{"file":466,"line":26,"context":539},{"file":466,"line":560,"context":539},{"file":466,"line":534,"context":539},{"file":466,"line":687,"context":539},169,{"file":466,"line":689,"context":539},178,{"file":466,"line":691,"context":539},186,{"file":466,"line":693,"context":539},194,{"file":466,"line":695,"context":539},201,{"file":466,"line":697,"context":539},216,{"file":466,"line":699,"context":539},225,{"file":466,"line":701,"context":539},239,{"file":466,"line":703,"context":539},253,{"file":486,"line":603,"context":539},{"file":486,"line":706,"context":539},35,{"file":486,"line":706,"context":539},{"file":486,"line":587,"context":539},{"file":486,"line":710,"context":539},40,{"file":486,"line":444,"context":539},{"file":486,"line":444,"context":539},{"file":486,"line":447,"context":539},{"file":486,"line":459,"context":539},{"file":486,"line":462,"context":539},{"file":486,"line":462,"context":539},{"file":486,"line":718,"context":539},49,{"file":486,"line":718,"context":539},{"file":486,"line":721,"context":539},75,{"file":486,"line":600,"context":539},{"file":486,"line":724,"context":539},81,{"file":519,"line":726,"context":539},19,{"file":519,"line":244,"context":539},{"file":519,"line":244,"context":539},{"file":519,"line":438,"context":539},{"file":519,"line":731,"context":539},25,{"file":519,"line":733,"context":539},26,{"file":519,"line":733,"context":539},{"file":519,"line":33,"context":539},{"file":519,"line":459,"context":539},{"file":519,"line":738,"context":539},54,{"file":519,"line":556,"context":539},{"file":741,"line":86,"context":539},"themes\\p2\\post-form.php",{"file":741,"line":68,"context":539},{"file":741,"line":603,"context":539},{"file":741,"line":706,"context":539},{"file":741,"line":454,"context":539},{"file":741,"line":747,"context":539},58,{"file":741,"line":600,"context":539},{"file":750,"line":523,"context":539},"themes\\p2\\tag.php",{"file":752,"line":753,"context":539},"themes\\p2-buddypress\\archive.php",28,{"file":755,"line":244,"context":539},"themes\\p2-buddypress\\attachment.php",{"file":755,"line":244,"context":539},{"file":755,"line":244,"context":539},{"file":755,"line":759,"context":539},23,{"file":755,"line":759,"context":539},{"file":755,"line":759,"context":539},{"file":763,"line":417,"context":539},"themes\\p2-buddypress\\comments.php",{"file":763,"line":514,"context":539},{"file":763,"line":766,"context":539},69,{"file":763,"line":768,"context":539},70,{"file":763,"line":770,"context":539},73,{"file":763,"line":772,"context":539},98,{"file":763,"line":186,"context":539},{"file":763,"line":672,"context":539},{"file":763,"line":776,"context":539},117,{"file":763,"line":778,"context":539},122,{"file":492,"line":175,"context":539},{"file":492,"line":781,"context":539},67,{"file":492,"line":668,"context":539},{"file":492,"line":626,"context":539},{"file":492,"line":701,"context":539},{"file":492,"line":786,"context":539},241,{"file":492,"line":788,"context":539},250,{"file":492,"line":788,"context":539},{"file":492,"line":791,"context":539},261,{"file":793,"line":417,"context":539},"themes\\p2-buddypress\\groupblog\\comments.php",{"file":793,"line":514,"context":539},{"file":796,"line":48,"context":539},"themes\\p2-buddypress\\groupblog\\layouts\\magazine.php",{"file":796,"line":128,"context":539},{"file":796,"line":603,"context":539},{"file":796,"line":800,"context":539},68,{"file":796,"line":26,"context":539},{"file":796,"line":520,"context":539},{"file":796,"line":186,"context":539},{"file":805,"line":438,"context":539},"themes\\p2-buddypress\\groupblog\\layouts\\news.php",{"file":807,"line":808,"context":539},"themes\\p2-buddypress\\groupblog\\post-form.php",12,{"file":810,"line":680,"context":539},"themes\\p2-buddypress\\groupblog\\_inc\\simple_html_dom.php",{"file":810,"line":160,"context":539},{"file":813,"line":814,"context":539},"themes\\p2-buddypress\\header.php",87,{"file":813,"line":816,"context":539},89,{"file":818,"line":194,"context":539},"themes\\p2-buddypress\\post-form.php",{"file":818,"line":432,"context":539},{"file":818,"line":821,"context":539},16,{"file":818,"line":575,"context":539},{"file":818,"line":824,"context":539},18,{"file":818,"line":726,"context":539},{"file":818,"line":128,"context":539},{"file":818,"line":447,"context":539},{"file":818,"line":164,"context":539},{"file":830,"line":753,"context":539},"themes\\p2-buddypress\\search.php",{"file":832,"line":523,"context":539},"themes\\p2-buddypress\\sidebar.php",{"file":832,"line":575,"context":539},{"file":832,"line":824,"context":539},{"file":832,"line":710,"context":539},{"file":837,"line":638,"context":539},"themes\\p2-buddypress\\single.php",[],[840,858,866,875,884,893,902,910,948,964,975,983,991,1003],{"entryPoint":841,"graph":842,"unsanitizedCount":27,"severity":857},"bp_groupblog_show_blog_form (bp-groupblog.php:624)",{"nodes":843,"edges":855},[844,849],{"id":845,"type":846,"label":847,"file":182,"line":848},"n0","source","$_GET (x3)",718,{"id":850,"type":851,"label":852,"file":182,"line":853,"wp_function":854},"n1","sink","echo() [XSS]",725,"echo",[856],{"from":845,"to":850,"sanitized":505},"low",{"entryPoint":859,"graph":860,"unsanitizedCount":27,"severity":857},"\u003Cbp-groupblog> (bp-groupblog.php:0)",{"nodes":861,"edges":864},[862,863],{"id":845,"type":846,"label":847,"file":182,"line":848},{"id":850,"type":851,"label":852,"file":182,"line":853,"wp_function":854},[865],{"from":845,"to":850,"sanitized":505},{"entryPoint":867,"graph":868,"unsanitizedCount":27,"severity":857},"\u003Cactivity-post-form> (themes\\bp-groupblog\\activity-post-form.php:0)",{"nodes":869,"edges":873},[870,872],{"id":845,"type":846,"label":871,"file":581,"line":575},"$_GET['r']",{"id":850,"type":851,"label":852,"file":581,"line":575,"wp_function":854},[874],{"from":845,"to":850,"sanitized":505},{"entryPoint":876,"graph":877,"unsanitizedCount":27,"severity":857},"get_post (themes\\p2\\inc\\ajax.php:18)",{"nodes":878,"edges":882},[879,881],{"id":845,"type":846,"label":880,"file":529,"line":759},"$_GET",{"id":850,"type":851,"label":852,"file":529,"line":638,"wp_function":854},[883],{"from":845,"to":850,"sanitized":505},{"entryPoint":885,"graph":886,"unsanitizedCount":27,"severity":857},"get_comment (themes\\p2\\inc\\ajax.php:51)",{"nodes":887,"edges":891},[888,890],{"id":845,"type":846,"label":880,"file":529,"line":889},56,{"id":850,"type":851,"label":852,"file":529,"line":641,"wp_function":854},[892],{"from":845,"to":850,"sanitized":505},{"entryPoint":894,"graph":895,"unsanitizedCount":27,"severity":857},"save_post (themes\\p2\\inc\\ajax.php:62)",{"nodes":896,"edges":900},[897,899],{"id":845,"type":846,"label":898,"file":529,"line":800},"$_POST",{"id":850,"type":851,"label":852,"file":529,"line":116,"wp_function":854},[901],{"from":845,"to":850,"sanitized":505},{"entryPoint":903,"graph":904,"unsanitizedCount":27,"severity":857},"save_comment (themes\\p2\\inc\\ajax.php:103)",{"nodes":905,"edges":908},[906,907],{"id":845,"type":846,"label":898,"file":529,"line":670},{"id":850,"type":851,"label":852,"file":529,"line":644,"wp_function":854},[909],{"from":845,"to":850,"sanitized":505},{"entryPoint":911,"graph":912,"unsanitizedCount":27,"severity":857},"\u003Cajax> (themes\\p2\\inc\\ajax.php:0)",{"nodes":913,"edges":942},[914,915,916,918,922,925,927,931,936,939],{"id":845,"type":846,"label":847,"file":529,"line":759},{"id":850,"type":851,"label":852,"file":529,"line":638,"wp_function":854},{"id":917,"type":846,"label":880,"file":529,"line":603},"n2",{"id":919,"type":851,"label":920,"file":529,"line":447,"wp_function":921},"n3","get_col() [SQLi]","get_col",{"id":923,"type":846,"label":924,"file":529,"line":800},"n4","$_POST (x3)",{"id":926,"type":851,"label":852,"file":529,"line":116,"wp_function":854},"n5",{"id":928,"type":846,"label":929,"file":529,"line":930},"n6","$_GET (x2)",276,{"id":932,"type":851,"label":933,"file":529,"line":934,"wp_function":935},"n7","get_results() [SQLi]",291,"get_results",{"id":937,"type":846,"label":898,"file":529,"line":938},"n8",240,{"id":940,"type":851,"label":933,"file":529,"line":941,"wp_function":935},"n9",295,[943,944,945,946,947],{"from":845,"to":850,"sanitized":505},{"from":917,"to":919,"sanitized":505},{"from":923,"to":926,"sanitized":505},{"from":928,"to":932,"sanitized":505},{"from":937,"to":940,"sanitized":505},{"entryPoint":949,"graph":950,"unsanitizedCount":487,"severity":857},"page (themes\\p2\\inc\\options-page.php:22)",{"nodes":951,"edges":961},[952,954,957,960],{"id":845,"type":846,"label":953,"file":428,"line":451},"$_POST (x7)",{"id":850,"type":851,"label":955,"file":428,"line":770,"wp_function":956},"update_option() [Settings Manipulation]","update_option",{"id":917,"type":846,"label":958,"file":428,"line":959},"$_SERVER['REQUEST_URI']",90,{"id":919,"type":851,"label":852,"file":428,"line":959,"wp_function":854},[962,963],{"from":845,"to":850,"sanitized":503},{"from":917,"to":919,"sanitized":505},{"entryPoint":965,"graph":966,"unsanitizedCount":487,"severity":857},"\u003Coptions-page> (themes\\p2\\inc\\options-page.php:0)",{"nodes":967,"edges":972},[968,969,970,971],{"id":845,"type":846,"label":953,"file":428,"line":451},{"id":850,"type":851,"label":955,"file":428,"line":770,"wp_function":956},{"id":917,"type":846,"label":958,"file":428,"line":959},{"id":919,"type":851,"label":852,"file":428,"line":959,"wp_function":854},[973,974],{"from":845,"to":850,"sanitized":503},{"from":917,"to":919,"sanitized":505},{"entryPoint":976,"graph":977,"unsanitizedCount":27,"severity":857},"\u003Cpost-form> (themes\\p2-buddypress\\groupblog\\post-form.php:0)",{"nodes":978,"edges":981},[979,980],{"id":845,"type":846,"label":871,"file":807,"line":731},{"id":850,"type":851,"label":852,"file":807,"line":731,"wp_function":854},[982],{"from":845,"to":850,"sanitized":505},{"entryPoint":984,"graph":985,"unsanitizedCount":27,"severity":857},"\u003Cpost-form> (themes\\p2-buddypress\\post-form.php:0)",{"nodes":986,"edges":989},[987,988],{"id":845,"type":846,"label":871,"file":818,"line":526},{"id":850,"type":851,"label":852,"file":818,"line":526,"wp_function":854},[990],{"from":845,"to":850,"sanitized":505},{"entryPoint":992,"graph":993,"unsanitizedCount":51,"severity":1002},"tag_search (themes\\p2\\inc\\ajax.php:32)",{"nodes":994,"edges":999},[995,996,997,998],{"id":845,"type":846,"label":880,"file":529,"line":603},{"id":850,"type":851,"label":920,"file":529,"line":447,"wp_function":921},{"id":917,"type":846,"label":880,"file":529,"line":603},{"id":919,"type":851,"label":852,"file":529,"line":451,"wp_function":854},[1000,1001],{"from":845,"to":850,"sanitized":503},{"from":917,"to":919,"sanitized":503},"high",{"entryPoint":1004,"graph":1005,"unsanitizedCount":417,"severity":1002},"get_latest_comments (themes\\p2\\inc\\ajax.php:272)",{"nodes":1006,"edges":1009},[1007,1008],{"id":845,"type":846,"label":847,"file":529,"line":930},{"id":850,"type":851,"label":933,"file":529,"line":934,"wp_function":935},[1010],{"from":845,"to":850,"sanitized":503},{"summary":1012,"deductions":1013},"The \"bp-groupblog\" plugin v1.9.3 exhibits a mixed security posture.  On the positive side, it has a small attack surface with no unprotected entry points, a good number of nonce and capability checks, and a high percentage of SQL queries using prepared statements. The absence of known CVEs and external HTTP requests are also favorable indicators. However, the static analysis reveals some significant concerns. The presence of three instances of the dangerous `create_function` function is a serious red flag, as this function is deprecated and can lead to security vulnerabilities if not handled with extreme care.  Furthermore, the taint analysis indicates two high-severity flows with unsanitized paths, suggesting potential risks of code injection or other sensitive data compromise.  The relatively low percentage of properly escaped output (47%) also suggests a risk of Cross-Site Scripting (XSS) vulnerabilities, especially if the unsanitized paths involve user-supplied input that is later displayed. The plugin's vulnerability history is clean, which is a strength, but it doesn't negate the risks identified in the current code analysis. In conclusion, while the plugin has good baseline security practices like authentication checks and prepared statements, the use of `create_function` and high-severity unsanitized paths present notable risks that require attention.",[1014,1016,1018],{"reason":1015,"points":435},"Dangerous function usage (create_function)",{"reason":1017,"points":808},"High severity unsanitized taint flows",{"reason":1019,"points":582},"Low percentage of properly escaped output","2026-03-17T05:38:16.317Z",{"wat":1022,"direct":1036},{"assetPaths":1023,"generatorPatterns":1031,"scriptPaths":1032,"versionParams":1033},[1024,1025,1026,1027,1028,1029,1030],"\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fbp-groupblog.css","\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fbp-groupblog.js","\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fgroupblog\u002Fimages\u002Farrow.gif","\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fgroupblog\u002Fimages\u002Ficons.gif","\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fgroupblog\u002Fimages\u002Fmarker.gif","\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fgroupblog\u002Fimages\u002Ftab-left.png","\u002Fwp-content\u002Fplugins\u002Fbp-groupblog\u002Fgroupblog\u002Fimages\u002Ftab-right.png",[],[1025],[1034,1035],"bp-groupblog\u002Fbp-groupblog.css?ver=","bp-groupblog\u002Fbp-groupblog.js?ver=",{"cssClasses":1037,"htmlComments":1039,"htmlAttributes":1040,"restEndpoints":1042,"jsGlobals":1043,"shortcodeOutput":1045},[1038,4],"groupblog-list-links",[],[1041],"data-groupblog-group-id",[],[1044],"bp_groupblog",[]]