[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJgn6XfyDw-xIbcHxPOK64uUclXxOJ-IVO71k0tK63JY":3,"$fZNyJN5-wb-67Dnpf19EArNXVS0W8fP1GSqS54x5iDio":330,"$fT6FtV2kVZGOjYQXuleFMGt7qW4WMq9gp0VgTdJzkr5E":334},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":48,"crawl_stats":36,"alternatives":55,"analysis":145,"fingerprints":309},"bp-messages-tool","BP Messages Tool","2.5","shanebp","https:\u002F\u002Fprofiles.wordpress.org\u002Fshanebp\u002F","\u003Cp>BP Messages Tool is a BuddyPress plugin.\u003C\u002Fp>\n\u003Cp>By default, nobody can read a BuddyPress private message unless it was sent or received by the current logged-in member.\u003C\u002Fp>\n\u003Cp>Occasionally, there is a need to respond to member complaints about another member harassing them via abusive messages.\u003C\u002Fp>\n\u003Cp>This tool allows site administrators to review the messages of any member. They can also delete Message Threads.\u003C\u002Fp>\n\u003Cp>NOTE: There is no UNDO for delete operations.\u003C\u002Fp>\n\u003Cp>It provides a wp-admin screen available via Tools > BP Messages.\u003C\u002Fp>\n\u003Cp>You can allow members to block each other by using \u003Ca href=\"https:\u002F\u002Fwww.philopress.com\u002Fproducts\u002Fbuddyblock\u002F\" title=\"BuddyBlock\" rel=\"nofollow ugc\">BuddyBlock\u003C\u002Fa>\u003C\u002Fp>\n","A BuddyPress tool for viewing messages",200,14885,100,6,"2025-04-30T16:59:00.000Z","6.8.5","4.0","",[20,21],"buddypress","messages","https:\u002F\u002Fwww.philopress.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.2.5.zip",91,1,0,"2025-04-29 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":6,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":27,"updated_date":42,"references":43,"days_to_patch":45,"patch_diff_files":46,"patch_trac_url":36,"research_status":36,"research_verified":47,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":47,"poc_model_used":36,"poc_verification_depth":36},"CVE-2025-43839","bp-messages-tool-reflected-cross-site-scripting","BP Messages Tool \u003C= 2.2 - Reflected Cross-Site Scripting","The BP Messages Tool plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=2.2","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-05-05 18:13:56",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F629df2b3-1312-475c-8064-8b61bdef135a?source=api-prod",7,[],false,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":49,"total_installs":50,"avg_security_score":51,"avg_patch_time_days":52,"trust_score":53,"computed_at":54},9,2150,92,124,73,"2026-05-20T08:24:40.146Z",[56,78,95,114,132],{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":51,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"bp-default-data","BuddyPress Default Data","1.4.0","Slava Abakumov","https:\u002F\u002Fprofiles.wordpress.org\u002Fslaffik\u002F","\u003Cp>Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data – useful for testing purpose.\u003C\u002Fp>\n\u003Cp>All imported users will have avatars, generated by 8biticon.com and displayed by Gravatar.\u003C\u002Fp>\n\u003Cp>Please use this plugin with caution and not on a live site! Again, USE FOR TESTING THEMES AND PLUGINGS, NOT ON A STAGING SITE WITH LIVE DATA. Plugin should not mess with your live data, but not guaranteed.\u003C\u002Fp>\n\u003Cp>Clear BuddyPress button will delete all data, that was generated by this plugin: messages, groups, notifications, friends, forum posts, xprofile. Plugin won’t reimport data if clicked twice.\u003C\u002Fp>\n\u003Cp>And turn off email notifications in profile (friendship accepted and messages received) – or you will spam yourself 🙂 Imported users have these settings already turned off.\u003C\u002Fp>\n","Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data - useful for testing purpose.",400,73182,78,22,"2024-11-30T22:53:00.000Z","6.7.5","4.4","5.3",[20,73,74,21,75],"groups","import","users","https:\u002F\u002Fovirium.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-default-data.1.4.0.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":11,"downloaded":86,"rating":87,"num_ratings":88,"last_updated":89,"tested_up_to":16,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":18,"download_link":94,"security_score":51,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"buddypress-message-attachment","BuddyPress Message Attachment","3.0.1","ckchaudhary","https:\u002F\u002Fprofiles.wordpress.org\u002Fckchaudhary\u002F","\u003Cp>Extend BuddyPress’ private message feature by enabling attachments. This plugin enables users to send attachments in private messages. The type of file types allowed and maximum size of the attachment can be controlled by admin.\u003C\u002Fp>\n","Send attachments with private messages in BuddyPress!",22100,86,11,"2025-04-24T06:36:00.000Z","5.8","5.6",[93,20,21],"attachments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-message-attachment.3.0.1.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":13,"downloaded":103,"rating":104,"num_ratings":88,"last_updated":105,"tested_up_to":106,"requires_at_least":81,"requires_php":18,"tags":107,"homepage":111,"download_link":112,"security_score":113,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"bbp-messages","bbPress Messages","2.0.9.1","DevriX","https:\u002F\u002Fprofiles.wordpress.org\u002Fdevrix\u002F","\u003Cp>bbPress Messages – Simple yet powerful private messaging system tailored for bbPress.\u003C\u002Fp>\n\u003Ch3>What’s New in 2.0?\u003C\u002Fh3>\n\u003Ch4>Fully Optimized\u003C\u002Fh4>\n\u003Cp>Now bbPress Messages loads faster due to optimization and messages caching.\u003C\u002Fp>\n\u003Ch4>Background Schedules\u003C\u002Fh4>\n\u003Cp>For better experience and load time, now the tasks are processed in the background. Tasks that would take some time to finish such as email notifications, after send events, cleanup schedules and others.\u003C\u002Fp>\n\u003Ch4>Translation ready\u003C\u002Fh4>\n\u003Cp>Now you can use the languages files to \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FI18n_for_WordPress_Developers\" rel=\"nofollow ugc\">translate\u003C\u002Fa> bbPress Messages to your language. You can also contribute your translations and \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fbbp-messages\" rel=\"nofollow ugc\">help translate this plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Shortcodes\u003C\u002Fh4>\n\u003Cp>We’ve added couple shortcodes and rewrote older shortcodes, you can find out about shortcodes in the shortcodes tab in the settings page.\u003C\u002Fp>\n\u003Ch4>Widgets\u003C\u002Fh4>\n\u003Cp>We’ve redesigned the widgets for 2.0! Navigate to your dashboard and search for bbPM widgets now.\u003C\u002Fp>\n\u003Cp>Other than that, bbPress Messages 2.0 is easy to extend, supports multisite installations, and we will be working on some free addons to extend its features and improve more. Please consult the project Github page \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Felhardoum\u002Fbbp-messages\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Felhardoum\u002Fbbp-messages\u003C\u002Fa> to report a bug, contribute to the project or make suggestions.\u003C\u002Fp>\n\u003Cp>If this is the first time you update, you should be migrating your older messages from the legacy database table to the new one. This could be done using the import tab in settings.\u003C\u002Fp>\n\u003Cp>We will cover some free and premium addons to power group chats and other features, sign up for the newsletter to get notified.\u003C\u002Fp>\n\u003Cp>\u003Cem>More documentation coming soon..\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>For more WordPress\u002FbbPress\u002FBuddyPress free and premium plugins, sign up for the newsletter: http:\u002F\u002Fgo.samelh.com\u002Fnewsletter\u003C\u002Fp>\n","bbPress Messages - Simple yet powerful private messaging system tailored for bbPress.",23798,90,"2017-11-15T18:12:00.000Z","4.8.28",[108,20,109,21,110],"bbpress","forums","private-messages","https:\u002F\u002Fgithub.com\u002Felhardoum\u002Fbbp-messages","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbp-messages.2.0.9.1.zip",85,{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":104,"downloaded":122,"rating":13,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":18,"requires_php":18,"tags":126,"homepage":130,"download_link":131,"security_score":51,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"bp-messaging-control","BuddyPress Messaging Control","1.8.0","Venutius","https:\u002F\u002Fprofiles.wordpress.org\u002Fvenutius\u002F","\u003Cp>This plugin is perfect if you want to use messaging as a way of differentiating or monetizing your BP Site. It’s also good for controlling internal spam. You can control access to messaging and who the user can message. It also allows quotas to be set for each role and maximum message size. The options available are:\u003C\u002Fp>\n\u003Cp>Based on each role you can disable or set limits on messaging.\u003C\u002Fp>\n\u003Cp>Private Messaging:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Messaging Disabled – No access to messaging for this role.\u003C\u002Fli>\n\u003Cli>Admin Only – The role can only message site admin.\u003C\u002Fli>\n\u003Cli>Reply Only – The role can only message users who have previously sent them a message. Admin messages excluded from limitation.\u003C\u002Fli>\n\u003Cli>Full Messaging – The role has unrestricted access to messaging.\u003C\u002Fli>\n\u003Cli>Messaging quota; 1 to unlimited emails per month, week or day. Messages to admin not counted. \u003C\u002Fli>\n\u003Cli>Message Character Limit: Enforce maximum number of characters per message.\u003C\u002Fli>\n\u003Cli>Notification Email content length restrictions: Allows you to display only the first few words of the message so users will visit the site to view the message.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Public Messaging ( @Mentions and Activity Updates )\u003C\u002Fp>\n\u003Cul>\n\u003Cli>@Mentions Disabled – No access to public messaging for this role.\u003C\u002Fli>\n\u003Cli>@Mentions Admin Only – The role can only public message site admin.\u003C\u002Fli>\n\u003Cli>@Mentions Reply Only – The role can only public message users who have previously sent them a public message.\u003C\u002Fli>\n\u003Cli>@Mentions all – The role has unrestricted access to pubic messaging.\u003C\u002Fli>\n\u003Cli>@Mentions quota; 5, 10, 25, 50, 100, 250, 500, 1000, unlimited emails per month, week or day. Messages to admin not counted. \u003C\u002Fli>\n\u003Cli>Activity Updates including Public Messages: Enforce maximum number of characters per Activity Update or Comment.\u003C\u002Fli>\n\u003Cli>Notification Email content length restrictions: Allows you to display only the first few words of the message so users will visit the site to view the message.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notification Emails\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Set size limit for the usermessage token – the notificaton message content. This is useful to prevent the entire message being sent in the notification meaning users will need to visit the site to read the full message.\u003C\u002Fli>\n\u003Cli>Enable Admin notification of user deletions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin needs BuddyPress to work and it supports both BP Legacy and BP Nouveau themes.\u003C\u002Fp>\n\u003Cp>This plugin controls all aspects of BP messaging and makes sure the user only sees the messaging options they are entitled to.\u003C\u002Fp>\n","This plugin is a Swiss Army Knife for messaging, It allows the site admin to place restrictions on public and private messages including general rules &hellip;",7680,2,"2024-07-21T22:28:00.000Z","6.6.5",[20,127,21,128,129],"mentions","messaging","private-message","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-messaging-control\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messaging-control.1.8.0.zip",{"slug":133,"name":134,"version":135,"author":118,"author_profile":119,"description":136,"short_description":137,"active_installs":138,"downloaded":139,"rating":13,"num_ratings":45,"last_updated":140,"tested_up_to":125,"requires_at_least":18,"requires_php":18,"tags":141,"homepage":143,"download_link":144,"security_score":51,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"buddypress-restrict-messages","BuddyPress Restrict Messages","1.1.0","\u003Cp>This plugin is perfect for private message spam prevention. It allows site admin and users themselves to limit exactly who can send messages to the user.\u003C\u002Fp>\n\u003Cp>This plugin creates an admin settings page called Restrict Messages. Here the site admin can choose to impose global restrictions over who can send messages to the user.\u003C\u002Fp>\n\u003Cp>If message restrictions are delegated to the user, a user settings page is created at Profile>>Settings>>Messages.\u003C\u002Fp>\n\u003Cp>Each of these settings pages, depending on which is active, allows private messaging to be restricted to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Friend Connections\u003C\u002Fli>\n\u003Cli>Follow Connections\u003C\u002Fli>\n\u003Cli>Groups Connections – with further selection of public, private or hidden status levels.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The public setting allows connections from all groups to send messages to the user, otherwise private or public stipulate only messages from these types of groups.\u003C\u002Fp>\n\u003Cp>Once a restriction has been implements, the plugin removes the private message from the users profile, removes the usename from the compose message send to auto-complete and rejects any messages send where the send to includes an excluded user.\u003C\u002Fp>\n\u003Cp>This plugin was originally created by Rich @etivite and is now supported by Venutius.\u003C\u002Fp>\n\u003Ch3>Extra Configuration\u003C\u002Fh3>\n","This plugin allows the site admin to restrict who can send private messages or to enable the users to choose themselves.",70,9487,"2024-07-20T10:09:00.000Z",[20,21,128,142,129],"pm","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbuddypress-restrict-messages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-restrict-messages.1.1.0.zip",{"attackSurface":146,"codeSignals":181,"taintFlows":227,"riskAssessment":297,"analyzedAt":308},{"hooks":147,"ajaxHandlers":177,"restRoutes":178,"shortcodes":179,"cronEvents":180,"entryPointCount":26,"unprotectedCount":26},[148,153,159,163,168,173],{"type":149,"name":150,"callback":151,"file":152,"line":49},"action","admin_menu","bpmt_menu","bpmt.php",{"type":154,"name":155,"callback":156,"priority":157,"file":152,"line":158},"filter","bp_get_messages_pagination","bpmt_pagination",25,458,{"type":154,"name":160,"callback":161,"priority":157,"file":152,"line":162},"bp_get_message_thread_last_message_date","bpmt_message_thread_last_post_date_raw",468,{"type":149,"name":164,"callback":165,"file":166,"line":167},"admin_notices","bpmt_install_buddypress_notice","loader.php",18,{"type":149,"name":169,"callback":170,"priority":171,"file":166,"line":172},"plugins_loaded","bpmt_bp_check",999,20,{"type":149,"name":174,"callback":175,"file":166,"line":176},"bp_loaded","bpmt_init",39,[],[],[],[],{"dangerousFunctions":182,"sqlUsage":183,"outputEscaping":189,"fileOperations":26,"externalRequests":26,"nonceChecks":225,"capabilityChecks":26,"bundledLibraries":226},[],{"prepared":184,"raw":25,"locations":185},21,[186],{"file":152,"line":187,"context":188},62,"$wpdb->get_results() with variable interpolation",{"escaped":190,"rawEcho":191,"locations":192},26,16,[193,195,197,200,202,204,206,207,210,212,214,216,217,218,220,223],{"file":152,"line":87,"context":194},"raw output",{"file":152,"line":196,"context":194},148,{"file":198,"line":199,"context":194},"templates\\bpmt-messages-last-ten.php",54,{"file":198,"line":201,"context":194},56,{"file":198,"line":203,"context":194},58,{"file":198,"line":205,"context":194},60,{"file":198,"line":187,"context":194},{"file":208,"line":209,"context":194},"templates\\bpmt-messages-loop.php",48,{"file":208,"line":211,"context":194},68,{"file":208,"line":213,"context":194},80,{"file":208,"line":215,"context":194},87,{"file":208,"line":51,"context":194},{"file":208,"line":51,"context":194},{"file":208,"line":219,"context":194},93,{"file":221,"line":222,"context":194},"templates\\bpmt-messages-thread.php",14,{"file":221,"line":224,"context":194},64,3,[],[228,246,275],{"entryPoint":229,"graph":230,"unsanitizedCount":26,"severity":245},"bpmt_get_member (bpmt.php:108)",{"nodes":231,"edges":242},[232,237],{"id":233,"type":234,"label":235,"file":152,"line":236},"n0","source","$_GET",125,{"id":238,"type":239,"label":240,"file":152,"line":196,"wp_function":241},"n1","sink","echo() [XSS]","echo",[243],{"from":233,"to":238,"sanitized":244},true,"low",{"entryPoint":247,"graph":248,"unsanitizedCount":26,"severity":245},"bpmt_delete_thread (bpmt.php:203)",{"nodes":249,"edges":271},[250,253,257,259,264,266],{"id":233,"type":234,"label":251,"file":152,"line":252},"$_GET (x3)",219,{"id":238,"type":239,"label":254,"file":152,"line":255,"wp_function":256},"query() [SQLi]",237,"query",{"id":258,"type":234,"label":235,"file":152,"line":252},"n2",{"id":260,"type":239,"label":261,"file":152,"line":262,"wp_function":263},"n3","get_col() [SQLi]",239,"get_col",{"id":265,"type":234,"label":235,"file":152,"line":252},"n4",{"id":267,"type":239,"label":268,"file":152,"line":269,"wp_function":270},"n5","get_results() [SQLi]",241,"get_results",[272,273,274],{"from":233,"to":238,"sanitized":244},{"from":258,"to":260,"sanitized":244},{"from":265,"to":267,"sanitized":244},{"entryPoint":276,"graph":277,"unsanitizedCount":26,"severity":245},"\u003Cbpmt> (bpmt.php:0)",{"nodes":278,"edges":292},[279,281,282,284,285,287,288,290],{"id":233,"type":234,"label":280,"file":152,"line":236},"$_GET (x5)",{"id":238,"type":239,"label":240,"file":152,"line":196,"wp_function":241},{"id":258,"type":234,"label":283,"file":152,"line":252},"$_GET (x6)",{"id":260,"type":239,"label":254,"file":152,"line":255,"wp_function":256},{"id":265,"type":234,"label":286,"file":152,"line":252},"$_GET (x2)",{"id":267,"type":239,"label":261,"file":152,"line":262,"wp_function":263},{"id":289,"type":234,"label":286,"file":152,"line":252},"n6",{"id":291,"type":239,"label":268,"file":152,"line":269,"wp_function":270},"n7",[293,294,295,296],{"from":233,"to":238,"sanitized":244},{"from":258,"to":260,"sanitized":244},{"from":265,"to":267,"sanitized":244},{"from":289,"to":291,"sanitized":244},{"summary":298,"deductions":299},"The \"bp-messages-tool\" v2.5 plugin exhibits a mixed security posture. On the positive side, the static analysis reveals a commendably small attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events exposed without authentication or proper checks. Furthermore, the plugin demonstrates good practices by using prepared statements for 95% of its SQL queries, and it has a reasonable number of nonce checks. The absence of critical or high severity taint analysis findings and no currently unpatched CVEs are also encouraging signs. However, there are areas of concern. Only 62% of output is properly escaped, indicating a risk of Cross-Site Scripting (XSS) vulnerabilities, which aligns with its history of a medium severity XSS vulnerability. The lack of capability checks for any entry points is a significant weakness, as it means that any user, regardless of their role, could potentially trigger plugin functionality. While the attack surface is small, the absence of capability checks on any potential entry points is a notable oversight.",[300,302,305],{"reason":301,"points":14},"Insufficient output escaping",{"reason":303,"points":304},"Missing capability checks",10,{"reason":306,"points":307},"Medium severity vulnerability in history",15,"2026-03-16T20:24:16.453Z",{"wat":310,"direct":315},{"assetPaths":311,"generatorPatterns":312,"scriptPaths":313,"versionParams":314},[],[],[],[],{"cssClasses":316,"htmlComments":318,"htmlAttributes":319,"restEndpoints":327,"jsGlobals":328,"shortcodeOutput":329},[317],"wrap",[],[320,321,322,323,324,325,326],"name=\"bpmt-form\"","id=\"bpmt-form\"","name=\"bpmt-user\"","id=\"bpmt\"","name=\"bpmt-box\"","name=\"bpmt-submit\"","id=\"bpmt-submit\"",[],[],[],{"error":244,"url":331,"statusCode":332,"statusMessage":333,"message":333},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fbp-messages-tool\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":335,"versions":336},12,[337,342,350,358,366,374,382,390,398,406,414,422],{"version":6,"download_url":23,"svn_tag_url":338,"released_at":36,"has_diff":47,"diff_files_changed":339,"diff_lines":36,"trac_diff_url":340,"vulnerabilities":341,"is_current":244},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F2.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F2.4&new_path=%2Fbp-messages-tool%2Ftags%2F2.5",[],{"version":343,"download_url":344,"svn_tag_url":345,"released_at":36,"has_diff":47,"diff_files_changed":346,"diff_lines":36,"trac_diff_url":347,"vulnerabilities":348,"is_current":47},"2.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.2.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F2.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F2.3&new_path=%2Fbp-messages-tool%2Ftags%2F2.4",[349],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":351,"download_url":352,"svn_tag_url":353,"released_at":36,"has_diff":47,"diff_files_changed":354,"diff_lines":36,"trac_diff_url":355,"vulnerabilities":356,"is_current":47},"2.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.2.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F2.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F2.2&new_path=%2Fbp-messages-tool%2Ftags%2F2.3",[357],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":359,"download_url":360,"svn_tag_url":361,"released_at":36,"has_diff":47,"diff_files_changed":362,"diff_lines":36,"trac_diff_url":363,"vulnerabilities":364,"is_current":47},"2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F2.1&new_path=%2Fbp-messages-tool%2Ftags%2F2.2",[365],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":367,"download_url":368,"svn_tag_url":369,"released_at":36,"has_diff":47,"diff_files_changed":370,"diff_lines":36,"trac_diff_url":371,"vulnerabilities":372,"is_current":47},"2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F2.0&new_path=%2Fbp-messages-tool%2Ftags%2F2.1",[373],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":375,"download_url":376,"svn_tag_url":377,"released_at":36,"has_diff":47,"diff_files_changed":378,"diff_lines":36,"trac_diff_url":379,"vulnerabilities":380,"is_current":47},"2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F1.5&new_path=%2Fbp-messages-tool%2Ftags%2F2.0",[381],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":383,"download_url":384,"svn_tag_url":385,"released_at":36,"has_diff":47,"diff_files_changed":386,"diff_lines":36,"trac_diff_url":387,"vulnerabilities":388,"is_current":47},"1.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.1.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F1.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F1.4&new_path=%2Fbp-messages-tool%2Ftags%2F1.5",[389],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":391,"download_url":392,"svn_tag_url":393,"released_at":36,"has_diff":47,"diff_files_changed":394,"diff_lines":36,"trac_diff_url":395,"vulnerabilities":396,"is_current":47},"1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F1.3&new_path=%2Fbp-messages-tool%2Ftags%2F1.4",[397],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":399,"download_url":400,"svn_tag_url":401,"released_at":36,"has_diff":47,"diff_files_changed":402,"diff_lines":36,"trac_diff_url":403,"vulnerabilities":404,"is_current":47},"1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F1.2&new_path=%2Fbp-messages-tool%2Ftags%2F1.3",[405],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":407,"download_url":408,"svn_tag_url":409,"released_at":36,"has_diff":47,"diff_files_changed":410,"diff_lines":36,"trac_diff_url":411,"vulnerabilities":412,"is_current":47},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F1.1&new_path=%2Fbp-messages-tool%2Ftags%2F1.2",[413],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":415,"download_url":416,"svn_tag_url":417,"released_at":36,"has_diff":47,"diff_files_changed":418,"diff_lines":36,"trac_diff_url":419,"vulnerabilities":420,"is_current":47},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbp-messages-tool%2Ftags%2F1.0&new_path=%2Fbp-messages-tool%2Ftags%2F1.1",[421],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":423,"download_url":424,"svn_tag_url":425,"released_at":36,"has_diff":47,"diff_files_changed":426,"diff_lines":36,"trac_diff_url":36,"vulnerabilities":427,"is_current":47},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-messages-tool.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbp-messages-tool\u002Ftags\u002F1.0\u002F",[],[428],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6}]