[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ffGp-HdDoXf8TTkYqqkiSPCNonXl9f0_xZ_ofcRglLxI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":141,"fingerprints":247},"bp-xprofile-rich-text-field","Buddypress xProfile Rich Text Field","0.2.5","Christian Wach","https:\u002F\u002Fprofiles.wordpress.org\u002Fneedle\u002F","\u003Cp>The Buddypress xProfile Rich Text Field plugin adds a Rich-text Editor custom field type to Extended Profiles in BuddyPress.\u003C\u002Fp>\n\u003Cp>Please note: this plugin is no longer required because its functionality has been implemented since BuddyPress 2.4. Having said that, if you already have data in xProfile fields of this type, you will need to keep this plugin active. See:\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fbuddypress.trac.wordpress.org\u002Fticket\u002F5625\u003C\u002Fp>\n\u003Cp>If you are using BuddyPress 2.0+ and your theme does not use compatibility mode (i.e it supplies its own BuddyPress template files) then you will have to update your theme’s \u003Ccode>members\u002Fsingle\u002Fprofile\u002Fedit.php\u003C\u002Fcode> and \u003Ccode>registration\u002Fregister.php\u003C\u002Fcode> (or \u003Ccode>members\u002Fregister.php\u003C\u002Fcode>) templates so that they match the new way of displaying xProfile fields. You can refer to the relevant BuddyPress files to see how that’s now being done. These are \u003Ccode>bp-templates\u002Fbp-legacy\u002Fbuddypress\u002Fmembers\u002Fsingle\u002Fprofile\u002Fedit.php\u003C\u002Fcode>\u003Cbr \u002F>\nand \u003Ccode>bp-templates\u002Fbp-legacy\u002Fbuddypress\u002Fmembers\u002Fregister.php\u003C\u002Fcode>.\u003C\u002Fp>\n","Buddypress xProfile Rich Text Field adds a Rich-text Editor custom field type to Extended Profiles in BuddyPress.",70,8067,90,4,"2016-03-11T13:34:00.000Z","4.4.34","3.5","",[20,21,22,23,24],"buddypress","editor","field","tinymce","xprofile","http:\u002F\u002Fhaystack.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-xprofile-rich-text-field.0.2.5.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":13,"computed_at":38},"needle",8,2440,94,30,"2026-04-04T11:13:47.954Z",[40,64,85,104,123],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":59,"download_link":60,"security_score":61,"vuln_count":62,"unpatched_count":28,"last_vuln_date":63,"fetched_at":30},"bp-xprofile-custom-field-types","BuddyPress Xprofile Custom Field Types","1.3.0","BuddyDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fbuddydev\u002F","\u003Cp>BuddyPress Xprofile Custom Field Types plugin adds some essential field types to BuddyPress Profile.\u003C\u002Fp>\n\u003Cp>The newly added BuddyPress field types are:-\u003Cbr \u002F>\n* Birthdate.\u003Cbr \u002F>\n* Image.\u003Cbr \u002F>\n* File.\u003Cbr \u002F>\n* Checkbox acceptance.\u003Cbr \u002F>\n* Country field.\u003Cbr \u002F>\n* From\u002FTo field(can be used to show 2 numbers or text strings).\u003Cbr \u002F>\n* Token (can be used to set a list of predefined approved codes for registration etc).\u003Cbr \u002F>\n* oEmbed ( allow your users to use youtube\u002Ffacebook, vimeo and other oembed supporting urls to embed in their profile).\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.w3.org\u002FTR\u002Fhtml-markup\u002Finput.email.html\" title=\"Input type email - HTML5\" rel=\"nofollow ugc\">Email\u003C\u002Fa>.\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.w3.org\u002FTR\u002Fhtml-markup\u002Finput.url.html\" title=\"Input type url - HTML5\" rel=\"nofollow ugc\">Web\u003C\u002Fa>.\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.w3.org\u002FTR\u002F2013\u002FNOTE-html-markup-20130528\u002Finput.date.html\" title=\"Input type date - HTML5\" rel=\"nofollow ugc\">Datepicker\u003C\u002Fa>.\u003Cbr \u002F>\n* Custom post type selector.\u003Cbr \u002F>\n* Custom post type multiselector.\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.w3.org\u002FTR\u002F2013\u002FNOTE-html-markup-20130528\u002Finput.color.html\" title=\"Input type color - HTML5\" rel=\"nofollow ugc\">Colorpicker\u003C\u002Fa>.\u003Cbr \u002F>\n* Decimal number.\u003Cbr \u002F>\n* Number within min\u002Fmax values.\u003Cbr \u002F>\n* Custom taxonomy selector.\u003Cbr \u002F>\n* Custom taxonomy multiselector.\u003Cbr \u002F>\n* Range input (slider)\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fselect2.github.io\u002F\" rel=\"nofollow ugc\">Select2 javascript plugin\u003C\u002Fa> for select boxes.\u003C\u002Fp>\n\u003Cp>BuddyPress Xprofile Custom Field Types is 100% compatible with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-profile-search\u002F\" rel=\"ugc\">BP Profile Search plugin\u003C\u002Fa>.\u003Cbr \u002F>\nAt the moment, following fields are searchable using BP Profile Search:-\u003Cbr \u002F>\n* Birthdate\u003Cbr \u002F>\n* Datepicker\u003Cbr \u002F>\n* Color\u003Cbr \u002F>\n* Email\u003Cbr \u002F>\n* Web\u003Cbr \u002F>\n* Number Min\u002FMax\u003Cbr \u002F>\n* Range Input\u003Cbr \u002F>\n* Decimal Number\u003Cbr \u002F>\n* Country\u003Cbr \u002F>\nOther fields such as post type, taxonomy etc., are not searchable as they are stored in serialized format( due to back compatibility).\u003C\u002Fp>\n\u003Cp>The plugin is opensource and currently developed on github. We welcome you to be part of its future development at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbuddydev\u002Fbp-xprofile-custom-field-types\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fbuddydev\u002Fbp-xprofile-custom-field-types\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Discuss the plugin on our \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fadd-extra-buddypress-profile-fields-with-buddypress-xprofile-custom-field-types-plugin\u002F\" rel=\"nofollow ugc\">release post\u003C\u002Fa> or view the plugin’s \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fbp-xprofile-custom-field-types\u002F\" rel=\"nofollow ugc\">detailed documentation here\u003C\u002Fa>.\u003Cbr \u002F>\nThe idea is based on @donmik’s plugin. This plugin is a complete rewrite. Some field type do share code with the original plugin. My guess, we are using 20-30% of the code for field types from the original.\u003C\u002Fp>\n\u003Cp>In the future, we hope to add more fields.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note: This plugin is not 100% backward compatible\u003C\u002Fstrong>\u003Cbr \u002F>\nIt is very easy to migrate. Should take less than 5 minute. If you are looking to move from the older plugin to this one, please read our \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fbp-xprofile-custom-field-types\u002F#migrate\" rel=\"nofollow ugc\">migration guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note 2: The Custom taxonomy field does not allow you to categorize users. They allow you to let users select some terms and display the terms on their profile.\u003Cbr \u002F>\n           It is not intended for classifying user\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Credit\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fdonmik.com\" rel=\"nofollow ugc\">@donmik\u003C\u002Fa> for the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdonmik\u002Fbuddypress-xprofile-custom-fields-type\" rel=\"nofollow ugc\">BuddyPress Xprofile Custom Fields Type\u003C\u002Fa> from where we adopted the field types in our first version.\u003Cbr \u002F>\n In the first version, te plugin brought all the profile fields offered by the currently abandoned The \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdonmik\u002Fbuddypress-xprofile-custom-fields-type\" rel=\"nofollow ugc\">“BuddyPress Xprofile Custom Fields Type”\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Ch4>More Plugins\u003C\u002Fh4>\n\u003Cp>We love BuddyPress, and we have created 100+ BuddyPress plugins.\u003Cbr \u002F>\nPlease take a look at our\u003Cbr \u002F>\n 1. \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fplugins\u002F\" title=\"Best BuddyPress Plugins\" rel=\"nofollow ugc\">Free BuddyPress Plugins\u003C\u002Fa>\u003Cbr \u002F>\n 1. \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fcategory\u002Fbuddypress-premium-plugins\u002F\" title=\"Best BuddyPress Premium Plugins\" rel=\"nofollow ugc\">Premium BuddyPress plugins\u003C\u002Fa>\u003Cbr \u002F>\n We hope that it will help you take your BuddyPress network to the next level.\u003C\u002Fp>\n\u003Ch4>BuddyPress Custom development & Maintenance Service\u003C\u002Fh4>\n\u003Cp>If you need any assistance with setting up or adding new features to BuddyPress or this plugin, Our team is available for hire.\u003Cbr \u002F>\nPlease use our \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fbuddypress-custom-plugin-development-service\u002F\" rel=\"nofollow ugc\">BuddyPress Development Services\u003C\u002Fa> for any custom development needs.\u003C\u002Fp>\n","Buddypress Xprofile Custom Field Types adds extra custom profile fields to BuddyPress. Field types are: Birthdate, Email, Url etc.",4000,145742,98,16,"2026-01-01T14:23:00.000Z","6.9.4","5.0","5.3",[20,57,58,24],"buddypress-profile-field-types","fields","https:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fbuddypress-xprofile-custom-field-types\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-xprofile-custom-field-types.1.3.0.zip",97,1,"2026-01-05 16:27:40",{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":74,"num_ratings":75,"last_updated":76,"tested_up_to":53,"requires_at_least":77,"requires_php":18,"tags":78,"homepage":81,"download_link":82,"security_score":83,"vuln_count":62,"unpatched_count":28,"last_vuln_date":84,"fetched_at":30},"buddypress-xprofile-image-field","BuddyPress XProfile Custom Image Field","3.1.0","Alex Githatu","https:\u002F\u002Fprofiles.wordpress.org\u002Fkalengi\u002F","\u003Cp>The BuddyPress XProfile module does not support Image type fields. The BuddyPress XProfile Custom Image Field (BPXPIF) plugin allows you to add fields of type Image to a BuddyPress user profile.\u003C\u002Fp>\n\u003Cp>Images uploaded during User Registration can be viewed on the Manage Signups screen to allow the Site Administrator to review them before activating a new user account.\u003C\u002Fp>\n\u003Cp>The BPXPIF plugin has a number of action hooks that allow theme and plugin developers to modify its behavior.\u003C\u002Fp>\n\u003Cp>This plugin requires BuddyPress minimum version 1.5 and has been tested up to BuddyPress version 14.4.0\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>English – default\u003C\u002Fli>\n\u003Cli>Spanish translation by \u003Ca href=\"http:\u002F\u002Fwww.webhostinghub.com\u002F\" rel=\"nofollow ugc\">Andrew Kurtis – WebHostingHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","With the BPXPIF plugin you can add XProfile fields of type Image without writing any custom code.",300,21110,96,6,"2026-01-08T18:15:00.000Z","3.2.1",[20,22,79,80,24],"image","image-field","https:\u002F\u002Falextheafrican.wordpress.com\u002F2012\u002F03\u002F10\u002Fhow-to-add-an-image-field-to-buddypress-extended-profile-fields\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-xprofile-image-field.3.1.0.zip",95,"2025-07-31 00:00:00",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":72,"downloaded":93,"rating":74,"num_ratings":34,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":18,"tags":97,"homepage":102,"download_link":103,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"visual-editor-font-size","Visual Editor Font Size","0.2","Nikolay Bachiyski","https:\u002F\u002Fprofiles.wordpress.org\u002Fnbachiyski\u002F","\u003Cp>Visual Editor Font Size allows you to change the font in the visual editor write field.\u003C\u002Fp>\n\u003Cp>Once you install a plugin, you will be able to increase and decrease the font size via a\u003Cbr \u002F>\nbox on the write screen.\u003C\u002Fp>\n\u003Cp>This setting doesn’t affect the font size your users will see. It affects only you.\u003C\u002Fp>\n","Allows you to change the font size of the visual editor",33064,"2013-01-24T22:56:00.000Z","3.5.2","2.8",[98,99,23,100,101],"font","font-size","visual-editor","write-field","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fvisual-editor-font-size\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvisual-editor-font-size.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":74,"num_ratings":114,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":18,"tags":118,"homepage":121,"download_link":122,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"bp2wp-full-sync","BuddyPress to WordPress Full Sync","0.3.7","Sergio De Falco","https:\u002F\u002Fprofiles.wordpress.org\u002Fsgr33n\u002F","\u003Cp>BuddyPress to WordPress Full Sync lets BuddyPress xProfile fields to synchronize with WordPress user fields with a user interface completely fused inside the BuddyPress profile fields management.\u003C\u002Fp>\n\u003Ch4>Let us know you care about this plugin\u003C\u002Fh4>\n\u003Cp>Please let us know how much you care about BuddyPress to WordPress Full Sync Plugin development rating it (5 stars).\u003C\u002Fp>\n","BuddyPress to WordPress Full Sync lets BuddyPress xProfile fields to synchronize with WordPress user fields",200,16106,12,"2021-06-16T08:01:00.000Z","5.7.15","4.0",[20,58,119,120,24],"profile","users","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp2wp-full-sync\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp2wp-full-sync.0.3.7.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":131,"num_ratings":133,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":18,"tags":137,"homepage":139,"download_link":140,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"buddypress-conditional-field-groups","BuddyPress Conditional Field Groups","0.1.0","Tanner Moushey","https:\u002F\u002Fprofiles.wordpress.org\u002Ftanner-m\u002F","\u003Cp>This is a simple plugin used to hide XProfile Field groups from different user types based on the user’s role. To hide a field group, go to Users -> Conditional Groups in the wp-admin and check appropriate box in the grid.\u003C\u002Fp>\n","Conditionally hide BuddyPress XProfile Field Groups based on user role.",80,5491,3,"2015-05-30T01:02:00.000Z","4.2.0","3.5.1",[20,138],"xprofile-fields","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-conditional-field-groups.zip",{"attackSurface":142,"codeSignals":226,"taintFlows":240,"riskAssessment":241,"analyzedAt":246},{"hooks":143,"ajaxHandlers":222,"restRoutes":223,"shortcodes":224,"cronEvents":225,"entryPointCount":28,"unprotectedCount":28},[144,150,154,158,163,168,171,175,179,182,184,187,190,193,195,200,204,209,212,215,218],{"type":145,"name":146,"callback":147,"file":148,"line":149},"filter","bp_xprofile_get_field_types","add_field_type","buddypress-xprofile-rich-text-field.php",56,{"type":145,"name":151,"callback":152,"priority":37,"file":148,"line":153},"bp_get_the_profile_field_edit_value","get_field_value",59,{"type":145,"name":155,"callback":156,"file":148,"line":157},"xprofile_field_types","register_field_type",64,{"type":145,"name":159,"callback":160,"priority":161,"file":148,"line":162},"xprofile_admin_field","preview_admin_field",9,67,{"type":164,"name":165,"callback":166,"file":148,"line":167},"action","bp_custom_profile_edit_fields_pre_visibility","edit_field",73,{"type":164,"name":169,"callback":166,"file":148,"line":170},"bp_custom_profile_edit_fields",78,{"type":164,"name":172,"callback":173,"file":148,"line":174},"admin_enqueue_scripts","enqueue_js",83,{"type":145,"name":176,"callback":177,"file":148,"line":178},"bp_xprofile_field_type_richtext_content","wptexturize",88,{"type":145,"name":176,"callback":180,"file":148,"line":181},"convert_smilies",89,{"type":145,"name":176,"callback":183,"file":148,"line":13},"convert_chars",{"type":145,"name":176,"callback":185,"file":148,"line":186},"wpautop",91,{"type":145,"name":176,"callback":188,"file":148,"line":189},"shortcode_unautop",92,{"type":145,"name":191,"callback":192,"priority":37,"file":148,"line":83},"xprofile_allowed_tags","allowed_tags",{"type":145,"name":194,"callback":152,"priority":37,"file":148,"line":50},"bp_get_the_profile_field_value",{"type":145,"name":196,"callback":197,"priority":198,"file":148,"line":199},"xprofile_get_field_data","get_field_data",15,101,{"type":164,"name":201,"callback":202,"file":148,"line":203},"wp_enqueue_scripts","enqueue_css",104,{"type":145,"name":205,"callback":206,"priority":207,"file":148,"line":208},"bps_field_validation_type","bps_field_compat",10,534,{"type":145,"name":210,"callback":206,"priority":207,"file":148,"line":211},"bps_field_html_type",535,{"type":145,"name":213,"callback":206,"priority":207,"file":148,"line":214},"bps_field_criteria_type",536,{"type":145,"name":216,"callback":206,"priority":207,"file":148,"line":217},"bps_field_query_type",537,{"type":164,"name":219,"callback":220,"file":148,"line":221},"bp_loaded","bp_xprofile_rich_text_field",588,[],[],[],[],{"dangerousFunctions":227,"sqlUsage":228,"outputEscaping":230,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":239},[],{"prepared":28,"raw":28,"locations":229},[],{"escaped":62,"rawEcho":133,"locations":231},[232,235,237],{"file":148,"line":233,"context":234},312,"raw output",{"file":148,"line":236,"context":234},352,{"file":148,"line":238,"context":234},385,[],[],{"summary":242,"deductions":243},"The \"bp-xprofile-rich-text-field\" plugin version 0.2.5 exhibits a generally good security posture based on the provided static analysis.  The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the attack surface, and crucially, there are no unprotected entry points.  Furthermore, the code demonstrates a strong commitment to secure coding practices by utilizing prepared statements for all SQL queries and not performing any file operations or external HTTP requests.  The vulnerability history is also a significant positive, with no recorded CVEs, indicating a likely stable and well-maintained codebase.  \n\nHowever, a notable concern arises from the output escaping. With only 25% of the total outputs properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities.  This means that user-supplied data, if not properly sanitized before being displayed, could be injected into the page and executed by a user's browser.  The lack of nonce and capability checks, while not directly indicated as a risk due to the limited attack surface, would be a significant concern if entry points were present.  The lack of taint analysis data is also an unknown, as it could reveal hidden vulnerabilities.  In conclusion, while the plugin benefits from a small attack surface and secure SQL handling, the significant lack of output escaping presents a clear and present danger that requires immediate attention.",[244],{"reason":245,"points":114},"Insufficient output escaping (25%)","2026-03-16T21:33:54.238Z",{"wat":248,"direct":257},{"assetPaths":249,"generatorPatterns":252,"scriptPaths":253,"versionParams":254},[250,251],"\u002Fwp-content\u002Fplugins\u002Fbp-xprofile-rich-text-field\u002Fbp-xprofile-rich-text-field.css","\u002Fwp-content\u002Fplugins\u002Fbp-xprofile-rich-text-field\u002Fbp-xprofile-rich-text-field.js",[],[251],[255,256],"\u002Fbp-xprofile-rich-text-field.css?ver=","\u002Fbp-xprofile-rich-text-field.js?ver=",{"cssClasses":258,"htmlComments":260,"htmlAttributes":262,"restEndpoints":264,"jsGlobals":265,"shortcodeOutput":268},[259],"xprofile-richtext-field",[261],"\u003C!-- Buddypress xProfile Rich Text Field -->",[263],"data-bp-xprofile-richtext-field",[],[266,267],"BP_XPROFILE_RICH_TEXT_FIELD_VERSION","BP_XPROFILE_RICH_TEXT_FIELD_ADD_MEDIA",[]]