[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fnaah7Lbc_VV_Y3luEbDOOMexn1QmwF53meiLX2D1sOg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":148,"fingerprints":268},"broadednet","BroadedNet","1.4","emuki","https:\u002F\u002Fprofiles.wordpress.org\u002Femuki\u002F","\u003Cp>BroadedNet is a network of blogs  for blog promotion and traffic. It takes your blog article from a single position and spreads it all over the network. Members generate huge traffic to their blogs without search engines and social media. BroadedNet is a free platform\u003Cbr \u002F>\nGo to \u003Ca href=\"http:\u002F\u002Fbroaded.net\" rel=\"nofollow ugc\">BroadedNet\u003C\u002Fa> and signup for your free account now\u003C\u002Fp>\n","Connect to Broaded.net, a network of blogs for promotion and traffic",10,3165,100,1,"2015-06-02T19:38:00.000Z","4.2.39","3.0","",[20,21,22,23,24],"blog","blog-community","blog-netwok","blog-promote","blog-traffic","http:\u002F\u002Fbroaded.net\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbroadednet.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},2,20,30,84,"2026-04-04T09:19:56.986Z",[39,57,83,104,127],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":11,"downloaded":47,"rating":28,"num_ratings":28,"last_updated":48,"tested_up_to":49,"requires_at_least":17,"requires_php":18,"tags":50,"homepage":55,"download_link":56,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"fake-traffic-blaster","Fake Traffic Blaster","0.1","Hesham Zebida","https:\u002F\u002Fprofiles.wordpress.org\u002Fhishaman\u002F","\u003Cp>The \u003Ca href=\"http:\u002F\u002Ffaketrafficblaster.com\u002F\" rel=\"nofollow ugc\">Fake Traffic Blaster\u003C\u002Fa> is a lightweight plugin that protects WordPress from fake traffic by redirecting suspicious visitors away from your blog.\u003C\u002Fp>\n\u003Ch4>What is Fake Traffic\u003C\u002Fh4>\n\u003Cp>Fake traffic is simply a simulation, it is a black hat technique that allow you to generate traffic to your blog, but this traffic is not real, This means it is generating by a bot or a software, no humans are involved, thus no conversion. The reason is to game the statistics, and show that you are getting a lot of traffic.\u003C\u002Fp>\n\u003Cp>So, We hope you understand the fact that Fake Traffic is something you really do not want to get on your blog.\u003C\u002Fp>\n\u003Ch4>What type of Fake Traffic we are talking about here?\u003C\u002Fh4>\n\u003Cp>Black hat tools used in such attacks usually use OLEs\u002FOCX objects to enable certain functionality in their tools. In Windows that is Internet Explorer APIs. The API will make http requests look like as if they were coming from an IE browser.\u003C\u002Fp>\n\u003Ch4>Why Would Someone Send Your Blog Fake Traffic?\u003C\u002Fh4>\n\u003Cp>This could be a serious attack from one of your competitors who wants to hurt your blog reputation, of course if this happened to you, then no doubt you would like to know who is this competitor! But it is almost impossible to know, so do not wast your time on this, and focus on solving the problem and protecting your blog.\u003C\u002Fp>\n\u003Cp>Read the story behind \u003Ca href=\"http:\u002F\u002Fwww.famousbloggers.net\u002Ffake-traffic.html\" rel=\"nofollow ugc\">Fake Traffic\u003C\u002Fa> and th creations of the plugin.\u003C\u002Fp>\n\u003Ch4>How Fake Traffic Can Hurt Your Blog?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Hijack your blog ranking in search engine.\u003C\u002Fli>\n\u003Cli>Hurt your blog stats being showing fake results.\u003C\u002Fli>\n\u003Cli>Disable your blog by exceed your hosting bandwidth quota.\u003C\u002Fli>\n\u003Cli>Disable your shared hosting account for extensive use of CPU resources.\u003C\u002Fli>\n\u003Cli>Get your Google AdSense account suspended (Read: \u003Ca href=\"http:\u002F\u002Fwww.google.com\u002Fads\u002Fadtrafficquality\u002F\" rel=\"nofollow ugc\">Ad Traffic Quality Resource Center\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Affect your business reputation and integrity.\u003C\u002Fli>\n\u003Cli>And, more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>So, it is a good idea to install the Fake Traffic Blaster plugin, and protect your blog from such attacks.\u003C\u002Fp>\n\u003Cp>This plugin is coded by \u003Ca href=\"http:\u002F\u002Fwww.famousbloggers.net\u002F\" rel=\"nofollow ugc\">Famous Bloggers\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fbloggersnetwork.net\u002F\" rel=\"nofollow ugc\">Bloggers Network\u003C\u002Fa>.\u003C\u002Fp>\n","Protect WordPress blogs from fake traffic by redirecting suspicious visitors away from your blog.",4857,"2012-02-21T14:39:00.000Z","3.3.2",[24,51,52,53,54],"fake-traffic","seo","traffic","web-traffic","http:\u002F\u002Ffaketrafficblaster.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffake-traffic-blaster.0.1.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":78,"download_link":79,"security_score":80,"vuln_count":81,"unpatched_count":28,"last_vuln_date":82,"fetched_at":30},"so-widgets-bundle","SiteOrigin Widgets Bundle","1.71.0","Greg - SiteOrigin","https:\u002F\u002Fprofiles.wordpress.org\u002Fgpriday\u002F","\u003Cp>The SiteOrigin Widgets Bundle gives you all the elements you need to build modern, responsive, and engaging website pages. Using the Widgets Bundle, you can quickly and effortlessly add buttons, sliders, heroes, maps, images, carousels, features, icons, and so much more.\u003C\u002Fp>\n\u003Cp>SiteOrigin Widgets are ready to be used \u003Cstrong>anywhere\u003C\u002Fstrong>, in \u003Ca href=\"https:\u002F\u002Fsiteorigin.com\u002Fpage-builder\u002F\" rel=\"nofollow ugc\">Page Builder by SiteOrigin\u003C\u002Fa>, in the Block Editor or your theme’s widget areas. The Widgets Bundle is even compatible with other popular page-building plugins.\u003C\u002Fp>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F102103379\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Cp>Our collection is growing, and here are some of the powerful widgets included so far:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Accordion\u003C\u002Fstrong> Efficiently display content in expandable sections, maximizing space for improved organization.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Anything Carousel\u003C\u002Fstrong> Display images, text, or any content in a highly customizable and responsive carousel slider.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Author Box\u003C\u002Fstrong> Display author information, including avatar, name, bio, and post links in a customizable box.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blog\u003C\u002Fstrong> Showcase blog content in personalized list or grid layouts with flexible design and display settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Button\u003C\u002Fstrong> Create a custom button with flexible styling, icon support, and click tracking functionality.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Button Grid\u003C\u002Fstrong> Add multiple buttons in one go, customize individually, and present them in a neat grid layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Contact Form\u003C\u002Fstrong> Add a contact form with custom fields, design options, spam protection, and email notifications.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Call To Action\u003C\u002Fstrong> Prompt visitors to take action with a customizable title, subtitle, button, and design settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Editor\u003C\u002Fstrong> Insert and customize content with a rich text editor offering extensive formatting options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Features\u003C\u002Fstrong> Showcase features with icons, titles, text, and links in a customizable grid layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google Maps\u003C\u002Fstrong> Embed a customizable Google Map with markers, directions, styling options, and interactive elements.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Headline\u003C\u002Fstrong> Engage visitors with a prominent, stylish headline and optional divider and sub-headline to convey key messages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hero Image\u003C\u002Fstrong> Build an impressive hero image section with custom content, buttons, background image, color, and video.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Icon\u003C\u002Fstrong> Display a customizable icon with color, size, alignment, and optional link settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image\u003C\u002Fstrong> Add a responsive image with custom dimensions, positioning, caption, link, and styling options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image Grid\u003C\u002Fstrong> Showcase images in a responsive grid layout with custom size, spacing, alignment, and captions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Image Slider\u003C\u002Fstrong> Create a responsive slider with customizable image and video frames, navigation, and appearance settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Layout Slider\u003C\u002Fstrong> Design responsive slider frames with unique layouts, backgrounds, and content built with Page Builder.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lottie Player\u003C\u002Fstrong> Bring your content to life using interactive Lottie animations with personalized settings and links.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post Carousel\u003C\u002Fstrong> Display blog posts or custom post types in a responsive, customizable carousel layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Price Table\u003C\u002Fstrong> Display pricing plans in a professional table format with custom columns, features, and design.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recent Posts\u003C\u002Fstrong> Drive traffic to your latest content with a visually appealing, fully customizable recent posts showcase.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simple Masonry Layout\u003C\u002Fstrong> Display images in an attractive masonry grid with adjustable columns, gutters, and optional captions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Social Media Buttons\u003C\u002Fstrong> Add social media buttons to your site with personalized icons, colors, and design settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tabs\u003C\u002Fstrong> Create tabbed content panels with customizable titles, content, initial tab, and design settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomy\u003C\u002Fstrong> Automatically display the taxonomies of the current post with customizable labels, colors, and link settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Testimonials\u003C\u002Fstrong> Feature testimonials from satisfied customers with tailored layouts, images, text, colors, and mobile compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Video Player\u003C\u002Fstrong> Embed self-hosted or externally hosted videos with a customizable player, controls, and responsive sizing.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Ready to Be Used Anywhere\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Page Builder by SiteOrigin:\u003C\u002Fstrong> Insert widgets in Page Builder by SiteOrigin in either the Classic Editor or Page Builder Layout Block in the Block Editor.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Block Editor:\u003C\u002Fstrong> The Widgets Bundle is 100% Block Editor compatible. Insert widgets using the SiteOrigin Widgets Block featuring a live widget search form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme and Plugin Widget Areas:\u003C\u002Fstrong> Insert widgets in any theme or plugin widget area.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>In Other Popular Page Builder Plugins:\u003C\u002Fstrong> Insert widgets in Elementor or Beaver Builder.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Built for Speed\u003C\u002Fh4>\n\u003Cp>We carefully built each widget for the best possible page size and load time. The Widgets Bundle is perfectly compatible with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fautoptimize\u002F\" rel=\"ugc\">Autoptimize\u003C\u002Fa> and all other major performance plugins.\u003C\u002Fp>\n\u003Ch4>SEO Optimized\u003C\u002Fh4>\n\u003Cp>The Widgets Bundle uses modern SEO best practices and seamlessly integrates with all major SEO plugins.\u003C\u002Fp>\n\u003Ch4>Accessibility Ready\u003C\u002Fh4>\n\u003Cp>The Widgets Bundle is accessibility-ready. Tab through all form fields and settings, make changes without using a mouse.\u003C\u002Fp>\n\u003Ch4>Actively Developed\u003C\u002Fh4>\n\u003Cp>SiteOrigin has been creating magical tools for your WordPress website since 2011. We actively develop the Widgets Bundle with updates released several times a month, including new features and fixes as required. View our Widgets Bundle work on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsiteorigin\u002Fso-widgets-bundle\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Create Custom Widgets\u003C\u002Fh4>\n\u003Cp>Access a huge array of features and save time by developing custom widgets for your theme or plugin on the Widgets Bundle Framework. Read more in our extensive \u003Ca href=\"https:\u002F\u002Fsiteorigin.com\u002Fdocs\u002Fwidgets-bundle\u002F\" rel=\"nofollow ugc\">developer documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsiteorigin.com\u002Fwidgets-bundle\u002Fgetting-started\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> is available on SiteOrigin.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Free support is available on the \u003Ca href=\"https:\u002F\u002Fsiteorigin.com\u002Fthread\u002F\" rel=\"nofollow ugc\">SiteOrigin support forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>SiteOrigin Premium\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsiteorigin.com\u002Fdownloads\u002Fpremium\u002F\" rel=\"nofollow ugc\">SiteOrigin Premium\u003C\u002Fa> enhances the Widgets Bundle with a vast array of additional features and settings. Take your layouts to the next level with SiteOrigin Premium addons.\u003C\u002Fp>\n\u003Cp>SiteOrigin Premium includes access to our professional email support service, perfect for those times when you need fast and effective technical support. We’re standing by to assist you in any way we can.\u003C\u002Fp>\n","Essential elements for modern websites. Add buttons, sliders, heroes, maps, images, carousels, features, icons, more. Create dynamic pages easily.",400000,46570443,98,134,"2026-02-13T17:16:00.000Z","6.9.4","4.2","7.0.0",[74,20,75,76,77],"blocks","contact-form","slider","widgets","https:\u002F\u002Fsiteorigin.com\u002Fwidgets-bundle\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fso-widgets-bundle.1.71.0.zip",95,11,"2026-02-17 20:23:18",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":93,"num_ratings":94,"last_updated":95,"tested_up_to":70,"requires_at_least":96,"requires_php":18,"tags":97,"homepage":101,"download_link":102,"security_score":13,"vuln_count":14,"unpatched_count":28,"last_vuln_date":103,"fetched_at":30},"metricool","Metricool","1.26","juan.pablo.tejela","https:\u002F\u002Fprofiles.wordpress.org\u002Fjuanpablotejela\u002F","\u003Cp>This plugin allows you to connect your blog or web based on WordPress with Metricool. Metricool is a tool that provides metrics and analytics about your blog and your social profiles. Using Metricool you can schedule your tweets or your posts in Facebook.\u003C\u002Fp>\n\u003Cp>This plugin installs a Javascript tracking code in the footer of your public pages. This code registers the pages viewed by your visitors in Metricool. If you want to interrupt the conexion between your blog and Metricool, you can disable the plugin or remove the Metricool identifier configured in the plugin settings window.\u003C\u002Fp>\n\u003Cp>To use this plugin it is required to be a registered user of Metricool (http:\u002F\u002Fmetricool.com\u002F).\u003C\u002Fp>\n\u003Cp>You can follow us on Twitter: http:\u002F\u002Ftwitter.com\u002Fmetricool\u002F\u003C\u002Fp>\n","Metricool is the first tool designed to measure #Blog impact and #SocialMedia activity.",80000,780312,78,7,"2026-02-02T15:17:00.000Z","3.6",[98,20,84,99,100],"analytics","metrics","tracking","https:\u002F\u002Fmetricool.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmetricool.zip","2022-12-20 00:00:00",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":114,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":18,"tags":119,"homepage":124,"download_link":125,"security_score":36,"vuln_count":33,"unpatched_count":28,"last_vuln_date":126,"fetched_at":30},"all-in-one-favicon","All In One Favicon","4.8","Garrett Grimm","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrimmdude\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fappsumo.com\u002Fsearch?tags=wordpress&utm_source=sumo&utm_medium=wp-widget&utm_campaign=all-in-one-favicon\" rel=\"nofollow ugc\">Check out the latest WordPress deals for your site.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>All In One Favicon adds favicons to your site and your admin pages.\u003Cbr \u002F>\nYou can either use favicons you already uploaded or use the builtin upload mechanism to upload a favicon to your WordPress installation.\u003C\u002Fp>\n\u003Cp>All three favicon types are supported – .ico, .png and .gif (may be animated)\u003Cbr \u002F>\nAlso, Apple Touch Icons are supported.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Localization\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Bahasa Indonesia (\u003Ccode>id_ID\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fmovableid.com\u002F\" rel=\"nofollow ugc\">EKO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Czech (\u003Ccode>cs_CZ\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.neteyes.cz\" rel=\"nofollow ugc\">Neteyes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Danish (\u003Ccode>da_DK\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwordpress.blogos.dk\u002F\" rel=\"nofollow ugc\">GeorgWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Dutch (\u003Ccode>nl_NL\u003C\u002Fcode>) by Pieter Carette\u003C\u002Fli>\n\u003Cli>English (\u003Ccode>en_EN\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.techotronic.de\u002F\" rel=\"nofollow ugc\">Arne Franken\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>French (\u003Ccode>fr_FR\u003C\u002Fcode>) by Christophe Guilloux\u003C\u002Fli>\n\u003Cli>German (\u003Ccode>de_DE\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.techotronic.de\u002F\" rel=\"nofollow ugc\">Arne Franken\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Hebrew (\u003Ccode>he_IL\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.atar4u.com\" rel=\"nofollow ugc\">Ahrale\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian (\u003Ccode>it_IT\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.valeriovendrame.it\u002F\" rel=\"nofollow ugc\">Valerio Vendrame\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Polish (\u003Ccode>pl_PL\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.facebook.com\u002Fpiniu69\u002F\" rel=\"nofollow ugc\">Piotr Czarnecki\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Portuguese (\u003Ccode>pt_PT\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.miguelpatricio.com\u002F\" rel=\"nofollow ugc\">Miguel Ângelo Patricio\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Serbian (\u003Ccode>sr_RS\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fdralvaro.com\u002F\" rel=\"nofollow ugc\">Balkanboy Media team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Simplified Chinese (\u003Ccode>zh_CN\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fsparanoid.com\u002F\" rel=\"nofollow ugc\">Tunghsiao Liu\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Spanish (\u003Ccode>es_ES\u003C\u002Fcode>) by Eddy Ernesto Ríos\u003C\u002Fli>\n\u003Cli>Slovak (\u003Ccode>sk_SK\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.brozman.sk\u002Fblog\" rel=\"nofollow ugc\">Viliam Brozman\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Swedish (\u003Ccode>sv_SE\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Fwww.theindiaexperience.se\u002F\" rel=\"nofollow ugc\">Christian Nilsson\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Turkish (\u003Ccode>tr_TR\u003C\u002Fcode>) by \u003Ca href=\"http:\u002F\u002Framerta.com\" rel=\"nofollow ugc\">Ömer Faruk Karabulut\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Is your native language missing?\u003Cbr \u002F>\nTranslating the plugin is easy if you understand english and are fluent in another language.\u003Cbr \u002F>\nI described in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fall-in-one-favicon\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa> how the translation works.\u003C\u002Fp>\n","Easily add a Favicon to your site and the WordPress admin pages. Complete with upload functionality. Supports all three Favicon types (ico,png,gif).",70000,1495524,90,82,"2023-08-08T02:27:00.000Z","6.2.9","2.8",[120,20,121,122,123],"admin","favicon","image","theme","http:\u002F\u002Fwww.techotronic.de\u002Fplugins\u002Fall-in-one-favicon\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fall-in-one-favicon.4.8.zip","2023-02-23 00:00:00",{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":135,"downloaded":136,"rating":137,"num_ratings":138,"last_updated":139,"tested_up_to":140,"requires_at_least":17,"requires_php":18,"tags":141,"homepage":144,"download_link":145,"security_score":146,"vuln_count":14,"unpatched_count":28,"last_vuln_date":147,"fetched_at":30},"blogger-importer","Blogger Importer","0.9.3","Samuel Wood (Otto)","https:\u002F\u002Fprofiles.wordpress.org\u002Fotto42\u002F","\u003Cp>The Blogger Importer imports your blog data from a Google Blogger site into a WordPress.org installation.\u003C\u002Fp>\n\u003Ch4>Items imported\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Categories\u003C\u002Fli>\n\u003Cli>Posts (published, scheduled and draft)\u003C\u002Fli>\n\u003Cli>Comments (not spam)\u003C\u002Fli>\n\u003Cli>Images\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Items not imported\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Pages\u003C\u002Fli>\n\u003Cli>Widgets\u002FWidget Data\u003C\u002Fli>\n\u003Cli>Templates\u002FTheme\u003C\u002Fli>\n\u003Cli>Comment and author Avatars\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Reference\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fwww.simplepie.org\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The following were referenced for implementing the images and links\u003C\u002Fp>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fremote-images-grabber\u002F\u003C\u002Fli>\n\u003Cli>http:\u002F\u002Fnotions.okuda.ca\u002Fwordpress-plugins\u002Fblogger-image-import\u002F\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcache-images\u002F\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftumblr-importer\u002F\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F14525\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fwpengineer.com\u002F1735\u002Feasier-better-solutions-to-get-pictures-on-your-posts\u002F\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fweb.archive.org\u002Fweb\u002F20211121020918\u002Fhttp:\u002F\u002Fwww.velvetblues.com\u002Fweb-development-blog\u002Fwordpress-plugin-update-urls\u002F\u003C\u002Fli>\n\u003Cli>http:\u002F\u002Fwordpress.stackexchange.com\u002Fquestions\u002F\u002Fmedia-sideload-image-file-name (not working)\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fcode.tutsplus.com\u002Fa-guide-to-the-wordpress-http-api-the-basics–wp-25125t\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Known Issues\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Some users have reported that their IFrames are stripped out of the post content.\u003C\u002Fli>\n\u003Cli>Requests for better performance of larger transfers and tranfers of images\u003C\u002Fli>\n\u003Cli>Review of behavior when it re-imports, partiularly are the counts correct\u003C\u002Fli>\n\u003Cli>Review using get_posts or get_comments with the appropriate parameters to get the counts and exists instead of using SQL\u003C\u002Fli>\n\u003Cli>Incorrect notice, PHP Notice: The data could not be converted to UTF-8. You MUST have either the iconv or mbstring extension installed. This occurs even when Iconv is installed, could be related to Blogger reporting 0 comments\u003C\u002Fli>\n\u003Cli>When the importer is running it’s not possible to stop it using the stop button\u003C\u002Fli>\n\u003Cli>Blogger’s count of comments include those not linked to a post e.g. the post has been deleted.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Filters and Actions\u003C\u002Fh3>\n\u003Cp>These actions and filters have been added so that you can extend the functionality of the importer without needing to modify the code.\u003C\u002Fp>\n\u003Cp>Action – import_start – This is run when the import starts processing the records for a new blog\u003C\u002Fp>\n\u003Cp>Action – import_done – This is run when the import finishes processing the records for a blog.\u003C\u002Fp>\n\u003Cp>Filter – blogger_importer_congrats – Passes the list of options shown to the user when the blog is complete, options can be added or removed.\u003C\u002Fp>\n","Imports posts, images, comments, and categories (blogger tags) from a Blogger blog then migrates authors to WordPress users.",60000,2457171,62,57,"2024-10-21T12:11:00.000Z","6.6.5",[142,143],"blogger","importer","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fblogger-importer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblogger-importer.0.9.3.zip",92,"2013-10-08 00:00:00",{"attackSurface":149,"codeSignals":161,"taintFlows":223,"riskAssessment":250,"analyzedAt":267},{"hooks":150,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":28,"unprotectedCount":28},[151],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","widgets_init","anonymous","broadedNET.php",207,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":166,"outputEscaping":168,"fileOperations":28,"externalRequests":33,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":222},[163],{"fn":164,"file":155,"line":156,"context":165},"create_function","add_action('widgets_init', create_function('', 'return register_widget(\"BroadedNet\");'));",{"prepared":28,"raw":28,"locations":167},[],{"escaped":14,"rawEcho":169,"locations":170},33,[171,174,176,177,178,180,182,183,184,185,187,189,190,192,194,195,196,197,199,200,201,202,204,205,207,208,209,211,212,214,216,218,220],{"file":155,"line":172,"context":173},48,"raw output",{"file":155,"line":175,"context":173},49,{"file":155,"line":175,"context":173},{"file":155,"line":175,"context":173},{"file":155,"line":179,"context":173},52,{"file":155,"line":181,"context":173},53,{"file":155,"line":181,"context":173},{"file":155,"line":181,"context":173},{"file":155,"line":138,"context":173},{"file":155,"line":186,"context":173},58,{"file":155,"line":188,"context":173},73,{"file":155,"line":115,"context":173},{"file":155,"line":191,"context":173},83,{"file":155,"line":193,"context":173},94,{"file":155,"line":80,"context":173},{"file":155,"line":80,"context":173},{"file":155,"line":80,"context":173},{"file":155,"line":198,"context":173},99,{"file":155,"line":13,"context":173},{"file":155,"line":13,"context":173},{"file":155,"line":13,"context":173},{"file":155,"line":203,"context":173},103,{"file":155,"line":203,"context":173},{"file":155,"line":206,"context":173},106,{"file":155,"line":206,"context":173},{"file":155,"line":206,"context":173},{"file":155,"line":210,"context":173},113,{"file":155,"line":210,"context":173},{"file":155,"line":213,"context":173},166,{"file":155,"line":215,"context":173},169,{"file":155,"line":217,"context":173},195,{"file":155,"line":219,"context":173},199,{"file":155,"line":221,"context":173},202,[],[224,241],{"entryPoint":225,"graph":226,"unsanitizedCount":14,"severity":240},"widget (broadedNET.php:152)",{"nodes":227,"edges":237},[228,232],{"id":229,"type":230,"label":231,"file":155,"line":219},"n0","source","$_SERVER['HTTP_HOST']",{"id":233,"type":234,"label":235,"file":155,"line":219,"wp_function":236},"n1","sink","echo() [XSS]","echo",[238],{"from":229,"to":233,"sanitized":239},false,"medium",{"entryPoint":242,"graph":243,"unsanitizedCount":14,"severity":249},"\u003CbroadedNET> (broadedNET.php:0)",{"nodes":244,"edges":247},[245,246],{"id":229,"type":230,"label":231,"file":155,"line":219},{"id":233,"type":234,"label":235,"file":155,"line":219,"wp_function":236},[248],{"from":229,"to":233,"sanitized":239},"low",{"summary":251,"deductions":252},"The \"broadednet\" plugin v1.4 presents a mixed security posture. On the positive side, it demonstrates strong adherence to secure coding practices regarding SQL queries, utilizing prepared statements exclusively, and it has no recorded vulnerability history, indicating a generally stable and well-maintained codebase. The attack surface is also zero, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed, which significantly reduces the potential for external exploitation.\n\nHowever, there are significant concerns. The presence of the `create_function` dangerous function is a major red flag, as it is deprecated and can lead to severe security vulnerabilities if used improperly. Furthermore, the exceptionally low percentage (3%) of properly escaped output suggests a high likelihood of cross-site scripting (XSS) vulnerabilities. The taint analysis revealing two flows with unsanitized paths, even if not classified as critical or high severity in this report, warrants attention as it points to potential data leakage or manipulation risks. The complete absence of nonce checks and capability checks on any potential entry points, combined with a lack of output escaping, significantly elevates the risk of various attacks, particularly XSS and unauthorized actions if any entry points were to be discovered or introduced in future versions.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and secure SQL handling, the identified dangerous function, widespread output unescaping, and lack of authorization checks on potential (though currently zero) entry points create notable security weaknesses. These issues could be exploited, especially the XSS risks due to insufficient output escaping.",[253,256,259,262,265],{"reason":254,"points":255},"Dangerous function create_function used",15,{"reason":257,"points":258},"Very low percentage of output properly escaped",12,{"reason":260,"points":261},"Taint flow with unsanitized paths",8,{"reason":263,"points":264},"No nonce checks",5,{"reason":266,"points":264},"No capability checks","2026-03-17T01:33:04.544Z",{"wat":269,"direct":275},{"assetPaths":270,"generatorPatterns":272,"scriptPaths":273,"versionParams":274},[271],"\u002Fwp-content\u002Fplugins\u002Fbroadednet\u002FbroadedNET.php",[],[],[],{"cssClasses":276,"htmlComments":277,"htmlAttributes":278,"restEndpoints":282,"jsGlobals":283,"shortcodeOutput":284},[5],[],[279,280,281],"id=\"broaded.net\u002Fcatwidget.php\"","name=\"broaded.net\u002Fcatwidget.php\"","value=\"broaded.net\u002Fcatwidget.php\"",[],[],[]]