[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6Ll9OjRx_F5G7ZU6i53o1lEEUPP7fkEHA6mAx57ADkg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":129,"fingerprints":217},"buddypress-foaf","Buddypress Friend of a Friend (FOAF)","2.7","quan_flo","https:\u002F\u002Fprofiles.wordpress.org\u002Fquan_flo\u002F","\u003Cp>\u003Cstrong>Increase communication and networking at your buddypress based social network.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin includes a new block inside each user profile page and includes a “Friend of a Friend (FOAF)” display.\u003Cbr \u002F>\nIf you have buddypress friends enabled your users will have friends. Their friends also have friends and these friends again have friends.\u003Cbr \u002F>\nSo there are “social paths” inside your members friends lists. This Plugin visualizes the nearest path to the user whose profile is visited by another user.\u003Cbr \u002F>\nThe world is small and you’ll see that most users know each other – because their friends are friends…\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>New block inside buddypress profile page (automatically integrated) that tells you whose friend the visited user is\u003C\u002Fli>\n\u003Cli>Shortcode: Create a page using the shortcode [buddypressfoaf_show_potential_friends] that shows excerps of friends of your friends that are not yet your friends\u003C\u002Fli>\n\u003Cli>Widget: Show a random user (friend’s friend or random user if you do not have friends)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please take a look at the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbuddypress-foaf\u002Fscreenshots\u002F\" title=\"Screenshots\" rel=\"ugc\">screenshot section\u003C\u002Fa> for some examples!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>More about me and my plugins\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Since the year 1999 I do administration, customizing and programming for several forums, communities and social networks. In the year 2013 I switched from another PHP framework to WordPress.\u003Cbr \u002F>\nBecause not all plugins I’d like to have exist already I wrote some own plugins and I think I’ll continue to do so.\u003C\u002Fp>\n\u003Cp>If you have the scope at forums or social networks my other modules might also be interesting for you. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch.php?q=quan_flo\" title=\"ifs-net \u002F quan_flo WordPress Plugins\" rel=\"ugc\">Just take a look at my WordPress Profile to see all my Plugins.\u003C\u002Fa> Use them and if my work helps you to save time, earn money or just makes you happy feel free to donate – Thanks. The donation link can be found at the right sidebar next to this text.\u003C\u002Fp>\n","This plugin includes a new block inside each user profile page and includes a \"Friend of a Friend (FOAF)\" display.",20,17250,94,9,"2016-11-07T17:30:00.000Z","4.7.32","3.0","",[20,21,22,23,24],"buddy","buddypress","foaf","friends","social","http:\u002F\u002Fifs-net.de","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-foaf.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},5,290,30,84,"2026-04-04T14:18:55.049Z",[39,61,79,96,112],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":28,"last_vuln_date":60,"fetched_at":30},"buddypress-extended-friendship-request","BuddyPress Extended Friendship Request","1.2.2","Brajesh Singh","https:\u002F\u002Fprofiles.wordpress.org\u002Fsbrajesh\u002F","\u003Cp>BuddyPress Extended Friendship Request plugin allows users to send a personalized message with the friendship request on BuddyPress based Social Networks.\u003C\u002Fp>\n\u003Ch4>How it works:-\u003C\u002Fh4>\n\u003Cp>When a users clicks on Add friend, It shows him\u002Fher a small popup to enter some personalized message.\u003Cbr \u002F>\nThe user can enter a personalized message and click on the Send request to send the request.\u003C\u002Fp>\n\u003Ch4>Credit\u003C\u002Fh4>\n\u003Cp>Version 1.2+ uses \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsandywalker\u002Fwebui-popover\" rel=\"nofollow ugc\">WebUI-Popover\u003C\u002Fa> by Sandy Duan.\u003C\u002Fp>\n\u003Ch4>More Plugins\u003C\u002Fh4>\n\u003Cp>We love BuddyPress and we have created 100+ BuddyPress plugins.\u003Cbr \u002F>\nPlease take a look at our\u003Cbr \u002F>\n 1. \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fplugins\u002F\" title=\"Best BuddyPress Plugins\" rel=\"nofollow ugc\">Free BuddyPress Plugins\u003C\u002Fa>\u003Cbr \u002F>\n 1. \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fcategory\u002Fbuddypress-premium-plugins\u002F\" title=\"Best BuddyPress Premium Plugins\" rel=\"nofollow ugc\">Premium BuddyPress plugins\u003C\u002Fa>\u003Cbr \u002F>\n We hope that it will help you take your BuddyPress network to the next level.\u003C\u002Fp>\n\u003Ch4>BuddyPress Custom development & Maintenance Service\u003C\u002Fh4>\n\u003Cp>If you need any assistance with setting up or adding new features to BuddyPress or this plugin, Our team is available for hire.\u003Cbr \u002F>\nPlease use our \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fbuddypress-custom-plugin-development-service\u002F\" rel=\"nofollow ugc\">BuddyPress Development Services\u003C\u002Fa> for any custom development needs.\u003Cbr \u002F>\nWe appreciate your thoughts and suggestions. Please leave a comment on \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fbuddypress\u002Fintroducing-buddypress-extended-friendship-request-plugin\u002F\" rel=\"nofollow ugc\">BuddyDev\u003C\u002Fa>\u003C\u002Fp>\n","BuddyPress Extended Friendship Request plugin allows users to send a personalized message with the friendship requests.",300,37385,96,10,"2025-08-16T11:24:00.000Z","6.8.5","5.0",[21,23,55,24],"friendship","https:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fbp-extended-friendship-request\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-extended-friendship-request.1.2.2.zip",100,1,"2013-07-03 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":58,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":18,"tags":75,"homepage":18,"download_link":78,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"mutual-buddies","Mutual Buddies","2.1.1","Paresh Radadiya","https:\u002F\u002Fprofiles.wordpress.org\u002Fpareshradadiya-1\u002F","\u003Cp>Are you looking for BuddyPress mutual friends? Mutual Buddies display a list of mutual friends on a BuddyPress member’s profile and members list\u003C\u002Fp>\n\u003Cp>You can see which friends you have in common in your friends network. Like when you go to a friends profile you can see which persons your both friends with (common friends). Just like on Facebook. This plugin add a new component inside members’s profile page and list all mutual friends.\u003C\u002Fp>\n\u003Cp>Mutual friends are the people who are friends with both you and the person whose profile you’re viewing. For instance, if you’re friends with Mike, and James is friends with Mike, then Mike will be shown as a mutual friend when you’re viewing James’s profile.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Mutual Buddies has been translated into the following languages:\u003C\u002Fp>\n\u003Col>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French by \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Ffxbenard\u002F\" rel=\"nofollow ugc\">fxbenard\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Deutsch by \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fper4mance\" rel=\"nofollow ugc\">per4mance\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Russian by \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fairathalitov\" rel=\"nofollow ugc\">Airat Halitov\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian by Sebastiano Pistore\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>More Information\u003C\u002Fh4>\n\u003Cp>Visit the \u003Ca href=\"http:\u002F\u002Fpareshradadiya.github.io\u002FMutual-Buddies\u002F\" rel=\"nofollow ugc\">Mutual Buddies website\u003C\u002Fa> for documentation, and information on project.\u003C\u002Fp>\n","Mutual buddies displays BuddyPress mutual friends of the logged in user & the user whose profile the user is looking at on the Profile page.",70,15281,7,"2017-07-22T05:41:00.000Z","4.8.28","4.0",[21,76,23,77,24],"facebook","mutual-friends","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmutual-buddies.2.1.1.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":50,"downloaded":87,"rating":28,"num_ratings":28,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":18,"tags":91,"homepage":94,"download_link":95,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"bp-mutual-friends","BP Mutual Friends","1.0.0","SuitePlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fsuiteplugins\u002F","\u003Cp>List users’ mutual friends in BuddyPress easily. One click install and setup.\u003C\u002Fp>\n","List users' mutual friends in BuddyPress easily. One click install and setup.",2664,"2015-08-25T22:46:00.000Z","4.3.34","3.2",[21,92,23,77,93],"buddypress-friends","socialnetwork","http:\u002F\u002Fsuiteplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-mutual-friends.zip",{"slug":92,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":50,"downloaded":103,"rating":28,"num_ratings":28,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":18,"tags":107,"homepage":110,"download_link":111,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"Buddypress Friends","1.2","Adam Nowak","https:\u002F\u002Fprofiles.wordpress.org\u002Fadam320\u002F","\u003Cp>This plugin adds a widget to Buddypress that displays the friends for the current user that is logged in.  They are displayed as Avatar images or as a list of your friends.  You can easily resize the avatar images and control how many of your friends display in the widget.  This plugin will be expanding to include a lot more features including sorting friends in different manners.\u003C\u002Fp>\n","This plugin adds a widget to Buddypress that displays the friends for the current user that is logged in.",16303,"2011-12-10T21:25:00.000Z","3.2.1","2.9",[108,21,92,23,109],"avatars","social-networking","http:\u002F\u002Fhyperspatial.com\u002Fwordpress-development\u002Fplugins\u002Fbuddypress-friends","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-friends.1.2.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":18,"short_description":118,"active_installs":28,"downloaded":119,"rating":28,"num_ratings":28,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":18,"download_link":128,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"personalized-activity-for-buddypress-frfwa","Personalized Activity for Buddypress – Friends, Following, Admin","1.0.3","crossbow6","https:\u002F\u002Fprofiles.wordpress.org\u002Fcrossbow6\u002F","Makes Buddypress Activity Personalized For Users, by Including Activity Feeds Only From Users They Are Friends With, Users They Are Following And Administrator of Your Community.",906,"2021-11-13T04:43:00.000Z","5.8.13","5.5",[21,124,125,126,127],"community","friends-only-activity","personalized-activity","social-network","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersonalized-activity-for-buddypress-frfwa.zip",{"attackSurface":130,"codeSignals":153,"taintFlows":203,"riskAssessment":204,"analyzedAt":216},{"hooks":131,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":152,"entryPointCount":59,"unprotectedCount":28},[132,138,142],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","init","buddypressfoaf_load_textdomain","buddypress-foaf.php",16,{"type":133,"name":139,"callback":140,"file":136,"line":141},"bp_before_member_header","buddypressfoaf_action",25,{"type":133,"name":143,"callback":144,"file":136,"line":145},"widgets_init","buddypressfoaf_widget_random",222,[],[],[149],{"tag":150,"callback":150,"file":136,"line":151},"buddypressfoaf_show_potential_friends",26,[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":166,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":202},[],{"prepared":156,"raw":157,"locations":158},2,3,[159,162,164],{"file":136,"line":160,"context":161},186,"$wpdb->get_results() with variable interpolation",{"file":136,"line":163,"context":161},204,{"file":136,"line":165,"context":161},295,{"escaped":28,"rawEcho":167,"locations":168},19,[169,172,174,176,178,180,182,184,186,188,189,190,192,194,195,196,198,200,201],{"file":136,"line":170,"context":171},106,"raw output",{"file":136,"line":173,"context":171},246,{"file":136,"line":175,"context":171},250,{"file":136,"line":177,"context":171},254,{"file":136,"line":179,"context":171},320,{"file":136,"line":181,"context":171},324,{"file":136,"line":183,"context":171},326,{"file":136,"line":185,"context":171},351,{"file":136,"line":187,"context":171},352,{"file":136,"line":187,"context":171},{"file":136,"line":187,"context":171},{"file":136,"line":191,"context":171},356,{"file":136,"line":193,"context":171},357,{"file":136,"line":193,"context":171},{"file":136,"line":193,"context":171},{"file":136,"line":197,"context":171},361,{"file":136,"line":199,"context":171},362,{"file":136,"line":199,"context":171},{"file":136,"line":199,"context":171},[],[],{"summary":205,"deductions":206},"The \"buddypress-foaf\" plugin v2.7 exhibits a mixed security posture. On the positive side, there are no known CVEs, no dangerous functions identified, and the plugin does not make external HTTP requests or perform file operations, which generally reduces its attack surface. The presence of 0 unprotected AJAX handlers and 0 REST API routes without permission callbacks is also a strong indicator of good security practices in those areas.\n\nHowever, several critical concerns emerge from the static analysis. The most significant is the complete lack of output escaping, meaning that user-supplied data displayed on the frontend could be vulnerable to Cross-Site Scripting (XSS) attacks. Additionally, a substantial portion (60%) of SQL queries are not using prepared statements, which presents a risk of SQL injection vulnerabilities. The absence of nonce checks and capability checks, particularly in conjunction with the shortcode entry point, further elevates these risks by potentially allowing unauthorized actions or data manipulation if the shortcode's output is not properly handled.\n\nGiven the absence of recorded vulnerabilities, it's possible that the risks identified in the static analysis have not yet been exploited, or that the specific implementation details of the shortcode mitigate some of these risks in practice. However, the lack of output escaping and the presence of non-prepared SQL queries represent fundamental security weaknesses that should be addressed to prevent future exploits.",[207,210,212,214],{"reason":208,"points":209},"0% output escaping",15,{"reason":211,"points":50},"40% SQL queries not prepared",{"reason":213,"points":33},"0 Nonce checks",{"reason":215,"points":33},"0 Capability checks","2026-03-17T05:39:03.096Z",{"wat":218,"direct":227},{"assetPaths":219,"generatorPatterns":222,"scriptPaths":223,"versionParams":224},[220,221],"\u002Fwp-content\u002Fplugins\u002Fbuddypress-foaf\u002Fcss\u002Fbpfoaf.css","\u002Fwp-content\u002Fplugins\u002Fbuddypress-foaf\u002Fjs\u002Fbpfoaf.js",[],[221],[225,226],"buddypress-foaf\u002Fcss\u002Fbpfoaf.css?ver=","buddypress-foaf\u002Fjs\u002Fbpfoaf.js?ver=",{"cssClasses":228,"htmlComments":230,"htmlAttributes":231,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":234},[229],"bpfoaf",[],[],[],[],[235],"[buddypressfoaf_show_potential_friends]"]