[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f5d-mwrtqdVp_q6T61x2kXkDNXeZow44oh8cTIMmvCac":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":65,"crawl_stats":38,"alternatives":72,"analysis":174,"fingerprints":560},"campaign-monitor-wp","Campaign Monitor Forms by Optin Cat","2.6.1","fatcatapps","https:\u002F\u002Fprofiles.wordpress.org\u002Ffatcatapps\u002F","\u003Ch4>Campaign Monitor Optin Cat WordPress Plugin\u003C\u002Fh4>\n\u003Cp>The \u003Cstrong>Campaign Monitor Optin Cat\u003C\u002Fstrong> WordPress Plugin lets you create gorgeous Campaign Monitor sign-up forms to your WordPress site in minutes.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch4>Gutenberg Compatible\u003C\u002Fh4>\n\u003Cp>This plugin is fully compatible with WordPress 5.0’s new content editor (“Gutenberg”). Simply create your optin form, then add your Campaign Monitor block to your website.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F9d3HPWbbn58?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Opt-in Types\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Post boxes let you add a Campaign Monitor form to a post or page using shortcodes or by automatically appending the form to the bottom of your post or page.\u003C\u002Fli>\n\u003Cli>Sidebar widgets. You can add Campaign Monitor forms to your sidebar using widgets.\u003C\u002Fli>\n\u003Cli>Popups. Capture more emails using lightbox popups.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Popup targeting based on time spent on page and frequency.\u003C\u002Fli>\n\u003Cli>Intuitive user interface, set up your Campaign Monitor forms in seconds.\u003C\u002Fli>\n\u003Cli>Full customization options, such as the ability to change your copy, font-size, colors and more.\u003C\u002Fli>\n\u003Cli>Campaign Monitor form works with responsive sites.\u003C\u002Fli>\n\u003Cli>Form validation.\u003C\u002Fli>\n\u003Cli>Redirect users to a “Thank You”-page after submission.\u003C\u002Fli>\n\u003Cli>Build unlimited Campaign Monitor forms.\u003C\u002Fli>\n\u003Cli>Analytics feature so you can learn which Campaign Monitor forms work well and which ones don’t.\u003C\u002Fli>\n\u003Cli>WordPress 5.0 Gutenberg support. Add Campaign Monitor blocks to WordPress’ new visual editor with ease.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Developer Friendly\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>You can customize your Campaign Monitor forms using our “Custom CSS” feature.\u003C\u002Fli>\n\u003Cli>You can inherit your theme’s form styling by choosign our “No CSS” layout.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Ch4>Optin Cat Premium\u003C\u002Fh4>\n\u003Cp>Optin Cat Premium helps you get more Campaign Monitor subscribers:\u003C\u002Fp>\n\u003Cp>Lots of extra layout & design options.\u003C\u002Fp>\n\u003Cp>Smart popup targeting.\u003C\u002Fp>\n\u003Cp>Mobile Campaign Monitor popups.\u003C\u002Fp>\n\u003Cp>Two Step Optins: Trigger a popup after the user clicks on a hyperlink.\u003C\u002Fp>\n\u003Cp>Optin Bait Delivery: Send optin baits straight from WordPress.\u003C\u002Fp>\n\u003Cp>Exit Intervention: Display popups when the user is about to leave your site.\u003C\u002Fp>\n\u003Cp>Attention grabbing Popup Effects.\u003C\u002Fp>\n\u003Cp>Priority email support.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ffatcatapps.com\u002Foptincat\u002Fupgrade\u002F?utm_campaign=description%2Bcta&utm_source=https%3A%2F%2Fwordpress.org%2Fplugins%2Fcampaign-monitor-wp%2F&utm_medium=referral\" rel=\"nofollow ugc\">Learn more about Optin Cat Premium >>\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Roadmap\u003C\u002Fh4>\n\u003Cp>We’ve got a bunch of feature ideas, such as more opt-in form designs and various types of signup forms. We’d love to hear your suggestions, feel free to share them in the support forum.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cp>In order to use this plugin you’ll need a Campaign Monitor account + Campaign Monitor API key.\u003C\u002Fp>\n\u003Ch4>Relevant Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffatcatapps.com\u002F\" rel=\"nofollow ugc\">FatcatApps.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Ffatcatapps\u002F#content-plugins\" rel=\"nofollow ugc\">Other plugins by FatcatApps\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Disclosure\u003C\u002Fh3>\n\u003Cp>This plugin stores personal data (eg. names & emails collected using this plugin) in the WordPress database.\u003C\u002Fp>\n\u003Cp>This plugin integrates with the WordPress GDPR privacy controls for data export & data deletion added in WordPress 4.9.6.\u003C\u002Fp>\n\u003Cp>This plugin uses a browser cookie to track successful optins.\u003C\u002Fp>\n\u003Cp>This plugin can be configured to connect to 3rd party service providers such as Campaign Monitor.\u003C\u002Fp>\n\u003Cp>If you use this plugin to connect to a 3rd party, personal data may also be shared with that party.\u003C\u002Fp>\n\u003Cp>Additional privacy policy information for 3rd party services can be found here:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.campaignmonitor.com\u002Fpolicies\u002F#privacy-policy\" rel=\"nofollow ugc\">Campaign Monitor\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Our full privacy policy is available here: \u003Ca href=\"https:\u002F\u002Ffatcatapps.com\u002Flegal\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Ffatcatapps.com\u002Flegal\u002Fprivacy-policy\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Campaign Monitor Forms by Optin Cat For WordPress Helps You Get More Email Subscribers. Create Beautiful Campaign Monitor Forms In 2 Minutes.",200,32569,78,7,"2025-12-02T04:59:00.000Z","6.9.4","3.9.1","",[20,21,22,23,24],"campaign-monitor","campaign-monitor-block","campaign-monitor-form","campaign-monitor-widget","campaign-monitor-wordpress","https:\u002F\u002Ffatcatapps.com\u002Foptincat","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcampaign-monitor-wp.zip",98,2,0,"2024-12-02 21:32:59","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2024-11326","campaign-monitor-forms-by-optin-cat-reflected-cross-site-scripting","Campaign Monitor Forms by Optin Cat \u003C= 2.5.7 - Reflected Cross-Site Scripting","The Campaign Monitor Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=2.5.7","2.5.8","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-12-03 11:04:03",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F95ebb2ad-91a8-4a0d-ba91-f417943545b4?source=api-prod",1,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":56,"cvss_score":57,"cvss_vector":58,"vuln_type":59,"published_date":60,"updated_date":61,"references":62,"days_to_patch":64},"CVE-2023-5098","campaign-monitor-forms-missing-authorization-to-authenticatedsubscriber-options-update-via-ajaxdismissnotice","Campaign Monitor Forms \u003C= 2.5.5 - Missing Authorization to Authenticated(Subscriber+) Options Update via ajax_dismiss_notice","The Campaign Monitor Forms plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_dismiss_notice function in versions up to, and including, 2.5.5. This makes it possible for authenticated attackers to update arbitrary options to a value of 'true'.","\u003C=2.5.5","2.5.6","high",7.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:H","Missing Authorization","2023-10-09 00:00:00","2024-01-22 19:56:02",[63],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F3f11416c-c981-4c85-822c-497ecfaa842d?source=api-prod",106,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":66,"total_installs":67,"avg_security_score":68,"avg_patch_time_days":69,"trust_score":70,"computed_at":71},13,66560,93,242,74,"2026-04-05T22:59:30.032Z",[73,93,116,134,155],{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":29,"num_ratings":29,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":18,"tags":86,"homepage":90,"download_link":91,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"campaign-monitor-for-formcraft","Campaign Monitor Add-On for FormCraft","1.2","Formcrafts","https:\u002F\u002Fprofiles.wordpress.org\u002Fnishncraftsnet\u002F","\u003Cp>This add-on allows you to add subscribers to your Campaign Monitor lists, with forms made with \u003Ca href=\"http:\u002F\u002Fformcraft-wp.com\u002F\" rel=\"nofollow ugc\">FormCraft\u003C\u002Fa>. You can read the tutorial \u003Ca href=\"http:\u002F\u002Fformcraft-wp.com\u002Fhelp\u002Fhow-to-configure-campaign-monitor-add-on\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Please note that this add-on works with \u003Ca href=\"http:\u002F\u002Fformcraft-wp.com\u002F\" rel=\"nofollow ugc\">FormCraft Premium\u003C\u002Fa>, and not \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fformcraft-form-builder\u002F\" rel=\"ugc\">FormCraft Basic\u003C\u002Fa>\u003C\u002Fp>\n","Create gorgeous optin forms for your site  with FormCraft, and grow your Campaign Monitor list.",70,4563,"2019-10-11T15:32:00.000Z","5.2.24","3.6",[20,22,87,88,89],"contact-form-7","form-builder","newsletter-form","http:\u002F\u002Fformcraft-wp.com\u002Faddons\u002Fcampaign-monitor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcampaign-monitor-for-formcraft.zip",85,{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":103,"num_ratings":104,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":108,"tags":109,"homepage":112,"download_link":113,"security_score":70,"vuln_count":114,"unpatched_count":48,"last_vuln_date":115,"fetched_at":31},"forms-for-campaign-monitor","Campaign Monitor for WordPress","2.9.0","Campaign Monitor","https:\u002F\u002Fprofiles.wordpress.org\u002Fvibhorchhabra\u002F","\u003Cp>Campaign Monitor for WordPress allows your visitors to sign up to lists in your \u003Ca href=\"https:\u002F\u002Fwww.campaignmonitor.com?utm_source=wordpress-plugin&utm_medium=referral\" rel=\"nofollow ugc\">campaignmonitor.com\u003C\u002Fa> account, so you can create, send and measure the impact of your email marketing campaigns.\u003C\u002Fp>\n\u003Cp>With our plugin, you can create and customize subscribe forms from your WordPress dashboard, decide when and where to show them, and A\u002FB test which one attracts more subscribers.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Slide-Out — Position a floating tab at the top, bottom, left or right of the screen. Clicking it will slide out a subscribe form.\u003C\u002Fli>\n\u003Cli>Lightbox — Overlay a subscribe form while dimming the background of the site. You can show it immediately, after a specific amount of time, or after a user has scrolled a specific amount of pixels or percentage of the page.\u003C\u002Fli>\n\u003Cli>Bar — A strap along the top or bottom of a page, that contains all the fields needed to sign up.\u003C\u002Fli>\n\u003Cli>Button — Generate a button shortcode and insert it in a page or post. The form will appear as a Lightbox.\u003C\u002Fli>\n\u003Cli>Embedded — Generate a shortcode and add your signup form in a page or post.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>What is Campaign Monitor?\u003C\u002Fh3>\n\u003Cp>Campaign Monitor makes it radically easy to create, send and measure the impact of your email marketing campaigns. \u003Cstrong>Don’t have a Campaign Monitor account? \u003Ca href=\"https:\u002F\u002Fwww.campaignmonitor.com\u002Fsignup?utm_source=wordpress-plugin&utm_medium=referral\" rel=\"nofollow ugc\">Sign up for free\u003C\u002Fa>\u003C\u002Fstrong>.\u003C\u002Fp>\n","Make it easy for customers to subscribe to your Campaign Monitor mailing lists using any of the 5 elegant sign-up forms.",2000,124150,34,40,"2025-11-26T00:45:00.000Z","6.8.5","3.9","5.3",[20,110,111],"email-marketing","sign-up-forms","http:\u002F\u002Fcampaignmonitor.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fforms-for-campaign-monitor.2.9.0.zip",3,"2026-01-08 00:00:00",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":29,"num_ratings":29,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":18,"tags":129,"homepage":132,"download_link":133,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"contact-form-7-campaignmonitor-addon","Contact Form 7 – Campaign Monitor Addon","1.06","joshuabettigole","https:\u002F\u002Fprofiles.wordpress.org\u002Fjoshuabettigole\u002F","\u003Cblockquote>\n\u003Cp>\u003Cstrong>This plugin requires Contact Form 7, version 3.1\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>The Contact Form 7 – Campaign Monitor Addon plugin adds functionality into Contact Form 7 generated forms to automatically submit subscribers to a predetermined list within a Campaign Monitor client account. The plugin settings are configured on a per-form basis on the Contact Form 7 configuration pages.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>If you like this plugin, consider \u003Ca href=\"http:\u002F\u002Fwww.bettigole.us\u002Fdonate\u002F\" rel=\"nofollow ugc\">donating\u003C\u002Fa> to help me offset the time spent working on it. In return, I promise not to bother you with nag dialogs on your WordPress admin pages!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Ch4>WordPress\u003C\u002Fh4>\n\u003Cp>This plugin was built and tested on WordPress version 3.3.1 It should work with version 3.2, but this configuration is untested. Earlier versions are not supported by Contact Form 7, therefore, can not be supported by this plugin.\u003C\u002Fp>\n\u003Ch4>Contact Form 7\u003C\u002Fh4>\n\u003Cp>Contact Form 7 provides the form configuration and processing functionality necessary for this plugin to work. There are no configuration options for this plugin outside of the Contact Form 7 configuration screens. You will also need a basic understanding of how to configure Contact Form 7. View the Contact Form 7 plugin \u003Ca href=\"http:\u002F\u002Fcontactform7.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">documentation\u003C\u002Fa> for an explanation of fields and how to configure forms.\u003C\u002Fp>\n\u003Ch4>Campaign Monitor Reseller Account\u003C\u002Fh4>\n\u003Cp>The Campaign Monitor API (Application Programming Interface) requires the API Key provided to members with accounts directly on Campaign Monitor. Client accounts do not have access to this key. If you did not sign up directly with Campaign Monitor, you will need to ask your service provider for the API Key.\u003C\u002Fp>\n\u003Ch3>ToDo\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add support for the same languages supported by Contact Form 7. (In need of assistance with this)\u003C\u002Fli>\n\u003Cli>White Label the configuration options.\u003C\u002Fli>\n\u003C\u002Ful>\n","Add the capability to create newsletter opt-in forms with Contact Form 7. Automatically submit subscribers to predetermined lists in Campaign Monitor.",100,24712,"2012-02-13T20:50:00.000Z","3.3.2","3.2",[20,87,110,130,131],"newsletter","opt-in","http:\u002F\u002Fwww.bettigole.us\u002Fpublished-work\u002Fwordpress-contributions\u002Fcampaign-monitor-addon-for-contact-form-7\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-campaignmonitor-addon.1.06.zip",{"slug":135,"name":136,"version":137,"author":138,"author_profile":139,"description":140,"short_description":141,"active_installs":124,"downloaded":142,"rating":143,"num_ratings":144,"last_updated":145,"tested_up_to":146,"requires_at_least":147,"requires_php":18,"tags":148,"homepage":153,"download_link":154,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"receiptful-for-woocommerce","CM Commerce for WooCommerce","1.6.7","receiptful","https:\u002F\u002Fprofiles.wordpress.org\u002Freceiptful\u002F","\u003Ch4>Why choose CM Commerce for your WooCommerce store?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Sell more using our supercharged, intelligent and automated email options: Receipts, Follow-Up, Abandoned Cart and Newsletters.\u003C\u002Fli>\n\u003Cli>Upsell and cross-sell using our easy on-site widgets: Product Reviews and Feedback.\u003C\u002Fli>\n\u003Cli>Take advantage of our all-in-one dashboard to create smarter campaigns. We can help you with email marketing \u003Cstrong>and\u003C\u002Fstrong> product reviews.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Supercharged marketing automation earns you more money.\u003C\u002Fh4>\n\u003Cp>More than 20,000 entrepreneurs and ecommerce businesses all over the world use CM Commerce. Our features enable you to increase customer lifetime value by sending marketing campaigns, automated emails using data-driven features and powerful segmentation. \u003Cstrong>Data-driven marketing made easy to earn you more.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>How does it work?\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Integrate quickly\u003C\u002Fstrong> CM Commerce provides a super simple and seamless integration process with your WooCommerce store to get your data working towards your goals.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supercharged Segmentation\u003C\u002Fstrong> CM Commerce empowers you to enable powerful personalization to sell more using targeted audiences. You can choose from our pre-made segments or create a segment that is specific for your audience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Conversion driven campaigns\u003C\u002Fstrong> CM Commerce includes all the highest converting templates and flows, ready for you when you first log in.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Metrics that matter\u003C\u002Fstrong> Track your conversions using our Insights dashboard so it’s easy to understand how your doing. Use our Improvements dashboard to know where you could be improving.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Responsive Customer Success\u003C\u002Fstrong> Our dedicated and passionate support team is here to help you. When you speak, we listen.\u003C\u002Fp>\n\u003Ch4>What are the key features?\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Receipts\u003C\u002Fstrong> Increase sales by 5% in just a couple of minutes. It’s simple to start with CM Commerce’s Receipts, simply drag and drop our upsell modules to increase your Customer Lifetime Value.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Abandoned Cart Emails\u003C\u002Fstrong> Approximately 70% of your customers will abandon their carts. CM Commerce provides pre-made conversion driven campaigns that make it easy to recover revenue.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Follow-Up Emails\u003C\u002Fstrong> The probability of selling to an existing customer is 60% to 70%. Use CM Commerce’s powerful segmentation to send personalized emails to sell more by cross-selling.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Newsletters Email\u003C\u002Fstrong> is 40x more successful at acquiring new clients than social. Easily set-up and start sending personalized emails to help you convert more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Product Reviews\u003C\u002Fstrong> More than 60% of consumers say they research and read Product Reviews before buying. Get your best reviews in the spotlight to build trust and increase sales.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Customer Feedback\u003C\u002Fstrong> It is 6-7 times more expensive to acquire a new customer than it is to keep a current one. Increase repeat revenue by offering integrated, automated Feedback.\u003C\u002Fp>\n\u003Ch4>Ready to start?\u003C\u002Fh4>\n\u003Cp>Once you sign up you automatically get a 30-day free trial of CM Commerce, which includes access to all of our tools.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Quick & Easy Setup\u003C\u002Fstrong>\u003Cbr \u002F>\nInstalling CM Commerce is simple.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Download & Activate this plugin\u003C\u002Fli>\n\u003Cli>Sign up for a free CM Commerce account\u003C\u002Fli>\n\u003Cli>Paste your API key in your site\u003C\u002Fli>\n\u003Cli>Tweak your receipt design and start sending supercharged receipts\u003C\u002Fli>\n\u003Cli>Explore all of the other supercharged tools\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Need help?\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Freceiptful-for-woocommerce\" rel=\"ugc\">Open a support ticket\u003C\u002Fa>, We’re here to make your life easier!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please Note:\u003C\u002Fstrong> You require a CM Commerce account (\u003Ca href=\"http:\u002F\u002Fcampaignmonitor.com\u002Fproducts\u002Fcm-commerce\u002F\" rel=\"nofollow ugc\">sign up here and get 30 days free trial\u003C\u002Fa>)\u003C\u002Fp>\n","CM Commerce, the all-in-one marketing app for your WooCommerce store, increasing sales with automated email campaigns & widgets. Simply sell more.",51053,94,28,"2023-07-21T09:17:00.000Z","6.3.8","4.0.0",[20,149,150,151,152],"campaign-monitor-commerce","cm-commerce","conversio","conversio-woocommerce","https:\u002F\u002Fcampaignmonitor.com\u002Fproducts\u002Fcm-commerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freceiptful-for-woocommerce.1.6.7.zip",{"slug":156,"name":157,"version":158,"author":159,"author_profile":160,"description":161,"short_description":162,"active_installs":163,"downloaded":164,"rating":29,"num_ratings":29,"last_updated":165,"tested_up_to":166,"requires_at_least":166,"requires_php":18,"tags":167,"homepage":172,"download_link":173,"security_score":92,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"cm-subscriber-stats","Plugin Name: CM Subscriber Stats","1.0.1","Alex Dunae","https:\u002F\u002Fprofiles.wordpress.org\u002Falexdunae\u002F","\u003Cp>This plugin pulls data from your Campaign Monitor lists’ feeds and displays them on your WordPress dashboard.\u003C\u002Fp>\n\u003Ch4>White labeling\u003C\u002Fh4>\n\u003Cp>CM Subscriber Stats was built with white-labelers in mind, and it’s possible to remove virtually all mention of Campaign Monitor so you can promote your own services.\u003C\u002Fp>\n\u003Cp>See \u003Ca href=\"http:\u002F\u002Fdialect.ca\u002Fcode\u002Fcm-subscriber-stats\u002F\" rel=\"nofollow ugc\">the CM Subscriber Stats project page\u003C\u002Fa> for details.\u003C\u002Fp>\n\u003Ch4>Did you find this plugin useful?\u003C\u002Fh4>\n\u003Cp>You can write a “recommendation” for me on my \u003Ca href=\"http:\u002F\u002Fwww.linkedin.com\u002Fin\u002Falexdunae\" rel=\"nofollow ugc\">LinkedIn profile\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contact and Credits\u003C\u002Fh3>\n\u003Cp>Written by Alex Dunae (\u003Ca href=\"http:\u002F\u002Fdialect.ca\u002F\" rel=\"nofollow ugc\">dialect.ca\u003C\u002Fa>), e-mail ‘code’ at the same domain), 2009.\u003C\u002Fp>\n","See your email list subscriber statistics on your WordPress dashboard.",20,5861,"2009-03-03T00:21:00.000Z","2.7",[20,168,169,170,171],"dashboard","email","statistics","subscribers","http:\u002F\u002Fdialect.ca\u002Fcode\u002Fcm-subscriber-stats\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcm-subscriber-stats.1.0.1.zip",{"attackSurface":175,"codeSignals":409,"taintFlows":453,"riskAssessment":546,"analyzedAt":559},{"hooks":176,"ajaxHandlers":382,"restRoutes":405,"shortcodes":406,"cronEvents":407,"entryPointCount":408,"unprotectedCount":29},[177,183,188,193,196,201,206,210,216,220,224,228,232,235,239,242,246,250,254,258,262,265,269,273,277,281,285,289,292,294,297,300,303,307,311,313,316,320,324,327,331,335,338,342,346,350,353,357,359,363,365,370,374,377,379],{"type":178,"name":179,"callback":180,"file":181,"line":182},"filter","pre_set_site_transient_update_plugins","check_update","includes\\classes\\edd_sl\\EDD_SL_Plugin_Updater.php",75,{"type":178,"name":184,"callback":185,"priority":186,"file":181,"line":187},"plugins_api","plugins_api_filter",10,76,{"type":189,"name":190,"callback":191,"priority":186,"file":181,"line":192},"action","after_plugin_row","show_update_notification",77,{"type":189,"name":194,"callback":195,"file":181,"line":13},"admin_init","show_changelog",{"type":189,"name":197,"callback":198,"file":199,"line":200},"in_admin_footer","k_scripts","includes\\classes\\k\\k.php",563,{"type":189,"name":202,"callback":203,"file":204,"line":205},"init","fca_eoi_gutenblock","includes\\eoi-block.php",48,{"type":189,"name":207,"callback":208,"file":204,"line":209},"enqueue_block_editor_assets","fca_eoi_gutenblock_enqueue",99,{"type":189,"name":211,"callback":212,"priority":213,"file":214,"line":215},"wp_dashboard_setup","fca_eoi_remove_admin_bar_link",50,"includes\\eoi-functions.php",18,{"type":178,"name":217,"callback":218,"file":214,"line":219},"tiny_mce_before_init","fca_eoi_tiny_mce_before_init",234,{"type":189,"name":202,"callback":221,"file":222,"line":223},"register_custom_post_type","includes\\eoi-post-types.php",21,{"type":178,"name":225,"callback":226,"file":222,"line":227},"manage_easy-opt-ins_posts_columns","add_new_columns",22,{"type":189,"name":229,"callback":230,"priority":186,"file":222,"line":231},"manage_easy-opt-ins_posts_custom_column","set_column_data",23,{"type":178,"name":233,"callback":233,"priority":186,"file":222,"line":234},"post_row_actions",24,{"type":189,"name":236,"callback":237,"file":222,"line":238},"admin_post_fca_eoi_reset_stats","reset_stats",27,{"type":189,"name":211,"callback":240,"file":222,"line":241},"dashboard_setup",30,{"type":189,"name":243,"callback":244,"priority":48,"file":222,"line":245},"save_post","save_meta_box_content",33,{"type":178,"name":247,"callback":248,"file":222,"line":249},"the_content","live_preview",36,{"type":189,"name":251,"callback":252,"file":222,"line":253},"admin_enqueue_scripts","admin_enqueue",39,{"type":189,"name":255,"callback":256,"file":222,"line":257},"admin_head","hide_minor_publishing",41,{"type":189,"name":259,"callback":260,"priority":48,"file":222,"line":261},"admin_notices","onboard_help",43,{"type":189,"name":259,"callback":263,"file":222,"line":264},"review_notice",46,{"type":178,"name":266,"callback":267,"file":222,"line":268},"admin_body_class","add_body_class",49,{"type":178,"name":270,"callback":271,"file":222,"line":272},"wp_insert_post_data","force_published",51,{"type":178,"name":274,"callback":275,"file":222,"line":276},"get_user_option_screen_layout_easy-opt-ins","force_one_column",58,{"type":178,"name":278,"callback":279,"file":222,"line":280},"get_user_option_meta-box-order_easy-opt-ins","order_columns",60,{"type":178,"name":282,"callback":283,"file":222,"line":284},"post_updated_messages","override_text",62,{"type":178,"name":286,"callback":287,"file":222,"line":288},"bulk_actions-edit-easy-opt-ins","disable_bulk_edit",64,{"type":178,"name":233,"callback":290,"file":222,"line":291},"remove_quick_edit",66,{"type":189,"name":259,"callback":259,"file":222,"line":293},68,{"type":178,"name":295,"callback":296,"file":222,"line":81},"enter_title_here","change_default_title",{"type":178,"name":202,"callback":298,"priority":186,"file":222,"line":299},"bind_content_filter",72,{"type":178,"name":247,"callback":301,"file":222,"line":302},"scan_for_shortcodes",79,{"type":189,"name":304,"callback":305,"file":222,"line":306},"wp_head","fca_eoi_buffer_start",81,{"type":189,"name":308,"callback":309,"file":222,"line":310},"wp_footer","fca_eoi_buffer_end",82,{"type":178,"name":308,"callback":312,"file":222,"line":92},"maybe_show_lightbox",{"type":178,"name":314,"callback":315,"priority":186,"file":222,"line":68},"fca_eoi_alter_admin_notices","anonymous",{"type":189,"name":317,"callback":318,"priority":186,"file":222,"line":319},"wp","content",2164,{"type":189,"name":321,"callback":322,"file":323,"line":227},"admin_menu","fca_eoi_register_setting_page","includes\\eoi-powerups.php",{"type":189,"name":194,"callback":325,"file":323,"line":326},"fca_eoi_register_settings",55,{"type":178,"name":328,"callback":329,"file":330,"line":238},"fca_eoi_setting_filter","fca_eoi_add_gdpr_options","includes\\eoi-subscribers.php",{"type":189,"name":332,"callback":333,"priority":186,"file":330,"line":334},"fca_eoi_after_submission","add_subscriber",171,{"type":189,"name":321,"callback":336,"file":330,"line":337},"register_subscribers_page",172,{"type":189,"name":339,"callback":340,"file":330,"line":341},"plugins_loaded","export_subscribers",173,{"type":178,"name":343,"callback":344,"file":330,"line":345},"wp_privacy_personal_data_exporters","register_data_exporter",174,{"type":178,"name":347,"callback":348,"file":330,"line":349},"wp_privacy_personal_data_erasers","register_data_eraser",175,{"type":189,"name":251,"callback":351,"file":352,"line":104},"fca_eoi_admin_deactivation_survey","includes\\eoi-uninstall.php",{"type":189,"name":321,"callback":354,"file":355,"line":356},"fca_eoi_upgrade_to_premium_menu","includes\\eoi-upgrade.php",57,{"type":189,"name":358,"callback":358,"file":355,"line":276},"admin_footer",{"type":178,"name":360,"callback":361,"file":355,"line":362},"admin_footer_text","show_upgrade_encouragement",59,{"type":189,"name":259,"callback":364,"file":355,"line":280},"show_quick_links",{"type":189,"name":366,"callback":367,"file":368,"line":369},"widgets_init","register_widget","includes\\eoi-widget.php",12,{"type":178,"name":328,"callback":371,"file":372,"line":373},"fca_eoi_add_powerup_2","powerups\\2_custom_css\\powerup.php",11,{"type":189,"name":375,"callback":376,"file":372,"line":227},"fca_eoi_powerups","show_custom_css_field",{"type":189,"name":251,"callback":378,"file":372,"line":231},"enqueue_admin_scripts",{"type":178,"name":380,"callback":381,"priority":186,"file":372,"line":234},"fca_eoi_alter_form","append_css_to_form",[383,390,392,396,398,402],{"action":384,"nopriv":385,"callback":386,"hasNonce":387,"hasCapCheck":385,"file":388,"line":389},"fca_eoi_activity",false,"track_activity",true,"includes\\eoi-activity.php",44,{"action":384,"nopriv":387,"callback":386,"hasNonce":387,"hasCapCheck":385,"file":388,"line":391},45,{"action":393,"nopriv":385,"callback":394,"hasNonce":387,"hasCapCheck":385,"file":222,"line":395},"fca_eoi_subscribe","ajax_subscribe",53,{"action":393,"nopriv":387,"callback":394,"hasNonce":387,"hasCapCheck":385,"file":222,"line":397},54,{"action":399,"nopriv":385,"callback":400,"hasNonce":387,"hasCapCheck":387,"file":222,"line":401},"fca_eoi_dismiss","ajax_dismiss_notice",56,{"action":403,"nopriv":385,"callback":404,"hasNonce":387,"hasCapCheck":385,"file":352,"line":70},"fca_eoi_uninstall","fca_eoi_uninstall_ajax",[],[],[],6,{"dangerousFunctions":410,"sqlUsage":411,"outputEscaping":419,"fileOperations":14,"externalRequests":114,"nonceChecks":412,"capabilityChecks":14,"bundledLibraries":448},[],{"prepared":412,"raw":28,"locations":413},8,[414,417],{"file":330,"line":415,"context":416},348,"$wpdb->get_results() with variable interpolation",{"file":330,"line":418,"context":416},427,{"escaped":420,"rawEcho":369,"locations":421},153,[422,425,427,429,431,433,435,436,438,440,442,445],{"file":222,"line":423,"context":424},334,"raw output",{"file":222,"line":426,"context":424},335,{"file":222,"line":428,"context":424},336,{"file":222,"line":430,"context":424},1897,{"file":222,"line":432,"context":424},2455,{"file":355,"line":434,"context":424},192,{"file":355,"line":11,"context":424},{"file":355,"line":437,"context":424},208,{"file":355,"line":439,"context":424},217,{"file":355,"line":441,"context":424},224,{"file":443,"line":444,"context":424},"providers\\campaignmonitor\\campaignmonitor\\class\\log.php",17,{"file":446,"line":447,"context":424},"providers\\campaignmonitor\\functions.php",105,[449],{"name":450,"version":451,"knownCves":452},"Select2","3.5.0",[],[454,508,517,528,538],{"entryPoint":455,"graph":456,"unsanitizedCount":48,"severity":41},"\u003Ceoi-post-types> (includes\\eoi-post-types.php:0)",{"nodes":457,"edges":501},[458,463,469,473,478,481,483,485,490,494,498],{"id":459,"type":460,"label":461,"file":222,"line":462},"n0","source","$_POST (x2)",1492,{"id":464,"type":465,"label":466,"file":222,"line":467,"wp_function":468},"n1","sink","update_option() [Settings Manipulation]",1736,"update_option",{"id":470,"type":460,"label":471,"file":222,"line":472},"n2","$_REQUEST (x2)",2046,{"id":474,"type":465,"label":475,"file":222,"line":476,"wp_function":477},"n3","call_user_func() [RCE]",2084,"call_user_func",{"id":479,"type":460,"label":480,"file":222,"line":476},"n4","$_POST",{"id":482,"type":465,"label":475,"file":222,"line":476,"wp_function":477},"n5",{"id":484,"type":460,"label":471,"file":222,"line":472},"n6",{"id":486,"type":465,"label":487,"file":222,"line":488,"wp_function":489},"n7","echo() [XSS]",2454,"echo",{"id":491,"type":460,"label":492,"file":222,"line":493},"n8","$_REQUEST",2442,{"id":495,"type":496,"label":497,"file":222,"line":493},"n9","transform","→ prepare_lightbox_html()",{"id":499,"type":465,"label":487,"file":222,"line":500,"wp_function":489},"n10",2501,[502,503,504,505,506,507],{"from":459,"to":464,"sanitized":387},{"from":470,"to":474,"sanitized":387},{"from":479,"to":482,"sanitized":387},{"from":484,"to":486,"sanitized":387},{"from":491,"to":495,"sanitized":385},{"from":495,"to":499,"sanitized":385},{"entryPoint":509,"graph":510,"unsanitizedCount":28,"severity":516},"save_meta_box_content (includes\\eoi-post-types.php:1488)",{"nodes":511,"edges":514},[512,513],{"id":459,"type":460,"label":461,"file":222,"line":462},{"id":464,"type":465,"label":466,"file":222,"line":467,"wp_function":468},[515],{"from":459,"to":464,"sanitized":385},"low",{"entryPoint":518,"graph":519,"unsanitizedCount":29,"severity":516},"ajax_subscribe (includes\\eoi-post-types.php:2044)",{"nodes":520,"edges":525},[521,522,523,524],{"id":459,"type":460,"label":471,"file":222,"line":472},{"id":464,"type":465,"label":475,"file":222,"line":476,"wp_function":477},{"id":470,"type":460,"label":480,"file":222,"line":476},{"id":474,"type":465,"label":475,"file":222,"line":476,"wp_function":477},[526,527],{"from":459,"to":464,"sanitized":387},{"from":470,"to":474,"sanitized":387},{"entryPoint":529,"graph":530,"unsanitizedCount":29,"severity":516},"fca_eoi_subscribers_page (includes\\eoi-subscribers.php:326)",{"nodes":531,"edges":536},[532,534],{"id":459,"type":460,"label":480,"file":330,"line":533},338,{"id":464,"type":465,"label":487,"file":330,"line":535,"wp_function":489},356,[537],{"from":459,"to":464,"sanitized":387},{"entryPoint":539,"graph":540,"unsanitizedCount":29,"severity":516},"\u003Ceoi-subscribers> (includes\\eoi-subscribers.php:0)",{"nodes":541,"edges":544},[542,543],{"id":459,"type":460,"label":480,"file":330,"line":533},{"id":464,"type":465,"label":487,"file":330,"line":535,"wp_function":489},[545],{"from":459,"to":464,"sanitized":387},{"summary":547,"deductions":548},"The \"campaign-monitor-wp\" plugin v2.6.1 exhibits a generally good security posture with several positive indicators. The static analysis shows a complete absence of unprotected AJAX handlers, REST API routes, shortcodes, or cron events, indicating a strong emphasis on securing entry points.  The high percentage of prepared statements for SQL queries and properly escaped outputs are also favorable signs.  Furthermore, the presence of nonce and capability checks on all identified AJAX handlers contributes to a robust defense against common attack vectors.\n\nHowever, there are areas that warrant attention. The presence of 2 taint flows with unsanitized paths, although not rated critical or high, suggests potential for issues if these paths are exposed to user input. The static analysis also identified file operations and external HTTP requests, which can be vectors for vulnerabilities if not handled with extreme care and proper sanitization. The plugin's vulnerability history, with two past CVEs, including one high severity and one medium severity, points to recurring security weaknesses, specifically related to Cross-site Scripting and Missing Authorization. While currently unpatched, this history should be a strong signal for ongoing vigilance and proactive security measures.\n\nIn conclusion, while \"campaign-monitor-wp\" v2.6.1 has implemented many good security practices, the past vulnerabilities and the identified unsanitized paths in the taint analysis suggest that it is not entirely risk-free. The plugin has strengths in its secure handling of entry points and data sanitization, but its history indicates a need for continuous monitoring and potentially more rigorous auditing of code paths handling user-controlled data. The outdated bundled library also presents a minor but persistent risk.",[549,551,554,557],{"reason":550,"points":186},"Taint flows with unsanitized paths found",{"reason":552,"points":553},"Bundled outdated library: Select2 v3.5.0",4,{"reason":555,"points":556},"Vulnerability history: 1 high severity CVE",15,{"reason":558,"points":412},"Vulnerability history: 1 medium severity CVE","2026-03-16T20:15:45.096Z",{"wat":561,"direct":574},{"assetPaths":562,"generatorPatterns":567,"scriptPaths":568,"versionParams":569},[563,564,565,566],"\u002Fwp-content\u002Fplugins\u002Fcampaign-monitor-wp\u002Fincludes\u002Fcss\u002Feoi-admin-style.css","\u002Fwp-content\u002Fplugins\u002Fcampaign-monitor-wp\u002Fincludes\u002Fcss\u002Feoi-public-style.css","\u002Fwp-content\u002Fplugins\u002Fcampaign-monitor-wp\u002Fincludes\u002Fjs\u002Fadmin\u002Feoi-admin-settings.js","\u002Fwp-content\u002Fplugins\u002Fcampaign-monitor-wp\u002Fincludes\u002Fjs\u002Fpublic\u002Feoi-public.js",[],[565,566],[570,571,572,573],"campaign-monitor-wp\u002Fincludes\u002Fcss\u002Feoi-admin-style.css?ver=","campaign-monitor-wp\u002Fincludes\u002Fcss\u002Feoi-public-style.css?ver=","campaign-monitor-wp\u002Fincludes\u002Fjs\u002Fadmin\u002Feoi-admin-settings.js?ver=","campaign-monitor-wp\u002Fincludes\u002Fjs\u002Fpublic\u002Feoi-public.js?ver=",{"cssClasses":575,"htmlComments":581,"htmlAttributes":582,"restEndpoints":585,"jsGlobals":586,"shortcodeOutput":588},[576,577,578,579,580],"fca_eoi_form_container","fca_eoi_form","fca_eoi_headline","fca_eoi_submit_button","eoi-subscribe-form-wrapper",[],[583,584],"data-fca_eoi_list_id","data-fca_eoi_thank_you_mode",[],[587],"fca_eoi_script_vars",[589,590,591,592,593],"\u003Cdiv class=\"fca_eoi_form_container\">","\u003Cform class=\"fca_eoi_form\" method=\"post\">","\u003Ch2 class=\"fca_eoi_headline\">","\u003Cinput type=\"submit\" value=\"","\u003C\u002Fdiv>"]