[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjRm1APU712KKmJKMvcVTaObS3nDlZJ9EGgCMpBsD0eM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":131,"fingerprints":349},"cardznet","CardzNet – Multiplayer Card Games","2.5.1","Malcolm","https:\u002F\u002Fprofiles.wordpress.org\u002Fmalcolm-oph\u002F","\u003Cp>Features Summary\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Adds a Playing Card Game server to your WP Website\u003C\u002Fli>\n\u003Cli>Works with touch screens, mouse or keyboard input\u003C\u002Fli>\n\u003Cli>Players can share devices but keep their cards private\u003C\u002Fli>\n\u003Cli>Games available: Canasta, Hearts, Black Maria, Whist and One-Eyed Jacks\u003C\u002Fli>\n\u003Cli>Standard and High Visibility Card Faces available\u003C\u002Fli>\n\u003C\u002Ful>\n","The CardzNet plugin allows you to play cards over the internet",10,3492,0,"2023-10-13T08:20:00.000Z","6.3.8","5.0","",[19,20,21,22,23],"card-games","games","network","pages","playing-cards","http:\u002F\u002Fwww.corondeck.co.uk\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcardznet.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"malcolm-oph",2,93,30,89,"2026-04-04T06:02:14.968Z",[38,55,78,97,107],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":13,"last_updated":48,"tested_up_to":17,"requires_at_least":17,"requires_php":17,"tags":49,"homepage":53,"download_link":54,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"playing-card-notations-pcn","Playing Card Notations","1.2","Amit Sharma","https:\u002F\u002Fprofiles.wordpress.org\u002F13llama\u002F","\u003Cp>Use the shortcodes pcards or pcn to display playing card notations generated from simple text codes, e.g. AhKd (for Ace of hearts and King of diamonds).\u003C\u002Fp>\n\u003Cp>You can configure display options like font, colour scheme and standard or reverse from the Appearance > Playing Card Notations Settings page.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>You can use the shortcodes pcards or pcn to display cards and card hands in your blog’s content. The standard card notations of (A-J, 10 or T, 9-2) followed by suite letter (s for spades, c for clubs, h for hearts and d for diamonds) work.\u003C\u002Fp>\n\u003Ch3>Uninstall\u003C\u002Fh3>\n\u003Cp>In the Plugins screen of your WordPress admin area, navigate to Playing Card Notations, click on Deactivate. On the refreshed screen, click on Delete.\u003Cbr \u002F>\nNote: You will lose all your questions if you uninstall the plugin. Take a backup of your data before you uninstall.\u003C\u002Fp>\n","Use a simple shortcode to present playing cards in your WordPress blog.",50,1516,"2020-07-01T14:31:00.000Z",[50,51,20,23,52],"board-games","bridge","poker","https:\u002F\u002Fwww.recaptured.in\u002Fnew-wordpress-plugin-playing-card-notations","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplaying-card-notations-pcn.zip",{"slug":56,"name":57,"version":58,"author":57,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":76,"download_link":77,"security_score":64,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"cdn-bull","CDN Bull","1.0.6","https:\u002F\u002Fprofiles.wordpress.org\u002Fcdnbull\u002F","\u003Cp>CDN Bull is a simple, yet powerful CDN service that is easy to use, needs minimal configuration, and best of all helps improve site performance for a faster load time. You can find more information on our web site \u003Ca href=\"https:\u002F\u002Fcdnbull.com\u002F\" title=\"CDN Bull\" rel=\"nofollow ugc\">CDN Bull\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Boost your website performance globally and prevent downtime with CDN Bull! A content delivery network is a geographically distributed group of servers optimized to deliver static content to end users.\u003C\u002Fp>\n\u003Cp>A \u003Cstrong>content delivery network (CDN)\u003C\u002Fstrong> is a network of distributed edge servers, which accelerate your content around the globe. The main benefits of a CDN are \u003Cem>scalability\u003C\u002Fem>, \u003Cem>reliability\u003C\u002Fem> and \u003Cem>performance\u003C\u002Fem>. The \u003Cstrong>CDN Bull\u003C\u002Fstrong> plugin helps you to quickly and easily integrate a CDN on WordPress.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcdnbull.com\u002Fprivacy-policy\u002F\" title=\"Privacy Policy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcdnbull.com\u002Fterms-and-conditions\u002F\" title=\"Terms and Conditions\" rel=\"nofollow ugc\">Terms and Conditions\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fast and reliable support\u003C\u002Fli>\n\u003Cli>Link assets to load from a CDN (images, videos, javascripts, css, compressed files and all media files)\u003C\u002Fli>\n\u003Cli>Set included  directories (directories or extensions)\u003C\u002Fli>\n\u003Cli>Define exclusions (directories or extensions)\u003C\u002Fli>\n\u003Cli>Fastest upload time\u003C\u002Fli>\n\u003Cli>Easy and friendly usage\u003C\u002Fli>\n\u003Cli>Simple and basic management interface\u003C\u002Fli>\n\u003Cli>Easily process tracking\u003C\u002Fli>\n\u003Cli>Best price of the CDN market\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>System Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>PHP >=7.0\u003C\u002Fli>\n\u003Cli>WordPress >=4.6\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Ch3>PayPal SDK\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>This SDK enables secure and seamless processing via PayPal.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Contribute\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Anyone is welcome to contribute to the plugin on [GitHub]\u003C\u002Fli>\n\u003Cli>Please merge (squash) all your changes into a single commit before you open a pull request.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Author\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcdnbull.com\" title=\"CDN Bull\" rel=\"nofollow ugc\">CDN Bull\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Enable CDN URLs for your static assets such as images, CSS or JavaScript files.",20,740,100,1,"2025-06-20T12:11:00.000Z","6.8.5","4.7","7.0",[71,72,73,74,75],"cdn","content-delivery-network","content-distribution-network","pagespeed","performance","https:\u002F\u002Fcdnbull.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcdn-bull.1.0.6.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":11,"downloaded":86,"rating":64,"num_ratings":32,"last_updated":87,"tested_up_to":88,"requires_at_least":16,"requires_php":89,"tags":90,"homepage":94,"download_link":95,"security_score":96,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"multisite-post-cloner","Multisite Post Cloner","1.0.1","Aram","https:\u002F\u002Fprofiles.wordpress.org\u002Famurxn\u002F","\u003Cp>Multisite Post Cloner is a simple yet powerful plugin that enables network administrators to clone posts and pages from one site to another within a WordPress multisite network. The plugin provides an easy-to-use interface for selecting which post types can be cloned, making it an essential tool for managing content across multiple sites.\u003C\u002Fp>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Clone posts and pages to any site in your multisite network.\u003C\u002Fli>\n\u003Cli>Select which post types should have the cloning functionality.\u003C\u002Fli>\n\u003Cli>Keeps the original post intact on the source site.\u003C\u002Fli>\n\u003Cli>Simple settings page for easy configuration.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is perfect for multisite networks where content needs to be shared or duplicated across different sites without manually copying and pasting.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, please contact me directly at amurin3d@gmail.com.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later. You can use, modify, and distribute it under the same license.\u003C\u002Fp>\n","Multisite Post Cloner allows you to clone posts and pages across sites in your WordPress multisite network.",1409,"2024-11-22T09:30:00.000Z","6.7.5","7.2",[91,92,21,22,93],"clone","multisite","posts","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmultisite-post-cloner\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisite-post-cloner.1.0.1.zip",92,{"slug":98,"name":99,"version":100,"author":82,"author_profile":83,"description":101,"short_description":102,"active_installs":11,"downloaded":103,"rating":13,"num_ratings":13,"last_updated":104,"tested_up_to":88,"requires_at_least":16,"requires_php":89,"tags":105,"homepage":17,"download_link":106,"security_score":96,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"toggle-admin-bar-menu","Toggle Admin Bar Menu","1.0.0","\u003Cp>Replaces the WordPress admin bar menu with a compact menu icon. Clicking the icon toggles the visibility of the full admin bar.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, please contact me directly at amurin3d@gmail.com.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later. You can use, modify, and distribute it under the same license.\u003C\u002Fp>\n","Replaces the WordPress admin bar menu with a compact menu icon. Clicking the icon toggles the visibility of the full admin bar.",985,"2024-12-06T17:05:00.000Z",[91,92,21,22,93],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftoggle-admin-bar-menu.1.0.0.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":117,"num_ratings":118,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":89,"tags":122,"homepage":126,"download_link":127,"security_score":128,"vuln_count":129,"unpatched_count":13,"last_vuln_date":130,"fetched_at":28},"litespeed-cache","LiteSpeed Cache","7.8","LiteSpeed Technologies","https:\u002F\u002Fprofiles.wordpress.org\u002Flitespeedtech\u002F","\u003Cp>LiteSpeed Cache for WordPress (LSCWP) is an all-in-one site acceleration plugin, featuring an exclusive server-level cache and a collection of optimization features.\u003C\u002Fp>\n\u003Cp>LSCWP supports WordPress Multisite and is compatible with most popular plugins, including WooCommerce, bbPress, and Yoast SEO.\u003C\u002Fp>\n\u003Cp>LiteSpeed Cache for WordPress is compatible with ClassicPress.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>General Features\u003C\u002Fstrong> may be used by anyone with any web server (LiteSpeed, Apache, NGINX, etc.).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>LiteSpeed Exclusive Features\u003C\u002Fstrong> require one of the following: OpenLiteSpeed, commercial LiteSpeed products, LiteSpeed-powered hosting, or QUIC.cloud CDN. \u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002Ffaq\u002F#why-do-the-cache-features-require-a-litespeed-server\" rel=\"nofollow ugc\">Why?\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Ch4>General Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Free QUIC.cloud CDN Cache\u003C\u002Fli>\n\u003Cli>Object Cache (Memcached\u002FLSMCD\u002FRedis) Support+\u003C\u002Fli>\n\u003Cli>Image Optimization (Lossless\u002FLossy)\u003C\u002Fli>\n\u003Cli>Minify CSS, JavaScript, and HTML\u003C\u002Fli>\n\u003Cli>Minify inline & external CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Combine CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Automatically generate Critical CSS\u003C\u002Fli>\n\u003Cli>Lazy-load images\u002Fiframes\u003C\u002Fli>\n\u003Cli>Responsive Image Placeholders\u003C\u002Fli>\n\u003Cli>Multiple CDN Support+\u003C\u002Fli>\n\u003Cli>Load CSS Asynchronously\u003C\u002Fli>\n\u003Cli>Defer\u002Fdelay JS loading\u003C\u002Fli>\n\u003Cli>Browser Cache Support+\u003C\u002Fli>\n\u003Cli>Database Cleaner and Optimizer\u003C\u002Fli>\n\u003Cli>PageSpeed score (including Core Web Vitals) optimization\u003C\u002Fli>\n\u003Cli>OPcode Cache Support+\u003C\u002Fli>\n\u003Cli>HTTP\u002F2 Push for CSS\u002FJS (on web servers that support it)\u003C\u002Fli>\n\u003Cli>DNS Prefetch\u003C\u002Fli>\n\u003Cli>Cloudflare API\u003C\u002Fli>\n\u003Cli>Single Site and Multisite (Network) support\u003C\u002Fli>\n\u003Cli>Import\u002FExport settings\u003C\u002Fli>\n\u003Cli>Attractive, easy-to-understand interface\u003C\u002Fli>\n\u003Cli>AVIF\u002FWebP image format support\u003C\u002Fli>\n\u003Cli>Heartbeat control\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>+ This service is not provided by the LSCache plugin, nor is it guaranteed to be installed by your service provider. However, the plugin is compatible with the service if it is in use on your site.\u003C\u002Fp>\n\u003Ch4>LiteSpeed Exclusive Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic page caching to greatly improve site performance\u003C\u002Fli>\n\u003Cli>Automatic purge of related pages based on certain events\u003C\u002Fli>\n\u003Cli>Private cache for logged-in users\u003C\u002Fli>\n\u003Cli>Caching of WordPress REST API calls\u003C\u002Fli>\n\u003Cli>Separate caching of desktop and mobile views\u003C\u002Fli>\n\u003Cli>Ability to schedule purge for specified URLs\u003C\u002Fli>\n\u003Cli>WooCommerce and bbPress support\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002Fcli\u002F\" rel=\"nofollow ugc\">WordPress CLI\u003C\u002Fa> commands\u003C\u002Fli>\n\u003Cli>API system for easy cache integration\u003C\u002Fli>\n\u003Cli>Exclude from cache by URI, Category, Tag, Cookie, User Agent\u003C\u002Fli>\n\u003Cli>Smart preload crawler with support for SEO-friendly sitemap\u003C\u002Fli>\n\u003Cli>Multiple crawlers for cache varies\u003C\u002Fli>\n\u003Cli>HTTP\u002F2 support\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.litespeedtech.com\u002Fhttp3-faq\" rel=\"nofollow ugc\">HTTP\u002F3 & QUIC\u003C\u002Fa> support\u003C\u002Fli>\n\u003Cli>ESI (Edge Side Includes) support*\u003C\u002Fli>\n\u003Cli>Widgets and Shortcodes as ESI blocks* (requires Classic Widgets plugin for WP 5.8+)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>* Feature not available in OpenLiteSpeed\u003C\u002Fp>\n\u003Ch3>LSCWP Resources\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Flitespeedtech.com\u002Fslack\" rel=\"nofollow ugc\">Join our Slack community\u003C\u002Fa> to connect with other LiteSpeed users.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Flitespeed-cache\u002F\" rel=\"ugc\">Ask a question on our support forum\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002F\" rel=\"nofollow ugc\">View detailed documentation\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fblog.litespeedtech.com\u002Ftag\u002Fwordpress\u002F\" rel=\"nofollow ugc\">Read about LSCWP and WordPress on our blog\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Flitespeed-cache\u002F\" rel=\"nofollow ugc\">Help translate LSCWP\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flitespeedtech\u002Flscache_wp\" rel=\"nofollow ugc\">Contribute to the LSCWP GitHub repo\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Third Party Compatibility\u003C\u002Fh3>\n\u003Cp>The vast majority of plugins and themes are compatible with LSCache. \u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002Fapi\u002F\" rel=\"nofollow ugc\">Our API\u003C\u002Fa> is available for those that are not. Use the API to customize smart purging, customize cache rules, create cache varies, and make WP nonce cacheable, among other things.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin includes some suggested text that you can add to your site’s Privacy Policy via the Guide in the WordPress Privacy settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For your own information:\u003C\u002Fstrong> LiteSpeed Cache for WordPress potentially stores a duplicate copy of every web page on display on your site. The pages are stored locally on the system where LiteSpeed server software is installed and are not transferred to or accessed by LiteSpeed employees in any way, except as necessary in providing routine technical support if you request it. All cache files are temporary, and may easily be purged before their natural expiration, if necessary, via a Purge All command. It is up to individual site administrators to come up with their own cache expiration rules.\u003C\u002Fp>\n\u003Cp>In addition to caching, our WordPress plugin has online features provided by QUIC.cloud for Image Optimization and Page Optimization services. When one of these optimizations is requested, data is transmitted to a remote QUIC.cloud server, processed, and then transmitted back for use on your site. QUIC.cloud keeps copies of that data for up to 7 days and then permanently deletes it. Similarly, the WordPress plugin has a Reporting feature whereby a site owner can transmit an environment report to LiteSpeed so that we may better provide technical support. None of these features collects any visitor data. Only server and site data are involved.\u003C\u002Fp>\n\u003Cp>QUIC.cloud CDN, if enabled, uses LSCache technology to access your site, and serve your content from remote global nodes. Your data is not accessed by QUIC.cloud employees in any way, except as necessary in providing maintenance or technical support.\u003C\u002Fp>\n\u003Cp>Please see the \u003Ca href=\"https:\u002F\u002Fquic.cloud\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">QUIC.cloud Privacy Policy\u003C\u002Fa> for our complete Privacy\u002FGDPR statement.\u003C\u002Fp>\n","All-in-one unbeatable acceleration & PageSpeed improvement: caching, image\u002FCSS\u002FJS optimization...",7000000,126174082,96,2718,"2026-03-03T18:24:00.000Z","6.9.4","5.3",[123,124,74,75,125],"caching","optimize","seo","https:\u002F\u002Fwww.litespeedtech.com\u002Fproducts\u002Fcache-plugins\u002Fwordpress-acceleration","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flitespeed-cache.7.8.zip",82,18,"2025-10-28 00:00:00",{"attackSurface":132,"codeSignals":227,"taintFlows":339,"riskAssessment":340,"analyzedAt":348},{"hooks":133,"ajaxHandlers":210,"restRoutes":219,"shortcodes":220,"cronEvents":225,"entryPointCount":226,"unprotectedCount":13},[134,140,144,149,153,159,163,167,170,173,177,181,185,189,194,198,202,206],{"type":135,"name":136,"callback":137,"file":138,"line":139},"filter","wpcardznet_filter_oneeyedjack","wpcardznet_load_oneeyedjacks","cards\\Large-Print\\wpcardznet_cards.php",42,{"type":135,"name":141,"callback":142,"file":138,"line":143},"wpcardznet_filter_twoeyedjack","wpcardznet_load_twoeyedjacks",43,{"type":135,"name":145,"callback":146,"priority":11,"file":147,"line":148},"wpcardznet_filter_ActiveRound","FilterActiveRound","games\\wpcardznet_canasta.php",188,{"type":135,"name":150,"callback":151,"priority":11,"file":147,"line":152},"wpcardznet_filter_ActiveGame","FilterActiveGame",189,{"type":154,"name":155,"callback":156,"file":157,"line":158},"action","wp_mail_succeeded","Get_EMailResult","include\\wpcardznetlib_htmlemail_api.php",392,{"type":154,"name":160,"callback":161,"file":157,"line":162},"wp_mail_failed","Get_EMailErrors",395,{"type":154,"name":164,"callback":165,"file":157,"line":166},"phpmailer_init","AddTextEMailBody",399,{"type":154,"name":164,"callback":168,"file":157,"line":169},"AddFilesToEMail",400,{"type":154,"name":164,"callback":171,"file":157,"line":172},"FixPHPMailer",404,{"type":135,"name":174,"callback":175,"priority":11,"file":157,"line":176},"wp_mail_from","FilterMailFrom",408,{"type":135,"name":178,"callback":179,"priority":11,"file":157,"line":180},"wp_mail_from_name","FilterMailFromName",409,{"type":135,"name":182,"callback":183,"priority":11,"file":157,"line":184},"wp_mail_content_type","FilterMailContentType",410,{"type":135,"name":186,"callback":187,"file":188,"line":117},"safe_style_css","wpcardznetlib_filterHTMLStyles","include\\wpcardznetlib_utils.php",{"type":154,"name":190,"callback":191,"file":192,"line":193},"admin_menu","WPCardzNet_ap","wpcardznet.php",64,{"type":154,"name":195,"callback":196,"file":192,"line":197},"wp_print_styles","load_user_styles",66,{"type":154,"name":199,"callback":200,"file":192,"line":201},"wp_print_scripts","load_user_scripts",67,{"type":154,"name":203,"callback":204,"file":192,"line":205},"admin_enqueue_scripts","load_admin_styles",69,{"type":135,"name":207,"callback":208,"priority":11,"file":192,"line":209},"the_content","OnPageLoad",72,[211,217],{"action":212,"nopriv":213,"callback":214,"hasNonce":213,"hasCapCheck":215,"file":192,"line":216},"wpcardznet_ajax_request",false,"wpcardznet_ajax_call",true,75,{"action":212,"nopriv":215,"callback":214,"hasNonce":213,"hasCapCheck":215,"file":192,"line":218},76,[],[221],{"tag":222,"callback":223,"file":192,"line":224},"wpcardznet","wpcardznet_wp_shortcode",79,[],3,{"dangerousFunctions":228,"sqlUsage":309,"outputEscaping":317,"fileOperations":318,"externalRequests":13,"nonceChecks":65,"capabilityChecks":326,"bundledLibraries":338},[229,233,236,239,242,246,249,252,255,259,262,265,268,271,274,277,280,283,286,289,292,295,297,300,302,305],{"fn":230,"file":147,"line":231,"context":232},"unserialize",221,"$roundMeta = unserialize($roundObj->roundMeta);",{"fn":230,"file":147,"line":234,"context":235},712,"$cardsList = unserialize($hand->cardsList);",{"fn":230,"file":237,"line":238,"context":235},"games\\wpcardznet_hearts.php",115,{"fn":230,"file":237,"line":240,"context":241},239,"$cards = unserialize($trick->cardsList);",{"fn":230,"file":243,"line":244,"context":245},"games\\wpcardznet_one_eyed_jacks.php",930,"$trick->posns = unserialize($result->cardsList);",{"fn":230,"file":243,"line":247,"context":248},931,"$trick->played = unserialize($result->playedList);",{"fn":230,"file":250,"line":244,"context":251},"include\\wpcardznetlib_dbase_api.php","$settings = unserialize($settings);",{"fn":230,"file":250,"line":253,"context":254},1701,"$rtnVal = unserialize($sessionEntries[0]->sessionVal);",{"fn":230,"file":256,"line":257,"context":258},"include\\wpcardznet_dbase_api.php",859,"$this->gameMetaArr = unserialize($this->currGameRec->gameMeta);",{"fn":230,"file":256,"line":260,"context":261},1458,"$this->gameMetaArr = unserialize($this->gameMeta);",{"fn":230,"file":256,"line":263,"context":264},1691,"return ($roundMeta != '') ? unserialize($roundMeta) : array();",{"fn":230,"file":256,"line":266,"context":267},1779,"$deck = unserialize($results[0]->roundDeck);",{"fn":230,"file":256,"line":269,"context":270},1825,"$cards = unserialize($lastRounds[0]->roundDeck);",{"fn":230,"file":256,"line":272,"context":273},1924,"$cardsList = unserialize($results[0]->cardsList);",{"fn":230,"file":256,"line":275,"context":276},1965,"$playersHand->cards = unserialize($playersHand->cardsList);",{"fn":230,"file":256,"line":278,"context":279},1966,"$playersHand->played = unserialize($playersHand->playedList);",{"fn":230,"file":256,"line":281,"context":282},1967,"$playersHand->handMetaDecode = ($playersHand->handMeta != '') ? unserialize($playersHand->handMeta) ",{"fn":230,"file":256,"line":284,"context":285},1968,"$playersHand->roundMetaDecode = ($playersHand->roundMeta != '') ? unserialize($playersHand->roundMet",{"fn":230,"file":256,"line":287,"context":288},2006,"$cardsList[$src] = unserialize($hands[$src]->cardsList);",{"fn":230,"file":256,"line":290,"context":291},2007,"$playedList[$src] = unserialize($hands[$src]->playedList);",{"fn":230,"file":256,"line":293,"context":294},2114,"$results[0]->cardsListArr = unserialize($results[0]->cardsList);",{"fn":230,"file":256,"line":296,"context":294},2129,{"fn":230,"file":256,"line":298,"context":299},2167,"$results[$index]->cardsListArr = unserialize($results[$index]->cardsList);",{"fn":230,"file":256,"line":301,"context":294},2183,{"fn":230,"file":256,"line":303,"context":304},2576,"$results[$index]->gameOpts = unserialize($results[$index]->gameMeta);",{"fn":230,"file":306,"line":307,"context":308},"include\\wpcardznet_tabletop.php",303,"$currOpts =  unserialize($lastGameDetails[0]->gameMeta);",{"prepared":310,"raw":32,"locations":311},91,[312,315],{"file":250,"line":313,"context":314},129,"$wpdb->get_results() with variable interpolation",{"file":256,"line":316,"context":314},1605,{"escaped":318,"rawEcho":319,"locations":320},25,8,[321,325,327,329,331,333,335,336],{"file":322,"line":323,"context":324},"include\\wpcardznetlib_escaping.php",33,"raw output",{"file":322,"line":326,"context":324},39,{"file":322,"line":328,"context":324},46,{"file":322,"line":330,"context":324},53,{"file":322,"line":332,"context":324},60,{"file":322,"line":334,"context":324},65,{"file":322,"line":117,"context":324},{"file":192,"line":337,"context":324},540,[],[],{"summary":341,"deductions":342},"The cardznet plugin v2.5.1 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and a lack of critical taint analysis findings are positive indicators. The plugin also demonstrates good practices with a high percentage of SQL queries using prepared statements and a substantial number of capability checks, suggesting an effort to secure its functionality. The limited attack surface with all identified entry points having authentication checks further enhances its security. However, there are areas for improvement. The presence of 26 instances of the `unserialize` function, while not explicitly flagged as a taint flow issue, warrants caution as it can be a vector for deserialization vulnerabilities if improperly handled with untrusted input. Additionally, the 76% output escaping rate means that 24% of outputs are not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if the unescaped data is user-controlled or originates from an untrusted source.",[343,345],{"reason":344,"points":319},"Potential for unserialize vulnerabilities",{"reason":346,"points":347},"Unescaped output detected",5,"2026-03-17T00:50:47.806Z",{"wat":350,"direct":362},{"assetPaths":351,"generatorPatterns":359,"scriptPaths":360,"versionParams":361},[352,353,354,355,356,357,358],"\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fcss\u002Fwpcardznet.css","\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fjs\u002Fwpcardznetlib_js.js","\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fjs\u002Fwpcardznetlib_fullscreen.js","\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fjs\u002Fwpcardznet.js","\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fadmin\u002Fcss\u002Fwpcardznet-admin.css","\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fadmin\u002Fjs\u002Fwpcardznetlib_admin.js","\u002Fwp-content\u002Fplugins\u002Fcardznet\u002Fadmin\u002Fjs\u002Fwpcardznet_admin.js",[],[],[],{"cssClasses":363,"htmlComments":370,"htmlAttributes":371,"restEndpoints":372,"jsGlobals":373,"shortcodeOutput":377},[364,365,366,367,368,369],"wpcardznetlib-js","wpcardznetlib-fullscreen","wpcardznet-js","wpcardznet-admin","wpcardznetlib_admin","wpcardznet_admin",[],[],[],[374,375,376],"WPCardzNetLibUtilsClass","WPCardzNetAdminDBaseClass","WPCardzNetLibDevCallerClass",[378,379],"[wpcardznet]","[wpcardznet-shortcode]"]