[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOP0tmAiy5obxneu56OMioJokn6NBJZbFE7NOo3BvvYc":3,"$f2detIp8Jcd_cFv0ntpbBpAAFOSMvBzhej3tbAbm39BI":320,"$fKKccmgKe0O3QQ_2V3Pe91V8ScSOLawGrdeG2qqPO1M0":325},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":37,"analysis":143,"fingerprints":291},"cat-block","Cat Block","2.6.18","cvmh","https:\u002F\u002Fprofiles.wordpress.org\u002Fcvmh\u002F","\u003Cp>Adds a block (widget or shortcode), which scrolls through the posts in a category.\u003C\u002Fp>\n\u003Ch4>Current features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy to use\u003C\u002Fli>\n\u003Cli>Only fade effect\u003C\u002Fli>\n\u003Cli>Customizable\u003C\u002Fli>\n\u003Cli>Shortcode & Widget\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcode\u003C\u002Fh4>\n\u003Cp>Use [cvmh-catblock]\u003Cbr \u002F>\nIf you want to disable a parameter which is on true by default, put an empty string. Example: [cvmh-catblock slideshow=””]\u003C\u002Fp>\n\u003Ch4>Shortcode parameters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>title: widget title (default: Category block)\u003C\u002Fli>\n\u003Cli>introduction: text before posts list (default: empty)\u003C\u002Fli>\n\u003Cli>category: array of category ids to use (default: empty, all categories will be used)\u003C\u002Fli>\n\u003Cli>count: number of psts to display (default: 3, set to -1 if you want all posts)\u003C\u002Fli>\n\u003Cli>buttonall: weither to display a link to the category (default: true, only if category has parameter has only one category id)\u003C\u002Fli>\n\u003Cli>alltext: text of the “all button” (default: See all)\u003C\u002Fli>\n\u003Cli>posttype: post type to get (default: post)\u003C\u002Fli>\n\u003Cli>showimage: weither to display the post thumbnail (default: false)\u003C\u002Fli>\n\u003Cli>imagesize: size of the post thumbnail (default: thumbnail)\u003C\u002Fli>\n\u003Cli>showtitle: weither to display the post title (default: true)\u003C\u002Fli>\n\u003Cli>titletag: html tag for the post title (default: h3)\u003C\u002Fli>\n\u003Cli>titlelength: max length for the post title in caracters (default: 45)\u003C\u002Fli>\n\u003Cli>showexcerpt: weither to display the post excerpt (default: false)\u003C\u002Fli>\n\u003Cli>excerptlength: max length for the excerpt in words (default: 50)\u003C\u002Fli>\n\u003Cli>showdate: weither to display the post date (default: false)\u003C\u002Fli>\n\u003Cli>dateformat: post date format (default: j F Y)\u003C\u002Fli>\n\u003Cli>showreadmore: weither to display a link to the post in addition to the link on the post title (default: true)\u003C\u002Fli>\n\u003Cli>readmoretext: text of the “read more” button (default: Read more)\u003C\u002Fli>\n\u003Cli>readmoretype: html tag for the “read more” button (default: anchor, use “button” if you want a link in javascript)\u003C\u002Fli>\n\u003Cli>slideshow: display posts in a slideshow (default: true)\u003C\u002Fli>\n\u003Cli>duration: duration of a slide in ms (default: 7000)\u003C\u002Fli>\n\u003Cli>shownav: weither to display dots for navigation if slideshow is activated (default: true)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Looking for a WordPress agency? Contact us: \u003Ca href=\"http:\u002F\u002Fwww.agence-web-cvmh.fr\" rel=\"nofollow ugc\">agence web WordPress\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>How to uninstall Cat Block\u003C\u002Fh3>\n\u003Cp>To uninstall Cat Block, you just have to de-activate the plugin from the plugins list.\u003C\u002Fp>\n","Adds a block (widget or shortcode), which scrolls through the posts in a category.",10,1926,100,1,"2022-01-26T19:38:00.000Z","5.9.13","3.6","",[20,21,22],"category","taxonomy","widget","http:\u002F\u002Fwww.agence-web-cvmh.fr","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcat-block.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":34,"computed_at":36},5,180,81,30,"2026-06-03T01:21:47.858Z",[38,61,86,105,123],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":18,"tags":53,"homepage":57,"download_link":58,"security_score":59,"vuln_count":14,"unpatched_count":26,"last_vuln_date":60,"fetched_at":28},"list-custom-taxonomy-widget","List Custom Taxonomy Widget","4.2","Nick Halsey","https:\u002F\u002Fprofiles.wordpress.org\u002Fcelloexpressions\u002F","\u003Cp>The List Custom Taxonomy Widget is a quick and easy way to display custom taxonomies. Simply choose the taxonomy name you want to display from an auto-populated list. You can also set a title to display for the widget. Multiple list custom taxonomy widgets can be added to the same and other sidebars as well. There are several display options (including as a dropdown), and it generally behaves similarly to the built-in categories widget but with the addition of custom taxonomies.\u003C\u002Fp>\n","The List Custom Taxonomy Widget is a quick and easy way to display custom taxonomies. Simply choose the taxonomy name you want to display from an auto …",9000,119279,94,21,"2024-07-13T01:39:00.000Z","6.6.5","3.3",[20,54,55,56,22],"custom-tax","custom-taxonomy","sidebar","http:\u002F\u002Fcelloexpressions.com\u002Fplugins\u002Flist-custom-taxonomy-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flist-custom-taxonomy-widget.4.2.zip",92,"2024-04-22 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":83,"download_link":84,"security_score":13,"vuln_count":14,"unpatched_count":26,"last_vuln_date":85,"fetched_at":28},"wp-categories-widget","WP Categories Widget","2.8.1","WP-EXPERTS.IN","https:\u002F\u002Fprofiles.wordpress.org\u002Findia-web-developer\u002F","\u003Cp>The “WP Categories Widget” is a simple plugin to display the list of categories for any taxonomies type (WooCommerce Product Category, Blog Category, Project Category…etc) on your wordpress website. Using WP Categries Widget you can display list of categories anywhere on your website. And also you can disable the widget block editor and enable the classic widget layut to edit the sidebar.\u003C\u002Fp>\n\u003Cp>Note : please don’t forget to leave your valuable feedback and suggestions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Send your query to \u003Ca href=\"mailto:info@wp-experts.in\" rel=\"nofollow ugc\">AUTHOR\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Video Tutorial :\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FpbsnErpu_8U?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>`Features`\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable Widget Block Editor \u003C\u002Fli>\n\u003Cli>Display Categories Post Count \u003C\u002Fli>\n\u003Cli>Hide Child Categories\u003C\u002Fli>\n\u003Cli>Hide Widget Title\u003C\u002Fli>\n\u003Cli>Show Categories for Any Taxonomies Type\u003C\u002Fli>\n\u003Cli>Exclude\u002FInclude Categories\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Addon Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display Category as Drop Down\u003C\u002Fli>\n\u003Cli>Display Category Posts\u003C\u002Fli>\n\u003Cli>Manage WP Widget Style (Background Color, Text Color, Border Style & Color)\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Add Custom CSS for every Widget\u003C\u002Fp>\n\u003Ch3>\u003Ca href=\"https:\u002F\u002Fwww.wp-experts.in\u002Fproducts\u002Fwp-categories-widget-addon\u002F?utm_source=wordpress.org&utm_medium=free-plugin&utm_campaign=wcw-paid\" rel=\"nofollow ugc\">Downalod Add-on\u003C\u002Fa>.\u003C\u002Fh3>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Display the list of categories for any taxonomies type (WooCommerce Product Category, Blog Category, Project Category...etc) in sidebar",7000,117458,90,27,"2026-02-16T14:20:00.000Z","6.9.4","6.0","8.0",[78,79,80,81,82],"category-widget","custom-widget","posts-widget","product-categories-widget","taxonomy-widget","https:\u002F\u002Fwww.wp-experts.in\u002Fproducts\u002Fwp-categories-widget-addon\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-categories-widget.zip","2023-08-10 00:00:00",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":96,"num_ratings":97,"last_updated":98,"tested_up_to":99,"requires_at_least":75,"requires_php":100,"tags":101,"homepage":103,"download_link":104,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"ns-category-widget","NS Category Widget","4.1.6","Nilambar Sharma","https:\u002F\u002Fprofiles.wordpress.org\u002Fnilambar\u002F","\u003Cp>Are you frustrated by the lack of customization options in default Category widget in WordPress? Then this plugin is for you. Works in similar fashion but with several customization options. Cheers !\u003C\u002Fp>\n","A plugin to add widget for listing Categories and Taxonomies. Extending Default WordPress Category Widget.",1000,42287,96,34,"2025-09-12T01:32:00.000Z","6.8.5","7.2.24",[20,102,56,21,22],"listing","https:\u002F\u002Fwww.nilambar.net\u002F2013\u002F12\u002Fns-category-widget-wordpress-plugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fns-category-widget.4.1.6.zip",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":13,"downloaded":113,"rating":114,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":18,"tags":119,"homepage":121,"download_link":122,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"category-description-widget","Category Description Widget","2.1","Dominik Schwind","https:\u002F\u002Fprofiles.wordpress.org\u002Fdominikschwind-1\u002F","\u003Cp>Enables a widget with the category description. This is useful if the theme you are using is not showing\u003Cbr \u002F>\nthis information.\u003C\u002Fp>\n\u003Cp>Works on tags and other taxonomies as well.\u003C\u002Fp>\n","Enables a widget with the category description.",5580,46,3,"2017-11-09T20:30:00.000Z","4.9.29","3.0",[20,120,21,22],"tags","http:\u002F\u002Flostfocus.de","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcategory-description-widget.2.1.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":13,"num_ratings":133,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":18,"tags":137,"homepage":141,"download_link":142,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"simple-category-posts-widget","Simple Category Posts Widget","0.1","psdtohtmlcloud","https:\u002F\u002Fprofiles.wordpress.org\u002Fpsdtohtmlcloud\u002F","\u003Cp>Simple Category Posts Widget is simple and easy to use wordpress plugin.Lists taxonomy\u002Fcategory posts in widget with options to enable or disable featured image\u002Fexcerpt, number of posts to display, select taxonomy,select multiple categories, select post type.\u003C\u002Fp>\n\u003Cp>Major features of Simple Category Posts Widget:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Lists taxonomy\u002Fcategory posts in widget\u003C\u002Fli>\n\u003Cli>options to enable or disable featured image\u003C\u002Fli>\n\u003Cli>options to enable or disable Excerpt\u003C\u002Fli>\n\u003Cli>number of posts to display\u003C\u002Fli>\n\u003Cli>select multiple categories\u002Fterms.\u003C\u002Fli>\n\u003Cli>select post type.\u003C\u002Fli>\n\u003Cli>Easy to modify HTML.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Demos:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.psdtohtmlcloud.com\u002Fblog\u002F\" rel=\"nofollow ugc\">PSD to HTML Cloud\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Detailed Instructions:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.psdtohtmlcloud.com\u002Fsimple-category-posts-widget\" rel=\"nofollow ugc\">Simple Category Posts Widget\u003C\u002Fa>\u003C\u002Fp>\n","Simple Category Posts Widget is simple and easy to use wordpress plugin.Lists taxonomy\u002Fcategory posts in widget with options to enable or disable feat …",50,2971,4,"2017-01-02T11:06:00.000Z","4.7.33","3.1",[138,139,124,140],"category-posts-widget","post-type-posts-widget","taxonomy-posts-widget","http:\u002F\u002Fwww.psdtohtmlcloud.com\u002Fsimple-category-posts-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-category-posts-widget.zip",{"attackSurface":144,"codeSignals":181,"taintFlows":278,"riskAssessment":279,"analyzedAt":290},{"hooks":145,"ajaxHandlers":173,"restRoutes":174,"shortcodes":175,"cronEvents":180,"entryPointCount":14,"unprotectedCount":26},[146,152,156,158,162,166,170],{"type":147,"name":148,"callback":149,"priority":14,"file":150,"line":151},"action","plugins_loaded","cvmh_catblock_constants","cat-block.php",16,{"type":147,"name":148,"callback":153,"priority":154,"file":150,"line":155},"cvmh_catblock_i18n",2,25,{"type":147,"name":148,"callback":157,"priority":115,"file":150,"line":35},"cvmh_catblock_includes",{"type":147,"name":159,"callback":160,"file":150,"line":161},"widgets_init","register",37,{"type":147,"name":163,"callback":164,"file":150,"line":165},"wp_enqueue_scripts","cvmh_catblock_front_enqueues",39,{"type":147,"name":167,"callback":168,"file":150,"line":169},"admin_enqueue_scripts","cvmh_catblock_admin_scripts",42,{"type":147,"name":171,"callback":168,"file":150,"line":172},"customize_controls_enqueue_scripts",43,[],[],[176],{"tag":177,"callback":178,"file":179,"line":133},"cvmh-catblock","cvmh_catblock_front_shortcode","includes\\shortcode.php",[],{"dangerousFunctions":182,"sqlUsage":183,"outputEscaping":185,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":277},[],{"prepared":26,"raw":26,"locations":184},[],{"escaped":186,"rawEcho":187,"locations":188},18,49,[189,193,195,197,198,200,201,203,205,207,209,210,211,213,215,216,218,220,222,223,225,226,228,230,232,234,235,237,239,241,242,244,246,248,249,251,253,255,257,259,260,262,264,266,267,269,271,273,275],{"file":190,"line":191,"context":192},"includes\\form.php",31,"raw output",{"file":190,"line":194,"context":192},38,{"file":190,"line":196,"context":192},45,{"file":190,"line":196,"context":192},{"file":190,"line":199,"context":192},56,{"file":190,"line":199,"context":192},{"file":190,"line":202,"context":192},57,{"file":190,"line":204,"context":192},67,{"file":190,"line":206,"context":192},75,{"file":190,"line":208,"context":192},80,{"file":190,"line":208,"context":192},{"file":190,"line":34,"context":192},{"file":190,"line":212,"context":192},89,{"file":190,"line":214,"context":192},97,{"file":190,"line":214,"context":192},{"file":190,"line":217,"context":192},98,{"file":190,"line":219,"context":192},104,{"file":190,"line":221,"context":192},107,{"file":190,"line":221,"context":192},{"file":190,"line":224,"context":192},115,{"file":190,"line":224,"context":192},{"file":190,"line":227,"context":192},116,{"file":190,"line":229,"context":192},123,{"file":190,"line":231,"context":192},131,{"file":190,"line":233,"context":192},137,{"file":190,"line":233,"context":192},{"file":190,"line":236,"context":192},138,{"file":190,"line":238,"context":192},145,{"file":190,"line":240,"context":192},151,{"file":190,"line":240,"context":192},{"file":190,"line":243,"context":192},152,{"file":190,"line":245,"context":192},159,{"file":190,"line":247,"context":192},165,{"file":190,"line":247,"context":192},{"file":190,"line":250,"context":192},166,{"file":190,"line":252,"context":192},174,{"file":190,"line":254,"context":192},178,{"file":190,"line":256,"context":192},185,{"file":190,"line":258,"context":192},193,{"file":190,"line":258,"context":192},{"file":190,"line":261,"context":192},194,{"file":190,"line":263,"context":192},201,{"file":190,"line":265,"context":192},207,{"file":190,"line":265,"context":192},{"file":190,"line":268,"context":192},208,{"file":270,"line":202,"context":192},"includes\\widget.php",{"file":270,"line":272,"context":192},62,{"file":270,"line":274,"context":192},64,{"file":270,"line":276,"context":192},66,[],[],{"summary":280,"deductions":281},"The \"cat-block\" plugin version 2.6.18 exhibits a generally good security posture based on the provided static analysis. The absence of dangerous functions, SQL injection vulnerabilities (all queries use prepared statements), file operations, and external HTTP requests are positive indicators. Furthermore, the lack of any recorded CVEs in its vulnerability history suggests a history of responsible development and maintenance.\n\nHowever, there are significant areas of concern that temper this otherwise positive assessment. The most prominent issue is the low percentage (27%) of properly escaped output. This indicates a high likelihood of cross-site scripting (XSS) vulnerabilities, where malicious scripts could be injected through user-supplied data and executed in the browser of other users. The absence of nonce checks and capability checks on the identified entry point (a shortcode) is also a critical oversight. While the attack surface is small (one shortcode), its lack of authorization and integrity checks means that its functionality could be triggered by any logged-in user, potentially leading to unexpected or harmful behavior.\n\nIn conclusion, while \"cat-block\" has avoided common vulnerabilities like SQL injection and has a clean CVE history, the prevalent unescaped output and the lack of security checks on its shortcode represent significant weaknesses. The plugin needs immediate attention to address these output escaping and authorization deficiencies to mitigate the risk of XSS and unauthorized actions.",[282,285,288],{"reason":283,"points":284},"Low output escaping percentage",12,{"reason":286,"points":287},"Missing nonce check on shortcode",7,{"reason":289,"points":287},"Missing capability check on shortcode","2026-03-17T00:10:52.847Z",{"wat":292,"direct":303},{"assetPaths":293,"generatorPatterns":297,"scriptPaths":298,"versionParams":299},[294,295,296],"\u002Fwp-content\u002Fplugins\u002Fcat-block\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fcat-block\u002Fassets\u002Fjs\u002Ffront.js","\u002Fwp-content\u002Fplugins\u002Fcat-block\u002Fassets\u002Fcss\u002Ffront.css",[],[295],[300,301,302],"cat-block\u002Fassets\u002Fcss\u002Fadmin.css?ver=","cat-block\u002Fassets\u002Fjs\u002Ffront.js?ver=","cat-block\u002Fassets\u002Fcss\u002Ffront.css?ver=",{"cssClasses":304,"htmlComments":312,"htmlAttributes":313,"restEndpoints":316,"jsGlobals":317,"shortcodeOutput":318},[305,306,307,308,309,310,311],"catblock-nav","catblock-img","catblock-goto","catblock-read-more","catblock-content","catblock-excerpt","catblock-date",[],[314,315],"data-slide","data-url",[],[],[319],"\u003Cul class=\"catblock-nav\">",{"error":321,"url":322,"statusCode":323,"statusMessage":324,"message":324},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcat-block\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":26,"versions":326},[]]