[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fnpXl0MxKo578mgGaYDNBM-44zAglAsogePo8l-YplzE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":139,"fingerprints":221},"cbnet-multi-author-comment-notification","cbnet Multi Author Comment Notification","3.2","Chip Bennett","https:\u002F\u002Fprofiles.wordpress.org\u002Fchipbennett\u002F","\u003Cp>Easily enable email notification of new comments to users other than the post author.\u003C\u002Fp>\n\u003Cp>Via Dashboard -> Settings -> Discussion, enable email notification to users by site admin, user role (Administrator, Editor, Author, Contributor, Subscriber ), or define arbitary email addresses to notify. Also, optionally disable email notification for comments left by registered users.\u003C\u002Fp>\n\u003Cp>Email notification for individual users can be enabled via each user’s profile.\u003C\u002Fp>\n","Send comment notification and comment moderation emails to multiple users. Select users individually or by user role, or send emails to arbitrary emai …",1000,29799,86,6,"2016-04-13T14:04:00.000Z","4.5.33","3.7","",[20,21,22,23,24],"author","cbnet","comment","comments","multi","https:\u002F\u002Fgithub.com\u002Fchipbennett\u002Fcbnet-multi-author-comment-notification","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcbnet-multi-author-comment-notification.3.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":27,"computed_at":38},"chipbennett",7,2800,87,30,"2026-04-04T06:49:38.315Z",[40,61,81,101,122],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":18,"tags":55,"homepage":59,"download_link":60,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"comment-email-reply","Comment Email Reply","1.0.4","kilozwo","https:\u002F\u002Fprofiles.wordpress.org\u002Fkilozwo\u002F","\u003Cp>Simply notifies comment-author via email if someone replies to his comment. Zero Configuration.\u003C\u002Fp>\n","Simply notifies comment-author via email if someone replies to his comment. Zero Configuration.",600,10901,90,15,"2015-04-06T11:37:00.000Z","4.1.42","3.0.1",[20,23,56,57,58],"email","notification","reply","http:\u002F\u002Fkilozwo.de\u002Fwordpress-comment-email-reply-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomment-email-reply.1.0.4.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":69,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":18,"tags":75,"homepage":79,"download_link":80,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"admin-commenters-comments-count","Admin Commenters Comments Count","1.9.6","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>Next to all appearances of each commenter’s name in the admin, this plugin shows a comments bubble identical to the one shown for posts in the admin listing of posts. The comments bubble shows the number of approved comments for that person and potentially a red superscript circle indicating the number of pending comments for the person (assuming they have any). The comment counts are linked to listings of comments associated solely with that particular commenter.\u003C\u002Fp>\n\u003Cp>By default in WordPress, it is not possible to tell via a single glance whether a particular commenter has commented before or how many times the’ve commented.\u003C\u002Fp>\n\u003Cp>This plugin adds this handy capability to the WordPress admin pages that allows you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Quickly identify a first-time commenter\u003C\u002Fli>\n\u003Cli>Quickly identify unfamiliar commenters that have in fact commented before\u003C\u002Fli>\n\u003Cli>Quickly see how many total comments a particular commenter has made, and how many comments are pending\u003C\u002Fli>\n\u003Cli>Easily navigate to a listing of all approved comments and all moderated comments by a commenter, in order to see what post and when they last commented (or first commented), get a feel for the nature of their comments, or find something they’ve said in the past\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Specifically, the linked comment count appears next to commenters in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The “Comments” listing of comments (including comment search results)\u003C\u002Fli>\n\u003Cli>The “Comments for ‘POST_TITLE'” listing of post-specific comments\u003C\u002Fli>\n\u003Cli>The “Discussion” box of the “Edit Post” page for a post with comments\u003C\u002Fli>\n\u003Cli>The “Recent Comments” admin dashboard widget\u003C\u002Fli>\n\u003Cli>The “Users” listing of users (as the column “Comments”)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Commenters are identified by the email address they provided when commenting. If your site does not require that commenters submit their email address when commenting, this plugin will use the commenter’s name as the identifier, though since this is a publicly viewable piece of data it’s possible that multiple people could be posting under the same “name”, so this method has the potential to be not as accurate.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fadmin-commenters-comments-count\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadmin-commenters-comments-count\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fadmin-commenters-comments-count\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n","Displays a count of each commenter's total number of comments (linked to those comments) next to their name on any admin page.",100,18940,8,"2021-05-02T06:46:00.000Z","5.7.15","4.6",[22,76,77,78,23],"comment-author","comment-count","commenters","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fadmin-commenters-comments-count\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-commenters-comments-count.1.9.6.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":69,"downloaded":89,"rating":90,"num_ratings":34,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":18,"tags":94,"homepage":99,"download_link":100,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"multilingual-comments","Multilingual Comments","1.0.1","Yame","https:\u002F\u002Fprofiles.wordpress.org\u002Fyame\u002F","\u003Cp>Multilingual Comments is an add-on for WPML \u002F WooCommerce. This plugin makes it possible via its own plugin settings, to show\u003Cbr \u002F>\n– comments on blog posts in all languages\u003Cbr \u002F>\n– product reviews in all languages (also the average rating will be calculated as 1 total)\u003C\u002Fp>\n\u003Cp>For example, if a WooCommerce product has\u003Cbr \u002F>\n– 4 English reviews\u003Cbr \u002F>\n– 7 French reviews\u003Cbr \u002F>\n– 5 Dutch reviews\u003Cbr \u002F>\nthe product will have 16 reviews, no matter which language is selected.\u003C\u002Fp>\n","Multilingual Comments is an add-on for WPML \u002F WooCommerce. This plugin makes it possible via its own plugin settings, to show: comments on blog posts  …",3192,80,"2019-05-29T20:05:00.000Z","5.1.22","3.0.0",[23,95,96,97,98],"multilingual","reviews","woocommerce","wpml","https:\u002F\u002Fyame.be","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilingual-comments.zip",{"slug":102,"name":103,"version":43,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":69,"downloaded":108,"rating":109,"num_ratings":14,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":18,"tags":113,"homepage":119,"download_link":120,"security_score":121,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"polygon-recent-comments-with-avatar","Polygon Recent Comments With Avatar","polyxgo","https:\u002F\u002Fprofiles.wordpress.org\u002Fsanddesert88\u002F","\u003Cp>Display recent comments in the sidebar with user avatar\u002FGravatar support, styles, information, and an active scrollbar for handling numerous comments.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpolygon-recent-comments-with-avatar\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwikipoly.com\u002Fen\u002Fpoly-comments\u002F\" rel=\"nofollow ugc\">Support and request additional features as needed\u003C\u002Fa>\u003C\u002Fp>\n","Polygon Recent Comments With Avatar: Recent comments with avatar support, including Gravatar, date, username, user link, and scrollbar.",5262,94,"2024-05-24T22:52:00.000Z","6.5.8","4.1",[114,115,116,117,118],"display-recent-comments","recent-comment-with-author-gravatar","recent-comments","recent-comments-information","recent-comments-with-avatar","https:\u002F\u002Fpolyxgo.vn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpolygon-recent-comments-with-avatar.1.0.4.zip",92,{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":69,"downloaded":130,"rating":131,"num_ratings":132,"last_updated":133,"tested_up_to":134,"requires_at_least":74,"requires_php":135,"tags":136,"homepage":137,"download_link":138,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"simple-comment-notification","Simple Comment Notification","1.2.4","Beherit","https:\u002F\u002Fprofiles.wordpress.org\u002Fbeherit\u002F","\u003Cp>Sends an simply email notification to the comment author, when someone replies to his comment. No configuration, support WordPress translation process.\u003C\u002Fp>\n","Sends an simply email notification to the comment author, when someone replies to his comment.",6330,74,3,"2020-04-08T08:41:00.000Z","5.4.19","7.0",[20,22,23,56,57],"https:\u002F\u002Fbeherit.pl\u002Fen\u002Fwordpress\u002Fsimple-comment-notification\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-comment-notification.1.2.4.zip",{"attackSurface":140,"codeSignals":181,"taintFlows":212,"riskAssessment":213,"analyzedAt":220},{"hooks":141,"ajaxHandlers":177,"restRoutes":178,"shortcodes":179,"cronEvents":180,"entryPointCount":28,"unprotectedCount":28},[142,148,153,157,162,165,169,172],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","plugins_loaded","cbnet_macn_load_textdomain","cbnet-multi-author-comment-notification.php",39,{"type":149,"name":150,"callback":151,"file":146,"line":152},"filter","comment_notification_recipients","cbnet_macn_filter_comment_notification_email_to",142,{"type":149,"name":154,"callback":155,"file":146,"line":156},"comment_moderation_recipients","cbnet_macn_filter_comment_moderation_email_to",154,{"type":143,"name":158,"callback":159,"file":160,"line":161},"show_user_profile","cbent_macn_add_user_meta_field","custom-user-meta.php",27,{"type":143,"name":163,"callback":159,"file":160,"line":164},"edit_user_profile",28,{"type":143,"name":166,"callback":167,"file":160,"line":168},"personal_options_update","cbent_macn_save_user_meta_data",47,{"type":143,"name":170,"callback":167,"file":160,"line":171},"edit_user_profile_update",48,{"type":143,"name":173,"callback":174,"file":175,"line":176},"admin_init","cbnet_macn_register_settings","settings.php",224,[],[],[],[],{"dangerousFunctions":182,"sqlUsage":183,"outputEscaping":185,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":210,"bundledLibraries":211},[],{"prepared":28,"raw":28,"locations":184},[],{"escaped":186,"rawEcho":187,"locations":188},2,10,[189,192,194,196,198,200,202,204,206,208],{"file":175,"line":190,"context":191},133,"raw output",{"file":175,"line":193,"context":191},153,{"file":175,"line":195,"context":191},156,{"file":175,"line":197,"context":191},159,{"file":175,"line":199,"context":191},162,{"file":175,"line":201,"context":191},165,{"file":175,"line":203,"context":191},168,{"file":175,"line":205,"context":191},193,{"file":175,"line":207,"context":191},215,{"file":175,"line":209,"context":191},219,1,[],[],{"summary":214,"deductions":215},"The plugin \"cbnet-multi-author-comment-notification\" v3.2 exhibits a generally strong security posture based on the static analysis. The complete absence of identified AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points is a significant strength, indicating a minimal attack surface. Furthermore, the code signals show no dangerous functions, no direct SQL queries (all using prepared statements), and no file operations or external HTTP requests, all of which are excellent security practices.  The presence of one capability check is also positive.\n\nHowever, a notable concern arises from the low percentage of properly escaped output (17%). This suggests a potential for Cross-Site Scripting (XSS) vulnerabilities, especially if user-supplied data is directly outputted without adequate sanitization. The lack of nonce checks, while not directly tied to an attack surface in this analysis, can be a weakness in certain contexts if any unintended functionality were to be exposed.  The vulnerability history is currently clean, with no known CVEs, which is a positive indicator of past security efforts or a lack of past exploitation. Overall, while the plugin has a robust foundation and minimal exposed entry points, the insufficient output escaping presents a tangible risk that should be addressed.",[216,218],{"reason":217,"points":14},"Low percentage of properly escaped output",{"reason":219,"points":132},"No nonce checks detected","2026-03-16T18:52:54.975Z",{"wat":222,"direct":227},{"assetPaths":223,"generatorPatterns":224,"scriptPaths":225,"versionParams":226},[],[],[],[],{"cssClasses":228,"htmlComments":229,"htmlAttributes":230,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":234},[],[],[231],"cbnet_macn_comment_notify",[],[],[]]