[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fE_AC0cpXOC77Wl0JhgrHYuHP_JcrbEJ8X51vjgOisQM":3,"$fLTot5wLBNs0akVzaQYqTzZvxBt3NTyiEibXLl7zNfvo":227,"$fXlxFxqNi4f92PSvFQLH6jz8szCTj4RMdGoFzkmlCGUM":232},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":37,"analysis":134,"fingerprints":206},"centralhubb-wp-adserver-client","Central Hubb AdServer Client","1.0","centralhubb","https:\u002F\u002Fprofiles.wordpress.org\u002Fiflickle\u002F","\u003Cp>Hassle-free youtube video and image advert management with analytics and short tags — all in one place.\u003C\u002Fp>\n","The ideal plugin for stats, related posts, search engine optimization, social sharing, protection, backups, security, and more.",0,3374,100,1,"2018-05-17T15:28:00.000Z","4.9.29","4.7","7.0",[20,21,22,23,24],"adverts","central-hubb","images","videos","wordpress-com","https:\u002F\u002Fgithub.com\u002Fcentral-hubb\u002Fcentral-hubb-adserver","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcentralhubb-wp-adserver-client.1.1.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"iflickle",30,84,"2026-05-20T04:12:15.573Z",[38,62,83,102,117],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":14,"unpatched_count":11,"last_vuln_date":61,"fetched_at":29},"acf-galerie-4","ACF Galerie 4","1.4.3","Navneil Naicker","https:\u002F\u002Fprofiles.wordpress.org\u002Fnavzme\u002F","\u003Cp>ACF Galerie 4 is a versatile WordPress plugin designed to simplify the creation and management of media galleries on your website. With its intuitive interface and robust features, you can effortlessly showcase your media in a visually appealing and engaging way.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fte2HOJOF1e4?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Effortless Gallery Creation\u003C\u002Fstrong>: Build stunning galleries with ease using Advanced Custom Fields (ACF).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Versatile Content\u003C\u002Fstrong>: Showcase documents, images, videos, and more in your galleries.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Seamless Integration\u003C\u002Fstrong>: Leverage the power of WordPress’ Restful API for flexible data handling.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User-Friendly Forms\u003C\u002Fstrong>: Allow visitors to submit content directly through front-end forms powered by \u003Ca href=\"https:\u002F\u002Fwww.advancedcustomfields.com\u002Fresources\u002Facf_form\u002F\" rel=\"nofollow ugc\">acf_form()\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Elementor and Bricks Builder Compatibility (Available in ACF Galerie 4 Pro)\u003C\u002Fstrong>: Enjoy a seamless integration with Elementor and Bricks Builder for even more customization options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GraphQL Support\u003C\u002Fstrong>: Unlock powerful and flexible queries for your custom galleries with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-graphql\u002F\" rel=\"ugc\">WPGraphQL\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpgraphql-acf\u002F\" rel=\"ugc\">WPGraphQL for ACF\u003C\u002Fa> integration.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgalerie4.com\u002F?utm_source=wordpress.org&utm_medium=free\" rel=\"nofollow ugc\">Website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgalerie4.com\u002Fsupport\" rel=\"nofollow ugc\">Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgalerie4.com\u002F?utm_source=wordpress.org&utm_medium=free&utm_campaign=upgrade\" rel=\"nofollow ugc\">ACF Galerie 4 Pro\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PRO\u003C\u002Fh4>\n\u003Cp>The ACF Galerie 4 plugin is also available in a professional version, offering more features, enhanced functionality, and greater flexibility. ACF Galerie 4 Pro includes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Support for Elemetor\u003C\u002Fli>\n\u003Cli>Support for Bricks Builder\u003C\u002Fli>\n\u003Cli>Lifetime updates\u003C\u002Fli>\n\u003Cli>Priority Support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgalerie4.com\u002F?utm_source=wordpress.org&utm_medium=free&utm_campaign=upgrade\" rel=\"nofollow ugc\">Upgrade to ACF Galerie 4 Pro 🚀\u003C\u002Fa>\u003C\u002Fp>\n","Enhance your WordPress website with ACF Galerie 4, a powerful and customizable gallery plugin.",1000,11139,68,5,"2025-12-31T21:44:00.000Z","6.9.4","6.0","7.4",[55,56,22,57,23],"acf","gallery","media","https:\u002F\u002Fnavz.me","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Facf-galerie-4.1.4.3.zip",99,"2026-04-23 00:00:00",{"slug":63,"name":64,"version":65,"author":63,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":13,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":79,"download_link":80,"security_score":81,"vuln_count":49,"unpatched_count":14,"last_vuln_date":82,"fetched_at":29},"publitio","Publitio","2.2.5","https:\u002F\u002Fprofiles.wordpress.org\u002Fpublitio\u002F","\u003Cp>Publitio WordPress Integration Plugin\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> WordPress plugin enables effortless integration with the \u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> cloud media platform,\u003Cbr \u002F>\nproviding seamless access and embedding of your media files directly within WordPress editors through a dedicated \u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> block.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> aims to simplify the entire Media Asset Management (MAM) process by streamlining common tasks used by most web and\u003Cbr \u002F>\nmobile publishers, such as uploading, hosting, processing, publishing, monetizing, and managing media files.\u003Cbr \u002F>\nIts cloud-based platform offers secure storage, powerful on-the-fly media transformations, fast global delivery via CDN,\u003Cbr \u002F>\nwatermarking, and advanced analytics – helping content creators and businesses save time, reduce costs,\u003Cbr \u002F>\nand focus on their core activities while ensuring efficient, scalable management of all digital assets.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- Easy Embedding: Add images, videos, audios, documents, and archives files directly in Gutenberg, Elementor and classic editors using the Publitio block for quick and intuitive embedding.\n- Direct Uploads: Upload new media files to [Publitio](https:\u002F\u002Fpublit.io) cloud storage without leaving the WordPress editor.\n- Media Library Browsing: Browse your entire [Publitio](https:\u002F\u002Fpublit.io) media library in a popup window, selecting files for instant insertion.\n- Customizable Publitio Player: Embed videos and media with [Publitio](https:\u002F\u002Fpublit.io)’s fully customizable HTML5 player supporting VAST\u002FIMA ad tags for monetization and multi-format playback.\n- Optimized Delivery: Responsive images with srcset and multi-format video support for faster, adaptive loading.\n- Secure Media: Utilize [Publitio](https:\u002F\u002Fpublit.io)’s domain-level protection and HLS encryption features to safeguard your content.\n- Workflow Enhancement: Streamline content creation with easy access to cloud-hosted media assets, improving site speed and reducing server load.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Learn More & Support:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- Setup Guide: [How to setup Publitio WordPress Plugin](https:\u002F\u002Fpublit.io\u002Fcommunity\u002Fblog\u002Fintegrate-wordpress-site-with-publitio)\n- Video Guide: [How to setup Publitio WordPress plugin](https:\u002F\u002Fpublit.io\u002Fcommunity\u002Fblog\u002Fhow-to-setup-publitio-wordpress-plugin)\n- API & Documentation: [Publitio Video & Image API](https:\u002F\u002Fpublit.io\u002Fdocs)\n- Contact Support: support@publit.io, contact us through a support webwidget on our site or write on our [Community Board](https:\u002F\u002Fdashboard.publit.io\u002Fapp\u002Fdashboards\u002Fcommunity)\n- Plugin Source: [Publitio WordPress Plugin Source on Github](https:\u002F\u002Fgithub.com\u002Fob1y2k\u002Fpublitio_wp_plugin)\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Publitio plugin integrates Publitio cloud media into WordPress with a simple block for effortless uploading, browsing, and embedding of image, video,  &hellip;",400,21523,41,"2025-10-28T17:11:00.000Z","6.8.5","3.0.1","",[77,22,63,78,23],"embed","upload","https:\u002F\u002Fpublit.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublitio.zip",74,"2025-10-10 00:00:00",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":13,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":94,"tested_up_to":18,"requires_at_least":17,"requires_php":95,"tags":96,"homepage":100,"download_link":101,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29},"media-sitemap","Media Sitemap for Google","2.07","Katsushi Kawamori","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatsushi-kawamori\u002F","\u003Ch4>Output media’s sitemap for Google.\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Conforms to the specifications for Google’s image sitemaps and video sitemaps.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Fsearch\u002Fdocs\u002Fadvanced\u002Fsitemaps\u002Fimage-sitemaps\" rel=\"nofollow ugc\">Image sitemaps\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Fsearch\u002Fdocs\u002Fadvanced\u002Fsitemaps\u002Fvideo-sitemaps\" rel=\"nofollow ugc\">Video sitemaps\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Extract images and videos in posts, pages and custom posts, and organize them by post unit.\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Media library permalinks(attachment page) are not supported.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Images\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Images in the Media Library correspond to the img tag and Gallery Shortcode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Videos in the Media Library\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Videos in the Media Library correspond to the video tag and Playlist Shortcode.\u003C\u002Fli>\n\u003Cli>The thumbnail_loc tag is a specification that contains exactly the same name in the same folder as the video and with the extension jpg, png. Other than that, it is a standard icon.\u003C\u002Fli>\n\u003Cli>The description tag is a specification that contains a caption.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Videos for YouTube embed video\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Supports YouTube embed video.\u003C\u002Fli>\n\u003Cli>YouTube Data API v3 key is required.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supports style sheets\u003C\u002Fh4>\n","Output media's sitemap for Google.",8069,56,4,"2026-03-29T21:40:00.000Z","8.0",[97,22,98,99,23],"google","seo","sitemap","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmedia-sitemap\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedia-sitemap.2.07.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":13,"downloaded":110,"rating":11,"num_ratings":11,"last_updated":111,"tested_up_to":51,"requires_at_least":112,"requires_php":53,"tags":113,"homepage":75,"download_link":116,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29},"pixabay-media-downloader","Pixabay Media Downloader","2.4","kaminoweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fkaminoweb\u002F","\u003Cp>Import royalty-free images, photos, and videos from Pixabay to your Media Library.\u003C\u002Fp>\n\u003Cp>Easily search through millions of high-quality, royalty-free photos, illustrations, vector graphics, and videos using keywords.\u003C\u002Fp>\n\u003Cp>Preview images and videos, select the ones you love, and import them instantly into your Media Library with just one click.\u003C\u002Fp>\n\u003Cp>Say goodbye to manual downloads and uploads.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Search and download both images and videos from Pixabay\u003Cbr \u002F>\n– Advanced filtering options for images (type, orientation, size)\u003Cbr \u002F>\n– Video type filtering (film, animation)\u003Cbr \u002F>\n– SafeSearch option for family-friendly content\u003Cbr \u002F>\n– Enhanced metadata storage for videos (dimensions, views, likes)\u003Cbr \u002F>\n– Improved filename generation and collision avoidance\u003Cbr \u002F>\n– Preview functionality for both images and videos\u003Cbr \u002F>\n– Caching system for faster search results\u003C\u002Fp>\n","Import royalty-free images, photos, and videos from Pixabay to your Media Library.",1755,"2025-12-19T03:00:00.000Z","5.0",[114,22,57,115,23],"downloader","pixabay","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpixabay-media-downloader.2.4.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":11,"downloaded":125,"rating":11,"num_ratings":11,"last_updated":126,"tested_up_to":127,"requires_at_least":112,"requires_php":53,"tags":128,"homepage":75,"download_link":131,"security_score":132,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":133},"media-carousel-acf-field","Media Carousel ACF Field","1.0.14","Srawan Paudel","https:\u002F\u002Fprofiles.wordpress.org\u002Fsrawan071\u002F","\u003Cp>A plugin that displays media items (images & videos) in a carousel fetched from an ACF field.\u003C\u002Fp>\n","Displays images and videos in a carousel fetched from Advanced Custom Fields (ACF).",443,"2025-03-25T20:09:00.000Z","6.7.5",[55,22,129,23,130],"media-carousel","wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedia-carousel-acf-field.1.0.14.zip",92,"2026-04-06T09:54:40.288Z",{"attackSurface":135,"codeSignals":186,"taintFlows":197,"riskAssessment":198,"analyzedAt":205},{"hooks":136,"ajaxHandlers":164,"restRoutes":165,"shortcodes":177,"cronEvents":184,"entryPointCount":93,"unprotectedCount":185},[137,143,148,152,155,159],{"type":138,"name":139,"callback":140,"file":141,"line":142},"action","rest_api_init","closure","classes\u002Fapi.php",33,{"type":138,"name":144,"callback":145,"file":146,"line":147},"admin_menu","adminMenu","classes\u002Fplugin.php",19,{"type":138,"name":149,"callback":150,"file":146,"line":151},"wp_footer","enqueueJs",20,{"type":138,"name":144,"callback":145,"file":153,"line":154},"classes\u002Fsettings.php",22,{"type":138,"name":156,"callback":157,"file":153,"line":158},"admin_init","pageInit",23,{"type":138,"name":160,"callback":161,"file":162,"line":163},"init","CentralHubb\\centralHubbInit","index.php",21,[],[166,173],{"namespace":167,"route":168,"methods":169,"callback":171,"permissionCallback":28,"file":141,"line":172},"v1",".*",[170],"GET","getResponseBody",34,{"namespace":167,"route":168,"methods":174,"callback":171,"permissionCallback":28,"file":141,"line":176},[175],"POST",39,[178,181],{"tag":179,"callback":180,"file":146,"line":154},"central-hubb-image-playlist","getShortCodeImagePlaylist",{"tag":182,"callback":183,"file":146,"line":158},"central-hubb-video","getShortCodeVideo",[],2,{"dangerousFunctions":187,"sqlUsage":188,"outputEscaping":190,"fileOperations":11,"externalRequests":185,"nonceChecks":14,"capabilityChecks":185,"bundledLibraries":196},[],{"prepared":11,"raw":11,"locations":189},[],{"escaped":191,"rawEcho":14,"locations":192},12,[193],{"file":153,"line":194,"context":195},64,"raw output",[],[],{"summary":199,"deductions":200},"The \"centralhubb-wp-adserver-client\" v1.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries, making it resilient against SQL injection vulnerabilities. The plugin also shows a high percentage of properly escaped output and no file operations or dangerous function usage, which are strong indicators of secure coding. Furthermore, the absence of any recorded vulnerabilities, CVEs, or critical taint flows suggests a generally stable history.\n\nHowever, there are notable concerns regarding the attack surface. The plugin exposes two REST API routes that lack permission callbacks, meaning they are accessible without proper authentication. This represents a significant security risk, as attackers could potentially interact with these endpoints to gain unauthorized access or trigger unintended actions. While there is one nonce check and two capability checks present, these are insufficient to protect the entirety of the exposed REST API endpoints.\n\nIn conclusion, while the plugin excels in certain secure coding practices like data sanitization and SQL handling, the unprotected REST API endpoints present a critical weakness. The lack of historical vulnerabilities is a positive sign, but it does not mitigate the immediate risk posed by the exposed entry points. The developer should prioritize implementing proper authorization checks for all REST API routes.",[201,204],{"reason":202,"points":203},"REST API routes without permission callbacks",10,{"reason":202,"points":203},"2026-04-16T15:11:19.208Z",{"wat":207,"direct":214},{"assetPaths":208,"generatorPatterns":210,"scriptPaths":211,"versionParams":212},[209],"\u002Fwp-content\u002Fplugins\u002Fcentralhubb-wp-adserver-client\u002Fsdk\u002Fsdk.min.js",[],[209],[213,6],"centralhubb_js",{"cssClasses":215,"htmlComments":216,"htmlAttributes":217,"restEndpoints":220,"jsGlobals":222,"shortcodeOutput":224},[179],[],[218,219],"data-id","data-auto_play",[221],"\u002Fwp-json\u002Fv1\u002F",[223],"phpVars",[225,226],"[central-hubb-image-playlist","[central-hubb-video",{"error":228,"url":229,"statusCode":230,"statusMessage":231,"message":231},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcentralhubb-wp-adserver-client\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":14,"versions":233},[234],{"version":235,"download_url":26,"svn_tag_url":236,"released_at":28,"has_diff":237,"diff_files_changed":238,"diff_lines":28,"trac_diff_url":28,"vulnerabilities":239,"is_current":237},"1.1","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcentralhubb-wp-adserver-client\u002Ftags\u002F1.1\u002F",false,[],[]]