[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCqQjmHXFeONxndDv3YvOb8az17swJCVb0Tbt3RGxgMg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":33,"analysis":124,"fingerprints":194},"chating","chatIng","1.2.1","deeping2019","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeeping2019\u002F","\u003Cp>Dieses Plugin ermöglicht es, ein OpenAI-Konto mit WordPress zu verknüpfen.\u003Cbr \u002F>\nÜber einen neuen Block können Sie einen Chatbot einfach im Gutenberg Editor einbinden.\u003Cbr \u002F>\nSie möchten mehrere Chatbots? Kein Problem! Das Plugin nutzt die Assistants von OpenAI,\u003Cbr \u002F>\nsodass unterschiedliche Chatbot-Persönlichkeiten erstellt und getestet werden können.\u003Cbr \u002F>\nDas Design des Chatbots ist vollständig anpassbar, von Farben und Dimensionen bis hin zu\u003Cbr \u002F>\nKonversationsstartern.\u003Cbr \u002F>\nEs wird eine Verbindung mit OpenAI hergestellt, um mit dem Chatbot kommunizieren zu können.\u003Cbr \u002F>\nAlle Nachrichten, die der Besucher schreibt werden zur Verarbeitung beim Abschicken an OpenAI weitergeleitet.\u003Cbr \u002F>\n(Nutzungsbedingungen von OpenAI: https:\u002F\u002Fopenai.com\u002Fde-DE\u002Fpolicies\u002Frow-terms-of-use\u002F,\u003Cbr \u002F>\nDatenschutzerklärung von OpenAI: https:\u002F\u002Fopenai.com\u002Fde-DE\u002Fpolicies\u002Frow-privacy-policy\u002F)\u003C\u002Fp>\n","Mit diesem Plugin können Sie einen Chatbot auf Ihrer Website einbinden.",0,454,100,1,"2025-10-22T09:08:00.000Z","6.8.5","6.6","7.2",[20,21,22,23],"ai","block","chatbot","ki","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchating.1.2.1.zip",null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":13,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},30,94,"2026-04-05T01:48:24.269Z",[34,55,73,92,110],{"slug":35,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":13,"downloaded":42,"rating":13,"num_ratings":14,"last_updated":43,"tested_up_to":44,"requires_at_least":45,"requires_php":46,"tags":47,"homepage":52,"download_link":53,"security_score":54,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"show-dobu-uk-availability","DoBu.uk Availability","1.1.1","Richard Palethorpe","https:\u002F\u002Fprofiles.wordpress.org\u002Frichiejp\u002F","\u003Cp>Provides a block which embeds a \u003Ca href=\"https:\u002F\u002Fdobu.uk\" rel=\"nofollow ugc\">DoBu.uk availability calendar and enquiry form\u003C\u002Fa>\u003Cbr \u002F>\nfor a given nick name.\u003C\u002Fp>\n\u003Cp>See the above link for a demonstration.\u003C\u002Fp>\n","Embed DoBu.uk availability and booking calendars",3739,"2022-11-25T09:58:00.000Z","6.1.10","6.0","7.0",[48,21,49,50,51],"availability","booking","calendar","embed","https:\u002F\u002Fdobu.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-dobu-uk-availability.1.1.1.zip",85,{"slug":56,"name":57,"version":37,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":13,"downloaded":62,"rating":13,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":24,"tags":67,"homepage":71,"download_link":72,"security_score":54,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"simple-site-lockdown","Simple Site Lockdown","Philip John","https:\u002F\u002Fprofiles.wordpress.org\u002Fphilipjohn\u002F","\u003Cp>Need to make sure that a site is private for all but the administrators? Just activate this plugin.\u003C\u002Fp>\n\u003Cp>There are no settings, no configuration – it just forces anyone that isn’t an admin to go to the login page. They won’t see anything of the site at all. Great for hiding sites really quickly.\u003C\u002Fp>\n","Provides a really simple mechanism for locking down a site so that it's private to all but logged in admin users.",9916,7,"2014-09-03T19:36:00.000Z","4.0.38","2.0.0",[21,68,69,70],"blocking","maintenance","privacy","http:\u002F\u002Fphilipjohn.co.uk\u002Fcategory\u002Fplugins\u002Fsimple-site-lockdown\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-site-lockdown.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":11,"num_ratings":11,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":46,"tags":86,"homepage":90,"download_link":91,"security_score":54,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"attrace","Attrace","2.0.21","Roeland Werring","https:\u002F\u002Fprofiles.wordpress.org\u002Fattrace\u002F","\u003Cp>Custom made dedicated blockchain capable of registering and auditing any advertisement click on chain (sale or no-sale). This concept enables anybody to start an agreement in affiliate marketing directly with a counter-party without a middleman involved.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>solving trust and transparency issues as all transactions are registered on the blockchain\u003C\u002Fli>\n\u003Cli>reducing network fees with ~95% by removing the middleman\u003C\u002Fli>\n\u003Cli>no entry barriers, possibility to on-board and participate within minutes\u003C\u002Fli>\n\u003Cli>no more privacy compliance issues: the network cannot collect any private or traffic data\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For a publisher, this Attrace WordPress plugin enables easy embedding of Attrace affiliate links in your posts. When such a link is clicked, the plugin backend will create a click (as a smart contract) and publish this on the Attrace public network.\u003C\u002Fp>\n\u003Cp>Via this plugin you can very easily\u003Cbr \u002F>\n* Manage your agreements\u003Cbr \u002F>\n* Create shortcodes and clickouts\u003Cbr \u002F>\n* Sign transactions and publish on the public chain\u003C\u002Fp>\n\u003Cp>The plugin also supports WooCommerce integration for Advertisers.\u003C\u002Fp>\n","Custom made dedicated blockchain capable of registering and auditing any advertisement click on chain (sale or no-sale). This concept enables anybody  &hellip;",10,1712,"2020-12-22T11:15:00.000Z","5.5.18","5.0",[87,88,89],"affiliate","blockchain","tracking","https:\u002F\u002Fwww.attrace.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fattrace.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":81,"downloaded":100,"rating":13,"num_ratings":14,"last_updated":101,"tested_up_to":16,"requires_at_least":102,"requires_php":24,"tags":103,"homepage":24,"download_link":109,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"setter-ai-chatbot","Setter AI – AI Chatbot for Appointment Booking & Lead Generation","1.0.0","josefsetterai","https:\u002F\u002Fprofiles.wordpress.org\u002Fjosefsetterai\u002F","\u003Cp>Setter AI – AI Chatbot for Appointment Booking & Lead Generation embeds a smart chat bubble on any WordPress site.\u003Cbr \u002F>\nIt greets visitors, answers questions with business-specific knowledge, qualifies prospects through conversational AI, and books meetings directly into your calendar (Calendly, Google, Outlook).\u003C\u002Fp>\n\u003Ch3>Key Benefits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>24\u002F7 lead capture – Engage every visitor instantly; no more missed inquiries.\u003C\u002Fli>\n\u003Cli>Instant scheduling – Integrated date-time picker lets prospects lock a slot on the spot.\u003C\u002Fli>\n\u003Cli>Business-trained AI – Upload FAQs, service pages, or PDFs so the bot sells like a seasoned rep.\u003C\u002Fli>\n\u003Cli>Plug-and-play – One-click install; no coding or theme edits required.\u003C\u002Fli>\n\u003Cli>Lightweight – Asynchronous script adds \u003C30 KB and won’t slow your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Typical Use Cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Agencies & freelancers – auto-book discovery calls\u003C\u002Fli>\n\u003Cli>Real-estate & home services – qualify leads, schedule viewings\u003C\u002Fli>\n\u003Cli>SaaS & B2B sites – replace “Book a demo” forms\u003C\u002Fli>\n\u003Cli>Coaches & clinics – fill calendars while you sleep\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Integrations\u003C\u002Fh3>\n\u003Cp>Calendly • Google Calendar • Outlook • HubSpot • Pipedrive • Zapier • Make • Custom webhooks\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin relies on an external JavaScript file to provide its core chatbot functionality. The script is hosted on jsDelivr: https:\u002F\u002Fcdn.jsdelivr.net\u002Fgh\u002Ftrysetter\u002Fwebsite-widget@releases\u002Fchatbot-widget.js\u003Cbr \u002F>\nThis script is required to load and run the Setter AI chatbot widget on your site. Without it, the plugin cannot display or operate the chat interface.\u003Cbr \u002F>\nWhen used, the plugin connects to TrySetter — a service operated by the plugin author — to serve and initialize the chatbot widget. Users must create a free Setter AI account at https:\u002F\u002Fwww.trysetter.com\u002F to obtain a Bot Integration ID.\u003Cbr \u002F>\nBy using this plugin, visitor data such as IP address, browser type, and interaction history may be processed for functionality, personalization, and analytics. Setter AI may also connect to third-party services (e.g., Calendly, Google Calendar) for booking features.\u003Cbr \u002F>\nService Provider: TrySetter\u003Cbr \u002F>\n– Script source: https:\u002F\u002Fcdn.jsdelivr.net\u003Cbr \u002F>\n– Terms: https:\u002F\u002Fwww.trysetter.com\u002Fterms-and-conditions\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.trysetter.com\u002Fprivacy\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Questions? Chat with us at \u003Ca href=\"https:\u002F\u002Fwww.trysetter.com\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.trysetter.com\u003C\u002Fa> or email \u003Ca href=\"mailto:support@trysetter.com\" rel=\"nofollow ugc\">support@trysetter.com\u003C\u002Fa>. We reply within one business day.\u003C\u002Fp>\n","Setter AI adds a 24\u002F7 AI chat widget that captures leads and books appointments via Calendly.",396,"2025-08-05T09:52:00.000Z","5.8",[104,105,106,107,108],"ai-chatbot","appointment-booking","calendly","lead-generation","wordpress-chat","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsetter-ai-chatbot.1.0.0.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":11,"downloaded":118,"rating":11,"num_ratings":11,"last_updated":119,"tested_up_to":120,"requires_at_least":85,"requires_php":24,"tags":121,"homepage":24,"download_link":123,"security_score":54,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"botowski-for-woocommerce","Botowski for WooCommerce","1.1.2","botowski","https:\u002F\u002Fprofiles.wordpress.org\u002Fbotowski\u002F","\u003Cp>Botowski AI for Woocommerce is a plugin that allows users to rewrite their WooCommerce product titles and descriptions using Botowski’s API. This is especially useful for e-commerce owners, dropshippers in particular, who import a large number of products and need to optimize their content. The plugin works exclusively with Woocommerce.\u003C\u002Fp>\n\u003Ch3>Botowski Product Description Generator in action\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FletNO_b1_Og?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n","Botowski AI for Woocommerce is a plugin that allows users to rewrite their WooCommerce product titles and descriptions using Botowski's API.",2745,"2023-11-08T21:55:00.000Z","6.4.8",[20,114,22,122],"woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbotowski-for-woocommerce.1.1.2.zip",{"attackSurface":125,"codeSignals":170,"taintFlows":184,"riskAssessment":185,"analyzedAt":193},{"hooks":126,"ajaxHandlers":163,"restRoutes":164,"shortcodes":165,"cronEvents":169,"entryPointCount":14,"unprotectedCount":11},[127,133,138,143,147,151,155,158,160],{"type":128,"name":129,"callback":130,"file":131,"line":132},"action","rest_api_init","closure","backend\\rest-api.php",20,{"type":128,"name":134,"callback":135,"file":136,"line":137},"init","chating_chatbot_block_block_init","chating.php",40,{"type":128,"name":139,"callback":140,"file":141,"line":142},"admin_menu","chating_chatbot_create_menu","settings\\api-key-submenu.php",4,{"type":128,"name":144,"callback":145,"file":141,"line":146},"admin_enqueue_scripts","chating_enqueue_api_key_scripts",5,{"type":128,"name":148,"callback":149,"file":141,"line":150},"admin_init","chating_chatbot_register_settings",18,{"type":128,"name":152,"callback":153,"file":141,"line":154},"admin_notices","chating_saved_notice",28,{"type":128,"name":139,"callback":156,"file":157,"line":142},"chating_assistant_create_menu","settings\\assistant-submenu.php",{"type":128,"name":144,"callback":159,"file":157,"line":146},"chating_enqueue_assistant_scripts",{"type":128,"name":139,"callback":161,"file":162,"line":81},"chating_add_menu","settings\\settings.php",[],[],[166],{"tag":167,"callback":130,"file":136,"line":168},"chating-inline-chatbot",57,[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":11,"externalRequests":176,"nonceChecks":11,"capabilityChecks":142,"bundledLibraries":183},[],{"prepared":11,"raw":11,"locations":173},[],{"escaped":175,"rawEcho":176,"locations":177},13,2,[178,181],{"file":131,"line":179,"context":180},408,"raw output",{"file":131,"line":182,"context":180},414,[],[],{"summary":186,"deductions":187},"The \"chating\" plugin v1.2.1 exhibits a generally strong security posture based on the static analysis provided. The absence of known CVEs, critical taint flows, raw SQL queries, and a lack of directly exploitable entry points without authentication are significant strengths. The plugin also demonstrates good practices by utilizing prepared statements for its SQL queries and properly escaping a high percentage of its outputs. The low number of identified entry points contributes to a smaller attack surface, which is a positive indicator.\n\nHowever, there are a few areas that warrant attention. The plugin lacks any nonce checks on its single shortcode, which is a potential vulnerability if the shortcode processes user-supplied data without further sanitization or authorization checks. While the number of capability checks is adequate, the absence of nonce checks on the shortcode is a notable omission. The presence of external HTTP requests, though not inherently a vulnerability, should be monitored for potential issues in how they handle external data or authentication.\n\nOverall, the plugin appears to be developed with security in mind, especially concerning data handling within the database and output. The primary concern lies in the lack of robust input validation and authorization mechanisms (specifically nonce checks) for its shortcode, which could be a point of exploitation if not mitigated by other internal checks. The absence of past vulnerabilities is encouraging but should not lead to complacency, as new vulnerabilities can always emerge.",[188,191],{"reason":189,"points":190},"Shortcode lacks nonce checks",8,{"reason":192,"points":176},"External HTTP requests present","2026-03-17T07:09:09.797Z",{"wat":195,"direct":206},{"assetPaths":196,"generatorPatterns":199,"scriptPaths":200,"versionParams":202},[197,198],"\u002Fwp-content\u002Fplugins\u002Fchating\u002Fbuild\u002Finline-chatbot-block\u002Findex.js","\u002Fwp-content\u002Fplugins\u002Fchating\u002Fbuild\u002Fpopup-chatbot-block\u002Findex.js",[],[201],"\u002Fwp-content\u002Fplugins\u002Fchating\u002Fsettings\u002Fscripts\u002Fapi-key-submenu.js",[203,204,205],"chating-check-key-script?ver=","chating\u002Fbuild\u002Finline-chatbot-block\u002Findex.js?ver=","chating\u002Fbuild\u002Fpopup-chatbot-block\u002Findex.js?ver=",{"cssClasses":207,"htmlComments":208,"htmlAttributes":210,"restEndpoints":215,"jsGlobals":217,"shortcodeOutput":219},[],[209],"\u003C!-- This file is part of chatIng, see \u002Flicense.md -->",[211,212,213,214],"id=\"api-key\"","name=\"chating-chatbot-settings-api-key\"","id=\"rate-limit\"","name=\"chating-allowed-requests\"",[216],"\u002Fwp-json\u002Fchating\u002Fv1\u002Fget_chat_response",[218],"chatingWpApiSettings",[220],"[chating-inline-chatbot]"]