[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$feDfkG2H3zxErXHt-vcKu3kLLJyzVqKKm4l0WbcYm0KI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":48,"crawl_stats":38,"alternatives":55,"analysis":141,"fingerprints":645},"chessgame-shizzle","Chessgame Shizzle","1.3.4","Marcel Pol","https:\u002F\u002Fprofiles.wordpress.org\u002Fmpol\u002F","\u003Cp>Chessgame Shizzle is a nice way to integrate chessgames into your WordPress website. Ideal for chess clubs, your chess blog, or any chess related website.\u003Cbr \u002F>\nEditors and guests alike can add chessgames in PGN format through a frontend form. All chessgames are available in a custom post type as a single post with an archive list and taxonomies, it couldn’t be more simple. Included widgets give you many ways to display your chessgames.\u003C\u002Fp>\n\u003Cp>Current features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>List view and single view for chessgames as a WordPress post.\u003C\u002Fli>\n\u003Cli>Easy to use form on the frontend to add a chessgame.\u003C\u002Fli>\n\u003Cli>Simple and clean admin interface that integrates seamlessly into WordPress admin.\u003C\u002Fli>\n\u003Cli>JavaScript enabled game viewer (pgn4web).\u003C\u002Fli>\n\u003Cli>Several widgets to display latest game, featured game or a list of recent games.\u003C\u002Fli>\n\u003Cli>Tactics Lessons, useful for trainers and students.\u003C\u002Fli>\n\u003Cli>Moderation, so that you can check a chessgame before it is visible.\u003C\u002Fli>\n\u003Cli>Subscribing to notifications.\u003C\u002Fli>\n\u003Cli>Board themes and Piece themes.\u003C\u002Fli>\n\u003Cli>Anti-spam features with Nonce, Honeypot and Form Timeout for upload form.\u003C\u002Fli>\n\u003Cli>Import and Export from and to a PGN file.\u003C\u002Fli>\n\u003Cli>Generate (featured) images from a chess position.\u003C\u002Fli>\n\u003Cli>Localization. Own languages can be added very easily through \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fchessgame-shizzle\" rel=\"nofollow ugc\">GlotPress\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>… and all that integrated in the stylish WordPress look.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Translations can be added very easily through \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fchessgame-shizzle\" rel=\"nofollow ugc\">GlotPress\u003C\u002Fa>.\u003Cbr \u002F>\nYou can start translating strings there for your locale. They need to be validated though, so if there’s no validator yet, and you want to apply for being validator, please post it on the support forum. I will make a request on make\u002Fpolyglots to have you added as validator for this plugin\u002Flocale.\u003C\u002Fp>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>Check out the demo at \u003Ca href=\"https:\u002F\u002Fsvpegasus.nl\u002Falgemeen\u002Fpartijen\u002F\" rel=\"nofollow ugc\">my local chess club Pegasus\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cp>This plugin is compatible with \u003Ca href=\"https:\u002F\u002Fwww.classicpress.net\" rel=\"nofollow ugc\">ClassicPress\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Contributions\u003C\u002Fh4>\n\u003Cp>This plugin is also available in \u003Ca href=\"https:\u002F\u002Fcodeberg.org\u002Fcyclotouriste\u002Fchessgame-shizzle\" rel=\"nofollow ugc\">Codeberg\u003C\u002Fa>.\u003C\u002Fp>\n","Chessgame Shizzle is a nice way to integrate chessgames into your WordPress website. Ideal for chess clubs, your chess blog, or any chess related webs &hellip;",100,14644,94,3,"2026-01-10T09:20:00.000Z","6.9.4","4.1","7.0",[20,21,22,23,24],"chess","chessgame","chessgames","pgn","pgn4web","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchessgame-shizzle\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchessgame-shizzle.1.3.4.zip",99,1,0,"2024-11-22 18:30:27","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":28},"CVE-2024-11446","chessgame-shizzle-reflected-cross-site-scripting","Chessgame Shizzle \u003C= 1.3.0 - Reflected Cross-Site Scripting","The Chessgame Shizzle plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'cs_nonce' parameter in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.3.0","1.3.1","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-11-23 06:54:53",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F3d667f97-5072-4119-84d8-7104fd63559c?source=api-prod",{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":27,"avg_patch_time_days":52,"trust_score":53,"computed_at":54},"mpol",18,82270,1119,78,"2026-04-03T19:23:06.308Z",[56,74,94,110,122],{"slug":57,"name":58,"version":59,"author":24,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":14,"last_updated":66,"tested_up_to":18,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":71,"download_link":72,"security_score":53,"vuln_count":28,"unpatched_count":28,"last_vuln_date":73,"fetched_at":31},"embed-chessboard","Embed Chessboard","3.08.00","https:\u002F\u002Fprofiles.wordpress.org\u002Fpgn4web\u002F","\u003Cp>Embed Chessboard is a plugin that allows for the insertion of a chessboard displaying chess games within worpress articles.\u003C\u002Fp>\n\u003Cp>Use following shortcode tag to insert a chessboard:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[pgn parameter=value ...]\n... chess games in PGN format ...\n[\u002Fpgn]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Shortcode tag parameters:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>layout=horizontal|vertical\u003C\u002Fli>\n\u003Cli>height=auto|\u003Cem>number\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>showMoves=figurine|text|puzzle|hidden\u003C\u002Fli>\n\u003Cli>initialGame=first|last|random|\u003Cem>number\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>initialVariation=\u003Cem>number\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>initialHalfmove=start|end|random|comment|\u003Cem>number\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>autoplayMode=game|loop|none\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[pgn height=500 initialHalfmove=16 autoplayMode=none]\n\n[Event \"World championship\"]\n[Site \"Moscow URS\"]\n[Date \"1985.10.15\"]\n[Round \"16\"]\n[White \"Karpov\"]\n[Black \"Kasparov\"]\n[Result \"0-1\"]\n\n1. e4 c5 2. Nf3 e6 3. d4 cxd4 4. Nxd4 Nc6 5. Nb5 d6 6.\nc4 Nf6 7. N1c3 a6 8. Na3 d5 9. cxd5 exd5 10. exd5 Nb4\n11. Be2 Bc5 12. O-O O-O 13. Bf3 Bf5 14. Bg5 Re8 15.\nQd2 b5 16. Rad1 Nd3 17. Nab1 h6 18. Bh4 b4 19. Na4 Bd6\n20. Bg3 Rc8 21. b3 g5 22. Bxd6 Qxd6 23. g3 Nd7 24. Bg2\nQf6 25. a3 a5 26. axb4 axb4 27. Qa2 Bg6 28. d6 g4 29.\nQd2 Kg7 30. f3 Qxd6 31. fxg4 Qd4+ 32. Kh1 Nf6 33. Rf4\nNe4 34. Qxd3 Nf2+ 35. Rxf2 Bxd3 36. Rfd2 Qe3 37. Rxd3\nRc1 38. Nb2 Qf2 39. Nd2 Rxd1+ 40. Nxd1 Re1+ 0-1\n\n[\u002Fpgn]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>When using the gutenberg editor, please add shortcodes as shortcodes blocks in guntenberg.\u003C\u002Fp>\n\u003Cp>Any PGN header tag missing will not be displayed.\u003C\u002Fp>\n\u003Cp>Note: HTML tags are stripped from the PGN data, removing all text between “\u003C” and “>” characters; please make sure your PGN data does not contain “\u003C” and “>” characters.\u003C\u002Fp>\n","Allows for the insertion of a chessboard displaying chess games within wordpress articles.",600,45818,80,"2026-02-24T16:24:00.000Z","2.9","",[20,70,23,24],"chessboard","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fembed-chessboard\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembed-chessboard.3.08.00.zip","2025-04-04 00:00:00",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":16,"requires_at_least":87,"requires_php":88,"tags":89,"homepage":92,"download_link":93,"security_score":11,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"rpb-chessboard","RPB Chessboard","8.1.0","yo35","https:\u002F\u002Fprofiles.wordpress.org\u002Fyo35\u002F","\u003Cp>RPB Chessboard allows you to typeset and display chess games and diagrams in the posts and pages of your WordPress blog, using the standard \u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FForsyth-Edwards_Notation\" rel=\"nofollow ugc\">FEN\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FPortable_Game_Notation\" rel=\"nofollow ugc\">PGN\u003C\u002Fa> notations.\u003C\u002Fp>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fyo35\u002Frpb-chessboard\u002Fissues\" rel=\"nofollow ugc\">Ask for help or report a problem\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frpb-chessboard.yo35.org\u002F\" rel=\"nofollow ugc\">Documentation & examples\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fyo35\u002Frpb-chessboard\" rel=\"nofollow ugc\">GitHub repository (source code)\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customizable aspect for the chessboards (orientation, size, etc…).\u003C\u002Fli>\n\u003Cli>Support comments and sub-variations in PGN-encoded games.\u003C\u002Fli>\n\u003Cli>Support HTML formatting in PGN comments.\u003C\u002Fli>\n\u003Cli>Support several chess variants:\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FChess960\" rel=\"nofollow ugc\">Chess960\u003C\u002Fa> (also known as Fischer Random Chess).\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FLosing_chess\" rel=\"nofollow ugc\">Antichess\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FDunsany%27s_chess#Horde_chess\" rel=\"nofollow ugc\">Horde chess\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Colored square and arrow markers.\u003C\u002Fli>\n\u003Cli>Integration with the Gutenberg post\u002Fpage editor.\u003C\u002Fli>\n\u003Cli>Multi-language support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you encounter some bugs with this plugin, or if you wish to get new features in the future versions, you can report\u002Fpropose them in the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fyo35\u002Frpb-chessboard\u002Fissues\" rel=\"nofollow ugc\">GitHub bug tracker\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you are interested in translating this plugin into your language, please \u003Ca href=\"mailto:yo35@melix.net\" rel=\"nofollow ugc\">contact the author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Custom developments in relation with RPB Chessboard (e.g. specific feature, advanced customization…) can be realized by the author as a paid service. If you need to have such custom developments for your website, please feel free to \u003Ca href=\"mailto:yo35@melix.net\" rel=\"nofollow ugc\">contact the author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Ch4>Author\u003C\u002Fh4>\n\u003Cp>Yoann Le Montagner\u003C\u002Fp>\n\u003Ch4>Contributors\u003C\u002Fh4>\n\u003Cp>Marek Śmigielski, \u003Ca href=\"https:\u002F\u002Fpaulschreiber.com\u002F\" rel=\"nofollow ugc\">Paul Schreiber\u003C\u002Fa>, \u003Ca href=\"http:\u002F\u002Fwww.10up.com\u002F\" rel=\"nofollow ugc\">Adam Silverstein\u003C\u002Fa>, Paolo Fantozzi.\u003C\u002Fp>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cp>Jan Jílek (Czech), Markus Liebelt (German), Yoann Le Montagner (English and French), Martin Frith (Spanish), Atilla Szvetlik (Hungarian), Andrea Cuccarini (Italian), Ivan Deceuninck (Dutch), Dawid Ziółkowski (Polish), \u003Ca href=\"http:\u002F\u002Fwww.lancesqi.com.br\u002F\" rel=\"nofollow ugc\">Rewbenio Frota\u003C\u002Fa> (Brazilian Portuguese), Sergey Baravicov (Russian), Ali Nihat Yazıcı (Turkish).\u003C\u002Fp>\n\u003Ch4>Graphic resources\u003C\u002Fh4>\n\u003Cp>Pieceset \u003Cem>CBurnett\u003C\u002Fem> has been created by \u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FUser:Cburnett\" rel=\"nofollow ugc\">Colin M.L. Burnett\u003C\u002Fa>, who shares it under the [CC-BY-SA] license on \u003Ca href=\"https:\u002F\u002Fcommons.wikimedia.org\u002Fwiki\u002FCategory:SVG_chess_pieces\" rel=\"nofollow ugc\">Wikimedia Commons\u003C\u002Fa>; user \u003Ca href=\"https:\u002F\u002Fcommons.wikimedia.org\u002Fwiki\u002FUser:Antonsusi\" rel=\"nofollow ugc\">Antonsusi\u003C\u002Fa> has also contributed to this work. Piecesets \u003Cem>Celtic\u003C\u002Fem>, \u003Cem>Eyes\u003C\u002Fem>, \u003Cem>Fantasy\u003C\u002Fem>, \u003Cem>Skulls\u003C\u002Fem> and \u003Cem>Spatial\u003C\u002Fem> have been created by \u003Ca href=\"http:\u002F\u002Fpoisson.phc.dm.unipi.it\u002F~monge\u002F\" rel=\"nofollow ugc\">Maurizio Monge\u003C\u002Fa>, who makes them freely available for chess programs. Colorsets \u003Cem>Coral\u003C\u002Fem>, \u003Cem>Dusk\u003C\u002Fem>, \u003Cem>Emerald\u003C\u002Fem>, \u003Cem>Marine\u003C\u002Fem>, \u003Cem>Sandcastle\u003C\u002Fem> and \u003Cem>Wheat\u003C\u002Fem> have been proposed in this \u003Ca href=\"http:\u002F\u002Fomgchess.blogspot.fr\u002F2015\u002F09\u002Fchess-board-color-schemes.html\" rel=\"nofollow ugc\">blog post\u003C\u002Fa> by \u003Ca href=\"http:\u002F\u002Fomgchess.blogspot.fr\u002F\" rel=\"nofollow ugc\">Gorgonian\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The author would like to thank all these people for their highly valuable work.\u003C\u002Fp>\n","This plugin allows you to typeset and display chess diagrams and PGN-encoded chess games.",1000,100015,96,20,"2026-01-25T10:48:00.000Z","6.9","7.2",[20,70,90,91,23],"fen","games","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frpb-chessboard\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frpb-chessboard.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":29,"num_ratings":29,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":68,"tags":107,"homepage":108,"download_link":109,"security_score":11,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"pgnviewerjs-wp","PgnViewerJS","2.0.5","mliebelt","https:\u002F\u002Fprofiles.wordpress.org\u002Fmliebelt\u002F","\u003Cp>Integration of @mliebelt\u002Fpgn-viewer into WordPress (formarly named PGNViewerJS).\u003C\u002Fp>\n\u003Ch3>Using Shortcodes\u003C\u002Fh3>\n\u003Cp>To use a shortcode, do the following steps:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enter on a new element \u003Ccode>\u002Fshortcode\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Enterinside the element then the shortcode including the content of the following sections.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Basic View\u003C\u002Fh3>\n\u003Cpre>\u003Ccode> [pgnv]1. e4 e5 2. ...[\u002Fpgnv]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This is the PgnViewer (mostly needed): allows to play through a game (including variations), printing the comments, NAGs, …\u003C\u002Fp>\n\u003Ch3>Edit Mode\u003C\u002Fh3>\n\u003Cpre>\u003Ccode> [pgne]1. e4 ...[\u002Fpgne]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Allows to edit and view a game. At the end, you may use the PGN button to display the notation,  that then may be copied again in the WordPress post entry.\u003C\u002Fp>\n\u003Ch3>Single Position (or Board)\u003C\u002Fh3>\n\u003Cpre>\u003Ccode> [pgnb fen=\u003Ca FEN string>][\u002Fpgnb]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Just to display a board (only), no moves. Leave out the pgn, if possible. If pgn is included, it will be checked and has to be correct (but not shown at the end).\u003C\u002Fp>\n\u003Ch3>Print View\u003C\u002Fh3>\n\u003Cpre>\u003Ccode> [pgnp]1. e4 e5D 2. Nf3 Nc6D ...[\u002Fpgnp]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Allows to print a game in a format similar to magazines and books. For that purpose, the notation  of PGN was expanded by the “D” at the end of a move, that stands for the diagram. (Caveat: “D” is currently not working, and leading to an error. See issue \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmliebelt\u002Fpgn-viewer\u002Fissues\u002F580\" rel=\"nofollow ugc\">#580\u003C\u002Fa> about that.)\u003C\u002Fp>\n\u003Cp>For a list of available parameters, look into the Frequently Asked Questions.\u003C\u002Fp>\n\u003Ch3>Using Block Level Element\u003C\u002Fh3>\n\u003Cp>You can use instead the following:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enter as block element \u003Ccode>\u002FPGN Viewer Block Editor\u003C\u002Fcode>, in the variants \u003Ccode>View\u003C\u002Fcode>, \u003Ccode>Edit\u003C\u002Fcode>, \u003Ccode>Board\u003C\u002Fcode> or \u003Ccode>Print\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>You will then have a form with all options that are possible with the shortcode as well.\u003C\u002Fli>\n\u003Cli>Depending on the kind of element you want to have, different values are needed:\n\u003Cul>\n\u003Cli>View: all possible\u003C\u002Fli>\n\u003Cli>Edit: same as view\u003C\u002Fli>\n\u003Cli>Board: only FEN and layout elements of the board\u003C\u002Fli>\n\u003Cli>Print: most not needed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","Integration of @mliebelt\u002Fpgn-viewer into WordPress (formarly named PGNViewerJS).",50,6013,"2025-04-26T11:32:00.000Z","6.8.5","4.6",[20,23],"https:\u002F\u002Fgithub.com\u002Fmliebelt\u002FPGNViewerJS-WP","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpgnviewerjs-wp.2.0.5.zip",{"slug":111,"name":111,"version":112,"author":98,"author_profile":99,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":29,"num_ratings":29,"last_updated":117,"tested_up_to":105,"requires_at_least":106,"requires_php":68,"tags":118,"homepage":68,"download_link":120,"security_score":121,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"pgn-viewer-for-lichess","1.1.1","\u003Cp>Integration of lichess-pgn-viewer into WordPress.\u003C\u002Fp>\n\u003Ch3>Using Shortcodes\u003C\u002Fh3>\n\u003Cp>To use a shortcode, do the following steps:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enter on a new element \u003Ccode>\u002Fshortcode\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Enter inside the element then the shortcode including the content of the following sections.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Basic View\u003C\u002Fh3>\n\u003Cpre>\u003Ccode> [lpgnv]1. e4 e5 2. ...[\u002Flpgnv]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This is the lichess-pgn-viewer: allows to play through a game (including variations), printing the comments, NAGs, …\u003C\u002Fp>\n\u003Ch3>Using Block Level Element\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>NOT IMLEMENTED YET\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can use instead the following:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enter as block element \u003Ccode>\u002FPGN Viewer for Lichess\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>You will then have a form with all options that are possible with the shortcode as well.\u003C\u002Fli>\n\u003C\u002Fol>\n","Integration of lichess-pgn-viewer into WordPress.",40,813,"2025-01-22T20:10:00.000Z",[20,119,23],"lichess","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpgn-viewer-for-lichess.1.1.1.zip",92,{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":29,"num_ratings":29,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":68,"tags":135,"homepage":138,"download_link":139,"security_score":140,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"chess-game-viewer-control-panel","Chess Game Viewer","1.5","Adrian Hanft","https:\u002F\u002Fprofiles.wordpress.org\u002Fadrian3\u002F","\u003Cp>Chess Game Viewer is a premium Chess WordPress plugin that allows you to easily add interactive chess games to your blog posts and pages. The board is fully customizable with the ability to change the style, size, and color of the board and pieces. Simply paste your game into the post panel using the “Chess Game” quicktag. If you would like to customize the appearance of your board you can adjust the settings from your WordPress admin under the “settings\u002Fchessboard” tab. This screen gives you the ability to adjust your chessboard’s size, style, color, and more. If you like this plugin, please take a look at other plugins by Adrian Hanft at \u003Ca href=\"http:\u002F\u002Fadrian3.com\u002Fprojects\u002Fwordpress-plugins\u002F\" title=\"adrian3.com\" rel=\"nofollow ugc\">adrian3.com\u003C\u002Fa> including the free \u003Ca href=\"http:\u002F\u002Fadrian3.com\u002Fprojects\u002Fwordpress-plugins\u002Fdaily-chess-puzzle-widget\u002F\" title=\"chess wordpress plugin\" rel=\"nofollow ugc\">chess puzzle widget.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin is powered by jsPgnViewer which was created by \u003Ca href=\"http:\u002F\u002Ftom.jabber.ee\u002Fchessblog\u002F\" rel=\"nofollow ugc\">Toomas Roomer\u003C\u002Fa> and is available at \u003Ca href=\"http:\u002F\u002Fcode.google.com\u002Fp\u002Fjspgnviewer\u002Fdownloads\u002Flist\" rel=\"nofollow ugc\">code.google.com\u002Fp\u002Fjspgnviewer\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Changelog:\u003Cbr \u002F>\nVersion 1.5\u003Cbr \u002F>\n– Tested on WordPress 3.7.1\u003C\u002Fp>\n\u003Cp>Version 1.4\u003Cbr \u002F>\n– Updated the jsPgnViewer javascript to the latest version (0.6.7).\u003C\u002Fp>\n\u003Cp>Version 1.3\u003Cbr \u002F>\n– Fixed error that caused preview not to show up within the WordPress admin after changes were made.\u003C\u002Fp>\n\u003Cp>Version 1.2\u003Cbr \u002F>\n– Compatibility with WPMU improved. Made changes to how code is inserted into posts. Instead of game it now defaults to ###pgn### game %%%pgn%%% because this is a bit more compatible, especially with WordPress MU. The  tags will still work, though.\u003Cbr \u002F>\n– Fixed bug that prevented the preview screen to show accurately in the admin panel.\u003C\u002Fp>\n\u003Cp>Version 1.0\u003Cbr \u002F>\n– The first version of this plugin allows you to customize the style, size, and colors of the chess boards.\u003C\u002Fp>\n","The Chess Game Viewer Control Panel is the easiest way to add a customizable chess board to your blog.",30,7391,"2013-11-02T01:59:00.000Z","3.7.41","2.6",[20,136,70,137,23],"chess-game","game-viewer","http:\u002F\u002Fadrian3.com\u002Fprojects\u002Fwordpress-plugins\u002Fchess-game-viewer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchess-game-viewer-control-panel.zip",85,{"attackSurface":142,"codeSignals":381,"taintFlows":517,"riskAssessment":633,"analyzedAt":644},{"hooks":143,"ajaxHandlers":322,"restRoutes":356,"shortcodes":357,"cronEvents":379,"entryPointCount":380,"unprotectedCount":29},[144,150,155,161,165,169,173,177,181,185,189,193,198,202,206,210,214,219,223,226,230,234,239,244,248,253,258,262,266,270,274,277,283,286,290,294,298,301,304,308,312,316,319],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_footer","chessgame_shizzle_fen_ajax","admin\\cs-ajax-mfen.php",10,{"type":145,"name":151,"callback":152,"file":153,"line":154},"admin_enqueue_scripts","chessgame_shizzle_admin_enqueue","admin\\cs-hooks.php",22,{"type":156,"name":157,"callback":158,"file":159,"line":160},"filter","bulk_actions-edit-cs_chessgame","chessgame_shizzle_define_bulk_actions","admin\\cs-list-table-featured-image.php",25,{"type":156,"name":162,"callback":163,"priority":149,"file":159,"line":164},"handle_bulk_actions-edit-cs_chessgame","chessgame_shizzle_handle_bulk_actions",107,{"type":145,"name":166,"callback":167,"file":159,"line":168},"admin_notices","chessgame_shizzle_handle_bulk_admin_notice",133,{"type":145,"name":146,"callback":170,"file":171,"line":172},"chessgame_shizzle_menu_counter","admin\\cs-menu-counter.php",39,{"type":145,"name":174,"callback":175,"file":176,"line":50},"admin_menu","chessgame_shizzle_add_meta_box_preview","admin\\cs-meta-box-preview.php",{"type":145,"name":174,"callback":178,"file":179,"line":180},"chessgame_shizzle_add_meta_box","admin\\cs-meta-box.php",35,{"type":145,"name":182,"callback":183,"file":179,"line":184},"save_post","chessgame_shizzle_save_meta_box",422,{"type":156,"name":186,"callback":187,"priority":149,"file":179,"line":188},"is_protected_meta","chessgame_shizzle_is_protected_meta",465,{"type":145,"name":174,"callback":190,"priority":85,"file":191,"line":192},"chessgame_shizzle_menu_about","admin\\cs-page-about.php",95,{"type":145,"name":174,"callback":194,"priority":195,"file":196,"line":197},"chessgame_shizzle_menu_export",19,"admin\\cs-page-export.php",15,{"type":145,"name":199,"callback":200,"file":196,"line":201},"admin_init","chessgame_shizzle_export_action",228,{"type":145,"name":174,"callback":203,"priority":50,"file":204,"line":205},"chessgame_shizzle_menu_import","admin\\cs-page-import.php",324,{"type":145,"name":174,"callback":207,"file":208,"line":209},"chessgame_shizzle_lesson_pages","admin\\cs-page-lessons.php",42,{"type":145,"name":174,"callback":211,"priority":195,"file":212,"line":213},"chessgame_shizzle_menu_settings","admin\\cs-page-settings.php",13,{"type":145,"name":215,"callback":216,"file":217,"line":218},"init","chessgame_shizzle_load_lang","chessgame-shizzle-hooks.php",17,{"type":156,"name":220,"callback":221,"priority":149,"file":217,"line":222},"plugin_action_links","chessgame_shizzle_links",31,{"type":145,"name":215,"callback":224,"file":217,"line":225},"chessgame_shizzle_init",61,{"type":145,"name":227,"callback":228,"file":217,"line":229},"wpmu_new_blog","chessgame_shizzle_activate_new_site",75,{"type":145,"name":231,"callback":232,"file":217,"line":233},"wp_initialize_site","chessgame_shizzle_wp_initialize_site",90,{"type":145,"name":235,"callback":236,"file":237,"line":238},"wp_enqueue_scripts","chessgame_shizzle_frontend_enqueue","frontend\\cs-hooks.php",41,{"type":156,"name":240,"callback":241,"file":242,"line":243},"request","chessgame_shizzle_rss_feed","frontend\\cs-request-posttype.php",29,{"type":145,"name":245,"callback":246,"file":242,"line":247},"pre_get_posts","chessgame_shizzle_blogpage",52,{"type":145,"name":249,"callback":250,"file":251,"line":252},"wp","chessgame_shizzle_form_post","frontend\\cs-shortcode-form-post.php",21,{"type":145,"name":254,"callback":255,"file":256,"line":257},"widgets_init","chessgame_shizzle_widget_featured_chessgame","frontend\\widgets\\cs-widget-featured-chessgame.php",155,{"type":145,"name":254,"callback":259,"file":260,"line":261},"chessgame_shizzle_widget_newest_chessgame","frontend\\widgets\\cs-widget-newest-chessgame.php",122,{"type":145,"name":254,"callback":263,"file":264,"line":265},"chessgame_shizzle_widget_recent_chessgames","frontend\\widgets\\cs-widget-recent-chessgames.php",138,{"type":145,"name":254,"callback":267,"file":268,"line":269},"chessgame_shizzle_widget_search","frontend\\widgets\\cs-widget-search.php",114,{"type":145,"name":182,"callback":271,"file":272,"line":273},"chessgame_shizzle_clear_cache_for_widgets","functions\\cs-cache.php",64,{"type":145,"name":275,"callback":271,"file":272,"line":276},"delete_post",65,{"type":156,"name":278,"callback":279,"priority":280,"file":281,"line":282},"the_content","chessgame_shizzle_content_filter_players",12,"functions\\cs-content-filters.php",45,{"type":156,"name":278,"callback":284,"priority":213,"file":281,"line":285},"chessgame_shizzle_content_filter_meta",113,{"type":156,"name":278,"callback":287,"priority":288,"file":281,"line":289},"chessgame_shizzle_content_filter_pgn",14,272,{"type":145,"name":291,"callback":292,"file":293,"line":192},"chessgame_shizzle_save_frontend","chessgame_shizzle_mail_moderators","functions\\cs-mail.php",{"type":145,"name":182,"callback":295,"file":296,"line":297},"chessgame_shizzle_save_post_for_shortcode_meta","functions\\cs-post-meta.php",46,{"type":156,"name":186,"callback":299,"priority":149,"file":296,"line":300},"chessgame_shizzle_is_protected_shortcode_meta",66,{"type":145,"name":215,"callback":302,"priority":27,"file":296,"line":303},"chessgame_shizzle_register_meta",142,{"type":145,"name":215,"callback":305,"priority":149,"file":306,"line":307},"chessgame_shizzle_post_types","functions\\cs-post-types.php",119,{"type":156,"name":309,"callback":310,"priority":149,"file":306,"line":311},"default_content","chessgame_shizzle_editor_content",137,{"type":145,"name":199,"callback":313,"file":314,"line":315},"chessgame_shizzle_add_privacy_policy_content","functions\\cs-privacy.php",27,{"type":145,"name":199,"callback":317,"file":318,"line":130},"chessgame_shizzle_register_settings","functions\\cs-settings.php",{"type":145,"name":235,"callback":320,"file":321,"line":180},"chessgame_shizzle_pgn4web_register","thirdparty\\pgn4web\\cs-pgn4web.php",[323,327,331,333,337,339,343,344,348,350,354],{"action":147,"nopriv":324,"callback":325,"hasNonce":326,"hasCapCheck":326,"file":148,"line":121},false,"chessgame_shizzle_fen_ajax_callback",true,{"action":328,"nopriv":324,"callback":329,"hasNonce":326,"hasCapCheck":324,"file":330,"line":149},"chessgame_shizzle_fen_image_ajax","chessgame_shizzle_fen_image_ajax_callback","frontend\\cs-ajax-mfen.php",{"action":328,"nopriv":326,"callback":329,"hasNonce":326,"hasCapCheck":324,"file":330,"line":332},11,{"action":334,"nopriv":324,"callback":335,"hasNonce":326,"hasCapCheck":324,"file":336,"line":164},"chessgame_shizzle_simple_list_search","chessgame_shizzle_simple_list_search_callback","frontend\\cs-shortcode-simple-list-search.php",{"action":334,"nopriv":326,"callback":335,"hasNonce":326,"hasCapCheck":324,"file":336,"line":338},108,{"action":340,"nopriv":324,"callback":341,"hasNonce":326,"hasCapCheck":324,"file":342,"line":149},"chessgame_shizzle_lesson_ajax","chessgame_shizzle_lesson_ajax_callback","functions\\cs-ajax-lesson.php",{"action":340,"nopriv":326,"callback":341,"hasNonce":326,"hasCapCheck":324,"file":342,"line":332},{"action":345,"nopriv":324,"callback":346,"hasNonce":326,"hasCapCheck":324,"file":342,"line":347},"chessgame_shizzle_lesson_ajax_postid","chessgame_shizzle_lesson_ajax_postid_callback",151,{"action":345,"nopriv":326,"callback":346,"hasNonce":326,"hasCapCheck":324,"file":342,"line":349},152,{"action":351,"nopriv":324,"callback":352,"hasNonce":326,"hasCapCheck":324,"file":342,"line":353},"chessgame_shizzle_lesson_ajax_search","chessgame_shizzle_lesson_ajax_search_callback",220,{"action":351,"nopriv":326,"callback":352,"hasNonce":326,"hasCapCheck":324,"file":342,"line":355},221,[],[358,362,365,370,374],{"tag":359,"callback":360,"file":361,"line":180},"chessgame_shizzle_game","chessgame_shizzle_shortcode_game","frontend\\cs-shortcode-chessgame.php",{"tag":363,"callback":364,"file":361,"line":300},"chessgame_shizzle_game_extended","chessgame_shizzle_shortcode_game_extended",{"tag":366,"callback":367,"file":368,"line":369},"chessgame_shizzle_form","get_chessgame_shizzle_form","frontend\\cs-shortcode-form.php",424,{"tag":371,"callback":372,"file":373,"line":218},"chessgame_shizzle_lessons","chessgame_shizzle_shortcode_lessons","frontend\\cs-shortcode-lessons.php",{"tag":375,"callback":376,"file":377,"line":378},"chessgame_shizzle_simple_list","get_chessgame_shizzle_simple_list","frontend\\cs-shortcode-simple-list.php",144,[],16,{"dangerousFunctions":382,"sqlUsage":383,"outputEscaping":391,"fileOperations":515,"externalRequests":29,"nonceChecks":197,"capabilityChecks":213,"bundledLibraries":516},[],{"prepared":28,"raw":384,"locations":385},2,[386,388],{"file":217,"line":102,"context":387},"$wpdb->get_col() with variable interpolation",{"file":389,"line":390,"context":387},"chessgame-shizzle.php",163,{"escaped":392,"rawEcho":393,"locations":394},299,71,[395,398,400,401,402,404,406,408,410,412,414,415,416,417,419,421,423,425,427,428,430,431,433,435,437,439,441,442,444,446,448,450,453,456,457,458,459,461,463,465,466,468,470,471,473,475,477,478,479,480,481,482,483,485,487,488,489,490,492,493,495,496,498,500,502,504,505,507,508,510,513],{"file":148,"line":396,"context":397},145,"raw output",{"file":176,"line":399,"context":397},28,{"file":179,"line":102,"context":397},{"file":179,"line":225,"context":397},{"file":179,"line":403,"context":397},70,{"file":179,"line":405,"context":397},79,{"file":179,"line":407,"context":397},97,{"file":179,"line":409,"context":397},106,{"file":179,"line":411,"context":397},115,{"file":179,"line":413,"context":397},124,{"file":179,"line":168,"context":397},{"file":179,"line":303,"context":397},{"file":179,"line":347,"context":397},{"file":179,"line":418,"context":397},161,{"file":179,"line":420,"context":397},174,{"file":179,"line":422,"context":397},183,{"file":179,"line":424,"context":397},200,{"file":191,"line":426,"context":397},26,{"file":191,"line":180,"context":397},{"file":191,"line":429,"context":397},37,{"file":191,"line":238,"context":397},{"file":191,"line":432,"context":397},48,{"file":191,"line":434,"context":397},76,{"file":196,"line":436,"context":397},157,{"file":196,"line":438,"context":397},168,{"file":196,"line":440,"context":397},179,{"file":204,"line":209,"context":397},{"file":208,"line":443,"context":397},59,{"file":212,"line":445,"context":397},44,{"file":212,"line":447,"context":397},49,{"file":449,"line":102,"context":397},"admin\\tabs\\cs-antispam.php",{"file":451,"line":452,"context":397},"admin\\tabs\\cs-email.php",93,{"file":454,"line":455,"context":397},"admin\\tabs\\cs-themes.php",104,{"file":454,"line":409,"context":397},{"file":330,"line":447,"context":397},{"file":368,"line":213,"context":397},{"file":336,"line":460,"context":397},128,{"file":336,"line":462,"context":397},139,{"file":336,"line":464,"context":397},225,{"file":377,"line":213,"context":397},{"file":256,"line":467,"context":397},68,{"file":256,"line":469,"context":397},77,{"file":256,"line":65,"context":397},{"file":256,"line":472,"context":397},83,{"file":260,"line":474,"context":397},63,{"file":260,"line":476,"context":397},72,{"file":260,"line":229,"context":397},{"file":260,"line":53,"context":397},{"file":264,"line":467,"context":397},{"file":264,"line":403,"context":397},{"file":264,"line":405,"context":397},{"file":264,"line":140,"context":397},{"file":268,"line":484,"context":397},56,{"file":268,"line":486,"context":397},58,{"file":268,"line":273,"context":397},{"file":268,"line":300,"context":397},{"file":268,"line":393,"context":397},{"file":342,"line":491,"context":397},24,{"file":342,"line":303,"context":397},{"file":342,"line":494,"context":397},165,{"file":342,"line":440,"context":397},{"file":342,"line":497,"context":397},211,{"file":342,"line":499,"context":397},234,{"file":342,"line":501,"context":397},248,{"file":342,"line":503,"context":397},297,{"file":321,"line":405,"context":397},{"file":506,"line":243,"context":397},"thirdparty\\pgn4web\\cs-preview-iframe.php",{"file":506,"line":429,"context":397},{"file":506,"line":509,"context":397},55,{"file":511,"line":512,"context":397},"thirdparty\\pgn4web\\cs-template-iframe-extended.php",54,{"file":514,"line":115,"context":397},"thirdparty\\pgn4web\\cs-template-iframe.php",8,[],[518,535,544,557,565,577,585,593,601,611,625],{"entryPoint":519,"graph":520,"unsanitizedCount":28,"severity":41},"chessgame_shizzle_handle_bulk_admin_notice (admin\\cs-list-table-featured-image.php:115)",{"nodes":521,"edges":533},[522,527],{"id":523,"type":524,"label":525,"file":159,"line":526},"n0","source","$_REQUEST",123,{"id":528,"type":529,"label":530,"file":159,"line":531,"wp_function":532},"n1","sink","echo() [XSS]",129,"echo",[534],{"from":523,"to":528,"sanitized":324},{"entryPoint":536,"graph":537,"unsanitizedCount":28,"severity":543},"\u003Ccs-list-table-featured-image> (admin\\cs-list-table-featured-image.php:0)",{"nodes":538,"edges":541},[539,540],{"id":523,"type":524,"label":525,"file":159,"line":526},{"id":528,"type":529,"label":530,"file":159,"line":531,"wp_function":532},[542],{"from":523,"to":528,"sanitized":324},"low",{"entryPoint":545,"graph":546,"unsanitizedCount":29,"severity":543},"chessgame_shizzle_export_callback (admin\\cs-page-export.php:235)",{"nodes":547,"edges":555},[548,551],{"id":523,"type":524,"label":549,"file":196,"line":550},"$_POST",264,{"id":528,"type":529,"label":552,"file":196,"line":553,"wp_function":554},"header() [Header Injection]",335,"header",[556],{"from":523,"to":528,"sanitized":326},{"entryPoint":558,"graph":559,"unsanitizedCount":29,"severity":543},"\u003Ccs-page-export> (admin\\cs-page-export.php:0)",{"nodes":560,"edges":563},[561,562],{"id":523,"type":524,"label":549,"file":196,"line":550},{"id":528,"type":529,"label":552,"file":196,"line":553,"wp_function":554},[564],{"from":523,"to":528,"sanitized":326},{"entryPoint":566,"graph":567,"unsanitizedCount":29,"severity":543},"chessgame_shizzle_page_settings_update (admin\\cs-page-settings.php:90)",{"nodes":568,"edges":575},[569,571],{"id":523,"type":524,"label":549,"file":212,"line":570},227,{"id":528,"type":529,"label":572,"file":212,"line":573,"wp_function":574},"update_option() [Settings Manipulation]",230,"update_option",[576],{"from":523,"to":528,"sanitized":326},{"entryPoint":578,"graph":579,"unsanitizedCount":29,"severity":543},"\u003Ccs-page-settings> (admin\\cs-page-settings.php:0)",{"nodes":580,"edges":583},[581,582],{"id":523,"type":524,"label":549,"file":212,"line":570},{"id":528,"type":529,"label":572,"file":212,"line":573,"wp_function":574},[584],{"from":523,"to":528,"sanitized":326},{"entryPoint":586,"graph":587,"unsanitizedCount":29,"severity":543},"chessgame_shizzle_fen_image_ajax_callback (frontend\\cs-ajax-mfen.php:12)",{"nodes":588,"edges":591},[589,590],{"id":523,"type":524,"label":549,"file":330,"line":130},{"id":528,"type":529,"label":530,"file":330,"line":447,"wp_function":532},[592],{"from":523,"to":528,"sanitized":326},{"entryPoint":594,"graph":595,"unsanitizedCount":29,"severity":543},"\u003Ccs-ajax-mfen> (frontend\\cs-ajax-mfen.php:0)",{"nodes":596,"edges":599},[597,598],{"id":523,"type":524,"label":549,"file":330,"line":130},{"id":528,"type":529,"label":530,"file":330,"line":447,"wp_function":532},[600],{"from":523,"to":528,"sanitized":326},{"entryPoint":602,"graph":603,"unsanitizedCount":29,"severity":543},"\u003Ccs-preview-iframe> (thirdparty\\pgn4web\\cs-preview-iframe.php:0)",{"nodes":604,"edges":609},[605,608],{"id":523,"type":524,"label":606,"file":506,"line":607},"$_GET",34,{"id":528,"type":529,"label":530,"file":506,"line":509,"wp_function":532},[610],{"from":523,"to":528,"sanitized":326},{"entryPoint":612,"graph":613,"unsanitizedCount":28,"severity":543},"\u003Ccs-template-iframe-extended> (thirdparty\\pgn4web\\cs-template-iframe-extended.php:0)",{"nodes":614,"edges":622},[615,616,618,620],{"id":523,"type":524,"label":606,"file":511,"line":154},{"id":528,"type":529,"label":530,"file":511,"line":617,"wp_function":532},38,{"id":619,"type":524,"label":606,"file":511,"line":332},"n2",{"id":621,"type":529,"label":530,"file":511,"line":512,"wp_function":532},"n3",[623,624],{"from":523,"to":528,"sanitized":326},{"from":619,"to":621,"sanitized":324},{"entryPoint":626,"graph":627,"unsanitizedCount":28,"severity":543},"\u003Ccs-template-iframe> (thirdparty\\pgn4web\\cs-template-iframe.php:0)",{"nodes":628,"edges":631},[629,630],{"id":523,"type":524,"label":606,"file":514,"line":332},{"id":528,"type":529,"label":530,"file":514,"line":115,"wp_function":532},[632],{"from":523,"to":528,"sanitized":324},{"summary":634,"deductions":635},"The \"chessgame-shizzle\" v1.3.4 plugin exhibits a generally good security posture, with all identified entry points (AJAX handlers, shortcodes) appearing to have authentication or permission checks. The plugin demonstrates strong adherence to WordPress security best practices, with a high percentage of properly escaped output and a significant number of nonce checks, indicating a conscious effort to prevent common vulnerabilities. The absence of external HTTP requests and dangerous functions further bolsters its security.\n\nHowever, the taint analysis reveals a notable concern: four flows with unsanitized paths. While the static analysis didn't flag these as critical or high severity, unsanitized paths can lead to various vulnerabilities, including path traversal or information disclosure, depending on how they are handled in the code. The plugin's history of a medium-severity Cross-site Scripting (XSS) vulnerability, though now patched, also suggests a past weakness in input sanitization or output escaping that needs continued vigilance.\n\nIn conclusion, \"chessgame-shizzle\" v1.3.4 is a reasonably secure plugin with robust authentication and escaping mechanisms. The primary area of concern lies in the four unsanitized paths identified in the taint analysis, which warrant further code review to ensure they do not present exploitable risks. The past XSS vulnerability, while resolved, serves as a reminder to maintain strict sanitization and escaping practices throughout the plugin's lifecycle.",[636,638,641],{"reason":637,"points":280},"Unsanitized paths found in taint analysis",{"reason":639,"points":640},"Past medium severity XSS vulnerability",7,{"reason":642,"points":643},"SQL queries using prepared statements (33%)",5,"2026-03-16T20:55:34.083Z",{"wat":646,"direct":669},{"assetPaths":647,"generatorPatterns":652,"scriptPaths":653,"versionParams":659},[648,649,650,651,649],"\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fcss\u002Fchessgame-shizzle-admin.css","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fcss\u002Fpgn4web.css","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fcss\u002Fui-lightness\u002Fjquery-ui-1.10.3.custom.min.css","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fcss\u002Fchessboard-0.3.0.css",[],[654,655,656,657,658],"\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fpgn4web.min.js","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fchessboard-0.3.0.js","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fjquery-ui-1.10.3.custom.min.js","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fpgn4web.js","\u002Fwp-content\u002Fplugins\u002Fchessgame-shizzle\u002Fthirdparty\u002FchessParser\u002Fcs-chessparser.js",[660,661,662,663,661,664,665,666,667,668],"chessgame-shizzle\u002Fcss\u002Fchessgame-shizzle-admin.css?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fcss\u002Fpgn4web.css?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fcss\u002Fui-lightness\u002Fjquery-ui-1.10.3.custom.min.css?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fcss\u002Fchessboard-0.3.0.css?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fpgn4web.min.js?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fchessboard-0.3.0.js?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fjquery-ui-1.10.3.custom.min.js?ver=","chessgame-shizzle\u002Fthirdparty\u002Fpgn4web\u002Fjs\u002Fpgn4web.js?ver=","chessgame-shizzle\u002Fthirdparty\u002FchessParser\u002Fcs-chessparser.js?ver=",{"cssClasses":670,"htmlComments":678,"htmlAttributes":713,"restEndpoints":716,"jsGlobals":717,"shortcodeOutput":719},[671,672,673,674,675,676,677],"cs-chessgame-shizzle","cs-player","cs-player-btn-play","cs-player-btn-pause","cs-player-btn-forward","cs-player-btn-backward","cs-player-btn-restart",[679,680,681,682,683,684,685,686,687,688,689,690,691,692,679,693,680,694,695,693,692,691,690,685,696,697,698,699,700,686,701,702,682,703,704,705,684,706,683,707,708,709,681,710,711,712],"\u003C!-- TODO: Add tag taxonomy for ECO codes. Or use a page with wp_query for meta. Or shortcode [opening_explorer]. Model after A-Z listings. -->","\u003C!-- TODO: Add analyzer with Stockfish.js. -->","\u003C!-- TODO: Settings page: -->","\u003C!-- TODO: Frontend Widgets: -->","\u003C!-- TODO: Frontend Form: -->","\u003C!-- TODO: Single view: -->","\u003C!-- TODO: Lessons: -->","\u003C!-- TODO: Export: -->","\u003C!-- Trigger an install\u002Fupgrade function when the plugin is activated. -->","\u003C!-- Misc hooks for Chessgame Shizzle admin. -->","\u003C!-- Load CSS for admin. -->","\u003C!-- TODO: Consider board with notation. -->","\u003C!-- TODO: Check lazy loading for iframes in WP 5.7 -->","\u003C!-- TODO: use details element: -->","\u003C!-- TODO: \"Add tag from players name\". Same for ECO code. -->","\u003C!-- TODO: Upload from that analyzer to the upload form with $_POST as transport. -->","\u003C!-- TODO: Support link from chessgame to view it in analyzer. -->","\u003C!-- TODO: Store played games on post_id in user profile or\u002Fand in cookie for non-loggedin user. -->","\u003C!-- TODO: Option to clear that history from the user profile page. -->","\u003C!-- TODO: Check pgn4web for trying out moves in puzzle, they are either good and the move is played, or incorrect with a message (callback function), preferable per move, not all at once. -->","\u003C!-- TODO: Consider text (content and pgn) next to chessboard instead of below. Not sure if this is feasible next to iframe with another AJAX call. -->","\u003C!-- TODO: In upload form, have a regex button depending on language that translates the move notation. -->","\u003C!-- TODO: Find a way to make sure that all data is from the latest content in WP post and meta, not from the older full pgn. -->","\u003C!-- TODO: Always: check for updates of pgn4web: http:\u002F\u002Fpgn4web.casaschi.net\u002Fhome.html -->","\u003C!-- TODO: form\u002Fbutton: upload chessgame (taking you to page with shortcode) (\"Send in chessgame\"). -->","\u003C!-- TODO: Shortcodes: -->","\u003C!-- TODO: chessgame archive list (cs_list). -->","\u003C!-- TODO: Consider adding Arrow plugin for pgn4web. -->","\u003C!-- TODO: Think of way to generate the ECO code from a PGN textarea. -->","\u003C!-- TODO: Use pgnParser in JS to fill in fields from the PGN automatically. -->","\u003C!-- TODO: Admin: -->","\u003C!-- TODO: Setting for order of content\u002Fmeta. -->","\u003C!-- TODO: Settings for pgn4web.js, which parts to show, and the several JS options. -->","\u003C!-- TODO: Analyzer: -->",[714,715],"data-cs-id","data-cs-pgn",[],[718],"cs_chessgame_shizzle",[]]