[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fdiyg6sbbWiNBayavx19CLUT8Y5wc0KJnS2YNPcHavu8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":54,"analysis":144,"fingerprints":734},"chordpress","Lewe ChordPress – ChordPro Text Formatter","4.0.1","George Lewe","https:\u002F\u002Fprofiles.wordpress.org\u002Fglewe\u002F","\u003Cp>Lewe ChordPress pretty-prints ChordPro formatted text files on your pages and posts. You can configure output and formatting options. With ‘interactive’ mode on, you can transpose the chords up and down and also print the output right from the page.\u003C\u002Fp>\n\u003Cp>Lewe ChordPress supports \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fomnibrain\u002Fsvguitar\" title=\"SVGuitar chord renderer\" rel=\"nofollow ugc\">SVGuitar\u003C\u002Fa> for visual chord representation.\u003C\u002Fp>\n\u003Cp>Your input to Lewe ChordPress needs to be a valid ChordPro formatted text. ChordPro is a simple text-based syntax used to write lead sheets, the lyrics and chords of a song. ChordPro also comes with a command line tool that pretty prints that text into other formats like PDF.\u003Cbr \u002F>\nYou can read all about ChordPro here:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.chordpro.org\u002Fchordpro\u002FChordPro-File-Format-Specification.html\" title=\"ChordPro file format specification\" rel=\"nofollow ugc\">ChordPro\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The Lewe ChordPress plugin allows to put ChordPro text inside its shortcode tags on a page or post and will pretty print it when the web page is displayed.\u003C\u002Fp>\n\u003Cp>Simply insert a ChordPro text inbetween the [chordpress] and [\u002Fchordpress] tags and it will be rendered based on the default options of the plugin. You can change output and formatting settings on the plugin’s admin page.\u003C\u002Fp>\n\u003Cp>A TinyMCE editor integration is also included, providing an editor menu button to insert the shortcode for you with its default paramaters, e.g. wrapping it around selected text.\u003C\u002Fp>\n\u003Cp>The \u003Ccode>[chordpress]\u003C\u002Fcode> shortag allows specifying custom options for rendering ChordPro texts. For example:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Ccode>[chordpress transpose=\"1\"]\u003C\u002Fcode> will transpose the chords rendered by one semitone.\u003C\u002Fli>\n\u003Cli>\u003Ccode>[chordpress interactive=\"yes\"]\u003C\u002Fcode> will allow you to transpose the chords up and down and also print the output right from the rendered page.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Check out this example:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fsayandsound.lewe.com\u002Fheart-of-gold\u002F\" title=\"Lewe ChordPress Demo\" rel=\"nofollow ugc\">Lewe ChordPress Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The \u003Ccode>[chordpress-chord]\u003C\u002Fcode> shortag allows you to display a guitar chord as a diagram. For example:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Ccode>[chordpress-chord chord=\"112\"]\u003C\u002Fcode> will show the guitar chord post with ID 112 as a diagram.\u003C\u002Fli>\n\u003Cli>\u003Ccode>[chordpress-chord barre=\"5,1,1\" fingers=\"(3,2,'2'),(4,3,'4'),(5,3,'3')\" title=\"F# Major\" tuning=\"E,A,D,G,H,E\"]\u003C\u002Fcode> will show a custom guitar chord.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Check out this example:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fsayandsound.lewe.com\u002Fguitar-chords\u002F\" title=\"Lewe ChordPress Guitar Chord Demo\" rel=\"nofollow ugc\">Lewe ChordPress Guitar Chord Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>If not from the WordPress marketplace, get the plugin here:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.lewe.com\u002Fchordpress\u002F\" title=\"Lewe ChordPress Homepage\" rel=\"nofollow ugc\">Lewe ChordPress Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>renders the lyrics\u002Fchord format of ChordPro\u003C\u002Fli>\n\u003Cli>configure output and formatting\u003C\u002Fli>\n\u003Cli>transpose up and down on the fly from the rendered page\u003C\u002Fli>\n\u003Cli>print the rendered output\u003C\u002Fli>\n\u003Cli>show chord diagrams\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Lewe ChordPress supports the following ChordPro tags:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>{album}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{artist}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{composer}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{subtitle}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{title}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{year}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{meta}\u003C\u002Fcode> for all of the above\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Lewe ChordPress supports custom CSS for the following ChordPro tags:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>{comment}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{start_of_chorus}\u003C\u002Fcode>, \u003Ccode>{end_of_chorus}\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>{start_of_verse}\u003C\u002Fcode>, \u003Ccode>{end_of_verse}\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Lewe ChordPress supports note\u002Fchord translations\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Chord transponation\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsayandsound.lewe.com\u002Fnote-h\u002F\" rel=\"nofollow ugc\">H\u002FB Notation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Enter a \u003Ccode>[chordpress]\u003C\u002Fcode> shortcode in your page or post editor\u003C\u002Fli>\n\u003Cli>Paste your ChordPro text right after it\u003C\u002Fli>\n\u003Cli>Enter the closing \u003Ccode>[\u002Fchordpress]\u003C\u002Fcode> shortcode\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Optional shortcode parameters\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>float=\u003C\u002Fcode>  Forces the rendered text block to float left or right.\u003C\u002Fli>\n\u003Cli>\u003Ccode>hbnotation=\u003C\u002Fcode>  \u003Ca href=\"https:\u002F\u002Fsayandsound.lewe.com\u002Fnote-h\u002F\" rel=\"nofollow ugc\">Input is H\u002FB notation\u003C\u002Fa> (using H for B and Bb for B). Wether it is displayed as such is defined on the Options page.\u003C\u002Fli>\n\u003Cli>\u003Ccode>interactive=\u003C\u002Fcode>  Enables interactive mode. A listbox will be shown on the right of the title that allows you to transpose the chords on the fly. Also, a print button will be shown fopr printing out the rendered ChordPro text.\u003C\u002Fli>\n\u003Cli>\u003Ccode>transpose=\u003C\u002Fcode>  Enter a positive or negative number for the amount of semitones to transpose the chords\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Use the “Lewe ChordPress” admin menu of your backend to change the default settings.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flewe.gitbook.io\u002Flewe-chordpress\u002F\" title=\"Lewe ChordPress User Manual\" rel=\"nofollow ugc\">Lewe ChordPress User Manual\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Choose your preferred support channel:\u003Cbr \u002F>\n1. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fchordpress\u002F\" title=\"Wordpress Support Forum\" rel=\"ugc\">WordPress Support Forum\u003C\u002Fa>\u003Cbr \u002F>\n2. \u003Ca href=\"https:\u002F\u002Fgeorgelewe.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F5\" title=\"Lewe Service Desk\" rel=\"nofollow ugc\">Lewe Service Desk\u003C\u002Fa>\u003Cbr \u002F>\n4. \u003Ca href=\"https:\u002F\u002Flewe.gitbook.io\u002Flewe-chordpress\u002F\" title=\"Lewe ChordPress User Manual\" rel=\"nofollow ugc\">Lewe ChordPress User Manual\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>The \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Frlisle\u002F\" title=\"ChordPro\" rel=\"nofollow ugc\">ChordPro\u003C\u002Fa> team of course\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Frlisle\u002F\" title=\"@rlisle\" rel=\"nofollow ugc\">@rlisle\u003C\u002Fa> for his work on the ChordsAndLyrics plugin that he created in 2009\u003C\u002Fli>\n\u003Cli>Ahkâm for the beautiful \u003Ca href=\"https:\u002F\u002Fwww.freeiconspng.com\u002Fimg\u002F17579\" title=\"Lewe ChordPress Plugin Icon\" rel=\"nofollow ugc\">Lewe ChordPress Plugin Icon\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>The developers of the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fomnibrain\u002Fsvguitar\" title=\"SVGuitar\" rel=\"nofollow ugc\">SVGuitar\u003C\u002Fa> chord rendering module\u003C\u002Fli>\n\u003C\u002Ful>\n","Lewe ChordPress for WordPress pretty-prints ChordPro formatted text and chord diagrams on your pages or posts.",200,11651,90,11,"2025-10-13T05:48:00.000Z","6.8.5","5.0","",[20,21,22,23,24],"chord","chordpro","chords","lyrics","music","https:\u002F\u002Flewe.gitbook.io\u002Flewe-chordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchordpress.4.0.1.zip",78,1,"2025-06-19 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-52789","lewe-chordpress-cross-site-request-forgery-to-stored-cross-site-scripting","Lewe ChordPress \u003C= 3.9.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting","The Lewe ChordPress – ChordPro Text Formatter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.9.7. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=3.9.7","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-06-25 15:28:05",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcbc86326-fced-4583-b128-9f592979cc9e?source=api-prod",{"slug":47,"display_name":7,"profile_url":8,"plugin_count":48,"total_installs":49,"avg_security_score":50,"avg_patch_time_days":51,"trust_score":52,"computed_at":53},"glewe",2,210,89,30,86,"2026-04-04T22:43:54.232Z",[55,75,96,112,128],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":18,"tags":69,"homepage":72,"download_link":73,"security_score":74,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"chords-and-lyrics","Chords and Lyrics","2.0","rlisle","https:\u002F\u002Fprofiles.wordpress.org\u002Frlisle\u002F","\u003Cp>This plugin assists in the creation of staffless lead sheets, also called chords sheets.\u003Cbr \u002F>\nIt defines a [chordsandlyrics] shortcode which can be used in your post or page text.\u003Cbr \u002F>\nIt does not require any editing of your template files.\u003C\u002Fp>\n\u003Cp>Text appearing between the [chordsandlyrics] and [\u002Fchordsandlyrics] tags will be\u003Cbr \u002F>\nformatted for chord symbols written in square brackets (eg. [Cmaj]) embedded\u003Cbr \u002F>\ninline within lyrics.\u003Cbr \u002F>\nIt will then display the chord symbol at the same horizontal position above the lyrics.\u003Cbr \u002F>\nFor example:\u003C\u002Fp>\n\u003Cp>[C]Oh [F]say can you see…\u003C\u002Fp>\n\u003Cp>will be reformatting using HTML table to display as\u003C\u002Fp>\n\u003Cp>C  F\u003Cbr \u002F>\n   Oh say can you see…\u003C\u002Fp>\n\u003Cp>with the C correctly positioned over “Oh” and the F positioned over “say”.\u003Cbr \u002F>\nThe commonly used alternative is to use fixed fonts which isn’t very attractive.\u003Cbr \u002F>\nThis syntax is similar to the that used by ChordPro\u002FChordii.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Format lead sheets, keeping chord symbols above the correct lyric.\u003C\u002Fli>\n\u003Cli>Appearance options page allows each end user to select Lyrics only\u003Cbr \u002F>\nor Chords And Lyrics display via their profile (user’s option page).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Directions for Use\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Create Posts or Pages containing the [chordsandlyrics] … [\u002Fchordsandlyrics] tags.\u003C\u002Fli>\n\u003Cli>Embed chord symbols within square brackets inline with lyrics within these tags.\u003Cbr \u002F>\nFor example:\u003Cbr \u002F>\n  [chordsandlyrics]\u003Cbr \u002F>\n  [C]Mary had a little lamb, [G]little lamb, [C]little lamb.\u003Cbr \u002F>\n  [C]Mary had a little lamb whose [F]fleece was [G]white as [C]snow.\u003Cbr \u002F>\n  [\u002Fchordsandlyrics]\u003Cbr \u002F>\nNote that chords can appear in the middle of lyric words.\u003C\u002Fli>\n\u003C\u002Fol>\n","ChordsAndLyrics will format staffless lead sheets.",60,7359,0,"2024-05-15T12:22:00.000Z","4.9.29","2.7",[22,23,24,70,71],"post","posts","http:\u002F\u002FLisles.net\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchords-and-lyrics.zip",92,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":11,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":18,"download_link":94,"security_score":95,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"wp-chords","WP Chords","1.1.0","emreplt","https:\u002F\u002Fprofiles.wordpress.org\u002Femreplt\u002F","\u003Cp>WP Chords allows you to format and display the chords on your blog. You can set font sizes, enable transposing chords especially in your posts. \u003Cstrong>Compatible with \u003Ca href=\"http:\u002F\u002Famp.dev\" rel=\"nofollow ugc\">Google AMP\u003C\u002Fa> (Accelerated Mobile Pages)\u003C\u002Fstrong>.  It’s fully supported different devices such as tablets, mobile phones and most of web browsers.\u003C\u002Fp>\n\u003Ch3>Eazy Real Time Demo\u003C\u002Fh3>\n\u003Cp>As soon as you install the WP Chords plugin, you will find live demo playground under \u003Cstrong>Settings\u003C\u002Fstrong>->\u003Cstrong>WP Chords\u003C\u002Fstrong>. You even don’t need to create a post or a record in your database!\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Please follow \u003Cstrong>How can I test it?\u003C\u002Fstrong> directions in FAQ page.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Formatting\u003C\u002Fh3>\n\u003Cp>You can define your chords at the correct positions in your song using chord shortcodes. 187 codes are available in below. On your final post view your chords will be automatically placed in their correct positions. You can configure formatting with some options such as below\u003C\u002Fp>\n\u003Ch4>Formatting Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display with \u003Cem>monospace\u003C\u002Fem> font.\u003C\u002Fli>\n\u003Cli>Display with alternating chords.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Transposing\u003C\u002Fh3>\n\u003Cp>On your final post view, visitors can adjust chord transposing as they wish with 17 half tones. On the transpose bar, the first chord in the song will be automatically selected as default tone.\u003C\u002Fp>\n\u003Ch4>Transposing Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Tones are: Ab, A, A#, Bb, B, C, C#, Db, D, D#, Db, E, F, F#, Gb, G, G#.\u003C\u002Fli>\n\u003Cli>Transposing can be turned off.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Font Sizing\u003C\u002Fh3>\n\u003Cp>Your visitor can adjust font size for the song, while playing it.\u003C\u002Fp>\n\u003Ch4>Font Sizing Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>It can be turned off\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Printing\u003C\u002Fh3>\n\u003Cp>Your visitor can print the chord itself for using outside.\u003C\u002Fp>\n\u003Ch4>Printing Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>It can be turned off\u003C\u002Fli>\n\u003Cli>Footer text can be adjusted\u003C\u002Fli>\n\u003Cli>Font size applies\u003C\u002Fli>\n\u003Cli>Transpose applies\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Supported Chords:\u003C\u002Fh3>\n\u003Cp>Ab, Abm, Ab6, Ab7, Ab9, Abm6, Abm7, Abmaj7, Abdim, Ab+, Absus, A, Am, A6, A7, A9, Am6, Am7, Amaj7, Adim, A+, Asus, A#, A#m, A#6, A#7, A#9, A#m6, A#m7, A#maj7, A#dim, A#+, A#sus, Bb, Bbm, Bb6, Bb7, Bb9, Bbm6, Bbm7, Bbmaj7, Bbdim, Bb+, Bbsus, B, Bm, B6, B7, B9, Bm6, Bm7, Bmaj7, Bdim, B+, Bsus, C, Cm, C6, C7, C9, Cm6, Cm7, Cmaj7, Cdim, C+, Csus, C#, C#m, C#6, C#7, C#9, C#m6, C#m7, C#maj7, C#dim, C#+, C#sus, Db, Dbm, Db6, Db7, Db9, Dbm6, Dbm7, Dbmaj7, Dbdim, Db+, Dbsus, D, Dm, D6, D7, D9, Dm6, Dm7, Dmaj7, Ddim, D+, Dsus, D#, D#m, D#6, D#7, D#9, D#m6, D#m7, D#maj7, D#dim, D#+, D#sus, Eb, Ebm, Eb6, Eb7, Eb9, Ebm6, Ebm7, Ebmaj7, Ebdim, Eb+, Ebsus, E, Em, E6, E7, E9, Em6, Em7, Emaj7, Edim, E+, Esus, F, Fm, F6, F7, F9, Fm6, Fm7, Fmaj7, Fdim, F+, Fsus, F#, F#m, F#6, F#7, F#9, F#m6, F#m7, F#maj7, F#dim, F#+, F#sus, Gb, Gbm, Gb6, Gb7, Gb9, Gbm6, Gbm7, Gbmaj7, Gbdim, Gb+, Gbsus, G, Gm, G6, G7, G9, Gm6, Gm7, Gmaj7, Gdim, G+, Gsus, G#, G#m, G#6, G#7, G#9, G#m6, G#m7, G#maj7, G#dim, G#+, G#sus\u003C\u002Fp>\n","WP Chords allows you to format and display the chords on your blog including mobile friendly interface and AMP functionality.",5911,100,6,"2021-05-10T00:59:00.000Z","5.7.15","4.6","5.2.4",[22,91,24,92,93],"guitar","songs","ukulele","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-chords.zip",85,{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":51,"downloaded":104,"rating":65,"num_ratings":65,"last_updated":105,"tested_up_to":106,"requires_at_least":17,"requires_php":18,"tags":107,"homepage":110,"download_link":111,"security_score":95,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"lyrics-block","Lyrics","1.0","Rocco Tripaldi","https:\u002F\u002Fprofiles.wordpress.org\u002Froccotripaldi\u002F","\u003Cp>Add lyrics to your WordPress posts and pages.\u003C\u002Fp>\n\u003Ch3>For Developers\u003C\u002Fh3>\n\u003Cp>Visit the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Froccotripaldi\u002Flyrics-block\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa> for information on developing this plugin. Pull requests welcome!\u003C\u002Fp>\n","Add lyrics to your WordPress posts and pages.",4691,"2019-05-28T20:59:00.000Z","5.1.22",[23,24,108,109],"poetry","song-lyrics","https:\u002F\u002Fgithub.com\u002Froccotripaldi\u002Flyrics","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flyrics-block.1.1.zip",{"slug":113,"name":114,"version":99,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":65,"num_ratings":65,"last_updated":121,"tested_up_to":122,"requires_at_least":88,"requires_php":89,"tags":123,"homepage":126,"download_link":127,"security_score":95,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"chordchartwp","ChordChartWP","faniry","https:\u002F\u002Fprofiles.wordpress.org\u002Ffaniry\u002F","\u003Cp>This is a wordpress shortcode for the javascript library chordography2 (https:\u002F\u002Fchordography2.blogspot.com\u002F).\u003Cbr \u002F>\nIt is easy to use, plug and play, and can be intensively costumized with several parameters.\u003C\u002Fp>\n\u003Cp>The database of chords are designed for guitar and are only the major non-chromatic chord “A,B,C,D,E,F,G”. This\u003Cbr \u002F>\nwill grow and will be updated in the future.\u003C\u002Fp>\n\u003Cp>To visualize a chord from the database write\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[chordChart title=\"C\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>For more chords from the database\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[chordChart title=\"A,B,C,D,E,F,G\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>For custom chords\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[chordChart title=\"Am7,DM7\" frets=\"x02010,x57675\" labels=\"xx2x1x,x13241\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>For mixed of chords from database and custom chords\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[chordChart title=\"C,D,Em\" frets=\",,022000\" labels=\",,x12xxx\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>For chord in higher position of the neck you could use parantheses to define them\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[chordChart title=\"C\" frets=\"8(10)(10)988\" labels=\"134211\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>User could also ignore the label parameter but then the barre sign will not be rendered for E-shape and A-shape chords.\u003C\u002Fp>\n\u003Cp>To change the style, you could use parameter such as style=”pretty” or cellHeight=34, etc.,. in the short code. The other parameter can be found in the chart.data.js file\u003C\u002Fp>\n","Users write shortcodes of text tab notation which will be then be parsed and rendered as svg chord chart images.",10,1973,"2019-08-28T09:01:00.000Z","4.7.32",[124,21,125],"chord-chart","tablature","https:\u002F\u002Fwww.gasytablature.com\u002Fchordchartwp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchordchartwp.zip",{"slug":129,"name":130,"version":99,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":119,"downloaded":135,"rating":84,"num_ratings":28,"last_updated":136,"tested_up_to":137,"requires_at_least":138,"requires_php":18,"tags":139,"homepage":142,"download_link":143,"security_score":95,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"jtab-guitar-tab-shortcode","jTab Guitar Tab Shortcode","MatthewMarichiba","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatthewmarichiba\u002F","\u003Cp>jTab Guitar Tab Shortcode displays clean SVG graphics of guitar chords and tab on your WordPress blog, based on simple text notation entered into a WordPress shortcode.\u003Cbr \u002F>\nThis plugin is based on the excellent open-source jTab JavaScript library by Paul Gallagher (http:\u002F\u002Fjtab.tardate.com). “jTab is a javascript-based library that renders notation using CSS and scalable vector graphics (SVG). It works in most modern browsers that support javascript, CSS and scalable vector graphics (SVG).”\u003C\u002Fp>\n\u003Cp>I’d rather show than tell! To see plenty of examples, visit the shortcode plugin page at http:\u002F\u002Fjtab-guitar-tab-shortcode.marichiba.com.\u003C\u002Fp>\n\u003Ch4>USAGE\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Display guitar chords\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[jtab phrase=\"C \u002F Am \u002F F \u002F G G7\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Display guitar tab with chords\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[jtab phrase=\"Bm $3 4 4h5p3h4 5 $2 3 5 7 7h8p7 5\u002F7 | A $4 7 9 $3 7 6 $5 9 $4 7h9 7 $5 9\\7 5\u002F7 |\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Display a form allowing users to render jTab notation in real-time\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[jtab showform='true' buttontext='jTab me, baby!' phrase='C Am F G']\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Specify different class and\u002For id for the jtab div\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[jtab phrase=\"C \u002F Am \u002F F \u002F G G7\" class=\"myclass\" id=\"myid\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Do you need different functionality from this shortcode, or a different plugin altogether? Hire me! Go to http:\u002F\u002Fwww.marichiba.com\u002Fcontact-me.\u003C\u002Fp>\n\u003Ch3>You can hire me!\u003C\u002Fh3>\n\u003Cp>Do you need different functionality from this shortcode, or a different plugin altogether? Hire me! Go to http:\u002F\u002Fwww.marichiba.com\u002Fcontact-me.\u003C\u002Fp>\n","Displays guitar chords and tab into posts and pages using clean SVG vector graphics, based on the jTab JavaScript library by Paul Gallagher.",2944,"2012-04-03T06:56:00.000Z","3.3.2","3.0",[22,91,140,141],"shortcode","tab","http:\u002F\u002Fjtab-guitar-tab-shortcode.marichiba.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjtab-guitar-tab-shortcode.1.0.zip",{"attackSurface":145,"codeSignals":228,"taintFlows":675,"riskAssessment":719,"analyzedAt":733},{"hooks":146,"ajaxHandlers":215,"restRoutes":216,"shortcodes":217,"cronEvents":226,"entryPointCount":227,"unprotectedCount":65},[147,152,154,159,163,168,172,176,179,182,185,188,190,193,196,198,201,204,207,210,213],{"type":148,"name":149,"callback":150,"file":151,"line":52},"action","admin_notices","closure","chordpress.php",{"type":148,"name":149,"callback":150,"file":151,"line":153},130,{"type":148,"name":155,"callback":156,"file":157,"line":158},"init","cpress_buttons","includes\\class-chordpress-plugin.php",268,{"type":148,"name":160,"callback":161,"file":157,"line":162},"after_setup_theme","cpress_theme_setup",271,{"type":164,"name":165,"callback":166,"file":157,"line":167},"filter","mce_external_plugins","cpress_add_buttons",281,{"type":164,"name":169,"callback":170,"file":157,"line":171},"mce_buttons","cpress_register_buttons",282,{"type":148,"name":173,"callback":174,"file":157,"line":175},"plugins_loaded","anonymous",317,{"type":164,"name":177,"callback":174,"file":157,"line":178},"plugin_action_links",333,{"type":164,"name":180,"callback":174,"file":157,"line":181},"plugin_row_meta",334,{"type":164,"name":183,"callback":174,"file":157,"line":184},"manage_guitar_chord_posts_columns",335,{"type":148,"name":186,"callback":174,"file":157,"line":187},"admin_enqueue_scripts",337,{"type":148,"name":186,"callback":174,"file":157,"line":189},338,{"type":148,"name":191,"callback":174,"file":157,"line":192},"admin_menu",339,{"type":148,"name":194,"callback":174,"file":157,"line":195},"admin_init",340,{"type":148,"name":155,"callback":174,"file":157,"line":197},341,{"type":148,"name":199,"callback":174,"file":157,"line":200},"save_post_guitar_chord",342,{"type":148,"name":202,"callback":174,"file":157,"line":203},"add_post_guitar_chord",343,{"type":148,"name":205,"callback":174,"file":157,"line":206},"manage_guitar_chord_posts_custom_column",344,{"type":148,"name":208,"callback":174,"file":157,"line":209},"in_plugin_update_message-chordpress\u002Fchordpress.php",345,{"type":148,"name":211,"callback":174,"file":157,"line":212},"wp_enqueue_scripts",361,{"type":148,"name":211,"callback":174,"file":157,"line":214},362,[],[],[218,220,223],{"tag":4,"callback":174,"file":157,"line":219},363,{"tag":221,"callback":174,"file":157,"line":222},"chordpress-chord",364,{"tag":224,"callback":174,"file":157,"line":225},"chordpress-jtab",365,[],3,{"dangerousFunctions":229,"sqlUsage":230,"outputEscaping":232,"fileOperations":65,"externalRequests":227,"nonceChecks":227,"capabilityChecks":85,"bundledLibraries":671},[],{"prepared":65,"raw":65,"locations":231},[],{"escaped":233,"rawEcho":234,"locations":235},819,284,[236,240,241,243,245,248,250,252,254,256,258,261,263,264,265,266,268,269,270,271,273,275,276,278,279,280,281,282,284,285,286,287,288,290,291,293,294,295,296,298,299,301,302,304,305,307,308,310,311,313,314,316,317,319,320,322,323,325,326,328,329,331,332,334,335,337,339,340,342,344,345,347,349,350,352,354,355,356,357,359,361,362,363,364,366,368,369,370,371,373,375,376,377,378,380,382,383,384,385,387,389,390,391,392,394,396,397,398,399,401,403,404,406,408,410,412,413,414,416,418,419,420,422,424,425,426,428,430,431,432,434,436,437,438,440,442,443,444,446,448,449,450,452,453,455,457,458,459,461,463,464,465,467,469,470,471,473,475,476,477,479,481,482,483,485,487,488,489,491,493,494,495,497,499,500,501,503,505,506,507,509,511,512,513,515,517,518,519,521,523,524,525,527,529,530,531,533,535,536,537,539,541,542,543,545,547,548,550,552,553,554,556,558,559,561,563,564,565,567,569,570,571,573,575,576,577,579,581,582,583,585,587,588,589,591,593,594,595,597,599,600,601,603,605,606,608,610,611,613,614,616,617,619,620,622,623,625,626,628,629,631,632,634,635,637,638,640,641,643,644,646,648,649,651,653,654,656,658,659,661,663,665,667,669],{"file":237,"line":238,"context":239},"admin\\partials\\chordpress-admin-chord-meta-box.php",77,"raw output",{"file":237,"line":238,"context":239},{"file":237,"line":242,"context":239},134,{"file":237,"line":244,"context":239},145,{"file":246,"line":247,"context":239},"admin\\partials\\chordpress-admin-license.php",46,{"file":246,"line":249,"context":239},74,{"file":246,"line":251,"context":239},93,{"file":246,"line":253,"context":239},104,{"file":246,"line":255,"context":239},108,{"file":246,"line":257,"context":239},206,{"file":259,"line":260,"context":239},"admin\\partials\\chordpress-admin-options.php",285,{"file":259,"line":262,"context":239},290,{"file":259,"line":262,"context":239},{"file":259,"line":262,"context":239},{"file":259,"line":262,"context":239},{"file":259,"line":267,"context":239},291,{"file":259,"line":267,"context":239},{"file":259,"line":267,"context":239},{"file":259,"line":267,"context":239},{"file":259,"line":272,"context":239},299,{"file":259,"line":274,"context":239},306,{"file":259,"line":274,"context":239},{"file":259,"line":277,"context":239},307,{"file":259,"line":277,"context":239},{"file":259,"line":277,"context":239},{"file":259,"line":277,"context":239},{"file":259,"line":277,"context":239},{"file":259,"line":283,"context":239},332,{"file":259,"line":178,"context":239},{"file":259,"line":178,"context":239},{"file":259,"line":197,"context":239},{"file":259,"line":197,"context":239},{"file":259,"line":289,"context":239},348,{"file":259,"line":289,"context":239},{"file":259,"line":292,"context":239},355,{"file":259,"line":292,"context":239},{"file":259,"line":214,"context":239},{"file":259,"line":214,"context":239},{"file":259,"line":297,"context":239},369,{"file":259,"line":297,"context":239},{"file":259,"line":300,"context":239},376,{"file":259,"line":300,"context":239},{"file":259,"line":303,"context":239},383,{"file":259,"line":303,"context":239},{"file":259,"line":306,"context":239},390,{"file":259,"line":306,"context":239},{"file":259,"line":309,"context":239},397,{"file":259,"line":309,"context":239},{"file":259,"line":312,"context":239},404,{"file":259,"line":312,"context":239},{"file":259,"line":315,"context":239},411,{"file":259,"line":315,"context":239},{"file":259,"line":318,"context":239},418,{"file":259,"line":318,"context":239},{"file":259,"line":321,"context":239},425,{"file":259,"line":321,"context":239},{"file":259,"line":324,"context":239},432,{"file":259,"line":324,"context":239},{"file":259,"line":327,"context":239},439,{"file":259,"line":327,"context":239},{"file":259,"line":330,"context":239},446,{"file":259,"line":330,"context":239},{"file":259,"line":333,"context":239},455,{"file":259,"line":333,"context":239},{"file":259,"line":336,"context":239},474,{"file":259,"line":338,"context":239},475,{"file":259,"line":338,"context":239},{"file":259,"line":341,"context":239},481,{"file":259,"line":343,"context":239},488,{"file":259,"line":343,"context":239},{"file":259,"line":346,"context":239},500,{"file":259,"line":348,"context":239},507,{"file":259,"line":348,"context":239},{"file":259,"line":351,"context":239},519,{"file":259,"line":353,"context":239},521,{"file":259,"line":353,"context":239},{"file":259,"line":353,"context":239},{"file":259,"line":353,"context":239},{"file":259,"line":358,"context":239},528,{"file":259,"line":360,"context":239},530,{"file":259,"line":360,"context":239},{"file":259,"line":360,"context":239},{"file":259,"line":360,"context":239},{"file":259,"line":365,"context":239},535,{"file":259,"line":367,"context":239},537,{"file":259,"line":367,"context":239},{"file":259,"line":367,"context":239},{"file":259,"line":367,"context":239},{"file":259,"line":372,"context":239},544,{"file":259,"line":374,"context":239},546,{"file":259,"line":374,"context":239},{"file":259,"line":374,"context":239},{"file":259,"line":374,"context":239},{"file":259,"line":379,"context":239},551,{"file":259,"line":381,"context":239},553,{"file":259,"line":381,"context":239},{"file":259,"line":381,"context":239},{"file":259,"line":381,"context":239},{"file":259,"line":386,"context":239},560,{"file":259,"line":388,"context":239},562,{"file":259,"line":388,"context":239},{"file":259,"line":388,"context":239},{"file":259,"line":388,"context":239},{"file":259,"line":393,"context":239},567,{"file":259,"line":395,"context":239},569,{"file":259,"line":395,"context":239},{"file":259,"line":395,"context":239},{"file":259,"line":395,"context":239},{"file":259,"line":400,"context":239},587,{"file":259,"line":402,"context":239},588,{"file":259,"line":402,"context":239},{"file":259,"line":405,"context":239},589,{"file":259,"line":407,"context":239},604,{"file":259,"line":409,"context":239},610,{"file":259,"line":411,"context":239},612,{"file":259,"line":411,"context":239},{"file":259,"line":411,"context":239},{"file":259,"line":415,"context":239},617,{"file":259,"line":417,"context":239},619,{"file":259,"line":417,"context":239},{"file":259,"line":417,"context":239},{"file":259,"line":421,"context":239},624,{"file":259,"line":423,"context":239},626,{"file":259,"line":423,"context":239},{"file":259,"line":423,"context":239},{"file":259,"line":427,"context":239},631,{"file":259,"line":429,"context":239},633,{"file":259,"line":429,"context":239},{"file":259,"line":429,"context":239},{"file":259,"line":433,"context":239},638,{"file":259,"line":435,"context":239},640,{"file":259,"line":435,"context":239},{"file":259,"line":435,"context":239},{"file":259,"line":439,"context":239},645,{"file":259,"line":441,"context":239},647,{"file":259,"line":441,"context":239},{"file":259,"line":441,"context":239},{"file":259,"line":445,"context":239},652,{"file":259,"line":447,"context":239},654,{"file":259,"line":447,"context":239},{"file":259,"line":447,"context":239},{"file":259,"line":451,"context":239},661,{"file":259,"line":451,"context":239},{"file":259,"line":454,"context":239},666,{"file":259,"line":456,"context":239},668,{"file":259,"line":456,"context":239},{"file":259,"line":456,"context":239},{"file":259,"line":460,"context":239},673,{"file":259,"line":462,"context":239},675,{"file":259,"line":462,"context":239},{"file":259,"line":462,"context":239},{"file":259,"line":466,"context":239},680,{"file":259,"line":468,"context":239},682,{"file":259,"line":468,"context":239},{"file":259,"line":468,"context":239},{"file":259,"line":472,"context":239},687,{"file":259,"line":474,"context":239},689,{"file":259,"line":474,"context":239},{"file":259,"line":474,"context":239},{"file":259,"line":478,"context":239},694,{"file":259,"line":480,"context":239},696,{"file":259,"line":480,"context":239},{"file":259,"line":480,"context":239},{"file":259,"line":484,"context":239},701,{"file":259,"line":486,"context":239},703,{"file":259,"line":486,"context":239},{"file":259,"line":486,"context":239},{"file":259,"line":490,"context":239},708,{"file":259,"line":492,"context":239},710,{"file":259,"line":492,"context":239},{"file":259,"line":492,"context":239},{"file":259,"line":496,"context":239},715,{"file":259,"line":498,"context":239},717,{"file":259,"line":498,"context":239},{"file":259,"line":498,"context":239},{"file":259,"line":502,"context":239},722,{"file":259,"line":504,"context":239},724,{"file":259,"line":504,"context":239},{"file":259,"line":504,"context":239},{"file":259,"line":508,"context":239},729,{"file":259,"line":510,"context":239},731,{"file":259,"line":510,"context":239},{"file":259,"line":510,"context":239},{"file":259,"line":514,"context":239},736,{"file":259,"line":516,"context":239},738,{"file":259,"line":516,"context":239},{"file":259,"line":516,"context":239},{"file":259,"line":520,"context":239},743,{"file":259,"line":522,"context":239},745,{"file":259,"line":522,"context":239},{"file":259,"line":522,"context":239},{"file":259,"line":526,"context":239},750,{"file":259,"line":528,"context":239},752,{"file":259,"line":528,"context":239},{"file":259,"line":528,"context":239},{"file":259,"line":532,"context":239},757,{"file":259,"line":534,"context":239},759,{"file":259,"line":534,"context":239},{"file":259,"line":534,"context":239},{"file":259,"line":538,"context":239},764,{"file":259,"line":540,"context":239},766,{"file":259,"line":540,"context":239},{"file":259,"line":540,"context":239},{"file":259,"line":544,"context":239},771,{"file":259,"line":546,"context":239},778,{"file":259,"line":546,"context":239},{"file":259,"line":549,"context":239},786,{"file":259,"line":551,"context":239},788,{"file":259,"line":551,"context":239},{"file":259,"line":551,"context":239},{"file":259,"line":555,"context":239},793,{"file":259,"line":557,"context":239},800,{"file":259,"line":557,"context":239},{"file":259,"line":560,"context":239},808,{"file":259,"line":562,"context":239},810,{"file":259,"line":562,"context":239},{"file":259,"line":562,"context":239},{"file":259,"line":566,"context":239},815,{"file":259,"line":568,"context":239},817,{"file":259,"line":568,"context":239},{"file":259,"line":568,"context":239},{"file":259,"line":572,"context":239},822,{"file":259,"line":574,"context":239},824,{"file":259,"line":574,"context":239},{"file":259,"line":574,"context":239},{"file":259,"line":578,"context":239},829,{"file":259,"line":580,"context":239},831,{"file":259,"line":580,"context":239},{"file":259,"line":580,"context":239},{"file":259,"line":584,"context":239},836,{"file":259,"line":586,"context":239},838,{"file":259,"line":586,"context":239},{"file":259,"line":586,"context":239},{"file":259,"line":590,"context":239},843,{"file":259,"line":592,"context":239},845,{"file":259,"line":592,"context":239},{"file":259,"line":592,"context":239},{"file":259,"line":596,"context":239},850,{"file":259,"line":598,"context":239},852,{"file":259,"line":598,"context":239},{"file":259,"line":598,"context":239},{"file":259,"line":602,"context":239},870,{"file":259,"line":604,"context":239},871,{"file":259,"line":604,"context":239},{"file":259,"line":607,"context":239},872,{"file":259,"line":609,"context":239},879,{"file":259,"line":609,"context":239},{"file":259,"line":612,"context":239},886,{"file":259,"line":612,"context":239},{"file":259,"line":615,"context":239},893,{"file":259,"line":615,"context":239},{"file":259,"line":618,"context":239},900,{"file":259,"line":618,"context":239},{"file":259,"line":621,"context":239},907,{"file":259,"line":621,"context":239},{"file":259,"line":624,"context":239},914,{"file":259,"line":624,"context":239},{"file":259,"line":627,"context":239},921,{"file":259,"line":627,"context":239},{"file":259,"line":630,"context":239},928,{"file":259,"line":630,"context":239},{"file":259,"line":633,"context":239},935,{"file":259,"line":633,"context":239},{"file":259,"line":636,"context":239},942,{"file":259,"line":636,"context":239},{"file":259,"line":639,"context":239},949,{"file":259,"line":639,"context":239},{"file":259,"line":642,"context":239},956,{"file":259,"line":642,"context":239},{"file":259,"line":645,"context":239},983,{"file":259,"line":647,"context":239},984,{"file":259,"line":647,"context":239},{"file":259,"line":650,"context":239},990,{"file":259,"line":652,"context":239},992,{"file":259,"line":652,"context":239},{"file":259,"line":655,"context":239},997,{"file":259,"line":657,"context":239},999,{"file":259,"line":657,"context":239},{"file":259,"line":660,"context":239},1017,{"file":259,"line":662,"context":239},1021,{"file":259,"line":664,"context":239},1080,{"file":259,"line":666,"context":239},1098,{"file":151,"line":668,"context":239},87,{"file":151,"line":670,"context":239},131,[672],{"name":673,"version":37,"knownCves":674},"TinyMCE",[],[676,695],{"entryPoint":677,"graph":678,"unsanitizedCount":48,"severity":39},"\u003Cclass-chordpress-license> (includes\\class-chordpress-license.php:0)",{"nodes":679,"edges":692},[680,686],{"id":681,"type":682,"label":683,"file":684,"line":685},"n0","source","$_SERVER (x2)","includes\\class-chordpress-license.php",190,{"id":687,"type":688,"label":689,"file":684,"line":690,"wp_function":691},"n1","sink","wp_remote_get() [SSRF]",211,"wp_remote_get",[693],{"from":681,"to":687,"sanitized":694},false,{"entryPoint":696,"graph":697,"unsanitizedCount":65,"severity":718},"\u003Cchordpress-admin-options> (admin\\partials\\chordpress-admin-options.php:0)",{"nodes":698,"edges":714},[699,702,705,709],{"id":681,"type":682,"label":700,"file":259,"line":701},"$_REQUEST[$option]",59,{"id":687,"type":688,"label":703,"file":259,"line":701,"wp_function":704},"update_option() [Settings Manipulation]","update_option",{"id":706,"type":682,"label":707,"file":259,"line":708},"n2","$_GET",301,{"id":710,"type":688,"label":711,"file":259,"line":712,"wp_function":713},"n3","echo() [XSS]",323,"echo",[715,717],{"from":681,"to":687,"sanitized":716},true,{"from":706,"to":710,"sanitized":716},"low",{"summary":720,"deductions":721},"The Chordpress v4.0.1 plugin presents a mixed security profile. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and performing capability checks on a significant portion of its operations. The absence of dangerous functions and file operations is also a strong indicator of a well-developed codebase. However, several areas raise concerns. A notable issue is the presence of one unsanitized path in the taint analysis, which, although not categorized as critical or high severity in this report, represents a potential vulnerability that could be exploited. Furthermore, the plugin has a history of known vulnerabilities, with one medium-severity CVE currently unpatched, indicating a potential for recurring security flaws or delayed patching. The plugin's last vulnerability was recorded on June 19, 2025, which is in the future, suggesting a potential data anomaly or forward-looking tracking.  The output escaping, while extensive, has a significant percentage (26%) that is not properly escaped, posing a risk of XSS attacks. In conclusion, while Chordpress implements several security best practices, the unpatched CVE, taint analysis findings, and output escaping issues warrant careful consideration and prompt remediation.",[722,725,727,730],{"reason":723,"points":724},"Unpatched CVE present",18,{"reason":726,"points":119},"Unsanitized path in taint analysis",{"reason":728,"points":729},"Significant unescaped output detected",7,{"reason":731,"points":732},"Bundled library TinyMCE",4,"2026-03-16T20:26:50.067Z",{"wat":735,"direct":745},{"assetPaths":736,"generatorPatterns":739,"scriptPaths":740,"versionParams":742},[737,738],"\u002Fwp-content\u002Fplugins\u002Fchordpress\u002Fadmin\u002Fcss\u002Fchordpress-admin.css","\u002Fwp-content\u002Fplugins\u002Fchordpress\u002Fglobal\u002Fjs\u002Fsvguitar.umd.js",[],[741],"\u002Fwp-content\u002Fplugins\u002Fchordpress\u002Fadmin\u002Fjs\u002Fchordpress-admin.js",[743,744],"chordpress-admin.css?ver=","chordpress-admin.js?ver=",{"cssClasses":746,"htmlComments":748,"htmlAttributes":749,"restEndpoints":753,"jsGlobals":754,"shortcodeOutput":756},[747],"chordpress-admin-page",[],[750,751,752],"data-chordpress-action","data-chordpress-modal","data-chordpress-title",[],[755],"window.chordpress_admin_ajax_object",[]]