[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f5Al4mjYMRZr3cwQ0ZEj5CJ-zj_AwQ7K-87n1QTrh4pk":3,"$fX8sfdX-tQSmP1xW_A-H_KIeR_yWUT_Q75bhVOLhq7Pw":110,"$fN_3lZUADU8lF2_9wNoHXgfhS7_izXtF4UwnKR5ZviMc":115},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":36,"analysis":37,"fingerprints":95},"cite-references","Cite references","1.0","DEJAN","https:\u002F\u002Fprofiles.wordpress.org\u002Fdejan-seo\u002F","\u003Cp>A plugin that will include cite referencing on your site. Cite references plugin will only work if the author has a first and last name set, and only on blog posts. You can disable the option for each individual post in post administration.\u003C\u002Fp>\n","A plugin that will include cite referencing on your site.",10,1763,0,"2015-05-14T05:21:00.000Z","4.2.39","3.0.1","",[19,20,21],"cite-referencing","citing-reference","online-quotations","http:\u002F\u002Fdejanseo.com.au","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcite-references.1.0.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":33,"computed_at":35},"dejan-seo",4,90,80,30,"2026-05-20T03:56:31.963Z",[],{"attackSurface":38,"codeSignals":70,"taintFlows":85,"riskAssessment":86,"analyzedAt":94},{"hooks":39,"ajaxHandlers":66,"restRoutes":67,"shortcodes":68,"cronEvents":69,"entryPointCount":13,"unprotectedCount":13},[40,46,49,53,57,62],{"type":41,"name":42,"callback":43,"file":44,"line":45},"action","load-post.php","cite_post_meta_boxes_setup","index.php",11,{"type":41,"name":47,"callback":43,"file":44,"line":48},"load-post-new.php",12,{"type":41,"name":50,"callback":51,"file":44,"line":52},"add_meta_boxes","cite_add_post_boxes",19,{"type":41,"name":54,"callback":55,"priority":11,"file":44,"line":56},"save_post","cite_save_post_meta",22,{"type":58,"name":59,"callback":60,"file":44,"line":61},"filter","post_class","cite_option",139,{"type":58,"name":63,"callback":64,"file":44,"line":65},"the_content","add_cite_to_footer_the_content",161,[],[],[],[],{"dangerousFunctions":71,"sqlUsage":72,"outputEscaping":74,"fileOperations":13,"externalRequests":83,"nonceChecks":83,"capabilityChecks":83,"bundledLibraries":84},[],{"prepared":13,"raw":13,"locations":73},[],{"escaped":75,"rawEcho":76,"locations":77},5,2,[78,81],{"file":44,"line":79,"context":80},93,"raw output",{"file":44,"line":82,"context":80},95,1,[],[],{"summary":87,"deductions":88},"The \"cite-references\" plugin v1.0 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of any identified CVEs, a clean vulnerability history, and the zero attack surface from AJAX, REST API, shortcodes, and cron events are all positive indicators. Furthermore, the code signals show no dangerous functions, a complete reliance on prepared statements for SQL queries, and the presence of nonce and capability checks, all of which are excellent security practices. The low percentage of unescaped output (71%) is a minor area for improvement but not immediately critical given the absence of other significant risks.\n\nHowever, the plugin does make one external HTTP request, which introduces a potential risk if the target service is compromised or malicious. While taint analysis shows no flows, this external request represents an entry point for potential data exfiltration or manipulation if the plugin doesn't handle the response securely. The limited output escaping (71%) also means there's a small window for potential cross-site scripting (XSS) vulnerabilities if the unescaped outputs are user-controlled. Overall, the plugin demonstrates a good understanding of WordPress security principles, but the external HTTP request warrants careful consideration and review of its implementation.",[89,91],{"reason":90,"points":75},"One external HTTP request detected",{"reason":92,"points":93},"Only 71% of output properly escaped",3,"2026-04-16T12:46:51.420Z",{"wat":96,"direct":101},{"assetPaths":97,"generatorPatterns":98,"scriptPaths":99,"versionParams":100},[],[],[],[],{"cssClasses":102,"htmlComments":104,"htmlAttributes":105,"restEndpoints":106,"jsGlobals":107,"shortcodeOutput":108},[103],"cite-option",[],[],[],[],[109],"\u003Cb>\u003Cdiv style=\"border:1px solid #000000; padding:5px;\">Cite this article:\u003C\u002Fb>\u003Cbr>",{"error":111,"url":112,"statusCode":113,"statusMessage":114,"message":114},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcite-references\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":76,"versions":116},[117,123],{"version":6,"download_url":23,"svn_tag_url":118,"released_at":25,"has_diff":119,"diff_files_changed":120,"diff_lines":25,"trac_diff_url":121,"vulnerabilities":122,"is_current":111},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcite-references\u002Ftags\u002F1.0\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcite-references%2Ftags%2F0.1.2&new_path=%2Fcite-references%2Ftags%2F1.0",[],{"version":124,"download_url":125,"svn_tag_url":126,"released_at":25,"has_diff":119,"diff_files_changed":127,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":128,"is_current":119},"0.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcite-references.0.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcite-references\u002Ftags\u002F0.1.2\u002F",[],[]]