[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fdwj59YLVNAtt-cPK9FYcLamuWx0EmX7l9INeStVQGKI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":35,"analysis":139,"fingerprints":177},"collect-browser-info","Collect Browser Info","0.0.3","Jose Mortellaro","https:\u002F\u002Fprofiles.wordpress.org\u002Fgiuse\u002F","\u003Cp>It adds a shortcode to collect the information of the browser used by the visitor.\u003C\u002Fp>\n\u003Cp>No options for this plugin. On the pages where you add the shortcode [collect_browser_info], the visitor will see something that looks like:\u003C\u002Fp>\n\u003Cp>User Agent: Mozilla\u002F5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit\u002F537.36 (KHTML, like Gecko) Chrome\u002F90.0.4430.212 Safari\u002F537.36\u003C\u002Fp>\n\u003Cp>App name: Netscape\u003C\u002Fp>\n\u003Cp>Platform: MacIntel\u003C\u002Fp>\n\u003Cp>Cookies enabled: true\u003C\u002Fp>\n\u003Cp>Vendor: Google Inc.\u003C\u002Fp>\n\u003Cp>Screen available width: 2048\u003C\u002Fp>\n\u003Cp>Screen available height: 1152\u003C\u002Fp>\n\u003Cp>Screen width: 2048\u003C\u002Fp>\n\u003Cp>Screen height: 1152\u003C\u002Fp>\n\u003Cp>Viewport width: 1208\u003C\u002Fp>\n\u003Cp>Viewport height: 960\u003C\u002Fp>\n\u003Cp>So, if someone has problems with your website and you want to know which browser is giving that problem, share the URL of the page that collects the browser information, and ask to send you the collected information about the browser.\u003C\u002Fp>\n\u003Cp>You can see how it works visiting the blog post \u003Ca href=\"https:\u002F\u002Fjosemortellaro.com\u002Fhow-to-collect-the-browser-information\u002F\" rel=\"nofollow ugc\">How to collect the browser information\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>If you need help open a thread on the support forum of this plugin.\u003Cbr \u002F>\nPlease, before posting enable the debugging in wp-config.php. Need a step-by-step guide? Read \u003Ca href=\"https:\u002F\u002Ffreesoul-deactivate-plugins.com\u002Fhow-to-enable-debugging-in-wordpress-a-step-by-step-guide\u002F\" rel=\"nofollow ugc\">this detailed tutorial\u003C\u002Fa> on \u003Ca href=\"https:\u002F\u002Ffreesoul-deactivate-plugins.com\u002Fhow-to-enable-debugging-in-wordpress-a-step-by-step-guide\u002F\" rel=\"nofollow ugc\">how to enable debugging in WordPress\u003C\u002Fa> to learn more.\u003C\u002Fp>\n","It adds a shortcode to collect the information of the browser used by the visitor.",0,5213,100,1,"2025-12-05T08:47:00.000Z","6.9.4","4.6","5.6",[20,21],"browser","browser-information","https:\u002F\u002Fjosemortellaro.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcollect-browser-info.0.0.3.zip",null,"2026-03-15T15:16:48.613Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"giuse",56,26370,99,62,87,"2026-04-04T01:08:27.534Z",[36,61,81,99,119],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":58,"download_link":59,"security_score":60,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"any-mobile-theme-switcher","Any Mobile Theme Switcher","3.2","Dnesscarkey","https:\u002F\u002Fprofiles.wordpress.org\u002Fdnesscarkey\u002F","\u003Cp>Detects all the Mobile Browsers and loads the mobile theme as per your settings done in admin.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Iphone \u002F Ipod\u003C\u002Fli>\n\u003Cli>Ipad\u003C\u002Fli>\n\u003Cli>Palm Os\u003C\u002Fli>\n\u003Cli>Android\u003C\u002Fli>\n\u003Cli>Android Tab\u003C\u002Fli>\n\u003Cli>Windows Mobile\u003C\u002Fli>\n\u003Cli>Blackberry\u003C\u002Fli>\n\u003Cli>Opera Mini\u003C\u002Fli>\n\u003Cli>Others Mobile Browsers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can select a different mobile theme for each mobile browser. You can select different mobile themes for each of the options above.\u003C\u002Fp>\n\u003Cp>Any Mobile Theme Switcher Pro Features\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works With W3 Total Cache\u003C\u002Fli>\n\u003Cli>Serve seprate home page for mobile devices.\u003C\u002Fli>\n\u003Cli>QR code for mobile bookmarking.\u003C\u002Fli>\n\u003Cli>Better Mobile Detection.\u003C\u002Fli>\n\u003Cli>Click To Call to phone numbers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Click \u003Ca href=\"https:\u002F\u002Fdineshkarki.com.np\u002Fany-mobile-theme-switcher\u002Fbuy-pro-version\" title=\"Any Mobile Theme Switcher Pro\" rel=\"nofollow ugc\">here\u003C\u002Fa> for details about Any Mobile Theme Swticher Pro\u003C\u002Fp>\n\u003Cp>Please visit our own \u003Ca href=\"http:\u002F\u002Fdineshkarki.com.np\u002Fforums\u002Fforum\u002Fmobile-theme-switcher\" rel=\"nofollow ugc\">support forum\u003C\u002Fa> for any issues. We don’t respond support ticket created here.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Installation Video (Thanks to Scott Wiseman)\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FOqXhTW9FpRI?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Our Other Plugins\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuse-any-font\" rel=\"ugc\">Use Any Font\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhoneypot\u002F\" rel=\"ugc\">WP Armour Anti Spam Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdineshkarki.com.np\u002Fjquery-validation-for-gravity-forms\" rel=\"nofollow ugc\">jQuery Validation for Gravity Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjquery-validation-for-contact-form-7\u002F\" rel=\"ugc\">jQuery Validation For Contact Form 7\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblock-specific-plugin-updates\u002F\" rel=\"ugc\">Block Specific Plugin Updates\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffeatured-image-in-rss-feed\u002F\" rel=\"ugc\">Featured Image In RSS Feed\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadd-tags-and-category-to-page\u002F\" rel=\"ugc\">Add Tags And Category To Page\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","This Plugin detects mobile browser and display the theme as the setting done from admin. Usefull for switch to Mobile Theme.",20000,447512,96,244,"2024-09-03T15:18:00.000Z","6.6.5","3.0","",[53,54,55,56,57],"mobile-browser-detect","mobile-detect","mobile-theme","mobile-theme-switcher","theme-redirection-based-on-mobile-device","http:\u002F\u002Fdineshkarki.com.np\u002Fany-mobile-theme-switcher","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fany-mobile-theme-switcher.3.2.zip",92,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":44,"downloaded":69,"rating":13,"num_ratings":70,"last_updated":71,"tested_up_to":16,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":79,"download_link":80,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"wp-console","WP Console – WordPress PHP Console powered by PsySH","2.6.0","Edi Amin","https:\u002F\u002Fprofiles.wordpress.org\u002Fediamin\u002F","\u003Cp>WP Console brings the renowned PsySH directly to your browser. PsySH serves as a runtime developer console, an interactive debugger, and a PHP REPL (Read-Eval-Print Loop).\u003C\u002Fp>\n\u003Cp>To utilize WP Console, simply write your code within the code editor, then press Cmd-Enter (mac) or Ctrl-Enter (win\u002Flinux) to instantly view the output in your browser.\u003C\u002Fp>\n\u003Cp>Moreover, you have the option to employ PsySH alongside wp-cli by executing the command \u003Ccode>wp shell\u003C\u002Fcode>. Notably, wp-cli comes with inherent compatibility for psysh. All that is required is the activation of WP Console to leverage this feature.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Powerful code editor powered by Ace Editor.\u003C\u002Fli>\n\u003Cli>Real-time autocompletion for PHP core and WordPress functions, complete with placeholders.\u003C\u002Fli>\n\u003Cli>Introducing \u003Ccode>_dump\u003C\u002Fcode> as a more versatile alternative to \u003Ccode>var_dump\u003C\u002Fcode>, leveraging the capabilities of Symfony VarDumper.\u003C\u002Fli>\n\u003Cli>Instant access to debug.log contents, with the added convenience of clearing them directly from your browser.\u003C\u002Fli>\n\u003Cli>Enhanced shell experience courtesy of psySH, facilitating advanced interaction through \u003Ccode>wp shell\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Customizable code snippet functionality, compatible with VS Code supported code snippets. Explore examples like these \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fclaudiosanches\u002Fvscode-woocommerce\u002Fblob\u002Fmaster\u002Fsnippets\u002Ffunctions.json\" rel=\"nofollow ugc\">WooCommerce snippets\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please note that certain PsySH commands, such as \u003Ccode>ls\u003C\u002Fcode>, \u003Ccode>doc\u003C\u002Fcode>, \u003Ccode>show\u003C\u002Fcode>, and magic variables like \u003Ccode>$_\u003C\u002Fcode>, \u003Ccode>$__class\u003C\u002Fcode>, are not currently supported in the browser console.\u003C\u002Fp>\n\u003Cp>👉 WP Console uses Gutenberg packages and components to ensure a seamless and user-friendly UI\u002FUX.\u003C\u002Fp>\n\u003Ch3>Getting Started\u003C\u002Fh3>\n\u003Cp>To begin using the plugin, follow these steps:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Activate the plugin within your WordPress setup.\u003C\u002Fli>\n\u003Cli>Look for a quick link labeled “Console” in the WP Admin Bar on the right-hand side (see the second screenshot below).\u003C\u002Fli>\n\u003Cli>Click on the “Console” link to access the WP Console panel.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Security Concern\u003C\u002Fh3>\n\u003Cp>WP Console explicitly verifies the presence of the \u003Ccode>manage_options\u003C\u002Fcode> permission to render the user interface and execute various functions. However, it’s important to note that this plugin is not intended for use on a production server.\u003C\u002Fp>\n\u003Ch3>Other Plugin\u003C\u002Fh3>\n\u003Cp>Working with the block or the block editor? Checkout \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcss-class-manager\u002F\" rel=\"ugc\">CSS Class Manager\u003C\u002Fa> – An advanced autocomplete additional css class control for your blocks.\u003C\u002Fp>\n","An in-browser PHP console for WordPress powered by PsySH",1899294,20,"2025-11-08T09:02:00.000Z","5.3.12","7.4",[75,20,76,77,78],"autocomplete","dump","repl","shell","https:\u002F\u002Fgithub.com\u002Fediamin\u002Fwp-console","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-console.2.6.0.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":49,"requires_at_least":94,"requires_php":18,"tags":95,"homepage":51,"download_link":98,"security_score":60,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"leverage-browser-caching","Leverage Browser Caching","2.6","Rinku Y","https:\u002F\u002Fprofiles.wordpress.org\u002Frinkuyadav999\u002F","\u003Cp>As it’s name, it will fix Leverage Browser Caching issues in your WordPress website. Also it improves page speed score in website testing tools like: Pingdom, GTmetrix, PageSpeed, Google PageSpeed Insights, YSlow etc.\u003C\u002Fp>\n\u003Ch4>About Leverage Browser Caching\u003C\u002Fh4>\n\u003Cp>Leverage Browser Caching means storing static files of a website in visitor browser. And then retrieving them from browser quickly instead again from server. Actually it uses to speed up each page of a website.\u003C\u002Fp>\n\u003Ch4>How Leverage Browser Caching Works?\u003C\u002Fh4>\n\u003Cp>When you visit a web page, your browser downloads all content of the particular page as well as common static files like css and js files. And when you visit other page of same website, your browser downloads them again. But if you have enabled Leverage Browser Caching, then all statics files will serve from your browser instead server. Now when you will visit any page of the particular website, it will only download unique contains of the page and static files will serve from your browser. in this way, it speed up each page of a website.\u003C\u002Fp>\n\u003Ch4>Benefits of Leverage Browser Caching\u003C\u002Fh4>\n\u003Cp>Primary benefit is speeding up website because static files will serve from your browser. it saves internet data of website visitor. it also saves bandwidth of website server and decrease load of server. Simply it decreases HTTP requests.\u003C\u002Fp>\n","It will fix Leverage Browser Caching issue ( Apache Server Only ).",10000,412937,82,42,"2024-09-05T14:20:00.000Z","4.0",[20,96,97],"caching","leverage","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleverage-browser-caching.2.6.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":89,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":94,"requires_php":51,"tags":112,"homepage":51,"download_link":118,"security_score":60,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"prevent-browser-caching","Prevent Browser Caching","2.3.5","kostyatereshchuk","https:\u002F\u002Fprofiles.wordpress.org\u002Fkostyatereshchuk\u002F","\u003Cp>Are you a frontend developer? Do you want to clear browser cache for all users? Just activate this plugin and show your work!\u003C\u002Fp>\n\u003Cp>Prevent Browser Caching allows you to update the assets version of all CSS and JS files automatically or manually in one click.\u003C\u002Fp>\n\u003Cp>Now you can show the latest changes on the site without asking the client to clear the cache.\u003C\u002Fp>\n\u003Ch4>How it works?\u003C\u002Fh4>\n\u003Cp>Usually, WordPress loads assets using query param “ver” in the URL (e.g., style.css?ver=4.9.6). It allows browsers to cache these files until the parameter will not be updated.\u003C\u002Fp>\n\u003Cp>To prevent caching of CSS and JS files, this plugin adds a unique number (e.g., 1526905286) to the “ver” parameter (e.g., style.css?ver=4.9.6.1526905286) for all links, loaded using wp_enqueue_style and wp_enqueue_script functions.\u003C\u002Fp>\n\u003Ch4>For developers\u003C\u002Fh4>\n\u003Cp>By default, this plugin updates all assets files every time a user loads a page and adds options in the admin panel (Settings -> Prevent Browser Caching) which allows you to configure updating of these files.\u003C\u002Fp>\n\u003Cp>But you can also set the version of CSS and JS files programmatically.\u003C\u002Fp>\n\u003Cp>Just insert this code in functions.php file of your theme and change the value of assets_version when you need to update assets:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>prevent_browser_caching( array( \n    'assets_version' => '123' \n) );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Updates the assets version of all CSS and JS files. Shows the latest changes on the site without asking the client to clear browser cache.",109482,98,28,"2024-04-09T17:18:00.000Z","6.5.8",[113,114,115,116,117],"assets","browser-cache","clear","development","frontend","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprevent-browser-caching.2.3.5.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":13,"num_ratings":129,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":51,"tags":133,"homepage":137,"download_link":138,"security_score":60,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"rebusted","reBusted!","1.2","Simon Prosser","https:\u002F\u002Fprofiles.wordpress.org\u002Fpross\u002F","\u003Cp>Saves you from asking “have you emptied your cache?”.\u003C\u002Fp>\n\u003Cp>Forked and updated for todays WordPress and PHP from the original plugin by Paul Clark.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Safe to leave running on live sites.\u003C\u002Fli>\n\u003Cli>Only refreshes browser cache for a file if it has been modified.\u003C\u002Fli>\n\u003Cli>Resolves Content Delivery Network (CDN) issues. No need to purge CDN cache.\u003C\u002Fli>\n\u003Cli>Multisite compatible.\u003C\u002Fli>\n\u003Cli>“Just works” – no configuration necessary.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Requirements\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Requires scripts use any of the below functions to load. Almost all files meet these requirements. The only case it doesn’t account for is when URLs are hard-coded. This shouldn’t ever be done, since it can break sites for other reasons.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fwp_enqueue_style\" rel=\"nofollow ugc\">wp_enqueue_style\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fwp_enqueue_script\" rel=\"nofollow ugc\">wp_enqueue_script\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fget_stylesheet_uri\" rel=\"nofollow ugc\">get_stylesheet_uri\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Force browsers to load the most recent file if modified.",6000,34186,11,"2024-10-10T14:16:00.000Z","6.7.5","3.4",[114,115,134,135,136],"client","debug","develop","https:\u002F\u002Fgithub.com\u002FPross\u002FreBusted","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frebusted.1.2.zip",{"attackSurface":140,"codeSignals":161,"taintFlows":169,"riskAssessment":170,"analyzedAt":176},{"hooks":141,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":160,"entryPointCount":14,"unprotectedCount":11},[142,148],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","init","eos_cbi_plugin_textdomain","collect-browser-info.php",79,{"type":149,"name":150,"callback":151,"priority":31,"file":146,"line":152},"filter","load_textdomain_mofile","eos_cbi_load_translation_file",89,[],[],[156],{"tag":157,"callback":158,"file":146,"line":159},"collect_browser_info","closure",27,[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":168},[],{"prepared":11,"raw":11,"locations":164},[],{"escaped":166,"rawEcho":11,"locations":167},2,[],[],[],{"summary":171,"deductions":172},"The \"collect-browser-info\" plugin version 0.0.3 exhibits a generally strong security posture based on the provided static analysis and vulnerability history.  The absence of dangerous functions, file operations, external HTTP requests, and a complete lack of raw SQL queries are significant strengths. Furthermore, all identified SQL queries utilize prepared statements, and all output is properly escaped, mitigating common web vulnerabilities. The plugin also has no recorded vulnerabilities or CVEs, suggesting a history of secure development or minimal exposure.\n\nHowever, there are notable areas for improvement. The plugin relies heavily on capability checks for its single shortcode, but it completely lacks nonce checks for any potential entry points. While the static analysis reports no unprotected entry points, the absence of nonce checks on a shortcode, which can be triggered via POST requests, presents a potential blind spot. If the shortcode's functionality involves any state-changing operations or sensitive data handling, this could be exploited without proper nonce validation.  The lack of recorded vulnerabilities is a positive sign but doesn't entirely negate the risk associated with missing security best practices.",[173],{"reason":174,"points":175},"Missing nonce checks on shortcode",7,"2026-03-17T07:01:51.300Z",{"wat":178,"direct":183},{"assetPaths":179,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[],[],[],[],{"cssClasses":184,"htmlComments":186,"htmlAttributes":187,"restEndpoints":188,"jsGlobals":189,"shortcodeOutput":192},[185],"button",[],[],[],[190,191],"eos_cbi_update_browser_info","eos_cbi_copy_to_clipboard",[193],"\u003Csection style=\"padding:20px\">\u003Cdiv id=\"browser-info\">\u003C\u002Fdiv>\u003Cdiv style=\"margin-top:32px\">\u003Cinput type=\"submit\" id=\"cbi-copy-to-clipboard\" class=\"button\" value=\"Copy to clipboard\" \u002F>\u003Cp id=\"cbi-clipboard-msg\">\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fsection>\u003Cscript>function eos_cbi_update_browser_info(){var browser_info = document.getElementById(\"browser-info\"),info = \"\",w = Math.max(document.documentElement.clientWidth, window.innerWidth || 0),h = Math.max(document.documentElement.clientHeight, window.innerHeight || 0);info +=\"\u003Cp>\u003Cb>User Agent:\u003C\u002Fb> \" + navigator.userAgent + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>App name:\u003C\u002Fb> \" + navigator.appName + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Platform:\u003C\u002Fb> \" + navigator.platform + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Cookies enabled:\u003C\u002Fb> \" + navigator.cookieEnabled + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Vendor:\u003C\u002Fb> \" + navigator.vendor + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Screen available width:\u003C\u002Fb> \" + window.screen.availWidth + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Screen available height:\u003C\u002Fb> \" + window.screen.availHeight + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Screen width:\u003C\u002Fb> \" + window.screen.width + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Screen height:\u003C\u002Fb> \" + window.screen.height + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Viewport width:\u003C\u002Fb> \" + w + \"\u003C\u002Fp>\";info +=\"\u003Cp>\u003Cb>Viewport height:\u003C\u002Fb> \" + h + \"\u003C\u002Fp>\";browser_info.innerHTML = info;}function eos_cbi_copy_to_clipboard(text){var clip_msg = document.getElementById(\"cbi-clipboard-msg\");clip_msg.innerHTML = \"\";navigator.clipboard.writeText(text).then(function() {clip_msg.innerHTML = \"Copying to clipboard was successful!\";},function(err){clip_msg.innerHTML = \"Not possible to copy to the clipboard: \" + err;});}eos_cbi_update_browser_info();window.addEventListener(\"resize\",eos_cbi_update_browser_info);document.getElementById(\"cbi-copy-to-clipboard\").addEventListener(\"click\",function(){eos_cbi_copy_to_clipboard(document.getElementById(\"browser-info\").innerText)});\u003C\u002Fscript>"]