[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhFAD1NlSzBFPO4OmHrtVNbf_lDs32z8WA4SN8XgMEpU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":11,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":84,"fingerprints":304},"comments-subscribe-checkbox","Subscribe To Comments Checkbox","1.2.6","yydevelopment","https:\u002F\u002Fprofiles.wordpress.org\u002Fyydevelopment\u002F","\u003Cp>The subscribe to comments checkbox is a simple plugin that will allow you to add subscribe checkbox message below comments on your website and it will also send automatic email when the comment get replied.\u003C\u002Fp>\n\u003Cp>To add the comment email subscribe notification message all you need to do is to activate the plugin and it will be added automatically.\u003C\u002Fp>\n\u003Cp>The plugin also allow you to see under the “comments” section in wordpress admin panel all the user that subscribed to the comment reply in your blog posts & pages and you will be able to see who get mail and who didn’t.\u003C\u002Fp>\n\u003Ch4>Comments Subscribe Checkbox Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Comment subscribe notification message below the comment box\u003C\u002Fli>\n\u003Cli>Comments users management system\u003C\u002Fli>\n\u003Cli>Automatic email message that will be send to every user who subscribed to the comment\u003C\u002Fli>\n\u003Cli>The ability to unsubscribe from getting new comments on the site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Available languages:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Hebrew (only frontend code)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>About the author & license\u003C\u002Fh4>\n\u003Cp>This plugin was brought to you for free by \u003Ca href=\"https:\u002F\u002Fwww.yydevelopment.com\u002F\" rel=\"nofollow ugc\">YYDevelopment\u003C\u002Fa> under GPLv2 license.\u003C\u002Fp>\n\u003Cp>The plugin is 100% free and we intend to keep it that way in the future as well. You are free to use this plugin and all our other \u003Ca href=\"https:\u002F\u002Fwww.yydevelopment.com\u002Fyydevelopment-wordpress-plugins\u002F\" rel=\"nofollow ugc\">free wordpress plugins\u003C\u002Fa> for your projects, your client’s projects or for anything else you need.\u003C\u002Fp>\n\u003Cp>If this plugin was helpful for you please share it online and if you get a chance to give it a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcomments-subscribe-checkbox\u002F#reviews\" rel=\"ugc\">positive review\u003C\u002Fa> we will appreciate that.\u003C\u002Fp>\n\u003Cp>If have any problems or questions regarding our comments subscribe checkbox plugin \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcomments-subscribe-checkbox\u002F\" rel=\"ugc\">submit a ticket\u003C\u002Fa> and we will be happy to help.\u003C\u002Fp>\n\u003Cp>By the way, we are based in Israel so we welcome you to visit our Hebrew site as well \u003Ca href=\"https:\u002F\u002Fwww.yydevelopment.co.il\u002F\" rel=\"nofollow ugc\">YYDevelopment Israel\u003C\u002Fa> if you are fellow Israeli.\u003C\u002Fp>\n\u003Ch4>Help support us with a coffee donation\u003C\u002Fh4>\n\u003Cp>Don’t you just hate it when you download a plugin and you find out that in order to use it you have to buy a pro version?\u003C\u002Fp>\n\u003Cp>Even bigger problem is when you use a plugin and then just out of the blue the developer decides to add a pro version and he either changes the way the plugin works or he converts some of the free functions to paid ones.\u003C\u002Fp>\n\u003Cp>We sure did hate that and a few years back we decided to start creating some of the plugins ourselves and we decided to share them all with the WordPress community \u003Cstrong>100% FREE\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Nowadays we have more than 15 plugins and you can download and use them all for free by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fyydevelopment\u002F\" rel=\"ugc\">Clicking Here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you liked this plugin and you want to help support our cause, \u003Ca href=\"https:\u002F\u002Fwww.yydevelopment.com\u002Fcoffee-break\u002F?plugin=comments-subscribe-checkbox\" rel=\"nofollow ugc\">buy us a coffee\u003C\u002Fa>. Studies show that coffee helps with creating WordPress plugins.\u003C\u002Fp>\n","This plugin will allow you to add subscribe notification checkbox to comments on your site.",100,4550,98,8,"2025-12-10T03:51:00.000Z","6.9.4","5.0","5.2.4",[20,21,22,23,24],"comments-checkbox","comments-subscribe","notification-subscription","subscribe-email","subscribe-to-comments","https:\u002F\u002Fwww.yydevelopment.com\u002Fyydevelopment-wordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomments-subscribe-checkbox.1.2.6.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":11,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},11,50700,67,88,"2026-04-04T06:00:57.800Z",[38,63],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":27,"last_vuln_date":62,"fetched_at":29},"subscribe-to-comments-reloaded","Subscribe To Comments Reloaded","240119","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Cp>Subscribe to Comments Reloaded is a robust plugin that enables commenters to sign up for e-mail notification of subsequent entries. The plugin includes a full-featured subscription manager that your commenters can use to unsubscribe to certain posts or suspend all notifications. It solves most of the issues that affect Mark Jaquith’s version, using the latest WordPress features and functionality. Plus, allows administrators to enable a double opt-in mechanism, requiring users to confirm their subscription clicking on a link they will receive via email or even One Click Unsubscribe.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 4.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 5.6 or higher\u003C\u002Fli>\n\u003Cli>MySQL 5.x or higher\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Main Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easily manage and search among your subscriptions\u003C\u002Fli>\n\u003Cli>Imports Mark Jaquith’s Subscribe To Comments (and its clones) data\u003C\u002Fli>\n\u003Cli>Messages are fully customizable, no poEdit required (and you can use HTML!) with a Rich Text Editor – WYSIWYG\u003C\u002Fli>\n\u003Cli>Disable subscriptions for specific posts\u003C\u002Fli>\n\u003Cli>One Click Unsubscribe\u003C\u002Fli>\n\u003Cli>Get and Download your System information for better support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Language Localization\u003C\u002Fh3>\n\u003Cp>If you would like to help out translating the plugin to your language you can do so through the \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsubscribe-to-comments-reloaded\u002F\" rel=\"nofollow ugc\">official WordPress plugin translation system\u003C\u002Fa>\u003C\u002Fp>\n","Subscribe to Comments Reloaded allows commenters to sign up for e-mail notifications of subsequent replies. Don't miss any comment.",10000,966338,90,169,"2024-01-19T20:16:00.000Z","6.4.8","4.0","5.6",[55,56,57,24,39],"comments","email","subscribe","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsubscribe-to-comments-reloaded.240119.zip",80,4,"2024-04-05 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":13,"num_ratings":73,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":58,"tags":77,"homepage":81,"download_link":82,"security_score":83,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"comment-notifier-no-spammers","Lightweight Subscribe To Comments","1.5.8","isabel104","https:\u002F\u002Fprofiles.wordpress.org\u002Fisabel104\u002F","\u003Cp>This simply adds a subscription checkbox to your WordPress comments form to let your visitors subscribe to comments. They will then be notified by email when others comment on the same post. Works automatically upon activation, no settings required.\u003C\u002Fp>\n\u003Cp>This plugin focuses on a lightweight footprint and fastest pagespeed. No scripts are added. It simply just works upon activation. All settings are optional.\u003C\u002Fp>\n\u003Ch4>Easily Switch From Other Comments Subscription Plugins\u003C\u002Fh4>\n\u003Cp>Your subscribers will be imported for an easy switch from the following listed plugins. This is done automatically upon activation. Your comment subscribers will be migrated from these plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>“Subscribe To Comments” plugin\u003C\u002Fli>\n\u003Cli>“Subscribe To Comments Reloaded” plugin\u003C\u002Fli>\n\u003Cli>“Comment Notifier” plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Optional Settings\u003C\u002Fstrong> include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can unsubscribe people, if you wish.\u003C\u002Fli>\n\u003Cli>You can customize the notification emails.\u003C\u002Fli>\n\u003Cli>Set a custom “Unsubscribe Page” URL or unsubscribe message.\u003C\u002Fli>\n\u003Cli>Send a “Thank You” message for first time commentators.\u003C\u002Fli>\n\u003Cli>Send a copy of EACH notification to emails of your choice.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Special Condition For “Comment Notifier” Plugin Users:\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>“Lightweight Subscribe to Comments” fixes a major problem with the “Comment Notifier” plugin:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In particular, “Lightweight Subscribe to Comments” fixes \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fremove-subscribed-emails-whose-comments-are-trashedmarked-as-spam\" rel=\"ugc\">this problem\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Lightweight Subscribe to Comments will not subscribe spammers while their comment is pending moderation. Only approved comments will be subscribed. Comments authors in moderation will only be subscribed if, and when, you approve their comment.\u003C\u002Fp>\n\u003Cp>The problem is that “Comment Notifier” plugin subscribes the email address as soon as the submitted comment goes into moderation. This means that spammers get added to the list of subscribers, immediately. Later, when you delete the spam comments, the spammer’s email remains in the list of subscribers.\u003C\u002Fp>\n\u003Cp>You could have hundreds, even thousands, of spammer email addresses in that list. Then, when you approve a legit comment, your server sends out emails to all of the post subscribers (including spammers), which can cause server overload, among other problems.\u003C\u002Fp>\n\u003Cp>This plugin fixes that by ignoring comments in moderation until they are approved by you. This means less load on your server.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Bonus Clean Up For “Comment Notifier” Plugin Users:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin removes spammers from your “Comment Notifier” list.\u003C\u002Fp>\n\u003Cp>Upon activation, this plugin will clean up your “comment_notifier” list (database table) by removing all spammer emails (emails of people that do NOT have an approved comment). (This only applies to you if you were using the “Comment Notifier” plugin.) It will also empty your Comments “Trash” and “Spam”. This clean up is only done once, upon plugin activation.\u003C\u002Fp>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cp>This plugin is translation-ready and includes a \u003Ccode>.pot\u003C\u002Fcode> file to make it easy to translate.\u003C\u002Fp>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fisabelcastillo.com\u002Ffree-plugins\u002Flightweight-subscribe-comments#jl-install\" rel=\"nofollow ugc\">Installation Guide\u003C\u002Fa>.\u003C\u002Fp>\n","Easiest and most lightweight plugin to let visitors subscribe to comments and get email notifications.",1000,17319,25,"2024-08-30T20:33:00.000Z","6.6.5","3.7",[78,55,79,80,24],"comment","follow-comments","notifications","https:\u002F\u002Fisabelcastillo.com\u002Ffree-plugins\u002Flightweight-subscribe-comments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomment-notifier-no-spammers.1.5.8.zip",92,{"attackSurface":85,"codeSignals":152,"taintFlows":242,"riskAssessment":293,"analyzedAt":303},{"hooks":86,"ajaxHandlers":139,"restRoutes":148,"shortcodes":149,"cronEvents":150,"entryPointCount":151,"unprotectedCount":27},[87,93,100,104,108,112,117,121,126,130,134],{"type":88,"name":89,"callback":90,"file":91,"line":92},"filter","comment_form_field_comment","adding_comments_subscribe_checkbox","front-end\\add-checkbox-to-comments.php",65,{"type":94,"name":95,"callback":96,"priority":97,"file":98,"line":99},"action","comment_post","yydev_comments_subscribe_show_message_function",10,"include\\insert-subscriber-to-db.php",72,{"type":94,"name":95,"callback":101,"priority":97,"file":102,"line":103},"yydev_comments_subscribe_checking_if_to_send_mail_on_new_comment","include\\send-mail-to-subscriber.php",149,{"type":94,"name":105,"callback":106,"priority":97,"file":102,"line":107},"wp_set_comment_status","yydev_comments_subscribe_check_for_new_comment_status",185,{"type":94,"name":109,"callback":110,"file":102,"line":111},"deleted_comment","yydev_comments_subscribe_checking_remove_comment_from_db",202,{"type":88,"name":113,"callback":114,"priority":97,"file":115,"line":116},"the_posts","filter_the_posts","include\\unsubscribe.php",155,{"type":88,"name":118,"callback":119,"file":115,"line":120},"template_include","load_regular_page_for_comments_subscribe",171,{"type":94,"name":122,"callback":123,"file":124,"line":125},"plugins_loaded","yydev_comments_subscribe_languages","index.php",21,{"type":94,"name":127,"callback":128,"file":124,"line":129},"admin_menu","wordpress_comments_subscribe_plugin_menu",71,{"type":88,"name":131,"callback":132,"priority":97,"file":124,"line":133},"plugin_action_links","yydev_comments_subscribe__add_settings_link",96,{"type":94,"name":135,"callback":136,"file":137,"line":138},"admin_notices","yydev_comments_subscribe_admin_notice","notices.php",274,[140,145],{"action":141,"nopriv":142,"callback":141,"hasNonce":143,"hasCapCheck":143,"file":137,"line":144},"yydev_comments_subscribe_stop_notice_forever",false,true,62,{"action":146,"nopriv":142,"callback":146,"hasNonce":143,"hasCapCheck":143,"file":137,"line":147},"yydev_comments_subscribe_stop_notice_for_now",84,[],[],[],2,{"dangerousFunctions":153,"sqlUsage":154,"outputEscaping":181,"fileOperations":27,"externalRequests":27,"nonceChecks":240,"capabilityChecks":151,"bundledLibraries":241},[],{"prepared":27,"raw":97,"locations":155},[156,160,164,166,168,171,173,175,177,179],{"file":157,"line":158,"context":159},"include\\install.php",9,"$wpdb->get_var() with variable interpolation",{"file":161,"line":162,"context":163},"include\\main-page.php",22,"$wpdb->query() with variable interpolation",{"file":161,"line":60,"context":165},"$wpdb->get_results() with variable interpolation",{"file":167,"line":162,"context":163},"include\\secondary-page.php",{"file":167,"line":169,"context":170},102,"$wpdb->get_row() with variable interpolation",{"file":102,"line":172,"context":165},20,{"file":102,"line":174,"context":170},132,{"file":102,"line":176,"context":170},172,{"file":115,"line":178,"context":170},40,{"file":115,"line":180,"context":165},76,{"escaped":35,"rawEcho":182,"locations":183},29,[184,188,190,192,194,196,198,200,201,203,204,206,208,210,212,214,216,218,220,222,223,225,227,229,231,233,235,236,238],{"file":185,"line":186,"context":187},"include\\functions.php",33,"raw output",{"file":185,"line":189,"context":187},34,{"file":185,"line":191,"context":187},50,{"file":185,"line":193,"context":187},59,{"file":161,"line":195,"context":187},101,{"file":161,"line":197,"context":187},103,{"file":161,"line":199,"context":187},104,{"file":161,"line":199,"context":187},{"file":161,"line":202,"context":187},105,{"file":161,"line":202,"context":187},{"file":161,"line":205,"context":187},107,{"file":161,"line":207,"context":187},119,{"file":161,"line":209,"context":187},121,{"file":161,"line":211,"context":187},124,{"file":161,"line":213,"context":187},125,{"file":167,"line":215,"context":187},112,{"file":167,"line":217,"context":187},117,{"file":167,"line":219,"context":187},122,{"file":167,"line":221,"context":187},127,{"file":167,"line":174,"context":187},{"file":167,"line":224,"context":187},137,{"file":167,"line":226,"context":187},142,{"file":167,"line":228,"context":187},147,{"file":167,"line":230,"context":187},152,{"file":167,"line":232,"context":187},157,{"file":167,"line":234,"context":187},163,{"file":137,"line":207,"context":187},{"file":137,"line":237,"context":187},136,{"file":137,"line":239,"context":187},154,3,[],[243,276],{"entryPoint":244,"graph":245,"unsanitizedCount":27,"severity":275},"\u003Csecondary-page> (include\\secondary-page.php:0)",{"nodes":246,"edges":271},[247,252,257,259,263,266],{"id":248,"type":249,"label":250,"file":167,"line":251},"n0","source","$_GET",17,{"id":253,"type":254,"label":255,"file":167,"line":162,"wp_function":256},"n1","sink","query() [SQLi]","query",{"id":258,"type":249,"label":250,"file":167,"line":251},"n2",{"id":260,"type":254,"label":261,"file":167,"line":169,"wp_function":262},"n3","get_row() [SQLi]","get_row",{"id":264,"type":249,"label":265,"file":167,"line":251},"n4","$_GET (x14)",{"id":267,"type":254,"label":268,"file":167,"line":269,"wp_function":270},"n5","echo() [XSS]",108,"echo",[272,273,274],{"from":248,"to":253,"sanitized":143},{"from":258,"to":260,"sanitized":143},{"from":264,"to":267,"sanitized":143},"low",{"entryPoint":277,"graph":278,"unsanitizedCount":151,"severity":292},"\u003Cmain-page> (include\\main-page.php:0)",{"nodes":279,"edges":288},[280,281,282,284,287],{"id":248,"type":249,"label":250,"file":161,"line":251},{"id":253,"type":254,"label":255,"file":161,"line":162,"wp_function":256},{"id":258,"type":249,"label":250,"file":161,"line":283},51,{"id":260,"type":285,"label":286,"file":161,"line":283},"transform","→ yydev_comments_subscribe_echo_message_if_exists()",{"id":264,"type":254,"label":268,"file":185,"line":191,"wp_function":270},[289,290,291],{"from":248,"to":253,"sanitized":142},{"from":258,"to":260,"sanitized":142},{"from":260,"to":264,"sanitized":142},"high",{"summary":294,"deductions":295},"The 'comments-subscribe-checkbox' plugin v1.2.6 exhibits a mixed security posture. On the positive side, it has a small attack surface with only two AJAX entry points, and importantly, both appear to have authorization checks. There are also a good number of nonce checks and capability checks present, indicating an awareness of security best practices.\n\nHowever, significant concerns arise from the static analysis. The most critical issue is that 100% of the SQL queries are not using prepared statements, which exposes the plugin to potential SQL injection vulnerabilities. Furthermore, the taint analysis reveals a flow with an unsanitized path and a high severity, strongly suggesting a path traversal or similar vulnerability that could allow unauthorized file access or modification. The 75% rate of proper output escaping, while not terrible, still leaves room for potential cross-site scripting (XSS) vulnerabilities.\n\nThe plugin's vulnerability history is currently clean, with no recorded CVEs. This is a positive indicator, but it does not negate the risks identified in the static and taint analyses. The absence of historical vulnerabilities could be due to luck or the plugin not being extensively targeted or audited. The overall conclusion is that while the plugin has a small attack surface and some good security implementations, the critical issues of raw SQL queries and the identified high-severity taint flow warrant immediate attention and mitigation.",[296,298,301],{"reason":297,"points":97},"100% of SQL queries not using prepared statements",{"reason":299,"points":300},"High severity taint flow with unsanitized path",12,{"reason":302,"points":61},"Output escaping is not 100% proper","2026-03-16T20:48:48.601Z",{"wat":305,"direct":316},{"assetPaths":306,"generatorPatterns":310,"scriptPaths":311,"versionParams":312},[307,308,309],"\u002Fwp-content\u002Fplugins\u002Fcomments-subscribe-checkbox\u002Finclude\u002Fscript.js","\u002Fwp-content\u002Fplugins\u002Fcomments-subscribe-checkbox\u002Finclude\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fcomments-subscribe-checkbox\u002Ffront-end\u002Fjs\u002Fcomments-subscribe-checkbox.js",[],[307,309],[313,314,315],"\u002Fwp-content\u002Fplugins\u002Fcomments-subscribe-checkbox\u002Finclude\u002Fstyle.css?ver=","\u002Fwp-content\u002Fplugins\u002Fcomments-subscribe-checkbox\u002Finclude\u002Fscript.js?ver=","\u002Fwp-content\u002Fplugins\u002Fcomments-subscribe-checkbox\u002Ffront-end\u002Fjs\u002Fcomments-subscribe-checkbox.js?ver=",{"cssClasses":317,"htmlComments":320,"htmlAttributes":323,"restEndpoints":327,"jsGlobals":328,"shortcodeOutput":330},[318,319],"comments-subscribe-checkbox-wrapper","comments-subscribe-checkbox-form",[321,322],"\u003C!-- Begin Comments Subscribe Checkbox -->","\u003C!-- End Comments Subscribe Checkbox -->",[324,325,326],"data-csc-nonce","data-csc-id","data-csc-email",[],[329],"comments_subscribe_checkbox_ajax_object",[]]