[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fSVXN5VAhzllDiRlOY2xiF_qmokQtHTDpqpqDEETb6VE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":21,"security_score":22,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":31,"analysis":32,"fingerprints":143},"contentking","ContentKing for Conductor","1.5.15","contentkingapp","https:\u002F\u002Fprofiles.wordpress.org\u002Fcontentkingapp\u002F","\u003Cp>Ensure customers find your most valuable digital content with 24\u002F7 website monitoring from ContentKing, \u003Cstrong>now part of the #1 enterprise organic marketing platform from Conductor\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Website changes happen, and they happen fast.\u003C\u002Fp>\n\u003Cp>That’s where \u003Cstrong>ContentKing for Conductor\u003C\u002Fstrong> comes in.\u003C\u002Fp>\n\u003Cp>As the only real-time SEO monitoring and auditing platform, ContentKing keeps track of everything happening on your site as it happens. If links suddenly break or pages become non-indexable or a page title changes — you’re covered.\u003C\u002Fp>\n\u003Cp>ContentKing continuously monitors your site, alerts you to on-page issues and changes in real time, and gives you the opportunity to fix on-page SEO problems before your rankings are impacted.\u003C\u002Fp>\n\u003Cp>No more waiting for a crawl. No more working with lagging data. And no more unnoticed issues.\u003C\u002Fp>\n\u003Cp>You’ll have eyes on your site 24\u002F7 and a user-friendly interface that gives you a complete overview of your SEO performance so that you can transform data into actionable insights. All in real time.\u003C\u002Fp>\n\u003Cp>See why brands like Netflix, H&M, Condé Nast and FedEx use ContentKing to win at SEO.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cp>Plugin requires PHP version >= 7.4.\u003C\u002Fp>\n","Real-time SEO Auditing & Monitoring Platform",200,7728,100,1,"2023-03-01T14:26:00.000Z","6.1.10","5.3","",[4,20],"seo-monitoring","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontentking.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":22,"avg_patch_time_days":28,"trust_score":29,"computed_at":30},30,84,"2026-04-04T08:42:06.445Z",[],{"attackSurface":33,"codeSignals":112,"taintFlows":134,"riskAssessment":135,"analyzedAt":142},{"hooks":34,"ajaxHandlers":101,"restRoutes":102,"shortcodes":110,"cronEvents":111,"entryPointCount":14,"unprotectedCount":14},[35,41,46,49,53,57,60,63,67,71,74,77,82,86,90,94,98],{"type":36,"name":37,"callback":38,"file":39,"line":40},"filter","https_local_ssl_verify","__return_false","wp-contentking.php",50,{"type":42,"name":43,"callback":44,"file":39,"line":45},"action","admin_menu","add_menu",58,{"type":42,"name":47,"callback":47,"file":39,"line":48},"admin_init",59,{"type":42,"name":50,"callback":51,"priority":13,"file":39,"line":52},"admin_bar_menu","notification_button",60,{"type":42,"name":54,"callback":55,"file":39,"line":56},"admin_enqueue_scripts","register_contentking_adminbar_styles",63,{"type":42,"name":58,"callback":55,"file":39,"line":59},"wp_enqueue_scripts",64,{"type":42,"name":54,"callback":61,"file":39,"line":62},"register_icon_styles",65,{"type":42,"name":64,"callback":65,"file":39,"line":66},"plugins_loaded","instantiate_async",68,{"type":42,"name":68,"callback":69,"file":39,"line":70},"wp_async_save_post","send_to_api",70,{"type":42,"name":72,"callback":69,"file":39,"line":73},"wp_async_contentking_updated_sitemap",72,{"type":42,"name":75,"callback":69,"file":39,"line":76},"wp_async_wp_trash_post",74,{"type":42,"name":78,"callback":79,"priority":80,"file":39,"line":81},"update_option_contentking_client_token","check_new_token",10,76,{"type":42,"name":83,"callback":84,"priority":80,"file":39,"line":85},"add_option_contentking_client_token","check_newly_added_token",77,{"type":42,"name":87,"callback":88,"file":39,"line":89},"rest_api_init","rest_admin_edit_url",80,{"type":42,"name":91,"callback":92,"file":39,"line":93},"template_redirect","get_post_id_from_url",82,{"type":42,"name":95,"callback":96,"priority":97,"file":39,"line":29},"upgrader_process_complete","after_upgrade_tasks",90,{"type":42,"name":47,"callback":99,"file":39,"line":100},"define_action_contentking_updated_sitemap",86,[],[103],{"namespace":104,"route":105,"methods":106,"callback":108,"permissionCallback":24,"file":39,"line":109},"contentking\u002Fv1","\u002Fadmin_url\u002F",[107],"POST","get_admin_url",341,[],[],{"dangerousFunctions":113,"sqlUsage":114,"outputEscaping":116,"fileOperations":23,"externalRequests":14,"nonceChecks":14,"capabilityChecks":132,"bundledLibraries":133},[],{"prepared":23,"raw":23,"locations":115},[],{"escaped":117,"rawEcho":118,"locations":119},5,6,[120,124,126,127,128,130],{"file":121,"line":122,"context":123},"screens\\settings.php",26,"raw output",{"file":121,"line":125,"context":123},49,{"file":121,"line":48,"context":123},{"file":121,"line":66,"context":123},{"file":39,"line":129,"context":123},324,{"file":39,"line":131,"context":123},326,3,[],[],{"summary":136,"deductions":137},"The ContentKing plugin v1.5.15 exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, using prepared statements for all SQL queries, and not performing file operations. The absence of known vulnerabilities and its last vulnerability being unrecorded further suggest a generally well-maintained codebase. However, there are significant concerns regarding its attack surface and output sanitization. A single unprotected REST API route presents a direct entry point for potential exploitation, especially if it handles user-supplied data. The relatively low percentage of properly escaped output is also a concern, as it could lead to cross-site scripting (XSS) vulnerabilities if user input is reflected without adequate sanitization. While taint analysis did not reveal any issues, this is based on a limited scope of analysis (0 flows analyzed), and the unprotected REST API route warrants careful scrutiny for potential data handling weaknesses.",[138,140],{"reason":139,"points":80},"Unprotected REST API route",{"reason":141,"points":118},"Low percentage of properly escaped output","2026-03-16T20:27:02.022Z",{"wat":144,"direct":155},{"assetPaths":145,"generatorPatterns":148,"scriptPaths":149,"versionParams":151},[146,147],"\u002Fwp-content\u002Fplugins\u002Fcontentking\u002Fcss\u002Fcontentking-admin-bar.css","\u002Fwp-content\u002Fplugins\u002Fcontentking\u002Fcss\u002Fcontentking-icon.css",[],[150],"\u002Fwp-content\u002Fplugins\u002Fcontentking\u002Fjs\u002Fcontentking-admin-bar.js",[152,153,154],"contentking\u002Fcss\u002Fcontentking-admin-bar.css?ver=","contentking\u002Fcss\u002Fcontentking-icon.css?ver=","contentking\u002Fjs\u002Fcontentking-admin-bar.js?ver=",{"cssClasses":156,"htmlComments":158,"htmlAttributes":159,"restEndpoints":161,"jsGlobals":163,"shortcodeOutput":165},[157],"ck-admin-bar",[],[160],"data-contentking-admin-bar",[162],"\u002Fwp-json\u002Fcontentking\u002Fv1\u002Fadmin_edit_url",[164],"ContentKingAdminBar",[]]