[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQB19Nd5uQtGTx4Gbolwkkh24yXclakDkbyNa9sjHP0Q":3,"$f88hFa8IhO3HUEdhuZEXiHwLlHbP9uGdZtw3YoQKXYiE":228,"$fZnkqItFmxcllsB3H9-CeN4MSNv69Nnl7wKxN1Tvvjas":233},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":36,"analysis":138,"fingerprints":203},"crossposterous","Crossposterous","1.2.1","Randy Hunt","https:\u002F\u002Fprofiles.wordpress.org\u002Fbbqiguana\u002F","\u003Cp>Crossposterous will cross-post your WordPress blog post to your Posterous site. You can choose whether to post a teaser with a link back your WordPress blog post or cross-post the full content.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Enter your Posterous email and password (used to log into http:\u002F\u002Fposterous.com)\u003C\u002Fli>\n\u003Cli>Select the site from the drop-down\u003C\u002Fli>\n\u003Cli>Chose “Link back to post” or “Post full content”\u003C\u002Fli>\n\u003C\u002Fol>\n","WordPress to Posterous cross-posting plugin.",10,3017,0,"2010-11-09T23:11:00.000Z","3.0.5","2.7","",[19,20,21],"crosspost","posterous","posts","http:\u002F\u002Fwww.bbqiguana.com\u002Fwordpress-plugins\u002Fcrossposterous\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrossposterous.1.2.1.zip",85,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":24,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"bbqiguana",4,40,30,84,"2026-05-20T09:53:37.367Z",[37,61,79,96,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":57,"download_link":58,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":60},"journalpress","JournalPress","1.2","Alis","https:\u002F\u002Fprofiles.wordpress.org\u002Falisdee\u002F","\u003Cp>\u003Cstrong>JournalPress\u003C\u002Fstrong> is a WordPress plugin that enabled cross-posting to sites running LiveJournal Server, which in 2024 is basically \u003Ca href=\"https:\u002F\u002Fwww.dreamwidth.org\u002F\" rel=\"nofollow ugc\">Dreamwidth\u003C\u002Fa> (and, ironically, not LiveJournal itself). It is based on the LJXP plugin, however it has a raft of new features including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>support for multiple different mirror journals\u003C\u002Fli>\n\u003Cli>support for scheduled posts\u003C\u002Fli>\n\u003Cli>support for posts created from interfaces (i.e. XML-RPC, Atom)\u003C\u002Fli>\n\u003Cli>mood, music and location support\u003C\u002Fli>\n\u003Cli>per-post-per-journal userpic selection.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.2\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Minor bugfixes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.1\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Updated instructions for using API keys.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Significant code rewrite, so make sure to check your \u003Cstrong>settings\u003C\u002Fstrong> and \u003Cstrong>journals\u003C\u002Fstrong> as some config items may not have migrated exactly as expected!\u003C\u002Fli>\n\u003Cli>Support for LJ-style cut plugins on the WordPress end removed. WordPress-native \u003Ccode>\u003C!--more-->\u003C\u002Fcode> still supported.\u003C\u002Fli>\n\u003Cli>Support for customer user groups for posting locking removed, since the plugin it relied on is super broken.\u003C\u002Fli>\n\u003Cli>Bulk crossposting options removed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>JournalPress\u003C\u002Fstrong> is based off the original \u003Ca href=\"http:\u002F\u002Febroder.net\u002Flivejournal-crossposter\u002F\" rel=\"nofollow ugc\">LJXP\u003C\u002Fa> client by Evan Broder, with the \u003Ca href=\"http:\u002F\u002Fwww.alltrees.org\u002FWordpress\u002F#LCP\" rel=\"nofollow ugc\">LJ Crossposter Plus\u003C\u002Fa> modifications made by Ravenwood and Irwin. No disrespect is intended towards any of these authors; without their great work, this plugin wouldn’t have been possible (or at least would’ve taken a hell of a lot longer to write).\u003C\u002Fp>\n\u003Cp>Big shout-out to everyone who’s kept using this terrible old code all this time. You guys rock!\u003C\u002Fp>\n","A cross-poster supporting Dreamwidth and similar (i.e., LiveJournal-based) sites.",100,11439,74,3,"2024-06-28T02:09:00.000Z","6.5.8","4.9.1",[53,54,55,56,21],"community","crossposting","dreamwidth","post","https:\u002F\u002Fgithub.com\u002Falisinfinite\u002Fjournalpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjournalpress.1.2.zip",92,"2026-04-16T10:56:18.058Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":45,"num_ratings":48,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":77,"download_link":78,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":60},"wpartisan-multisite-crossposter","WPArtisan Multisite Crossposter","0.1.0","OzTheGreat","https:\u002F\u002Fprofiles.wordpress.org\u002Fozthegreat\u002F","\u003Cp>In a multisite environment, enables syncing or crossposting of posts, pages, or custom post types from any blog to any other blogs.\u003Cbr \u002F>\nThe crossposted articles have exactly the same properties as the original except for the permalink\u003Cbr \u002F>\nwhich links back to the original.\u003C\u002Fp>\n\u003Cp>The initial idea and some of the functionality is heavily borrowed from\u003Cbr \u002F>\nCode For The People’s Aggregator plugin https:\u002F\u002Fgithub.com\u002Fcftp\u002Faggregator\u002F. Unfortunately, that hasn’t been updated\u003Cbr \u002F>\nin years, it’s vastly too complicated, the admin side of things is very clunky and it’s a bit slow. This plugin uses\u003Cbr \u002F>\nsome of its methods as a base but has a much more streamlined admin process. We have maintained the same post meta\u003Cbr \u002F>\nfield names so this plugin should be 100% backwards compatible.\u003C\u002Fp>\n","Sync or crosspost posts, pages or custom post types between blogs or sites in a WordPress Multisite environment",20,3469,"2017-11-07T14:35:00.000Z","4.8.28","4.4",[54,75,21,76],"multisite","wpmu","https:\u002F\u002Fwpartisan.me\u002Fplugins\u002Fwpa-multisite-crossposter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpartisan-multisite-crossposter.0.1.1.zip",{"slug":80,"name":81,"version":40,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":11,"downloaded":86,"rating":13,"num_ratings":13,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":17,"tags":90,"homepage":94,"download_link":95,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"crossposting-in-safe-way","LJ-XP-SW","GrayHunter","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrayhunter\u002F","\u003Cp>LJ-XP-SW is a WordPress 2.5+ plugin, that has the ability to crosspost a blog text to your LiveJournal (or LiveJournal-based clone) account. It can crosspost to communities, and even has a customizeable header and footer, and allows you to direct would-be LJ comments to your WP blog instead!\u003C\u002Fp>\n\u003Cp>But the main feature is that the plugin does not crosspost the exact text of your article. There is a special field where you can write your Alternate Annonce. So, this plugin helps your blog avoid fines for plagiarism. This is the realy Safe Way LiveJournal Crossposter.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The plugin does not crosspost the exact text of your article.\u003C\u002Fli>\n\u003Cli>There is a special field where you can write your Alternate Annonce. So, this plugin helps your blog avoid fines for plagiarism. This is the realy Safe Way LiveJournal Crossposter.\u003C\u002Fli>\n\u003C\u002Ful>\n","LJ-XP-SW a plugin, that has the ability to crosspost a blog text to your LiveJournal (or LiveJournal-based clone) account in safe way.",3177,"2010-03-18T22:16:00.000Z","2.9.2","2.5.0",[91,19,92,93,21],"comments","crossposter","livejournal","http:\u002F\u002Foziblog.ru\u002Flj-xp-sw\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrossposting-in-safe-way.1.2.zip",{"slug":97,"name":98,"version":40,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":11,"downloaded":103,"rating":13,"num_ratings":13,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":17,"tags":107,"homepage":112,"download_link":113,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":60},"sk-latest-posts-widget","Sk Latest Post Widget","skipstorm","https:\u002F\u002Fprofiles.wordpress.org\u002Fskipstorm\u002F","\u003Cp>This plugins adds a widget with the latest posts from your phpbb3 forum.\u003Cbr \u002F>\nTo make it work you have to add a file on your forum directory wich is easily configurable to fetch the posts from a specific category or the whole forum.\u003Cbr \u002F>\nThis plugins supports multiple istances so you can display topics from different forums or categories in multiple widgets.\u003C\u002Fp>\n","This plugins adds a widget with the latest posts from your forum.",2343,"2009-12-05T18:27:00.000Z","2.8.4","2.8",[19,108,109,110,111],"forum","latest-posts","phpbb","phpbb3","http:\u002F\u002Fforum.me2web.net\u002Fviewtopic.php?f=112&t=173","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsk-latest-posts-widget.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":124,"num_ratings":125,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":17,"tags":129,"homepage":134,"download_link":135,"security_score":136,"vuln_count":48,"unpatched_count":13,"last_vuln_date":137,"fetched_at":60},"duplicate-page","Duplicate Page","4.5.7","mndpsingh287","https:\u002F\u002Fprofiles.wordpress.org\u002Fmndpsingh287\u002F","\u003Cp>Duplicate Posts, Pages and Custom Posts easily using single click. You can duplicate your pages, posts and custom post by just one click and it will save as your selected options (draft, private, public, pending).\u003C\u002Fp>\n\u003Ch4>Key Features in Duplicate Page Pro Editions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>User Roles:\u003C\u002Fstrong> Allow User Roles To access Duplicate Page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post Types:\u003C\u002Fstrong> Filter to show Duplicate Page link in post types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Clone Link Location:\u003C\u002Fstrong> Option where to show clone link.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Status:\u003C\u002Fstrong> Option to select Duplicate Posts Status.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Redirection:\u003C\u002Fstrong> Option to Redirect after click on clone link..\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Clone Link Title:\u003C\u002Fstrong> Option to change Duplicate Post Link Title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post Prefix:\u003C\u002Fstrong> Option to add Post Prefix.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post Suffix:\u003C\u002Fstrong> Option to add Post Suffix.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Editor\u003C\u002Fstrong>: And Many More Filters and Features.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fduplicatepro.com\u002Fpro\u002F?utm_source=Wordpress.org&utm_medium=Website&utm_campaign=Duplicate%20Page%20Pro\" rel=\"nofollow ugc\">Buy Pro Version\u003C\u002Fa>\u003C\u002Fstrong> with various features & support.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fduplicatepro.com\u002Fcontact\u002F?utm_source=Wordpress.org&utm_medium=Website&utm_campaign=Duplicate%20Page%20Pro\" rel=\"nofollow ugc\">Contact us\u003C\u002Fa>\u003C\u002Fstrong> for Support Only Pro Version Users.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fduplicatepro.com\u002Fpro\u002F?utm_source=Wordpress.org&utm_medium=Website&utm_campaign=Duplicate%20Page%20Pro\" rel=\"nofollow ugc\">Upgrade to Pro Version\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FFj8BHxvebXs?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>How to use\u003C\u002Fh3>\n\u003Col>\n\u003Cli>First Activate Plugin.\u003C\u002Fli>\n\u003Cli>Go Select to Duplicate Page settings Menu from Settings Tab and savings settings. \u003C\u002Fli>\n\u003Cli>Then Create New Post\u002FPage or Use old.\u003C\u002Fli>\n\u003Cli>After click on duplicate this link, then duplicate post\u002F page will be created and saved as draft,publish,pending,private depending upon settings.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Minimum requirements for Duplicate Page\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 3.3+\u003C\u002Fli>\n\u003Cli>PHP 5.x\u003C\u002Fli>\n\u003Cli>MySQL 5.x\u003C\u002Fli>\n\u003C\u002Ful>\n","Duplicate Posts, Pages and Custom Posts easily using single click",3000000,37401635,96,449,"2026-03-19T10:33:00.000Z","6.9.4","3.4",[130,115,131,132,133],"duplicate-custom-posts","duplicate-post","page-duplicate","post-duplicate","https:\u002F\u002Fduplicatepro.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fduplicate-page.zip",98,"2021-08-28 00:00:00",{"attackSurface":139,"codeSignals":173,"taintFlows":190,"riskAssessment":191,"analyzedAt":202},{"hooks":140,"ajaxHandlers":169,"restRoutes":170,"shortcodes":171,"cronEvents":172,"entryPointCount":13,"unprotectedCount":13},[141,147,151,156,160,163,166],{"type":142,"name":143,"callback":144,"file":145,"line":146},"action","admin_menu","crossposterous_admin_menu","crossposterous.php",44,{"type":142,"name":148,"callback":149,"file":145,"line":150},"admin_init","crossposterous_init",45,{"type":152,"name":153,"callback":154,"priority":11,"file":145,"line":155},"filter","plugin_row_meta","posterizePluginLinks",46,{"type":142,"name":157,"callback":158,"file":145,"line":159},"new_to_publish","send_to_posterous",232,{"type":142,"name":161,"callback":158,"file":145,"line":162},"draft_to_publish",233,{"type":142,"name":164,"callback":158,"file":145,"line":165},"future_to_publish",234,{"type":142,"name":167,"callback":158,"file":145,"line":168},"pending_to_publish",235,[],[],[],[],{"dangerousFunctions":174,"sqlUsage":175,"outputEscaping":177,"fileOperations":13,"externalRequests":188,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":189},[],{"prepared":13,"raw":13,"locations":176},[],{"escaped":13,"rawEcho":31,"locations":178},[179,182,184,186],{"file":145,"line":180,"context":181},75,"raw output",{"file":145,"line":183,"context":181},80,{"file":145,"line":185,"context":181},123,{"file":145,"line":187,"context":181},141,1,[],[],{"summary":192,"deductions":193},"The plugin \"crossposterous\" v1.2.1 exhibits a seemingly strong security posture based on the static analysis, with no identified attack surface points like AJAX handlers, REST API routes, shortcodes, or cron events that are exposed without authentication or permission checks.  The code also demonstrates good practices regarding SQL queries, using prepared statements exclusively, and no known vulnerabilities (CVEs) are recorded. This suggests a plugin that has been developed with security in mind and has a clean history.\n\nHowever, the static analysis reveals significant concerns regarding output escaping. With 4 total outputs and 0% properly escaped, this represents a critical weakness. Any data displayed by the plugin that originates from user input or external sources could be vulnerable to Cross-Site Scripting (XSS) attacks, allowing attackers to inject malicious scripts into the user's browser.  While the plugin doesn't appear to use dangerous functions, execute file operations, or make external HTTP requests in a way that seems immediately exploitable, the complete lack of output escaping is a substantial security risk. The absence of nonce checks and capability checks on potential (though currently unlisted) entry points further contributes to a potential for privilege escalation or unauthorized actions if any such points were to be discovered or added in future versions.\n\nIn conclusion, while \"crossposterous\" v1.2.1 shines in its lack of known vulnerabilities and its use of prepared statements, the critical deficiency in output escaping presents a substantial risk. The plugin's attack surface appears minimal in its current state, but the unescaped output is a glaring security flaw that needs immediate attention. The clean vulnerability history is positive, but it does not mitigate the present risks identified through static analysis.",[194,197,200],{"reason":195,"points":196},"Unescaped output detected",8,{"reason":198,"points":199},"No nonce checks identified",5,{"reason":201,"points":199},"No capability checks identified","2026-03-17T01:20:27.031Z",{"wat":204,"direct":209},{"assetPaths":205,"generatorPatterns":206,"scriptPaths":207,"versionParams":208},[],[],[],[],{"cssClasses":210,"htmlComments":214,"htmlAttributes":215,"restEndpoints":223,"jsGlobals":226,"shortcodeOutput":227},[211,212,213],"wrap","icon32","button-primary",[],[216,217,218,219,220,221,222],"id=\"posterous_email\"","name=\"crossposterous[posterous_email]\"","id=\"posterous_password\"","name=\"crossposterous[posterous_password]\"","id=\"posterous_site\"","name=\"crossposterous[siteid]\"","name=\"crossposterous[posttype]\"",[224,225],"http:\u002F\u002Fposterous.com\u002Fapi\u002Fgetsites","http:\u002F\u002Fposterous.com\u002Fapi\u002Fnewpost",[],[],{"error":229,"url":230,"statusCode":231,"statusMessage":232,"message":232},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcrossposterous\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":31,"versions":234},[235,241,247,254],{"version":6,"download_url":23,"svn_tag_url":236,"released_at":25,"has_diff":237,"diff_files_changed":238,"diff_lines":25,"trac_diff_url":239,"vulnerabilities":240,"is_current":229},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcrossposterous\u002Ftags\u002F1.2.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcrossposterous%2Ftags%2F1.2&new_path=%2Fcrossposterous%2Ftags%2F1.2.1",[],{"version":40,"download_url":242,"svn_tag_url":243,"released_at":25,"has_diff":237,"diff_files_changed":244,"diff_lines":25,"trac_diff_url":245,"vulnerabilities":246,"is_current":237},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrossposterous.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcrossposterous\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcrossposterous%2Ftags%2F1.1&new_path=%2Fcrossposterous%2Ftags%2F1.2",[],{"version":248,"download_url":249,"svn_tag_url":250,"released_at":25,"has_diff":237,"diff_files_changed":251,"diff_lines":25,"trac_diff_url":252,"vulnerabilities":253,"is_current":237},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrossposterous.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcrossposterous\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcrossposterous%2Ftags%2F1.0&new_path=%2Fcrossposterous%2Ftags%2F1.1",[],{"version":255,"download_url":256,"svn_tag_url":257,"released_at":25,"has_diff":237,"diff_files_changed":258,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":259,"is_current":237},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrossposterous.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcrossposterous\u002Ftags\u002F1.0\u002F",[],[]]