[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fL4S1OejJec4XMCTnGdNlRt0xAULRXjE-IANr8Wfn55Y":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":133,"fingerprints":243},"custom-categories-rss","Custom Categories RSS","0.1","JohnnyPea","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnnypea\u002F","\u003Cp>Really simple plugin allowing visitors to grab RSS only from specific categories.\u003C\u002Fp>\n\u003Cp>I am open to suggestions to improve the plugin !\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note that you must enable permalinks to use this plugin !\u003C\u002Fstrong>\u003C\u002Fp>\n","Grab RSS only from specific categories.",10,2754,0,"2010-08-20T21:03:00.000Z","2.9.2","2.8","",[19,20,21,22],"categories","custom-feed","feed","rss","http:\u002F\u002Fwww.techforum.sk\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-categories-rss.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":25,"computed_at":35},"johnnypea",8,140,87,30,"2026-04-04T08:00:51.493Z",[37,57,81,100,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":17,"download_link":54,"security_score":25,"vuln_count":55,"unpatched_count":13,"last_vuln_date":56,"fetched_at":27},"custom-simple-rss","Custom Simple Rss","2.1.3","danikoo","https:\u002F\u002Fprofiles.wordpress.org\u002Fdanikoo\u002F","\u003Cp>\u003Cstrong>NEW:\u003C\u002Fstrong>\u003Cbr \u002F>\n1. added – option to choose \u003Cstrong>multiple post types\u003C\u002Fstrong>, example: ?call_custom_simple_rss=1&csrp_post_type=page,post\u003Cbr \u002F>\n2. added – option to choose \u003Cstrong>multiple post status\u003C\u002Fstrong>, example: ?call_custom_simple_rss=1&csrp_post_status=publish,draft\u003Cbr \u002F>\n3. added – better documentation (tutorial).\u003C\u002Fp>\n\u003Cp>A plugin to create a your own Custom Simple RSS Feed\u003Cbr \u002F>\naccording to parameters you choose!\u003C\u002Fp>\n\u003Cp>*** the best solution for using MailChimp RSS campaigns  ***\u003C\u002Fp>\n\u003Cp>\u003Cstrong>in simple words:\u003C\u002Fstrong>\u003Cbr \u002F>\nEver wanted an rss feed for just a specific Author and specific Category?\u003C\u002Fp>\n\u003Cp>Or Even an rss feed for a specific Custom Field ???\u003C\u002Fp>\n\u003Cp>Well… now you got it !\u003C\u002Fp>\n\u003Cp>The plugin does not alter your default wordpress feeds – it enables you to display feeds \u003Cstrong>on the fly\u003C\u002Fstrong> via specific url with pre defined url query parameters.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>for example:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>display only 5 items from specific category order by name descending:\u003C\u002Fp>\n\u003Cp>www.yordomain.com\u002F?call_custom_simple_rss=1&csrp_posts_per_page=5\u003Cbr \u002F>\n&csrp_orderby=name&csrp_order=DESC&csrp_cat=4\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Filter items by:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>category id\u003C\u002Fli>\n\u003Cli>post type\u003C\u002Fli>\n\u003Cli>post status\u003C\u002Fli>\n\u003Cli>tag\u003C\u002Fli>\n\u003Cli>range of dates\u003C\u002Fli>\n\u003Cli>and even meta keys and values!\u003C\u002Fli>\n\u003Cli>NEW! filter by custom taxonomy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Order by:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>name\u003C\u002Fli>\n\u003Cli>date\u003C\u002Fli>\n\u003Cli>author\u003C\u002Fli>\n\u003Cli>ID\u003C\u002Fli>\n\u003Cli>etc\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>More Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>number of items to return\u003C\u002Fli>\n\u003Cli>pagination \u003C\u002Fli>\n\u003Cli>show post thumbnail or not?\u003C\u002Fli>\n\u003Cli>set post thumbnails size to display?\u003C\u002Fli>\n\u003Cli>show post custom fields (espically usefull if your using your rss as an affliate feed)\u003C\u002Fli>\n\u003Cli>filter by date published or modified\u003C\u002Fli>\n\u003C\u002Ful>\n","A plugin to create your own Custom Simple RSS Feed according to parameters you choose",2000,44971,98,14,"2021-04-05T18:42:00.000Z","5.7.15","4.0.1",[20,53,21,22],"custom-rss","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-simple-rss.2.1.3.zip",1,"2019-07-27 00:00:00",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":45,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":78,"vuln_count":79,"unpatched_count":13,"last_vuln_date":80,"fetched_at":27},"rss-feed-widget","RSS Feed Widget","3.0.3","Fahad Mahmood","https:\u002F\u002Fprofiles.wordpress.org\u002Ffahadmahmood\u002F","\u003Cul>\n\u003Cli>\n\u003Cp>Author: \u003Ca href=\"https:\u002F\u002Fwww.androidbubbles.com\u002Fcontact\" rel=\"nofollow ugc\">Fahad Mahmood\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Project URI: \u003Ca href=\"http:\u002F\u002Fandroidbubble.com\u002Fblog\u002Fwordpress\u002Fwidgets\u002Frss-feed-widget\" rel=\"nofollow ugc\">http:\u002F\u002Fandroidbubble.com\u002Fblog\u002Fwordpress\u002Fwidgets\u002Frss-feed-widget\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>License: GPL 3. See License below for copyright jots and tittles.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>RSS Feed Widget is a free WordPress plugin for rss feeds display. It is simple to use as after installation you see a menu item under settings. Easily to get started with this plugin, select image size for your feed and save changes. For more customization, you can install Chameleon and choose desired style. This plugin also provides to filter or mute words\u002Ftext\u002Fsentences etc. To filter any word\u002Ftext\u002Fsentence open filter tab and enter word\u002Ftext\u002Fsentence as one per line.\u003Cbr \u002F>\nYou can also choose various image sizes for your feed like thumbnail, medium, large or post thumbnail etc. It also provides the facility of creating shortcode based pages. The shortcode tab describes that how can you create shotcode based pages. The most important and special feature is Advanced Settings. Advanced settings tab allows you to reach custom tag in strange XML based feeds for images.\u003C\u002Fp>\n\u003Cp>Important!\u003Cbr \u002F>\nVisit my blog and suggest good features which you wana see in this plugin.\u003C\u002Fp>\n\u003Ch4>Tags\u003C\u002Fh4>\n\u003Cp>feed, facebook, youtube, shortcodes, slider, image, widget, page, techcrucnch, news, updates, aggragator, slideshow, feedly\u003C\u002Fp>\n\u003Cp>How to use shortcodes for content pages?\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FQCLNXfPOsQo?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This WordPress Plugin is free software: you can redistribute it and\u002For modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 2 of the License, or any later version. This free software is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this software. If not, see http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html.\u003C\u002Fp>\n","RSS Feed Widget with customizable slider. Feed title, description, image, censorship and a few other features which you can use.",239625,78,26,"2025-12-19T09:06:00.000Z","6.9.4","3.0","7.0",[73,20,74,22,75],"chameleon","feed-widget","social-feed","http:\u002F\u002Fandroidbubble.com\u002Fblog\u002Fwordpress\u002Fwidgets\u002Frss-feed-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frss-feed-widget.3.0.3.zip",95,6,"2026-01-07 00:00:00",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":70,"requires_php":17,"tags":95,"homepage":98,"download_link":99,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"advanced-category-excluder","Advanced Category Excluder","1.4.5","DjZoNe","https:\u002F\u002Fprofiles.wordpress.org\u002Fdjzone\u002F","\u003Cp>This plugin was born because there was a no other real alternative to enable \u003Cstrong>content sparationd and some CMS like functionalities\u003C\u002Fstrong> in WordPress.\u003Cbr \u002F>\nThe main goal was, to enhance WordPress’s functionalities, to hide some unwanted categories, from defined parts of the blog.\u003C\u002Fp>\n\u003Cp>Today, \u003Cstrong>ACE\u003C\u002Fstrong> can override your search results, your RSS feed listing, your category listing, your recent post, and recent post widgets and also your entry page, or even hide whole categories of posts from web crawlers if you want to.\u003Cbr \u002F>\nThis is great, for \u003Cstrong>SEO\u003C\u002Fstrong> reasons, for content separation, for grouping information, and handle them as real sub pages.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-category-excluder.1.4.5.zip\" rel=\"nofollow ugc\">Download now!\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Face.dev.rain.hu\u002F\" rel=\"nofollow ugc\">Support\u003C\u002Fa> |\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Face.dev.rain.hu\u002Ffaq\u002F\" rel=\"nofollow ugc\">FAQ\u003C\u002Fa> |\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fdjz.hu\" rel=\"nofollow ugc\">DjZoNe\u003C\u002Fa> |\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=paypal@djz.hu&item_name=Advanced%20Category%20Excluder%20for%20Wordpress\" rel=\"nofollow ugc\">Donate\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Some functions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Integration with \u003Cstrong>Google (XML) Sitmap Generator\u003C\u002Fstrong> plugin    \u003C\u002Fli>\n\u003Cli>Effective category management\u003C\u002Fli>\n\u003Cli>Effective content separation  \u003C\u002Fli>\n\u003Cli>Enables \u003Cstrong>CMS-like\u003C\u002Fstrong> functionality\u003C\u002Fli>\n\u003Cli>\u003Cstrong>RSS feed\u003C\u002Fstrong> manipulation\u003C\u002Fli>\n\u003Cli>Search result manipulation \u003C\u002Fli>\n\u003Cli>Category list manipulation\u003C\u002Fli>\n\u003Cli>Support for \u003Cstrong>Event Calendar\u003C\u002Fstrong> \u003C\u002Fli>\n\u003Cli>Handles multiple link categories\u003C\u002Fli>\n\u003Cli>\u003Cstrong>noindex, nofollow\u003C\u002Fstrong> web crawler options for robots – \u003Cstrong>great for SEO\u003C\u002Fstrong> \u003C\u002Fli>\n\u003Cli>Own \u003Cstrong>Recent Comments, Recent Posts and Categories widgets\u003C\u002Fstrong> have been added \u003C\u002Fli>\n\u003Cli>Backward SQL compatibility with \u003Cstrong>MySQL 4.0\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Nice control panel, called \u003Cstrong>ACE Dashboard\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Localization added (swedish, french and hungarian translation included)\u003C\u002Fli>\n\u003Cli>Bundeled POT file for translators\u003C\u002Fli>\n\u003Cli>WordPress 2.7 UI\u003C\u002Fli>\n\u003C\u002Ful>\n","The No.1 content separator, content manager, content excluder, sidebar widget manager plugin to enable CMS like functionality.",700,301795,66,16,"2013-09-18T22:46:00.000Z","3.6.1",[19,21,96,22,97],"post","search","http:\u002F\u002Face.dev.rain.hu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-category-excluder.1.4.5.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":17,"tested_up_to":112,"requires_at_least":70,"requires_php":17,"tags":113,"homepage":115,"download_link":116,"security_score":110,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":117},"skip-rss","Skip RSS","0.6","parasmani","https:\u002F\u002Fprofiles.wordpress.org\u002Fparasmani\u002F","\u003Cp>This plugin makes it possible to skip post from appearing in rss feed.\u003C\u002Fp>\n","Skip post from appearing in RSS feed.",40,2123,100,2,"3.2.1",[20,22,114,101],"skip-feed","http:\u002F\u002Fwww.blogdemy.com\u002Fskip-rss-feed-disable-rss-feed-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fskip-rss.zip","2026-03-15T10:48:56.248Z",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":11,"downloaded":109,"rating":13,"num_ratings":13,"last_updated":126,"tested_up_to":16,"requires_at_least":127,"requires_php":17,"tags":128,"homepage":131,"download_link":132,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"bibs-random-content","Bibs Random Content","1.0","Karl-Heinz Klug","https:\u002F\u002Fprofiles.wordpress.org\u002Fkarl-heinz-klug\u002F","\u003Cp>Takes a random quote, picture or adcode from a text file and displays it anywhere in a WordPress Blog Template. To display the content, use \u003C?php randomcontent();> anywhere in the template.\u003C\u002Fp>\n\u003Cp>The data is stored in the file random.dat one line per content block (see sample). You can use text, html, adsense code, whatverver you want. Chmod the random.dat file to 777.\u003C\u002Fp>\n","Takes a random quote, picture or adcode from a text file and displays it anywhere in a WordPress Template","2009-05-01T15:26:00.000Z","2.2",[19,129,130,22],"category","feeds","http:\u002F\u002Fwww.wp-plugin-archive.de\u002Funsere-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbibs-random-content.1.0.zip",{"attackSurface":134,"codeSignals":154,"taintFlows":202,"riskAssessment":230,"analyzedAt":242},{"hooks":135,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":153,"entryPointCount":55,"unprotectedCount":13},[136,142],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","init","cc_rss_add_feed","custom-categories-rss.php",137,{"type":137,"name":143,"callback":144,"file":140,"line":145},"widgets_init","cc_rss_load_widget",189,[],[],[149],{"tag":150,"callback":151,"file":140,"line":152},"ccrss","cc_rss_front_form_func",306,[],{"dangerousFunctions":155,"sqlUsage":156,"outputEscaping":158,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":201},[],{"prepared":13,"raw":13,"locations":157},[],{"escaped":13,"rawEcho":159,"locations":160},22,[161,164,166,168,170,171,173,175,177,179,181,183,185,187,189,191,193,194,195,197,199,200],{"file":140,"line":162,"context":163},62,"raw output",{"file":140,"line":165,"context":163},75,{"file":140,"line":167,"context":163},82,{"file":140,"line":169,"context":163},93,{"file":140,"line":78,"context":163},{"file":140,"line":172,"context":163},96,{"file":140,"line":174,"context":163},97,{"file":140,"line":176,"context":163},105,{"file":140,"line":178,"context":163},120,{"file":140,"line":180,"context":163},121,{"file":140,"line":182,"context":163},166,{"file":140,"line":184,"context":163},235,{"file":140,"line":186,"context":163},239,{"file":140,"line":188,"context":163},245,{"file":140,"line":190,"context":163},274,{"file":140,"line":192,"context":163},275,{"file":140,"line":192,"context":163},{"file":140,"line":192,"context":163},{"file":140,"line":196,"context":163},280,{"file":140,"line":198,"context":163},281,{"file":140,"line":198,"context":163},{"file":140,"line":198,"context":163},[],[203,221],{"entryPoint":204,"graph":205,"unsanitizedCount":55,"severity":220},"cc_rss_create_feed (custom-categories-rss.php:41)",{"nodes":206,"edges":217},[207,212],{"id":208,"type":209,"label":210,"file":140,"line":211},"n0","source","$_GET",53,{"id":213,"type":214,"label":215,"file":140,"line":165,"wp_function":216},"n1","sink","echo() [XSS]","echo",[218],{"from":208,"to":213,"sanitized":219},false,"medium",{"entryPoint":222,"graph":223,"unsanitizedCount":55,"severity":229},"\u003Ccustom-categories-rss> (custom-categories-rss.php:0)",{"nodes":224,"edges":227},[225,226],{"id":208,"type":209,"label":210,"file":140,"line":211},{"id":213,"type":214,"label":215,"file":140,"line":165,"wp_function":216},[228],{"from":208,"to":213,"sanitized":219},"low",{"summary":231,"deductions":232},"The \"custom-categories-rss\" plugin version 0.1 presents a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, file operations, and external HTTP requests.  Crucially, all SQL queries are executed using prepared statements, and there are no known CVEs associated with this plugin, suggesting a generally stable history. However, significant concerns arise from the static analysis. A notable weakness is the complete lack of output escaping, meaning any data processed and displayed by the plugin is potentially vulnerable to cross-site scripting (XSS) attacks. The taint analysis also highlights two flows with unsanitized paths, which, while not currently classified as critical or high severity, represent potential entry points for malicious data manipulation.  The absence of nonce and capability checks, while not directly exploited by the identified entry points (only one shortcode), is a general security weakness that could be leveraged if new, unprotected entry points were introduced or if existing ones were to interact with sensitive functionality without proper authorization.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and secure database practices, the complete lack of output escaping is a critical flaw that exposes users to XSS. The presence of unsanitized taint flows, albeit not currently severe, warrants attention. The absence of essential security checks like nonces and capability checks, even with a limited attack surface, indicates a lack of robust security implementation. Addressing the output escaping and investigating the unsanitized taint flows should be the immediate priorities to improve the plugin's security.",[233,235,237,240],{"reason":234,"points":31},"0% of outputs properly escaped",{"reason":236,"points":79},"2 flows with unsanitized paths",{"reason":238,"points":239},"0 nonce checks",5,{"reason":241,"points":239},"0 capability checks","2026-03-17T00:56:12.332Z",{"wat":244,"direct":251},{"assetPaths":245,"generatorPatterns":247,"scriptPaths":249,"versionParams":250},[246],"\u002Fwp-content\u002Fplugins\u002Fcustom-categories-rss\u002Fcustom-categories-rss.php",[248],"Custom Categories RSS v0.1",[],[],{"cssClasses":252,"htmlComments":255,"htmlAttributes":256,"restEndpoints":263,"jsGlobals":264,"shortcodeOutput":266},[150,253,254],"ccrss-checkbox","ccrss-checkwrap",[],[257,258,259,260,261,262],"id=\"ccrss\"","id=\"ccrssForm\"","id=\"ccrss-checkwrap\"","name=\"ccrssForm\"","value=\"\u003C?php _e('All RSS from this site', 'ccrss'); ?>\"","value=\"\u003C?php _e('Submit', 'ccrss'); ?>\"",[],[265],"window.location.href",[267],"\u003Cdiv id=\"ccrss\">"]