[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCeb7XOHRKiDY2DQj5ST_bnKEucxCNZNb0vStaz32c5k":3,"$f3AfHhomg5kzqFA6_tpBVgnDrqjPZPRSuf843m0p-YTQ":401,"$fxINjdiP-CIifV53ql-P23aGcP5LbDogyhjvsORf-Yus":405},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":40,"analysis":146,"fingerprints":382},"custom-options-plus-post-in","CUSTOM OPTIONS PLUS POST IN","1.4.1","gqevu6bsiz","https:\u002F\u002Fprofiles.wordpress.org\u002Fgqevu6bsiz\u002F","\u003Cp>This plugin is manage of custom options for site.\u003C\u002Fp>\n\u003Cp>You can create the options easily.\u003Cbr \u002F>\nAnd, you can use for Template.\u003Cbr \u002F>\n    .\u003C\u002Fp>\n\u003Cp>And then, you can use to Shortcode for Post.\u003Cbr \u002F>\n    [coppi key=”example”]\u003C\u002Fp>\n\u003Cp>If you create a lot of options, You can manage the category for custom options.\u003C\u002Fp>\n\u003Ch3>日本語でのご説明\u003C\u002Fh3>\n\u003Cp>このプラグインは、オプションの値を追加できるようにするプラグインです。\u003Cbr \u002F>\n作成したオプション値は、テンプレートで使用でき、\u003Cbr \u002F>\n記事本文でショートコードとしても使用できます。\u003C\u002Fp>\n","This plugin is create to custom options in your WordPress. You can use in the Template and Shortcode.",10,3155,100,1,"2015-02-16T04:53:00.000Z","4.1.42","3.8","",[20,21,22,23,24],"admin","custom","option","post","shortcode","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-options-plus-post-in\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.4.1.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},12,46870,87,183,70,"2026-05-19T22:13:21.977Z",[41,58,79,102,125],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":11,"downloaded":49,"rating":28,"num_ratings":28,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":18,"tags":53,"homepage":56,"download_link":57,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"abandon-theme-options","Abandon Themes Admin","0.7.4","abbandunne","https:\u002F\u002Fprofiles.wordpress.org\u002Fabbandunne\u002F","\u003Cp>This is a WordPress plugin aimed at template designers who have mid range experience of PHP and theme development or experienced designers who want to speed up their workflow. What it does is let you add an options page to your theme with a host of various options to improve its functionality. All you need to do is add a short function in your themes functions.php file to turn on the features you want to use.\u003C\u002Fp>\n","This is a WordPress plugin that adds an admin options page to your theme and all the main options a theme designer would need.",3238,"2012-03-29T15:14:00.000Z","3.2.1","3",[54,55],"admin-options-page","custom-post-types","http:\u002F\u002Fabandon.ie\u002Fabandon-options-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fabandon-theme-options.zip",{"slug":59,"name":60,"version":61,"author":7,"author_profile":8,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":74,"download_link":75,"security_score":76,"vuln_count":77,"unpatched_count":28,"last_vuln_date":78,"fetched_at":30},"wp-admin-ui-customize","WP Admin UI Customize","1.5.14","\u003Cul>\n\u003Cli>Dashboard\u003C\u002Fli>\n\u003Cli>Display options tab\u003C\u002Fli>\n\u003Cli>Output-meta site\u003C\u002Fli>\n\u003Cli>Admin bar (Toolbar)\u003C\u002Fli>\n\u003Cli>Admin menu (Side menu)\u003C\u002Fli>\n\u003Cli>Management of meta boxes\u003C\u002Fli>\n\u003Cli>Login screen\u003C\u002Fli>\n\u003Cli>Other features.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>These to Customization is possible.\u003C\u002Fp>\n\u003Ch3>日本語でのご説明\u003C\u002Fh3>\n\u003Cp>このプラグインは、管理画面UIのカスタマイズをするプラグインです。\u003Cbr \u002F>\n「ダッシュボード」「オプションタブ」「サイトのメタタグ管理」「管理バー」「管理メニュー」「メタボックス」「ログイン画面」\u003Cbr \u002F>\nこれらのカスタマイズを、このプラグインひとつで出来ます。\u003C\u002Fp>\n","Customize the management screen UI.",30000,391433,92,59,"2024-11-20T02:52:00.000Z","4.9.29","4.2",[20,22,72,23,73],"page","posts","http:\u002F\u002Fwpadminuicustomize.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-admin-ui-customize.1.5.14.zip",91,2,"2024-11-26 00:00:00",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":13,"num_ratings":14,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":97,"download_link":98,"security_score":99,"vuln_count":100,"unpatched_count":28,"last_vuln_date":101,"fetched_at":30},"apollo13-framework-extensions","Apollo13 Framework Extensions","1.9.9","apollo13themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fapollo13themes\u002F","\u003Cp>\u003Cstrong>Apollo13 Framework Extensions\u003C\u002Fstrong> adds few features to themes build on Apollo13 Framework. These are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Designs Importer,\u003C\u002Fli>\n\u003Cli>shortcodes based on Apollo13 Framework features: writtng effect, count down, socials, scroller, slider, galleries, post grid,\u003C\u002Fli>\n\u003Cli>support for WPBakery Page Builder elements added by Apollo13 Framework,\u003C\u002Fli>\n\u003Cli>custom post types: albums, works & people,\u003C\u002Fli>\n\u003Cli>Export\u002FImport of theme options,\u003C\u002Fli>\n\u003Cli>Custom Sidebar,\u003C\u002Fli>\n\u003Cli>Custom CSS,\u003C\u002Fli>\n\u003Cli>Meta options that are creating content for posts, pages, albums and works,\u003C\u002Fli>\n\u003Cli>Responsive Image resizing ,\u003C\u002Fli>\n\u003Cli>Maintenance mode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin requires one of themes build on \u003Cstrong>Apollo13 Framework\u003C\u002Fstrong> theme to be installed.\u003C\u002Fp>\n\u003Cp>It is mostly used for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree\u002F\" rel=\"nofollow ugc\">Rife Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002F\" rel=\"nofollow ugc\">Rife Pro\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits & Copyright\u003C\u002Fh3>\n\u003Ch4>Anime.js, Copyright 2019 Julian Garnier\u003C\u002Fh4>\n\u003Cp>Licenses: MIT\u003Cbr \u002F>\nSource: https:\u002F\u002Fanimejs.com\u002F\u003C\u002Fp>\n","Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.",20000,536744,"2025-12-04T08:12:00.000Z","6.5.8","4.7","5.4.0",[55,94,95,96],"elementor-widgets","shortcodes","wpbakery-page-builder-support","https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapollo13-framework-extensions.zip",95,6,"2026-02-18 15:32:44",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":112,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":18,"tags":117,"homepage":122,"download_link":123,"security_score":66,"vuln_count":100,"unpatched_count":28,"last_vuln_date":124,"fetched_at":30},"custom-post-widget","Content Blocks (Custom Post Widget)","3.4.1","Johan van der Wijk","https:\u002F\u002Fprofiles.wordpress.org\u002Fvanderwijk\u002F","\u003Cp>The \u003Ca href=\"http:\u002F\u002Fwww.vanderwijk.com\u002Fwordpress\u002Fwordpress-custom-post-widget\u002F?utm_source=wordpress&utm_medium=website&utm_campaign=custom_post_widget\" rel=\"nofollow ugc\">Content Blocks\u003C\u002Fa> allows you to display the contents of a specific custom post in a widget on in the content area using a shortcode.\u003C\u002Fp>\n\u003Cp>Even though you could use the text widget that comes with the default WordPress install, this plugin has some major benefits:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The Content Blocks plugin enables users to \u003Cstrong>use the WYSIWYG editor\u003C\u002Fstrong> for editing the content and adding images.\u003C\u002Fli>\n\u003Cli>If you are using the standard WordPress text widgets to display content on various areas of your template, this content can only be edited by users with administrator access. If you would like \u003Cstrong>non-administrator accounts to modify the widget content\u003C\u002Fstrong>, you can use this plugin to provide them access to the custom posts that provide the content for the widget areas.\u003C\u002Fli>\n\u003Cli>You can even use the \u003Cstrong>featured image functionality\u003C\u002Fstrong> to display them in a widget.\u003C\u002Fli>\n\u003Cli>The Content Blocks plugin is \u003Cstrong>compatible with the WPML\u003C\u002Fstrong> Multi-Language plugin and automatically shows the correct language in the widget area.\u003C\u002Fli>\n\u003Cli>The Content Blocks can be included in posts and pages using the \u003Cstrong>built-in shortcode functionality\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin creates a ‘content_block’ custom post type. You can choose to either display the title on the page or use it to describe the contents and widget position of the content block. Note that these content blocks can only be displayed in the context of the page. I have added ‘public’ => false to the custom post type which means that it is not accessible outside the page context.\u003C\u002Fp>\n\u003Cp>To add content to a widget, drag it to the required position in the sidebar and select the title of the custom post in the widget configuration.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Includes the following translations:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Swedish (sv_SE) by \u003Ca href=\"http:\u002F\u002Fkrokedil.se\" rel=\"nofollow ugc\">Andreas Larsson\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Spanish (es_ES) by \u003Ca href=\"https:\u002F\u002Fwww.ibidemgroup.com\" rel=\"nofollow ugc\">IBIDEM GROUP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Portuguese (pt_BR) by Ronaldo Chevalier\u003C\u002Fli>\n\u003Cli>Polish (pl_PL) by Kuba Skublicki\u003C\u002Fli>\n\u003Cli>Dutch (nl_NL) by \u003Ca href=\"https:\u002F\u002Fvanderwijk.nl\" rel=\"nofollow ugc\">Johan van der Wijk\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Czech (cs_CZ) by \u003Ca href=\"http:\u002F\u002Fjsemweb.cz\u002F\" rel=\"nofollow ugc\">Martin Kucera\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fcustom-post-widget\" rel=\"nofollow ugc\">More translations are very welcome!\u003C\u002Fa>\u003C\u002Fp>\n","This plugin enables you to edit and display Content Blocks in a sidebar widget or using a shortcode.",10000,729431,98,80,"2026-01-27T13:29:00.000Z","6.9.4","4.6",[118,119,120,24,121],"block","content-block","custom-post","widget","https:\u002F\u002Fvanderwijk.com\u002Fwordpress\u002Fwordpress-custom-post-widget\u002F?utm_source=wordpress&utm_medium=plugin&utm_campaign=custom_post_widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-post-widget.3.4.1.zip","2026-04-17 21:21:37",{"slug":126,"name":127,"version":128,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":110,"downloaded":133,"rating":134,"num_ratings":135,"last_updated":136,"tested_up_to":137,"requires_at_least":138,"requires_php":18,"tags":139,"homepage":142,"download_link":143,"security_score":144,"vuln_count":14,"unpatched_count":28,"last_vuln_date":145,"fetched_at":30},"posts-in-page","Posts in Page","1.4.4","ivycat","https:\u002F\u002Fprofiles.wordpress.org\u002Fivycat\u002F","\u003Cp>Easily add one or more posts to any page using simple shortcodes.\u003C\u002Fp>\n\u003Cp>Supports categories, tags, custom post types, custom taxonomies, date ranges, post status, and much more.\u003C\u002Fp>\n\u003Cp>You can get all of the same functionality provided by this plugin by modifying your theme’s template files; this plugin just makes it easy for anyone to \u003Cem>pull\u003C\u002Fem> posts into other areas of the site without having to get their hands dirty with code.\u003C\u002Fp>\n\u003Cp>Plugin is depending upon your theme’s styling; version 1.x of this plugin \u003Cem>does not\u003C\u002Fem> contain native styles.\u003C\u002Fp>\n\u003Cp>This is a minimal plugin, function over form. Give us feedback, suggestions, bug reports, and any other contributions on the in the plugin’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fivycat\u002Fposts-in-page\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n","Easily add one or more posts to any page using simple shortcodes.",377856,88,86,"2019-05-13T16:13:00.000Z","5.2.24","3.0",[55,140,73,24,141],"pages","taxonomy","https:\u002F\u002Fivycat.com\u002Fwordpress\u002Fwordpress-plugins\u002Fposts-in-page\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fposts-in-page.1.4.4.zip",84,"2017-02-13 00:00:00",{"attackSurface":147,"codeSignals":189,"taintFlows":344,"riskAssessment":373,"analyzedAt":381},{"hooks":148,"ajaxHandlers":185,"restRoutes":186,"shortcodes":187,"cronEvents":188,"entryPointCount":28,"unprotectedCount":28},[149,154,157,160,164,167,171,174,175,176,179,181,183],{"type":150,"name":151,"callback":151,"file":152,"line":153},"action","admin_init","core\u002Finfo.php",35,{"type":150,"name":155,"callback":156,"file":152,"line":37},"network_admin_notices","update_notice",{"type":150,"name":158,"callback":156,"file":152,"line":159},"admin_notices",187,{"type":150,"name":161,"callback":161,"file":162,"line":163},"init","core\u002Finit.php",37,{"type":150,"name":161,"callback":165,"file":166,"line":113},"core_initialized","custom-options-plus-post-in.php",{"type":150,"name":168,"callback":168,"file":169,"line":170},"network_admin_menu","manager\u002Fabstract-controller.php",51,{"type":150,"name":172,"callback":172,"file":169,"line":173},"admin_menu",55,{"type":150,"name":151,"callback":151,"file":169,"line":67},{"type":150,"name":155,"callback":156,"file":169,"line":134},{"type":150,"name":155,"callback":177,"file":169,"line":178},"maybe_show_error",89,{"type":150,"name":158,"callback":156,"file":169,"line":180},93,{"type":150,"name":158,"callback":177,"file":169,"line":182},94,{"type":150,"name":184,"callback":184,"file":169,"line":112},"admin_print_scripts",[],[],[],[],{"dangerousFunctions":190,"sqlUsage":191,"outputEscaping":194,"fileOperations":14,"externalRequests":28,"nonceChecks":11,"capabilityChecks":14,"bundledLibraries":343},[],{"prepared":192,"raw":28,"locations":193},11,[],{"escaped":195,"rawEcho":196,"locations":197},20,97,[198,201,202,204,206,207,208,210,212,213,214,216,218,219,220,222,224,226,227,229,231,232,235,236,237,238,240,242,243,244,245,246,248,249,251,253,254,255,256,258,259,261,263,264,265,266,268,269,271,272,273,274,276,278,280,281,283,285,287,289,291,292,293,295,297,298,300,301,303,304,306,307,309,311,312,313,314,315,317,320,321,322,323,324,325,326,327,328,330,333,334,335,336,337,338,340,342],{"file":199,"line":11,"context":200},"manager\u002Fview\u002Fcustom-option.php","raw output",{"file":199,"line":34,"context":200},{"file":199,"line":203,"context":200},14,{"file":199,"line":205,"context":200},54,{"file":199,"line":67,"context":200},{"file":199,"line":67,"context":200},{"file":199,"line":209,"context":200},63,{"file":199,"line":211,"context":200},82,{"file":199,"line":211,"context":200},{"file":199,"line":135,"context":200},{"file":199,"line":215,"context":200},120,{"file":199,"line":217,"context":200},138,{"file":199,"line":217,"context":200},{"file":199,"line":217,"context":200},{"file":199,"line":221,"context":200},140,{"file":199,"line":223,"context":200},222,{"file":199,"line":225,"context":200},223,{"file":199,"line":225,"context":200},{"file":199,"line":228,"context":200},273,{"file":199,"line":230,"context":200},274,{"file":199,"line":230,"context":200},{"file":233,"line":234,"context":200},"manager\u002Fview\u002Felements\u002Fadd-category-form.php",8,{"file":233,"line":234,"context":200},{"file":233,"line":234,"context":200},{"file":233,"line":11,"context":200},{"file":233,"line":239,"context":200},18,{"file":241,"line":234,"context":200},"manager\u002Fview\u002Felements\u002Fadd-option-form.php",{"file":241,"line":234,"context":200},{"file":241,"line":234,"context":200},{"file":241,"line":11,"context":200},{"file":241,"line":239,"context":200},{"file":241,"line":247,"context":200},28,{"file":241,"line":247,"context":200},{"file":241,"line":250,"context":200},36,{"file":252,"line":234,"context":200},"manager\u002Fview\u002Felements\u002Fedit-category-form.php",{"file":252,"line":234,"context":200},{"file":252,"line":234,"context":200},{"file":252,"line":11,"context":200},{"file":252,"line":257,"context":200},23,{"file":252,"line":257,"context":200},{"file":252,"line":260,"context":200},30,{"file":252,"line":262,"context":200},53,{"file":252,"line":262,"context":200},{"file":252,"line":262,"context":200},{"file":252,"line":173,"context":200},{"file":252,"line":267,"context":200},67,{"file":252,"line":267,"context":200},{"file":270,"line":195,"context":200},"manager\u002Fview\u002Felements\u002Finformation.php",{"file":270,"line":257,"context":200},{"file":270,"line":257,"context":200},{"file":270,"line":257,"context":200},{"file":270,"line":275,"context":200},25,{"file":270,"line":277,"context":200},47,{"file":270,"line":279,"context":200},48,{"file":270,"line":173,"context":200},{"file":270,"line":282,"context":200},57,{"file":270,"line":284,"context":200},69,{"file":270,"line":286,"context":200},71,{"file":270,"line":288,"context":200},72,{"file":270,"line":290,"context":200},73,{"file":270,"line":36,"context":200},{"file":270,"line":182,"context":200},{"file":270,"line":294,"context":200},102,{"file":296,"line":14,"context":200},"manager\u002Fview\u002Felements\u002Flist-option-single-row.php",{"file":296,"line":14,"context":200},{"file":296,"line":299,"context":200},3,{"file":296,"line":299,"context":200},{"file":296,"line":302,"context":200},7,{"file":296,"line":234,"context":200},{"file":296,"line":305,"context":200},13,{"file":296,"line":305,"context":200},{"file":296,"line":308,"context":200},17,{"file":296,"line":310,"context":200},19,{"file":296,"line":310,"context":200},{"file":296,"line":275,"context":200},{"file":296,"line":260,"context":200},{"file":296,"line":260,"context":200},{"file":296,"line":316,"context":200},33,{"file":318,"line":319,"context":200},"manager\u002Fview\u002Felements\u002Flist-option-table.php",9,{"file":318,"line":319,"context":200},{"file":318,"line":319,"context":200},{"file":318,"line":192,"context":200},{"file":318,"line":275,"context":200},{"file":318,"line":275,"context":200},{"file":318,"line":247,"context":200},{"file":318,"line":288,"context":200},{"file":318,"line":288,"context":200},{"file":318,"line":329,"context":200},74,{"file":331,"line":332,"context":200},"manager\u002Fview\u002Felements\u002Fmemo.php",4,{"file":331,"line":257,"context":200},{"file":331,"line":257,"context":200},{"file":331,"line":257,"context":200},{"file":331,"line":275,"context":200},{"file":331,"line":260,"context":200},{"file":339,"line":299,"context":200},"manager\u002Fview\u002Fupgrade-announce.php",{"file":339,"line":341,"context":200},5,{"file":339,"line":302,"context":200},[],[345,364],{"entryPoint":346,"graph":347,"unsanitizedCount":77,"severity":363},"update (core\u002Finfo.php:211)",{"nodes":348,"edges":360},[349,354],{"id":350,"type":351,"label":352,"file":152,"line":353},"n0","source","$_POST (x2)",219,{"id":355,"type":356,"label":357,"file":152,"line":358,"wp_function":359},"n1","sink","update_option() [Settings Manipulation]",226,"update_option",[361],{"from":350,"to":355,"sanitized":362},false,"low",{"entryPoint":365,"graph":366,"unsanitizedCount":28,"severity":363},"\u003Cinfo> (core\u002Finfo.php:0)",{"nodes":367,"edges":370},[368,369],{"id":350,"type":351,"label":352,"file":152,"line":353},{"id":355,"type":356,"label":357,"file":152,"line":358,"wp_function":359},[371],{"from":350,"to":355,"sanitized":372},true,{"summary":374,"deductions":375},"The 'custom-options-plus-post-in' v1.4.1 plugin demonstrates a generally strong security posture, characterized by the exclusive use of prepared statements for all SQL queries and a robust presence of nonce and capability checks. This indicates a good understanding of fundamental WordPress security practices, particularly in preventing common SQL injection and authorization bypass vulnerabilities.\n\nHowever, a significant concern arises from the 'Output escaping' metric, with only 17% of outputs being properly escaped. This leaves a considerable portion of the plugin's output potentially vulnerable to Cross-Site Scripting (XSS) attacks, where unsanitized data could be injected into the page and executed in a user's browser. Additionally, the taint analysis revealed one flow with an unsanitized path, which, while not flagged as critical or high severity in this specific report, warrants investigation as it could represent a potential avenue for file inclusion or path traversal vulnerabilities if exploited in conjunction with other weaknesses.\n\nThe complete absence of known vulnerabilities in its history is a positive indicator, suggesting a history of stable and relatively secure development. Nonetheless, the identified output escaping deficiency and the unsanitized path flow represent exploitable weaknesses that could be leveraged by attackers. While the overall security is good due to strong SQL and authentication practices, the XSS risk and the unsanitized path need to be addressed to achieve a truly secure state.",[376,379],{"reason":377,"points":378},"Low percentage of properly escaped output",15,{"reason":380,"points":234},"Flow with unsanitized path found","2026-04-16T12:38:55.192Z",{"wat":383,"direct":392},{"assetPaths":384,"generatorPatterns":387,"scriptPaths":388,"versionParams":389},[385,386],"\u002Fwp-content\u002Fplugins\u002Fcustom-options-plus-post-in\u002Fmanager\u002Fassets\u002Fcss\u002Fmanager.css","\u002Fwp-content\u002Fplugins\u002Fcustom-options-plus-post-in\u002Fmanager\u002Fassets\u002Fjs\u002Fmanager.js",[],[386],[390,391],"custom-options-plus-post-in\u002Fmanager\u002Fassets\u002Fjs\u002Fmanager.js?ver=","custom-options-plus-post-in\u002Fmanager\u002Fassets\u002Fcss\u002Fmanager.css?ver=",{"cssClasses":393,"htmlComments":395,"htmlAttributes":396,"restEndpoints":398,"jsGlobals":399,"shortcodeOutput":400},[394],"coppi",[],[397],"class=\"wrap coppi\"",[],[394],[],{"error":372,"url":402,"statusCode":403,"statusMessage":404,"message":404},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcustom-options-plus-post-in\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":203,"versions":406},[407,412,419,426,433,440,447,454,461,468,475,482,489,496],{"version":6,"download_url":26,"svn_tag_url":408,"released_at":29,"has_diff":362,"diff_files_changed":409,"diff_lines":29,"trac_diff_url":410,"vulnerabilities":411,"is_current":372},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.4.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.4&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.4.1",[],{"version":413,"download_url":414,"svn_tag_url":415,"released_at":29,"has_diff":362,"diff_files_changed":416,"diff_lines":29,"trac_diff_url":417,"vulnerabilities":418,"is_current":362},"1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3.2.1&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.4",[],{"version":420,"download_url":421,"svn_tag_url":422,"released_at":29,"has_diff":362,"diff_files_changed":423,"diff_lines":29,"trac_diff_url":424,"vulnerabilities":425,"is_current":362},"1.3.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.3.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.3.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3.2&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3.2.1",[],{"version":427,"download_url":428,"svn_tag_url":429,"released_at":29,"has_diff":362,"diff_files_changed":430,"diff_lines":29,"trac_diff_url":431,"vulnerabilities":432,"is_current":362},"1.3.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.3.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.3.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3.1&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3.2",[],{"version":434,"download_url":435,"svn_tag_url":436,"released_at":29,"has_diff":362,"diff_files_changed":437,"diff_lines":29,"trac_diff_url":438,"vulnerabilities":439,"is_current":362},"1.3.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.3.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.3.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3.1",[],{"version":441,"download_url":442,"svn_tag_url":443,"released_at":29,"has_diff":362,"diff_files_changed":444,"diff_lines":29,"trac_diff_url":445,"vulnerabilities":446,"is_current":362},"1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2.3&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.3",[],{"version":448,"download_url":449,"svn_tag_url":450,"released_at":29,"has_diff":362,"diff_files_changed":451,"diff_lines":29,"trac_diff_url":452,"vulnerabilities":453,"is_current":362},"1.2.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.2.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.2.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2.2&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2.3",[],{"version":455,"download_url":456,"svn_tag_url":457,"released_at":29,"has_diff":362,"diff_files_changed":458,"diff_lines":29,"trac_diff_url":459,"vulnerabilities":460,"is_current":362},"1.2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2.1&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2.2",[],{"version":462,"download_url":463,"svn_tag_url":464,"released_at":29,"has_diff":362,"diff_files_changed":465,"diff_lines":29,"trac_diff_url":466,"vulnerabilities":467,"is_current":362},"1.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2.1",[],{"version":469,"download_url":470,"svn_tag_url":471,"released_at":29,"has_diff":362,"diff_files_changed":472,"diff_lines":29,"trac_diff_url":473,"vulnerabilities":474,"is_current":362},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.1.1&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.2",[],{"version":476,"download_url":477,"svn_tag_url":478,"released_at":29,"has_diff":362,"diff_files_changed":479,"diff_lines":29,"trac_diff_url":480,"vulnerabilities":481,"is_current":362},"1.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.1&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.1.1",[],{"version":483,"download_url":484,"svn_tag_url":485,"released_at":29,"has_diff":362,"diff_files_changed":486,"diff_lines":29,"trac_diff_url":487,"vulnerabilities":488,"is_current":362},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.0.1&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.1",[],{"version":490,"download_url":491,"svn_tag_url":492,"released_at":29,"has_diff":362,"diff_files_changed":493,"diff_lines":29,"trac_diff_url":494,"vulnerabilities":495,"is_current":362},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.0.0&new_path=%2Fcustom-options-plus-post-in%2Ftags%2F1.0.1",[],{"version":497,"download_url":498,"svn_tag_url":499,"released_at":29,"has_diff":362,"diff_files_changed":500,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":501,"is_current":362},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-options-plus-post-in.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcustom-options-plus-post-in\u002Ftags\u002F1.0.0\u002F",[],[]]