[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fS3f5jEz17oy5Iados_xKF7-Kz-sRiGcvkU5ifBPWzyk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":126,"fingerprints":294},"easy-googles-widget","Easy Google+ Widget","0.2.7.2","Michal Ozogan","https:\u002F\u002Fprofiles.wordpress.org\u002Ffabulatorcz\u002F","\u003Cp>Googles+ widget which provides you public post from your timeline. It shows your statuses, images, videos, links and albums. You need create your google plus app (https:\u002F\u002Fcode.google.com\u002Fapis\u002Fconsole\u002Fb\u002F0\u002F?pli=1) and enter your api + your profile ID. The are also some customizations like size of your profile image, number of showed posts and max width of images.\u003C\u002Fp>\n","Googles+ widget which provides you public post from your timeline.",10,6395,100,2,"2013-08-13T19:32:00.000Z","3.5.2","3.0.0","",[20,21,22,23],"google","google-plus","social","widget","http:\u002F\u002Fwordpress.fabulator.cz\u002Feasy-googles-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-googles-widget.0.2.7.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":34,"trust_score":36,"computed_at":37},"fabulatorcz",3,30,90,87,"2026-04-04T09:15:22.970Z",[39,56,72,92,111],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":11,"downloaded":47,"rating":27,"num_ratings":27,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":54,"download_link":55,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"all-social-fw-style-widget","All-Social FW Style","0.1","Angelverde","https:\u002F\u002Fprofiles.wordpress.org\u002Fangelverde\u002F","\u003Cp>Todos tus sitios web en un solo widget: Facebook, Twitter, Google Plus y FeedBurner.\u003C\u002Fp>\n\u003Cp>Haz que tus visitantes se suscriban y se mantengan conectados todo el tiempo, un widget de facil acceso que solo requiere que llenes tus datos.\u003C\u002Fp>\n","Todos tus sitios web en un solo widget: Facebook, Twitter, Google Plus y FeedBurner.",2683,"2011-10-16T06:23:00.000Z","3.2.1","2.0.2",[52,21,22,53,23],"facebook","twitter","http:\u002F\u002Fangelverde.info\u002Fall-social-fw-style-widget-wordpress-facebook-twitter-googleplus-feedburner\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fall-social-fw-style-widget.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":11,"downloaded":64,"rating":13,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":18,"tags":69,"homepage":70,"download_link":71,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"rs-social-sidebar","RS Social Sidebar","1.0.6","Rohit Singhal","https:\u002F\u002Fprofiles.wordpress.org\u002Frosinghal\u002F","\u003Cp>Another social plugin :). Difference is the hover effect. It can be in the left or right side. Social plugin will be shown on hovering over any of the icons.\u003C\u002Fp>\n\u003Cp>Now it supports all major social networks i.e., facebook, google plus and twitter.\u003C\u002Fp>\n\u003Cp>After getting huge success in \u003Ca href=\"http:\u002F\u002Fwww.opencart.com\u002Findex.php?route=extension\u002Fextension\u002Finfo&extension_id=19473&filter_username=rosinghal\" rel=\"nofollow ugc\">Opencart\u003C\u002Fa>, I have made this free plugin for WordPress.\u003C\u002Fp>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.xtendify.com\u002Fwordpress\u002Frs-social-sidebar\u002F\" rel=\"nofollow ugc\">WordPress\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.opencart.com\u002Findex.php?route=extension\u002Fextension\u002Finfo&extension_id=19473&filter_username=rosinghal\" rel=\"nofollow ugc\">Social Sidebar for Opencart\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fwppb.me\u002F\" rel=\"nofollow ugc\">WordPress Plugin Boilerplate Generator\u003C\u002Fa>\u003C\u002Fp>\n","Another social plugin :). Difference is the hover effect.",2276,1,"2016-04-20T08:01:00.000Z","4.8.28","3.0.1",[52,21,22,53,23],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frs-social-sidebar\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frs-social-sidebar.1.0.7.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":18,"tags":87,"homepage":90,"download_link":91,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"metro-style-social-widget","Metro Style Social Widget","1.0.2","Manivannan M","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanivannan-m\u002F","\u003Cp>A light weight wordpress widget that displays Metro Style social network icons in Sidebar and links to your social network profiles.\u003C\u002Fp>\n\u003Cp>Add button option will display the Like \u002F Follow button on the Social icons so that your users can immediately Like \u002F Follow your page or profile without leaving your site.\u003C\u002Fp>\n\u003Cp>Since every one use Facebook and Twitter, we made them as default and other network as optional.\u003C\u002Fp>\n\u003Ch4>Update\u003C\u002Fh4>\n\u003Cp>Color Picker added, Now you can set any color to any icons in the widget.\u003C\u002Fp>\n\u003Cp>On Users request Google+ and RSS Feed are now optional.\u003C\u002Fp>\n\u003Cp>If needed you can display Google+, Linkedin, Youtube, RSS Feed and Pinterest else choose don’t show option in widget settings.\u003C\u002Fp>\n\u003Cp>Responsive design, Plugin will automatically fit within your siderbar width else you can specify width for the widget.\u003C\u002Fp>\n\u003Ch4>Next Release will Include the Below Feature\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> User side configuration \u002F customization in Widget admin page\u003C\u002Fli>\n\u003Cli> More Styles \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support \u002F Contact\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\u002Fmetro-style-social-widget-wordpress\" title=\"More info about Metro Style Social Widget plugin\" rel=\"nofollow ugc\">More Info \u002F DEMO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\" title=\"Contact at Aidful.com\" rel=\"nofollow ugc\">Developer Blog: Aidful.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Sponsors\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.specificfeeds.com\u002F\" title=\"Donated 30 USD\" rel=\"nofollow ugc\">SpecificFeeds\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plug-in, please don’t forget to rate this plugin.\u003C\u002Fp>\n","Metro Style Social Network Widget",300,56781,92,22,"2016-08-02T08:32:00.000Z","4.5.33","2.5",[52,20,88,89,53],"metro-social-widget","specificfeeds","http:\u002F\u002Fwww.aidful.com\u002Fmetro-style-social-widget-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmetro-style-social-widget.1.0.2.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":103,"last_updated":104,"tested_up_to":16,"requires_at_least":105,"requires_php":18,"tags":106,"homepage":109,"download_link":110,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"jamie-social-icons","Jamie Social Icons","0.9.8.3","martiniboy","https:\u002F\u002Fprofiles.wordpress.org\u002Fmartiniboy\u002F","\u003Cp>Show social icons at the top or bottom of post\u002Fpage or adding the Facebook, Twitter, Pinterest, Google Plus and Linkedin buttons manually.\u003Cbr \u002F>\nThis plugin allows you to add the social share icons on your page and\u002For post. You can choose which social icons to show on the options page from a choice of FACEBOOK’s Facebook like\u002FFacebook recommend, GOOGLE’s Google Plus, TWITTER’s Tweet this, PINTEREST’s pin this and LINKEDIN’s share on Linked in.  Get your wordpress site found by the search engines by letting your readers share it with there social friends\u002Ffollowers – expose your site to more people will result in more viewers.\u003Cbr \u002F>\nTrack the social interaction with the social icons within your google anlaytics.  To see which posts\u002Fpages are bring your site the most traffic\u003Cbr \u002F>\nNow with Integration with Facebook insights to be able to track all inetegration with your website and Facebook \u003Ca href=\"http:\u002F\u002Fwww.martiniboy.co.uk\u002Fweb-development-news\u002Fwordpress-plugin-integrates-facebook-insights\" title=\"Facebook Insights WordPress Plugin\" rel=\"nofollow ugc\">click here to find out more\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choose to show automatically at the top and\u002For bottom of each post and or page or manually with the shortcode or template code\u003C\u002Fli>\n\u003Cli>You can add \u003Ccode>\u003C?php echo get_jamie_social_code(); ?>\u003C\u002Fcode> in template to show automatically on selected template\u003C\u002Fli>\n\u003Cli>TinyMCE : Button integration for easy adding the social icons to specific posts\u002Fpage\u002Fcustom posts which addds shortcode\u003C\u002Fli>\n\u003Cli>Shortcode – manullay add shortcode to post \u003Ccode>[jamiesocial]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Integration With Google Analytics\u003C\u002Fli>\n\u003Cli>Integration with Facebook Insights\u003C\u002Fli>\n\u003Cli>Ability to align the icons to the left, center or right\u003C\u002Fli>\n\u003Cli>Ability to add text before the icons\u003C\u002Fli>\n\u003Cli>In the process of creating ability to Localize the plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Future Updates\u002FWork In Progress\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ability to add automatically to CPT\u003C\u002Fli>\n\u003Cli>Add automatically to blog feed\u002Fexcerpt page\u003C\u002Fli>\n\u003Cli>Add StumbleUpon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more detailed instructions and any other requests \u003Ca href=\"http:\u002F\u002Fwww.martiniboy.co.uk\u002Fwordpress-plugins\u002Fjamie-social-icons\" title=\"Wordpress Plugin Developer\" rel=\"nofollow ugc\">click here\u003C\u002Fa>\u003C\u002Fp>\n","Share your posts & pages with your favourite social sites - Twitter, Facebook, Google Plus, Pinterest And LinkedIn and now trackable with your Goo &hellip;",200,38216,88,7,"2013-04-02T18:05:00.000Z","3.1",[52,21,107,108,53],"linkedin","social-share","http:\u002F\u002Fwww.martiniboy.co.uk\u002Fwordpress-plugins\u002Fjamie-social-icons\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjamie-social-icons.0.9.8.3.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":35,"downloaded":119,"rating":13,"num_ratings":65,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":124,"download_link":125,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"rel-publisher","Rel Publisher","1.0","chrisguitarguy","https:\u002F\u002Fprofiles.wordpress.org\u002Fchrisguitarguy\u002F","\u003Cp>Google+ pages can verify their URLs by adding \u003Ccode>\u003Clink rel=\"publisher\" href=\"your_plus_page_here\" \u002F>\u003C\u002Fcode> to the \u003Ccode>\u003Chead>\u003C\u002Fcode> section of a website.\u003C\u002Fp>\n\u003Cp>This plugin lets you do that.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fsupport.google.com\u002Fplus\u002Fbin\u002Fanswer.py?hl=en&answer=1713826\" rel=\"nofollow ugc\">More information\u003C\u002Fa> on the Google+ help pages.\u003C\u002Fp>\n","Rel Publisher is a simple plugin that lets you easily add \u003Clink rel=\"publisher\" \u002F> to your site.",9173,"2012-08-30T14:36:00.000Z","3.4.2","3.4",[20,21,112,22],"https:\u002F\u002Fgithub.com\u002FAgencyPMG\u002FRel-Publisher","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frel-publisher.1.0.zip",{"attackSurface":127,"codeSignals":147,"taintFlows":242,"riskAssessment":276,"analyzedAt":293},{"hooks":128,"ajaxHandlers":135,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":14,"unprotectedCount":14},[129],{"type":130,"name":131,"callback":132,"file":133,"line":134},"action","widgets_init","anonymous","easy-google-plus-widget.php",252,[136,141],{"action":137,"nopriv":138,"callback":139,"hasNonce":138,"hasCapCheck":138,"file":133,"line":140},"ajax_action",false,"ajax_action_stuff",140,{"action":137,"nopriv":142,"callback":139,"hasNonce":138,"hasCapCheck":138,"file":133,"line":143},true,141,[],[],[],{"dangerousFunctions":148,"sqlUsage":152,"outputEscaping":154,"fileOperations":33,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":241},[149],{"fn":150,"file":133,"line":134,"context":151},"create_function","add_action('widgets_init', create_function('', 'return register_widget(\"ozoGPWidget\");'));",{"prepared":27,"raw":27,"locations":153},[],{"escaped":27,"rawEcho":155,"locations":156},48,[157,160,162,164,166,168,170,172,174,176,178,180,182,184,186,188,190,191,192,194,196,197,198,200,202,203,204,206,208,209,210,212,214,215,216,218,220,221,222,224,225,227,229,231,233,235,237,239],{"file":133,"line":158,"context":159},37,"raw output",{"file":133,"line":161,"context":159},38,{"file":133,"line":163,"context":159},66,{"file":133,"line":165,"context":159},73,{"file":133,"line":167,"context":159},79,{"file":133,"line":169,"context":159},97,{"file":133,"line":171,"context":159},102,{"file":133,"line":173,"context":159},108,{"file":133,"line":175,"context":159},114,{"file":133,"line":177,"context":159},117,{"file":133,"line":179,"context":159},120,{"file":133,"line":181,"context":159},168,{"file":133,"line":183,"context":159},169,{"file":133,"line":185,"context":159},188,{"file":133,"line":187,"context":159},224,{"file":133,"line":189,"context":159},225,{"file":133,"line":189,"context":159},{"file":133,"line":189,"context":159},{"file":133,"line":193,"context":159},228,{"file":133,"line":195,"context":159},229,{"file":133,"line":195,"context":159},{"file":133,"line":195,"context":159},{"file":133,"line":199,"context":159},232,{"file":133,"line":201,"context":159},233,{"file":133,"line":201,"context":159},{"file":133,"line":201,"context":159},{"file":133,"line":205,"context":159},236,{"file":133,"line":207,"context":159},237,{"file":133,"line":207,"context":159},{"file":133,"line":207,"context":159},{"file":133,"line":211,"context":159},240,{"file":133,"line":213,"context":159},241,{"file":133,"line":213,"context":159},{"file":133,"line":213,"context":159},{"file":133,"line":217,"context":159},244,{"file":133,"line":219,"context":159},245,{"file":133,"line":219,"context":159},{"file":133,"line":219,"context":159},{"file":223,"line":11,"context":159},"ozoGPWidgetComments.php",{"file":223,"line":83,"context":159},{"file":223,"line":226,"context":159},40,{"file":223,"line":228,"context":159},47,{"file":223,"line":230,"context":159},59,{"file":223,"line":232,"context":159},64,{"file":223,"line":234,"context":159},70,{"file":223,"line":236,"context":159},76,{"file":223,"line":238,"context":159},78,{"file":240,"line":33,"context":159},"ozoGPWidgetStyle.php",[],[243,260,268],{"entryPoint":244,"graph":245,"unsanitizedCount":65,"severity":259},"ozoGPWidget (easy-google-plus-widget.php:132)",{"nodes":246,"edges":257},[247,252],{"id":248,"type":249,"label":250,"file":133,"line":251},"n0","source","$_POST['link']",144,{"id":253,"type":254,"label":255,"file":133,"line":251,"wp_function":256},"n1","sink","file_get_contents() [SSRF\u002FLFI]","file_get_contents",[258],{"from":248,"to":253,"sanitized":138},"medium",{"entryPoint":261,"graph":262,"unsanitizedCount":65,"severity":259},"ajax_action_stuff (easy-google-plus-widget.php:143)",{"nodes":263,"edges":266},[264,265],{"id":248,"type":249,"label":250,"file":133,"line":251},{"id":253,"type":254,"label":255,"file":133,"line":251,"wp_function":256},[267],{"from":248,"to":253,"sanitized":138},{"entryPoint":269,"graph":270,"unsanitizedCount":65,"severity":259},"\u003Ceasy-google-plus-widget> (easy-google-plus-widget.php:0)",{"nodes":271,"edges":274},[272,273],{"id":248,"type":249,"label":250,"file":133,"line":251},{"id":253,"type":254,"label":255,"file":133,"line":251,"wp_function":256},[275],{"from":248,"to":253,"sanitized":138},{"summary":277,"deductions":278},"The \"easy-googles-widget\" plugin version 0.2.7.2 exhibits a concerning security posture due to significant weaknesses in its handling of user input and authorization. The static analysis reveals a small but critical attack surface consisting of two AJAX handlers, neither of which has any authentication checks. This means any unauthenticated user can potentially trigger these handlers. Furthermore, all identified output (48 instances) is unescaped, creating a high risk of cross-site scripting (XSS) vulnerabilities. The taint analysis shows three flows with unsanitized paths, indicating potential for malicious data to be processed without proper validation, although no critical or high severity taint flows were specifically identified. The plugin's history of zero known CVEs is a positive sign, suggesting a lack of publicly disclosed vulnerabilities, but this is overshadowed by the immediate and severe risks present in the current codebase. The use of the `create_function` dangerous function is also a red flag. While the plugin uses prepared statements for SQL queries, this is a minor positive against the backdrop of critical security flaws. The lack of nonces and capability checks on its entry points, combined with the unescaped output, makes this plugin a significant risk for exploitation, particularly through XSS attacks.",[279,281,284,287,289,291],{"reason":280,"points":11},"AJAX handlers without auth checks",{"reason":282,"points":283},"All outputs are unescaped",8,{"reason":285,"points":286},"Taint flows with unsanitized paths",5,{"reason":288,"points":286},"Dangerous function create_function used",{"reason":290,"points":103},"No nonce checks",{"reason":292,"points":103},"No capability checks","2026-03-17T01:34:35.442Z",{"wat":295,"direct":304},{"assetPaths":296,"generatorPatterns":298,"scriptPaths":299,"versionParams":301},[297],"\u002Fwp-content\u002Fplugins\u002Feasy-googles-widget\u002FozoGPWidgetStyle.php",[],[300],"\u002Fwp-content\u002Fplugins\u002Feasy-googles-widget\u002FozoGPWidgetScript.js",[302,303],"easy-googles-widget\u002FozoGPWidgetStyle.php?ver=","easy-googles-widget\u002FozoGPWidgetScript.js?ver=",{"cssClasses":305,"htmlComments":312,"htmlAttributes":313,"restEndpoints":315,"jsGlobals":316,"shortcodeOutput":318},[306,307,308,309,310,311],"ozoGPAuthor","ozoGPstatus","photo","photos","hr","ozoGPcomments",[],[314],"data-widget-id",[],[317],"ajax_object",[]]