[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fs84PDDtkTFWDSJ6UGyPoCpAuyp_GNj23Z9kdsgNV8a8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":137,"fingerprints":219},"evolution-twitter-timeline","AH Twitter Timeline Widget","1.0.8","Andreas Hecht","https:\u002F\u002Fprofiles.wordpress.org\u002Fahecht\u002F","\u003Cp>Creates a new and simple to use widget that outputs the new awesome Twitter Embedded Timeline from your Twitter account. Looks nice in Sidebar and Footer.\u003C\u002Fp>\n\u003Ch3>How to use the Widget\u003C\u002Fh3>\n\u003Cp>Activate Plugin, drag »AH Twitter Timeline Widget« into your Sidebar or Footer, fill out the form of the widget and you are ready!\u003C\u002Fp>\n","Creates a new and simple to use widget that outputs the new awesome Twitter Embedded Timeline from your Twitter account. Looks nice in Sidebar and Foo …",100,9159,3,"2017-09-23T16:30:00.000Z","4.8.28","4.6","",[19,20,21,22,23],"embedded-timeline","timeline","twitter","twitter-timeline","twitter-timeline-widget","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fevolution-twitter-timeline\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fevolution-twitter-timeline.1.0.8.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"ahecht",8,9820,30,84,"2026-04-04T17:08:25.593Z",[39,58,78,99,119],{"slug":21,"name":40,"version":41,"author":40,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":56,"download_link":57,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"Twitter","2.0.5","https:\u002F\u002Fprofiles.wordpress.org\u002Ftwitter\u002F","\u003Cp>Embed Twitter content, improve sharing on Twitter, convert your web audience into Twitter or Periscope subscribers, and easily track visits to your website from Twitter advertising.\u003C\u002Fp>\n\u003Cp>Requires PHP version 5.6 or greater.\u003C\u002Fp>\n\u003Ch4>Embed Twitter content\u003C\u002Fh4>\n\u003Cp>Embed Twitter content by pasting a URL, customizing a shortcode, or in a widget area.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Tweet\" title=\"single Tweet embed\" rel=\"nofollow ugc\">single Tweet\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Profile-Timeline\" title=\"Twitter embedded profile timeline\" rel=\"nofollow ugc\">profile timeline\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-List-Timeline\" title=\"Twitter embedded list timeline\" rel=\"nofollow ugc\">list timeline\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Collection-Timeline\" title=\"Twitter embedded collection\" rel=\"nofollow ugc\">collection\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FMoments\" title=\"Twitter embedded Moment\" rel=\"nofollow ugc\">Moment\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Customize embed display to match your theme. Choose a light or dark background, customize link and border colors, and customize timeline template components through your site’s WordPress administrative interface.\u003C\u002Fp>\n\u003Cp>The plugin automatically customizes an embed’s template text to match the locale of your site, optimally loads Twitter’s JavaScript to improve site speed and extensibility, and handles advanced use cases such as articles loaded asynchronously via the WordPress API.\u003C\u002Fp>\n\u003Ch4>Grow your Twitter audience\u003C\u002Fh4>\n\u003Cp>Automatically generate link previews for your site’s URLs shared on Twitter using \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FCards\" rel=\"nofollow ugc\">Twitter Cards markup\u003C\u002Fa> . Easily identify your site and author Twitter accounts through your site and user administrative interfaces.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FTweet-Button\" rel=\"nofollow ugc\">Tweet button\u003C\u002Fa> to public posts to encourage your visitors to share your content on Twitter. Visitors may see recommended accounts to follow after sharing your content including your site and its authors.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FFollow-Button\" rel=\"nofollow ugc\">Follow button\u003C\u002Fa> to convert your site visitors into Twitter subscribers.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FPeriscope-On-Air-Button\" rel=\"nofollow ugc\">Periscope On Air button\u003C\u002Fa> to convert your site visitors into Periscope subscribers.\u003C\u002Fp>\n\u003Ch4>Improve Twitter advertising campaigns\u003C\u002Fh4>\n\u003Cp>Easily add a Twitter website tag to your website to track the effectiveness and \u003Ca href=\"https:\u002F\u002Fbusiness.twitter.com\u002Fen\u002Fhelp\u002Fcampaign-measurement-and-analytics\u002Fconversion-tracking-for-websites.html\" rel=\"nofollow ugc\">conversion rates\u003C\u002Fa> of Twitter advertising campaigns or \u003Ca href=\"https:\u002F\u002Fbusiness.twitter.com\u002Fen\u002Ftargeting\u002Ftailored-audiences.html\" rel=\"nofollow ugc\">build tailored audiences\u003C\u002Fa> to target your Twitter advertisements for your website audience.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Docs and active development\u003C\u002Fstrong>\u003Cbr \u002F>\n  Contribute to the plugin, submit pull requests, or run test suites through the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\" rel=\"nofollow ugc\">Twitter plugin for WordPress GitHub repository\u003C\u002Fa>.\u003Cbr \u002F>\n  View \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\" rel=\"nofollow ugc\">Twitter for WordPress documentation\u003C\u002Fa> to learn more about customization through WordPress filters.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Official Twitter and Periscope plugin for WordPress. Embed content and grow your audience. Requires PHP 5.6 or greater.",10000,705891,50,32,"2019-07-24T22:59:00.000Z","5.2.24","4.7",[19,53,21,54,55],"embedded-tweet","twitter-list","twitter-profile","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftwitter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":50,"requires_at_least":71,"requires_php":17,"tags":72,"homepage":76,"download_link":77,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-twitter-feeds","WP Twitter Feeds","1.5","Team Startbit","https:\u002F\u002Fprofiles.wordpress.org\u002Fvivacityinfotechjaipur\u002F","\u003Cp>An easy Twitter feeds widget that provides facility to display twitter tweets on your website using the latest Twitter 1.1 API. A simple widget which lets you add your latest tweets in widget areas. Get started in just a few clicks and use the provided Widget to easily display your Tweets on your website.\u003C\u002Fp>\n\u003Cp>Now you don`t need to copy and paste the code from twitter with your settings anymore, just install the plugin and set the options.\u003Cbr \u002F>\nBy option page, you can define the duration of fade effect, the number of tweet to see and other things.\u003C\u002Fp>\n\u003Cp>The “WP Twitter Feeds” Widget will never require your Twitter password, because it based on Open Authentication (OAuth) keys and secrets, that you will get by creating your application at Twitter. It gets all your required data from API. Incase you change your password, you don’t need to update your Widget in your Blog. This plugin is basically fork of: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-twitter-tweets\u002F\" rel=\"ugc\">Planet Interactive\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English(US) (en_Us)\u003C\u002Fli>\n\u003Cli>French (fr_FR)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Plugin Features\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>*Easy install\n*Very easy to configure.\n*Display Tweets with a Widget.\n*Choose to show a profile image, Tweets border, Tweets theme and much more.\n*Multiple instance so you can use Twitter widget at multiple places.\n*Different color Options.\n*Lightweight and loading fast\n*Set maximum number of tweets to display\n*Turn on\u002Foff displaying avatar\n*Supports v1.1 of the Twitter API\n*Slider for Tweets\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Rate Us \u002F Feedback\u003C\u002Fh4>\n\u003Cp>Please take the time to let us and others know about your experiences by leaving a review, so that we can improve the plugin for you and other users.\u003C\u002Fp>\n\u003Ch4>Want More?\u003C\u002Fh4>\n\u003Cp>If You Want more functionality or some modifications, just drop us a line what you want and we will try to add or modify the plugin functions.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Thanks to [Rhodri George](News Ticker) for great help with the js file.\u003C\u002Fli>\n\u003Cli>Thanks to the [Twitter.com] for the great API.\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Twitter Feeds - A simple widget which lets you add your latest tweets in just a few clicks on your website.",3000,187179,82,18,"2019-06-18T10:35:00.000Z","4.0",[73,22,74,75,59],"twitter-feeds","twitter-widget","twitter-widget-for-wordpress","https:\u002F\u002Fwww.startbitsolutions.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-twitter-feeds.1.5.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":11,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":97,"download_link":98,"security_score":11,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"yahman-add-ons","YAHMAN Add-ons","0.9.30","YAHMAN","https:\u002F\u002Fprofiles.wordpress.org\u002Fback2nature\u002F","\u003Cp>Page views,Google Adsense,Analytics,Social,Profile,Table of contents,Related Posts,sitemap,SEO,JSON-LD structured data,Open Graph protocol(OGP),Blog card,Twitter timeline,Facebook timeline,Carousel Slider etc…\u003C\u002Fp>\n","YAHMAN Add-ons has Multiple functions.",1000,95737,2,"2025-04-08T23:10:00.000Z","6.8.5","4.9.8","5.4",[94,95,96,22],"pageviews","popular-posts","table-of-contents","https:\u002F\u002Fdev.back2nature.jp\u002Fen\u002Fyahman-add-ons\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyahman-add-ons.0.9.30.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":11,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":17,"tags":113,"homepage":117,"download_link":118,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"any-user-twitter-feed","Any User Twitter Feed","1.0","sellersbay","https:\u002F\u002Fprofiles.wordpress.org\u002Fsellersbay\u002F","\u003Cp>Embed anyone’s Twitter Timeline using only their username, or display tweets based on a keyword. Fully compatible with the latest Twitter API and guaranteed to work even with the forthcoming twitter changes!\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Embed timelines using only username\u003C\u002Fli>\n\u003Cli>Show tweets which contain a keyword\u003C\u002Fli>\n\u003Cli>Highly configurable, many visual options\u003C\u002Fli>\n\u003Cli>Using Twitter 1.1 API with authentication\u003C\u002Fli>\n\u003Cli>No JavaScript\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Go Pro and Get Many More Features!  \u003Ca href=\"http:\u002F\u002Fwww.webdesignservices.net\u002Ffree-wordpress-twitter-plugin\u002Fproduct\u002F53-wordpress-twitter-feed-slider.html\" rel=\"nofollow ugc\">WordPress Any User Twitter Feed PRO\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>PRO FEATURES!\u003C\u002Fp>\n\u003Col>\n\u003Cli>Embed timelines using only username\u003C\u002Fli>\n\u003Cli>New! Slider\u002FScroll Option (pro version only)\u003C\u002Fli>\n\u003Cli>New! Side Tab Option, so it is shown as a tab on the side of your screen!\u003C\u002Fli>\n\u003Cli>New! Slider speed control option (pro version only)\u003C\u002Fli>\n\u003Cli>New! follow me button, which can use any username of your choice. (pro version only)\u003Cbr \u002F>\n6. New! Conflict switch to help it work with other jQuery plugins (pro version only)\u003C\u002Fli>\n\u003Cli>Show tweets which contain a keyword\u003C\u002Fli>\n\u003Cli>Highly configurable, many visual options\u003C\u002Fli>\n\u003Cli>Using Twitter 1.1 API with authentication\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.webdesignservices.net\u002Ffree-wordpress-twitter-plugin\u002Fproduct\u002F53-wordpress-twitter-feed-slider.html\" rel=\"nofollow ugc\"> GO PRO AND GET FREE TICKET SUPPORT!\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n","Embed anyone's Twitter Timeline using only their username, or display tweets based on a keyword. Fully compatible with the latest Twitter API and …",200,18563,17,"2016-01-17T17:08:00.000Z","4.3.34","3.5",[114,21,115,116,22],"search","twitter-search","twitter-sidebar","http:\u002F\u002Fwww.webdesignservices.net\u002Ffree-wordpress-twitter-plugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fany-user-twitter-feed.2.0.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":11,"num_ratings":129,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":17,"tags":133,"homepage":135,"download_link":136,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-twitter-widget-by-ryoking","WP Twitter widget by rYokiNG","1.1","rYokiNG","https:\u002F\u002Fprofiles.wordpress.org\u002Fdomnoenkhamfu\u002F","\u003Cp>WP Twitter widget easy to create twitter feed in your blog for settings Twitter API support display user timeline a collection recent Tweets posted by the user indicated by the screen_name or user_id parameters. Each user timeline protected, user will authenticated for use twitter api approved follower of the timeline.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>Returns most recent mentions (tweets containing a users’s @screen_name) for the authenticating user.\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Cp>Ordered list:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Custom screen name\u003C\u002Fli>\n\u003Cli>Twitter header\u003C\u002Fli>\n\u003Cli>Support instagram, youtube, link, checkin, foursqure, etc\u003C\u002Fli>\n\u003Cli>Support follow\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Unordered list:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add option footer \u003C\u002Fli>\n\u003Cli>support process urls \u003C\u002Fli>\n\u003Cli>hide retwitted and replay user_mentions\u003C\u002Fli>\n\u003Cli>more media support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Here’s a example link to \u003Ca href=\"http:\u002F\u002Faustraliapods.com\u002F\" title=\"Example twitter widget\" rel=\"nofollow ugc\">Example\u003C\u002Fa>\u003C\u002Fp>\n","free twitter widget for wordpress with api 1.1.",70,9146,1,"2013-07-27T08:31:00.000Z","3.5.2","3.0.1",[21,134,73,22,74],"twitter-api","http:\u002F\u002Fryokingz.blogspot.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-twitter-widget-by-ryoking.1.1.zip",{"attackSurface":138,"codeSignals":154,"taintFlows":207,"riskAssessment":208,"analyzedAt":218},{"hooks":139,"ajaxHandlers":150,"restRoutes":151,"shortcodes":152,"cronEvents":153,"entryPointCount":27,"unprotectedCount":27},[140,146],{"type":141,"name":142,"callback":143,"file":144,"line":145},"action","plugins_loaded","evolution_twitter_timeline_load_plugin_textdomain","evolution-twitter-timeline.php",168,{"type":141,"name":147,"callback":148,"file":144,"line":149},"widgets_init","closure",175,[],[],[],[],{"dangerousFunctions":155,"sqlUsage":156,"outputEscaping":158,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":206},[],{"prepared":27,"raw":27,"locations":157},[],{"escaped":159,"rawEcho":160,"locations":161},6,27,[162,165,167,169,171,173,175,176,177,179,181,182,183,185,187,188,189,191,193,194,195,197,199,200,201,203,205],{"file":144,"line":163,"context":164},65,"raw output",{"file":144,"line":166,"context":164},67,{"file":144,"line":168,"context":164},69,{"file":144,"line":170,"context":164},71,{"file":144,"line":172,"context":164},124,{"file":144,"line":174,"context":164},125,{"file":144,"line":174,"context":164},{"file":144,"line":174,"context":164},{"file":144,"line":178,"context":164},129,{"file":144,"line":180,"context":164},130,{"file":144,"line":180,"context":164},{"file":144,"line":180,"context":164},{"file":144,"line":184,"context":164},134,{"file":144,"line":186,"context":164},135,{"file":144,"line":186,"context":164},{"file":144,"line":186,"context":164},{"file":144,"line":190,"context":164},139,{"file":144,"line":192,"context":164},140,{"file":144,"line":192,"context":164},{"file":144,"line":192,"context":164},{"file":144,"line":196,"context":164},144,{"file":144,"line":198,"context":164},145,{"file":144,"line":198,"context":164},{"file":144,"line":198,"context":164},{"file":144,"line":202,"context":164},149,{"file":144,"line":204,"context":164},150,{"file":144,"line":204,"context":164},[],[],{"summary":209,"deductions":210},"The \"evolution-twitter-timeline\" plugin v1.0.8 presents a generally good security posture based on the provided static analysis. The plugin exhibits no identifiable attack surface through AJAX handlers, REST API routes, shortcodes, or cron events, which is a significant strength. Furthermore, it avoids dangerous functions, file operations, and external HTTP requests, and importantly, all detected SQL queries utilize prepared statements, indicating a solid defense against common database injection vulnerabilities. The absence of known CVEs and historical vulnerabilities is also a positive indicator of the plugin's security.\n\nHowever, there are some areas for concern. The most notable weakness is the significantly low percentage of properly escaped output (18%). This suggests that user-supplied data or dynamic content might be rendered directly into the HTML without adequate sanitization, potentially opening the door to Cross-Site Scripting (XSS) vulnerabilities. Additionally, the complete lack of nonce checks and capability checks, while not directly exploitable due to the absence of an attack surface, indicates a missed opportunity to implement robust authorization and prevent CSRF attacks should an entry point be introduced in the future. The absence of taint analysis results might be due to the plugin's limited functionality or how the analysis was performed.\n\nIn conclusion, the plugin's strengths lie in its minimal attack surface and secure database practices. The primary risk stems from the inadequate output escaping, which requires immediate attention to prevent potential XSS issues. While the absence of checks for nonces and capabilities isn't an active vulnerability, it represents a gap in best security practices that could become relevant if the plugin evolves.",[211,213,216],{"reason":212,"points":33},"Low percentage of properly escaped output",{"reason":214,"points":215},"No nonce checks implemented",5,{"reason":217,"points":215},"No capability checks implemented","2026-03-16T20:37:51.249Z",{"wat":220,"direct":225},{"assetPaths":221,"generatorPatterns":222,"scriptPaths":223,"versionParams":224},[],[],[],[],{"cssClasses":226,"htmlComments":227,"htmlAttributes":228,"restEndpoints":233,"jsGlobals":234,"shortcodeOutput":235},[22],[],[229,230,231,232],"data-width","data-height","data-theme","data-link-color",[],[],[236,237,238],"\u003Ca class=\"twitter-timeline\" href=\"https:\u002F\u002Ftwitter.com\u002F"," Tweets von @","\u003C\u002Fa>"]