[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fV6PXMryqpiVyUYHPulS9Qmu7viu_B-q0iF9_3ZvcEbk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":54,"analysis":153,"fingerprints":428},"facebook-photo-fetcher","Social Photo Fetcher","3.0.4","JK","https:\u002F\u002Fprofiles.wordpress.org\u002Fjustin_k\u002F","\u003Cp>Social Photo Fetcher (previously called “Facebook Photo Fetcher”) allows you to quickly and easily generate WordPress photo galleries from Facebook albums.\u003C\u002Fp>\n\u003Cp>The idea was inspired by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ffotobook\u002F\" rel=\"ugc\">Fotobook\u003C\u002Fa>, though its approach is fundamentally different: while Fotobook’s emphasis is on automation, this plugin allows a great deal of customization.  With it you can create galleries in any Post or Page you like, right alongside your regular content. You do this simply by putting a “magic HTML tag” in the post’s content – much like \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FGallery_Shortcode\" rel=\"nofollow ugc\">WordPress Shortcode\u003C\u002Fa>. Upon saving, the tag will instantly be populated with the Facebook album content. Presentation is fully customizable via parameters to the “magic tag” – you can choose to show only a subset of an album’s photos, change the number of photos per column, show photo captions, and more.  Plus, Social Photo Fetcher doesn’t limit you to just your own albums: it can create galleries from fanpages as well.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Uses Facebook’s API to instantly create WordPress photo galleries from Facebook albums.\u003C\u002Fli>\n\u003Cli>Galleries are fully customizable: you can import complete albums, select excerpts, random excerpts, album descriptions, photo captions, and more.\u003C\u002Fli>\n\u003Cli>Galleries can be organized however you like: in any post or page, alone or alongside your other content.\u003C\u002Fli>\n\u003Cli>Simple PHP template function allows programmers to manually embed albums in any template or widget.\u003C\u002Fli>\n\u003Cli>Built-in LightBox: Photos appear in attractive pop-up overlays without the need for any other plugins.\u003C\u002Fli>\n\u003Cli>Admin panel handles all the setup for you: Just login and you’re ready to start making albums.\u003C\u002Fli>\n\u003Cli>No custom database tables required; galleries live in regular post content.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For a Demo Gallery, see the \u003Ca href=\"https:\u002F\u002Fwww.justin-klein.com\u002Fprojects\u002Ffacebook-photo-fetcher\" rel=\"nofollow ugc\">plugin’s homepage\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donate\u003C\u002Fh3>\n\u003Cp>Many hours have gone into developing & maintaining this plugin, far beyond my own personal needs. If you find it useful, please consider \u003Ca href=\"https:\u002F\u002Fwww.justin-klein.com\u002Fprojects\u002Ffacebook-photo-fetcher\u002F#donate\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa> to help support its continued development.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin uses the Facebook API to fetch photo albums from Facebook. Facebook’s security rules require that apps must authorize from one specific, known location. In order comply with this requirement, when you first authorize the plugin from its admin panel, a Facebook dialog will be initiated via my own authentication server. The dialog itself is shown directly by Facebook, and Facebook handles the entire login process – no personal information will be transferred via my server, as Facebook only supplies a single-use token which I then hand back to your site to be stored. This is what the plugin uses in order to fetch the photos. For more information about how the Facebook authorization process works, please see \u003Ca href=\"https:\u002F\u002Fdevelopers.facebook.com\u002Fdocs\u002Ffacebook-login\u002Fweb\" rel=\"nofollow ugc\">Facebook’s documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Usage of this plugin means the site administrator is consenting to \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fpolicy.php\" rel=\"nofollow ugc\">Facebook’s data policy\u003C\u002Fa>. Fetched album data will be stored in your WordPress database, in posts or pages of your choosing. It can be removed by deleting those posts or pages. You are solely responsible for the security and protection of the fetched data, as it resides on and is hosted within your own WordPress site.\u003C\u002Fp>\n\u003Cp>I do not store or process any of your data.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Please direct all support requests \u003Ca href=\"https:\u002F\u002Fwww.justin-klein.com\u002Fprojects\u002Ffacebook-photo-fetcher#feedback\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n","Allows you to automatically create Wordpress photo galleries from Facebook albums.  Simple to use and highly customizable.",1000,258658,74,12,"2024-04-04T23:45:00.000Z","6.5.8","2.5","",[20,21,22,23,24],"facebook","gallery","images","photos","pictures","https:\u002F\u002Fwww.justin-klein.com\u002Fprojects\u002Ffacebook-photo-fetcher","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffacebook-photo-fetcher.3.0.4.zip",70,1,"2025-12-08 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-62872","social-photo-fetcher-cross-site-request-forgery","Social Photo Fetcher \u003C= 3.0.4 - Cross-Site Request Forgery","The Social Photo Fetcher plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.4. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=3.0.4","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-12-12 20:58:33",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fb00f98fd-2c6e-4e4d-baa2-1eca3f41a56f?source=api-prod",{"slug":47,"display_name":7,"profile_url":8,"plugin_count":48,"total_installs":49,"avg_security_score":50,"avg_patch_time_days":51,"trust_score":52,"computed_at":53},"justin_k",3,1900,78,1466,64,"2026-04-04T05:42:21.579Z",[55,73,90,111,134],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":17,"requires_php":18,"tags":68,"homepage":70,"download_link":71,"security_score":72,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"simplegal","SimpleGal","1.2","dath","https:\u002F\u002Fprofiles.wordpress.org\u002Fdath\u002F","\u003Cp>With the \u003Cstrong>SimpleGal\u003C\u002Fstrong> plugin you can simply create galleries.\u003Cbr \u002F>\nJust upload your images, add the \u003Cstrong>SimpleGal\u003C\u002Fstrong> Shortcode to your posts or pages and the gallery will appear.\u003Cbr \u002F>\nFor an optimal gallery view you should install a lightbox plugin.\u003C\u002Fp>\n\u003Cp>Mit dem \u003Cstrong>SimpleGal\u003C\u002Fstrong> Plugin kannst du ganz einfach Galerien erstellen.\u003Cbr \u002F>\nEinfach deine Bilder hochladen, den \u003Cstrong>SimpleGal\u003C\u002Fstrong> Shortcode deinem Artikel oder deiner Seite hinzuf&uuml;gen und schon ist deine Galerie fertig.\u003Cbr \u002F>\nF&uuml;r eine optimale Galerie-Darstellung solltest du ein Lightbox-Plugin installieren.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Available languages:\u003C\u002Fstrong> English and German\u003C\u002Fp>\n","Create an Image-Gallery in 5 simple Steps. Just add the shortcode to your posts.",30,6209,0,"2012-03-01T16:34:00.000Z","3.3.2",[21,22,69,23,24],"lightbox","http:\u002F\u002Fwww.dath.info\u002Fwebwork\u002Fwp-plugins\u002Fsimplegal\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimplegal.1.2.zip",85,{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":28,"last_updated":18,"tested_up_to":84,"requires_at_least":85,"requires_php":18,"tags":86,"homepage":87,"download_link":88,"security_score":83,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":89},"gphotos","GPhotos","1.7","c-plusweb.com","https:\u002F\u002Fprofiles.wordpress.org\u002Fc-pluswebcom\u002F","\u003Cp>\u003Cstrong>GPHotos\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You upload your images in GPhotos system, you give a link and a title to it, and then you insert the shortcode [GPhotos] in your article. Voila!\u003C\u002Fp>\n\u003Cp>You can contact the author at: \u003Ca href=\"mailto:gregoire.felix@gmail.com\" rel=\"nofollow ugc\">gregoire.felix@gmail.com\u003C\u002Fa>.\u003C\u002Fp>\n","GPhoto is a simple image gallery, easily manageable.",10,3479,100,"3.4.2","3.0",[21,22,23,24],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgphotos\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgphotos.zip","2026-03-15T10:48:56.248Z",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":98,"downloaded":99,"rating":100,"num_ratings":100,"last_updated":101,"tested_up_to":102,"requires_at_least":103,"requires_php":104,"tags":105,"homepage":107,"download_link":108,"security_score":109,"vuln_count":48,"unpatched_count":65,"last_vuln_date":110,"fetched_at":30},"fancybox-for-wordpress","FancyBox for WordPress","3.3.7","colorlibplugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fcolorlibplugins\u002F","\u003Cp>Seamlessly integrates FancyBox into your blog: Upload, activate, and you’re done. Additional configuration optional.\u003C\u002Fp>\n\u003Cp>You can easily customize almost anything you can think about fancybox lightbox: the border, margin width and color, zoom speed, animation type, close button position, overlay color and opacity and even more advanced option like several options to group images into galleries, and more…\u003C\u002Fp>\n\u003Cp>By default, the plugin will use jQuery to apply FancyBox to ANY thumbnails that link directly to an image. This includes posts, the sidebar, etc, so you can activate it and it will be applied automatically.\u003C\u002Fp>\n\u003Ch4>Further Reading\u003C\u002Fh4>\n\u003Cp>This plugin is developed and maintained by Colorlib. Which is well know for their free \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002F\" rel=\"nofollow ugc\">\u003C\u002Fa>WordPress themes. However, now they are looking to extend their presence in plugin development and believe that FancyBox lightbox is a great way to start.\u003C\u002Fp>\n\u003Cp>If you are new to WordPress and want to lear more we have got you covered. Colorlib will teach you have to \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002F\" rel=\"nofollow ugc\">start a blog\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fhow-to-make-a-website\u002F\" rel=\"nofollow ugc\">create a website\u003C\u002Fa> and much more. If you are already familiar with WordPress you likely want to learn how to make it faster and more reliable. That’s when you want to look into hosting and more specifically \u003Ca href=\"http:\u002F\u002Fcolorlib.com\u002Fwp\u002Fwordpress-hosting\" rel=\"nofollow ugc\">WordPress hosting\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you enjoy using FancyBox lightbox for WordPress please leave a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Ffancybox-for-wordpress\u002Freviews\u002F?filter=5\" rel=\"ugc\">positive feedback\u003C\u002Fa>. We are committed to make it the best lightbox plugin for WordPress.\u003C\u002Fp>\n","Seamlessly integrates FancyBox lightbox into your WordPress blog: Upload, activate, and you're done. Additional configuration optional.",40000,1940597,92,"2025-05-07T14:18:00.000Z","6.8.5","5.6","7.4",[106,22,69,23,24],"fancybox","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffancybox-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffancybox-for-wordpress.3.3.7.zip",96,"2025-05-13 00:00:00",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":100,"num_ratings":121,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":18,"tags":125,"homepage":131,"download_link":132,"security_score":109,"vuln_count":81,"unpatched_count":65,"last_vuln_date":133,"fetched_at":30},"easy-facebook-likebox","Easy Social Feed – Social Photos Gallery and Post Feed for WordPress","6.7.5","Sajid Javed","https:\u002F\u002Fprofiles.wordpress.org\u002Fsjaved\u002F","\u003Cp>Easy Social Feed helps you display your latest \u003Cstrong>Instagram photos and videos, Facebook page posts and events, and YouTube videos\u003C\u002Fstrong> on your website. It is responsive, SEO-friendly, easy to set up and offers live preview customization for appearance and layout.\u003C\u002Fp>\n\u003Cp>Connect your account using the latest secure oAuth login and get a shortcode auto-generated. No app review required. Manual access token support is also available for Personal or Business accounts.\u003C\u002Fp>\n\u003Cp>You can enable only the module you need (Facebook, Instagram or YouTube) so unrelated code is not loaded, improving performance.\u003C\u002Fp>\n\u003Cp>After connecting your account, \u003Cstrong>simply copy and paste the shortcode, or use a block or widget\u003C\u002Fstrong>, to embed your feed anywhere on your site.\u003C\u002Fp>\n\u003Ch3>Watch how Easy Social Feed works:\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F9ZvHmlozcHA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cem>“\u003Cstrong>This Plugin Rocks!\u003C\u002Fstrong> I have tried a few other plugins, which either didn’t work right out of the box, or failed to work after a week.\u003Cbr \u002F>\nTHIS plugin is like magic. It was simple to install, activate, connect my Facebook pages, and add the widget.\u003Cbr \u002F>\nAnd, it looks beautiful as can be seen on my page.\u003Cbr \u002F>\nThank you for making this plugin!”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fthis-plugin-rocks-61\u002F\" rel=\"ugc\">sayhi2lonnie\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>See what hundreds of users say, reviews on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Feasy-facebook-likebox\u002Freviews\u002F?filter=5\" rel=\"ugc\">WordPress.org:\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Instagram Feed\u003C\u002Fh3>\n\u003Cp>Display photos, videos, reels, stories and gallery posts from your Instagram account in multiple designs with full control over styling.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>One minute\u003C\u002Fstrong> setup. Easy setup flow to configure and go live in minutes\u003C\u002Fli>\n\u003Cli>Quick secure oAuth connection (no app review needed)\u003C\u002Fli>\n\u003Cli>Manual access token support (Personal & Business)\u003C\u002Fli>\n\u003Cli>Multiple layouts: \u003Cstrong>Grid, Masonry, Full-width, Half-width, Row, Carousel\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Live preview customization of colors, spacing, borders, font sizes, etc \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Load More\u003C\u002Fstrong> button for unlimited posts (Pro) \u003C\u002Fli>\n\u003Cli>Header display and Follow button toggle\u003C\u002Fli>\n\u003Cli>Auto-generated shortcode after connection\u003C\u002Fli>\n\u003Cli>Powerful \u003Cstrong>shortcode generator\u003C\u002Fstrong>, you don’t need to mess up with shortcode attributes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple-feeds\u003C\u002Fstrong> – There is no limitation to display the number of feeds on your site. Our shortcode and blocks work independently.\u003C\u002Fli>\n\u003Cli>Popup lightbox for media with navigation (Pro)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hashtag feed\u003C\u002Fstrong> support (Pro)\u003C\u002Fli>\n\u003Cli>Featured posts option (Pro)\u003C\u002Fli>\n\u003Cli>Images and Videos gallery – Display multiple images in a gallery carousel (Pro)\u003C\u002Fli>\n\u003Cli>Custom links (shoppable posts) option (Pro)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Visual moderation\u003C\u002Fstrong> show or hide posts from feed (Pro)\u003C\u002Fli>\n\u003Cli>Likes and Comment display in popup (Pro) \u003C\u002Fli>\n\u003Cli>Priority support (pro)- Above all, We stand firmly behind our plugin and provide top-notch priority support to the premium plan users via email.\u003C\u002Fli>\n\u003Cli>And much more in the pack!\u003C\u002Fli>\n\u003Cli>Many more features to come\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Feasysocialfeed.com\u002Fmy-instagram-feed-demo\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>*”\u003Cstrong>Much better than the others\u003C\u002Fstrong> – I’m really happy with this – and it’s better than the other plugins I’ve tried that offer the same thing. Thank you!” \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fmuch-better-than-the-others-2\u002F\" rel=\"ugc\">sarahtaylor777\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Facebook Feed\u003C\u002Fh3>\n\u003Cp>Display Facebook page posts including images, videos, links, status, albums, events and more – fully styled and responsive.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Support for posts, photos, videos, links, status updates and albums\u003C\u002Fli>\n\u003Cli>Event feed display with details (Pro)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Responsive\u003C\u002Fstrong> layouts for all devices\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live preview\u003C\u002Fstrong> customization for styles\u003C\u002Fli>\n\u003Cli>Multiple layout options: Full-width, Half-width, Thumbnail, Row, Grid, Masonry, Carousel\u003C\u002Fli>\n\u003Cli>Caption words limit – Limit the number of words to display in the story on your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>PopUp\u003C\u002Fstrong> – Display images, videos, and albums in the advanced popup so your users never leave your site again. Also, navigate between post images using next and previous links in the popup\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Super fast\u003C\u002Fstrong> – Cache – It caches the posts, images and other content from Facebook and Instagram to minimize external requests to load the page faster.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple-feeds\u003C\u002Fstrong> – There is no limitation to display the number of feeds on your site. Our shortcode and widgets work independently.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Merged Feed\u003C\u002Fstrong> – Display multiple pages feed in a single feed using shortcode or block\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Visual moderation\u003C\u002Fstrong> show or hide posts from feed (Pro)\u003C\u002Fli>\n\u003Cli>Post-type filtering (photos, videos, events, etc.) (Pro)  \u003C\u002Fli>\n\u003Cli>Auto-generated shortcode + block\u002Fwidget support\u003C\u002Fli>\n\u003Cli>Share – Share buttons with each post in your feed to make it even more viral on social media.\u003C\u002Fli>\n\u003Cli>Read more – Read more button to read the full story on Facebook.\u003C\u002Fli>\n\u003Cli>Powerful \u003Cstrong>shortcode generator\u003C\u002Fstrong>, you don’t need to mess up with shortcode attributes\u003C\u002Fli>\n\u003Cli>Post images & videos gallery – Display all images and videos in the gallery carousel in PopUp (Pro)\u003C\u002Fli>\n\u003Cli>Advanced PopUp (pro)- Replaces the current PopUp with advanced and super-fast PopUp. Give your feed a look like FB so your users do not leave your site ever\u003C\u002Fli>\n\u003Cli>Display Likes and Comments\u003C\u002Fli>\n\u003Cli>Featured posts option (Pro)\u003C\u002Fli>\n\u003Cli>And much more in the pack!\u003C\u002Fli>\n\u003Cli>Many more features to come\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Feasysocialfeed.com\u002Fcustom-facebook-feed\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>YouTube Feed\u003C\u002Fh3>\n\u003Cp>Display your latest YouTube videos in a clean, responsive YouTube channel feed that fits your theme. Connect your channel, create a feed, and embed it anywhere using shortcode (a PHP snippet is also included).\u003C\u002Fp>\n\u003Cp>You can customize the layout and header, add per‑feed custom CSS, and control caching from the same Easy Social Feed interface for Facebook and Instagram.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Feasysocialfeed.com\u002Fcustom-youtube-feed\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Secure Google OAuth connection to connect your YouTube channel\u003C\u002Fli>\n\u003Cli>Accounts dashboard to manage connected channels (reconnect\u002Frefresh and disconnect)\u003C\u002Fli>\n\u003Cli>Bulk actions for managing accounts (when multiple accounts are available)\u003C\u002Fli>\n\u003Cli>Create unlimited feeds and embed each feed using a unique shortcode(Pro)\u003C\u002Fli>\n\u003Cli>Feed editor with Connect, Customize and Embed panels and a live preview workflow\u003C\u002Fli>\n\u003Cli>Responsive grid layout with control over columns and spacing for desktop, tablet and mobile\u003C\u002Fli>\n\u003Cli>Header controls for channel branding and key channel details\u003C\u002Fli>\n\u003Cli>Per‑feed settings for what to show on video cards (thumbnail, title, date and more)\u003C\u002Fli>\n\u003Cli>Smart caching with configurable refresh duration for faster loading and fewer external requests\u003C\u002Fli>\n\u003Cli>Clear all caches from settings and clear cache for a single feed from the feeds list\u003C\u002Fli>\n\u003Cli>Per‑feed Custom CSS with helper selectors so advanced styling stays easy and organized\u003C\u002Fli>\n\u003Cli>Pro: \u003Cstrong>Load More\u003C\u002Fstrong> button to show more videos without reloading the page\u003C\u002Fli>\n\u003Cli>Pro: \u003Cstrong>Popup \u002F Lightbox\u003C\u002Fstrong> video gallery with rich details and stats (views, likes, comments)\u003C\u002Fli>\n\u003Cli>Pro: Popup options for autoplay, mute, and showing description and stats\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Facebook Page Plugin (Like Box)\u003C\u002Fh3>\n\u003Cp>Embed the Facebook Page Plugin to display page likes, faces, timeline or events using shortcode and widget.\u003C\u002Fp>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Responsive and mobile friendly  \u003C\u002Fli>\n\u003Cli>Show or hide faces and header  \u003C\u002Fli>\n\u003Cli>Custom width and height settings  \u003C\u002Fli>\n\u003Cli>Support for 75+ locales  \u003C\u002Fli>\n\u003Cli>Timeline, Events and Messages tabs (Pro)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Feasysocialfeed.com\u002Ffaceook-page-plugin\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cem>“\u003Cstrong>Easy to use as the description\u003C\u002Fstrong> – awesome plugin and excellent support, easy to set up and more function, won’t affect the page speed, GREAT JOB!”\u003C\u002Fem> \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Feasy-to-use-as-the-description\u002F\" rel=\"ugc\">alexwee88\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Performance & Settings\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Smart caching for posts & media to minimize API calls and improve speed  \u003C\u002Fli>\n\u003Cli>Lazy loading support\u003C\u002Fli>\n\u003Cli>Option to load only active modules (disable unused modules for performance)  \u003C\u002Fli>\n\u003Cli>Configurable feed refresh intervals\u003C\u002Fli>\n\u003Cli>AI translation autofill on the Translation tab (Pro) to translate and fill feed labels into your selected language with one click  \u003C\u002Fli>\n\u003Cli>SEO friendly\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>TikTok Support (Separate Plugin)\u003C\u002Fh3>\n\u003Cp>Looking to embed TikTok videos and galleries on your site? Check out our sister plugin: \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-tiktok-feed\u002F\" rel=\"ugc\">Easy TikTok Feed\u003C\u002Fa>\u003C\u002Fstrong> the easiest way to display TikTok content on WordPress.\u003C\u002Fp>\n\u003Ch3>Embedding Options\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Gutenberg blocks\u003C\u002Fli>\n\u003Cli>Shortcodes  \u003C\u002Fli>\n\u003Cli>WordPress widget  \u003C\u002Fli>\n\u003Cli>Compatible with major page builders (Elementor, Divi, WPBakery, etc.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Compatibility\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>GDPR compliant, only publicly authorized data is displayed  \u003C\u002Fli>\n\u003Cli>Compatible with all major themes  \u003C\u002Fli>\n\u003Cli>Multilingual support  \u003C\u002Fli>\n\u003Cli>Priority support for Pro users\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>GDPR & cookie consent compatibility\u003C\u002Fh3>\n\u003Cp>Easy Social Feed includes a global GDPR mode that works automatically with the most popular \u003Cstrong>WordPress cookie consent and GDPR banner plugins\u003C\u002Fstrong>. When a supported cookie plugin is active, the feed will respect your visitors’ consent before loading Facebook or Instagram media, helping you stay compliant with privacy regulations.\u003C\u002Fp>\n\u003Cp>Out of the box, the plugin integrates seamlessly with these top cookie \u002F GDPR solutions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Real Cookie Banner by devowl.io  \u003C\u002Fli>\n\u003Cli>GDPR Cookie Compliance by Moove Agency  \u003C\u002Fli>\n\u003Cli>Cookie Notice by dFactory  \u003C\u002Fli>\n\u003Cli>GDPR Cookie Consent by WebToffee  \u003C\u002Fli>\n\u003Cli>CookieYes | GDPR Cookie Consent by CookieYes  \u003C\u002Fli>\n\u003Cli>Cookiebot by Cybot A\u002FS  \u003C\u002Fli>\n\u003Cli>Complianz by Really Simple Plugins  \u003C\u002Fli>\n\u003Cli>Borlabs Cookie by Borlabs  \u003C\u002Fli>\n\u003Cli>WPConsent by the WPConsent team  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Whether you search for an \u003Cstrong>“Instagram GDPR feed”\u003C\u002Fstrong>, \u003Cstrong>“Facebook GDPR feed”\u003C\u002Fstrong>, or \u003Cstrong>“cookie consent friendly social feed plugin”\u003C\u002Fstrong>, Easy Social Feed is built to plug into your existing consent setup instead of replacing it.\u003C\u002Fp>\n","Display Instagram, Facebook & YouTube feeds with photos, videos, reels, events & galleries. Fast, responsive & easy to set up.",30000,3431166,499,"2026-03-10T18:11:00.000Z","6.9.4","3.3",[126,127,128,129,130],"facebook-feed","facebook-posts","instagram-feed","instagram-gallery","instagram-photos","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-facebook-likebox","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-facebook-likebox.6.7.5.zip","2025-09-05 13:45:16",{"slug":135,"name":136,"version":137,"author":138,"author_profile":139,"description":140,"short_description":141,"active_installs":142,"downloaded":143,"rating":144,"num_ratings":145,"last_updated":146,"tested_up_to":123,"requires_at_least":147,"requires_php":18,"tags":148,"homepage":151,"download_link":152,"security_score":83,"vuln_count":65,"unpatched_count":65,"last_vuln_date":37,"fetched_at":30},"lightbox-photoswipe","Lightbox with PhotoSwipe","5.8.3","Arno Welzel","https:\u002F\u002Fprofiles.wordpress.org\u002Fawelzel\u002F","\u003Cp>This plugin integrates PhotoSwipe to WordPress. All linked images in a post or page will be displayed using PhotoSwipe, regardless if they are part of a gallery or single images.\u003C\u002Fp>\n\u003Cp>More about the original version of PhotoSwipe see here: \u003Ca href=\"http:\u002F\u002Fphotoswipe.com\" rel=\"nofollow ugc\">http:\u002F\u002Fphotoswipe.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can also display EXIF data from supported image types.\u003C\u002Fp>\n\u003Cp>As of version 4.0.0 this plugin requires at least WordPress 5.3 and PHP 7.0. Older PHP version will cause problems. In this case you have to upgrade your PHP version or ask your hoster to do so. Please note that WordPress itself also recommends at least PHP 7.4 – see \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Frequirements\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fabout\u002Frequirements\u002F\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Please keep in mind: not the visible thumbnail is relevant, but only the image link. Images should always be linked to the file and not to the attachment page. Since version 5.6.1 there is an option to fix attachment links which can be enabled if needed – however this may slow down your website since then all links on a page will be checked if they are attachment links.\u003C\u002Fp>\n","Integration of PhotoSwipe (http:\u002F\u002Fphotoswipe.com) for WordPress.",20000,937902,98,113,"2026-02-26T16:27:00.000Z","5.3",[149,21,22,69,150],"attachments","photoswipe","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flightbox-photoswipe\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightbox-photoswipe.5.8.3.zip",{"attackSurface":154,"codeSignals":189,"taintFlows":309,"riskAssessment":412,"analyzedAt":427},{"hooks":155,"ajaxHandlers":185,"restRoutes":186,"shortcodes":187,"cronEvents":188,"entryPointCount":65,"unprotectedCount":65},[156,162,166,172,177,181],{"type":157,"name":158,"callback":159,"file":160,"line":161},"action","plugins_loaded","fpf_load_textdomain","Main.php",50,{"type":157,"name":163,"callback":164,"file":160,"line":165},"wp_enqueue_scripts","fpf_enqueue_headerstuff",63,{"type":157,"name":167,"callback":168,"priority":169,"file":170,"line":171},"admin_menu","fpf_add_admin_page",99,"_admin_menu.php",6,{"type":173,"name":174,"callback":175,"priority":81,"file":170,"line":176},"filter","plugin_action_links","fpf_add_plugin_links",17,{"type":157,"name":178,"callback":179,"file":170,"line":180},"admin_head","fpf_admin_styles",28,{"type":157,"name":182,"callback":183,"file":184,"line":14},"wp_insert_post_data","fpf_run_main","_output_gallery.php",[],[],[],[],{"dangerousFunctions":190,"sqlUsage":191,"outputEscaping":193,"fileOperations":65,"externalRequests":28,"nonceChecks":65,"capabilityChecks":65,"bundledLibraries":308},[],{"prepared":65,"raw":65,"locations":192},[],{"escaped":28,"rawEcho":52,"locations":194},[195,198,199,201,203,205,207,208,210,211,212,214,215,216,218,219,220,222,223,224,226,227,229,230,232,234,236,238,240,242,244,246,248,250,252,253,255,257,258,260,262,264,266,268,270,272,274,276,277,279,280,282,284,286,288,290,292,294,296,298,300,302,304,306],{"file":170,"line":196,"context":197},57,"raw output",{"file":170,"line":13,"context":197},{"file":170,"line":200,"context":197},80,{"file":170,"line":202,"context":197},112,{"file":170,"line":204,"context":197},126,{"file":170,"line":206,"context":197},130,{"file":170,"line":206,"context":197},{"file":170,"line":209,"context":197},137,{"file":170,"line":209,"context":197},{"file":170,"line":209,"context":197},{"file":170,"line":213,"context":197},138,{"file":170,"line":213,"context":197},{"file":170,"line":213,"context":197},{"file":170,"line":217,"context":197},140,{"file":170,"line":217,"context":197},{"file":170,"line":217,"context":197},{"file":170,"line":221,"context":197},142,{"file":170,"line":221,"context":197},{"file":170,"line":221,"context":197},{"file":170,"line":225,"context":197},148,{"file":170,"line":225,"context":197},{"file":170,"line":228,"context":197},152,{"file":170,"line":228,"context":197},{"file":170,"line":231,"context":197},154,{"file":170,"line":233,"context":197},155,{"file":170,"line":235,"context":197},156,{"file":170,"line":237,"context":197},162,{"file":170,"line":239,"context":197},163,{"file":170,"line":241,"context":197},182,{"file":170,"line":243,"context":197},186,{"file":170,"line":245,"context":197},200,{"file":170,"line":247,"context":197},201,{"file":170,"line":249,"context":197},207,{"file":170,"line":251,"context":197},217,{"file":170,"line":251,"context":197},{"file":170,"line":254,"context":197},229,{"file":170,"line":256,"context":197},230,{"file":170,"line":256,"context":197},{"file":170,"line":259,"context":197},252,{"file":170,"line":261,"context":197},258,{"file":170,"line":263,"context":197},260,{"file":170,"line":265,"context":197},262,{"file":170,"line":267,"context":197},295,{"file":170,"line":269,"context":197},298,{"file":170,"line":271,"context":197},303,{"file":170,"line":273,"context":197},321,{"file":170,"line":275,"context":197},336,{"file":170,"line":275,"context":197},{"file":170,"line":278,"context":197},342,{"file":170,"line":278,"context":197},{"file":170,"line":281,"context":197},345,{"file":170,"line":283,"context":197},346,{"file":170,"line":285,"context":197},349,{"file":170,"line":287,"context":197},350,{"file":170,"line":289,"context":197},351,{"file":170,"line":291,"context":197},352,{"file":170,"line":293,"context":197},353,{"file":170,"line":295,"context":197},354,{"file":170,"line":297,"context":197},355,{"file":170,"line":299,"context":197},356,{"file":170,"line":301,"context":197},360,{"file":170,"line":303,"context":197},361,{"file":170,"line":305,"context":197},400,{"file":170,"line":307,"context":197},409,[],[310,381],{"entryPoint":311,"graph":312,"unsanitizedCount":380,"severity":39},"fpf_admin_page (_admin_menu.php:43)",{"nodes":313,"edges":369},[314,319,324,327,329,333,337,341,343,346,348,351,353,356,358,360,364],{"id":315,"type":316,"label":317,"file":170,"line":318},"n0","source","$_POST[$fpf_opt_access_token]",68,{"id":320,"type":321,"label":322,"file":170,"line":318,"wp_function":323},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":325,"type":316,"label":326,"file":170,"line":27},"n2","$_POST[$fpf_opt_token_expiration]",{"id":328,"type":321,"label":322,"file":170,"line":27,"wp_function":323},"n3",{"id":330,"type":316,"label":331,"file":170,"line":332},"n4","$_POST (x2)",66,{"id":334,"type":321,"label":335,"file":170,"line":13,"wp_function":336},"n5","echo() [XSS]","echo",{"id":338,"type":316,"label":339,"file":170,"line":340},"n6","$_POST[$fpf_opt_last_uid_search]",88,{"id":342,"type":321,"label":322,"file":170,"line":340,"wp_function":323},"n7",{"id":344,"type":316,"label":345,"file":170,"line":285},"n8","$_SERVER['HTTP_HOST']",{"id":347,"type":321,"label":335,"file":170,"line":285,"wp_function":336},"n9",{"id":349,"type":316,"label":350,"file":170,"line":295},"n10","$_SERVER['HTTP_USER_AGENT']",{"id":352,"type":321,"label":335,"file":170,"line":295,"wp_function":336},"n11",{"id":354,"type":316,"label":355,"file":170,"line":299},"n12","$_SERVER['SERVER_SOFTWARE']",{"id":357,"type":321,"label":335,"file":170,"line":299,"wp_function":336},"n13",{"id":359,"type":316,"label":317,"file":170,"line":332},"n14",{"id":361,"type":362,"label":363,"file":170,"line":332},"n15","transform","→ fpf_get()",{"id":365,"type":321,"label":366,"file":160,"line":367,"wp_function":368},"n16","wp_remote_get() [SSRF]",79,"wp_remote_get",[370,372,373,374,375,376,377,378,379],{"from":315,"to":320,"sanitized":371},false,{"from":325,"to":328,"sanitized":371},{"from":330,"to":334,"sanitized":371},{"from":338,"to":342,"sanitized":371},{"from":344,"to":347,"sanitized":371},{"from":349,"to":352,"sanitized":371},{"from":354,"to":357,"sanitized":371},{"from":359,"to":361,"sanitized":371},{"from":361,"to":365,"sanitized":371},9,{"entryPoint":382,"graph":383,"unsanitizedCount":380,"severity":39},"\u003C_admin_menu> (_admin_menu.php:0)",{"nodes":384,"edges":402},[385,386,387,388,389,390,391,392,393,394,395,396,397,398,399,400,401],{"id":315,"type":316,"label":317,"file":170,"line":318},{"id":320,"type":321,"label":322,"file":170,"line":318,"wp_function":323},{"id":325,"type":316,"label":326,"file":170,"line":27},{"id":328,"type":321,"label":322,"file":170,"line":27,"wp_function":323},{"id":330,"type":316,"label":331,"file":170,"line":332},{"id":334,"type":321,"label":335,"file":170,"line":13,"wp_function":336},{"id":338,"type":316,"label":339,"file":170,"line":340},{"id":342,"type":321,"label":322,"file":170,"line":340,"wp_function":323},{"id":344,"type":316,"label":345,"file":170,"line":285},{"id":347,"type":321,"label":335,"file":170,"line":285,"wp_function":336},{"id":349,"type":316,"label":350,"file":170,"line":295},{"id":352,"type":321,"label":335,"file":170,"line":295,"wp_function":336},{"id":354,"type":316,"label":355,"file":170,"line":299},{"id":357,"type":321,"label":335,"file":170,"line":299,"wp_function":336},{"id":359,"type":316,"label":317,"file":170,"line":332},{"id":361,"type":362,"label":363,"file":170,"line":332},{"id":365,"type":321,"label":366,"file":160,"line":367,"wp_function":368},[403,404,405,406,407,408,409,410,411],{"from":315,"to":320,"sanitized":371},{"from":325,"to":328,"sanitized":371},{"from":330,"to":334,"sanitized":371},{"from":338,"to":342,"sanitized":371},{"from":344,"to":347,"sanitized":371},{"from":349,"to":352,"sanitized":371},{"from":354,"to":357,"sanitized":371},{"from":359,"to":361,"sanitized":371},{"from":361,"to":365,"sanitized":371},{"summary":413,"deductions":414},"The \"facebook-photo-fetcher\" v3.0.4 plugin presents a mixed security posture. On the positive side, the static analysis shows a clean attack surface with no AJAX handlers, REST API routes, shortcodes, or cron events that are accessible without proper authentication or authorization checks.  Furthermore, the plugin avoids dangerous functions and file operations, and all SQL queries utilize prepared statements, which are strong indicators of secure coding practices.\n\nHowever, significant concerns arise from the output escaping and the vulnerability history.  Only 2% of outputs are properly escaped, leaving the plugin highly susceptible to Cross-Site Scripting (XSS) vulnerabilities.  The taint analysis also indicates unsanitized paths, although currently without critical or high severity.  The plugin has a history of known vulnerabilities, with one medium severity CVE currently unpatched. This unpatched vulnerability, coupled with the widespread issue of improper output escaping, significantly increases the risk of exploitation.\n\nIn conclusion, while the plugin has a secure entry point design and robust data handling for SQL, the severe lack of output escaping and the presence of an unpatched vulnerability create substantial security risks. The plugin is vulnerable to XSS attacks and the existing unpatched CVE needs immediate attention. Users should exercise extreme caution until these issues are addressed.",[415,418,420,423,425],{"reason":416,"points":417},"Unpatched CVE (medium severity)",15,{"reason":419,"points":417},"Poor output escaping (2% proper)",{"reason":421,"points":422},"Taint flows with unsanitized paths",5,{"reason":424,"points":422},"No nonce checks on entry points",{"reason":426,"points":422},"No capability checks on entry points","2026-03-16T18:42:55.547Z",{"wat":429,"direct":440},{"assetPaths":430,"generatorPatterns":434,"scriptPaths":435,"versionParams":436},[431,432,433],"\u002Fwp-content\u002Fplugins\u002Ffacebook-photo-fetcher\u002Ffancybox\u002Fjquery.fancybox.min.js","\u002Fwp-content\u002Fplugins\u002Ffacebook-photo-fetcher\u002Ffancybox\u002Fjquery.fancybox.min.css","\u002Fwp-content\u002Fplugins\u002Ffacebook-photo-fetcher\u002Fstyle.css",[],[431],[437,438,439],"facebook-photo-fetcher\u002Fstyle.css?ver=","fancybox\u002Fjquery.fancybox.min.js?ver=","fancybox\u002Fjquery.fancybox.min.css?ver=",{"cssClasses":441,"htmlComments":446,"htmlAttributes":447,"restEndpoints":448,"jsGlobals":450,"shortcodeOutput":460},[442,443,444,445],"fpf-admin_warning","fpf-admin_wrapper","fpf-admin_tabs","fpf-admin_tab_selected",[],[],[449],"\u002Fwp-json\u002Fme?access_token=",[451,452,453,454,455,456,457,458,459],"fpf_name","fpf_version","fpf_identifier","fpf_homepage","fpf_apiver","fpf_opt_access_token","fpf_opt_token_expiration","fpf_opt_last_uid_search","fpf_shown_tab",[]]