[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8T-nZqE-4UAkcLEJWhkJ0Er00z1TXz_NtnGws2UpljA":3,"$fjFW6noOyHJ-nC_33m6pLpLHqmYOZW835b-4WpFqQqKs":224,"$fx3Cy_JgFM57A8JWgWr9mQ3yKjdP18AEftRf7mDH3PAw":229},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":39,"analysis":131,"fingerprints":211},"feedplus","Feed Plus","3.1","Eric-Oliver Mächler","https:\u002F\u002Fprofiles.wordpress.org\u002Fannubis\u002F","\u003Cp>Mit Feed Plus ist man in der Lage Werbung, Infos und andere wichtige Dinge direkt im Feed, und zwar nach einem Beitrag oder danach, zu publizieren.\u003C\u002Fp>\n\u003Cp>Nachdem du das Plugin installiert hast, gehst du unter Einstellung -> Feed Plus\u003Cbr \u002F>\nHier kannst du nun ein Text \u003Cstrong>vor\u003C\u002Fstrong> oder \u003Cstrong>nach\u003C\u002Fstrong> dem Blogbeitrag platzieren .\u003Cbr \u002F>\nSobald du einen Text eingegeben hast (ACHTUNG: Nur HTML Code kein PHP) – musst du es sichern.\u003Cbr \u002F>\nKlick auf Voreinstellung – wenn du ein Beispiel haben willst.\u003C\u002Fp>\n\u003Cp>Siehe Screenshot\u003C\u002Fp>\n","Mit Feed Plus ist man in der Lage Werbung, Infos und andere wichtige Dinge direkt im Feed, und zwar nach einem Beitrag oder danach, zu publizieren.",10,2686,0,"2023-10-09T08:37:00.000Z","6.3.8","5.2","",[19,20,21,22,23],"banner","code","editor","feed","rss","http:\u002F\u002Fwww.1grad.ch","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeedplus.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"annubis",13,5390,93,7,95,"2026-05-20T00:50:09.868Z",[40,59,80,98,115],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":13,"num_ratings":13,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":17,"tags":53,"homepage":57,"download_link":58,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"lh-rss-shortcode","LH RSS Shortcode","1.00","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>Adds a simple to use [rss] shortcode with a couple of options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>feed: to put in the feed URL\u003C\u002Fli>\n\u003Cli>num: to specify the number of items to show, defaults to 5\u003C\u002Fli>\n\u003Cli>template: a wordpress template that will handle the shortcode output (defaults to default.php, you can use the two provided or follow the instructions on creating your own\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example use:\u003C\u002Fp>\n\u003Cp>[lh_rss_shortcode feed=”https:\u002F\u002Fshawfactor.com\u002Ffeed\u002F” num=”10″ ]\u003C\u002Fp>\n\u003Cp>Or:\u003C\u002Fp>\n\u003Cp>[lh_rss_shortcode feed=”https:\u002F\u002Fshawfactor.com\u002Ffeed\u002F” num=”5″ template=”excerpt.php”]\u003C\u002Fp>\n","A simple plugin to display RSS feeds in posts and pages using a shortcode.",40,1248,"2019-05-14T06:26:00.000Z","5.2.24","4.0",[54,22,55,23,56],"atom","fetch_rss","shortcode","https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-rss-shortcode\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-rss-shortcode.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":13,"num_ratings":13,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":17,"tags":72,"homepage":78,"download_link":79,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-rss-fetcher-shortcode","WP RSS Fetcher ShortCode","1.0","wpmize","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpmize\u002F","\u003Cp>Use a shortcode to grab RSS feeds from external sources and embed them into posts or pages. After you have activated the plugin, you can start to use the shortcode.\u003C\u002Fp>\n\u003Cp>Example shortcode usage:\u003C\u002Fp>\n\u003Cp>[wpmizerss url=”http:\u002F\u002Ffeeds.feedburner.com\u002FWpmize” feeds_limit=”5″ words_limit=”100″ ul_class=’ class=”ordered”‘]\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easily embed any RSS feeds into posts or pages using a shortcode\u003C\u002Fli>\n\u003Cli>Limit the number of the feeds to show\u003C\u002Fli>\n\u003Cli>Limit the words of the title of each feeds\u003C\u002Fli>\n\u003Cli>Add a custom class for the UL\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>More Information\u003C\u002Fh4>\n\u003Cp>For more details visit \u003Ca href=\"http:\u002F\u002Fwww.wpmize.com\u002Fwordpress-plugins\u002Fwordpress-plugin-wp-rss-fetcher-shortcode\u002F\" rel=\"nofollow ugc\">the official plugin URL\u003C\u002Fa>.\u003Cbr \u002F>\nFor more plugins and WordPress tips visit us at \u003Ca href=\"http:\u002F\u002Fwww.wpmize.com\u002F\" rel=\"nofollow ugc\">wpmize.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Author\u003C\u002Fh3>\n\u003Cp>WPMize.com\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.wpmize.com\u003C\u002Fp>\n","Easily fetches RSS feeds from external sources and embed them into posts or pages with a shortcode.",30,4182,"2012-08-27T12:32:00.000Z","3.4.2","3.0",[73,74,75,76,77],"feeds-fetcher","fetch-feeds","fetch-rss","rss-feeds-fetcher","rss-shortcode","http:\u002F\u002Fwww.wpmize.com\u002Fwordpress-plugins\u002Fwordpress-plugin-wp-rss-fetcher-shortcode\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rss-fetcher-shortcode.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":11,"downloaded":88,"rating":13,"num_ratings":13,"last_updated":89,"tested_up_to":90,"requires_at_least":52,"requires_php":91,"tags":92,"homepage":96,"download_link":97,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"mo-rss-feed","Mo RSS Feed","1.1","moduet","https:\u002F\u002Fprofiles.wordpress.org\u002Fmoduet\u002F","\u003Cp>Display an RSS Feed with images in WordPress using a shortcode. A WordPress plugin that displays an RSS feed within a responsive slider or column layout. This plugin will display an RSS feed using a shortcode on any page, post or widget. The RSS feed can be displayed in a slider or column layout. The RSS slider or column layout are responsive; visibly clean display and functionality on any device (mobile or desktop).\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display responsive RSS feeds that on phone, tablet and desktop\u003C\u002Fli>\n\u003Cli>Displays the RSS feed images \u003C\u002Fli>\n\u003Cli>Lightweight and loads quickly\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbxslider.com\u002F\" title=\"BXSLIDER\" rel=\"nofollow ugc\">BXSLIDER\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Display an RSS Feed with images in WordPress using a shortcode.",1414,"2018-11-19T20:04:00.000Z","5.0.25","5.2.4",[93,94,23,95,56],"bxslider","jquery-rss","rss-feed","https:\u002F\u002Fmoduet.com\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmo-rss-feed.zip",{"slug":99,"name":100,"version":62,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":11,"downloaded":105,"rating":13,"num_ratings":13,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":17,"tags":109,"homepage":113,"download_link":114,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"rss-responsive-caption","RSS Responsive Caption","Brandon Moeller","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrandonmoeller\u002F","\u003Cp>This plugin allows publishers to better control the width of photos that use the WordPress caption shortcode feature, when that content is displayed in RSS feed readers like Google Reader, as displayed on small-screen mobile devices.\u003C\u002Fp>\n\u003Cp>This plugin accomplishes the same thing that adjusting the “function img_caption_shortcode” code in includes\u002Fmedia.php would, but allows the user to automatically update WordPress without worrying about losing these changes.\u003C\u002Fp>\n\u003Cp>It is the author’s hope that in future releases of WordPress (post 3.3), this plugin will prove unnecessary if (hard-working, responsive-minded) WordPress core developers decide to include the fix in newer versions of the awesome great open source software we have all come to love.\u003C\u002Fp>\n\u003Cp>The code for this plugin was inspired by code found on this page of the codex:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fadd_filter\" rel=\"nofollow ugc\">https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fadd_filter\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Read more about RSS Responsive Caption on the author’s website here:\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fbrandonmoeller.com\u002Fblog\u002F2011\u002F12\u002F18\u002Frss-responsive-caption\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fbrandonmoeller.com\u002Fblog\u002F2011\u002F12\u002F18\u002Frss-responsive-caption\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Improves WordPress caption elements so captioned images in RSS feeds responsively adjust to fit within Google Reader’s screen on Android devices.",2823,"2011-12-20T02:53:00.000Z","3.3.2","2.6",[110,111,112,23,56],"content","feeds","images","http:\u002F\u002Fbrandonmoeller.com\u002Fblog\u002F2011\u002F12\u002F18\u002Frss-responsive-caption","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frss-responsive-caption.1.0.zip",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":11,"downloaded":123,"rating":13,"num_ratings":13,"last_updated":124,"tested_up_to":125,"requires_at_least":71,"requires_php":17,"tags":126,"homepage":129,"download_link":130,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-kill-in-feed","WP Kill In Feed","1.2","Meredith Matthews","https:\u002F\u002Fprofiles.wordpress.org\u002Fbraindouche\u002F","\u003Cp>This plugin gives you two new shortcodes: [killinfeed] will prevent whatever it\\’s wrapped around from being included in your site\\’s RSS feed, and [addtofeed] will add exclusive feed-only content. It\\’s especially useful for wrapping around multimedia shortcodes that are adding bits and pieces of the media player into your feed, or for making content exclusive to only one consuming audience. For example, you could use it to display an ad on your site but not in your RSS feed, or show an exclusive link or promotion to your podcast subscribers but not to your website visitors. Thanks to Daniel J. Lewis for updates!(https:\u002F\u002Fgithub.com\u002FtheDanielJLewis)\u003C\u002Fp>\n","Super-simple shortcodes to control what's in your RSS feed.",1699,"2018-10-29T02:27:00.000Z","4.9.29",[22,127,128,23,56],"podcast","powerpress","http:\u002F\u002Fgithub.com\u002Fmmatthews1981\u002Fwp-kill-in-feed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-kill-in-feed.zip",{"attackSurface":132,"codeSignals":150,"taintFlows":164,"riskAssessment":201,"analyzedAt":210},{"hooks":133,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":149,"entryPointCount":13,"unprotectedCount":13},[134,140],{"type":135,"name":136,"callback":137,"file":138,"line":139},"action","admin_menu","FP","conf.php",9,{"type":141,"name":142,"callback":143,"file":144,"line":145},"filter","the_content","add_messages","feedplus.php",19,[],[],[],[],{"dangerousFunctions":151,"sqlUsage":152,"outputEscaping":154,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":163},[],{"prepared":13,"raw":13,"locations":153},[],{"escaped":13,"rawEcho":155,"locations":156},2,[157,161],{"file":158,"line":159,"context":160},"form.php",71,"raw output",{"file":158,"line":162,"context":160},88,[],[165,190],{"entryPoint":166,"graph":167,"unsanitizedCount":155,"severity":189},"saveForm (form.php:39)",{"nodes":168,"edges":185},[169,174,179,183],{"id":170,"type":171,"label":172,"file":158,"line":173},"n0","source","$_REQUEST['beforefp']",42,{"id":175,"type":176,"label":177,"file":158,"line":173,"wp_function":178},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":180,"type":171,"label":181,"file":158,"line":182},"n2","$_REQUEST['behindfp']",45,{"id":184,"type":176,"label":177,"file":158,"line":182,"wp_function":178},"n3",[186,188],{"from":170,"to":175,"sanitized":187},false,{"from":180,"to":184,"sanitized":187},"low",{"entryPoint":191,"graph":192,"unsanitizedCount":155,"severity":189},"\u003Cform> (form.php:0)",{"nodes":193,"edges":198},[194,195,196,197],{"id":170,"type":171,"label":172,"file":158,"line":173},{"id":175,"type":176,"label":177,"file":158,"line":173,"wp_function":178},{"id":180,"type":171,"label":181,"file":158,"line":182},{"id":184,"type":176,"label":177,"file":158,"line":182,"wp_function":178},[199,200],{"from":170,"to":175,"sanitized":187},{"from":180,"to":184,"sanitized":187},{"summary":202,"deductions":203},"The \"feedplus\" v3.1 plugin exhibits a mixed security posture. On the one hand, the static analysis shows no known dangerous functions, no direct SQL queries (all use prepared statements), no file operations, and no external HTTP requests. Furthermore, there's a complete absence of publicly disclosed vulnerabilities, which is a positive indicator.  However, significant concerns arise from the output escaping results.  With 100% of analyzed outputs unescaped, this presents a clear risk of Cross-Site Scripting (XSS) vulnerabilities, especially if any of the analyzed flows involve user-provided data being displayed directly in the frontend without proper sanitization. The taint analysis also highlights \"flows with unsanitized paths,\" which, while not classified as critical or high severity by the tool, warrants further investigation as it points to potential weaknesses in how data is handled.  The lack of documented capabilities checks or nonce checks across its limited entry points (which are currently zero) is not a direct risk in this version due to the absence of those entry points, but it indicates a potential gap in security practices should new entry points be added in future updates without corresponding security checks. Overall, while the plugin benefits from a clean vulnerability history and a lack of high-risk code patterns, the unescaped output and identified unsanitized paths are significant weaknesses that need to be addressed.",[204,207],{"reason":205,"points":206},"Unescaped output across all analyzed outputs",8,{"reason":208,"points":209},"Flows with unsanitized paths identified",5,"2026-04-16T12:51:43.352Z",{"wat":212,"direct":217},{"assetPaths":213,"generatorPatterns":214,"scriptPaths":215,"versionParams":216},[],[],[],[],{"cssClasses":218,"htmlComments":219,"htmlAttributes":220,"restEndpoints":221,"jsGlobals":222,"shortcodeOutput":223},[],[],[],[],[],[],{"error":225,"url":226,"statusCode":227,"statusMessage":228,"message":228},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Ffeedplus\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":13,"versions":230},[]]