[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWihsdaTOTgwol3dt5pQJ-jtiApU2-TzFpWbzWvFrNqM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":47,"crawl_stats":37,"alternatives":50,"analysis":144,"fingerprints":259},"fullscreen-galleria","Fullscreen Galleria","1.6.12","pdamsten","https:\u002F\u002Fprofiles.wordpress.org\u002Fpdamsten\u002F","\u003Cp>Fullscreen gallery for WordPress. Based on \u003Ca href=\"http:\u002F\u002Fgalleria.io\u002F\" rel=\"nofollow ugc\">Galleria\u003C\u002Fa> JavaScript image gallery framework.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Clean fullscreen interface. Only image and carousel is shown when idle.\u003C\u002Fli>\n\u003Cli>Custom link support for media eg. link to Flickr page that is shown for the image.\u003C\u002Fli>\n\u003Cli>If image has gps coordinates it can be shown on map.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Use WordPress Gallery feature and media as usual. Images are handled automatically and shown in fullscreen viewer.\u003C\u002Fli>\n\u003C\u002Fol>\n","A simple fullscreen gallery to Wordpress",900,106424,96,15,"2023-12-12T10:04:00.000Z","6.4.8","4.0","",[20,21,22,23],"galleria","gallery","images","photography","https:\u002F\u002Fpetridamsten.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffullscreen-galleria.zip",85,1,0,"2024-03-25 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":6,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2024-29801","fullscreen-galleria-authenticated-contributor-stored-cross-site-scripting","Fullscreen Galleria \u003C= 1.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Fullscreen Galleria plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.6.11","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-04-01 13:01:15",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fefb0c7d9-0e93-404b-9032-54d64cfcd4c3?source=api-prod",8,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":46,"trust_score":48,"computed_at":49},84,"2026-04-04T07:34:16.818Z",[51,68,88,106,122],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":59,"num_ratings":61,"last_updated":18,"tested_up_to":16,"requires_at_least":62,"requires_php":63,"tags":64,"homepage":18,"download_link":66,"security_score":59,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":67},"fcp-lightest-lightbox","FCP Lightest Lightbox","1.4.2","FirmCatalyst","https:\u002F\u002Fprofiles.wordpress.org\u002Ffirmcatalyst\u002F","\u003Cp>Simple and super lightweight Lightbox for WordPress with gallery navigation support.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Zero render-blocking tags are added on the page\u003C\u002Fli>\n\u003Cli>Only 0.5 kB is loaded if no linked images found\u003C\u002Fli>\n\u003Cli>Gallery support\u003C\u002Fli>\n\u003Cli>Caching, minifying & combining friendly\u003C\u002Fli>\n\u003Cli>jQuery independent (in case it’s async)\u003C\u002Fli>\n\u003Cli>Responsive\u003C\u002Fli>\n\u003Cli>Keyboard navigation\u003C\u002Fli>\n\u003Cli>Swipe navigation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ffirmcatalyst.com\u002Flightest-lightbox\u002F\" rel=\"nofollow ugc\">firmcatalyst.com\u002Flightest-lightbox\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Starts working just by the plugin activation. Opens linked images in a popup Lightbox by click. Adds arrow navigation, if an image is a part of a gallery or other links sequence.\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>You can modify the code for your needs, or suggest improvemens on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FVVolkov833\u002Ffcp-lightbox\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. It is pretty transparent and well-commented.\u003C\u002Fp>\n","Super lightweight Lighbox for WordPress",100,2575,2,"5.7","7.0.0",[21,22,65,23],"lightbox","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffcp-lightest-lightbox.zip","2026-03-15T10:48:56.248Z",{"slug":69,"name":70,"version":71,"author":72,"author_profile":73,"description":74,"short_description":75,"active_installs":76,"downloaded":77,"rating":78,"num_ratings":61,"last_updated":18,"tested_up_to":79,"requires_at_least":80,"requires_php":18,"tags":81,"homepage":86,"download_link":87,"security_score":59,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":67},"wp-isell-photo","WP iSell Photo","1.0.7","wpecommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpecommerce\u002F","\u003Cp>WP iSell Photo enhances the functionality of your existing WordPress photo gallery and turns it into an e-commerce photo gallery. It makes  photo selling easier. You don’t have to maintain another heavy weight photo gallery plugin for your WordPress blog. This in turn should help you maintain a fast loading site.\u003C\u002Fp>\n\u003Ch4>WP iSell Photo Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Sell photos from your WordPress blog easily.\u003C\u002Fli>\n\u003Cli>Increase your photo selling conversion rate with one-click PayPal checkout.\u003C\u002Fli>\n\u003Cli>Create beautiful e-commerce photo gallery on your WordPress blog.\u003C\u002Fli>\n\u003Cli>No advanced technical knowledge required to use this photo selling plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WP iSell Photo Plugin Usage\u003C\u002Fh4>\n\u003Cp>Since WordPress 2.5 there is a new feature in the WordPress media library that allows you to create a gallery of photos\u002Fimages and add it to a post\u002Fpage. Lot of users don’t even know about this neat little feature of WordPress. WP iSell Photo plugin will help you convert a built in WordPress gallery into a photo selling platform.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>a)\u003C\u002Fstrong> Creating a Photo Gallery in WordPress\u003C\u002Fp>\n\u003Cp>Create a new post\u002Fpage on your WordPress Dashboard. There is an option to upload\u002Finsert media. Now select the photos\u002Fimages from your computer and upload them to the media library. As you upload each image you will see a “Gallery” tab which contains those images. Switch to that tab once you are ready to insert the gallery to your current post\u002Fpage.\u003C\u002Fp>\n\u003Cp>There are some options that you can configure for the gallery you just created (under the “Gallery Settings” section).\u003C\u002Fp>\n\u003Col>\n\u003Cli>Link thumbnails to: a) Attachment Page (the page\u002Fpost you are currently editing) b) Media File c) None\u003C\u002Fli>\n\u003Cli>Columns: 1 – 9 ( Number of thumbnails in each row)\u003C\u002Fli>\n\u003Cli>Thumbnail Order: a) Random b) Reverse c) Custom (Drag and drop to reorder images)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Finally hit the “Insert Gallery” button and the gallery will be automatically inserted to your current post\u002Fpage.\u003C\u002Fp>\n\u003Cp>If you want to edit the gallery at any time you can always select the gallery (It looks like a rectangular image in the visual editor) and click on the “Edit” option. Alternatively you can also customize the shortcode for the gallery. You need to switch to the “Text” editor to do it. You will see a shortcode similar to the following:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gallery ids=\"126,125,124,123,122\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Here ids parameter represents all the images that are currently present in the gallery.\u003C\u002Fp>\n\u003Cp>For more information on how to customize the WordPress gallery shortcode please refer to the \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FGallery_Shortcode\" rel=\"nofollow ugc\">WordPress Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>b)\u003C\u002Fstrong> WP iSell Photo Settings\u003C\u002Fp>\n\u003Cp>There are some options that you need to configure in the General Settings of the plugin before your site goes live. On your \u003Cem>WordPress Dashboard\u003C\u002Fem> under \u003Cem>Settings\u003C\u002Fem> click on the \u003Cem>WP iSell Photo\u003C\u002Fem> option. It will take you to the Settings page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PayPal Email Address: Your PayPal email address\u003C\u002Fli>\n\u003Cli>PayPal Currency: The currency code (e.g. USD, GBP etc)\u003C\u002Fli>\n\u003Cli>Currency Symbol: The symbol for your currency code (e.g. $). It’s for display purpose only.\u003C\u002Fli>\n\u003Cli>Return URL: The URL where your customer will be redirected to after a successful payment\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>c)\u003C\u002Fstrong> Creating Buy Now buttons to sell photos\u003C\u002Fp>\n\u003Cp>Go to the post\u002Fpage where you already have an existing gallery embedded. Add an additional \u003Ccode>amount\u003C\u002Fcode> parameter to the gallery shortcode and specify the price in it. For example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gallery amount=\"5.00\" ids=\"126,125,124,123,122\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>now each image of the current gallery will have a “Buy Now” button with price 5.00\u003C\u002Fp>\n\u003Cp>You can also customize the look and feel of the “Buy Now” button. Simply include a \u003Ccode>button\u003C\u002Fcode> parameter in the gallery shortcode and specify the text you want to use for the button. For example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gallery amount=\"3.99\" button=\"Buy it Now\" ids=\"126,125,124,123,122\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If you want to use an image for the button you can do so by specifying the URL in the \u003Ccode>button\u003C\u002Fcode> parameter. For example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gallery amount=\"3.99\" button=\"http:\u002F\u002Fwww.paypal.com\u002Fen_US\u002Fi\u002Fbtn\u002Fbtn_buynow_LG.gif\" ids=\"126,125,124,123,122\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>For detailed documentation please visit the \u003Ca href=\"https:\u002F\u002Fwp-ecommerce.net\u002Fwp-isell-photo-easily-sell-photos-wordpress-1800\" rel=\"nofollow ugc\">WordPress iSell Photo\u003C\u002Fa> plugin page\u003C\u002Fp>\n","Easily Sell photos, images, digital print etc. using the built-in WordPress gallery feature. Convert your WordPress gallery into a photo store.",50,25092,90,"4.8.28","4.1",[82,23,83,84,85],"photo-gallery","sell-digital-print","sell-images","sell-photos","https:\u002F\u002Fwp-ecommerce.net\u002Fwp-isell-photo-easily-sell-photos-wordpress-1800","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-isell-photo.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":28,"num_ratings":28,"last_updated":98,"tested_up_to":99,"requires_at_least":100,"requires_php":101,"tags":102,"homepage":104,"download_link":105,"security_score":26,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"basic-protected-lightbox","Basic Protected Lightbox","1.1","justincardoza","https:\u002F\u002Fprofiles.wordpress.org\u002Fjustincardoza\u002F","\u003Cp>This plugin provides a very lightweight, minimalist, jQuery-based lightbox for displaying full-screen versions of the images from WordPress galleries. It also gives some basic copy protection that should foil relatively unmotivated image thieves by inserting a transparent overlay over the lightbox and all gallery thumbnails. This will prevent people from copying images in your galleries via right-click or drag-and-drop. It’s not a true preventative measure, in that someone who really wants to download copies of your images will most likely find a different way, but it is a little more secure than linking directly to the full resolution versions. Image copying is pretty much impossible to fully prevent aside from just not publishing your work in the first place; my goal with this plugin is to find a good middle ground.\u003C\u002Fp>\n\u003Cp>Want to see it in action? Check out the \u003Ca href=\"https:\u002F\u002Fjustincardoza.com\u002Fphotos\" rel=\"nofollow ugc\">photos page\u003C\u002Fa> on my personal website for a live demo.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Minimalist and lightweight: the 3 public-facing files are only about 8KB total\u003C\u002Fli>\n\u003Cli>Mobile-friendly with swipe gesture support\u003C\u002Fli>\n\u003Cli>Prevents some common image download methods with a transparent overlay\u003C\u002Fli>\n\u003Cli>Works immediately and seamlessly with the WordPress default gallery block\u003C\u002Fli>\n\u003C\u002Ful>\n","A lightweight, simple lightbox with basic image protection capabilities.",10,1163,"2020-08-17T07:01:00.000Z","5.5.18","3.3","5.6",[103,21,22,65,23],"copy-protection","https:\u002F\u002Fjustincardoza.com\u002Fsoftware\u002Fbasic-protected-lightbox","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbasic-protected-lightbox.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":108,"active_installs":96,"downloaded":113,"rating":28,"num_ratings":28,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":18,"tags":117,"homepage":120,"download_link":121,"security_score":26,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"merging-image-boxes","Merging Image Boxes","1.0.2","GraphicEdit","https:\u002F\u002Fprofiles.wordpress.org\u002Fgraphicedit\u002F","\u003Cp>Merging Image Boxes is powered by the awesome jQuery plugin.  The plugin creates a image matrix for your slides and allows the user to create simple slideshows.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fgraphicedit.com\u002F\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n",2640,"2018-03-24T15:32:00.000Z","4.9.29","4.9.4",[21,118,22,119,23],"image","photo","http:\u002F\u002Fgraphicedit.com\u002Fblog\u002Fplugin\u002Fmerging-image-boxes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmerging-image-boxes.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":18,"tags":137,"homepage":140,"download_link":141,"security_score":133,"vuln_count":142,"unpatched_count":28,"last_vuln_date":143,"fetched_at":30},"foobox-image-lightbox","Lightbox & Modal Popup WordPress Plugin – FooBox","2.7.41","FooPlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Ffooplugins\u002F","\u003Cp>FooBox adds a lightbox to your WordPress site, so images are loaded in a modal or popup instead of redirecting your visitors away from your site.\u003C\u002Fp>\n\u003Cp>Some people often refer to a lightbox as an “Image Zoom” effect. It’s really just a modal overlay or popup that showcases your images.\u003C\u002Fp>\n\u003Cp>FooBox was the first lightbox to take responsive layout seriously. Not only does it scale images to look better on phones, but it rearranges it’s button controls to look great in both portrait or landscape orientation.\u003C\u002Fp>\n\u003Cp>Add a modal popup to your website images with no setup. FooBox will automatically add modals to WordPress galleries, WordPress images with captions, and attachment images.\u003C\u002Fp>\n\u003Cp>Works with most image gallery plugins, but works best with our \u003Ca href=\"https:\u002F\u002Ffooplugins.com\u002Ffoogallery-wordpress-gallery-plugin\u002F\" rel=\"nofollow ugc\">FooGallery Gallery WordPress Plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FULL GUTENBERG SUPPORT\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Within Gutenberg, FooBox lightbox will automatically add a modal popup to images and galleries that have the “Link To” setting set to “Media File”.\u003Cbr \u002F>\nImage captions set in the editor are also automatically picked up in the FooBox modal popup.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FooBox Image Lightbox Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Responsive lightbox design\u003C\u002Fli>\n\u003Cli>Modern lightbox design\u003C\u002Fli>\n\u003Cli>Zero configuration!\u003C\u002Fli>\n\u003Cli>Works with WordPress galleries\u003C\u002Fli>\n\u003Cli>Works with WordPress captioned images\u003C\u002Fli>\n\u003Cli>Control when to exclude \u002F include FooBox JS & CSS assets\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Includes a 7-day free trial of FooBox Pro Lightbox!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can try the PRO version for free for 7 days.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Ffooplugins.com\u002Ffoobox\u002F?utm_source=fooboxfreeplugin&utm_medium=fooboxfreeprolink&utm_campaign=foobox_free_wprepo\" rel=\"nofollow ugc\">FooBox PRO\u003C\u002Fa> Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Social sharing (10+ networks)\u003C\u002Fli>\n\u003Cli>Video lightbox support\u003C\u002Fli>\n\u003Cli>HTML lightbox support\u003C\u002Fli>\n\u003Cli>iFrame support\u003C\u002Fli>\n\u003Cli>Deeplinking\u003C\u002Fli>\n\u003Cli>Fullscreen and slideshow modes\u003C\u002Fli>\n\u003Cli>Glass lightbox theme (including custom color pickers)\u003C\u002Fli>\n\u003Cli>Metro lightbox theme\u003C\u002Fli>\n\u003Cli>Flat lightbox theme\u003C\u002Fli>\n\u003Cli>5 color schemes, 12 button icons and 11 loader icons\u003C\u002Fli>\n\u003Cli>12 animation effects\u003C\u002Fli>\n\u003Cli>85+ settings to customize\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Ffooplugins.com\u002Ffoobox\u002F?utm_source=fooboxfreeplugin&utm_medium=fooboxfreeprolink&utm_campaign=foobox_free_wprepo\" rel=\"nofollow ugc\">FooBox PRO\u003C\u002Fa> Works With:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffooplugins.com\u002Ffoogallery-wordpress-gallery-plugin\u002F\" rel=\"nofollow ugc\">The Best Image Gallery Plugin for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>NextGen\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fjustified-image-grid-premium-wordpress-gallery\u002F2594251\" rel=\"nofollow ugc\">Justified Image Grid\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Envira Gallery\u003C\u002Fli>\n\u003Cli>WooCommerce product images (Works with WooCommerce v3+)\u003C\u002Fli>\n\u003Cli>JetPack Tiled Gallery\u003C\u002Fli>\n\u003Cli>AutOptimize\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check out the \u003Ca href=\"https:\u002F\u002Ffooplugins.com\u002Ffoobox-feature-comparison\u002F?utm_source=fooboxfreeplugin&utm_medium=fooboxcomparelink&utm_campaign=foobox_free_wprepo\" rel=\"nofollow ugc\">full feature comparison\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Complete FooBox Asset Control\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, FooBox lightbox includes javascript and stylesheet assets into all your pages. We do this, because we do not know if the page content contains media or not.\u003Cbr \u002F>\nIf you want more control over when FooBox assets are included, you can now exclude the assets by default, by enabling a setting. Then on each page, you can choose to include them when required.\u003Cbr \u002F>\nAlternatively, you can leave the setting disabled, and then choose to exclude the FooBox assets from particular pages. A new metabox is now available when editing your pages or posts.\u003Cbr \u002F>\nThis new feature was only available in the PRO version beforehand, but we feel control over your website performance is something you should not have to pay for. Enjoy!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Translations\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.webhostinghub.com\u002F\" rel=\"nofollow ugc\">Serbo-Croatian by Borisa Djuraskovic\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","A responsive image lightbox for WordPress galleries, WordPress attachments & FooGallery",100000,2831671,78,94,"2026-01-21T16:36:00.000Z","6.9.4","3.5.1",[21,22,65,138,139],"modal","popup","https:\u002F\u002Ffooplugins.com\u002Ffoobox\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffoobox-image-lightbox.2.7.41.zip",5,"2025-07-07 16:14:43",{"attackSurface":145,"codeSignals":209,"taintFlows":243,"riskAssessment":244,"analyzedAt":258},{"hooks":146,"ajaxHandlers":188,"restRoutes":189,"shortcodes":190,"cronEvents":207,"entryPointCount":208,"unprotectedCount":28},[147,154,159,163,167,171,175,179,182,185],{"type":148,"name":149,"callback":150,"priority":151,"file":152,"line":153},"filter","the_content","content",99,"galleria-fs.php",146,{"type":155,"name":156,"callback":157,"file":152,"line":158},"action","wp_enqueue_scripts","enqueue_scripts",147,{"type":155,"name":160,"callback":161,"file":152,"line":162},"wp_head","header",148,{"type":155,"name":164,"callback":165,"file":152,"line":166},"wp_footer","footer",149,{"type":148,"name":168,"callback":169,"priority":96,"file":152,"line":170},"attachment_fields_to_edit","fields_to_edit",150,{"type":148,"name":172,"callback":173,"priority":96,"file":152,"line":174},"attachment_fields_to_save","fields_to_save",151,{"type":148,"name":176,"callback":177,"file":152,"line":178},"wp_read_image_metadata","add_additional_metadata",152,{"type":148,"name":180,"callback":180,"file":152,"line":181},"sharing_permalink",153,{"type":155,"name":183,"callback":183,"file":152,"line":184},"admin_init",158,{"type":155,"name":186,"callback":186,"file":152,"line":187},"admin_menu",159,[],[],[191,195,199,203],{"tag":192,"callback":193,"file":152,"line":194},"fsg_photobox","photobox_shortcode",154,{"tag":196,"callback":197,"file":152,"line":198},"fsg_photolist","photolist_shortcode",155,{"tag":200,"callback":201,"file":152,"line":202},"fsg_link","link_shortcode",156,{"tag":204,"callback":205,"file":152,"line":206},"fsg_portfolio","portfolio_shortcode",157,[],4,{"dangerousFunctions":210,"sqlUsage":211,"outputEscaping":218,"fileOperations":61,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":242},[],{"prepared":28,"raw":61,"locations":212},[213,216],{"file":152,"line":214,"context":215},68,"$wpdb->get_var() with variable interpolation",{"file":152,"line":217,"context":215},74,{"escaped":219,"rawEcho":220,"locations":221},17,9,[222,225,227,229,231,233,235,237,240],{"file":152,"line":223,"context":224},328,"raw output",{"file":152,"line":226,"context":224},329,{"file":152,"line":228,"context":224},349,{"file":152,"line":230,"context":224},352,{"file":152,"line":232,"context":224},366,{"file":152,"line":234,"context":224},367,{"file":152,"line":236,"context":224},841,{"file":238,"line":239,"context":224},"xmp.php",142,{"file":238,"line":241,"context":224},143,[],[],{"summary":245,"deductions":246},"The \"fullscreen-galleria\" plugin version 1.6.12 exhibits a mixed security posture. While the static analysis reveals no critical issues like dangerous functions, direct SQL injection vulnerabilities through prepared statements, or insecure file operations, there are notable areas of concern. The absence of any nonce checks or capability checks across its entry points, including four shortcodes, is a significant weakness. This means that users, even those with limited privileges, could potentially trigger functionality within these shortcodes without proper authorization, opening the door to unintended actions.\n\nThe plugin's vulnerability history shows one medium-severity Cross-Site Scripting (XSS) vulnerability, most recently patched on March 25, 2024. While the current version is unpatched for this specific CVE, the presence of past XSS issues coupled with the lack of input sanitization and output escaping in a significant portion (35%) of its outputs suggests a recurring pattern of insecure handling of user-supplied data. The static analysis also indicates that all SQL queries are executed without prepared statements, which, while not directly leading to an exploit in this analysis, represents a bad practice that could be exploited in conjunction with other vulnerabilities.\n\nIn conclusion, the plugin has some strengths in avoiding explicitly dangerous functions and external requests. However, the lack of robust authorization checks on its entry points, the historical pattern of XSS vulnerabilities, and the pervasive use of raw SQL queries without prepared statements present considerable risks. These issues suggest that the plugin requires further security hardening to ensure the safety of WordPress sites using it.",[247,249,251,253,256],{"reason":248,"points":96},"Raw SQL queries without prepared statements",{"reason":250,"points":96},"No nonce checks on entry points",{"reason":252,"points":96},"No capability checks on entry points",{"reason":254,"points":255},"Significant percentage of unescaped output",7,{"reason":257,"points":96},"Known medium severity CVE in history","2026-03-16T19:14:32.653Z",{"wat":260,"direct":297},{"assetPaths":261,"generatorPatterns":278,"scriptPaths":279,"versionParams":280},[262,263,264,265,266,267,268,269,270,271,272,273,274,275,276,277],"\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fcss\u002Fgalleria.css","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria-1.6.12.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.classic.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.twocolumn.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.fullscreen.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.carousel.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.debug.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.history.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.flickr.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.getimage.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.image.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.meta.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.native.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.photoswipe.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.simplecaption.min.js","\u002Fwp-content\u002Fplugins\u002Ffullscreen-galleria\u002Fjs\u002Fgalleria.statustext.min.js",[],[263,264,265,266,267,268,269,270,271,272,273,274,275,276,277],[281,282,283,284,285,286,287,288,289,290,291,292,293,294,295,296],"fullscreen-galleria\u002Fcss\u002Fgalleria.css?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria-1.6.12.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.classic.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.twocolumn.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.fullscreen.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.carousel.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.debug.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.history.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.flickr.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.getimage.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.image.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.meta.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.native.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.photoswipe.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.simplecaption.min.js?ver=","fullscreen-galleria\u002Fjs\u002Fgalleria.statustext.min.js?ver=",{"cssClasses":298,"htmlComments":326,"htmlAttributes":327,"restEndpoints":330,"jsGlobals":331,"shortcodeOutput":333},[299,300,301,302,303,304,305,306,307,308,309,310,311,312,313,314,315,316,317,318,319,320,321,322,323,324,325],"galleria-container","galleria-theme-classic","galleria-stage","galleria-images-container","galleria-image-nav","galleria-arrow","galleria-image-wrapper","galleria-current-img","galleria-caption","galleria-loader","galleria-info","galleria-thumbnails-container","galleria-thumbnail-nav","galleria-thumbnail","galleria-counter","galleria-theme-twocolumn","galleria-theme-fullscreen","galleria-theme-carousel","galleria-theme-history","galleria-theme-flickr","galleria-theme-getimage","galleria-theme-image","galleria-theme-meta","galleria-theme-native","galleria-theme-photoswipe","galleria-theme-simplecaption","galleria-theme-statustext",[],[328,329],"data-galleria","data-theme",[],[332],"Galleria",[334,335,336,337],"[fsg_photobox]","[fsg_photolist]","[fsg_link]","[fsg_portfolio]"]