[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBQHCMdbPvmfNb9rotazCdlPcwnfTINEVlGL66YWw6jg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":134,"fingerprints":177},"fx-random-image","FX random image","1.0.2","AivarasFX","https:\u002F\u002Fprofiles.wordpress.org\u002Faivarasfx\u002F","\u003Cp>Plugin creates widget that displays one random image from current page or post attached images, or from any page or post set by ID. You can set size of image to display.\u003C\u002Fp>\n\u003Cp>Displays a random image from post or page you specify. Plugin creates FX-Random-image widget. Use widget to add image to sidebar or add \u003Ccode>\u003C?php FX_Random_Image($pageID, $link, $size); ?>\u003C\u002Fcode> function to theme. $pageID is page\u002Fpost ID from there to take images, if $link = true adds link to image, $link = false no link on image, $size – image size (‘thumbnail’, ‘medium’ or ‘large’). Example \u003Ccode>\u003C?php FX_Random_Image(1, false, 'large'); ?>\u003C\u002Fcode>\u003C\u002Fp>\n","Plugin displays random image from attached images to page or post.",10,3900,74,3,"2011-05-20T13:05:00.000Z","3.0.5","2.8","",[20,21],"images","random","http:\u002F\u002Fwordpress.org\u002F#","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffx-random-image.1.0.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"aivarasfx",30,84,"2026-04-04T14:13:21.878Z",[35,58,78,98,113],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":18,"tags":50,"homepage":56,"download_link":57,"security_score":45,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"wp-random-post-thumbnails","WP Random Post Thumbnails","2.6.3","Brianna Deleasa","https:\u002F\u002Fprofiles.wordpress.org\u002Fbdeleasa\u002F","\u003Cp>This plugin allows you to upload a set of images via a settings page to be shown for posts without images. The images will be chosen at random on page load for any posts without a featured image (meaning each time the page is reloaded another random image will be chosen). Useful if your theme shows thumbnails for the posts, and you don’t want any posts without thumbnails.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>UPDATE:\u003C\u002Fstrong> Now you can select images specifically for certain post types as well as taxonomy terms.\u003C\u002Fp>\n","Allows you to select images to be shown at random for posts without a featured image.",1000,37024,100,8,"2025-07-27T11:47:00.000Z","6.7.5","3.5",[51,52,53,54,55],"post-thumbnails","random-featured-images","random-images","random-post-thumbnail","random-thumbnails","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-random-post-thumbnails\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-random-post-thumbnails.2.6.3.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":18,"download_link":77,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"random-gallery","Random Gallery","00.08","David G","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavid-greenwold\u002F","\u003Cp>Random Gallery lets you display a different subset of your images every time your page is refreshed. Just tell it which ones you want it to pick from and how many you want to show at a time.\u003C\u002Fp>\n\u003Ch4>The Basics\u003C\u002Fh4>\n\u003Cp>Random Gallery works with an old fashioned shortcode. You specify the pool of images with the \u003Ccode>ids\u003C\u002Fcode> or \u003Ccode>category\u003C\u002Fcode> parameter. Then you specify how many you want to show with the \u003Ccode>shownum\u003C\u002Fcode> parameter.\u003C\u002Fp>\n\u003Cp>Here’s an example of the \u003Ccode>ids\u003C\u002Fcode> method:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[random-gallery ids='101,102,103,104,105' shownum='3']\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Note there are five images in the list but only three will be shown at a time.\u003C\u002Fp>\n\u003Cp>And here is an example of the \u003Ccode>category\u003C\u002Fcode> method:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[random-gallery category='myCategory' shownum='3']\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Random Gallery can handle the ordinary Gallery shortcode parameters \u003Ccode>columns\u003C\u002Fcode>, \u003Ccode>size\u003C\u002Fcode>, and \u003Ccode>link\u003C\u002Fcode>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[random-gallery category='myCategory' shownum='3' columns='1' size='medium' link='none']\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>You can put shortcodes in all kinds of blocks, but it’s best to use the shortcode widget.\u003C\u002Fp>\n\u003Ch4>ids method details\u003C\u002Fh4>\n\u003Cp>The \u003Ccode>ids\u003C\u002Fcode> parameter is the list of images you want to draw from. To build up the list, you need the numbers that WordPress assigns to each of your images.\u003C\u002Fp>\n\u003Cp>There are plugins that let you see these numbers directly in the Media Library. Try searching the plugins directory for “reveal ids”.\u003C\u002Fp>\n\u003Cp>Otherwise, you can find them manually:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>open up your Media Library\u003C\u002Fli>\n\u003Cli>click on a photo\u003C\u002Fli>\n\u003Cli>the Attachment Details will pop up\u003C\u002Fli>\n\u003Cli>the URL in your address bar will look like this: \u003Ccode>https:\u002F\u002Fwww.example.com\u002Fwp-admin\u002Fupload.php?item=101\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>take the number at the end of the URL (in this case 101) and add that number to \u003Ccode>ids\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>repeat this process for each photo you want to include\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>category method\u003C\u002Fh4>\n\u003Cp>By default, categories are not available in the Media Library. However, there are plugins that will enable them. Try searching the plugins directory for “media library categories”.\u003C\u002Fp>\n\u003Cp>Once you have categories enabled, you can create a category, add images to it, and specify it in the shortcode by name.\u003C\u002Fp>\n\u003Ch3>Curly Quotes Issue\u003C\u002Fh3>\n\u003Cp>One tricky thing to watch out for is curly quotation marks. WordPress likes to replace straight quotes (\u003Ccode>'\u003C\u002Fcode>) with curly quotes (‘). This is usually a good thing, but Random Gallery can only handle straight quotes.\u003C\u002Fp>\n\u003Cp>The easiest and best way to make sure you’re only using straight quotes is to put your shortcode in a shortcode widget, then re-type all the quotes directly in the widget.\u003C\u002Fp>\n\u003Ch3>Thanks\u003C\u002Fh3>\n\u003Cp>I hope Random Gallery works for you. If you have any trouble, just shoot me an email. Thanks!\u003C\u002Fp>\n","Random Gallery displays a different subset of your images every time your page is refreshed.",200,6580,90,11,"2023-04-02T17:20:00.000Z","6.2.9","3.0.1",[74,75,20,21,76],"category","gallery","subset","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-gallery.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":45,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":18,"tags":92,"homepage":96,"download_link":97,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"mpcx-slider","Slider","1.3.10","Stefan Hüsges","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeustron\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftronsha\u002Fwp-slider-plugin\" rel=\"nofollow ugc\">Source Code on GitHub\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>Here you can read the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftronsha\u002Fwp-slider-plugin\u002Fblob\u002Fmaster\u002FREADME.md\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The Plugin requires PHP 5.3.2 or newer.\u003C\u002Fp>\n","A responsive Slider",40,7622,1,"2017-11-10T07:01:00.000Z","4.9.29","4.2.3",[20,93,21,94,95],"jquery","responsive","slider","https:\u002F\u002Fgithub.com\u002Ftronsha\u002Fwp-slider-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmpcx-slider.1.3.10.zip",{"slug":53,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":86,"downloaded":105,"rating":106,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":17,"requires_php":18,"tags":110,"homepage":18,"download_link":112,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"Random Images","1.0","Sheri Grey","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesignsimply\u002F","\u003Cp>The \u003Ccode>[random_images]\u003C\u002Fcode> shortcode will display an unstyled set of random images.\u003C\u002Fp>\n\u003Cp>Six images will display at thumbnail size linked to attachment pages by default.\u003C\u002Fp>\n\u003Cp>To change the number of images and the size:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[random_images total=4 size=medium]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>To make the links point to image files instead of attachment pages:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[random_images link=file]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If you have any questions, please ask in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Frandom-images\" title=\"Random Images Support Forum\" rel=\"ugc\">support forum\u003C\u002Fa>.\u003C\u002Fp>\n","The [random_images] shortcode displays random attached images.",5092,50,6,"2018-12-02T06:50:00.000Z","5.0.25",[20,53,111],"shortcode","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-images.1.0.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":31,"downloaded":121,"rating":122,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":18,"tags":127,"homepage":132,"download_link":133,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"random-post-ajax","Random Post with ajax","0.8.1","sadegh3333","https:\u002F\u002Fprofiles.wordpress.org\u002Fsadegh3333\u002F","\u003Cblockquote>\n\u003Cp>What we have created is a combination of elegance and simplicity.\u003Cbr \u002F>\n  To be able to post random show site users. Simply install and activate the plugin Random post with ajax and only using a shortcode in any part of the site that you want to display random posts.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Random Post with Ajax includes the following features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choice Categories\u003C\u002Fli>\n\u003Cli>Choice of Post Type\u003C\u002Fli>\n\u003Cli>Possibility to choose the number of posts\u003C\u002Fli>\n\u003Cli>Show Content (Excerpt)\u003C\u002Fli>\n\u003Cli>Display post date\u003C\u002Fli>\n\u003Cli>Show Thumbnail of post\u003C\u002Fli>\n\u003Cli>Beautiful design\u003C\u002Fli>\n\u003Cli>User friendly\u003C\u002Fli>\n\u003Cli>Responsive\u003C\u002Fli>\n\u003C\u002Ful>\n","Combining beauty and efficiency to display random posts",5809,70,2,"2020-03-28T12:43:00.000Z","5.3.21","4.0.1",[128,129,130,21,131],"ajax","featured-images","post","random-posts","https:\u002F\u002Fwpmen.ir","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-post-ajax.zip",{"attackSurface":135,"codeSignals":147,"taintFlows":165,"riskAssessment":166,"analyzedAt":176},{"hooks":136,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":25,"unprotectedCount":25},[137],{"type":138,"name":139,"callback":140,"file":141,"line":142},"action","widgets_init","RandomImage_init","fx-random-image.php",122,[],[],[],[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":151,"fileOperations":25,"externalRequests":25,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":164},[],{"prepared":25,"raw":25,"locations":150},[],{"escaped":25,"rawEcho":152,"locations":153},5,[154,157,158,160,162],{"file":141,"line":155,"context":156},38,"raw output",{"file":141,"line":86,"context":156},{"file":141,"line":159,"context":156},62,{"file":141,"line":161,"context":156},68,{"file":141,"line":163,"context":156},105,[],[],{"summary":167,"deductions":168},"The \"fx-random-image\" plugin version 1.0.2 exhibits a mixed security posture. On the positive side, the static analysis reveals a complete absence of known CVEs and no recorded vulnerabilities in its history. Furthermore, the code signals indicate a lack of dangerous functions, file operations, external HTTP requests, and SQL queries that do not utilize prepared statements.  The attack surface is also reported as zero, with no AJAX handlers, REST API routes, shortcodes, or cron events identified, suggesting a potentially limited footprint for attackers.\n\nHowever, significant concerns arise from the output escaping. With 100% of its five identified outputs being improperly escaped, this plugin presents a high risk of cross-site scripting (XSS) vulnerabilities. The absence of nonce checks and capability checks, coupled with zero taint flows analyzed, means that any potential vulnerabilities introduced through these vectors would not have been detected by this analysis. While the attack surface is reported as zero, the lack of proper output sanitization is a critical flaw that can be exploited even without direct entry points.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and a seemingly small attack surface, the critical lack of output escaping renders it highly susceptible to XSS attacks. The absence of other common security checks like nonces and capability checks further exacerbates this risk, leaving potential avenues for exploitation unaddressed. This plugin should be treated with extreme caution due to the severe output escaping deficiency.",[169,172,174],{"reason":170,"points":171},"Unescaped output detected",15,{"reason":173,"points":152},"Missing nonce checks",{"reason":175,"points":152},"Missing capability checks","2026-03-17T01:16:18.091Z",{"wat":178,"direct":183},{"assetPaths":179,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[],[],[],[],{"cssClasses":184,"htmlComments":186,"htmlAttributes":187,"restEndpoints":189,"jsGlobals":190,"shortcodeOutput":191},[185],"widget_RandomImage",[],[4,188],"RandomImage",[],[],[192,193,194],"\u003Ca href=\"","wp_get_attachment_url($attach->ID)","wp_get_attachment_image($attach->ID,$imagesize,false)"]