[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbqmgv9xFRxgtKZ2EFbr64nllFYrSYRD43ykTjSWVLdM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":143,"fingerprints":195},"getpocket","Pocket Read it Later Button","1.0","Alex Moss","https:\u002F\u002Fprofiles.wordpress.org\u002Falexmoss\u002F","\u003Cp>This plugin lets you easily add the LPocket Read it Later Button to your WordPress blog via a shortcode.\u003C\u002Fp>\n\u003Cp>Simply install the plugin and insert the shortcode where you want. You can also hardcode the shortcode into your theme templates.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002Fgetpocket-read-it-later-button\u002F\" rel=\"nofollow ugc\">Read it Later Button\u003C\u002Fa> Plugin homepage.\u003C\u002Fli>\n\u003Cli>More \u003Ca href=\"http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002F\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin lets you easily add a Pocket Read it Later button to your WordPress blog via a shortcode.",10,3702,0,"2013-01-23T15:38:00.000Z","3.5.2","2.7","",[19,4,20,21],"bookmarklet","pocket","read-it-later","http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002Fgetpocket-read-it-later-button\u002F?utm_source=WordPress&utm_medium=Admin&utm_campaign=Pocket%2BRead%2Bit%2BLater%2BButton","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgetpocket.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"alexmoss",11,3650,83,249,67,"2026-04-04T06:41:10.833Z",[37,61,85,107,126],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":58,"download_link":59,"security_score":60,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"press-this","Press This","2.0.1","WordPress.org","https:\u002F\u002Fprofiles.wordpress.org\u002Fwordpressdotorg\u002F","\u003Cp>Press This is a little tool that lets you grab bits of the web and create new posts with ease.\u003Cbr \u002F>\nIt will even allow you to choose from images or videos included on the page and use them in your post.\u003Cbr \u002F>\nUse Press This as a quick and lightweight way to highlight another page on the web.\u003C\u002Fp>\n\u003Ch4>Version 2.0 – Gutenberg Block Editor\u003C\u002Fh4>\n\u003Cp>Press This 2.0 brings the modern WordPress block editor experience to the bookmarklet popup. You can now compose posts using familiar blocks like Paragraph, Heading, Image, Quote, List, and Embed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Gutenberg Block Editor\u003C\u002Fstrong> – Full block editor integration for a consistent WordPress editing experience\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Post Format Suggestions\u003C\u002Fstrong> – Automatically suggests Video, Quote, or Link formats based on content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced Content Extraction\u003C\u002Fstrong> – Improved scraping with JSON-LD structured data support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Client-Side Only Scraping\u003C\u002Fstrong> – All content extraction happens in your browser for better privacy and security\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Featured Image Support\u003C\u002Fstrong> – Set any scraped image as your post’s featured image\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Improved Media Grid\u003C\u002Fstrong> – Better thumbnail display with support for video and audio embeds\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Filters for Developers\u003C\u002Fh4>\n\u003Cp>Press This 2.0 includes new filters for customization:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>press_this_allowed_blocks\u003C\u002Fcode> – Customize which blocks are available in the editor\u003C\u002Fli>\n\u003Cli>\u003Ccode>press_this_post_format_suggestion\u003C\u002Fcode> – Modify the auto-suggested post format\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See the \u003Ca href=\"#developer-documentation\" rel=\"nofollow ugc\">Developer Documentation\u003C\u002Fa> section below for details.\u003C\u002Fp>\n\u003Ch3>Contributing\u003C\u002Fh3>\n\u003Cp>Bugs and PRs can be submitted via https:\u002F\u002Fgithub.com\u002FWordPress\u002Fpress-this .\u003C\u002Fp>\n\u003Ch3>Developer Documentation\u003C\u002Fh3>\n\u003Ch4>New Hooks and Filters in 2.0\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>press_this_allowed_blocks\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Customize which blocks are available in the Press This editor.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'press_this_allowed_blocks', function( $blocks ) {\n    \u002F\u002F Add the gallery block\n    $blocks[] = 'core\u002Fgallery';\n\n    \u002F\u002F Remove the embed block\n    $blocks = array_filter( $blocks, function( $block ) {\n        return $block !== 'core\u002Fembed';\n    } );\n\n    return $blocks;\n} );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Default blocks: \u003Ccode>core\u002Fparagraph\u003C\u002Fcode>, \u003Ccode>core\u002Fheading\u003C\u002Fcode>, \u003Ccode>core\u002Fimage\u003C\u002Fcode>, \u003Ccode>core\u002Fquote\u003C\u002Fcode>, \u003Ccode>core\u002Flist\u003C\u002Fcode>, \u003Ccode>core\u002Flist-item\u003C\u002Fcode>, \u003Ccode>core\u002Fembed\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>press_this_post_format_suggestion\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Modify or override the auto-suggested post format based on content.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'press_this_post_format_suggestion', function( $suggested_format, $data ) {\n    \u002F\u002F If the URL contains 'podcast', suggest audio format\n    if ( ! empty( $data['u'] ) && strpos( $data['u'], 'podcast' ) !== false ) {\n        return 'audio';\n    }\n\n    return $suggested_format;\n}, 10, 2 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The \u003Ccode>$data\u003C\u002Fcode> array contains scraped content including:\u003Cbr \u002F>\n– \u003Ccode>u\u003C\u002Fcode> – Source URL\u003Cbr \u002F>\n– \u003Ccode>s\u003C\u002Fcode> – Selected text\u003Cbr \u002F>\n– \u003Ccode>t\u003C\u002Fcode> – Page title\u003Cbr \u002F>\n– \u003Ccode>_images\u003C\u002Fcode> – Array of image URLs\u003Cbr \u002F>\n– \u003Ccode>_embeds\u003C\u002Fcode> – Array of embed URLs\u003Cbr \u002F>\n– \u003Ccode>_meta\u003C\u002Fcode> – Meta tag data\u003Cbr \u002F>\n– \u003Ccode>_jsonld\u003C\u002Fcode> – JSON-LD structured data\u003C\u002Fp>\n\u003Ch4>Preserved Hooks from 1.x\u003C\u002Fh4>\n\u003Cp>All existing hooks continue to work:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>press_this_redirect_in_parent\u003C\u002Fcode> – Control post-save redirect behavior\u003C\u002Fli>\n\u003Cli>\u003Ccode>press_this_save_post\u003C\u002Fcode> – Filter post data before saving\u003C\u002Fli>\n\u003Cli>\u003Ccode>press_this_save_redirect\u003C\u002Fcode> – Filter redirect URL after save\u003C\u002Fli>\n\u003Cli>\u003Ccode>enable_press_this_media_discovery\u003C\u002Fcode> – Toggle media scraping\u003C\u002Fli>\n\u003Cli>\u003Ccode>press_this_data\u003C\u002Fcode> – Filter the complete scraped data array\u003C\u002Fli>\n\u003Cli>\u003Ccode>press_this_suggested_html\u003C\u002Fcode> – Filter default content templates\u003C\u002Fli>\n\u003Cli>\u003Ccode>shortcut_link\u003C\u002Fcode> – Customize the bookmarklet URL\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>History\u003C\u002Fh3>\n\u003Cp>WordPress, from the earliest days, included some way to bring in snippets from other websites for you to post on your own.\u003C\u002Fp>\n\u003Cp>The original “Press It” was removed from WordPress 2.5 and a new “Press This” added in 2.6. It existed pretty much unchanged until WordPress 4.2, which completely refreshed Press This.\u003C\u002Fp>\n\u003Cp>In WordPress 4.9, Press This was spun out to a “canonical plugin” — an official plugin from WordPress.org so sites who wanted to use it could, but streamline more niche functionality out of Core. This was previously done with the Importers.\u003C\u002Fp>\n\u003Cp>In version 2.0, Press This was modernized to use the Gutenberg block editor, bringing it in line with the modern WordPress editing experience while maintaining backward compatibility with existing installations.\u003C\u002Fp>\n","Posting images, links, and cat gifs will never be the same.",6000,99041,74,25,"2026-02-23T19:02:00.000Z","6.7.5","6.9","7.4",[19,54,55,56,57],"gutenberg","photo-post","post","quick-post","https:\u002F\u002Fwordpress.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpress-this.2.0.1.zip",100,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":17,"tags":76,"homepage":80,"download_link":81,"security_score":82,"vuln_count":83,"unpatched_count":13,"last_vuln_date":84,"fetched_at":26},"lh-add-media-from-url","LH Add Media From Url","1.30","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>This plugin allow you to grab image from remote url and save into your own word press media library. By doing so, you never worried if the remote image was removed by its owner. This also save you steps to download the image to local computer and upload again to your own WordPress. There is also a JavaScript bookmarklet that helps to automate the process if you are surfing the internet and find something you would like to add to the library\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatically downloads and adds the file to the media library.\u003C\u002Fli>\n\u003Cli>After the uploading is successful, you are redirected to the edit screen\u003C\u002Fli>\n\u003Cli>Once the bookmarklet is installed you don’t even need to copy and paste a url (just navigate to the url and select the bookmark).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-add-media-from-url\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-add-media-from-url\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Translation credits\u003C\u002Fh3>\n","Upload files from an url to wordpress media library, either enter file urls in an onsite input box or click a bookmarklet.",2000,37732,84,9,"2024-08-20T14:07:00.000Z","6.6.5","5.0",[77,19,78,79,56],"attachment","download","media","https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-add-media-from-url\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-add-media-from-url.zip",91,2,"2024-08-20 17:25:05",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":60,"num_ratings":95,"last_updated":96,"tested_up_to":97,"requires_at_least":98,"requires_php":99,"tags":100,"homepage":17,"download_link":106,"security_score":60,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"ecard-digital-visiting-card","ECard – Digital Visiting Card","1.5.0","Ankitkumar Shah","https:\u002F\u002Fprofiles.wordpress.org\u002Fankitshah230\u002F","\u003Cp>Elevate your professional presence with the “ECard – Digital Visiting Card” WordPress plugin. This versatile tool allows you to create a sleek, modern, and fully customizable digital business card directly on your website. Perfect for professionals and businesses looking to showcase their contact information and services efficiently, the ECard plugin integrates seamlessly with WordPress to provide a comprehensive digital solution.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Contact Information\u003C\u002Fstrong>\u003Cbr \u002F>\nEasily display essential contact details, including phone numbers, email addresses, and physical addresses, ensuring that potential clients and collaborators can reach you effortlessly.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Social Connections\u003C\u002Fstrong>\u003Cbr \u002F>\nEnhance your network by incorporating links to your social media profiles. The plugin supports a variety of social platforms, allowing visitors to connect with you on their preferred channels.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Service Details\u003C\u002Fstrong>\u003Cbr \u002F>\nHighlight your offerings with well-organized sections for detailed descriptions of each service.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Gallery\u003C\u002Fstrong>\u003Cbr \u002F>\nShowcase your work or company highlights with a built-in gallery feature. Whether you’re a freelancer displaying your portfolio or a business presenting your products, this feature allows you to add images and create a visual impact.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Videos\u003C\u002Fstrong>\u003Cbr \u002F>\nHighlight your content or company achievements with our integrated video section. Whether you’re sharing promotional videos, tutorials, or presentations, this feature enables you to embed YouTube videos seamlessly, creating a dynamic and engaging experience for your audience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Designed with user experience in mind, the ECard plugin is easy to set up and customize, ensuring that your digital card reflects your unique style and professional brand. Make a lasting impression with a dynamic and interactive digital visiting card that stands out in the digital age.\u003C\u002Fp>\n\u003Ch3>3rd party services\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>YouTube\u003C\u002Fstrong>\u003Cbr \u002F>\nThis plugin uses the VenoBox library to display YouTube videos. The VenoBox library embeds the videos within your website using the following URL:\u003Cbr \u002F>\nhttps:\u002F\u002Fwww.youtube-nocookie.com\u002Fembed\u002F\u003C\u002Fp>\n\u003Cp>Terms of service:\u003Cbr \u002F>\nhttps:\u002F\u002Fdevelopers.google.com\u002Fyoutube\u002Fterms\u002Fapi-services-terms-of-service\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Vimeo\u003C\u002Fstrong>\u003Cbr \u002F>\nThis plugin uses the VenoBox library to display Vimeo videos. The VenoBox library embeds the videos within your website using the following URL:\u003Cbr \u002F>\nhttps:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F\u003C\u002Fp>\n\u003Cp>Terms of service:\u003Cbr \u002F>\nhttps:\u002F\u002Fvimeo.com\u002Fterms\u003C\u002Fp>\n\u003Ch3>Privacy Notes\u003C\u002Fh3>\n\u003Cp>Your privacy is important to us. The “ECard – Digital Visiting Card” plugin collects and processes personal information only as necessary to deliver its features and functionality. We do not store or share any data beyond what is required for the plugin’s operation. Any information you provide, including contact details and service descriptions, is securely managed and used solely for the purpose of enhancing your digital business card experience.\u003C\u002Fp>\n\u003Ch4>GDPR (General Data Protection Regulation)\u003C\u002Fh4>\n\u003Cp>The plugin is fully GDPR compliant and does not use or store any user information or data. It operates independently of personal data and does not interact with or handle user information in any way.\u003C\u002Fp>\n","Create stylish digital business cards as mini websites directly on your site with the ECard plugin. Perfect for professionals and businesses.",300,2300,1,"2025-09-17T16:31:00.000Z","6.8.5","4.7","7.0",[101,102,103,104,105],"business-card","mini-website","mobile-card","pocket-website","visiting-card","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fecard-digital-visiting-card.1.5.0.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":60,"downloaded":115,"rating":116,"num_ratings":83,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":120,"tags":121,"homepage":124,"download_link":125,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"digital-business-card","Digital Visiting\u002FBusiness Card","1.4","webrndexperts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebrndexperts\u002F","\u003Cp>With this plugin you only need to install and then put your basic information and your business card is ready to view, You can share that link with any one and they can view your business card, So we can also call it MiniPocket Website or Paper Less Business Card. This is plugin is good fit for small, medium and large organization. This plugin using the Custom Post Type.\u003C\u002Fp>\n\u003Ch3>Privacy Notes\u003C\u002Fh3>\n\u003Cp>This plugin does not track any additional data other than what WordPress natively collects upon registration. It just makes the data visble.\u003C\u002Fp>\n\u003Ch4>GDPR (General Data Protection Regulation)\u003C\u002Fh4>\n\u003Cp>The plugin is GDPR compliant. It does not use or store any kind of user information\u002Fdata. In fact, it’s functionality has nothing to do with user data (personal or otherwise). So there’s that.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>MIT\u003C\u002Fp>\n\u003Cp>You should have received a copy of the MIT License along with this program.\u003Cbr \u002F>\nIf not, see \u003Ca href=\"http:\u002F\u002Fopensource.org\u002Flicenses\u002FMIT\" rel=\"nofollow ugc\">http:\u002F\u002Fopensource.org\u002Flicenses\u002FMIT\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donate\u003C\u002Fh3>\n\u003Cp>If you like this plugin and find it useful, consider making a [donation] (https:\u002F\u002Fpaypal.me\u002Frndexperts) :).\u003C\u002Fp>\n","Digital Business Card now in your pocket, You can also call it Mini Pocket website",3957,20,"2024-02-09T05:38:00.000Z","6.4.8","4.7.0","5.5.0",[101,108,122,104,123],"digital-visiting-card","visting-card","https:\u002F\u002Frndexperts.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdigital-business-card.1.4.zip",{"slug":127,"name":128,"version":129,"author":130,"author_profile":131,"description":132,"short_description":133,"active_installs":60,"downloaded":134,"rating":135,"num_ratings":136,"last_updated":137,"tested_up_to":15,"requires_at_least":138,"requires_php":17,"tags":139,"homepage":141,"download_link":142,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"press-this-reloaded","Press This Reloaded","1.1","scribu","https:\u002F\u002Fprofiles.wordpress.org\u002Fscribu\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FPress_This\" rel=\"nofollow ugc\">Press This\u003C\u002Fa> is neat, but wouldn’t it be a lot neater if you had access to all the functionality you have on the normal post editing screen?\u003C\u002Fp>\n\u003Cp>With this plugin, you will have access to all the meta boxes, not just Categories and Tags.\u003C\u002Fp>\n\u003Cp>Also, plain URLs are inserted in the post content, letting the \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FEmbeds\" rel=\"nofollow ugc\">Embeds\u003C\u002Fa> feature do the rest.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> After activating the plugin, you will have to re-add the bookmarklet, from WP Admin -> Tools.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fscribu.net\u002Fwordpress\u002Fpress-this-reloaded\" rel=\"nofollow ugc\">Plugin News\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fscribu.net\" rel=\"nofollow ugc\">Author’s Site\u003C\u002Fa>\u003C\u002Fp>\n","Press This, using the regular Add New Post screen",19655,56,4,"2013-04-07T23:24:00.000Z","3.4",[19,38,140],"pressthis","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fpress-this-reloaded\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpress-this-reloaded.1.1.zip",{"attackSurface":144,"codeSignals":163,"taintFlows":183,"riskAssessment":184,"analyzedAt":194},{"hooks":145,"ajaxHandlers":156,"restRoutes":157,"shortcodes":158,"cronEvents":162,"entryPointCount":95,"unprotectedCount":13},[146,151],{"type":147,"name":148,"callback":149,"file":150,"line":72},"action","admin_menu","show_getpocket_options","class-admin.php",{"type":152,"name":153,"callback":154,"file":155,"line":30},"filter","widget_text","do_shortcode","class-frontend.php",[],[],[159],{"tag":4,"callback":160,"file":155,"line":161},"getpocketshortcode",12,[],{"dangerousFunctions":164,"sqlUsage":165,"outputEscaping":167,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":182},[],{"prepared":13,"raw":13,"locations":166},[],{"escaped":83,"rawEcho":168,"locations":169},6,[170,173,174,176,178,180],{"file":150,"line":171,"context":172},72,"raw output",{"file":150,"line":171,"context":172},{"file":150,"line":175,"context":172},116,{"file":150,"line":177,"context":172},127,{"file":150,"line":179,"context":172},130,{"file":150,"line":181,"context":172},142,[],[],{"summary":185,"deductions":186},"The getpocket plugin version 1.0 exhibits a generally positive security posture based on the static analysis.  It has a very small attack surface, consisting of a single shortcode, and no identified AJAX handlers, REST API routes, or cron events that lack authentication or proper permission checks.  Furthermore, the code shows good practices in its handling of SQL queries, with 100% using prepared statements, and avoids file operations and external HTTP requests, which are common sources of vulnerabilities.  The absence of known CVEs in its vulnerability history is also a strong indicator of a well-maintained and secure codebase.\n\nHowever, the analysis does reveal a significant concern regarding output escaping. With only 25% of the 8 identified outputs being properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. This means that user-supplied data or data processed by the plugin could be rendered directly into the page without proper sanitization, allowing malicious scripts to be executed. The lack of any identified taint flows in this analysis is surprising given the output escaping issues, suggesting that perhaps the analysis was not exhaustive or the taint paths are not immediately obvious through the available data. The absence of nonce checks and capability checks, while not directly exploited by the current attack surface, represents a missed opportunity for defense-in-depth.\n\nIn conclusion, while the plugin has a strong foundation with minimal attack surface and good SQL practices, the poor output escaping is a critical weakness that needs immediate attention. The vulnerability history is clean, which is a positive sign, but it does not negate the risks posed by the identified code quality issues. Addressing the output escaping would significantly improve the plugin's security.",[187,189,192],{"reason":188,"points":11},"Low percentage of properly escaped output",{"reason":190,"points":191},"Missing nonce checks",5,{"reason":193,"points":191},"Missing capability checks","2026-03-17T01:28:59.676Z",{"wat":196,"direct":202},{"assetPaths":197,"generatorPatterns":199,"scriptPaths":200,"versionParams":201},[198],"\u002Fwp-content\u002Fplugins\u002Fgetpocket\u002Fadmin.css",[],[],[],{"cssClasses":203,"htmlComments":214,"htmlAttributes":215,"restEndpoints":221,"jsGlobals":222,"shortcodeOutput":225},[204,205,206,207,208,209,210,211,212,213],"pea_admin_wrap","pea_admin_top","pea_admin_main_wrap","pea_admin_main_left","pea_admin_signup","mc-field-group","pea_admin_green","pea_admin_box","pea_admin_main_right","pea_admin_logo",[],[216,217,218,219,220],"data-href","data-send","data-layout","data-width","data-show-faces",[],[223,224],"mc_embed_signup","fb-like",[226],"[getpocket]"]