[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOzMFM60d2QWVnQcPbWqmSYJIxeXkfBRQJwMoxoXxMsE":3,"$fcZcpsWYLln30YvCuA2zTPxvzPFcIqh2EmVBCOeXFlaY":150,"$f4bPCTqfOWe5RWmYIshvdx5k3DP2BIwTEVONzqQMdbhU":155},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":71,"crawl_stats":38,"alternatives":77,"analysis":78,"fingerprints":114},"google-distance-calculator","MK Google Directions","3.1.1","Manoj Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanoj_rana91986\u002F","\u003Cp>MK Google Directions :  Enable use of Google Directions in your WordPress blog. It also give details of distance between two locations and also shows driving direction between two places.\u003C\u002Fp>\n\u003Cp>Google Maps gives you the ability to generate directions between start and end point. This plugin uses Google Maps API to embed the Google Direction to your WordPress Blog. This plugin will show the route on the map and also give detailed directions between two points.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shows Google driving directions on map.\u003C\u002Fli>\n\u003Cli>Shows distance between two places.\u003C\u002Fli>\n\u003Cli>Shows time taken to travel between two places.\u003C\u002Fli>\n\u003Cli>Shows step by step driving directions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more details: \u003Ca href=\"http:\u002F\u002Fwww.webtamarin.com\u002Fwordpress-plugins\u002Fmk-google-directions\u002F\" rel=\"nofollow ugc\">Click here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Created By: Manoj Rana\u003C\u002Fp>\n\u003Cp>Email : manoj.rana91986@gmail.com\u003C\u002Fp>\n\u003Ch3>MK Google Directions Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Shows Google driving directions on map.\u003C\u002Fli>\n\u003Cli>Shows distance between two places.\u003C\u002Fli>\n\u003Cli>Supports multiple languages.\u003C\u002Fli>\n\u003Cli>Distance can be displayed both in miles and kilometers.\u003C\u002Fli>\n\u003Cli>Shows time taken to travel between two places.\u003C\u002Fli>\n\u003Cli>Shows step by step driving directions.\u003C\u002Fli>\n\u003Cli>Start\u002FDestination locations can be set from admin dashboard.\u003C\u002Fli>\n\u003Cli>Moblie devices compatible.\u003C\u002Fli>\n\u003C\u002Ful>\n","Enable use of Google Directions in your WordPress blog.",100,13191,68,5,"2025-02-25T10:57:00.000Z","6.7.5","6.0","",[20,21,22,23,24],"google-direction","google-driving-directions","google-maps-and-directions","google-maps-directions","google-travel-directions","http:\u002F\u002Fwww.webtamarin.com\u002Fwordpress-plugins\u002Fmk-google-directions\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.3.1.1.zip",2,1,"2026-02-19 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[33,59],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":38,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":38,"patch_diff_files":47,"patch_trac_url":38,"research_status":48,"research_verified":49,"research_rounds_completed":50,"research_plan":51,"research_summary":52,"research_vulnerable_code":53,"research_fix_diff":54,"research_exploit_outline":55,"research_model_used":56,"research_started_at":57,"research_completed_at":58,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":49,"poc_model_used":38,"poc_verification_depth":38},"CVE-2026-39674","mk-google-directions-authenticated-contributor-stored-cross-site-scripting-2","MK Google Directions \u003C= 3.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting","The MK Google Directions plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=3.1.1","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2026-04-15 21:27:43",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fadf03af6-f454-41c6-bb65-87c7f5d7c465?source=api-prod",[],"researched",false,3,"# Exploitation Research Plan - CVE-2026-39674\n\n## 1. Vulnerability Summary\nThe **MK Google Directions** plugin (version \u003C= 3.1.1) is vulnerable to **Authenticated (Contributor+) Stored Cross-Site Scripting (XSS)**. The vulnerability exists because the plugin fails to sanitize or escape user-supplied attributes within its shortcode(s) before echoing them into the page.\n\nWhile Contributors cannot use `unfiltered_html`, they can embed shortcodes. If a shortcode handler takes attributes (like `from`, `to`, or `api_key`) and outputs them directly into HTML attributes or script blocks without using functions like `esc_attr()` or `esc_html()`, an attacker can \"break out\" of the intended HTML context and execute arbitrary JavaScript.\n\n## 2. Attack Vector Analysis\n- **Shortcode Name:** `[mk-google-directions]` (inferred from plugin title) or `[google-distance-calculator]` (inferred from slug).\n- **Vulnerable Parameters:** Shortcode attributes such as `from`, `to`, `api_key`, `width`, or `height`.\n- **Authentication Level:** Contributor or higher. Contributors have the `edit_posts` capability, allowing them to create posts and use shortcodes.\n- **Preconditions:** The plugin must be active. The attacker needs to be able to create or edit a post\u002Fpage.\n\n## 3. Code Flow\n1. **Entry Point:** A user with Contributor-level access creates or edits a post containing a shortcode, e.g., `[mk-google-directions from='\u003Cpayload>']`.\n2. **Shortcode Processing:** When the post is rendered (either in preview or after publication), WordPress parses the shortcode and calls the registered callback function (likely registered via `add_shortcode` in the main plugin file).\n3. **Data Handling:** The callback function receives the `$atts` array. It likely uses `shortcode_atts()` to merge them with defaults.\n4. **Sink:** The function returns or echoes a string containing the attributes. \n   - **Vulnerable Pattern:** `return '\u003Cdiv id=\"map\" data-address=\"' . $atts['from'] . '\">\u003C\u002Fdiv>';`\n   - **Missing Escaping:** The code fails to wrap `$atts['from']` in `esc_attr()`.\n\n## 4. Nonce Acquisition Strategy\nThis vulnerability is triggered through the standard WordPress post creation\u002Fediting workflow.\n- **Is a Nonce Required?** No specific plugin-defined nonce is required to *inject* the payload, as the attacker is using the native WordPress post editor.\n- **Standard WP Nonces:** The agent will use its existing authentication (Contributor session) to interact with `wp-admin\u002Fpost-new.php` and `wp-admin\u002Fpost.php`.\n\n## 5. Exploitation Strategy\nThe goal is to inject a script that executes when any user (specifically an Administrator) views the post.\n\n### Step 1: Identify the Shortcode\nSearch the plugin directory for the shortcode registration:\n```bash\ngrep -rn \"add_shortcode\" \u002Fvar\u002Fwww\u002Fhtml\u002Fwp-content\u002Fplugins\u002Fgoogle-distance-calculator\u002F\n```\n\n### Step 2: Analyze the Callback\nLocate the function identified in Step 1 and check how it outputs attributes. Look for unescaped variables in `echo` or `return` statements.\n\n### Step 3: Craft the Payload\nIf the attribute is placed inside an HTML attribute:\n- **Payload:** `\">\u003Cscript>alert(document.domain)\u003C\u002Fscript>`\n- **Shortcode Example:** `[mk-google-directions from='\">\u003Cscript>alert(document.domain)\u003C\u002Fscript>']`\n\nIf the attribute is placed inside a JavaScript block:\n- **Payload:** `'; alert(document.domain); \u002F\u002F`\n- **Shortcode Example:** `[mk-google-directions api_key=\"'; alert(document.domain); \u002F\u002F\"]`\n\n### Step 4: Inject and Trigger\n1. Use the `http_request` tool to create a new post as a Contributor.\n2. The request will be a `POST` to `\u002Fwp-admin\u002Fpost.php` or `\u002Fwp-json\u002Fwp\u002Fv2\u002Fposts`.\n3. Include the malicious shortcode in the `content`.\n4. Navigate to the published post URL using `browser_navigate` to verify the XSS triggers.\n\n## 6. Test Data Setup\n1. **User Creation:**\n   ```bash\n   wp user create attacker attacker@example.com --role=contributor --user_pass=password123\n   ```\n2. **Plugin Configuration:**\n   - Ensure the plugin is active: `wp plugin activate google-distance-calculator`\n   - (Optional) If the plugin requires a Google Maps API key to render the shortcode, set a dummy key via `wp option update`.\n\n## 7. Expected Results\n- When the post is rendered, the HTML source should show the payload breaking out of its container.\n- **Example rendered HTML (Vulnerable):**\n  `\u003Cdiv class=\"mk-map\" data-from=\"\">\u003Cscript>alert(document.domain)\u003C\u002Fscript>\">\u003C\u002Fdiv>`\n- The browser should execute the JavaScript (the alert box).\n\n## 8. Verification Steps\n1. **Source Code Check:**\n   Use `http_request` to GET the post and check if the payload is present and **unescaped**:\n   ```bash\n   # Look for the literal string \u003Cscript> in the response\n   ```\n2. **WP-CLI Verification:**\n   Confirm the post content contains the shortcode:\n   ```bash\n   wp post list --post_type=post\n   wp post get \u003CID> --field=post_content\n   ```\n\n## 9. Alternative Approaches\nIf the shortcode attributes are properly escaped, check if the plugin has a **Settings Page** (usually for Administrators) that is vulnerable to XSS. If a Contributor can somehow influence those settings (e.g., through a separate unauthenticated or lower-privileged AJAX action), the XSS could be stored there.\n\nCheck for AJAX handlers:\n```bash\ngrep -rn \"wp_ajax_\" \u002Fvar\u002Fwww\u002Fhtml\u002Fwp-content\u002Fplugins\u002Fgoogle-distance-calculator\u002F\n```\nIf an AJAX handler like `wp_ajax_save_mk_settings` exists and lacks a `current_user_can('manage_options')` check, a Contributor could modify global settings.","The MK Google Directions plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 3.1.1. This is due to the shortcode handler failing to sanitize or escape user-supplied attributes, allowing authenticated attackers with Contributor-level access or higher to inject arbitrary web scripts that execute when a user views the affected page.","\u002F\u002F File: google-distance-calculator.php (inferred from slug)\n\u002F\u002F Shortcode callback function likely receiving attributes via $atts\n\n$a = shortcode_atts(array(\n    'from' => '',\n    'to' => '',\n    'api_key' => ''\n), $atts);\n\n\u002F\u002F Vulnerable: attribute value is concatenated into HTML without escaping\nreturn '\u003Cdiv id=\"map\" data-address=\"' . $a['from'] . '\">\u003C\u002Fdiv>';","--- a\u002Fgoogle-distance-calculator.php\n+++ b\u002Fgoogle-distance-calculator.php\n@@ -10,1 +10,1 @@\n-return '\u003Cdiv id=\"map\" data-address=\"' . $a['from'] . '\">\u003C\u002Fdiv>';\n+return '\u003Cdiv id=\"map\" data-address=\"' . esc_attr($a['from']) . '\">\u003C\u002Fdiv>';","To exploit this vulnerability, an attacker authenticates with Contributor-level permissions and creates or edits a post. They insert the [mk-google-directions] shortcode (or similar, depending on the plugin's registration) into the post content, including a malicious payload in one of the attributes, such as: [mk-google-directions from='\">\u003Cscript>alert(document.domain)\u003C\u002Fscript>']. When the post is saved and subsequently viewed by any user, the unescaped attribute breaks out of the HTML tag context and executes the injected JavaScript in the victim's browser.","gemini-3-flash-preview","2026-04-19 02:19:37","2026-04-19 02:19:54",{"id":60,"url_slug":61,"title":62,"description":63,"plugin_slug":4,"theme_slug":38,"affected_versions":64,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":65,"updated_date":66,"references":67,"days_to_patch":28,"patch_diff_files":69,"patch_trac_url":38,"research_status":38,"research_verified":49,"research_rounds_completed":70,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":49,"poc_model_used":38,"poc_verification_depth":38},"CVE-2024-12820","mk-google-directions-authenticated-contributor-stored-cross-site-scripting","MK Google Directions \u003C= 3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting","The MK Google Directions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'MKGD' shortcode in all versions up to, and including, 3.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=3.1","2025-02-27 16:43:07","2025-02-28 05:23:17",[68],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F23b3570c-cd8e-4dec-bbad-6374c44530bd?source=api-prod",[],0,{"slug":72,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":73,"avg_security_score":74,"avg_patch_time_days":28,"trust_score":75,"computed_at":76},"manoj_rana91986",250,79,85,"2026-05-20T07:12:04.489Z",[],{"attackSurface":79,"codeSignals":95,"taintFlows":103,"riskAssessment":104,"analyzedAt":113},{"hooks":80,"ajaxHandlers":87,"restRoutes":88,"shortcodes":89,"cronEvents":94,"entryPointCount":28,"unprotectedCount":70},[81],{"type":82,"name":83,"callback":84,"file":85,"line":86},"action","wp_enqueue_scripts","mkgd_scripts","mk-google-directions.php",24,[],[],[90],{"tag":91,"callback":92,"file":85,"line":93},"MKGD","mkgd_stortcode",76,[],{"dangerousFunctions":96,"sqlUsage":97,"outputEscaping":99,"fileOperations":70,"externalRequests":70,"nonceChecks":70,"capabilityChecks":70,"bundledLibraries":102},[],{"prepared":70,"raw":70,"locations":98},[],{"escaped":100,"rawEcho":70,"locations":101},10,[],[],[],{"summary":105,"deductions":106},"The plugin \"google-distance-calculator\" v3.1.1 exhibits a mixed security posture.  Static analysis reveals good practices in several areas, including the absence of dangerous functions, 100% use of prepared statements for SQL queries, and all detected outputs being properly escaped. The attack surface is also minimal, with only one shortcode and no unprotected entry points. However, a significant concern arises from the lack of nonce and capability checks across all entry points, despite the static analysis reporting zero unprotected entry points. This suggests a potential reliance on external checks or an oversight in the analysis itself.\n\nThe vulnerability history indicates a past medium-severity Cross-Site Scripting (XSS) vulnerability. While there are no currently unpatched CVEs, the existence of a past XSS issue, even if resolved, warrants attention and reinforces the need for robust input validation and output escaping, which the code analysis suggests is present in its current form.\n\nIn conclusion, while the current code demonstrates strong practices regarding SQL and output handling, the absence of nonce and capability checks on its entry points is a notable weakness. The past XSS vulnerability serves as a reminder of potential risks. A balanced view suggests this plugin is generally well-coded but has areas that could be strengthened to further mitigate risks, particularly concerning authentication and authorization at its entry points.",[107,109,111],{"reason":108,"points":100},"Missing nonce checks on entry points",{"reason":110,"points":100},"Missing capability checks on entry points",{"reason":112,"points":14},"Past medium severity XSS vulnerability","2026-03-16T20:54:34.646Z",{"wat":115,"direct":124},{"assetPaths":116,"generatorPatterns":118,"scriptPaths":119,"versionParams":121},[117],"\u002Fwp-content\u002Fplugins\u002Fgoogle-distance-calculator\u002Fcss\u002Fmkgd-styles.css",[],[120],"\u002Fwp-content\u002Fplugins\u002Fgoogle-distance-calculator\u002Fjs\u002Fmkgd.js",[122,123],"google-distance-calculator\u002Fcss\u002Fmkgd-styles.css?ver=","google-distance-calculator\u002Fjs\u002Fmkgd.js?ver=",{"cssClasses":125,"htmlComments":131,"htmlAttributes":132,"restEndpoints":137,"jsGlobals":138,"shortcodeOutput":140},[126,127,128,129,130],"mkgd-wrap","mkg-header","mkgd-body","mkgdMap","mkgdDirections",[],[133,134,135,136],"id=\"txtSource-","id=\"txtDestination-","id=\"dvMap-","id=\"dvPanel-",[],[139],"directionsDisplay",[141,142,143,144,145,146,147,148,145,149],"\u003Cdiv class=\"mkgd-wrap\">\u003Cdiv class=\"mkg-header\">","\u003Cdiv class=\"mkgd-body\">","\u003Cdiv class=\"mkgdMap\" id=\"dvMap-","\" style=\"width: ","px; height: ","px\">\u003C\u002Fdiv>","\u003Cdiv class=\"mkgdDirections\" id=\"dvPanel-","\" class=\"dvPanel\" style=\"width: ","px;overflow-y:scroll;\">\u003C\u002Fdiv>",{"error":151,"url":152,"statusCode":153,"statusMessage":154,"message":154},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fgoogle-distance-calculator\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":156,"versions":157},11,[158,164,173,182,191,200,209,218,227,236,245],{"version":6,"download_url":26,"svn_tag_url":159,"released_at":38,"has_diff":49,"diff_files_changed":160,"diff_lines":38,"trac_diff_url":161,"vulnerabilities":162,"is_current":151},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F3.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F3.1&new_path=%2Fgoogle-distance-calculator%2Ftags%2F3.1.1",[163],{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":165,"download_url":166,"svn_tag_url":167,"released_at":38,"has_diff":49,"diff_files_changed":168,"diff_lines":38,"trac_diff_url":169,"vulnerabilities":170,"is_current":49},"3.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.3.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F3.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F3.0&new_path=%2Fgoogle-distance-calculator%2Ftags%2F3.1",[171,172],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":174,"download_url":175,"svn_tag_url":176,"released_at":38,"has_diff":49,"diff_files_changed":177,"diff_lines":38,"trac_diff_url":178,"vulnerabilities":179,"is_current":49},"3.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.3.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2.3&new_path=%2Fgoogle-distance-calculator%2Ftags%2F3.0",[180,181],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":183,"download_url":184,"svn_tag_url":185,"released_at":38,"has_diff":49,"diff_files_changed":186,"diff_lines":38,"trac_diff_url":187,"vulnerabilities":188,"is_current":49},"2.2.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.2.2.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F2.2.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2.2&new_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2.3",[189,190],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":192,"download_url":193,"svn_tag_url":194,"released_at":38,"has_diff":49,"diff_files_changed":195,"diff_lines":38,"trac_diff_url":196,"vulnerabilities":197,"is_current":49},"2.2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.2.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F2.2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2.1&new_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2.2",[198,199],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":201,"download_url":202,"svn_tag_url":203,"released_at":38,"has_diff":49,"diff_files_changed":204,"diff_lines":38,"trac_diff_url":205,"vulnerabilities":206,"is_current":49},"2.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.2.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F2.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2&new_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2.1",[207,208],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":210,"download_url":211,"svn_tag_url":212,"released_at":38,"has_diff":49,"diff_files_changed":213,"diff_lines":38,"trac_diff_url":214,"vulnerabilities":215,"is_current":49},"2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F2.1&new_path=%2Fgoogle-distance-calculator%2Ftags%2F2.2",[216,217],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":219,"download_url":220,"svn_tag_url":221,"released_at":38,"has_diff":49,"diff_files_changed":222,"diff_lines":38,"trac_diff_url":223,"vulnerabilities":224,"is_current":49},"2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F1.2&new_path=%2Fgoogle-distance-calculator%2Ftags%2F2.1",[225,226],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":228,"download_url":229,"svn_tag_url":230,"released_at":38,"has_diff":49,"diff_files_changed":231,"diff_lines":38,"trac_diff_url":232,"vulnerabilities":233,"is_current":49},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F1.1&new_path=%2Fgoogle-distance-calculator%2Ftags%2F1.2",[234,235],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":237,"download_url":238,"svn_tag_url":239,"released_at":38,"has_diff":49,"diff_files_changed":240,"diff_lines":38,"trac_diff_url":241,"vulnerabilities":242,"is_current":49},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-distance-calculator%2Ftags%2F1.0&new_path=%2Fgoogle-distance-calculator%2Ftags%2F1.1",[243,244],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38},{"version":246,"download_url":247,"svn_tag_url":248,"released_at":38,"has_diff":49,"diff_files_changed":249,"diff_lines":38,"trac_diff_url":38,"vulnerabilities":250,"is_current":49},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-distance-calculator.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-distance-calculator\u002Ftags\u002F1.0\u002F",[],[251,252],{"id":60,"url_slug":61,"title":62,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":6},{"id":34,"url_slug":35,"title":36,"severity":40,"cvss_score":41,"vuln_type":43,"patched_in_version":38}]