[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZ3rvaplMv7G3KLU7RFebFGTTPaZVC2v9dORHIgZy28Y":3,"$fvqWqtoCFU0khI0sTyE4XaHUzgrf3DkPZw997zEFVxFY":216,"$ffYY0uuPqGzGldJ3GQK1YLjdVZ4XXnqmIYCSb0BUp2js":221},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":40,"analysis":98,"fingerprints":191},"google-plus-badge-like-fb-like-box","Google+ Follow Box","0.1.8","Manivannan M","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanivannan-m\u002F","\u003Cp>Google Plus Badge Follow Box like FB Like Box which displays Followers profile pics, Follow button and +1 button.\u003C\u002Fp>\n\u003Cp>Minimum Height and Width for the widget is 150 and maximum is 800, which is increased by 50. You can just select the height and width from drop down list.\u003C\u002Fp>\n\u003Cp>If you don’t need +1 button you can easily remove it from widget by checking remove plus one button check box in widget settings.\u003C\u002Fp>\n\u003Cp>Additionaly you can also remove border line from widget by checking remove border check box in widget settings.\u003C\u002Fp>\n\u003Ch4>Support \u002F Contact\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\u002Fgoogle-plus-badge-follow-box\u002F\" title=\"Click here to check the demo of the plugin\" rel=\"nofollow ugc\">DEMO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\" title=\"Contact at Aidful.com\" rel=\"nofollow ugc\">Developer Blog: Aidful.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plug-in, please don’t forget to rate this plugin.\u003C\u002Fp>\n","Google+ Badge \u002F Follow Box Widget like FB Like Box",90,13784,80,4,"2016-06-01T09:11:00.000Z","4.5.33","2.5","",[20,21,22,23,24],"google-plus-badge","google-plus-follow-button","google-plus-followers","google-badge","google-followers-pic","http:\u002F\u002Fwww.aidful.com\u002Fgoogle-plus-badge-follow-box\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":34,"display_name":7,"profile_url":8,"plugin_count":35,"total_installs":36,"avg_security_score":27,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"manivannan-m",2,390,30,84,"2026-05-20T00:17:33.071Z",[41,62,82],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":51,"num_ratings":52,"last_updated":53,"tested_up_to":54,"requires_at_least":55,"requires_php":18,"tags":56,"homepage":60,"download_link":61,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"add-to-circle-widget","Add to Circle Widget","1.0","Tesur Rajan","https:\u002F\u002Fprofiles.wordpress.org\u002Ftesurrajan\u002F","\u003Cp>Add to Circle Widget is very easy to use, just drag it to a sidebar and enter your Google+ Page ID, select layout style, color scheme and save the widget.\u003C\u002Fp>\n\u003Cp>By adding this plugin you can grow your audience on Google+ and generate more recommendations for your site in Google search.\u003C\u002Fp>\n\u003Cp>Your users can easily add your Google+ Page to their circles directly from your blog.\u003C\u002Fp>\n\u003Cp>Add to Circle Widget, also gives you the option to choose the size and color scheme of Google+ Badge.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong> You need to add the code given below in your header.php before \u003Ccode>\u003C\u002Fhead>\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Clink href=\"https:\u002F\u002Fplus.google.com\u002F[Google+_Page_ID]\" rel=\"publisher\" \u002F>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Highlights:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to install.\u003C\u002Fli>\n\u003Cli>Two different layouts.\u003C\u002Fli>\n\u003Cli>Color Schemes (light, dark)\u003C\u002Fli>\n\u003Cli>Loads Script Asynchronously\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin generates a widget to add Google+ badge on your blog with 'Add to Circles' button.",10,3760,100,1,"2012-02-14T15:18:00.000Z","3.3.2","2.9",[57,58,23,59],"add-to-circle","google","plus-one-badge","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fadd-to-circle-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadd-to-circle-widget.zip",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":49,"downloaded":70,"rating":28,"num_ratings":28,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":18,"tags":74,"homepage":79,"download_link":80,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":81},"google-badge-connect-direct-for-wordpress","Google Plus Badge Direct Connect","1.1","zzasha2007","https:\u002F\u002Fprofiles.wordpress.org\u002Fzzasha2007\u002F","\u003Cp>Google+ badge allows visitors to directly connect with and promote your brand on Google+ from your website. Now you can add a Google+ badge to help your visitors find and engage with you on Google+.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.eshiok.com\u002Fcomponent\u002Foption,com_docman\u002Ftask,doc_details\u002Fgid,185\u002FItemid,29\u002F\" rel=\"nofollow ugc\">Visit Our Website:\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Frequntly Asked Qustions\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.eshiok.com\u002F\" rel=\"nofollow ugc\">Visit\u003C\u002Fa>\u003C\u002Fp>\n","Google+ badge allows visitors to directly connect with and promote your brand on Google+ from your website. Now you can add a Google+ badge to help yo &hellip;",4958,"2011-11-21T14:54:00.000Z","3.2.1","3.2",[75,76,23,77,78],"connect-direct","google-connect-direct","seo","social-network","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgoogle-badge-connect-direct-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-badge-connect-direct-for-wordpress.zip","2026-04-06T09:54:40.288Z",{"slug":83,"name":84,"version":44,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":49,"downloaded":89,"rating":28,"num_ratings":28,"last_updated":90,"tested_up_to":54,"requires_at_least":91,"requires_php":18,"tags":92,"homepage":96,"download_link":97,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"google-page-badge","Google+ Page Badge","bkmacdaddy","https:\u002F\u002Fprofiles.wordpress.org\u002Fbkmacdaddy\u002F","\u003Cp>This plugin allows you to place a widget on your sidebar that displays the official Google+ badge. You can choose to show either the Standard or Small size badge, and you can show as many different badges on a page or post as you choose – each with their own configuration.\u003C\u002Fp>\n\u003Cp>You can also show a Google+ badge using template tags in your theme files or in a page or post using the simple shortcode (See FAQs for instructions).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong> Google+ only allows this type of badge for a Google+ \u003Cem>page\u003C\u002Fem> and not a personal Google+ \u003Cem>profile\u003C\u002Fem>, so this plugin will only work for Google+ business \u003Cem>pages\u003C\u002Fem>.\u003C\u002Fp>\n","Show one or multiple Google+ badges for your G+ page in a widget, using a shortcode, or with template tags.",5012,"2012-02-02T18:01:00.000Z","2.8",[93,58,94,95,23],"badge","google-page","google-plus","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgoogle-page-badge","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-page-badge.zip",{"attackSurface":99,"codeSignals":111,"taintFlows":176,"riskAssessment":177,"analyzedAt":190},{"hooks":100,"ajaxHandlers":107,"restRoutes":108,"shortcodes":109,"cronEvents":110,"entryPointCount":28,"unprotectedCount":28},[101],{"type":102,"name":103,"callback":104,"file":105,"line":106},"action","widgets_init","anonymous","google_plus_like_fb_like_box.php",192,[],[],[],[],{"dangerousFunctions":112,"sqlUsage":116,"outputEscaping":118,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":175},[113],{"fn":114,"file":105,"line":106,"context":115},"create_function","add_action('widgets_init', create_function('', 'return register_widget(\"Google_Plus_Like_FB_Like\");'",{"prepared":28,"raw":28,"locations":117},[],{"escaped":28,"rawEcho":119,"locations":120},35,[121,124,126,127,128,130,132,133,134,136,138,139,141,142,144,146,147,149,150,152,153,154,156,157,158,160,162,164,165,167,168,169,171,172,173],{"file":105,"line":122,"context":123},44,"raw output",{"file":105,"line":125,"context":123},45,{"file":105,"line":125,"context":123},{"file":105,"line":125,"context":123},{"file":105,"line":129,"context":123},49,{"file":105,"line":131,"context":123},50,{"file":105,"line":131,"context":123},{"file":105,"line":131,"context":123},{"file":105,"line":135,"context":123},54,{"file":105,"line":137,"context":123},55,{"file":105,"line":137,"context":123},{"file":105,"line":140,"context":123},59,{"file":105,"line":140,"context":123},{"file":105,"line":143,"context":123},66,{"file":105,"line":145,"context":123},67,{"file":105,"line":145,"context":123},{"file":105,"line":148,"context":123},71,{"file":105,"line":148,"context":123},{"file":105,"line":151,"context":123},78,{"file":105,"line":151,"context":123},{"file":105,"line":151,"context":123},{"file":105,"line":155,"context":123},82,{"file":105,"line":155,"context":123},{"file":105,"line":155,"context":123},{"file":105,"line":159,"context":123},121,{"file":105,"line":161,"context":123},125,{"file":105,"line":163,"context":123},165,{"file":105,"line":163,"context":123},{"file":105,"line":166,"context":123},167,{"file":105,"line":166,"context":123},{"file":105,"line":166,"context":123},{"file":105,"line":170,"context":123},171,{"file":105,"line":170,"context":123},{"file":105,"line":170,"context":123},{"file":105,"line":174,"context":123},187,[],[],{"summary":178,"deductions":179},"The \"google-plus-badge-like-fb-like-box\" plugin v0.1.8 exhibits a concerning security posture, primarily due to significant weaknesses in output handling and the presence of a deprecated and potentially dangerous function. While the static analysis indicates a lack of readily exploitable entry points like AJAX handlers, REST API routes, or shortcodes, this is overshadowed by the fact that 100% of its outputs are unescaped. This indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, where malicious scripts could be injected and executed in users' browsers if any user-supplied data is reflected in the plugin's output.\n\nFurthermore, the presence of the `create_function` function is a red flag. This function is deprecated in modern PHP and is often associated with security risks due to its dynamic code execution capabilities. While no taint flows or SQL injection vulnerabilities were identified, and the plugin has no recorded vulnerability history, these positive aspects do not negate the critical risk posed by the widespread lack of output escaping and the use of `create_function`. The absence of any capability or nonce checks on the identified entry points (though there are none listed) also means that if any entry points were to be added in the future, they would likely be unprotected.\n\nIn conclusion, despite a clean vulnerability history and no apparent SQL injection or taint vulnerabilities, the plugin's fundamental implementation issues, specifically unescaped output and the use of `create_function`, make it a significant security risk. The lack of output escaping is a critical flaw that could lead to XSS attacks. The plugin should be updated or patched to address these fundamental security weaknesses.",[180,183,185,188],{"reason":181,"points":182},"All outputs are unescaped",15,{"reason":184,"points":49},"Uses deprecated and dangerous function 'create_function'",{"reason":186,"points":187},"No nonce checks on entry points",5,{"reason":189,"points":187},"No capability checks on entry points","2026-03-16T21:19:51.958Z",{"wat":192,"direct":199},{"assetPaths":193,"generatorPatterns":195,"scriptPaths":196,"versionParams":198},[194],"\u002Fwp-content\u002Fplugins\u002Fgoogle-plus-badge-like-fb-like-box\u002Fgoogle_plus_like_fb_like_box.php",[],[197],"https:\u002F\u002Fapis.google.com\u002Fjs\u002Fplusone.js",[],{"cssClasses":200,"htmlComments":202,"htmlAttributes":203,"restEndpoints":211,"jsGlobals":212,"shortcodeOutput":215},[201],"google_plus_follow_box",[],[204,205,206,207,208,209,210],"data-action=\"followers\"","data-height","data-href=\"https:\u002F\u002Fplus.google.com\u002F\"","data-source=\"blogger:blog:followers\"","data-width","data-size=\"standard\"","data-annotation=\"bubble\"",[],[213,214],"po","s",[],{"error":217,"url":218,"statusCode":219,"statusMessage":220,"message":220},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fgoogle-plus-badge-like-fb-like-box\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":222,"versions":223},8,[224,232,239,246,253,260,267,274],{"version":225,"download_url":226,"svn_tag_url":227,"released_at":29,"has_diff":228,"diff_files_changed":229,"diff_lines":29,"trac_diff_url":230,"vulnerabilities":231,"is_current":228},"0.1.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.7\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.6&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.7",[],{"version":233,"download_url":234,"svn_tag_url":235,"released_at":29,"has_diff":228,"diff_files_changed":236,"diff_lines":29,"trac_diff_url":237,"vulnerabilities":238,"is_current":228},"0.1.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.5&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.6",[],{"version":240,"download_url":241,"svn_tag_url":242,"released_at":29,"has_diff":228,"diff_files_changed":243,"diff_lines":29,"trac_diff_url":244,"vulnerabilities":245,"is_current":228},"0.1.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.4&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.5",[],{"version":247,"download_url":248,"svn_tag_url":249,"released_at":29,"has_diff":228,"diff_files_changed":250,"diff_lines":29,"trac_diff_url":251,"vulnerabilities":252,"is_current":228},"0.1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.3&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.4",[],{"version":254,"download_url":255,"svn_tag_url":256,"released_at":29,"has_diff":228,"diff_files_changed":257,"diff_lines":29,"trac_diff_url":258,"vulnerabilities":259,"is_current":228},"0.1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.2&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.3",[],{"version":261,"download_url":262,"svn_tag_url":263,"released_at":29,"has_diff":228,"diff_files_changed":264,"diff_lines":29,"trac_diff_url":265,"vulnerabilities":266,"is_current":228},"0.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.1&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.2",[],{"version":268,"download_url":269,"svn_tag_url":270,"released_at":29,"has_diff":228,"diff_files_changed":271,"diff_lines":29,"trac_diff_url":272,"vulnerabilities":273,"is_current":228},"0.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1&new_path=%2Fgoogle-plus-badge-like-fb-like-box%2Ftags%2F0.1.1",[],{"version":275,"download_url":276,"svn_tag_url":277,"released_at":29,"has_diff":228,"diff_files_changed":278,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":279,"is_current":228},"0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-badge-like-fb-like-box.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgoogle-plus-badge-like-fb-like-box\u002Ftags\u002F0.1\u002F",[],[]]