[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fzRovuoTbC-qLNmy9EHX_ocUbWw5287Ywr51GFUvRCqo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":45,"crawl_stats":36,"alternatives":53,"analysis":153,"fingerprints":232},"google-plus-comments","Google+ Comments","1.0","Alex Moss","https:\u002F\u002Fprofiles.wordpress.org\u002Falexmoss\u002F","\u003Cp>Google+ comments was introduced in April 2013 to blogger.com users. This plugin lets you add Google+ comments to your WordPress site!\u003C\u002Fp>\n\u003Cp>Simply install the plugin and follow the instructions on the Settings page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002Fgoogle-plus-comments\u002F\" rel=\"nofollow ugc\">Google+ Comments\u003C\u002Fa> Plugin homepage.\u003C\u002Fli>\n\u003Cli>More \u003Ca href=\"http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002F\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also insert the comment box as a shortcode into any post, page or template and use your own settings for each time you do it! Simply use the shortcode [gp-comments]\u003C\u002Fp>\n","The Google+ Comments WordPress plugin makes it easier for you to setup, administer and customise Google+ comments from your WordPress site.",40,12040,72,10,"2013-04-25T12:06:00.000Z","3.5.2","2.7","",[20,21,22,23],"commenting","comments","google","google-plus","http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002Fgoogle-plus-comments\u002F?utm_source=WordPress&utm_medium=Admin&utm_campaign=Google%2BComments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-plus-comments.1.0.zip",63,1,"2025-09-26 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-60186","google-comments-authenticated-administrator-stored-cross-site-scripting","Google+ Comments \u003C= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Google+ Comments plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=1.0","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-09-29 21:07:23",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F27384009-2ce4-4644-90b2-5f252a1cf2a5?source=api-prod",{"slug":46,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":49,"avg_patch_time_days":50,"trust_score":51,"computed_at":52},"alexmoss",11,3650,83,249,67,"2026-04-04T03:43:47.586Z",[54,80,101,120,134],{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":18,"tags":69,"homepage":75,"download_link":76,"security_score":77,"vuln_count":27,"unpatched_count":78,"last_vuln_date":79,"fetched_at":29},"heateor-social-comments","Social Comments by Heateor","1.6.3","Heateor Support","https:\u002F\u002Fprofiles.wordpress.org\u002Fheateor\u002F","\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you want to integrate only Facebook Comments, you should install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffancy-facebook-comments\u002F\" rel=\"ugc\">Fancy Comments\u003C\u002Fa> instead.\u003C\u002Fp>\n\u003Cp>This plugin allows you to transform the commenting system of your website. You can enable Facebook Comments, Disqus Comments and\u002For default WordPress comments simultaneously. You have full control over which of these four commenting systems you want to enable. You can choose between stacked and tabbed interface with re-ordering of the comments.\u003C\u002Fp>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Col>\n\u003Cli>GDPR Compliant\u003C\u002Fli>\n\u003Cli>Compatible with Gutenberg editor\u003C\u002Fli>\n\u003Cli>Integrate \u003Cstrong>Facebook Comments\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Integrate \u003Cstrong>Vkontakte Comments\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Integrate \u003Cstrong>Disqus Comments\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Choose between \u003Cstrong>Tabbed and Stacked layouts\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rearrange order\u003C\u002Fstrong> of enabled commenting systems\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customize labels\u003C\u002Fstrong> for individual comment system as well as combined comment system\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Show\u002FHide comment counts\u003C\u002Fstrong> for individual comment system\u003C\u002Fli>\n\u003Cli>Options to \u003Cstrong>enable Social Commenting on default post types (posts, pages) as well as custom post types\u003C\u002Fstrong> which support comments\u003C\u002Fli>\n\u003Cli>Enable \u003Cstrong>Social Comments with\u002Fwithout default comments system\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable behavior for individual comment system\u003C\u002Fstrong>, like – Target Url, language, width of commenting interface, label etc. \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>What makes this plugin different and why should I choose this plugin when there are many other similar plugins?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Totally free\u003C\u002Fstrong>. You don’t need to pay single penny to use this plugin.\u003C\u002Fli>\n\u003Cli>Plugin configuration is kept \u003Cstrong>dead simple\u003C\u002Fstrong>. You can configure it with help of an idiot 😉\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugin loads optimally\u003C\u002Fstrong> having minimum possible interference with overall loading of your website  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>No third party registration\u003C\u002Fstrong>. We won’t ask you to register at our website to use this plugin, neither will we ask your email.\u003C\u002Fli>\n\u003Cli>We promise to provide \u003Cstrong>best quality\u003C\u002Fstrong> among other similar plugins. If you find our plugin is lacking some feature, you can email us and we will do our best to include that feature in our plugin as soon as possible.\u003C\u002Fli>\n\u003Cli>Our \u003Cstrong>support team is working 24\u002F7\u003C\u002Fstrong> to answer your queries and assist you. You will find us the quickest to assist you among others.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Benefits of Social Comments\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Virality\u003C\u002Fstrong>: When people comment at your blog using their Facebook, Disqus accounts, the comment not only shows up at your blog, but it also appears in their news feed. This puts your blog in front of new audience which further adds to the likelihood of you getting a new returning visitor.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Higher Conversations\u003C\u002Fstrong>: When you know the person commenting on something, it’s more likely that you will also type out your ideas there, unlike the situation when you don’t know the person involved in the conversation.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Credibility\u003C\u002Fstrong>: In traditional comment form, anyone can put any fake name (Bruce Wayne ….. ;)) to comment on your blog. If the same comment is from the original Facebook account of the person who is commenting, you can give credibility to this user and also the people will automatically trust it.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>No Spam\u003C\u002Fstrong>: You can get rid off the spammers and users, commenting using their fake accounts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Works for the lazy\u003C\u002Fstrong>: Most people are nowadays lazy. To get these people commenting on your blog, it will just require them to login to their Facebook account (which almost everyone does after powering ON computer).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Important links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.heateor.com\u002Fheateor-social-comments#live_demo\" rel=\"nofollow ugc\">Plugin Demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fsupport.heateor.com\" rel=\"nofollow ugc\">Support Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.heateor.com\" rel=\"nofollow ugc\">About Us\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fheateor\" rel=\"nofollow ugc\">Our Facebook Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplus.google.com\u002F+Heateor\" rel=\"nofollow ugc\">Our GooglePlus Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fheateor\" rel=\"nofollow ugc\">Our Twitter Page\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can send your feedback or\u002Fand testimonial at hello[at]heateor[dot]com\u003C\u002Fp>\n","Integrate Facebook Comments, Vkontakte Comments and\u002For Disqus Comments along with default comment form at your website",800,77227,96,24,"2025-09-12T10:50:00.000Z","6.8.5","2.5.0",[70,71,72,73,74],"disqus-comments","facebook-comments","google-comments","vkontakte-commenting","vkontakte-comments","https:\u002F\u002Fwww.heateor.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fheateor-social-comments.1.6.3.zip",100,0,"2023-01-20 00:00:00",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":90,"num_ratings":91,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":18,"tags":95,"homepage":98,"download_link":99,"security_score":100,"vuln_count":78,"unpatched_count":78,"last_vuln_date":36,"fetched_at":29},"social-comments","Social Comments","0.1.6","Bainternet","https:\u002F\u002Fprofiles.wordpress.org\u002Fbainternet\u002F","\u003Cp>This plugin adds Google Plus Comments system, Facebook comments and \u002F or Disqus Comments to your site.\u003C\u002Fp>\n\u003Cp>Main Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Adds Google + comments to your site.\u003C\u002Fli>\n\u003Cli>Adds Facebook comments to your site.\u003C\u002Fli>\n\u003Cli>Adds Disqus comments to your site.\u003C\u002Fli>\n\u003Cli>Display Comments type either stacked to tabbed.\u003C\u002Fli>\n\u003Cli>Drag n Drop display order.\u003C\u002Fli>\n\u003Cli>14 icon sets provided.\u003C\u002Fli>\n\u003Cli>Add your own icon for each of the comments system.\u003C\u002Fli>\n\u003Cli>set the label for each of the comments system.\u003C\u002Fli>\n\u003Cli>set Facebook color scheme.\u003C\u002Fli>\n\u003Cli>set facebook language.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin adds Google Plus Comments system, Facebook comments and \u002F or Disqus Comments to your site.",400,73570,88,39,"2016-12-18T16:06:00.000Z","4.7.0","3.5",[96,21,72,4,97],"1-comments","gplus-comments","http:\u002F\u002Fen.bainternet.info","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-comments.0.1.6.zip",85,{"slug":102,"name":103,"version":6,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":11,"downloaded":108,"rating":78,"num_ratings":78,"last_updated":109,"tested_up_to":16,"requires_at_least":110,"requires_php":18,"tags":111,"homepage":18,"download_link":119,"security_score":100,"vuln_count":78,"unpatched_count":78,"last_vuln_date":36,"fetched_at":29},"gp","GP – GeePress","Louy Alakkad","https:\u002F\u002Fprofiles.wordpress.org\u002Flouyx\u002F","\u003Cp>GeePress, gives you all the tools you need to integrate your WordPress and Google+, including “Login with Google+” and “Comment via Google+”… Highly customizable and easy to use.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Allow your visitors to comment using their Google+ accounts\u003C\u002Fli>\n\u003Cli>Allow your blog users to sign in with their Google+ accounts. one click signin!\u003C\u002Fli>\n\u003Cli>Easily customizable by theme authors.\u003C\u002Fli>\n\u003C\u002Ful>\n","All the tools you need to integrate your WordPress and Google+.",1904,"2013-10-12T20:22:00.000Z","3.0",[112,113,114,21,115,22,23,116,117,118],"admin","button","comment","connect","login","oauth","wpmu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgp.1.0.zip",{"slug":121,"name":122,"version":6,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":14,"downloaded":127,"rating":78,"num_ratings":78,"last_updated":128,"tested_up_to":129,"requires_at_least":18,"requires_php":18,"tags":130,"homepage":18,"download_link":133,"security_score":100,"vuln_count":78,"unpatched_count":78,"last_vuln_date":36,"fetched_at":29},"vcp-events","VCP Events","kpmediadesigner","https:\u002F\u002Fprofiles.wordpress.org\u002Fkpmediadesigner\u002F","\u003Cp>For the best in interactive web events such as webinars and live streaming shows, this plugin will let you embed videos with a responsive Google+ comment stream attached to it that’s live – before, during, and after events.. You can add custom branding, descriptions, titles, and the plugin even gives you a way to display and discuss audience comments, taking engagement to a whole new level, where the audience becomes part of the live conversation.\u003C\u002Fp>\n\u003Ch4>Tutorial\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"560\" height=\"315\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FsRTFpW4SM5U?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>YouTube Live Stream Embed\u003Cbr \u002F>\nGoogle Comment Stream Embed\u003Cbr \u002F>\nAdjustable size ratio of video to comments\u003Cbr \u002F>\nResponsive interactivity\u003Cbr \u002F>\nSelective Google Fonts for comments\u003Cbr \u002F>\nMultiple font size options per comment\u003Cbr \u002F>\nCustom backgrounds for comments\u003Cbr \u002F>\nCustom Branding option\u003Cbr \u002F>\nOption to feature trailer video\u003Cbr \u002F>\nAdd event details and content \u002F links\u003Cbr \u002F>\nComment Stream available live from time of event posting\u003C\u002Fp>\n","Add a google plus comment stream next to a your livestream or video.",1200,"2018-04-18T18:34:00.000Z","4.8.28",[21,22,23,131,132],"livestreaming","video","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvcp-events.zip",{"slug":135,"name":136,"version":137,"author":58,"author_profile":59,"description":138,"short_description":139,"active_installs":140,"downloaded":141,"rating":142,"num_ratings":143,"last_updated":144,"tested_up_to":67,"requires_at_least":68,"requires_php":18,"tags":145,"homepage":148,"download_link":149,"security_score":150,"vuln_count":151,"unpatched_count":78,"last_vuln_date":152,"fetched_at":29},"fancy-facebook-comments","Fancy Comments WordPress","1.2.21","\u003Cp>Fancy Facebook Comments enables your website visitors to leave comments using their Facebook account without the need to create account at your website.\u003C\u002Fp>\n\u003Cp>This plugin makes it very easy to integrate Facebook Comments with your WordPress website. After just installing and activating the plugin, Facebook Comments get integrated at the webpages of your website with default configuration.\u003C\u002Fp>\n\u003Cp>This plugin is also helpful to get traffic to your website from Facebook. Other than that, Facebook Comments is one of the best ways to Socially Optimize your website.\u003C\u002Fp>\n\u003Cp>If takes just 5 seconds to integrate Facebook Comments at your website using this plugin:\u003Cbr \u002F>\n1. Download the plugin from this page (1.5 seconds)\u003Cbr \u002F>\n2. Navigate to \u003Cstrong>Plugins > Add New\u003C\u002Fstrong> page from left sidebar in admin panel of your website. Click \u003Cstrong>Upload Plugin\u003C\u002Fstrong>, click \u003Cstrong>Choose file\u003C\u002Fstrong>, upload the plugin zip and click \u003Cstrong>Install Now\u003C\u002Fstrong> button (2.5 seconds)\u003Cbr \u002F>\n3. Activate the plugin (1 second)\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fsupport.heateor.com\u002Fgdpr-and-our-plugins\" rel=\"nofollow ugc\">GDPR Compliant\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Recover comments lost after installing SSL\u003C\u002Fli>\n\u003Cli>Compatible with Gutenberg editor\u003C\u002Fli>\n\u003Cli>Compatible with PHP 8\u003C\u002Fli>\n\u003Cli>Can be upgraded to \u003Ca href=\"https:\u002F\u002Fwww.heateor.com\u002Ffancy-facebook-comments-pro\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Post comment on Facebook timeline along with posting at the webpage\u003C\u002Fli>\n\u003Cli>Website visitors can sort comments by Time or Social Ranking in real-time using the menu on the top right of the Facebook Comments interface\u003C\u002Fli>\n\u003Cli>Set default comment ordering from plugin options page\u003C\u002Fli>\n\u003Cli>Change language of Facebook Comments\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Facebook Comments on default posts, pages\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Facebook Comments on custom posts\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Facebook Comments on WooCommerce products\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Facebook Comments on BuddyPress activities and groups\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Facebook Comments on BBPress topics and forums\u003C\u002Fli>\n\u003Cli>Free options to customize the look and design of Facebook Comments interface \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Widget and Shortcode\u003C\u002Fli>\n\u003Cli>Compatible with BuddyPress, BBPress, WooCommerce\u003C\u002Fli>\n\u003Cli>Multisite Compatible\u003C\u002Fli>\n\u003Cli>Supports HTTPS enabled websites\u003C\u002Fli>\n\u003Cli>24\u002F7 quickest support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What makes this plugin Stand Out from others?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Free\u003C\u002Fstrong>: Yea, right. It is a free plugin. You need not pay single penny to use the features of this plugin.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Need to Register Anywhere\u003C\u002Fstrong>: You do not need to create account at our website to use this plugin.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Middle Layer\u003C\u002Fstrong>: Plugin runs totally on your website server without any communication to our servers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Absolutely Simple\u003C\u002Fstrong>: Plugin configuration is kept dead simple. Screenshots are provided with options wherever required.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free Customization Options\u003C\u002Fstrong>: There are options available to customize the look of Facebook Comments interface within the plugin, for FREE.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong>: Facebook Comments interface adjusts itself automatically according to the width of device.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight Code\u003C\u002Fstrong>: Our developers follow best coding practices to ensure efficient loading and performance.\u003C\u002Fli>\n\u003Cli>We promise to provide \u003Cstrong>best quality\u003C\u002Fstrong> among other similar plugins. If you find our plugin is lacking some feature, you can email us and we will do our best to include that feature in our plugin as soon as possible.\u003C\u002Fli>\n\u003Cli>Our \u003Cstrong>support team is working 24\u002F7\u003C\u002Fstrong> to answer your queries and assist you. You will find us the quickest to respond.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Important links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.heateor.com\u002Ffancy-facebook-comments\u002F#live_demo\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.heateor.com\u002Ffancy-facebook-comments-pro\" rel=\"nofollow ugc\">Upgrade to Pro version\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.heateor.com\" rel=\"nofollow ugc\">About Us\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002FHeateor\" rel=\"nofollow ugc\">Our Facebook Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplus.google.com\u002F+Heateor\" rel=\"nofollow ugc\">Our GooglePlus Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FHeateor\" rel=\"nofollow ugc\">Our Twitter Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fsupport.heateor.com\" rel=\"nofollow ugc\">Support Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.heateor.com\u002Fadd-ons\" rel=\"nofollow ugc\">Add-Ons\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can provide your feedback at hello[at]heateor[dot]com\u003C\u002Fp>\n","Integrate Facebook Comments with your WordPress website easiest possible way",2000,169275,90,32,"2025-11-09T07:35:00.000Z",[146,71,147,81],"facebook-commenting","social-commenting","https:\u002F\u002Fwww.heateor.com\u002Ffancy-facebook-comments\u002F#live_demo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffancy-facebook-comments.1.2.21.zip",99,2,"2024-03-25 00:00:00",{"attackSurface":154,"codeSignals":191,"taintFlows":217,"riskAssessment":218,"analyzedAt":231},{"hooks":155,"ajaxHandlers":183,"restRoutes":184,"shortcodes":185,"cronEvents":190,"entryPointCount":27,"unprotectedCount":78},[156,162,166,171,174,179],{"type":157,"name":158,"callback":159,"file":160,"line":161},"action","admin_init","gpcomments_init","class-admin.php",9,{"type":157,"name":163,"callback":164,"file":160,"line":165},"admin_menu","show_gpcomments_options",27,{"type":157,"name":167,"callback":168,"priority":77,"file":169,"line":170},"wp_head","gplusJS","class-frontend.php",13,{"type":157,"name":167,"callback":172,"priority":173,"file":169,"line":65},"gplusstyle",110,{"type":175,"name":176,"callback":177,"priority":77,"file":169,"line":178},"filter","the_content","gpcommentbox",57,{"type":175,"name":180,"callback":181,"file":169,"line":182},"widget_text","do_shortcode",92,[],[],[186],{"tag":187,"callback":188,"file":169,"line":189},"gp-comments","gpcommentshortcode",93,[],{"dangerousFunctions":192,"sqlUsage":193,"outputEscaping":195,"fileOperations":78,"externalRequests":78,"nonceChecks":78,"capabilityChecks":78,"bundledLibraries":216},[],{"prepared":78,"raw":78,"locations":194},[],{"escaped":151,"rawEcho":14,"locations":196},[197,200,202,204,205,207,208,210,212,214],{"file":160,"line":198,"context":199},47,"raw output",{"file":160,"line":201,"context":199},107,{"file":160,"line":203,"context":199},113,{"file":160,"line":203,"context":199},{"file":160,"line":206,"context":199},144,{"file":160,"line":206,"context":199},{"file":160,"line":209,"context":199},185,{"file":160,"line":211,"context":199},196,{"file":160,"line":213,"context":199},199,{"file":160,"line":215,"context":199},211,[],[],{"summary":219,"deductions":220},"The `google-plus-comments` plugin v1.0 exhibits a mixed security posture. While it demonstrates good practices such as avoiding dangerous functions, using prepared statements for all SQL queries, and having no direct file operations or external HTTP requests, significant concerns remain. The plugin has a known vulnerability history with one unpatched medium severity CVE related to Cross-Site Scripting (XSS), which is a significant risk. The static analysis shows a low output escaping rate (17%), indicating a potential for XSS vulnerabilities in the 83% of outputs that are not properly escaped. Furthermore, the absence of nonce checks and capability checks on its single shortcode entry point is concerning, as this could allow for unauthorized actions or content injection if the shortcode's functionality is not inherently safe. The lack of taint analysis results is not necessarily positive, as it could indicate the analysis tool was unable to perform a thorough examination or that the plugin's code structure made it difficult to analyze for such vulnerabilities.",[221,224,227,229],{"reason":222,"points":223},"Unpatched CVE exists",15,{"reason":225,"points":226},"Low rate of proper output escaping",5,{"reason":228,"points":226},"Missing nonce checks",{"reason":230,"points":226},"Missing capability checks","2026-03-16T22:17:52.791Z",{"wat":233,"direct":239},{"assetPaths":234,"generatorPatterns":235,"scriptPaths":236,"versionParams":238},[],[],[237],"https:\u002F\u002Fapis.google.com\u002Fjs\u002Fplusone.js",[],{"cssClasses":240,"htmlComments":241,"htmlAttributes":243,"restEndpoints":248,"jsGlobals":249,"shortcodeOutput":250},[],[242],"\u003C!-- Google+ Comments for WordPress: http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002Fgoogle-plus-comments\u002F -->",[244,245,246,247],"data-href","data-num-posts","data-width","data-colorscheme",[],[],[251,252,253,254,255,256,257,258,259,260],"\u003Cg:comments href=\"","width=\"","first_party_property=\"BLOGGER\"","view_type=\"FILTERED_POSTMOD\"","\u003Cdiv class=\"fb-comments\"","data-href=\"","data-num-posts=\"","data-width=\"","data-colorscheme=\"","\u003Cp>Powered by \u003Ca href=\"http:\u002F\u002F3doordigital.com\u002Fwordpress\u002Fplugins\u002Fgoogle-plus-comments\u002F\">Google+ Comments\u003C\u002Fa>\u003C\u002Fp>"]