[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4GBuyX1L1l4MCgJico0w-dkPh3_BTjdRQqh2XnXHhWY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":54,"analysis":155,"fingerprints":399},"gpp-slideshow","GPP Slideshow","1.3.5","Thad Allender","https:\u002F\u002Fprofiles.wordpress.org\u002Fendortrails\u002F","\u003Cp>The GPP Slideshow plugin for WordPress allows you to create minimalist image slideshows using the new Gallery post type or using WordPress’ built in [gallery] shortcode on Posts and Pages.  The plugin comes with a  Widget for easily inserting a specific gallery into any widgetized are on your theme.  This plugin requires WordPress 3.1 and works best with \u003Ca href=\"http:\u002F\u002Fgraphpaperpress.com\u002Fthemes\u002F\" rel=\"nofollow ugc\">a Graph Paper Press theme\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fdemo.graphpaperpress.com\u002Fgpp-slideshow\u002F\" rel=\"nofollow ugc\">Live demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fgraphpaperpress.com\u002Fplugins\u002Fgpp-slideshow\u002F\" rel=\"nofollow ugc\">Release info\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fgraphpaperpress.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">Support\u003C\u002Fa>\u003C\u002Fp>\n","A minimalist slideshow plugin that creates a new gallery post type. Add slideshows to widgets, posts, pages and gallery posts.",200,69652,50,2,"2014-01-07T08:13:00.000Z","3.7.41","3.5","",[20,21,22,23,24],"gallery","images","photos","portfolio","slideshow","http:\u002F\u002Fgraphpaperpress.com\u002Fplugins\u002Fgpp-slideshow\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgpp-slideshow.1.3.5.zip",63,1,"2025-06-05 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-28996","gpp-slideshow-missing-authorization","GPP Slideshow \u003C= 1.3.5 - Missing Authorization","The GPP Slideshow plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.3.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform an unauthorized action.",null,"\u003C=1.3.5","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-06-10 15:05:36",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F29d430a7-e730-412f-b4cf-16505975f856?source=api-prod",{"slug":47,"display_name":7,"profile_url":8,"plugin_count":48,"total_installs":49,"avg_security_score":50,"avg_patch_time_days":51,"trust_score":52,"computed_at":53},"endortrails",7,1350,82,30,81,"2026-04-04T09:03:33.845Z",[55,76,92,109,130],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":72,"download_link":73,"security_score":74,"vuln_count":75,"unpatched_count":75,"last_vuln_date":37,"fetched_at":30},"wpjaipho","WPJaipho Mobile Gallery","1.5.0","Tihomir Dmitrović","https:\u002F\u002Fprofiles.wordpress.org\u002Ftolecar\u002F","\u003Cp>WPJaipho is plugin which adds mobile optimized look & feel to your WP based galleries.\u003Cbr \u002F>\nIt is based on the original \u003Ca href=\"http:\u002F\u002Fjaipho.com\u002F\" rel=\"nofollow ugc\">Jaipho\u003C\u002Fa>, iPhone optimized Javascript gallery and it works on iPhone, iPad and Android devices.\u003C\u002Fp>\n\u003Ch4>Supported WP galleries\u003C\u002Fh4>\n\u003Cp>WP Jaipho works with: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fnextgen-gallery\u002F\" rel=\"ugc\">NextGEN 1.x\u003C\u002Fa> Gallery and Default WP Gallery (via Media Library). It also works flawlessly with some mobile theme plugins such as \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwptouch\u002F\" rel=\"ugc\">WPTouch\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwordpress-mobile-pack\u002F\" rel=\"ugc\">WordPress Mobile Pack\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>How Does it Work?\u003C\u002Fh4>\n\u003Cp>Simple enough – just activate the plugin, and all your galleries are automatically transformed into mobile optimized gallery, which is visible for mobile users only. Check out demo \u003Ca href=\"http:\u002F\u002Fwww.viberfaq.com\u002Fviber-android-beta-version-review\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa> with your iPhone.\u003C\u002Fp>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WPJaipho installation on \u003Ca href=\"http:\u002F\u002Fwww.viberfaq.com\u002Fviber-android-beta-version-review\u002F\" rel=\"nofollow ugc\">The Viber FAQ\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","WPJaipho extends native Wordpress image gallery, NextGEN 1.x and NextCellent Gallery with optimized support for mobile users",60,12787,100,3,"2015-05-25T20:28:00.000Z","4.2.39","3.0",[20,21,71,22,24],"media","http:\u002F\u002Fwww.jaipho.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpjaipho.1.5.0.zip",85,0,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":65,"num_ratings":28,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":18,"tags":89,"homepage":18,"download_link":91,"security_score":74,"vuln_count":75,"unpatched_count":75,"last_vuln_date":37,"fetched_at":30},"nextgen-gallery-date","NextGEN Gallery Date","0.1.5","roberto.c","https:\u002F\u002Fprofiles.wordpress.org\u002Frobertoc\u002F","\u003Cp>\u003Cstrong>Please use at least version 1.8.3 of NextGEN Gallery. This plugin is not tested with lower versions\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>[ A T T E N T I O N ] NextGEN Gallery core modification required!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Read \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fnextgen-gallery-date\u002Finstallation\u002F\" rel=\"ugc\">installation page\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>NextGEN Gallery Date is an add-on for the best wordpress gallery plugin i have seen! With my plugin, you can sort galleries by date, show gallery creation and modificatio date inside gallery templates.\u003Cbr \u002F>\nIt adds two new columns for gallery table:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>added_date (on gallery creation)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>modified_date (on gallery modification and upload of pics)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Gallery order by date: Check the Ngg Date admin panel to activate the order options in every manage album page.\u003C\u002Fli>\n\u003Cli>Date info: show 3 kinds of date format (read installation info)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Copyright 2011 by Roberto Cantarano\u003C\u002Fp>\n\u003Cp>This program is free software; you can redistribute it and\u002For modify\u003Cbr \u002F>\nit under the terms of the GNU General Public License as published by\u003Cbr \u002F>\nthe Free Software Foundation; either version 2 of the License, or\u003Cbr \u002F>\n(at your option) any later version.\u003C\u002Fp>\n\u003Cp>This program is distributed in the hope that it will be useful,\u003Cbr \u002F>\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\u003Cbr \u002F>\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\u003Cbr \u002F>\nGNU General Public License for more details.\u003C\u002Fp>\n","This plugin will let you sort the galleries by date and get info about gallery creation (and modification) date.",20,13122,"2011-09-02T08:19:00.000Z","3.2.1","3.1",[90,20,21,22,24],"flash","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnextgen-gallery-date.0.1.5.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":14,"last_updated":103,"tested_up_to":104,"requires_at_least":69,"requires_php":18,"tags":105,"homepage":18,"download_link":108,"security_score":74,"vuln_count":75,"unpatched_count":75,"last_vuln_date":37,"fetched_at":30},"ssp-director-tools","SSP Director Tools","1.3","parelius","https:\u002F\u002Fprofiles.wordpress.org\u002Fparelius\u002F","\u003Cp>This Plugin uses the SSP Director API to pull content from \u003Ca href=\"http:\u002F\u002Fslideshowpro.net\u002Fproducts\u002Fslideshowpro_director\u002F\" title=\"SlideShowPro Director\" rel=\"nofollow ugc\">SlideShowPro Director\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert a single image from SSP Director into a post using a shortcode. \u003C\u002Fli>\n\u003Cli>Insert a photo grid with multiple images from SSP Director into a post using a shortcode. Query SSP Director for albums, galleries, tags and configure the sorting of the output. Photo grids with random images are possible.\u003C\u002Fli>\n\u003Cli>Insert widgets into your theme if you want to display a photo grid in a widget area.\u003C\u002Fli>\n\u003Cli>Sizing and image handling are according to your default settings but can be overridden by shortcode attributes.\u003C\u002Fli>\n\u003Cli>Use image metadata provided by SSP Director for formatting image captions.\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable photo feed functionality which generates an encrypted RSS photo feed URL for photo grids.\u003C\u002Fli>\n\u003Cli>Use \u003Ca href=\"http:\u002F\u002Ffancybox.net\u002F\" title=\"Fancybox\" rel=\"nofollow ugc\">FancyBox\u003C\u002Fa> to display photos in lightbox style.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Shortcode Help\u003C\u002Fh3>\n\u003Cp>Use this shortcode: \u003Ccode>[sspd]\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>List of allowed attributes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>album\u003C\u002Fcode>: The id of an album to show (integer).\u003C\u002Fli>\n\u003Cli>\u003Ccode>gallery\u003C\u002Fcode>: The id of a gallery to show (integer).\u003C\u002Fli>\n\u003Cli>\u003Ccode>image\u003C\u002Fcode>: The id of a single image to show (integer).\u003C\u002Fli>\n\u003Cli>\u003Ccode>align\u003C\u002Fcode>: Alignment of a single image (left|center|right, default: left).\u003C\u002Fli>\n\u003Cli>\u003Ccode>caption\u003C\u002Fcode>: Whether or not to show the caption of a single image (yes|1|no|0, default: 1).\u003C\u002Fli>\n\u003Cli>\u003Ccode>limit\u003C\u002Fcode>: The maximum number of images to be shown in a grid (integer, default: 0). 0 if unlimited. \u003C\u002Fli>\n\u003Cli>\u003Ccode>tags\u003C\u002Fcode>: List of tags to filter the content by, separated by commas.\u003C\u002Fli>\n\u003Cli>\u003Ccode>tagmode\u003C\u002Fcode>: Mode in which the tag filter works. Match all tags or any out of the list (all|one, default: one).\u003C\u002Fli>\n\u003Cli>\u003Ccode>sort_on\u003C\u002Fcode>: The sort field (null|created_on|captured_on|modified_on|filename|random, default: null).\u003C\u002Fli>\n\u003Cli>\u003Ccode>sort_direction\u003C\u002Fcode>: The sort order (ASC|DESC, default: DESC).\u003C\u002Fli>\n\u003Cli>\u003Ccode>rss\u003C\u002Fcode>: Whether or not to show a RSS photo feed link below the photo grid (yes|1|no|0, default: 1).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If no attributes are specified, the default plugin settings apply as defined in the sections “Photo Grid Defaults” and “Image Sizes and Handling”.\u003C\u002Fp>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[sspd gallery=\"6\" limit=\"10\" tags=\"technology\" sort_on=\"captured_on\" sort_direction=\"DESC\"]: This will output the 10 most recent photos of gallery 6 which are tagged with \"technology\".\u003Ch3>Using captions\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Image captions are automatically generated using image metadata. You can define different captions for preview images and images presented by FancyBox. Use placehoders like \u003Ccode>%placeholder%\u003C\u002Fcode> in your caption definitions and define how dates will be formatted.\u003C\u002Fp>\n\u003Cp>List of allowed placeholders:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>%caption%\u003C\u002Fcode>: The image caption as provided by Director. If the caption is not set in Director, the IPTC caption is used instead.\u003C\u002Fli>\n\u003Cli>\u003Ccode>%byline%\u003C\u002Fcode>: The IPTC byline\u003C\u002Fli>\n\u003Cli>\u003Ccode>%city%\u003C\u002Fcode>: The IPTC city\u003C\u002Fli>\n\u003Cli>\u003Ccode>%country%\u003C\u002Fcode>: The IPTC country\u003C\u002Fli>\n\u003Cli>\u003Ccode>%date%\u003C\u002Fcode>: The image capture date from the EXIF record\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Date formatting: Use common \u003Ca href=\"http:\u002F\u002Fwww.php.net\u002Fmanual\u002Fen\u002Ffunction.date.php\" title=\"PHP date\" rel=\"nofollow ugc\">PHP date\u003C\u002Fa> formats.\u003C\u002Fp>\n\u003Cp>Using HTML in your captions: You may use the following HTML elements and attributes:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cdiv style=\"\">, \u003Cp style=\"\">, \u003Cb>, \u003Ci> \u003Cstrong>, \u003Cem>, \u003Cbr>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Example: \u003Ccode>\u003Cb>%caption%\u003C\u002Fb> (%date%)\u003Cbr>\u003Ci>Photograph by %byline%\u003C\u002Fi>\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch3>Known Issues\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>A bug in the Director API v. 1.5.0 beta generates a wrong result when a query with multiple tags is done. See \u003Ca href=\"http:\u002F\u002Fforums.slideshowpro.net\u002Fviewtopic.php?id=29339\" title=\"API 1.5 : Bug with Tags filter on gallery\" rel=\"nofollow ugc\">SSP Director Forum\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>photo grids and photo feeds don’t work for smart galleries and albums. (Seems to be a Director bug.)\u003C\u002Fli>\n\u003Cli>The plugin currently doesn’t check if the photo feed feature is installed correctly.\u003C\u002Fli>\n\u003Cli>The photo feeds don’t show the real sizes of the downloadable enclosures, but the sizes of the originals.\u003C\u002Fli>\n\u003C\u002Ful>\n","SSP Director Tools give you means for integrating SlideShowPro Director content into a WordPress blog.",10,6260,90,"2015-08-22T20:23:00.000Z","4.3.34",[106,20,21,22,107],"album","slideshowpro","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fssp-director-tools.1.3.zip",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":119,"num_ratings":120,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":18,"tags":124,"homepage":128,"download_link":129,"security_score":65,"vuln_count":75,"unpatched_count":75,"last_vuln_date":37,"fetched_at":30},"lightbox-photoswipe","Lightbox with PhotoSwipe","5.8.3","Arno Welzel","https:\u002F\u002Fprofiles.wordpress.org\u002Fawelzel\u002F","\u003Cp>This plugin integrates PhotoSwipe to WordPress. All linked images in a post or page will be displayed using PhotoSwipe, regardless if they are part of a gallery or single images.\u003C\u002Fp>\n\u003Cp>More about the original version of PhotoSwipe see here: \u003Ca href=\"http:\u002F\u002Fphotoswipe.com\" rel=\"nofollow ugc\">http:\u002F\u002Fphotoswipe.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can also display EXIF data from supported image types.\u003C\u002Fp>\n\u003Cp>As of version 4.0.0 this plugin requires at least WordPress 5.3 and PHP 7.0. Older PHP version will cause problems. In this case you have to upgrade your PHP version or ask your hoster to do so. Please note that WordPress itself also recommends at least PHP 7.4 – see \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Frequirements\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fabout\u002Frequirements\u002F\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Please keep in mind: not the visible thumbnail is relevant, but only the image link. Images should always be linked to the file and not to the attachment page. Since version 5.6.1 there is an option to fix attachment links which can be enabled if needed – however this may slow down your website since then all links on a page will be checked if they are attachment links.\u003C\u002Fp>\n","Integration of PhotoSwipe (http:\u002F\u002Fphotoswipe.com) for WordPress.",20000,937902,98,113,"2026-02-26T16:27:00.000Z","6.9.4","5.3",[125,20,21,126,127],"attachments","lightbox","photoswipe","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flightbox-photoswipe\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightbox-photoswipe.5.8.3.zip",{"slug":131,"name":132,"version":133,"author":134,"author_profile":135,"description":136,"short_description":137,"active_installs":138,"downloaded":139,"rating":140,"num_ratings":141,"last_updated":142,"tested_up_to":143,"requires_at_least":144,"requires_php":123,"tags":145,"homepage":151,"download_link":152,"security_score":153,"vuln_count":28,"unpatched_count":75,"last_vuln_date":154,"fetched_at":30},"embed-google-photos-album-easily","Embed Google Photos album","2.2.1","pavex","https:\u002F\u002Fprofiles.wordpress.org\u002Fpavex\u002F","\u003Cp>This plugin requires a shared Google Photos album link to view photos using gallery\u002Fplayer or carousel. This widget is free to use for WordPress users.\u003C\u002Fp>\n\u003Cp>It is very easy to use. Just write a \u003Cstrong>shortcode\u003C\u002Fstrong> to your post and include a link of shared Google Photos album as a parameter. Instead of shortcode, html code with links to the photo will be inserted and it will be decorated using Public album javascript.\u003C\u002Fp>\n\u003Ch3>Example\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\"]\n\n[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\" mode=\"carousel\"]\n\n[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\" mediaitems-cover=\"true\"]\n\n[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\" background-color=\"#007acc\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cul>\n\u003Cli>\u003Cstrong>link\u003C\u002Fstrong> – [string] public link of Google Photos album\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mode\u003C\u002Fstrong> – [carousel | gallery-player] setup decorator mode, default id \u003Ccode>gallery-player\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>width\u003C\u002Fstrong> – [int | ‘auto’] set widget width in pixel or “auto” to stretch to 100%\u003C\u002Fli>\n\u003Cli>\u003Cstrong>height\u003C\u002Fstrong> – [int | ‘auto’] set widget height in pixels or “auto” to stretch to 100%\u003C\u002Fli>\n\u003Cli>\u003Cstrong>image-width\u003C\u002Fstrong> – [int] image max-width in pixels, default is 1920\u003C\u002Fli>\n\u003Cli>\u003Cstrong>image-height\u003C\u002Fstrong> – [int] image max-height in pixels, default is 1080\u003C\u002Fli>\n\u003Cli>\u003Cstrong>autoplay\u003C\u002Fstrong> – [true | false] start slideshow in normal view (currently not allowed by decorator)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>delay\u003C\u002Fstrong> – [true | false] slideshow delay in seconds, default is 5 seconds.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>repeat\u003C\u002Fstrong> – [true | false] Enable or disable repeat slideshow, delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-aspectration\u003C\u002Fstrong> – [true | false], Keep asspect ration of images delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-enlarge\u003C\u002Fstrong> – [true | false], Turn on\u002Foff image enlarge, delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-stretch\u003C\u002Fstrong> – [true | false], Tunr on\u002Foff image stretch, delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-cover\u003C\u002Fstrong> – [true | false], Cover full canvas. Combine with aspect ratio parameter. Delfault is \u003Ccode>false\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>background-color\u003C\u002Fstrong> – [#RRGGBB | transparent], Setup background color to RGB or transparent. Default is \u003Ccode>#000000\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>expiration\u003C\u002Fstrong> – [int] setup expiration timeout in secons; default is 0; min. custom value is 86400s (experimental property)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This widget, unsupported some features like a picture’s timestamp and captions. For a more detailed description of the component, go to \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fwordpress-google-photos-album-plugin\" rel=\"nofollow ugc\">WordPress Google Photos album plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>In some cases, it may be better to use the following code directly in the template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\n    echo (new Pavex_embed_google_photos_album()) -> getcode(\n        'https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5', 0, 480, 1920, 1080\n    );\n?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>How do I update my album?\u003C\u002Fh3>\n\u003Cp>The album will update automatically as soon as you save or update your post.\u003C\u002Fp>\n\u003Ch3>Javascript decorator\u003C\u002Fh3>\n\u003Cp>External javascript decorator is stored on CDN and loading and running of them is \u003Cstrong>optimized for performance\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Javascript widget can be used without photos from Google photos. Detailed information on how to use javascript is available in one of older posts about \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fcarousel-slideshow-gallery-widget-july-update\" rel=\"nofollow ugc\">carusel slideshow\u003C\u002Fa> on my blog.\u003C\u002Fp>\n\u003Ch3>About Public album photo sharing website\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Public album\u003C\u002Fstrong> is now a \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fphoto-sharing-website\" rel=\"nofollow ugc\">photo sharing website\u003C\u002Fa> and service for sharing short photosets available in single user profile.\u003C\u002Fp>\n\u003Cp>The service can also be used as an alternative to \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fpublic-google-photos\" rel=\"nofollow ugc\">public Google Photos\u003C\u002Fa>. It is very suitable for the blogs focused mainly on photos. For example, a \u003Cstrong>photoblog\u003C\u002Fstrong> or a \u003Ca href=\"https:\u002F\u002Fwww.reabr.com\" rel=\"nofollow ugc\">\u003Cstrong>online bookmark manager\u003C\u002Fstrong>\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Important links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Public album sharing website\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.publicalbum.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blog\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Facebook\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fpublicalbumapp\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.facebook.com\u002Fpublicalbumapp\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reabr.com\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.reabr.com\" rel=\"nofollow ugc\">online bookmark manager\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Embed Google Photos album using Player widget.",4000,45666,88,15,"2024-03-19T10:32:00.000Z","6.4.8","5.0",[146,147,148,149,150],"carousel-slideshow","embed-gallery","embed-google-photos","google-photos","wordpress-carousel","https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fembedding-google-photos-albums","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembed-google-photos-album-easily.zip",84,"2024-04-22 00:00:00",{"attackSurface":156,"codeSignals":273,"taintFlows":387,"riskAssessment":388,"analyzedAt":398},{"hooks":157,"ajaxHandlers":260,"restRoutes":265,"shortcodes":266,"cronEvents":272,"entryPointCount":66,"unprotectedCount":28},[158,164,167,172,177,180,185,189,193,198,202,205,208,211,214,217,221,225,229,231,234,236,240,244,248,250,253,256],{"type":159,"name":160,"callback":161,"file":162,"line":163},"action","init","gpp_gallery_init","gpp_activate.php",31,{"type":159,"name":165,"callback":166,"file":162,"line":13},"admin_notices","gpp_gallery_warning",{"type":168,"name":169,"callback":170,"priority":100,"file":162,"line":171},"filter","plugin_action_links","gpp_gallery_add_settings_link",68,{"type":159,"name":173,"callback":174,"file":175,"line":176},"admin_init","gpp_gallery_price_groups_init","gpp_ecommerce.php",8,{"type":159,"name":178,"callback":179,"file":175,"line":100},"admin_menu","gpp_gallery_add_price_groups_menu",{"type":168,"name":181,"callback":182,"priority":183,"file":175,"line":184},"attachment_fields_to_edit","gpp_gallery_attachment_fields_edit",5,107,{"type":168,"name":186,"callback":187,"priority":183,"file":175,"line":188},"attachment_fields_to_save","gpp_gallery_attachment_fields_save",108,{"type":159,"name":190,"callback":191,"file":175,"line":192},"plugins_loaded","gpp_gallery_add_attachment_fields_start",160,{"type":159,"name":194,"callback":195,"file":196,"line":197},"admin_head","gpp_gallery_admin_head","gpp_functions.php",114,{"type":159,"name":199,"callback":200,"file":196,"line":201},"wp_head","add_gpp_gallery",151,{"type":159,"name":160,"callback":203,"file":204,"line":48},"gpp_gallery_create_type","gpp_init.php",{"type":159,"name":160,"callback":206,"priority":75,"file":204,"line":207},"gpp_gallery_taxonomy",62,{"type":159,"name":173,"callback":209,"file":204,"line":210},"gpp_gallery_options_init",94,{"type":159,"name":178,"callback":212,"file":204,"line":213},"gpp_gallery_add_options_menu",96,{"type":159,"name":178,"callback":215,"file":204,"line":216},"gpp_gallery_add_instructions_menu",193,{"type":159,"name":218,"callback":219,"priority":183,"file":204,"line":220},"template_redirect","gpp_gallery_single_template",254,{"type":159,"name":222,"callback":223,"file":204,"line":224},"wp_print_styles","gpp_gallery_stylesheet",263,{"type":159,"name":218,"callback":226,"priority":227,"file":204,"line":228},"gpp_gallery_archive_template",4,276,{"type":159,"name":222,"callback":223,"file":204,"line":230},287,{"type":159,"name":218,"callback":232,"priority":66,"file":204,"line":233},"gpp_gallery_taxonomy_template",300,{"type":159,"name":222,"callback":223,"file":204,"line":235},307,{"type":159,"name":178,"callback":237,"file":238,"line":239},"add","gpp_meta.php",71,{"type":159,"name":241,"callback":242,"file":238,"line":243},"save_post","save",73,{"type":159,"name":194,"callback":245,"file":246,"line":247},"gpp_gallery_js_dom","gpp_scripts.php",87,{"type":159,"name":222,"callback":223,"file":246,"line":249},129,{"type":159,"name":160,"callback":251,"file":246,"line":252},"gpp_gallery_load_scripts",154,{"type":159,"name":199,"callback":254,"file":246,"line":255},"gpp_gallery_dom_ready_js",163,{"type":159,"name":257,"callback":258,"file":259,"line":176},"widgets_init","gpp_gallery_load_widgets","gpp_widget.php",[261],{"action":262,"nopriv":263,"callback":264,"hasNonce":263,"hasCapCheck":263,"file":246,"line":213},"gpp_imageurl",false,"gpp_imageurl_callback",[],[267,270],{"tag":20,"callback":268,"file":196,"line":269},"gpp_gallery_shortcode",158,{"tag":20,"callback":268,"file":196,"line":271},164,[],{"dangerousFunctions":274,"sqlUsage":275,"outputEscaping":277,"fileOperations":75,"externalRequests":75,"nonceChecks":28,"capabilityChecks":14,"bundledLibraries":386},[],{"prepared":28,"raw":75,"locations":276},[],{"escaped":227,"rawEcho":278,"locations":279},65,[280,283,285,286,288,290,291,293,295,297,299,301,303,305,307,309,311,313,314,316,317,318,319,320,322,323,324,326,327,329,330,332,333,335,336,337,339,340,342,343,345,347,349,351,353,354,356,358,360,361,362,364,365,367,369,371,372,373,374,375,376,378,379,382,384],{"file":162,"line":281,"context":282},46,"raw output",{"file":175,"line":284,"context":282},56,{"file":175,"line":284,"context":282},{"file":175,"line":287,"context":282},80,{"file":196,"line":289,"context":282},51,{"file":196,"line":243,"context":282},{"file":196,"line":292,"context":282},75,{"file":196,"line":294,"context":282},106,{"file":196,"line":296,"context":282},257,{"file":196,"line":298,"context":282},273,{"file":196,"line":300,"context":282},275,{"file":204,"line":302,"context":282},144,{"file":204,"line":304,"context":282},148,{"file":204,"line":306,"context":282},162,{"file":204,"line":308,"context":282},166,{"file":238,"line":310,"context":282},95,{"file":238,"line":312,"context":282},104,{"file":238,"line":312,"context":282},{"file":238,"line":315,"context":282},109,{"file":238,"line":315,"context":282},{"file":238,"line":315,"context":282},{"file":238,"line":120,"context":282},{"file":238,"line":120,"context":282},{"file":238,"line":321,"context":282},117,{"file":238,"line":321,"context":282},{"file":238,"line":321,"context":282},{"file":238,"line":325,"context":282},121,{"file":238,"line":325,"context":282},{"file":238,"line":328,"context":282},125,{"file":238,"line":328,"context":282},{"file":238,"line":331,"context":282},127,{"file":238,"line":249,"context":282},{"file":238,"line":334,"context":282},134,{"file":238,"line":334,"context":282},{"file":238,"line":334,"context":282},{"file":238,"line":338,"context":282},138,{"file":238,"line":338,"context":282},{"file":238,"line":341,"context":282},141,{"file":238,"line":341,"context":282},{"file":238,"line":344,"context":282},153,{"file":246,"line":346,"context":282},21,{"file":246,"line":348,"context":282},110,{"file":246,"line":350,"context":282},210,{"file":259,"line":352,"context":282},58,{"file":259,"line":171,"context":282},{"file":259,"line":355,"context":282},70,{"file":259,"line":357,"context":282},72,{"file":259,"line":359,"context":282},78,{"file":259,"line":312,"context":282},{"file":259,"line":312,"context":282},{"file":259,"line":363,"context":282},105,{"file":259,"line":363,"context":282},{"file":259,"line":366,"context":282},118,{"file":259,"line":368,"context":282},131,{"file":259,"line":370,"context":282},146,{"file":259,"line":252,"context":282},{"file":259,"line":252,"context":282},{"file":259,"line":252,"context":282},{"file":259,"line":269,"context":282},{"file":259,"line":269,"context":282},{"file":259,"line":377,"context":282},159,{"file":259,"line":377,"context":282},{"file":380,"line":381,"context":282},"theme\\single-gallery.php",6,{"file":380,"line":383,"context":282},16,{"file":385,"line":183,"context":282},"theme\\taxonomy-gallery_collection.php",[],[],{"summary":389,"deductions":390},"The gpp-slideshow plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and includes some capability checks and a nonce check. There are no detected dangerous functions or external HTTP requests, and it doesn't bundle external libraries. However, a significant concern arises from the presence of an unprotected AJAX handler, which represents a direct entry point for potential attacks without proper authentication or authorization.\n\nThe static analysis did not reveal any taint flows, which is a positive indicator. Nevertheless, the limited output escaping (only 6% properly escaped) suggests a risk of Cross-Site Scripting (XSS) vulnerabilities in the plugin's output, even if not explicitly flagged by the taint analysis in this run. The plugin has a history of a medium severity vulnerability related to missing authorization, and the fact that this vulnerability is currently unpatched is a critical red flag.\n\nIn conclusion, while the plugin shows some security strengths in areas like SQL handling, the unprotected AJAX endpoint and the unpatched medium-severity vulnerability significantly detract from its overall security. The poor output escaping further compounds these risks, making the plugin a notable security concern that requires immediate attention and patching.",[391,394,396],{"reason":392,"points":393},"Unpatched CVE",18,{"reason":395,"points":100},"Unprotected AJAX handler",{"reason":397,"points":381},"Low output escaping percentage","2026-03-16T20:14:29.574Z",{"wat":400,"direct":407},{"assetPaths":401,"generatorPatterns":403,"scriptPaths":404,"versionParams":405},[402],"\u002Fwp-content\u002Fplugins\u002Fgpp-slideshow\u002Fcss\u002Fstyle.css",[],[],[406],"gpp-slideshow\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":408,"htmlComments":411,"htmlAttributes":412,"restEndpoints":414,"jsGlobals":415,"shortcodeOutput":417},[409,410],"gpp_slideshow_wrapper","eachthumbs",[],[413],"gpp_gallery_hiddenids",[],[416],"gpp_gallery_meta_box",[418],"[gallery ids="]