[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQQzNWYIP0mpfYoZS8ZdOnaTyHKUSj9NPIvltcoaOgl0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":144,"fingerprints":256},"hello-dolly-for-your-song","Hello Dolly For Your Song","0.20","unmus","https:\u002F\u002Fprofiles.wordpress.org\u002Funmus\u002F","\u003Cp>This simple plugin is an extended version of the famous hello dolly plugin by Matt Mullenweg. Every human being has a special relationship to a particular song. And because of that, Hello Dolly For Your Song brings the lyric of your favourite song in the blog. But of course it can be used for any text. 😉\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display a random line of a custom text in your blog as gutenberg block\u003C\u002Fli>\n\u003Cli>Display a random line of a custom text in your blog as widget\u003C\u002Fli>\n\u003Cli>Display a random line of a custom text in your blog as shortcode\u003C\u002Fli>\n\u003Cli>Display a random line of a custom text in your theme as template tag\u003C\u002Fli>\n\u003Cli>Display a random line of a custom text in the blog administration\u003C\u002Fli>\n\u003Cli>Integration into WordPress REST API\u003C\u002Fli>\n\u003Cli>Hooks for Developers\u003C\u002Fli>\n\u003Cli>Options Page to define a custom song text\u003C\u002Fli>\n\u003Cli>Site Health Integration\u003C\u002Fli>\n\u003Cli>Hidden Options\u003C\u002Fli>\n\u003Cli>Languages: English, German, Spanish, French, Indonesian, Russian\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Related Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.unmus.de\u002Fhello-dolly-for-your-song\u002F\" rel=\"nofollow ugc\">Official Plugin Page\u003C\u002Fa> (German)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.unmus.de\u002Fhello-dolly\u002F\" rel=\"nofollow ugc\">Why I have created this plugin?\u003C\u002Fa> (German)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.unmus.de\u002Fhello-dolly-for-your-song\u002F#screencast\" rel=\"nofollow ugc\">ScreenCast showing almost all features\u003C\u002Fa> (German)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcircuscode\u002Fhello-dolly-for-your-song\" rel=\"nofollow ugc\">Source Code @ GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Maintain the songtext you love in the Settings.\u003C\u002Fli>\n\u003Cli>That is all!\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Gutenberg Block Category\u003C\u002Fh4>\n\u003Cp>Widgets\u003C\u002Fp>\n\u003Ch4>Shortcode\u003C\u002Fh4>\n\u003Cp>[hdfys]\u003C\u002Fp>\n\u003Ch4>Template Tag\u003C\u002Fh4>\n\u003Cp>hello_dolly_for_your_song()\u003C\u002Fp>\n\u003Ch4>Get Function\u003C\u002Fh4>\n\u003Cp>get_hello_dolly_for_your_song()\u003C\u002Fp>\n\u003Ch4>REST API Endpoint\u003C\u002Fh4>\n\u003Cp>http:\u002F\u002Fyourblogdomain\u002Fwp-json\u002Frestful-hello-dolly-for-your-song\u002Ftext\u003C\u002Fp>\n\u003Ch4>Actions\u003C\u002Fh4>\n\u003Cp>hdfys_new_song\u003Cbr \u002F>\nThis Action wil be fired, if a new text was maintained in the settings.\u003Cbr \u002F>\nYou can use the following code.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>function hdfys_do_anything() {\n\n    \u002F\u002F Add your code to execute here\n\n}\nadd_action( 'hdfys_new_song', 'hdfys_do_anything', 10, 3 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Filter\u003C\u002Fh4>\n\u003Cp>hdfys_output_filter\u003Cbr \u002F>\nThe filter will be applied before output of the gutenberg block, template tag and shortcode.\u003Cbr \u002F>\nYou can use the following code.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>function hdfys_output_manipulate( $output ) {\n\n    \u002F\u002F Add your filter code here\n    \u002F\u002F Example: $output=strtolower( $output );\n\n    return $output;\n}\nadd_filter( 'hdfys_output_filter', 'hdfys_output_manipulate', 10, 1 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","This simple plugin shows a random line of any text in your blog.",60,7109,0,"2025-09-04T17:56:00.000Z","6.8.5","5.2","7.0",[19,20,21,22,23],"admin","hello-world","learning-wordpress","love","random","https:\u002F\u002Fwww.unmus.de\u002Fwordpress-plugin-hello-dolly-for-your-song\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhello-dolly-for-your-song.0.20.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},2,90,30,94,"2026-04-04T19:09:55.339Z",[37,58,73,98,122],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":57,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"daily-fitness-tips","Daily Fitness Tips","1.7","SimonTurner","https:\u002F\u002Fprofiles.wordpress.org\u002Fsimonturner\u002F","\u003Cp>This widget will add daily fitness tips to your blog giving it new fresh content and hopefully helping your readers to keep in shape.  All \u003Ca href=\"http:\u002F\u002Fwww.workoutbox.com\u002Fworkouts\u002F\" rel=\"nofollow ugc\">workout routines\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fwww.workoutbox.com\u002Fexercises\u002F\" rel=\"nofollow ugc\">exercises\u003C\u002Fa> are provided by the personal training team at \u003Ca href=\"http:\u002F\u002Fwww.workoutbox.com\" rel=\"nofollow ugc\">WorkoutBOX\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdaily-fitness-tips.zip\" rel=\"nofollow ugc\">Download Now!\u003C\u002Fa>\u003C\u002Fp>\n","This widget will add daily fitness tips to your blog giving it new fresh content and hopefully helping your readers to keep in shape.",10,7057,"2010-08-24T07:06:00.000Z","2.8","1.3","",[19,23,52,53,54],"rss","sidebar","widget","http:\u002F\u002Fwww.workoutbox.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdaily-fitness-tips.zip",85,{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":13,"downloaded":66,"rating":13,"num_ratings":13,"last_updated":67,"tested_up_to":68,"requires_at_least":50,"requires_php":50,"tags":69,"homepage":50,"download_link":72,"security_score":57,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"random-post-redirect-also-with-shortcode","Random Post Redirect (also with Shortcode)","1.0","dpoakaspine","https:\u002F\u002Fprofiles.wordpress.org\u002Fdpoakaspine\u002F","\u003Cp>Redirect user to a random post with a custom \u002Frandom (or anything else) URL. Use the \u003Ccode>random_post_redirect_query_var\u003C\u002Fcode> filter to create your own random URL.\u003C\u002Fp>\n","Redirect user to a random post with a custom \u002Frandom (or anything else) URL",990,"2018-03-15T21:08:00.000Z","4.9.29",[19,70,23,71],"posts","redirect","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-post-redirect-also-with-shortcode.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":88,"tags":89,"homepage":93,"download_link":94,"security_score":95,"vuln_count":96,"unpatched_count":13,"last_vuln_date":97,"fetched_at":28},"loginizer","Loginizer","2.0.6","Softaculous","https:\u002F\u002Fprofiles.wordpress.org\u002Fsoftaculous\u002F","\u003Cp>Loginizer is a WordPress plugin which helps you fight against bruteforce attack by blocking login for the IP after it reaches maximum retries allowed. You can blacklist or whitelist IPs for login using Loginizer. You can use various other features like Two Factor Auth, reCAPTCHA, PasswordLess Login, etc. to improve security of your website.\u003C\u002Fp>\n\u003Cp>Loginizer is actively used by more than 1000000+ WordPress websites.\u003C\u002Fp>\n\u003Cp>You can find our official documentation at \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fdocs\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.com\u002Fdocs\u003C\u002Fa>. We are also active in our community support forums on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Floginizer\" rel=\"ugc\">wordpress.org\u003C\u002Fa> if you are one of our free users. Our Premium Support Ticket System is at \u003Ca href=\"https:\u002F\u002Floginizer.deskuss.com\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.deskuss.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Free Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Brute force protection. IPs trying to brute force your website will be blocked for 15 minutes after 3 failed login attempts. After multiple lockouts the IP is blocked for 24 hours. This is the default configuration and can be changed from Loginizer -> Brute force page in WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Failed login attempts logs.\u003C\u002Fli>\n\u003Cli>Blacklist IPs\u003C\u002Fli>\n\u003Cli>Whitelist IPs\u003C\u002Fli>\n\u003Cli>Custom error messages on failed login.\u003C\u002Fli>\n\u003Cli>Permission check for important files and folders.\u003C\u002Fli>\n\u003Cli>Allow only Trusted IP.\u003C\u002Fli>\n\u003Cli>Blocked Screen in place of the Login page.\u003C\u002Fli>\n\u003Cli>Email Notification on successful login.\u003C\u002Fli>\n\u003Cli>Let users login with LinkedIn\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get Support and Pro Features\u003C\u002Fh4>\n\u003Cp>Get professional support from our experts and pro features to take your site’s security to the next level with \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fpricing\" rel=\"nofollow ugc\">Loginizer-Security\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Pro Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>MD5 Checksum – of Core WordPress Files. The admin can check and ignore files as well.\u003C\u002Fli>\n\u003Cli>PasswordLess Login – At the time of Login, the username \u002F email address will be asked and an email will be sent to the email address of that account with a temporary link to login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via Email – On login, an email will be sent to the email address of that account with a temporary 6 digit code to complete the login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via App – The user can configure the account with a 2FA App like Google Authenticator, Authy, etc.\u003C\u002Fli>\n\u003Cli>Login Challenge Question – The user can setup a Challenge Question and Answer as an additional security layer. After Login, the user will need to answer the question to complete the login.\u003C\u002Fli>\n\u003Cli>reCAPTCHA – Google’s reCAPTCHA v3\u002Fv2, Cloudflare Turnstile, hCAPTCHA can be configured for the Login screen, Comments Section, Registration Form, etc. to prevent automated brute force attacks. Supports WooCommerce as well.\u003C\u002Fli>\n\u003Cli>Rename Login Page – The Admin can rename the login URL (slug) to something different from wp-login.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename WP-Admin URL – The Admin area in WordPress is accessed via wp-admin. With loginizer you can change it to anything e.g. site-admin\u003C\u002Fli>\n\u003Cli>CSRF Protection – This helps in preventing CSRF attacks as it updates the admin URL with a session string which makes it difficult and nearly impossible for the attacker to predict the URL.\u003C\u002Fli>\n\u003Cli>Rename Login with Secrecy – If set, then all Login URL’s will still point to wp-login.php and users will have to access the New Login Slug by typing it in the browser.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC – An option to simply disable XML-RPC in WordPress. Most of the WordPress users don’t need XML-RPC and can disable it to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename XML-RPC – The Admin can rename the XML-RPC to something different from xmlrpc.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Username Auto Blacklist – Attackers generally use common usernames like admin, administrator, or variations of your domain name \u002F business name. You can specify such username here and Loginizer will auto-blacklist the IP Address(s) of clients who try to use such username(s).\u003C\u002Fli>\n\u003Cli>New Registration Domain Blacklist – If you would like to ban new registrations from a particular domain, you can use this utility to do so.\u003C\u002Fli>\n\u003Cli>Change the Admin Username – The Admin can rename the admin username to something more difficult.\u003C\u002Fli>\n\u003Cli>Auto Blacklist IPs – IPs will be auto blacklisted, if certain usernames saved by the Admin are used to login by malicious bots \u002F users.\u003C\u002Fli>\n\u003Cli>Disable Pingbacks – Simple way to disable PingBacks.\u003C\u002Fli>\n\u003Cli>SSO – Single Sign-on, let any user access to your WordPress Dashboard without the need to share username or password.\u003C\u002Fli>\n\u003Cli>Limit Concurrent Logins – It prevents user to login from different devices concurrently, you can define how many devices you want to allow, and how you want to restrict the user when concurrent limit is reached.\u003C\u002Fli>\n\u003Cli>Social Login – Users can login or register with their Google, Github, Facebook, X (Twitter), Discord, Twitch, LinkedIn, Microsoft with support for WooCommerce and Ultimate Member.\u003C\u002Fli>\n\u003Cli>Key Less Social Login – Use Loginizer’s Social Auth for easy key less Social login configuration, now supports Google, GitHub, X, LinkedIn more to be added later\u003C\u002Fli>\n\u003Cli>Country Blocking – Block IPs from specific countries to restrict access to your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features in Loginizer include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Blocks IP after maximum retries allowed\u003C\u002Fli>\n\u003Cli>Extended Lockout after maximum lockouts allowed\u003C\u002Fli>\n\u003Cli>Email notification to admin after max lockouts\u003C\u002Fli>\n\u003Cli>Blacklist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Whitelist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Check logs of failed attempts\u003C\u002Fli>\n\u003Cli>Create IP ranges\u003C\u002Fli>\n\u003Cli>Delete IP ranges\u003C\u002Fli>\n\u003Cli>Licensed under LGPLv2.1\u003C\u002Fli>\n\u003Cli>Safe & Secure\u003C\u002Fli>\n\u003C\u002Ful>\n","Loginizer is a WordPress security plugin which helps you fight against bruteforce attacks.",1000000,29791210,96,1020,"2026-03-02T12:38:00.000Z","6.9.4","3.0","5.5",[90,19,91,74,92],"access","login","security","https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Floginizer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Floginizer.2.0.6.zip",87,8,"2024-11-04 00:00:00",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":81,"downloaded":106,"rating":107,"num_ratings":108,"last_updated":109,"tested_up_to":86,"requires_at_least":110,"requires_php":111,"tags":112,"homepage":117,"download_link":118,"security_score":119,"vuln_count":120,"unpatched_count":13,"last_vuln_date":121,"fetched_at":28},"redux-framework","Redux Framework","4.5.10","David Anderson \u002F Team Updraft","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidanderson\u002F","\u003Cp>Redux was built by developers for developers. We save you months if not years in your development time. Everything we do is to help innovation in the industry.\u003C\u002Fp>\n\u003Ch4>♥️ What the Plugin does?\u003C\u002Fh4>\n\u003Cp>Redux is a simple, genuinely extensible, and fully responsive options framework for WordPress themes and plugins. Built on the WordPress Settings API; Redux supports many field types, custom error handling, custom fields & validation types, and import\u002Fexport functionality.\u003C\u002Fp>\n\u003Cp>But what does Redux actually DO? We don’t believe that theme and plugin developers should have to reinvent the wheel every time they start work on a project. Redux simplifies the development cycle by providing a streamlined, extensible framework for developers to build on. Through a simple, well-documented config file, third-party developers can build out an options panel limited only by their imagination in a fraction of the time it would take to build from the ground up!\u003C\u002Fp>\n\u003Ch4>🚀 What fields does Redux offer?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Accordion\u003C\u002Fli>\n\u003Cli>ACE Editor\u003C\u002Fli>\n\u003Cli>Background\u003C\u002Fli>\n\u003Cli>Border\u003C\u002Fli>\n\u003Cli>Box Shadow\u003C\u002Fli>\n\u003Cli>Button Set\u003C\u002Fli>\n\u003Cli>Checkbox \u002F Multi-Check\u003C\u002Fli>\n\u003Cli>Color (WordPress Native)\u003C\u002Fli>\n\u003Cli>Color Gradient\u003C\u002Fli>\n\u003Cli>Color Palette\u003C\u002Fli>\n\u003Cli>Color RGBA\u003C\u002Fli>\n\u003Cli>Color Scheme\u003C\u002Fli>\n\u003Cli>Content\u003C\u002Fli>\n\u003Cli>Custom Fonts\u003C\u002Fli>\n\u003Cli>Customizer\u003C\u002Fli>\n\u003Cli>Date\u003C\u002Fli>\n\u003Cli>Date\u002FTime\u003C\u002Fli>\n\u003Cli>Dimensions (Height\u002FWidth)\u003C\u002Fli>\n\u003Cli>Divide (Divider)\u003C\u002Fli>\n\u003Cli>Editor (WordPress Native)\u003C\u002Fli>\n\u003Cli>Gallery (WordPress Native)\u003C\u002Fli>\n\u003Cli>Google Maps\u003C\u002Fli>\n\u003Cli>Icon Select\u003C\u002Fli>\n\u003Cli>Image Select (Patterns\u002FPresets)\u003C\u002Fli>\n\u003Cli>Import\u002FExport\u003C\u002Fli>\n\u003Cli>Info (Header\u002FNotice)\u003C\u002Fli>\n\u003Cli>JS Button\u003C\u002Fli>\n\u003Cli>Link Color\u003C\u002Fli>\n\u003Cli>Media (WordPress Native)\u003C\u002Fli>\n\u003Cli>Metaboxes\u003C\u002Fli>\n\u003Cli>Multi Media\u003C\u002Fli>\n\u003Cli>Multi-Text\u003C\u002Fli>\n\u003Cli>Palette\u003C\u002Fli>\n\u003Cli>Password\u003C\u002Fli>\n\u003Cli>Radio (w\u002F WordPress Data)\u003C\u002Fli>\n\u003Cli>Raw (HTML\u002FPHP\u002FMarkDown)\u003C\u002Fli>\n\u003Cli>Repeater\u003C\u002Fli>\n\u003Cli>Section (Indent and Group Fields)\u003C\u002Fli>\n\u003Cli>Select (Select\u002FMulti-Select w\u002F Select2 & WordPress Data)\u003C\u002Fli>\n\u003Cli>Select Image\u003C\u002Fli>\n\u003Cli>Slider (Drag a Handle)\u003C\u002Fli>\n\u003Cli>Slides (Multiple Images, Titles, and Descriptions)\u003C\u002Fli>\n\u003Cli>Social Profiles\u003C\u002Fli>\n\u003Cli>Sortable (Drag\u002FDrop Checkbox\u002FInput Fields)\u003C\u002Fli>\n\u003Cli>Sorter (Drag\u002FDrop Manager – Works great for content blocks)\u003C\u002Fli>\n\u003Cli>Spacing (Margin\u002FPadding\u002FAbsolute)\u003C\u002Fli>\n\u003Cli>Spinner\u003C\u002Fli>\n\u003Cli>Switch\u003C\u002Fli>\n\u003Cli>Tabbed\u003C\u002Fli>\n\u003Cli>Taxonomy Metaboxes\u003C\u002Fli>\n\u003Cli>Text\u003C\u002Fli>\n\u003Cli>Textarea\u003C\u002Fli>\n\u003Cli>Typography\u003C\u002Fli>\n\u003Cli>User Profile Metaboxes\u003C\u002Fli>\n\u003Cp> * The most advanced typography module complete with preview, Google fonts, and auto-css output!\u003C\u002Fp>\n\u003Cli>User Profile Metaboxes\u003C\u002Fli>\n\u003Cli>Widget Areas (Classic Widgets only)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🎉Additional Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Full value escaping\u003C\u002Fli>\n\u003Cli>Required – Link visibility from parent fields. Set this to affect the visibility of the field on the parent’s value. Fully nested with multiple required parents possible.\u003C\u002Fli>\n\u003Cli>Output CSS Automatically – Redux generates CSS and the appropriate Google Fonts stylesheets for you on select fields. You need to only specify the CSS selector to apply the CSS to (limited to certain fields).\u003C\u002Fli>\n\u003Cli>Compiler integration! A custom hook runs when any fields with the argument `compile => true` are changed.\u003C\u002Fli>\n\u003Cli>Field validation and sanitization\u003C\u002Fli>\n\u003Cli>Field and section disabling\u003C\u002Fli>\n\u003Cli>Oh, and did we mention a fully integrated Google Fonts setup that will make you so happy you’ll want to cry?\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>👍 BE A CONTRIBUTOR\u003C\u002Fh4>\n\u003Cp>If you want to help with translations, \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fredux-framework\" rel=\"nofollow ugc\">go to the Translation Portal at translate.wordpress.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You can also contribute code via our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002F\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>. Be sure to use our develop branch to submit pull requests.\u003C\u002Fp>\n\u003Ch4>📝 Documentation and Support\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>We have extremely extensive docs. Please visit [https:\u002F\u002Fdevs.redux.io\u002F](https:\u002F\u002Fdevs.redux.io). If that doesn’t solve your issue, search [the issue tracker on GitHub](https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002Fissues). If you can’t locate any topics that pertain to your particular problem, [post a new issue](https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002Fissues\u002Fnew) for it. Before you submit an issue, please read [our contributing requirements](https:\u002F\u002Fgithub.com\u002Fredux-framework\u002Fredux-framework\u002Fblob\u002Fmaster\u002FCONTRIBUTING.md). We build on the dev version and push it to WordPress.org when we confirm Redux is stable and ready for release.\u003C\u002Fli>\n\u003Cli>If you have additional questions, reach out to us at support@redux.io\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>⚡ Like the Redux Plugin?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Follow us on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Freduxframework\" rel=\"nofollow ugc\">Facebook 💬\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rate us 5 ⭐ stars\u003C\u002Fstrong> on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fredux-framework\u002Freviews\u002F?filter=5\u002F#new-post\" rel=\"ugc\">WordPress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Follow us on Twitter 🐦: \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Freduxframework\" rel=\"nofollow ugc\">@ReduxFramework\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🔐 Privacy\u003C\u002Fh4>\n\u003Cp>Redux does not interact with end users on your website. If a product is using Redux, the option panel will cease to function without Redux.\u003C\u002Fp>\n\u003Cp>For more details on our privacy policy: \u003Ca href=\"https:\u002F\u002Fredux.io\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fredux.io\u002Fprivacy\u003C\u002Fa>\u003Cbr \u002F>\nFor more details on our terms and conditions: \u003Ca href=\"https:\u002F\u002Fredux.io\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fredux.io\u002Fterms\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>NOTE: Redux is not intended to be used on its own. It requires a config file provided by a third-party theme or plugin developer to actually do anything cool!\u003C\u002Fp>\n","Redux is a simple, truly extensible, and fully responsive options framework for WordPress themes and plugins. It ships with an integrated demo.",31507478,88,272,"2026-01-07T21:08:00.000Z","5.0","7.4",[19,113,114,115,116],"options","options-framework","plugin-options","theme-options","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fredux-framework","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fredux-framework.4.5.10.zip",89,6,"2025-12-12 00:00:00",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":86,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":50,"download_link":142,"security_score":83,"vuln_count":120,"unpatched_count":13,"last_vuln_date":143,"fetched_at":28},"wp-maintenance-mode","LightStart – Maintenance Mode, Coming Soon and Landing Page Builder","2.6.20","Themeisle","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeisle\u002F","\u003Cp>Add a maintenance page to your blog that lets visitors know your blog is down for maintenance, add a coming soon page for a new website or create a landing page for an existing site. User with admin rights gets full access to the blog including the front end.\u003C\u002Fp>\n\u003Cp>Activate the plugin and your blog is in maintenance-mode, works and only registered users with enough rights can see the front end. You can use a date with a countdown timer for visitor information or set a value and unit for information.\u003C\u002Fp>\n\u003Cp>Also works with WordPress Multisite installs (each blog from the network has its own maintenance settings).\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fully customizable (change colors, texts and backgrounds).\u003C\u002Fli>\n\u003Cli>Subscription form (export emails to .csv file).\u003C\u002Fli>\n\u003Cli>Countdown timer (remaining time).\u003C\u002Fli>\n\u003Cli>Contact form (receive emails from visitors).\u003C\u002Fli>\n\u003Cli>Coming soon page;\u003C\u002Fli>\n\u003Cli>Landing page templates;\u003C\u002Fli>\n\u003Cli>WordPress multisite;\u003C\u002Fli>\n\u003Cli>Responsive design;\u003C\u002Fli>\n\u003Cli>Social media icons;\u003C\u002Fli>\n\u003Cli>Works with any WordPress theme;\u003C\u002Fli>\n\u003Cli>SEO options;\u003C\u002Fli>\n\u003Cli>Exclude URLs from maintenance;\u003C\u002Fli>\n\u003Cli>Bot functionality to collect the emails in a friendly and efficient way;\u003C\u002Fli>\n\u003Cli>GDPR Ready;\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Bugs, technical hints or contribute\u003C\u002Fh4>\n\u003Cp>Please give us feedback, contribute and file technical bugs on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fandrianvaleanu\u002FWP-Maintenance-Mode\" rel=\"nofollow ugc\">GitHub Repo\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>Developed by \u003Ca href=\"https:\u002F\u002Fthemeisle.com\" rel=\"nofollow ugc\">Themeisle\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>What’s Next\u003C\u002Fh4>\n\u003Cp>If you like this plugin, then consider checking out our other projects:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Foptimole.com\u002F\" rel=\"nofollow ugc\">Optimole\u003C\u002Fa> – Optimole is your all-in-one image optimization solution for WordPress & beyond.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpshout.com\u002F\" rel=\"nofollow ugc\">WPShout\u003C\u002Fa> – In-Depth WordPress Tutorials for Developers\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frevive.social\u002F\" rel=\"nofollow ugc\">Revive Social\u003C\u002Fa> – Revive Old Posts helps you keep your content alive and in front the audiences that matter.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.codeinwp.com\u002F\" rel=\"nofollow ugc\">CodeinWP\u003C\u002Fa> – CodeinWP stands for all-things-WordPress. From web design to freelancing and from development to business, your questions are covered.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdomainwheel.com\" rel=\"nofollow ugc\">DomainWheel\u003C\u002Fa> – Free Short Website name generator, with the help of AI, for instant ideas.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check-out \u003Ca href=\"https:\u002F\u002Fthemeisle.com\u002Fblog\u002F\" title=\"Themeisle blog\" rel=\"nofollow ugc\">our blog\u003C\u002Fa> to learn from our \u003Ca href=\"https:\u002F\u002Fthemeisle.com\u002Fblog\u002Fcategory\u002Fwordpress\u002Freviews\u002F\" title=\"WordPress Reviews\" rel=\"nofollow ugc\">WordPress Reviews\u003C\u002Fa> and see other \u003Ca href=\"https:\u002F\u002Fthemeisle.com\u002Fblog\u002Fcategory\u002Fwordpress-plugins\u002F\" title=\"WordPress Plugins Comparisons\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa>.\u003C\u002Fp>\n","Easy Drag & Drop Page Builder that adds a splash page to your site that it's perfect for a coming soon page, maintenance or landing page.",500000,19310486,86,859,"2025-12-10T19:23:00.000Z","4.7","7.1",[19,138,139,140,141],"administration","coming-soon","maintenance-mode","unavailable","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-maintenance-mode.2.6.20.zip","2024-01-05 00:00:00",{"attackSurface":145,"codeSignals":218,"taintFlows":240,"riskAssessment":241,"analyzedAt":255},{"hooks":146,"ajaxHandlers":201,"restRoutes":202,"shortcodes":211,"cronEvents":216,"entryPointCount":31,"unprotectedCount":217},[147,153,157,162,167,170,174,178,184,188,193,196],{"type":148,"name":149,"callback":150,"file":151,"line":152},"action","admin_notices","hdfys","hdfys_display.php",38,{"type":148,"name":154,"callback":155,"file":151,"line":156},"admin_head","hdfys_css",97,{"type":148,"name":158,"callback":159,"file":160,"line":161},"enqueue_block_editor_assets","hdfys_block_editor_assets","hdfys_gutenberg.php",75,{"type":148,"name":163,"callback":164,"file":165,"line":166},"rest_api_init","register_routes","hdfys_rest.php",48,{"type":148,"name":168,"callback":169,"file":165,"line":119},"init","RESTful_Hello_Dolly_For_Your_Song",{"type":148,"name":171,"callback":172,"file":173,"line":95},"admin_init","hdfys_options_display","hdfys_settings.php",{"type":148,"name":175,"callback":176,"file":173,"line":177},"admin_menu","hdfys_show_options",110,{"type":179,"name":180,"callback":181,"file":182,"line":183},"filter","site_status_tests","hdfys_add_hello_dolly_test","hdfys_sitehealth.php",33,{"type":179,"name":185,"callback":186,"file":182,"line":187},"debug_information","hdfys_add_debug_info",121,{"type":148,"name":189,"callback":190,"file":191,"line":192},"plugins_loaded","hdfys_load_textdomain","hdfys_translations.php",25,{"type":148,"name":189,"callback":194,"file":195,"line":132},"hdfys_update","hdfys_update.php",{"type":148,"name":197,"callback":198,"file":199,"line":200},"widgets_init","register_hdfys_widget","hdfys_widget.php",79,[],[203],{"namespace":204,"route":205,"methods":206,"callback":208,"permissionCallback":209,"file":165,"line":210},"restful-hello-dolly-for-your-song","\u002Ftext",[207],"GET","rest_get_hello_dolly_for_your_song","__return_true",55,[212],{"tag":150,"callback":213,"file":214,"line":215},"hdfys_shortcode","hdfys_shortcode.php",32,[],1,{"dangerousFunctions":219,"sqlUsage":220,"outputEscaping":222,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":239},[],{"prepared":13,"raw":13,"locations":221},[],{"escaped":223,"rawEcho":224,"locations":225},11,7,[226,228,230,232,235,236,238],{"file":151,"line":57,"context":227},"raw output",{"file":173,"line":229,"context":227},35,{"file":173,"line":231,"context":227},66,{"file":233,"line":234,"context":227},"hdfys_templatetag.php",26,{"file":199,"line":210,"context":227},{"file":199,"line":237,"context":227},56,{"file":199,"line":237,"context":227},[],[],{"summary":242,"deductions":243},"The \"hello-dolly-for-your-song\" plugin v0.20 exhibits a mixed security posture.  On the positive side, it demonstrates good practices by avoiding dangerous functions, file operations, external HTTP requests, and has zero known CVEs, indicating a generally well-maintained codebase.  The absence of SQL injection vulnerabilities due to the use of prepared statements is also a significant strength.\n\nHowever, there are notable security concerns stemming from the static analysis.  The presence of a REST API route without proper permission callbacks creates a significant attack surface that could be exploited by unauthenticated users.  Furthermore, the lack of nonce checks and capability checks for any entry points leaves it vulnerable to various types of attacks, such as Cross-Site Request Forgery (CSRF) if user interactions are involved. The significant portion of improperly escaped output (39%) also poses a risk for Cross-Site Scripting (XSS) vulnerabilities.\n\nGiven the clean vulnerability history, it's possible that the identified weaknesses have not been actively exploited yet. However, the unprotected REST API endpoint and the general lack of authentication and authorization checks on entry points represent a clear and present risk that should be addressed. While the plugin has strengths in avoiding common pitfalls like raw SQL and dangerous functions, these fundamental security oversights require immediate attention to improve its overall security. ",[244,246,249,251,253],{"reason":245,"points":45},"REST API route without permission callbacks",{"reason":247,"points":248},"Unprotected entry points (1\u002F2)",5,{"reason":250,"points":224},"Lack of nonce checks",{"reason":252,"points":224},"Lack of capability checks",{"reason":254,"points":120},"Significant improperly escaped output (39%)","2026-03-16T21:47:17.301Z",{"wat":257,"direct":263},{"assetPaths":258,"generatorPatterns":260,"scriptPaths":261,"versionParams":262},[259],"\u002Fwp-content\u002Fplugins\u002Fhello-dolly-for-your-song\u002Fblock.js",[],[259],[],{"cssClasses":264,"htmlComments":267,"htmlAttributes":268,"restEndpoints":269,"jsGlobals":271,"shortcodeOutput":273},[150,265,266],"gutenberg-block","shortcode",[],[],[270],"\u002Frestful-hello-dolly-for-your-song\u002Ftext",[272],"hdfysParams",[274],"\u003Cp class=\"hdfys shortcode\">"]