[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpkobO5S6lvj2Y_W1gsVbW1cusp7ATs0E3N4Nm3sryG0":3,"$fTFSLwn_Cza8CeAFsbJ8zYxoVYdJUuws2NvWcb7oTsXg":219,"$fCwpocZz6PR5KYpyr3q8NMQTfNTuhTdDcm2KWULiG8sc":224},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":36,"analysis":133,"fingerprints":187},"heoheoheosziasztok","Heoheoheosziasztok","1.0","csomorelwood","https:\u002F\u002Fprofiles.wordpress.org\u002Fcsomorelwood\u002F","\u003Cp>Ez a plugin aktiváláskor becsokizza az oldalt és a teljes képernyőt beborítja Zolibácsi képeivel, mindezt zenei aláfestés közepette.\u003Cbr \u002F>\nKárt nem okoz, nem nyúlkál bele semmibe, csak letilja a kattintásokat, meg feldob egy modalt.\u003Cbr \u002F>\nÁllítgatni is lehet a csoki mennyiségét, de ahhoz csak inspectorral férsz hozzá.\u003Cbr \u002F>\nKikapcsolni is inspectorral tudod. Have fun 🙂\u003C\u002Fp>\n\u003Cp>EN: The plugin disables the pointer events, and just pops a modal.\u003Cbr \u002F>\nYou can easily modify the settings and disable it in inspector mode.\u003C\u002Fp>\n","Ez egy Wordpress plugin, ami Zolibácsi isteni erejével csokizza össze az egész oldalt, beleértve az admin felületet. EN: This is a Wordpress plugin th &hellip;",0,938,"2023-04-25T06:02:00.000Z","6.2.9","3.0","7.0",[18,19,20,21,22],"elek","fun","funny","meme","zoltan","https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCnW0zKQIPp11APUWRYBDbtA","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fheoheoheosziasztok.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},5,120,30,84,"2026-05-20T01:53:12.270Z",[37,56,78,96,114],{"slug":38,"name":39,"version":6,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":11,"num_ratings":11,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":53,"download_link":54,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":55},"funny-fruits","Funny fruits","oleksandr87","https:\u002F\u002Fprofiles.wordpress.org\u002Foleksandr87\u002F","\u003Cp>This is a simple game where you have 90 seconds to score as many points as possible. Simply enter the [funnyfruits] shortcode in a post or page.\u003C\u002Fp>\n","This is a simple game where you have 90 seconds to score as many points as possible.",20,1952,"2017-03-20T20:34:00.000Z","4.7.32","4.7","",[51,20,52],"food","game","http:\u002F\u002Foleksandrustymenko.com\u002Ffunnyfruits","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffunny-fruits.zip","2026-03-15T15:16:48.613Z",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":49,"tags":71,"homepage":76,"download_link":77,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":55},"air-horn","Air Horn","0.0.1","Jason Stallings","https:\u002F\u002Fprofiles.wordpress.org\u002Foctalmage\u002F","\u003Cp>This plugin plays an air horn when you login, and adds an air horn button to the WordPress toolbar.\u003C\u002Fp>\n\u003Cp>Usage:\u003C\u002Fp>\n\u003Cp>Login and hear the Air Horn!\u003C\u002Fp>\n","Air horn for WordPress.",10,2189,100,2,"2015-01-29T15:33:00.000Z","4.1.0","3.0.1",[72,73,20,74,75],"air","airhorn","horn","prank","https:\u002F\u002Fgithub.com\u002Foctalmage\u002FAirHorn\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fair-horn.zip",{"slug":79,"name":80,"version":6,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":64,"downloaded":85,"rating":66,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":49,"tags":90,"homepage":94,"download_link":95,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"funny-chat-bot","Funny CHATBOT","Huy Kira","https:\u002F\u002Fprofiles.wordpress.org\u002Fhuykiradotnet\u002F","\u003Cp>Auto chatbot wordpress\u003Cbr \u002F>\nRandom chatbot wordpress\u003Cbr \u002F>\nChatbot wordpress is like facebook\u003Cbr \u002F>\nSee more: \u003Ca href=\"https:\u002F\u002Fhuykira.net\u002Fshare-code\u002Fshare-plugin-funny-chatbot.html\" rel=\"nofollow ugc\">https:\u002F\u002Fhuykira.net\u002Fshare-code\u002Fshare-plugin-funny-chatbot.html\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Arbitrary section 1\u003C\u002Fh3>\n","Funny chatbot wordpress",1954,1,"2017-07-27T02:20:00.000Z","4.8.28","3.5",[91,92,93],"chatbot","chatbot-wordpress","funny-chatbot","https:\u002F\u002Fhuykira.net\u002Fshare-code\u002Fshare-plugin-funny-chatbot.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffunny-chat-bot.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":64,"downloaded":104,"rating":44,"num_ratings":86,"last_updated":105,"tested_up_to":106,"requires_at_least":15,"requires_php":49,"tags":107,"homepage":112,"download_link":113,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":55},"funny-photos","Funny Photos","2.9","PResponsive","https:\u002F\u002Fprofiles.wordpress.org\u002Fallis741\u002F","\u003Cp>Plugin “Funny Photos” displays Funny photos on your blog.\u003Cbr \u002F>\nThere are over 5,000 photos.\u003Cbr \u002F>\nAdd Funny Photos to your sidebar on your blog using  a widget.\u003Cbr \u002F>\nPhotos are saved on our database, so you don’t need to have space for all that information.\u003C\u002Fp>\n","Plugin \"Funny Photos\" displays Best photos of the day and Funny photos on your blog. There are over 5,000 photos.",7582,"2015-02-28T18:18:00.000Z","4.1.42",[108,97,109,110,111],"funny-jokes","funny-video","jokes","widget","http:\u002F\u002Fwww.premiumresponsive.com\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffunny-photos.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":64,"downloaded":122,"rating":11,"num_ratings":11,"last_updated":123,"tested_up_to":124,"requires_at_least":89,"requires_php":49,"tags":125,"homepage":130,"download_link":131,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":132},"funny-text","Funny Text","1.2","Anshul Gangrade","https:\u002F\u002Fprofiles.wordpress.org\u002Fanshuln90\u002F","\u003Cp>A WordPress plugin for Create funny and crazy moving texts in a simple way.\u003C\u002Fp>\n\u003Cp> For Funny Text use a below shortcode  \u003C\u002Fp>\n\u003Cpre>\u003Ccode>[funnytext text=\"Your Text\" speed=\"1000\" color=\"#000000\" activeColor=\"#ffffff\" fontSize=\"18px\" direction=\"both\" borderColor=\"#333333\" ]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Shortcode Options\u003C\u002Fh3>\n\u003Col>\n\u003Cli>speed: (default 700) Defines the speed in which the letters change in milliseconds.\u003C\u002Fli>\n\u003Cli>borderColor: (default black) Defines the color of the border when the text is active. This option won’t take effect when if the browser doesn’t support CSS3.\u003C\u002Fli>\n\u003Cli>activeColor: (default white) Defines the color of the text when it is active.\u003C\u002Fli>\n\u003Cli>color: (default black) Defines the color of the text on start.\u003C\u002Fli>\n\u003Cli>fontSize: (default 3em) Defines the size of the font.\u003C\u002Fli>\n\u003Cli>direction : (default both) Defines the direction of the letters movement. It can be both, horizontal or vertical.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.paypal.me\u002Fanshulgangrade\" rel=\"nofollow ugc\">Donate Link\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>    \u003Ca href=\"http:\u002F\u002Fwww.paypal.me\u002Fanshulgangrade\" rel=\"nofollow ugc\">\u003C\u002Fa>\u003Cbr \u002F>\n    Thanks for using it!. I hope everything works good and you are satisfied with this Plugin. Donations help me to continue user support and development of this free software things for which I spend countless hours of my free time!\u003Cbr \u002F>\n    \u003Ca href=\"http:\u002F\u002Fwww.paypal.me\u002Fanshulgangrade\" rel=\"nofollow ugc\">\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Credits : \u003Ca href=\"http:\u002F\u002Falvarotrigo.com\u002FfunnyText\u002F\" rel=\"nofollow ugc\">funnyText.js\u003C\u002Fa>\u003C\u002Fp>\n","A WordPress plugin for Create funny and crazy moving texts in a simple way.",5365,"2018-03-26T12:41:00.000Z","4.9.29",[126,127,115,128,129],"animated-headline","animation","funny-text-heading","heading","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffunny-text\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffunny-text.1.2.zip","2026-04-06T09:54:40.288Z",{"attackSurface":134,"codeSignals":165,"taintFlows":175,"riskAssessment":176,"analyzedAt":186},{"hooks":135,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":164,"entryPointCount":11,"unprotectedCount":11},[136,142,146,150,153,157],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","init","register_the_unlimited_power_of_elek_zoltan_raised_by_csomorelwood","heoheoheosziasztok.php",17,{"type":137,"name":143,"callback":144,"file":140,"line":145},"wp_footer","heoheoheoszaisztok_add_wp_footer_scripts_by_csomorelwood",19,{"type":137,"name":147,"callback":148,"file":140,"line":149},"admin_footer","heoheo_admin_footer_function_by_csomorelwood",26,{"type":137,"name":138,"callback":151,"file":140,"line":152},"magical_script_from_the_god_himself_csomorelwood",92,{"type":137,"name":154,"callback":155,"file":140,"line":156},"admin_init","heoheo_register_settings",101,{"type":137,"name":158,"callback":159,"file":140,"line":160},"admin_menu","heoheo_register_options_page",106,[],[],[],[],{"dangerousFunctions":166,"sqlUsage":167,"outputEscaping":169,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":174},[],{"prepared":11,"raw":11,"locations":168},[],{"escaped":11,"rawEcho":86,"locations":170},[171],{"file":140,"line":172,"context":173},83,"raw output",[],[],{"summary":177,"deductions":178},"The plugin \"heoheoheosziasztok\" v1.0 exhibits a seemingly strong security posture at first glance, with no detected attack surface points, dangerous functions, file operations, or external HTTP requests. The absence of known vulnerabilities in its history is also a positive indicator. However, a critical concern arises from the 100% of output operations not being properly escaped. This indicates a significant risk of Cross-Site Scripting (XSS) vulnerabilities, where malicious scripts could be injected and executed in the user's browser. Furthermore, the complete lack of nonce checks and capability checks, while not directly flagged as an \"attack surface\" due to other indicators being zero, suggests a potential for authorization bypass or Cross-Site Request Forgery (CSRF) if any entry points were to be introduced or discovered in future versions or related components.\n\nWhile the plugin currently has zero known vulnerabilities and a clean attack surface, the unescaped output is a severe weakness that requires immediate attention. The lack of comprehensive security checks like nonces and capabilities, combined with the unescaped output, points to a developer who may not fully understand or implement standard WordPress security practices. The absence of any taint analysis results and zero flows analyzed might also indicate a lack of thorough security testing or that the plugin's functionality is extremely limited. In conclusion, the plugin has a good foundation with no known exploits or broad attack surface, but the glaring unescaped output presents a significant and easily exploitable risk that overshadows these strengths.",[179,182,184],{"reason":180,"points":181},"Output not properly escaped",8,{"reason":183,"points":31},"Missing nonce checks",{"reason":185,"points":31},"Missing capability checks","2026-04-16T13:47:19.446Z",{"wat":188,"direct":196},{"assetPaths":189,"generatorPatterns":192,"scriptPaths":193,"versionParams":195},[190,191],"\u002Fwp-content\u002Fplugins\u002Fheoheoheosziasztok\u002Fassets\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fheoheoheosziasztok\u002Fassets\u002Fimages\u002Felekgif.gif",[],[194],"\u002Fwp-content\u002Fplugins\u002Fheoheoheosziasztok\u002Fassets\u002Fjs\u002Felek.js",[],{"cssClasses":197,"htmlComments":209,"htmlAttributes":210,"restEndpoints":216,"jsGlobals":217,"shortcodeOutput":218},[198,199,200,201,202,203,204,205,206,207,208],"elekmodal","elekcontainer-old","elekimg","elekcontainer","elekimg-1","elekimg-2","elekimg-3","elekimg-4","elekimg-5","elekimg-6","leaf",[],[211,212,213,214,215],"name=\"elekzene_cb\"","name=\"csodagif_cb\"","name=\"kozep_cb\"","name=\"sarkok_cb\"","name=\"futok_cb\"",[],[],[],{"error":220,"url":221,"statusCode":222,"statusMessage":223,"message":223},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fheoheoheosziasztok\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":11,"versions":225},[]]