[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fyq74G5HoibHaxlQOUDR2xei-dZldM6T2lV9EhU96cx8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":7,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":132,"fingerprints":333},"hikari-featured-comments","Hikari Featured Comments","0.02.00","","https:\u002F\u002Fprofiles.wordpress.org\u002Fshidouhikari\u002F","\u003Cp>Have you ever wanted to highlight a valuable comment among all others? Or not let that troll 6-paragraphs comment take more space than it deserve? Or even hide a whole thread of offtipics?\u003C\u002Fp>\n\u003Cp>Well, now you can!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fhikari.ws\u002Ffeatured-comments\u002F\" rel=\"nofollow ugc\">Hikari Featured Comments\u003C\u002Fa>\u003C\u002Fstrong> is a simple plugin that adds 3 new custom fields to comments, allowing you to add special properties to each of them.\u003C\u002Fp>\n\u003Cp>With this feature available, you can query any comment to know if it has any of those properties flagged, and if so you can take special actions within your theme or another plugin.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>There are 3 special properties available, you can give them any semantic you like, but default meanings are as follows:\u003Cbr \u002F>\n* \u003Cem>Featured\u003C\u002Fem>: a comment flagged as featured should be highlighted from all others. You can give it special CSS styles from your theme to make it more visible among all comments, and flag any valuable comment as so.\u003Cbr \u002F>\n* \u003Cem>Buried\u003C\u002Fem>: a buried comment is a comment you don’t wanna just delete, but also don’t want it as visible as all others. You can use it to hide offtopic comments which you don’t want to perpetuate.\u003Cbr \u002F>\n* \u003Cem>Children\u002FThreaded buried\u003C\u002Fem>: this one has similar meaning to the former, but it should be applied to nested\u002Fthreaded\u002Fchildren comments of the flagged comment.\u003C\u002Fp>\n\u003Cp>Note that any comment can be independently flagged as \u003Cem>Buried\u003C\u002Fem> and \u003Cem>Children buried\u003C\u002Fem>, therefore a Children buried comment shouldn’t have special styles applied to itself. In the same way, you can also have a featured AND buried comment, having both styles should be applied together!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Hikari Featured Comments\u003C\u002Fstrong> provides a special metabox in comment edit page (\u002Fwp-admin\u002Fcomment.php?action=editcomment&c=XXXX) where you can flag these properties, and it automatically attach new classes (\u003Ccode>featured\u003C\u002Fcode>, \u003Ccode>buried\u003C\u002Fcode>, \u003Ccode>children_buried\u003C\u002Fcode>) to comments in frontend.\u003C\u002Fp>\n","It adds 3 new custom fields to comments (Featured, Buried, Children buried), allowing you to add special properties to each of them.",10,2830,0,"2010-10-03T20:50:00.000Z","3.0.5","2.9.0",[18,19,20,21,22],"comment","feature","featured","highlight","threaded","http:\u002F\u002FHikari.ws\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhikari-featured-comments.0.02.00.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":30,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"shidouhikari",6,350,30,84,"2026-04-05T15:27:06.389Z",[37,53,77,96,115],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":7,"short_description":43,"active_installs":11,"downloaded":44,"rating":13,"num_ratings":13,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":7,"tags":48,"homepage":51,"download_link":52,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"best-of-comments","Best-Of Comments","1.2","David Miller","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidjmillerorg\u002F","Best-Of Comments allows users to tag exceptional comments and display a randomly selected list of those comments wherever they choose in their theme.",2590,"2016-12-07T20:14:00.000Z","4.7.32","2.5",[49,50,20,21],"classic","comments","http:\u002F\u002Fwww.davidjmiller.org\u002F2009\u002Fbest-of-comments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbest-of-comments.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":63,"num_ratings":11,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":72,"download_link":73,"security_score":74,"vuln_count":75,"unpatched_count":13,"last_vuln_date":76,"fetched_at":27},"mark-posts","Mark Posts","2.2.6","flymke","https:\u002F\u002Fprofiles.wordpress.org\u002Fflymke\u002F","\u003Cp>Mark Posts plugin provides an easy way to mark and highlight posts, pages and posts of custom post types within the WordPress admin posts overview.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set custom marker categories and colors\u003C\u002Fli>\n\u003Cli>Assign marker categories to posts\u002Fpages or any other post type\u003C\u002Fli>\n\u003Cli>View the highlighted posts within the posts overview\u003C\u002Fli>\n\u003Cli>Quick edit, bulk edit and\u002For edit all markers at once\u003C\u002Fli>\n\u003Cli>Dashboard widget with marker status count\u003C\u002Fli>\n\u003Cli>Optional custom setup via filters (check our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fhofmannsven\u002Fmark-posts\u002Fwiki\" rel=\"nofollow ugc\">wiki\u003C\u002Fa> for instructions)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Live Demo\u003C\u002Fh4>\n\u003Cp>Try out the features of Mark Posts on the \u003Ca href=\"https:\u002F\u002Fplayground.wordpress.net\u002F?blueprint-url=https:\u002F\u002Fraw.githubusercontent.com\u002Fhofmannsven\u002Fmark-posts\u002Fmaster\u002F.wordpress-org\u002Fblueprint.json\" rel=\"nofollow ugc\">WordPress playground\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Active development of this plugin is handled on GitHub. Always feel free to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fhofmannsven\u002Fmark-posts\u002Fissues\" rel=\"nofollow ugc\">raise an issue\u003C\u002Fa>.\u003C\u002Fp>\n","Mark and highlight posts, pages and posts of custom post types within the posts overview.",1000,16951,96,"2025-02-12T21:45:00.000Z","6.7.5","4.1","7.0",[69,20,21,70,71],"color","status","tag","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmark-posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmark-posts.2.2.6.zip",91,2,"2025-01-16 00:00:00",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":13,"num_ratings":13,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":7,"tags":90,"homepage":94,"download_link":95,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"yet-another-featured-posts-plugin","Yet Another Featured Posts Plugin (YAFPP)","1.4","JonRaasch","https:\u002F\u002Fprofiles.wordpress.org\u002Fjonraasch\u002F","\u003Cp>Yet Another Featured Posts Plugin (YAFPP) provides an easy interface to feature posts in your WordPress blog. Simply check the ‘featured stars’ associated with each post in WordPress’ post listing screen to feature or unfeature a post.  This info is posted immediately to your WordPress settings using AJAX.\u003C\u002Fp>\n\u003Cp>This interface for featuring\u002Funfeaturing posts is a big step up from other featured posts plugins, which make you enter a string of IDs.\u003C\u002Fp>\n\u003Cp>Additionally, YAFPP provides a number of output options for WP developers – you can echo out or return an HTML formatted string of featured posts, return an array of featured post data or manipulate WordPress’ The_Loop.\u003C\u002Fp>\n\u003Cp>Using these display options you can easily display a thumbnail with each featured post, or otherwise modify the list of featured posts according to your setup.\u003C\u002Fp>\n\u003Cp>Not a developer?  Beginners can also display thumbnails with their featured posts by installing \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fyet-another-photoblog\u002F\" title=\"Yet Another Photoblog\" rel=\"ugc\">YAPB\u003C\u002Fa>.  YAFPP interfaces nicely with YAPB, and allows you to display YAPB thumbnails along with your normal featured posts output.\u003C\u002Fp>\n\u003Cp>Please read the \u003Ca href=\"http:\u002F\u002Fdev.jonraasch.com\u002Fyafpp\u002Fdocs\" title=\"Read the complete documentation\" rel=\"nofollow ugc\">complete documentation for YAFPP\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Copyright 2009-2010 Jon Raasch – Released under the FreeBSD License – \u003Ca href=\"http:\u002F\u002Fdev.jonraasch.com\u002Fyafpp\u002Fdocs#licensing\" rel=\"nofollow ugc\">License details\u003C\u002Fa>\u003C\u002Fp>\n","Yet Another Featured Posts Plugin provides an easy AJAX interface to feature posts, with thumbnails & other display options for featured posts.",100,31342,"2010-04-23T16:15:00.000Z","2.9.2","2.8.4",[20,91,21,92,93],"featured-posts","star","starred","http:\u002F\u002Fjonraasch.com\u002Fblog\u002Fyet-another-featured-posts-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyet-another-featured-posts-plugin.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":33,"downloaded":104,"rating":85,"num_ratings":75,"last_updated":105,"tested_up_to":46,"requires_at_least":106,"requires_php":7,"tags":107,"homepage":111,"download_link":112,"security_score":113,"vuln_count":75,"unpatched_count":13,"last_vuln_date":114,"fetched_at":27},"feature-comments","Featured Comments","1.2.6","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>Lets the admin add “featured” or “buried” css class to selected comments. Handy to highlight comments that add value to your post.\u003C\u002Fp>\n\u003Cp>This plugin makes use of the meta_query option added in WordPress 3.5 to the WP_Comment_Query class, so it is no longer compatible with earlier versions of WordPress.\u003C\u002Fp>\n\u003Cp>Please report bugs and suggestions on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpippinsplugins\u002FFeatured-Comments\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n","Lets the admin add \"featured\" or \"buried\" css class to selected comments. Handy to highlight comments that add value to your post.",8880,"2016-10-10T14:30:00.000Z","3.5",[50,97,108,109,110],"featured-comments","pippins-plugins","pippinsplugins","http:\u002F\u002Fpippinsplugins.com\u002Ffeatured-comments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeature-comments.1.2.6.zip",83,"2014-10-21 00:00:00",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":33,"downloaded":123,"rating":85,"num_ratings":75,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":7,"tags":127,"homepage":130,"download_link":131,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"featured-comment-widget","Featured Comment Widget","1.7","Jenn Schiffer","https:\u002F\u002Fprofiles.wordpress.org\u002Fjennschiffer\u002F","\u003Cp>The Featured Comment Widget gives you the ability to shine a spotlight on some of your favorite comments on the site.\u003C\u002Fp>\n\u003Cp>Installing this plugin adds the Featured Comment Widget to your list of available widgets in the ‘Widgets’ submenu (which you can find under ‘Appearance’ in your WordPress dashboard). Every comment has an numeric ID, and putting that ID in the widget form results in the that comment (or commentS if you enter multiple IDs), along with the name and Gravatar of its commenter, showing in the sidebar.  The Gravatar and username is automatically a link to that comment in its respective post.\u003C\u002Fp>\n\u003Ch3>Widget CSS\u003C\u002Fh3>\n\u003Cp>The following are the classes and explanations of them for those of you who want to style your widget in the custom.css file:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>.featuredComment-comment – a single comment block containing the content and citation, default: { margin: 20px auto; }\u003C\u002Fli>\n\u003Cli>.featuredComment-comment-content – the comment text, default: { margin: 3px auto 5px;}\u003C\u002Fli>\n\u003Cli>.featuredComment-cite – the citation that includes gravatar and author name, default: { display: block; text-align: left; line-height: 1em;}\u003C\u002Fli>\n\u003Cli>.featuredComment-gravatar – the gravatar image within citation, default: {float: right; padding: 0px 5px;}\u003C\u002Fli>\n\u003Cli>.featuredComment-author – the “posted by …” author link within citation, default: {float: right;}\u003C\u002Fli>\n\u003C\u002Ful>\n","The Featured Comment Widget gives you the ability to shine a spotlight on some of your favorite comments on the site.",6866,"2015-09-16T21:22:00.000Z","4.3.34","2.3",[18,128,50,20,129],"comment-widget","sidebar","http:\u002F\u002Fgithub.com\u002Fjennschiffer\u002Ffeatured-comment-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeatured-comment-widget.1.7.zip",{"attackSurface":133,"codeSignals":180,"taintFlows":290,"riskAssessment":324,"analyzedAt":332},{"hooks":134,"ajaxHandlers":176,"restRoutes":177,"shortcodes":178,"cronEvents":179,"entryPointCount":13,"unprotectedCount":13},[135,142,146,150,154,158,161,165,170,173],{"type":136,"name":137,"callback":138,"priority":139,"file":140,"line":141},"action","comment_post","postingComment",20,"hikari-featured-comments-core.php",66,{"type":136,"name":143,"callback":144,"priority":139,"file":140,"line":145},"edit_comment","editingComment",67,{"type":136,"name":147,"callback":148,"file":140,"line":149},"admin_menu","register_meta_box",69,{"type":151,"name":152,"callback":152,"file":140,"line":153},"filter","comment_row_actions",70,{"type":136,"name":155,"callback":156,"file":140,"line":157},"admin_init","requestFromCommentsListPage",71,{"type":151,"name":159,"callback":159,"file":140,"line":160},"comment_class",73,{"type":136,"name":162,"callback":163,"file":140,"line":164},"plugins_loaded","HkFC_instance",346,{"type":136,"name":166,"callback":167,"file":168,"line":169},"init","startup","hikari-tools.php",34,{"type":136,"name":155,"callback":171,"file":168,"line":172},"options_init",449,{"type":136,"name":147,"callback":174,"file":168,"line":175},"menuPrepare",450,[],[],[],[],{"dangerousFunctions":181,"sqlUsage":182,"outputEscaping":184,"fileOperations":13,"externalRequests":13,"nonceChecks":287,"capabilityChecks":288,"bundledLibraries":289},[],{"prepared":13,"raw":13,"locations":183},[],{"escaped":185,"rawEcho":186,"locations":187},7,59,[188,191,193,195,197,199,201,203,205,207,208,209,210,211,213,215,217,218,219,220,221,223,225,227,229,230,232,234,236,237,238,240,241,243,245,247,248,249,251,252,254,255,257,259,261,263,265,267,268,270,272,274,276,278,279,281,283,284,285],{"file":140,"line":189,"context":190},228,"raw output",{"file":168,"line":192,"context":190},126,{"file":168,"line":194,"context":190},134,{"file":168,"line":196,"context":190},135,{"file":168,"line":198,"context":190},140,{"file":168,"line":200,"context":190},147,{"file":168,"line":202,"context":190},156,{"file":168,"line":204,"context":190},588,{"file":168,"line":206,"context":190},590,{"file":168,"line":206,"context":190},{"file":168,"line":206,"context":190},{"file":168,"line":206,"context":190},{"file":168,"line":206,"context":190},{"file":168,"line":212,"context":190},592,{"file":168,"line":214,"context":190},609,{"file":168,"line":216,"context":190},611,{"file":168,"line":216,"context":190},{"file":168,"line":216,"context":190},{"file":168,"line":216,"context":190},{"file":168,"line":216,"context":190},{"file":168,"line":222,"context":190},613,{"file":168,"line":224,"context":190},622,{"file":168,"line":226,"context":190},624,{"file":168,"line":228,"context":190},630,{"file":168,"line":228,"context":190},{"file":168,"line":231,"context":190},635,{"file":168,"line":233,"context":190},644,{"file":168,"line":235,"context":190},659,{"file":168,"line":235,"context":190},{"file":168,"line":235,"context":190},{"file":168,"line":239,"context":190},660,{"file":168,"line":239,"context":190},{"file":168,"line":242,"context":190},664,{"file":168,"line":244,"context":190},673,{"file":168,"line":246,"context":190},693,{"file":168,"line":246,"context":190},{"file":168,"line":246,"context":190},{"file":168,"line":250,"context":190},694,{"file":168,"line":250,"context":190},{"file":168,"line":253,"context":190},698,{"file":168,"line":253,"context":190},{"file":168,"line":256,"context":190},700,{"file":168,"line":258,"context":190},765,{"file":168,"line":260,"context":190},766,{"file":168,"line":262,"context":190},767,{"file":168,"line":264,"context":190},798,{"file":168,"line":266,"context":190},823,{"file":168,"line":266,"context":190},{"file":168,"line":269,"context":190},833,{"file":168,"line":271,"context":190},848,{"file":168,"line":273,"context":190},850,{"file":168,"line":275,"context":190},900,{"file":168,"line":277,"context":190},972,{"file":168,"line":277,"context":190},{"file":168,"line":280,"context":190},1012,{"file":168,"line":282,"context":190},1014,{"file":168,"line":282,"context":190},{"file":168,"line":282,"context":190},{"file":168,"line":286,"context":190},1066,1,5,[],[291,314],{"entryPoint":292,"graph":293,"unsanitizedCount":287,"severity":313},"debugRequestParameters (hikari-tools.php:928)",{"nodes":294,"edges":309},[295,300,304],{"id":296,"type":297,"label":298,"file":168,"line":299},"n0","source","$_REQUEST",932,{"id":301,"type":302,"label":303,"file":168,"line":299},"n1","transform","→ dump()",{"id":305,"type":306,"label":307,"file":168,"line":196,"wp_function":308},"n2","sink","echo() [XSS]","echo",[310,312],{"from":296,"to":301,"sanitized":311},false,{"from":301,"to":305,"sanitized":311},"medium",{"entryPoint":315,"graph":316,"unsanitizedCount":287,"severity":313},"\u003Chikari-tools> (hikari-tools.php:0)",{"nodes":317,"edges":321},[318,319,320],{"id":296,"type":297,"label":298,"file":168,"line":299},{"id":301,"type":302,"label":303,"file":168,"line":299},{"id":305,"type":306,"label":307,"file":168,"line":196,"wp_function":308},[322,323],{"from":296,"to":301,"sanitized":311},{"from":301,"to":305,"sanitized":311},{"summary":325,"deductions":326},"The \"hikari-featured-comments\" plugin, version 0.02.00, exhibits a generally positive security posture based on the static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points is a significant strength. Furthermore, the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and including nonce and capability checks, indicating an awareness of common WordPress security vulnerabilities.  There are no recorded vulnerabilities or CVEs, which suggests a history of secure development or a lack of prior security scrutiny. However, a notable concern is the low percentage of properly escaped output (11%). This could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is not adequately sanitized before being displayed. While taint analysis did not reveal critical or high severity issues, the presence of two flows with unsanitized paths, even if deemed lower severity, warrants attention. The limited attack surface is a positive, but the lack of robust output escaping is a weakness that could be exploited.",[327,330],{"reason":328,"points":329},"Low output escaping (11%)",8,{"reason":331,"points":288},"Unsanitized paths in taint flows","2026-03-17T01:02:54.148Z",{"wat":334,"direct":343},{"assetPaths":335,"generatorPatterns":338,"scriptPaths":339,"versionParams":340},[336,337],"\u002Fwp-content\u002Fplugins\u002Fhikari-featured-comments\u002Fcss\u002Fhikari-featured-comments.css","\u002Fwp-content\u002Fplugins\u002Fhikari-featured-comments\u002Fjs\u002Fhikari-featured-comments.js",[],[337],[341,342],"hikari-featured-comments\u002Fcss\u002Fhikari-featured-comments.css?ver=","hikari-featured-comments\u002Fjs\u002Fhikari-featured-comments.js?ver=",{"cssClasses":344,"htmlComments":347,"htmlAttributes":348,"restEndpoints":356,"jsGlobals":357,"shortcodeOutput":362},[20,345,346],"buried","children_buried",[],[349,350,351,352,353,354,355],"name=\"hikari-featured\"","id=\"hikari-featured\"","name=\"hikari-buried\"","id=\"hikari-buried\"","name=\"hikari-children-buried\"","id=\"hikari-children-buried\"","name=\"HkFC_nonce\"",[],[358,359,360,361],"HkFC_nonce","hikari-featured","hikari-buried","hikari-children-buried",[]]