[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7Zkqy--74GlcGl7jGG9EZHFSNukcJfv728TgOXEC12w":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":128,"fingerprints":280},"html-to-post","HTML to Post","1.0","sujin2f","https:\u002F\u002Fprofiles.wordpress.org\u002Fsujin2f\u002F","\u003Cp>If you use specific clause when you write a post or page, like signature or donation link like me, just download this plugin.\u003C\u002Fp>\n\u003Cp>여러분이 서명이나 도네이션 링크 같은 특정한 구문을 포스트나 페이지에 자주 사용한다면 이 플러그인이 참 유용할 거에요.\u003C\u002Fp>\n\u003Cp>In the same reason, you may want to include css or javascript code in specific pages. If you do not want to insert these code in every page, you can’t add the code into your theme file like single.php. You may copy and paste in every page you want or make some PHP code with conditional operator.\u003C\u002Fp>\n\u003Cp>같은 이유로 CSS나 자바스크립트 코드를 특정 페이지들에 사용하실 수도 있겠죠. 여러분은 모든 페이지에 포함되길 원하지 않을 수도 있겠죠. 즉, 이러한 코드들을 single.php같은 테마 파일에 포함시키게 되면 예외 구문을 주게 되겠죠? 그럼 테마 코드가 지저분해질 거에요.\u003C\u002Fp>\n\u003Cp>This plugin is made for those people. You can include HTML, CSS and JS file in the pages you want.\u003C\u002Fp>\n\u003Cp>이 플러그인은 HTML, CSS, 자바스크립트를 원하는 페이지에만 삽입할 수 있답니다.\u003C\u002Fp>\n\u003Cp>Official Page : \u003Ca href=\"http:\u002F\u002Fwww.sujinc.com\u002Flab\u002Fhtml2post\u002F\" rel=\"nofollow ugc\">HTML 2 Post\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch4>Activate this plugin \u002F 플러그인을 활성화하세요\u003C\u002Fh4>\n\u003Cp>Download and activate this pluin\u003C\u002Fp>\n\u003Cp>이 플러그인을 다운로드 하고 활성화 시키세요.\u003C\u002Fp>\n\u003Ch4>Make files \u002F 파일을 만드세요\u003C\u002Fh4>\n\u003Cp>Make HTML, CSS or Javascript file to the directory \u002Fwp-content\u002Fuploads\u002Fsujin\u002Fhtml2post\u002F(html|css|js).\u003C\u002Fp>\n\u003Cp>HTML, CSS, 자바스크립트 파일을 \u002Fwp-content\u002Fuploads\u002Fsujin\u002Fhtml2post\u002F 하위의 html, css, js폴더에 만드세요.\u003C\u002Fp>\n\u003Ch4>Edit your posts or pages \u002F 포스트나 페이지를 작성하거나 수정할 때\u003C\u002Fh4>\n\u003Cp>You can see metabox named ‘Choose External HTML’.\u003C\u002Fp>\n\u003Cp>‘Choose External HTML’이라는 메타박스를 보세요.\u003C\u002Fp>\n\u003Ch4>Check the options \u002F 옵션을 체크하세요.\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>HTML : If you don’t check the shortcode, this plugin will replace whole content with html file. If you check that option, this plugin will replace the shortcode with html file.\u003C\u002Fli>\n\u003Cli>HTML : 숏코드 뭐시기라 나온 체크박스에 체크하면 저 숏코드를 쓴 부분이 html 파일로 대치될 거에요. 체크를 하지 않으시면 여러분이 작성한 포스트의 내용은 무시되고 모든 콘텐츠가 html로 대치되겠죠?\u003C\u002Fli>\n\u003Cli>Every Section : Check the radio buttons that you want to insert in this post or page.\u003C\u002Fli>\n\u003Cli>모든 옵션 : 이 포스트\u002F페이지에 추가할 파일을 선택하세요.\u003C\u002Fli>\n\u003C\u002Ful>\n","The HTML, CSS and JS file you choose will be inserted Your post or page.",10,3084,0,"","3.5.2","3.2",[18,19,20,21,22],"css","html","javascript","js","post","http:\u002F\u002Fwww.sujinc.com\u002Flab\u002Fhtml-to-post\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhtml-to-post.1.0.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},5,140,88,30,86,"2026-04-04T14:10:57.001Z",[37,58,77,98,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":34,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":14,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"raw-html","Raw HTML","1.6.4","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>Lets you disable automatic formatting like smart quotes and automatic paragraph creation, and use raw HTML\u002FJS\u002FCSS code in your posts without WordPress messing it up.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>With this plugin, you can wrap any part of your post in [raw]…[\u002Fraw] tags to prevent WordPress from converting newlines to HTML paragraphs, replacing apostrophes with typographic quotes and so on. This is very useful if you need to add a CSS block or JavaScript to your post.\u003C\u002Fp>\n\u003Cp>RawHTML will also add new checkboxes to the “Edit Post” screen that let you disable certain WP filters on a per-post basis. This way you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable wptexturize (the function that creates smart quotes and other typographic characters).\u003C\u002Fli>\n\u003Cli>Disable automatic paragraph creation.\u003C\u002Fli>\n\u003Cli>Disable image smilies. \u003C\u002Fli>\n\u003Cli>Disable convert_chars (the function that converts ampersands to HTML entities and “fixes” some Unicode characters).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The free version only supports editing posts in the Text tab (called “HTML” in older WordPress versions). \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">Get the Pro version\u003C\u002Fa> if you want to be able to switch between Text and the Visual editor without WordPress messing up your content.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Compatibility\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin doesn’t fully support the Gutenberg editor. As of WordPress 5.0, some Raw HTML features will only work if you use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To prevent a part of your post or page from being filtered by WordPress, switch to the Text\u002FHTML editor and wrap it in \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> or \u003Ccode>\u003C!--raw-->...\u003C!--\u002Fraw-->\u003C\u002Fcode> tags. These two versions work exactly the same, except that the latter won’t be visible to your visitors even if you deactivate Raw HTML.\u003C\u002Fp>\n\u003Cp>\u003Cem>Example :\u003C\u002Fem>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw]\nThis \n\nis \n\na \"test\"!\n[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In this case, the tags will prevent WordPress from inserting paragraph breaks between “This”, “is” and “a “test””, as well as ensure that the double quotes arround “test” are not converted to typographic (curly) quotes.\u003C\u002Fp>\n\u003Cp>To avoid problems, only edit posts that contain your custom code in Text\u002FHTML mode. If you’d like to be able to also use the Visual editor, \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">get the Pro version\u003C\u002Fa>. It will make the code betwen [raw] tags appear as a read-only placeholder when viewed in Visual mode, ensuring WordPress doesn’t change it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Combining shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, shortcodes that are inside [raw] tags will not work. They will just show up as plain text. To enable shortcodes, add the \u003Ccode>shortcodes=1\u003C\u002Fcode> attribute to the tag:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw shortcodes=1]This [shortcode] will be run.[\u002Fraw]\n\n[raw]This [shortcode] won't work.[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Preserving \u003Ccode>[raw]\u003C\u002Fcode> code in excerpts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, the plugin will automatically remove any code that’s inside \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> tags from post excerpts. You can prevent that by adding the following line to \u003Ccode>wp-config.php\u003C\u002Fcode>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define('RAW_HTML_KEEP_RAW_IN_EXCERPTS', true);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This will ensure that the plugin doesn’t strip \u003Ccode>[raw]\u003C\u002Fcode> blocks from automatically generated excerpts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Some features of Raw HTML will only work for users who have the “unfiltered_html” capability. In a normal WordPress install that includes the Editor and Administrator roles. In a Multisite install, only the Super Admin has this capability by default.\u003C\u002Fp>\n","Lets you use raw HTML or any other code in your posts. You can also disable smart quotes and other automatic formatting on a per-post basis.",10000,586247,33,"2024-11-11T15:00:00.000Z","6.7.5","2.8",[18,52,19,20,53],"formatting","posts","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2007\u002F12\u002F13\u002Fraw-html-in-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraw-html.1.6.4.zip",92,"2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":50,"requires_php":14,"tags":72,"homepage":74,"download_link":75,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"wp-minify-fix","WP Minify Fix","1.4.1","NodeCode","https:\u002F\u002Fprofiles.wordpress.org\u002Fnodecode\u002F","\u003Cp>This plugin is a fork of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-minify\u002F\" rel=\"ugc\">WP Minify\u003C\u002Fa> to fix bugs and add features, because it has not been updated since 2012-6-4.\u003C\u002Fp>\n\u003Cp>This plugin integrates the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmrclay\u002Fminify\" rel=\"nofollow ugc\">Minify engine\u003C\u002Fa>\u003Cbr \u002F>\ninto your WordPress blog.  Once enabled, this plugin will combine and compress\u003Cbr \u002F>\nJS and CSS files to improve page load time.\u003C\u002Fp>\n\u003Ch4>What has been fixed?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Minify engine updated to version 2.1.7\u003C\u002Fli>\n\u003Cli>Cache interval option has been fixed\u003C\u002Fli>\n\u003Cli>Move CSS-@imports to the top of the output\u003C\u002Fli>\n\u003Cli>Bottom CSS- and JavaScript output fixed\u003C\u002Fli>\n\u003Cli>Support for script tags without \u003Ccode>type=\"text\u002Fjavascript\"\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Detection of protocol-relative URLs as external file (e.g. Google AdSense)\u003C\u002Fli>\n\u003Cli>New option for the HTML5 async attribute\u003C\u002Fli>\n\u003Cli>A separate JavaScript file in the footer is now possible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How Does it Work?\u003C\u002Fh4>\n\u003Cp>WP Minify Fix grabs JS\u002FCSS files in your generated WordPress page and passes that\u003Cbr \u002F>\nlist to the Minify engine. The Minify engine then returns a consolidated,\u003Cbr \u002F>\nminified, and compressed script or style for WP Minify to reference in the\u003Cbr \u002F>\nWordPress header.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easily integrate Minify into your WordPress blog.\u003C\u002Fli>\n\u003Cli>Minifies JavaScript, CSS, and HTML.\u003C\u002Fli>\n\u003Cli>Debug tools to help you debug your issues.\u003C\u002Fli>\n\u003Cli>Ability to include extra JS and CSS files for Minifying.\u003C\u002Fli>\n\u003Cli>Ability to exclude certain JS and CSS files for Minifying.\u003C\u002Fli>\n\u003Cli>Minified JS and CSS files can be placed wherever you want.\u003C\u002Fli>\n\u003Cli>Support for to minifying external files via caching.\u003C\u002Fli>\n\u003Cli>Ability to pass extra arguments to Minify engine.\u003C\u002Fli>\n\u003Cli>Expire headers for minified JS and CSS files.\u003C\u002Fli>\n\u003Cli>Detection and elimination of duplicate sources.\u003C\u002Fli>\n\u003Cli>Plugin hooks!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also commit changes on our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fnodecode\u002Fwp-minify-fix\" rel=\"nofollow ugc\">Github repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>All contents under the wp-minify-fix\u002Fmin\u002F directory is licensed under\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.opensource.org\u002Flicenses\u002Fbsd-license.php\" rel=\"nofollow ugc\">New BSD License\u003C\u002Fa> (which is\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.gnu.org\u002Fcopyleft\u002Fgpl.html\" rel=\"nofollow ugc\">GPL\u003C\u002Fa> compatible).  All other\u003Cbr \u002F>\ncontents within this package is licensed under GPLv3.\u003C\u002Fp>\n","[Fixed] This plugin uses the Minify engine to combine and compress JS and CSS files to improve page load time.",1000,73691,80,40,"2017-11-28T20:47:00.000Z","4.3.34",[18,19,20,21,73],"minify","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-minify-fixed\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-minify-fix.1.4.1.zip",85,{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":25,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":14,"tags":91,"homepage":96,"download_link":97,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"wpc-insert-code","Insert Code by Angie Makes","1.2","Chris Baldelomar","https:\u002F\u002Fprofiles.wordpress.org\u002Fcbaldelomar\u002F","\u003Cp>This plugin makes it easy for you to add custom scripts to the head and footer sections of your site. A theme can also add theme support to enable the insert of custom code (HTML, Javascript, and CSS) at the top of a page, above header, below header, above content, and below content.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fhallie.angiemakes.com\u002Fad-spots\u002F\" rel=\"nofollow ugc\">Live Demo & Documentation\u003C\u002Fa>\u003C\u002Fp>\n","Easily insert HTML, Javascript, CSS, into the head and footer areas of your site.",900,26197,2,"2017-05-10T16:44:00.000Z","4.7.32","3.9.1",[19,92,93,94,95],"insert-css","insert-html","insert-javascript","insert-js","http:\u002F\u002Fangiemakes.com\u002Ffeminine-wordpress-blog-themes-women\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpc-insert-code.zip",{"slug":99,"name":100,"version":6,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":25,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":14,"tags":111,"homepage":112,"download_link":113,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"specific-cssjs-for-posts-and-pages","Specific CSS\u002FJS for Posts and Pages","techtastico","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechtastico\u002F","\u003Cp>\u003Cstrong>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fstrong> is a plugin that allows you to add custom CSS or Javascript files or embeded code in header to individual posts or pages.\u003C\u002Fp>\n\u003Ch4>Plugin’s Official Site\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Ftechtastico.com\u002Fplugins\u002F\" rel=\"nofollow ugc\">\u003Cem>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fem>\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Major features in \u003Cem>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fem> include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can add multiples CSS files to indivual posts or pages\u003C\u002Fli>\n\u003Cli>You can add multiples Javascript files to indivual posts or pages\u003C\u002Fli>\n\u003Cli>Also you can add CSS or Javascript code directly between header tags in posts or pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003Cli>New translations are welcomed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information please visit us at \u003Ca href=\"http:\u002F\u002Ftechtastico.com\u002Fplugins\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fstrong>\u003C\u002Fa> plugin page.\u003C\u002Fp>\n","With Specific CSS\u002FJS for Posts and Pages you can add CSS or JavaScript files to a specific page or post.",400,15765,1,"2011-01-19T19:54:00.000Z","3.0.5","3.0",[18,20,21,22,53],"http:\u002F\u002Ftechtastico.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspecific-cssjs-for-posts-and-pages.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":11,"downloaded":122,"rating":13,"num_ratings":13,"last_updated":123,"tested_up_to":15,"requires_at_least":124,"requires_php":14,"tags":125,"homepage":14,"download_link":127,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"insert-js-or-css-in-post-via-custom-field","Insert JS or CSS in post via Custom Field","0.1","fedmich","https:\u002F\u002Fprofiles.wordpress.org\u002Ffedmich\u002F","\u003Cp>This plugin will insert urls of JavaScript or CSS stylesheet files added into a particular posts or page via Custom Fields.\u003Cbr \u002F>\nThe scripts (link stylesheet) tags will be then added in your  tag\u003Cbr \u002F>\nIt doesn’t require other plugin and it can be used as is.\u003C\u002Fp>\n","This plugin will insert urls of JavaScript or CSS stylesheet files added into a particular posts or page via Custom Fields.",2051,"2013-04-01T08:51:00.000Z","2.0",[18,20,21,126,22],"page","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-js-or-css-in-post-via-custom-field.zip",{"attackSurface":129,"codeSignals":168,"taintFlows":232,"riskAssessment":270,"analyzedAt":279},{"hooks":130,"ajaxHandlers":160,"restRoutes":161,"shortcodes":162,"cronEvents":167,"entryPointCount":107,"unprotectedCount":13},[131,137,141,144,149,152,157],{"type":132,"name":133,"callback":134,"file":135,"line":136},"filter","the_content","replace_with_html","functions.php",25,{"type":138,"name":139,"callback":139,"file":135,"line":140},"action","wp_enqueue_scripts",29,{"type":138,"name":142,"callback":142,"file":135,"line":143},"admin_enqueue_scripts",32,{"type":138,"name":145,"callback":146,"priority":147,"file":135,"line":148},"add_meta_boxes","set_meta_box",15,34,{"type":138,"name":150,"callback":150,"file":135,"line":151},"save_post",35,{"type":138,"name":153,"callback":154,"file":155,"line":156},"wp_footer","print_error_message","fw_sujin_puglin.php",11,{"type":138,"name":158,"callback":154,"file":155,"line":159},"admin_footer",12,[],[],[163],{"tag":164,"callback":165,"file":135,"line":166},"html2post","short_code",37,[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":230,"externalRequests":13,"nonceChecks":13,"capabilityChecks":107,"bundledLibraries":231},[],{"prepared":13,"raw":13,"locations":171},[],{"escaped":13,"rawEcho":173,"locations":174},38,[175,178,180,182,183,185,187,188,189,190,191,193,194,195,197,198,200,202,203,204,205,206,208,209,210,212,213,215,217,218,219,220,221,223,224,225,227,228],{"file":135,"line":176,"context":177},215,"raw output",{"file":135,"line":179,"context":177},216,{"file":135,"line":181,"context":177},231,{"file":135,"line":181,"context":177},{"file":135,"line":184,"context":177},232,{"file":135,"line":186,"context":177},243,{"file":135,"line":186,"context":177},{"file":135,"line":186,"context":177},{"file":135,"line":186,"context":177},{"file":135,"line":186,"context":177},{"file":135,"line":192,"context":177},244,{"file":135,"line":192,"context":177},{"file":135,"line":192,"context":177},{"file":135,"line":196,"context":177},295,{"file":135,"line":196,"context":177},{"file":135,"line":199,"context":177},296,{"file":135,"line":201,"context":177},307,{"file":135,"line":201,"context":177},{"file":135,"line":201,"context":177},{"file":135,"line":201,"context":177},{"file":135,"line":201,"context":177},{"file":135,"line":207,"context":177},308,{"file":135,"line":207,"context":177},{"file":135,"line":207,"context":177},{"file":135,"line":211,"context":177},358,{"file":135,"line":211,"context":177},{"file":135,"line":214,"context":177},359,{"file":135,"line":216,"context":177},370,{"file":135,"line":216,"context":177},{"file":135,"line":216,"context":177},{"file":135,"line":216,"context":177},{"file":135,"line":216,"context":177},{"file":135,"line":222,"context":177},371,{"file":135,"line":222,"context":177},{"file":135,"line":222,"context":177},{"file":155,"line":226,"context":177},23,{"file":155,"line":173,"context":177},{"file":155,"line":229,"context":177},43,7,[],[233,259],{"entryPoint":234,"graph":235,"unsanitizedCount":87,"severity":258},"redirect (fw_sujin_puglin.php:15)",{"nodes":236,"edges":254},[237,242,248,250],{"id":238,"type":239,"label":240,"file":155,"line":241},"n0","source","$_SERVER",16,{"id":243,"type":244,"label":245,"file":155,"line":246,"wp_function":247},"n1","sink","wp_redirect() [Open Redirect]",19,"wp_redirect",{"id":249,"type":239,"label":240,"file":155,"line":241},"n2",{"id":251,"type":244,"label":252,"file":155,"line":226,"wp_function":253},"n3","echo() [XSS]","echo",[255,257],{"from":238,"to":243,"sanitized":256},false,{"from":249,"to":251,"sanitized":256},"medium",{"entryPoint":260,"graph":261,"unsanitizedCount":87,"severity":258},"\u003Cfw_sujin_puglin> (fw_sujin_puglin.php:0)",{"nodes":262,"edges":267},[263,264,265,266],{"id":238,"type":239,"label":240,"file":155,"line":241},{"id":243,"type":244,"label":245,"file":155,"line":246,"wp_function":247},{"id":249,"type":239,"label":240,"file":155,"line":241},{"id":251,"type":244,"label":252,"file":155,"line":226,"wp_function":253},[268,269],{"from":238,"to":243,"sanitized":256},{"from":249,"to":251,"sanitized":256},{"summary":271,"deductions":272},"The \"html-to-post\" v1.0 plugin exhibits a mixed security posture.  On the positive side, it demonstrates strong practices by exclusively using prepared statements for SQL queries and has no recorded vulnerability history, suggesting a development team that prioritizes security or a lack of prior high-impact issues. The absence of external HTTP requests and bundled libraries also reduces potential attack vectors. However, significant concerns arise from the code analysis.  The fact that 0% of its 38 output operations are properly escaped is a critical flaw, leaving the plugin highly susceptible to Cross-Site Scripting (XSS) vulnerabilities. Furthermore, while the taint analysis shows no critical or high severity flows, the presence of 2 flows with unsanitized paths, even if low severity, warrants attention, especially in conjunction with the unescaped output.",[273,275,277],{"reason":274,"points":147},"0% of output operations are properly escaped",{"reason":276,"points":30},"2 taint flows with unsanitized paths",{"reason":278,"points":30},"0 Nonce checks on entry points","2026-03-16T23:32:05.014Z",{"wat":281,"direct":288},{"assetPaths":282,"generatorPatterns":284,"scriptPaths":285,"versionParams":286},[283],"\u002Fwp-content\u002Fplugins\u002Fhtml-to-post\u002Fstyle.css",[],[],[287],"html-to-post\u002Fstyle.css?ver=",{"cssClasses":289,"htmlComments":291,"htmlAttributes":292,"restEndpoints":294,"jsGlobals":295,"shortcodeOutput":297},[290],"unset",[],[293],"data-post_id",[],[296],"sjHtmlToPost",[298],"[html2post \u002F]"]