[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fm8UQGD6IONV7AZ-4ABy9WloUCw7on34cADXt_0vxkzQ":3,"$fR9bgUG8Pq1lbEPpgugcb6bDqbN2BgZ5mO2xxOoiHRWw":515,"$fQEngX7EWWv_1Pp72q-lIbqpJua-pxMCkQ_Atg_5Iwac":519},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":39,"analysis":139,"fingerprints":473},"illdy-companion","Illdy Companion","2.1.4","colorlibplugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fcolorlibplugins\u002F","\u003Cp>Illdy Companion is a companion for Illdy One Page WordPress theme by Colorlib.com. This plugin won’t do anything for other free or premium WordPress themes and you need to download and install \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002Filldy\u002F\" rel=\"friend nofollow ugc\">Illdy\u003C\u002Fa>. If you are having problems with Illdy theme or its companion plugin the fastest way to receive help is via our theme \u003Ca href=\"http:\u002F\u002Fcolorlib.com\u002Fwp\u002Fforums\" rel=\"friend nofollow ugc\">support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin will add necessary WordPress widgets and allow to import demo content which will help you to with website setup.\u003C\u002Fp>\n\u003Cp>While Illdy is a great one page WordPress theme it might not be for everyone therefore you might want to check other free \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002F\" rel=\"friend nofollow ugc\">WordPress themes\u003C\u002Fa> that are created by Colorlib.\u003C\u002Fp>\n\u003Ch4>Plugin Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Creates required WordPress widgets to be used in theme\u003C\u002Fli>\n\u003Cli>Creates demo(dummy) content for widgets to make them easier to use and understand how they work\u003C\u002Fli>\n\u003Cli>Provides an option to import demo(dummy) content.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>About Colorlib\u003C\u002Fh4>\n\u003Cp>Colorlib is the best and by far the most popular source for free and premium WordPress themes. Our themes has been downloaded over 1,5 million times and are used by developers, webmasters and regular users all over the world. We believe in open source and that’s why we have made our themes free to use for private and commercial use.\u003C\u002Fp>\n\u003Ch4>Further Reading\u003C\u002Fh4>\n\u003Cp>If you are new to WordPress but are dedicated to \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fhow-to-make-a-website\u002F\" rel=\"friend nofollow ugc\">make a website\u003C\u002Fa> on your own Colorlib is the right place to start. Usually the trickiest part is to choose the right hosting because all hosting providers are not equal. We have outlined the \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fwordpress-hosting\u002F\" rel=\"friend nofollow ugc\">best WordPress hosting\u003C\u002Fa> providers and we hope you’ll find them useful. We can also help with WordPress related \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Ffix-error-establishing-database-connection-wordpress\u002F\" rel=\"friend nofollow ugc\">errors\u003C\u002Fa> and problems.\u003C\u002Fp>\n","Illdy Companion is a companion plugin for Illdy WordPress theme by Colorlib.com.",7000,328773,100,1,"2025-05-07T16:52:00.000Z","6.8.5","5.8","",[20,21,22,23,24],"demo","one-page","parallax","portfolio","social","https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002Filldy\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Filldy-companion.2.1.4.zip",92,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},11,420080,747,73,"2026-05-19T21:21:55.573Z",[40,59,79,99,118],{"slug":41,"name":42,"version":43,"author":7,"author_profile":8,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":16,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":56,"download_link":57,"security_score":27,"vuln_count":14,"unpatched_count":28,"last_vuln_date":58,"fetched_at":30},"shapely-companion","Shapely Companion","1.2.10","\u003Cp>Shapely Companion is a companion for Shapely One Page WordPress theme by Colorlib.com. This plugin won’t do anything for other free or premium WordPress themes and you need to download and install \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002Fshapely\u002F\" rel=\"nofollow ugc\">Shapely\u003C\u002Fa>. If you are having problems with Shapely theme or its companion plugin the fastest way to receive help is via our theme \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fforums\" rel=\"nofollow ugc\">support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin will add necessary WordPress widgets and allow to import demo content which will help you to with website setup.\u003C\u002Fp>\n\u003Cp>While Shapely is a great one page WordPress theme it might not be for everyone therefore you might want to check other free \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002F\" rel=\"nofollow ugc\">WordPress themes\u003C\u002Fa> that are created by Colorlib.\u003C\u002Fp>\n\u003Ch4>Plugin Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Creates required WordPress widgets to be used in theme\u003C\u002Fli>\n\u003Cli>Creates demo(dummy) content for widgets to make them easier to use and understand how they work\u003C\u002Fli>\n\u003Cli>Provides an option to import demo(dummy) content.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>About Colorlib\u003C\u002Fh4>\n\u003Cp>Colorlib is the best and by far the most popular source for free and premium WordPress themes. Our themes has been downloaded over 1,5 million times and are used by developers, webmasters and regular users all over the world. We believe in open source and that’s why we have made our themes free to use for private and commercial use.\u003C\u002Fp>\n\u003Ch4>Further Reading\u003C\u002Fh4>\n\u003Cp>If you are new to WordPress but are dedicated to \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fhow-to-make-a-website\u002F\" rel=\"nofollow ugc\">make a website\u003C\u002Fa> on your own Colorlib is the right place to start. Usually the trickiest part is to choose the right hosting because all hosting providers are not equal. We have outlined the best \u003Ca href=\"https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fwordpress-hosting\u002F\" rel=\"nofollow ugc\"> WordPress hosting\u003C\u002Fa> providers and we hope you’ll find them useful.\u003C\u002Fp>\n","Shapely Companion is a companion plugin for Shapely WordPress theme by Colorlib.com.",10000,711741,40,2,"2025-04-30T08:48:00.000Z","6.4",[53,20,21,54,55],"companion","widgets","woocommerce","https:\u002F\u002Fcolorlib.com\u002Fwp\u002Fthemes\u002Fshapely\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshapely-companion.1.2.10.zip","2022-05-24 00:00:00",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":11,"downloaded":67,"rating":28,"num_ratings":28,"last_updated":68,"tested_up_to":16,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":77,"download_link":78,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"cozy-essential-addons","Theme Demo Importer and Patterns Library for CozyThemes – Cozy Essential Addons","1.3.4","CozyThemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fcozythemes\u002F","\u003Cp>Cozy Essentials Addons is the ultimate companion plugin for CozyThemes users, offering seamless one-click demo imports and a rich library of pre-designed block patterns to help you quickly build stunning websites. Designed to work perfectly with themes like FotaWP, ReviveNews, Storemate, and more, this lightweight plugin lets you instantly replicate professional starter sites, complete with layouts and content, while also enabling theme-specific enhancements for an optimized building experience. Whether you’re launching a blog, store, or business site, Cozy Essentials Addons makes website creation faster, easier, and more powerful.\u003C\u002Fp>\n\u003Ch4>Display shortcode of post type in site\u003C\u002Fh4>\n\u003Cp>To display post data in your site, please checkout [shortcodes][https:\u002F\u002Fcozythemes.com\u002Fcozy-essential-addons\u002F] in plugin details page.\u003C\u002Fp>\n","Cozy Essential Addons is the free WordPress plugin for Custom post type and provides basic skeletal for custom post type list.",199264,"2025-10-13T15:03:00.000Z","5.9","7.3.0",[72,73,74,75,76],"demo-importer","faqs","portfolios","teams","testimonials","https:\u002F\u002Fcozythemes.com\u002Fcozy-essential-addons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcozy-essential-addons.1.3.4.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":28,"num_ratings":28,"last_updated":89,"tested_up_to":16,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":18,"download_link":98,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"conversions-extensions","Conversions Extensions","2.2.4","uniquelylost","https:\u002F\u002Fprofiles.wordpress.org\u002Funiquelylost\u002F","\u003Cp>Adds homepage sections, one click demo imports, social icons, and other features to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fconversions\u002F\" rel=\"ugc\">Conversions theme\u003C\u002Fa> for WordPress.\u003C\u002Fp>\n\u003Cp>You can view the \u003Ca href=\"https:\u002F\u002Fconversionswp.com\u002Fdocs\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">documentation\u003C\u002Fa> here.\u003C\u002Fp>\n\u003Ch4>Extensions List:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Homepage Sections\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Homepage Sorting\u003C\u002Fli>\n\u003Cli>Clients\u003C\u002Fli>\n\u003Cli>Counter\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads\u003C\u002Fli>\n\u003Cli>FAQ\u003C\u002Fli>\n\u003Cli>Gallery\u003C\u002Fli>\n\u003Cli>Google Map\u003C\u002Fli>\n\u003Cli>Hero\u003C\u002Fli>\n\u003Cli>Icon features\u003C\u002Fli>\n\u003Cli>Image features\u003C\u002Fli>\n\u003Cli>Single feature\u003C\u002Fli>\n\u003Cli>News\u003C\u002Fli>\n\u003Cli>Pricing\u003C\u002Fli>\n\u003Cli>Team\u003C\u002Fli>\n\u003Cli>Testimonials\u003C\u002Fli>\n\u003Cli>Text\u003C\u002Fli>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>HTML or Shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>One Click Demo Imports\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Business demo\u003C\u002Fli>\n\u003Cli>Blog demo\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Navbar Variants\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Menu right\u003C\u002Fli>\n\u003Cli>Menu below\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Social Icons\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Navbar\u003C\u002Fli>\n\u003Cli>Footer\u003C\u002Fli>\n\u003Cli>Shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcodes\u003C\u002Fh4>\n\u003Cp>Many of the homepage sections can also be output outside the homepage using shortcodes.\u003C\u002Fp>\n\u003Cp>[conversions_clients]\u003Cbr \u002F>\n[conversions_counter]\u003Cbr \u002F>\n[conversions_faq]\u003Cbr \u002F>\n[conversions_gallery]\u003Cbr \u002F>\n[conversions_google_map]\u003Cbr \u002F>\n[conversions_icon_features]\u003Cbr \u002F>\n[conversions_img_features]\u003Cbr \u002F>\n[conversions_single_feature]\u003Cbr \u002F>\n[conversions_social]\u003Cbr \u002F>\n[conversions_pricing]\u003Cbr \u002F>\n[conversions_team]\u003Cbr \u002F>\n[conversions_testimonials]\u003C\u002Fp>\n\u003Ch4>Examples of sites Conversions Theme is used on\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fconversionswp.com\u002F\" rel=\"nofollow ugc\">Conversions Theme\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fserviceninjas.io\u002F\" rel=\"nofollow ugc\">Service Ninjas\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fmycryptocheckout.com\u002F\" rel=\"nofollow ugc\">MyCryptoCheckout\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fsafetydig.com\u002F\" rel=\"nofollow ugc\">Safetydig\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Resources\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Slick v1.8.1 | MIT License\u003C\u002Fli>\n\u003Cli>Counter-Up2 v1.0.4 | MIT License\u003C\u002Fli>\n\u003Cli>lightbox2 v2.11.3 | MIT License\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds homepage sections, one click demo imports, social icons, and other features to Conversions theme for WordPress.",80,9876,"2025-06-13T02:37:00.000Z","4.7","5.6",[93,94,95,96,97],"extensions","homepage","shortcodes","social-icons","theme-demos","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fconversions-extensions.2.2.4.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":13,"num_ratings":109,"last_updated":110,"tested_up_to":18,"requires_at_least":18,"requires_php":18,"tags":111,"homepage":115,"download_link":116,"security_score":117,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"buddypress-portfolio","BuddyPress Portfolio","1.0","Nicolas Crocfer","https:\u002F\u002Fprofiles.wordpress.org\u002Fshatter_\u002F","\u003Cp>BP-Portfolio is a BuddyPress plugin that allows members to create their own portfolio (a set of projects : IT projects, recipes, achievements of designer, … ).\u003C\u002Fp>\n\u003Cp>Right now each project includes a title, a description, an url and a screenshot of the project. The size of the description can be defined in the admin panel, as the template to be used.\u003C\u002Fp>\n\u003Cp>The plugin provides the following features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>a new tab in the user profile listing their projects\u003C\u002Fli>\n\u003Cli>a new page listing all projects,\u003C\u002Fli>\n\u003Cli>a widget listing the latest projects\u003C\u002Fli>\n\u003Cli>a new activity for each new project\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In future versions, each project will have its own page and multiple captures can be uploaded for a project.\u003C\u002Fp>\n","This Buddypress plugin allows each user to create his portfolio on your website.",10,13012,3,"2012-05-14T14:34:00.000Z",[112,23,113,114,24],"buddypress","project","projects","http:\u002F\u002Fwww.shatter.fr\u002Fbp-portfolio\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-portfolio.1.0.zip",85,{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":107,"downloaded":126,"rating":28,"num_ratings":28,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":130,"tags":131,"homepage":136,"download_link":137,"security_score":117,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":138},"wp-live-portfolio","WP Live Portfolio","1.0.0","Eternity Web Solutions","https:\u002F\u002Fprofiles.wordpress.org\u002Feternityweb\u002F","\u003Cp>Showcase your website work and website demos from the live Website URL. WP Live Portfolio Plugin shows desktop, tab and mobile view of the live website link.\u003C\u002Fp>\n\u003Cp>Creating a website portfolio is a very time consuming task for web designers and  theme developers. It involves taking screenshots of many web-pages on different devices, upload those screenshots on website.\u003C\u002Fp>\n\u003Cp>WP Live Portfolio is a very simple plugin created for website developers, theme developers to display their work by just adding URL of website. You have to  just add URL of client website and your portfolio will be live. Its that simple.\u003C\u002Fp>\n\u003Cp>=Live Demo=\u003Cbr \u002F>\n[Plugin Demo] (http:\u002F\u002Fwpuplift.com\u002Fprojects\u002Fliveportfolio)\u003C\u002Fp>\n\u003Cp>=Features=\u003C\u002Fp>\n\u003Cp>Add, edit,delete portfolio items\u003Cbr \u002F>\nDisplay portfolio using shortcode  [wp-portfolio]\u003Cbr \u002F>\nFilter portfolios using category filters\u003Cbr \u002F>\nYour portfolio will be viewed on mobile,desktop and tab.\u003C\u002Fp>\n\u003Cp>=Pro Features – Under Development=\u003Cbr \u002F>\nWe have planned pro plugin with below features.\u003Cbr \u002F>\nImage gallery portfolio\u003Cbr \u002F>\nAudio Gallery\u003Cbr \u002F>\nVideo  Based Portfolio\u003C\u002Fp>\n\u003Cp>=Instructions=\u003C\u002Fp>\n\u003Cp>Add your website from custom type ‘Portfolio’.\u003Cbr \u002F>\nAssign title, category,  tags, featured image and add website link.\u003Cbr \u002F>\nUse Shortcode [wp-portfolio] anywhere you want to show  the portfolio.\u003C\u002Fp>\n","Showcase your website design work and website demos from the live URL. Plugin shows desktop, tab and mobile view of the live link.",1012,"2019-05-23T11:56:00.000Z","5.2.24","3.0.1","5.4",[132,23,133,134,135],"live-portfolio","url-based-portfolio","website-demo-plugin","website-portfolio","http:\u002F\u002Fwww.eternitywebsolutions.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-live-portfolio.zip","2026-04-06T09:54:40.288Z",{"attackSurface":140,"codeSignals":240,"taintFlows":434,"riskAssessment":462,"analyzedAt":472},{"hooks":141,"ajaxHandlers":231,"restRoutes":237,"shortcodes":238,"cronEvents":239,"entryPointCount":14,"unprotectedCount":14},[142,149,154,158,163,168,173,175,180,185,187,190,193,197,202,205,207,210,214,216,217,220,222,223,226,228],{"type":143,"name":144,"callback":145,"priority":146,"file":147,"line":148},"action","admin_notices","illdy_companion_admin_notice",99,"illdy-companion.php",51,{"type":143,"name":150,"callback":151,"file":152,"line":153},"admin_enqueue_scripts","illdy_companion_admin_scripts","illdy-main.php",47,{"type":143,"name":155,"callback":156,"file":152,"line":157},"customize_controls_enqueue_scripts","illdy_companion_customizer_scripts",71,{"type":143,"name":159,"callback":160,"priority":161,"file":152,"line":162},"customize_register","illdy_companion_customize_register",20,353,{"type":164,"name":165,"callback":166,"file":167,"line":107},"filter","illdy_required_actions","generate_import_data_container","inc\\class-illdy-companion-import-data.php",{"type":143,"name":169,"callback":170,"file":171,"line":172},"wp_dashboard_setup","add_widget","inc\\epsilon-dashboard\\class-epsilon-dashboard.php",72,{"type":143,"name":174,"callback":170,"file":171,"line":37},"wp_network_dashboard_setup",{"type":143,"name":176,"callback":177,"file":178,"line":179},"widgets_init","illdy_register_widget_counter","widgets\\class-illdy-widget-counter.php",120,{"type":143,"name":181,"callback":182,"file":183,"line":184},"admin_init","enqueue","widgets\\class-illdy-widget-parallax.php",6,{"type":143,"name":155,"callback":182,"file":183,"line":186},7,{"type":143,"name":188,"callback":182,"file":183,"line":189},"customize_preview_init",8,{"type":143,"name":176,"callback":191,"file":183,"line":192},"illdy_register_widget_parallax",225,{"type":143,"name":150,"callback":194,"file":195,"line":196},"enqueue_scripts","widgets\\class-illdy-widget-person.php",15,{"type":143,"name":198,"callback":199,"priority":200,"file":195,"line":201},"admin_footer-widgets.php","print_scripts",9999,16,{"type":143,"name":176,"callback":203,"file":195,"line":204},"illdy_register_widget_person",217,{"type":143,"name":150,"callback":194,"file":206,"line":196},"widgets\\class-illdy-widget-project.php",{"type":143,"name":176,"callback":208,"file":206,"line":209},"illdy_register_widget_project",147,{"type":143,"name":176,"callback":211,"file":212,"line":213},"illdy_register_widget_recent_posts","widgets\\class-illdy-widget-recent-posts.php",138,{"type":143,"name":150,"callback":194,"file":215,"line":196},"widgets\\class-illdy-widget-service.php",{"type":143,"name":198,"callback":199,"priority":200,"file":215,"line":201},{"type":143,"name":176,"callback":218,"file":215,"line":219},"illdy_register_widget_service",185,{"type":143,"name":150,"callback":194,"file":221,"line":196},"widgets\\class-illdy-widget-skill.php",{"type":143,"name":198,"callback":199,"priority":200,"file":221,"line":201},{"type":143,"name":176,"callback":224,"file":221,"line":225},"illdy_register_widget_skill",182,{"type":143,"name":150,"callback":194,"file":227,"line":196},"widgets\\class-illdy-widget-testimonial.php",{"type":143,"name":176,"callback":229,"file":227,"line":230},"illdy_register_widget_testimonial",129,[232],{"action":233,"nopriv":234,"callback":235,"hasNonce":234,"hasCapCheck":234,"file":152,"line":236},"illdy_get_attachment_media",false,"illdy_get_attachment_image",364,[],[],[],{"dangerousFunctions":241,"sqlUsage":242,"outputEscaping":244,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":433},[],{"prepared":28,"raw":28,"locations":243},[],{"escaped":245,"rawEcho":246,"locations":247},269,125,[248,251,253,255,256,258,260,262,264,266,267,269,270,271,273,275,276,278,280,281,283,285,286,288,290,291,293,295,297,299,300,302,304,305,306,307,308,309,311,313,314,316,318,320,321,323,325,326,328,330,331,333,335,336,338,339,340,342,344,346,348,349,350,352,354,356,357,359,360,361,362,364,365,367,368,369,370,371,372,374,375,376,377,378,380,382,384,385,386,387,388,389,390,391,392,394,395,396,397,398,400,401,402,404,405,406,408,409,410,412,414,415,416,418,420,421,422,424,425,426,427,429,430,431,432],{"file":171,"line":249,"context":250},209,"raw output",{"file":171,"line":252,"context":250},210,{"file":171,"line":254,"context":250},212,{"file":171,"line":254,"context":250},{"file":178,"line":257,"context":250},25,{"file":178,"line":259,"context":250},39,{"file":178,"line":261,"context":250},41,{"file":178,"line":263,"context":250},64,{"file":178,"line":265,"context":250},65,{"file":178,"line":265,"context":250},{"file":178,"line":268,"context":250},69,{"file":178,"line":157,"context":250},{"file":178,"line":157,"context":250},{"file":178,"line":272,"context":250},75,{"file":178,"line":274,"context":250},77,{"file":178,"line":274,"context":250},{"file":178,"line":277,"context":250},81,{"file":178,"line":279,"context":250},83,{"file":178,"line":279,"context":250},{"file":178,"line":282,"context":250},87,{"file":178,"line":284,"context":250},89,{"file":178,"line":284,"context":250},{"file":183,"line":287,"context":250},37,{"file":183,"line":289,"context":250},103,{"file":195,"line":37,"context":250},{"file":195,"line":292,"context":250},110,{"file":195,"line":294,"context":250},112,{"file":195,"line":296,"context":250},140,{"file":195,"line":298,"context":250},141,{"file":195,"line":298,"context":250},{"file":195,"line":301,"context":250},145,{"file":195,"line":303,"context":250},146,{"file":195,"line":303,"context":250},{"file":195,"line":303,"context":250},{"file":195,"line":303,"context":250},{"file":195,"line":209,"context":250},{"file":195,"line":209,"context":250},{"file":195,"line":310,"context":250},151,{"file":195,"line":312,"context":250},152,{"file":195,"line":312,"context":250},{"file":195,"line":315,"context":250},156,{"file":195,"line":317,"context":250},161,{"file":195,"line":319,"context":250},162,{"file":195,"line":319,"context":250},{"file":195,"line":322,"context":250},166,{"file":195,"line":324,"context":250},167,{"file":195,"line":324,"context":250},{"file":195,"line":327,"context":250},171,{"file":195,"line":329,"context":250},172,{"file":195,"line":329,"context":250},{"file":195,"line":332,"context":250},176,{"file":195,"line":334,"context":250},177,{"file":195,"line":334,"context":250},{"file":195,"line":337,"context":250},181,{"file":195,"line":225,"context":250},{"file":195,"line":225,"context":250},{"file":206,"line":341,"context":250},35,{"file":206,"line":343,"context":250},74,{"file":206,"line":345,"context":250},76,{"file":206,"line":347,"context":250},98,{"file":206,"line":146,"context":250},{"file":206,"line":289,"context":250},{"file":206,"line":351,"context":250},104,{"file":206,"line":353,"context":250},105,{"file":206,"line":355,"context":250},109,{"file":206,"line":355,"context":250},{"file":206,"line":358,"context":250},115,{"file":212,"line":257,"context":250},{"file":212,"line":341,"context":250},{"file":212,"line":263,"context":250},{"file":212,"line":363,"context":250},68,{"file":212,"line":37,"context":250},{"file":212,"line":366,"context":250},97,{"file":212,"line":366,"context":250},{"file":212,"line":347,"context":250},{"file":212,"line":289,"context":250},{"file":212,"line":351,"context":250},{"file":212,"line":351,"context":250},{"file":212,"line":373,"context":250},108,{"file":212,"line":355,"context":250},{"file":212,"line":355,"context":250},{"file":215,"line":282,"context":250},{"file":215,"line":355,"context":250},{"file":215,"line":379,"context":250},111,{"file":215,"line":381,"context":250},135,{"file":215,"line":383,"context":250},136,{"file":215,"line":383,"context":250},{"file":215,"line":296,"context":250},{"file":215,"line":298,"context":250},{"file":215,"line":298,"context":250},{"file":215,"line":310,"context":250},{"file":215,"line":312,"context":250},{"file":215,"line":312,"context":250},{"file":215,"line":315,"context":250},{"file":215,"line":393,"context":250},157,{"file":215,"line":393,"context":250},{"file":221,"line":282,"context":250},{"file":221,"line":373,"context":250},{"file":221,"line":292,"context":250},{"file":221,"line":399,"context":250},134,{"file":221,"line":381,"context":250},{"file":221,"line":381,"context":250},{"file":221,"line":403,"context":250},139,{"file":221,"line":296,"context":250},{"file":221,"line":296,"context":250},{"file":221,"line":407,"context":250},144,{"file":221,"line":301,"context":250},{"file":221,"line":301,"context":250},{"file":221,"line":411,"context":250},154,{"file":221,"line":413,"context":250},155,{"file":221,"line":413,"context":250},{"file":227,"line":341,"context":250},{"file":227,"line":417,"context":250},66,{"file":227,"line":419,"context":250},86,{"file":227,"line":282,"context":250},{"file":227,"line":282,"context":250},{"file":227,"line":423,"context":250},91,{"file":227,"line":27,"context":250},{"file":227,"line":27,"context":250},{"file":227,"line":27,"context":250},{"file":227,"line":428,"context":250},93,{"file":227,"line":428,"context":250},{"file":227,"line":366,"context":250},{"file":227,"line":347,"context":250},{"file":227,"line":347,"context":250},[],[435,454],{"entryPoint":436,"graph":437,"unsanitizedCount":28,"severity":453},"illdy_get_attachment_image (illdy-main.php:356)",{"nodes":438,"edges":450},[439,444],{"id":440,"type":441,"label":442,"file":152,"line":443},"n0","source","$_POST",357,{"id":445,"type":446,"label":447,"file":152,"line":448,"wp_function":449},"n1","sink","echo() [XSS]",360,"echo",[451],{"from":440,"to":445,"sanitized":452},true,"low",{"entryPoint":455,"graph":456,"unsanitizedCount":28,"severity":453},"\u003Cilldy-main> (illdy-main.php:0)",{"nodes":457,"edges":460},[458,459],{"id":440,"type":441,"label":442,"file":152,"line":443},{"id":445,"type":446,"label":447,"file":152,"line":448,"wp_function":449},[461],{"from":440,"to":445,"sanitized":452},{"summary":463,"deductions":464},"The \"illdy-companion\" v2.1.4 plugin exhibits a mixed security posture. On the positive side, it demonstrates strong practices by avoiding dangerous functions, utilizing prepared statements exclusively for SQL queries, and showing no recorded vulnerability history or critical taint flows. The absence of external HTTP requests and file operations further contributes to its security. However, a significant concern arises from the presence of one AJAX handler that lacks proper authentication checks. This creates a direct entry point for potential attackers, especially when combined with the complete absence of nonce checks. While the plugin boasts a high percentage of properly escaped output, the unprotected AJAX handler represents a clear weakness that could be exploited if it performs sensitive actions or processes user-supplied data without validation.\n\nThe static analysis reveals a small attack surface, with the primary risk stemming from the unprotected AJAX endpoint. The lack of nonce checks on this handler amplifies the risk, as it could be triggered by any user, authenticated or not. The taint analysis and vulnerability history are reassuring, indicating no known critical issues or past exploits. Nevertheless, the identified unprotected AJAX handler represents a tangible security gap that requires immediate attention to harden the plugin's defenses against unauthorized access and potential manipulation.",[465,467,469],{"reason":466,"points":189},"AJAX handler without authentication check",{"reason":468,"points":186},"Missing nonce checks on AJAX handlers",{"reason":470,"points":471},"Moderate output escaping (68% properly escaped)",4,"2026-03-16T18:00:37.037Z",{"wat":474,"direct":493},{"assetPaths":475,"generatorPatterns":483,"scriptPaths":484,"versionParams":485},[476,477,478,479,480,481,482],"\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fcss\u002Ffont-awesome.min.css","\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fcss\u002Fjquery.fonticonpicker.css","\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fcss\u002Fjquery.fonticonpicker.grey.min.css","\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fjs\u002Ficonpicker.min.js","\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Filldy-companion\u002Fassets\u002Fjs\u002Fwidget-text-editor.js",[],[480,481,482],[486,487,488,489,490,491,492],"illdy-companion\u002Fassets\u002Fcss\u002Fadmin.css?ver=","illdy-companion\u002Fassets\u002Fcss\u002Ffont-awesome.min.css?ver=","illdy-companion\u002Fassets\u002Fcss\u002Fjquery.fonticonpicker.css?ver=","illdy-companion\u002Fassets\u002Fcss\u002Fjquery.fonticonpicker.grey.min.css?ver=","illdy-companion\u002Fassets\u002Fjs\u002Ficonpicker.min.js?ver=","illdy-companion\u002Fassets\u002Fjs\u002Fadmin.js?ver=","illdy-companion\u002Fassets\u002Fjs\u002Fwidget-text-editor.js?ver=",{"cssClasses":494,"htmlComments":507,"htmlAttributes":508,"restEndpoints":511,"jsGlobals":512,"shortcodeOutput":514},[495,496,497,498,499,500,501,502,503,504,505,506],"illdy-companion-admin-css","illdy-companion-iconpicker-css","illdy-companion-iconpicker-theme-css","illdy-widget-recent-posts","illdy-widget-skill","illdy-widget-project","illdy-widget-service","illdy-widget-counter","illdy-widget-person","illdy-widget-parallax","illdy-widget-testimonial","illdy_companion_notice_warning",[],[509,510],"data-sectionid","data-elementid",[],[513],"illdyCompanion",[],{"error":452,"url":516,"statusCode":517,"statusMessage":518,"message":518},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Filldy-companion\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":184,"versions":520},[521,526,533,540,547,554],{"version":6,"download_url":26,"svn_tag_url":522,"released_at":29,"has_diff":234,"diff_files_changed":523,"diff_lines":29,"trac_diff_url":524,"vulnerabilities":525,"is_current":452},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Filldy-companion\u002Ftags\u002F2.1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Filldy-companion%2Ftags%2F2.1.3&new_path=%2Filldy-companion%2Ftags%2F2.1.4",[],{"version":527,"download_url":528,"svn_tag_url":529,"released_at":29,"has_diff":234,"diff_files_changed":530,"diff_lines":29,"trac_diff_url":531,"vulnerabilities":532,"is_current":234},"2.1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Filldy-companion.2.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Filldy-companion\u002Ftags\u002F2.1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Filldy-companion%2Ftags%2F2.1.2&new_path=%2Filldy-companion%2Ftags%2F2.1.3",[],{"version":534,"download_url":535,"svn_tag_url":536,"released_at":29,"has_diff":234,"diff_files_changed":537,"diff_lines":29,"trac_diff_url":538,"vulnerabilities":539,"is_current":234},"2.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Filldy-companion.2.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Filldy-companion\u002Ftags\u002F2.1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Filldy-companion%2Ftags%2F2.1.1&new_path=%2Filldy-companion%2Ftags%2F2.1.2",[],{"version":541,"download_url":542,"svn_tag_url":543,"released_at":29,"has_diff":234,"diff_files_changed":544,"diff_lines":29,"trac_diff_url":545,"vulnerabilities":546,"is_current":234},"2.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Filldy-companion.2.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Filldy-companion\u002Ftags\u002F2.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Filldy-companion%2Ftags%2F2.0.5&new_path=%2Filldy-companion%2Ftags%2F2.1.1",[],{"version":548,"download_url":549,"svn_tag_url":550,"released_at":29,"has_diff":234,"diff_files_changed":551,"diff_lines":29,"trac_diff_url":552,"vulnerabilities":553,"is_current":234},"2.0.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Filldy-companion.2.0.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Filldy-companion\u002Ftags\u002F2.0.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Filldy-companion%2Ftags%2F1.0.3&new_path=%2Filldy-companion%2Ftags%2F2.0.5",[],{"version":555,"download_url":556,"svn_tag_url":557,"released_at":29,"has_diff":234,"diff_files_changed":558,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":559,"is_current":234},"1.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Filldy-companion.1.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Filldy-companion\u002Ftags\u002F1.0.3\u002F",[],[]]