[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fITCTLxW-oV8zCnMLZyZ4xD7k8Yvs7BT39pR6yUeLqh8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":39,"fingerprints":324},"image-source-by-id","Image Source by Image ID","1.0.4","Liton Arefin","https:\u002F\u002Fprofiles.wordpress.org\u002Flitonice13\u002F","\u003Cp>By default WordPress Editor Searches Images by Title not Image ID.\u003C\u002Fp>\n\u003Cp>This is very Simple and very Useful Plugin. If you redesign\u002Fre-Develop your website then it’s very normal your Editor or Gutenber used only ID for displaying on your website.\u003Cbr \u002F>\nUninstalling\u002FBugs may occur your Images should be Broken with just only Image ID.\u003Cbr \u002F>\nThere’s no solution to get the Image Source and fix your Post\u002FPage if you’re not Developer\u002FTechnical Person.\u003C\u002Fp>\n\u003Cp>This Plugin will help you just Place the Image ID and Get the exact Image Size with Preview Image also.\u003C\u002Fp>\n\u003Cp>Then you can easily search on Media Popup for the specific Image and fix your problems. You don’t have to hire any freelancer to fix this issue.\u003C\u002Fp>\n\u003Ch3>Source Code\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flitonarefin\u002Fimage-source-by-id\" rel=\"nofollow ugc\">Source Code\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fjeweltheme.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Support Forum\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fjeweltheme.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Pre-Sale Questions\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>✋Want More –\u003C\u002Fh3>\n\u003Cp>If you like our image-source-by-id plugin then why not check some other plugins that developed by us:\u003C\u002Fp>\n\u003Cp>🚀 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadminify\u002F\" rel=\"ugc\">WP Adminify:\u003C\u002Fa> – The best WordPress Dashboard Customization plugin available in the market. With this plugin you will get 18+ modules like Dark Mode, Menu Editor, Folders, Dashboard Widget Manager, Login Customizer, Admin Columns, Activity Logs and many more.\u003C\u002Fp>\n\u003Cp>🚀 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-blocks-for-gutenberg\u002F\" rel=\"ugc\">Master Blocks:\u003C\u002Fa> – “Master Blocks” is a powerful WordPress plugin designed to enhance the functionality of the Gutenberg block editor. With this plugin, users can unlock a wide range of new blocks, offering greater flexibility and creativity when designing and customising their website’s content.\u003C\u002Fp>\n\u003Cp>🚀 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmaster-addons\u002F\" rel=\"ugc\">Master Addons:\u003C\u002Fa> – One of the best Elementor Addon plugin that packed with 70+ elements and extensions. You will get all essential elements to design any type Website.\u003C\u002Fp>\n\u003Cp>🚴🏻‍♂️ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimage-comparison-elementor-addon\u002F\" rel=\"ugc\">Image Comparison for Elementor:\u003C\u002Fa> – This plugin dedicatedly made for image comparison element. You will get a multiple variation for image comparison. Showcase your before after work easily with the help of this plugin.\u003C\u002Fp>\n\u003Cp>🍡 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-awesome-faq\u002F\" rel=\"ugc\">Master Accordion:\u003C\u002Fa> – If you are a default WordPress user and need a proper accordion plugin then Master Accordion is for you. You can add as much accordion as you need in multiple way.\u003C\u002Fp>\n\u003Cp>🏕 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fprettyphoto\u002F\" rel=\"ugc\">WordPress prettyPhoto:\u003C\u002Fa> – This plugin helps you to enable lightbox for your any media file, flash, YouTube, iframes and ajax. Just enable PreetyPhoto in your desired media file and you are done.\u003C\u002Fp>\n","Get Image URL with different size Options by Image ID.",10,3203,0,"","6.3.8","4.0","5.6",[19,20,21,22,23],"image-id","image-source-by-image-id","img-src","img-src-by-id","img-src-by-image-id","http:\u002F\u002Fjeweltheme.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-source-by-id.1.0.4.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"litonice13",45,42980,93,63,83,"2026-04-05T02:06:12.129Z",[],{"attackSurface":40,"codeSignals":141,"taintFlows":251,"riskAssessment":314,"analyzedAt":323},{"hooks":41,"ajaxHandlers":109,"restRoutes":136,"shortcodes":137,"cronEvents":138,"entryPointCount":139,"unprotectedCount":140},[42,49,54,59,63,68,73,77,81,86,89,93,97,102,106],{"type":43,"name":44,"callback":45,"priority":46,"file":47,"line":48},"action","plugins_loaded","jlt_image_source_id_plugins_loaded",999,"class-image-source-by-id.php",48,{"type":50,"name":51,"callback":52,"file":47,"line":53},"filter","admin_body_class","jlt_image_source_id_body_class",50,{"type":43,"name":55,"callback":56,"file":57,"line":58},"admin_enqueue_scripts","admin_suvery_scripts","Inc\\Classes\\Feedback.php",27,{"type":43,"name":60,"callback":61,"file":57,"line":62},"admin_footer","deactivation_footer",28,{"type":43,"name":64,"callback":65,"file":66,"line":67},"admin_menu","image_src_by_id_menu","Inc\\Classes\\JLT_Image_Source.php",9,{"type":43,"name":69,"callback":70,"file":71,"line":72},"admin_notices","setup_notifications","Inc\\Classes\\Notifications\\Notifications.php",35,{"type":43,"name":74,"callback":75,"priority":11,"file":71,"line":76},"jlt_image_source_id_display_notice","display_notice",37,{"type":43,"name":78,"callback":79,"priority":11,"file":71,"line":80},"jlt_image_source_id_display_popup","display_popup",38,{"type":43,"name":82,"callback":83,"file":84,"line":85},"jlt_image_source_id_sheet_promo_data_reset","closure","Inc\\Classes\\Notifications\\Upgrade_Notice.php",26,{"type":43,"name":60,"callback":79,"file":87,"line":88},"Inc\\Classes\\Pro_Upgrade.php",47,{"type":43,"name":90,"callback":91,"file":87,"line":92},"wp_dashboard_setup","dashboard_widget",49,{"type":43,"name":55,"callback":94,"priority":26,"file":95,"line":96},"jlt_image_source_id_admin_enqueue_scripts","Libs\\Assets.php",25,{"type":50,"name":98,"callback":99,"file":100,"line":101},"install_plugins_table_api_args_featured","jlt_image_source_id_featured_plugins_tab","Libs\\Featured.php",23,{"type":50,"name":103,"callback":104,"priority":11,"file":100,"line":105},"plugins_api_result","jlt_image_source_id_plugins_api_result",33,{"type":43,"name":64,"callback":64,"file":107,"line":108},"Libs\\Recommended.php",42,[110,115,118,120,124,127,130,133],{"action":111,"nopriv":112,"callback":111,"hasNonce":113,"hasCapCheck":112,"file":57,"line":114},"jlt_image_source_id_deactivation_survey",false,true,29,{"action":116,"nopriv":112,"callback":116,"hasNonce":112,"hasCapCheck":112,"file":66,"line":117},"image_src_by_id",12,{"action":116,"nopriv":113,"callback":116,"hasNonce":112,"hasCapCheck":112,"file":66,"line":119},13,{"action":121,"nopriv":112,"callback":122,"hasNonce":113,"hasCapCheck":112,"file":71,"line":123},"jlt_image_source_id_notification_action","notification_action",40,{"action":125,"nopriv":112,"callback":125,"hasNonce":113,"hasCapCheck":112,"file":126,"line":85},"jlt_image_source_id_subscribe","Inc\\Classes\\Notifications\\Subscribe.php",{"action":128,"nopriv":112,"callback":128,"hasNonce":113,"hasCapCheck":112,"file":129,"line":58},"jlt_image_source_id_allow_collect","Inc\\Classes\\Notifications\\What_We_Collect.php",{"action":131,"nopriv":112,"callback":131,"hasNonce":113,"hasCapCheck":112,"file":107,"line":132},"jlt_image_source_id_recommended_upgrade_plugin",43,{"action":134,"nopriv":112,"callback":134,"hasNonce":113,"hasCapCheck":112,"file":107,"line":135},"jlt_image_source_id_recommended_activate_plugin",44,[],[],[],8,2,{"dangerousFunctions":142,"sqlUsage":143,"outputEscaping":145,"fileOperations":13,"externalRequests":247,"nonceChecks":248,"capabilityChecks":249,"bundledLibraries":250},[],{"prepared":13,"raw":13,"locations":144},[],{"escaped":146,"rawEcho":147,"locations":148},153,54,[149,152,154,156,158,160,161,163,164,165,166,167,169,171,173,174,176,178,180,182,184,185,186,188,190,192,194,196,198,200,202,204,206,207,208,210,212,214,216,218,220,222,224,226,227,229,231,233,235,237,239,241,243,245],{"file":57,"line":150,"context":151},132,"raw output",{"file":57,"line":153,"context":151},136,{"file":57,"line":155,"context":151},142,{"file":57,"line":157,"context":151},150,{"file":57,"line":159,"context":151},151,{"file":66,"line":72,"context":151},{"file":66,"line":162,"context":151},36,{"file":66,"line":108,"context":151},{"file":66,"line":132,"context":151},{"file":66,"line":92,"context":151},{"file":66,"line":53,"context":151},{"file":66,"line":168,"context":151},55,{"file":66,"line":170,"context":151},56,{"file":66,"line":172,"context":151},62,{"file":66,"line":35,"context":151},{"file":66,"line":175,"context":151},69,{"file":66,"line":177,"context":151},86,{"file":66,"line":179,"context":151},92,{"file":66,"line":181,"context":151},124,{"file":183,"line":135,"context":151},"Inc\\Classes\\Notifications\\Ask_For_Rating.php",{"file":183,"line":88,"context":151},{"file":183,"line":53,"context":151},{"file":187,"line":175,"context":151},"Inc\\Classes\\Notifications\\Model\\Notice.php",{"file":71,"line":189,"context":151},172,{"file":71,"line":191,"context":151},176,{"file":71,"line":193,"context":151},181,{"file":71,"line":195,"context":151},186,{"file":71,"line":197,"context":151},191,{"file":126,"line":199,"context":151},140,{"file":126,"line":201,"context":151},143,{"file":126,"line":203,"context":151},146,{"file":129,"line":205,"context":151},74,{"file":129,"line":177,"context":151},{"file":129,"line":34,"context":151},{"file":129,"line":209,"context":151},117,{"file":129,"line":211,"context":151},120,{"file":87,"line":213,"context":151},167,{"file":87,"line":215,"context":151},444,{"file":107,"line":217,"context":151},101,{"file":107,"line":219,"context":151},125,{"file":107,"line":221,"context":151},127,{"file":107,"line":223,"context":151},128,{"file":107,"line":225,"context":151},182,{"file":107,"line":195,"context":151},{"file":107,"line":228,"context":151},192,{"file":107,"line":230,"context":151},198,{"file":107,"line":232,"context":151},206,{"file":107,"line":234,"context":151},212,{"file":107,"line":236,"context":151},218,{"file":107,"line":238,"context":151},233,{"file":107,"line":240,"context":151},241,{"file":107,"line":242,"context":151},250,{"file":107,"line":244,"context":151},257,{"file":107,"line":246,"context":151},264,4,6,5,[],[252,270,279,297],{"entryPoint":253,"graph":254,"unsanitizedCount":268,"severity":269},"image_src_by_id (Inc\\Classes\\JLT_Image_Source.php:29)",{"nodes":255,"edges":266},[256,261],{"id":257,"type":258,"label":259,"file":66,"line":260},"n0","source","$_POST (x11)",30,{"id":262,"type":263,"label":264,"file":66,"line":72,"wp_function":265},"n1","sink","echo() [XSS]","echo",[267],{"from":257,"to":262,"sanitized":112},11,"medium",{"entryPoint":271,"graph":272,"unsanitizedCount":13,"severity":278},"\u003CJLT_Image_Source> (Inc\\Classes\\JLT_Image_Source.php:0)",{"nodes":273,"edges":276},[274,275],{"id":257,"type":258,"label":259,"file":66,"line":260},{"id":262,"type":263,"label":264,"file":66,"line":72,"wp_function":265},[277],{"from":257,"to":262,"sanitized":113},"low",{"entryPoint":280,"graph":281,"unsanitizedCount":296,"severity":278},"notification_action (Inc\\Classes\\Notifications\\Notifications.php:48)",{"nodes":282,"edges":293},[283,285,288],{"id":257,"type":258,"label":284,"file":71,"line":175},"$_REQUEST",{"id":262,"type":286,"label":287,"file":71,"line":175},"transform","→ fire()",{"id":289,"type":263,"label":290,"file":291,"line":26,"wp_function":292},"n2","update_option() [Settings Manipulation]","Inc\\Classes\\Notifications\\Model\\Notification.php","update_option",[294,295],{"from":257,"to":262,"sanitized":112},{"from":262,"to":289,"sanitized":112},1,{"entryPoint":298,"graph":299,"unsanitizedCount":296,"severity":278},"\u003CNotifications> (Inc\\Classes\\Notifications\\Notifications.php:0)",{"nodes":300,"edges":310},[301,303,305,306,308],{"id":257,"type":258,"label":284,"file":71,"line":302},53,{"id":262,"type":263,"label":264,"file":71,"line":304,"wp_function":265},214,{"id":289,"type":258,"label":284,"file":71,"line":175},{"id":307,"type":286,"label":287,"file":71,"line":175},"n3",{"id":309,"type":263,"label":290,"file":291,"line":26,"wp_function":292},"n4",[311,312,313],{"from":257,"to":262,"sanitized":113},{"from":289,"to":307,"sanitized":112},{"from":307,"to":309,"sanitized":112},{"summary":315,"deductions":316},"The \"image-source-by-id\" plugin, version 1.0.4, demonstrates a mixed security posture. On the positive side, it has no known historical vulnerabilities (CVEs), uses prepared statements exclusively for SQL queries, and generally implements good practices regarding file operations and external HTTP requests. The presence of nonce and capability checks for most AJAX handlers is also a strength.\n\nHowever, concerns arise from the static analysis. The plugin has a notable attack surface with 8 AJAX handlers, 2 of which lack authentication checks. Furthermore, taint analysis reveals 3 flows with unsanitized paths, although these are not classified as critical or high severity. The output escaping is also a point of concern, with only 74% of outputs being properly escaped, leaving potential for XSS vulnerabilities if the unsanitized data reaches critical output points.\n\nGiven the absence of historical vulnerabilities and the use of prepared statements, the plugin's immediate risk appears moderate. The primary risks stem from the unprotected AJAX handlers and the unsanitized paths identified in the taint analysis, coupled with the incomplete output escaping. These areas require attention to further harden the plugin's security.",[317,319,321],{"reason":318,"points":139},"Unprotected AJAX handlers",{"reason":320,"points":248},"Flows with unsanitized paths",{"reason":322,"points":249},"Incomplete output escaping","2026-03-16T23:18:21.023Z",{"wat":325,"direct":331},{"assetPaths":326,"generatorPatterns":328,"scriptPaths":329,"versionParams":330},[327],"\u002Fwp-content\u002Fplugins\u002Fimage-source-by-id\u002Fassets\u002Fcss\u002Fplugin-survey.css",[],[],[],{"cssClasses":332,"htmlComments":343,"htmlAttributes":344,"restEndpoints":345,"jsGlobals":347,"shortcodeOutput":349},[333,334,335,336,337,338,339,340,341,342],"jltimgsrc-deactivate-survey-overlay","jltimgsrc-deactivate-survey-modal","jltimgsrc-deactivate-survey-header","jltimgsrc-deactivate-info","jltimgsrc-deactivate-content-wrapper","jltimgsrc-deactivate-form-wrapper","jltimgsrc-deactivate-input-wrapper","jltimgsrc-deactivate-feedback-dialog-input","jltimgsrc-deactivate-feedback-dialog-label","jltimgsrc-deactivate-feedback-text",[],[],[346],"\u002Fwp-json\u002Fimage-source-by-id\u002Fv1\u002Fdeactivation-survey",[348],"jlt_image_source_id_deactivation_nonce",[]]