[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fP_aZpnNd-6Rxfge8xTW9bE0uBGrYtuVO6sjGfOOqvyE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":48,"crawl_stats":38,"alternatives":55,"analysis":146,"fingerprints":336},"information-reel","Information Reel","10.1","gopiplus","https:\u002F\u002Fprofiles.wordpress.org\u002Fgopiplus\u002F","\u003Cp>Information Reel wordpress plugin create the reel type scroll in the website widget. The scroll contain the entered title, image, and description.\u003C\u002Fp>\n\u003Cp>Check official website for live demo \u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2011\u002F04\u002F16\u002Fwordpress-plugin-information-reel\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2011\u002F04\u002F16\u002Fwordpress-plugin-information-reel\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2011\u002F04\u002F16\u002Fwordpress-plugin-information-reel\u002F\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa>  \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2013\u002F08\u002F25\u002Finformation-reel-wordpress-plugin-screenshots\u002F\" rel=\"nofollow ugc\">Screen shots\u003C\u002Fa>               \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2013\u002F08\u002F25\u002Finformation-reel-wordpress-plugin-video-tutorial\u002F\" rel=\"nofollow ugc\">Video tutorial\u003C\u002Fa>      \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F\" rel=\"nofollow ugc\">About author\u003C\u002Fa>            \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Information Reel wordpress plugin create the reel type scroll in the website widget. The scroll contain the entered title, image, and description. This is best way to announce your messages to user.\u003C\u002Fp>\n\u003Ch4>Feature of this plugin\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Easy installation.\u003C\u002Fli>\n\u003Cli>Easy customization.\u003C\u002Fli>\n\u003Cli>Easy scroll setting.\u003C\u002Fli>\n\u003Cli>Option to display title with link.\u003C\u002Fli>\n\u003Cli>Option to display image in the scroll.\u003C\u002Fli>\n\u003Cli>Supports localization.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Plugin configuration\u003C\u002Fh4>\n\u003Cp>Go to Widgets page under Appearance menu, Drag and drop Information Reel widget into your side bar. Its very easy.\u003C\u002Fp>\n\u003Ch4>Frequently asked questions\u003C\u002Fh4>\n\u003Cp>Q1. Can we display more announcements at same time?\u003Cbr \u002F>\nYes, its scrolling so we can display many at same time.\u003C\u002Fp>\n\u003Cp>Q2. Can we display announcement in random order?\u003Cbr \u002F>\nYes, Random option setting available in the widget form.\u003C\u002Fp>\n\u003Cp>Q3. Can we arrange the announcement scroll order?\u003Cbr \u002F>\nYes, in the plugin admin page we have option to enter order position.\u003C\u002Fp>\n\u003Cp>Q4. Can we hide any announcement temporary?\u003Cbr \u002F>\nYes, in the plugin admin page we have display option YES or NO.\u003C\u002Fp>\n\u003Cp>Q5. Can we set expiration for announcement?\u003Cbr \u002F>\nYes, at present (version 7.0) this option is not included. we will add the option soon.\u003C\u002Fp>\n\u003Cp>Q6. Why my reel content out of range?\u003Cbr \u002F>\nThis is because of the Height setting in the widget form. Increase the Height and see the output.\u003C\u002Fp>\n\u003Cp>Q7. Why my reel content merge each other?\u003Cbr \u002F>\nThis is because of the Height setting in the widget form. Increase the height and see the output.\u003C\u002Fp>\n\u003Cp>Q8. How many message display at same time?\u003Cbr \u002F>\nOption available in the widget form page.\u003C\u002Fp>\n\u003Cp>Q9. What is Same Time Display, Text Length, Content Group?\u003Cbr \u002F>\nSame Time Display: No of announcement you want to show in the screen at same time.\u003Cbr \u002F>\nText Length: This is to maintain the announcement description text length.\u003Cbr \u002F>\nContent group: This is to group the content. Example: if you select GROUP1 in the widget form, in the front-end you will get content from the group GROUP1.\u003C\u002Fp>\n\u003Cp>Q10. Plugin admin link?\u003Cbr \u002F>\nAdministration ==> Settings ==> Information Reel\u003C\u002Fp>\n\u003Cp>Q11. Widget setting default form link?\u003Cbr \u002F>\nIts available in the widget, Please check below admin screens for for more information.\u003C\u002Fp>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Tamil (ta) – \u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002F\" rel=\"nofollow ugc\">Gopi Ramasamy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Polish (pl_PL) – \u003Ca href=\"https:\u002F\u002Fwww.couponmachine.in\u002F\" rel=\"nofollow ugc\">Abdul Sattar\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin scroll the entered title, image, and description in your word press website. This is best way to announce your messages to user.",300,41288,86,3,"2023-10-28T15:43:00.000Z","6.4.8","3.4","",[20,21,22,23,24],"announcement","reel","scroll","scroller","text-scroll","http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2011\u002F04\u002F16\u002Fwordpress-plugin-information-reel\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finformation-reel.zip",84,1,0,"2023-10-30 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2023-5429","information-reel-authenticated-subscriber-sql-injection-via-shortcode","Information Reel \u003C= 10.0 -  Authenticated (Subscriber+) SQL Injection via Shortcode","The Information Reel plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 10.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers with subscriber-level and above permissions to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.",null,"\u003C=10.0","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2024-01-22 19:56:02",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F64db63e5-ff76-494a-be4f-d820f0cc9ab0?source=api-prod",85,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":49,"total_installs":50,"avg_security_score":51,"avg_patch_time_days":52,"trust_score":53,"computed_at":54},52,19110,83,70,76,"2026-04-05T14:45:00.883Z",[56,76,92,113,131],{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":28,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":71,"download_link":72,"security_score":73,"vuln_count":74,"unpatched_count":74,"last_vuln_date":75,"fetched_at":31},"effect-maker","Effect Maker","1.2.1","anibalwainstein","https:\u002F\u002Fprofiles.wordpress.org\u002Fanibalwainstein\u002F","\u003Cp>The Effect Maker allows you to customize JavaScript effects like scrollers, slide shows and messengers with your own texts, fonts and images. No JavaScript development skills are needed. With a few clicks you can start creating your own effects. You can have several customizations of one type of effect in your site. All standard web fonts are supported and if you like you can specify your own custom font if you support it by your HTML\u002FCSS3 setup or template. To see the effects in action \u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002F\" rel=\"nofollow ugc\">look at our gallery\u003C\u002Fa>. Get the \u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Fbuyit.html\" rel=\"nofollow ugc\">Pro edition\u003C\u002Fa> for even more effects.\u003C\u002Fp>\n\u003Cp>The following effects are included:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Frotatinggallery\u002F\" rel=\"nofollow ugc\">Rotating Gallery\u003C\u002Fa> – rotate your images around in a carousel giving them a real 3D feeling\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fimagescroller\u002F\" rel=\"nofollow ugc\">Image Scroller\u003C\u002Fa> – Scroll a selection of images vertically or horizontally\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fhorizontalscroller\u002F\" rel=\"nofollow ugc\">Horizontal Scroller\u003C\u002Fa> – a ticker effect with side fading\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fverticalscroller\u002F\" rel=\"nofollow ugc\">Vertical Scroller\u003C\u002Fa> – a vertical ticker effect width side fading\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fimagefader\u002F\" rel=\"nofollow ugc\">Image Fader\u003C\u002Fa> – a simple slide show that fades images into each other\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Ftextfader\u002F\" rel=\"nofollow ugc\">Text Fader\u003C\u002Fa> – a messenger where texts are fading into each other\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fscramblemessage\u002F\" rel=\"nofollow ugc\">Scramble Message\u003C\u002Fa> – Your message is hurrying to scramble in and out\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Ffallingtext\u002F\" rel=\"nofollow ugc\">Falling Text\u003C\u002Fa> – Your message is falling down!\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fwaterdropshow\u002F\" rel=\"nofollow ugc\">Water Drop Show\u003C\u002Fa> – Let drops of water fall on your slides with one big splash showing the next.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.effectmaker.com\u002Feffectgallery\u002Fshuffleshow\u002F\" rel=\"nofollow ugc\">Shuffle Show\u003C\u002Fa> – Shuffle your slides like a card deck with this effect\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Effect Maker is integrated into WordPress as a plugin. It inserts an option in the administration menu which you click to create your configurations. Configurations are saved in the wordpress database. Images and media are selected from the standard WordPress media gallery.\u003C\u002Fp>\n\u003Cp>Your effects can then easily be inserted into your posts by specifying the location in the editor and then clicking on “add effect” with the configuration that you made. An effect icon marks the location of your effect.\u003C\u002Fp>\n\u003Cp>Multiple configurations effects are supported in a single wordpress site, thanks to the JavaScript instancing technology in Effect Maker.\u003C\u002Fp>\n\u003Cp>Important Note! If you need to integrate the JavaScripts into your WordPress themes or headers then we recommend using the desktop versions of Effect Maker which generates physical standalone .js files and which you can download [here] (http:\u002F\u002Fwww.effectmaker.com\u002Fdownload\u002F).\u003C\u002Fp>\n\u003Cp>Internet Explorer 9.0, Chrome, Opera and Firefox supported. Some effects may work on earlier versions of Internet Explorer down to version 8.0.\u003C\u002Fp>\n","Extend Wordpress with this JavaScript web effect creation system.",80,10283,100,"2015-11-13T07:17:00.000Z","4.3.34","3.9.1",[20,21,22,23,24],"http:\u002F\u002Fwww.effectmaker.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feffect-maker.1.2.1.zip",41,2,"2025-12-31 00:00:00",{"slug":77,"name":78,"version":79,"author":7,"author_profile":8,"description":80,"short_description":81,"active_installs":66,"downloaded":82,"rating":64,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":17,"requires_php":18,"tags":86,"homepage":90,"download_link":91,"security_score":47,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"announcement-ticker-highlighter-scroller","Announcement ticker highlighter scroller","12.1","\u003Cp>This plugin will display the announcement with highlighter scroller. It gradually reveals each message into view from bottom to top.\u003C\u002Fp>\n\u003Cp>Check official website for live demo \u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa>        \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F\" rel=\"nofollow ugc\">About Author\u003C\u002Fa>         \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>          \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F\" rel=\"nofollow ugc\">Comments\u002FSuggestion\u003C\u002Fa>        \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Announcement ticker highlighter scroller wordpress plugin create an announcement scroller in sidebar. It gradually reveals each message into view from bottom to top.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Plugin feature\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple.  \u003C\u002Fli>\n\u003Cli>Easy style override system.  \u003C\u002Fli>\n\u003Cli>We can add\u002Fedit\u002Fdelete announcement any time.  \u003C\u002Fli>\n\u003Cli>Enble\u002Fdisable option available so no need to delete announcement. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Plugin configuration\u003C\u002Fp>\n\u003Cp>Drag and drop the widget : Go to widget page under Appearance tab, Drag and drop Announcement ticker highlighter scroller widget into your side bar.\u003C\u002Fp>\n\u003Cp>Add directly in the theme : Use this PHP code to add the gallery into your theme files.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php if (function_exists (g_aths_announcement)) g_aths_announcement(); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ukranian (uk_UA) – \u003Ca href=\"http:\u002F\u002Fgetvoip.com\" rel=\"nofollow ugc\">Michael Yunat\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Tamil (ta) – \u003Ca href=\"http:\u002F\u002Fwww.gopiplus.com\u002F\" rel=\"nofollow ugc\">Gopi Ramasamy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Polish (pl_PL) – \u003Ca href=\"https:\u002F\u002Fwww.couponmachine.in\u002F\" rel=\"nofollow ugc\">Abdul Sattar\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin will display the announcement with highlighter scroller. It gradually reveals each message into view from bottom to top.",47879,5,"2022-12-01T15:21:00.000Z","6.1.10",[20,87,23,88,89],"highlighter","ticker","widget","http:\u002F\u002Fwww.gopiplus.com\u002Fwork\u002F2010\u002F07\u002F18\u002Fannouncement-ticker-highlighter-scroller\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fannouncement-ticker-highlighter-scroller.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":66,"num_ratings":28,"last_updated":18,"tested_up_to":102,"requires_at_least":103,"requires_php":18,"tags":104,"homepage":110,"download_link":111,"security_score":66,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":112},"scrolltick","ScrollTick","1.0","uisumo","https:\u002F\u002Fprofiles.wordpress.org\u002Fuisumo\u002F","\u003Cp>ScrollTick allows to add any news to be scrolled on site. It has tons of options where you can scroll the news in horizontal or vertical way.Make use of the shortcodes ,where you can manage all features for every group of news.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>All settings can be override via shortcode\u003C\u002Fli>\n\u003Cli>Groupable announcement\u003C\u002Fli>\n\u003Cli>set amount of delay while scrolling\u003C\u002Fli>\n\u003Cli>expiration date for each news \u003C\u002Fli>\n\u003Cli>shorcodes for special features for each group\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Shortcode\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>[scrolltick]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Shortcode Args \u003C\u002Fh3>\n\u003Cpre>\u003Ccode>groups =>  '1,2,3,4' # Enter , seperated term ids\nposts =>  '1,2,3,4' # Enter , seperated post ids\ndelay_before_start =>  100 # Only Numeric values\ndirection => 'up' # UP \u002F LEFT \u002F RIGHT \u002F DOWN\nduplicated =>   'yes' # Yes \u002F No\ngap =>  10 # Only Numeric values\nduration =>  1000 # Only Numeric values And Values are calcuated in ms 1000 means 1000ms\nspeed => 100 # Only Numeric values\npause_on_hover =>  'yes' # Yes \u002F No\npause_on_cycle =>  'yes' # Yes \u002F No\nstart_visible => 'yes' # Yes \u002F No\n\u003C\u002Fcode>\u003C\u002Fpre>\n","This is the simple way to create scrolling text in your website.",40,2284,"5","3.0",[105,106,107,108,109],"announcements","horizontal","news-scroller","scrolling","vertical-news","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fscrolltick\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscrolltick.1.0.zip","2026-03-15T10:48:56.248Z",{"slug":114,"name":115,"version":95,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":66,"num_ratings":28,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":18,"tags":125,"homepage":129,"download_link":130,"security_score":47,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"job-manager-feed-scroller","Job manager feed scroller","Nishant Vaity","https:\u002F\u002Fprofiles.wordpress.org\u002Fenishant\u002F","\u003Cp>Get jobs added by plugin Job Manager and display them as scrolling text.\u003Cbr \u002F>\nFor job scrolling use shortcode [showjobscroll]\u003Cbr \u002F>\nIt will display job list scrolling for jobs which are posted to wordpress using Job Manager plugin.\u003C\u002Fp>\n","Get jobs added by plugin Job Manager and display them as scrolling text.",10,2349,"2014-04-21T20:00:00.000Z","3.9.40","3.0.1",[126,127,114,128,24],"content-scrolling","job-manager","sidebar-scrolling","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjob-manager-feed-scroller\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjob-manager-feed-scroller.zip",{"slug":132,"name":133,"version":95,"author":134,"author_profile":135,"description":136,"short_description":137,"active_installs":120,"downloaded":138,"rating":29,"num_ratings":29,"last_updated":139,"tested_up_to":140,"requires_at_least":141,"requires_php":18,"tags":142,"homepage":144,"download_link":145,"security_score":47,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"text-scroller","Text Scroller","nitinmaurya12","https:\u002F\u002Fprofiles.wordpress.org\u002Fnitinmaurya12\u002F","\u003Cp>Set Scrolling Message for website\u003C\u002Fp>\n","Set Scrolling Message for website",2187,"2014-02-25T15:50:00.000Z","3.6.1","3.2",[143,132],"text-marquee","http:\u002F\u002Fnitinmaurya.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftext-scroller.zip",{"attackSurface":147,"codeSignals":178,"taintFlows":297,"riskAssessment":324,"analyzedAt":335},{"hooks":148,"ajaxHandlers":171,"restRoutes":172,"shortcodes":173,"cronEvents":177,"entryPointCount":28,"unprotectedCount":29},[149,155,159,163,167],{"type":150,"name":151,"callback":152,"file":153,"line":154},"action","admin_menu","IR_Add_To_Menu","information-reel.php",382,{"type":150,"name":156,"callback":157,"file":153,"line":158},"plugins_loaded","IR_textdomain",604,{"type":150,"name":160,"callback":161,"file":153,"line":162},"init","IR_add_javascript_files",605,{"type":150,"name":164,"callback":165,"file":153,"line":166},"widgets_init","IR_widget_loading",606,{"type":150,"name":168,"callback":169,"file":153,"line":170},"admin_enqueue_scripts","IR_adminscripts",610,[],[],[174],{"tag":4,"callback":175,"file":153,"line":176},"IR_shortcode",603,[],{"dangerousFunctions":179,"sqlUsage":180,"outputEscaping":186,"fileOperations":29,"externalRequests":29,"nonceChecks":14,"capabilityChecks":29,"bundledLibraries":296},[],{"prepared":181,"raw":28,"locations":182},25,[183],{"file":184,"line":181,"context":185},"uninstall.php","$wpdb->query() with variable interpolation",{"escaped":187,"rawEcho":188,"locations":189},13,61,[190,193,195,197,199,201,203,205,206,207,209,211,212,213,215,217,218,219,221,223,224,225,227,229,230,232,233,235,237,238,240,242,243,245,247,248,249,252,254,256,258,260,261,264,266,268,269,271,273,274,275,277,280,282,284,285,286,288,290,292,294],{"file":153,"line":191,"context":192},26,"raw output",{"file":153,"line":194,"context":192},413,{"file":153,"line":196,"context":192},416,{"file":153,"line":198,"context":192},428,{"file":153,"line":200,"context":192},430,{"file":153,"line":202,"context":192},470,{"file":153,"line":204,"context":192},471,{"file":153,"line":204,"context":192},{"file":153,"line":204,"context":192},{"file":153,"line":208,"context":192},474,{"file":153,"line":210,"context":192},475,{"file":153,"line":210,"context":192},{"file":153,"line":210,"context":192},{"file":153,"line":214,"context":192},479,{"file":153,"line":216,"context":192},480,{"file":153,"line":216,"context":192},{"file":153,"line":216,"context":192},{"file":153,"line":220,"context":192},484,{"file":153,"line":222,"context":192},485,{"file":153,"line":222,"context":192},{"file":153,"line":222,"context":192},{"file":153,"line":226,"context":192},489,{"file":153,"line":228,"context":192},490,{"file":153,"line":228,"context":192},{"file":153,"line":231,"context":192},499,{"file":153,"line":231,"context":192},{"file":153,"line":234,"context":192},506,{"file":153,"line":236,"context":192},507,{"file":153,"line":236,"context":192},{"file":153,"line":239,"context":192},514,{"file":153,"line":241,"context":192},515,{"file":153,"line":241,"context":192},{"file":153,"line":244,"context":192},531,{"file":153,"line":246,"context":192},532,{"file":153,"line":246,"context":192},{"file":153,"line":246,"context":192},{"file":250,"line":251,"context":192},"pages\\content-management-add.php",92,{"file":250,"line":253,"context":192},102,{"file":250,"line":255,"context":192},103,{"file":250,"line":257,"context":192},170,{"file":250,"line":259,"context":192},187,{"file":250,"line":259,"context":192},{"file":262,"line":263,"context":192},"pages\\content-management-edit.php",117,{"file":262,"line":265,"context":192},127,{"file":262,"line":267,"context":192},128,{"file":262,"line":257,"context":192},{"file":262,"line":270,"context":192},174,{"file":262,"line":272,"context":192},216,{"file":262,"line":272,"context":192},{"file":262,"line":272,"context":192},{"file":262,"line":276,"context":192},230,{"file":278,"line":279,"context":192},"pages\\content-management-show.php",47,{"file":278,"line":281,"context":192},54,{"file":278,"line":283,"context":192},97,{"file":278,"line":283,"context":192},{"file":278,"line":66,"context":192},{"file":278,"line":287,"context":192},104,{"file":278,"line":289,"context":192},105,{"file":278,"line":291,"context":192},106,{"file":278,"line":293,"context":192},107,{"file":278,"line":295,"context":192},125,[],[298],{"entryPoint":299,"graph":300,"unsanitizedCount":29,"severity":323},"\u003Ccontent-management-show> (pages\\content-management-show.php:0)",{"nodes":301,"edges":319},[302,307,313,315],{"id":303,"type":304,"label":305,"file":278,"line":306},"n0","source","$_GET",6,{"id":308,"type":309,"label":310,"file":278,"line":311,"wp_function":312},"n1","sink","query() [SQLi]",37,"query",{"id":314,"type":304,"label":305,"file":278,"line":306},"n2",{"id":316,"type":309,"label":317,"file":278,"line":188,"wp_function":318},"n3","get_results() [SQLi]","get_results",[320,322],{"from":303,"to":308,"sanitized":321},true,{"from":314,"to":316,"sanitized":321},"low",{"summary":325,"deductions":326},"The information-reel plugin version 10.1 exhibits a mixed security posture. On the positive side, the static analysis reveals a very small attack surface with only one shortcode and no AJAX handlers, REST API routes, or cron events exposed to potential attackers. The plugin also demonstrates good practices regarding SQL queries, with 96% utilizing prepared statements, and includes some nonce checks. The absence of file operations and external HTTP requests further reduces potential risks.\n\nHowever, a significant concern arises from the very low percentage (18%) of properly escaped output. This indicates a high potential for cross-site scripting (XSS) vulnerabilities, where user-supplied input might be rendered directly in the browser without adequate sanitization. While no critical or high severity taint flows were identified in the static analysis, the lack of output escaping is a fundamental security weakness that could be exploited. The plugin's history of one high-severity SQL injection vulnerability, although currently patched, suggests a past area of weakness that requires continued vigilance.\n\nIn conclusion, while the plugin has a limited attack surface and good SQL practices, the prevalent issue with output escaping presents a tangible risk. This, combined with a past SQL injection vulnerability, necessitates careful monitoring and potential code review to ensure that all output is properly sanitized to prevent XSS attacks. The absence of capability checks on any entry points also represents a missed opportunity for robust authorization.",[327,330,332],{"reason":328,"points":329},"Low output escaping percentage",15,{"reason":331,"points":329},"Past high severity SQL injection vulnerability",{"reason":333,"points":334},"No capability checks on entry points",7,"2026-03-16T20:00:41.231Z",{"wat":337,"direct":344},{"assetPaths":338,"generatorPatterns":340,"scriptPaths":341,"versionParams":342},[339],"\u002Fwp-content\u002Fplugins\u002Finformation-reel\u002Finformation-reel.php",[],[],[343],"information-reel\u002Fstyle.css?ver=10.1",{"cssClasses":345,"htmlComments":348,"htmlAttributes":349,"restEndpoints":351,"jsGlobals":352,"shortcodeOutput":363},[346,347],"IR-regimage","IR_div",[],[350],"id=\"IRHolder\"",[],[353,354,355,356,357,358,359,360,361,362],"var IR = new Array()","var objIR = ''","var IR_scrollPos = ''","var IR_numScrolls = ''","var IR_heightOfElm = '","var IR_numberOfElm = '","var IR_speed = '","var IR_waitseconds = '","var IR_scrollOn = 'true'","function createIRScroll()",[364,365,366,367,368,369,370,371],"[information-reel group","[information-reel group=\"WIDGET\" length","[information-reel group=\"WIDGET\" length=\"125\" display","[information-reel group=\"WIDGET\" length=\"125\" display=\"3\" height","[information-reel group=\"WIDGET\" length=\"125\" display=\"3\" height=\"200\" random","[information-reel group=\"WIDGET\" length=\"125\" display=\"3\" height=\"200\" random=\"YES\" speed","[information-reel group=\"WIDGET\" length=\"125\" display=\"3\" height=\"200\" random=\"YES\" speed=\"2\" wait","[information-reel group=\"WIDGET\" length=\"125\" display=\"3\" height=\"200\" random=\"YES\" speed=\"2\" wait=\"2\"]"]