[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fUSs151mv_k0IsRzNXxpCGT10rn3RJHohpUxvGX0fUhM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":142,"fingerprints":220},"itunes-charts","iTunes Charts","1.0","Ollie","https:\u002F\u002Fprofiles.wordpress.org\u002Fwodco\u002F","\u003Cp>iTunes widget that automatically updates to reflect the latest charts\u003C\u002Fp>\n","iTunes widget that automatically updates to reflect the latest charts.",10,2869,80,4,"","4.2.39","3.0.1",[19,20,21,22,23],"charts","itunes","itunes-chart","music","music-chart","http:\u002F\u002Fwodco.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fitunes-charts.zip",100,0,null,"2026-03-15T10:48:56.248Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"wodco",1,30,94,"2026-04-05T03:37:49.678Z",[38,56,74,90,128],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":33,"last_updated":15,"tested_up_to":49,"requires_at_least":50,"requires_php":15,"tags":51,"homepage":54,"download_link":55,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"itunes-preview-widget","iTunes Preview Widget","1.3.1","foobar","https:\u002F\u002Fprofiles.wordpress.org\u002Fjordanandree\u002F","\u003Cp>Embeds an interactive iTunes Preview for an artist as a sidebar widget\u003C\u002Fp>\n\u003Ch4>Plugin’s Official Site\u003C\u002Fh4>\n\u003Cp>http:\u002F\u002Fnoblegiant.com\u002Fblog\u002F2010\u002F11\u002Fitunes-preview-widget\u002F\u003C\u002Fp>\n","Embeds an interactive iTunes Preview for an artist as a sidebar widget",40,8281,20,"3.2.1","2.9",[20,52,22,53],"multiwidget","widget","http:\u002F\u002Fnoblegiant.com\u002Fitunes","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fitunes-preview-widget.1.3.1.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":34,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":15,"tested_up_to":67,"requires_at_least":68,"requires_php":15,"tags":69,"homepage":72,"download_link":73,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"top-music-charts-widget","Top Music Charts Widget","1.1.0","Garrett Grimm","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrimmdude\u002F","\u003Cp>Displays a widget listing the top iTunes charts of your choosing.  You can also specify the number of results you would like to see.  Caches chart for 12 hours for best performance.\u003C\u002Fp>\n","Displays a widget listing the top iTunes charts of your choosing.",6221,60,2,"4.9.29","3.2",[70,19,22,71,53],"billboard","top-40","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftop-music-charts-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftop-music-charts-widget.1.1.0.zip",{"slug":75,"name":76,"version":6,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":11,"downloaded":81,"rating":27,"num_ratings":27,"last_updated":82,"tested_up_to":83,"requires_at_least":83,"requires_php":15,"tags":84,"homepage":86,"download_link":87,"security_score":88,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":89},"itunes-data","iTunes-Data","mithra62","https:\u002F\u002Fprofiles.wordpress.org\u002Fmithra62\u002F","\u003Cp>Displays data from an itunes xml file as a sidebar. Blog administrators can upload a zip file or a stand alone xml file for parsing.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Future Releases\u003C\u002Fstrong>\u003Cbr \u002F>\n* Only bug fixes\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Bugs\u003C\u002Fstrong>\u003Cbr \u002F>\n* none\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Changelog\u003C\u002Fstrong>\u003Cbr \u002F>\n1.0 :: Release\u003C\u002Fp>\n","Displays data from an itunes xml file as a sidebar widget.",2354,"2009-03-16T15:39:00.000Z","2.7.1",[20,22,85],"xml","http:\u002F\u002Fblog.ericlamb.net\u002Fitunes-data\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fitunes-data.zip",85,"2026-03-15T15:16:48.613Z",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":11,"downloaded":98,"rating":27,"num_ratings":27,"last_updated":99,"tested_up_to":16,"requires_at_least":100,"requires_php":15,"tags":101,"homepage":126,"download_link":127,"security_score":88,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":89},"podcast-searcher-by-clarify","Podcast Searcher by Clarify","1.0.2","caseysoftware","https:\u002F\u002Fprofiles.wordpress.org\u002Fcaseysoftware\u002F","\u003Cp>The Podcast Searcher plugin uses \u003Ca href=\"http:\u002F\u002FClarify.io\" rel=\"nofollow ugc\">Clarify’s\u003C\u002Fa> technology to make audio and video searchable.  It uses automatic speech recognition to extract spoken English, Spanish, and French and lets you retrieve detailed information about your media with simple API calls. Getting started takes minutes.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Minimal setup: Adds search to your podcast without any additional plugins or custom theming required.\u003C\u002Fli>\n\u003Cli>Simple to Use: You just add the link to your podcast as you’ve always done. We handle the rest.\u003C\u002Fli>\n\u003Cli>No transcripts: Lets you skip the expensive and time-consuming step of getting transcripts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Now whenever you add a URL to your audio or video file – either by directly copy\u002Fpasting the url into the post or using a media embed – it will automatically be sent to Clarify for indexing.\u003C\u002Fp>\n\u003Cp>Once the file is done processing, using your on-site search will return results describing where your word is heard in the audio down to the second. If you’re using the default embed\u002Fshortcode, these mentions will be clickable and jump you directly to that spot in the audio or video.\u003C\u002Fp>\n\u003Ch4>Further Usage\u003C\u002Fh4>\n\u003Cp>If you have archives with media – audio or video – already embedded, this plugin will not automatically index it for you. We didn’t want to surprise you with a massive bill. Instead, just open any of your old posts and re-save them. No editing or changes required. The media will get processed just like any other media.\u003C\u002Fp>\n\u003Ch4>Housekeeping\u003C\u002Fh4>\n\u003Cp>While this is hosted in WordPress’ SVN repository, no development is performed there. For the latest and greatest development version, check out the Github repository: https:\u002F\u002Fgithub.com\u002FClarify\u002Fwp-clarify\u003C\u002Fp>\n","The Clarify plugin allows you to make any audio or video embedded in your posts, pages, etc searchable via the standard WordPress search box.",1631,"2015-06-13T05:45:00.000Z","2.5",[102,103,104,105,106,107,108,109,110,20,111,112,113,114,22,115,116,117,118,119,120,121,122,123,124,125],"audio","audio-search","clarify","embed","enclosure","episodes","flash","flv","id3","m4v","media","mp3","mp4","player","podcast","podcaster","podcasting","podcasts","rss","video","video-blogging","video-search","videocasts","webm","http:\u002F\u002Fgithub.com\u002FClarify\u002Fwp-clarify","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpodcast-searcher-by-clarify.1.0.2.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":11,"downloaded":136,"rating":27,"num_ratings":27,"last_updated":137,"tested_up_to":15,"requires_at_least":50,"requires_php":15,"tags":138,"homepage":15,"download_link":141,"security_score":88,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":89},"top-songs","Top Songs","1.0.0","brainwithstorm","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainwithstorm\u002F","\u003Cp>Plugin to show top songs – admin can set it to widget area, set its title and number of songs and some special display options.\u003Cbr \u002F>\nSimple stand-alone widget displaying daily top songs via ajax script (that is cached for 2 hours after loading data) from external source (check external source section). There are some display customization options like number of displayed songs, song images display and link to songs option (default: false)\u003C\u002Fp>\n\u003Cp>** External source **\u003C\u002Fp>\n\u003Cp>External source page External source URL: http:\u002F\u002Fwww.mytopnewsongs.com is owned by Tomaz Miholic and it’s not in privacy policy conflict with the website privacy. External source is necessary part of this plugin because the data is coming from this source.\u003Cbr \u002F>\nPlease not that if image display option is enabled that this can have impact on your wordpress website loading time, because images are loaded from external source from four different subdomains (External source domain: mytopnewsongs.com, subdomains: imga,imgb,imgc,imgd).\u003C\u002Fp>\n\u003Cp>In next upgrade it’s planned to add the categories (music genres) so user can select most appropriate genre for his blog\u002Fmusic style.\u003C\u002Fp>\n\u003Ch3>Arbitrary section 1\u003C\u002Fh3>\n","Plugin - widget that will show top songs every day - set this to your sidebar and you will have amazing content.",3476,"2013-11-20T20:26:00.000Z",[139,19,22,140,129],"artists","songs","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftop-songs.zip",{"attackSurface":143,"codeSignals":159,"taintFlows":205,"riskAssessment":206,"analyzedAt":219},{"hooks":144,"ajaxHandlers":155,"restRoutes":156,"shortcodes":157,"cronEvents":158,"entryPointCount":27,"unprotectedCount":27},[145,151],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","wp_enqueue_scripts","itunes_scripts","itunes.php",18,{"type":146,"name":152,"callback":153,"file":149,"line":154},"widgets_init","anonymous",349,[],[],[],[],{"dangerousFunctions":160,"sqlUsage":164,"outputEscaping":166,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":204},[161],{"fn":162,"file":149,"line":154,"context":163},"create_function","add_action('widgets_init', create_function('', 'return register_widget(\"itunes_plugin\");'));",{"prepared":27,"raw":27,"locations":165},[],{"escaped":167,"rawEcho":168,"locations":169},5,22,[170,173,175,176,177,179,180,182,183,185,186,188,189,190,192,193,195,197,199,200,201,202],{"file":149,"line":171,"context":172},44,"raw output",{"file":149,"line":174,"context":172},45,{"file":149,"line":174,"context":172},{"file":149,"line":174,"context":172},{"file":149,"line":178,"context":172},50,{"file":149,"line":178,"context":172},{"file":149,"line":181,"context":172},225,{"file":149,"line":181,"context":172},{"file":149,"line":184,"context":172},234,{"file":149,"line":184,"context":172},{"file":149,"line":187,"context":172},281,{"file":149,"line":187,"context":172},{"file":149,"line":187,"context":172},{"file":149,"line":191,"context":172},285,{"file":149,"line":191,"context":172},{"file":149,"line":194,"context":172},309,{"file":149,"line":196,"context":172},312,{"file":149,"line":198,"context":172},318,{"file":149,"line":198,"context":172},{"file":149,"line":198,"context":172},{"file":149,"line":198,"context":172},{"file":149,"line":203,"context":172},345,[],[],{"summary":207,"deductions":208},"The \"itunes-charts\" v1.0 plugin exhibits a mixed security posture.  On the positive side, the absence of any recorded vulnerabilities, CVEs, or identified taint flows suggests a generally secure development history and limited exposure. The use of prepared statements for SQL queries is also a strong indicator of good practice in handling database interactions. However, several concerning aspects arise from the static analysis. The presence of `create_function`, a deprecated and often exploited function, is a significant red flag. Furthermore, the plugin's output escaping is notably weak, with only 19% of outputs properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. The lack of any nonce or capability checks across its attack surface, which is currently zeroed out but could grow, represents a potential blind spot for future development. The absence of AJAX handlers, REST API routes, shortcodes, and cron events is currently a strength by limiting the attack surface, but the lack of built-in security checks means any future additions will be inherently vulnerable if not carefully implemented.",[209,212,215,217],{"reason":210,"points":211},"Use of dangerous function create_function",15,{"reason":213,"points":214},"Low percentage of properly escaped output",12,{"reason":216,"points":167},"No nonce checks",{"reason":218,"points":167},"No capability checks","2026-03-16T23:31:37.986Z",{"wat":221,"direct":230},{"assetPaths":222,"generatorPatterns":225,"scriptPaths":226,"versionParams":227},[223,224],"\u002Fwp-content\u002Fplugins\u002Fitunes-charts\u002Flib\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Fitunes-charts\u002Flib\u002Fjs\u002Fplayer.js",[],[224],[228,229],"itunes-charts\u002Flib\u002Fcss\u002Fmain.css?ver=","itunes-charts\u002Flib\u002Fjs\u002Fplayer.js?ver=",{"cssClasses":231,"htmlComments":233,"htmlAttributes":234,"restEndpoints":240,"jsGlobals":241,"shortcodeOutput":242},[232],"iTunes-widget",[],[235,236,237,238,239],"data-country","data-genre","data-limit","data-type","data-explicit",[],[],[243],"\u003Cdiv class=\"itunes-chart\">\u003C\u002Fdiv>"]