[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fK-2YKrDygD7Wk3_2_S5UdB3XF3_nJY8hqkLfmIJWr0Y":3,"$fvvDkC6u8JcFnSCiq7HWfMEUydve-SmNJMHFKoboVA5w":163,"$fUuxHM0_mouivDr6lHlE-EUm4s-6fI7B9VbNz8HXaO6k":168},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":36,"analysis":77,"fingerprints":131},"jcwp-capslock-detection","jcwp capslock detection","1.09","Jaspreet Chahal","https:\u002F\u002Fprofiles.wordpress.org\u002Fjaschahal\u002F","\u003Cp>This plugin gives you an options to make all password fields on your blog to show a tooltip message if user keyboard’s CAPS lock is on.\u003Cbr \u002F>\nYou can enable or disable this plugin just by setting ‘Enabled’ under Settings > JCWP Scroll To Top > Enabled to “No”\u003C\u002Fp>\n\u003Cp>You can follow me on Twitter https:\u002F\u002Ftwitter.com\u002Fjschahal or\u003Cbr \u002F>\nlike my facebook page http:\u002F\u002Fwww.facebook.com\u002Fjaspreetchahal.org to get updates on some not so exciting things that I do.\u003C\u002Fp>\n\u003Cp>Visit my site http:\u002F\u002Fjaspreetchahal.org to get help on this plugin or more precisely go to http:\u002F\u002Fjaspreetchahal.org\u002Fwordpress-caps-lock-detection-plugin-for-login-password-fields\u003C\u002Fp>\n\u003Ch3>Screenshots ==-\u003C\u002Fh3>\n\u003Col>\n\u003Cli>A screen shot of the options page\u003C\u002Fli>\n\u003Cli>Shows a style at the bottom of the page\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>If you would like to donate to help support future development of this plugin, please go to \u003Ca href=\"http:\u002F\u002Fjaspreetchahal.org\u002Fwordpress-caps-lock-detection-plugin-for-login-password-fields\" rel=\"nofollow ugc\">Jaspreet Chahal\u003C\u002Fa>\u003C\u002Fp>\n","This plugin shows a tooltip when user's have their CAPS lock on while typing their password to login.",10,1556,0,"2015-04-15T02:21:00.000Z","4.2.39","2.8","",[19,20,21],"caps-lock","password-field","tool-tip","http:\u002F\u002Fjaspreetchahal.org\u002Fwordpress-caps-lock-detection-plugin-for-login-password-fields\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjcwp-capslock-detection.1.09.zip",85,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":24,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"jaschahal",9,590,30,84,"2026-05-20T04:31:48.311Z",[37,57],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":17,"download_link":54,"security_score":55,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":56},"tool-tips-for-contact-form-7","ToolTips For Contact Form 7","1.0","howdytheme","https:\u002F\u002Fprofiles.wordpress.org\u002Fhowdytheme\u002F","\u003Cp>\u003Cstrong>Contact Form 7 Tooltips\u003C\u002Fstrong> is Extremely easy Configurable. Each Form Has Own Configuration. So, Each Contact Form 7 Tooltips Can be set Uniquely.\u003C\u002Fp>\n\u003Cp>You need Contact Form 7 installed.\u003C\u002Fp>\n\u003Cp>For using This plugin makes adding tooltips to your contact form 7 form field.\u003Cbr \u002F>\nit helps to display a tooltip over one or more of your form fields.\u003C\u002Fp>\n\u003Cp>To make tooltips you need to put shortcode in your page.\u003Cbr \u002F>\n(e.g.[mytooltips]Enter your name[\u002Fmytooltips])\u003C\u002Fp>\n\u003Cp>To Contact Form 7\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cdiv> Your name [mytooltips]Enter your name[\u002Fmytooltips]\n    [text* your-name]\n\u003C\u002Fdiv>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>FEATURES:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easy To use\u003C\u002Fli>\n\u003Cli>Auto position of tooltips\u003C\u002Fli>\n\u003Cli>Adjust width of tooltips\u003C\u002Fli>\n\u003Cli>mouse enter trigger event to show tooltips\u003C\u002Fli>\n\u003Cli>Allow to show tooltips arrow\u003C\u002Fli>\n\u003Cli>Adjust offset of tooltips\u003C\u002Fli>\n\u003Cli>Customize tooltips bacjground and text color\u003C\u002Fli>\n\u003Cli>Select tooltips icon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftopsmodule.com\u002Fhow-to-create-tooltips-for-contact-form-7\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Documentation\u003C\u002Fstrong>\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Ftopsmodule.com\u002Ftask\u002Ftool-tips-for-contact-form-7\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Live Demo\u003C\u002Fstrong>\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.topsmodule.com\u002Fproduct\u002Ftooltips-for-contact-form-7\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Get Premium\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>FEATURES FOR PREMIUM:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Set position of tooltips (top, bottom, left, right)\u003C\u002Fli>\n\u003Cli>Set trigger event to show tooltips (click, mouseenter focus)\u003C\u002Fli>\n\u003Cli>Upload custom tooltips icon image\u003C\u002Fli>\n\u003Cli>Set image width and height\u003C\u002Fli>\n\u003C\u002Ful>\n","Contact Form 7 Tooltips is Extremely easy Configurable. Each Form Has Own Configuration. So, Each Contact Form 7 Tooltips Can be set Uniquely.",200,1866,100,2,"2025-05-12T07:59:00.000Z","6.7.5","5.5",[53,38],"contact-form-7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftool-tips-for-contact-form-7.zip",92,"2026-04-16T10:56:18.058Z",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":11,"downloaded":65,"rating":66,"num_ratings":48,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":17,"tags":70,"homepage":75,"download_link":76,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":56},"pictips","PicTips","2.0","8MediaCentral","https:\u002F\u002Fprofiles.wordpress.org\u002F8mediacentral\u002F","\u003Cp>Ever wanted to make your content more visual? With PicTips, you can! Hovering over an item with a PicTip enabled will display your chosen image.\u003C\u002Fp>\n\u003Cp>PicTips features the following:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Displays images as tooltip bubbles\u003C\u002Fli>\n\u003Cli>Automatically resizes and positions bubbles as required\u003C\u002Fli>\n\u003Cli>Customise look and feel of bubbles for your site\u003C\u002Fli>\n\u003Cli>Graceful fall back for non-compatible browsers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please raise any support queries on the support forum.\u003C\u002Fp>\n\u003Cp>Want more styles for PicTips? Try downloading an \u003Ca href=\"http:\u002F\u002F8mediacentral.com\u002Fdevelopments\u002Fplugins\u002Fpictips\u002F\" rel=\"nofollow ugc\">Add-On Style Pack\u003C\u002Fa>\u003C\u002Fp>\n","PicTips provides a shortcode for images to be used as ToolTips. Like ToolTips but with pictures.",2545,90,"2013-05-08T14:45:00.000Z","3.5.2","3.1",[71,72,73,21,74],"hover","image","pictures","tooltip","http:\u002F\u002F8mediacentral.com\u002Fdevelopments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpictips.zip",{"attackSurface":78,"codeSignals":102,"taintFlows":123,"riskAssessment":124,"analyzedAt":130},{"hooks":79,"ajaxHandlers":98,"restRoutes":99,"shortcodes":100,"cronEvents":101,"entryPointCount":13,"unprotectedCount":13},[80,86,90,95],{"type":81,"name":82,"callback":83,"file":84,"line":85},"action","admin_menu","jcorgcld_menu","jcwp-capslock-detection.php",36,{"type":81,"name":87,"callback":88,"file":84,"line":89},"admin_init","jcorgcld_regsettings",40,{"type":81,"name":91,"callback":92,"priority":93,"file":84,"line":94},"wp_head","jcorgcld_inclscript",20,55,{"type":81,"name":96,"callback":92,"priority":93,"file":84,"line":97},"login_head",56,[],[],[],[],{"dangerousFunctions":103,"sqlUsage":104,"outputEscaping":106,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":122},[],{"prepared":13,"raw":13,"locations":105},[],{"escaped":13,"rawEcho":107,"locations":108},6,[109,112,114,116,118,120],{"file":84,"line":110,"context":111},120,"raw output",{"file":84,"line":113,"context":111},122,{"file":84,"line":115,"context":111},142,{"file":84,"line":117,"context":111},177,{"file":84,"line":119,"context":111},182,{"file":84,"line":121,"context":111},198,[],[],{"summary":125,"deductions":126},"The jcwp-capslock-detection plugin v1.09 exhibits a seemingly strong security posture from static analysis and vulnerability history. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a zero-sized attack surface. The code also shows no signs of dangerous functions, file operations, external HTTP requests, or bundled libraries. SQL queries are exclusively prepared, and there are no recorded vulnerabilities in its history. This suggests the plugin is lightweight and focused, with no obvious direct entry points for malicious activity or known past security flaws.\n\nHowever, the static analysis reveals significant concerns regarding output escaping. With 100% of its outputs not properly escaped, any data processed and displayed by the plugin is vulnerable to cross-site scripting (XSS) attacks. This is a critical oversight, as unescaped output allows attackers to inject malicious scripts into web pages, potentially stealing user data or hijacking sessions. While the absence of other vulnerability types is positive, the lack of output escaping creates a substantial risk that could be exploited even with a minimal attack surface.\n\nIn conclusion, while the plugin benefits from a small attack surface and a clean vulnerability history, the complete lack of output escaping is a major weakness. This flaw presents a clear and present danger of XSS vulnerabilities. Users of this plugin should be aware that while direct code injection or SQL injection might be unlikely due to the plugin's structure and coding practices, the risk of XSS is very high. Further investigation into the actual output mechanisms of the plugin would be prudent.",[127],{"reason":128,"points":129},"0% of output properly escaped",8,"2026-04-16T11:39:17.454Z",{"wat":132,"direct":142},{"assetPaths":133,"generatorPatterns":136,"scriptPaths":137,"versionParams":139},[134,135],"\u002Fwp-content\u002Fplugins\u002Fjcwp-capslock-detection\u002Fjccapslock.js","\u002Fwp-content\u002Fplugins\u002Fjcwp-capslock-detection\u002Fjccapslock.css",[],[138],"jccapslock.js",[140,141],"jcorgcld_script","jcorgcld_styles",{"cssClasses":143,"htmlComments":148,"htmlAttributes":149,"restEndpoints":158,"jsGlobals":159,"shortcodeOutput":161},[144,145,146,147],"jcorgbsuccess","jcorgberror","jcorgb-errors-title","jcorgb-errors",[],[150,151,152,153,154,155,156,157],"jcorgcld_active","jcorgcld_fallback","jcorgcld_position","jcorgcld_fade","jcorgcld_html","jcorgcld_offset","jcorgcld_linkback","jcorgcld_opacity",[],[160],"CapsLockAlert",[162],"\u003Ca style=\"font-size:0em !important;color:transparent !important\" href=\"http:\u002F\u002Fjaspreetchahal.org\">Scroll to top is powered by http:\u002F\u002Fjaspreetchahal.org\u003C\u002Fa>",{"error":164,"url":165,"statusCode":166,"statusMessage":167,"message":167},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fjcwp-capslock-detection\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":169,"versions":170},1,[171],{"version":6,"download_url":23,"svn_tag_url":172,"released_at":25,"has_diff":173,"diff_files_changed":174,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":175,"is_current":164},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fjcwp-capslock-detection\u002Ftags\u002F1.09\u002F",false,[],[]]