[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqUb4l6Z911QYsSaq3-vgYRzTRwcSh9J7CRa0PiW9O0w":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":136,"fingerprints":206},"je-suis-charlie-ribbon-mc","“Je suis Charlie” Ribbon MC","1.01","Laurent ROCHE - Mistral Consulting","https:\u002F\u002Fprofiles.wordpress.org\u002Fcomputingfroggy\u002F","\u003Cp>To show support to \u003Cstrong>Charlie Hebdo\u003C\u002Fstrong> on your web site, after the terrorists attacks in Paris (January 2015), this plugin will put a \u003Cem>“Je Suis Charlie”\u003C\u002Fem> ribbon on the (left or right) corner of your website.\u003C\u002Fp>\n\u003Cp>The ribbon is half transparent to be able to view the part of the web site underneath the ribbon. When moving over the ribbon, the ribbon changes to solid display, without any transparency.\u003C\u002Fp>\n\u003Cp>When clicking on the ribbon, a new page will be displayed according to your choice from the \u003Cem>Settings\u003C\u002Fem>. You can choose one out this four choices: the Charlie Hebdo web site, the Charlie Hebdo donation web site, twitter hash tag \u003Cem>#JeSuisCharlie\u003C\u002Fem>,\u003Cbr \u002F>\nor the page you will type in. If you do not want any link to a web site, just type in \u003Cstrong>#\u003C\u002Fstrong> as the URL to type.\u003C\u002Fp>\n\u003Cp>In the \u003Cem>Settings\u003C\u002Fem>, you will also choose to display the ribbon on the left or on the right.\u003C\u002Fp>\n\u003Cp>This has been derived from \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fje-suis-charlie\u002F\" rel=\"ugc\">Julio Potier plugin\u003C\u002Fa> to add extra functions: * Ribbon transparency * Rollover images * Settings choices (position and URL value)\u003C\u002Fp>\n","Show support to Charlie Hebdo with a \"Je Suis Charlie\" ribbon on a corner of your website. Configure the display via the Settings panel.",10,1351,100,1,"2015-01-14T03:45:00.000Z","4.1.42","3.0.1","",[20,21,22],"charlie","jesuischarlie","ribbon","http:\u002F\u002Fapps.mistralconsulting.com\u002Findex.php?fr\u002Fje-suis-charlie","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fje-suis-charlie-ribbon-mc.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"computingfroggy",2,20,93,30,89,"2026-04-05T19:36:59.210Z",[39,61,81,100,119],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":59,"download_link":60,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"show-support-ribbon","Show Support Ribbon","20260130","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cp>Show support for your favorite cause, event, charity, political event, or anything else that&rsquo;s awesome. Show Support Ribbon includes four built-in ribbon styles and makes it easy to customize with your own CSS.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Plug-n-play functionality\u003C\u002Fli>\n\u003Cli>No configuration required\u003C\u002Fli>\n\u003Cli>Regularly updated and “future proof”\u003C\u002Fli>\n\u003Cli>Shortcode and template tag to display the ribbon anywhere\u003C\u002Fli>\n\u003Cli>Limit display of the ribbon to any URL(s)\u003C\u002Fli>\n\u003Cli>Choose one of four built-in ribbon styles\u003C\u002Fli>\n\u003Cli>Customize the ribbon with your own CSS\u003C\u002Fli>\n\u003Cli>Control the link text, link URL, and title text\u003C\u002Fli>\n\u003Cli>Includes copy\u002Fpaste CSS recipes to customize the ribbon\u003C\u002Fli>\n\u003Cli>Includes option to restore default settings\u003C\u002Fli>\n\u003Cli>Super-slick toggling settings page\u003C\u002Fli>\n\u003Cli>Works with or without Gutenberg Block Editor\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Ribbon Styles\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Choose one of the following ways to display your ribbon:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Badge\u003C\u002Fli>\n\u003Cli>Banner\u003C\u002Fli>\n\u003Cli>Ribbon\u003C\u002Fli>\n\u003Cli>Link\u003C\u002Fli>\n\u003Cli>Custom (any text\u002FHTML\u002FCSS)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Much more is possible via the Custom option, which enables you to add your own CSS for custom styling.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin does not collect or store any user data. It does not set any cookies, and it does not connect to any third-party locations. Thus, this plugin does not affect user privacy in any way.\u003C\u002Fp>\n\u003Cp>Show Support Ribbon is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thank you! 🙂\u003C\u002Fp>\n","Displays a customizable \"show support\" ribbon, banner, or badge on your site.",300,24773,12,"2026-01-30T16:39:00.000Z","6.9.4","4.7","5.6.20",[55,56,57,22,58],"badge","banner","button","support","https:\u002F\u002Fperishablepress.com\u002Fshow-support-ribbon\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-support-ribbon.20260130.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":13,"num_ratings":71,"last_updated":72,"tested_up_to":51,"requires_at_least":64,"requires_php":18,"tags":73,"homepage":79,"download_link":80,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"wp-lenta9may","Георгиевская ленточка для сайта","4.0.1","Bahus","https:\u002F\u002Fprofiles.wordpress.org\u002Fbahus\u002F","\u003Cp>Ленточка выводится автоматически в левом верхнем углу с 25 апреля по  12 мая. Всё остальное время лента не показывается.\u003C\u002Fp>\n\u003Cp>P.S. Этот плагин был создан на основе плагина \u003Ca href=\"https:\u002F\u002Fid.wordpress.org\u002Fplugins\u002Fwp-georglenta\u002F\" rel=\"nofollow ugc\">wp-GeorgLenta\u003C\u002Fa>, который последний раз был обновлен 18 лет назад, не работает на многих шаблонах, в конце 2018 года был закрыт и больше недоступен для загрузки.\u003C\u002Fp>\n\u003Cp>Если вам понравился плагин, то, \u003Cstrong>пожалуйста\u003C\u002Fstrong>, поставьте ему 5 звёзд.\u003C\u002Fp>\n","Плагин выводит георгиевскую ленточку в левом углу вашего сайта на cms wordpress.",60,6553,3,"2025-12-06T15:38:00.000Z",[74,75,76,77,78],"9-%d0%bc%d0%b0%d1%8f","%d0%b4%d0%b5%d0%bd%d1%8c-%d0%bf%d0%be%d0%b1%d0%b5%d0%b4%d1%8b","%d0%b3%d0%b5%d0%be%d1%80%d0%b3%d0%b8%d0%b5%d0%b2%d1%81%d0%ba%d0%b0%d1%8f-%d0%bb%d0%b5%d0%bd%d1%82%d0%be%d1%87%d0%ba%d0%b0","george-ribbon","victory-day","https:\u002F\u002Fdendrblog.ru\u002Fsozdanie-bloga\u002Fwordpress-plugins\u002Fgeorgievskaya-lenta-na-sayte-wordpress.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-lenta9may.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":13,"num_ratings":14,"last_updated":91,"tested_up_to":51,"requires_at_least":17,"requires_php":92,"tags":93,"homepage":98,"download_link":99,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"smartarget-corner-ribbon","Smartarget Corner Ribbon","1.5","Erez Hadas-Sonnenschein","https:\u002F\u002Fprofiles.wordpress.org\u002Ferezs\u002F","\u003Cp>Corner Ribbon – Promote special offers with Corner Ribbon\u003Cbr \u002F>\nDo you have special deals sometimes? Like Black Friday? Weekend special? Holidays?\u003Cbr \u002F>\nThe Corner Ribbon will be shown to users on all pages, both on desktop and mobile. It allows you to communicate with them about your promotion.\u003Cbr \u002F>\nSmartarget Corner Ribbon plugin works also with WooCommerce, Elementor and Oxygen Builder.\u003C\u002Fp>\n\u003Ch3>Smartarget Corner Ribbon Pro Features:\u003C\u002Fh3>\n\u003Cp>Pro version overcomes your limitations with lite version of Smartarget Corner Ribbon.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Smartarget Corner Ribbon \u003Ca href=\"https:\u002F\u002Fsmartarget.online\u002Fpage_pricing.html\" rel=\"nofollow ugc\">PRO\u003C\u002Fa> Plugin Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Apps visibility on all pages\u003C\u002Fli>\n\u003Cli>No Smartarget label\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n\u003Cp>BUY Smartarget Corner Ribbon Pro Features : \u003Ca href=\"https:\u002F\u002Fsmartarget.online\u002Fpage_pricing.html\" rel=\"nofollow ugc\">Buy Now\u003C\u002Fa>\u003C\u002Fp>\n","Promote special offers with corner ribbon",40,2493,"2026-02-13T13:52:00.000Z","5.2.4",[94,95,96,97,22],"advertisement","corner","corner-ribbon","promotion","https:\u002F\u002Fsmartarget.online","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmartarget-corner-ribbon.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":35,"downloaded":108,"rating":13,"num_ratings":32,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":18,"tags":112,"homepage":117,"download_link":118,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"browser-update-ribbon","Browser Update Ribbon","1.4.3","duckinformatica","https:\u002F\u002Fprofiles.wordpress.org\u002Fduckinformatica\u002F","\u003Cp>Puts a ribbon on the website if the user browser is older than expected.\u003C\u002Fp>\n\u003Cp>Minimum browser versions are customizable in the Settings menu, along with the title and a custom link.\u003Cbr \u002F>\nNow you can set the position and the image of the ribbon.\u003Cbr \u002F>\nThis plugin has full support for translation into other languages\u003C\u002Fp>\n\u003Cp>For more informations: http:\u002F\u002Fwww.duckinformatica.it\u002Fprodotti-e-servizi\u002Ffree-wordpress-plugins\u002F\u003C\u002Fp>\n\u003Cp>This plugin uses the Browser detection library built by [Chris Schuld] https:\u002F\u002Fgithub.com\u002Fcbschuld\u002FBrowser.php\u003C\u002Fp>\n","Puts a ribbon on the website if the user browser is older than expected.",7885,"2016-01-18T09:04:00.000Z","4.4.34","3.0",[113,114,115,22,116],"browser","ie","internet-explorer","update","http:\u002F\u002Fwww.duckinformatica.it","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrowser-update-ribbon.1.4.3.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":35,"downloaded":127,"rating":13,"num_ratings":14,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":134,"download_link":135,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"github-ribbon","Github Ribbon","1.2.1","Sudar Muthu","https:\u002F\u002Fprofiles.wordpress.org\u002Fsudar\u002F","\u003Cp>Github Ribbons is a WordPress Plugin that allows you to add “Fork me on Github” ribbons to your WordPress posts or pages. You can enable the ribbon per post\u002Fpage level or at global level.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>The following are some of the features of the Plugin\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can choose between image based ribbons or CSS3 based ribbons.\u003C\u002Fli>\n\u003Cli>You can choose whether to show the ribbon on the right side or on the left side.\u003C\u002Fli>\n\u003Cli>You can choose whether the link has to open in a new tab or not.\u003C\u002Fli>\n\u003Cli>You can choose any one of the 6 different colours that are available.\u003C\u002Fli>\n\u003Cli>Configuration can be set either globally or on a post by post basic.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Styling using CSS\u003C\u002Fh3>\n\u003Cp>If you want to style the ribbon yourself or add additional CSS styles to it (like adding \u003Ccode>z-index\u003C\u002Fcode> etc) then add it to the \u003Ccode>.robbon-holder\u003C\u002Fcode> CSS class.\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>The development of the Plugin happens over at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsudar\u002Fgithub-ribbon\" rel=\"nofollow ugc\">github\u003C\u002Fa>. If you want to contribute to the Plugin, fork the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsudar\u002Fgithub-ribbon\" rel=\"nofollow ugc\">project at github\u003C\u002Fa> and send me a pull request.\u003C\u002Fp>\n\u003Cp>If you are not familiar with either git or Github then refer to this \u003Ca href=\"http:\u002F\u002Fsudarmuthu.com\u002Fblog\u002Fcontributing-to-project-hosted-in-github\" rel=\"nofollow ugc\">guide to see how fork and send pull request\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you are looking for ideas, then you can start with one of the following TODO items 🙂\u003C\u002Fp>\n\u003Ch3>TODO\u003C\u002Fh3>\n\u003Cp>The following are the features that I am thinking of adding to the Plugin, when I get some free time. If you have any feature request or want to increase the priority of a particular feature, then let me know.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add an ability to translate the text used inside the ribbon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>If you have found a bug\u002Fissue or have a feature request, then post them in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsudar\u002Fgithub-ribbon\u002Fissues\" rel=\"nofollow ugc\">github issues\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>If you have a question about usage or need help to troubleshoot, then post in WordPress forums or leave a comment in \u003Ca href=\"http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fgithub-ribbon\" rel=\"nofollow ugc\">Plugins’s home page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>If you like the Plugin, then kindly leave a review\u002Ffeedback at \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgithub-ribbon\u002F\" rel=\"ugc\">WordPress repo page\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>If you find this Plugin useful or and wanted to say thank you, then there are ways to \u003Ca href=\"http:\u002F\u002Fsudarmuthu.com\u002Fif-you-wanna-thank-me\" rel=\"nofollow ugc\">make me happy\u003C\u002Fa> 🙂 and I would really appreciate if you can do one of those.\u003C\u002Fli>\n\u003Cli>Checkout other \u003Ca href=\"http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa> that I have released.\u003C\u002Fli>\n\u003Cli>If anything else, then contact me in \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fsudarmuthu\" rel=\"nofollow ugc\">twitter\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Translation\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Dutch (Thanks Rene of WPwebshop)\u003C\u002Fli>\n\u003Cli>Spanish (Thanks Mike Arias of InMotion Hosting)\u003C\u002Fli>\n\u003Cli>Hindi (Thanks Love Chandel)\u003C\u002Fli>\n\u003Cli>Lithuanian (Thanks Vincent G)\u003C\u002Fli>\n\u003Cli>German (Thanks  Robert Wetzlmayr)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The pot file is available with the Plugin. If you are willing to do translation for the Plugin, use the pot file to create the .po files for your language and let me know. I will add it to the Plugin after giving credit to you.\u003C\u002Fp>\n\u003Ch3>Readme Generator\u003C\u002Fh3>\n\u003Cp>This Readme file was generated using \u003Ca href='http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fwp-readme' rel=\"nofollow ugc\">wp-readme\u003C\u002Fa>, which generates readme files for WordPress Plugins.\u003C\u002Fp>\n","Adds \"Fork me on Github\" ribbons to your WordPress posts",6958,"2021-10-13T12:16:00.000Z","5.8.13","3.8",[132,133,22],"git","github","http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fgithub-ribbon","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgithub-ribbon.1.2.1.zip",{"attackSurface":137,"codeSignals":156,"taintFlows":178,"riskAssessment":196,"analyzedAt":205},{"hooks":138,"ajaxHandlers":152,"restRoutes":153,"shortcodes":154,"cronEvents":155,"entryPointCount":26,"unprotectedCount":26},[139,144,148],{"type":140,"name":141,"callback":142,"file":143,"line":89},"action","plugins_loaded","my_plugin_load_plugin_textdomain","mc-je-suis-charlie.php",{"type":140,"name":145,"callback":146,"priority":14,"file":143,"line":147},"wp_footer","show_ribbon",141,{"type":140,"name":149,"callback":150,"file":143,"line":151},"admin_menu","mc_jesuischarlie_menu",158,[],[],[],[],{"dangerousFunctions":157,"sqlUsage":158,"outputEscaping":160,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":177},[],{"prepared":26,"raw":26,"locations":159},[],{"escaped":26,"rawEcho":161,"locations":162},6,[163,167,169,171,173,175],{"file":164,"line":165,"context":166},"admin_settings.php",29,"raw output",{"file":164,"line":168,"context":166},79,{"file":164,"line":170,"context":166},96,{"file":143,"line":172,"context":166},68,{"file":143,"line":174,"context":166},71,{"file":143,"line":176,"context":166},86,[],[179],{"entryPoint":180,"graph":181,"unsanitizedCount":14,"severity":195},"\u003Cadmin_settings> (admin_settings.php:0)",{"nodes":182,"edges":192},[183,187],{"id":184,"type":185,"label":186,"file":164,"line":165},"n0","source","$_SERVER['REQUEST_URI']",{"id":188,"type":189,"label":190,"file":164,"line":165,"wp_function":191},"n1","sink","echo() [XSS]","echo",[193],{"from":184,"to":188,"sanitized":194},false,"low",{"summary":197,"deductions":198},"The \"je-suis-charlie-ribbon-mc\" plugin version 1.01 exhibits a concerning security posture primarily due to a lack of output escaping. While the static analysis reveals a minimal attack surface with no apparent direct entry points like AJAX handlers, REST API routes, or shortcodes, the fact that 0% of its outputs are properly escaped presents a significant risk of Cross-Site Scripting (XSS) vulnerabilities. This means that any user-supplied data, even if it doesn't directly trigger a code execution vulnerability, could be injected into the page's HTML and executed by other users' browsers.\n\nThe taint analysis, though limited to one flow, identified an unsanitized path, which, when combined with the unescaped outputs, further strengthens the likelihood of an XSS vulnerability being present. The plugin's vulnerability history is clean, with no recorded CVEs. This might suggest that either the plugin has not been a target of significant attacks or that existing security measures, despite their flaws, have so far prevented exploitable vulnerabilities from being discovered. However, the absence of vulnerabilities is not a guarantee of security, especially when fundamental security practices like output escaping are neglected.\n\nIn conclusion, the plugin's strength lies in its small and seemingly contained attack surface. However, the critical weakness of unescaped output poses a substantial risk of XSS. The lack of historical vulnerabilities should not be interpreted as immunity, and the identified issues in code analysis and taint flow warrant immediate attention. Developers should prioritize implementing proper output escaping for all dynamic content displayed on the frontend.",[199,202],{"reason":200,"points":201},"0% output escaping",8,{"reason":203,"points":204},"Flows with unsanitized paths",5,"2026-03-17T00:42:47.884Z",{"wat":207,"direct":214},{"assetPaths":208,"generatorPatterns":211,"scriptPaths":212,"versionParams":213},[209,210],"\u002Fwp-content\u002Fplugins\u002Fje-suis-charlie-ribbon-mc\u002Fmc-je-suis-charlie-left.png","\u002Fwp-content\u002Fplugins\u002Fje-suis-charlie-ribbon-mc\u002Fmc-je-suis-charlie-right.png",[],[],[],{"cssClasses":215,"htmlComments":217,"htmlAttributes":218,"restEndpoints":219,"jsGlobals":220,"shortcodeOutput":221},[216],"MCJeSuisCharlie",[],[],[],[],[]]