[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fPzIAfZ7DKbNVIwCYfpKTdBqlHvxMoVd1vetuKq0zTSM":3,"$f186GQAm2gP2WIWaA101on7yYlt5O-7Ir0MJlqap2lko":188,"$fbNsnvs-5Goub_lh2wezss0eqWhv7LHNe2gy02nJ_p6A":193},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":16,"requires_php":16,"tags":17,"homepage":18,"download_link":19,"security_score":20,"vuln_count":21,"unpatched_count":21,"last_vuln_date":22,"fetched_at":23,"discovery_status":24,"vulnerabilities":25,"developer":26,"crawl_stats":22,"alternatives":31,"analysis":32,"fingerprints":156},"just-fading-slider","Just Fading Slider","1.0.5","webmaric","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebmaric\u002F","\u003Cp>It can’t get more simple than this… Just upload photos, save changes, find a convenient place on your page, post or theme, paste shortcode and let them slide. Or in this case – fade…\u003C\u002Fp>\n\u003Cp>The slider is responsive, but all photos should be the same size (width and height). If they are not, they will have the same size and aspect ratio as photo No. 1.\u003C\u002Fp>\n\u003Cp>You can add up to 10 photos, but you don’t have to add them all.\u003C\u002Fp>\n\u003Cp>When you upload photos, save changes, and copy and paste \u003Ccode>[jfslider]\u003C\u002Fcode> somewhere in your post or page…\u003C\u002Fp>\n\u003Cp>To add slider to your template use this code \u003Ccode>echo do_shortcode(\"[jfslider]\");\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>This plugin is my wordpress adaptation of \u003Ca href=\"http:\u002F\u002Fwww.jssor.com\u002Fdemos\u002Fsimple-fade-slideshow.html\" rel=\"nofollow ugc\"> Jssor – Simple Fade Slideshow.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Technical support\u003C\u002Fh4>\n\u003Cp>Dear users, this plugin is available for free download. If you have any questions or recommendations regarding the functionality of this plugin (existing options, new options, current issues), please feel free to contact me. I speak serbian and english.\u003C\u002Fp>\n\u003Cp>If you notice any bugs in the plugin, you can notify me about it and we’ll investigate and fix the issue then. Please don’t hesitate to contact me.\u003C\u002Fp>\n","Donate link: http:\u002F\u002Fwww.zoranmaric.com Tags: photo, images, slider, slide, fading, responsive, simple, jssor Requires at least: 4.",10,2261,80,4,"2018-06-03T20:05:00.000Z","",[],"http:\u002F\u002Fwww.zoranmaric.com\u002Fplg\u002Fjfs.zip","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjust-fading-slider.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":20,"avg_patch_time_days":28,"trust_score":29,"computed_at":30},3,30,84,"2026-05-20T19:17:20.666Z",[],{"attackSurface":33,"codeSignals":79,"taintFlows":143,"riskAssessment":144,"analyzedAt":155},{"hooks":34,"ajaxHandlers":70,"restRoutes":71,"shortcodes":72,"cronEvents":77,"entryPointCount":78,"unprotectedCount":21},[35,41,45,49,53,56,60,63,67],{"type":36,"name":37,"callback":38,"file":39,"line":40},"action","wp_enqueue_scripts","jfs_stil","jfs.php",13,{"type":36,"name":42,"callback":43,"priority":44,"file":39,"line":44},"admin_print_styles","jfs_admin",20,{"type":36,"name":46,"callback":47,"file":39,"line":48},"admin_menu","jfs_create_menu",24,{"type":36,"name":50,"callback":51,"file":39,"line":52},"admin_init","register_jfssettings",29,{"type":36,"name":50,"callback":54,"file":39,"line":55},"jfs_panel",145,{"type":36,"name":37,"callback":57,"priority":58,"file":39,"line":59},"zmjfs_jquery_enqueue",11,147,{"type":36,"name":37,"callback":61,"file":39,"line":62},"jfs_scripts_with_jquery",160,{"type":36,"name":64,"callback":65,"file":39,"line":66},"admin_print_scripts","zmjfs_admin_scripts",170,{"type":36,"name":42,"callback":68,"file":39,"line":69},"zmjfs_admin_styles",171,[],[],[73],{"tag":74,"callback":75,"file":39,"line":76},"jfslider","jfslider_shortcode",260,[],1,{"dangerousFunctions":80,"sqlUsage":81,"outputEscaping":83,"fileOperations":21,"externalRequests":21,"nonceChecks":21,"capabilityChecks":21,"bundledLibraries":142},[],{"prepared":21,"raw":21,"locations":82},[],{"escaped":21,"rawEcho":52,"locations":84},[85,88,90,92,94,96,98,100,102,104,106,108,109,111,113,115,117,119,121,122,124,126,128,130,132,134,136,138,140],{"file":39,"line":86,"context":87},91,"raw output",{"file":39,"line":89,"context":87},95,{"file":39,"line":91,"context":87},99,{"file":39,"line":93,"context":87},103,{"file":39,"line":95,"context":87},107,{"file":39,"line":97,"context":87},111,{"file":39,"line":99,"context":87},115,{"file":39,"line":101,"context":87},119,{"file":39,"line":103,"context":87},123,{"file":39,"line":105,"context":87},127,{"file":39,"line":107,"context":87},176,{"file":39,"line":107,"context":87},{"file":39,"line":110,"context":87},179,{"file":39,"line":112,"context":87},184,{"file":39,"line":114,"context":87},189,{"file":39,"line":116,"context":87},207,{"file":39,"line":118,"context":87},217,{"file":39,"line":120,"context":87},238,{"file":39,"line":120,"context":87},{"file":39,"line":123,"context":87},239,{"file":39,"line":125,"context":87},240,{"file":39,"line":127,"context":87},241,{"file":39,"line":129,"context":87},242,{"file":39,"line":131,"context":87},243,{"file":39,"line":133,"context":87},244,{"file":39,"line":135,"context":87},245,{"file":39,"line":137,"context":87},246,{"file":39,"line":139,"context":87},247,{"file":39,"line":141,"context":87},248,[],[],{"summary":145,"deductions":146},"The 'just-fading-slider' plugin v1.0.5 exhibits a mixed security posture. On the positive side, there are no recorded vulnerabilities (CVEs) or indications of critical or high severity taint flows. All SQL queries are correctly prepared, and there are no file operations or external HTTP requests, which generally reduces the attack surface. However, a significant concern is the complete lack of output escaping for all 29 identified output points. This means that any data rendered by the plugin, if it originates from an untrusted source, could be susceptible to Cross-Site Scripting (XSS) attacks. Furthermore, the absence of nonce checks and capability checks, even for the single shortcode entry point, means that the plugin does not properly verify user permissions or prevent CSRF attacks on its potential interactions.",[147,150,153],{"reason":148,"points":149},"All outputs are unescaped",16,{"reason":151,"points":152},"Missing nonce checks",5,{"reason":154,"points":152},"Missing capability checks","2026-03-17T00:16:55.108Z",{"wat":157,"direct":164},{"assetPaths":158,"generatorPatterns":161,"scriptPaths":162,"versionParams":163},[159,160],"\u002Fwp-content\u002Fplugins\u002Fjust-fading-slider\u002Fcss\u002Fjfs_admin.css","\u002Fwp-content\u002Fplugins\u002Fjust-fading-slider\u002Fcss\u002Fstyle.css",[],[],[],{"cssClasses":165,"htmlComments":170,"htmlAttributes":171,"restEndpoints":184,"jsGlobals":185,"shortcodeOutput":186},[166,167,168,169],"wrap1jsf","wrap2jsf","wrap3jsf","wrap4jsf",[],[172,173,174,175,176,177,178,179,180,181,182,183],"id=\"carform\"","id=\"jfs_image_1\"","id=\"jfs_image_2\"","id=\"jfs_image_3\"","id=\"jfs_image_4\"","id=\"jfs_image_5\"","id=\"jfs_image_6\"","id=\"jfs_image_7\"","id=\"jfs_image_8\"","id=\"jfs_image_9\"","id=\"jfs_image_10\"","id=\"_btn\"",[],[],[187],"[jfslider]",{"error":189,"url":190,"statusCode":191,"statusMessage":192,"message":192},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fjust-fading-slider\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":21,"versions":194},[]]