[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbGOI3VJSX836PD8TCLELVMz1WR09tczlOAEYD8WqYOw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":133,"fingerprints":257},"kcite","KCite","1.6.3","knowledgeblog","https:\u002F\u002Fprofiles.wordpress.org\u002Fknowledgeblog\u002F","\u003Cp>Interprets the [cite] shortcode to produce citations from the\u003Cbr \u002F>\nappropriate sources, also produces a formatted bibliography at the foot of the\u003Cbr \u002F>\npost, with appropriate links to articles.\u003C\u002Fp>\n\u003Cp>This plugin now uses multiple resources to retrieve metadata about the\u003Cbr \u002F>\nreferences in question, including CrossRef, DataCite, arXiv, PubMed and\u003Cbr \u002F>\narbitrary URLs.\u003C\u002Fp>\n\u003Cp>Additional documentation is available at\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fprocess.knowledgeblog.org\u002Fcategory\u002Fkcite\" rel=\"nofollow ugc\">Process\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Syntax\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>DOI Example – [cite source=’doi’]10.1021\u002Fjf904082b[\u002Fcite]\u003C\u002Fp>\n\u003Cp>PMID example – [cite source=’pubmed’]17237047[\u002Fcite]\u003C\u002Fp>\n\u003Cp>Whichever ‘source’ is identified as the default (see Installation), will work\u003Cbr \u002F>\nwithout the source attribute being set in the shortcode. so:\u003C\u002Fp>\n\u003Cp>[cite]10.1021\u002Fjf904082b[\u002Fcite]\u003C\u002Fp>\n\u003Cp>Will be interpreted correctly as long as DOI is set as the default metadata\u003Cbr \u002F>\nsource.\u003C\u002Fp>\n\u003Cp>Kcite now supports DOIs from both \u003Ca href=\"http:\u002F\u002Fwww.crossref.org\" rel=\"nofollow ugc\">CrossRef\u003C\u002Fa> and\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.datacite.org\" rel=\"nofollow ugc\">DataCite\u003C\u002Fa>. Identifiers from\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.pubmed.org\" rel=\"nofollow ugc\">PubMed\u003C\u002Fa> or \u003Ca href=\"http:\u002F\u002Fwww.arxiv.org\" rel=\"nofollow ugc\">arXiv\u003C\u002Fa> are directly\u003Cbr \u002F>\nsupported. URLs are supported via\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fgreycite.knowledgeblog.org\" rel=\"nofollow ugc\">Greycite\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>From Kcite 1.4, Citeproc-js\u003Cbr \u002F>\n(https:\u002F\u002Fbitbucket.org\u002Ffbennett\u002Fciteproc-js\u002Fwiki\u002FHome) is used to render the\u003Cbr \u002F>\nbibliography on the browser; the main visible change it that Author-Year\u003Cbr \u002F>\ncitation is used. There is now experimental support for reader switching. This\u003Cbr \u002F>\nmust be enabled in the settings page as it is off by default.\u003C\u002Fp>\n\u003Cp>Kcite is developed at http:\u002F\u002Fcode.google.com\u002Fp\u002Fknowledgeblog\u002F in Mercurial. To\u003Cbr \u002F>\ncontact the authors, please email knowledgeblog@googlegroups.com.\u003C\u002Fp>\n\u003Ch3>Copyright\u003C\u002Fh3>\n\u003Cp>This plugin is copyright Phillip Lord, Simon Cockell and Newcastle University\u003Cbr \u002F>\nand is licensed under GPLv3. Citeproc-js which is included is used under the\u003Cbr \u002F>\nAGPLv3.\u003C\u002Fp>\n","A tool for producing citations and bibliographies in Wordpress posts. Developed for the Knowledgeblog project (http:\u002F\u002Fknowledgeblog.org).",50,7744,90,2,"2016-04-07T08:55:00.000Z","4.4.34","3.0","",[20,21,22,23,24],"citations","crossref","doi","pubmed","references","http:\u002F\u002Fknowledgeblog.org\u002Fkcite-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkcite.1.6.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},10050,88,3956,71,"2026-04-04T05:51:52.445Z",[39,56,75,92,115],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":28,"num_ratings":28,"last_updated":49,"tested_up_to":50,"requires_at_least":17,"requires_php":18,"tags":51,"homepage":54,"download_link":55,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"citation-importer","Citation Importer","0.6","Stephanie Leary","https:\u002F\u002Fprofiles.wordpress.org\u002Fsillybean\u002F","\u003Cp>The WordPress Citation Importer plugin imports individual citations, bibliography lists, or lists of DOIs into the WordPress publication database. You may choose which post type to use as the destination. Some custom fields and a taxonomy are specified, but can be filtered (as can the post fields themselves).\u003C\u002Fp>\n\u003Cp>The plugin uses the \u003Ca href=\"http:\u002F\u002Fsearch.crossref.org\u002Fhelp\u002Fapi\" rel=\"nofollow ugc\">CrossRef Metadata API\u003C\u002Fa> to retrieve complete publication information using the citation as a search query.\u003C\u002Fp>\n","Import a citation or bibliography as posts.",20,2122,"2016-08-19T19:51:00.000Z","4.6.30",[52,53,20,21,22],"academic","bibliography","http:\u002F\u002Fstephanieleary.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcitation-importer.0.6.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":47,"downloaded":64,"rating":28,"num_ratings":28,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":72,"download_link":73,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"citation-reference-manager","CiteKit – Citation and Reference Manager","1.0.0","writerspress","https:\u002F\u002Fprofiles.wordpress.org\u002Fwriterspress\u002F","\u003Cp>CiteKit – Citations Manager makes it easy to add professional in-text citations to your WordPress content using simple [cite] shortcodes. Automatically generate a bibliography at the end of your post with [bibliography], styled in APA, MLA, Chicago, Harvard, and other major formats.\u003C\u002Fp>\n\u003Cp>Use the built-in Citation Library to:\u003Cbr \u002F>\n+ Track every citation used across posts\u003Cbr \u002F>\n+ Edit citation details (author, title, year, URL)\u003C\u002Fp>\n\u003Cp>Perfect for bloggers, educators, journalists, and researchers who need clean, consistent citation formatting.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Inline [cite] Shortcode with Auto-ID\u003C\u002Fstrong>\u003Cbr \u002F>\nInsert citations directly into post content using [cite]. Unique citation IDs are automatically generated, or set manually with [cite id=”my-custom-id”].\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Post-Level Citation Editor (Citebox)\u003C\u002Fstrong>\u003Cbr \u002F>\nView and edit all citations associated with a post from a dedicated metabox. Modify author, title, year, or URL without leaving the editor screen.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Centralized Citation Library Dashboard\u003C\u002Fstrong>\u003Cbr \u002F>\nManage all citations across your entire site in one place. Search, filter, and update entries inline to ensure consistency sitewide.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Auto-Generated Bibliography\u003C\u002Fstrong>\u003Cbr \u002F>\nUse the [bibliography] shortcode to automatically output a formatted bibliography for the current post. Entries are ordered and backlink to their corresponding in-text references.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Manual Bibliography Composition\u003C\u002Fstrong>\u003Cbr \u002F>\nCreate a standalone bibliography using [bibliography title=”References”] Source 1 ; Source 2 ; Source 3 [\u002Fbibliography] — ideal for static lists or non-[cite] workflows.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Multiple Citation Style Support\u003C\u002Fstrong>\u003Cbr \u002F>\nOutput citations in APA, MLA, Chicago (Author-Date and Notes), Harvard, or IEEE styles using [bibliography style=”apa|mla|chicago-ad|chicago-nb|harvard|ieee”].\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Tooltip-Style Inline Notes\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd lightweight footnotes or definitions using [tooltip]…[\u002Ftooltip] shortcodes. Renders as clean tooltips with no visual clutter or numbering.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>CiteKit Shortcodes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>[cite] — Inline citation with auto-generated ID\u003C\u002Fli>\n\u003Cli>[cite id=”user-defined-id”] — Inline citation with user-defined ID\u003C\u002Fli>\n\u003Cli>[bibliography title=”Works Cited” style=”mla”] — Formatted reference list  \u003C\u002Fli>\n\u003Cli>[bibliography] Smith, 2026; John Jacobs, The Red Roof, 2021; Mary Martha, Happy Homes, https:\u002F\u002Fhappyhomes.com [\u002Fbibliography] – Manually listed entries\u003C\u002Fli>\n\u003Cli>[tooltip]…[\u002Ftooltip] — Define tooltip annotations\u003C\u002Fli>\n\u003C\u002Ful>\n","Add in-text citations, tooltips, and auto-generated bibliography to your WordPress posts in APA, MLA, Chicago and more.",451,"2025-06-04T20:44:00.000Z","6.8.5","6.1","7.4",[53,20,70,24,71],"footnotes","tooltips","https:\u002F\u002Fcitekit.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcitation-reference-manager.1.0.0.zip",100,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":85,"requires_at_least":86,"requires_php":68,"tags":87,"homepage":18,"download_link":90,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":91},"webkew-wp-references-and-citations","WebKew WP References and Citations","1.0.4","Peshmerge Morad","https:\u002F\u002Fprofiles.wordpress.org\u002Fpeshmerge\u002F","\u003Cp>A WordPress plugin that automatically generates a bibliography from citations added to a WP post\u002Fpage\u002Fcustom post type.\u003C\u002Fp>\n\u003Cp>Use \u003Ccode>\\cite{bibtex_entry_name}\u003C\u002Fcode> in the text and provide the corresponding BibTex entry in the “References” field\u003Cbr \u002F>\nunderneath the text editor. When you visit the page of the post on the front-end, you will see the citations in the text\u003Cbr \u002F>\nin addition, at the end of the content of the page, you will see a new section called “Bibliography” where you can see all used references in the post.\u003C\u002Fp>\n\u003Cp>The plugin has a couple of options:\u003Cbr \u002F>\n1. Enabled Post Types: posts\u002Fpages\u002Fcustom post types.\u003Cbr \u002F>\n2. Bibliography Style (Based on Citation-JS Style): you can choose between APA, Vancouver, and Harvard.\u003Cbr \u002F>\n3. Citation Style (in the text): decide how the \u003Ccode>\\cite{bibtex_entry_name}\u003C\u002Fcode> will appear on the front-end, you can choose between (X) Numerical, (authorX 2024) Author year, or (authorX)Author.\u003Cbr \u002F>\n4. Delete data on uninstall: decide to delete all stored references on plugin uninstall.\u003C\u002Fp>\n","A WordPress plugin that automatically generates a bibliography from citations added to a WP post\u002Fpage\u002Fcustom post type.",10,1106,"6.6.5","5.5",[88,53,89,20,24],"apa","bibtex","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwebkew-wp-references-and-citations.1.0.4.zip","2026-03-15T10:48:56.248Z",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":103,"last_updated":104,"tested_up_to":66,"requires_at_least":105,"requires_php":18,"tags":106,"homepage":110,"download_link":111,"security_score":112,"vuln_count":113,"unpatched_count":28,"last_vuln_date":114,"fetched_at":30},"modern-footnotes","Modern Footnotes","1.4.20","prismtechstudios","https:\u002F\u002Fprofiles.wordpress.org\u002Fprismtechstudios\u002F","\u003Cp>Footnotes optimized for desktop and mobile, inspired by the styles of Grantland and FiveThirtyEight.\u003C\u002Fp>\n\u003Cp>Use a footnote in your post by using the footnote icon in the WordPress editor or by using the shortcode: [mfn]this will be a footnote[\u002Fmfn] The plugin will automatically associate sequential numbers with each plugin.\u003C\u002Fp>\n\u003Cp>On desktop, footnotes will appear as a tooltip when the user clicks on the number. On mobile, footnotes will expand as a section below the current text.\u003C\u002Fp>\n\u003Cp>You can also use the [mfn_list] shortcode to display a list of footnotes used in the article.\u003C\u002Fp>\n\u003Cp>The official GitHub repository is at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fseankwilliams\u002Fmodern-footnotes\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fseankwilliams\u002Fmodern-footnotes\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Shortcode options\u003C\u002Fh3>\n\u003Cp>You can modify some behaviours or styles of your footnotes by using the following options within our shortcode.\u003Cbr \u002F>\n[mfn referencenumber=3]This footnote will have the number 3[\u002Fmfn]\u003Cbr \u002F>\n[mfn class=’my-pretty-class’]This footnote will have ‘my-pretty-class’ as additional class, allowing for custom styling of individual footnotes.[\u002Fmfn]\u003Cbr \u002F>\n[mfn referencereset=’true’]This footnote will reset the footnote counter and therfore receive 1 as its number. Following footnotes will also receive their number according to this new start.[\u002Fmfn]\u003C\u002Fp>\n","Add inline footnotes to your posts. On desktop, the footnotes will appear as tooltips. On mobile, the footnote will expand beneath the text.",6000,112461,96,32,"2025-06-18T23:20:00.000Z","4.6",[20,70,107,108,109],"inline-citations","inline-footnotes","mobile-friendly-citations","http:\u002F\u002Fprismtechstudios.com\u002Fmodern-footnotes","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmodern-footnotes.1.4.20.zip",97,3,"2025-06-19 00:00:00",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":128,"requires_at_least":86,"requires_php":18,"tags":129,"homepage":18,"download_link":132,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"resizable-editor-sidebar","Resizable Sidebar for the Gutenberg Block Editor","1.3.0","Toast Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Ftoastwebsites\u002F","\u003Cp>An intuitive solution to make the default WordPress Gutenberg sidebar resizable.\u003C\u002Fp>\n\u003Ch3>Key points\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Functions straight out of the box\u003C\u002Fli>\n\u003Cli>An easy to use drag and drop interface\u003C\u002Fli>\n\u003Cli>Preferences are saved directly to your machine so your editors can work along side you with their own preference.\u003C\u002Fli>\n\u003C\u002Ful>\n","An intuitive solution to make the default WordPress Gutenberg sidebar resizable.",2000,30990,92,9,"2026-01-08T11:01:00.000Z","6.9.4",[130,131],"preferences","user-interface","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fresizable-editor-sidebar.1.3.0.zip",{"attackSurface":134,"codeSignals":179,"taintFlows":197,"riskAssessment":247,"analyzedAt":256},{"hooks":135,"ajaxHandlers":167,"restRoutes":168,"shortcodes":169,"cronEvents":178,"entryPointCount":14,"unprotectedCount":28},[136,142,148,152,156,160,164],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","admin_menu","admin_page_init","kcite-admin.php",25,{"type":143,"name":144,"callback":145,"priority":146,"file":147,"line":36},"filter","the_content","bibliography_filter",12,"kcite.php",{"type":143,"name":144,"callback":149,"priority":150,"file":147,"line":151},"bibliography_section_filter",14,74,{"type":137,"name":153,"callback":154,"file":147,"line":155},"wp_footer","add_script",84,{"type":143,"name":157,"callback":158,"priority":126,"file":147,"line":159},"plugin_action_links","refman_settings_link",95,{"type":143,"name":161,"callback":162,"file":147,"line":163},"query_vars","kcite_query_vars",98,{"type":137,"name":165,"callback":166,"file":147,"line":74},"template_redirect","kcite_template_redirect",[],[],[170,174],{"tag":171,"callback":172,"file":147,"line":173},"cite","cite_shortcode",78,{"tag":175,"callback":176,"file":147,"line":177},"fullcite","fullcite_shortcode",81,[],{"dangerousFunctions":180,"sqlUsage":181,"outputEscaping":183,"fileOperations":28,"externalRequests":185,"nonceChecks":184,"capabilityChecks":184,"bundledLibraries":196},[],{"prepared":28,"raw":28,"locations":182},[],{"escaped":184,"rawEcho":185,"locations":186},1,4,[187,190,192,194],{"file":140,"line":188,"context":189},147,"raw output",{"file":140,"line":191,"context":189},163,{"file":140,"line":193,"context":189},177,{"file":147,"line":195,"context":189},132,[],[198,232],{"entryPoint":199,"graph":200,"unsanitizedCount":230,"severity":231},"admin_save (kcite-admin.php:188)",{"nodes":201,"edges":225},[202,207,213,217,219,223],{"id":203,"type":204,"label":205,"file":140,"line":206},"n0","source","$_POST (x4)",190,{"id":208,"type":209,"label":210,"file":140,"line":211,"wp_function":212},"n1","sink","update_option() [Settings Manipulation]",189,"update_option",{"id":214,"type":204,"label":215,"file":140,"line":216},"n2","$_POST['kcite_citation_timeout']",194,{"id":218,"type":209,"label":210,"file":140,"line":216,"wp_function":212},"n3",{"id":220,"type":204,"label":221,"file":140,"line":222},"n4","$_POST['kcite_fallback_identifier']",198,{"id":224,"type":209,"label":210,"file":140,"line":222,"wp_function":212},"n5",[226,228,229],{"from":203,"to":208,"sanitized":227},false,{"from":214,"to":218,"sanitized":227},{"from":220,"to":224,"sanitized":227},6,"low",{"entryPoint":233,"graph":234,"unsanitizedCount":28,"severity":231},"\u003Ckcite-admin> (kcite-admin.php:0)",{"nodes":235,"edges":242},[236,237,238,239,240,241],{"id":203,"type":204,"label":205,"file":140,"line":206},{"id":208,"type":209,"label":210,"file":140,"line":211,"wp_function":212},{"id":214,"type":204,"label":215,"file":140,"line":216},{"id":218,"type":209,"label":210,"file":140,"line":216,"wp_function":212},{"id":220,"type":204,"label":221,"file":140,"line":222},{"id":224,"type":209,"label":210,"file":140,"line":222,"wp_function":212},[243,245,246],{"from":203,"to":208,"sanitized":244},true,{"from":214,"to":218,"sanitized":244},{"from":220,"to":224,"sanitized":244},{"summary":248,"deductions":249},"The kcite plugin version 1.6.3 presents a generally positive security posture based on the static analysis.  The plugin demonstrates good practices by not exposing any AJAX handlers or REST API routes without proper authentication and authorization checks, which significantly limits its attack surface.  Furthermore, all SQL queries utilize prepared statements, indicating a strong defense against SQL injection vulnerabilities. The absence of file operations and dangerous functions is also a positive sign. However, there are areas for improvement.  The low percentage of properly escaped output (20%) is a significant concern, as it exposes the plugin to potential Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully.  While no critical or high severity taint flows were detected, one flow with an unsanitized path suggests a potential for indirect path traversal vulnerabilities, which warrants further investigation. The plugin's vulnerability history is clean, with no recorded CVEs, suggesting a track record of secure development or infrequent targeting, but this cannot be solely relied upon for long-term security. The overall security is good due to the lack of common critical vulnerabilities, but the output escaping and unsanitized path flow are notable weaknesses that could be exploited.",[250,253],{"reason":251,"points":252},"Low output escaping percentage",8,{"reason":254,"points":255},"Unsanitized path flow detected",5,"2026-03-16T22:00:26.669Z",{"wat":258,"direct":267},{"assetPaths":259,"generatorPatterns":264,"scriptPaths":265,"versionParams":266},[260,261,262,263],"\u002Fwp-content\u002Fplugins\u002Fkcite-citeproc\u002Fxmldom.js","\u002Fwp-content\u002Fplugins\u002Fkcite-citeproc\u002Fciteproc.js","\u002Fwp-content\u002Fplugins\u002Fkcite-citeproc\u002Fkcite_locale_style.js","\u002Fwp-content\u002Fplugins\u002Fkcite-citeproc\u002Fkcite.js",[],[260,261,262,263],[],{"cssClasses":268,"htmlComments":270,"htmlAttributes":274,"restEndpoints":276,"jsGlobals":278,"shortcodeOutput":281},[269],"kcite-section",[271,272,273],"\u003C!-- Kcite Plugin Installed","-->","\u003C!-- kcite-section",[275],"kcite-section-id",[277],"\u002Fwp-json\u002Fkcite-",[279,280],"window.kcite","window.kcite_locale_style",[282],"\u003Cdiv class=\"kcite-section\""]