[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fcu84srBuxdXMbdwZk-b3cbVDCcUtRTD7AfzoqAqZAi8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":139,"fingerprints":221},"lh-multisite-cors","LH Multisite CORS","1.02","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>AJAX requests to this site from another (those containing an Origin header) will be allowed for any domain in your multisite setup, no configuration required\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-multisite-cors\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-multisite-cors\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n","Allows AJAX requests from other sites in your multisite network even if they are on another domain or subdomain",300,11995,74,3,"2022-07-30T16:21:00.000Z","6.0.11","3.6","",[20,21,22],"ajax","cors","rest","https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-multisite-cors\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-multisite-cors.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},77,14650,87,7,91,"2026-04-04T07:06:00.271Z",[38,58,79,101,120],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":14,"last_updated":49,"tested_up_to":50,"requires_at_least":17,"requires_php":18,"tags":51,"homepage":52,"download_link":53,"security_score":54,"vuln_count":55,"unpatched_count":56,"last_vuln_date":57,"fetched_at":28},"wp-cors","WP-CORS","0.2.2","tstephenson","https:\u002F\u002Fprofiles.wordpress.org\u002Ftstephenson\u002F","\u003Cp>My use case is to allow content authors to write help pages in WordPress.\u003Cbr \u002F>\nThis content is fetched and embedded into a single page application hosted on another domain.\u003C\u002Fp>\n\u003Cp>AJAX requests to this site from another are typically disallowed by the browser’s security model.\u003Cbr \u002F>\nTo permit legitimate uses the requesting browser may include an Origin header containing its domain.\u003Cbr \u002F>\nThis plugin uses the Origin header to decide whether to allow the request or not.\u003Cbr \u002F>\nAllowed domains can be specified in the plugin’s Settings page.\u003C\u002Fp>\n","Allows AJAX requests from other sites to integrate content from your site using the CORS standard.",1000,38949,46,"2023-07-28T08:12:00.000Z","6.2.9",[20,21,22],"http:\u002F\u002Fknowprocess.com\u002Fwp-plugins\u002Fwp-cors","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-cors.0.2.2.zip",61,2,1,"2026-01-28 00:00:00",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":13,"num_ratings":14,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":78,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"enable-cors","Enable CORS","2.0.2","Dev Kabir","https:\u002F\u002Fprofiles.wordpress.org\u002Fdevkabir\u002F","\u003Cp>Are you tired of dealing with pesky CORS errors on your website? Do you want to finally be able to access cross-origin resources with ease? Look no further! This plugin is here to solve all of your CORS issues. With just a few simple clicks, you can enable CORS support on your website and say goodbye to frustrating error messages. Plus, This tool is easy to use and compatible with all major browsers. Don’t miss out on this game-changing solution! Try today and revolutionize the way you access cross-origin resources.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FbFru6VCZ7KA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F-WGML9mZmPo?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>What is CORS ?\u003C\u002Fh3>\n\u003Cp>CORS (Cross-Origin Resource Sharing) is a security feature implemented by web browsers that blocks web pages from making requests to a different domain than the one that served the web page. This is done to prevent malicious websites from making unauthorized requests to other websites on behalf of the user.\u003C\u002Fp>\n\u003Cp>However, there may be legitimate reasons for a web page to make requests to a different domain, such as accessing a third-party API or including resources from a CDN. In these cases, the server that the web page is making the request to can include special headers in its responses that tell the browser to allow the web page to access the resources.\u003C\u002Fp>\n\u003Cp>If a web page tries to make a request to a different domain and the server doesn’t include the necessary CORS headers, the browser will block the request and the web page will receive a CORS error. This can be frustrating for developers, as it can prevent them from accessing resources they need to build their websites or applications.\u003C\u002Fp>\n\u003Ch3>Does the cors error occur on WordPress?\u003C\u002Fh3>\n\u003Cp>Yes, CORS errors can occur on WordPress websites. WordPress is a content management system (CMS) that runs on a web server and serves web pages to users through a web browser. As with any other web page, CORS errors can occur when a WordPress website tries to make requests to a different domain and the server doesn’t include the necessary CORS headers in its responses.\u003C\u002Fp>\n\u003Cp>There are several reasons why a WordPress website might encounter CORS errors. For example, the website might be using a plugin or theme that makes requests to an external API or includes resources from a different domain. In this case, the server hosting the API or resources would need to include the necessary CORS headers in its responses to allow the WordPress website to access them.\u003C\u002Fp>\n\u003Cp>Another possible cause of CORS errors on WordPress websites is if the website is hosted on a server that has CORS headers disabled. In this case, the website would not be able to make requests to any other domains, even if the server hosting those domains includes the necessary CORS headers.\u003C\u002Fp>\n\u003Cp>To fix CORS errors on a WordPress website, you will need to either configure the server to include the necessary CORS headers or modify the website to make requests to a different domain that does include the necessary headers. It’s also possible to use a plugin or other tool to enable CORS support on your WordPress website.\u003C\u002Fp>\n\u003Ch3>How do I enable cors without a plugin in WordPress?\u003C\u002Fh3>\n\u003Cp>There are a few different ways you can enable CORS support on a WordPress website without using a plugin.\u003C\u002Fp>\n\u003Cp>Modify the server configuration: If you have access to the server that your WordPress website is hosted on, you can enable CORS by adding the necessary headers to the server’s configuration. The exact steps for doing this will depend on the type of server you are using and how it is configured.\u003C\u002Fp>\n\u003Cp>Be aware that modifying the server configuration or adding code to your WordPress website can have unintended consequences, so it’s a good idea to test any changes thoroughly before deploying them to a production environment.\u003C\u002Fp>\n\u003Ch3>How does your plugin help with CORS support?\u003C\u002Fh3>\n\u003Cp>This plugin adds support for CORS to your WordPress website, allowing you to specify which domains are allowed to access your website’s resources, and which types of requests are allowed. This helps to ensure that your website remains secure while allowing authorized access to resources from other domains.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>If your site is serving data to others, then This plugin will work. Otherwise, do not install this plugin, It will be waste of your time only.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Why Choose ‘Enable CORS’\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Save Time\u003C\u002Fstrong>: No more manual configuration of CORS headers. This plugin does it for you.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Improve Security\u003C\u002Fstrong>: Specify which domains are allowed to access your website’s resources.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ease of Use\u003C\u002Fstrong>: This plugin is easy to use and compatible with all major browsers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Excellent Support\u003C\u002Fstrong>: I offer top-notch \u003Cstrong>paid support\u003C\u002Fstrong> to assist you whenever you need help.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Try ‘Enable CORS’ today and experience the difference!\u003C\u002Fp>\n\u003Ch3>Testing Your Setup\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Source Site\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Install and activate the \u003Cstrong>Enable CORS\u003C\u002Fstrong> plugin.\u003C\u002Fli>\n\u003Cli>Install and activate the \u003Cstrong>Cors Tester\u003C\u002Fstrong> plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Target Site\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Install and activate the \u003Cstrong>CORS Shortcode Plugin\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>It will add a page with a short code \u003Ccode>[cors_display]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Edit and save the page content as follows:\u003Cbr \u002F>\n \u003Ccode>php\u003Cbr \u002F>\n[cors_display base_url=\"http:\u002F\u002Fsource-site.com\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>If you don’t provide a \u003Ccode>base_url\u003C\u002Fcode>, it will default to the target site’s URL. So cors will be failed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Testing\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Visit the page where you added the shortcode. If everything is set up correctly, the current time data from the \u003Cstrong>Source Site\u003C\u002Fstrong> will be displayed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>For a detailed walkthrough and additional help on testing your configuration, please refer to the following link: \u003Ca href=\"https:\u002F\u002Fgist.github.com\u002Fdevkabir\u002F89972aa28d2302cecf13385be1730eda\" rel=\"nofollow ugc\">How to Test Your Setup\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Note to all users\u003C\u002Fh3>\n\u003Cp>I appreciate your understanding that this project is pursued in my spare time, outside of my regular professional commitments. As such, there may be delays in responding to inquiries or implementing updates. I assure you that I am committed to this project, as I personally use this plugin for my own website and for several of my clients. If you are comfortable with this arrangement, I encourage you to install the plugin. However, if immediate support and frequent updates are crucial for you, I kindly suggest exploring other options that may better suit your needs.\u003C\u002Fp>\n\u003Ch3>Thank You\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fyanabelle\u002F\" rel=\"nofollow ugc\">Dakini\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Firinashl\u002F\" rel=\"nofollow ugc\">Irina\u003C\u002Fa> for their contributions to the Russian translation.\u003C\u002Fli>\n\u003C\u002Ful>\n","Please read the plugin description before installing to ensure compatibility and avoid potential issues. This plugin will be free forever.",6000,82226,"2026-02-20T15:14:00.000Z","6.9.4","4.7","7.1",[20,21,73,74,75],"enable","error","fix","https:\u002F\u002Fwww.fiverr.com\u002Fshare\u002F7kXeLW","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenable-cors.2.0.2.zip",100,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":26,"num_ratings":26,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":98,"download_link":99,"security_score":100,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"cocart-cors","CoCart CORS Support","1.0.7","CoCart Headless","https:\u002F\u002Fprofiles.wordpress.org\u002Fcocartforwc\u002F","\u003Cp>This free add-on for \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcart-rest-api-for-woocommerce\u002F\" rel=\"ugc\">CoCart\u003C\u002Fa> enables support for CORS to allow CoCart to work across multiple domains.\u003C\u002Fp>\n\u003Cp>Simply install and activate. \u003Cstrong>No configuration required!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>★★★★★\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>An excellent plugin, which makes building a headless WooCommerce experience a breeze. Easy to use, nearly zero setup time. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fexcellent-plugin-8062\u002F\" rel=\"ugc\">Harald Schneider\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>🧰 Developer Tools\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcocart-headless\u002Fcocart-beta-tester\" rel=\"nofollow ugc\">CoCart Beta Tester\u003C\u002Fa>\u003C\u002Fstrong> allows you to easily update to pre-release versions of CoCart Lite for testing and development purposes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcocart-headless\u002Fcocart-vscode\" rel=\"nofollow ugc\">CoCart VSCode\u003C\u002Fa>\u003C\u002Fstrong> extension for Visual Studio Code adds snippets and autocompletion of functions, classes and hooks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcocart-headless\u002Fcocart-product-support-boilerplate\" rel=\"nofollow ugc\">CoCart Product Support Boilerplate\u003C\u002Fa>\u003C\u002Fstrong> provides a basic boilerplate for supporting a different product types to add to the cart with validation including adding your own parameters.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcocart-headless\u002Fcocart-cart-callback-example\" rel=\"nofollow ugc\">CoCart Cart Callback Example\u003C\u002Fa>\u003C\u002Fstrong> provides you an example of registering a callback that can be triggered when updating the cart.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>★★★★★\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Amazing Plugin. I’m using it to create a react-native app with WooCommerce as back-end. This plugin is a life-saver! \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Famazing-plugin-1562\u002F\" rel=\"ugc\">Daniel Loureiro\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>👍 Add-ons to further enhance CoCart\u003C\u002Fh4>\n\u003Cp>We also have other add-ons that extend CoCart to enhance your development and your customers shopping experience.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcocart-get-cart-enhanced\u002F\" rel=\"ugc\">CoCart – Cart Enhanced\u003C\u002Fa>\u003C\u002Fstrong> enhances the data returned for the cart and the items added to it.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcocart-jwt-authentication\u002F\" rel=\"ugc\">CoCart – JWT Authentication\u003C\u002Fa>\u003C\u002Fstrong> allows you to authenticate via a simple JWT Token.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcocart-rate-limiting\u002F\" rel=\"ugc\">CoCart – Rate Limiting\u003C\u002Fa>\u003C\u002Fstrong> enables the rate limiting feature.\u003C\u002Fli>\n\u003Cli>and more add-ons in development.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>They work with the core of CoCart already, and these add-ons of course come with support too.\u003C\u002Fp>\n\u003Ch3>⌨️ Join our growing community\u003C\u002Fh3>\n\u003Cp>A Discord community for developers, WordPress agencies and shop owners building the fastest and best headless WooCommerce stores with CoCart.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcocartapi.com\u002Fcommunity\u002F?utm_medium=wp.org&utm_source=wordpressorg&utm_campaign=readme&utm_content=cocart\" rel=\"nofollow ugc\">Join our community\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>🐞 Bug reports\u003C\u002Fh3>\n\u003Cp>Bug reports for CoCart CORS Support are welcomed in the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcocart-headless\u002Fcocart-cors\u002Fissues\" rel=\"nofollow ugc\">CoCart CORS repository on GitHub\u003C\u002Fa>. Please note that GitHub is not a support forum, and that issues that aren’t properly qualified as bugs will be closed.\u003C\u002Fp>\n\u003Ch3>More information\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>The official \u003Ca href=\"https:\u002F\u002Fcocartapi.com\u002F?utm_medium=website&utm_source=wpplugindirectory&utm_campaign=readme&utm_content=readmelink\" rel=\"nofollow ugc\">CoCart API plugin\u003C\u002Fa> website.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcocart.dev\u002F?utm_medium=website&utm_source=wpplugindirectory&utm_campaign=readme&utm_content=readmelink\" rel=\"nofollow ugc\">CoCart for Developers\u003C\u002Fa>, an official hub for resources you need to be productive with CoCart and keep track of everything that is happening with the API.\u003C\u002Fli>\n\u003Cli>The CoCart \u003Ca href=\"https:\u002F\u002Fdocs.cocart.xyz\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Feepurl.com\u002FdKIYXE\" rel=\"nofollow ugc\">Subscribe to updates\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Like, Follow and Star on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fcocartforwc\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fcocartapi\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.instagram.com\u002Fcocartheadless\u002F\" rel=\"nofollow ugc\">Instagram\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fco-cart\u002Fco-cart\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>💯 Credits\u003C\u002Fh4>\n\u003Cp>This plugin is developed and maintained by \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fsebd86\" rel=\"nofollow ugc\">Sébastien Dumont\u003C\u002Fa>.\u003Cbr \u002F>\nFounder of \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fcocartheadless\" rel=\"nofollow ugc\">CoCart Headless, LLC\u003C\u002Fa>.\u003C\u002Fp>\n","Enables support for CORS to allow CoCart to work across multiple domains.",400,7524,"2024-07-26T19:01:00.000Z","6.6.5","5.6","7.4",[21,94,95,96,97],"decoupled","headless","rest-api","woocommerce","https:\u002F\u002Fcocartapi.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcocart-cors.1.0.7.zip",92,{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":78,"downloaded":109,"rating":26,"num_ratings":26,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":18,"tags":113,"homepage":118,"download_link":119,"security_score":78,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"ajax-load-more-rest-api","Ajax Load More: REST API","1.2.6","Darren Cooney","https:\u002F\u002Fprofiles.wordpress.org\u002Fdcooney\u002F","\u003Cp>The REST API extension will enable compatibility between Ajax Load More and the WP REST API plugin.\u003C\u002Fp>\n\u003Cp>Easily access your website data (as JSON) through an HTTP REST API and display the results using the beauty of infinite scrolling with Ajax Load More.\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fconnekthq.com\u002Fplugins\u002Fajax-load-more\u002Fextensions\u002Frest-api\u002F\u003C\u002Fp>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Cp>The REST API add-on works by routing the standard Ajax Load More admin-ajax.php requests through to API endpoints for data retrieval. The data is returned as JSON, then parsed and displayed using Underscore.js styled templates on the front-end of your website.\u003C\u002Fp>\n\u003Cp>Using a simple GET request, a JavaScript Repeater Template and a custom endpoint (\u002Fwp-json\u002Fajaxloadmore\u002Fposts) developed specifically for Ajax Load More, users are able to access website data and infinite scroll the results using the WP REST API.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fconnekthq.com\u002Fplugins\u002Fajax-load-more\u002Fexamples\u002Frest-api-example\u002F\" rel=\"nofollow ugc\">View Example\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","An Ajax Load More extension that adds compatibility for the WP REST API.",8194,"2025-06-05T19:03:00.000Z","6.8.5","4.0",[114,115,116,117,96],"ajax-load-more","endpoints","infinite-scroll","lazy-load","https:\u002F\u002Fconnekthq.com\u002Fplugins\u002Fajax-load-more\u002Fextensions\u002Frest-api\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fajax-load-more-rest-api.1.2.6.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":26,"num_ratings":26,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":18,"tags":133,"homepage":137,"download_link":138,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"hina-ajax-comment","ajax Post Comment","0.1-alpha-20161129","Hinaloe","https:\u002F\u002Fprofiles.wordpress.org\u002Fhnle\u002F","\u003Cp>This plugin allow your site’s comment form makes ajax — non move\u002Freload when user (including both subscriber,  normal viewer, and admins too) post comment!\u003C\u002Fp>\n\u003Cp>Most themes supports this plugin, but if your theme’s \u003Ccode>class_form\u003C\u002Fcode> have not \u003Ccode>comment-form\u003C\u002Fcode>, this plugin non supported.\u003C\u002Fp>\n\u003Cp>And this plugin only can use for \u003Cem>Pure\u003C\u002Fem> WordPress Comment form.\u003Cbr \u002F>\nso, its not able to be used with like Jetpack comment form and other original\u002Foutside comment system\u002Fform.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Feature\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>post comment with ajax\u003C\u002Fli>\n\u003Cli>Lite — this plugin only using a little of jQuery feature to modify DOM, and very tiny js & PHP code.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Require\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You have to install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frest-api\u002F\" rel=\"ugc\">WP REST API v2\u003C\u002Fa> to use this plugin if your site is running on WP 4.4-4.6.\u003C\u002Fp>\n","Post comment form on frontend tobe ajax using WP REST API Version.2",10,1942,"2016-12-01T16:38:00.000Z","4.7.32","4.4",[20,134,135,96,136],"comment","comments","wp-api","https:\u002F\u002Fhinaloe.net\u002Fportfolio\u002Fajax-comment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhina-ajax-comment.zip",{"attackSurface":140,"codeSignals":161,"taintFlows":171,"riskAssessment":209,"analyzedAt":220},{"hooks":141,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":26,"unprotectedCount":26},[142,148,153],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","wp_loaded","add_header","lh-multisite-cors.php",245,{"type":149,"name":150,"callback":151,"priority":128,"file":146,"line":152},"filter","embed_oembed_html","maybe_remove_sandbox",248,{"type":143,"name":154,"callback":155,"file":146,"line":156},"plugins_loaded","plugin_init",271,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":168,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":170},[],{"prepared":56,"raw":56,"locations":164},[165],{"file":146,"line":166,"context":167},88,"$wpdb->get_var() with variable interpolation",{"escaped":26,"rawEcho":26,"locations":169},[],[],[172,198],{"entryPoint":173,"graph":174,"unsanitizedCount":55,"severity":197},"add_header (lh-multisite-cors.php:112)",{"nodes":175,"edges":193},[176,181,187,191],{"id":177,"type":178,"label":179,"file":146,"line":180},"n0","source","$_SERVER",116,{"id":182,"type":183,"label":184,"file":146,"line":185,"wp_function":186},"n1","sink","header() [Header Injection]",154,"header",{"id":188,"type":178,"label":189,"file":146,"line":190},"n2","$_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']",161,{"id":192,"type":183,"label":184,"file":146,"line":190,"wp_function":186},"n3",[194,196],{"from":177,"to":182,"sanitized":195},false,{"from":188,"to":192,"sanitized":195},"medium",{"entryPoint":199,"graph":200,"unsanitizedCount":55,"severity":197},"\u003Clh-multisite-cors> (lh-multisite-cors.php:0)",{"nodes":201,"edges":206},[202,203,204,205],{"id":177,"type":178,"label":179,"file":146,"line":180},{"id":182,"type":183,"label":184,"file":146,"line":185,"wp_function":186},{"id":188,"type":178,"label":189,"file":146,"line":190},{"id":192,"type":183,"label":184,"file":146,"line":190,"wp_function":186},[207,208],{"from":177,"to":182,"sanitized":195},{"from":188,"to":192,"sanitized":195},{"summary":210,"deductions":211},"The \"lh-multisite-cors\" plugin v1.02 exhibits a generally strong security posture based on the provided static analysis.  It demonstrates an absence of known vulnerabilities, dangerous functions, file operations, and external HTTP requests, which are positive indicators. The code also shows good practice in output escaping, with all outputs being properly escaped. However, there are significant concerns regarding the lack of explicit authorization checks across its attack surface and the presence of unsanitized paths identified in the taint analysis.\n\nWhile the plugin reports zero AJAX handlers, REST API routes, shortcodes, or cron events as entry points, the taint analysis revealing two flows with unsanitized paths is a critical flag. This suggests that even without explicitly defined entry points like AJAX or REST API, there might be implicit ways data could be processed without proper sanitization, potentially leading to vulnerabilities if any of these paths are ever exposed or utilized differently. The complete absence of nonce and capability checks further amplifies this concern, as it means any potential data processing could be accessible without proper verification of user intent or permissions.\n\nIn conclusion, the plugin's clean vulnerability history and adherence to output escaping are commendable. Nevertheless, the presence of unsanitized taint flows and the lack of any capability or nonce checks present a notable risk. The developer should prioritize addressing these taint flows and implementing robust authorization mechanisms to ensure data integrity and prevent potential security breaches.",[212,215,218],{"reason":213,"points":214},"Taint flows with unsanitized paths",15,{"reason":216,"points":217},"No nonce checks",8,{"reason":219,"points":217},"No capability checks","2026-03-16T19:59:26.093Z",{"wat":222,"direct":227},{"assetPaths":223,"generatorPatterns":224,"scriptPaths":225,"versionParams":226},[],[],[],[],{"cssClasses":228,"htmlComments":229,"htmlAttributes":230,"restEndpoints":231,"jsGlobals":232,"shortcodeOutput":233},[],[],[],[],[],[]]