[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fXRInX7-4WZdgS-m9rErEEzZxo0EF_tpnGjzI93VQlGA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":143,"fingerprints":188},"link-footnotes","Link Footnotes","0.1.7","Aelora","https:\u002F\u002Fprofiles.wordpress.org\u002Faelora\u002F","\u003Cp>Adds a section to the bottom of your pages and posts listing any external\u003Cbr \u002F>\nlinks.\u003C\u002Fp>\n\u003Cp>Only links starting with http or https are included so ftp, mailto, etc\u003Cbr \u002F>\nwill not be included in the list; although it would be pretty trival to\u003Cbr \u002F>\nedit the plugin to allow them to. Likewise any links that start with your\u003Cbr \u002F>\nblog URL are also excluded.\u003C\u002Fp>\n\u003Cp>For more information, you can visit \u003Ca href=\"http:\u002F\u002Fwww.nutt.net\u002Ftag\u002Flink-footnotes\u002F\" rel=\"nofollow ugc\">Nutt.net\u003C\u002Fa>\u003C\u002Fp>\n","Adds a footnotes section to your posts with any external links",10,2573,20,1,"2012-03-30T16:00:00.000Z","3.3.2","2.7","",[20,21,22,23],"footnote","link","links","post","http:\u002F\u002Fwww.nutt.net\u002Ftag\u002Flink-footnotes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flink-footnotes.0.1.7.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"aelora",4,550,30,84,"2026-04-04T23:25:00.949Z",[39,61,82,105,123],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":27,"num_ratings":27,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":58,"download_link":59,"security_score":60,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"raratheme-companion","RaraTheme Companion","1.4.4","Rara Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fraratheme\u002F","\u003Cp>RaraTheme Companion is truly a must have companion for your website. It provides 23 useful and frequently used widgets that you can add to the sidebars to create an engaging website.\u003C\u002Fp>\n\u003Ch3>Widgets offered\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Advertisement\u003C\u002Fli>\n\u003Cli>A Featured Page\u003C\u002Fli>\n\u003Cli>Author Bio\u003C\u002Fli>\n\u003Cli>Call to Action\u003C\u002Fli>\n\u003Cli>Client Logo\u003C\u002Fli>\n\u003Cli>Contact\u003C\u002Fli>\n\u003Cli>Custom Categories\u003C\u002Fli>\n\u003Cli>Facebook Page\u003C\u002Fli>\n\u003Cli>FAQs\u003C\u002Fli>\n\u003Cli>Featured Post\u003C\u002Fli>\n\u003Cli>Icon Text\u003C\u002Fli>\n\u003Cli>Image Text\u003C\u002Fli>\n\u003Cli>Image\u003C\u002Fli>\n\u003Cli>Latest Tweets\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Popular Post\u003C\u002Fli>\n\u003Cli>Posts Category Slider\u003C\u002Fli>\n\u003Cli>Recent Post\u003C\u002Fli>\n\u003Cli>Snapchat\u003C\u002Fli>\n\u003Cli>Social Media\u003C\u002Fli>\n\u003Cli>Stat Counter\u003C\u002Fli>\n\u003Cli>Team Member\u003C\u002Fli>\n\u003Cli>Testimonial\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>The plugin works best with themes developed by Rara Theme.\u003C\u002Fp>\n\u003Cp>The plugin also provides simple yet clean code which allows developers to overwrite the plugin properties. The plugin offers a multiple numbers of filters and action hooks which for maximum flexibility to the developers.\u003C\u002Fp>\n","23 extremely useful custom widgets to create an engaging website.",10000,497772,"2026-01-06T05:43:00.000Z","6.9.4","4.4.0","7.4",[54,55,56,57],"posts","sidebars","social-links","widgets","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fraratheme-companion","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraratheme-companion.1.4.4.zip",100,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":60,"num_ratings":11,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":74,"tags":75,"homepage":80,"download_link":81,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"simple-post-type-permalinks","Simple Post Type Permalinks","2.0.5","Toro_Unit (Hiroshi Urabe)","https:\u002F\u002Fprofiles.wordpress.org\u002Ftoro_unit\u002F","\u003Cp>Edit the permalink structure of custom post type too easy.\u003C\u002Fp>\n\u003Cp>Simple Post Type Permalinks is Simple and Smart than \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-post-type-permalinks\u002F\" rel=\"ugc\">Custom Post Type Permalinks\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Available tags are \u003Ccode>%post_id%\u003C\u002Fcode>, \u003Ccode>%postname%\u003C\u002Fcode>, \u003Ccode>%year%\u003C\u002Fcode>, \u003Ccode>%monthnum%\u003C\u002Fcode>, \u003Ccode>%day%\u003C\u002Fcode>, \u003Ccode>%hour%\u003C\u002Fcode>, \u003Ccode>%minute%\u003C\u002Fcode>, \u003Ccode>%second%\u003C\u002Fcode>, \u003Ccode>%author%\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>Requires PHP version 5.3 or higher.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftorounit\u002Fsimple-post-type-permalinks\" rel=\"nofollow ugc\">This Plugin published on GitHub.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Please Fork and Pull Request!\u003C\u002Fp>\n\u003Ch3>Setting on Code\u003C\u002Fh3>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>register_post_type( 'foo',\n    array(\n        \"public\" => true,\n        'has_archive' => true,\n        \"rewrite\" => [\n            \"with_front\" => true\n        ],\n        \"sptp_permalink_structure\" => \"foo\u002F%post_id%\"\n    )\n);\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Easy to change Permalink of custom post type.",9000,84434,"2019-06-04T22:43:00.000Z","5.2.24","4.0","5.3",[76,77,78,79],"cms","custom-post-type","permalink","permalinks","https:\u002F\u002Fgithub.com\u002Ftorounit\u002Fsimple-post-type-permalinks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-post-type-permalinks.2.0.5.zip",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":94,"tested_up_to":50,"requires_at_least":95,"requires_php":52,"tags":96,"homepage":100,"download_link":101,"security_score":102,"vuln_count":103,"unpatched_count":27,"last_vuln_date":104,"fetched_at":29},"mihdan-no-external-links","No External Links","5.1.8","mihdan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmihdan\u002F","\u003Cp>No External Links converts external links to internal links. Featuring \u003Cem>Full Page or Targeted Content Filtering\u003C\u002Fem>, \u003Cem>Custom Redirect Page\u002FMessage\u003C\u002Fem>, \u003Cem>Encoded Masks\u003C\u002Fem>, \u003Cem>External Link Click Logging\u003C\u002Fem>, \u003Cem>Individual Link Exclusion\u003C\u002Fem>, \u003Cem>Post\u002FPage Specific Exclusion\u003C\u002Fem>, and many more…\u003C\u002Fp>\n\u003Ch4>Example\u003C\u002Fh4>\n\u003Cp>Links like “\u003Cem>https:\u002F\u002Fwordpress.org\u003C\u002Fem>” will be masked into\u003Cbr \u002F>\n“\u003Cem>http:\u002F\u002Fwww.example.com\u002Fgoto\u002Fhttps:\u002F\u002Fwordpress.org\u003C\u002Fem>“.\u003C\u002Fp>\n\u003Ch4>Warning\u003C\u002Fh4>\n\u003Cp>No External Links may conflict with cache plugins.\u003Cbr \u002F>\nUsually adding the redirect page to the caching plugin exclusions works fine, but there are no guarantees.\u003Cbr \u002F>\nCreate a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmihdan-no-external-links\" rel=\"ugc\">support topic\u003C\u002Fa> if you need assistance resolving a caching issue.\u003Cbr \u002F>\n\u003Cstrong>\u003Cem>Please provide as much detail as possible, for example, what version of WordPress & PHP you are using. Which caching plugin you are using. The more information you include the better.\u003C\u002Fem>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Details\u003C\u002Fh4>\n\u003Cp>No External Links is designed for specialists who sell different kinds of advertisements on their web site and care about the number of outgoing links that can be found by search engines. Now you can make all external links internal.\u003C\u002Fp>\n\u003Ch4>How To Use\u003C\u002Fh4>\n\u003Cp>Just do everything like you would normally, and as long as the plugin is active, external links will be automatically masked.\u003C\u002Fp>\n\u003Ch4>Recommended Settings\u003C\u002Fh4>\n\u003Cp>The default settings that are used on a fresh install of the plugin are what we recommend.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Need help with anything? Please create a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmihdan-no-external-links\" rel=\"ugc\">support topic\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Cstrong>\u003Cem>Please provide as much detail as possible, for example, what version of WordPress & PHP you are using. Examples of links that do not work. If you are using a caching plugin, please specify which one. The more information you include the better.\u003C\u002Fem>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Feature Request\u003C\u002Fh4>\n\u003Cp>Want a feature added to this plugin? Create a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmihdan-no-external-links\" rel=\"ugc\">support topic\u003C\u002Fa>.\u003Cbr \u002F>\nWe are always looking to add features to improve our plugin.\u003C\u002Fp>\n\u003Ch4>Localization\u003C\u002Fh4>\n\u003Cp>We apologize that the latest version has changed so much that existing localizations no longer work.\u003Cbr \u002F>\nIf you would like to contribute to the translations please get in touch.\u003C\u002Fp>\n\u003Ch4>Note\u003C\u002Fh4>\n\u003Cp>No External Links \u003Cstrong>does not\u003C\u002Fstrong> make any changes to your database, it just processes the output. So you will not see these changes within the WYSIWYG editor.\u003C\u002Fp>\n","Convert external links into internal links, site wide or post\u002Fpage specific. Add NoFollow, Click logging, and more...",6000,78779,96,16,"2025-11-29T11:53:00.000Z","5.7.4",[97,22,54,98,99],"comments","seo","seo-hide","https:\u002F\u002Fwww.kobzarev.com\u002Fprojects\u002Fno-external-links\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmihdan-no-external-links.5.1.8.zip",98,2,"2025-09-22 00:00:00",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":102,"num_ratings":13,"last_updated":115,"tested_up_to":72,"requires_at_least":116,"requires_php":18,"tags":117,"homepage":121,"download_link":122,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"admin-collapse-subpages","Admin Collapse Subpages","2.4","bravokeyl","https:\u002F\u002Fprofiles.wordpress.org\u002Fbravokeyl\u002F","\u003Cp>Simple plugin that allows you to collapse subpages in the Pages admin list also for custom post types that are heirarchial. Especially helpful if you have a ton of pages \u002Fcpt’s with heiararchial set to true. It uses a cookie to save the expand\u002Fcollapse status of your pages.\u003C\u002Fp>\n\u003Cp>This is loosely based on Collapse Sub-Pages by Dan Dietz, which broke with the 3.0 upgrade due to UI changes and hasn’t been updated. I’ve had to rewrite the jQuery to make it work with 3.x versions.\u003C\u002Fp>\n\u003Cp>Because this is a jQuery, it’s possible that they could make additional changes that would break it. I’ll do my best to stay on top of it, but let me know if it stops working.\u003C\u002Fp>\n\u003Ch3>Plugin in your Language\u003C\u002Fh3>\n\u003Cp>From version 2.3 our plugin supports internationalization, which means you can have plugin in your specified language.\u003C\u002Fp>\n\u003Cp>It’s currently available in US English ,UK English, Chinese, Telugu , Serbian.\u003C\u002Fp>\n\u003Ch3>Support us by Translating\u003C\u002Fh3>\n\u003Cp>Go \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fadmin-collapse-subpages\" rel=\"nofollow ugc\">here\u003C\u002Fa> and translate into your language.\u003C\u002Fp>\n\u003Ch3>Special Thanks\u003C\u002Fh3>\n\u003Cp>We specially thank \u003Ca href=\"http:\u002F\u002Fwww.webhostinghub.com\u002F\" rel=\"nofollow ugc\">Borisa Djuraskovic\u003C\u002Fa> for translating this plugin in Serbian Language.\u003C\u002Fp>\n\u003Cp>What’s new in Version 2.0 ?\u003C\u002Fp>\n\u003Cp>1)Fix en-queuing of scripts .\u003Cbr \u002F>\n2)Expand all , Collapse all links appear only on the pages list not on every list (like plugins ,posts etc.,)\u003Cbr \u002F>\n3)Updated jQuery.cookie.js to 1.4.0\u003C\u002Fp>\n","Using this plugin one can easily collapse\u002Fexpand pages with children and grand children.",4000,46956,"2019-07-09T17:11:00.000Z","4.6",[118,22,119,120,23],"admin","page","pages","https:\u002F\u002Fbravokeyl.com\u002Fadmin-collapse-subpages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-collapse-subpages.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":133,"num_ratings":103,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":137,"tags":138,"homepage":140,"download_link":141,"security_score":142,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"custom-post-type-rewrite","Custom Post Type Rewrite","1.2.1","thingsym","https:\u002F\u002Fprofiles.wordpress.org\u002Fthingsym\u002F","\u003Cp>Custom Post Type Rewrite plugin adds default custom post type permalinks.\u003C\u002Fp>\n\u003Cp>By default, there are no some permalinks of custom post type.\u003Cbr \u002F>\nThe Custom Post Type Rewrite plugin adds permalink structure of custom post type.\u003Cbr \u002F>\nFollowing:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>date-based\u003C\u002Fli>\n\u003Cli>author-based\u003C\u002Fli>\n\u003Cli>front\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note: Regarding has_archive and rewrite in $args of Parameters, the priority of the rewrite rule conforms to register_post_type().\u003C\u002Fp>\n","Custom Post Type Rewrite plugin adds default custom post type permalinks.",1000,15825,60,"2024-08-22T06:53:00.000Z","6.6.5","4.9","5.6",[77,78,139,79],"permalink-structure","https:\u002F\u002Fgithub.com\u002Fthingsym\u002Fcustom-post-type-rewrite","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-post-type-rewrite.1.2.1.zip",92,{"attackSurface":144,"codeSignals":165,"taintFlows":180,"riskAssessment":181,"analyzedAt":187},{"hooks":145,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":164,"entryPointCount":27,"unprotectedCount":27},[146,152,156],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","admin_menu","adminMenu","link-footnotes.php",26,{"type":147,"name":153,"callback":154,"file":150,"line":155},"admin_init","adminInit",27,{"type":157,"name":158,"callback":159,"file":150,"line":160},"filter","the_content","theContentFilter",29,[],[],[],[],{"dangerousFunctions":166,"sqlUsage":167,"outputEscaping":169,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":179},[],{"prepared":27,"raw":27,"locations":168},[],{"escaped":27,"rawEcho":170,"locations":171},3,[172,175,177],{"file":150,"line":173,"context":174},108,"raw output",{"file":150,"line":176,"context":174},113,{"file":150,"line":178,"context":174},125,[],[],{"summary":182,"deductions":183},"The \"link-footnotes\" plugin version 0.1.7 exhibits a generally positive security posture based on the provided static analysis. The absence of any known CVEs and a clean vulnerability history suggest a history of responsible development and maintenance.  Furthermore, the static analysis reveals no identified vulnerabilities such as dangerous functions, SQL injection risks (all SQL queries use prepared statements), or insecure file operations.  The plugin also has a zero attack surface concerning AJAX handlers, REST API routes, and shortcodes, indicating a deliberate effort to limit potential entry points for attackers.\n\nHowever, a significant concern arises from the output escaping signals. With 3 total outputs and 0% properly escaped, this presents a clear risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic data displayed to users that is not properly sanitized before output could be manipulated by an attacker to inject malicious scripts.  The lack of capability checks and nonce checks, while not directly flagged as vulnerabilities due to the zero attack surface, could become risks if the attack surface were to expand in future versions or if specific functionalities were added without proper security controls.\n\nIn conclusion, while the plugin has strong foundations with no known vulnerabilities and a minimal attack surface, the complete lack of output escaping is a critical weakness that needs immediate attention. This single oversight significantly elevates the risk profile of the plugin, despite its otherwise clean record and good practices in other areas.",[184],{"reason":185,"points":186},"Outputs not properly escaped",8,"2026-03-17T01:10:35.812Z",{"wat":189,"direct":194},{"assetPaths":190,"generatorPatterns":191,"scriptPaths":192,"versionParams":193},[],[],[],[],{"cssClasses":195,"htmlComments":197,"htmlAttributes":198,"restEndpoints":199,"jsGlobals":200,"shortcodeOutput":201},[196],"lf_wrapper",[],[],[],[],[202,203,204],"\u003Cdiv class=\"lf_wrapper\">\u003Ch2>Links\u003C\u002Fh2>\u003Cul>","\u003Cdiv class=\"lf_wrapper\">\u003Ch2>","\u003C\u002Fh2>\u003Cul>"]