[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fR4U2ek6n58Gd9u_b23w56LOiVR9um4mGnAOz3O-9uyk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":136,"fingerprints":230},"link-preview","URL Preview","1.0","abhisheksaha11","https:\u002F\u002Fprofiles.wordpress.org\u002Fabhisheksaha11\u002F","\u003Cp>This plugin can be used to fetch the excerpt of an external website. The excerpt would contain the title, description and image.\u003C\u002Fp>\n\u003Cp>It also has an option page, which can be used to add CSS to change the look and feel.\u003C\u002Fp>\n","A plugin used to embed the preview of a link similar to facebook and linkedin",100,5630,94,6,"2014-10-22T07:32:00.000Z","4.0.38","3.3","",[20,21,4,22,23],"excerpt","facebook-type-preview","linkedin-type-preview","post","http:\u002F\u002Fajaxtown.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flink-preview.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},1,30,84,"2026-04-04T16:58:22.959Z",[37,58,80,98,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":56,"download_link":57,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"advanced-excerpt","Advanced Excerpt","4.4.1","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Cp>This plugin adds several improvements to WordPress’ default way of creating excerpts.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Keeps HTML markup in the excerpt (and you get to choose which tags are included)\u003C\u002Fli>\n\u003Cli>Trims the excerpt to a given length using either character count or word count\u003C\u002Fli>\n\u003Cli>Only the ‘real’ text is counted (HTML is ignored but kept)\u003C\u002Fli>\n\u003Cli>Customizes the excerpt length and the ellipsis character that are used\u003C\u002Fli>\n\u003Cli>Completes the last word or sentence in an excerpt (no weird cuts)\u003C\u002Fli>\n\u003Cli>Adds a \u003Cem>read-more\u003C\u002Fem> link to the text\u003C\u002Fli>\n\u003Cli>Ignores custom excerpts and use the generated one instead\u003C\u002Fli>\n\u003Cli>Theme developers can use \u003Ccode>the_advanced_excerpt()\u003C\u002Fcode> for even more control (see the FAQ)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Most of the above features are optional and\u002For can be customized by the user or theme developer.\u003C\u002Fp>\n\u003Cp>Banner image credit – \u003Ca href=\"https:\u002F\u002Fwww.flickr.com\u002Fphotos\u002Fchillihead\u002F\" rel=\"nofollow ugc\">chillihead\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Original plugin author – \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fbasvd\" rel=\"nofollow ugc\">basvd\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Useful Resources\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwhat-is-wordpress\u002F\" rel=\"friend nofollow ugc\">What is WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwordpress-themes\" rel=\"friend nofollow ugc\">Fee Themes\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwordpress-plugins\u002F\" rel=\"friend nofollow ugc\">plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Control the appearance of WordPress post excerpts",80000,1542295,86,101,"2024-01-19T20:32:00.000Z","6.4.8","3.2",[53,20,54,23,55],"content","formatting","post-excerpt","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-excerpt\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-excerpt.4.4.1.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":78,"download_link":79,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"toggle-wpautop","Toggle wpautop","1.3.0","Jonathan Desrosiers","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesrosj\u002F","\u003Cp>\u003Cstrong>Note: This plugin does not support the block editor but should continue to work without issue when using it with custom post types and the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor Plugin\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Before WordPress displays a post’s content, the content gets passed through multiple filters to ensure that it safely appears how you enter it within the editor.\u003C\u002Fp>\n\u003Cp>One of these filters is \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fwpautop\" title=\"wpautop\" rel=\"nofollow ugc\">wpautop\u003C\u002Fa>, which replaces double line breaks with \u003Ccode>\u003Cp>\u003C\u002Fcode> tags, and single line breaks with \u003Ccode>\u003Cbr \u002F>\u003C\u002Fcode> tags. However, this filter sometimes causes issues when you are inputting a lot of HTML markup in the post editor.\u003C\u002Fp>\n\u003Cp>This plugin displays a checkbox in the publish meta box of the post edit screen that disables the \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fwpautop\" title=\"wpautop\" rel=\"nofollow ugc\">wpautop\u003C\u002Fa> filter for that post.\u003C\u002Fp>\n\u003Cp>Also adds a ‘wpautop’, or ‘no-wpautop’ class to the post_class filter to help with CSS styling.\u003C\u002Fp>\n","Easily disable the default wpautop filter on a post by post basis.",10000,108022,98,32,"2021-04-07T13:35:00.000Z","5.7.15","3.0","5.6",[75,20,54,76,77],"editor","post-content","wpautop","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftoggle-wpautop","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftoggle-wpautop.1.3.0.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":11,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":18,"requires_php":18,"tags":93,"homepage":96,"download_link":97,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-utf8-excerpt","WP-UTF8-Excerpt","0.8.3","BettyJJ","https:\u002F\u002Fprofiles.wordpress.org\u002Fbettyjj\u002F","\u003Ch4>Main features of the plugin:\u003C\u002Fh4>\n\u003Col>\n\u003Cli>It supports multi-byte language (such as Chinese). It will not produce gibberish as some other excerpt plugins do.\u003C\u002Fli>\n\u003Cli>The html tags in the original posts, i.e., the font styles, colors, hyperlinks, pictures and such are preserved in the excerpt.\u003C\u002Fli>\n\u003Cli>For better readability, it displays 300 characters for each post on the homepage and 150 characters for each post on archive pages.\u003C\u002Fli>\n\u003C\u002Fol>\n","This plugin generates a better excerpt for multi-byte language users (Chinese, for example). Besides, it keeps the html tags in the excerpt.",800,81969,2,"2021-11-30T14:53:00.000Z","5.8.13",[94,20,95,23],"archive","homepage","http:\u002F\u002Fmyfairland.net\u002Fwp-utf8-excerpt\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-utf8-excerpt.0.8.3.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":108,"num_ratings":32,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":18,"tags":112,"homepage":116,"download_link":117,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"excerpt-editor","Excerpt Editor","1.4","Andrew Ozz","https:\u002F\u002Fprofiles.wordpress.org\u002Fazaozz\u002F","\u003Cp>Excerpt Editor provides a convenient place for creating and editing all excerpts. It can also add custom excerpts for pages (not possible without a plugin). Features: auto-creating excerpts when publishing new Posts and Pages, displaying customisable excerpts from the content for posts without an excerpt, appending excerpts from the latest posts to each Post or from the sub-pages to each Page, replacing the content for all archive and tags pages with excerpts (eliminates content duplication for SEO).\u003C\u002Fp>\n\u003Cp>The excerpts can be used in the RSS feed, displayed on the Home or Archive pages and\u002For used for meta descriptions. The excerpts can be in any language supported by WordPress and the plugin contains .pot file to facilitate translations.\u003C\u002Fp>\n","Quick edit or create excerpts for both Posts and Pages, auto-generate and append excerpts or replace the content with excerpts.",600,76991,80,"2009-12-17T09:30:00.000Z","2.9.2","2.6",[113,20,114,23,115],"edit","page","seo","http:\u002F\u002Fwww.laptoptips.ca\u002Fprojects\u002Fwordpress-excerpt-editor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexcerpt-editor.1.4.zip",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":106,"downloaded":126,"rating":11,"num_ratings":32,"last_updated":127,"tested_up_to":50,"requires_at_least":128,"requires_php":18,"tags":129,"homepage":134,"download_link":135,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"recent-posts-widget-plus","Recent Posts Widget Plus","1.2.1","Johan van der Wijk","https:\u002F\u002Fprofiles.wordpress.org\u002Fvanderwijk\u002F","\u003Cp>The Recent Posts Widget Plus plugin allows you to display a list of the most recent posts from all or a specific category or tag. It not only shows the post title, but also an excerpt of the post.\u003C\u002Fp>\n","This plugin allows you to display the most recent posts with an excerpt in a WordPress sidebar widget area.",28667,"2023-10-30T15:07:00.000Z","2.9.3",[20,130,131,132,133],"recent-post","recent-posts","sidebar","widget","http:\u002F\u002Fvanderwijk.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecent-posts-widget-plus.1.2.1.zip",{"attackSurface":137,"codeSignals":170,"taintFlows":197,"riskAssessment":216,"analyzedAt":229},{"hooks":138,"ajaxHandlers":166,"restRoutes":167,"shortcodes":168,"cronEvents":169,"entryPointCount":27,"unprotectedCount":27},[139,145,149,154,158,162],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","wp_head","preview","preview.php",12,{"type":140,"name":146,"callback":147,"file":143,"line":148},"admin_head","at_preview_add_tinymce",21,{"type":150,"name":151,"callback":152,"file":143,"line":153},"filter","mce_external_plugins","at_preview_add_tinymce_plugin",33,{"type":150,"name":155,"callback":156,"file":143,"line":157},"mce_buttons","at_preview_add_tinymce_button",35,{"type":140,"name":159,"callback":160,"file":143,"line":161},"admin_menu","preview_admin_menu",83,{"type":150,"name":163,"callback":164,"file":143,"line":165},"tiny_mce_before_init","wpse24113_tiny_mce_before_init",92,[],[],[],[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":27,"externalRequests":32,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":196},[],{"prepared":27,"raw":27,"locations":173},[],{"escaped":27,"rawEcho":175,"locations":176},9,[177,181,183,185,187,189,191,192,194],{"file":178,"line":179,"context":180},"class.linkpreview.php",34,"raw output",{"file":178,"line":182,"context":180},47,{"file":178,"line":184,"context":180},53,{"file":178,"line":186,"context":180},62,{"file":178,"line":188,"context":180},68,{"file":178,"line":190,"context":180},136,{"file":178,"line":190,"context":180},{"file":143,"line":193,"context":180},17,{"file":143,"line":195,"context":180},121,[],[198],{"entryPoint":199,"graph":200,"unsanitizedCount":90,"severity":215},"\u003Cclass.linkpreview> (class.linkpreview.php:0)",{"nodes":201,"edges":212},[202,207],{"id":203,"type":204,"label":205,"file":178,"line":206},"n0","source","$_GET (x2)",112,{"id":208,"type":209,"label":210,"file":178,"line":190,"wp_function":211},"n1","sink","echo() [XSS]","echo",[213],{"from":203,"to":208,"sanitized":214},false,"low",{"summary":217,"deductions":218},"The \"link-preview\" v1.0 plugin exhibits a mixed security posture. On the positive side, it has a remarkably small attack surface with zero identified entry points such as AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all SQL queries are properly prepared, and there's no indication of dangerous functions or file operations.  The plugin also makes a single external HTTP request, which is a common and often necessary function for previewing links.\n\nHowever, the analysis reveals significant concerns regarding output escaping.  A notable 0% of its total outputs are properly escaped, meaning any data displayed to users could potentially be vulnerable to cross-site scripting (XSS) attacks.  The taint analysis, while limited in scope (only one flow analyzed), did identify a flow with an unsanitized path, which is a strong indicator of a potential security risk, even if not currently classified as critical or high. The complete lack of nonce checks and capability checks on any potential, albeit currently non-existent, entry points is also a weakness that would be problematic if the attack surface were to grow.\n\nThe plugin's vulnerability history is clean, with zero known CVEs, which is a positive sign. This suggests either a historically secure codebase or a lack of rigorous past security audits.  In conclusion, while the plugin boasts a minimal attack surface and good database practices, the critical issue of unescaped output and the identified unsanitized taint flow present a tangible risk that needs immediate attention. The lack of security checks on potential entry points further amplifies these concerns.",[219,221,224,227],{"reason":220,"points":144},"0% of outputs properly escaped",{"reason":222,"points":223},"Flows with unsanitized paths found",10,{"reason":225,"points":226},"0 Nonce checks",5,{"reason":228,"points":226},"0 Capability checks","2026-03-16T21:10:33.071Z",{"wat":231,"direct":237},{"assetPaths":232,"generatorPatterns":233,"scriptPaths":234,"versionParams":236},[],[],[235],"\u002Fwp-content\u002Fplugins\u002Flink-preview\u002Fplugin.js",[],{"cssClasses":238,"htmlComments":240,"htmlAttributes":241,"restEndpoints":243,"jsGlobals":244,"shortcodeOutput":245},[239],"preview_footer",[],[242],"data-src",[],[],[246],"\u003Ctable id=\"at_preview\">"]