[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhPvjIZeO5FFoq2ZhVMTJe4JH4dwoHMoK1NyqxYRFBKM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":7,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":125,"fingerprints":216},"live-search-popup","Live Search Popup","1.4.7","","https:\u002F\u002Fprofiles.wordpress.org\u002Fschimmi\u002F","\u003Cp>This plugin adds Spotlight ™ like live search with an ajax popup to\u003Cbr \u002F>\nthe default search box. See the screenshot.\u003C\u002Fp>\n\u003Cp>It can be used as a widget or directly as a PHP call in the theme.\u003C\u002Fp>\n\u003Cp>The Live Search Plugin is heavily based on John Nunemaker’s\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.wp-plugins-db.org\u002Fplugin\u002Faddicted-to-live-search\u002F\" rel=\"nofollow ugc\">Addicted To Live Search\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Changelog\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>1.4.7 Fix by Tony for “With mouseover on result in IE, there is no background image or color”.\u003C\u002Fli>\n\u003Cli>1.4.6 Added livesearchpopup_resultsbox(width) to put the popup below a search box of your choice, e.g. from a theme.\u003C\u002Fli>\n\u003Cli>1.4.5 Do not initialize if no livesearchpopup_results is found. In contrast to the original live search this plugin does not make sense without the popup anyway. This fixes a JavaScript bug in IE7.\u003C\u002Fli>\n\u003Cli>1.4.4 Use wpurl instead of siteurl to allow installations of WordPress at different addresses (thanks to Draco)\u003C\u002Fli>\n\u003Cli>1.4.3 Use \u003C?php instead of \u003C? in live-search-popup.php\u003C\u002Fli>\n\u003Cli>1.4.2 Force update script to update the plugin.\u003C\u002Fli>\n\u003Cli>1.4.1 Switched to the_post instead of the deprecated wp_start().\u003C\u002Fli>\n\u003Cli>1.4 Finally permalinks work together with this plugin. In addition a “Show all” links was added at the bottom for the case that there are more posts than shown in the popup (thanks to Marco Luthe).\u003C\u002Fli>\n\u003Cli>1.3.4 Moved the placeholder and autocomplete attributes of the search box to JavaScript as they are not XHTML valid (thanks to Marco Luthe)\u003C\u002Fli>\n\u003Cli>1.3.3 Added some print commands in front of get_bloginfos (thanks to upekshapriya who noticed that)\u003C\u002Fli>\n\u003Cli>1.3.2 Force update script to update the plugin.\u003C\u002Fli>\n\u003Cli>1.3.1 Relative paths in css to allow installation which are not at the domain root.\u003C\u002Fli>\n\u003Cli>1.3 Fixed behaviour for change and blur events of the search box. This fixes the “click-through” bug.\u003C\u002Fli>\n\u003Cli>1.2.1 Updated to reflect that it works with 2.3 as well.\u003C\u002Fli>\n\u003Cli>1.2 Bugfixes\u003C\u002Fli>\n\u003Cli>1.1 Bugfixes\u003C\u002Fli>\n\u003Cli>1.0 First release\u003C\u002Fli>\n\u003C\u002Ful>\n","Spotlight (tm) like live search with an ajax popup",40,28002,0,"2008-04-11T07:35:00.000Z","2.5","2.0.2",[18,19,20,21],"ajax","search","sidebar","widget","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Flive-search-popup","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flive-search-popup.1.4.7.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":29,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"schimmi",1,30,84,"2026-04-04T09:14:17.006Z",[35,56,75,93,110],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":7,"tags":50,"homepage":52,"download_link":53,"security_score":54,"vuln_count":30,"unpatched_count":30,"last_vuln_date":55,"fetched_at":26},"search-google","Search by Google","1.9","webvitaly","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebvitaly\u002F","\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fwordpress\u002Fplugins\u002Fsearch-google\u002F\" title=\"Search by Google\" rel=\"nofollow ugc\">Search by Google\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fdonate\u002F\" title=\"Donate\" rel=\"nofollow ugc\">Donate\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fwordpress\u002Fplugins\u002F\" title=\"WordPress plugins\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>“Search by Google” plugin adds Google search form widget. It helps user to search on site using Google.\u003C\u002Fp>\n\u003Ch4>Widget options:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>“Title” (title of the widget);\u003C\u002Fli>\n\u003Cli>“Submit button text” (if left blank than “Google search” text will be used);\u003C\u002Fli>\n\u003Cli>“Search on site” (if left blank than Google will search on current site);\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Useful:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpage-list\u002F\" title=\"list of pages with shortcodes\" rel=\"ugc\">“Page-list” – show list of pages with shortcodes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fiframe\u002F\" title=\"embed content\" rel=\"ugc\">“Iframe” – embed content\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fwordpress\u002Fplugins\u002F\" title=\"WordPress Pro plugins\" rel=\"nofollow ugc\">WordPress Pro plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Search by Google widget.",100,29317,96,9,"2020-09-05T15:27:00.000Z","5.5.18","3.0",[51,19,20,21],"google","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch-google\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-google.1.9.zip",63,"2025-09-05 00:00:00",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":43,"downloaded":64,"rating":43,"num_ratings":30,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":7,"tags":68,"homepage":73,"download_link":74,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"woo-ajax-search","Woo AJAX Search","1.0","Anik Biswas","https:\u002F\u002Fprofiles.wordpress.org\u002Fanik4e\u002F","\u003Cp>WooCommerce AJAX Search is a simple search plugins for searching the WooCommerce product. It has a category filter option to specify the category also.\u003C\u002Fp>\n\u003Cp>Major features in Slick Post include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Woocommerce AJAX Search.\u003C\u002Fli>\n\u003Cli>Product Category Specify.\u003C\u002Fli>\n\u003Cli>Number of Product Option.\u003C\u002Fli>\n\u003Cli>Number of Keypress Option.\u003C\u002Fli>\n\u003Cli>Default Search Page Redirect Off Option.\u003C\u002Fli>\n\u003C\u002Ful>\n","Woo AJAX search is a product searching plugins for WooCommerce with product category.",2112,"2016-09-17T16:49:00.000Z","4.0.38","3.0.1",[69,19,70,71,72],"ajax-search","search-shortcode","search-widget","woocommerce-ajax-search","http:\u002F\u002Frenoyes.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-ajax-search.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":31,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":66,"requires_at_least":87,"requires_php":7,"tags":88,"homepage":91,"download_link":92,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"enhanced-search-form","Enhanced Search Form","0.5","Ono Oogami","https:\u002F\u002Fprofiles.wordpress.org\u002Fono-oogami\u002F","\u003Cp>WordPress has a build-in search system which actually allows searching posts in certain one or mutiple category(s), month archive(s) and tag(s). However, by default you must manually add extra GET\u002F POST parameter to search query to enable these features.\u003C\u002Fp>\n\u003Cp>This plugin enhanced the wordpress search form so visitors can submit a more advanced search query via XHTML visual Form, allowing setting conditions that posts should be in some category(s), publish in which month, having some tag(s) and other conditions. Mutiple conditions are allowed and connected by AND Boolean operation.\u003C\u002Fp>\n\u003Cp>Go to “Installation” tab to see how to install and use this plugin. Goto “Screenshots” tab to see what enhanced search form likes.\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Russian (ru_RU)\u003C\u002Fli>\n\u003C\u002Ful>\n","Enhance wordpress search form to allow searching posts in certain category(s), month archive(s) or tag(s).",14704,60,2,"2014-12-03T15:04:00.000Z","2.8",[89,90,19,20,21],"enhanced-search-form-plugin","form","http:\u002F\u002Foogami.name\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenhanced-search-form.0.5.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":13,"num_ratings":13,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":7,"tags":106,"homepage":108,"download_link":109,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"wp-multicollinks","WP-MulticolLinks","1.0.2","mg12","https:\u002F\u002Fprofiles.wordpress.org\u002Fmg12\u002F","\u003Cp>Show the links with multiple columns layout in the sidebar.\u003Cbr \u002F>\nYou can limit the number of links, switch it between one-column and multiple-column layouts in the sidebar. and you can sort the links or random, use the ‘Show all’ button.\u003C\u002Fp>\n\u003Cp>在侧边栏显示以多栏的布局显示友情链接。\u003Cbr \u002F>\n你可以限制显示链接的数量，在单栏和多栏之间随意切换。并且可以对链接进行排序或随机排列。还可以使用“显示全部”的按钮。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Languages:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>US English (default)\u003C\u002Fli>\n\u003Cli>简体中文\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Demo:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.neoease.com\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.neoease.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Show the links in multiple columns.",20,12851,"2009-01-08T16:44:00.000Z","2.7","2.2",[18,107,20,21],"links","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwp-multicollinks\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-multicollinks.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":43,"num_ratings":30,"last_updated":120,"tested_up_to":121,"requires_at_least":59,"requires_php":7,"tags":122,"homepage":7,"download_link":124,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"search-storm","Multiple Category Search Storm","1.5","imseosrl","https:\u002F\u002Fprofiles.wordpress.org\u002Fimseosrl\u002F","\u003Cp>Search Storm allows you to search for an article by combining multiple categories\u003Cbr \u002F>\nSearch Storm allows you to search:\u003Cbr \u002F>\n1) entering a keyword without selecting a category\u003Cbr \u002F>\n2) entering a keyword and selecting one or more categories\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n","Search Storm allows you to search for an article by combining multiple categories",10,3071,"2016-04-11T13:38:00.000Z","4.4.34",[90,19,20,123,21],"storm","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-storm.1.5.zip",{"attackSurface":126,"codeSignals":147,"taintFlows":190,"riskAssessment":208,"analyzedAt":215},{"hooks":127,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":13,"unprotectedCount":13},[128,134,138],{"type":129,"name":130,"callback":131,"file":132,"line":133},"action","wp_head","livesearchpopup_add","live-search-popup.php",23,{"type":129,"name":135,"callback":136,"file":132,"line":137},"plugins_loaded","widget_livesearchpopup_init",105,{"type":139,"name":140,"callback":141,"file":132,"line":142},"filter","generate_rewrite_rules","live_search_popup_rewrite",116,[],[],[],[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":151,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":189},[],{"prepared":13,"raw":13,"locations":150},[],{"escaped":13,"rawEcho":152,"locations":153},17,[154,157,159,161,162,164,166,168,170,172,174,176,178,180,183,185,187],{"file":132,"line":155,"context":156},13,"raw output",{"file":132,"line":158,"context":156},15,{"file":132,"line":160,"context":156},16,{"file":132,"line":101,"context":156},{"file":132,"line":163,"context":156},29,{"file":132,"line":165,"context":156},31,{"file":132,"line":167,"context":156},50,{"file":132,"line":169,"context":156},52,{"file":132,"line":171,"context":156},53,{"file":132,"line":173,"context":156},55,{"file":132,"line":175,"context":156},73,{"file":132,"line":177,"context":156},75,{"file":132,"line":179,"context":156},97,{"file":181,"line":182,"context":156},"search.php",7,{"file":184,"line":101,"context":156},"search_results.php",{"file":184,"line":186,"context":156},27,{"file":184,"line":188,"context":156},34,[],[191],{"entryPoint":192,"graph":193,"unsanitizedCount":30,"severity":207},"\u003Csearch_results> (search_results.php:0)",{"nodes":194,"edges":204},[195,199],{"id":196,"type":197,"label":198,"file":184,"line":186},"n0","source","$_GET['s']",{"id":200,"type":201,"label":202,"file":184,"line":186,"wp_function":203},"n1","sink","echo() [XSS]","echo",[205],{"from":196,"to":200,"sanitized":206},false,"low",{"summary":209,"deductions":210},"The plugin 'live-search-popup' v1.4.7 exhibits a strong security posture in several key areas. It has zero known CVEs and no recorded vulnerability history, suggesting a well-maintained codebase. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, the plugin uses prepared statements exclusively for its SQL queries and performs no file operations or external HTTP requests, which are common sources of vulnerabilities. This indicates good adherence to secure coding practices in these domains.\n\nHowever, there are significant concerns within the code analysis. The most critical finding is that 100% of the 17 output operations are not properly escaped. This creates a high risk of Cross-Site Scripting (XSS) vulnerabilities, where attackers could inject malicious scripts through user-supplied data that is then displayed on the frontend. Additionally, the taint analysis revealed one flow with an unsanitized path. While no critical or high severity taint flows were identified, this still points to a potential weakness that could be exploited.\n\nIn conclusion, while the plugin has a clean vulnerability history and a small, well-protected attack surface, the complete lack of output escaping is a major security flaw that overshadows its strengths. The presence of an unsanitized path in the taint analysis is also a concern. The plugin needs immediate attention to address the output escaping issue to mitigate the risk of XSS attacks.",[211,213],{"reason":212,"points":158},"All outputs are unescaped",{"reason":214,"points":182},"Flow with unsanitized paths found","2026-03-16T22:05:40.542Z",{"wat":217,"direct":225},{"assetPaths":218,"generatorPatterns":222,"scriptPaths":223,"versionParams":224},[219,220,221],"\u002Fwp-content\u002Fplugins\u002Flive-search-popup\u002Fcss\u002Flive_search.css","\u002Fwp-content\u002Fplugins\u002Flive-search-popup\u002Fjs\u002Fprototype.js","\u002Fwp-content\u002Fplugins\u002Flive-search-popup\u002Fjs\u002Flive_search.js",[],[220,221],[],{"cssClasses":226,"htmlComments":230,"htmlAttributes":231,"restEndpoints":245,"jsGlobals":246,"shortcodeOutput":248},[227,228,229],"livesearchpopup","livesearchpopup_box","livesearchpopup_results",[],[232,233,234,235,236,237,238,239,240,241,242,243,244],"id=\"livesearchpopup_box\"","id=\"livesearchpopup_results\"","id=\"searchform\"","class=\"livesearchpopup\"","class=\"box\"","class=\"spiegel\"","class=\"form\"","class=\"left\"","class=\"editbox\"","class=\"edit\"","class=\"lupe\"","id=\"s\"","name=\"s\"",[],[247],"ls.url",[249,250],"\u003Cdiv class=\"livesearchpopup\">","\u003Cdiv class=\"box\">"]