[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fB2ismqUy_Z0ovAQcwwEgIrNJYXh-_OJodPeW_Z0dYp0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":54,"analysis":148,"fingerprints":273},"mathjax-latex","MathJax-LaTeX","1.3.13","knowledgeblog","https:\u002F\u002Fprofiles.wordpress.org\u002Fknowledgeblog\u002F","\u003Cp>MathJax enables enables rendering of embedded LaTeX or MathML in HTML pages. This plugin adds this functionality to WordPress. The MathJax JavaScript is inject on-demand only to those pages which require it. This ensures that MathJax is not loaded for all pages, which will otherwise slow loading down.\u003C\u002Fp>\n\u003Cp>The MathJax JavaScript can be delivered from your own server, or you can use the Cloudflare Content Distribution Network (CDN), which is the preferred mechanism as it offers increased speed and stability over hosting the JavaScript and configuring the library yourself.\u003C\u002Fp>\n\u003Cp>You may embed latex using a variety of different syntaxes. The shortcode (https:\u002F\u002Fcodex.wordpress.org\u002FShortcode_API) syntax is preferred. So \u003Ccode>[latex]E=mc^2[\u002Flatex]\u003C\u002Fcode> will work out of the box. This also forces loading of MathJax.\u003C\u002Fp>\n\u003Cp>Additionally, you can use native MathJax syntax — \u003Ccode>$$E=mc^2$$\u003C\u002Fcode> or \u003Ccode>\\(E=mc^2\\)\u003C\u002Fcode>. However, if this is the only syntax used, the plugin must be explicitly told to load MathJax for the current page. This can be achieved by adding a \u003Ccode>[mathjax]\u003C\u002Fcode> shortcode anywhere in the post. For posts with both \u003Ccode>[latex]\u003C\u002Fcode>x\u003Ccode>[\u002Flatex]\u003C\u002Fcode> and \u003Ccode>$$x$$\u003C\u002Fcode> syntaxes this is unnecessary.\u003C\u002Fp>\n\u003Cp>You can use wp-latex syntax, \u003Ccode>$latex E=mc^2$\u003C\u002Fcode>. Parameters can be specified as with wp-latex but will be ignored. This means that MathJax-LaTeX should be a drop-in replacement for wp-latex. Because this conflicts with wp-latex, this behaviour is blocked when wp-latex is present, and must be explicitly enabled in the settings.\u003C\u002Fp>\n\u003Cp>You can also specify \u003Ccode>[nomathjax]\u003C\u002Fcode> — this will block mathjax on the current page, regardless of other tags.\u003C\u002Fp>\n\u003Cp>MathJax-LaTeX is developed on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fphillord\u002Fmathjax-latex\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Copyright\u003C\u002Fh3>\n\u003Cp>This plugin is copyright Phillip Lord, Newcastle University and is licensed under GPLv2.\u003C\u002Fp>\n","This plugin enables MathJax (http:\u002F\u002Fwww.mathjax.org) functionality for WordPress (http:\u002F\u002Fwww.wordpress.org).",10000,169356,88,11,"2025-01-14T16:50:00.000Z","6.7.5","3.0","7.0.0",[20,21,22,23,24],"latex","mathematics","mathjax","mathml","science","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmathjax-latex.1.3.13.zip",91,1,0,"2013-03-25 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"WF-10c1402d-613d-4d72-b488-c0af2bee4d59-mathjax-latex","mathjax-latex-cross-site-request-forgery","MathJax-LaTeX \u003C 1.2 - Cross-Site Request Forgery","The MathJax LaTeX plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions before 1.2. This is due to missing or incorrect nonce validation on the mathjax_plugin_options function. This may make it possible for unauthenticated attackers to arbitrarily change plugin settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C1.2","1.2","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Cross-Site Request Forgery (CSRF)","2024-01-22 19:56:02",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F10c1402d-613d-4d72-b488-c0af2bee4d59?source=api-prod",3956,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":13,"avg_patch_time_days":48,"trust_score":52,"computed_at":53},2,10050,71,"2026-04-04T21:02:58.576Z",[55,72,91,110,127],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":17,"requires_php":25,"tags":69,"homepage":25,"download_link":70,"security_score":71,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"simple-mathjax","Simple Mathjax","2.1.1","Samuel Coskey","https:\u002F\u002Fprofiles.wordpress.org\u002Fsgcoskey\u002F","\u003Cp>This wordpress plugin is yet another simple plugin to load the \u003Ca href=\"http:\u002F\u002Fwww.mathjax.org\" rel=\"nofollow ugc\">MathJax\u003C\u002Fa> scripts at the bottom of all of your pages. It uses a very all-inclusive mathjax configuration by default, with $’s and $$’s the default delimeters for in-line and displayed equations.\u003C\u002Fp>\n\u003Cp>A preference pane is added to the “Settings” group where you can choose whether to use MathJax version 2 or 3, change the MathJax server location (CDN) and the MathJax configuration settings. (See \u003Ca href=\"https:\u002F\u002Fdocs.mathjax.org\u002Fen\u002Flatest\u002Fweb\u002Fstart.html#configuring-mathjax\" rel=\"nofollow ugc\">the mathjax documentation\u003C\u002Fa> for details on the options available.)\u003Cbr \u002F>\nYou can also specify a LaTeX “preamble” of newcommands which will be loaded in a hidden element near the top of each page.\u003C\u002Fp>\n\u003Cp>Fork this plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fboolesrings\u002FSimple-Mathjax-wordpress-plugin\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Yet another plugin to add MathJax support to your wordpress blog. Just wrap your equations inside $ signs and MathJax will render them visually.",4000,47452,94,13,"2025-09-10T09:57:00.000Z","6.8.5",[20,22],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-mathjax.2.1.1.zip",100,{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":71,"num_ratings":82,"last_updated":83,"tested_up_to":68,"requires_at_least":84,"requires_php":85,"tags":86,"homepage":89,"download_link":90,"security_score":71,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"katex","KaTeX","2.2.5","Tom Churchman","https:\u002F\u002Fprofiles.wordpress.org\u002Fbeskhue\u002F","\u003Cp>The KaTeX WordPress plugin enables you to use the fastest \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FKhan\u002FKaTeX\" rel=\"nofollow ugc\">TeX math typesetting engine\u003C\u002Fa> on your WordPress website. You can include TeX inside a \u003Ccode>[katex]...[\u002Fkatex]\u003C\u002Fcode> shortcode or in a Gutenberg block. Either way the math will render beautifully on your website. When using Gutenberg blocks, the equations will render immediately inside your editor!\u003C\u002Fp>\n\u003Cp>Equations in blocks or using the \u003Ccode>[katex display=true]...[\u002Fkatex]\u003C\u002Fcode> shortcode will render on page in display mode–with bigger symbols–centered on their own line.\u003C\u002Fp>\n\u003Cp>For compatibility with other LaTeX plugins, this plugin optionally supports \u003Ccode>[latex]...[\u002Flatex]\u003C\u002Fcode> shortcodes.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fkatex\" rel=\"ugc\">Plugin Website\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Assets\u003C\u002Fh3>\n\u003Cp>This plugin includes minified assets provided by the KaTeX project.\u003Cbr \u002F>\nThe source code is available in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FKaTeX\u002FKaTeX\u002Ftree\u002Fv0.16.22\" rel=\"nofollow ugc\">the KaTeX git repository on GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Use the fastest math typesetting library on your website.",2000,39753,16,"2025-07-21T11:07:00.000Z","5.0","5.3",[73,20,87,22,88],"math","tex","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fkatex","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkatex.2.2.5.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":99,"downloaded":100,"rating":101,"num_ratings":14,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":85,"tags":105,"homepage":107,"download_link":108,"security_score":109,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-katex","WP-KaTeX","1.11.0","ascom","https:\u002F\u002Fprofiles.wordpress.org\u002Fascom\u002F","\u003Cp>The KaTeX WordPress plugin integrates the super-fast \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FKhan\u002FKaTeX\" rel=\"nofollow ugc\">KaTeX math typesetting engine\u003C\u002Fa> with your WordPress website. The plugin allows you to put LaTeX in a \u003Ccode>[latex]...[\u002Flatex]\u003C\u002Fcode> shortcode, and beautiful math appears on your post or page.\u003C\u002Fp>\n\u003Cp>The plugin also has an option to use the excellent \u003Ca href=\"http:\u002F\u002Fwww.jsdelivr.com\" rel=\"nofollow ugc\">jsDelivr CDN\u003C\u002Fa> to load the KaTeX scripts, further increasing the performance of the plugin.\u003C\u002Fp>\n\u003Cp>Equations in \u003Ccode>[latex display=\"true\"]...[\u002Flatex]\u003C\u002Fcode> will be rendered in display mode (rather than inline mode) and centered on its own line.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fandrewsun.com\u002Fprojects\u002Fwp-katex\u002F\" rel=\"nofollow ugc\">Plugin Website\u003C\u002Fa>\u003C\u002Fp>\n","Integrates the super-fast KaTeX LaTeX equation typesetting engine with WordPress. Create beautiful, yet performant math in your posts and pages.",800,22251,92,"2019-08-14T20:59:00.000Z","5.2.24","3.9",[106,73,20,87,22],"equation","https:\u002F\u002Fandrewsun.com\u002Fprojects\u002Fwp-katex\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-katex.1.11.0.zip",85,{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":71,"num_ratings":120,"last_updated":121,"tested_up_to":16,"requires_at_least":84,"requires_php":25,"tags":122,"homepage":124,"download_link":125,"security_score":27,"vuln_count":50,"unpatched_count":29,"last_vuln_date":126,"fetched_at":31},"latex2html","LaTeX2HTML","2.6.2","Van Abel","https:\u002F\u002Fprofiles.wordpress.org\u002Fvan-abel\u002F","\u003Cp>LaTeX2HTML makes you write blog like in LaTeX doc. You can just copy and paste to create a new post in WP from your tex source file, then it will looks like \u003Ccode>amsart\u003C\u002Fcode> document style. It support a lot of raw latex command including theorem like environment and BibTeX style citation.\u003C\u002Fp>\n\u003Ch3>Main Functions\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Enable \u003Ca href=\"https:\u002F\u002Fwww.mathjax.org\" rel=\"nofollow ugc\">MathJax\u003C\u002Fa> to render math formula.\u003C\u002Fli>\n\u003Cli>Translate raw LaTeX (almost all the command of amsart) to HTML+CSS markup.\u003C\u002Fli>\n\u003Cli>Almost every thing is customizable, but also works perfect by default. e.g., support \\newcommand\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Good news, this plugin is free for everyone! Since it’s released under the GPL2, you can use it free of charge on your personal or commercial blog.\u003C\u002Fp>\n","LaTeX2HTML makes you write blog like in LaTeX doc.",300,13732,8,"2025-02-01T04:48:00.000Z",[123,20,22],"html","https:\u002F\u002Flatex2html.vanabel.cn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flatex2html.2.6.2.zip","2024-12-20 20:38:22",{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":118,"downloaded":135,"rating":136,"num_ratings":137,"last_updated":138,"tested_up_to":139,"requires_at_least":140,"requires_php":141,"tags":142,"homepage":146,"download_link":147,"security_score":71,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wpmathpub","WPMathPub","2.1.4","Ron Fredericks","https:\u002F\u002Fprofiles.wordpress.org\u002Fronf\u002F","\u003Cp>Put your plain text \u003Ca href=\"https:\u002F\u002Fwww.biophysicslab.com\u002Fwp-content\u002Fplugins\u002Fwpmathpub\u002Fphpmathpublisher\u002Fdoc\u002Fhelp.html\" rel=\"nofollow ugc\">mathematical expressions\u003C\u002Fa> between [pmath size=xx]…[\u002Fpmath] shortcode tags. Useful xx-size integer values range from 8 to 24 (default is 12).\u003C\u002Fp>\n\u003Cp>Get more information \u003Ca href=\"https:\u002F\u002Fwww.biophysicslab.com\u002Fwordpress-math-publisher-plugin\u002F\" title=\"WPMathPub discussion page\" rel=\"nofollow ugc\">WPMathPub Plugin\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>How To\u003C\u002Fh3>\n\u003Cp>To toggle to the math mode within your blog’s content, you must use the [pmath size=xx]…[\u002Fpmath] markdown tag. The plugin automatically replaces your math text commands into HTML image tags that look sort of like this:\u003Cbr \u002F>\n\u003Cimg src=”MathFileName.png” style=”vertical-align:-xxpx; display: inline-block ;” alt=”your math text command” title=”your math text command”\u002F>.\u003C\u002Fp>\n\u003Cp>Use the shortcode block to enter math equations from the Gutenberg WordPress block editor.\u003C\u002Fp>\n\u003Cp>The math commands must be separated by a space character or surrounded by {}.\u003C\u002Fp>\n\u003Cp>Examples:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>[pmath size=12]S(f)(t)=a_{0}+sum{n=1}{+infty}{a_{n} cos(n omega t)+b_{n} sin(n omega t)}[\u002Fpmath] \u003C\u002Fli>\n\u003Cli>[pmath size=24]delim{lbrace}{matrix{3}{1}{{3x-5y+z=0} {sqrt{2}x-7y+8z=0} {x-8y+9z=0}}}{ }[\u002Fpmath] \u003C\u002Fli>\n\u003Cli>[pmath]delim{|}{{1\u002FN} sum{n=1}{N}{gamma(u_n)} – 1\u002F{2 pi} int{0}{2 pi}{gamma(t) dt}}{|} le epsilon\u002F3[\u002Fpmath]\u003C\u002Fli>\n\u003Cli>[pmath size=16]vec{Del}f(x,y) ~ = ~ {partial{f}}\u002F{partial{x}}hat{i} ~ + ~ {partial{f}}\u002F{partial{y}} hat{j}[\u002Fpmath]\u003C\u002Fli>\n\u003Cli>[pmath size=16]{Del}f(x,y) ~ = ~ {partial{f}}\u002F{partial{x}}i ~ + ~ {partial{f}}\u002F{partial{y}} j[\u002Fpmath]\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Math elements supported:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Usual commands\u003C\u002Fli>\n\u003Cli>Parenthesis\u003C\u002Fli>\n\u003Cli>Math space\u003C\u002Fli>\n\u003Cli>Greek letters\u003C\u002Fli>\n\u003Cli>Symbols\u003C\u002Fli>\n\u003Cli>Arrows\u003C\u002Fli>\n\u003Cli>Sets\u003C\u002Fli>\n\u003Cli>Roots\u003C\u002Fli>\n\u003Cli>Limits\u003C\u002Fli>\n\u003Cli>Big operators\u003C\u002Fli>\n\u003Cli>Delimiters\u003C\u002Fli>\n\u003Cli>Matrix\u003C\u002Fli>\n\u003Cli>Constructions\u003C\u002Fli>\n\u003Cli>Differential operators (Grad, Div, Curl)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.biophysicslab.com\u002Fwp-content\u002Fplugins\u002Fwpmathpub\u002Fphpmathpublisher\u002Fdoc\u002Fhelp.html\" title=\"See complete list of elements and the symbols they generate here\" rel=\"nofollow ugc\">pmath syntax\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Thanx to \u003Ca href=\"https:\u002F\u002Fwww.xm1math.net\u002F\" rel=\"nofollow ugc\">Pascal Brachet\u003C\u002Fa> for the original PhpMathPublisher library.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin uses shortcode tags to display mathematical equations within your WordPress posts, pages, and comments.",24669,84,5,"2025-12-08T22:59:00.000Z","6.9.4","5.2.3","7.0",[21,143,144,24,145],"phpmathpublisher","publisher","symbols","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpmathpub\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpmathpub.2.1.4.zip",{"attackSurface":149,"codeSignals":202,"taintFlows":209,"riskAssessment":266,"analyzedAt":272},{"hooks":150,"ajaxHandlers":187,"restRoutes":188,"shortcodes":189,"cronEvents":200,"entryPointCount":201,"unprotectedCount":29},[151,157,162,167,171,176,179,183],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","admin_menu","admin_page_init","class-mathjax-latex-admin.php",60,{"type":152,"name":158,"callback":159,"file":160,"line":161},"wp_footer","add_script","class-mathjax-latex.php",111,{"type":163,"name":164,"callback":164,"priority":165,"file":160,"line":166},"filter","script_loader_tag",10,112,{"type":163,"name":168,"callback":169,"file":160,"line":170},"the_content","inline_to_shortcode",115,{"type":163,"name":172,"callback":173,"priority":174,"file":160,"line":175},"plugin_action_links","mathjax_settings_link",9,118,{"type":163,"name":168,"callback":177,"file":160,"line":178},"filter_br_tags_on_math",120,{"type":152,"name":180,"callback":181,"file":160,"line":182},"init","allow_mathml_tags",122,{"type":163,"name":184,"callback":185,"file":160,"line":186},"tiny_mce_before_init","allow_mathml_tags_in_tinymce",123,[],[],[190,193,197],{"tag":22,"callback":191,"file":160,"line":192},"mathjax_shortcode",108,{"tag":194,"callback":195,"file":160,"line":196},"nomathjax","nomathjax_shortcode",109,{"tag":20,"callback":198,"file":160,"line":199},"latex_shortcode",110,[],3,{"dangerousFunctions":203,"sqlUsage":204,"outputEscaping":206,"fileOperations":29,"externalRequests":29,"nonceChecks":50,"capabilityChecks":28,"bundledLibraries":208},[],{"prepared":29,"raw":29,"locations":205},[],{"escaped":82,"rawEcho":29,"locations":207},[],[],[210,249],{"entryPoint":211,"graph":212,"unsanitizedCount":29,"severity":248},"admin_save (class-mathjax-latex-admin.php:187)",{"nodes":213,"edges":242},[214,219,224,228,230,234,236,240],{"id":215,"type":216,"label":217,"file":155,"line":218},"n0","source","$_POST (x3)",192,{"id":220,"type":221,"label":222,"file":155,"line":218,"wp_function":223},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":225,"type":216,"label":226,"file":155,"line":227},"n2","$_POST['kblog_mathjax_latex_inline']",197,{"id":229,"type":221,"label":222,"file":155,"line":227,"wp_function":223},"n3",{"id":231,"type":216,"label":232,"file":155,"line":233},"n4","$_POST['kblog_mathjax_custom_location']",205,{"id":235,"type":221,"label":222,"file":155,"line":233,"wp_function":223},"n5",{"id":237,"type":216,"label":238,"file":155,"line":239},"n6","$_POST['kblog_mathjax_config']",211,{"id":241,"type":221,"label":222,"file":155,"line":239,"wp_function":223},"n7",[243,245,246,247],{"from":215,"to":220,"sanitized":244},true,{"from":225,"to":229,"sanitized":244},{"from":231,"to":235,"sanitized":244},{"from":237,"to":241,"sanitized":244},"low",{"entryPoint":250,"graph":251,"unsanitizedCount":29,"severity":248},"\u003Cclass-mathjax-latex-admin> (class-mathjax-latex-admin.php:0)",{"nodes":252,"edges":261},[253,254,255,256,257,258,259,260],{"id":215,"type":216,"label":217,"file":155,"line":218},{"id":220,"type":221,"label":222,"file":155,"line":218,"wp_function":223},{"id":225,"type":216,"label":226,"file":155,"line":227},{"id":229,"type":221,"label":222,"file":155,"line":227,"wp_function":223},{"id":231,"type":216,"label":232,"file":155,"line":233},{"id":235,"type":221,"label":222,"file":155,"line":233,"wp_function":223},{"id":237,"type":216,"label":238,"file":155,"line":239},{"id":241,"type":221,"label":222,"file":155,"line":239,"wp_function":223},[262,263,264,265],{"from":215,"to":220,"sanitized":244},{"from":225,"to":229,"sanitized":244},{"from":231,"to":235,"sanitized":244},{"from":237,"to":241,"sanitized":244},{"summary":267,"deductions":268},"The \"mathjax-latex\" plugin version 1.3.13 exhibits a generally good security posture based on the provided static analysis. The absence of dangerous functions, file operations, and external HTTP requests, along with the exclusive use of prepared statements for SQL queries and proper output escaping, are all positive indicators. The presence of nonce and capability checks, though limited, further contributes to its security. The limited attack surface with no apparent unprotected entry points is also a strength.\n\nHowever, the vulnerability history presents a notable concern. While there are no currently unpatched vulnerabilities, the plugin has a history of one high-severity CVE, specifically Cross-Site Request Forgery (CSRF). The fact that this vulnerability was from 2013, a decade ago, and is not currently unpatched suggests it may have been fixed in subsequent versions, but the existence of a past high-severity issue warrants caution, especially given the plugin's age and potential for unaddressed legacy flaws.  The static analysis, while positive, doesn't explicitly cover all potential CSRF vectors that might have been present in older versions or manifest in specific usage patterns.",[269],{"reason":270,"points":271},"Past High Severity CVE (CSRF)",15,"2026-03-16T17:48:16.045Z",{"wat":274,"direct":282},{"assetPaths":275,"generatorPatterns":279,"scriptPaths":280,"versionParams":281},[276,277,278],"\u002Fwp-content\u002Fplugins\u002Fmathjax-latex\u002Fmathjax-latex.php","\u002Fwp-content\u002Fplugins\u002Fmathjax-latex\u002Fclass-mathjax-latex.php","\u002Fwp-content\u002Fplugins\u002Fmathjax-latex\u002Fclass-mathjax-latex-admin.php",[],[],[],{"cssClasses":283,"htmlComments":284,"htmlAttributes":285,"restEndpoints":286,"jsGlobals":287,"shortcodeOutput":288},[],[],[],[],[],[289,290,291,292,293,294],"[mathjax]","[\u002Fmathjax]","[nomathjax]","[\u002Fnomathjax]","[latex]","[\u002Flatex]"]