[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJZVrhnfyHPcsKo3Xg6WXM01I2_NZcDcQtr0Dq5rpg2g":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":132,"fingerprints":184},"mighty-content-locker","Mighty Content Locker","1.0","innocoders","https:\u002F\u002Fprofiles.wordpress.org\u002Finnocoders\u002F","\u003Cp>This plugin will allow you to easily integrate your Content & File Locker produced by \u003Ca href=\"http:\u002F\u002Fwww.mightycontentlocker.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Mighty Content Locker\u003C\u002Fstrong>\u003C\u002Fa> into Your WordPress site.\u003C\u002Fp>\n\u003Cp>No need to edit theme files or anything! Simply provide the Content Locker URL and Your website is now Content Locked!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Mighty Content Locker\u003C\u002Fstrong> is unique and innovative \u003Ca href=\"http:\u002F\u002Fwww.mightycontentlocker.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Content Locking Software\u003C\u002Fstrong>\u003C\u002Fa>\u003Cbr \u002F>\nthat lets You operate unlimited number of Content Lockers on any of Your websites.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.mightycontentlocker.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Mighty Content Locker\u003C\u002Fstrong>\u003C\u002Fa> is Your ‘All In One’ Content Locking Software That Turns All Your Websites into 100% Automated Revenue EXPLODER Cash Machines!!!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Mighty Content Locker\u003C\u002Fstrong> is a pretty powerful \u003Ca href=\"http:\u002F\u002Fwww.mightycontentlocker.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Content Locking Script\u003C\u002Fstrong>\u003C\u002Fa> in the arsenal\u003Cbr \u002F>\nof every Online Marketer and CPA Marketer. It is being used by hundreds of Webmasters ranging from new and advanced alike!\u003C\u002Fp>\n\u003Cp>See The Plugin In Action by Watching This Video\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.youtube.com\u002Fwatch?v=haWqwVIa1Z0\u003C\u002Fp>\n\u003Cp>See Mighty Content Locker In Action by Watching This Video\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.youtube.com\u002Fwatch?v=Esybdr-lzP4\u003C\u002Fp>\n","Easily integrate your Content & File Locker produced by Mighty Content Locker into Your WordPress site.",10,3320,74,3,"2013-03-10T19:26:00.000Z","3.5.2","2.0","",[20,21,22,23,24],"content-lock","content-locker","content-locking","cpa-content-lock","page-locker","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fmighty-content-locker\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmighty-content-locker.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},1,30,84,"2026-04-05T14:22:51.891Z",[38,57,73,90,111],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":11,"downloaded":46,"rating":47,"num_ratings":33,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":55,"download_link":56,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"adscend-adlock","Adscend AdLock","1.0.1","adscendmedia","https:\u002F\u002Fprofiles.wordpress.org\u002Fadscendmedia\u002F","\u003Cp>Generate revenue from every single person that views your content \u003Cstrong>($.90 per USA visitor is the current average)\u003C\u002Fstrong>, using AdLock® from Adscend Media. This plugin allows you to easily implement the AdLock service, and select which posts to apply it to. Visitors to the selected pages will need to unlock the page content by completing a short sponsored action.\u003C\u002Fp>\n\u003Cp>You must have an Adscend Media publisher account in order to use this plugin. If you do not yet have one, \u003Ca href=\"https:\u002F\u002Fadscendmedia.com\u002Fapply.php\" rel=\"nofollow ugc\">apply here\u003C\u002Fa>.\u003Cbr \u002F>\nFounded in 2009, Adscend Media is a leader in the online advertising space, focused on developing innovative, turn-key digital content monetization solutions. AdLock®, Adscend Media’s proprietary content locking technology, allows publishers to maximize revenues from their premium content, and realize earnings far beyond that of traditional CPM advertising. Adscend Media has been named to the prestigious Inc. 500 list, and recognized as a Top 10 Network by Revenue Performance Magazine.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>From your \u003Ca href=\"https:\u002F\u002Fadscendmedia.com\u002Fwidget.php\" rel=\"nofollow ugc\">Adscend Media dashboard\u003C\u002Fa>, create a new AdLock Widget, or click Get Code next to an existing profile.\u003C\u002Fli>\n\u003Cli>In your WordPress admin dashboard, click on the AdLock® Widgets menu item, then on Add New at the top of the page.\u003C\u002Fli>\n\u003Cli>Enter a title for your AdLock Widget (you will probably want to use same title as the Widget name within Adscend), then paste in the HTML code snippet provided to you by the Adscend Media website.\u003C\u002Fli>\n\u003Cli>Select which pages to apply AdLock.\u003C\u002Fli>\n\u003Cli>Click Publish. Your AdLock Widget will now appear to visitors of the selected pages.\u003C\u002Fli>\n\u003C\u002Fol>\n","Generate revenue from every single person that views your content ($.90 per USA visitor is current average), using AdLock® from Adscend Media",6511,20,"2014-04-10T19:22:00.000Z","3.4.2","3.0.1",[52,53,54,21,22],"adlock","adscend","adscend-media","http:\u002F\u002Fadscendmedia.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadscend-adlock.zip",{"slug":58,"name":59,"version":6,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":11,"downloaded":64,"rating":65,"num_ratings":33,"last_updated":18,"tested_up_to":66,"requires_at_least":67,"requires_php":18,"tags":68,"homepage":70,"download_link":71,"security_score":65,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":72},"easy-wordpress-content-locker","Easy WordPress Content Locker","EasyContentLock","https:\u002F\u002Fprofiles.wordpress.org\u002Feasycontentlock\u002F","\u003Cp>Easy WordPress Content Locker allows easy implemention of content lock gateway widget code to monetize your content.\u003Cbr \u002F>\nIt works with code from CPALead, Leadbolt, BlamAds, Adscendmedia, Adgatemedia, MGCash, Dollarade and many other CPA Networks.\u003C\u002Fp>\n\u003Cp>You have various settings to match your needs and a user friendly interface.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show in specific page: category, tag, archive, author, single post, pages and more.\u003C\u002Fli>\n\u003Cli>Also You can select multiple options at the same time.\u003C\u002Fli>\n\u003Cli>You can lock content for specific posts\u002Fpages, just enter the IDs of the posts\u002Fpages you want to lock into the according fields\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Support me: If you like the plugin please consider rating it 5 stars at https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Feasy-wordpress-content-locker\u002F , thank you!\u003C\u002Fp>\n","Plugins that integrates seamlessly code from various Content Locker provider",9467,100,"3.2.1","3.0",[21,69,24],"lock-content","http:\u002F\u002Feasywordpresscontentlocker.blogspot.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-wordpress-content-locker.zip","2026-03-15T10:48:56.248Z",{"slug":74,"name":75,"version":6,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":13,"num_ratings":14,"last_updated":82,"tested_up_to":83,"requires_at_least":50,"requires_php":18,"tags":84,"homepage":18,"download_link":89,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"readmore-readless","ReadMore ReadLess","Brijesh Mishra","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrijeshmkt\u002F","\u003Cp>Show required content and let user click on read more.  Visitors will see readmore link on the page, when they will click, rest of the content appear with very simple animation on the same page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>This plugin will effect only on pages\u003C\u002Fli>\n\u003Cli>Select check box to show read more on the pages\u003C\u002Fli>\n\u003Cli>Control option shows on all pages, you can select to show readmore on the page\u003C\u002Fli>\n\u003Cli>Define the width to show from the page.\u003C\u002Fli>\n\u003Cli>Very simple and easy to use\u003C\u002Fli>\n\u003C\u002Ful>\n","ReadMore ReadLess will hide content on page.  Clicking on readmore will show complete page without refreshing the page.",90,8025,"2014-09-03T01:35:00.000Z","3.9.40",[21,85,86,87,88],"display-more","hide-content","read-more","readmore","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freadmore-readless.zip",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":98,"downloaded":99,"rating":28,"num_ratings":28,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":103,"tags":104,"homepage":109,"download_link":110,"security_score":65,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"init-ad-engine","Init Ad Engine – Flexible, Multi-Format, Secure","1.4","Init HTML","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrokensmile2103-1\u002F","\u003Cp>\u003Cstrong>Init Ad Engine\u003C\u002Fstrong> lets you insert various ad formats into your WordPress site with zero coding required.\u003C\u002Fp>\n\u003Cp>Built for flexibility and performance:\u003Cbr \u002F>\n– Tabbed admin UI with clear separation by device type\u003Cbr \u002F>\n– All styles are inline or embedded – no external CSS files\u003Cbr \u002F>\n– Multiple ad formats supported: popups, sticky bars, floating ads, popunder, before\u002Fafter content\u003Cbr \u002F>\n– Optional fallback HTML\u002FJS code when no image is provided\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Available ad positions:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Desktop (PC):\u003C\u002Fstrong>\u003Cbr \u002F>\nBillboard, Balloon Left\u002FRight, Float Left\u002FRight, Catfish Top\u002FBottom, Popup Center, Before\u002FAfter Content\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Mobile:\u003C\u002Fstrong>\u003Cbr \u002F>\nMini Billboard, Sticky Top\u002FBottom, Popup Center, Before\u002FAfter Content\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Special:\u003C\u002Fstrong>\u003Cbr \u002F>\nPopunder (opens new tab on first click), Global header\u002Ffooter code injection\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is part of the \u003Ca href=\"https:\u002F\u002Fen.inithtml.com\u002Finit-plugin-suite-minimalist-powerful-and-free-wordpress-plugins\u002F\" rel=\"nofollow ugc\">Init Plugin Suite\u003C\u002Fa> — a collection of minimalist, fast, and developer-focused tools for WordPress.\u003C\u002Fp>\n\u003Cp>GitHub repository: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbrokensmile2103\u002Finit-ad-engine\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fbrokensmile2103\u002Finit-ad-engine\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>20+ configurable ad positions\u003C\u002Fli>\n\u003Cli>Popunder with cooldown and click threshold\u003C\u002Fli>\n\u003Cli>Exit-intent or delay-based popup behavior\u003C\u002Fli>\n\u003Cli>Global \u003Ccode>\u003Chead>\u003C\u002Fcode> and \u003Ccode>\u003C\u002Fbody>\u003C\u002Fcode> injection fields\u003C\u002Fli>\n\u003Cli>Fallback HTML\u002FJS ad code per position\u003C\u002Fli>\n\u003Cli>Minimalist inline CSS for fast load\u003C\u002Fli>\n\u003Cli>Responsive support for all device types\u003C\u002Fli>\n\u003Cli>Clean admin UI with media uploader\u003C\u002Fli>\n\u003Cli>Affiliate Gate with flexible display logic (always-on, expire-after-click, random %, every X pages)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Filters for Developers\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ccode>init_plugin_suite_ad_engine_use_kses\u003C\u002Fcode>\u003Cbr \u002F>\nControl whether ad snippets are escaped via \u003Ccode>wp_kses\u003C\u002Fcode>. Default: \u003Ccode>true\u003C\u002Fcode>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ccode>init_plugin_suite_ad_engine_allowed_tags\u003C\u002Fcode>\u003Cbr \u002F>\nExtend or modify the allow-list of permitted tags\u002Fattributes for ad snippets.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ccode>init_plugin_suite_ad_engine_disable_all_ads\u003C\u002Fcode>\u003Cbr \u002F>\nDisable all ad injections globally. Default: \u003Ccode>false\u003C\u002Fcode>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ccode>init_ad_engine_should_enqueue_affiliate_gate\u003C\u002Fcode>\u003Cbr \u002F>\nControl whether the Affiliate Gate scripts should be enqueued.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security Notes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Ad snippets entered in the plugin settings are considered user-provided content.  \u003C\u002Fli>\n\u003Cli>By default, all snippets are escaped at render time using \u003Ccode>wp_kses\u003C\u002Fcode> with a restricted allow-list of tags and attributes.  \u003C\u002Fli>\n\u003Cli>Developers can disable escaping via the \u003Ccode>init_plugin_suite_ad_engine_use_kses\u003C\u002Fcode> filter if they explicitly trust their input.  \u003C\u002Fli>\n\u003Cli>All ad injections can be globally disabled via the \u003Ccode>init_plugin_suite_ad_engine_disable_all_ads\u003C\u002Fcode> filter.  \u003C\u002Fli>\n\u003Cli>Only administrators with the \u003Ccode>manage_options\u003C\u002Fcode> capability can configure or modify global ad settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later.\u003Cbr \u002F>\nYou are free to use, modify, and distribute it under the same license.\u003C\u002Fp>\n","A lightweight and flexible ad engine for WordPress. Place banners, popups, sticky ads, and popunders across desktop and mobile with full control.",70,582,"2025-11-14T16:23:00.000Z","6.9.4","5.5","7.4",[105,106,22,107,108],"ads","banner","popunder","popup","https:\u002F\u002Finithtml.com\u002Fplugin\u002Finit-ad-engine\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finit-ad-engine.1.4.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":65,"num_ratings":33,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":124,"tags":125,"homepage":130,"download_link":131,"security_score":65,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"otp-content-protect","OTP Content Protect","1.3.5","Tim Ehling","https:\u002F\u002Fprofiles.wordpress.org\u002Ftehling\u002F","\u003Cp>As a WordPress owner who values both \u003Cstrong>security and a seamless user experience\u003C\u002Fstrong>, you often face the challenge of protecting sensitive information. Most password solutions force your visitors to register for an account, granting them potential access to your WordPress environment.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This is where “OTP Content Protect” comes in, offering an innovative way to protect your content with a One-Time Password (OTP).\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Our plugin was designed to give you full control over your content without opening the doors to your WordPress backend for strangers. Easily and effectively protect individual posts, pages, or even downloads. Your visitors don’t need an account and don’t have to register—they simply enter the one-time password you provide and get instant access.\u003C\u002Fp>\n\u003Cp>By not granting unnecessary backend access, you actively minimize the risk of hacker or spam activities. “OTP Content Protect” is the perfect blend of simplicity, security, and innovation, making it the ideal password protection for your WordPress site when you need to lock specific content without burdening users with registration.\u003C\u002Fp>\n\u003Ch4>Support & Feature Requests\u003C\u002Fh4>\n\u003Cp>We are constantly developing the plugin and welcome your feedback!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>For questions or issues,\u003C\u002Fstrong> please use the official \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fotp-content-protect\u002F\" rel=\"ugc\">Support Forum on WordPress.org\u003C\u002Fa> or report a bug directly via our \u003Ca href=\"https:\u002F\u002Fdie-mainagentur.de\u002Fen\u002Fwordpress-plugin-otp-content-protect\u002F#submitbug\" rel=\"nofollow ugc\">Submit a Bug form\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Have an idea for a new feature?\u003C\u002Fstrong> Submit your feature request easily through our website: \u003Ca href=\"https:\u002F\u002Fdie-mainagentur.de\u002Fen\u002Fwordpress-plugin-otp-content-protect\u002F#featurerequest\" rel=\"nofollow ugc\">Submit a Feature Request\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Protection Without Registration:\u003C\u002Fstrong> The key advantage—visitors don’t need a WordPress account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Content Protection:\u003C\u002Fstrong> Secure posts, pages, or any custom post type.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simple Password Generation:\u003C\u002Fstrong> Creates secure, alphanumeric OTPs (8–10 characters).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Full Control:\u003C\u002Fstrong> Stores creation date, optional expiration date, and a timestamp of when it was used.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reusable Passwords:\u003C\u002Fstrong> A used OTP can easily be reset for reuse.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Modern Admin Interface:\u003C\u002Fstrong> AJAX-powered content list with search and convenient post-type tabs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Clean Uninstall:\u003C\u002Fstrong> An uninstall script completely removes all plugin data from the database upon deletion if desired.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Built for the World:\u003C\u002Fstrong> Fully internationalized (i18n) and ready for translation.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to the OTP Protect settings page.\u003C\u002Fli>\n\u003Cli>Select the content to protect and generate or enter an OTP.\u003C\u002Fli>\n\u003Cli>(Optional) Set an expiration date.\u003C\u002Fli>\n\u003Cli>Save the OTP and share it with the intended users.\u003C\u002Fli>\n\u003Cli>When a visitor accesses the protected content, they will see a simple input form for the password.\u003C\u002Fli>\n\u003Cli>Upon valid entry, the original content is displayed instantly.\u003C\u002Fli>\n\u003Cli>In the admin overview, you can easily reset or delete used OTPs.\u003C\u002Fli>\n\u003C\u002Fol>\n","The easiest way to protect WordPress content with an OTP. Secure posts and pages with a one-time password—no user registration required.",40,535,"2025-07-18T17:28:00.000Z","6.8.5","6.0","7.0",[21,126,127,128,129],"content-protect","no-registration","otp","password-protect","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fotp-content-protect\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fotp-content-protect.1.3.5.zip",{"attackSurface":133,"codeSignals":157,"taintFlows":171,"riskAssessment":172,"analyzedAt":183},{"hooks":134,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":156,"entryPointCount":28,"unprotectedCount":28},[135,141,145,149],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","admin_menu","wpmcl_menu","wpmcl.php",14,{"type":136,"name":142,"callback":143,"file":139,"line":144},"admin_init","wpmcl_settings",15,{"type":136,"name":146,"callback":147,"file":139,"line":148},"admin_notices","wpmcl_admin_notice",17,{"type":136,"name":150,"callback":151,"file":139,"line":152},"wp_head","wpmcl_head",111,[],[],[],[],{"dangerousFunctions":158,"sqlUsage":159,"outputEscaping":161,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":170},[],{"prepared":28,"raw":28,"locations":160},[],{"escaped":28,"rawEcho":14,"locations":162},[163,166,168],{"file":139,"line":164,"context":165},65,"raw output",{"file":139,"line":167,"context":165},81,{"file":139,"line":169,"context":165},118,[],[],{"summary":173,"deductions":174},"The \"mighty-content-locker\" plugin v1.0 exhibits a seemingly robust security posture based on the provided static analysis.  There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in zero identified entry points. Furthermore, the code analysis shows no dangerous functions, file operations, or external HTTP requests, and all SQL queries are secured with prepared statements. This indicates a strong commitment to avoiding common plugin vulnerabilities. However, a significant concern arises from the complete lack of output escaping, with 100% of the three identified outputs being unescaped. This presents a direct risk of Cross-Site Scripting (XSS) vulnerabilities, as any user-supplied data displayed to other users could be exploited.\n\nThe vulnerability history is also clean, with no recorded CVEs, which is a positive indicator. The absence of taint analysis flows also suggests that known taint paths were not identified during the analysis, which is beneficial.  Despite the lack of known vulnerabilities and a small attack surface, the unescaped output is a critical flaw that needs immediate attention. The plugin's strengths lie in its avoidance of direct execution vulnerabilities and SQL injection, but its weakness in output sanitization leaves it open to client-side attacks.",[175,178,181],{"reason":176,"points":177},"100% of outputs are not properly escaped",8,{"reason":179,"points":180},"No nonce checks on AJAX handlers (though none exist)",2,{"reason":182,"points":180},"No capability checks (though none exist)","2026-03-17T01:07:48.325Z",{"wat":185,"direct":192},{"assetPaths":186,"generatorPatterns":189,"scriptPaths":190,"versionParams":191},[187,188],"\u002Fwp-content\u002Fplugins\u002Fmighty-content-locker\u002Fwpmcl16.png","\u002Fwp-content\u002Fplugins\u002Fmighty-content-locker\u002Fwpmcl.png",[],[],[],{"cssClasses":193,"htmlComments":194,"htmlAttributes":195,"restEndpoints":196,"jsGlobals":197,"shortcodeOutput":200},[],[],[],[],[198,199],"mcllock","jqver",[]]