[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$faIuL7QHpp-LtaI5r97paoUC5kYk75Om_uKQdtPqckuM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":130,"fingerprints":221},"motivational-quotes","Motivating Quotes","1.0","motivationalquote","https:\u002F\u002Fprofiles.wordpress.org\u002Fmotivationalquote\u002F","\u003Cp>Motivating Quotes allows you to display a randomly selected quote on any of your posts.\u003Cbr \u002F>\nIt comes with 10 quotes and you can add your own quotes from the option panel.\u003Cbr \u002F>\nYou can delete any quotes you don’t like.\u003Cbr \u002F>\nEvery registered users can also search for all the quotes on your website.\u003C\u002Fp>\n","This plugin allows you to display random quotes on your posts and all registered users to see the list of all quotes.",10,1221,0,"2017-04-26T08:03:00.000Z","4.7.32","3.0.1","",[19,20,21],"motivation","quotes","text","https:\u002F\u002Fgithub.com\u002Fmotivationalquote\u002Fmotivationalquote_plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmotivational-quotes.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},1,30,84,"2026-04-05T09:58:55.657Z",[34,49,70,86,104],{"slug":35,"name":36,"version":6,"author":37,"author_profile":38,"description":39,"short_description":40,"active_installs":11,"downloaded":41,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":42,"requires_at_least":16,"requires_php":17,"tags":43,"homepage":45,"download_link":46,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":48},"simple-quote-rotator","Simple Quote Rotator","simplequoterotator","https:\u002F\u002Fprofiles.wordpress.org\u002Fsimplequoterotator\u002F","\u003Cp>Simple Quote Rotator allows you to present your quotes to your WordPress visitors.\u003Cbr \u002F>\nLearn more or connect with us:\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.kulturystyka.sklep.pl\u002F\u003C\u002Fp>\n","This is a very simple plugin to display a random quotes in your posts or widgets",1601,"4.5.33",[19,20,44,21],"rotator","http:\u002F\u002Fwww.kulturystyka.sklep.pl\u002Finfo\u002Fquote\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-quote-rotator.zip",100,"2026-03-15T10:48:56.248Z",{"slug":50,"name":50,"version":51,"author":52,"author_profile":53,"description":54,"short_description":55,"active_installs":56,"downloaded":57,"rating":58,"num_ratings":59,"last_updated":60,"tested_up_to":61,"requires_at_least":62,"requires_php":17,"tags":63,"homepage":68,"download_link":69,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"wpuntexturize","2.3","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>By default, WordPress converts single and double quotation marks into their curly alternatives. This plugin prevents that from happening, so you can enjoy your quotation marks in their non-curly glory. If your content happens to already have curly quotation marks in it, then this plugin can optionally also convert them to their non-curly alternatives.\u003C\u002Fp>\n\u003Cp>\u003Cem>Note:\u003C\u002Fem> Despite the unfortunately misleading name, this plugin is NOT the antithesis of WordPress’s \u003Ccode>wptexturize()\u003C\u002Fcode> function. This ONLY prevents WordPress from making HTML entity code substitutions of single and double quotation marks with their curly alternatives and does NOT prevent \u003Ccode>wptexturize()\u003C\u002Fcode> from making any other character and string substitutions. See the FAQ for details on the filters processed by the plugin.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fwpuntexturize\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpuntexturize\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fwpuntexturize\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Developer Documentation\u003C\u002Fh3>\n\u003Cp>Developer documentation can be found in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fwpuntexturize\u002Fblob\u002Fmaster\u002FDEVELOPER-DOCS.md\" rel=\"nofollow ugc\">DEVELOPER-DOCS.md\u003C\u002Fa>. That documentation covers the numerous hooks provided by the plugin. Those hooks are listed below to provide an overview of what’s available.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>c2c_wpuntexturize\u003C\u002Fcode> : An alternative approach to safely invoke \u003Ccode>c2c_wpuntexturize()\u003C\u002Fcode> in such a way that if the plugin were deactivated or deleted, then your calls to the function won’t cause errors in your site. This only applies if you use the function directly, which is not typical usage for most users.\u003C\u002Fli>\n\u003Cli>\u003Ccode>wpuntexturize_filters\u003C\u002Fcode> : customize what filters to hook to be filtered with wpuntexturize. See the Description section for a complete list of all filters that are filtered by default.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_wpuntexturize_replacements\u003C\u002Fcode> : Customize the character replacements handled by the plugin.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_wpuntexturize_convert_curly_quotes\u003C\u002Fcode> : Enable conversion of preexisting curly quotes into their non-curly alternatives.\u003C\u002Fli>\n\u003C\u002Ful>\n","Prevent WordPress from converting single and double quotation marks into their curly alternatives.",900,25406,92,12,"2025-04-08T22:17:00.000Z","6.8.5","5.5",[64,65,20,66,67],"formatting","post","substitutions","wptexturize","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fwpuntexturize\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpuntexturize.2.3.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":47,"downloaded":78,"rating":47,"num_ratings":29,"last_updated":17,"tested_up_to":79,"requires_at_least":80,"requires_php":17,"tags":81,"homepage":84,"download_link":85,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":48},"smart-quotes","Smart Quotes","0.4","Martin Lormes","https:\u002F\u002Fprofiles.wordpress.org\u002Ftfnab\u002F","\u003Cp>Change the quotation marks, that are automatically rendered as smart or curly quotes inside your content, from the default English style (“…”) to anything you like, e.g. to Croatian\u002FHungarian\u002FPolish\u002FRomanian style quotation marks („…”), Czech or German style („…“), Danish style (»…«), Finnish or Swedish style (”…”), French style (« … » – with spaces), Greek\u002FItalian\u002FNorwegian\u002FPortuguese\u002FRussian\u002FSpanish\u002FSwiss style («…» – without spaces), Japanese or Traditional Chinese style (「⋯」), or actually to any arbitrary character combination of your choice. Of course you can turn off curly quotes entirely by picking the so-called \"dumb\" quotes (\"…\").\u003C\u002Fp>\n","Change the quotation marks that are automatically rendered as smart or curly quotes inside your content.",4616,"3.6.1","2.9",[82,83,20,71,67],"curly","curly-quotes","http:\u002F\u002Ften-fingers-and-a-brain.com\u002Fwordpress-plugins\u002Fsmart-quotes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmart-quotes.0.4.zip",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":11,"downloaded":94,"rating":47,"num_ratings":95,"last_updated":96,"tested_up_to":15,"requires_at_least":97,"requires_php":17,"tags":98,"homepage":102,"download_link":103,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"hello-darling","Hello Darling","0.1","Faris Pallackal","https:\u002F\u002Fprofiles.wordpress.org\u002Fbinarymag\u002F","\u003Cp>This plugin will randomly display inspiring quotes in the upper right of your admin screen. Inspired by the plugin Hello Dolly by Matt Mullenweg.\u003C\u002Fp>\n","This plugin will randomly display inspiring quotes in the upper right of your admin screen. Inspired by the plugin Hello Dolly by Matt Mullenweg.",1296,2,"2018-01-23T08:12:00.000Z","4.6",[99,100,101,19,20],"care","inspiration","love","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhello-darling\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhello-darling.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":11,"downloaded":112,"rating":47,"num_ratings":29,"last_updated":113,"tested_up_to":42,"requires_at_least":16,"requires_php":17,"tags":114,"homepage":128,"download_link":129,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"quote-of-the-day-tellmequotes","Quote of The Day by TellmeQuotes","1.6","vivekmoyal","https:\u002F\u002Fprofiles.wordpress.org\u002Fvivekmoyal\u002F","\u003Cp>This plugin lets you add a Quote of the Day widget to your WordPress page. Put the widget and famous quotations will automatically appear on your page, every day!\u003C\u002Fp>\n\u003Cp>Our database having topic feeds contain family-friendly quotes by famous authors that are funny, inspirational, motivational and wise.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.tellmequotes.com\" rel=\"nofollow ugc\">TellmeQuotes\u003C\u002Fa> is the one of the web’s largest quotation site, and with our huge collection of quotes, you can expect a fresh Quote of the Day.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>*Widget allows you to place a Quote of the Day sidebar on your page *Widget adapts to the theme of your page\u003C\u002Fp>\n","This plugin lets you add a Quote of the Day widget to your WordPress site.",1374,"2016-07-05T10:41:00.000Z",[115,116,117,118,101,119,120,121,122,123,20,124,125,126,127],"art","famous-quotes","funny","inspirational","motivational","nature","quotations","quote","quote-of-the-day","sidebar","tellmequotes","widget","wishes","http:\u002F\u002Fwww.tellmequotes.com\u002Flink\u002Fwordpress_plugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquote-of-the-day-tellmequotes.zip",{"attackSurface":131,"codeSignals":154,"taintFlows":184,"riskAssessment":208,"analyzedAt":220},{"hooks":132,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":153,"entryPointCount":29,"unprotectedCount":13},[133,139,142],{"type":134,"name":135,"callback":136,"file":137,"line":138},"action","admin_menu","motivation_quotes_menu","motivational-quotes.php",104,{"type":134,"name":135,"callback":140,"file":137,"line":141},"motivation_quotes_user_menu",121,{"type":134,"name":143,"callback":144,"file":137,"line":145},"admin_init","motivation_quotes_css",141,[],[],[149],{"tag":150,"callback":151,"file":137,"line":152},"motivational-quote","MotivationalQuote",99,[],{"dangerousFunctions":155,"sqlUsage":156,"outputEscaping":171,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":95,"bundledLibraries":183},[],{"prepared":13,"raw":157,"locations":158},4,[159,163,165,169],{"file":160,"line":161,"context":162},"includes\\liste.php",46,"$wpdb->get_results() with variable interpolation",{"file":160,"line":164,"context":162},56,{"file":166,"line":167,"context":168},"includes\\main-options.php",72,"$wpdb->get_var() with variable interpolation",{"file":137,"line":170,"context":162},89,{"escaped":13,"rawEcho":172,"locations":173},5,[174,177,179,180,181],{"file":160,"line":175,"context":176},6,"raw output",{"file":160,"line":178,"context":176},67,{"file":166,"line":157,"context":176},{"file":137,"line":58,"context":176},{"file":137,"line":182,"context":176},93,[],[185],{"entryPoint":186,"graph":187,"unsanitizedCount":29,"severity":207},"\u003Cliste> (includes\\liste.php:0)",{"nodes":188,"edges":203},[189,194,198],{"id":190,"type":191,"label":192,"file":160,"line":193},"n0","source","$_POST",31,{"id":195,"type":196,"label":197,"file":160,"line":193},"n1","transform","→ motivation_quotes_display_quotes()",{"id":199,"type":200,"label":201,"file":160,"line":178,"wp_function":202},"n2","sink","echo() [XSS]","echo",[204,206],{"from":190,"to":195,"sanitized":205},false,{"from":195,"to":199,"sanitized":205},"medium",{"summary":209,"deductions":210},"The \"motivational-quotes\" plugin v1.0 presents a mixed security posture. On the positive side, it has a very small attack surface, with only one entry point identified as a shortcode. Crucially, there are no identified AJAX handlers or REST API routes without proper authentication or permission checks, and no cron events are registered. This indicates an effort to limit direct exposure points.\n\nHowever, significant concerns arise from the code analysis. The plugin exhibits a severe lack of data sanitization and protection. All identified SQL queries are executed without prepared statements, posing a substantial risk of SQL injection. Furthermore, none of the outputs are properly escaped, leaving the plugin vulnerable to cross-site scripting (XSS) attacks. The taint analysis also revealed a flow with unsanitized paths, which, while not classified as critical or high, still indicates a potential avenue for malicious input to be processed without adequate security measures. The absence of nonce checks is also a notable weakness, especially if the shortcode were to interact with user input or perform sensitive actions.\n\nThe vulnerability history is clean, with no recorded CVEs. While this is a positive indicator, it should not be seen as a guarantee of future security, especially given the identified coding practices. The lack of past vulnerabilities could simply mean the plugin hasn't been extensively targeted or thoroughly audited for the types of weaknesses present. The plugin's strengths lie in its limited attack surface and absence of known historical vulnerabilities, but its weaknesses in data handling (SQL and output escaping) and lack of nonce checks create notable security risks that require immediate attention.",[211,214,216,218],{"reason":212,"points":213},"Raw SQL queries without prepared statements",20,{"reason":215,"points":213},"Unescaped output on all outputs",{"reason":217,"points":11},"Flow with unsanitized paths",{"reason":219,"points":11},"Missing nonce checks","2026-03-17T00:47:11.919Z",{"wat":222,"direct":228},{"assetPaths":223,"generatorPatterns":225,"scriptPaths":226,"versionParams":227},[224],"\u002Fwp-content\u002Fplugins\u002Fmotivational-quotes\u002Fstyle.css",[],[],[],{"cssClasses":229,"htmlComments":230,"htmlAttributes":231,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":234},[],[],[],[],[],[235,236,237,238,239,240,241,242,243],"\u003Cp>\u003Cimg style=\"padding:4px;\" src=\"","images\u002Fquote.png","\">\u003C","i>","\u003C\u002F","i>\u003Cimg style=\"padding:4px;\" src=\"","images\u002Fquote2.png","\">\u003C\u002Fp>","\u003Cp style=\"color:#9D9D9D;font-size: smaller;\">"]