[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6a_bthA7yzFY5LK11NtDReXllqD17Rq6kPsFCwYpyxM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":126,"fingerprints":338},"movie-grabber","Movie Grabber","1.0","MovieGrabber","https:\u002F\u002Fprofiles.wordpress.org\u002Fmoviegrabber\u002F","\u003Cp>A great plugin to you. If you want to open a movie website, you can have a movie website with a quality information pool from two different sources and imdb. Try it now!\u003C\u002Fp>\n","A great plugin to you. If you want to open a movie website, you can have a movie website with a quality information pool from two different sources an &hellip;",10,3712,100,1,"2018-06-04T14:28:00.000Z","4.9.29","4.x","5.6",[20,21,22,23,24],"bot","grabber","imdb","movie","scraper","http:\u002F\u002Fwww.streamov.xyz","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmovie-grabber.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"moviegrabber",30,84,"2026-04-05T02:51:37.322Z",[38,59,76,93,110],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":57,"download_link":58,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"lumiere-movies","Lumière Movies","4.7.3","JCV","https:\u002F\u002Fprofiles.wordpress.org\u002Fpsykonevro\u002F","\u003Cp>Visit the \u003Ca href=\"https:\u002F\u002Fwww.jcvignoli.com\u002Fblog\u002Fen\u002Flumiere-movies-wordpress-plugin\" title=\"Official website\" rel=\"nofollow ugc\">Official website\u003C\u002Fa> to see how the plugin can enhance your website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Lumiere! Movies\u003C\u002Fstrong> helps you integrate loads of information about movies and stars in your blog. Widgets, links to informative popup, and dedicated taxonomy pages are available. Everything is automatised and no further configuration is required from the user. However, should you want to access advanced features, your can change the themes, add taxonomy to your pages, remove links, display automatically information according to your blog posts’ titles, and use many hidden features. The information is retrieved from the popular \u003Ca href=\"https:\u002F\u002Fwww.imdb.com\" title=\"Internet Movie Database\" rel=\"nofollow ugc\">IMDb\u003C\u002Fa> website. Lumière! ensures that you have the most accurate and reliable information always available on your blog.\u003C\u002Fp>\n\u003Cp>It is \u003Ca href=\"https:\u002F\u002Fdeveloper.mozilla.org\u002Fen-US\u002Fdocs\u002FWeb\u002FHTTP\u002FCSP\" title=\"Content Security Policy on Mozilla\" rel=\"nofollow ugc\">Content Security Policy\u003C\u002Fa> (CSP) compliant, takes advantage of Polylang plugin and is fully compatible with AMP plugin. It is also fully compatible with Classic Editor, Classic Widgets plugins, and Intelly related posts. It supports any WordPress theme and is adapted to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Foceanwp\u002F\" title=\"OceanWP theme\" rel=\"ugc\">OceanWP\u003C\u002Fa> theme.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Lumière!\u003C\u002Fstrong> is a great tool to illustrate your articles. You can display movie and people details by several ways, such as in popups, widgets, and straight inside your posts. It can be extensively fine-tuned in the admin options panel.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Go to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Flumiere-movies\u002F\" title=\"WordPress Support\" rel=\"ugc\">WordPress Support\u003C\u002Fa> for general issues, or to the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjcvignoli\u002Flumiere-movies\" title=\"GIT repository\" rel=\"nofollow ugc\">GIT repository\u003C\u002Fa> for technical requests (developper-oriented).\u003C\u002Fp>\n\u003Cp>It’s always a good idea to look at the \u003Ca href=\"https:\u002F\u002Fwww.jcvignoli.com\u002Fblog\u002Fen\u002Flumiere-movies-wordpress-plugin\" title=\"Lumière! official website\" rel=\"nofollow ugc\">official website\u003C\u002Fa>\u003C\u002Fp>\n","Lumière! Movies is a WordPress plugin that retrieves data from www.imdb.com and helps you include it in your posts and in your widgets.",40,10279,3,"2025-12-25T17:56:00.000Z","6.9.4","6.1","8.1",[54,55,56,22,23],"actor","cinema","film","https:\u002F\u002Fwww.wordpress.org\u002Fplugins\u002Flumiere-movies\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flumiere-movies.4.7.3.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":28,"num_ratings":28,"last_updated":65,"tested_up_to":69,"requires_at_least":70,"requires_php":65,"tags":71,"homepage":73,"download_link":74,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":75},"wp-imdb-api","IMDb API","1.2.0","tuyenlaptrinh","https:\u002F\u002Fprofiles.wordpress.org\u002Ftuyenlaptrinh\u002F","","The IMDb API is a RESTful web service to obtain movie information, all content and images on the site are contributed and maintained by our users.",20,6252,"4.7.32","3.0.1",[22,72,23],"imdb-api","http:\u002F\u002Fimdbapi.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-imdb-api.1.2.0.zip","2026-03-15T10:48:56.248Z",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":28,"num_ratings":28,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":65,"tags":88,"homepage":91,"download_link":92,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"filmgetter","FilmGetter","0.1.4.1","confact","https:\u002F\u002Fprofiles.wordpress.org\u002Fconfact\u002F","\u003Cp>Filmgetter gets the information from TMDb about a movie you have choosen. Adding it to the database and you can now use it’s information with using the tags defined below. It will write out the information about the movie you want.\u003C\u002Fp>\n","FilmGetter uses tags to show information like Poster, plot, rating, release date, TMDb and imdb urls.",5505,"2011-09-05T22:04:00.000Z","3.2.1","2.1",[56,22,23,89,90],"poster","tmdb","http:\u002F\u002Fdun.se\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffilmgetter.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":11,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":86,"requires_at_least":103,"requires_php":65,"tags":104,"homepage":108,"download_link":109,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"icheckmovies-widget","iCheckMovies Widget","1.1","madalinoprea","https:\u002F\u002Fprofiles.wordpress.org\u002Fmadalinoprea\u002F","\u003Cp>This is a widget that loads recent movies checked on iCheckMovies (http:\u002F\u002Fwww.icheckmovies.com\u002F) and display their nice\u003Cbr \u002F>\ncovers.\u003C\u002Fp>\n\u003Cp>You’ll need to have a profile on iCheckMovies website, use this site to track your seen movies. If you don’t know\u003Cbr \u002F>\nthe site you should check it because is really nice.\u003C\u002Fp>\n\u003Cp>More info: \u003Ca href=\"http:\u002F\u002Fmoprea.ro\u002F2011\u002F11\u002F28\u002Ficheckmovies-widget-for-wordpress\" title=\"iCheckMovies Widget Details\" rel=\"nofollow ugc\">iCheckMovies Widget\u003C\u002Fa>\u003C\u002Fp>\n","Looks cool to share your latest seen movies on your blog.",1997,"2012-01-14T13:14:00.000Z","3.0",[105,22,106,107],"icheckmovies","movies","widget","http:\u002F\u002Fmoprea.ro\u002F2011\u002F11\u002F28\u002Ficheckmovies-widget-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ficheckmovies-widget.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":11,"downloaded":118,"rating":28,"num_ratings":28,"last_updated":119,"tested_up_to":16,"requires_at_least":103,"requires_php":65,"tags":120,"homepage":124,"download_link":125,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"king-grabber","King Grabber","1.4","Fais","https:\u002F\u002Fprofiles.wordpress.org\u002Fqyax\u002F","\u003Cp>King Grabber is a WordPress plugin which helps you for improve your site content with rich features grabbing. We offer more than 10 Actively host comic and community service like TMDB, IMDB\u003Cbr \u002F>\nTo use this plugin you need first to register your application on our site here for free \u003Ca href=\"https:\u002F\u002Fkinggrabber.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fkinggrabber.com\u002F\u003C\u002Fa>\u003Cbr \u002F>\nYou can find our official documentation at \u003Ca href=\"https:\u002F\u002Fkinggrabber.com\u002Fdocs\" rel=\"nofollow ugc\">https:\u002F\u002Fkinggrabber.com\u002Fdocs\u003C\u002Fa> and our Privacy and Policy on our official site at \u003Ca href=\"https:\u002F\u002Fkinggrabber.com\u002Fmembers\" rel=\"nofollow ugc\">https:\u002F\u002Fkinggrabber.com\u002Fprivacy\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Features in King Grabber include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Single Grab Chapter on 10+ Comic Host\u003C\u002Fli>\n\u003Cli>Multi Grabber\u003C\u002Fli>\n\u003Cli>Addons Grabber like IMDB and more\u003C\u002Fli>\n\u003C\u002Ful>\n","King Grabber is a WordPress post plugin which helps you improve your site content with our rich grabber.",3426,"2018-11-29T15:04:00.000Z",[121,122,21,123,23],"anime","comic","manga","http:\u002F\u002Fkinggrabber.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fking-grabber.1.4.zip",{"attackSurface":127,"codeSignals":139,"taintFlows":217,"riskAssessment":328,"analyzedAt":337},{"hooks":128,"ajaxHandlers":135,"restRoutes":136,"shortcodes":137,"cronEvents":138,"entryPointCount":28,"unprotectedCount":28},[129],{"type":130,"name":131,"callback":132,"file":133,"line":134},"action","admin_menu","add_smmg_menus","index.php",116,[],[],[],[],{"dangerousFunctions":140,"sqlUsage":141,"outputEscaping":146,"fileOperations":48,"externalRequests":214,"nonceChecks":215,"capabilityChecks":28,"bundledLibraries":216},[],{"prepared":28,"raw":14,"locations":142},[143],{"file":133,"line":144,"context":145},231,"$wpdb->get_results() with variable interpolation",{"escaped":147,"rawEcho":148,"locations":149},39,33,[150,154,155,157,159,161,163,165,167,169,170,172,174,177,179,181,183,185,186,187,189,191,193,194,196,197,199,201,203,205,207,209,212],{"file":151,"line":152,"context":153},"admin\\general.php",44,"raw output",{"file":151,"line":152,"context":153},{"file":151,"line":156,"context":153},53,{"file":151,"line":158,"context":153},62,{"file":151,"line":160,"context":153},71,{"file":151,"line":162,"context":153},80,{"file":151,"line":164,"context":153},89,{"file":151,"line":166,"context":153},98,{"file":151,"line":168,"context":153},107,{"file":151,"line":134,"context":153},{"file":151,"line":171,"context":153},125,{"file":151,"line":173,"context":153},134,{"file":175,"line":176,"context":153},"importer\\list.php",24,{"file":175,"line":178,"context":153},75,{"file":175,"line":180,"context":153},81,{"file":175,"line":182,"context":153},82,{"file":175,"line":184,"context":153},83,{"file":175,"line":35,"context":153},{"file":175,"line":27,"context":153},{"file":175,"line":188,"context":153},86,{"file":175,"line":190,"context":153},87,{"file":175,"line":192,"context":153},99,{"file":175,"line":13,"context":153},{"file":175,"line":195,"context":153},108,{"file":175,"line":134,"context":153},{"file":175,"line":198,"context":153},120,{"file":175,"line":200,"context":153},124,{"file":175,"line":202,"context":153},128,{"file":175,"line":204,"context":153},132,{"file":175,"line":206,"context":153},136,{"file":133,"line":208,"context":153},233,{"file":210,"line":211,"context":153},"smmg-news.php",34,{"file":210,"line":213,"context":153},35,5,4,[],[218,312],{"entryPoint":219,"graph":220,"unsanitizedCount":28,"severity":311},"\u003Cgeneral> (admin\\general.php:0)",{"nodes":221,"edges":297},[222,227,232,236,238,242,244,247,249,253,255,259,261,265,267,271,273,277,279,283,285,289,291,295],{"id":223,"type":224,"label":225,"file":151,"line":226},"n0","source","$_POST['smmg_iframeWidth']",7,{"id":228,"type":229,"label":230,"file":151,"line":226,"wp_function":231},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":233,"type":224,"label":234,"file":151,"line":235},"n2","$_POST['smmg_iframeHeight']",8,{"id":237,"type":229,"label":230,"file":151,"line":235,"wp_function":231},"n3",{"id":239,"type":224,"label":240,"file":151,"line":241},"n4","$_POST['smmg_descriptionCustomField']",9,{"id":243,"type":229,"label":230,"file":151,"line":241,"wp_function":231},"n5",{"id":245,"type":224,"label":246,"file":151,"line":11},"n6","$_POST['smmg_thumbnailCustomField']",{"id":248,"type":229,"label":230,"file":151,"line":11,"wp_function":231},"n7",{"id":250,"type":224,"label":251,"file":151,"line":252},"n8","$_POST['smmg_durationCustomField']",11,{"id":254,"type":229,"label":230,"file":151,"line":252,"wp_function":231},"n9",{"id":256,"type":224,"label":257,"file":151,"line":258},"n10","$_POST['smmg_directorCustomField']",12,{"id":260,"type":229,"label":230,"file":151,"line":258,"wp_function":231},"n11",{"id":262,"type":224,"label":263,"file":151,"line":264},"n12","$_POST['smmg_writerCustomField']",13,{"id":266,"type":229,"label":230,"file":151,"line":264,"wp_function":231},"n13",{"id":268,"type":224,"label":269,"file":151,"line":270},"n14","$_POST['smmg_starsCustomField']",14,{"id":272,"type":229,"label":230,"file":151,"line":270,"wp_function":231},"n15",{"id":274,"type":224,"label":275,"file":151,"line":276},"n16","$_POST['smmg_ratingCustomField']",15,{"id":278,"type":229,"label":230,"file":151,"line":276,"wp_function":231},"n17",{"id":280,"type":224,"label":281,"file":151,"line":282},"n18","$_POST['smmg_genreCustomField']",16,{"id":284,"type":229,"label":230,"file":151,"line":282,"wp_function":231},"n19",{"id":286,"type":224,"label":287,"file":151,"line":288},"n20","$_POST['smmg_countryCustomField']",17,{"id":290,"type":229,"label":230,"file":151,"line":288,"wp_function":231},"n21",{"id":292,"type":224,"label":293,"file":151,"line":294},"n22","$_POST['smmg_nextpageCustomField']",18,{"id":296,"type":229,"label":230,"file":151,"line":294,"wp_function":231},"n23",[298,300,301,302,303,304,305,306,307,308,309,310],{"from":223,"to":228,"sanitized":299},true,{"from":233,"to":237,"sanitized":299},{"from":239,"to":243,"sanitized":299},{"from":245,"to":248,"sanitized":299},{"from":250,"to":254,"sanitized":299},{"from":256,"to":260,"sanitized":299},{"from":262,"to":266,"sanitized":299},{"from":268,"to":272,"sanitized":299},{"from":274,"to":278,"sanitized":299},{"from":280,"to":284,"sanitized":299},{"from":286,"to":290,"sanitized":299},{"from":292,"to":296,"sanitized":299},"low",{"entryPoint":313,"graph":314,"unsanitizedCount":28,"severity":311},"\u003Clist> (importer\\list.php:0)",{"nodes":315,"edges":325},[316,318,321,324],{"id":223,"type":224,"label":317,"file":175,"line":176},"$_POST['category']",{"id":228,"type":229,"label":319,"file":175,"line":176,"wp_function":320},"echo() [XSS]","echo",{"id":233,"type":224,"label":322,"file":175,"line":323},"$_POST['page']",26,{"id":237,"type":229,"label":319,"file":175,"line":323,"wp_function":320},[326,327],{"from":223,"to":228,"sanitized":299},{"from":233,"to":237,"sanitized":299},{"summary":329,"deductions":330},"The movie-grabber plugin v1.0 exhibits a strong foundational security posture, with no identified vulnerabilities in its history and a clean taint analysis. The static analysis reveals a commendable lack of direct attack surface points like AJAX handlers, REST API routes, and shortcodes, especially those without authentication checks.  This significantly reduces the immediate opportunities for exploitation.\n\nHowever, several areas warrant attention. The complete absence of capability checks and the presence of SQL queries not using prepared statements are significant concerns. While the current taint analysis found no issues, the lack of capability checks means that any user, regardless of role, could potentially trigger sensitive actions if an exploit path were discovered. Furthermore, the 100% of SQL queries not using prepared statements is a direct risk for SQL injection vulnerabilities, even if no such flows were detected in the limited taint analysis. The moderate rate of unescaped output also presents a potential Cross-Site Scripting (XSS) risk.\n\nOverall, the plugin benefits from a small attack surface and no known CVEs. The main weaknesses lie in the handling of database queries and access control. Addressing the SQL prepared statements and implementing capability checks would greatly enhance its security, especially given the potential for future vulnerabilities to emerge in an unpatched codebase.",[331,333,335],{"reason":332,"points":11},"SQL queries not using prepared statements",{"reason":334,"points":276},"No capability checks",{"reason":336,"points":214},"Unescaped output present","2026-03-17T05:39:55.943Z",{"wat":339,"direct":348},{"assetPaths":340,"generatorPatterns":343,"scriptPaths":344,"versionParams":345},[341,342],"\u002Fwp-content\u002Fplugins\u002Fmovie-grabber\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fmovie-grabber\u002Fjs\u002Fcustom.js",[],[342],[346,347],"movie-grabber\u002Fstyle.css?ver=","movie-grabber\u002Fjs\u002Fcustom.js?ver=",{"cssClasses":349,"htmlComments":350,"htmlAttributes":351,"restEndpoints":352,"jsGlobals":353,"shortcodeOutput":354},[],[],[],[],[],[]]