[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_Icv1rhRr_LdmOFfJJpq03rSFLf1CQ5C9QvRct4Gubk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":17,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":141,"fingerprints":206},"multisite-widget-link","MultiSite Widget Link","1.0.2","Bastien Ho","https:\u002F\u002Fprofiles.wordpress.org\u002Fbastho\u002F","\u003Cp>Simply add widgets in order to link another blog in a multisite instance\u003C\u002Fp>\n\u003Cp>This plugin needs a multisite installation.\u003C\u002Fp>\n","Simply add widgets in order to link another blog in a multisite instance",10,2037,0,"2023-01-26T18:03:00.000Z","6.1.10","3.1","",[19,20,21,22],"banner","multisite","network","widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisite-widget-link.1.0.2.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"bastho",12,2150,88,15,86,"2026-04-04T10:44:22.651Z",[37,55,73,97,120],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":11,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":17,"tested_up_to":48,"requires_at_least":17,"requires_php":17,"tags":49,"homepage":52,"download_link":53,"security_score":46,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":54},"multisite-dashboard-broadcast","Multisite Dashboard Broadcast","0.1","mogita","https:\u002F\u002Fprofiles.wordpress.org\u002Fck65\u002F","\u003Cp>NOTE: ONLY works with multisite (aka WordPress Network) mode for now.\u003C\u002Fp>\n\u003Cp>A super-easy-to-use Multisite WordPress news broadcasting tool for the Super Admin of the Network.\u003C\u002Fp>\n\u003Cp>This plugin can be helpful for the Super Admins to push a notification, some kind of messages, even some Ads if they like, to every site admins who registered under your Multisite WordPress network. The added widget will go to the first place of all widgets, unless the site admins move it elsewhere.\u003C\u002Fp>\n\u003Cp>This is a very simple task but yet no plugins ever met my simple need, so I made one for myself, and hope it helps you too.\u003C\u002Fp>\n\u003Cp>Key Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add a widget to every site admin’s dashboard (by Super Admin only)\u003C\u002Fli>\n\u003Cli>Support HTML content\u003C\u002Fli>\n\u003Cli>Comes at the top of all widgets\u003C\u002Fli>\n\u003Cli>Site admins can move or hide it as they wish\u003C\u002Fli>\n\u003Cli>Multi languages support (available in English and Chinese till now)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can find the configuration page at Manage Network -> Settings -> Dashbaord Broadcast.\u003C\u002Fp>\n","Place a widget on top of every site's dashboard under the same Multisite installation, containing whatever content the Super Admin writes.",2361,100,2,"3.5.2",[50,20,21,22,51],"dashboard","wpmu","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmultisite-dashboard-broadcast\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisite-dashboard-broadcast.zip","2026-03-15T10:48:56.248Z",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":11,"downloaded":63,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":71,"download_link":72,"security_score":46,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":54},"network-sites-counts-dashboard-widget","Network Sites Counts Dashboard Widget","1.0.0","Michael Beckwith","https:\u002F\u002Fprofiles.wordpress.org\u002Ftw2113\u002F","\u003Cp>A new dashboard widget in your network admin dashboard will show total published and draft posts and pages across all the sites in your network, giving you a snapshot of the current status of your total content.\u003C\u002Fp>\n\u003Cp>Contribute \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftw2113\u002FNetwork-Sites-Counts-Dashboard-Widget\" rel=\"nofollow ugc\">on Github\u003C\u002Fa>.\u003C\u002Fp>\n","Display a list of post counts for all your sites in your network.",2069,"6.2.9","3.5.0","7.4",[68,69,20,21,70],"dashboard-widget","mu","post-count","https:\u002F\u002Fmichaelbox.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnetwork-sites-counts-dashboard-widget.1.0.0.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":17,"tags":88,"homepage":92,"download_link":93,"security_score":94,"vuln_count":95,"unpatched_count":13,"last_vuln_date":96,"fetched_at":26},"image-widget","Image Widget","4.4.11","StellarWP","https:\u002F\u002Fprofiles.wordpress.org\u002Fstellarwp\u002F","\u003Cp>Image Widget is a simple plugin that uses the native WordPress media manager to add image widgets to your site.\u003C\u002Fp>\n\u003Ch4>Image Widget Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Responsive\u003C\u002Fli>\n\u003Cli>MU Compatible\u003C\u002Fli>\n\u003Cli>Handles image resizing and alignment\u003C\u002Fli>\n\u003Cli>Link the image\u003C\u002Fli>\n\u003Cli>Add title and description\u003C\u002Fli>\n\u003Cli>Versatile – all fields are optional\u003C\u002Fli>\n\u003Cli>Upload, link to external image, or select an image from your media collection\u003C\u002Fli>\n\u003Cli>Customize the look & feel with filter hooks or theme overrides\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Quality You Can Trust\u003C\u002Fh4>\n\u003Cp>Image Widget is developed and maintained by \u003Ca href=\"https:\u002F\u002Fevnt.is\u002F1aor\" rel=\"nofollow ugc\">The Events Calendar\u003C\u002Fa>, the same folks behind \u003Ca href=\"https:\u002F\u002Fevnt.is\u002F19me\" rel=\"nofollow ugc\">The Events Calendar, Event Tickets, and a full suite of premium plugins\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin is actively supported by our team and contributions from community members. If you see a question in the forum you can help with or have a great idea and want to code it up or submit a patch, that would be awesome! Not only will we shower you with praise and thanks, it’s also a good way to get to know us and lead into options for paid work if you freelance.\u003C\u002Fp>\n\u003Ch4>Pull Requests & Translations\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthe-events-calendar\u002Fimage-widget\" rel=\"nofollow ugc\">Check us out on GitHub\u003C\u002Fa> to pull request changes.\u003C\u002Fp>\n\u003Cp>Translations can be submitted \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fimage-widget\" rel=\"nofollow ugc\">here on WordPress.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>The built in template can be overridden by files within your template.\u003C\u002Fp>\n\u003Ch4>Default vs. Custom Templates\u003C\u002Fh4>\n\u003Cp>The Image Widget comes with a default template for the widget output. If you would like to alter the widget display code, create a new folder called “image-widget” in your template directory and copy over the “views\u002Fwidget.php” file.\u003C\u002Fp>\n\u003Cp>Edit the new file to your hearts content. Please do not edit the one in the plugin folder as that will cause conflicts when you update the plugin to the latest release.\u003C\u002Fp>\n\u003Cp>New in 3.2: You may now also use the “sp_template_image-widget_widget.php” filter to override the default template behavior for .php template files. Eg: if you wanted widget.php to reside in a folder called my-custom-templates\u002F and wanted it to be called my-custom-name.php:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter('sp_template_image-widget_widget.php', 'my_template_filter');\nfunction my_template_filter($template) {\n    return get_template_directory() . '\u002Fmy-custom-templates\u002Fmy-custom-name.php';\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Filters\u003C\u002Fh4>\n\u003Cp>There are a number of filters in the code that will allow you to override data as you see fit. The best way to learn what filters are available is always by simply searching the code for ‘apply_filters’. But all the same, here are a few of the more essential filters:\u003C\u002Fp>\n\u003Cp>\u003Cem>widget_title\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>This is actually a pretty typical filter in widgets and is applied to the widget title.\u003C\u002Fp>\n\u003Cp>\u003Cem>widget_text\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Another very typical widget filter that is applied to the description body text. This filter also takes 2 additional arguments for $args and $instance so that you can learn more about the specific widget instance in the process of filtering the content.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_attachment_id\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the attachment id of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_url\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the url of the image displayed in the widget.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003Cbr \u002F>\nTHIS IS DEPRECATED AND WILL EVENTUALLY BE DELETED\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_width\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the display width of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_height\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the display height of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_maxwidth\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the inline max-width style of the image. Hint: override this to use this in responsive designs 🙂\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003Cbr \u002F>\nReturn null to remove this css from the image output (defaults to ‘100%’).\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_maxheight\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the inline max-height style of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003Cbr \u002F>\nReturn null to remove this css from the image output (defaults to null)\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_size\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the selected image ‘size’ corresponding to WordPress registered sizes.\u003Cbr \u002F>\nIf this is set to ‘tribe_image_widget_custom’ then the width and height are used instead.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_align\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the display alignment of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_alt\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the alt text of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_link\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the url that the image links to.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_link_target\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the link target of the image link.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_attributes\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters a list of image attributes used in the image output. Similar to ‘wp_get_attachment_image_attributes’\u003Cbr \u002F>\nAccepts $instance arguments\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_link_attributes\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters a list of attributes used in the image link. Similar to ‘wp_get_attachment_image_attributes’\u003Cbr \u002F>\nAccepts $instance arguments\u003C\u002Fp>\n\u003Ch4>Have You Supported the Image Widget?\u003C\u002Fh4>\n\u003Cp>If so, then THANK YOU! Also, feel free to add this line to your wp-config.php file to prevent the image widget from displaying a message after upgrades.\u003C\u002Fp>\n\u003Cp>define( ‘I_HAVE_SUPPORTED_THE_IMAGE_WIDGET’, true );\u003C\u002Fp>\n\u003Cp>For more info on the philosophy here, check out our \u003Ca href=\"http:\u002F\u002Ftri.be\u002Fdefine-i-have-donated-true\u002F\" rel=\"nofollow ugc\">blog post\u003C\u002Fa>\u003C\u002Fp>\n","A simple image widget that uses the native WordPress media manager to add image widgets to your site.",100000,4620377,98,287,"2024-11-20T20:44:00.000Z","6.7.5","3.5",[89,19,90,91,22],"ad","image","sidebar","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimage-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-widget.4.4.11.zip",91,1,"2024-11-22 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":107,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":17,"tags":112,"homepage":118,"download_link":119,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"lightweight-social-icons","Lightweight Social Icons","1.1","Tom","https:\u002F\u002Fprofiles.wordpress.org\u002Fedge22\u002F","\u003Cp>Lightweight Social Icons is an easy to use, lightweight social icon widget which lets you display your favorite social profile icons.\u003C\u002Fp>\n\u003Cp>The icons use an icon font, meaning you can choose the size, border radius (roundess), color and hover color of your icons!\u003C\u002Fp>\n\u003Cp>Check out GeneratePress, our awesome WordPress theme! (https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fgeneratepress)\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choose your own order\u003C\u002Fli>\n\u003Cli>Icon size\u003C\u002Fli>\n\u003Cli>Border radius\u003C\u002Fli>\n\u003Cli>Background color\u003C\u002Fli>\n\u003Cli>Text\u002Ficon color\u003C\u002Fli>\n\u003Cli>Background color on hover\u003C\u002Fli>\n\u003Cli>Text\u002Ficon color on hover\u003C\u002Fli>\n\u003Cli>Open links in new window\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable tooltips\u003C\u002Fli>\n\u003Cli>Alignment of icons\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Included icons:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Email\u003C\u002Fli>\n\u003Cli>RSS\u003C\u002Fli>\n\u003Cli>Stumbleupon\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Soundcloud\u003C\u002Fli>\n\u003Cli>DeviantArt\u003C\u002Fli>\n\u003Cli>Phone\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003Cli>Dribbble\u003C\u002Fli>\n\u003Cli>Foursquare\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Spotify\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Vine\u003C\u002Fli>\n\u003Cli>Codepen\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>JSFiddle\u003C\u002Fli>\n\u003Cli>Stack Overflow\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Dropbox\u003C\u002Fli>\n\u003Cli>Steam\u003C\u002Fli>\n\u003Cli>Behance\u003C\u002Fli>\n\u003Cli>iTunes\u003C\u002Fli>\n\u003Cli>Yelp\u003C\u002Fli>\n\u003Cli>500px\u003C\u002Fli>\n\u003Cli>AngelList\u003C\u002Fli>\n\u003Cli>Blog Lovin’\u003C\u002Fli>\n\u003Cli>Paper Plane (Newsletter)\u003C\u002Fli>\n\u003Cli>VK\u003C\u002Fli>\n\u003Cli>Xing\u003C\u002Fli>\n\u003Cli>Bandcamp\u003C\u002Fli>\n\u003Cli>BitBucket\u003C\u002Fli>\n\u003Cli>Snapchat\u003C\u002Fli>\n\u003Cli>Trip Advisor\u003C\u002Fli>\n\u003Cli>Houzz\u003C\u002Fli>\n\u003Cli>Mixcloud\u003C\u002Fli>\n\u003Cli>Last.fm\u003C\u002Fli>\n\u003C\u002Ful>\n","Looking to add simple social icons to your widget areas? Choose the size and color of your icons, and then choose from 47 different social profiles.",30000,464772,94,63,"2020-03-18T17:14:00.000Z","5.4.19","4.5",[113,114,115,116,117],"social-icon-widget","social-icons","social-media","social-networking","social-profiles","http:\u002F\u002Fgeneratepress.com\u002Flightweight-social-icons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightweight-social-icons.1.1.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":107,"num_ratings":130,"last_updated":131,"tested_up_to":86,"requires_at_least":132,"requires_php":17,"tags":133,"homepage":136,"download_link":137,"security_score":138,"vuln_count":139,"unpatched_count":95,"last_vuln_date":140,"fetched_at":26},"wp-social-widget","WP Social Widget","2.3.1","catchsquare","https:\u002F\u002Fprofiles.wordpress.org\u002Fcatchsquare\u002F","\u003Cp>WP Social Widget is a plugin which takes a simple, extendable approach to display links along with social icons to your social networking  profiles in WordPress\u003C\u002Fp>\n\u003Cp>You will find following widget with options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Background Color\u003C\u002Fli>\n\u003Cli>Background Hover Color\u003C\u002Fli>\n\u003Cli>Icon Color\u003C\u002Fli>\n\u003Cli>Icon Hover Color\u003C\u002Fli>\n\u003Cli>Icon to circle\u003C\u002Fli>\n\u003Cli>Input fields to input your social profile links\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>From ver 2.0.0, we also have added shortcode feature . You can use shortcode => \u003Ccode>[wpsw]\u003C\u002Fcode> to produce the social icons.\u003Cbr \u002F>\nBefore that you need to assign social link in the shortcode.\u003Cbr \u002F>\nFor example \u003Ccode>[wpsw background_color = \"#ffffff\" facebook=\"your_profile_url\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch4>Here are the parameters of the shortcode given below\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>background_color        [default: #ffffff ]       \u003C\u002Fli>\n\u003Cli>background_hover_color  [default: #000000 ]  \u003C\u002Fli>\n\u003Cli>icon_color              [default: #000000 ]           \u003C\u002Fli>\n\u003Cli>icon_hover_color        [default: #ffffff ]    \u003C\u002Fli>\n\u003Cli>target                  [default: _blank options: same as \u003Ccode>\u003Ca>\u003C\u002Fcode> tag’s target attribute  ]\u003C\u002Fli>\n\u003Cli>icon_circle             [default: “no” | options: yes,no ] \u003C\u002Fli>\n\u003Cli>title                   \u003C\u002Fli>\n\u003Cli>facebook              \u003C\u002Fli>\n\u003Cli>twitter               \u003C\u002Fli>\n\u003Cli>behance               \u003C\u002Fli>\n\u003Cli>dribbble              \u003C\u002Fli>\n\u003Cli>flickr                \u003C\u002Fli>\n\u003Cli>foursquare            \u003C\u002Fli>\n\u003Cli>github                \u003C\u002Fli>\n\u003Cli>google                \u003C\u002Fli>\n\u003Cli>instagram             \u003C\u002Fli>\n\u003Cli>linkedin              \u003C\u002Fli>\n\u003Cli>mail                  \u003C\u002Fli>\n\u003Cli>pinterest             \u003C\u002Fli>\n\u003Cli>rss                   \u003C\u002Fli>\n\u003Cli>skype                 \u003C\u002Fli>\n\u003Cli>soundcloud            \u003C\u002Fli>\n\u003Cli>stumbleupon           \u003C\u002Fli>\n\u003Cli>tumblr                \u003C\u002Fli>\n\u003Cli>vimeo                 \u003C\u002Fli>\n\u003Cli>vine                  \u003C\u002Fli>\n\u003Cli>vk                    \u003C\u002Fli>\n\u003Cli>xing                  \u003C\u002Fli>\n\u003Cli>yelp                  \u003C\u002Fli>\n\u003Cli>youtube\u003C\u002Fli>\n\u003C\u002Ful>\n","A widget to add links of social networking sites.",4000,121857,11,"2025-05-25T08:42:00.000Z","2.8",[114,134,115,135,121],"social-links","social-network","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-social-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-social-widget.2.3.1.zip",74,5,"2025-09-22 00:00:00",{"attackSurface":142,"codeSignals":154,"taintFlows":195,"riskAssessment":196,"analyzedAt":205},{"hooks":143,"ajaxHandlers":150,"restRoutes":151,"shortcodes":152,"cronEvents":153,"entryPointCount":13,"unprotectedCount":13},[144],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","widgets_init","MultiSiteWidgetLink_register_widgets","multisite-widget-link.php",110,[],[],[],[],{"dangerousFunctions":155,"sqlUsage":156,"outputEscaping":158,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":194},[],{"prepared":95,"raw":13,"locations":157},[],{"escaped":13,"rawEcho":159,"locations":160},20,[161,164,166,168,170,171,173,175,176,178,180,181,182,184,186,187,188,189,191,193],{"file":148,"line":162,"context":163},42,"raw output",{"file":148,"line":165,"context":163},44,{"file":148,"line":167,"context":163},46,{"file":148,"line":169,"context":163},48,{"file":148,"line":169,"context":163},{"file":148,"line":172,"context":163},50,{"file":148,"line":174,"context":163},73,{"file":148,"line":174,"context":163},{"file":148,"line":177,"context":163},75,{"file":148,"line":179,"context":163},76,{"file":148,"line":179,"context":163},{"file":148,"line":179,"context":163},{"file":148,"line":183,"context":163},80,{"file":148,"line":185,"context":163},83,{"file":148,"line":185,"context":163},{"file":148,"line":24,"context":163},{"file":148,"line":34,"context":163},{"file":148,"line":190,"context":163},93,{"file":148,"line":192,"context":163},96,{"file":148,"line":192,"context":163},[],[],{"summary":197,"deductions":198},"The multisite-widget-link v1.0.2 plugin exhibits a mixed security posture. On the positive side, it has no known vulnerabilities in its history, and the static analysis shows no dangerous functions, no file operations, no external HTTP requests, and importantly, its single SQL query uses prepared statements, which is a significant best practice. The absence of any identified taint flows is also encouraging, suggesting a lack of easily discoverable injection vulnerabilities.\n\nHowever, there are significant concerns arising from the code analysis. The complete lack of nonce checks and capability checks across all entry points is a critical oversight. While the attack surface appears small with zero entry points, any future additions or modifications without these essential security measures would expose the site to serious risks like Cross-Site Request Forgery (CSRF) and unauthorized actions. Furthermore, the fact that 100% of the 20 output operations are not properly escaped presents a high risk of Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the website's content.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and secure SQL practices, the glaring deficiencies in output escaping and the complete absence of nonces and capability checks represent substantial security weaknesses. These issues significantly increase the risk of XSS and potential unauthorized actions, despite the seemingly small attack surface. Addressing the unescaped output and implementing proper authorization checks should be the immediate priority for any user of this plugin.",[199,201,203],{"reason":200,"points":33},"All output is unescaped (high XSS risk)",{"reason":202,"points":11},"No nonce checks",{"reason":204,"points":11},"No capability checks","2026-03-17T00:09:55.809Z",{"wat":207,"direct":212},{"assetPaths":208,"generatorPatterns":209,"scriptPaths":210,"versionParams":211},[],[],[],[],{"cssClasses":213,"htmlComments":214,"htmlAttributes":215,"restEndpoints":217,"jsGlobals":218,"shortcodeOutput":219},[],[],[216],"data-multisite-widget-link",[],[],[]]