[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCavzcgLT7_VDS5ykcSIye6Z---ZZOQu2_uTr6kYu4d4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":135,"fingerprints":185},"my-ibook","MyiBook Widget","1.3","zzasha2007","https:\u002F\u002Fprofiles.wordpress.org\u002Fzzasha2007\u002F","\u003Cp>MyiBook Social Network is: a new mixture of guestbook, shoutbox and comment system for your website & personal blog’s article, social bookmarking or online bookmarking system. It lets you build your own social network on the Internet and to improve popularity of your website.\u003C\u002Fp>\n\u003Cp>With MyiBook WordPress Widget, you can show your latest iBook messages signed by your visitor or friends.\u003Cbr \u002F>\nIt will display the last N posted messages (you can modify the setting how many posted\u002Fsigned messages to be displayed).\u003C\u002Fp>\n\u003Ch3>Frequntly Asked Qustions\u003C\u002Fh3>\n\u003Cp>If you have questions, please send to support[at]eshiok[dot]com\u003C\u002Fp>\n","MyiBook Social Network is: a new mixture of guestbook, shoutbox and comment system for your website & personal blog's article, social bookmar …",10,4301,0,"2011-11-19T14:02:00.000Z","3.2.1","2.8","",[19,20,21,22,23],"buddypress","guestbook","myibook","seo","social-network","http:\u002F\u002Fwww.eshiok.com\u002Fcomponent\u002Foption,com_docman\u002Ftask,doc_details\u002Fgid,49\u002FItemid,29\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-ibook.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},2,20,30,84,"2026-04-05T22:06:58.102Z",[37,59,79,98,117],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":57,"download_link":58,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"buddypress-edit-activity","BuddyPress Edit Activity","1.1.1","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>Let your BuddyPress members edit their activity posts and replies on the front-end of the site. You can even set a time limit for how long activity posts should remain editable.\u003C\u002Fp>\n\u003Cp>Just activate the plugin, and every activity post and reply will become editable, styled automatically by BuddyPress to fit with your theme.\u003C\u002Fp>\n","BuddyPress Edit Activity allows your members to edit their activity posts on the front-end of your BuddyPress-powered site.",900,75058,92,17,"2020-04-23T13:56:00.000Z","5.4.19","3.8",[53,19,54,55,56],"activity","messaging","profiles","social-networking","https:\u002F\u002Fwww.buddyboss.com\u002Fproduct\u002Fbuddypress-edit-activity\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-edit-activity.1.1.1.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":34,"num_ratings":69,"last_updated":70,"tested_up_to":50,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":77,"download_link":78,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"advanced-xprofile-fields-for-buddypress","Advanced XProfile Fields for BuddyPress","1.0.4.2","SuitePlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fsuiteplugins\u002F","\u003Cp>Advanced XProfile Fields for BuddyPress creates a way to enhance your BuddyPress profile fields.\u003C\u002Fp>\n\u003Ch4>Take control of all your field labels\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Create 1 profile field and change the label shown on Registration, Profile Edit, My Profile, Other User Profile screen\u003C\u002Fli>\n\u003Cli>Add a label for user listing screen\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Validate fields on Profile Edit\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set Character Limits\u003C\u002Fli>\n\u003Cli>Set Minimum Character Requirements\u003C\u002Fli>\n\u003Cli>Text Format\u003Cbr \u002F>\n** Force text formats – Alphanumeric, Alpha, Email and URL\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Additional Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Hide field on registration page\u003C\u002Fli>\n\u003Cli>Make a field non-editable after a user has saved entry. Perfect for field like Gender, Title etc\u003C\u002Fli>\n\u003Cli>Show fields in admin. Show the profile field in the user’s admin list.\u003C\u002Fli>\n\u003C\u002Ful>\n","Enhance your BuddyPress profile fields with Advanced XProfile Fields for BuddyPress. Manage fields labels, validation and show fields in admin.",100,13299,5,"2020-04-26T18:57:00.000Z","3.2","5.3",[19,74,75,76,23],"buddypress-groups","buddypress-profile-field","groups","http:\u002F\u002Fsuiteplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-xprofile-fields-for-buddypress.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":67,"downloaded":87,"rating":67,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":96,"download_link":97,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"buddykit","BuddyKit – Additional features for BuddyPress","0.0.4","Joseph G.","https:\u002F\u002Fprofiles.wordpress.org\u002Fdunhakdis\u002F","\u003Cp>BuddyKit adds several features like Live Notifications and Media Activities to your BuddyPress sites. More social media related features are coming soon!\u003C\u002Fp>\n","BuddyKit adds several features like Live Notifications and Media Activities to your BuddyPress powered websites.",12833,1,"2019-09-08T10:15:00.000Z","4.9.29","4.5","5.4",[94,19,95,56],"activity-streams","community","https:\u002F\u002Fbuddykit.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddykit.0.0.4.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":108,"num_ratings":31,"last_updated":109,"tested_up_to":90,"requires_at_least":110,"requires_php":17,"tags":111,"homepage":115,"download_link":116,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"bp-power-seo","BuddyPress Power SEO","1.2","SK","https:\u002F\u002Fprofiles.wordpress.org\u002Fsooskriszta\u002F","\u003Cp>WordPress SEO plugins don’t do the job for BuddyPress. This plugin solves that.\u003C\u002Fp>\n\u003Cp>BP Power SEO brings powerful SEO features to your BuddyPress installation. Now your social network or community can be supercharged for Google!\u003C\u002Fp>\n\u003Cp>BP Power SEO creates XML sitemaps that you can submit to Google, Bing, Yahoo!, Yandex, Baidu, etc. to dramatically increase your discoverability. You can configure the sitemap to enable or disable members sitemap, groups sitemap, and searches (autolinks) sitemap.\u003C\u002Fp>\n\u003Cp>BP Power SEO also enables you to rewrite titles for BuddyPress pages, similar to how WordPress SEO plugins enable you to do so for WordPress posts\u002Fpages.\u003C\u002Fp>\n\u003Cp>Finally, BP Power SEO brings your community into the Semantic Web, with structured data, also known as Google Rich Snippets. Structured data markup is added to member and group pages. You can easily map the user XProfile fields to schema.org fields.\u003C\u002Fp>\n","WordPress SEO plugins don't do the job for BuddyPress. This plugin solves that.",40,3547,60,"2018-06-20T18:25:00.000Z","4.8",[112,19,113,114,22],"bp","buddypress-search-engine-optimization","buddypress-seo","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-power-seo\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-power-seo.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":106,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":17,"tags":131,"homepage":133,"download_link":134,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"buddypress-who-clicked-at-my-profile","Buddypress Who clicked at my Profile?","3.6","quan_flo","https:\u002F\u002Fprofiles.wordpress.org\u002Fquan_flo\u002F","\u003Cp>\u003Cstrong>Do you want to increase your buddypress user’s interaction?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Tell them if other visited their profile!\u003C\u002Fp>\n\u003Cp>This plugin will notify your members about other members that visited their profile via buddypress notification system.\u003Cbr \u002F>\nThis plugin also provides a widget that shows last profile visitors for the logged in user.\u003Cbr \u002F>\nThis plugin provides a shortcode that can be used anywhere to display the logged in user’s visitors\u003C\u002Fp>\n\u003Cp>Shortcode usage:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[buddypresswcamp_show_visits]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Use Parameter to show avatars insted of links or configure how many last visitors should be shown.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[buddypresswcamp_show_visits showAvatars=1 amount=5]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If you use bbpress \u003C 2.6 please apply the changes described there: https:\u002F\u002Fbbpress.trac.wordpress.org\u002Fticket\u002F2779 to get the notifications working\u003C\u002Fp>\n\u003Cp>\u003Cstrong>More about me and my plugins\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Since the year 1999 I do administration, customizing and programming for several forums, communities and social networks. In the year 2013 I switched from another PHP framework to WordPress.\u003Cbr \u002F>\nBecause not all plugins I’d like to have exist already I wrote some own plugins and I think I’ll continue to do so.\u003C\u002Fp>\n\u003Cp>If you have the scope at forums or social networks my other modules might also be interesting for you. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch.php?q=quan_flo\" title=\"ifs-net \u002F quan_flo WordPress Plugins\" rel=\"ugc\">Just take a look at my WordPress Profile to see all my Plugins.\u003C\u002Fa> Use them and if my work helps you to save time, earn money or just makes you happy feel free to donate – Thanks. The donation link can be found at the right sidebar next to this text.\u003C\u002Fp>\n","This plugin will notify your members about other members that visited their profile. This plugin also provides a widget that shows last profile visito …",15155,98,15,"2016-07-25T18:23:00.000Z","4.7.32","4.2",[19,132,23],"profile","http:\u002F\u002Fifs-net.de","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-who-clicked-at-my-profile.zip",{"attackSurface":136,"codeSignals":148,"taintFlows":173,"riskAssessment":174,"analyzedAt":184},{"hooks":137,"ajaxHandlers":144,"restRoutes":145,"shortcodes":146,"cronEvents":147,"entryPointCount":13,"unprotectedCount":13},[138],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","widgets_init","myibookInit","myiBook-widget.php",94,[],[],[],[],{"dangerousFunctions":149,"sqlUsage":150,"outputEscaping":152,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":172},[],{"prepared":13,"raw":13,"locations":151},[],{"escaped":13,"rawEcho":153,"locations":154},8,[155,158,160,162,164,166,168,170],{"file":142,"line":156,"context":157},34,"raw output",{"file":142,"line":159,"context":157},38,{"file":142,"line":161,"context":157},41,{"file":142,"line":163,"context":157},44,{"file":142,"line":165,"context":157},75,{"file":142,"line":167,"context":157},77,{"file":142,"line":169,"context":157},79,{"file":142,"line":171,"context":157},81,[],[],{"summary":175,"deductions":176},"The \"my-ibook\" plugin v1.3 exhibits a strong security posture in several key areas, particularly concerning its attack surface and SQL query handling. The absence of AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points is commendable, suggesting a minimal attack surface. Furthermore, the fact that all SQL queries utilize prepared statements indicates robust protection against common SQL injection vulnerabilities. The plugin also has no recorded vulnerability history, which generally points to a well-maintained and secure codebase over time.\n\nHowever, the static analysis reveals a significant concern regarding output escaping. With 100% of the identified outputs not being properly escaped, there is a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any data displayed to users that originates from the plugin without proper sanitization could be exploited by attackers to inject malicious scripts. The lack of nonce checks and capability checks, while not immediately indicative of a vulnerability given the zero attack surface, leaves the plugin susceptible if new entry points are introduced in future updates without proper security considerations.\n\nIn conclusion, while \"my-ibook\" v1.3 demonstrates strengths in its limited attack surface and secure SQL practices, the unescaped output represents a critical weakness that needs immediate attention. The absence of past vulnerabilities is positive, but it does not mitigate the current risk posed by XSS vulnerabilities. Developers should prioritize implementing proper output escaping to ensure user data and the website itself are protected.",[177,180,182],{"reason":178,"points":179},"All outputs are unescaped",18,{"reason":181,"points":69},"No nonce checks",{"reason":183,"points":69},"No capability checks","2026-03-17T01:33:38.028Z",{"wat":186,"direct":192},{"assetPaths":187,"generatorPatterns":188,"scriptPaths":189,"versionParams":191},[],[],[190],"http:\u002F\u002Fwww.eshiok.com\u002Fcomponents\u002Fcom_ibook\u002FmyiBook.php",[],{"cssClasses":193,"htmlComments":195,"htmlAttributes":196,"restEndpoints":206,"jsGlobals":207,"shortcodeOutput":208},[194],"widget_myibook",[],[197,198,199,200,201,202,203,204,205],"for=\"myibookid\"","id=\"myibookid\"","name=\"myibookid\"","for=\"totalPost\"","id=\"totalPost\"","name=\"totalPost\"","for=\"ibookwidth\"","id=\"ibookwidth\"","name=\"ibookwidth\"",[],[],[209,210,211,212],"\u003Cscript language=\"javascript\" type=\"text\u002Fjavascript\" src=\"http:\u002F\u002Fwww.eshiok.com\u002Fcomponents\u002Fcom_ibook\u002FmyiBook.php?id=","&target=_blank&width=","&totalcomment=","&skin=default\">\u003C\u002Fscript>"]