[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHvfxk7Zss70gUAPbqGVp9lu1DPbdoSs9Fi_fwHfXx1I":3,"$ft3909GyV6t6Wosp7hrUn0gI5WFMbTC1GWAfvKlywaPc":228,"$fJb_G6t6FyrQ6JlT2sbRUXcPiBY90cmOWPBMh5Kr3eEU":233},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":7,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":37,"analysis":141,"fingerprints":206},"my-review","My Review","1.2","","https:\u002F\u002Fprofiles.wordpress.org\u002Fmike_sapiens\u002F","\u003Cp>My Review plugin helps you format your post as a review by making it easier for your readers to spot the good and the bad of the product\u002Fservice you’re reviewing. You can also rate different aspects(price, quality, taste – you name it) of it according to your liking.\u003Cbr \u002F>\nYou can customize the formatting by modifying the template found in the plugin’s directory.\u003C\u002Fp>\n\u003Ch3>Tutorial\u003C\u002Fh3>\n\u003Cp>See the \u003Ca href=\"http:\u002F\u002Fwordpress.sapiensworks.com\u002Farticles\u002Fmy-review-nice-plugin-for-reviewers\u002F\" rel=\"nofollow ugc\">plugin page\u003C\u002Fa> for examples how to use it.\u003C\u002Fp>\n\u003Ch3>Release Notes\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>1.2\u003C\u002Fstrong> – Added i18n support + new special tag (see the tutorial)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1.0.2\u003C\u002Fstrong> – Plugin is more php4 friendly now.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1.0.1\u003C\u002Fstrong> – Accents are properly handled in ratings names.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1.0\u003C\u002Fstrong> – First version released\u003C\u002Fp>\n","My Review plugin helps you format your post as a review.",10,8670,100,1,"2008-06-07T08:26:00.000Z","2.5.1","2.5",[19,20,21,22,23],"content-formatting","i18n","internationalization","post","review","http:\u002F\u002Fwordpress.sapiensworks.com\u002Farticles\u002Fmy-review-nice-plugin-for-reviewers\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-review.1.2.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":33,"display_name":33,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"mike_sapiens",30,84,"2026-05-19T22:13:15.773Z",[38,62,83,101,118],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":60,"download_link":61,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"public-post-preview","Public Post Preview","3.1.0","Dominik Schilling","https:\u002F\u002Fprofiles.wordpress.org\u002Focean90\u002F","\u003Cp>Share a link to anonymous users to preview a draft of a post (or any other public post type) before it is published.\u003C\u002Fp>\n\u003Cp>Have you ever been writing a post with the help of someone who does not have access to your site and needed to give them the ability to preview it before publishing? This plugin takes care of that by generating an URL with an expiring nonce that can be given out for public preview.\u003C\u002Fp>\n\u003Cp>\u003Cem>Previously this plugin was maintained by \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsivel\u002F\" rel=\"nofollow ugc\">Matt Martz\u003C\u002Fa> and was an idea of \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fjdingman\u002F\" rel=\"nofollow ugc\">Jonathan Dingman\u003C\u002Fa>. Photo by \u003Ca href=\"https:\u002F\u002Funsplash.com\u002Fphotos\u002Fopened-book-on-grass-during-daytime-bhBONc07WsI\" rel=\"nofollow ugc\">Annelies Geneyn\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>To enable a public post preview check the box in the document settings. In the classic editor it’s in the “Publish” meta box.\u003C\u002Fli>\n\u003Cli>The link will be displayed if the checkbox is checked, you can copy and share the link with your friends.\u003C\u002Fli>\n\u003Cli>To disable a preview uncheck the box again.\u003C\u002Fli>\n\u003C\u002Ful>\n","Allow anonymous users to preview a draft of a post before it is published.",100000,1620271,90,79,"2026-03-01T16:13:00.000Z","7.0","6.6","8.0",[55,56,57,58,59],"anonymous","drafts","posts","preview","public","https:\u002F\u002Fgithub.com\u002Focean90\u002Fpublic-post-preview","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublic-post-preview.3.1.0.zip",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":51,"tags":77,"homepage":81,"download_link":82,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"performant-translations","Performant Translations","1.2.0","Pascal Birchler","https:\u002F\u002Fprofiles.wordpress.org\u002Fswissspidy\u002F","\u003Cp>Making internationalization\u002Flocalization in WordPress faster than ever before.\u003C\u002Fp>\n\u003Ch3>Disclaimer about WordPress 6.5\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Attention:\u003C\u002Fstrong> most functionality of this plugin has been merged into WordPress 6.5! You might not need it anymore.\u003C\u002Fp>\n\u003Cp>\u003Cem>However\u003C\u002Fem>, this plugin is still relevant for cases where language packs are not downloaded from WordPress.org but somewhere else, for example if you are developing your own plugins or using commercial plugins.\u003C\u002Fp>\n\u003Cp>The Performant Translations plugin converts the translation files of those plugins to the new file format introduced in WordPress 6.5, to really optimize them for speed.\u003C\u002Fp>\n\u003Ch3>What this plugin does\u003C\u002Fh3>\n\u003Cp>This project uses a new approach to handle translation files in WordPress, making localization blazing fast.\u003C\u002Fp>\n\u003Cp>An \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2023\u002F07\u002F24\u002Fi18n-performance-analysis\u002F\" rel=\"nofollow ugc\">in-depth i18n performance analysis\u003C\u002Fa> showed that localized WordPress sites load significantly slower than a site without translations.\u003C\u002Fp>\n\u003Cp>With this plugin’s new approach to localization, this overhead is massively reduced, making your site fast again. It does so by converting \u003Ccode>.mo\u003C\u002Fcode> translation files to \u003Ccode>.php\u003C\u002Fcode> files.\u003C\u002Fp>\n\u003Cp>If your site is using a language other than English (US), you should see immediate speed improvements simply by activating this plugin.\u003C\u002Fp>\n","Making internationalization\u002Flocalization in WordPress faster than ever before.",40000,196117,98,16,"2025-12-05T10:38:00.000Z","6.9.4","6.5",[20,21,78,79,80],"localization","performance","translation","https:\u002F\u002Fgithub.com\u002Fswissspidy\u002Fperformant-translations","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fperformant-translations.1.2.0.zip",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":13,"num_ratings":93,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":7,"tags":97,"homepage":99,"download_link":100,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"public-post-preview-configurator","Public Post Preview Configurator","1.0.3","bjoerne","https:\u002F\u002Fprofiles.wordpress.org\u002Fbjoerne\u002F","\u003Cp>With this plugin it’s possible to configure the expiration time of a link provided by the ‘public post preview’ plugin.\u003C\u002Fp>\n","Enables you to configure the 'public post preview' plugin with a user interface.",10000,56512,3,"2021-09-23T10:10:00.000Z","5.8.13","3.5",[98,22,57,58,59],"configuration","http:\u002F\u002Fwww.bjoerne.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublic-post-preview-configurator.zip",{"slug":102,"name":103,"version":104,"author":66,"author_profile":67,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":13,"num_ratings":109,"last_updated":110,"tested_up_to":75,"requires_at_least":52,"requires_php":111,"tags":112,"homepage":114,"download_link":115,"security_score":116,"vuln_count":14,"unpatched_count":27,"last_vuln_date":117,"fetched_at":29},"preferred-languages","Preferred Languages","2.4.1","\u003Cp>Thanks to language packs it’s easier than ever before to change the main language of your site.\u003Cbr \u002F>\nHowever, in some cases a single locale is not enough. When WordPress can’t find a translation for the active locale, it falls back to the original English strings.\u003Cbr \u002F>\nThat’s a poor user experience for many non-English speakers.\u003C\u002Fp>\n\u003Cp>This feature project aims to change that by letting users choose multiple languages for displaying WordPress in.\u003Cbr \u002F>\nThat way you can set some sort of “fallback chain” where WordPress tries to load translations in your preferred order.\u003C\u002Fp>\n\u003Cp>Please help us test this plugin and let us know if something is not working as you think it should.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Keyboard Shortcuts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>Arrow Up\u003C\u002Fcode>: Move selected locale one position up.\u003C\u002Fli>\n\u003Cli>\u003Ccode>Arrow Down\u003C\u002Fcode>: Move selected locale one position down.\u003C\u002Fli>\n\u003Cli>\u003Ccode>Home\u003C\u002Fcode>: Select first locale in the list.\u003C\u002Fli>\n\u003Cli>\u003Ccode>End\u003C\u002Fcode>: Select last locale in the list.\u003C\u002Fli>\n\u003Cli>\u003Ccode>Backspace\u003C\u002Fcode>\u002F\u003Ccode>Delete\u003C\u002Fcode>: remove the selected locale from the list.\u003C\u002Fli>\n\u003Cli>\u003Ccode>Alt+A\u003C\u002Fcode>: Add the current locale from the dropdown to the list.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong>: the Preferred Languages UI needs to be focused in order for the keyboard shortcuts to work.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Merging Translations\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Previously, only the first available translation for a given locale and domain will be loaded.\u003Cbr \u002F>\nHowever, when translations are incomplete, some strings might still be displayed in English.\u003Cbr \u002F>\nThat’s a poor user experience as well.\u003C\u002Fp>\n\u003Cp>To prevent this, Preferred Languages now automatically merges all incomplete translations in the list.\u003C\u002Fp>\n\u003Cp>the \u003Ccode>preferred_languages_merge_translations\u003C\u002Fcode> filter can be used to opt out of this behavior.\u003Cbr \u002F>\nIt provides three parameters:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Ccode>$merge\u003C\u002Fcode> – Whether translations should be merged. Defaults to \u003Ccode>true\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>$domain\u003C\u002Fcode> – The text domain\u003C\u002Fli>\n\u003Cli>\u003Ccode>$current_locale\u003C\u002Fcode> – The current locale.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Get Involved\u003C\u002Fh4>\n\u003Cp>Active development is taking place on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fswissspidy\u002Fpreferred-languages\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you want to get involved, check out \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fswissspidy\u002Fpreferred-languages\u002Fissues\" rel=\"nofollow ugc\">open issues\u003C\u002Fa> and join the \u003Ca href=\"https:\u002F\u002Fwordpress.slack.com\u002Fmessages\u002Fcore-i18n\" rel=\"nofollow ugc\">#core-i18n\u003C\u002Fa> channel on \u003Ca href=\"https:\u002F\u002Fwordpress.slack.com\u002F\" rel=\"nofollow ugc\">Slack\u003C\u002Fa>. If you don’t have a Slack account yet, you can sign up at \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fchat\u002F\" rel=\"nofollow ugc\">make.wordpress.org\u002Fchat\u002F\u003C\u002Fa>.\u003C\u002Fp>\n","Choose languages for displaying WordPress in, in order of preference.",2000,108923,17,"2025-11-28T15:06:00.000Z","7.2.24",[20,21,113,78,80],"language","https:\u002F\u002Fgithub.com\u002Fswissspidy\u002Fpreferred-languages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpreferred-languages.2.4.1.zip",99,"2024-05-30 00:00:00",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":128,"num_ratings":129,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":133,"tags":134,"homepage":139,"download_link":140,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"post-draft-preview","Post Draft Preview","1.2.2","WP Served","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpserved\u002F","\u003Cp>Simple plugin enabling the publication of post drafts.\u003Cbr \u002F>\nIt allows preview of a draft without being logged to the WordPress admin panel.\u003Cbr \u002F>\nCompatible with the Gutenberg and the Classic Editor.\u003C\u002Fp>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Cp>Content created in WordPress from the moment a post or page is added, but before it is published, receives draft status.\u003Cbr \u002F>\nYou can send the draft to someone else, but that person must have adequate access to the wp-admin section.\u003Cbr \u002F>\nThe problem arises when we want to show a draft of the post to people who do not have access to our wp-admin panel.\u003Cbr \u002F>\nFor this purpose, we have created the Post Draft Preview plugin.\u003C\u002Fp>\n\u003Cp>You can find full plugin description \u003Ca href=\"https:\u002F\u002Fwpserved.com\u002Fplugins\u002Fpost-draft-preview\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Source files\u003C\u002Fh3>\n\u003Cp>You can find plugin’s source files on our GitHub repo \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwpserved\u002Fpost-draft-preview\" rel=\"nofollow ugc\">page\u003C\u002Fa>.\u003C\u002Fp>\n","Allow non logged-in users to check a draft of unpublished post by using secret link",700,5387,66,4,"2024-02-21T10:23:00.000Z","6.4.8","5.5","7.4",[135,136,137,138],"draft-preview","post-draft","post-preview","public-link","https:\u002F\u002Fwpserved.com\u002Fplugins\u002Fpost-draft-preview\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-draft-preview.1.2.2.zip",{"attackSurface":142,"codeSignals":171,"taintFlows":198,"riskAssessment":199,"analyzedAt":205},{"hooks":143,"ajaxHandlers":167,"restRoutes":168,"shortcodes":169,"cronEvents":170,"entryPointCount":27,"unprotectedCount":27},[144,150,154,158,163],{"type":145,"name":146,"callback":147,"file":148,"line":149},"filter","content_edit_pre","rw_before_edit","main.php",174,{"type":145,"name":151,"callback":152,"file":148,"line":153},"content_save_pre","rw_save",175,{"type":145,"name":155,"callback":156,"file":148,"line":157},"the_content","rw_content",176,{"type":159,"name":160,"callback":161,"file":148,"line":162},"action","wp_head","rw_css",177,{"type":159,"name":164,"callback":165,"file":148,"line":166},"init","rw_init",178,[],[],[],[],{"dangerousFunctions":172,"sqlUsage":173,"outputEscaping":175,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":197},[],{"prepared":27,"raw":27,"locations":174},[],{"escaped":27,"rawEcho":176,"locations":177},9,[178,181,183,185,187,189,191,193,195],{"file":148,"line":179,"context":180},142,"raw output",{"file":182,"line":129,"context":180},"template.php",{"file":182,"line":184,"context":180},14,{"file":182,"line":186,"context":180},20,{"file":182,"line":188,"context":180},28,{"file":182,"line":190,"context":180},47,{"file":182,"line":192,"context":180},49,{"file":182,"line":194,"context":180},53,{"file":182,"line":196,"context":180},62,[],[],{"summary":200,"deductions":201},"The \"my-review\" plugin v1.2 exhibits a concerning security posture primarily due to a complete lack of output escaping. While the static analysis reveals no dangerous functions, SQL injection vulnerabilities via prepared statements, file operations, external requests, or taint flows, and the vulnerability history is clean, the absence of output escaping is a critical weakness. This means any user-provided input that is displayed back to users could potentially be exploited to inject malicious code, such as JavaScript, leading to cross-site scripting (XSS) attacks. The plugin also has no detectable attack surface points, which is a strength, but this could be misleading if the plugin relies on internal functions or indirectly exposed data that isn't flagged as an entry point by the static analysis. Given the lack of direct vulnerabilities found in code and history, the immediate risks are lower, but the unescaped output represents a significant latent vulnerability that needs immediate attention.",[202],{"reason":203,"points":204},"Output escaping is not implemented",8,"2026-04-16T12:18:23.200Z",{"wat":207,"direct":213},{"assetPaths":208,"generatorPatterns":210,"scriptPaths":211,"versionParams":212},[209],"\u002Fwp-content\u002Fplugins\u002Fmy-review\u002Frw.css",[],[],[],{"cssClasses":214,"htmlComments":215,"htmlAttributes":224,"restEndpoints":225,"jsGlobals":226,"shortcodeOutput":227},[],[216,217,218,219,220,221,222,223],"\u003C!-- rw_good -->","\u003C!-- \u002Frw_good -->","\u003C!-- rw_bad -->","\u003C!-- \u002Frw_bad -->","\u003C!-- rw_score -->","\u003C!-- \u002Frw_score -->","\u003C!-- rw_text -->","\u003C!-- \u002Frw_text -->",[],[],[],[],{"error":229,"url":230,"statusCode":231,"statusMessage":232,"message":232},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fmy-review\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":129,"versions":234},[235,241,248,255],{"version":6,"download_url":25,"svn_tag_url":236,"released_at":28,"has_diff":237,"diff_files_changed":238,"diff_lines":28,"trac_diff_url":239,"vulnerabilities":240,"is_current":229},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmy-review\u002Ftags\u002F1.2\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmy-review%2Ftags%2F1.0.2&new_path=%2Fmy-review%2Ftags%2F1.2",[],{"version":242,"download_url":243,"svn_tag_url":244,"released_at":28,"has_diff":237,"diff_files_changed":245,"diff_lines":28,"trac_diff_url":246,"vulnerabilities":247,"is_current":237},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-review.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmy-review\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmy-review%2Ftags%2F1.0.1&new_path=%2Fmy-review%2Ftags%2F1.0.2",[],{"version":249,"download_url":250,"svn_tag_url":251,"released_at":28,"has_diff":237,"diff_files_changed":252,"diff_lines":28,"trac_diff_url":253,"vulnerabilities":254,"is_current":237},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-review.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmy-review\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmy-review%2Ftags%2F1.0&new_path=%2Fmy-review%2Ftags%2F1.0.1",[],{"version":256,"download_url":257,"svn_tag_url":258,"released_at":28,"has_diff":237,"diff_files_changed":259,"diff_lines":28,"trac_diff_url":28,"vulnerabilities":260,"is_current":237},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-review.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmy-review\u002Ftags\u002F1.0\u002F",[],[]]