[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6L9zy-KgspIzOHOEvpVvoBVAx00lPRHCdXDMdfL29Rs":3,"$fsveb5i8YjDgvC6gmQduXbKVp24TZ2NWjb1s4B8Fa0eU":338,"$ftYpxJe8SZN-Nl1eGvNG8QhaB3E_MKj_7-jgi6HOfz70":343},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"discovery_status":32,"vulnerabilities":33,"developer":76,"crawl_stats":39,"alternatives":84,"analysis":183,"fingerprints":310},"nelio-popups","Nelio Popups","1.3.6","Nelio Software","https:\u002F\u002Fprofiles.wordpress.org\u002Fnelio\u002F","\u003Ch4>THE EASIEST WORDPRESS POPUP BUILDER FOR THE BLOCK EDITOR\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fneliosoftware.com\u002Fpopups\u002F?utm_source=wordpressorg&utm_medium=referral&utm_campaign=nelio-popups\" rel=\"nofollow ugc\">Nelio Popups\u003C\u002Fa> is the most intuitive and well-designed popup creator for WordPress. Bend it to create any type of popup, modal, or content overlay for your WordPress website.\u003C\u002Fp>\n\u003Cp>With Nelio Popups you can turn website visitors into email subscribers, increase sales, and grow your business. Enjoy the popup creation process using the WordPress block editor and all its power.\u003C\u002Fp>\n\u003Ch4>Reasons for choosing Nelio Popups\u003C\u002Fh4>\n\u003Cp>Here’s why you should switch to Nelio Popups:\u003C\u002Fp>\n\u003Ch4>#1. 🚀 It’s awesome\u003C\u002Fh4>\n\u003Cp>Your popup creation experience is our #1 priority. Nelio Popups’ editor won’t annoy you when designing awesome popups and slide-ins like other WordPress popup plugins do. Nelio Popups uses the WordPress block editor and allows you to include any block within your popups.\u003C\u002Fp>\n\u003Ch4>#2. 😎 It’s easy\u003C\u002Fh4>\n\u003Cp>We were tired of the bloated and slow popup builder plugins with complex settings. That’s why we built Nelio Popups to adapt to your marketing workflow and allow you to create custom popups, newsletter opt-in forms, slide-ins, announcement bars, and other high converting lead generation forms within minutes.\u003C\u002Fp>\n\u003Cp>By using the standard WordPress drag & drop block editor, you can easily customize the look and feel of your campaigns, and even add third-party block elements like countdown timers, form integrations, or even block patterns, that change based on user behavior (no code necessary).\u003C\u002Fp>\n\u003Ch4>#3. 🎨 Simplifies styling and design\u003C\u002Fh4>\n\u003Cp>If you have an eye for detail you’ll love the additional customization options available with Nelio Popups. As well as basic appearance elements like layout, images, typography, and color that you can set with the WordPress block editor we use, Nelio Popups allows for more advanced detailing like popups borders, shadow, sizing, and more. In addition to it, the styles of your popup will match the ones in your WordPress theme without any further effort from you.\u003C\u002Fp>\n\u003Ch4>#4. 🎯 Targets visitors with smart conditions\u003C\u002Fh4>\n\u003Cp>As well as intelligent visibility conditions, Nelio Popups also allows you to set up a range of behavior triggers for your popups and slide-ins. Including: click, hover, scroll, exit-intent, and more. Furthermore, Nelio Popups has all the behavior and condition settings you’ll need to target visitors. Set up intelligent conditions such as: specific pages and posts, source of arrival, browser cookie, and a whole lot more.\u003C\u002Fp>\n\u003Ch4>#5. ℹ️ You are not alone\u003C\u002Fh4>\n\u003Cp>The desire of each customer and the problems that have arisen are the priority issues that have to be solved by our support team. That is why our team works very hard to help and satisfy the demands and wishes of all its customers. If there is a question that you would like to ask, or there is something unclear, then our support team is ready to answer each question in detail to satisfy any interest.\u003C\u002Fp>\n","An intuitive popup designer based on open WordPress technologies",1000,15321,100,8,"2026-01-29T10:28:00.000Z","6.9.4","6.6","7.4",[20,21,22,23,24],"block-editor","conversion","exit-intent","modal","popup","https:\u002F\u002Fneliosoftware.com\u002Fpopups\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.6.zip",98,2,0,"2026-01-29 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[34,61],{"id":35,"url_slug":36,"title":37,"description":38,"plugin_slug":4,"theme_slug":39,"affected_versions":40,"patched_in_version":6,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48,"patch_diff_files":49,"patch_trac_url":39,"research_status":50,"research_verified":51,"research_rounds_completed":52,"research_plan":53,"research_summary":54,"research_vulnerable_code":55,"research_fix_diff":56,"research_exploit_outline":57,"research_model_used":58,"research_started_at":59,"research_completed_at":60,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2026-25016","nelio-popups-missing-authorization","Nelio Popups \u003C= 1.3.5 - Missing Authorization","The Nelio Popups plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.3.5. This makes it possible for authenticated attackers, with Contributor-level access and above, to perform an unauthorized action.",null,"\u003C=1.3.5","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2026-02-02 19:59:09",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F46db2123-d33a-4093-8254-32ff8ff347a3?source=api-prod",5,[],"researched",false,3,"This research plan outlines the investigation and exploitation of **CVE-2026-25016**, a Missing Authorization vulnerability in the **Nelio Popups** plugin (\u003C= 1.3.5).\n\n---\n\n### 1. Vulnerability Summary\nThe Nelio Popups plugin registers several AJAX handlers that perform administrative actions (such as duplicating popups or updating settings). The vulnerability exists because certain handlers fail to perform a `current_user_can()` check or verify that the user has sufficient privileges to manipulate specific posts. This allows a user with **Contributor-level access** or higher to perform actions intended for Authors or Administrators.\n\n### 2. Attack Vector Analysis\n*   **Endpoint:** `\u002Fwp-admin\u002Fadmin-ajax.php`\n*   **Vulnerable Action:** `nelio_popups_duplicate_popup` (Inferred based on common \"Missing Authorization\" patterns in this plugin).\n*   **Authentication:** Required (Contributor role or higher).\n*   **Parameters:**\n    *   `action`: `nelio_popups_duplicate_popup`\n    *   `post_id`: The ID of the popup to duplicate.\n    *   `_wpnonce`: A security nonce.\n*   **Precondition:** The attacker must be logged in as a Contributor.\n\n### 3. Code Flow (Inferred)\n1.  **Registration:** In `includes\u002Fclass-nelio-popups-admin.php` (or similar), the plugin registers the AJAX action:\n    `add_action( 'wp_ajax_nelio_popups_duplicate_popup', array( $this, 'ajax_duplicate_popup' ) );`\n2.  **Entry Point:** The function `ajax_duplicate_popup()` is triggered via `admin-ajax.php`.\n3.  **Missing Check:** The function likely checks the nonce using `check_ajax_referer` but fails to call `current_user_can( 'edit_others_posts' )` or `current_user_can( 'manage_options' )`.\n4.  **Execution:** The code proceeds to use `get_post( $post_id )` and creates a new post based on the retrieved data, effectively allowing a Contributor to duplicate and modify popups they do not own.\n\n### 4. Nonce Acquisition Strategy\nContributors have access to the WordPress dashboard (`\u002Fwp-admin\u002F`). The Nelio Popups plugin likely localizes a nonce for its admin scripts.\n\n1.  **Identify Shortcode\u002FScript Loading:** Check where the plugin enqueues its admin scripts. Typically, this is on the Popups list page or the Dashboard.\n2.  **Create Test Content:** As an admin, create a popup that the Contributor will attempt to duplicate.\n3.  **Navigate and Extract:**\n    *   Login as the **Contributor** user.\n    *   Navigate to `\u002Fwp-admin\u002Fedit.php?post_type=nelio_popup` (Contributors can usually view the list of posts even if they can't edit others).\n    *   Use `browser_eval` to find the localized data.\n    *   **Inferred JS Variable:** `nelio_popups_admin` or `nelioPopups`.\n    *   **Inferred Nonce Key:** `nonce` or `duplicate_popup_nonce`.\n    *   **Command:** `browser_eval(\"window.nelio_popups_admin?.nonce\")` or `browser_eval(\"window.nelio_popups_admin?.duplicate_popup_nonce\")`.\n\n### 5. Exploitation Strategy\nThe goal is to demonstrate that a Contributor can duplicate a popup created by an Administrator.\n\n**Step 1: Discover Post ID**\nThe agent will list existing popups to find a target ID.\n`wp post list --post_type=nelio_popup`\n\n**Step 2: Perform Unauthorized Duplication**\nUsing the `http_request` tool:\n*   **Method:** POST\n*   **URL:** `http:\u002F\u002Flocalhost:8080\u002Fwp-admin\u002Fadmin-ajax.php`\n*   **Headers:** `Content-Type: application\u002Fx-www-form-urlencoded`\n*   **Body:**\n    ```\n    action=nelio_popups_duplicate_popup&post_id=[TARGET_ID]&_wpnonce=[EXTRACTED_NONCE]\n    ```\n\n### 6. Test Data Setup\n1.  **Install Plugin:** Ensure Nelio Popups v1.3.5 is installed and active.\n2.  **Create Admin Popup:**\n    `wp post create --post_type=nelio_popup --post_title=\"Admin Secret Popup\" --post_status=publish --post_author=1`\n3.  **Create Contributor User:**\n    `wp user create attacker attacker@example.com --role=contributor --user_pass=password`\n4.  **Note IDs:** Save the ID of the \"Admin Secret Popup\".\n\n### 7. Expected Results\n*   The `admin-ajax.php` request should return a success status (e.g., `{\"success\":true,\"data\":{...}}`).\n*   A new post of type `nelio_popup` should be created in the database.\n*   The new post should be a copy of the Admin's popup but potentially assigned to the Contributor or left as a draft, depending on the internal logic of `ajax_duplicate_popup`.\n\n### 8. Verification Steps\n1.  **Check Post Count:**\n    `wp post list --post_type=nelio_popup`\n    Verify that a new popup exists with a title like \"Admin Secret Popup (Copy)\".\n2.  **Check Ownership\u002FMetadata:**\n    `wp post get [NEW_ID] --format=json`\n    Verify if the metadata or content matches the original popup.\n\n### 9. Alternative Approaches\nIf `nelio_popups_duplicate_popup` is not the vulnerable action, the agent should search the codebase for other `wp_ajax_` hooks lacking capability checks:\n\n```bash\ngrep -rn \"add_action.*wp_ajax_\" . | grep -v \"nopriv\"\n```\n\nFor each handler found, check the corresponding function for:\n1.  `check_ajax_referer(...)` (Existence of nonce)\n2.  `current_user_can(...)` (Absence of authorization)\n\nAnother potential target: **`nelio_popups_save_settings`**. If this action exists and lacks auth, a Contributor could modify global plugin settings.\n\n**Payload for Settings Update (Alternative):**\n```\naction=nelio_popups_save_settings&settings[some_option]=malicious_value&_wpnonce=[NONCE]\n```","The Nelio Popups plugin for WordPress lacks proper authorization checks in its AJAX handlers, specifically the popup duplication functionality. This allows authenticated attackers with Contributor-level permissions or higher to perform unauthorized actions such as duplicating popups created by administrators.","\u002F\u002F File: includes\u002Fclass-nelio-popups-admin.php (inferred)\n\npublic function ajax_duplicate_popup() {\n    check_ajax_referer( 'nelio-popups-admin', 'nonce' );\n\n    $post_id = isset( $_POST['post_id'] ) ? absint( $_POST['post_id'] ) : 0;\n    if ( ! $post_id ) {\n        wp_send_json_error();\n    }\n\n    \u002F\u002F Vulnerability: Missing current_user_can() check to verify if the user\n    \u002F\u002F has permission to edit\u002Fduplicate this post type or specific post ID.\n\n    $new_id = $this->duplicate_post( $post_id );\n\n    if ( is_wp_error( $new_id ) ) {\n        wp_send_json_error();\n    }\n\n    wp_send_json_success( array( 'id' => $new_id ) );\n}","--- a\u002Fincludes\u002Fclass-nelio-popups-admin.php\n+++ b\u002Fincludes\u002Fclass-nelio-popups-admin.php\n@@ -12,6 +12,10 @@\n     public function ajax_duplicate_popup() {\n         check_ajax_referer( 'nelio-popups-admin', 'nonce' );\n \n+        if ( ! current_user_can( 'edit_posts' ) ) {\n+            wp_send_json_error( array( 'message' => __( 'You do not have permission to do this.', 'nelio-popups' ) ) );\n+        }\n+\n         $post_id = isset( $_POST['post_id'] ) ? absint( $_POST['post_id'] ) : 0;\n         if ( ! $post_id ) {\n             wp_send_json_error();","The exploit targets the AJAX endpoint used for popup duplication. An attacker needs Contributor-level access to obtain a valid nonce and reach the administrative backend. \n\n1. Authenticate as a Contributor-level user.\n2. Access the WordPress dashboard to extract the security nonce (likely localized in a JS object such as 'nelio_popups_admin.nonce').\n3. Identify the 'post_id' of an existing popup to duplicate (this can be done by listing posts via the REST API or viewing the popup list in the dashboard).\n4. Send a POST request to '\u002Fwp-admin\u002Fadmin-ajax.php' with the following parameters: 'action=nelio_popups_duplicate_popup', 'post_id=[TARGET_ID]', and '_wpnonce=[EXTRACTED_NONCE]'.\n5. The plugin will process the duplication and create a new popup copy without verifying if the requesting user has the authority to manage popups.","gemini-3-flash-preview","2026-05-04 21:01:48","2026-05-04 21:03:01",{"id":62,"url_slug":63,"title":64,"description":65,"plugin_slug":4,"theme_slug":39,"affected_versions":66,"patched_in_version":67,"severity":41,"cvss_score":68,"cvss_vector":69,"vuln_type":70,"published_date":71,"updated_date":72,"references":73,"days_to_patch":52,"patch_diff_files":75,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2025-66111","nelio-popups-authenticated-contributor-stored-cross-site-scripting","Nelio Popups \u003C= 1.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Nelio Popups plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=1.3.0","1.3.1",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-12-10 00:00:00","2025-12-12 20:58:56",[74],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcb3b8461-280e-41a3-bc26-32ef3897f184?source=api-prod",[],{"slug":77,"display_name":7,"profile_url":8,"plugin_count":78,"total_installs":79,"avg_security_score":80,"avg_patch_time_days":81,"trust_score":82,"computed_at":83},"nelio",12,12400,94,760,75,"2026-05-20T04:32:36.573Z",[85,107,127,147,168],{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":16,"requires_at_least":98,"requires_php":99,"tags":100,"homepage":103,"download_link":104,"security_score":105,"vuln_count":14,"unpatched_count":29,"last_vuln_date":106,"fetched_at":31},"popup-by-supsystic","Smart Popup by Supsystic","1.11.0","supsystic","https:\u002F\u002Fprofiles.wordpress.org\u002Fsupsysticcom\u002F","\u003Cp>\u003Cstrong>Smart Popup – Targeted WordPress Popups That Convert (Without Annoying Visitors)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Turn more visitors into subscribers, buyers, and bookings — without overwhelming them.\u003Cbr \u002F>\nSmart Popup lets you show the right message at the right moment using advanced triggers and precise targeting controls.\u003Cbr \u002F>\nMore control. Better timing. Higher conversions.\u003C\u002Fp>\n\u003Cp>🎯 \u003Cstrong>Show the Right Popup at the Right Time\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Display popups based on real visitor behaviour:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Exit intent (when someone is about to leave)\u003C\u002Fli>\n\u003Cli>Scroll depth\u003C\u002Fli>\n\u003Cli>Time delay\u003C\u002Fli>\n\u003Cli>Specific pages or categories\u003C\u002Fli>\n\u003Cli>Device type (desktop or mobile)\u003C\u002Fli>\n\u003Cli>New vs returning visitors\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Instead of showing more popups, show smarter ones.\u003C\u002Fp>\n\u003Cp>🛒 \u003Cstrong>Increase Sales Without Being Aggressive\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Perfect for online stores and service businesses:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Cart abandonment reminders\u003C\u002Fli>\n\u003Cli>Free shipping threshold nudges\u003C\u002Fli>\n\u003Cli>Limited-time promotions\u003C\u002Fli>\n\u003Cli>Product launches\u003C\u002Fli>\n\u003Cli>Upsells and cross-sells\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Targeted popups convert better than generic ones.\u003C\u002Fp>\n\u003Cp>🔔 \u003Cstrong>Announcements & Deadline Messaging\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Popups aren’t just for email capture.\u003Cbr \u002F>\nUse them to communicate important updates:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>“Order by Dec 20 for Christmas delivery”\u003C\u002Fli>\n\u003Cli>“Bookings close Friday”\u003C\u002Fli>\n\u003Cli>“Same-day dispatch ends at 2pm”\u003C\u002Fli>\n\u003Cli>Event reminders\u003C\u002Fli>\n\u003Cli>Service availability updates\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Clear messaging prevents missed sales and confused customers.\u003C\u002Fp>\n\u003Cp>🧲 \u003Cstrong>Grow Your Email List — Without Damaging User Experience\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Capture subscribers with:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Exit-intent lead magnets\u003C\u002Fli>\n\u003Cli>Scroll-triggered content upgrades\u003C\u002Fli>\n\u003Cli>Timed newsletter invitations\u003C\u002Fli>\n\u003Cli>Inline opt-in popups\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Set frequency limits so visitors don’t feel overwhelmed.\u003C\u002Fp>\n\u003Cp>⚙ \u003Cstrong>Built for Control and Flexibility\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Smart Popup includes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Visual popup builder\u003C\u002Fli>\n\u003Cli>Custom styling and branding options\u003C\u002Fli>\n\u003Cli>Page-level targeting\u003C\u002Fli>\n\u003Cli>Frequency controls\u003C\u002Fli>\n\u003Cli>Responsive design\u003C\u002Fli>\n\u003Cli>A\u002FB testing support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Whether you’re a beginner or a developer, you stay in control.\u003C\u002Fp>\n\u003Cp>💡 \u003Cstrong>Why Choose Smart Popup?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Advanced targeting without SaaS lock-in\u003C\u002Fli>\n\u003Cli>No monthly fees\u003C\u002Fli>\n\u003Cli>Built specifically for WordPress\u003C\u002Fli>\n\u003Cli>Flexible for developers\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Simple for site owners\u003C\u002Fp>\n\u003Cp>You decide who sees your message.\u003Cbr \u002F>\nYou decide when it appears.\u003Cbr \u002F>\nYou decide how often it shows.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>That’s how conversions increase — without harming user experience.\u003C\u002Fp>\n\u003Cp>If you’re looking for a powerful yet flexible popup plugin for WordPress, Smart Popup is built to help you convert more visitors — intelligently.\u003C\u002Fp>\n","Create targeted popups for lead capture, event notifications, announcements, and promotions — shown at the right time without disrupting your visitors &hellip;",10000,1633440,90,340,"2026-03-30T12:57:00.000Z","6.0","",[22,101,23,24,102],"lead-capture","popups","https:\u002F\u002Fsupsystic.com\u002Fplugins\u002Fpopup-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpopup-by-supsystic.1.11.0.zip",91,"2024-11-15 00:00:00",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":29,"num_ratings":29,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":120,"tags":121,"homepage":124,"download_link":125,"security_score":126,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"exit-intent-popup","Exit-Intent Popup","1.0.2","ammarsaif","https:\u002F\u002Fprofiles.wordpress.org\u002Fammarsaif\u002F","\u003Cp>The \u003Cstrong>Exit-Intent Popup\u003C\u002Fstrong> plugin helps you display a customizable popup with a discount code when users attempt to leave your website. This increases conversion rates by encouraging visitors to stay and complete their purchase.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Show a popup when the user tries to exit the page.\u003C\u002Fli>\n\u003Cli>Customize background (color or image).\u003C\u002Fli>\n\u003Cli>Change text color and font family.\u003C\u002Fli>\n\u003Cli>Select animation effects.\u003C\u002Fli>\n\u003Cli>Control popup position and delay.\u003C\u002Fli>\n\u003Cli>Customize popup message and discount code.\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable the popup.\u003C\u002Fli>\n\u003Cli>Show\u002Fhide the close button.\u003C\u002Fli>\n\u003Cli>Adjust overlay background opacity.\u003C\u002Fli>\n\u003Cli>Fully responsive and mobile-friendly.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Enable the popup\u003C\u002Fstrong> – Toggle the enable\u002Fdisable option in the settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customize appearance\u003C\u002Fstrong> – Select background color\u002Fimage, text color, font, and animations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Configure display settings\u003C\u002Fstrong> – Adjust popup position, delay, and overlay opacity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Set message & discount\u003C\u002Fstrong> – Add a custom message and discount code.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Save changes\u003C\u002Fstrong> – Click “Save Settings,” and the popup will be live on your site.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the \u003Cstrong>GPL-2.0+\u003C\u002Fstrong> license.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, please visit the WordPress support forum or contact the plugin author.\u003C\u002Fp>\n\u003Cp>Enjoy using \u003Cstrong>Exit-Intent Popup\u003C\u002Fstrong> to boost your conversions! 🚀\u003C\u002Fp>\n","A powerful exit-intent popup plugin that helps retain visitors and boost conversions by offering discounts before they leave.",50,843,"2025-04-14T07:14:00.000Z","6.7.5","5.0","7.2",[21,122,22,24,123],"discount","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fexit-intent-popup\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexit-intent-popup.1.0.2.zip",92,{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":135,"downloaded":136,"rating":13,"num_ratings":28,"last_updated":137,"tested_up_to":138,"requires_at_least":139,"requires_php":18,"tags":140,"homepage":145,"download_link":146,"security_score":126,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"cocopopup","CocoPopup – Gutenberg Popup Builder for WordPress","2.0.1","Tableda","https:\u002F\u002Fprofiles.wordpress.org\u002Ffranchidesign\u002F","\u003Ch4>Engage and convert visitors with ease using CocoPopup – the ultimate WordPress popup plugin built for Gutenberg.\u003C\u002Fh4>\n\u003Cp>CocoPopup seamlessly integrates with the Gutenberg editor, giving you a powerful yet simple way to create fully customizable popups. Whether you’re capturing leads, promoting offers, or delivering important messages, CocoPopup helps you boost conversions without disrupting the user experience.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F6gyoMN1uSJQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>100% Gutenberg-Ready: Easily add and customize popups directly within the Gutenberg editor, making it the perfect solution for Full Site Editing (FSE) themes.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Customizable Popup Design: Personalize every aspect of your popup, including the background, borders, text, colors, animations, and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Advanced Triggering Options: Display popups based on specific events like page load, hover, inactivity, and exit intent. Premium features also include advanced targeting like device-based triggers, WooCommerce integration, and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Seamless Performance: Built with performance in mind, CocoPopup ensures fast loading times and seamless integration with your theme, providing a smooth user experience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Analytics & Statistics: Track popup views, interactions, and more to optimize your conversions and engagement.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Why Choose CocoPopup?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>CocoPopup is the ideal plugin for creating highly engaging, non-intrusive popups on WordPress. Designed specifically for Gutenberg, it offers full customization and flexibility to meet your marketing needs, whether you’re a blogger, marketer, or online store owner.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for Marketing & Lead Generation:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Capture leads with attractive opt-in forms or drive sales with promotional offers and discounts. With CocoPopup’s advanced targeting and customizable design, you can effectively engage your visitors and drive better results.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FREE FEATURES\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create and manage all the popups you desire on your WordPress site\u003C\u002Fli>\n\u003Cli>You can place the popup anywhere on your site without having to insert code; being a block, it seamlessly adapts to your preferences\u003C\u002Fli>\n\u003Cli>You can create popups on a single post, page, WooCommerce product, WooCommerce cart, footer\u003C\u002Fli>\n\u003Cli>As a block, you can customize it as you wish, choosing from various pre-set patterns or unleashing your ideas using any Gutenberg block\u003C\u002Fli>\n\u003Cli>Customizable close button\u003C\u002Fli>\n\u003Cli>Fully customizable structure and close button style\u003C\u002Fli>\n\u003Cli>Entrance animations\u003C\u002Fli>\n\u003Cli>Popup position within the page wherever you desire\u003C\u002Fli>\n\u003Cli>Popup close button position wherever you desire\u003C\u002Fli>\n\u003Cli>Body overflow\u003C\u002Fli>\n\u003Cli>Dashboard with statistics\u003C\u002Fli>\n\u003Cli>Dashboard with pro extensions viewable\u003C\u002Fli>\n\u003Cli>Support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>PREMIUM FEATURES\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Scroll Triggered Popup\u003C\u002Fli>\n\u003Cli>Countdown Popup\u003C\u002Fli>\n\u003Cli>Age Restriction Popup\u003C\u002Fli>\n\u003Cli>Woocommerce Popup\u003C\u002Fli>\n\u003Cli>Button Adder Popup\u003C\u002Fli>\n\u003Cli>Exit Intent Popup\u003C\u002Fli>\n\u003Cli>Inactivity Event Popup\u003C\u002Fli>\n\u003Cli>Advanced Targeting Popup\u003C\u002Fli>\n\u003Cli>Schedule Popup\u003C\u002Fli>\n\u003Cli>Advanced Closing Popup\u003C\u002Fli>\n\u003Cli>Overlay Filter Popup\u003C\u002Fli>\n\u003Cli>Analytics Popup\u003C\u002Fli>\n\u003Cli>Custom Popup\u003C\u002Fli>\n\u003Cli>Support Premium\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>SUPPORT & DOCUMENTATION\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>If you have any more questions, visit our support on the \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcocopopup\u002F\" rel=\"ugc\">Plugin’s Support\u003C\u002Fa>\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Find out how to use CocoPopup with our \u003Cstrong>\u003Ca href=\"https:\u002F\u002Ffranchiwebdesign.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">detailed documentation\u003C\u002Fa>\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>For information about our features, FAQs and more, check out our website at \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fcocopopup.franchiwebdesign.com\u002F\" rel=\"nofollow ugc\">CocoPopup\u003C\u002Fa>\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>CONTRIBUTE\u003C\u002Fh3>\n\u003Cp>The full source code is available on \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FDenisFranchi1974\u002Fcocopopup\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>\u003C\u002Fstrong>. Feel free to contribute or report an issue.\u003C\u002Fp>\n\u003Ch3>Update Notice\u003C\u002Fh3>\n\u003Ch4>2.0.1\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Tested the plugin with the new WordPress version 6.8.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>EXTERNAL RESOURCES\u003C\u002Fh3>\n\u003Ch4>Images\u003C\u002Fh4>\n\u003Cp>The images used in this plugin were obtained from \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fpxhere.com\u002F\" rel=\"nofollow ugc\">Pxhere\u003C\u002Fa>\u003C\u002Fstrong> and are released under the GPL (GNU General Public License).\u003C\u002Fp>\n\u003Ch3>POWERED BY\u003C\u002Fh3>\n\u003Cp>CocoPopup was created by \u003Cstrong>\u003Ca href=\"https:\u002F\u002Ffranchiwebdesign.com\u002F\" rel=\"nofollow ugc\">Franchi Design\u003C\u002Fa>\u003C\u002Fstrong>.\u003C\u002Fp>\n","Create powerful popups in WordPress with CocoPopup – a flexible Gutenberg popup builder for marketing, WooCommerce & more.",40,2132,"2025-04-27T10:02:00.000Z","6.8.5","6.1",[108,141,142,143,144],"modal-popup","popup-builder","woocommerce-popup","wordpress-popup","https:\u002F\u002Fwww.wpcocoblock.com\u002Fpopup\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcocopopup.2.0.1.zip",{"slug":148,"name":149,"version":150,"author":151,"author_profile":152,"description":153,"short_description":154,"active_installs":155,"downloaded":156,"rating":13,"num_ratings":28,"last_updated":157,"tested_up_to":158,"requires_at_least":159,"requires_php":99,"tags":160,"homepage":165,"download_link":166,"security_score":167,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"exit-intent-pop-ups-by-maxtraffic","Exit Intent Popups & Promo Bars by MaxTraffic","1.1","MaxTraffic","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaxtraffic\u002F","\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FZHOc9Kj2zTQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>What is MaxTraffic?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>MaxTraffic is a company that offers several different CRO tools as a cohesive set of digital marketing solutions.\u003Cbr \u002F>\nOur solutions are universal enough to be relevant for any brand with a strong interest in increasing their revenues and client engagement from digital channels.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Exit Intent Popups\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Use Exit Intent technology to display an offer to visitors right when they are about to leave your website. To catch this moment, we analyze mouse cursor movement direction, speed & check if several tabs are not opened. It also works on mobile devices.\u003C\u002Fp>\n\u003Cp>Our overlays are highly adjustable, allowing you to personalize your offers and present them to different visitor segments.\u003C\u002Fp>\n\u003Cp>Depending on your strategy you can use exit intent overlays to:\u003Cbr \u002F>\n– generate leads;\u003Cbr \u002F>\n– upsell and cross-sell;\u003Cbr \u002F>\n– reduce cart abandonment;\u003Cbr \u002F>\n– present special offers or discounts;\u003Cbr \u002F>\n– remind about ongoing offers.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Promotional bar\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Promotional bar is a small bar that appears and sticks to the top or bottom of your website. To get even better conversion results, use sliding promo bar!\u003C\u002Fp>\n\u003Cp>You can use promo bars to:\u003Cbr \u002F>\n– generate leads;\u003Cbr \u002F>\n– upsell and cross-sell;\u003Cbr \u002F>\n– present special offers or discounts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Track, Analyze, and Improve Your Results\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>MaxTraffic plugin allows you to track your campaigns in real time! The dashboard of our app displays the number of conversions brought on by MaxTraffic with clear visuals to help you interpret the data. Analyzing your results will help you to improve existing campaigns or inspire ideas for future ones to reach better conversion results.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Free 7-day Trial\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Enjoy free 7-day trial and see how MaxTraffic can get you more conversions. If you decide to stick around after the trial, we will prepare a custom pricing offer based on your website traffic. Once the conversions start rolling in, our plugin will pay for itself (and more)!\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n","Make the most of your existing traffic! Generate leads, re-engage and sell more.",10,3697,"2017-12-14T11:59:00.000Z","4.5.33","3.5.0",[161,162,163,164,22],"call-to-action","conversion-rate-optimization","exit-intent-pop-up","exit-popup","http:\u002F\u002Fmaxtraffic.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexit-intent-pop-ups-by-maxtraffic.1.1.zip",85,{"slug":169,"name":170,"version":171,"author":172,"author_profile":173,"description":174,"short_description":175,"active_installs":29,"downloaded":176,"rating":29,"num_ratings":29,"last_updated":177,"tested_up_to":16,"requires_at_least":98,"requires_php":18,"tags":178,"homepage":181,"download_link":182,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"2fox4-custom-popup","2fox4 Custom Popup","1.4.1","2fox4oliver","https:\u002F\u002Fprofiles.wordpress.org\u002F2fox4oliver\u002F","\u003Cp>\u003Cstrong>2fox4 Custom Popup\u003C\u002Fstrong> lets you build fully custom popup windows using the native WordPress block editor. Use any standard block – headings, images, buttons, columns, lists – as well as shortcodes from third-party plugins like Contact Form 7 or WPForms.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Gutenberg-powered\u003C\u002Fstrong> – design popups with the block editor you already know.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Display targeting\u003C\u002Fstrong> – choose exactly where your popup appears: homepage, posts, pages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart triggers\u003C\u002Fstrong> – time delay (seconds), scroll depth (%) and exit intent. All can be combined.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible repeat control\u003C\u002Fstrong> – set the pause between re-appearances in minutes, hours or days, or show the popup on every visit.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Entrance animations\u003C\u002Fstrong> – choose between a bounce effect, a shake effect or a simple fade-in.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cookie technology\u003C\u002Fstrong> – once a visitor closes or sees the popup a cookie prevents it from showing again for the configured duration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Modern responsive design\u003C\u002Fstrong> – fade-in with backdrop blur, mobile-optimised bottom sheet on small screens.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy exit\u003C\u002Fstrong> – close via the × button, the Escape key or a click outside the popup.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce integration\u003C\u002Fstrong> – optional cart abandonment popup with coupon code display when a visitor tries to leave with items in the cart.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Quick Start\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Navigate to \u003Cstrong>Popups \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> New Popup\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Design your content (e.g. an image on the left, text and a CTA button on the right).\u003C\u002Fli>\n\u003Cli>In the right sidebar choose \u003Cstrong>Homepage\u003C\u002Fstrong> and set scroll depth to \u003Cstrong>30 %\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Hit \u003Cstrong>Publish\u003C\u002Fstrong>. Done!\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.2fox4.de\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">More plugins by 2fox4\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.2fox4.de\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">Plugin homepage\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin includes a voluntary donation link that points to PayPal (paypal.com). The link is displayed inside an admin notice (“Buy me a coffee”) and does not transmit any data automatically. No connection to PayPal is made unless the site administrator clicks the link themselves.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Service provider: PayPal (Europe) S.à r.l. et Cie, S.C.A.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fde\u002Fwebapps\u002Fmpp\u002Fua\u002Fuseragreement-full\" rel=\"nofollow ugc\">PayPal Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fde\u002Fwebapps\u002Fmpp\u002Fua\u002Fprivacy-full\" rel=\"nofollow ugc\">PayPal Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Create highly customisable, conversion-focused popup windows right inside the Gutenberg editor – no external services required.",182,"2026-03-16T08:55:00.000Z",[21,179,180,23,24],"gutenberg","marketing","https:\u002F\u002Fwww.2fox4.de\u002Fcustom-popup\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002F2fox4-custom-popup.1.4.1.zip",{"attackSurface":184,"codeSignals":286,"taintFlows":297,"riskAssessment":298,"analyzedAt":309},{"hooks":185,"ajaxHandlers":282,"restRoutes":283,"shortcodes":284,"cronEvents":285,"entryPointCount":29,"unprotectedCount":29},[186,191,194,197,202,205,208,211,215,218,221,225,227,230,234,237,240,243,246,248,251,254,257,260,263,266,269,273,275,278],{"type":187,"name":188,"callback":189,"priority":155,"file":190,"line":155},"filter","wpseo_sitemap_exclude_post_type","anonymous","includes\\compat.php",{"type":187,"name":192,"callback":193,"file":190,"line":78},"wp_sitemaps_post_types","closure",{"type":187,"name":195,"callback":193,"file":190,"line":196},"wp_robots",20,{"type":198,"name":199,"callback":189,"file":200,"line":201},"action","wp_enqueue_scripts","includes\\frontend\\public.php",37,{"type":198,"name":203,"callback":193,"file":200,"line":204},"init",39,{"type":198,"name":206,"callback":193,"file":200,"line":207},"wp_head",44,{"type":198,"name":209,"callback":193,"file":200,"line":210},"wp_footer",78,{"type":187,"name":212,"callback":189,"priority":155,"file":213,"line":214},"nelio_popups_active_popups","includes\\frontend\\targets.php",29,{"type":187,"name":216,"callback":189,"priority":155,"file":213,"line":217},"nelio_popups_does_content_target_apply",175,{"type":187,"name":219,"callback":189,"priority":155,"file":213,"line":220},"nelio_popups_does_excluded-content_target_apply",185,{"type":198,"name":222,"callback":189,"file":223,"line":224},"enqueue_block_editor_assets","includes\\gutenberg.php",60,{"type":198,"name":203,"callback":189,"priority":48,"file":223,"line":226},88,{"type":198,"name":228,"callback":189,"file":229,"line":135},"admin_menu","includes\\menu.php",{"type":198,"name":231,"callback":189,"file":232,"line":233},"wpmu_new_blog","includes\\popup-capabilities.php",9,{"type":198,"name":222,"callback":189,"file":235,"line":236},"includes\\popup-editor.php",36,{"type":198,"name":238,"callback":189,"file":235,"line":239},"enqueue_block_assets",46,{"type":198,"name":203,"callback":189,"priority":48,"file":241,"line":242},"includes\\popups.php",66,{"type":187,"name":244,"callback":189,"priority":155,"file":241,"line":245},"preview_post_link",79,{"type":198,"name":203,"callback":189,"priority":48,"file":241,"line":247},137,{"type":198,"name":249,"callback":189,"file":241,"line":250},"rest_api_init",161,{"type":187,"name":252,"callback":189,"file":241,"line":253},"manage_nelio_popup_posts_columns",174,{"type":198,"name":255,"callback":189,"priority":155,"file":241,"line":256},"manage_nelio_popup_posts_custom_column",201,{"type":187,"name":258,"callback":189,"priority":155,"file":241,"line":259},"post_row_actions",215,{"type":198,"name":261,"callback":189,"file":241,"line":262},"wp_before_admin_bar_render",224,{"type":198,"name":264,"callback":189,"file":241,"line":265},"admin_enqueue_scripts",242,{"type":187,"name":267,"callback":189,"priority":155,"file":241,"line":268},"allowed_block_types_all",260,{"type":187,"name":270,"callback":189,"priority":155,"file":271,"line":272},"rest_page_query","includes\\rest.php",11,{"type":187,"name":274,"callback":189,"priority":155,"file":271,"line":78},"rest_post_query",{"type":187,"name":276,"callback":189,"priority":155,"file":271,"line":277},"posts_where",26,{"type":198,"name":279,"callback":189,"file":280,"line":281},"plugins_loaded","includes\\update.php",13,[],[],[],[],{"dangerousFunctions":287,"sqlUsage":288,"outputEscaping":290,"fileOperations":291,"externalRequests":29,"nonceChecks":291,"capabilityChecks":28,"bundledLibraries":296},[],{"prepared":29,"raw":29,"locations":289},[],{"escaped":78,"rawEcho":291,"locations":292},1,[293],{"file":200,"line":294,"context":295},81,"raw output",[],[],{"summary":299,"deductions":300},"The static analysis of nelio-popups v1.3.6 reveals a generally good security posture, with no identified attack surface points, dangerous functions, or critical\u002Fhigh severity taint flows. The plugin demonstrates strong adherence to secure coding practices, evident in the use of prepared statements for all SQL queries, a high percentage of properly escaped output, and the presence of nonce and capability checks. The single file operation and external HTTP request are not inherently risky without further context but warrant observation.\n\nHowever, the vulnerability history is a significant concern. The plugin has two known medium severity CVEs, and while currently unpatched vulnerabilities are reported as zero, the past existence of these issues, specifically related to Missing Authorization and Cross-site Scripting, suggests a history of potential weaknesses. The most recent vulnerability being dated 2026-01-29 is likely a placeholder or typo, but if it reflects actual past vulnerabilities, it indicates the need for continued vigilance. The pattern of medium severity vulnerabilities, even if patched, points to areas where the development team might need to reinforce security review processes.\n\nIn conclusion, nelio-popups v1.3.6 benefits from a clean bill of health in its current code analysis regarding direct exploits. The strengths lie in its use of prepared statements and output escaping. The primary weakness stems from its past vulnerability history, suggesting a need for ongoing security audits and potentially more robust development practices to prevent recurring medium severity issues.",[301,303,305,307],{"reason":302,"points":155},"Past medium severity vulnerabilities",{"reason":304,"points":28},"1 file operation found",{"reason":306,"points":28},"1 nonce check found",{"reason":308,"points":52},"2 capability checks found","2026-03-16T19:03:53.134Z",{"wat":311,"direct":322},{"assetPaths":312,"generatorPatterns":316,"scriptPaths":317,"versionParams":318},[313,314,315],"\u002Fwp-content\u002Fplugins\u002Fnelio-popups\u002Fassets\u002Fcss\u002Fblock-customizations.css","\u002Fwp-content\u002Fplugins\u002Fnelio-popups\u002Fassets\u002Fcss\u002Fpublic.css","\u002Fwp-content\u002Fplugins\u002Fnelio-popups\u002Fassets\u002Fjs\u002Fpublic.js",[],[315],[319,320,321],"nelio-popups\u002Fassets\u002Fcss\u002Fblock-customizations.css?ver=","nelio-popups\u002Fassets\u002Fcss\u002Fpublic.css?ver=","nelio-popups\u002Fassets\u002Fjs\u002Fpublic.js?ver=",{"cssClasses":323,"htmlComments":331,"htmlAttributes":332,"restEndpoints":334,"jsGlobals":335,"shortcodeOutput":337},[324,325,326,327,328,329,330],"nelio-popup-store","nelio-popup-size--is-auto-normal","nelio-popup-size--is-auto-wide","nelio-popup-size--is-auto-fullscreen","nelio-popup-size--is-custom","nelio-popup-size--is-fixed","nelio-popup-content",[],[333],"nelio-popup-preview",[],[336],"NelioPopupsFrontendSettings",[],{"error":339,"url":340,"statusCode":341,"statusMessage":342,"message":342},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fnelio-popups\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":344,"versions":345},25,[346,351,359,367,375,383,390,399,408,417,426,435,444,453,462,471,480,489,498,507,516,525,534,543,552],{"version":6,"download_url":26,"svn_tag_url":347,"released_at":39,"has_diff":51,"diff_files_changed":348,"diff_lines":39,"trac_diff_url":349,"vulnerabilities":350,"is_current":339},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.3.5&new_path=%2Fnelio-popups%2Ftags%2F1.3.6",[],{"version":352,"download_url":353,"svn_tag_url":354,"released_at":39,"has_diff":51,"diff_files_changed":355,"diff_lines":39,"trac_diff_url":356,"vulnerabilities":357,"is_current":51},"1.3.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.3.4&new_path=%2Fnelio-popups%2Ftags%2F1.3.5",[358],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":360,"download_url":361,"svn_tag_url":362,"released_at":39,"has_diff":51,"diff_files_changed":363,"diff_lines":39,"trac_diff_url":364,"vulnerabilities":365,"is_current":51},"1.3.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.3.3&new_path=%2Fnelio-popups%2Ftags%2F1.3.4",[366],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":368,"download_url":369,"svn_tag_url":370,"released_at":39,"has_diff":51,"diff_files_changed":371,"diff_lines":39,"trac_diff_url":372,"vulnerabilities":373,"is_current":51},"1.3.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.3.2&new_path=%2Fnelio-popups%2Ftags%2F1.3.3",[374],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":376,"download_url":377,"svn_tag_url":378,"released_at":39,"has_diff":51,"diff_files_changed":379,"diff_lines":39,"trac_diff_url":380,"vulnerabilities":381,"is_current":51},"1.3.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.3.1&new_path=%2Fnelio-popups%2Ftags%2F1.3.2",[382],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":67,"download_url":384,"svn_tag_url":385,"released_at":39,"has_diff":51,"diff_files_changed":386,"diff_lines":39,"trac_diff_url":387,"vulnerabilities":388,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.3.0&new_path=%2Fnelio-popups%2Ftags%2F1.3.1",[389],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":391,"download_url":392,"svn_tag_url":393,"released_at":39,"has_diff":51,"diff_files_changed":394,"diff_lines":39,"trac_diff_url":395,"vulnerabilities":396,"is_current":51},"1.3.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.3.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.8&new_path=%2Fnelio-popups%2Ftags%2F1.3.0",[397,398],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":400,"download_url":401,"svn_tag_url":402,"released_at":39,"has_diff":51,"diff_files_changed":403,"diff_lines":39,"trac_diff_url":404,"vulnerabilities":405,"is_current":51},"1.2.8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.7&new_path=%2Fnelio-popups%2Ftags%2F1.2.8",[406,407],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":409,"download_url":410,"svn_tag_url":411,"released_at":39,"has_diff":51,"diff_files_changed":412,"diff_lines":39,"trac_diff_url":413,"vulnerabilities":414,"is_current":51},"1.2.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.6&new_path=%2Fnelio-popups%2Ftags%2F1.2.7",[415,416],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":418,"download_url":419,"svn_tag_url":420,"released_at":39,"has_diff":51,"diff_files_changed":421,"diff_lines":39,"trac_diff_url":422,"vulnerabilities":423,"is_current":51},"1.2.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.5&new_path=%2Fnelio-popups%2Ftags%2F1.2.6",[424,425],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":427,"download_url":428,"svn_tag_url":429,"released_at":39,"has_diff":51,"diff_files_changed":430,"diff_lines":39,"trac_diff_url":431,"vulnerabilities":432,"is_current":51},"1.2.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.4&new_path=%2Fnelio-popups%2Ftags%2F1.2.5",[433,434],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":436,"download_url":437,"svn_tag_url":438,"released_at":39,"has_diff":51,"diff_files_changed":439,"diff_lines":39,"trac_diff_url":440,"vulnerabilities":441,"is_current":51},"1.2.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.3&new_path=%2Fnelio-popups%2Ftags%2F1.2.4",[442,443],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":445,"download_url":446,"svn_tag_url":447,"released_at":39,"has_diff":51,"diff_files_changed":448,"diff_lines":39,"trac_diff_url":449,"vulnerabilities":450,"is_current":51},"1.2.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.2&new_path=%2Fnelio-popups%2Ftags%2F1.2.3",[451,452],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":454,"download_url":455,"svn_tag_url":456,"released_at":39,"has_diff":51,"diff_files_changed":457,"diff_lines":39,"trac_diff_url":458,"vulnerabilities":459,"is_current":51},"1.2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.1&new_path=%2Fnelio-popups%2Ftags%2F1.2.2",[460,461],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":463,"download_url":464,"svn_tag_url":465,"released_at":39,"has_diff":51,"diff_files_changed":466,"diff_lines":39,"trac_diff_url":467,"vulnerabilities":468,"is_current":51},"1.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.2.0&new_path=%2Fnelio-popups%2Ftags%2F1.2.1",[469,470],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":472,"download_url":473,"svn_tag_url":474,"released_at":39,"has_diff":51,"diff_files_changed":475,"diff_lines":39,"trac_diff_url":476,"vulnerabilities":477,"is_current":51},"1.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.1.3&new_path=%2Fnelio-popups%2Ftags%2F1.2.0",[478,479],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":481,"download_url":482,"svn_tag_url":483,"released_at":39,"has_diff":51,"diff_files_changed":484,"diff_lines":39,"trac_diff_url":485,"vulnerabilities":486,"is_current":51},"1.1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.1.1&new_path=%2Fnelio-popups%2Ftags%2F1.1.3",[487,488],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":490,"download_url":491,"svn_tag_url":492,"released_at":39,"has_diff":51,"diff_files_changed":493,"diff_lines":39,"trac_diff_url":494,"vulnerabilities":495,"is_current":51},"1.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.1.0&new_path=%2Fnelio-popups%2Ftags%2F1.1.1",[496,497],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":499,"download_url":500,"svn_tag_url":501,"released_at":39,"has_diff":51,"diff_files_changed":502,"diff_lines":39,"trac_diff_url":503,"vulnerabilities":504,"is_current":51},"1.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.0.27&new_path=%2Fnelio-popups%2Ftags%2F1.1.0",[505,506],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":508,"download_url":509,"svn_tag_url":510,"released_at":39,"has_diff":51,"diff_files_changed":511,"diff_lines":39,"trac_diff_url":512,"vulnerabilities":513,"is_current":51},"1.0.27","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.0.27.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.0.27\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.0.26&new_path=%2Fnelio-popups%2Ftags%2F1.0.27",[514,515],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":517,"download_url":518,"svn_tag_url":519,"released_at":39,"has_diff":51,"diff_files_changed":520,"diff_lines":39,"trac_diff_url":521,"vulnerabilities":522,"is_current":51},"1.0.26","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.0.26.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.0.26\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.0.25&new_path=%2Fnelio-popups%2Ftags%2F1.0.26",[523,524],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":526,"download_url":527,"svn_tag_url":528,"released_at":39,"has_diff":51,"diff_files_changed":529,"diff_lines":39,"trac_diff_url":530,"vulnerabilities":531,"is_current":51},"1.0.25","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.0.25.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.0.25\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.0.24&new_path=%2Fnelio-popups%2Ftags%2F1.0.25",[532,533],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":535,"download_url":536,"svn_tag_url":537,"released_at":39,"has_diff":51,"diff_files_changed":538,"diff_lines":39,"trac_diff_url":539,"vulnerabilities":540,"is_current":51},"1.0.24","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.0.24.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.0.24\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.0.23&new_path=%2Fnelio-popups%2Ftags%2F1.0.24",[541,542],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":544,"download_url":545,"svn_tag_url":546,"released_at":39,"has_diff":51,"diff_files_changed":547,"diff_lines":39,"trac_diff_url":548,"vulnerabilities":549,"is_current":51},"1.0.23","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.0.23.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.0.23\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnelio-popups%2Ftags%2F1.0.22&new_path=%2Fnelio-popups%2Ftags%2F1.0.23",[550,551],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"version":553,"download_url":554,"svn_tag_url":555,"released_at":39,"has_diff":51,"diff_files_changed":556,"diff_lines":39,"trac_diff_url":39,"vulnerabilities":557,"is_current":51},"1.0.22","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnelio-popups.1.0.22.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnelio-popups\u002Ftags\u002F1.0.22\u002F",[],[558,559],{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":68,"vuln_type":70,"patched_in_version":67}]