[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwxwAmHLeqfN80x0T-UF7M0xhbEp7UtFvzsSKDGyEl7A":3,"$fCGlm80RJRiDim0h3Vvqhdvyi-Gv1AX4_O7gWd1A3uh8":255,"$fHGDx6lJLQZ4dt1sy5YYhRK0WmVnmaNExHqA9ncMzlZo":260},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":19,"download_link":20,"security_score":21,"vuln_count":13,"unpatched_count":13,"last_vuln_date":22,"fetched_at":23,"discovery_status":24,"vulnerabilities":25,"developer":26,"crawl_stats":22,"alternatives":32,"analysis":33,"fingerprints":233},"neville-extensions","Neville Extensions","1.0.0","acosmin","https:\u002F\u002Fprofiles.wordpress.org\u002Facosmin\u002F","\u003Cp>Adds front page sections (Instagram, Ads), a post title design option and other extensions to Neville WordPress theme.\u003C\u002Fp>\n","Adds front page sections (Instagram, Ads), a post title design option and other extensions to Neville WordPress theme.",100,10286,0,"2017-07-04T08:21:00.000Z","4.8.28","4.6","",[],"http:\u002F\u002Fwww.acosmin.com\u002Ftheme\u002Fneville\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fneville-extensions.1.0.0.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":21,"avg_patch_time_days":29,"trust_score":30,"computed_at":31},6,2270,30,84,"2026-05-20T07:49:58.245Z",[],{"attackSurface":34,"codeSignals":175,"taintFlows":223,"riskAssessment":224,"analyzedAt":232},{"hooks":35,"ajaxHandlers":171,"restRoutes":172,"shortcodes":173,"cronEvents":174,"entryPointCount":13,"unprotectedCount":13},[36,43,48,53,57,62,66,70,73,77,81,85,89,92,96,100,102,106,108,111,114,118,121,124,127,130,133,136,139,142,145,149,152,156,158,160,162,165,167,169],{"type":37,"name":38,"callback":39,"priority":40,"file":41,"line":42},"action","customize_register","nevillex_customizer",15,"customizer\\init.php",17,{"type":37,"name":44,"callback":45,"file":46,"line":47},"admin_enqueue_scripts","nevillex_scripts_admin","inc\\enqueue-backend.php",31,{"type":37,"name":49,"callback":50,"file":51,"line":52},"admin_menu","nevillex_title_design_metabox","modules\\title-design\\init.php",9,{"type":37,"name":54,"callback":55,"file":51,"line":56},"save_post","nevillex_title_design_save_meta",10,{"type":58,"name":59,"callback":60,"priority":56,"file":51,"line":61},"filter","the_title","nevillex_title_design_output",11,{"type":37,"name":63,"callback":64,"priority":56,"file":65,"line":40},"nevillex__section_ads","nevillex__section_ads_output","sections\\ads\\ads-tmpl.php",{"type":58,"name":67,"callback":68,"priority":56,"file":69,"line":56},"neville___section_category_defaults","nevillex_s_category___ad_default","sections\\category\\category.php",{"type":58,"name":71,"callback":72,"priority":56,"file":69,"line":61},"neville___section_category_options","nevillex_s_category___ad_option",{"type":58,"name":74,"callback":75,"priority":56,"file":69,"line":76},"neville___section_category_update","nevillex_s_category___ad_update",12,{"type":58,"name":78,"callback":79,"priority":56,"file":69,"line":80},"neville___section_category_fields","nevillex_s_category___ad_fields",13,{"type":37,"name":82,"callback":83,"priority":29,"file":69,"line":84},"neville__sec_tmpl_cat_side_widgets","nevillex_s_category__ad_display",14,{"type":37,"name":86,"callback":87,"priority":29,"file":88,"line":56},"widgets_init","nevillex_sections","sections\\init.php",{"type":58,"name":90,"callback":91,"priority":40,"file":88,"line":61},"neville_customizer_js_settings","nevillex_sections___new",{"type":37,"name":93,"callback":94,"priority":56,"file":95,"line":40},"nevillex__section_instagram","nevillex__section_instagram_start","sections\\instagram\\instagram-tmpl.php",{"type":37,"name":93,"callback":97,"priority":98,"file":95,"line":99},"nevillex__section_instagram_header",20,16,{"type":37,"name":93,"callback":101,"priority":29,"file":95,"line":42},"nevillex__section_instagram_init",{"type":37,"name":93,"callback":103,"priority":104,"file":95,"line":105},"nevillex__section_instagram_end",999,18,{"type":37,"name":97,"callback":107,"priority":56,"file":95,"line":98},"nevillex__section_instagram_header_start",{"type":37,"name":97,"callback":109,"priority":98,"file":95,"line":110},"nevillex__section_instagram_header_title",21,{"type":37,"name":97,"callback":112,"priority":29,"file":95,"line":113},"nevillex__section_instagram_header_description",22,{"type":37,"name":97,"callback":115,"priority":116,"file":95,"line":117},"nevillex__section_instagram_header_link",40,23,{"type":37,"name":97,"callback":119,"priority":104,"file":95,"line":120},"nevillex__section_instagram_header_end",24,{"type":37,"name":101,"callback":122,"priority":56,"file":95,"line":123},"nevillex__section_instagram_init_start",26,{"type":37,"name":101,"callback":125,"priority":98,"file":95,"line":126},"nevillex__section_instagram_init_title",27,{"type":37,"name":101,"callback":128,"priority":29,"file":95,"line":129},"nevillex__section_instagram_init_items",28,{"type":37,"name":101,"callback":131,"priority":104,"file":95,"line":132},"nevillex__section_instagram_init_end",29,{"type":37,"name":49,"callback":134,"file":135,"line":126},"add_admin_menu","settings-pages\\instagram.php",{"type":37,"name":137,"callback":138,"file":135,"line":129},"admin_init","settings_init",{"type":58,"name":140,"callback":141,"priority":56,"file":135,"line":29},"plugin_action_links","add_action_links",{"type":37,"name":44,"callback":143,"file":135,"line":144},"scripts",32,{"type":37,"name":146,"callback":147,"priority":56,"file":148,"line":40},"nevillex__widget_ads","nevillex__widget_ads_output","widgets\\ads\\ads-tmpl.php",{"type":37,"name":86,"callback":150,"priority":116,"file":151,"line":56},"nevillex_widgets","widgets\\init.php",{"type":37,"name":153,"callback":154,"priority":56,"file":155,"line":40},"nevillex__widget_instagram","nevillex__widget_instagram_title","widgets\\instagram\\instagram-tmpl.php",{"type":37,"name":153,"callback":157,"priority":98,"file":155,"line":99},"nevillex__widget_instagram_start",{"type":37,"name":153,"callback":159,"priority":29,"file":155,"line":42},"nevillex__widget_instagram_wrap",{"type":37,"name":153,"callback":161,"priority":116,"file":155,"line":105},"nevillex__widget_instagram_button",{"type":37,"name":153,"callback":163,"priority":104,"file":155,"line":164},"nevillex__widget_instagram_end",19,{"type":37,"name":159,"callback":166,"priority":56,"file":155,"line":110},"nevillex__widget_instagram_wrap_start",{"type":37,"name":159,"callback":168,"priority":98,"file":155,"line":113},"nevillex__widget_instagram_display",{"type":37,"name":159,"callback":170,"priority":104,"file":155,"line":117},"nevillex__widget_instagram_wrap_end",[],[],[],[],{"dangerousFunctions":176,"sqlUsage":181,"outputEscaping":183,"fileOperations":13,"externalRequests":220,"nonceChecks":221,"capabilityChecks":27,"bundledLibraries":222},[177],{"fn":178,"file":51,"line":179,"context":180},"preg_replace(\u002Fe)",145,"preg_replace('\u002F\u003Cem>(.*?)\u003C\\\u002Fe",{"prepared":13,"raw":13,"locations":182},[],{"escaped":184,"rawEcho":40,"locations":185},79,[186,189,191,193,196,198,200,203,205,206,208,210,213,215,218],{"file":65,"line":187,"context":188},41,"raw output",{"file":65,"line":190,"context":188},42,{"file":65,"line":192,"context":188},43,{"file":194,"line":195,"context":188},"sections\\ads\\ads.php",116,{"file":194,"line":197,"context":188},126,{"file":69,"line":199,"context":188},102,{"file":201,"line":202,"context":188},"sections\\instagram\\instagram.php",141,{"file":201,"line":204,"context":188},154,{"file":148,"line":123,"context":188},{"file":207,"line":199,"context":188},"widgets\\ads\\ads.php",{"file":207,"line":209,"context":188},112,{"file":211,"line":212,"context":188},"widgets\\base.php",56,{"file":211,"line":214,"context":188},337,{"file":216,"line":217,"context":188},"widgets\\instagram\\instagram.php",109,{"file":216,"line":219,"context":188},122,3,1,[],[],{"summary":225,"deductions":226},"The 'neville-extensions' v1.0.0 plugin exhibits a generally good security posture, with no recorded historical vulnerabilities. The static analysis shows a negligible attack surface, with all identified entry points correctly protected by authentication checks. The code also demonstrates strong adherence to secure coding practices regarding SQL queries and output escaping, with 100% of SQL queries utilizing prepared statements and a high percentage of outputs being properly escaped. The presence of nonce checks and capability checks further enhances its security. However, there is one notable concern: the use of the `preg_replace` function with the `\u002Fe` modifier is a known source of potential remote code execution vulnerabilities if not handled with extreme caution and proper sanitization. While the taint analysis found no issues, this specific function usage represents a potential risk that warrants attention. The absence of any past vulnerabilities is a positive indicator, suggesting diligent development or a lack of targeted exploits, but it does not completely negate the risks identified in the code signals.",[227,229],{"reason":228,"points":40},"Use of preg_replace with \u002Fe modifier",{"reason":230,"points":231},"8% of output not properly escaped",4,"2026-03-16T20:38:04.233Z",{"wat":234,"direct":244},{"assetPaths":235,"generatorPatterns":239,"scriptPaths":240,"versionParams":241},[236,237,238],"\u002Fwp-content\u002Fplugins\u002Fneville-extensions\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fneville-extensions\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fneville-extensions\u002Fassets\u002Fjs\u002Finstagram.js",[],[237,238],[242,243],"neville-extensions\u002Fassets\u002Fcss\u002Fadmin.css?ver=","neville-extensions\u002Fassets\u002Fjs\u002Fadmin.js?ver=",{"cssClasses":245,"htmlComments":248,"htmlAttributes":249,"restEndpoints":251,"jsGlobals":252,"shortcodeOutput":254},[246,247],"nevillex-instagram-widget","nevillex-instagarm-connected",[],[250],"id=\"nevillex-instagram-settings_access-token\"",[],[253],"nevillex_instagram_admin",[],{"error":256,"url":257,"statusCode":258,"statusMessage":259,"message":259},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fneville-extensions\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":221,"versions":261},[262],{"version":6,"download_url":20,"svn_tag_url":263,"released_at":22,"has_diff":264,"diff_files_changed":265,"diff_lines":22,"trac_diff_url":22,"vulnerabilities":266,"is_current":256},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fneville-extensions\u002Ftags\u002F1.0.0\u002F",false,[],[]]