[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9o3CcY5j_sLziuURMm9yw3tG5POk0NzJcgoxBMGos0M":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":38,"fingerprints":147},"nic-image-gallery","Nic Image Gallery","1.0","jignesh_dekavadiya","https:\u002F\u002Fprofiles.wordpress.org\u002Fjignesh_dekavadiya\u002F","\u003Cp>A simple plugin for image nice rollover effect with attractive image loading. One of the good\u003Cbr \u002F>\nway to represent your post based on image rollover effect. We have given option for uploading\u003Cbr \u002F>\nup to 4 images for each post that will nicely shown at frontend gallery view and based on click it will shown popup with nicely representation of post.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.indianic.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Visit Our Website\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n","Advance great image gallery wordpress plugin for image rollover and slider effect.",20,6934,80,4,"2014-06-20T09:27:00.000Z","3.9.40","3.2","",[20,21,22,23,24],"image-gallery-plugin","image-rollover-effect","indianic-easy-image-gallery-with-small-group-images","indianic-gallery","indianic-image-slide-show","http:\u002F\u002Fwww.indianic.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnic-image-gallery.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},1,30,84,"2026-04-05T03:07:23.754Z",[],{"attackSurface":39,"codeSignals":74,"taintFlows":136,"riskAssessment":137,"analyzedAt":146},{"hooks":40,"ajaxHandlers":66,"restRoutes":67,"shortcodes":68,"cronEvents":73,"entryPointCount":33,"unprotectedCount":28},[41,47,50,54,58,62],{"type":42,"name":43,"callback":44,"file":45,"line":46},"action","admin_menu","nic_image_register_menu","nic-image-gallery.php",29,{"type":42,"name":48,"callback":49,"file":45,"line":34},"admin_init","nic_image_add_admin_JS_CSS",{"type":42,"name":51,"callback":52,"file":45,"line":53},"add_meta_boxes","nic_image_meta_box_add",31,{"type":42,"name":55,"callback":56,"file":45,"line":57},"save_post","nic_image_updated_custom_meta",32,{"type":42,"name":59,"callback":60,"file":45,"line":61},"wp_enqueue_scripts","nic_front_JS_CSS",33,{"type":42,"name":63,"callback":64,"file":45,"line":65},"init","register_nic_image_gallery_plugin",424,[],[],[69],{"tag":70,"callback":71,"file":45,"line":72},"nic-image-gallery-view-mode","nic_image_view_mode_listing",34,[],{"dangerousFunctions":75,"sqlUsage":76,"outputEscaping":78,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":33,"bundledLibraries":135},[],{"prepared":28,"raw":28,"locations":77},[],{"escaped":79,"rawEcho":80,"locations":81},18,28,[82,85,87,89,91,93,95,97,99,101,103,105,107,109,111,113,115,117,118,120,122,123,125,127,128,130,132,133],{"file":45,"line":83,"context":84},51,"raw output",{"file":45,"line":86,"context":84},52,{"file":45,"line":88,"context":84},64,{"file":45,"line":90,"context":84},243,{"file":45,"line":92,"context":84},257,{"file":45,"line":94,"context":84},271,{"file":45,"line":96,"context":84},272,{"file":45,"line":98,"context":84},273,{"file":45,"line":100,"context":84},343,{"file":45,"line":102,"context":84},345,{"file":45,"line":104,"context":84},353,{"file":45,"line":106,"context":84},355,{"file":45,"line":108,"context":84},363,{"file":45,"line":110,"context":84},365,{"file":45,"line":112,"context":84},373,{"file":45,"line":114,"context":84},375,{"file":45,"line":116,"context":84},385,{"file":45,"line":116,"context":84},{"file":45,"line":119,"context":84},388,{"file":45,"line":121,"context":84},396,{"file":45,"line":121,"context":84},{"file":45,"line":124,"context":84},397,{"file":45,"line":126,"context":84},400,{"file":45,"line":126,"context":84},{"file":45,"line":129,"context":84},401,{"file":45,"line":131,"context":84},404,{"file":45,"line":131,"context":84},{"file":45,"line":134,"context":84},405,[],[],{"summary":138,"deductions":139},"The nic-image-gallery plugin version 1.0 presents a generally positive security posture, adhering to several good practices. The complete absence of known CVEs and unpatched vulnerabilities, along with no recorded history of past issues, suggests a well-maintained and potentially secure codebase.  The static analysis also indicates a limited attack surface, with only one shortcode identified as an entry point and no unprotected handlers or routes. Furthermore, all SQL queries are prepared, and file operations are absent, mitigating common attack vectors.  However, a significant concern arises from the output escaping. With 39% of outputs properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities.  The lack of nonce checks across its entry points is another area of weakness, as it allows for potential Cross-Site Request Forgery (CSRF) attacks, especially if the shortcode performs any sensitive actions.  While the capability check is present for the shortcode, the absence of nonce checks is a notable oversight.",[140,143],{"reason":141,"points":142},"Low percentage of properly escaped outputs",8,{"reason":144,"points":145},"Missing nonce checks on entry points",7,"2026-03-16T23:08:06.908Z",{"wat":148,"direct":159},{"assetPaths":149,"generatorPatterns":154,"scriptPaths":155,"versionParams":158},[150,151,152,153],"\u002Fwp-content\u002Fplugins\u002Fnic-image-gallery\u002Fimages\u002Fnic_default.png","\u002Fwp-content\u002Fplugins\u002Fnic-image-gallery\u002Fjs\u002Fget-images.js","\u002Fwp-content\u002Fplugins\u002Fnic-image-gallery\u002Fjs\u002Fcustom.js","\u002Fwp-content\u002Fplugins\u002Fnic-image-gallery\u002Fcss\u002Fcustom-css.css",[],[156,157],"plugins\u002Fnic-image-gallery\u002Fjs\u002Fget-images.js","plugins\u002Fnic-image-gallery\u002Fjs\u002Fcustom.js",[],{"cssClasses":160,"htmlComments":164,"htmlAttributes":169,"restEndpoints":172,"jsGlobals":173,"shortcodeOutput":176},[161,162,163],"preview_img","heading","image_view",[165,166,167,168],"\u003C!-- NIC Image gallery settings -->","\u003C!-- Use shortcode -->","\u003C!-- in post or page content area. -->","\u003C!-- Set Default Image  -->",[170,171],"id=\"droppable\"","name=\"post_ID\"",[],[174,175],"var pluginPath","var pluginUrl",[177],"[nic-image-gallery-view-mode]"]