[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbO6Wi-RAO5ScSsClYw3gcx9uXfXavXFLMhf-K5eHfrI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":123,"fingerprints":159},"nsfw","NSFW (Not Safe For Work)","1.0","zingming","https:\u002F\u002Fprofiles.wordpress.org\u002Fzingming\u002F","\u003Cp>When you compose a post, wrap the NSFW content in \u003Ccode>[nsfw][\u002Fnsfw]\u003C\u002Fcode> to hide it. Readers can click on the “Show” link to read the hidden content.\u003C\u002Fp>\n","Wrap the NSFW content in [nsfw][\u002Fnsfw] to hide it. Readers can click on the \"Show\" link to read the hidden content.",30,2883,0,"2010-08-19T12:20:00.000Z","3.0.5","3.0.1","",[19,20,4,21],"javascript","not-safe-for-work","post","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fnsfw\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnsfw.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":24,"avg_patch_time_days":11,"trust_score":31,"computed_at":32},4,250,84,"2026-04-04T06:22:32.040Z",[34,57,71,90,110],{"slug":35,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":44,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":17,"tags":49,"homepage":54,"download_link":55,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"raw-html","Raw HTML","1.6.4","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>Lets you disable automatic formatting like smart quotes and automatic paragraph creation, and use raw HTML\u002FJS\u002FCSS code in your posts without WordPress messing it up.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>With this plugin, you can wrap any part of your post in [raw]…[\u002Fraw] tags to prevent WordPress from converting newlines to HTML paragraphs, replacing apostrophes with typographic quotes and so on. This is very useful if you need to add a CSS block or JavaScript to your post.\u003C\u002Fp>\n\u003Cp>RawHTML will also add new checkboxes to the “Edit Post” screen that let you disable certain WP filters on a per-post basis. This way you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable wptexturize (the function that creates smart quotes and other typographic characters).\u003C\u002Fli>\n\u003Cli>Disable automatic paragraph creation.\u003C\u002Fli>\n\u003Cli>Disable image smilies. \u003C\u002Fli>\n\u003Cli>Disable convert_chars (the function that converts ampersands to HTML entities and “fixes” some Unicode characters).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The free version only supports editing posts in the Text tab (called “HTML” in older WordPress versions). \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">Get the Pro version\u003C\u002Fa> if you want to be able to switch between Text and the Visual editor without WordPress messing up your content.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Compatibility\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin doesn’t fully support the Gutenberg editor. As of WordPress 5.0, some Raw HTML features will only work if you use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To prevent a part of your post or page from being filtered by WordPress, switch to the Text\u002FHTML editor and wrap it in \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> or \u003Ccode>\u003C!--raw-->...\u003C!--\u002Fraw-->\u003C\u002Fcode> tags. These two versions work exactly the same, except that the latter won’t be visible to your visitors even if you deactivate Raw HTML.\u003C\u002Fp>\n\u003Cp>\u003Cem>Example :\u003C\u002Fem>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw]\nThis \n\nis \n\na \"test\"!\n[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In this case, the tags will prevent WordPress from inserting paragraph breaks between “This”, “is” and “a “test””, as well as ensure that the double quotes arround “test” are not converted to typographic (curly) quotes.\u003C\u002Fp>\n\u003Cp>To avoid problems, only edit posts that contain your custom code in Text\u002FHTML mode. If you’d like to be able to also use the Visual editor, \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">get the Pro version\u003C\u002Fa>. It will make the code betwen [raw] tags appear as a read-only placeholder when viewed in Visual mode, ensuring WordPress doesn’t change it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Combining shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, shortcodes that are inside [raw] tags will not work. They will just show up as plain text. To enable shortcodes, add the \u003Ccode>shortcodes=1\u003C\u002Fcode> attribute to the tag:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw shortcodes=1]This [shortcode] will be run.[\u002Fraw]\n\n[raw]This [shortcode] won't work.[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Preserving \u003Ccode>[raw]\u003C\u002Fcode> code in excerpts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, the plugin will automatically remove any code that’s inside \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> tags from post excerpts. You can prevent that by adding the following line to \u003Ccode>wp-config.php\u003C\u002Fcode>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define('RAW_HTML_KEEP_RAW_IN_EXCERPTS', true);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This will ensure that the plugin doesn’t strip \u003Ccode>[raw]\u003C\u002Fcode> blocks from automatically generated excerpts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Some features of Raw HTML will only work for users who have the “unfiltered_html” capability. In a normal WordPress install that includes the Editor and Administrator roles. In a Multisite install, only the Super Admin has this capability by default.\u003C\u002Fp>\n","Lets you use raw HTML or any other code in your posts. You can also disable smart quotes and other automatic formatting on a per-post basis.",10000,586247,86,33,"2024-11-11T15:00:00.000Z","6.7.5","2.8",[50,51,52,19,53],"css","formatting","html","posts","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2007\u002F12\u002F13\u002Fraw-html-in-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraw-html.1.6.4.zip",92,{"slug":58,"name":59,"version":6,"author":17,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":13,"num_ratings":13,"last_updated":65,"tested_up_to":66,"requires_at_least":48,"requires_php":17,"tags":67,"homepage":69,"download_link":70,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"custom-css-and-js","Custom CSS and JS","https:\u002F\u002Fprofiles.wordpress.org\u002Fpjdietz\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Fpjdietz.com\u002Fwordpress-plugins\u002Fcustom-css-js\u002F\" rel=\"nofollow ugc\">Custom CSS and JS\u003C\u002Fa> allows you to add stylesheets and JavaScripts to any individual post by adding custom fields. Both CSS and scripts can be either internal or external. Since this is a plugin, the custom CSS and JavaScript are available to any theme used to display the post, as long as the themes call “wp_head”.\u003C\u002Fp>\n\u003Ch3>Using the Plugin\u003C\u002Fh3>\n\u003Cp>To use the plugin, add any combination of the following custom fields to your post.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>custom_css\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd an external stylesheet by adding a custom field with the name \u003Cstrong>custom_css\u003C\u002Fstrong>. The value of the field should be the path to your css file.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>cusrom_css_code\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd an internal stylesheet by adding a custom field with the name \u003Cstrong>custom_css_code\u003C\u002Fstrong>. Include your CSS code as the value. (Do not include the style tags.)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>custom_js\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd an external JavaScript by adding a custom field with the name \u003Cstrong>custom_js\u003C\u002Fstrong>. The value of the field should be the path to your script.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>custom_js_code\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd an internal JavaScript by adding a custom field with the name \u003Cstrong>custom_js_code\u003C\u002Fstrong>. Include your JavaScript code as the value. (Do not include the script tags.)\u003C\u002Fp>\n\u003Ch3>Custom Fields Order\u003C\u002Fh3>\n\u003Col>\n\u003Cli>The external styles and scripts are included before the internal ones.\u003C\u002Fli>\n\u003Cli>If you include multiple entries for a given field, the entries will be included in order.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Okay, but what if I don’t like those tags?\u003C\u002Fh3>\n\u003Cp>Just edit custom-css-js.php and change the constants defined near the top of the file.\u003C\u002Fp>\n\u003Ch3>Note\u003C\u002Fh3>\n\u003Cp>This plugin only works with individual posts and pages. It does not work for list pages (e.g., the index page, search results).\u003C\u002Fp>\n","Custom CSS and JavaScript allows you to add custom internal and external CSS and JavaScripts to individual posts.",1000,12921,"2010-05-20T20:59:00.000Z","2.9.2",[50,19,21,68],"stylesheet","http:\u002F\u002Fpjdietz.com\u002Fwordpress-plugins\u002Fcustom-css-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-css-and-js.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":79,"downloaded":80,"rating":81,"num_ratings":82,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":17,"tags":86,"homepage":88,"download_link":89,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"insert-javascript-css","Insert JavaScript and CSS","0.2","Ryan","https:\u002F\u002Fprofiles.wordpress.org\u002Fryannutt\u002F","\u003Cp>Easily add custom JavaScript or CSS to a single post or page.\u003C\u002Fp>\n\u003Cp>When activated, a new icon is added to the post edit page near the icon you use\u003Cbr \u002F>\nto add media to a post. Clicking the new icon brings up a screen where you can\u003Cbr \u002F>\ninsert JavaScript and CSS that will be included with the current post.\u003C\u002Fp>\n\u003Cp>Anything entered into the text field on the JavaScript tab will be inserted into\u003Cbr \u002F>\nthe \u003Chead> section of your web page. Same is true of the CSS tab. This allows\u003Cbr \u002F>\nyou to insert arbitrary JavaScript and CSS into any post or page you would\u003Cbr \u002F>\nlike without having to resort to loading it on all pages.\u003C\u002Fp>\n","Adds fields to the post and page edit pages that allow you to insert custom JavaScript or CSS for that post or page.",400,26544,82,10,"2012-07-26T02:08:00.000Z","3.4.2","3.0",[50,19,87,21],"page","http:\u002F\u002Fwww.nutt.net\u002Ftag\u002Finsert-javascript-css\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-javascript-css.0.2.zip",{"slug":91,"name":92,"version":6,"author":93,"author_profile":94,"description":95,"short_description":96,"active_installs":79,"downloaded":97,"rating":98,"num_ratings":99,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":17,"tags":103,"homepage":108,"download_link":109,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"page-specific-scripts","Page Specific Scripts","Afnan Abbasi","https:\u002F\u002Fprofiles.wordpress.org\u002Faffuxo\u002F","\u003Cp>This plugin helps you add jQuery and Javascript code snippets only on specific pages and posts.\u003C\u002Fp>\n\u003Cp>It works with all types of custom post types as well. Each script added to a page or post, will run only on that specific post.\u003C\u002Fp>\n\u003Cp>Scripts can be added in a meta box when editing a page.\u003C\u002Fp>\n\u003Cp>This plugin uses the wp_head() action hook, and adds the code to the header of the page.\u003C\u002Fp>\n\u003Cp>Most of the themes using this hook, so it works on most of the themes.\u003C\u002Fp>\n\u003Cp>Tested & works with Gutenberg.\u003C\u002Fp>\n\u003Ch4>Docs & Support\u003C\u002Fh4>\n\u003Cp>You will find more information about the plugin at the plugin \u003Ca href=\"https:\u002F\u002Fjustentrepreneurship.com\u002Fpage-specific-scripts\" rel=\"nofollow ugc\">website\u003C\u002Fa>\u003C\u002Fp>\n","Simple and easy to use wordpress plugin to add jQuery\u002FJS Scripts only to specific pages.",3439,100,1,"2020-09-30T13:45:00.000Z","5.5.18","3.1",[19,104,105,106,107],"jquery","jquery-on-posts-pages","page-specific-jquery","script","https:\u002F\u002Fjustentrepreneurship.com\u002Fpage-specific-scripts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpage-specific-scripts.zip",{"slug":111,"name":112,"version":6,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":79,"downloaded":117,"rating":98,"num_ratings":99,"last_updated":118,"tested_up_to":15,"requires_at_least":85,"requires_php":17,"tags":119,"homepage":121,"download_link":122,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"specific-cssjs-for-posts-and-pages","Specific CSS\u002FJS for Posts and Pages","techtastico","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechtastico\u002F","\u003Cp>\u003Cstrong>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fstrong> is a plugin that allows you to add custom CSS or Javascript files or embeded code in header to individual posts or pages.\u003C\u002Fp>\n\u003Ch4>Plugin’s Official Site\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Ftechtastico.com\u002Fplugins\u002F\" rel=\"nofollow ugc\">\u003Cem>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fem>\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Major features in \u003Cem>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fem> include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can add multiples CSS files to indivual posts or pages\u003C\u002Fli>\n\u003Cli>You can add multiples Javascript files to indivual posts or pages\u003C\u002Fli>\n\u003Cli>Also you can add CSS or Javascript code directly between header tags in posts or pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003Cli>New translations are welcomed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information please visit us at \u003Ca href=\"http:\u002F\u002Ftechtastico.com\u002Fplugins\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Specific CSS\u002FJS for Posts and Pages\u003C\u002Fstrong>\u003C\u002Fa> plugin page.\u003C\u002Fp>\n","With Specific CSS\u002FJS for Posts and Pages you can add CSS or JavaScript files to a specific page or post.",15765,"2011-01-19T19:54:00.000Z",[50,19,120,21,53],"js","http:\u002F\u002Ftechtastico.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspecific-cssjs-for-posts-and-pages.zip",{"attackSurface":124,"codeSignals":136,"taintFlows":146,"riskAssessment":147,"analyzedAt":158},{"hooks":125,"ajaxHandlers":132,"restRoutes":133,"shortcodes":134,"cronEvents":135,"entryPointCount":13,"unprotectedCount":13},[126],{"type":127,"name":128,"callback":129,"file":130,"line":131},"action","admin_head","addToAdminHead","nsfw.php",20,[],[],[],[],{"dangerousFunctions":137,"sqlUsage":138,"outputEscaping":140,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":145},[],{"prepared":13,"raw":13,"locations":139},[],{"escaped":13,"rawEcho":99,"locations":141},[142],{"file":130,"line":143,"context":144},44,"raw output",[],[],{"summary":148,"deductions":149},"The \"nsfw\" plugin v1.0 exhibits a strong security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface, and there are no identified entry points that lack authentication or permission checks. Furthermore, the code signals reveal no dangerous functions, file operations, or external HTTP requests, and all SQL queries are properly prepared, which is an excellent practice. The lack of vulnerability history, including CVEs, also suggests a history of secure development or no prior significant security issues being publicly reported.\n\nHowever, a notable concern arises from the output escaping. With one total output and 0% properly escaped, this indicates a potential for Cross-Site Scripting (XSS) vulnerabilities. Any data processed by the plugin and directly outputted to the browser without proper sanitization or escaping could be manipulated by attackers to inject malicious scripts. While the taint analysis shows no specific flows with unsanitized paths, the general lack of output escaping across all outputs is a significant risk that needs immediate attention. The absence of nonce and capability checks, while not immediately risky due to the limited attack surface, would become a severe issue if new entry points were introduced without proper security measures.\n\nIn conclusion, the plugin has a very small attack surface and employs good practices regarding SQL queries and avoiding dangerous functions. The vulnerability history is clean, which is a positive sign. The primary weakness lies in the complete lack of output escaping, presenting a tangible risk of XSS. Addressing this specific issue should be the highest priority to improve the plugin's overall security.",[150,153,156],{"reason":151,"points":152},"Output escaping missing on all outputs",8,{"reason":154,"points":155},"No capability checks",3,{"reason":157,"points":155},"No nonce checks","2026-03-16T22:36:29.337Z",{"wat":160,"direct":166},{"assetPaths":161,"generatorPatterns":163,"scriptPaths":164,"versionParams":165},[162],"\u002Fwp-content\u002Fplugins\u002Fnsfw\u002Fnsfwquicktag.js",[],[162],[],{"cssClasses":167,"htmlComments":168,"htmlAttributes":169,"restEndpoints":170,"jsGlobals":171,"shortcodeOutput":172},[],[],[],[],[],[173],"\u003Cdiv>\n\u003Cp>NSFW (Not Safe For Work):   \u003Ca href=\"javascript:;\" onclick=\"var noise = this.parentNode.parentNode.getElementsByTagName('div')[0]; if (noise.style.display == 'none') { noise.style.display = ''; this.innerHTML = 'Hide'; noise.style.paddingBottom = '1em'; this.parentNode.style.marginBottom = '0.5em'; } else { noise.style.display = 'none'; this.innerHTML = 'Show'; }\">Show\u003C\u002Fa>\u003C\u002Fp>\n\u003Cdiv style=\"display:none;\">"]