[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBmuotEjCePCrZB32D2l7cqVh_4FraYZsxO0r-KXc9SA":3,"$fFDIrjBnjaJjLWNDq2ZyDXYN16AOfeEebPRMVLGvhbAg":435,"$f9UuHkcWIIaQ_4PHHDbsFZlnTaiStoNwOOpN_8IMwqAA":440},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"discovery_status":32,"vulnerabilities":33,"developer":52,"crawl_stats":39,"alternatives":60,"analysis":163,"fingerprints":400},"open-graphite","Open Graphite","1.7.1","Rocket Apps","https:\u002F\u002Fprofiles.wordpress.org\u002Fmikeyott\u002F","\u003Cp>Open Graphite lets you control how your WordPress content is viewed when shared on social media.\u003C\u002Fp>\n\u003Cp>Typically when one of your pages is shared on social media (Facebook for example), the platform will use the first image and text it can find on the page. This is usually not ideal and often truncates the content into something nonsensical, resulting in the page being less likely to be engaged with.\u003C\u002Fp>\n\u003Cp>Open Graphite solves this problem, by allowing you to customise the image, title and description of any of your pages that are shared on social media, all without compromising the original content.\u003C\u002Fp>\n\u003Ch3>How to use\u003C\u002Fh3>\n\u003Cp>For the homepage…\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Go to Open Graphite (admin side menu)\u003C\u002Fli>\n\u003Cli>Set your homepage title, description, image and object type\u003C\u002Fli>\n\u003Cli>Enter a Facebook app ID (optional)\u003C\u002Fli>\n\u003Cli>Enter a Twitter username (optional)\u003C\u002Fli>\n\u003Cli>Choose a Twitter card type\u003C\u002Fli>\n\u003Cli>Select which post types to enable for\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For posts and pages…\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create a new post or page (or edit an existing one)\u003C\u002Fli>\n\u003Cli>Scroll down to the Open Graphite metabox\u003C\u002Fli>\n\u003Cli>Enter your desired title, description, image and object type\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Premium Support\u003C\u002Fh3>\n\u003Cp>While the free version of Open Graphite is supported in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fopen-graphite\" rel=\"ugc\">WordPress support page\u003C\u002Fa>, one-on-one priority support is given to \u003Ca href=\"https:\u002F\u002Frocketapps.com.au\u002Fopen-graphite-pro\u002F?origin=open-graphite\" rel=\"nofollow ugc\">Open Graphite Pro\u003C\u002Fa> license holders.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Frocketapps.com.au\u002Fopen-graphite-pro\u002F?origin=open-graphite\" rel=\"nofollow ugc\">Open Graphite Pro\u003C\u002Fa> has additional features, such as:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The ability to use with any custom post type\u003C\u002Fli>\n\u003Cli>Force Facebook to automatically and immediately update your title, description or featured image when you make edits\u003C\u002Fli>\n\u003Cli>Mobile and desktop previews for Facebook, Twitter and Linkedin\u003C\u002Fli>\n\u003Cli>WooCommerce product support\u003C\u002Fli>\n\u003Cli>Pinterest specific options\u003C\u002Fli>\n\u003Cli>Enhanced Slack sharing\u003C\u002Fli>\n\u003Cli>Enable automatic defaults for titles, descriptions, featured images and object types\u003C\u002Fli>\n\u003Cli>Open Graph content indicators\u003C\u002Fli>\n\u003Cli>Limit the number of characters for titles and descriptions (prevent your titles and descriptions getting truncated)\u003C\u002Fli>\n\u003Cli>Open graph check tool\u003C\u002Fli>\n\u003Cli>Additional open graph options\u003C\u002Fli>\n\u003Cli>Priority support\u003C\u002Fli>\n\u003C\u002Ful>\n","Control how your content is viewed when shared on social media.",4000,98919,66,8,"2025-08-21T12:04:00.000Z","6.8.5","4.7","",[20,21,22,23,24],"facebook","open-graph","social","thumbnail","twitter","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fopen-graphite\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopen-graphite.1.7.1.zip",100,1,0,"2023-03-21 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[34],{"id":35,"url_slug":36,"title":37,"description":38,"plugin_slug":4,"theme_slug":39,"affected_versions":40,"patched_in_version":41,"severity":42,"cvss_score":43,"cvss_vector":44,"vuln_type":45,"published_date":30,"updated_date":46,"references":47,"days_to_patch":49,"patch_diff_files":50,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2022-47439","open-graphite-reflected-cross-site-scripting-via-topic-parameter","Open Graphite \u003C= 1.6.0 - Reflected Cross-Site Scripting via topic parameter","The Open Graphite plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the topic parameter in versions up to, and including, 1.6.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.6.0","1.6.1","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[48],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ffd368b2c-ef40-453b-aeef-ad88d847c29b?source=api-prod",308,[],false,{"slug":53,"display_name":7,"profile_url":8,"plugin_count":54,"total_installs":55,"avg_security_score":56,"avg_patch_time_days":57,"trust_score":58,"computed_at":59},"mikeyott",4,13700,98,241,78,"2026-05-20T00:32:14.990Z",[61,85,102,125,144],{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":18,"download_link":81,"security_score":82,"vuln_count":83,"unpatched_count":29,"last_vuln_date":84,"fetched_at":31},"wonderm00ns-simple-facebook-open-graph-tags","Open Graph and Twitter Card Tags","3.3.9","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>This plugin improves the sharing of your WordPress pages, posts, WooCommerce products, or any other post type on social media, by setting the correct Facebook Open Graph Tags.\u003C\u002Fp>\n\u003Cp>It also allows you to add the Twitter Card tags for more effective and efficient Twitter sharing results, as well as the Meta Description and Canonical tags if no other SEO plugin is setting them.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This plugin is not, in any way, affiliated or endorsed by Facebook, Twitter, Google or any other 3rd party.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can also choose to insert the “enclosure” and “media:content” tags to the RSS feeds, so that apps like RSS Graffiti and twitterfeed post the image to Facebook correctly.\u003C\u002Fp>\n\u003Cp>It allows the user to choose which tags are included, and also the default image if the post\u002Fpage doesn’t have one.\u003C\u002Fp>\n\u003Cp>It’s also possible to add an overlay logo\u002Fwatermark to the image. The plugin will resize and crop the original image to 1200×630 and then overlay the chosen 1200×630 PNG file over it.\u003Cbr \u002F>\nIt be usefull to add your brand to the image that shows up on Facebook shared links.\u003C\u002Fp>\n\u003Cp>Our settings page is discreetly kept under “Options”.\u003C\u002Fp>\n\u003Ch4>The generated (Facebook) Open Graph Tags are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>og:title\u003C\u002Fstrong>: From post\u002Fpage\u002Farchive\u002Ftag\u002F… title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:site_name\u003C\u002Fstrong>: From blog title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:url\u003C\u002Fstrong>: From the post\u002Fpage permalink.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:description\u003C\u002Fstrong>: From our specific custom field of the post\u002Fpage, or if not set post\u002Fpage excerpt if it exist, or from post\u002Fpage content. From category\u002Ftag description on its pages, if it exist. From tagline, or custom text, on all the others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image\u003C\u002Fstrong>: From our specific custom field of the post\u002Fpage, or if not set from the post\u002Fpage featured\u002Fthumbnail image, or if it doesn’t exist from the first image in the post content, or if it doesn’t exist from the first image on the post media gallery, or if it doesn’t exist from the default image defined on the options menu. The same image chosen here will be used and enclosure\u002Fmedia:content on the RSS feed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:url\u003C\u002Fstrong>: Same as \u003Cstrong>og:image\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:secure_url\u003C\u002Fstrong>: Same as \u003Cstrong>og:image\u003C\u002Fstrong> if SSL is being used.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:width\u003C\u002Fstrong> and \u003Cstrong>og:image:height\u003C\u002Fstrong>: Image dimensions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:type\u003C\u002Fstrong>: “website” or “blog” for the homepage, “product” for WooCommerce products and “article” for all the others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:author\u003C\u002Fstrong>: From the user (post author) Faceboook Profile URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:published_time\u003C\u002Fstrong>: Article published time (for posts only)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:modified_time\u003C\u002Fstrong> and \u003Cstrong>og:updated_time\u003C\u002Fstrong>: Article modified time (for posts only)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:section\u003C\u002Fstrong>: From post categories.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:publisher\u003C\u002Fstrong>: The website Facebook Page URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:locale\u003C\u002Fstrong>: From WordPress locale or chosen by the user.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>fb:admins\u003C\u002Fstrong>: From settings on the options screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>fb:app_id\u003C\u002Fstrong>: From settings on the options screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:price:amount\u003C\u002Fstrong> and \u003Cstrong>og:price:currency\u003C\u002Fstrong>: Price on WooCommerce products.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>The generated Twitter Card Tags are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>twitter:title\u003C\u002Fstrong>: Same as \u003Ccode>og:title\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:url\u003C\u002Fstrong>: Sames as \u003Ccode>og:url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:description\u003C\u002Fstrong>: Same as \u003Ccode>og:description\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:image\u003C\u002Fstrong>: Same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:creator\u003C\u002Fstrong>: From the user (post author) Twitter account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:site\u003C\u002Fstrong>: The website Twitter account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:card\u003C\u002Fstrong>: With value “summary_large_image” or “summary”.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Other Tags:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>canonical\u003C\u002Fstrong>: Same as \u003Ccode>og:url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta description\u003C\u002Fstrong>: Same as \u003Ccode>og:description\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta author\u003C\u002Fstrong>: From the user (post author) Display Name.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta publisher\u003C\u002Fstrong>: From the website title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>enclosure\u003C\u002Fstrong>: On RSS feeds, same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>media:content\u003C\u002Fstrong>: On RSS feeds, same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>3rd Party Integration:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwordpress-seo\u002F\" rel=\"ugc\">Yoast SEO\u003C\u002Fa>\u003C\u002Fstrong>: Allows you to use the title, URL (canonical), and description from the Yoast SEO plugin.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fstrong>: On product pages sets \u003Ccode>og:type\u003C\u002Fcode> to “product” and adds the price including tax to the \u003Ccode>product:price\u003C\u002Fcode> and \u003Ccode>product:availability\u003C\u002Fcode> tags. Also allows you to use the Product Category thumbnails as Open Graph Image and have Product Gallery images as additional Open Graph Images\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fbrands\u002F\" rel=\"nofollow ugc\">WooCommerce Brands\u003C\u002Fa>\u003C\u002Fstrong>: On brand pages uses the brand image as Open Graph Image \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbusiness-directory-plugin\u002F\" rel=\"ugc\">Business Directory Plugin\u003C\u002Fa>\u003C\u002Fstrong> (deprecated): Allows you to use BDP listing contents as Open Graph Tags.\u003C\u002Fli>\n\u003C\u002Ful>\n","Improve social media sharing by inserting Facebook Open Graph, Twitter Card, and SEO Meta Tags on your WordPress website pages, posts, WooCommerce pro &hellip;",60000,2308220,92,122,"2026-01-28T07:38:00.000Z","6.9.4","5.0","7.0",[20,21,78,79,80],"open-graph-protocol","social-media","twitter-card","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwonderm00ns-simple-facebook-open-graph-tags.3.3.9.zip",99,2,"2018-06-27 00:00:00",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":29,"num_ratings":29,"last_updated":95,"tested_up_to":16,"requires_at_least":75,"requires_php":76,"tags":96,"homepage":18,"download_link":100,"security_score":27,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":101},"social-media-card-generator","Social Media Card Generator","1.4.2","Panupan Sriautharawong","https:\u002F\u002Fprofiles.wordpress.org\u002Fpeal333\u002F","\u003Cp>Social Media Card Generator adds a simple and intuitive interface to the WordPress post editor, enabling you to generate beautiful and engaging social media cards on the fly. Stop relying on whatever image social platforms decide to pull from your post. Instead, create a custom, branded image with your post’s title and a short description overlaid, ensuring your content looks professional when shared on platforms like X (formerly Twitter), Facebook, and LinkedIn.\u003C\u002Fp>\n\u003Cp>The plugin uses a template image that you provide, ensuring all your social cards maintain a consistent brand identity. You can customize font sizes, text positions, and output formats directly from the settings page.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Seamless Integration\u003C\u002Fstrong>: Adds a “Social Media Card Generator” meta box directly to the post editor sidebar.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Templates\u003C\u002Fstrong>: Upload your own branded background image to use as a template.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dynamic Text\u003C\u002Fstrong>: Automatically populates the card with the post title and an optional custom description.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live Preview\u003C\u002Fstrong>: Generate and preview the social card without leaving the editor.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media Library Integration\u003C\u002Fstrong>: The generated card is automatically saved to your WordPress Media Library.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Layout\u003C\u002Fstrong>: Adjust the font size and vertical position of the title and description.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Output\u003C\u002Fstrong>: Choose between JPEG (for smaller file sizes) or PNG (for higher quality) output formats.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Quality Control\u003C\u002Fstrong>: Set the compression quality for JPEG images.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Donate\u003C\u002Fh3>\n\u003Cp>Find this plugin useful? \u003Ca href=\"https:\u002F\u002Fwww.agbalaiseiyanuevangelicalministries.org\u002Fdonations\u002Fgive\" rel=\"nofollow ugc\">Support Orphans in Nigeria\u003C\u002Fa>\u003C\u002Fp>\n","Short Description: A WordPress plugin to easily generate custom social media cards for posts.",10,358,"2025-08-03T19:31:00.000Z",[97,98,21,99,80],"card-generator","facebook-card","social-media-card","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-card-generator.1.4.2.zip","2026-04-06T09:54:40.288Z",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":56,"num_ratings":112,"last_updated":113,"tested_up_to":74,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":120,"download_link":121,"security_score":122,"vuln_count":123,"unpatched_count":29,"last_vuln_date":124,"fetched_at":31},"nextend-facebook-connect","Nextend Social Login and Register","3.1.25","Nextendweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fnextendweb\u002F","\u003Cp>Nextend Social Login is a professional, easy to use and free WordPress plugin. It lets your visitors  register and login to your site using their social profiles (Facebook, Google, X (formerly Twitter), etc.) instead of forcing them to spend valuable time to fill out the default registration form. Besides that, they don’t need to wait for validation emails or keep track of their username and password anymore.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftry-nextend-social-login.nextendweb.com\u002Fwp-login.php\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=buPTza2-6xc&list=PLSawiBnEUNftt3EDqnP2jIXeh6q0pZ5D8&index=1\" rel=\"nofollow ugc\">Tutorial videos\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Docs\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">Support\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Pro Addon\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FbuPTza2-6xc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Nextend Social Login seamlessly integrates with your existing WordPress login and registration form. Existing users can add or remove their social accounts at their WordPress profile page. A single user can attach as many social account as they want allowing them to log in with Facebook, Google or X (formerly Twitter).\u003C\u002Fp>\n\u003Ch4>Three popular providers: Facebook, Google and X (formerly Twitter)\u003C\u002Fh4>\n\u003Cp>Providers are the services which the visitors can use to register and log in to your site. Nextend Social Login allows your visitors to log in with their account from the most popular social networks: Facebook, Google and X (formerly Twitter).\u003C\u002Fp>\n\u003Ch4>Free version features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One click registration and login via Facebook, Google and X (formerly Twitter)\u003C\u002Fli>\n\u003Cli>Your current users can easily connect their Facebook, Google or X (formerly Twitter) profiles with their account\u003C\u002Fli>\n\u003Cli>Social accounts are tied to a WordPress user account so every account can be accessed with and without social account\u003C\u002Fli>\n\u003Cli>You can define custom redirect URL after the registration (upon first login) using any of the social accounts.\u003C\u002Fli>\n\u003Cli>You can define custom redirect URL after each login with any of the enabled social accounts.\u003C\u002Fli>\n\u003Cli>Display Facebook, Google, X (formerly Twitter) profile picture as avatar\u003C\u002Fli>\n\u003Cli>Login widget and shortcodes\u003C\u002Fli>\n\u003Cli>Customizable designs to match your site\u003C\u002Fli>\n\u003Cli>Editable and translatable texts on the login buttons\u003C\u002Fli>\n\u003Cli>Very simple to setup and use\u003C\u002Fli>\n\u003Cli>Clean, user friendly UI\u003C\u002Fli>\n\u003Cli>Fast and helpful support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Additional features in the \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002F\" rel=\"nofollow ugc\">Pro addon\u003C\u002Fa>\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WooCommerce compatibility\u003C\u002Fli>\n\u003Cli>BuddyPress compatibility\u003C\u002Fli>\n\u003Cli>UserPro compatibility\u003C\u002Fli>\n\u003Cli>Ultimate Member compatibility\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads compatibility\u003C\u002Fli>\n\u003Cli>Pro providers: LinkedIn, Amazon, VKontakte, WordPress.com, Yahoo, PayPal, Disqus, Apple, GitHub, Microsoft, Line, Discord, Slack, TikTok, Steam, Twitch, Kakao, Reddit, Spotify and more coming soon\u003C\u002Fli>\n\u003Cli>Configure whether email address should be asked on registration at each provider\u003C\u002Fli>\n\u003Cli>Configure whether username should be asked on registration at each provider\u003C\u002Fli>\n\u003Cli>Choose from icons or wide buttons\u003C\u002Fli>\n\u003Cli>Several login layouts\u003C\u002Fli>\n\u003Cli>Restrict specific user roles from using the social logins. (You can restrict different roles for each provider.)\u003C\u002Fli>\n\u003Cli>Assign specific user roles to the newly registered users who use any social login provider. (You can set different roles for each provider.)\u003C\u002Fli>\n\u003Cli>Show the name of the linked providers in the Users table\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>After you activated the plugin configure and enable the provider you want to use, then the plugin will automatically\u003C\u002Fp>\n\u003Cul>\n\u003Cli>add the login buttons to the WordPress login page. See screenshot #1\u003C\u002Fli>\n\u003Cli>add the account linking buttons to the WordPress profile page. See screenshot #2\u003C\u002Fli>\n\u003C\u002Ful>\n","One click registration & login plugin for Facebook, Google, X (formerly Twitter) and more. Quick setup and easy configuration.",200000,7641732,441,"2026-04-16T09:00:00.000Z","4.9","7.4",[20,117,118,24,119],"google","social-login","x","https:\u002F\u002Fsocial-login.nextendweb.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnextend-facebook-connect.3.1.25.zip",89,6,"2025-11-27 14:54:41",{"slug":126,"name":127,"version":128,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":133,"downloaded":134,"rating":135,"num_ratings":136,"last_updated":137,"tested_up_to":16,"requires_at_least":138,"requires_php":139,"tags":140,"homepage":142,"download_link":143,"security_score":27,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"og","OG — Better Share on Social Media","3.3.8","Marcin Pietrzak","https:\u002F\u002Fprofiles.wordpress.org\u002Fiworks\u002F","\u003Cp>\u003Cstrong>Effortless Open Graph & Social Metadata for WordPress\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>No configuration. Just activate and enjoy optimized sharing across Facebook, Twitter, Pinterest, and more!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Overview\u003C\u002Fh3>\n\u003Cp>OG — Better Share on Social Media is the ultimate zero-configuration plugin to supercharge your WordPress site’s visibility on social networks. Instantly add essential Open Graph and Twitter Card metadata to every page, post, product, and archive—no setup required.\u003C\u002Fp>\n\u003Cp>Whether you’re a blogger, business owner, or developer, OG ensures your content looks great when shared, driving more clicks and engagement from social platforms.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Zero Configuration:\u003C\u002Fstrong> Just install and activate. OG automatically generates all required Open Graph and Twitter Card tags.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic Image Selection:\u003C\u002Fstrong> Picks the best image for each page (featured image, first in content, or fallback) for rich social previews.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Metadata:\u003C\u002Fstrong> Adds og:title, og:description, og:image, og:type, og:url, and more for all content types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Support:\u003C\u002Fstrong> Enhances product pages with price, currency, availability, and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Video Handling:\u003C\u002Fstrong> Detects YouTube\u002FVimeo links and uses their thumbnails for social sharing.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Twitter Card Integration:\u003C\u002Fstrong> Includes summary cards, titles, descriptions, images, and video support.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pinterest & Related Content:\u003C\u002Fstrong> Integrates with related posts plugins to add Pinterest-specific tags.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Extensible for Developers:\u003C\u002Fstrong> Powerful filters and hooks let you customize or extend metadata output.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multilingual Ready:\u003C\u002Fstrong> Supports WPML and other translation plugins for global sites.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>How It Works\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Install & Activate:\u003C\u002Fstrong> No settings page, no complicated options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic Tag Injection:\u003C\u002Fstrong> OG scans your site and injects optimal Open Graph and Twitter Card tags into the \u003Ccode>\u003Chead>\u003C\u002Fcode> of every page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Image Logic:\u003C\u002Fstrong> Selects the best image for each page (custom field, featured image, content image, or default).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce & Custom Post Types:\u003C\u002Fstrong> Automatically adapts to products, archives, and custom content.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>What Metadata is Added?\u003C\u002Fh3>\n\u003Ch3>For All Content Types:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>og:locale\u003C\u002Fstrong> – Site language\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:site_name\u003C\u002Fstrong> – Blog\u002Fsite title\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:title\u003C\u002Fstrong> – Dynamic page\u002Fpost title\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:url\u003C\u002Fstrong> – Canonical URL\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:type\u003C\u002Fstrong> – “article” for single posts, “website” for others\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:description\u003C\u002Fstrong> – SEO description or site tagline\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>For Single Posts\u002FPages:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>og:image\u003C\u002Fstrong> – Smart selection (custom, featured, content, gallery, or default)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:video\u003C\u002Fstrong> – YouTube\u002FVimeo support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:author\u003C\u002Fstrong> – Author profile link\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:published_time\u003C\u002Fstrong> – Original publish date\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:modified_time\u003C\u002Fstrong> – Last update date\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:tag\u003C\u002Fstrong> – Post tags\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:card, twitter:title, twitter:description, twitter:image, twitter:player\u003C\u002Fstrong> – Full Twitter Card support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:see_also\u003C\u002Fstrong> – Related content for Pinterest\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>For WooCommerce Products\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>og:price:amount\u003C\u002Fstrong> – Product price\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:price:currency\u003C\u002Fstrong> – Currency code\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:availability\u003C\u002Fstrong> – Stock status\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Get Involved\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Found a bug?\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fog\u002F\" rel=\"ugc\">Report it in the support forum\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Have a feature idea?\u003C\u002Fstrong> Start a discussion in the forum.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer?\u003C\u002Fstrong> Contribute on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fiworks\u002Fog\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why Choose OG?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Beginner-friendly:\u003C\u002Fstrong> No setup required—perfect for non-technical users.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Powerful:\u003C\u002Fstrong> Covers all major social networks and content types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible:\u003C\u002Fstrong> Easily extend or override for advanced use cases.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight:\u003C\u002Fstrong> No bloat, no slowdowns.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Install OG — Better Share on Social Media today and make every share count!\u003C\u002Fstrong>\u003C\u002Fp>\n","The simple method to add Open Graph metadata to your entries so that they look great when shared on sites.",30000,769781,96,214,"2025-10-08T08:45:00.000Z","6.0","8.0",[20,141,21,79,119],"linkedin","https:\u002F\u002Fgithub.com\u002Fiworks\u002Fog\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fog.3.3.8.zip",{"slug":145,"name":146,"version":147,"author":148,"author_profile":149,"description":150,"short_description":151,"active_installs":133,"downloaded":152,"rating":58,"num_ratings":153,"last_updated":154,"tested_up_to":155,"requires_at_least":156,"requires_php":18,"tags":157,"homepage":158,"download_link":159,"security_score":160,"vuln_count":161,"unpatched_count":29,"last_vuln_date":162,"fetched_at":31},"social-media-widget","Social Media Widget","4.0.9","Blink Web Effects","https:\u002F\u002Fprofiles.wordpress.org\u002Fbmwebproperties\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fappsumo.com\u002Fsearch?tags=wordpress&utm_source=sumo&utm_medium=wp-widget&utm_campaign=social-media-widget\" rel=\"nofollow ugc\">Check out the latest WordPress deals for your site.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The Social Media Widget is a simple sidebar widget that allows users to input their social media website profile URLs and other subscription options to show an icon on the sidebar to that social media site and more that open up in a separate browser window.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Supports the following social media sites:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>MySpace\u003C\u002Fli>\n\u003Cli>FriendFeed\u003C\u002Fli>\n\u003Cli>Orkut\u003C\u002Fli>\n\u003Cli>Hyves\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>aSmallWorld\u003C\u002Fli>\n\u003Cli>About.me\u003C\u002Fli>\n\u003Cli>Skyrock\u003C\u002Fli>\n\u003Cli>VK\u003C\u002Fli>\n\u003Cli>Goodreads\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Picasa Web Albums\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>StumbleUpon\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Buzz\u003C\u002Fli>\n\u003Cli>Google Talk\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>Blogger\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Yelp\u003C\u002Fli>\n\u003Cli>Last.fm\u003C\u002Fli>\n\u003Cli>Pandora\u003C\u002Fli>\n\u003Cli>UStream\u003C\u002Fli>\n\u003Cli>IMDb\u003C\u002Fli>\n\u003Cli>Hulu\u003C\u002Fli>\n\u003Cli>Flixter\u003C\u002Fli>\n\u003Cli>FourSquare\u003C\u002Fli>\n\u003Cli>Meetup\u003C\u002Fli>\n\u003Cli>PlanCast\u003C\u002Fli>\n\u003Cli>SlideShare\u003C\u002Fli>\n\u003Cli>DeviantArt\u003C\u002Fli>\n\u003Cli>Cuttings.me\u003C\u002Fli>\n\u003Cli>Live365\u003C\u002Fli>\n\u003Cli>Digital Tunes\u003C\u002Fli>\n\u003Cli>Soundcloud\u003C\u002Fli>\n\u003Cli>BandCamp\u003C\u002Fli>\n\u003Cli>Etsy\u003C\u002Fli>\n\u003Cli>Better Business Bureau\u003C\u002Fli>\n\u003Cli>Merchant Circle\u003C\u002Fli>\n\u003Cli>Ebay\u003C\u002Fli>\n\u003Cli>Steam\u003C\u002Fli>\n\u003Cli>RSS\u003C\u002Fli>\n\u003Cli>E-mail (mailto: or a link to mailing list service)\u003C\u002Fli>\n\u003Cli>Plus create 6 of your own using a URL to an icon and URL to the service\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Select from the following icon sizes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>16×16\u003C\u002Fli>\n\u003Cli>24×24\u003C\u002Fli>\n\u003Cli>32×32\u003C\u002Fli>\n\u003Cli>64×64\u003C\u002Fli>\n\u003Cli>Custom\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Select from 4 icon packages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Web 2.0 (Default) – Icons from \u003Ca href=\"http:\u002F\u002Fwww.iconspedia.com\u002F\" rel=\"nofollow ugc\">various artists\u003C\u002Fa> \u003C\u002Fli>\n\u003Cli>Sketch – \u003Ca href=\"http:\u002F\u002Ftheg-force.deviantart.com\" rel=\"nofollow ugc\">Social Icons Hand Drawn\u003C\u002Fa> by TheG-Force and \u003Ca href=\"http:\u002F\u002Fwww.jankoatwarpspeed.com\u002Fpost\u002F2008\u002F10\u002F20\u002Fhandycons-a-free-hand-drawn-social-media-icon-set.aspx\" rel=\"nofollow ugc\">Handycons\u003C\u002Fa> by Janko At Warp Speed\u003C\u002Fli>\n\u003Cli>Heart – \u003Ca href=\"http:\u002F\u002Fthedesignsuperhero.com\u002F2009\u002F03\u002Fheart-v2-free-social-iconset-in-heart-shape\u002F\" rel=\"nofollow ugc\">Heart v2\u003C\u002Fa> by The Design Superhero\u003C\u002Fli>\n\u003Cli>Cutout – \u003Ca href=\"http:\u002F\u002Fwww.iconspedia.com\u002Fpack\u002Ficontexto-inside-2222\u002F\" rel=\"nofollow ugc\">Icontexto Inside Icons\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Custom – These will be unaltered via updates. Make sure you follow the same naming scheme as the other icons (facebook.png, twitter.png). You can look at the other icon packs if you are unsure about the naming. See the FAQ for more information on usage.\u003C\u002Fli>\n\u003Cli>Note that some of the icons in the packs were created and added for this widget by myself. Not all of the requested social media sites were included so I attempted to create icons that mimicked the original artist icons. These are unattributed to myself. I keep attribution to the original artists since it is there design I modified.\u003C\u002Fli>\n\u003Cli>All icons in this pack are licensed under the Creative Commons license. Note that some of these are non-commercial only. Please go to the sites linked above to get full information on their allowed uses.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose from multiple animations including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Fade In (you can choose the starting opacity too!)\u003C\u002Fli>\n\u003Cli>Scale (zoom in)\u003C\u002Fli>\n\u003Cli>Bounce\u003C\u002Fli>\n\u003Cli>Combo (All three)\u003C\u002Fli>\n\u003Cli>Note: Because these are all CSS3 style animations, IE6-7 aren’t supported at all, although IE8 will support Scale. In IE6-8, icons will not be animated and use 100% opacity.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Create your own image alt\u002Ftitle tags for hover-over text (i.e. Follow Us On {service})\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose whether or not to use the rel=”nofollow” tag in your links. (Recommended see http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FNofollow)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose whether or not to open links in a new tab (or browser window).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Align your widget left, center, or right.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Arrange the order of the icons however you like.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose to the number of icons per row. Currently you can have one icon per row or auto (maximum # based on the width of the container the widget is placed in).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plugin, please rate it and click “Works” for your WordPress version!\u003C\u002Fp>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>Please add a post on the WordPress.org support forums with the plugin tagged.\u003C\u002Fp>\n","Adds links to all of your social media and sharing site profiles. Tons of icons come in 3 sizes, 4 icon styles, and 4 animations.",2162614,84,"2024-06-10T19:09:00.000Z","6.4.8","2.9.2",[20,117,141,79,24],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsocial-media-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-widget.4.0.9.zip",87,3,"2024-06-21 00:00:00",{"attackSurface":164,"codeSignals":205,"taintFlows":390,"riskAssessment":391,"analyzedAt":399},{"hooks":165,"ajaxHandlers":201,"restRoutes":202,"shortcodes":203,"cronEvents":204,"entryPointCount":29,"unprotectedCount":29},[166,172,176,180,184,188,192,197],{"type":167,"name":168,"callback":169,"file":170,"line":171},"action","plugins_loaded","load_open_g_textdomain","_open_graphite.php",17,{"type":167,"name":173,"callback":174,"file":170,"line":175},"admin_enqueue_scripts","open_graphite_admin_styles",35,{"type":167,"name":177,"callback":178,"file":170,"line":179},"add_meta_boxes","_open_graphite_open_type_meta_box",71,{"type":167,"name":181,"callback":182,"file":170,"line":183},"save_post","save_data",72,{"type":167,"name":185,"callback":186,"file":170,"line":187},"admin_init","openg_settings_init",409,{"type":167,"name":189,"callback":190,"file":170,"line":191},"admin_menu","open_graphite_menu",424,{"type":193,"name":194,"callback":195,"file":170,"line":196},"filter","jetpack_enable_open_graph","__return_false",467,{"type":167,"name":198,"callback":199,"file":170,"line":200},"wp_head","openghead",471,[],[],[],[],{"dangerousFunctions":206,"sqlUsage":207,"outputEscaping":209,"fileOperations":28,"externalRequests":29,"nonceChecks":161,"capabilityChecks":161,"bundledLibraries":389},[],{"prepared":29,"raw":29,"locations":208},[],{"escaped":210,"rawEcho":82,"locations":211},151,[212,216,218,220,222,225,227,229,231,232,234,235,236,237,238,239,242,244,245,247,249,250,252,253,254,255,257,259,261,263,265,266,268,270,272,274,276,278,280,282,283,285,287,289,291,293,294,296,298,300,302,303,305,307,309,311,313,315,317,319,321,323,324,326,328,329,331,332,334,336,338,340,342,344,346,348,350,352,354,356,358,360,362,364,366,368,370,371,373,375,376,377,378,380,381,382,383,385,387],{"file":213,"line":214,"context":215},"inc\\cm-form.php",18,"raw output",{"file":213,"line":217,"context":215},19,{"file":213,"line":219,"context":215},20,{"file":213,"line":221,"context":215},21,{"file":223,"line":224,"context":215},"inc\\post-image.php",29,{"file":223,"line":226,"context":215},30,{"file":223,"line":228,"context":215},36,{"file":223,"line":230,"context":215},48,{"file":223,"line":82,"context":215},{"file":233,"line":28,"context":215},"inc\\preview-links.php",{"file":233,"line":28,"context":215},{"file":233,"line":83,"context":215},{"file":233,"line":83,"context":215},{"file":233,"line":161,"context":215},{"file":233,"line":161,"context":215},{"file":240,"line":241,"context":215},"inc\\settings-ui.php",64,{"file":240,"line":243,"context":215},68,{"file":240,"line":183,"context":215},{"file":240,"line":246,"context":215},76,{"file":240,"line":248,"context":215},80,{"file":240,"line":153,"context":215},{"file":240,"line":251,"context":215},88,{"file":240,"line":71,"context":215},{"file":240,"line":135,"context":215},{"file":240,"line":27,"context":215},{"file":240,"line":256,"context":215},104,{"file":240,"line":258,"context":215},108,{"file":240,"line":260,"context":215},132,{"file":240,"line":262,"context":215},136,{"file":240,"line":264,"context":215},150,{"file":240,"line":210,"context":215},{"file":240,"line":267,"context":215},152,{"file":240,"line":269,"context":215},158,{"file":240,"line":271,"context":215},166,{"file":240,"line":273,"context":215},184,{"file":240,"line":275,"context":215},301,{"file":240,"line":277,"context":215},309,{"file":240,"line":279,"context":215},316,{"file":240,"line":281,"context":215},318,{"file":240,"line":281,"context":215},{"file":240,"line":284,"context":215},323,{"file":240,"line":286,"context":215},326,{"file":240,"line":288,"context":215},328,{"file":240,"line":290,"context":215},339,{"file":240,"line":292,"context":215},356,{"file":240,"line":94,"context":215},{"file":240,"line":295,"context":215},377,{"file":240,"line":297,"context":215},379,{"file":240,"line":299,"context":215},396,{"file":240,"line":301,"context":215},414,{"file":240,"line":301,"context":215},{"file":240,"line":304,"context":215},420,{"file":240,"line":306,"context":215},431,{"file":240,"line":308,"context":215},433,{"file":240,"line":310,"context":215},488,{"file":240,"line":312,"context":215},508,{"file":240,"line":314,"context":215},510,{"file":240,"line":316,"context":215},534,{"file":240,"line":318,"context":215},536,{"file":240,"line":320,"context":215},545,{"file":240,"line":322,"context":215},549,{"file":240,"line":322,"context":215},{"file":240,"line":325,"context":215},550,{"file":240,"line":327,"context":215},551,{"file":240,"line":327,"context":215},{"file":240,"line":330,"context":215},552,{"file":240,"line":330,"context":215},{"file":240,"line":333,"context":215},561,{"file":240,"line":335,"context":215},628,{"file":240,"line":337,"context":215},629,{"file":240,"line":339,"context":215},630,{"file":240,"line":341,"context":215},631,{"file":240,"line":343,"context":215},632,{"file":240,"line":345,"context":215},635,{"file":240,"line":347,"context":215},646,{"file":240,"line":349,"context":215},647,{"file":240,"line":351,"context":215},648,{"file":240,"line":353,"context":215},649,{"file":240,"line":355,"context":215},650,{"file":240,"line":357,"context":215},651,{"file":240,"line":359,"context":215},652,{"file":240,"line":361,"context":215},653,{"file":240,"line":363,"context":215},654,{"file":240,"line":365,"context":215},655,{"file":240,"line":367,"context":215},656,{"file":170,"line":369,"context":215},133,{"file":170,"line":369,"context":215},{"file":170,"line":372,"context":215},155,{"file":170,"line":374,"context":215},224,{"file":170,"line":374,"context":215},{"file":170,"line":374,"context":215},{"file":170,"line":374,"context":215},{"file":170,"line":379,"context":215},232,{"file":170,"line":379,"context":215},{"file":170,"line":379,"context":215},{"file":170,"line":379,"context":215},{"file":170,"line":384,"context":215},262,{"file":170,"line":386,"context":215},283,{"file":170,"line":388,"context":215},620,[],[],{"summary":392,"deductions":393},"The open-graphite plugin v1.7.1 exhibits a generally good security posture with no identified critical or high severity vulnerabilities in its code analysis and taint flows. The plugin demonstrates strong adherence to best practices by utilizing prepared statements for all SQL queries and incorporating a reasonable number of nonce and capability checks (3 each).  The absence of any identified dangerous functions and zero external HTTP requests are positive indicators.\n\nHowever, a significant concern lies in the output escaping, where only 60% of the 250 total outputs are properly escaped. This leaves a considerable portion of the plugin's output potentially vulnerable to Cross-Site Scripting (XSS) attacks, especially if user-supplied data is being rendered without adequate sanitization. While the taint analysis showed no unsanitized paths, the output escaping percentage is a clear red flag.  Furthermore, the plugin has a history of vulnerabilities, including a medium severity XSS vulnerability discovered in March 2023. Although it is currently patched, the recurring nature of XSS as a common vulnerability type suggests a potential underlying weakness in input validation or output encoding that needs continuous attention. The presence of one file operation without further context is a minor point of interest but not a significant risk on its own without more information.\n\nIn conclusion, while the plugin has a strong foundation with its use of prepared statements and auth checks, the insufficient output escaping presents a notable risk. The past vulnerability history, particularly around XSS, reinforces the need for thorough review and improvement in how dynamic data is handled to prevent potential client-side attacks. Addressing the output escaping is the most critical step to improve the plugin's overall security.",[394,396],{"reason":395,"points":14},"Insufficient output escaping (40% unescaped)",{"reason":397,"points":398},"Medium severity vulnerability in history",5,"2026-03-16T18:17:00.136Z",{"wat":401,"direct":408},{"assetPaths":402,"generatorPatterns":404,"scriptPaths":405,"versionParams":406},[403],"\u002Fwp-content\u002Fplugins\u002Fopen-graphite\u002Fcss\u002Fopen-graphite.css",[],[],[407],"open-graphite\u002Fstyle.css?ver=",{"cssClasses":409,"htmlComments":416,"htmlAttributes":427,"restEndpoints":431,"jsGlobals":432,"shortcodeOutput":434},[410,411,412,413,414,415],"og-common","og-div","og-div-01","og-div-02","using-default","og-external",[417,418,419,420,421,422,423,424,425,426],"Start Metabox","End Metabox","Start title","End title","Start type","End type","Start description","End description","Start image","End image",[428,429,430],"data-openg-title","data-openg-description","data-openg-image",[],[433],"open_graphite_vars",[],{"error":436,"url":437,"statusCode":438,"statusMessage":439,"message":439},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fopen-graphite\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":161,"versions":441},[442,447,454],{"version":6,"download_url":26,"svn_tag_url":443,"released_at":39,"has_diff":51,"diff_files_changed":444,"diff_lines":39,"trac_diff_url":445,"vulnerabilities":446,"is_current":436},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fopen-graphite\u002Ftags\u002F1.7.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fopen-graphite%2Ftags%2F1.7.0&new_path=%2Fopen-graphite%2Ftags%2F1.7.1",[],{"version":448,"download_url":449,"svn_tag_url":450,"released_at":39,"has_diff":51,"diff_files_changed":451,"diff_lines":39,"trac_diff_url":452,"vulnerabilities":453,"is_current":51},"1.7.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopen-graphite.1.7.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fopen-graphite\u002Ftags\u002F1.7.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fopen-graphite%2Ftags%2F1.6.1&new_path=%2Fopen-graphite%2Ftags%2F1.7.0",[],{"version":41,"download_url":455,"svn_tag_url":456,"released_at":39,"has_diff":51,"diff_files_changed":457,"diff_lines":39,"trac_diff_url":39,"vulnerabilities":458,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopen-graphite.1.6.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fopen-graphite\u002Ftags\u002F1.6.1\u002F",[],[]]