[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fTMp9jCUS8CVcKLu5U1yU4lhvnkYnfWsTyopDZveZ2D8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":47,"crawl_stats":36,"alternatives":54,"analysis":151,"fingerprints":284},"opengraph","Open Graph","2.0.2","Will Norris","https:\u002F\u002Fprofiles.wordpress.org\u002Fwillnorris\u002F","\u003Cp>The \u003Ca href=\"https:\u002F\u002Fogp.me\u002F\" rel=\"nofollow ugc\">Open Graph protocol\u003C\u002Fa> enables any web page to become a rich object in a social graph.  Most notably, this allows for these pages to be used with Facebook’s \u003Ca href=\"https:\u002F\u002Fdevelopers.facebook.com\u002Fdocs\u002Freference\u002Fplugins\u002Flike\" rel=\"nofollow ugc\">Like Button\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fdevelopers.facebook.com\u002Fdocs\u002Freference\u002Fapi\u002F\" rel=\"nofollow ugc\">Graph API\u003C\u002Fa> as well as within Twitter posts.\u003C\u002Fp>\n\u003Cp>The Open Graph plugin inserts the Open Graph metadata into WordPress posts and pages, and provides a simple extension mechanism for other plugins and themes to override this data, or to provide additional Open Graph data.\u003C\u002Fp>\n\u003Cp>This plugin does not directly add social plugins like the Facebook Like Button to your pages (though they’re pretty simple to add).  It will however make your pages look great when shared using those kinds of tools.\u003C\u002Fp>\n","Adds Open Graph metadata to your posts and pages so that they look great when shared on sites like Facebook and Twitter.",10000,218990,86,13,"2025-12-07T17:38:00.000Z","6.9.4","2.3","",[20,21,4,22],"facebook","ogp","social","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fopengraph","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopengraph.2.0.2.zip",99,1,0,"2024-06-04 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2024-5615","open-graph-unauthenticated-sensitive-information-exposure","Open Graph \u003C= 1.11.2 - Unauthenticated Sensitive Information Exposure","The Open Graph plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.11.2 via the 'opengraph_default_description' function. This makes it possible for unauthenticated attackers to extract sensitive data including partial content of password-protected blog posts.",null,"\u003C=1.11.2","1.11.3","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2024-06-06 03:32:57",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff57dc0fe-07f3-457e-8080-fe530f6a9f01?source=api-prod",2,{"slug":48,"display_name":7,"profile_url":8,"plugin_count":49,"total_installs":50,"avg_security_score":51,"avg_patch_time_days":46,"trust_score":52,"computed_at":53},"willnorris",5,10630,94,96,"2026-04-05T01:49:50.967Z",[55,73,92,111,127],{"slug":21,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":27,"num_ratings":27,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":18,"tags":67,"homepage":70,"download_link":71,"security_score":72,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"Open Graph Pro","1.0","Martin Lormes","https:\u002F\u002Fprofiles.wordpress.org\u002Ftfnab\u002F","\u003Cp>Automagically adds Open Graph tags to your blog. Control how your posts and pages are presented on Facebook and other social media sites. No configuration needed.\u003C\u002Fp>\n\u003Cp>When someone likes or shares your blog on Facebook, your header image is shown. If someone likes or shares a post, the featured image (post thumbnail) is shown. If you haven’t selected a featured image, then the plugin looks for the first image inside the post. If there aren’t any images in your post, then your blog’s header image is shown.\u003C\u002Fp>\n\u003Cp>For more information on the Open Graph protocol go to http:\u002F\u002Fogp.me\u002F\u003C\u002Fp>\n","Adds Open Graph tags to your blog. Control how your posts and pages are presented on Facebook and other social media sites. No configuration needed.",2000,43865,"2017-11-28T17:07:00.000Z","3.2.1","2.9",[20,68,4,22,69],"open-graph","social-media","http:\u002F\u002Ften-fingers-and-a-brain.com\u002Fwordpress-plugins\u002Fogp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fogp.1.0.zip",85,{"slug":74,"name":75,"version":57,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":18,"tags":87,"homepage":90,"download_link":91,"security_score":72,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"wp-social-meta-by-brozzme","Social Meta by Brozzme","Benoti","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenoti\u002F","\u003Cp>Bored about your description and images when you share your post and pages ?\u003Cbr \u002F>\nSocial Meta by Brozzme automaticaly add OpenGraph, Google+, Twitter metas to your header file without coding.\u003Cbr \u002F>\nMeta tags in the header allow a clean share of your website pages, with good related images and descriptions.\u003C\u002Fp>\n\u003Cp>Options\u003C\u002Fp>\n\u003Col>\n\u003Cli>Choose your social network to activate (Facebook, Google+, Twitter…)\u003C\u002Fli>\n\u003Cli>Set your description, default image.\u003C\u002Fli>\n\u003Cli>Automatic image array.\u003C\u002Fli>\n\u003Cli>Active on index, archives pages, post, page, wooCommerce support for products pages.\u003C\u002Fli>\n\u003C\u002Fol>\n","Add social meta for pages in header without coding.",30,2616,100,3,"2021-10-28T15:45:00.000Z","5.8.13","4.5",[20,88,89,4,22],"header","meta","https:\u002F\u002Fbrozzme.com\u002Fwp-social-meta\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-social-meta-by-brozzme.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":27,"num_ratings":27,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":108,"download_link":109,"security_score":110,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"opengraphmagic","OpenGraphMagic","1.0.6","50saas","https:\u002F\u002Fprofiles.wordpress.org\u002F50saas\u002F","\u003Cp>OpenGraphMagic enhances your website’s social media integration by automatically generating and embedding Open Graph images tailored for social platforms. This ensures that your content looks appealing when shared on social media.\u003C\u002Fp>\n\u003Ch3>Localization\u003C\u002Fh3>\n\u003Cp>OpenGraphMagic is fully translation-ready, allowing for community-contributed translations using the unique text domain: ‘opengraphmagic’. We encourage contributions to our translation efforts to make OpenGraphMagic accessible to everyone.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>OpenGraphMagic utilizes the following external services to enhance functionality:\u003C\u002Fp>\n\u003Ch3>Pikwy\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.pikwy.com\" rel=\"nofollow ugc\">Pikwy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Purpose:\u003C\u002Fstrong> Generates images for Open Graph tags.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Privacy Policy:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.pikwy.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.pikwy.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>ScreenshotOne\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.screenshotone.com\" rel=\"nofollow ugc\">ScreenshotOne\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Purpose:\u003C\u002Fstrong> Additional image generation capabilities for Open Graph tags.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Privacy Policy:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.screenshotone.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.screenshotone.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Tags\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>seo\u003C\u002Fli>\n\u003Cli>opengraph\u003C\u002Fli>\n\u003Cli>social\u003C\u002Fli>\n\u003Cli>ogp\u003C\u002Fli>\n\u003C\u002Ful>\n","OpenGraphMagic is a WordPress plugin that automatically generates images for Open Graph tags using external services like Pikwy and ScreenshotOne.",10,705,"2025-01-12T16:41:00.000Z","6.7.5","5.4","7.4",[21,4,107,22],"seo","https:\u002F\u002Fopengraphmagic.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopengraphmagic.1.0.6.zip",92,{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":100,"downloaded":119,"rating":82,"num_ratings":26,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":125,"download_link":126,"security_score":72,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"simple-open-graph","Simple Open Graph","2.4","PcFrk256","https:\u002F\u002Fprofiles.wordpress.org\u002Fpcfrk256\u002F","\u003Cp>Simple Open Graph adds Open Graph meta data to the header. It’s simple. Activate it and forget about it.\u003C\u002Fp>\n","Simple Open Graph adds Open Graph meta data to the header",6494,"2015-03-06T19:45:00.000Z","4.1.42","3.0",[20,124,21,68,4],"metadata","http:\u002F\u002Fispeakl33t.com\u002Fopengraph","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-open-graph.2.4.zip",{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":135,"downloaded":136,"rating":137,"num_ratings":138,"last_updated":139,"tested_up_to":16,"requires_at_least":140,"requires_php":105,"tags":141,"homepage":146,"download_link":147,"security_score":148,"vuln_count":149,"unpatched_count":27,"last_vuln_date":150,"fetched_at":29},"nextend-facebook-connect","Nextend Social Login and Register","3.1.23","Nextendweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fnextendweb\u002F","\u003Cp>Nextend Social Login is a professional, easy to use and free WordPress plugin. It lets your visitors  register and login to your site using their social profiles (Facebook, Google, X (formerly Twitter), etc.) instead of forcing them to spend valuable time to fill out the default registration form. Besides that, they don’t need to wait for validation emails or keep track of their username and password anymore.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftry-nextend-social-login.nextendweb.com\u002Fwp-login.php\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=buPTza2-6xc&list=PLSawiBnEUNftt3EDqnP2jIXeh6q0pZ5D8&index=1\" rel=\"nofollow ugc\">Tutorial videos\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Docs\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">Support\u003C\u002Fa>  |  \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Pro Addon\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FbuPTza2-6xc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Nextend Social Login seamlessly integrates with your existing WordPress login and registration form. Existing users can add or remove their social accounts at their WordPress profile page. A single user can attach as many social account as they want allowing them to log in with Facebook, Google or X (formerly Twitter).\u003C\u002Fp>\n\u003Ch4>Three popular providers: Facebook, Google and X (formerly Twitter)\u003C\u002Fh4>\n\u003Cp>Providers are the services which the visitors can use to register and log in to your site. Nextend Social Login allows your visitors to log in with their account from the most popular social networks: Facebook, Google and X (formerly Twitter).\u003C\u002Fp>\n\u003Ch4>Free version features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One click registration and login via Facebook, Google and X (formerly Twitter)\u003C\u002Fli>\n\u003Cli>Your current users can easily connect their Facebook, Google or X (formerly Twitter) profiles with their account\u003C\u002Fli>\n\u003Cli>Social accounts are tied to a WordPress user account so every account can be accessed with and without social account\u003C\u002Fli>\n\u003Cli>You can define custom redirect URL after the registration (upon first login) using any of the social accounts.\u003C\u002Fli>\n\u003Cli>You can define custom redirect URL after each login with any of the enabled social accounts.\u003C\u002Fli>\n\u003Cli>Display Facebook, Google, X (formerly Twitter) profile picture as avatar\u003C\u002Fli>\n\u003Cli>Login widget and shortcodes\u003C\u002Fli>\n\u003Cli>Customizable designs to match your site\u003C\u002Fli>\n\u003Cli>Editable and translatable texts on the login buttons\u003C\u002Fli>\n\u003Cli>Very simple to setup and use\u003C\u002Fli>\n\u003Cli>Clean, user friendly UI\u003C\u002Fli>\n\u003Cli>Fast and helpful support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Additional features in the \u003Ca href=\"https:\u002F\u002Fsocial-login.nextendweb.com\u002F\" rel=\"nofollow ugc\">Pro addon\u003C\u002Fa>\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WooCommerce compatibility\u003C\u002Fli>\n\u003Cli>BuddyPress compatibility\u003C\u002Fli>\n\u003Cli>UserPro compatibility\u003C\u002Fli>\n\u003Cli>Ultimate Member compatibility\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads compatibility\u003C\u002Fli>\n\u003Cli>Pro providers: LinkedIn, Amazon, VKontakte, WordPress.com, Yahoo, PayPal, Disqus, Apple, GitHub, Microsoft, Line, Discord, Slack, TikTok, Steam, Twitch, Kakao, Reddit, Spotify and more coming soon\u003C\u002Fli>\n\u003Cli>Configure whether email address should be asked on registration at each provider\u003C\u002Fli>\n\u003Cli>Configure whether username should be asked on registration at each provider\u003C\u002Fli>\n\u003Cli>Choose from icons or wide buttons\u003C\u002Fli>\n\u003Cli>Several login layouts\u003C\u002Fli>\n\u003Cli>Restrict specific user roles from using the social logins. (You can restrict different roles for each provider.)\u003C\u002Fli>\n\u003Cli>Assign specific user roles to the newly registered users who use any social login provider. (You can set different roles for each provider.)\u003C\u002Fli>\n\u003Cli>Show the name of the linked providers in the Users table\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>After you activated the plugin configure and enable the provider you want to use, then the plugin will automatically\u003C\u002Fp>\n\u003Cul>\n\u003Cli>add the login buttons to the WordPress login page. See screenshot #1\u003C\u002Fli>\n\u003Cli>add the account linking buttons to the WordPress profile page. See screenshot #2\u003C\u002Fli>\n\u003C\u002Ful>\n","One click registration & login plugin for Facebook, Google, X (formerly Twitter) and more. Quick setup and easy configuration.",200000,7588989,98,441,"2026-02-23T09:51:00.000Z","4.9",[20,142,143,144,145],"google","social-login","twitter","x","https:\u002F\u002Fsocial-login.nextendweb.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnextend-facebook-connect.3.1.23.zip",89,6,"2025-11-27 14:54:41",{"attackSurface":152,"codeSignals":266,"taintFlows":274,"riskAssessment":275,"analyzedAt":283},{"hooks":153,"ajaxHandlers":262,"restRoutes":263,"shortcodes":264,"cronEvents":265,"entryPointCount":27,"unprotectedCount":27},[154,160,163,167,171,175,179,183,187,191,194,198,202,206,210,214,218,222,226,230,233,237,241,245,250,254,258],{"type":155,"name":156,"callback":157,"file":158,"line":159},"filter","jetpack_enable_opengraph","__return_false","opengraph.php",18,{"type":155,"name":161,"callback":157,"file":158,"line":162},"jetpack_enable_open_graph",19,{"type":155,"name":164,"callback":165,"file":158,"line":166},"language_attributes","opengraph_add_prefix",56,{"type":155,"name":168,"callback":169,"priority":49,"file":158,"line":170},"opengraph_title","opengraph_default_title",161,{"type":155,"name":172,"callback":173,"priority":49,"file":158,"line":174},"opengraph_type","opengraph_default_type",162,{"type":155,"name":176,"callback":177,"priority":49,"file":158,"line":178},"opengraph_url","opengraph_default_url",163,{"type":155,"name":180,"callback":181,"priority":49,"file":158,"line":182},"opengraph_image","opengraph_default_image",166,{"type":155,"name":180,"callback":184,"priority":185,"file":158,"line":186},"opengraph_block_image",15,167,{"type":155,"name":180,"callback":188,"priority":189,"file":158,"line":190},"opengraph_parsed_image",25,168,{"type":155,"name":180,"callback":192,"priority":189,"file":158,"line":193},"opengraph_attached_image",169,{"type":155,"name":180,"callback":195,"priority":196,"file":158,"line":197},"opengraph_fallback_image",35,170,{"type":155,"name":180,"callback":199,"priority":200,"file":158,"line":201},"opengraph_ensure_max_image",999,171,{"type":155,"name":203,"callback":204,"priority":49,"file":158,"line":205},"opengraph_description","opengraph_default_description",173,{"type":155,"name":207,"callback":208,"priority":49,"file":158,"line":209},"opengraph_locale","opengraph_default_locale",174,{"type":155,"name":211,"callback":212,"priority":49,"file":158,"line":213},"opengraph_site_name","opengraph_default_sitename",175,{"type":155,"name":215,"callback":216,"priority":49,"file":158,"line":217},"opengraph_audio","opengraph_default_audio",176,{"type":155,"name":219,"callback":220,"priority":49,"file":158,"line":221},"opengraph_video","opengraph_default_video",177,{"type":155,"name":223,"callback":224,"file":158,"line":225},"opengraph_prefixes","opengraph_additional_prefixes",180,{"type":155,"name":227,"callback":228,"file":158,"line":229},"opengraph_metadata","opengraph_profile_metadata",183,{"type":155,"name":227,"callback":231,"file":158,"line":232},"opengraph_article_metadata",186,{"type":155,"name":234,"callback":235,"priority":49,"file":158,"line":236},"twitter_card","twitter_default_card",189,{"type":155,"name":238,"callback":239,"priority":49,"file":158,"line":240},"twitter_creator","twitter_default_creator",190,{"type":155,"name":242,"callback":243,"priority":49,"file":158,"line":244},"fediverse_creator","fediverse_default_creator",193,{"type":246,"name":247,"callback":248,"file":158,"line":249},"action","wp","opengraph_default_metadata",195,{"type":246,"name":251,"callback":252,"file":158,"line":253},"wp_head","opengraph_meta_tags",801,{"type":155,"name":255,"callback":256,"priority":26,"file":158,"line":257},"user_contactmethods","opengraph_user_contactmethods",885,{"type":155,"name":259,"callback":260,"file":158,"line":261},"site_icon_image_sizes","opengraph_site_icon_image_sizes",900,[],[],[],[],{"dangerousFunctions":267,"sqlUsage":268,"outputEscaping":270,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":273},[],{"prepared":27,"raw":27,"locations":269},[],{"escaped":271,"rawEcho":27,"locations":272},8,[],[],[],{"summary":276,"deductions":277},"The static analysis of the 'opengraph' plugin version 2.0.2 reveals a generally strong security posture.  There are no identified dangerous functions, all SQL queries are properly prepared, and output is consistently escaped. The absence of file operations, external HTTP requests, and importantly, any detected taint flows with unsanitized paths, further indicates good coding practices. The attack surface is also reported as zero, meaning no direct entry points like AJAX handlers, REST API routes, or shortcodes were found to be exposed without proper authentication or permission checks.\n\nHowever, the plugin's vulnerability history presents a significant concern. Despite the current clean slate in static analysis, there is one known CVE associated with this plugin. The fact that this CVE is marked as 'currently unpatched' and was last reported very recently (2024-06-04) suggests a potential for lingering vulnerabilities. The historical common vulnerability type being 'Exposure of Sensitive Information to an Unauthorized Actor' further emphasizes the need for vigilance, even if current code scans don't flag immediate threats. This suggests that past issues, though perhaps addressed in later versions not detailed here, have occurred, and the most recent reported vulnerability is still a concern.\n\nIn conclusion, while the code analysis for version 2.0.2 is highly positive, demonstrating robust security practices, the presence of a recently reported and unpatched CVE significantly lowers the overall security score. This indicates a strength in development hygiene but a weakness in timely vulnerability remediation. Users should be cautious and ensure they are on a version that has definitively addressed the known CVE.",[278,281],{"reason":279,"points":280},"Unpatched CVE exists",20,{"reason":282,"points":100},"Vulnerability history indicates past issues","2026-03-16T17:41:04.975Z",{"wat":285,"direct":293},{"assetPaths":286,"generatorPatterns":288,"scriptPaths":289,"versionParams":290},[287],"\u002Fwp-content\u002Fplugins\u002Fopengraph\u002F",[4],[],[291,292],"opengraph\u002Fstyle.css?ver=","opengraph\u002Fscript.js?ver=",{"cssClasses":294,"htmlComments":295,"htmlAttributes":296,"restEndpoints":297,"jsGlobals":298,"shortcodeOutput":299},[],[],[],[],[],[]]