[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGum3nHv0nViufFgBCxiWl9NBlkUP2ZyMrahydn-iFu8":3,"$fhsmxRNU-xk3uW_kmwmG4lCbD5gCe0739nCFqOFgIz0w":359},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":50,"crawl_stats":38,"alternatives":56,"analysis":160,"fingerprints":341},"parsi-font","MW Font Changer","5.3.1","Ghaem","https:\u002F\u002Fprofiles.wordpress.org\u002Fghaem\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.zhaket.com\u002Fweb\u002Fmw-font-changer-pro\u002F?affid=AF-61332c0051cb8\u002F\" rel=\"nofollow ugc\">Get MW Font Changer Pro\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Change your WordPress dashboard and theme font easy and fast 🙂\u003C\u002Fp>\n\u003Ch4>List of some features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy Usage\u003C\u002Fli>\n\u003Cli>+30 Fonts\u003C\u002Fli>\n\u003Cli>Change WordPress dashboard font\u003C\u002Fli>\n\u003Cli>Change theme font by entering theme ids and classes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Fonts list\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>B Esfehan\u003C\u002Fli>\n\u003Cli>B Helal\u003C\u002Fli>\n\u003Cli>B Homa\u003C\u002Fli>\n\u003Cli>B Jadid\u003C\u002Fli>\n\u003Cli>B Koodak\u003C\u002Fli>\n\u003Cli>B Bardiya\u003C\u002Fli>\n\u003Cli>B Mahsa\u003C\u002Fli>\n\u003Cli>B Mehr\u003C\u002Fli>\n\u003Cli>B Mitra\u003C\u002Fli>\n\u003Cli>B Nasim\u003C\u002Fli>\n\u003Cli>B Nazanin\u003C\u002Fli>\n\u003Cli>B Sina\u003C\u002Fli>\n\u003Cli>B Titr\u003C\u002Fli>\n\u003Cli>B Yekan\u003C\u002Fli>\n\u003Cli>Dast Nevis\u003C\u002Fli>\n\u003Cli>Droid Arabic Kufi\u003C\u002Fli>\n\u003Cli>Droid Arabic Naskh\u003C\u002Fli>\n\u003Cli>Gandom\u003C\u002Fli>\n\u003Cli>IR Yekan\u003C\u002Fli>\n\u003Cli>IRANSans\u003C\u002Fli>\n\u003Cli>IRANYekan\u003C\u002Fli>\n\u003Cli>IranNastaliq\u003C\u002Fli>\n\u003Cli>Parastoo\u003C\u002Fli>\n\u003Cli>Sahel\u003C\u002Fli>\n\u003Cli>Samim\u003C\u002Fli>\n\u003Cli>Shabnam\u003C\u002Fli>\n\u003Cli>Shekasteh\u003C\u002Fli>\n\u003Cli>Sultan Adan\u003C\u002Fli>\n\u003Cli>Tanha\u003C\u002Fli>\n\u003Cli>Vazir\u003C\u002Fli>\n\u003Cli>XM Yekan\u003C\u002Fli>\n\u003Cli>Arial\u003C\u002Fli>\n\u003Cli>Comic Sans MS\u003C\u002Fli>\n\u003Cli>Tahoma\u003C\u002Fli>\n\u003Cli>Verdana\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Tested on\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>PC Firefox\u003C\u002Fli>\n\u003Cli>PC IE\u003C\u002Fli>\n\u003Cli>PC Chrome\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support Forum\u003C\u002Fh4>\n\u003Cp>http:\u002F\u002Fforum.wp-parsi.com\u002F\u003C\u002Fp>\n","Change your WordPress dashboard and theme font easy and fast :)",9000,224679,86,30,"2023-04-23T11:13:00.000Z","6.2.9","5.0","",[20,21,22,23,24],"admin","admin-font","change-font","font","wordpress-font","https:\u002F\u002Fwww.zhaket.com\u002Fweb\u002Fmw-font-changer-pro\u002F?affid=AF-61332c0051cb8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.zip",85,1,0,"2016-04-12 00:00:00","2026-04-06T09:54:40.288Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48,"patch_diff_files":49,"patch_trac_url":38},"CVE-2016-1000142","mw-font-changer-reflected-cross-site-scripting","MW Font Changer \u003C= 4.2.5 - Reflected Cross-Site Scripting","The MW Font Changer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'size' parameter in versions up to, and including, 4.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C4.3","4.3","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcfc09dee-9af6-49ff-bfe2-abcc616940d7?source=api-prod",2842,[],{"slug":51,"display_name":7,"profile_url":8,"plugin_count":52,"total_installs":53,"avg_security_score":27,"avg_patch_time_days":48,"trust_score":54,"computed_at":55},"ghaem",2,9010,69,"2026-04-06T12:43:30.956Z",[57,78,101,122,142],{"slug":58,"name":59,"version":60,"author":7,"author_profile":8,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":29,"num_ratings":29,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":18,"tags":68,"homepage":76,"download_link":77,"security_score":27,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"mandegar-feed","Mandegar Feed","1.0","\u003Cp>Show valuable posts of Mandegarweb in your dashboard\u003C\u002Fp>\n\u003Ch4>Support Forum\u003C\u002Fh4>\n\u003Cp>http:\u002F\u002Fforum.wp-parsi.com\u002F\u003C\u002Fp>\n","Show valuable posts of Mandegarweb in your dashboard",10,1551,"2014-10-31T12:48:00.000Z","4.0.38","3.6",[69,70,58,71,72,73,74,75],"admin-font-editor","feed","mandegarweb","mandegarweb-feed","parsi","wp-parsi","wp-parsi-admin-font-editor","http:\u002F\u002Fmandegarweb.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmandegar-feed.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":97,"download_link":98,"security_score":99,"vuln_count":28,"unpatched_count":29,"last_vuln_date":100,"fetched_at":31},"shayanweb-admin-fontchanger","ShayanWeb Admin FontChanger | افزونه‌ی تغییر فونت پیشخوان وردپرس شایان وب","1.10","Shayan Farhang Pazhooh","https:\u002F\u002Fprofiles.wordpress.org\u002Fshayanfp\u002F","\u003Cp>By using this plugin, you can change your WordPress admin font to Shabnam, Vazirmatn, or Sahel fonts, which are some amazing fonts for the Persian (Farsi) language. You can also use this plugin on Arabic, Pashto, Kurdish, and Urdu websites. The mentioned fonts also support English as well, so you will not have any problems.\u003C\u002Fp>\n\u003Cp>In addition to the mentioned default fonts, you can also upload your own custom fonts! We’ve developed this feature in response to the requests of many of our users, so now you can easily use your favorite font on your WordPress Admin Dashboard or even on the front end of your website.\u003C\u002Fp>\n\u003Cp>You just have to install this plugin on your website, and that’s it! You can experience your new WordPress admin panel with a great new font!\u003C\u002Fp>\n\u003Cp>You can also change the Elementor Editor font to have a great experience while designing your website!\u003C\u002Fp>\n\u003Cp>This plugin also provides a lightweight options panel, so you can use it to choose between Shabnam, Vazir, or Sahel fonts and adjust other settings for the plugin.\u003C\u002Fp>\n\u003Cp>Learn more about changing the WordPress admin font on ShayanWeb.com website:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fshayanweb.com\u002Fblog\u002Fchange-wp-admin-font\u002F\" rel=\"nofollow ugc\">تغییر فونت پیشخوان وردپرس\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Check out ShayanWeb articles about WordPress for having an amazing online business: \u003Ca href=\"https:\u002F\u002FShayanWeb.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002FShayanWeb.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n","The easiest way to change the WordPress admin font for Farsi websites is by using this lightweight plugin!",2000,26545,100,11,"2025-09-07T21:19:00.000Z","6.8.5","5.2","5.6",[20,95,96],"fonts","wp-admin","https:\u002F\u002FShayanWeb.com\u002Fblog\u002Fchange-wp-admin-font\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshayanweb-admin-fontchanger.1.10.zip",99,"2025-05-16 00:00:00",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":16,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":120,"download_link":121,"security_score":27,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"admin-custom-font","Admin Custom Font","2.5.2","Darko A7","https:\u002F\u002Fprofiles.wordpress.org\u002Fdarko-a7\u002F","\u003Cp>Admin Custom Font plugin allows you to replace default\u002Ffactory font in WordPress Admin Dashboard with hundreds of different Google Fonts.\u003C\u002Fp>\n\u003Cp>Visit Admin Dashboard > Settings > Admin Font to customize font type and styles.\u003C\u002Fp>\n\u003Cp>Why This Plugin?\u003C\u002Fp>\n\u003Cp>In WordPress version 4.6 a new admin system font change was introduced, moving away from “traditional” Open-Sans font-face type\u003Cbr \u002F>\n(introduced back in 3.8). This inspired us to create a simple & powerful Admin Custom Font plugin in order to restore the old look & feel without modifying core files.\u003C\u002Fp>\n\u003Cp>Since plugin version 2.4.0 release, you can now choose from the complete list of all Google Fonts, override default font-size and font-weight styles!\u003C\u002Fp>\n\u003Cp>Included most popular Google Font types (faces): OpenSans, DroidSans, PT Sans, Roboto, Exo, Play, Lato, Quantico, Orbitron, Maven Pro, fonts designed for specific world languages and more!\u003C\u002Fp>\n\u003Cp>In order to streamline and make font selection process more efficient, some 30+ hand-picked, most popular and beautiful Google Fonts are grouped and listed on top of the massive selection list. You should try some of those fonts first, and later explore rest of the available collection.\u003C\u002Fp>\n\u003Cp>Read Article:\u003Cbr \u002F>\nhttp:\u002F\u002Ftehnoblog.org\u002Fhow-to-change-font-in-wordpress-admin-dashboard\u002F\u003C\u002Fp>\n\u003Ch3>Website\u003C\u002Fh3>\n\u003Cp>http:\u002F\u002Ftehnoblog.org\u002F\u003C\u002Fp>\n","Admin Custom Font plugin allows you to replace default\u002Ffactory font in WordPress Admin Dashboard with hundreds of different Google Fonts.",1000,22338,90,13,"2023-03-30T18:47:00.000Z","4.6","5.3",[20,117,23,118,119],"custom","google","opensans","http:\u002F\u002Ftehnoblog.org\u002Fhow-to-change-font-in-wordpress-admin-dashboard\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-custom-font.2.5.2.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":88,"num_ratings":52,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":18,"tags":135,"homepage":140,"download_link":141,"security_score":27,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"font-size","Font Size","1.2.0","seosbg","https:\u002F\u002Fprofiles.wordpress.org\u002Fseosbg\u002F","\u003Cp>This WordPress plugin allows you to change the size of basic HTML elements. Simply amazing and easy to use.\u003Cbr \u002F>\nTo learn more about the Font Size plugin please see Plugin URI. See screenshot examples at http:\u002F\u002Fseosthemes.com\u002Ffont-size\u002F\u003C\u002Fp>\n","Font Size is easy to use. Font Size WordPress plugin allows you to change the size of basic HTML elements.",700,16069,"2020-01-15T02:48:00.000Z","5.3.21","5.3.2",[123,136,137,138,139],"font-size-plugin","font-size-wp-plugin","font-sizes","wordpress-font-size","http:\u002F\u002Fwww.seosthemes.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffont-size.zip",{"slug":143,"name":144,"version":145,"author":146,"author_profile":147,"description":148,"short_description":149,"active_installs":150,"downloaded":151,"rating":88,"num_ratings":28,"last_updated":152,"tested_up_to":153,"requires_at_least":18,"requires_php":154,"tags":155,"homepage":157,"download_link":158,"security_score":99,"vuln_count":28,"unpatched_count":29,"last_vuln_date":159,"fetched_at":31},"persian-admin-fonts","Persian Admnin Fonts","4.1.05","MDZ","https:\u002F\u002Fprofiles.wordpress.org\u002Fmdesignfa\u002F","\u003Cp>توجه: لطفا بعد از بروزرسانی به صفحه تنظیمات افزونه بروید و تنظیمات خود را ذخیره کنید تا فایل های داینامیک افزونه، بر اساس تنظیمات شما بار دیگر ایجاد شوند\u003Cbr \u002F>\nافزونه فونت فارسی یک افزونه کاملا رایگان برای سیستم مدیریت محتوا وردپرس می باشد. به کمک این افزونه شما می توانید فونت های ادمین وردپرس را تغییر دهید.10 فونت بسیار معروف و استاندارد برای وب در این افزونه گنجانده شده است همچنین شما می توانید فونت های دلخواه خود را درون افزونه آپلود کنید و از آنها استفاده کنید. افزونه فونت فارسی ادمین صفحه تنظیمات بسیار کاملی دارد و از فونت های ایتالیک و فشرده هم پشتیبانی می کند. این افزونه بسیار بهینه کد نویسی شده است و به هیچ عنوان در طرف فرانت سایت شما اجرا نمی شود.این افزونه توانایی تغییر فونت های صفحه ورود ادمین را هم دارا می باشد. سازگاری کامل با صفحه ساز المنتور و همچنین توانایی اضافه کردن کد های CSS دلخواه شما به ادمین وردپرس و المنتور از ویژگی های بسیار جدید این نرم افزار می باشد.\u003Cbr \u002F>\nThis free plugin makes you able to change your admin-side (wordpress) fonts very easily.if you dont use Persian (Farsi) lang for your admin-side, this plugin is useless for you. Persian Admin Fonts also contains +10 free Persian fonts but you can upload your custom font family to it and use it. while deactivating this wordpress plugin, we set up a realy simple confirmation to decide keep this plugin data (Options) or not, if you choose to get rid of extra data it will simply purge all its options inside you database. by the power of this free product, you can also add your custom CSS codes to the admin-side but if you dont know how to work with the CSS styles, we dont recommend to activate it.\u003C\u002Fp>\n\u003Ch3>به روز رسانی\u003C\u002Fh3>\n\u003Cp>بعد از انجام هر بروزرسانی به صفحه تنظیمات افزونه بروید و دکمه ذخیره تنظیمات را بزنید تا فایل های داینامیک افزونه بر اساس تنظیمات شما دوباره تولید شوند\u003C\u002Fp>\n\u003Ch3>لغو نصب افزونه\u003C\u002Fh3>\n\u003Cp>در هنگام غیر فعالسازی از شما سوال می شود که آیا مایلید اطلاعات این افزونه را نگاه دارید؟\u003Cbr \u002F>\nدر هنگام حذف افزونه شما تصمیم گیرنده خواهید بود که اطلاعات این افزونه را در درون دیتابیس سایت خود نگاه دارید یا نه. اگر به طور موقت غیرفعال سازی می کنید، پیشنهاد می شود اطلاعات افزونه را حذف نکنید اما اگر به صورت دائمی تصمیم بر حذف این افزونه گرفته اید، برای سبک سازی و بهینه سازی حجم دیتابیس سایت اطلاعات این افزونه را حذف کنید.\u003C\u002Fp>\n\u003Ch3>سازگاری ها\u003C\u002Fh3>\n\u003Cp>سازگار با ووکامرس\u003Cbr \u002F>\nسازگار با المنتور\u003Cbr \u002F>\nسازگار با صفحه ساز Visual Composer\u003Cbr \u002F>\nسازگار با صفحه ساز WP-Backery\u003Cbr \u002F>\nسازگار با Gutenberg\u003Cbr \u002F>\nسازگار با تم های پیش فرض وردپرس\u003Cbr \u002F>\nسازگار با افزونه سئو Yoast\u003Cbr \u002F>\nسازگار با افزونه WP Media Folders\u003Cbr \u002F>\nسازگار با افزونه BM Custom Login\u003C\u002Fp>\n\u003Ch3>صفحه تنظیمات\u003C\u002Fh3>\n\u003Cp>تنظیمات این افزونه در تنظیمات واقع شده است، در صورتی که پیدا نکردید این آدرس را در ادامه آدرس سایت خودتون وارد کنید: https:\u002F\u002Fwww.YOUR-SITE-URL\u002Fwp-admin\u002Foptions-general.php?page=persian-fonts-options\u003C\u002Fp>\n\u003Ch3>تم های اضافی\u003C\u002Fh3>\n\u003Cp>با استفاده از تم های اضافی به بخش مدیریت سایت خودتون رنگ و شکلی تازه ببخشید\u003C\u002Fp>\n","تغییر فونت های ادمین سایت شما با یک کلیک! به همراه 10 فونت معروف و استاندارد برای وب و قابلیت آپلود فونت های شخصی شما!",500,65744,"2026-02-18T11:47:00.000Z","6.9.4","7.4",[156],"free-farsi-fonts-for-wp-admin","https:\u002F\u002Flanding.mdezign.ir\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersian-admin-fonts.4.1.05.zip","2025-10-21 00:00:00",{"attackSurface":161,"codeSignals":204,"taintFlows":326,"riskAssessment":327,"analyzedAt":340},{"hooks":162,"ajaxHandlers":200,"restRoutes":201,"shortcodes":202,"cronEvents":203,"entryPointCount":29,"unprotectedCount":29},[163,168,171,175,179,183,186,190,193,196],{"type":164,"name":165,"callback":166,"file":167,"line":52},"action","admin_head","mwfc_admin_fonts","includes\\admin-head-codes.php",{"type":164,"name":165,"callback":169,"file":167,"line":170},"mwfc_admin_head",32,{"type":164,"name":172,"callback":173,"file":174,"line":52},"wp_head","sitefont_add_css","includes\\wp-head-codes.php",{"type":164,"name":176,"callback":177,"file":178,"line":14},"admin_menu","mwfc_menu","mw-font-changer.php",{"type":164,"name":180,"callback":181,"file":178,"line":182},"admin_init","register_mwfcsettings",31,{"type":164,"name":184,"callback":185,"file":178,"line":170},"init","mwfc_translations",{"type":164,"name":187,"callback":188,"file":178,"line":189},"wp_enqueue_scripts","mwfc_fonts",33,{"type":164,"name":191,"callback":188,"file":178,"line":192},"admin_enqueue_scripts",34,{"type":164,"name":180,"callback":194,"file":178,"line":195},"mwfc_script_init",35,{"type":164,"name":197,"callback":198,"file":178,"line":199},"admin_notices","mwfc_pro_version_notice",36,[],[],[],[],{"dangerousFunctions":205,"sqlUsage":206,"outputEscaping":208,"fileOperations":29,"externalRequests":29,"nonceChecks":29,"capabilityChecks":29,"bundledLibraries":325},[],{"prepared":29,"raw":29,"locations":207},[],{"escaped":209,"rawEcho":210,"locations":211},4,71,[212,216,218,220,222,225,227,229,232,233,234,235,237,238,239,241,244,245,247,248,249,250,252,253,254,256,258,259,261,262,264,265,266,268,270,271,273,274,276,277,278,280,282,283,285,286,288,289,290,292,294,295,297,298,300,301,303,304,305,307,309,310,312,313,315,316,318,319,320,322,324],{"file":213,"line":214,"context":215},"includes\\feedback.php",38,"raw output",{"file":213,"line":217,"context":215},39,{"file":219,"line":217,"context":215},"includes\\help.php",{"file":219,"line":221,"context":215},41,{"file":223,"line":224,"context":215},"includes\\plugin-dash-options.php",7,{"file":223,"line":226,"context":215},8,{"file":223,"line":228,"context":215},46,{"file":230,"line":231,"context":215},"includes\\plugin-dashboard-options.php",25,{"file":230,"line":231,"context":215},{"file":230,"line":189,"context":215},{"file":230,"line":189,"context":215},{"file":230,"line":236,"context":215},44,{"file":230,"line":236,"context":215},{"file":230,"line":236,"context":215},{"file":230,"line":240,"context":215},45,{"file":242,"line":243,"context":215},"includes\\plugin-site-options.php",6,{"file":242,"line":224,"context":215},{"file":246,"line":182,"context":215},"includes\\plugin-theme-options.php",{"file":246,"line":182,"context":215},{"file":246,"line":217,"context":215},{"file":246,"line":217,"context":215},{"file":246,"line":251,"context":215},50,{"file":246,"line":251,"context":215},{"file":246,"line":251,"context":215},{"file":246,"line":255,"context":215},51,{"file":246,"line":257,"context":215},87,{"file":246,"line":257,"context":215},{"file":246,"line":260,"context":215},95,{"file":246,"line":260,"context":215},{"file":246,"line":263,"context":215},106,{"file":246,"line":263,"context":215},{"file":246,"line":263,"context":215},{"file":246,"line":267,"context":215},107,{"file":246,"line":269,"context":215},143,{"file":246,"line":269,"context":215},{"file":246,"line":272,"context":215},151,{"file":246,"line":272,"context":215},{"file":246,"line":275,"context":215},162,{"file":246,"line":275,"context":215},{"file":246,"line":275,"context":215},{"file":246,"line":279,"context":215},163,{"file":246,"line":281,"context":215},208,{"file":246,"line":281,"context":215},{"file":246,"line":284,"context":215},216,{"file":246,"line":284,"context":215},{"file":246,"line":287,"context":215},227,{"file":246,"line":287,"context":215},{"file":246,"line":287,"context":215},{"file":246,"line":291,"context":215},228,{"file":246,"line":293,"context":215},255,{"file":246,"line":293,"context":215},{"file":246,"line":296,"context":215},291,{"file":246,"line":296,"context":215},{"file":246,"line":299,"context":215},299,{"file":246,"line":299,"context":215},{"file":246,"line":302,"context":215},310,{"file":246,"line":302,"context":215},{"file":246,"line":302,"context":215},{"file":246,"line":306,"context":215},311,{"file":246,"line":308,"context":215},338,{"file":246,"line":308,"context":215},{"file":246,"line":311,"context":215},373,{"file":246,"line":311,"context":215},{"file":246,"line":314,"context":215},381,{"file":246,"line":314,"context":215},{"file":246,"line":317,"context":215},392,{"file":246,"line":317,"context":215},{"file":246,"line":317,"context":215},{"file":246,"line":321,"context":215},393,{"file":246,"line":323,"context":215},420,{"file":246,"line":323,"context":215},[],[],{"summary":328,"deductions":329},"The 'parsi-font' v5.3.1 plugin exhibits a mixed security posture.  While the static analysis indicates a very small attack surface with no identifiable entry points that are unprotected, and all SQL queries are properly prepared, there are significant concerns regarding output escaping. A mere 5% of outputs are properly escaped, suggesting a high likelihood of Cross-Site Scripting (XSS) vulnerabilities. The absence of nonce checks and capability checks on potential (though currently unlisted) entry points, combined with the low output escaping rate, presents a considerable risk.\n\nThe vulnerability history, while dated, is also noteworthy. The presence of a past medium-severity XSS vulnerability in 2016, along with the general pattern of XSS as a common vulnerability type for this plugin, reinforces the findings from the static analysis. This historical data, correlated with the current low output escaping rate, strongly suggests that the plugin may still be susceptible to XSS attacks. The plugin's current lack of unpatched vulnerabilities is a positive sign, but the fundamental code quality regarding output sanitization remains a significant weakness.\n\nIn conclusion, 'parsi-font' v5.3.1 has strengths in its limited attack surface and SQL practices. However, the extremely poor output escaping, coupled with historical XSS vulnerabilities, creates a substantial risk for XSS. Developers should prioritize addressing the output sanitization issues to mitigate these risks.",[330,333,335,338],{"reason":331,"points":332},"Poor output escaping (95% unescaped)",15,{"reason":334,"points":63},"Historical medium XSS vulnerability",{"reason":336,"points":337},"No capability checks found",5,{"reason":339,"points":337},"No nonce checks found","2026-03-16T17:54:51.983Z",{"wat":342,"direct":350},{"assetPaths":343,"generatorPatterns":347,"scriptPaths":348,"versionParams":349},[344,345,346],"\u002Fwp-content\u002Fplugins\u002Fparsi-font\u002Fassets\u002Fcss\u002Ffonts.css","\u002Fwp-content\u002Fplugins\u002Fparsi-font\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fparsi-font\u002Fassets\u002Fcss\u002Fadmin-rtl.css",[],[],[],{"cssClasses":351,"htmlComments":353,"htmlAttributes":354,"restEndpoints":356,"jsGlobals":357,"shortcodeOutput":358},[352],"mwfc-pro-version-notice",[],[355],"id=\"mwfc-pro-version-notice\"",[],[],[],{"slug":4,"current_version":6,"total_versions":360,"versions":361},12,[362,369,376,383,389,397,405,413,421,429,437,445],{"version":92,"download_url":363,"svn_tag_url":364,"released_at":38,"has_diff":365,"diff_files_changed":366,"diff_lines":38,"trac_diff_url":367,"vulnerabilities":368,"is_current":365},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.5.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F5.2\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F5.1&new_path=%2Fparsi-font%2Ftags%2F5.2",[],{"version":370,"download_url":371,"svn_tag_url":372,"released_at":38,"has_diff":365,"diff_files_changed":373,"diff_lines":38,"trac_diff_url":374,"vulnerabilities":375,"is_current":365},"5.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.5.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F5.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F4.3.5&new_path=%2Fparsi-font%2Ftags%2F5.1",[],{"version":377,"download_url":378,"svn_tag_url":379,"released_at":38,"has_diff":365,"diff_files_changed":380,"diff_lines":38,"trac_diff_url":381,"vulnerabilities":382,"is_current":365},"4.3.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.4.3.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F4.3.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F4.3&new_path=%2Fparsi-font%2Ftags%2F4.3.5",[],{"version":40,"download_url":384,"svn_tag_url":385,"released_at":38,"has_diff":365,"diff_files_changed":386,"diff_lines":38,"trac_diff_url":387,"vulnerabilities":388,"is_current":365},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.4.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F4.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F4.2.5&new_path=%2Fparsi-font%2Ftags%2F4.3",[],{"version":390,"download_url":391,"svn_tag_url":392,"released_at":38,"has_diff":365,"diff_files_changed":393,"diff_lines":38,"trac_diff_url":394,"vulnerabilities":395,"is_current":365},"4.2.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.4.2.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F4.2.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F4.2&new_path=%2Fparsi-font%2Ftags%2F4.2.5",[396],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":398,"download_url":399,"svn_tag_url":400,"released_at":38,"has_diff":365,"diff_files_changed":401,"diff_lines":38,"trac_diff_url":402,"vulnerabilities":403,"is_current":365},"4.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.4.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F4.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F4.1&new_path=%2Fparsi-font%2Ftags%2F4.2",[404],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":406,"download_url":407,"svn_tag_url":408,"released_at":38,"has_diff":365,"diff_files_changed":409,"diff_lines":38,"trac_diff_url":410,"vulnerabilities":411,"is_current":365},"4.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.4.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F4.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F4.0&new_path=%2Fparsi-font%2Ftags%2F4.1",[412],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":414,"download_url":415,"svn_tag_url":416,"released_at":38,"has_diff":365,"diff_files_changed":417,"diff_lines":38,"trac_diff_url":418,"vulnerabilities":419,"is_current":365},"4.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.4.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F4.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F3.9.1&new_path=%2Fparsi-font%2Ftags%2F4.0",[420],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":422,"download_url":423,"svn_tag_url":424,"released_at":38,"has_diff":365,"diff_files_changed":425,"diff_lines":38,"trac_diff_url":426,"vulnerabilities":427,"is_current":365},"3.9.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.3.9.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F3.9.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F3.0&new_path=%2Fparsi-font%2Ftags%2F3.9.1",[428],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":430,"download_url":431,"svn_tag_url":432,"released_at":38,"has_diff":365,"diff_files_changed":433,"diff_lines":38,"trac_diff_url":434,"vulnerabilities":435,"is_current":365},"3.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.3.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F2.0&new_path=%2Fparsi-font%2Ftags%2F3.0",[436],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":438,"download_url":439,"svn_tag_url":440,"released_at":38,"has_diff":365,"diff_files_changed":441,"diff_lines":38,"trac_diff_url":442,"vulnerabilities":443,"is_current":365},"2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fparsi-font%2Ftags%2F1.0&new_path=%2Fparsi-font%2Ftags%2F2.0",[444],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":60,"download_url":446,"svn_tag_url":447,"released_at":38,"has_diff":365,"diff_files_changed":448,"diff_lines":38,"trac_diff_url":38,"vulnerabilities":449,"is_current":365},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparsi-font.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fparsi-font\u002Ftags\u002F1.0\u002F",[],[450],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40}]