[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbOC3Vms4Ekf_ucNZzP_3Zv7TgrOB5uonP3j6z5tcn80":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":48,"crawl_stats":38,"alternatives":50,"analysis":147,"fingerprints":273},"personizely","Personizely — A\u002FB Testing, Personalization, Popups & CRO","0.11","Sergiu Cazac","https:\u002F\u002Fprofiles.wordpress.org\u002Fpersonizely\u002F","\u003Cp>Personizely helps you improve your website performance through A\u002FB testing, real-time personalization, and engaging popups. It’s an all-in-one optimization toolkit that allows marketers and developers to test ideas, tailor content to each visitor, and convert more traffic — all without writing code.\u003C\u002Fp>\n\u003Cp>With Personizely, you can easily experiment with different versions of pages and elements, personalize user experiences, and display targeted popups that encourage visitors to subscribe, buy, or engage before leaving your site.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fapp.personizely.net\u002Fregister?utm_source=wordpress\" rel=\"nofollow ugc\">Create a Personizely account for free now\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.personizely.net\u002F?utm_source=wordpress\" rel=\"nofollow ugc\">Find out more about Personizely\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=iQkf_2uKRhk\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=iQkf_2uKRhk\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>A\u002FB Testing\u003C\u002Fstrong>\u003Cbr \u002F>\nRun experiments to discover what works best. Test popup variations, landing page URLs, and on-page content elements such as headlines, buttons, or images. Review results directly in your Personizely dashboard to make confident, data-driven decisions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Personalization & Targeting\u003C\u002Fstrong>\u003Cbr \u002F>\nDeliver relevant experiences for every visitor. Show personalized messages based on factors like geographic location, device type, referral source, and on-site behavior. Segment your audience and adapt campaigns for new vs. returning users.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Popups & Widgets\u003C\u002Fstrong>\u003Cbr \u002F>\nBuild and launch popups, bars, callouts, and embedded forms using a simple drag-and-drop builder. Choose from pre-made templates for lead generation, sales promotions, or announcements, or design your own from scratch. All popups are mobile-responsive and fully customizable.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Analytics\u003C\u002Fstrong>\u003Cbr \u002F>\nMonitor results with reliable performance analytics. Understand views, click-throughs, and conversions in real time. Combine insights from A\u002FB testing and personalization campaigns to continuously improve user experience and conversion rates.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Behavioral Triggers\u003C\u002Fstrong>\u003Cbr \u002F>\nEngage users based on behavior. Trigger popups on exit intent, scroll depth, link clicks, or time on page. Customize when and where popups appear to maximize relevance and impact.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Integrations\u003C\u002Fstrong>\u003Cbr \u002F>\nSeamlessly connect Personizely with leading email, CRM, and analytics platforms such as Klaviyo, Omnisend, HubSpot, Mailchimp, Google Analytics, Heap, Mixpanel, Segment, and Microsoft Clarity. You can also use Zapier or webhooks to integrate Personizely with the rest of your marketing stack.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How It Works\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Install the Personizely plugin and connect your account.\u003C\u002Fli>\n\u003Cli>Create your first A\u002FB test, personalization rule, or popup campaign.\u003C\u002Fli>\n\u003Cli>Set display and targeting options.\u003C\u002Fli>\n\u003Cli>Launch and track performance in the analytics dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Use Cases\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Run A\u002FB tests to improve content and design.\u003C\u002Fli>\n\u003Cli>Personalize messaging for different audience segments.\u003C\u002Fli>\n\u003Cli>Capture more leads with targeted popups.\u003C\u002Fli>\n\u003Cli>Reduce cart abandonment and increase conversions.\u003C\u002Fli>\n\u003C\u002Ful>\n","Personizely is a Conversion Optimization Toolkit that helps you boost engagement and sales through A\u002FB testing, website personalization, and popups.",400,13710,96,25,"2025-11-05T11:15:00.000Z","6.8.5","3.1","5.3",[20,21,22,23,24],"ab-testing","contact-form-builder","exit-intent-popup","popups","split-testing","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersonizely.0.11.zip",99,1,0,"2025-05-02 11:34:31","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2025-3779","personizely-authenticated-contributor-stored-cross-site-scripting-via-widgetid-parameter","Personizely \u003C= 0.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via widgetId Parameter","The Personizely plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘widgetId’ parameter in all versions up to, and including, 0.10 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=0.10","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-05-05 18:32:29",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff07d22ef-5afd-48a4-9e67-31a3ab3efdd6?source=api-prod",3,{"slug":4,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":47,"trust_score":27,"computed_at":49},"2026-04-04T01:06:29.319Z",[51,73,93,113,128],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":70,"download_link":71,"security_score":72,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"unbounce","Unbounce Landing Pages","1.1.4","Unbounce","https:\u002F\u002Fprofiles.wordpress.org\u002Funbouncewordpress\u002F","\u003Cp>With Unbounce’s landing page plugin for WordPress, marketers can create fully customized landing pages for\u003Cbr \u002F>\ntheir campaigns and publish them to their existing WordPress sites.\u003C\u002Fp>\n\u003Cp>To publish landing pages on your WordPress website:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Build your landing page in Unbounce, the world’s most powerful landing page builder\u003C\u002Fli>\n\u003Cli>Publish your page to WordPress using this very plugin\u003C\u002Fli>\n\u003Cli>Manage all your WordPress landing pages through the plugin’s interface\u003C\u002Fli>\n\u003Cli>Edit and update all your landing pages from Unbounce’s page builder. They’ll automatically get updated on your WordPress site\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Unbounce allows you to customize your landing pages to match your brand perfectly. The WYSIWYG builder allows\u003Cbr \u002F>\nfor quick and easy page editing. With the Unbounce WordPress Landing Page Plugin, you can launch your landing\u003Cbr \u002F>\npage on your own domain without ever talking to I.T. Try it for a month for free!\u003C\u002Fp>\n\u003Cp>More than 10,000 digital marketers use Unbounce. Some of the features they love the most include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Publish pages to your WordPress domain\u003C\u002Fli>\n\u003Cli>A team of Customer Success coaches that are easy to reach when you need help\u003C\u002Fli>\n\u003Cli>80+ free templates (plus more on ThemeForest)\u003C\u002Fli>\n\u003Cli>Complete customizability of the desktop and mobile layouts\u003C\u002Fli>\n\u003Cli>Built in A\u002FB testing features\u003C\u002Fli>\n\u003Cli>Integrations with the tools marketers use – MailChimp, SalesForce, Hubspot & more\u003C\u002Fli>\n\u003Cli>Easy Google Analytics tagging & event tracking\u003C\u002Fli>\n\u003Cli>Plus much more\u003C\u002Fli>\n\u003C\u002Ful>\n","Unbounce is the most powerful standalone landing page builder available.",10000,417130,64,11,"2025-06-02T17:36:00.000Z","6.7.5","4.1.5","8.0",[68,20,69,24,52],"a-b-testing","cro","http:\u002F\u002Funbounce.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Funbounce.1.1.4.zip",100,{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":72,"downloaded":81,"rating":72,"num_ratings":82,"last_updated":83,"tested_up_to":16,"requires_at_least":84,"requires_php":85,"tags":86,"homepage":90,"download_link":91,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":92,"fetched_at":31},"sigmize","Sigmize: A\u002FB Testing, Session Recordings, Heatmaps & Revenue Tracking for WooCommerce, SureCart & EDD","0.0.10","Brainstorm Force","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainstormforce\u002F","\u003Cp>\u003Cstrong>Stop guessing on your website. A\u002FB test like the top 1% of sellers.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Sigmize is the only WordPress plugin that combines A\u002FB testing, element testing, heatmaps, session replays, custom goals, and real revenue tracking for WooCommerce, SureCart, and EDD stores. See which variations actually increase sales, not just clicks. All built directly into WordPress. Turn more visitors into customers without leaving your dashboard.\u003C\u002Fp>\n\u003Cp>Built specifically for WordPress stores using WooCommerce, SureCart, or Easy Digital Downloads.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why Your Website Isn’t Converting (And How to Fix It)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Most WordPress site owners rely on gut feelings to design their sites. They change headlines, test colors, adjust CTAs, but they never actually know what moves the needle. The result? Hundreds or thousands in wasted potential revenue every month.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Sigmize\u003C\u002Fstrong> changes this. By combining powerful A\u002FB testing with behavioral analytics and revenue tracking, you’ll finally understand exactly what your visitors want and how they interact with your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1. Unlimited A\u002FB & Element Testing (No Code)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Create unlimited A\u002FB tests without coding. Test:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Entire page layouts\u003C\u002Fli>\n\u003Cli>Individual elements (headlines, buttons, sections, forms, images)\u003C\u002Fli>\n\u003Cli>Product images, pricing, and copy\u003C\u002Fli>\n\u003Cli>Checkout flows and upsell layouts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Element testing lets you change just one or a few elements on your page and run an A\u002FB test comparing the modified version against the original. See precisely how those small changes impact conversions and revenue.\u003C\u002Fp>\n\u003Cp>Sigmize’s anti-flicker technology means your visitors see smooth variations without jarring content shifts that hurt user experience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Session Replays: See Real User Behavior & Fix Friction\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Session replays show you exactly how real users navigate your site. Watch recordings to see:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Where users hesitate or rage-click\u003C\u002Fli>\n\u003Cli>Which sections confuse them\u003C\u002Fli>\n\u003Cli>Where they drop off in your funnel or checkout\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Fix these friction points before they cost you sales and churn.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. Heatmaps & Scroll Maps: Visualize Engagement\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Heatmaps reveal where users click, hover, and engage. Scroll maps show exactly how far down the page visitors go, so you know:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Which sections are seen vs ignored\u003C\u002Fli>\n\u003Cli>Where CTAs should be placed\u003C\u002Fli>\n\u003Cli>Which content blocks users never reach\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Stop wondering what works and start seeing it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. Custom Goals That Match Your Business\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Go beyond simple “page view” metrics. Sigmize lets you define and track custom goals that matter to your store:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Track how far users scroll on the page (scroll-depth goals)\u003C\u002Fli>\n\u003Cli>Track how long users stay on the page (time-on-page \u002F engagement goals)\u003C\u002Fli>\n\u003Cli>Track form submissions, including SureForms and other custom forms on A and B variants\u003C\u002Fli>\n\u003Cli>Track affiliate link clicks, button clicks, signups, and other custom events\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Custom goals give you clear insight into engagement and micro-conversions, not just final purchases.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>5. WooCommerce, SureCart & EDD Revenue Tracking\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>For WooCommerce, SureCart, and Easy Digital Downloads stores, Sigmize connects your sales directly to your tests:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>See revenue per variation\u003C\u002Fli>\n\u003Cli>Track add-to-cart, purchase completion, and conversion rate per variant\u003C\u002Fli>\n\u003Cli>Measure average order value (AOV) per variation\u003C\u002Fli>\n\u003Cli>Monitor cart abandonment impact when testing checkout flows\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You’ll know exactly which variation increased sales, not just which one got more clicks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>6. CMP Integration & GDPR Compliance\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Sigmize is built to be privacy-conscious and GDPR compliant.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use Sigmize’s own consent banner (CMP) to manage tracking consent\u003C\u002Fli>\n\u003Cli>Or integrate easily with third-party CMPs like CookieBot\u003C\u002Fli>\n\u003Cli>If you’re already using CookieBot, you can connect it to Sigmize with a simple configuration so your tests, heatmaps, and replays respect user consent\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This makes it easy to stay compliant while still running experiments and collecting behavioral data.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Built for Speed and Security\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Lightning-Fast Loading:\u003C\u002Fstrong> Lightweight frontend code, server-side caching, and intelligent traffic distribution so Sigmize adds minimal overhead to your site.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Compatible Everywhere:\u003C\u002Fstrong> Works with Elementor, Divi, Beaver Builder, Gutenberg, GeneratePress, StudioPress, and custom themes.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Enterprise Security:\u003C\u002Fstrong> All experiments run through a secure SaaS backend. Data is encrypted in transit and at rest, and Sigmize is built to be compatible with GDPR, CCPA, and WordPress.org security expectations.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>REST API for Developers:\u003C\u002Fstrong> Integrate Sigmize with your favorite tools and automate workflows.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>A\u002FB Tests For Every Store Type\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WooCommerce A\u002FB Testing & Revenue Tracking\u003C\u002Fstrong>\u003Cbr \u002F>\nTrack add-to-cart events, purchase completion, average order value per variation, and cart abandonment. Test product images, pricing, descriptions, and checkout flows. See which changes actually increase WooCommerce revenue.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>SureCart A\u002FB Testing & Conversion Tracking\u003C\u002Fstrong>\u003Cbr \u002F>\nGet the same powerful revenue tracking for digital products and subscription businesses. Test pricing pages, checkout flows, and product descriptions. Identify which SureCart variations drive more sales and higher recurring revenue.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>EDD A\u002FB Testing For Digital Products\u003C\u002Fstrong>\u003Cbr \u002F>\nTrack Easy Digital Downloads purchases and revenue per variation. Test product pages, pricing, and checkout. Optimize for digital product conversions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For Agencies, SaaS, and Content Sites\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Marketing Agencies:\u003C\u002Fstrong> Run tests for multiple client sites from one stack. Track performance across every client project and share reports easily. Prove ROI on CRO retainers with revenue-linked reports and shareable dashboards.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>SaaS Companies:\u003C\u002Fstrong> Test landing pages, signup forms, and pricing pages. See which messaging drives the most free trials or paid signups. Use custom goals to track signups and key activation events.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Content & Membership Sites:\u003C\u002Fstrong> Test headlines, content structure, and CTA placements. Use scroll-depth and time-on-page goals to understand content engagement. Optimize lead magnets and membership funnel pages.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Reporting & Client-Friendly Sharing\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Sigmize includes flexible reporting options so you can share results clearly:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Share experiment reports with clients via exclusive links. Clients can view results without needing their own Sigmize accounts.\u003C\u002Fli>\n\u003Cli>Export or download reports as PDF for archiving, client presentations, or internal documentation.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This makes it easy for agencies and teams to showcase results and decision-making backed by real data.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How It Compares\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Unlike generic A\u002FB testing tools, Sigmize integrates directly with WordPress and connects your tests to real e-commerce revenue from WooCommerce, SureCart, and Easy Digital Downloads.\u003C\u002Fp>\n\u003Cp>No stacking multiple plugins for testing, heatmaps, session replays, and revenue tracking. Sigmize brings them together in one workflow, designed for WordPress stores.\u003C\u002Fp>\n\u003Ch3>External Service Connection \u002F Security\u003C\u002Fh3>\n\u003Cp>Sigmize connects your WordPress site with our SaaS securely. When a user initiates a connection, they are redirected to the SaaS login page. Upon clicking Connect, the SaaS generates a short-lived, single-use token which is sent back to WordPress via a redirect. WordPress then verifies the token server-to-server before storing the access token and user data for future API calls. Tokens are time-limited (1–5 minutes), single-use, and encrypted in transit using HTTPS. This ensures secure authentication, prevents token reuse, and protects user data. No actions are taken by WordPress until token verification succeeds. The access token will be used to sync A\u002FB test experiments on the WordPress site. All privacy and data handling comply with WordPress.org Plugin Guidelines.\u003C\u002Fp>\n","Powerful A\u002FB testing for WordPress with heatmaps, session replays, and e-commerce tracking for WooCommerce, SureCart, and EDD.",1581,2,"2026-01-20T14:31:00.000Z","5.8","7.4",[20,87,88,24,89],"conversion-optimization","heatmaps","woocommerce","https:\u002F\u002Fsigmize.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsigmize.0.0.10.zip","2026-02-07 00:00:00",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":29,"num_ratings":29,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":111,"download_link":112,"security_score":72,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"pushalert-onsite-messaging","Onsite Messaging by PushAlert – Exit Intent Popups, Email Optins, Discount Overlays","1.2.0","PushAlert","https:\u002F\u002Fprofiles.wordpress.org\u002Fpushalert\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fpushalert.co\u002Fonsite-messaging\" rel=\"nofollow ugc\">PushAlert Onsite Messaging\u003C\u002Fa> plugin for WordPress\u002FWooCommerce automates the integration and helps build your email marketing list. Keep customers engaged with personalized on-site popups, automate cart abandonment recovery and browse abandonment with Exit Intent technology.\u003C\u002Fp>\n\u003Cp>The All-in-one Tool for Onsite Messaging and User Engagement.\u003C\u002Fp>\n\u003Ch4>BENEFITS OF USING PUSHALERT ONSITE MESSAGING FOR YOUR STORE\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Easily Grow Email List\u003C\u002Fstrong> – Convert targeted visitors into email subscribers with our smart drag-drop popup builder.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Convert Leads to Sales\u003C\u002Fstrong> – Send offers right when the users are about to leave the site and nudge them towards a sale.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Increase Engagement\u003C\u002Fstrong> – Display personalized automated on-site messages and boost engagement.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reduce Cart Abandonment\u003C\u002Fstrong> – Recover abandoned carts by reaching out to users at the right time with Exit Intent.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>50+ Pro Templates\u003C\u002Fstrong> – Get more than 50+ industry tried and tested popup templates.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>EASY DRAG AND DROP BUILDER\u003C\u002Fh4>\n\u003Cp>No need to code. Just use our drag & drop builder to create the perfect campaign. There are plenty of templates to get started as well. All templates and designs are mobile optimized. You can also add your own confirmation message or redirect users when they convert. Apart from the easy UX, you also get customizable animations, fonts, colors to make these popups truly your own.\u003C\u002Fp>\n\u003Ch4>ADVANCED EXIT INTENT TECHNOLOGY\u003C\u002Fh4>\n\u003Cp>With our Exit intent technology, you can recover abandoned carts on both desktop and mobile devices. These popups are shown as soon as the user is about to leave the site. Show them the perfect offer and nudge them to make a purchase.\u003C\u002Fp>\n\u003Ch4>EASY SEGMENTATION\u003C\u002Fh4>\n\u003Cp>Personalize your messaging to online users with advanced on-page segmentation. Target users based on their current behavior including pages visited, traffic source, cookies and session details. For WooCommerce, identify target customers through dynamic segmentation leveraging parameters such as current cart value, product selections, and individual purchasing history for tailored marketing strategies.\u003C\u002Fp>\n\u003Ch4>ENGAGE USERS WITH MULTIPLE CAMPAIGN TYPES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Lightbox Popup\u003C\u002Fstrong> – The most popular campaign, easily customizable and familiar.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Countdown Timer\u003C\u002Fstrong> – Use urgency to boost conversions by adding a countdown timer to campaigns.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fullscreen Overlays\u003C\u002Fstrong> – Get the control of the conversation with a fullscreen overlay. Get instant attention from your customers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sidebar Forms\u002FMessaging\u003C\u002Fstrong> – Turn the empty sidebar of your website into a lead generation tool with easy integration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Slide-in Popup\u003C\u002Fstrong> – Perfectly timed, animated slide-in popups to capture user interest.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Spin to Win\u003C\u002Fstrong> – Gamify your website and keep users engaged with different spin to win campaigns.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Floating Bar\u003C\u002Fstrong> – Non-intrusive, high impact floating bar popups to show relevant updates and offers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Embedded Popup\u003C\u002Fstrong> – The most advanced onsite messaging without the actual popup. Embed campaigns directly within your website design. No external popups, non-intrusive, merges seamlessly into website content with easy integration.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>A\u002FB\u002FN TESTING\u003C\u002Fh4>\n\u003Cp>Create multiple variants of the same popup to test which works better for your customers. Stop guessing and make a qualified decision with detailed analytics on the performance of each variant.\u003C\u002Fp>\n\u003Ch4>CUSTOMIZE TIMING\u003C\u002Fh4>\n\u003Cp>Choose from several different triggers to reach out to the customer at the perfect time. Use time spent, exit intent, inactivity, page scroll, element click or hover along with custom JavaScript events to target popups to your users.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>Add the Website ID from the Integrate section of your Onsite Messaging dashboard.\u003C\u002Fp>\n","A plugin by PushAlert to enable onsite messaging for your WordPress and WooCommerce Store to build email list, boost sales and recover abandoned cart.",60,3029,"2025-12-01T11:39:00.000Z","6.9.4","2.7","5.6",[108,109,23,110,89],"exit-intent-popups","onsite-messaging","recover-abandoned-cart","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpushalert-onsite-messaging\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpushalert-onsite-messaging.1.2.0.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":72,"num_ratings":28,"last_updated":123,"tested_up_to":16,"requires_at_least":106,"requires_php":85,"tags":124,"homepage":126,"download_link":127,"security_score":72,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"pagetest-ai","PageTest.ai – AI-Powered A\u002FB and Multivariate Testing for WordPress","1.0.1","pagetestai","https:\u002F\u002Fprofiles.wordpress.org\u002Fpagetestai\u002F","\u003Cp>Supercharge your WordPress site with AI-powered A\u002FB testing and content optimization. \u003Cstrong>PageTest.AI\u003C\u002Fstrong> is an AI-driven A\u002FB testing (split testing) and multivariate testing plugin for WordPress that takes the guesswork out of optimizing your website. Whether you’re a marketer, SEO expert, or business owner, you can easily experiment with content variations (headlines, calls-to-action, images, product descriptions, etc.) to see what drives the best results — all without writing any code.\u003C\u002Fp>\n\u003Cp>Because it’s powered by artificial intelligence, PageTest.AI can even generate suggested content variations for you. This means you spend less time brainstorming new copy and more time running high-impact experiments to improve your conversion rates.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>AI-Generated Content Variations\u003C\u002Fstrong> – Instantly generate and test different versions of your content using AI.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Coding Required\u003C\u002Fstrong> – Set up tests in minutes through a user-friendly interface, with no technical skills needed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-Time Analytics\u003C\u002Fstrong> – Get live insights into performance and see which variation is winning.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>⚡ Seamless Integration\u003C\u002Fstrong> – Works with any WordPress theme or page builder (Elementor, Gutenberg, Divi, etc.), and is compatible with major plugins including WooCommerce.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multivariate Testing\u003C\u002Fstrong> – Test multiple changes on a page simultaneously to find the best combination (beyond one-by-one A\u002FB tests).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Native\u003C\u002Fstrong> – No extra tools required. Install the plugin and start optimizing content right in your WordPress dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Take the guesswork out of conversion optimization—start A\u002FB testing with PageTest.AI today!\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the \u003Cstrong>PageTest.AI\u003C\u002Fstrong> cloud service to enable the A\u002FB testing functionality. The external service is used for user authentication, retrieving test configurations, and collecting test results.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What data is sent:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Authentication:\u003C\u002Fstrong> When you log in through the plugin, your email and password are sent securely to the PageTest.AI service to verify your account and obtain an access token.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Configuration:\u003C\u002Fstrong> The plugin fetches JavaScript code snippets from PageTest.AI that are needed to run the A\u002FB tests on your selected pages\u002Fposts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Data:\u003C\u002Fstrong> When visitors view pages where you’ve set up tests, information about their interactions (e.g. page views, clicks, conversions) is sent to PageTest.AI for analysis.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Website Information:\u003C\u002Fstrong> Basic information about your site (such as the URLs or IDs of pages where tests are running) may be sent to PageTest.AI so it can configure and display your tests properly.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>All data is transmitted securely over HTTPS.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When data is sent:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Authentication data is sent only when you log into the plugin in your WordPress admin.\u003C\u002Fli>\n\u003Cli>Test configuration data is retrieved when you save test settings and when a visitor loads a page that has an active test.\u003C\u002Fli>\n\u003Cli>Test interaction data is sent in real time as visitors interact with elements on a tested page.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This service is provided by PageTest.AI:\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fpagetest.ai\u002Fterms\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fpagetest.ai\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Need help or have questions? Check out our \u003Ca href=\"https:\u002F\u002Fsupport.pagetest.ai\" rel=\"nofollow ugc\">support forum\u003C\u002Fa> or email \u003Cstrong>support@pagetest.ai\u003C\u002Fstrong>.\u003C\u002Fp>\n","Run AI-powered A\u002FB and multivariate tests on your WordPress site—no coding needed. Optimize conversions by finding your best content.",20,1234,"2025-06-06T08:51:00.000Z",[68,20,87,125,24],"multivariate-testing","https:\u002F\u002Fpagetest.ai","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpagetest-ai.1.0.5.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":136,"downloaded":137,"rating":72,"num_ratings":82,"last_updated":138,"tested_up_to":139,"requires_at_least":140,"requires_php":25,"tags":141,"homepage":144,"download_link":145,"security_score":146,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"ab-see","A\u002FB See","1.0.2","Scott Grant","https:\u002F\u002Fprofiles.wordpress.org\u002Fsgrant\u002F","\u003Cp>Want to start a split-test right away? Choose a unique test id, provide a piece of code for the first group and a piece of code for the second, and define an id to indicate a conversion.\u003C\u002Fp>\n\u003Cp>For example, let’s define a split test called \u003Cstrong>clothes\u003C\u002Fstrong>. In the first group, we’ll say “Your clothes are red.” In the second group, we’ll say “Your clothes are black.” When we convert, we’ll use the id \u003Cstrong>clothes_complete\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Then, we’ll do this on our test page:\u003C\u002Fp>\n\u003Cp>\u003Ca href=”convert.php”>\u003Cstrong>[ab-see id=clothes]\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>And on the page we want to get to:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>[ab-convert id=clothes_complete]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>That’s it!\u003C\u002Fp>\n\u003Cp>Inspired by the practice of copying the smartest people you know, AB-See is based on Patrick McKenzie’s A\u002FBingo (http:\u002F\u002Fwww.bingocardcreator.com\u002Fabingo) and Ben Kamens’ GAE\u002FBingo (http:\u002F\u002Fbjk5.com\u002Fpost\u002F10171483254\u002Fa-bingo-split-testing-now-on-app-engine-built-for).\u003C\u002Fp>\n\u003Cp>Built for our A\u002FB testing needs at Scent Trunk (https:\u002F\u002Fscenttrunk.com).\u003C\u002Fp>\n","WordPress A\u002FB testing in two shortcodes.",10,2846,"2015-07-21T01:27:00.000Z","4.2.39","4.0",[20,142,143,24],"ab-test","split-test","http:\u002F\u002Fscootah.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fab-see.1.0.2.zip",85,{"attackSurface":148,"codeSignals":198,"taintFlows":228,"riskAssessment":264,"analyzedAt":272},{"hooks":149,"ajaxHandlers":186,"restRoutes":187,"shortcodes":188,"cronEvents":197,"entryPointCount":82,"unprotectedCount":29},[150,156,160,164,168,172,174,177,181,184],{"type":151,"name":152,"callback":153,"file":154,"line":155},"action","admin_menu","plugin_settings","class.personizely-admin.php",15,{"type":151,"name":157,"callback":158,"file":154,"line":159},"admin_init","handle_form",16,{"type":161,"name":162,"callback":162,"file":154,"line":163},"filter","allowed_redirect_hosts",17,{"type":151,"name":165,"callback":166,"file":167,"line":163},"wp_print_scripts","personizely_script","class.personizely.php",{"type":161,"name":169,"callback":170,"file":167,"line":171},"sgo_javascript_combine_excluded_external_paths","optimization_exclude",22,{"type":161,"name":173,"callback":170,"file":167,"line":14},"rocket_minify_excluded_external_js",{"type":161,"name":175,"callback":170,"file":167,"line":176},"jetpack_boost_render_blocking_js_exclude_handles",28,{"type":161,"name":178,"callback":179,"file":167,"line":180},"wpmeteor_exclude","closure",31,{"type":151,"name":182,"callback":182,"file":183,"line":180},"init","personizely.php",{"type":151,"name":182,"callback":182,"file":183,"line":185},35,[],[],[189,193],{"tag":190,"callback":191,"file":167,"line":192},"ply-widget","shortcode_widget",18,{"tag":194,"callback":195,"file":167,"line":196},"ply-placeholder","shortcode_placeholder",19,[],{"dangerousFunctions":199,"sqlUsage":200,"outputEscaping":202,"fileOperations":29,"externalRequests":29,"nonceChecks":82,"capabilityChecks":28,"bundledLibraries":227},[],{"prepared":29,"raw":29,"locations":201},[],{"escaped":203,"rawEcho":62,"locations":204},4,[205,208,210,212,215,217,218,220,221,223,225],{"file":167,"line":206,"context":207},49,"raw output",{"file":167,"line":209,"context":207},54,{"file":167,"line":211,"context":207},59,{"file":213,"line":214,"context":207},"views\\settings-main.php",8,{"file":213,"line":216,"context":207},9,{"file":213,"line":136,"context":207},{"file":213,"line":219,"context":207},21,{"file":213,"line":171,"context":207},{"file":213,"line":222,"context":207},37,{"file":213,"line":224,"context":207},43,{"file":213,"line":226,"context":207},44,[],[229,253],{"entryPoint":230,"graph":231,"unsanitizedCount":29,"severity":252},"handle_form (class.personizely-admin.php:77)",{"nodes":232,"edges":248},[233,238,243,246],{"id":234,"type":235,"label":236,"file":154,"line":237},"n0","source","$_POST['api_key']",88,{"id":239,"type":240,"label":241,"file":154,"line":237,"wp_function":242},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":244,"type":235,"label":245,"file":154,"line":72},"n2","$_GET['api_key']",{"id":247,"type":240,"label":241,"file":154,"line":72,"wp_function":242},"n3",[249,251],{"from":234,"to":239,"sanitized":250},true,{"from":244,"to":247,"sanitized":250},"low",{"entryPoint":254,"graph":255,"unsanitizedCount":29,"severity":252},"\u003Cclass.personizely-admin> (class.personizely-admin.php:0)",{"nodes":256,"edges":261},[257,258,259,260],{"id":234,"type":235,"label":236,"file":154,"line":237},{"id":239,"type":240,"label":241,"file":154,"line":237,"wp_function":242},{"id":244,"type":235,"label":245,"file":154,"line":72},{"id":247,"type":240,"label":241,"file":154,"line":72,"wp_function":242},[262,263],{"from":234,"to":239,"sanitized":250},{"from":244,"to":247,"sanitized":250},{"summary":265,"deductions":266},"The Personizely plugin v0.12 exhibits a mixed security posture. On the positive side, it demonstrates strong adherence to secure coding practices by avoiding dangerous functions, using prepared statements for all SQL queries, and implementing nonce and capability checks.  The absence of file operations and external HTTP requests further reduces its attack surface.  However, a significant concern arises from the low percentage of properly escaped output (27%), indicating a potential for Cross-Site Scripting (XSS) vulnerabilities, especially given its past vulnerability history.\n\nThe static analysis identified no critical or high severity taint flows, which is encouraging. The plugin's vulnerability history, while showing only one past medium severity CVE related to XSS, suggests that proper input sanitization and output escaping remain areas requiring vigilance. The fact that the last vulnerability was recorded on 2025-05-02 suggests recent awareness but also highlights that vulnerabilities can still emerge.\n\nIn conclusion, while Personizely v0.12 has made strides in securing its codebase, the prevalent issue of insufficient output escaping presents a tangible risk. This, coupled with a historical XSS vulnerability, necessitates careful attention to ensure all user-provided data displayed on the frontend is robustly sanitized. The plugin is generally well-protected regarding direct entry points, but the lack of comprehensive output escaping is its most significant weakness.",[267,269],{"reason":268,"points":214},"Low percentage of properly escaped output",{"reason":270,"points":271},"Past medium severity XSS vulnerability",7,"2026-03-16T19:49:21.504Z",{"wat":274,"direct":283},{"assetPaths":275,"generatorPatterns":279,"scriptPaths":280,"versionParams":282},[276,277,278],"\u002Fwp-content\u002Fplugins\u002Fpersonizely\u002Fclass.personizely.php","\u002Fwp-content\u002Fplugins\u002Fpersonizely\u002Fclass.personizely-admin.php","\u002Fwp-content\u002Fplugins\u002Fpersonizely\u002Fpersonizely.php",[],[281],"https:\u002F\u002Fstatic.personizely.net\u002F.*.js",[],{"cssClasses":284,"htmlComments":285,"htmlAttributes":286,"restEndpoints":289,"jsGlobals":290,"shortcodeOutput":291},[],[],[287,288],"data-ply-embedded-widget","data-ply-placeholder",[],[],[292,293,294,293],"\u003Cdiv data-ply-embedded-widget='","'\u003C\u002Fdiv>","\u003Cdiv data-ply-placeholder='"]