[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_fIDRigMjcDIKLv3_5KumXWqBqhmV0Y5Bjs3L3EVRtE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":144,"fingerprints":356},"photography-core","Photography Core","0.3.0","Jordy Meow","https:\u002F\u002Fprofiles.wordpress.org\u002Ftigroumeow\u002F","\u003Cp>Photographers simply want to have a nice portfolio with WordPress, with a beautiful theme, possibly linked to Lightroom, without spending too much time on the technical details. This is why Photography Core was made. It is possible to switch between any theme using the Photography Core and everything will still work, automatically. No need to work on the new theme every time. Everything in this plugin is light, efficient, but try to cover every part required by most photography websites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Cem>There aren’t many downloads or reviews because this plugin is actually part of the architecture of themes, so it’s probably not a plugin you would like just to download by itself. But you could, and develop your own theme on it.\u003C\u002Fem>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>FEATURES\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Post Type: Collections\u003C\u002Fli>\n\u003Cli>Taxonomies: Folders, Keywords\u003C\u002Fli>\n\u003Cli>Featured Images for Folders\u003C\u002Fli>\n\u003Cli>Drag & Drop ordering for Folders\u003C\u002Fli>\n\u003Cli>Drag & Drop ordering for Collections (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-types-order\u002F\" rel=\"ugc\">Post Types Order\u003C\u002Fa> required)\u003C\u002Fli>\n\u003Cli>SEO (doesn’t overdo it; basics which are good enough)\u003C\u002Fli>\n\u003Cli>Internal API (to retrieve the collections, folders, their hierarchy, etc)\u003C\u002Fli>\n\u003Cli>Gutenberg Blocks: Collections, Folders, Keywords, Section Header, Search\u003C\u002Fli>\n\u003Cli>Shortcodes (the same as for the Gutenberg Blocks)\u003C\u002Fli>\n\u003Cli>Seamless integration with WP\u002FLR Sync (Lightroom)\u003C\u002Fli>\n\u003Cli>Works with Polylang\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>THEMES RECOMMENDATIONS\u003C\u002Fh3>\n\u003Cp>Currently, three themes are known to use Photography Core. But if you would like to build your own theme, do not hesitate to use this plugin and to contact us so that we can add you here.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmeowapps.com\" rel=\"nofollow ugc\">Hikari\u003C\u002Fa>. Used by the urban explorer \u003Ca href=\"https:\u002F\u002Fthomasjorion.com\" rel=\"nofollow ugc\">Thomas Jorion\u003C\u002Fa> but also by \u003Ca href=\"https:\u002F\u002Fjordymeow.com\" rel=\"nofollow ugc\">Jordy Meow\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmeowapps.com\" rel=\"nofollow ugc\">Yuzu\u003C\u002Fa>. Used by the very famous photographer \u003Ca href=\"http:\u002F\u002Fyannarthusbertrand2.org\" rel=\"nofollow ugc\">Yann Arthus-Bertrand\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmeowapps.com\" rel=\"nofollow ugc\">Kurayami\u003C\u002Fa>. This one will be awesome, but currently in development.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>PLUGINS RECOMMENDATIONS\u003C\u002Fh3>\n\u003Cp>Those plugins aren’t requires by the Photography Core and are simply recommendations. Remember, avoid using too many plugins, as they slow down your website and increase chance of encountering issues.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Gallery: Meow Gallery\u003C\u002Fli>\n\u003Cli>Lightbox: Meow Lighbox\u003C\u002Fli>\n\u003Cli>Lightroom: WP\u002FLR Sync\u003C\u002Fli>\n\u003Cli>Order Collections: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-types-order\u002F\" rel=\"ugc\">Post Types Order\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contact Form: Ninja Forms\u003C\u002Fli>\n\u003Cli>Fonts: Google Fonts for WordPress\u003C\u002Fli>\n\u003Cli>Google Analytics: Analytify – Google Analytics Dashboard\u003C\u002Fli>\n\u003Cli>Multilanguage: Polylang\u003C\u002Fli>\n\u003Cli>Better search: Relevanssi\u003C\u002Fli>\n\u003Cli>More SEO features: The SEO Framework\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>AVAILABLE FILTERS\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>pcore_collections_order: Change the order of the collections. Override this filter and return either ‘date’ (default order, by Publish Date), ‘title’ (order by the Title of the collection) or by a custom ‘ORDER BY’.\u003C\u002Fli>\n\u003Cli>pcore_folders_order: Change the order of the folders. Override this filter and return either ‘tax_position’ (default order, by position – this plugin has this feature built in), ‘title’ (order by the Title of the folder) or by a custom ‘ORDER BY’.\u003C\u002Fli>\n\u003C\u002Ful>\n","Photography Core is the heart of the themes made for image lovers. Features are the API, helpers, Gutenberg blocks, Lightroom, etc.",40,2662,0,"2019-06-20T15:19:00.000Z","5.2.24","4.8","",[19,20,21,22,23],"gutenberg","image","lightroom","photo","photography","https:\u002F\u002Fmeowapps.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphotography-core.0.3.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"tigroumeow",27,371190,92,372,73,"2026-04-04T02:43:31.831Z",[39,64,85,110,128],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":59,"download_link":60,"security_score":61,"vuln_count":62,"unpatched_count":13,"last_vuln_date":63,"fetched_at":28},"simple-lightbox","Simple Lightbox","2.9.5","Archetyped","https:\u002F\u002Fprofiles.wordpress.org\u002Farchetyped\u002F","\u003Cp>Simple Lightbox is a very simple and customizable lightbox that is easy to add to your WordPress website.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>Options for customizing the lightbox behavior are located in the \u003Cstrong>Appearance > Lightbox\u003C\u002Fstrong> admin menu (or just click the \u003Cstrong>Settings\u003C\u002Fstrong> link below the plugin’s name when viewing the list of installed plugins)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically activate links (no manual coding required)\u003C\u002Fli>\n\u003Cli>Automatically resize lightbox to fit in window\u003C\u002Fli>\n\u003Cli>Customize lightbox with \u003Cstrong>themes\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Mobile-optimized responsive themes included\u003C\u002Fli>\n\u003Cli>Customizable lightbox animations\u003C\u002Fli>\n\u003Cli>Infinitely customizable with \u003Cstrong>add-ons\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Supports WordPress \u003Cstrong>image attachment\u003C\u002Fstrong> links\u003C\u002Fli>\n\u003Cli>Supports links in \u003Cstrong>widgets\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Keyboard Navigation\u003C\u002Fli>\n\u003Cli>Display media metadata (caption, description, etc.) in lightbox\u003C\u002Fli>\n\u003Cli>Enable Lightbox depending on Page Type (Home, Pages, Archive, etc.)\u003C\u002Fli>\n\u003Cli>Group image links (play as a slideshow)\u003C\u002Fli>\n\u003Cli>Group image links by Post (separate slideshow for each post on page)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Insert links to images\u002Fimage attachments into your posts\u002Fpages\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>That’s it! The image will be displayed in a lightbox automatically.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>For more usage tips, go to \u003Ca href=\"http:\u002F\u002Farchetyped.com\u002Ftools\u002Fsimple-lightbox\u002F\" rel=\"nofollow ugc\">Simple Lightbox’s official page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>See \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Farchetyped\u002Fsimple-lightbox\u002Fwiki\" rel=\"nofollow ugc\">Simple Lightbox’s documentation\u003C\u002Fa> for in-depth information on using and customizing SLB.\u003C\u002Fli>\n\u003C\u002Ful>\n","The highly customizable lightbox for WordPress",100000,2960784,86,236,"2026-02-24T03:21:00.000Z","6.9.4","5.3","5.6.20",[56,20,57,23,58],"gallery","lightbox","slideshow","http:\u002F\u002Farchetyped.com\u002Ftools\u002Fsimple-lightbox\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-lightbox.2.9.5.zip",99,1,"2025-04-25 00:00:00",{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":74,"num_ratings":75,"last_updated":76,"tested_up_to":77,"requires_at_least":78,"requires_php":17,"tags":79,"homepage":82,"download_link":83,"security_score":26,"vuln_count":62,"unpatched_count":13,"last_vuln_date":84,"fetched_at":28},"fullscreen-galleria","Fullscreen Galleria","1.6.12","pdamsten","https:\u002F\u002Fprofiles.wordpress.org\u002Fpdamsten\u002F","\u003Cp>Fullscreen gallery for WordPress. Based on \u003Ca href=\"http:\u002F\u002Fgalleria.io\u002F\" rel=\"nofollow ugc\">Galleria\u003C\u002Fa> JavaScript image gallery framework.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Clean fullscreen interface. Only image and carousel is shown when idle.\u003C\u002Fli>\n\u003Cli>Custom link support for media eg. link to Flickr page that is shown for the image.\u003C\u002Fli>\n\u003Cli>If image has gps coordinates it can be shown on map.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Use WordPress Gallery feature and media as usual. Images are handled automatically and shown in fullscreen viewer.\u003C\u002Fli>\n\u003C\u002Fol>\n","A simple fullscreen gallery to Wordpress",900,106424,96,15,"2023-12-12T10:04:00.000Z","6.4.8","4.0",[80,56,81,23],"galleria","images","https:\u002F\u002Fpetridamsten.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffullscreen-galleria.zip","2024-03-25 00:00:00",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":17,"tags":100,"homepage":106,"download_link":107,"security_score":108,"vuln_count":62,"unpatched_count":13,"last_vuln_date":109,"fetched_at":28},"dreamstime-stock-photos","Dreamstime Stock Photos","4.2","dreamstime","https:\u002F\u002Fprofiles.wordpress.org\u002Fdreamstime\u002F","\u003Cp>Insert stock photos & images easily & safely into your posts and pages from the largest selection of free images and professional stock photos online without leaving WordPress. The Dreamstime plugin enhances your WordPress workflow by allowing you to download royalty-free and public domain images directly from Dreamstime’s database of millions of free stock photos and commercial Royalty-Free images from within the WordPress Add Media tool. All images are model released and properly attributed so they are 100% safe to use without ever having to worry about model or photographer claims.\u003C\u002Fp>\n\u003Cp>For current Dreamstime users, the plugin is linked to your existing account so if you’ve already purchased an image prior to installing the WordPress plugin, you won’t have to purchase the same image again. New users can quickly sign up a free account at Dreamstime.com.\u003C\u002Fp>\n\u003Cp>Dreamstime contributors can add their own images to their blog articles without having to pay for them.\u003C\u002Fp>\n\u003Cp>You can also make money with the automatic Dreamstime referral program integration. Using the automatically generated referral links you will receive 10% of all sales and uploads made within the first 3 years for each user you refer!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Over 278,000,000 free and Royalty-Free stock photos and illustrations to choose from\u003C\u002Fli>\n\u003Cli>Insert images and illustrations directly into your posts or pages with ease with seamless Dreamstime account integration\u003C\u002Fli>\n\u003Cli>100% safe, model-released images\u003C\u002Fli>\n\u003Cli>Image attribution automatically added\u003C\u002Fli>\n\u003Cli>Earn 10% referral commissions with automatically generated referral links\u003C\u002Fli>\n\u003Cli>Thousands of free stock photos and public domain (CC0) images available\u003C\u002Fli>\n\u003C\u002Ful>\n","Stock Photos by Dreamstime: Easily search and insert images into your posts and pages from Dreamstime's vast database of Free and Royalty-Free st &hellip;",200,34190,82,18,"2025-03-18T09:55:00.000Z","6.7.5","3.5",[101,102,103,104,105],"free-images","free-photos","stock-images","stock-photography","stock-photos","https:\u002F\u002Fwww.dreamstime.com\u002Fwordpress-photo-image-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdreamstime-stock-photos.4.2.zip",91,"2025-02-02 00:00:00",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":93,"downloaded":118,"rating":119,"num_ratings":62,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":123,"tags":124,"homepage":17,"download_link":127,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"shutterstock","Shutterstock","1.3.12","Shutterstock Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fshutterstockplugins\u002F","\u003Cp>The Shutterstock plugin for WordPress allows you to access our exceptional, royalty-free content directly from WordPress. You can search Shutterstock’s library, download images directly to the WordPress media library, put preview images on pages and posts, and license, download, and post images and editorial content without leaving the WordPress page editor. By helping streamline your workflow at the point of production and publishing, you can get your message to market more efficiently and effectively than ever before.\u003C\u002Fp>\n\u003Cp>The Shutterstock plugin takes the complexity out of creativity and saves time, whether you’re creating a draft or publishing a full article.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Connect your Shutterstock account in minutes\u003C\u002Fli>\n\u003Cli>Search across 350 million creative images and editorial photos\u003C\u002Fli>\n\u003Cli>Preview visuals within your WordPress post\u003C\u002Fli>\n\u003Cli>License with one click directly within WordPress\u003C\u002Fli>\n\u003Cli>Define user permissions for each WordPress role to define varying levels of access to Shutterstock\u003C\u002Fli>\n\u003Cli>Get Smart Image Recommendations based on your post content automatically\u003C\u002Fli>\n\u003Cli>Access previously licensed content from within the Media Library and redownload on-demand\u003C\u002Fli>\n\u003Cli>Access Premier support any time\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>By default, WordPress sites have access to a limited library of Shutterstock media. \u003Cstrong>To connect the WordPress plugin to your existing subscription or access our full collection, fill out the form at \u003Ca href=\"https:\u002F\u002Fwww.shutterstock.com\u002Fdesign\u002Fplugins-wordpress\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.shutterstock.com\u002Fdesign\u002Fplugins-wordpress\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin uses the Shutterstock API. For more information, see \u003Ca href=\"https:\u002F\u002Fdevelopers.shutterstock.com\" rel=\"nofollow ugc\">https:\u002F\u002Fdevelopers.shutterstock.com\u003C\u002Fa>.\u003C\u002Fp>\n","Insert Shutterstock's royalty-free content directly from the WordPress editor",13347,20,"2022-07-25T18:53:00.000Z","6.0.11","5.5","7.1",[125,81,126,111,104],"editorial-images","licensing","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshutterstock.1.3.12.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":136,"downloaded":137,"rating":136,"num_ratings":138,"last_updated":17,"tested_up_to":77,"requires_at_least":139,"requires_php":140,"tags":141,"homepage":17,"download_link":142,"security_score":136,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":143},"fcp-lightest-lightbox","FCP Lightest Lightbox","1.4.2","FirmCatalyst","https:\u002F\u002Fprofiles.wordpress.org\u002Ffirmcatalyst\u002F","\u003Cp>Simple and super lightweight Lightbox for WordPress with gallery navigation support.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Zero render-blocking tags are added on the page\u003C\u002Fli>\n\u003Cli>Only 0.5 kB is loaded if no linked images found\u003C\u002Fli>\n\u003Cli>Gallery support\u003C\u002Fli>\n\u003Cli>Caching, minifying & combining friendly\u003C\u002Fli>\n\u003Cli>jQuery independent (in case it’s async)\u003C\u002Fli>\n\u003Cli>Responsive\u003C\u002Fli>\n\u003Cli>Keyboard navigation\u003C\u002Fli>\n\u003Cli>Swipe navigation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ffirmcatalyst.com\u002Flightest-lightbox\u002F\" rel=\"nofollow ugc\">firmcatalyst.com\u002Flightest-lightbox\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Starts working just by the plugin activation. Opens linked images in a popup Lightbox by click. Adds arrow navigation, if an image is a part of a gallery or other links sequence.\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>You can modify the code for your needs, or suggest improvemens on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FVVolkov833\u002Ffcp-lightbox\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. It is pretty transparent and well-commented.\u003C\u002Fp>\n","Super lightweight Lighbox for WordPress",100,2575,2,"5.7","7.0.0",[56,81,57,23],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffcp-lightest-lightbox.zip","2026-03-15T10:48:56.248Z",{"attackSurface":145,"codeSignals":245,"taintFlows":286,"riskAssessment":339,"analyzedAt":355},{"hooks":146,"ajaxHandlers":207,"restRoutes":222,"shortcodes":223,"cronEvents":243,"entryPointCount":163,"unprotectedCount":244},[147,153,156,160,164,169,171,174,178,180,182,185,188,191,194,197,201],{"type":148,"name":149,"callback":150,"file":151,"line":152},"action","edit_term","featured_save_taxonomy_image","featured.php",12,{"type":148,"name":154,"callback":150,"file":151,"line":155},"create_term",13,{"type":148,"name":157,"callback":158,"file":151,"line":159},"admin_head","featured_add_style",17,{"type":148,"name":161,"callback":162,"priority":163,"file":151,"line":96},"quick_edit_custom_box","featured_quick_edit_custom_box",10,{"type":165,"name":166,"callback":167,"priority":163,"file":151,"line":168},"filter","attribute_escape","featured_change_insert_button_text",19,{"type":148,"name":157,"callback":157,"file":170,"line":155},"folders-order.php",{"type":148,"name":172,"callback":172,"file":170,"line":173},"init",14,{"type":148,"name":175,"callback":176,"file":170,"line":177},"load-edit-tags.php","load_edit_tags",16,{"type":165,"name":179,"callback":179,"priority":163,"file":170,"line":32},"terms_clauses",{"type":165,"name":179,"callback":179,"priority":163,"file":170,"line":181},44,{"type":165,"name":172,"callback":172,"file":183,"line":184},"i18n\\polylang.php",11,{"type":165,"name":186,"callback":187,"priority":163,"file":183,"line":152},"pcore_get_collections","get_collections",{"type":165,"name":189,"callback":190,"priority":163,"file":183,"line":155},"pcore_get_folders","get_folders",{"type":165,"name":192,"callback":193,"priority":163,"file":183,"line":173},"pcore_resolve_folder_id","resolve_folder_id",{"type":148,"name":172,"callback":172,"file":195,"line":196},"photography-core.php",34,{"type":165,"name":198,"callback":199,"priority":163,"file":195,"line":200},"gutenberg_can_edit_post_type","active_gutenberg",51,{"type":148,"name":202,"callback":203,"priority":204,"file":205,"line":206},"wp_head","init_seo",5,"seo.php",8,[208,213,216,219],{"action":209,"nopriv":210,"callback":211,"hasNonce":210,"hasCapCheck":210,"file":212,"line":152},"pcore_collection",false,"ajax_collection","api.php",{"action":214,"nopriv":210,"callback":215,"hasNonce":210,"hasCapCheck":210,"file":212,"line":155},"pcore_collections","ajax_collections",{"action":217,"nopriv":210,"callback":218,"hasNonce":210,"hasCapCheck":210,"file":212,"line":173},"pcore_folders","ajax_folders",{"action":220,"nopriv":210,"callback":221,"hasNonce":210,"hasCapCheck":210,"file":170,"line":75},"update_taxonomy_order","wp_ajax_update_taxonomy_order",[],[224,228,231,234,237,240],{"tag":225,"callback":226,"file":227,"line":184},"mwt-section-header","display_section_header","shortcodes.php",{"tag":229,"callback":230,"file":227,"line":152},"mwt-container","display_container",{"tag":232,"callback":233,"file":227,"line":155},"mwt-collections","display_collections",{"tag":235,"callback":236,"file":227,"line":173},"mwt-folders","display_folders",{"tag":238,"callback":239,"file":227,"line":75},"mwt-keywords","display_keywords",{"tag":241,"callback":242,"file":227,"line":177},"mwt-search","display_search",[],4,{"dangerousFunctions":246,"sqlUsage":247,"outputEscaping":257,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":282},[],{"prepared":138,"raw":248,"locations":249},3,[250,253,255],{"file":212,"line":251,"context":252},88,"$wpdb->get_results() with variable interpolation",{"file":212,"line":254,"context":252},106,{"file":212,"line":256,"context":252},147,{"escaped":204,"rawEcho":155,"locations":258},[259,261,262,264,266,267,269,271,273,274,276,278,280],{"file":212,"line":32,"context":260},"raw output",{"file":212,"line":196,"context":260},{"file":212,"line":263,"context":260},41,{"file":151,"line":265,"context":260},36,{"file":151,"line":200,"context":260},{"file":151,"line":268,"context":260},139,{"file":151,"line":270,"context":260},216,{"file":205,"line":272,"context":260},33,{"file":205,"line":196,"context":260},{"file":205,"line":275,"context":260},35,{"file":205,"line":277,"context":260},37,{"file":205,"line":279,"context":260},38,{"file":205,"line":281,"context":260},39,[283],{"name":284,"version":27,"knownCves":285},"Select2",[],[287,304,313,321],{"entryPoint":288,"graph":289,"unsanitizedCount":62,"severity":303},"ajax_collection (api.php:24)",{"nodes":290,"edges":301},[291,296],{"id":292,"type":293,"label":294,"file":212,"line":295},"n0","source","$_POST",25,{"id":297,"type":298,"label":299,"file":212,"line":32,"wp_function":300},"n1","sink","echo() [XSS]","echo",[302],{"from":292,"to":297,"sanitized":210},"medium",{"entryPoint":305,"graph":306,"unsanitizedCount":62,"severity":303},"ajax_collections (api.php:31)",{"nodes":307,"edges":311},[308,310],{"id":292,"type":293,"label":294,"file":212,"line":309},32,{"id":297,"type":298,"label":299,"file":212,"line":196,"wp_function":300},[312],{"from":292,"to":297,"sanitized":210},{"entryPoint":314,"graph":315,"unsanitizedCount":62,"severity":303},"ajax_folders (api.php:38)",{"nodes":316,"edges":319},[317,318],{"id":292,"type":293,"label":294,"file":212,"line":281},{"id":297,"type":298,"label":299,"file":212,"line":263,"wp_function":300},[320],{"from":292,"to":297,"sanitized":210},{"entryPoint":322,"graph":323,"unsanitizedCount":204,"severity":338},"\u003Capi> (api.php:0)",{"nodes":324,"edges":335},[325,327,328,331],{"id":292,"type":293,"label":326,"file":212,"line":295},"$_POST (x3)",{"id":297,"type":298,"label":299,"file":212,"line":32,"wp_function":300},{"id":329,"type":293,"label":330,"file":212,"line":281},"n2","$_POST (x2)",{"id":332,"type":298,"label":333,"file":212,"line":256,"wp_function":334},"n3","get_results() [SQLi]","get_results",[336,337],{"from":292,"to":297,"sanitized":210},{"from":329,"to":332,"sanitized":210},"high",{"summary":340,"deductions":341},"The \"photography-core\" v0.3.0 plugin exhibits a concerning security posture, primarily due to a significant number of unprotected entry points and a lack of robust security checks. While the absence of known CVEs and dangerous functions is positive, the static analysis reveals critical weaknesses.  Specifically, the presence of 4 AJAX handlers without authentication checks is a major red flag, creating direct avenues for unauthorized actions. Furthermore, the taint analysis indicates one high-severity flow with unsanitized paths, suggesting a potential for code injection or other serious vulnerabilities if this flow is triggered by user input.\n\nThe vulnerability history being empty is generally a good sign, suggesting the plugin hasn't had publicly disclosed critical flaws. However, in conjunction with the current static analysis findings, it might indicate that vulnerabilities exist but haven't been discovered or disclosed yet, or that the plugin's usage is low, thus less of a target. The plugin also shows weaknesses in output escaping, with only 28% of outputs being properly escaped, potentially leading to Cross-Site Scripting (XSS) vulnerabilities.\n\nOverall, the plugin has significant areas for improvement in its security implementation. The lack of capability checks and nonce checks on AJAX handlers, combined with the high-severity taint flow and poor output escaping, create a substantial risk. While it doesn't have a history of public vulnerabilities, the current static analysis warrants caution. Addressing the unprotected AJAX handlers and the high-severity taint flow should be prioritized.",[342,344,346,349,351,353],{"reason":343,"points":163},"AJAX handlers without auth checks",{"reason":345,"points":152},"High severity taint flow",{"reason":347,"points":348},"Output escaping is low",6,{"reason":350,"points":206},"No nonce checks",{"reason":352,"points":206},"No capability checks",{"reason":354,"points":244},"SQL queries with low prepared statement usage","2026-03-16T22:18:53.742Z",{"wat":357,"direct":381},{"assetPaths":358,"generatorPatterns":365,"scriptPaths":366,"versionParams":374},[359,360,361,362,363,364],"\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fcss\u002Fblocks.css","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fcss\u002Fcolors.css","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fcss\u002Fvendors.css","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fjs\u002Fback-end.js","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fjs\u002Ffront-end.js","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fjs\u002Fvendors.js",[],[367,368,369,370,371,372,373],"\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fapi.php","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fseo.php","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Ffeatured.php","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fplugins\u002Fwplr-sync.php","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fshortcodes.php","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Ffolders-order.php","\u002Fwp-content\u002Fplugins\u002Fphotography-core\u002Fblocks\u002Fblocks.php",[375,376,377,378,379,380],"photography-core\u002Fcss\u002Fblocks.css?ver=","photography-core\u002Fcss\u002Fcolors.css?ver=","photography-core\u002Fcss\u002Fvendors.css?ver=","photography-core\u002Fjs\u002Fback-end.js?ver=","photography-core\u002Fjs\u002Ffront-end.js?ver=","photography-core\u002Fjs\u002Fvendors.js?ver=",{"cssClasses":382,"htmlComments":384,"htmlAttributes":404,"restEndpoints":407,"jsGlobals":411,"shortcodeOutput":414},[383],"photography-core-admin-notice",[385,386,387,388,389,390,391,392,393,394,395,396,397,398,399,400,401,402,403]," Photography Core Core"," Photography Core: SEO"," Photography Core: Featured"," Photography Core: WPLR Sync"," Photography Core: Shortcodes"," Photography Core: Folders Order"," Photography Core: Gutenberg Blocks"," Photography Core: The core of the themes for photographers"," Photography Core: Copyright"," Photography Core: Author"," Photography Core: Description"," Photography Core: Plugin Name"," Photography Core: Plugin URI"," Photography Core: Version"," Photography Core: Dual licensed under the MIT and GPL licenses:"," Photography Core: This module is totally inspired from the excellent YIKES Simple Taxonomy Ordering Scripts by Yikes and Evan Herman."," Photography Core: However, it was modified to work only with the meow_folder taxonomy."," Photography Core: For the Gutenberg Editor."," Photography Core: The JS for the Gutenberg Editor.",[405,406],"data-photography-core","data-photography-core-id",[408,409,410],"\u002Fwp-json\u002Fphotography-core\u002Fv1\u002Fcollections","\u002Fwp-json\u002Fphotography-core\u002Fv1\u002Ffolders","\u002Fwp-json\u002Fphotography-core\u002Fv1\u002Fkeywords",[412,413],"PhotographyCore","photographyCore",[415,416,417],"[photography_gallery]","[photography_album]","[photography_breadcrumb]"]