[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQx6TVhDZZHVZcESvcQsmBTxF_BaWPmW4teNmmb1S_EQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":50,"analysis":135,"fingerprints":499},"piwigopress","PiwigoPress","2.33","vpiwigo","https:\u002F\u002Fprofiles.wordpress.org\u002Fvpiwigo\u002F","\u003Cp>On the one hand, PiwigoPress is a WordPress \u003Cstrong>Sidebar Widget\u003C\u002Fstrong> that links\u003Cbr \u002F>\nyour blog to some public pictures of a Piwigo gallery.  Thus, a Piwigo\u003Cbr \u002F>\ngallery with several public pictures in it is a prerequisite to make it\u003Cbr \u002F>\nworking. But even if you don’t have one yet, you can nonetheless give this\u003Cbr \u002F>\nplugin a try by using the Official Piwigo \u003Ca href=\"http:\u002F\u002Fpiwigo.org\u002Fdemo\u002F\" title=\"The demonstration gallery\" rel=\"nofollow ugc\">demonstration gallery\u003C\u002Fa> before\u003Cbr \u002F>\nsetting up your own gallery.\u003C\u002Fp>\n\u003Cp>PiwigoPress generates several highly valuable links in sidebars of your\u003Cbr \u002F>\nWordPress blog, all of them being optional: a thumbnail linking to\u003Cbr \u002F>\nthe corresponding picture page, menus directing to all albums defined\u003Cbr \u002F>\nas public in the gallery, several additional links to most recent, most\u003Cbr \u002F>\nviewed, most commented pictures, and more.\u003C\u002Fp>\n\u003Cp>On the other hand, by using \u003Cstrong>a shortcode\u003C\u002Fstrong> [PiwigoPress …] you can add\u003Cbr \u002F>\nany public picture of a Piwigo gallery. Here again you should try even\u003Cbr \u002F>\nthough you don’t have yet your Piwigo Gallery. Have a look with\u003Cbr \u002F>\n[PiwigoPress id=72 url=’http:\u002F\u002Fpiwigo.org\u002Fdemo’] in a post or page.\u003C\u002Fp>\n\u003Cp>Above all, PiwigoPress provides a shortcode \u003Cstrong>generator\u003C\u002Fstrong>. Each time you\u003Cbr \u002F>\nadd some pictures to your gallery you will be able to add a post related\u003Cbr \u002F>\nto your last uploaded photos. So, your friends and family are going to\u003Cbr \u002F>\nlike your photos and Search Engines are going reference your gallery with\u003Cbr \u002F>\nthe refbacks provided by PiwigoPress.\u003C\u002Fp>\n\u003Cp>When you’ve finished testing and want to create you own gallery, go to the\u003Cbr \u002F>\nPiwigo \u003Ca href=\"http:\u002F\u002Fpiwigo.org\u002Fbasics\u002Fdownloads\" title=\"Piwigo download page\" rel=\"nofollow ugc\">download page\u003C\u002Fa>, where you’ll find all the links you might need.\u003C\u002Fp>\n\u003Cp>Try “NetInstall” first. If it fails, switch to the “Package” download and\u003Cbr \u002F>\nfollow the full installation procedure. When ready, if you are a bit lost,\u003Cbr \u002F>\njust try Photos add page sheets (Web form, Applications, FTP + Synchronization)\u003Cbr \u002F>\nin your Piwigo gallery administration page.\u003C\u002Fp>\n\u003Cp>Development of PiwigoPress is open to contributions, please use the\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fnorbusan\u002Fpiwigopress\" rel=\"nofollow ugc\">github page\u003C\u002Fa> for patches, bug reports, and issues.\u003C\u002Fp>\n\u003Ch3>Copyright\u002FLicense\u003C\u002Fh3>\n\u003Cp>PiwigoPress WordPress Plugin\u003C\u002Fp>\n\u003Cp>Copyright 2009-2012  VDigital\u003Cbr \u002F>\n  Copyright 2014-2024  Norbert Preining\u003C\u002Fp>\n\u003Cp>Contributions by\u003C\u002Fp>\n\u003Cp>Rüdiger Schulz 2015 (copyright transfered)\u003Cbr \u002F>\n  Anton Lavrov 2015\u003C\u002Fp>\n\u003Cp>Anton Lavrov’s contribution are under GPLv2+:\u003Cbr \u002F>\n  On Wed, 15 Jul 2015, Anton Lavrov wrote:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Hi Norbert,\u003C\u002Fp>\n\u003Cp>I hereby confirm that my contributions are under GPLv2 or higher.\u003C\u002Fp>\n\u003Cp>Please let me know if this is not exactly the wording you need.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>PiwigoPress is distributed under the terms of the GNU GPL version 2+\u003C\u002Fp>\n\u003Cp>This program is free software: you can redistribute it and\u002For modify\u003Cbr \u002F>\nit under the terms of the GNU General Public License as published by\u003Cbr \u002F>\nthe Free Software Foundation, either version 2 of the License, or\u003Cbr \u002F>\n(at your option) any later version.\u003C\u002Fp>\n\u003Cp>This program is distributed in the hope that it will be useful,\u003Cbr \u002F>\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\u003Cbr \u002F>\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\u003Cbr \u002F>\nGNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License\u003Cbr \u002F>\nalong with this program.  If not, see if not, write to the Free Software\u003Cbr \u002F>\nFoundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA\u003C\u002Fp>\n","From any open API Piwigo gallery, swiftly include your photos in Posts\u002FPages and\u002For add randomized thumbnails and menus in your sidebar.",200,17749,66,7,"2024-10-21T07:11:00.000Z","4.9.29","2.8.4","",[20,21,22,23,24],"galleries","gallery","pictures","randomize","shortcode","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpiwigopress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpiwigopress.zip",71,1,"2025-02-24 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-26896","piwigopress-authenticated-contributor-stored-cross-site-scripting","PiwigoPress \u003C= 2.33 - Authenticated (Contributor+) Stored Cross-Site Scripting","The PiwigoPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.33 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.33","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-03-03 18:13:20",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4f83e20b-b763-4ef7-b703-4b37f679838b?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":47,"trust_score":48,"computed_at":49},30,74,"2026-04-04T16:28:37.706Z",[51,72,84,101,112],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":28,"last_updated":62,"tested_up_to":63,"requires_at_least":64,"requires_php":18,"tags":65,"homepage":68,"download_link":69,"security_score":70,"vuln_count":71,"unpatched_count":71,"last_vuln_date":37,"fetched_at":30},"is-circular-photo-gallery","IS Circular Photo Gallery","1.9","Irena0575","https:\u002F\u002Fprofiles.wordpress.org\u002Firena0575\u002F","\u003Cp>Display images as circle on the current page or post using the basic JQuery library.\u003C\u002Fp>\n\u003Cp>There are three ways to insert a IS Circular Photo Gallery:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Select the images attached to your post\u002Fpage with the shortcode [wp-iscircularphoto]\u003C\u002Fli>\n\u003Cli>Upload your pictures to a subfolder and use the shortcode [wp-iscircularphoto dir=SUBFOLDER]\u003C\u002Fli>\n\u003Cli>Tag images in your media library using the Media Tags plugin by Paul Menard and use the shortcode [wp-iscircularphoto mediatag=tagslug]\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Multiple galleries per page\u003C\u002Fli>\n\u003Cli>Configure the background color, text color, container width and choose black or white for the scrollbar. \u003C\u002Fli>\n\u003Cli>Auto-rotation of the images\u003C\u002Fli>\n\u003Cli>Configure the starting slide number\u003C\u002Fli>\n\u003Cli>Touch control of the scrollbar\u003C\u002Fli>\n\u003Cli>Optional link field in the image editor to link an image to an URL instead of the lightbox\u003C\u002Fli>\n\u003Cli>Option to open links in the same window or a new window\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable automatic rotation for each instance of a gallery\u003C\u002Fli>\n\u003Cli>Supports full text description in the popup window of a gallery from the media library\u003C\u002Fli>\n\u003C\u002Ful>\n","Circle style picture gallery with Lightbox popups. Uses images from either the Wordpress Media Library or an uploaded directory of images.",20,6548,100,"2014-01-13T22:44:00.000Z","3.5.2","3.0.1",[66,20,21,67,22],"circular","picture","http:\u002F\u002Fwww.polaroidgallery.hostoi.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fis-circular-photo-gallery.zip",85,0,{"slug":73,"name":74,"version":75,"author":55,"author_profile":56,"description":76,"short_description":77,"active_installs":78,"downloaded":79,"rating":71,"num_ratings":71,"last_updated":80,"tested_up_to":63,"requires_at_least":64,"requires_php":18,"tags":81,"homepage":68,"download_link":83,"security_score":70,"vuln_count":71,"unpatched_count":71,"last_vuln_date":37,"fetched_at":30},"is-photo-gallery","IS Photo Gallery","1.0","\u003Cp>Display images on the current page or post using the basic JQuery library.\u003C\u002Fp>\n\u003Cp>There are three ways to insert a IS Photo Gallery:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Select the images attached to your post\u002Fpage with the shortcode [wp-is3dphoto]\u003C\u002Fli>\n\u003Cli>Upload your pictures to a subfolder and use the shortcode [wp-is3dphoto dir=SUBFOLDER]\u003C\u002Fli>\n\u003Cli>Tag images in your media library using the Media Tags plugin by Paul Menard and use the shortcode [wp-is3dphoto mediatag=tagslug]\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Multiple galleries per page\u003C\u002Fli>\n\u003Cli>Configure the background color, text color, container width and choose black or white for the scrollbar. \u003C\u002Fli>\n\u003Cli>Auto-rotation of the images\u003C\u002Fli>\n\u003Cli>Configure the starting slide number\u003C\u002Fli>\n\u003Cli>Touch control of the scrollbar\u003C\u002Fli>\n\u003Cli>Optional link field in the image editor to link an image to an URL instead of the lightbox\u003C\u002Fli>\n\u003Cli>Option to open links in the same window or a new window\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable automatic rotation for each instance of a gallery\u003C\u002Fli>\n\u003Cli>Supports full text description in the popup window of a gallery from the media library\u003C\u002Fli>\n\u003C\u002Ful>\n","Picture gallery with Lightbox popups. Uses images from either the Wordpress Media Library or an uploaded directory of images.",10,2112,"2014-03-27T17:49:00.000Z",[82,20,21,67,22],"coverflow","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fis-photo-gallery.zip",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":78,"downloaded":92,"rating":61,"num_ratings":28,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":18,"tags":96,"homepage":99,"download_link":100,"security_score":70,"vuln_count":71,"unpatched_count":71,"last_vuln_date":37,"fetched_at":30},"lil-gallery","Li'l Gallery","0.6","andreyk","https:\u002F\u002Fprofiles.wordpress.org\u002Fandreyk\u002F","\u003Cp>Big main picture of a gallery and thumbnails of others, and the main image changes when one clicks thumbnails. Replaces the standard wordpress [gallery] shortcode output. No flash. Available options: width, heigth, thumbnail height, size, link to image file or not.\u003C\u002Fp>\n","Big main picture of a gallery and thumbnails of others, and the main image changes when one clicks thumbnails.",4583,"2012-08-12T21:03:00.000Z","3.4.2","2.9.2",[20,21,97,98,24],"image","images","http:\u002F\u002Fandrey.eto-ya.com\u002Fwordpress\u002Fmy-plugins\u002Flil-gallery","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flil-gallery.0.6.zip",{"slug":102,"name":103,"version":104,"author":55,"author_profile":56,"description":105,"short_description":106,"active_installs":78,"downloaded":107,"rating":71,"num_ratings":71,"last_updated":108,"tested_up_to":63,"requires_at_least":64,"requires_php":18,"tags":109,"homepage":68,"download_link":111,"security_score":70,"vuln_count":71,"unpatched_count":71,"last_vuln_date":37,"fetched_at":30},"polaroid-plus-gallery","WP-Polaroid Plus","1.5","\u003Cp>Display images as polaroid pictures on the current page or post using the basic JQuery library.\u003C\u002Fp>\n\u003Cp>There are three ways to insert a WP-Polaroid Plus gallery:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Select the images attached to your post\u002Fpage with the shortcode [wp-polaroidplus]\u003C\u002Fli>\n\u003Cli>Upload your pictures to a subfolder and use the shortcode [wp-polaroidplus dir=SUBFOLDER]\u003C\u002Fli>\n\u003Cli>Tag images in your media library using the Media Tags plugin by Paul Menard and use the shortcode [wp-polaroidplus mediatag=tagslug]\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Multiple galleries per page\u003C\u002Fli>\n\u003Cli>Configure the background color, text color, container width and choose black or white for the scrollbar. \u003C\u002Fli>\n\u003Cli>Auto-rotation of the images\u003C\u002Fli>\n\u003Cli>Configure the starting slide number\u003C\u002Fli>\n\u003Cli>Touch control of the scrollbar\u003C\u002Fli>\n\u003Cli>Optional link field in the image editor to link an image to an URL instead of the lightbox\u003C\u002Fli>\n\u003Cli>Option to open links in the same window or a new window\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable automatic rotation for each instance of a gallery\u003C\u002Fli>\n\u003Cli>Supports full text description in the popup window of a gallery from the media library\u003C\u002Fli>\n\u003C\u002Ful>\n","Polaroid Plus style picture gallery with Lightbox popups. Uses images from either the Wordpress Media Library or an uploaded directory of images.",2715,"2014-04-27T20:26:00.000Z",[20,21,110,67,22],"imageflow","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpolaroid-plus-gallery.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":122,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":130,"download_link":131,"security_score":132,"vuln_count":133,"unpatched_count":71,"last_vuln_date":134,"fetched_at":30},"responsive-lightbox","Responsive Lightbox & Gallery","2.7.6","dFactory","https:\u002F\u002Fprofiles.wordpress.org\u002Fdfactory\u002F","\u003Ch4>Everything You Need in a WordPress Gallery Plugin\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fresponsive-lightbox\u002F?utm_source=repo&utm_medium=link&utm_campaign=responsive-lightbox-plugin-free\" rel=\"nofollow ugc\">Responsive Lightbox and Gallery plugin\u003C\u002Fa> is a fully fledged WordPress gallery plugin with a powerful Drag & Drop Gallery Builder and Lightbox functionality that’s used daily by more than 100,000 active users and downloaded over 3 Million times.\u003C\u002Fp>\n\u003Cp>The beauty of it is how easy it is for you to customize it and enhance its features thanks to \u003Ca href=\"?utm_source=repo&utm_medium=link&utm_campaign=responsive-lightbox-plugin-free\" rel=\"nofollow ugc\">free and premium extensions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Why You Should Use Responsive Lightbox and Gallery Plugin\u003C\u002Fh4>\n\u003Ch4>Easiest Gallery Builder\u003C\u002Fh4>\n\u003Cp>Say goodbye to coding. With the built-in drag and drop Gallery builder, you will be able to create beautiful galleries, customize them, and add your preferred styles in minutes.\u003C\u002Fp>\n\u003Ch4>Vast Customization Options\u003C\u002Fh4>\n\u003Cp>Responsive Lightbox and Gallery plugin is packed with customization options per each gallery and lightbox style so you can tweak them to suit your website’s audience with just a few clicks.\u003C\u002Fp>\n\u003Ch4>SEO-Friendly and Lightweight\u003C\u002Fh4>\n\u003Cp>Responsive Lightbox and Gallery plugin is built keeping SEO and performance in mind, making it lightweight and fast when it comes to page load.\u003C\u002Fp>\n\u003Ch4>Premium Extensions\u003C\u002Fh4>\n\u003Cp>Looking to provide a premium experience to your visitors? Responsive Lightbox and Gallery plugin offers plenty of premium extensions to provide you with even more flexibility and customization options.\u003C\u002Fp>\n\u003Cp>Need more reasons? \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fresponsive-lightbox\u002F?utm_source=repo&utm_medium=link&utm_campaign=responsive-lightbox-plugin-free\" rel=\"nofollow ugc\">Check them out here\u003C\u002Fa>!\u003C\u002Fp>\n\u003Ch4>What some of our 100,000+ active users say about Responsive Lightbox and Gallery plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Amazing Gallery plugin!\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Versatile and powerful for both sliders and galleries, many features and style options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Really easy to use. Takes all the fiddling out of the process of creating a responsive gallery\u002Flightbox.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>I needed a lightbox plugin that works reliably. This marvelous plugin does the magic. Now I can spend more on my photography and less time customizing WordPress.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>This plugin is quite flexible and effective. The functionality choices are broad and all quite easy to configure.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Need more galley options?\u003C\u002Fh4>\n\u003Cp>Responsive Lightbox and Gallery plugin can be extended with our \u003Ca href=\"?utm_source=repo&utm_medium=link&utm_campaign=responsive-lightbox-plugin-free\" rel=\"nofollow ugc\">premium extensions\u003C\u002Fa>:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Premium Extensions:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fphoto-art-bundle\u002F\" rel=\"nofollow ugc\">Photo & Art bundle\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fjustified-gallery\u002F\" rel=\"nofollow ugc\">Justified Gallery\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fexpander-gallery\u002F\" rel=\"nofollow ugc\">Expander Gallery\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fhidden-gallery\u002F\" rel=\"nofollow ugc\">Hidden Gallery\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fmasonry-gallery-pro\u002F\" rel=\"nofollow ugc\">Masonry Image Gallery\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fslider-gallery\u002F\" rel=\"nofollow ugc\">Slider Gallery\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Flightcase-lightbox\u002F\" rel=\"nofollow ugc\">Lightcase Lightbox\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fphotoswipe-lightbox\u002F\" rel=\"nofollow ugc\">PhotoSwipe Lightbox\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Flightgallery-lightbox\u002F\" rel=\"nofollow ugc\">Lightgallery Lightbox\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fstrip-lightbox\u002F\" rel=\"nofollow ugc\">Strip Lightbox\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Ffancybox-pro\u002F\" rel=\"nofollow ugc\">Fancybox Pro\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Flightbox-comments\u002F\" rel=\"nofollow ugc\">Lightbox Comments\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Full Feature List\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Powerful and easy-to-use gallery builder\u003C\u002Fli>\n\u003Cli>3 beautiful gallery templates – Grid, Slider and Masonry\u003C\u002Fli>\n\u003Cli>8 responsive lightbox scripts (SwipeBox, prettyPhoto, Nivo Lightbox, Image Lightbox, Tos “R” Us, Featherlight, Magnific Popup, GLightbox)\u003C\u002Fli>\n\u003Cli>Create galleries from Media Library or Post attached images\u003C\u002Fli>\n\u003Cli>Media Folders with a drag & drop interface\u003C\u002Fli>\n\u003Cli>Access to millions of images through Remote Library\u003C\u002Fli>\n\u003Cli>Option to import remote images to Media Library\u003C\u002Fli>\n\u003Cli>Gutenberg editor compatibility\u003C\u002Fli>\n\u003Cli>Iframe, Ajax, HTML5 and Inline lightbox content support\u003C\u002Fli>\n\u003Cli>Advanced pagination, incl. AJAX and infinite scroll\u003C\u002Fli>\n\u003Cli>Automatically add lightbox to WordPress image galleries\u003C\u002Fli>\n\u003Cli>Automatically add lightbox to WordPress image links\u003C\u002Fli>\n\u003Cli>Automatically add lightbox to WordPress video links (YouTube, Vimeo)\u003C\u002Fli>\n\u003Cli>Automatically add lightbox to widgets content\u003C\u002Fli>\n\u003Cli>Automatically add lightbox to WordPress comments content\u003C\u002Fli>\n\u003Cli>WooCommerce product gallery support\u003C\u002Fli>\n\u003Cli>Popular Page builders compatibility\u003C\u002Fli>\n\u003Cli>Gallery widget\u003C\u002Fli>\n\u003Cli>Single image widget\u003C\u002Fli>\n\u003Cli>Option to display single post images as a gallery\u003C\u002Fli>\n\u003Cli>Option to modify native WP gallery links image size\u003C\u002Fli>\n\u003Cli>Option to set gallery images title from image title, caption, alt or description\u003C\u002Fli>\n\u003Cli>Option to force lightbox for custom WP gallery replacements like Jetpack tiled galleries\u003C\u002Fli>\n\u003Cli>Option to trigger lightbox on custom jquery events\u003C\u002Fli>\n\u003Cli>Option to conditionally load scripts and styles only on pages that have images or galleries in post content\u003C\u002Fli>\n\u003Cli>Highly customizable settings for each of the lightbox scripts\u003C\u002Fli>\n\u003Cli>Highly customizable settings for each gallery\u003C\u002Fli>\n\u003Cli>Multisite support\u003C\u002Fli>\n\u003Cli>.pot file for translations included\u003C\u002Fli>\n\u003C\u002Ful>\n","The most popular lightbox plugin and responsive gallery builder for WordPress.",100000,6481728,98,1991,"2026-03-12T09:29:00.000Z","6.9.4","6.0","7.0",[20,21,97,98,129],"lightbox","http:\u002F\u002Fwww.dfactory.co\u002Fproducts\u002Fresponsive-lightbox\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fresponsive-lightbox.2.7.6.zip",89,13,"2026-02-26 00:00:00",{"attackSurface":136,"codeSignals":191,"taintFlows":316,"riskAssessment":479,"analyzedAt":498},{"hooks":137,"ajaxHandlers":175,"restRoutes":183,"shortcodes":184,"cronEvents":188,"entryPointCount":189,"unprotectedCount":190},[138,144,147,150,153,156,160,165,168,171],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","widgets_init","anonymous","piwigopress.php",254,{"type":139,"name":145,"callback":141,"file":142,"line":146},"wp_head",269,{"type":139,"name":148,"callback":141,"file":142,"line":149},"wp_footer",288,{"type":139,"name":151,"callback":141,"file":142,"line":152},"admin_head",326,{"type":139,"name":154,"callback":141,"file":142,"line":155},"init",328,{"type":157,"name":158,"callback":141,"priority":78,"file":142,"line":159},"filter","plugin_row_meta",346,{"type":157,"name":161,"callback":162,"priority":163,"file":164,"line":78},"media_buttons_context","Add_new_button",9999,"piwigopress_admin.php",{"type":139,"name":166,"callback":141,"file":164,"line":167},"in_admin_header",11,{"type":139,"name":169,"callback":141,"file":164,"line":170},"in_admin_footer",12,{"type":139,"name":172,"callback":173,"file":164,"line":174},"save_post","Save_options",14,[176,180],{"action":177,"nopriv":178,"callback":141,"hasNonce":178,"hasCapCheck":178,"file":142,"line":179},"pwgp-categories",false,314,{"action":181,"nopriv":178,"callback":141,"hasNonce":178,"hasCapCheck":178,"file":142,"line":182},"pwgp-thumbnails",321,[],[185],{"tag":5,"callback":186,"file":142,"line":187},"PiwigoPress_photoblog",35,[],3,2,{"dangerousFunctions":192,"sqlUsage":209,"outputEscaping":214,"fileOperations":71,"externalRequests":28,"nonceChecks":28,"capabilityChecks":314,"bundledLibraries":315},[193,197,200,203,206],{"fn":194,"file":142,"line":195,"context":196},"unserialize",121,"$thumbc = unserialize($response['body']);",{"fn":194,"file":164,"line":198,"context":199},42,"extract( unserialize($previous_options) );",{"fn":194,"file":201,"line":202,"context":196},"piwigopress_thumbnails_reloader.php",38,{"fn":194,"file":204,"line":205,"context":196},"PiwigoPress_widget.php",68,{"fn":194,"file":204,"line":207,"context":208},144,"$cats = unserialize($response['body']);",{"prepared":71,"raw":28,"locations":210},[211],{"file":204,"line":212,"context":213},27,"$wpdb->get_results() with variable interpolation",{"escaped":78,"rawEcho":215,"locations":216},48,[217,220,222,224,226,228,230,233,236,238,240,242,244,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276,278,280,282,284,285,287,289,291,293,295,297,299,301,303,305,307,309,310,312],{"file":142,"line":218,"context":219},122,"raw output",{"file":142,"line":221,"context":219},261,{"file":142,"line":223,"context":219},265,{"file":142,"line":225,"context":219},307,{"file":142,"line":227,"context":219},310,{"file":164,"line":229,"context":219},115,{"file":231,"line":232,"context":219},"PiwigoPress_get.php",31,{"file":234,"line":235,"context":219},"PiwigoPress_options.php",55,{"file":234,"line":237,"context":219},61,{"file":234,"line":239,"context":219},65,{"file":234,"line":241,"context":219},70,{"file":234,"line":243,"context":219},88,{"file":234,"line":245,"context":219},93,{"file":234,"line":247,"context":219},112,{"file":234,"line":249,"context":219},136,{"file":234,"line":251,"context":219},176,{"file":234,"line":253,"context":219},201,{"file":234,"line":255,"context":219},205,{"file":234,"line":257,"context":219},211,{"file":234,"line":259,"context":219},217,{"file":234,"line":261,"context":219},218,{"file":234,"line":263,"context":219},219,{"file":234,"line":265,"context":219},220,{"file":234,"line":267,"context":219},226,{"file":234,"line":269,"context":219},234,{"file":201,"line":271,"context":219},49,{"file":204,"line":273,"context":219},56,{"file":204,"line":275,"context":219},57,{"file":204,"line":277,"context":219},73,{"file":204,"line":279,"context":219},102,{"file":204,"line":281,"context":219},104,{"file":204,"line":283,"context":219},109,{"file":204,"line":229,"context":219},{"file":204,"line":286,"context":219},123,{"file":204,"line":288,"context":219},129,{"file":204,"line":290,"context":219},134,{"file":204,"line":292,"context":219},135,{"file":204,"line":294,"context":219},145,{"file":204,"line":296,"context":219},147,{"file":204,"line":298,"context":219},158,{"file":204,"line":300,"context":219},161,{"file":204,"line":302,"context":219},164,{"file":204,"line":304,"context":219},167,{"file":204,"line":306,"context":219},170,{"file":204,"line":308,"context":219},173,{"file":204,"line":251,"context":219},{"file":204,"line":311,"context":219},179,{"file":204,"line":313,"context":219},186,5,[],[317,348,391,400,411,432,443,460],{"entryPoint":318,"graph":319,"unsanitizedCount":28,"severity":39},"PiwigoPress_ajax_categories (piwigopress.php:291)",{"nodes":320,"edges":343},[321,326,331,334,338],{"id":322,"type":323,"label":324,"file":142,"line":325},"n0","source","$_POST",292,{"id":327,"type":328,"label":329,"file":142,"line":227,"wp_function":330},"n1","sink","echo() [XSS]","echo",{"id":332,"type":323,"label":324,"file":142,"line":333},"n2",303,{"id":335,"type":336,"label":337,"file":142,"line":333},"n3","transform","→ pwg_get_contents()",{"id":339,"type":328,"label":340,"file":231,"line":341,"wp_function":342},"n4","wp_remote_get() [SSRF]",32,"wp_remote_get",[344,346,347],{"from":322,"to":327,"sanitized":345},true,{"from":332,"to":335,"sanitized":178},{"from":335,"to":339,"sanitized":178},{"entryPoint":349,"graph":350,"unsanitizedCount":190,"severity":39},"\u003Cpiwigopress> (piwigopress.php:0)",{"nodes":351,"edges":382},[352,355,359,360,362,363,365,367,369,372,374,376,378,380],{"id":322,"type":323,"label":353,"file":142,"line":354},"$_SERVER",107,{"id":327,"type":328,"label":356,"file":142,"line":357,"wp_function":358},"update_option() [Settings Manipulation]",116,"update_option",{"id":332,"type":323,"label":353,"file":142,"line":354},{"id":335,"type":328,"label":361,"file":142,"line":195,"wp_function":194},"unserialize() [Object Injection]",{"id":339,"type":323,"label":353,"file":142,"line":354},{"id":364,"type":328,"label":329,"file":142,"line":218,"wp_function":330},"n5",{"id":366,"type":323,"label":324,"file":142,"line":325},"n6",{"id":368,"type":328,"label":329,"file":142,"line":227,"wp_function":330},"n7",{"id":370,"type":323,"label":353,"file":142,"line":371},"n8",119,{"id":373,"type":336,"label":337,"file":142,"line":371},"n9",{"id":375,"type":328,"label":340,"file":231,"line":341,"wp_function":342},"n10",{"id":377,"type":323,"label":324,"file":142,"line":333},"n11",{"id":379,"type":336,"label":337,"file":142,"line":333},"n12",{"id":381,"type":328,"label":340,"file":231,"line":341,"wp_function":342},"n13",[383,384,385,386,387,388,389,390],{"from":322,"to":327,"sanitized":345},{"from":332,"to":335,"sanitized":345},{"from":339,"to":364,"sanitized":345},{"from":366,"to":368,"sanitized":345},{"from":370,"to":373,"sanitized":178},{"from":373,"to":375,"sanitized":178},{"from":377,"to":379,"sanitized":178},{"from":379,"to":381,"sanitized":178},{"entryPoint":392,"graph":393,"unsanitizedCount":28,"severity":39},"\u003CPiwigoPress_get> (PiwigoPress_get.php:0)",{"nodes":394,"edges":398},[395,397],{"id":322,"type":323,"label":353,"file":231,"line":396},26,{"id":327,"type":328,"label":340,"file":231,"line":341,"wp_function":342},[399],{"from":322,"to":327,"sanitized":178},{"entryPoint":401,"graph":402,"unsanitizedCount":28,"severity":410},"Save_options (piwigopress_admin.php:16)",{"nodes":403,"edges":408},[404,406],{"id":322,"type":323,"label":324,"file":164,"line":405},25,{"id":327,"type":328,"label":356,"file":164,"line":407,"wp_function":358},28,[409],{"from":322,"to":327,"sanitized":178},"low",{"entryPoint":412,"graph":413,"unsanitizedCount":430,"severity":431},"PiwigoPress_onephoto (piwigopress.php:89)",{"nodes":414,"edges":424},[415,416,417,418,419,420,421,422,423],{"id":322,"type":323,"label":353,"file":142,"line":354},{"id":327,"type":328,"label":356,"file":142,"line":357,"wp_function":358},{"id":332,"type":323,"label":353,"file":142,"line":354},{"id":335,"type":328,"label":361,"file":142,"line":195,"wp_function":194},{"id":339,"type":323,"label":353,"file":142,"line":354},{"id":364,"type":328,"label":329,"file":142,"line":218,"wp_function":330},{"id":366,"type":323,"label":353,"file":142,"line":371},{"id":368,"type":336,"label":337,"file":142,"line":371},{"id":370,"type":328,"label":340,"file":231,"line":341,"wp_function":342},[425,426,427,428,429],{"from":322,"to":327,"sanitized":178},{"from":332,"to":335,"sanitized":178},{"from":339,"to":364,"sanitized":178},{"from":366,"to":368,"sanitized":178},{"from":368,"to":370,"sanitized":178},4,"high",{"entryPoint":433,"graph":434,"unsanitizedCount":190,"severity":431},"\u003Cpiwigopress_admin> (piwigopress_admin.php:0)",{"nodes":435,"edges":440},[436,437,438,439],{"id":322,"type":323,"label":324,"file":164,"line":405},{"id":327,"type":328,"label":356,"file":164,"line":407,"wp_function":358},{"id":332,"type":323,"label":324,"file":164,"line":405},{"id":335,"type":328,"label":361,"file":164,"line":198,"wp_function":194},[441,442],{"from":322,"to":327,"sanitized":178},{"from":332,"to":335,"sanitized":178},{"entryPoint":444,"graph":445,"unsanitizedCount":189,"severity":431},"\u003Cpiwigopress_thumbnails_reloader> (piwigopress_thumbnails_reloader.php:0)",{"nodes":446,"edges":455},[447,449,450,451,452,453,454],{"id":322,"type":323,"label":324,"file":201,"line":448},8,{"id":327,"type":328,"label":361,"file":201,"line":202,"wp_function":194},{"id":332,"type":323,"label":324,"file":201,"line":448},{"id":335,"type":328,"label":329,"file":201,"line":271,"wp_function":330},{"id":339,"type":323,"label":324,"file":201,"line":187},{"id":364,"type":336,"label":337,"file":201,"line":187},{"id":366,"type":328,"label":340,"file":231,"line":341,"wp_function":342},[456,457,458,459],{"from":322,"to":327,"sanitized":178},{"from":332,"to":335,"sanitized":178},{"from":339,"to":364,"sanitized":178},{"from":364,"to":366,"sanitized":178},{"entryPoint":461,"graph":462,"unsanitizedCount":478,"severity":431},"\u003CPiwigoPress_widget> (PiwigoPress_widget.php:0)",{"nodes":463,"edges":473},[464,466,467,469,470,471,472],{"id":322,"type":323,"label":465,"file":204,"line":133},"$_SERVER (x2)",{"id":327,"type":328,"label":361,"file":204,"line":205,"wp_function":194},{"id":332,"type":323,"label":468,"file":204,"line":133},"$_SERVER (x12)",{"id":335,"type":328,"label":329,"file":204,"line":281,"wp_function":330},{"id":339,"type":323,"label":465,"file":204,"line":13},{"id":364,"type":336,"label":337,"file":204,"line":13},{"id":366,"type":328,"label":340,"file":231,"line":341,"wp_function":342},[474,475,476,477],{"from":322,"to":327,"sanitized":178},{"from":332,"to":335,"sanitized":178},{"from":339,"to":364,"sanitized":178},{"from":364,"to":366,"sanitized":178},16,{"summary":480,"deductions":481},"The piwigopress plugin v2.33 exhibits several concerning security weaknesses, despite some positive indicators. While it has a relatively small attack surface and includes some capability checks, the significant presence of unsanitized input flows, particularly in AJAX handlers and raw SQL queries, points to a high risk of exploitation. The lack of proper output escaping in a substantial portion of its code further exacerbates these risks, making it susceptible to cross-site scripting vulnerabilities.\n\nThe plugin's vulnerability history, including a known medium-severity CVE with a recent discovery date, suggests a pattern of security issues that may not be promptly addressed. The presence of the `unserialize` function without apparent safeguards is a critical red flag, as it can lead to remote code execution if improperly handled user-supplied data is processed. The raw SQL queries further increase the risk of SQL injection attacks. Coupled with a lack of nonce checks on unprotected AJAX handlers, an attacker could potentially manipulate data or execute arbitrary code.\n\nIn conclusion, while the plugin demonstrates some basic security measures like capability checks, the identified vulnerabilities in static analysis and the concerning vulnerability history paint a picture of a plugin that requires significant security improvements. The unprotected entry points, unsanitized data flows, raw SQL usage, and history of vulnerabilities collectively indicate a moderate to high security risk.",[482,485,487,489,491,494,496],{"reason":483,"points":484},"Unpatched CVE",15,{"reason":486,"points":170},"High severity taint flows",{"reason":488,"points":78},"Unprotected AJAX handlers",{"reason":490,"points":448},"Raw SQL queries without prepared statements",{"reason":492,"points":493},"Low output escaping percentage",6,{"reason":495,"points":314},"Dangerous function 'unserialize' used",{"reason":497,"points":14},"Missing nonce checks on AJAX","2026-03-16T20:17:59.827Z",{"wat":500,"direct":507},{"assetPaths":501,"generatorPatterns":504,"scriptPaths":505,"versionParams":506},[502,503],"\u002Fwp-content\u002Fplugins\u002Fpiwigopress\u002Fcss\u002Fpiwigopress-style.css","\u002Fwp-content\u002Fplugins\u002Fpiwigopress\u002Fcss\u002Fpiwigopress-widget.css",[],[],[],{"cssClasses":508,"htmlComments":514,"htmlAttributes":520,"restEndpoints":530,"jsGlobals":531,"shortcodeOutput":532},[509,510,511,512,513,186,5],"PWGP_shortcode","PWGP_photo","PWGP_caption","PWGP_name","PWGP_desc",[515,516,517,518,519],"\u003C!-- PiwigoPress 'id' attribute in error -->","\u003C!-- DEBUG","-->","\u003C!-- PiwigoPress Started -->","\u003C!-- PiwigoPress Ended -->",[521,522,523,524,525,526,527,528,529],"data-pwgp-id","data-pwgp-size","data-pwgp-url","data-pwgp-lnktype","data-pwgp-opntype","data-pwgp-name","data-pwgp-desc","data-pwgp-class","data-pwgp-style",[],[5],[533,534,535,536,537],"\u003Cdiv class=\"PWGP_shortcode","\u003Cimg class=\"PWGP_photo\"","\u003Cblockquote class=\"PWGP_caption\">","\u003Cdiv class=\"PWGP_name\">","\u003Cdiv class=\"PWGP_desc\">"]