[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fVt-37RE9kP8uoYGartIX8VqVJOTeRV4yLhBTuzhXwwg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":126,"fingerprints":206},"pixx-io","pixx.io","2.1.1","pixx.io GmbH","https:\u002F\u002Fprofiles.wordpress.org\u002Fpixxio\u002F","\u003Cp>Integrate pixx.io DAM Digital Asset Management into WordPress. Use files from your pixx.io media pool with WordPress easily and without any detour.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>You can easily import image files into your WordPress library with our plugin.\u003C\u002Fp>\n\u003Cp>If you use Gutenberg or the Classic Editor, you can import the images directly from pixx.io into your media library and use them from there.\u003C\u002Fp>\n\u003Cp>Otherwise you can just import the images in the media overview.\u003C\u002Fp>\n\u003Cp>When importing into your WordPress library you can choose the file format. Also, there is a preview to choose from where your image will be imported in JPEG format with a maximum width of 1000px.\u003C\u002Fp>\n","Integrate pixx.io DAM Digital Asset Management into WordPress. Use files from your pixx.io media pool with WordPress easily and without any detour.",90,2261,0,"2025-11-12T09:48:00.000Z","6.8.5","6.0","7.4",[19,20,21,22],"dam","digital-asset-management","pixx","pixxio","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpixx-io.2.1.1.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":22,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},1,30,94,"2026-04-04T07:16:02.042Z",[35,53,70,86,104],{"slug":36,"name":37,"version":38,"author":37,"author_profile":39,"description":40,"short_description":41,"active_installs":25,"downloaded":42,"rating":13,"num_ratings":13,"last_updated":43,"tested_up_to":15,"requires_at_least":44,"requires_php":23,"tags":45,"homepage":48,"download_link":49,"security_score":50,"vuln_count":51,"unpatched_count":13,"last_vuln_date":52,"fetched_at":27},"canto","Canto","3.1.1","https:\u002F\u002Fprofiles.wordpress.org\u002Fflightbycanto\u002F","\u003Cp>Simplify collaboration: Publish media from Canto to WordPress. Browse\u002Fsearch your library directly. Inserted images save to WordPress.\u003C\u002Fp>\n","Find & publish creative assets to WordPress easily, no email or folder search needed, with Canto's digital asset management.",14826,"2025-12-23T05:35:00.000Z","5.0",[36,19,20,46,47],"file-storage","photo-library","https:\u002F\u002Fwww.canto.com\u002Fintegrations\u002Fwordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcanto.3.1.1.zip",89,7,"2024-06-13 15:59:14",{"slug":54,"name":55,"version":56,"author":54,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":13,"num_ratings":13,"last_updated":62,"tested_up_to":63,"requires_at_least":16,"requires_php":64,"tags":65,"homepage":23,"download_link":69,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"openasset","OpenAsset","5.0.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fopenasset\u002F","\u003Cp>\u003Cstrong>It is possible to use this plugin to just sync images without integrating data, however, if you are looking to sync Project or Employee data to your website, it requires writing code for frontend integration.  It is therefore advised that you do not install directly on your live website.  Install onto a development environment first.  Ensure your integration is fully tested before you deploy live.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Anyone can download this plugin but in order to install and configure, it requires you to be an OpenAsset customer and have a specific OpenAsset license. If you are interested in the obtaining the license please reach out to your OpenAsset Customer Success Manager or \u003Ca href=\"https:\u002F\u002Fpages.openasset.com\u002Fintegrations-contact-us.html\" rel=\"nofollow ugc\">submit this form\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>OpenAsset is a leading provider of Digital Asset Management solutions designed to meet the unique needs of the Architecture, Engineering, and Construction (AEC) industries. Our vision is to supercharge productivity of AEC marketing and business pursuit teams so they can win more business.\u003C\u002Fp>\n\u003Cp>OpenAsset’s Website Connector for WordPress enables AEC companies to sync project and employee profiles with relevant details, experience, and marketing-ready images directly from OpenAsset to their public-facing website.  This eliminates data redundancy, ensuring that high-quality assets are maintained centrally, streamlining workflows and boosting efficiency.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Effortless Project Showcase:\u003C\u002Fstrong> Showcase your AEC projects seamlessly on your website with a few clicks. The connector enables display of approved and consistent project details, enhancing your online presence.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Employee Profiles that Stand Out:\u003C\u002Fstrong> Highlight your team’s expertise by effortlessly publishing employee profiles directly from the DAM. Keep your team information up-to-date and impress your clients with the talent behind your projects.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Marketing-Ready Images:\u003C\u002Fstrong> Present your projects with stunning visuals. The connector enables you to select and publish marketing-ready images directly from your DAM, ensuring consistency and professionalism across your web presence.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Consistency and Centralization:\u003C\u002Fstrong> Say goodbye to inconsistency. The connector synchronizes with your OpenAsset instance, ensuring that the information on your website is up-to-date and reflective of your latest projects and team members.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Presentation and web design in your control:\u003C\u002Fstrong>  The connector offers a simple UI template that you are free to modify or your web developer is able to integrate the data into your fully custom website UI.\u003C\u002Fp>\n\u003Ch3>Links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.openasset.com\" rel=\"nofollow ugc\">openasset.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuccess.openasset.com\u002Fen\u002Farticles\u002F8970283-using-openasset-s-website-connector-for-wordpress\" rel=\"nofollow ugc\">Using OpenAsset’s Website Connector for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuccess.openasset.com\u002Fen\u002Farticles\u002F8971102-using-the-templates-bundled-with-openasset-s-website-connector-for-wordpress\" rel=\"nofollow ugc\">Using the templates bundled with OpenAsset’s Website Connector for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuccess.openasset.com\u002Fen\u002Farticles\u002F8971297-creating-a-fully-custom-ui-with-openasset-s-website-connector-for-wordpress\" rel=\"nofollow ugc\">Creating a fully custom UI with OpenAsset’s Website Connector for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Support OpenAsset’s Website Connector for WordPress is provided directly from OpenAsset’s support team.\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you have questions pertaining to downloading, installing, configuring and syncing the plugin, please reach out to: \u003Ca href=\"mailto:support@openasset.com\" rel=\"nofollow ugc\">support@openasset.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> We do not offer support for modifying or customizing your web pages including issues relating to the presentation of your information or images. Please contact your web developer for this.\u003C\u002Fp>\n\u003Ch3>3rd Party Services\u003C\u002Fh3>\n\u003Cp>OpenAsset’s Website Connector for WordPress makes use of OpenAsset’s API to retrieve and display data from your OpenAsset instance. By using this plugin you agree to OpenAsset’s terms of service and privacy policy.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fopenasset.com\u002Fterms-ltd\" rel=\"nofollow ugc\">OpenAsset Terms & Conditions\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F69272435\" rel=\"nofollow ugc\">OpenAsset Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Using this plugin means that you do not need to interact with OpenAsset’s API in code but for reference it is \u003Ca href=\"https:\u002F\u002Fdevelopers.openasset.com\" rel=\"nofollow ugc\">documented here\u003C\u002Fa>\u003C\u002Fp>\n","Sync your AEC Project Portfolio, Employees and Images from OpenAsset to your Wordpress Website.",10,5977,"2026-01-12T17:16:00.000Z","6.9.4","8.0",[19,20,66,67,68],"images","projects","team","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopenasset.5.0.0.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":13,"downloaded":78,"rating":13,"num_ratings":13,"last_updated":23,"tested_up_to":79,"requires_at_least":80,"requires_php":81,"tags":82,"homepage":83,"download_link":84,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":85},"hivo-library","HIVO Connector","0.0.4","hivo","https:\u002F\u002Fprofiles.wordpress.org\u002Fhivo\u002F","\u003Cp>This plugin allows users of HIVO to add Assets from their HIVO Library to the WordPress Media Library.\u003C\u002Fp>\n","Login to your HIVO Library and add Assets directly to your Wordpress Media tab.",1252,"6.6.5","4.4.0","4.3.0",[19,20,74],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhivo-connector\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhivo-library.0.0.4.zip","2026-03-15T10:48:56.248Z",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":13,"downloaded":94,"rating":13,"num_ratings":13,"last_updated":95,"tested_up_to":96,"requires_at_least":16,"requires_php":97,"tags":98,"homepage":102,"download_link":103,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"vy-bildbank","Vy Bildbank","1.1.1","vybildbank","https:\u002F\u002Fprofiles.wordpress.org\u002Ftingmediabank\u002F","\u003Cp>Access your media assets from your account at the cloud service Vy Bildbank.\u003C\u002Fp>\n","Access your media assets from your account at the cloud service Vy Bildbank.",756,"2026-02-05T12:23:00.000Z","6.7.5","7.0",[19,20,99,100,101],"image-bank","media","media-library","https:\u002F\u002Fbildbank.se\u002Fsv\u002Fsupport\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvy-bildbank.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":25,"num_ratings":114,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":23,"tags":118,"homepage":123,"download_link":124,"security_score":125,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"podamibe-custom-user-gravatar","Podamibe Custom User Gravatar","1.0.8","Podamibe Nepal","https:\u002F\u002Fprofiles.wordpress.org\u002Fpodamibe\u002F","\u003Cp>This is a plugin that allows users to upload their own gravatar in the media gallery and displays that image as gravatar instead of grabbing avatar from gravatar.com based on their registered email.\u003C\u002Fp>\n\u003Cp>You can also use the default gravatar by disabling custom gravatar.\u003C\u002Fp>\n","Replace Gravatar with custom picture in your gallery",3000,78301,5,"2019-05-22T03:28:00.000Z","5.0.25","3.7.0",[119,120,121,122],"change-gravatar","custom-gravatar","gravatar","podamibe","http:\u002F\u002Fpodamibenepal.com\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpodamibe-custom-user-gravatar.1.0.8.zip",85,{"attackSurface":127,"codeSignals":182,"taintFlows":199,"riskAssessment":200,"analyzedAt":205},{"hooks":128,"ajaxHandlers":172,"restRoutes":179,"shortcodes":180,"cronEvents":181,"entryPointCount":30,"unprotectedCount":13},[129,135,138,142,146,151,157,161,165,168],{"type":130,"name":131,"callback":132,"file":133,"line":134},"action","admin_enqueue_scripts","enqueue_scripts_and_styles","includes\\pixxio-admin.class.php",35,{"type":130,"name":136,"callback":136,"file":133,"line":137},"print_media_templates",40,{"type":130,"name":139,"callback":140,"file":133,"line":141},"pre-plupload-upload-ui","pre_plupload_upload_ui",45,{"type":130,"name":143,"callback":144,"file":133,"line":145},"attachment_submitbox_misc_actions","editor_show_meta",50,{"type":130,"name":147,"callback":148,"file":149,"line":150},"init","closure","includes\\pixxio-i18n.class.php",21,{"type":152,"name":153,"callback":154,"priority":60,"file":155,"line":156},"filter","wp_prepare_attachment_for_js","add_attachment_json_pixxio_meta","includes\\pixxio-mediahandler.class.php",32,{"type":152,"name":158,"callback":159,"priority":60,"file":155,"line":160},"wp_get_attachment_image_attributes","add_pixxio_id_class",39,{"type":152,"name":162,"callback":163,"priority":60,"file":155,"line":164},"media_row_actions","add_view_in_mediaspace",46,{"type":130,"name":166,"callback":148,"file":155,"line":167},"http_api_curl",118,{"type":130,"name":169,"callback":148,"file":170,"line":171},"plugins_loaded","pixx-io.php",97,[173],{"action":174,"nopriv":175,"callback":176,"hasNonce":177,"hasCapCheck":177,"file":155,"line":178},"download_pixxio_image",false,"download_pixxio_image_ajax_handler",true,27,[],[],[],{"dangerousFunctions":183,"sqlUsage":184,"outputEscaping":186,"fileOperations":197,"externalRequests":30,"nonceChecks":30,"capabilityChecks":30,"bundledLibraries":198},[],{"prepared":13,"raw":13,"locations":185},[],{"escaped":187,"rawEcho":188,"locations":189},16,3,[190,193,195],{"file":133,"line":191,"context":192},141,"raw output",{"file":155,"line":194,"context":192},83,{"file":155,"line":196,"context":192},88,2,[],[],{"summary":201,"deductions":202},"The pixx-io plugin v2.1.1 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and the plugin's adherence to good coding practices, such as using prepared statements for all SQL queries and implementing nonce and capability checks, are significant strengths. The attack surface is minimal, with only one AJAX handler and no exposed REST API routes, shortcodes, or cron events. Furthermore, the taint analysis showing no unsanitized paths indicates a lack of common injection vulnerabilities.  However, there are minor areas for improvement.  The 16% of output that is not properly escaped (3 out of 19 outputs) could potentially lead to cross-site scripting (XSS) vulnerabilities if the unescaped data is user-controlled or sensitive. Additionally, while the plugin performs file operations and makes external HTTP requests, the lack of detailed taint flow analysis for these operations leaves a slight ambiguity regarding potential risks if input sanitization were insufficient in these specific contexts. Overall, the plugin is well-secured, but a review of the unescaped output is recommended to achieve a fully robust security profile.",[203],{"reason":204,"points":114},"Unescaped output detected","2026-03-16T21:19:53.648Z",{"wat":207,"direct":220},{"assetPaths":208,"generatorPatterns":213,"scriptPaths":214,"versionParams":215},[209,210,211,212],"\u002Fwp-content\u002Fplugins\u002Fpixx-io\u002Fincludes\u002Fpixxio-admin.css","\u002Fwp-content\u002Fplugins\u002Fpixx-io\u002Fincludes\u002Fpixxio-admin.js","\u002Fwp-content\u002Fplugins\u002Fpixx-io\u002Fincludes\u002Fpixxio-admin-editor.css","\u002Fwp-content\u002Fplugins\u002Fpixx-io\u002Fincludes\u002Fpixxio-admin-editor.js",[],[210,212],[216,217,218,219],"pixx-io\u002Fincludes\u002Fpixxio-admin.css?ver=","pixx-io\u002Fincludes\u002Fpixxio-admin.js?ver=","pixx-io\u002Fincludes\u002Fpixxio-admin-editor.css?ver=","pixx-io\u002Fincludes\u002Fpixxio-admin-editor.js?ver=",{"cssClasses":221,"htmlComments":224,"htmlAttributes":225,"restEndpoints":230,"jsGlobals":231,"shortcodeOutput":233},[222,223],"pixxio-meta","misc-pub-pixxio",[],[226,227,228,229],"id=\"pixxio_sdk\"","id=\"pixxio-uploader\"","id=\"tmpl-pixxio-content\"","id=\"tmpl-pixxio-meta\"",[],[232],"window.pixxio_nonce",[]]