[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhpvP5pQJ1-TphrKcZKNt_-TCD7OddnfsOGr1H7y_Y4I":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":103,"fingerprints":282},"pl-manager","Post Like Manager","1.0","manidipmandal","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanidipmandal\u002F","\u003Cp>PL Manager is a plugin for adding like and unlike  functionality for posts, pages, Custom post types. It has many configuration settings, that you can customize it fully. it will show a list of most liked posts. If you have already liked a post and now you dislike it, then the old voting will be cancelled and vice-versa.\u003C\u002Fp>\n\u003Ch4>Standard features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>AJAX thumbs up\u002Fdown functionality without refreshing the page.\u003C\u002Fli>\n\u003Cli>Wide range of voting period.\u003C\u002Fli>\n\u003Cli>4 beautiful voting styles.\u003C\u002Fli>\n\u003Cli>Show\u002Fhide +\u002F- symbols before like\u002Funlike count\u003C\u002Fli>\n\u003Cli>Allow or block guest users to vote\u003C\u002Fli>\n\u003Cli>Custom messages\u003C\u002Fli>\n\u003Cli>Exclude specific posts, categories, post types if you do not want this functionality to be shown there\u003C\u002Fli>\n\u003Cli>Show the like functionality on top or at the bottom of the content\u003C\u002Fli>\n\u003Cli>Show the like functionality on left or right of the content\u003Cbr \u002F>\n11.Option to save plugin settings and table even after plugin uninstallation\u003C\u002Fli>\n\u003C\u002Fol>\n","A smooth ajax-based like\u002Fdislike functionality for wordpress posts, pages, Custom post types..",10,2168,100,1,"2016-10-17T13:51:00.000Z","4.6.30","4.0","",[20,21,22,23,24],"most-liked-posts","recently-liked-posts","thumbs-down","thumbs-up","wordpress-like-post","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpl-manager.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},2,20,30,84,"2026-04-04T13:54:55.939Z",[38,55,71,86],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":34,"downloaded":46,"rating":27,"num_ratings":27,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":18,"tags":50,"homepage":18,"download_link":54,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"applause","Applause\u002FLike\u002FUpvote Button","0.1","Web Guy","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebguyio\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fsupport\" rel=\"nofollow ugc\">💬 Ask Question\u003C\u002Fa> | \u003Ca href=\"mailto:webguywork@gmail.com\" rel=\"nofollow ugc\">📧 Email Me\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Add an applause\u002Flike\u002Fupvote button to your content.\u003C\u002Fp>\n\u003Cp>By default, an applause button is added to the top and bottom of the post content area, which can easily be styled with CSS.\u003C\u002Fp>\n\u003Cp>Or use a simple shortcode:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[applause]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Or use a simple shortcode with the following available parameters:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[applause url=\"https:\u002F\u002Fexample.com\u002F\" color=\"purple\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Or use the direct HTML code (with additional \u003Ca href=\"https:\u002F\u002Fapplause-button.com\u002F\" rel=\"nofollow ugc\">configuration options\u003C\u002Fa>):\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cdiv class=\"applause\">\u003Capplause-button url=\"https:\u002F\u002Fexample.com\u002F\" color=\"purple\" \u002F>\u003C\u002Fdiv>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Powered by the \u003Ca href=\"https:\u002F\u002Fapplause-button.com\u002F\" rel=\"nofollow ugc\">Applause Button\u003C\u002Fa> by Colin Eberhardt. \u003Ca href=\"https:\u002F\u002Fopencollective.com\u002Fapplause-button\u002Fdonate\" rel=\"nofollow ugc\">Donate\u003C\u002Fa> to the project.\u003C\u002Fp>\n","Add an applause\u002Flike\u002Fupvote button to your content.",1892,"2026-01-21T13:17:00.000Z","6.8.5","5.0",[39,51,23,52,53],"like","upvote","vote","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapplause.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":11,"downloaded":63,"rating":27,"num_ratings":27,"last_updated":18,"tested_up_to":64,"requires_at_least":65,"requires_php":18,"tags":66,"homepage":18,"download_link":69,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":70},"post-likerator","Post Likerator","1.0.0","Flipeleven","https:\u002F\u002Fprofiles.wordpress.org\u002Fflipeleven\u002F","\u003Cp>Enables a simple like\u002Funlike feature to be added to posts, pages, etc. There is no dislike feature. You are expected to style it however you like so it matches your theme; it has none of its own CSS. There is also no admin page or options for this plugin.\u003C\u002Fp>\n\u003Cp>Add the like button to your template using the included PHP function:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php post_likerator(); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>By default it will use the current post ID and echo the like button’s markup. You can change this by passing (integer) Post ID and (boolean) echo arguments to the function:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php $like_button = post_likerator(2501, false); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The above will attribute likes to post ID \u003Ccode>2501\u003C\u002Fcode> and will assign the string of markup to the \u003Ccode>$like_button\u003C\u002Fcode> variable instead of echoing it.\u003C\u002Fp>\n\u003Cp>Once you’ve got it looking awesome, click to like the post. Clicking again will unlike it. You can go back and forth as much as you want, but it will probably get boring after a little while.\u003C\u002Fp>\n","Simple like\u002Funlike function for posts. No dislikes. Bring your own CSS.",1326,"4.8.28","4.8.2",[67,51,68,23],"developer-friendly","like-posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-likerator.1.0.0.zip","2026-03-15T10:48:56.248Z",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":11,"downloaded":79,"rating":27,"num_ratings":27,"last_updated":18,"tested_up_to":80,"requires_at_least":81,"requires_php":82,"tags":83,"homepage":18,"download_link":85,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":70},"recommend","Recommend","0.6.2","mattlitzinger","https:\u002F\u002Fprofiles.wordpress.org\u002Fmattlitzinger\u002F","\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Give users a “like” action on posts  \u003C\u002Fli>\n\u003Cli>Display the like count on a post  \u003C\u002Fli>\n\u003Cli>Custom label text for like count \u003C\u002Fli>\n\u003Cli>Disable label text for count site-wide \u003C\u002Fli>\n\u003Cli>Choose between a “Thumbs Up” or a “Heart” icon \u003C\u002Fli>\n\u003Cli>Limit like action to specific post types\u003C\u002Fli>\n\u003Cli>Disable plugin CSS or add custom styling rules \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>By default, the like count will be displayed below the content for individual posts across all post types. You can disable this in the plugin settings or define which post types to include.\u003C\u002Fp>\n\u003Cp>If you’d rather display the like count in your template files, use the below code:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php \n    if( function_exists('wp_recommend_show_likes') ) \n        wp_recommend_show_likes(); \n?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Shortcodes\u003C\u002Fh3>\n\u003Cp>The following shortcode will display the like count on any post.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[recommend-likes]  \n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The following shortcode will display a list of most liked posts. There are two optional parameters to fine tune the displayed results: \u003Ccode>post_type\u003C\u002Fcode> and \u003Ccode>posts_per_page\u003C\u002Fcode>. The default values for these parameters are shown in the example below.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[recommend-liked-posts post_type=\"post\" posts_per_page=\"5\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Recommend allows you to add a like user action to your content. Unlike social sharing or commenting, the like action is simple and intuitive.",1218,"6.2.9","4.7","7.0",[84,51,72,23],"heart","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecommend.zip",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":27,"downloaded":94,"rating":27,"num_ratings":27,"last_updated":95,"tested_up_to":48,"requires_at_least":49,"requires_php":96,"tags":97,"homepage":18,"download_link":102,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"thumbsup-or-down-reactions","ThumbsUp or Down Reactions","1.8.1","CaphLabs","https:\u002F\u002Fprofiles.wordpress.org\u002Fipodguy79\u002F","\u003Cp>\u003Cstrong>ThumbsUp or Down Reactions (TUOD)\u003C\u002Fstrong> is a clean, fast, and fully customizable WordPress plugin that allows visitors to express feedback on your content with a simple thumbs up 👍 or thumbs down 👎.\u003C\u002Fp>\n\u003Cp>Packed with options but easy to use, TUOD works on any post type, includes per-IP voting protection, AJAX-based voting (no reloads), and customizable labels, colors, sizes, and optional glowing effects.\u003C\u002Fp>\n\u003Cp>🧪 \u003Cstrong>Live Demo\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fwww.hotspringsofbc.ca\" rel=\"nofollow ugc\">hotspringsofbc.ca\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>💎 \u003Cstrong>Pro version coming soon\u003C\u002Fstrong>: Upload your own icons, advanced styling, per-user voting, analytics, and more!\u003C\u002Fp>\n\u003Cp>TUOD is built for creators, bloggers, ecommerce shops, and developers who want simple, stylish user interaction with zero bloat.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>👍👎 Thumbs up\u002Fdown voting on posts, pages, and products\u003C\u002Fli>\n\u003Cli>💬 Customizable labels like “Liked this spring” or “Didn’t like this article”\u003C\u002Fli>\n\u003Cli>🎨 Choose your own color and vote count text\u003C\u002Fli>\n\u003Cli>🔒 One vote per post per visitor (IP-based)\u003C\u002Fli>\n\u003Cli>🔁 Users can change their vote at any time\u003C\u002Fli>\n\u003Cli>⚡ AJAX-based voting — no page reload\u003C\u002Fli>\n\u003Cli>🧮 Total vote tracker shown in admin settings\u003C\u002Fli>\n\u003Cli>📱 Fully responsive and mobile-friendly\u003C\u002Fli>\n\u003Cli>🖼️ Icon display and thumb glow effects\u003C\u002Fli>\n\u003Cli>🎛️ Lightweight and intuitive admin options\u003C\u002Fli>\n\u003Cli>🧰 Cleanly coded and developer-friendly\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later.\u003C\u002Fp>\n","A lightweight and customizable thumbs up\u002Fdown reaction plugin. Easily track likes and dislikes on any post, page, or custom post type.",463,"2025-04-22T21:24:00.000Z","7.2",[98,99,23,100,101],"rating","reactions","user-feedback","voting","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthumbsup-or-down-reactions.1.8.1.zip",{"attackSurface":104,"codeSignals":179,"taintFlows":228,"riskAssessment":270,"analyzedAt":281},{"hooks":105,"ajaxHandlers":149,"restRoutes":170,"shortcodes":171,"cronEvents":176,"entryPointCount":177,"unprotectedCount":178},[106,111,115,119,124,129,133,137,142,145],{"type":107,"name":108,"callback":109,"file":110,"line":33},"action","admin_menu","mmplm_add_to_menu","admin.php",{"type":107,"name":112,"callback":113,"file":110,"line":114},"admin_init","mmplm_register_setting",21,{"type":107,"name":116,"callback":117,"file":110,"line":118},"admin_enqueue_scripts","mmplm_include_admin_js_css",22,{"type":107,"name":120,"callback":121,"file":122,"line":123},"init","mmplm_load_plugin_textdomain","pl-manager.php",72,{"type":125,"name":126,"callback":127,"priority":11,"file":122,"line":128},"filter","plugin_action_links","mmplm_plugin_links",73,{"type":107,"name":130,"callback":131,"file":132,"line":118},"wp_head","register_style","user.php",{"type":125,"name":134,"callback":135,"file":132,"line":136},"the_content","mmplm_output_content",26,{"type":125,"name":138,"callback":139,"priority":140,"file":132,"line":141},"get_the_excerpt","mmplm_remove_content_filter",5,27,{"type":125,"name":143,"callback":135,"file":132,"line":144},"the_excerpt",29,{"type":107,"name":146,"callback":147,"file":132,"line":148},"wp_enqueue_scripts","mmplm_include_user_js_css",33,[150,156,158,162,164,168],{"action":151,"nopriv":152,"callback":153,"hasNonce":154,"hasCapCheck":152,"file":155,"line":140},"plm_process_vote_count",false,"plm_process_vote_func",true,"ajax.php",{"action":151,"nopriv":154,"callback":153,"hasNonce":154,"hasCapCheck":152,"file":155,"line":157},6,{"action":159,"nopriv":152,"callback":160,"hasNonce":152,"hasCapCheck":152,"file":155,"line":161},"plm_delete_liked_post","delete_liked_post_deails",8,{"action":159,"nopriv":154,"callback":160,"hasNonce":152,"hasCapCheck":152,"file":155,"line":163},9,{"action":165,"nopriv":152,"callback":166,"hasNonce":152,"hasCapCheck":152,"file":155,"line":167},"plm_restore_defaults","restore_defaults",11,{"action":165,"nopriv":154,"callback":166,"hasNonce":152,"hasCapCheck":152,"file":155,"line":169},12,[],[172],{"tag":173,"callback":174,"file":132,"line":175},"mm-plm","mmplm_shortcode",36,[],7,4,{"dangerousFunctions":180,"sqlUsage":181,"outputEscaping":187,"fileOperations":27,"externalRequests":27,"nonceChecks":14,"capabilityChecks":27,"bundledLibraries":227},[],{"prepared":114,"raw":14,"locations":182},[183],{"file":184,"line":185,"context":186},"functions.php",187,"$wpdb->get_results() with variable interpolation",{"escaped":14,"rawEcho":33,"locations":188},[189,192,194,196,198,200,202,204,206,208,210,212,213,215,216,217,219,221,223,225],{"file":110,"line":190,"context":191},155,"raw output",{"file":110,"line":193,"context":191},167,{"file":110,"line":195,"context":191},195,{"file":110,"line":197,"context":191},221,{"file":110,"line":199,"context":191},228,{"file":110,"line":201,"context":191},236,{"file":110,"line":203,"context":191},245,{"file":110,"line":205,"context":191},393,{"file":110,"line":207,"context":191},394,{"file":110,"line":209,"context":191},395,{"file":110,"line":211,"context":191},397,{"file":155,"line":195,"context":191},{"file":184,"line":214,"context":191},216,{"file":132,"line":214,"context":191},{"file":132,"line":201,"context":191},{"file":132,"line":218,"context":191},237,{"file":132,"line":220,"context":191},238,{"file":132,"line":222,"context":191},239,{"file":132,"line":224,"context":191},240,{"file":132,"line":226,"context":191},241,[],[229,246,257],{"entryPoint":230,"graph":231,"unsanitizedCount":27,"severity":245},"plm_process_vote_func (ajax.php:17)",{"nodes":232,"edges":243},[233,237],{"id":234,"type":235,"label":236,"file":155,"line":118},"n0","source","$_REQUEST",{"id":238,"type":239,"label":240,"file":155,"line":241,"wp_function":242},"n1","sink","get_var() [SQLi]",92,"get_var",[244],{"from":234,"to":238,"sanitized":154},"low",{"entryPoint":247,"graph":248,"unsanitizedCount":27,"severity":245},"delete_liked_post_deails (ajax.php:204)",{"nodes":249,"edges":255},[250,252],{"id":234,"type":235,"label":236,"file":155,"line":251},207,{"id":238,"type":239,"label":253,"file":155,"line":214,"wp_function":254},"query() [SQLi]","query",[256],{"from":234,"to":238,"sanitized":154},{"entryPoint":258,"graph":259,"unsanitizedCount":27,"severity":245},"\u003Cajax> (ajax.php:0)",{"nodes":260,"edges":267},[261,262,263,265],{"id":234,"type":235,"label":236,"file":155,"line":118},{"id":238,"type":239,"label":240,"file":155,"line":241,"wp_function":242},{"id":264,"type":235,"label":236,"file":155,"line":251},"n2",{"id":266,"type":239,"label":253,"file":155,"line":214,"wp_function":254},"n3",[268,269],{"from":234,"to":238,"sanitized":154},{"from":264,"to":266,"sanitized":154},{"summary":271,"deductions":272},"The \"pl-manager\" plugin v1.0 exhibits a mixed security posture. On the positive side, it has a clean vulnerability history with no known CVEs and avoids dangerous functions, file operations, and external HTTP requests. The vast majority of its SQL queries utilize prepared statements, which is a strong defense against SQL injection. However, the static analysis reveals significant areas of concern, particularly regarding its attack surface. A substantial portion of its AJAX handlers (4 out of 6) lack authentication checks, creating potential entry points for unauthorized actions. Furthermore, only a single nonce check is present across the entire plugin, leaving most AJAX requests vulnerable to replay attacks. The low rate of properly escaped output (5%) is also a notable weakness, potentially exposing the site to cross-site scripting (XSS) vulnerabilities, especially when combined with the unprotected AJAX handlers. The lack of capability checks further exacerbates these risks, as even unauthenticated users might be able to trigger sensitive functionality.",[273,275,277,279],{"reason":274,"points":11},"Unprotected AJAX handlers",{"reason":276,"points":161},"Low output escaping rate",{"reason":278,"points":177},"Insufficient nonce checks",{"reason":280,"points":140},"No capability checks","2026-03-17T00:45:10.969Z",{"wat":283,"direct":294},{"assetPaths":284,"generatorPatterns":288,"scriptPaths":289,"versionParams":290},[285,286,287],"\u002Fwp-content\u002Fplugins\u002Fpl-manager\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fpl-manager\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fpl-manager\u002Fjs\u002Fadmin.js",[],[287],[291,292,293],"pl-manager\u002Fstyle.css?ver=","pl-manager\u002Fadmin.css?ver=","pl-manager\u002Fadmin.js?ver=",{"cssClasses":295,"htmlComments":306,"htmlAttributes":317,"restEndpoints":320,"jsGlobals":321,"shortcodeOutput":326},[296,297,298,299,300,301,302,303,304,305],"plm-wrap","plm-header","plm-body","plm-left-content","plm-tabs","resp-tabs-list","resp-tabs-container","plm-form-sections","submit-holder","submit_button",[307,308,309,310,311,312,313,314,315,316],"\u003C!-- Simple Post Like Management System -->","\u003C!-- Load Plugin Text Domain -->","\u003C!-- Add Setting Link In Plugin -->","\u003C!-- Fires on plugin activation -->","\u003C!--Create Table For Plugin-->","\u003C!-- Nothing will happen -->","\u003C!-- Add Menu Page Function -->","\u003C!-- Settings -->","\u003C!-- Likes -->","\u003C!-- Post Like Manager -->",[318,319],"data-tab=\"1\"","data-tab=\"2\"",[],[322,323,324,325],"MMPLM_PLUGIN_URL","MMPLM_PLUGIN_NAME","MMPLM_PLUGIN_VERSION","MMPLM_AJAX_URL",[]]