[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fk_Eiw4xudnqw_fFPM4hvH2BiU_-wdxlZG-ah4NDiAFw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":14,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":73,"crawl_stats":37,"alternatives":81,"analysis":181,"fingerprints":665},"popularis-extra","Popularis Extra","1.2.10","Themes4WP","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemes4wp\u002F","\u003Cp>Popularis Extra gives you access to demo import for free PopularisWP themes, extra features like widgets, shortcodes or additional Elementor widgets.\u003C\u002Fp>\n\u003Cp>This plugin requires PopularisWP theme to be installed.\u003C\u002Fp>\n\u003Ch3>Supported Themes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis\u002F\" rel=\"ugc\">Popularis\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-ecommerce\u002F\" rel=\"nofollow ugc\">Popularis eCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-verse\u002F\" rel=\"ugc\">Popularis Verse\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-hub\u002F\" rel=\"ugc\">Popularis Hub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-star\u002F\" rel=\"ugc\">Popularis Star\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-writer\u002F\" rel=\"ugc\">Popularis Writer\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-press\u002F\" rel=\"ugc\">Popularis Press\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-fashion\u002F\" rel=\"nofollow ugc\">Popularis Fashion\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-business\u002F\" rel=\"nofollow ugc\">Popularis Business\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Popularis Extra add extra features to Popularis theme like demo import, widgets, shortcodes or Elementor widgets.",8000,225336,100,1,"2025-12-03T07:12:00.000Z","6.9.4","4.4","5.6",[20,21,22,23,24],"demo","elementor","import","shortcodes","widgets","https:\u002F\u002Fpopulariswp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpopularis-extra.1.2.10.zip",74,3,"2026-01-28 00:00:00","2026-03-15T15:16:48.613Z",[32,46,59],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2026-25422","popularis-extra-cross-site-request-forgery","Popularis Extra \u003C= 1.2.10 - Cross-Site Request Forgery","The Popularis Extra plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.10. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.2.10","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2026-02-26 19:55:54",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcd3fb4fc-6a15-4b8e-8a0b-048a377fda67?source=api-prod",{"id":47,"url_slug":48,"title":49,"description":50,"plugin_slug":4,"theme_slug":37,"affected_versions":51,"patched_in_version":52,"severity":39,"cvss_score":40,"cvss_vector":53,"vuln_type":54,"published_date":55,"updated_date":56,"references":57,"days_to_patch":14},"CVE-2024-10795","popularis-extra-authenticated-contributor-post-disclosure","Popularis Extra \u003C= 1.2.7 - Authenticated (Contributor+) Post Disclosure","The Popularis Extra plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.7 via the 'elementor-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from private or draft posts created via Elementor that they should not have access to.","\u003C=1.2.7","1.2.8","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Authorization Bypass Through User-Controlled Key","2024-11-15 00:00:00","2024-11-16 02:02:27",[58],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1b5de554-1d2f-4932-9f93-1333b07edeba?source=api-prod",{"id":60,"url_slug":61,"title":62,"description":63,"plugin_slug":4,"theme_slug":37,"affected_versions":64,"patched_in_version":65,"severity":39,"cvss_score":66,"cvss_vector":67,"vuln_type":68,"published_date":69,"updated_date":70,"references":71,"days_to_patch":14},"CVE-2024-9353","popularis-extra-reflected-cross-site-scripting","Popularis Extra \u003C= 1.2.6 - Reflected Cross-Site Scripting","The Popularis Extra plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.2.6. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=1.2.6","1.2.7",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-10-03 00:00:00","2024-10-04 02:04:52",[72],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4fc82778-0493-456f-bc73-3d70e3a2b1bf?source=api-prod",{"slug":74,"display_name":7,"profile_url":8,"plugin_count":75,"total_installs":76,"avg_security_score":77,"avg_patch_time_days":78,"trust_score":79,"computed_at":80},"themes4wp",14,25610,94,22,90,"2026-04-03T23:26:38.437Z",[82,99,122,143,164],{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":17,"requires_php":18,"tags":95,"homepage":96,"download_link":97,"security_score":98,"vuln_count":92,"unpatched_count":92,"last_vuln_date":37,"fetched_at":30},"wishful-companion","Wishful Companion","1.1.0","wishfulthemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fwishfulthemes\u002F","\u003Cp>Wishful Companion gives you access to demo import for WishfulThemes themes.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Wishful Companion uses ‘One Click Demo Import’ plugin script\u003Cbr \u002F>\nhttps:\u002F\u002Fgithub.com\u002Fproteusthemes\u002Fone-click-demo-import\u003Cbr \u002F>\n(C) 2016 ProteusThemes.com\u003Cbr \u002F>\nLicensed under the GNU General Public License v2.0,\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003C\u002Fp>\n\u003Ch3>Copyright\u003C\u002Fh3>\n\u003Cp>Wishful Companion is free software: you can redistribute it and\u002For modify\u003Cbr \u002F>\nit under the terms of the GNU General Public License as published by\u003Cbr \u002F>\nthe Free Software Foundation, either version 2 of the License, or\u003Cbr \u002F>\nany later version.\u003C\u002Fp>\n\u003Cp>Wishful Companion is distributed in the hope that it will be useful,\u003Cbr \u002F>\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\u003Cbr \u002F>\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\u003Cbr \u002F>\nGNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License\u003Cbr \u002F>\nalong with Wishful Companion. If not, see \u003Ca href=\"http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\u003C\u002Fa>.\u003C\u002Fp>\n","Wishful Companion add extra features to all WishfulThemes themes like demo import and other widgets.",300,12002,0,"2024-04-08T06:36:00.000Z","6.5.8",[20,21,22,23,24],"","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwishful-companion.1.1.0.zip",92,{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":109,"num_ratings":110,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":96,"download_link":119,"security_score":120,"vuln_count":14,"unpatched_count":92,"last_vuln_date":121,"fetched_at":30},"athemes-starter-sites","aThemes Starter Sites","1.1.7","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>We’ve got a full and ever-growing library stocked with ready-made templates for any kind of business.\u003C\u002Fp>\n\u003Ch3>ATHEMES STARTER SITES\u003C\u002Fh3>\n\u003Cp>Business owners, freelancers, Online Store Owners, and creatives: get ready to build and launch an awesome website in no-time, all by yourself! With our aThemes Starter Sites plugin, you can take your pick from plenty of starter sites, such as business, portfolio, and e-commerce. Then get creative and customize it to match your branding, all without writing a single line of code. Select the demo that suits your needs, import, tweak, and go live!\u003C\u002Fp>\n\u003Ch4>Pick your website template\u003C\u002Fh4>\n\u003Cp>We’ve got a full and ever-growing library stocked with ready-made templates for any kind of business.\u003C\u002Fp>\n\u003Ch4>Add your own awesome content\u003C\u002Fh4>\n\u003Cp>Add your own text, photos, videos, vector art, and more is a breeze by Gutenberg, Elementor, and different website builders.\u003C\u002Fp>\n\u003Ch4>Customize your site\u003C\u002Fh4>\n\u003Cp>Make your starter site really yours. Tweak your site with different fonts, color palettes, and more to fit your style.\u003C\u002Fp>\n\u003Ch4>Let’s go live\u003C\u002Fh4>\n\u003Cp>Ready to grow your business with a website that stands out from the crowd? Publish your page in just a few clicks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Happy Building!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>LIST OF STARTER SITES TO IMPORT\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fathemes.com\u002Fsydney-demos\u002F\" rel=\"nofollow ugc\">Sydney Starters Sites\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fathemes.com\u002Fairi-demos\u002F\" rel=\"nofollow ugc\">Airi Starters Sites\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fathemes.com\u002Ftheme\u002Fbotiga\u002F\" rel=\"nofollow ugc\">Botiga\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","We've got a full and ever-growing library stocked with ready-made templates for any kind of business.",40000,1885371,40,2,"2026-03-03T16:41:00.000Z","6.8.5","4.0","5.4",[116,117,21,22,118],"athemes","demos","sites","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fathemes-starter-sites.1.1.7.zip",99,"2024-07-26 21:43:39",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":98,"num_ratings":132,"last_updated":133,"tested_up_to":16,"requires_at_least":113,"requires_php":18,"tags":134,"homepage":140,"download_link":141,"security_score":120,"vuln_count":14,"unpatched_count":92,"last_vuln_date":142,"fetched_at":30},"bosa-elementor-for-woocommerce","Bosa Elementor Addons and Templates for WooCommerce","1.0.26","Bosa Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fbosathemes\u002F","\u003Cp>Enhance your online store with powerful Elementor widgets and a versatile, ready-to-use template library designed for seamless customization and enhanced functionality. Please visit \u003Ca href=\"https:\u002F\u002Fbosathemes.com\u002Fbosa-elementor-for-woocommerce\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> for more information.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Collection of Elementor Page Templates!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Pre-built Templates Library\u003C\u002Fstrong> – Access a collection of Elementor Page Templates to build your site effortlessly and efficiently.\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Variety of Shop Templates\u003C\u002Fstrong> – A diverse collection of homepages and inner pages specially designed for your online store.\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Seamless Import System\u003C\u002Fstrong> – Easily import Templates for quick and hassle-free customization.\u003C\u002Fp>\n\u003Cp>Browse the full library of \u003Ca href=\"https:\u002F\u002Fbosathemes.com\u002Fbosa-elementor-for-woocommerce\u002F#template-list\" rel=\"nofollow ugc\">Templates\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>🚀 \u003Cstrong>Collection of Widgets\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Elegant widget sets designed to enhance your eCommerce website, effortlessly and efficiently.\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo -Product Tabs(PRO)\u003C\u002Fstrong>: Organize products in a clean, easy-to-navigate tab format within a single page. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoo-product-tabs-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Image Carousel(PRO)\u003C\u002Fstrong>: Display multiple images in a compact, interactive, and visually appealing format to easily navigate through them. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fimage-carousel-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Testimonial Slider(PRO)\u003C\u002Fstrong>:Display client’s reviews or testimonials in a rotating, interactive format, enhancing credibility and trust for a product or service. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Ftestimonial-slider-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Archive Products\u003C\u002Fstrong>: Display your product archive in an organized layout for easy browsing. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-products-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Products List\u003C\u002Fstrong>: Show a list of products with easy navigation and detailed descriptions. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-products-list-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Categories\u003C\u002Fstrong>: Display your product categories to help users navigate your store efficiently. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-categories-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Archive Carousel\u003C\u002Fstrong>: Showcase products in a sleek carousel design, perfect for highlighting categories or featured products. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-carousel-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Categories List\u003C\u002Fstrong>: Display a list of product categories in an organized, visually appealing layout. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-categories-list-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Site Logo\u003C\u002Fstrong>: Easily customize your site logo to represent your brand. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fsite-logo-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Blog\u003C\u002Fstrong>: Display your blog posts in a clean, easy-to-read format for better user engagement. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fblog-grid-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Contact Form 7\u003C\u002Fstrong>: Integrate a user-friendly contact form with customizable fields to connect with your audience. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fcontact-form-7-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Product Slider(PRO)\u003C\u002Fstrong>: Allow users to browse products in a smooth slider, enhancing the shopping experience. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-product-slider-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Grid Products (PRO)\u003C\u002Fstrong>: Display your products in a grid layout for a neat and user-friendly shopping experience. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-grid-products-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Grid Carousel(PRO)\u003C\u002Fstrong>: Combine the power of grids and carousels to showcase your products dynamically. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-grid-carousel-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Hot Deals(PRO)\u003C\u002Fstrong>: Showcase your hot deals and discounts to attract more customers. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-hot-deal-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅\u003Cstrong>Woo – Product Accordion (PRO)\u003C\u002Fstrong>: Display product details in a collapsible accordion style, allowing users to easily view more products without cluttering the page. \u003Ca href=\"https:\u002F\u002Fdemo.bosathemes.com\u002Felementor-for-woocommerce\u002Fwoocommerce-products-accordion-widget\u002F\" rel=\"nofollow ugc\">[VIEW DEMO]\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>✅More Coming Soon…\u003C\u002Fp>\n","Elementor Addon with widgets and templates for WooCommerce.",30000,431100,26,"2026-02-18T11:43:00.000Z",[135,136,137,138,139],"elementor-addons","elementor-templates","elementor-widgets","one-click-template-import","woocommerce","https:\u002F\u002Fbosathemes.com\u002Fbosa-elementor-for-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbosa-elementor-for-woocommerce.1.0.26.zip","2024-06-06 00:00:00",{"slug":144,"name":145,"version":146,"author":147,"author_profile":148,"description":149,"short_description":150,"active_installs":151,"downloaded":152,"rating":13,"num_ratings":14,"last_updated":153,"tested_up_to":94,"requires_at_least":154,"requires_php":155,"tags":156,"homepage":159,"download_link":160,"security_score":161,"vuln_count":162,"unpatched_count":92,"last_vuln_date":163,"fetched_at":30},"apollo13-framework-extensions","Apollo13 Framework Extensions","1.9.9","apollo13themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fapollo13themes\u002F","\u003Cp>\u003Cstrong>Apollo13 Framework Extensions\u003C\u002Fstrong> adds few features to themes build on Apollo13 Framework. These are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Designs Importer,\u003C\u002Fli>\n\u003Cli>shortcodes based on Apollo13 Framework features: writtng effect, count down, socials, scroller, slider, galleries, post grid,\u003C\u002Fli>\n\u003Cli>support for WPBakery Page Builder elements added by Apollo13 Framework,\u003C\u002Fli>\n\u003Cli>custom post types: albums, works & people,\u003C\u002Fli>\n\u003Cli>Export\u002FImport of theme options,\u003C\u002Fli>\n\u003Cli>Custom Sidebar,\u003C\u002Fli>\n\u003Cli>Custom CSS,\u003C\u002Fli>\n\u003Cli>Meta options that are creating content for posts, pages, albums and works,\u003C\u002Fli>\n\u003Cli>Responsive Image resizing ,\u003C\u002Fli>\n\u003Cli>Maintenance mode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin requires one of themes build on \u003Cstrong>Apollo13 Framework\u003C\u002Fstrong> theme to be installed.\u003C\u002Fp>\n\u003Cp>It is mostly used for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree\u002F\" rel=\"nofollow ugc\">Rife Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002F\" rel=\"nofollow ugc\">Rife Pro\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits & Copyright\u003C\u002Fh3>\n\u003Ch4>Anime.js, Copyright 2019 Julian Garnier\u003C\u002Fh4>\n\u003Cp>Licenses: MIT\u003Cbr \u002F>\nSource: https:\u002F\u002Fanimejs.com\u002F\u003C\u002Fp>\n","Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.",20000,534616,"2025-12-04T08:12:00.000Z","4.7","5.4.0",[157,137,23,158],"custom-post-types","wpbakery-page-builder-support","https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapollo13-framework-extensions.zip",95,6,"2026-02-18 15:32:44",{"slug":165,"name":166,"version":167,"author":168,"author_profile":169,"description":170,"short_description":171,"active_installs":151,"downloaded":172,"rating":13,"num_ratings":14,"last_updated":173,"tested_up_to":16,"requires_at_least":17,"requires_php":96,"tags":174,"homepage":176,"download_link":177,"security_score":178,"vuln_count":179,"unpatched_count":92,"last_vuln_date":180,"fetched_at":30},"futurio-extra","Futurio Extra","2.0.23","FuturioWP","https:\u002F\u002Fprofiles.wordpress.org\u002Ffuturiowp\u002F","\u003Cp>Futurio Extra add extra features and options to \u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002F\" rel=\"nofollow ugc\">Futurio\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Ffuturio-storefront\u002F\" rel=\"ugc\">Futurio Storefront\u003C\u002Fa> theme.\u003Cbr \u002F>\nThis plugin require the free WP theme – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Ffuturio\u002F\" rel=\"ugc\">Futurio\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Ffuturio-storefront\u002F\" rel=\"ugc\">Futurio Storefront\u003C\u002Fa> – to be installed.\u003C\u002Fp>\n\u003Cp>Futurio Extra brings new widgets to be used in Elementor and allows you to import beautiful page templates for Elementor page builder. It also comes with 100% WooCommerce support and custom options. With the one click demo import feature you can import all our 10+ demo sites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– One click demo import – import starter sites with one click. \u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002Fdemos\u002F\" rel=\"nofollow ugc\">Demos here\u003C\u002Fa>\u003Cbr \u002F>\n– Customizer options (Color presets, Google fonts, Layout desings…)\u003Cbr \u002F>\n– Page\u002Fpost custom options and features\u003Cbr \u002F>\n– Custom Elementor widgets and addons\u003Cbr \u002F>\n– Custom widgets (social icons, about me, recent & popular posts)\u003Cbr \u002F>\n– 100% WooCommerce support and custom WooCommerce options and features\u003Cbr \u002F>\n– Custom Elementor 404 page \u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002Fdocs\u002Ffuturio\u002Fcustomizer-settings\u002Ffooter-credits\u002F#custom-footer-with-elementor\" rel=\"nofollow ugc\">How to?\u003C\u002Fa>\u003Cbr \u002F>\n– Custom Elementor header \u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002Fdocs\u002Ffuturio\u002Fcustomizer-settings\u002Fcustom-header\u002F\" rel=\"nofollow ugc\">How to?\u003C\u002Fa>\u003Cbr \u002F>\n– Custom Elementor footer credits \u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002Fdocs\u002Ffuturio\u002Fcustomizer-settings\u002Fcustom-404-error-page\u002F\" rel=\"nofollow ugc\">How to?\u003C\u002Fa>\u003Cbr \u002F>\n– Custom Elementor blog feed builder \u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002Fdocs\u002Ffuturio\u002Fcustomizer-settings\u002Fcustom-404-error-page\u002F\" rel=\"nofollow ugc\">How to?\u003C\u002Fa>\u003Cbr \u002F>\n– And much more….\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ffuturiowp.com\u002Fdocs\u002Ffuturio\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Page Builders Friend\u003C\u002Fh4>\n\u003Cp>Futurio & Futurio Extra is best friend with the popular pagebuilders like Elementor, Beaver Builder, King Composer, Brizy, Visual Composer, SiteOrigin, Divi or Gutenberg.\u003C\u002Fp>\n\u003Ch4>Custom look with Elementor\u003C\u002Fh4>\n\u003Cp>With Elementor you can design your header, footer, 404 error page or the blog page look\u003C\u002Fp>\n\u003Ch4>20+ free demos sites\u003C\u002Fh4>\n\u003Cp>20+ free demo websites ready to import are included. Importing is easy with a few clicks.\u003C\u002Fp>\n\u003Ch4>100% WooCommerce support\u003C\u002Fh4>\n\u003Cp>Extend the WooCommerce with new options and features. Import full WooCommerce demo websites with few clicks and be ready to start your new store in few minutes.\u003C\u002Fp>\n\u003Ch3>Credits & Copyright\u003C\u002Fh3>\n\u003Ch4>Typed.js, Copyright 2014 Matt Bold\u003C\u002Fh4>\n\u003Cp>Licenses: MIT\u003Cbr \u002F>\nSource: https:\u002F\u002Fgithub.com\u002Fmattboldt\u002Ftyped.js\u003C\u002Fp>\n\u003Ch4>Kirki, Copyright (c) 2017, Aristeides Stathopoulos\u003C\u002Fh4>\n\u003Cp>Licenses: MIT\u003Cbr \u002F>\nSource: https:\u002F\u002Fgithub.com\u002Faristath\u002Fkirki\u003C\u002Fp>\n\u003Ch4>Dilaz Metabox, by WebDilaz Team\u003C\u002Fh4>\n\u003Cp>Licenses: GPL-2.0+\u003Cbr \u002F>\nSource: https:\u002F\u002Fgithub.com\u002FRodgath\u002FDilaz-Metaboxes-Plugin\u003C\u002Fp>\n","Futurio Extra add extra features to Futurio theme like widgets, WooCommerce options, Elementor widgets, one click demo import and much more.",740491,"2026-03-05T07:31:00.000Z",[20,21,175,23,139],"page-builder","https:\u002F\u002Ffuturiowp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffuturio-extra.2.0.23.zip",96,7,"2024-12-02 00:00:00",{"attackSurface":182,"codeSignals":364,"taintFlows":533,"riskAssessment":655,"analyzedAt":664},{"hooks":183,"ajaxHandlers":321,"restRoutes":352,"shortcodes":353,"cronEvents":359,"entryPointCount":351,"unprotectedCount":92},[184,190,193,197,200,203,206,212,218,222,227,230,234,238,242,246,248,252,256,259,264,269,273,276,279,283,287,291,294,297,299,303,307,311,314,317],{"type":185,"name":186,"callback":187,"file":188,"line":189},"action","admin_notices","popularis_extra_review_notice_message","includes\\notify\\notify.php",36,{"type":185,"name":186,"callback":191,"file":188,"line":192},"popularis_extra_pro_notice_message",151,{"type":185,"name":194,"callback":195,"file":188,"line":196},"admin_init","popularis_extra_pro_notice",156,{"type":185,"name":186,"callback":198,"file":188,"line":199},"popularis_extra_pro_notice_sale",233,{"type":185,"name":194,"callback":201,"file":188,"line":202},"popularis_extra_pro_sale",239,{"type":185,"name":186,"callback":204,"file":188,"line":205},"popularis_extra_pro_update_motice",297,{"type":185,"name":207,"callback":208,"priority":209,"file":210,"line":211},"admin_menu","add_page",999,"includes\\panel\\classes\\class-install-demos.php",21,{"type":213,"name":214,"callback":215,"file":216,"line":217},"filter","import_post_meta_key","is_valid_meta_key","includes\\panel\\classes\\importers\\class-wordpress-importer.php",101,{"type":213,"name":219,"callback":220,"file":216,"line":221},"http_request_timeout","bump_request_timeout",102,{"type":213,"name":223,"callback":224,"file":225,"line":226},"popularis_demos_data","popularis_pro_get_demos_data_extra","includes\\panel\\demos-pro.php",992,{"type":185,"name":194,"callback":228,"file":229,"line":189},"init","includes\\panel\\demos.php",{"type":185,"name":231,"callback":232,"file":229,"line":233},"admin_enqueue_scripts","scripts",39,{"type":213,"name":235,"callback":236,"file":229,"line":237},"upload_mimes","allow_xml_uploads",42,{"type":185,"name":239,"callback":240,"file":229,"line":241},"admin_footer","popup",45,{"type":185,"name":207,"callback":243,"file":244,"line":245},"add_popularis_wizard_menu","includes\\wizard\\wizard.php",35,{"type":185,"name":194,"callback":247,"priority":120,"file":244,"line":189},"popularis_wizard_setup",{"type":185,"name":249,"callback":250,"file":244,"line":251},"wp_loaded","remove_notice",37,{"type":185,"name":253,"callback":254,"file":244,"line":255},"admin_print_styles","add_notice",38,{"type":185,"name":257,"callback":258,"file":244,"line":233},"add_second_notice","install",{"type":185,"name":260,"callback":261,"file":262,"line":263},"manage_elementor_library_posts_columns","admin_columns_headers","library\\extra-elementor\\elementor-shortcode.php",56,{"type":185,"name":265,"callback":266,"priority":267,"file":262,"line":268},"manage_elementor_library_posts_custom_column","admin_columns_content",10,57,{"type":185,"name":270,"callback":271,"file":272,"line":178},"elementor\u002Fwidgets\u002Fwidgets_registered","register_widgets","library\\extra-elementor\\elementor-widgets.php",{"type":185,"name":274,"callback":275,"file":272,"line":13},"elementor\u002Ffrontend\u002Fafter_register_scripts","widget_scripts",{"type":185,"name":277,"callback":278,"file":272,"line":221},"elementor\u002Fpreview\u002Fenqueue_scripts","widget_scripts_preview",{"type":185,"name":280,"callback":232,"priority":13,"file":281,"line":282},"load-widgets.php","library\\extra-widgets\\about-widget.php",66,{"type":185,"name":284,"callback":285,"file":281,"line":286},"admin_head-widgets.php","social_widget_style",69,{"type":185,"name":288,"callback":289,"file":281,"line":290},"admin_footer-widgets.php","print_scripts",70,{"type":185,"name":284,"callback":285,"file":292,"line":293},"library\\extra-widgets\\social-widget.php",119,{"type":185,"name":231,"callback":295,"file":292,"line":296},"enqueue_scripts",120,{"type":185,"name":288,"callback":289,"file":292,"line":298},121,{"type":185,"name":300,"callback":301,"file":302,"line":189},"widgets_init","popularis_extra_load_widgets","library\\extra-widgets.php",{"type":185,"name":228,"callback":304,"file":305,"line":306},"popularis_extra_load_textdomain","popularis-extra.php",34,{"type":185,"name":308,"callback":309,"file":305,"line":310},"wp_enqueue_scripts","popularis_extra_scripts",44,{"type":185,"name":194,"callback":312,"file":305,"line":313},"popularis_extra_plugin_redirect",122,{"type":185,"name":315,"callback":312,"file":305,"line":316},"after_switch_theme",123,{"type":185,"name":318,"callback":319,"file":305,"line":320},"before_woocommerce_init","closure",154,[322,327,330,334,338,341,344,348],{"action":323,"nopriv":324,"callback":325,"hasNonce":326,"hasCapCheck":326,"file":229,"line":263},"popularis_ajax_get_demo_data",false,"ajax_demo_data",true,{"action":328,"nopriv":324,"callback":329,"hasNonce":324,"hasCapCheck":326,"file":229,"line":268},"popularis_ajax_required_plugins_activate","ajax_required_plugins_activate",{"action":331,"nopriv":324,"callback":332,"hasNonce":326,"hasCapCheck":326,"file":229,"line":333},"popularis_ajax_get_import_data","ajax_get_import_data",60,{"action":335,"nopriv":324,"callback":336,"hasNonce":326,"hasCapCheck":326,"file":229,"line":337},"popularis_ajax_import_xml","ajax_import_xml",63,{"action":339,"nopriv":324,"callback":340,"hasNonce":326,"hasCapCheck":326,"file":229,"line":282},"popularis_ajax_import_theme_settings","ajax_import_theme_settings",{"action":342,"nopriv":324,"callback":343,"hasNonce":326,"hasCapCheck":326,"file":229,"line":286},"popularis_ajax_import_widgets","ajax_import_widgets",{"action":345,"nopriv":324,"callback":346,"hasNonce":326,"hasCapCheck":326,"file":229,"line":347},"popularis_after_import","ajax_after_import",72,{"action":349,"nopriv":324,"callback":325,"hasNonce":326,"hasCapCheck":324,"file":350,"line":351},"popularis_wizard_ajax_get_demo_data","includes\\wizard\\classes\\WizardAjax.php",9,[],[354],{"tag":355,"callback":356,"file":357,"line":358},"popularis-posts","popularis_extra_posts_carousel_shortcode","library\\extra-shortcodes\\shortcodes.php",11,[360,362],{"hook":257,"callback":257,"file":244,"line":361},91,{"hook":257,"callback":257,"file":244,"line":363},637,{"dangerousFunctions":365,"sqlUsage":371,"outputEscaping":374,"fileOperations":530,"externalRequests":110,"nonceChecks":75,"capabilityChecks":531,"bundledLibraries":532},[366],{"fn":367,"file":368,"line":369,"context":370},"unserialize","includes\\panel\\classes\\importers\\class-settings-importer.php",25,"$data = @unserialize( $raw );",{"prepared":372,"raw":92,"locations":373},4,[],{"escaped":375,"rawEcho":376,"locations":377},512,82,[378,380,381,383,384,386,388,390,392,394,396,397,398,400,402,404,405,407,409,411,413,414,416,418,420,422,424,426,428,430,432,434,436,438,440,442,444,446,448,450,451,453,455,457,459,461,463,465,467,469,471,472,474,476,478,480,482,483,485,487,490,492,493,495,497,500,501,503,505,506,508,510,512,513,515,516,518,520,522,524,526,528],{"file":188,"line":337,"context":379},"raw output",{"file":188,"line":347,"context":379},{"file":188,"line":382,"context":379},78,{"file":188,"line":79,"context":379},{"file":188,"line":385,"context":379},174,{"file":188,"line":387,"context":379},184,{"file":188,"line":389,"context":379},257,{"file":188,"line":391,"context":379},267,{"file":393,"line":255,"context":379},"includes\\panel\\classes\\importers\\class-parsers.php",{"file":393,"line":395,"context":379},41,{"file":393,"line":310,"context":379},{"file":393,"line":241,"context":379},{"file":216,"line":399,"context":379},130,{"file":216,"line":401,"context":379},131,{"file":216,"line":403,"context":379},139,{"file":216,"line":385,"context":379},{"file":216,"line":406,"context":379},175,{"file":216,"line":408,"context":379},190,{"file":216,"line":410,"context":379},194,{"file":216,"line":412,"context":379},203,{"file":216,"line":389,"context":379},{"file":216,"line":415,"context":379},259,{"file":216,"line":417,"context":379},314,{"file":216,"line":419,"context":379},322,{"file":216,"line":421,"context":379},373,{"file":216,"line":423,"context":379},426,{"file":216,"line":425,"context":379},470,{"file":216,"line":427,"context":379},521,{"file":216,"line":429,"context":379},710,{"file":216,"line":431,"context":379},743,{"file":216,"line":433,"context":379},1137,{"file":216,"line":435,"context":379},1159,{"file":216,"line":437,"context":379},1160,{"file":229,"line":439,"context":379},408,{"file":229,"line":441,"context":379},413,{"file":229,"line":443,"context":379},609,{"file":229,"line":445,"context":379},672,{"file":229,"line":447,"context":379},709,{"file":229,"line":449,"context":379},746,{"file":350,"line":310,"context":379},{"file":350,"line":452,"context":379},49,{"file":244,"line":454,"context":379},209,{"file":244,"line":456,"context":379},210,{"file":244,"line":458,"context":379},211,{"file":244,"line":460,"context":379},212,{"file":244,"line":462,"context":379},213,{"file":244,"line":464,"context":379},214,{"file":244,"line":466,"context":379},244,{"file":244,"line":468,"context":379},412,{"file":244,"line":470,"context":379},522,{"file":244,"line":470,"context":379},{"file":244,"line":473,"context":379},524,{"file":244,"line":475,"context":379},526,{"file":244,"line":477,"context":379},535,{"file":244,"line":479,"context":379},541,{"file":244,"line":481,"context":379},563,{"file":244,"line":481,"context":379},{"file":244,"line":484,"context":379},565,{"file":244,"line":486,"context":379},567,{"file":488,"line":489,"context":379},"library\\extra-elementor\\elementor-widgets\\text-block.php",286,{"file":281,"line":491,"context":379},171,{"file":281,"line":406,"context":379},{"file":281,"line":494,"context":379},198,{"file":281,"line":496,"context":379},229,{"file":498,"line":499,"context":379},"library\\extra-widgets\\popular-posts-widget.php",30,{"file":498,"line":251,"context":379},{"file":498,"line":502,"context":379},83,{"file":504,"line":499,"context":379},"library\\extra-widgets\\recent-posts-widget.php",{"file":504,"line":251,"context":379},{"file":504,"line":507,"context":379},81,{"file":292,"line":509,"context":379},264,{"file":292,"line":511,"context":379},268,{"file":292,"line":205,"context":379},{"file":292,"line":514,"context":379},313,{"file":292,"line":375,"context":379},{"file":292,"line":517,"context":379},515,{"file":292,"line":519,"context":379},520,{"file":292,"line":521,"context":379},525,{"file":292,"line":523,"context":379},530,{"file":292,"line":525,"context":379},533,{"file":292,"line":527,"context":379},538,{"file":292,"line":529,"context":379},543,17,15,[],[534,550,560,569,579,590,598,607,615,641],{"entryPoint":535,"graph":536,"unsanitizedCount":28,"severity":39},"popularis_extra_review_notice_message (includes\\notify\\notify.php:45)",{"nodes":537,"edges":548},[538,543],{"id":539,"type":540,"label":541,"file":188,"line":542},"n0","source","$_SERVER (x3)",47,{"id":544,"type":545,"label":546,"file":188,"line":347,"wp_function":547},"n1","sink","echo() [XSS]","echo",[549],{"from":539,"to":544,"sanitized":324},{"entryPoint":551,"graph":552,"unsanitizedCount":14,"severity":39},"popularis_extra_pro_notice_message (includes\\notify\\notify.php:161)",{"nodes":553,"edges":558},[554,557],{"id":539,"type":540,"label":555,"file":188,"line":556},"$_SERVER",163,{"id":544,"type":545,"label":546,"file":188,"line":387,"wp_function":547},[559],{"from":539,"to":544,"sanitized":324},{"entryPoint":561,"graph":562,"unsanitizedCount":14,"severity":39},"popularis_extra_pro_notice_sale (includes\\notify\\notify.php:244)",{"nodes":563,"edges":567},[564,566],{"id":539,"type":540,"label":555,"file":188,"line":565},246,{"id":544,"type":545,"label":546,"file":188,"line":391,"wp_function":547},[568],{"from":539,"to":544,"sanitized":324},{"entryPoint":570,"graph":571,"unsanitizedCount":92,"severity":578},"\u003Cnotify> (includes\\notify\\notify.php:0)",{"nodes":572,"edges":576},[573,575],{"id":539,"type":540,"label":574,"file":188,"line":542},"$_SERVER (x5)",{"id":544,"type":545,"label":546,"file":188,"line":347,"wp_function":547},[577],{"from":539,"to":544,"sanitized":326},"low",{"entryPoint":580,"graph":581,"unsanitizedCount":92,"severity":578},"ajax_demo_data (includes\\panel\\demos.php:375)",{"nodes":582,"edges":588},[583,586],{"id":539,"type":540,"label":584,"file":229,"line":585},"$_GET",393,{"id":544,"type":545,"label":546,"file":229,"line":587,"wp_function":547},458,[589],{"from":539,"to":544,"sanitized":326},{"entryPoint":591,"graph":592,"unsanitizedCount":92,"severity":578},"\u003Cdemos> (includes\\panel\\demos.php:0)",{"nodes":593,"edges":596},[594,595],{"id":539,"type":540,"label":584,"file":229,"line":585},{"id":544,"type":545,"label":546,"file":229,"line":587,"wp_function":547},[597],{"from":539,"to":544,"sanitized":326},{"entryPoint":599,"graph":600,"unsanitizedCount":92,"severity":578},"ajax_demo_data (includes\\wizard\\classes\\WizardAjax.php:12)",{"nodes":601,"edges":605},[602,603],{"id":539,"type":540,"label":584,"file":350,"line":499},{"id":544,"type":545,"label":546,"file":350,"line":604,"wp_function":547},73,[606],{"from":539,"to":544,"sanitized":326},{"entryPoint":608,"graph":609,"unsanitizedCount":92,"severity":578},"\u003CWizardAjax> (includes\\wizard\\classes\\WizardAjax.php:0)",{"nodes":610,"edges":613},[611,612],{"id":539,"type":540,"label":584,"file":350,"line":499},{"id":544,"type":545,"label":546,"file":350,"line":604,"wp_function":547},[614],{"from":539,"to":544,"sanitized":326},{"entryPoint":616,"graph":617,"unsanitizedCount":92,"severity":578},"save_popularis_customize (includes\\wizard\\wizard.php:586)",{"nodes":618,"edges":637},[619,622,625,629,631,635],{"id":539,"type":540,"label":620,"file":244,"line":621},"$_POST['popularis-site-title']",593,{"id":544,"type":545,"label":623,"file":244,"line":621,"wp_function":624},"update_option() [Settings Manipulation]","update_option",{"id":626,"type":540,"label":627,"file":244,"line":628},"n2","$_POST['popularis-tagline']",596,{"id":630,"type":545,"label":623,"file":244,"line":628,"wp_function":624},"n3",{"id":632,"type":540,"label":633,"file":244,"line":634},"n4","$_POST['popularis-favicon']",599,{"id":636,"type":545,"label":623,"file":244,"line":634,"wp_function":624},"n5",[638,639,640],{"from":539,"to":544,"sanitized":326},{"from":626,"to":630,"sanitized":326},{"from":632,"to":636,"sanitized":326},{"entryPoint":642,"graph":643,"unsanitizedCount":92,"severity":578},"\u003Cwizard> (includes\\wizard\\wizard.php:0)",{"nodes":644,"edges":651},[645,646,647,648,649,650],{"id":539,"type":540,"label":620,"file":244,"line":621},{"id":544,"type":545,"label":623,"file":244,"line":621,"wp_function":624},{"id":626,"type":540,"label":627,"file":244,"line":628},{"id":630,"type":545,"label":623,"file":244,"line":628,"wp_function":624},{"id":632,"type":540,"label":633,"file":244,"line":634},{"id":636,"type":545,"label":623,"file":244,"line":634,"wp_function":624},[652,653,654],{"from":539,"to":544,"sanitized":326},{"from":626,"to":630,"sanitized":326},{"from":632,"to":636,"sanitized":326},{"summary":656,"deductions":657},"The 'popularis-extra' plugin v1.2.10 exhibits a mixed security posture. On the positive side, static analysis reveals a robust implementation of security controls, with all identified entry points (AJAX handlers, REST API routes, shortcodes, and cron events) appearing to have authentication or permission checks. SQL queries are consistently prepared, and a significant majority of output is properly escaped, indicating good development practices in these areas. Nonce and capability checks are also prevalent.\n\nHowever, the presence of the `unserialize` function is a significant concern, as it can lead to remote code execution vulnerabilities if not handled with extreme care and strict input validation. While no critical or high severity taint flows were identified, the three flows with unsanitized paths, even if of lower severity in this analysis, warrant attention and further investigation to ensure they do not expose the application. The plugin's vulnerability history is also a red flag, with three known medium severity CVEs and, most critically, one currently unpatched vulnerability. The historical pattern of CSRF, authorization bypass, and XSS indicates a recurring tendency for vulnerabilities to emerge in these attack vectors.\n\nIn conclusion, while 'popularis-extra' demonstrates strengths in input sanitization and authentication mechanisms for its entry points, the `unserialize` function, unsanitized paths in taint flows, and a history of unpatched vulnerabilities present substantial risks. The single unpatched CVE significantly lowers the plugin's overall security rating. Users should exercise caution and prioritize updating to a version that addresses all known vulnerabilities.",[658,660,662],{"reason":659,"points":531},"Unpatched CVE",{"reason":661,"points":267},"Dangerous function: unserialize",{"reason":663,"points":162},"Flows with unsanitized paths","2026-03-16T17:56:42.834Z",{"wat":666,"direct":681},{"assetPaths":667,"generatorPatterns":673,"scriptPaths":674,"versionParams":675},[668,669,670,671,672],"\u002Fwp-content\u002Fplugins\u002Fpopularis-extra\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fpopularis-extra\u002Fassets\u002Fcss\u002Fresponsive.css","\u002Fwp-content\u002Fplugins\u002Fpopularis-extra\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fpopularis-extra\u002Fassets\u002Fjs\u002Fscript.js","\u002Fwp-content\u002Fplugins\u002Fpopularis-extra\u002Fassets\u002Fcss\u002Fstyle.css",[],[670,671],[676,677,678,679,680],"popularis-extra\u002Fassets\u002Fcss\u002Fadmin.css?ver=","popularis-extra\u002Fassets\u002Fcss\u002Fresponsive.css?ver=","popularis-extra\u002Fassets\u002Fjs\u002Fadmin.js?ver=","popularis-extra\u002Fassets\u002Fjs\u002Fscript.js?ver=","popularis-extra\u002Fassets\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":682,"htmlComments":684,"htmlAttributes":686,"restEndpoints":689,"jsGlobals":690,"shortcodeOutput":692},[683],"popularis-extra-settings",[685],"Popularis Extra Settings",[687,688],"data-popularis-extra-color","data-popularis-extra-background",[],[691],"popularis_extra_settings",[]]