[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxqLHy-YrSw3Z5BWF7CuK-RauDotMemrI4tI4PZA-nCk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":129,"fingerprints":300},"post-title-furigana","Post Title Furigana","1.0","sysbird","https:\u002F\u002Fprofiles.wordpress.org\u002Fsysbird\u002F","\u003Cp>Automatically set Japanese Reading title into the custom field.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>When you enter the post title and move the focus, Automatically set Japanese Reading into the custom field.  \u003C\u002Fli>\n\u003Cli>It does not do anything if there is a Japanese Reading already.  \u003C\u002Fli>\n\u003Cli>Japanese Reading saved in the custom field named ‘ptf_furigana’.  \u003C\u002Fli>\n\u003Cli>You can also edit Japanese Reading later.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Go to “Post Title Furigana” Settings.  \u003C\u002Fli>\n\u003Cli>It uses text analysis Web API which Yahoo! JAPAN offers. Please Enter Your Application ID.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.yahoo-help.jp\u002Fapp\u002Fanswers\u002Fdetail\u002Fp\u002F537\u002Fa_id\u002F43397\" rel=\"nofollow ugc\">What the Application ID?\u003C\u002Fa>  \u003C\u002Fli>\n\u003Cli>Select the posttype you want use the plugin.\u003C\u002Fli>\n\u003Cli>When you enter the post title and move the focus, Automatically set Japanese Reading into the custom field.  \u003C\u002Fli>\n\u003Cli>It does not do anything if there is a Japanese Reading already.  \u003C\u002Fli>\n\u003Cli>Japanese Reading saved in the custom field named ‘ptf_furigana’.  \u003C\u002Fli>\n\u003Cli>You can also edit Japanese Reading later.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Contributors\u003C\u002Fh4>\n\u003Cp>TORIYAMA Yuko at \u003Ca href=\"http:\u002F\u002Fwww.sysbird.jp\u002Fwptips\u002F\" rel=\"nofollow ugc\">sysbird\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>More Information\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.sysbird.jp\u002Fwptips\u002Fpost-title-furigana\u002F\" rel=\"nofollow ugc\">Description for Japanese\u003C\u002Fa>\u003C\u002Fp>\n","Automatically set Japanese Reading title into the custom field.",10,1393,0,"2013-11-14T11:40:00.000Z","3.7.41","3.5","",[19,20,21,22,23],"admin","custom-field","language","post","yahoo","http:\u002F\u002Fwww.sysbird.jp\u002Fwptips\u002Fpost-title-furigana\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-title-furigana.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},4,200,30,84,"2026-04-05T03:25:35.689Z",[37,58,78,96,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":56,"download_link":57,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"show-hidden-post-meta","Show Hidden Post Meta","1.0.1","Philip Newcomer","https:\u002F\u002Fprofiles.wordpress.org\u002Fphilipnewcomer\u002F","\u003Cp>This plugin makes all custom fields (post meta) visible in the “Custom Fields” meta box on post edit screens.\u003C\u002Fp>\n","Makes hidden post meta visible on post edit screens",300,8139,86,6,"2019-09-25T22:40:00.000Z","5.2.24","3.2",[19,53,54,55],"custom-fields","meta","post-meta","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshow-hidden-post-meta\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-hidden-post-meta.1.0.1.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":45,"downloaded":66,"rating":47,"num_ratings":11,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":75,"download_link":76,"security_score":77,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-admin-search-meta","WP-Admin Search Post Meta","0.3","meloniq","https:\u002F\u002Fprofiles.wordpress.org\u002Fmeloniq\u002F","\u003Cp>Enables searching post meta fields on admin pages.\u003C\u002Fp>\n","Enables searching post meta fields on admin pages.",6412,"2024-11-21T22:59:00.000Z","6.7.5","4.9","5.6",[53,55,72,73,74],"postmeta","search","wp-admin","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-admin-search-meta\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-admin-search-meta.0.3.zip",92,{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":31,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":17,"tags":92,"homepage":94,"download_link":95,"security_score":88,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"list-more-custom-field-names","List More Custom Field Names","1.4.1","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>By default, WordPress only allows 30 custom field names\u002Fkeys to be listed in the dropdown selection ‘Name’ field when writing a post or page. If you, or the plugins you use, make use of a lot of custom field key names, you may surpass the default limit resulting in some custom field keys not being listed. This may force post authors to manually type in custom field key names if they aren’t listed, which increases the chances for naming errors (typos, or not using the precise key name that is needed). This may also cause some authors concern wondering where previously used custom field keys have gone since they aren’t listed.\u003C\u002Fp>\n\u003Cp>This plugin increases the limit to 200 custom field key names.\u003C\u002Fp>\n\u003Cp>There is no settings page to customize the default value. If you’d like to list some number of custom field key names other than 200 (say, for example, 100), you can do so in either of two ways:\u003C\u002Fp>\n\u003Col>\n\u003Cli>By editing your wp-config.php file and at the end adding a line such as:\u003Cbr \u002F>\ndefine( ‘CUSTOM_FIELD_NAMES_LIMIT’, 100 );\u003Cbr \u002F>\n\u003Cem>-or-\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Somewhere — ideally in a mu-plugin or site-specific plugin, or less ideally your active theme’s functions.php file — hook the ‘c2c_list_more_custom_field_names’ filter and return the number you’d like to use:\u003Cbr \u002F>\nadd_filter( ‘c2c_list_more_custom_field_names’, function ( $limist ) { return 100; } );\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cem>Note:\u003C\u002Fem> This plugin has no effect for users who make use of the block editor (aka Gutenberg) introduced in WordPress v5.0 because that editor does not directly expose custom fields in the interface.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Flist-more-custom-field-names\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flist-more-custom-field-names\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Flist-more-custom-field-names\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n","Allows for more existing custom field names to be listed in the dropdown selection field when writing a post.",80,9386,100,"2025-04-17T20:27:00.000Z","6.8.5","2.6",[19,53,93,54,22],"edit","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Flist-more-custom-field-names\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flist-more-custom-field-names.1.4.1.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":11,"downloaded":104,"rating":13,"num_ratings":13,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":17,"tags":108,"homepage":112,"download_link":113,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"enable-posts-order","Enable posts order","0.1","ben.yitzhaki","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenyitzhaki\u002F","\u003Cp>Order your posts (similar to the generic order option for pages).\u003C\u002Fp>\n\u003Cp>This plugin allows you to sort your posts using a simple drag and drop interface.\u003Cbr \u002F>\nThe option is visible only when entering a certain posts category.\u003C\u002Fp>\n\u003Cp>Hey, you can always check \u003Ca href=\"http:\u002F\u002Fbenyitzhaki.co.il\" title=\"benyitzhaki.co.il\" rel=\"nofollow ugc\">my personal page\u003C\u002Fa> for updates or just to say hi .\u003C\u002Fp>\n","Order posts using a simple drag and drop ui.",7774,"2011-04-04T02:02:00.000Z","3.1.4","2.0.2",[19,53,109,110,111],"managment","order","posts","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fenable-posts-order\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenable-posts-order.0.2.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":11,"downloaded":122,"rating":13,"num_ratings":13,"last_updated":123,"tested_up_to":124,"requires_at_least":16,"requires_php":17,"tags":125,"homepage":17,"download_link":128,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"htm-customareas","HTM Custom Areas","1.0.0","oliverhtml","https:\u002F\u002Fprofiles.wordpress.org\u002Foliverhtml\u002F","\u003Cp>Have you ever wanted to allow your site users to add content to your site without giving them full access to all of the posts? Well now you can with HTM Custom Areas for wordpress.\u003Cbr \u002F>\nThis plugin allows the administrator to select which user types can create custom area posts, the administrator can then use the shortcode icon on the editor to insert the custom post\u003Cbr \u002F>\n content inside of their own posts. To add this to a sidebar the administrator can create a text widget and place the shortcode inside of this.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","Custom areas allows your editors and contributors to create custom areas posts which the admin can then output inside their own posts and sections whi &hellip;",1475,"2015-04-22T14:12:00.000Z","4.1.42",[126,20,53,127,22],"administrator","custom-post-type","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhtm-customareas.zip",{"attackSurface":130,"codeSignals":177,"taintFlows":205,"riskAssessment":287,"analyzedAt":299},{"hooks":131,"ajaxHandlers":165,"restRoutes":173,"shortcodes":174,"cronEvents":175,"entryPointCount":176,"unprotectedCount":176},[132,137,141,145,149,152,156,160],{"type":133,"name":134,"callback":134,"file":135,"line":136},"action","init","post-title-furigana.php",31,{"type":133,"name":138,"callback":139,"file":135,"line":140},"admin_print_scripts","add_script",32,{"type":133,"name":142,"callback":143,"file":135,"line":144},"edit_form_after_title","add_custom_field",33,{"type":133,"name":146,"callback":147,"file":135,"line":148},"save_post","update",34,{"type":133,"name":150,"callback":147,"file":135,"line":151},"publish_post",35,{"type":133,"name":153,"callback":154,"file":135,"line":155},"delete_post","delete",36,{"type":133,"name":157,"callback":158,"file":135,"line":159},"admin_menu","add_config_page",46,{"type":161,"name":162,"callback":163,"priority":11,"file":135,"line":164},"filter","plugin_action_links","filter_plugin_actions",54,[166,170],{"action":4,"nopriv":167,"callback":168,"hasNonce":167,"hasCapCheck":167,"file":135,"line":169},false,"get",37,{"action":4,"nopriv":171,"callback":168,"hasNonce":167,"hasCapCheck":167,"file":135,"line":172},true,38,[],[],[],2,{"dangerousFunctions":178,"sqlUsage":179,"outputEscaping":181,"fileOperations":182,"externalRequests":13,"nonceChecks":13,"capabilityChecks":182,"bundledLibraries":204},[],{"prepared":13,"raw":13,"locations":180},[],{"escaped":182,"rawEcho":183,"locations":184},1,11,[185,188,190,192,193,194,195,197,198,200,202],{"file":135,"line":186,"context":187},110,"raw output",{"file":135,"line":189,"context":187},114,{"file":135,"line":191,"context":187},125,{"file":135,"line":191,"context":187},{"file":135,"line":191,"context":187},{"file":135,"line":191,"context":187},{"file":135,"line":196,"context":187},130,{"file":135,"line":196,"context":187},{"file":135,"line":199,"context":187},155,{"file":135,"line":201,"context":187},156,{"file":135,"line":203,"context":187},219,[],[206,239,251,262],{"entryPoint":207,"graph":208,"unsanitizedCount":237,"severity":238},"config_page (post-title-furigana.php:74)",{"nodes":209,"edges":233},[210,215,221,224,228,231],{"id":211,"type":212,"label":213,"file":135,"line":214},"n0","source","$_POST (x3)",82,{"id":216,"type":217,"label":218,"file":135,"line":219,"wp_function":220},"n1","sink","update_option() [Settings Manipulation]",83,"update_option",{"id":222,"type":212,"label":223,"file":135,"line":186},"n2","$_SERVER[?]",{"id":225,"type":217,"label":226,"file":135,"line":186,"wp_function":227},"n3","echo() [XSS]","echo",{"id":229,"type":212,"label":230,"file":135,"line":214},"n4","$_POST",{"id":232,"type":217,"label":226,"file":135,"line":189,"wp_function":227},"n5",[234,235,236],{"from":211,"to":216,"sanitized":167},{"from":222,"to":225,"sanitized":167},{"from":229,"to":232,"sanitized":167},5,"medium",{"entryPoint":240,"graph":241,"unsanitizedCount":182,"severity":238},"get (post-title-furigana.php:202)",{"nodes":242,"edges":249},[243,245],{"id":211,"type":212,"label":230,"file":135,"line":244},203,{"id":216,"type":217,"label":246,"file":135,"line":247,"wp_function":248},"file_get_contents() [SSRF\u002FLFI]",207,"file_get_contents",[250],{"from":211,"to":216,"sanitized":167},{"entryPoint":252,"graph":253,"unsanitizedCount":13,"severity":261},"add_custom_field (post-title-furigana.php:139)",{"nodes":254,"edges":259},[255,258],{"id":211,"type":212,"label":256,"file":135,"line":257},"$_REQUEST",146,{"id":216,"type":217,"label":226,"file":135,"line":199,"wp_function":227},[260],{"from":211,"to":216,"sanitized":171},"low",{"entryPoint":263,"graph":264,"unsanitizedCount":13,"severity":261},"\u003Cpost-title-furigana> (post-title-furigana.php:0)",{"nodes":265,"edges":281},[266,267,268,269,270,271,272,275,277,279],{"id":211,"type":212,"label":213,"file":135,"line":214},{"id":216,"type":217,"label":218,"file":135,"line":219,"wp_function":220},{"id":222,"type":212,"label":223,"file":135,"line":186},{"id":225,"type":217,"label":226,"file":135,"line":186,"wp_function":227},{"id":229,"type":212,"label":230,"file":135,"line":214},{"id":232,"type":217,"label":226,"file":135,"line":189,"wp_function":227},{"id":273,"type":212,"label":274,"file":135,"line":257},"n6","$_REQUEST (x2)",{"id":276,"type":217,"label":226,"file":135,"line":199,"wp_function":227},"n7",{"id":278,"type":212,"label":230,"file":135,"line":214},"n8",{"id":280,"type":217,"label":246,"file":135,"line":247,"wp_function":248},"n9",[282,283,284,285,286],{"from":211,"to":216,"sanitized":171},{"from":222,"to":225,"sanitized":171},{"from":229,"to":232,"sanitized":171},{"from":273,"to":276,"sanitized":171},{"from":278,"to":280,"sanitized":171},{"summary":288,"deductions":289},"The \"post-title-furigana\" plugin v1.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and does not appear to have any publicly known vulnerabilities. The absence of external HTTP requests and bundled libraries further reduces potential attack vectors. However, significant concerns arise from the plugin's attack surface. It possesses two AJAX handlers, both of which lack authentication checks, presenting a clear opportunity for unauthorized actions. Furthermore, the taint analysis revealed two flows with unsanitized paths, indicating a potential for privilege escalation or other security issues if these paths are exposed to user input. The low percentage of properly escaped output also raises alarms, as it could lead to cross-site scripting (XSS) vulnerabilities.",[290,292,295,297],{"reason":291,"points":11},"AJAX handlers without authentication",{"reason":293,"points":294},"Taint flows with unsanitized paths",12,{"reason":296,"points":48},"Low percentage of output escaping",{"reason":298,"points":237},"Missing nonce checks on AJAX","2026-03-17T01:42:25.550Z",{"wat":301,"direct":308},{"assetPaths":302,"generatorPatterns":304,"scriptPaths":305,"versionParams":306},[303],"\u002Fwp-content\u002Fplugins\u002Fpost-title-furigana\u002Fpost-title-furigana.js",[],[303],[307],"post-title-furigana\u002Fpost-title-furigana.js?ver=",{"cssClasses":309,"htmlComments":311,"htmlAttributes":312,"restEndpoints":317,"jsGlobals":318,"shortcodeOutput":320},[310],"wraper-post-title-furigana",[],[313,314,315,316],"id=\"ptf_furigana\"","name=\"ptf_furigana\"","id=\"ptf_ajax_url\"","name=\"ptf_ajax_url\"",[],[319],"ptf_ajax_url",[]]