[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQlb8_5hognplc5b-XrZD3OBMxbNMxy1uPzejFSY6kHA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":136,"fingerprints":191},"powies-irc-chat","Powie's IRC Chat","0.9.2","PowieT","https:\u002F\u002Fprofiles.wordpress.org\u002Fpowiet\u002F","\u003Cp>This plugin includes a IRC chat system on a wordpress page or post. It makes\u003Cbr \u002F>\nusage of the coolsmile IRC applet. Just enter irc server, port and channels to join\u003Cbr \u002F>\non the settings page. Include shortcode PIRC on a page and your chat is ready.\u003C\u002Fp>\n\u003Ch4>Including:\u003C\u002Fh4>\n\u003Cp>Coolsmile Chat Software\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Support Forum @ \u003Ca href=\"http:\u002F\u002Fgoo.gl\u002FlfR7B\" rel=\"nofollow ugc\">powie.de\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Remove plugin\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Deactivate plugin through the ‘Plugins’ menu in WordPress\u003C\u002Fli>\n\u003Cli>Delete plugin through the ‘Plugins’ menu in WordPress\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>To do\u003C\u002Fh3>\n\u003Cp>Maybee Translations. Does someone wants to help?\u003C\u002Fp>\n","IRC Chat",10,23265,60,3,"2013-12-19T07:40:00.000Z","3.7.41","2.8","",[20,21,22],"chat","irc","shortcode","http:\u002F\u002Fwww.powie.de","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpowies-irc-chat.0.9.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"powiet",6,650,89,1295,71,"2026-04-04T15:26:10.177Z",[39,61,80,99,120],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":13,"downloaded":47,"rating":48,"num_ratings":14,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":26,"last_vuln_date":60,"fetched_at":28},"scancircle","ScanCircle","2.9.3","Arnoud Klaren","https:\u002F\u002Fprofiles.wordpress.org\u002Faklaren\u002F","\u003Cp>Only for registered ScanCircle partners. See the \u003Ca href=\"https:\u002F\u002Fwww.scancircle.com\u002Fscancircle\u002Fpartner-program\" rel=\"nofollow ugc\">ScanCircle partner program\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Login to your ScanCircle partner page and select the Scan Widget tab to generate the required ScanCircle shortcode and copy\u002Fpaste it into your post.\u003C\u002Fp>\n","Shortcode handler for the scan widget on ScanCircle partner websites.",5875,100,"2026-01-17T11:40:00.000Z","6.9.4","2.5",[53,54,40,22,55],"button","scan","widget","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fscancircle","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscancircle.2.9.3.zip",99,1,"2024-12-17 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":26,"num_ratings":26,"last_updated":71,"tested_up_to":50,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":78,"download_link":79,"security_score":48,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"init-chat-engine","Init Chat Engine – Real-Time, Community, Extensible","1.3.0","Init HTML","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrokensmile2103-1\u002F","\u003Cp>Init Chat Engine is a clean and minimal frontend chatbox plugin, designed for homepage or site-wide communication with comprehensive administrative controls.\u003C\u002Fp>\n\u003Cp>This plugin is the core user system behind the \u003Ca href=\"https:\u002F\u002Fen.inithtml.com\u002Finit-plugin-suite-minimalist-powerful-and-free-wordpress-plugins\u002F\" rel=\"nofollow ugc\">Init Plugin Suite\u003C\u002Fa> – optimized for frontend-first interaction, extensibility, and real-time gamification.\u003C\u002Fp>\n\u003Cp>GitHub repository: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbrokensmile2103\u002Finit-chat-engine\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fbrokensmile2103\u002Finit-chat-engine\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Frontend Experience:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Built with 100% REST API and Vanilla JS\u003Cbr \u002F>\n– No jQuery, no bloat – blazing fast\u003Cbr \u002F>\n– Fully embeddable via \u003Ccode>[init_chatbox]\u003C\u002Fcode> shortcode\u003Cbr \u002F>\n– Guest messaging support (optional)\u003Cbr \u002F>\n– Smart polling system (adaptive 3.5–10s based on activity)\u003Cbr \u002F>\n– Browser notifications when new messages arrive\u003Cbr \u002F>\n– Scroll-up to load history, scroll-down to auto-scroll\u003Cbr \u002F>\n– Optimistic sending & “new message” jump button\u003Cbr \u002F>\n– Clean UI with customizable themes\u003Cbr \u002F>\n– Template override supported (\u003Ccode>chatbox.php\u003C\u002Fcode>)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Administrative Control:\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>Complete Settings Panel\u003C\u002Fstrong> – Basic, Security, and Advanced configurations\u003Cbr \u002F>\n– \u003Cstrong>Message Management\u003C\u002Fstrong> – Search, view, delete messages with pagination\u003Cbr \u002F>\n– \u003Cstrong>User Moderation\u003C\u002Fstrong> – Ban\u002Funban users by IP or user ID with expiration\u003Cbr \u002F>\n– \u003Cstrong>Rate Limiting\u003C\u002Fstrong> – Prevent spam with configurable message limits\u003Cbr \u002F>\n– \u003Cstrong>Word Filtering\u003C\u002Fstrong> – Block messages containing prohibited words\u003Cbr \u002F>\n– \u003Cstrong>Statistics Dashboard\u003C\u002Fstrong> – View chat activity, user engagement, and trends\u003Cbr \u002F>\n– \u003Cstrong>Cleanup Tools\u003C\u002Fstrong> – Automatic and manual cleanup of old messages\u003Cbr \u002F>\n– \u003Cstrong>Custom CSS Support\u003C\u002Fstrong> – Full styling customization options\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security & Moderation:\u003C\u002Fstrong>\u003Cbr \u002F>\n– IP-based and user-based banning system\u003Cbr \u002F>\n– Configurable rate limiting (messages per minute)\u003Cbr \u002F>\n– Word filtering with custom blocked word lists\u003Cbr \u002F>\n– Message moderation queue (optional)\u003Cbr \u002F>\n– Automatic cleanup of old messages and expired bans\u003Cbr \u002F>\n– Admin override capabilities\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Multilingual Ready:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Translation-ready with full \u003Ccode>.pot\u003C\u002Fcode> file included\u003Cbr \u002F>\n– Vietnamese translation included\u003Cbr \u002F>\n– Easy to translate to any language\u003C\u002Fp>\n\u003Cp>Perfect for community-based sites, forums, fanpages, manga readers, SaaS dashboards, customer support, or any interactive chat widget.\u003C\u002Fp>\n\u003Ch3>Shortcode Attributes\u003C\u002Fh3>\n\u003Cp>Shortcode \u003Ccode>[init_chatbox]\u003C\u002Fcode> supports the following attributes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>height\u003C\u002Fcode> – Set chat height (e.g., \u003Ccode>height=\"400px\"\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>\u003Ccode>width\u003C\u002Fcode> – Set chat width (e.g., \u003Ccode>width=\"100%\"\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>\u003Ccode>theme\u003C\u002Fcode> – Apply custom theme (e.g., \u003Ccode>theme=\"dark\"\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>\u003Ccode>show_avatars\u003C\u002Fcode> – Override avatar setting (\u003Ccode>true\u003C\u002Fcode>\u002F\u003Ccode>false\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>\u003Ccode>show_timestamps\u003C\u002Fcode> – Override timestamp setting (\u003Ccode>true\u003C\u002Fcode>\u002F\u003Ccode>false\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>\u003Ccode>title\u003C\u002Fcode> – Add custom chat title\u003C\u002Fli>\n\u003Cli>\u003Ccode>class\u003C\u002Fcode> – Add custom CSS classes\u003C\u002Fli>\n\u003Cli>\u003Ccode>id\u003C\u002Fcode> – Set custom container ID\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example: \u003Ccode>[init_chatbox height=\"500px\" title=\"Community Chat\" theme=\"modern\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch3>Filters for Developers\u003C\u002Fh3>\n\u003Cp>This plugin provides filters and actions to allow developers to extend word filtering, message processing, and chat behavior without modifying core files.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>init_plugin_suite_chat_engine_word_filter_strategy\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nModify word filtering strategy (\u003Ccode>substring\u003C\u002Fcode>, \u003Ccode>word\u003C\u002Fcode>, \u003Ccode>regex\u003C\u002Fcode>).\u003Cbr \u002F>\n\u003Cstrong>Applies to:\u003C\u002Fstrong> Message validation\u003Cbr \u002F>\n\u003Cstrong>Params:\u003C\u002Fstrong> \u003Ccode>string $strategy\u003C\u002Fcode>, \u003Ccode>array $settings\u003C\u002Fcode>, \u003Ccode>string $message\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>init_plugin_suite_chat_engine_blocked_words\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nModify the blocked-words list before validation.\u003Cbr \u002F>\n\u003Cstrong>Applies to:\u003C\u002Fstrong> Message validation\u003Cbr \u002F>\n\u003Cstrong>Params:\u003C\u002Fstrong> \u003Ccode>array $blocked_words\u003C\u002Fcode>, \u003Ccode>array $settings\u003C\u002Fcode>, \u003Ccode>string $message\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>init_plugin_suite_chat_engine_bypass_filter\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nBypass filtering under custom conditions (VIP, internal users, etc.).\u003Cbr \u002F>\n\u003Cstrong>Applies to:\u003C\u002Fstrong> Message validation\u003Cbr \u002F>\n\u003Cstrong>Params:\u003C\u002Fstrong> \u003Ccode>bool $bypass\u003C\u002Fcode>, \u003Ccode>string $message\u003C\u002Fcode>, \u003Ccode>WP_User|null $user\u003C\u002Fcode>, \u003Ccode>array $settings\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>init_plugin_suite_chat_engine_word_block_hit\u003C\u002Fcode>\u003C\u002Fstrong> \u003Cem>(action)\u003C\u002Fem>\u003Cbr \u002F>\nTriggered when a word filter rule blocks a message.\u003Cbr \u002F>\n\u003Cstrong>Applies to:\u003C\u002Fstrong> Message validation\u003Cbr \u002F>\n\u003Cstrong>Params:\u003C\u002Fstrong> \u003Ccode>string $blocked_word\u003C\u002Fcode>, \u003Ccode>string $message\u003C\u002Fcode>, \u003Ccode>string $strategy\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>init_plugin_suite_chat_engine_enrich_message_row\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nExtend chat message data (add flags, metadata, user info, etc.).\u003Cbr \u002F>\n\u003Cstrong>Applies to:\u003C\u002Fstrong> Backend DB \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> JSON output\u003Cbr \u002F>\n\u003Cstrong>Params:\u003C\u002Fstrong> \u003Ccode>array $message_row\u003C\u002Fcode>, \u003Ccode>WP_User|null $user\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later.\u003Cbr \u002F>\nYou are free to use, modify, and distribute it under the same license.\u003C\u002Fp>\n","A lightweight, real-time community chat system built with REST API and Vanilla JS. No jQuery, no reload. Full admin panel with moderation tools.",50,1160,"2026-03-02T13:35:00.000Z","5.5","7.4",[20,75,76,77,22],"community","lightweight","realtime","https:\u002F\u002Finithtml.com\u002Fplugin\u002Finit-chat-engine\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finit-chat-engine.1.3.0.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":48,"num_ratings":59,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":18,"tags":93,"homepage":97,"download_link":98,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"chathispano","ChatHispano","1.2.2","Toni Garcia","https:\u002F\u002Fprofiles.wordpress.org\u002Ftonigarcia\u002F","\u003Cp>English:\u003Cbr \u002F>\nThe plugin allows a webmaster to insert webchat to chat in the ChatHispano Chat\u002FIRC Network.\u003C\u002Fp>\n\u003Cp>Spanish:\u003Cbr \u002F>\nEste plugin permite a un webmaster insertar un webchat para chatear en la red de IRC\u002FChat de ChatHispano.\u003C\u002Fp>\n","Integra los servicios de la red de IRC & Chat de ChatHispano en tu WordPress. Inserta un Webchat en tu Web para chatear y conocer a la gente.",40,3403,"2020-05-25T11:35:00.000Z","5.4.19","5.4",[20,94,21,95,96],"gente","network","webchat","http:\u002F\u002Fgithub.com\u002FIRCHispano","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchathispano.1.2.2.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":11,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":18,"tested_up_to":110,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":117,"download_link":118,"security_score":48,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":119},"conversejs","ConverseJS","4.2.0","brjhcxnnwqjevwc","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrjhcxnnwqjevwc\u002F","\u003Cp>Converse.js is an open source webchat client, that runs in the browser and can be integrated into any website.\u003C\u002Fp>\n\u003Cp>It’s similar to Facebook chat, but also supports multi-user chatrooms.\u003C\u002Fp>\n\u003Cp>Converse.js can connect to any accessible XMPP\u002FJabber server, either from a public provider such as chatme.im, or to one you have set up yourself.\u003C\u002Fp>\n\u003Cp>For more information, check out \u003Ca href=\"https:\u002F\u002Fconversejs.org\u002F\" rel=\"nofollow ugc\">conversejs\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fmotostorie.blog\u002F\" rel=\"nofollow ugc\">MotoStorie\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Special Thanks\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>To my sister for having tolerated\u003C\u002Fli>\n\u003Cli>My work for the economic support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Single-user chat\u003C\u002Fli>\n\u003Cli>Multi-user chatrooms \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0045.html\" rel=\"nofollow ugc\">XEP 45\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Direct invitations to chat rooms \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0249.html\" rel=\"nofollow ugc\">XEP 249\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>vCard support \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0054.html\" rel=\"nofollow ugc\">XEP 54\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Service discovery \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0030.html\" rel=\"nofollow ugc\">XEP 30\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>In-band registration \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0077.html\" rel=\"nofollow ugc\">XEP 77\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contact rosters and groups\u003C\u002Fli>\n\u003Cli>Contact subscriptions\u003C\u002Fli>\n\u003Cli>Roster item exchange \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Ftmp\u002Fxep-0144-1.1.html\" rel=\"nofollow ugc\">XEP 144\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Chat statuses (online, busy, away, offline)\u003C\u002Fli>\n\u003Cli>Custom status messages\u003C\u002Fli>\n\u003Cli>Typing and chat state notifications \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0085.html\" rel=\"nofollow ugc\">XEP 85\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Desktop notification messages\u003C\u002Fli>\n\u003Cli>Messages appear in all connected chat clients \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0280.html\" rel=\"nofollow ugc\">XEP 280\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Third person “\u002Fme” messages \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0245.html\" rel=\"nofollow ugc\">XEP 245\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>XMPP Ping \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0199.html\" rel=\"nofollow ugc\">XEP 199\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Server-side archiving of messages \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0313.html\" rel=\"nofollow ugc\">XEP 313\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Client state indication \u003Ca href=\"http:\u002F\u002Fxmpp.org\u002Fextensions\u002Fxep-0352.html\" rel=\"nofollow ugc\">XEP 352\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Off-the-record encryption\u003C\u002Fli>\n\u003Cli>Translated into 16 languages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Hand-crafted, and made with love, in Padova, Italy.\u003C\u002Fp>\n\u003Cp>Based on \u003Ca href=\"http:\u002F\u002Fconversejs.org\u002F\" rel=\"nofollow ugc\">Converse.js\u003C\u002Fa>.\u003C\u002Fp>\n","Converse.js is an open source webchat client, that runs in the browser and can be integrated into any website.",17379,72,5,"6.4.8","4.6","7.3",[20,114,21,115,116],"converse","jabber","xmpp","https:\u002F\u002Fconversejs.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fconversejs.4.2.0.zip","2026-03-15T10:48:56.248Z",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":11,"downloaded":128,"rating":26,"num_ratings":26,"last_updated":129,"tested_up_to":130,"requires_at_least":131,"requires_php":18,"tags":132,"homepage":134,"download_link":135,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"geekshed-embed","GeekShed Embed","2.0.1","Ryan Murphy","https:\u002F\u002Fprofiles.wordpress.org\u002Fryanmurphy\u002F","\u003Cp>GeekShed Embed allows a user to easily embed a \u003Ca href=\"http:\u002F\u002Fgeekshed.net\" rel=\"nofollow ugc\">GeekShed IRC\u003C\u002Fa> channel (chat room) onto their website. In additions to creating it via the options page, there are also two shortcodes that allow for use in page and\u002For post. Two other shortcodes are also included; one will display a list of users currently in the room, and the other will display a small userbadge with the number of chatters in the room.\u003C\u002Fp>\n\u003Cp>Comments, questions, suggestions? Post them at\u003C\u002Fp>\n","Easily add a GeekShed IRC channel (chat room) onto your site. Also includes shortcodes for other items provided by GeekShed",2907,"2012-07-16T16:43:00.000Z","3.4.2","2.7.0",[20,133,21],"geekshed","http:\u002F\u002Fgeekshed.net\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgeekshed-embed.2.0.1.zip",{"attackSurface":137,"codeSignals":161,"taintFlows":179,"riskAssessment":180,"analyzedAt":190},{"hooks":138,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":160,"entryPointCount":59,"unprotectedCount":26},[139,145,149],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","admin_menu","pirc_create_menu","powies-irc-chat.php",16,{"type":140,"name":146,"callback":147,"file":143,"line":148},"admin_init","pirc_register_settings",17,{"type":140,"name":150,"callback":151,"file":143,"line":152},"init","pirc_translation",18,[],[],[156],{"tag":157,"callback":158,"file":143,"line":159},"pirc","pirc_shortcode",19,[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":178},[],{"prepared":26,"raw":26,"locations":164},[],{"escaped":26,"rawEcho":109,"locations":166},[167,171,172,174,176],{"file":168,"line":169,"context":170},"pirc_settings.php",15,"raw output",{"file":168,"line":159,"context":170},{"file":168,"line":173,"context":170},25,{"file":168,"line":175,"context":170},32,{"file":168,"line":177,"context":170},33,[],[],{"summary":181,"deductions":182},"The powies-irc-chat plugin, version 0.9.2, presents a mixed security posture.  On the positive side, the plugin exhibits good practices regarding database interactions, with all SQL queries utilizing prepared statements. It also has no known CVEs and no recorded vulnerability history, suggesting a generally stable codebase. The attack surface is minimal, with only one shortcode and no AJAX handlers, REST API routes, or cron events, all of which are either absent or lack explicit entry points that require immediate authentication checks.\n\nHowever, a significant concern arises from the lack of output escaping. With 100% of identified outputs not properly escaped, this plugin is highly susceptible to Cross-Site Scripting (XSS) vulnerabilities. Any dynamic content processed or displayed by the plugin could be injected with malicious scripts, posing a risk to users. Furthermore, the absence of nonce checks and capability checks for its limited entry points means that even the shortcode could potentially be exploited if it processes user-supplied data, although the static analysis did not identify specific flows that would lead to critical or high severity issues in taint analysis.\n\nIn conclusion, while the plugin demonstrates strengths in database security and a clean vulnerability history, the complete lack of output escaping is a critical weakness that needs immediate attention. The minimal attack surface and absence of known vulnerabilities are positive indicators, but the XSS vulnerability risk significantly tempers the overall security. Addressing the output escaping is paramount to improving its security posture.",[183,186,188],{"reason":184,"points":185},"Unescaped output on all identified outputs",20,{"reason":187,"points":109},"Missing nonce checks for entry points",{"reason":189,"points":109},"Missing capability checks for entry points","2026-03-17T00:10:04.911Z",{"wat":192,"direct":199},{"assetPaths":193,"generatorPatterns":196,"scriptPaths":197,"versionParams":198},[194,195],"\u002Fwp-content\u002Fplugins\u002Fpowies-irc-chat\u002Fchat\u002FEIRC.jar","\u002Fwp-content\u002Fplugins\u002Fpowies-irc-chat\u002Fchat\u002FEIRC-cfg.jar",[],[],[],{"cssClasses":200,"htmlComments":201,"htmlAttributes":204,"restEndpoints":249,"jsGlobals":250,"shortcodeOutput":251},[],[202,203],"\u003C!-- pirc Plugin Output -->","\u003C!-- \u002Fpirc Plugin Output -->",[205,206,207,208,209,210,211,212,213,214,215,216,217,218,219,220,221,222,223,224,225,226,227,228,229,230,231,232,233,234,235,236,237,238,239,240,241,242,243,244,245,246,247,248],"codebase","code","name","archive","cabbase","server","port","ssl","irc_pass","font_name","font_size","language","mainbg","mainfg","textbg","textfg","selbg","selfg","join","username","realname","nickname","user_modes","nicksrv_pass","login","asl","spawn_frame","disabled_cmds","gui_nick","gui_away","gui_chanlist","gui_userlist","gui_options","gui_help","gui_connect","write_color","userid","configuration","debug_traffic","boxmessage","boxbgcolor","boxfgcolor","progressbar","progresscolor",[],[],[252],"\u003Capplet codebase=\"plugins_url('powies-irc-chat\u002Fchat')\" code=\"EIRC.class\" name=\"coolsmile\""]