[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fdTT7d1FklyOk7QS1u4Ns4zhGjshSSIhY3w1WtgCRjro":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":21,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":32,"analysis":135,"fingerprints":236},"publishtomixi","publishToMixi","3.0.2.1","kei51","https:\u002F\u002Fprofiles.wordpress.org\u002Fkei51\u002F","\u003Cp>This plugin allows you to crosspost your entries to both your wordpress and mixi at the same time. Mixi is one of the most popular SNS sites in Japan.\u003C\u002Fp>\n\u003Cp>Once you install this plugin, you will see the option in the edit screen. If you want to publish your post to mixi, you can simply check the option and publish.\u003C\u002Fp>\n\u003Cp>You can find the Japanese description at \u003Ca href=\"http:\u002F\u002Fksnn.com\u002Fdiary\u002F?page_id=2437\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n","This plugin allows you to crosspost your entries to mixi.",40,4755,0,"2010-10-27T03:29:00.000Z","2.8.1","2.5","",[19,20],"crosspost","mixi","http:\u002F\u002Fksnn.com\u002Fdiary\u002F?page_id=2437","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublishtomixi.3.0.2.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":23,"avg_patch_time_days":29,"trust_score":30,"computed_at":31},1,30,84,"2026-04-05T15:04:07.089Z",[33,57,77,96,117],{"slug":34,"name":35,"version":36,"author":37,"author_profile":38,"description":39,"short_description":40,"active_installs":41,"downloaded":42,"rating":43,"num_ratings":44,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":17,"tags":48,"homepage":54,"download_link":55,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"import-vk","Import VK","1.0.2","Kei","https:\u002F\u002Fprofiles.wordpress.org\u002Friselab\u002F","\u003Cp>With this plugin you can easily import any \u003Ca href=\"https:\u002F\u002Fvk.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>VKontakte\u003C\u002Fstrong>\u003C\u002Fa> posts into your \u003Cstrong>WordPress\u003C\u002Fstrong> site.\u003C\u002Fp>\n\u003Ch4>Working with plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>After installation you should go to the plugin’s page in the \u003Cstrong>\u003Cem>Tools\u003C\u002Fem>\u003C\u002Fstrong> section.\u003C\u002Fli>\n\u003Cli>Enter \u003Cem>vk.com\u003C\u002Fem> page address to load data.\u003C\u002Fli>\n\u003Cli>Choose posts range to import.\u003C\u002Fli>\n\u003Cli>You can also set the target records type (post, page) and their initial state (draft, publish).\u003C\u002Fli>\n\u003Cli>Finally, click the \u003Cstrong>\u003Cem>Import\u003C\u002Fem>\u003C\u002Fstrong> button and wait until the end of operation.\u003C\u002Fli>\n\u003C\u002Ful>\n","Importing VKontakte (vk.com) posts into your WordPress site.",300,5225,60,2,"2024-11-27T00:49:00.000Z","6.7.5","4.1",[49,50,51,52,53],"crossposting","import","vk","vkontakte","wall","https:\u002F\u002Fvkmate.ru","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimport-vk.1.0.2.zip",92,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":44,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":17,"tags":71,"homepage":17,"download_link":76,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"awesome-wp-mixitup-portfolio","Awesome Wp Mixitup Portfolio","1.0","nayon46","https:\u002F\u002Fprofiles.wordpress.org\u002Fnayon46\u002F","\u003Cp>Awesome Mixitup Portfolio allows designers, artists, photographers to create, manage and publish a very modern and outstanding Mixitup portfolio that can be filtered using smooth animations and cool image hover effects. Select from a huge set of effects and animation presets to customize the look of your portfolio. Set up, customize and publish your portfolio within just a few minutes.\u003C\u002Fp>\n\u003Cp>add shortcode in your page   [advanced-portfolio]\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>You may provide arbitrary sections, in the same format as the ones above.  This may be of use for extremely complicated\u003Cbr \u002F>\nplugins where more information needs to be conveyed that doesn’t fit into the categories of “description” or\u003Cbr \u002F>\n“installation.”  Arbitrary sections will be shown below the built-in sections outlined above.\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Cp>Ordered list:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Some feature\u003C\u002Fli>\n\u003Cli>Another feature\u003C\u002Fli>\n\u003Cli>Something else about the plugin\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Unordered list:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>something\u003C\u002Fli>\n\u003Cli>something else\u003C\u002Fli>\n\u003Cli>third thing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Here’s a link to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002F\" title=\"Your favorite software\" rel=\"ugc\">WordPress\u003C\u002Fa> and one to \u003Ca href=\"http:\u002F\u002Fdaringfireball.net\u002Fprojects\u002Fmarkdown\u002Fsyntax\" title=\"Markdown is what the parser uses to process much of the readme file\" rel=\"nofollow ugc\">Markdown’s Syntax Documentation\u003C\u002Fa>.\u003Cbr \u002F>\nTitles are optional, naturally.\u003C\u002Fp>\n\u003Cp>Markdown uses email style notation for blockquotes and I’ve been told:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Asterisks for \u003Cem>emphasis\u003C\u002Fem>. Double it up  for \u003Cstrong>strong\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cpre>\u003Ccode>\u003C?php code(); \u002F\u002F goes in backticks ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Awesome Mixitup Portfolio allows you to create a very modern and outstanding portfolio which filters instantly using jQuery animations.",200,7210,100,"2024-01-07T03:03:00.000Z","6.4.8","5.0.1",[72,58,73,74,75],"awesome-photo-galley","image-gallery","photo","widget-photo-gallery","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawesome-wp-mixitup-portfolio.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":65,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":17,"tags":91,"homepage":94,"download_link":95,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"lj-xp","LiveJournal Crossposter","2.3.3","CorneliousJD","https:\u002F\u002Fprofiles.wordpress.org\u002Fcorneliousjd\u002F","\u003Cp>LJ-XP automatically crossposts blog entries to your LiveJournal (or LiveJournal-based clone) account.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Crosspost entries to a LiveJournal account or community.\u003C\u002Fli>\n\u003Cli>Customize the crosspost header or footer notice using built-in shortcodes, or \u003Ca href=\"http:\u002F\u002Fcode.google.com\u002Fp\u002Fljxp\u002Fwiki\u002FCustomHeaderFields\" rel=\"nofollow ugc\">create your own\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Force comments to be on one site or the other, or allow them on both.\u003C\u002Fli>\n\u003Cli>Edit privacy settings for the LiveJournal posts. Choose whether to crosspost private WordPress posts to LJ as private, for friends (including custom friends groups), or not at all.\u003C\u002Fli>\n\u003Cli>Assign tags based on WordPress categories and\u002For tags.\u003C\u002Fli>\n\u003Cli>Assign \u003Ccode>\u003C!--more-->\u003C\u002Fcode> tag settings (use LJ-cut or just link back to the WordPress post).\u003C\u002Fli>\n\u003Cli>Crosspost only certain categories.\u003C\u002Fli>\n\u003Cli>Crosspost excerpts or full text.\u003C\u002Fli>\n\u003Cli>Choose LJ userpics for each post.\u003C\u002Fli>\n\u003Cli>Add the link to the LJ post to your WordPress post or theme.\u003C\u002Fli>\n\u003Cli>Relative links in the WordPress post are converted to full URLs in the crosspost.\u003C\u002Fli>\n\u003Cli>WordPress galleries, which rely on theme CSS for layout, are crossposted with inline styles.\u003C\u002Fli>\n\u003Cli>Option to \u003Cem>not\u003C\u002Fem> crosspost by default.\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically crossposts your WP entries to your LiveJournal or LJ-based clone.",50209,46,6,"2014-12-15T19:07:00.000Z","4.1.42","2.8",[19,92,93],"livejournal","lj","http:\u002F\u002Fcode.google.com\u002Fp\u002Fljxp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flj-xp.2.3.3.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":67,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":17,"tags":110,"homepage":115,"download_link":116,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"journalpress","JournalPress","1.2","Alis","https:\u002F\u002Fprofiles.wordpress.org\u002Falisdee\u002F","\u003Cp>\u003Cstrong>JournalPress\u003C\u002Fstrong> is a WordPress plugin that enabled cross-posting to sites running LiveJournal Server, which in 2024 is basically \u003Ca href=\"https:\u002F\u002Fwww.dreamwidth.org\u002F\" rel=\"nofollow ugc\">Dreamwidth\u003C\u002Fa> (and, ironically, not LiveJournal itself). It is based on the LJXP plugin, however it has a raft of new features including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>support for multiple different mirror journals\u003C\u002Fli>\n\u003Cli>support for scheduled posts\u003C\u002Fli>\n\u003Cli>support for posts created from interfaces (i.e. XML-RPC, Atom)\u003C\u002Fli>\n\u003Cli>mood, music and location support\u003C\u002Fli>\n\u003Cli>per-post-per-journal userpic selection.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.2\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Minor bugfixes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.1\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Updated instructions for using API keys.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Significant code rewrite, so make sure to check your \u003Cstrong>settings\u003C\u002Fstrong> and \u003Cstrong>journals\u003C\u002Fstrong> as some config items may not have migrated exactly as expected!\u003C\u002Fli>\n\u003Cli>Support for LJ-style cut plugins on the WordPress end removed. WordPress-native \u003Ccode>\u003C!--more-->\u003C\u002Fcode> still supported.\u003C\u002Fli>\n\u003Cli>Support for customer user groups for posting locking removed, since the plugin it relied on is super broken.\u003C\u002Fli>\n\u003Cli>Bulk crossposting options removed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>JournalPress\u003C\u002Fstrong> is based off the original \u003Ca href=\"http:\u002F\u002Febroder.net\u002Flivejournal-crossposter\u002F\" rel=\"nofollow ugc\">LJXP\u003C\u002Fa> client by Evan Broder, with the \u003Ca href=\"http:\u002F\u002Fwww.alltrees.org\u002FWordpress\u002F#LCP\" rel=\"nofollow ugc\">LJ Crossposter Plus\u003C\u002Fa> modifications made by Ravenwood and Irwin. No disrespect is intended towards any of these authors; without their great work, this plugin wouldn’t have been possible (or at least would’ve taken a hell of a lot longer to write).\u003C\u002Fp>\n\u003Cp>Big shout-out to everyone who’s kept using this terrible old code all this time. You guys rock!\u003C\u002Fp>\n","A cross-poster supporting Dreamwidth and similar (i.e., LiveJournal-based) sites.",11362,74,3,"2024-06-28T02:09:00.000Z","6.5.8","4.9.1",[111,49,112,113,114],"community","dreamwidth","post","posts","https:\u002F\u002Fgithub.com\u002Falisinfinite\u002Fjournalpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjournalpress.1.2.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":67,"num_ratings":28,"last_updated":127,"tested_up_to":128,"requires_at_least":17,"requires_php":17,"tags":129,"homepage":17,"download_link":134,"security_score":67,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"share-on-pixelfed","Share on Pixelfed","0.9.0","Jan Boddez","https:\u002F\u002Fprofiles.wordpress.org\u002Fjanboddez\u002F","\u003Cp>Automatically share WordPress posts on \u003Ca href=\"https:\u002F\u002Fpixelfed.org\u002F\" rel=\"nofollow ugc\">Pixelfed\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You choose which Post Types are shared—though sharing can still be disabled on a per-post basis. Posts without a Featured Image will not be shared. (The plugin currently doesn’t look for other images inside the post, that is.)\u003C\u002Fp>\n\u003Cp>Supports a number of filter hooks for developers, and is fully compatible with WordPress’s new block editor.\u003C\u002Fp>\n\u003Cp>More details can be found on \u003Ca href=\"https:\u002F\u002Fjan.boddez.net\u002Fwordpress\u002Fshare-on-pixelfed\" rel=\"nofollow ugc\">this plugin’s web page\u003C\u002Fa>.\u003C\u002Fp>\n","Automatically share WordPress (image) posts on Pixelfed.",70,3325,"2026-02-07T10:24:00.000Z","6.9.4",[130,19,131,132,133],"adopt-me","fediverse","pixelfed","share","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshare-on-pixelfed.0.9.0.zip",{"attackSurface":136,"codeSignals":168,"taintFlows":228,"riskAssessment":229,"analyzedAt":235},{"hooks":137,"ajaxHandlers":164,"restRoutes":165,"shortcodes":166,"cronEvents":167,"entryPointCount":13,"unprotectedCount":13},[138,144,148,152,155,158,161],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","admin_init","p2mixi_admin_init","publishToMixi.php",360,{"type":139,"name":145,"callback":146,"file":142,"line":147},"admin_menu","p2mixi_render_option",361,{"type":139,"name":149,"callback":150,"file":142,"line":151},"draft_to_publish","p2mixi_publish_handler",363,{"type":139,"name":153,"callback":150,"file":142,"line":154},"private_to_publish",364,{"type":139,"name":156,"callback":150,"file":142,"line":157},"pending_to_publish",365,{"type":139,"name":159,"callback":150,"file":142,"line":160},"future_to_publish",366,{"type":139,"name":162,"callback":150,"file":142,"line":163},"new_to_publish",367,[],[],[],[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":226,"externalRequests":13,"nonceChecks":28,"capabilityChecks":13,"bundledLibraries":227},[],{"prepared":13,"raw":13,"locations":171},[],{"escaped":44,"rawEcho":173,"locations":174},25,[175,178,180,182,184,186,188,190,192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224],{"file":142,"line":176,"context":177},89,"raw output",{"file":142,"line":179,"context":177},94,{"file":142,"line":181,"context":177},96,{"file":142,"line":183,"context":177},102,{"file":142,"line":185,"context":177},106,{"file":142,"line":187,"context":177},107,{"file":142,"line":189,"context":177},110,{"file":142,"line":191,"context":177},111,{"file":142,"line":193,"context":177},114,{"file":142,"line":195,"context":177},115,{"file":142,"line":197,"context":177},118,{"file":142,"line":199,"context":177},122,{"file":142,"line":201,"context":177},123,{"file":142,"line":203,"context":177},124,{"file":142,"line":205,"context":177},127,{"file":142,"line":207,"context":177},128,{"file":142,"line":209,"context":177},129,{"file":142,"line":211,"context":177},135,{"file":142,"line":213,"context":177},136,{"file":142,"line":215,"context":177},158,{"file":142,"line":217,"context":177},161,{"file":142,"line":219,"context":177},165,{"file":142,"line":221,"context":177},168,{"file":142,"line":223,"context":177},171,{"file":142,"line":225,"context":177},174,4,[],[],{"summary":230,"deductions":231},"The plugin \"publishtomixi\" v3.0.2.1 exhibits a generally strong security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points indicates a minimal attack surface. The code also demonstrates good practices with 100% of SQL queries using prepared statements and the presence of at least one nonce check.  However, a significant concern arises from the low percentage (7%) of properly escaped output, suggesting a high potential for Cross-Site Scripting (XSS) vulnerabilities where dynamic data is displayed to users.  The plugin has no recorded vulnerability history, which is a positive indicator, but the lack of taint analysis data makes it impossible to fully assess the risk of sensitive data being mishandled within the plugin's code.  Overall, while the plugin avoids common pitfalls like unpatched CVEs and raw SQL, the insufficient output escaping warrants careful consideration.",[232],{"reason":233,"points":234},"Low output escaping percentage (7%)",15,"2026-03-16T22:17:09.031Z",{"wat":237,"direct":246},{"assetPaths":238,"generatorPatterns":241,"scriptPaths":242,"versionParams":243},[239,240],"\u002Fwp-content\u002Fplugins\u002Fpublishtomixi\u002Fcss\u002Fp2mixi.css","\u002Fwp-content\u002Fplugins\u002Fpublishtomixi\u002Fjs\u002Fp2mixi.js",[],[240],[244,245],"publishtomixi\u002Fcss\u002Fp2mixi.css?ver=","publishtomixi\u002Fjs\u002Fp2mixi.js?ver=",{"cssClasses":247,"htmlComments":248,"htmlAttributes":250,"restEndpoints":261,"jsGlobals":262,"shortcodeOutput":273},[],[249],"\u003C!-- publishToMixi Settings -->",[251,252,253,254,255,256,257,258,259,260],"name=\"p2mixi_username\"","name=\"p2mixi_password\"","name=\"p2mixi_id\"","name=\"p2mixi_header_default\"","name=\"p2mixi_footer_default\"","name=\"p2mixi_default\"","name=\"p2mixi_noncename\"","name=\"p2mixi_publishcheckbox","name=\"p2mixi_headertext","name=\"p2mixi_footertext",[],[263,264,265,266,267,268,269,270,271,272],"p2mixi_username","p2mixi_password","p2mixi_id","p2mixi_default","p2mixi_header_default","p2mixi_footer_default","p2mixi_noncename","p2mixi_publishcheckbox","p2mixi_headertext","p2mixi_footertext",[]]