[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fSRjU6EdWX8FoQr9t_sV5elCGpljHti8fDcQYtIsPd1w":3},{"slug":4,"name":5,"version":6,"author":4,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":94,"crawl_stats":36,"alternatives":101,"analysis":207,"fingerprints":358},"publitio","Publitio","2.2.5","https:\u002F\u002Fprofiles.wordpress.org\u002Fpublitio\u002F","\u003Cp>Publitio WordPress Integration Plugin\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> WordPress plugin enables effortless integration with the \u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> cloud media platform,\u003Cbr \u002F>\nproviding seamless access and embedding of your media files directly within WordPress editors through a dedicated \u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> block.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fpublit.io\" rel=\"nofollow ugc\">Publitio\u003C\u002Fa> aims to simplify the entire Media Asset Management (MAM) process by streamlining common tasks used by most web and\u003Cbr \u002F>\nmobile publishers, such as uploading, hosting, processing, publishing, monetizing, and managing media files.\u003Cbr \u002F>\nIts cloud-based platform offers secure storage, powerful on-the-fly media transformations, fast global delivery via CDN,\u003Cbr \u002F>\nwatermarking, and advanced analytics – helping content creators and businesses save time, reduce costs,\u003Cbr \u002F>\nand focus on their core activities while ensuring efficient, scalable management of all digital assets.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- Easy Embedding: Add images, videos, audios, documents, and archives files directly in Gutenberg, Elementor and classic editors using the Publitio block for quick and intuitive embedding.\n- Direct Uploads: Upload new media files to [Publitio](https:\u002F\u002Fpublit.io) cloud storage without leaving the WordPress editor.\n- Media Library Browsing: Browse your entire [Publitio](https:\u002F\u002Fpublit.io) media library in a popup window, selecting files for instant insertion.\n- Customizable Publitio Player: Embed videos and media with [Publitio](https:\u002F\u002Fpublit.io)’s fully customizable HTML5 player supporting VAST\u002FIMA ad tags for monetization and multi-format playback.\n- Optimized Delivery: Responsive images with srcset and multi-format video support for faster, adaptive loading.\n- Secure Media: Utilize [Publitio](https:\u002F\u002Fpublit.io)’s domain-level protection and HLS encryption features to safeguard your content.\n- Workflow Enhancement: Streamline content creation with easy access to cloud-hosted media assets, improving site speed and reducing server load.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Learn More & Support:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- Setup Guide: [How to setup Publitio WordPress Plugin](https:\u002F\u002Fpublit.io\u002Fcommunity\u002Fblog\u002Fintegrate-wordpress-site-with-publitio)\n- Video Guide: [How to setup Publitio WordPress plugin](https:\u002F\u002Fpublit.io\u002Fcommunity\u002Fblog\u002Fhow-to-setup-publitio-wordpress-plugin)\n- API & Documentation: [Publitio Video & Image API](https:\u002F\u002Fpublit.io\u002Fdocs)\n- Contact Support: support@publit.io, contact us through a support webwidget on our site or write on our [Community Board](https:\u002F\u002Fdashboard.publit.io\u002Fapp\u002Fdashboards\u002Fcommunity)\n- Plugin Source: [Publitio WordPress Plugin Source on Github](https:\u002F\u002Fgithub.com\u002Fob1y2k\u002Fpublitio_wp_plugin)\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Publitio plugin integrates Publitio cloud media into WordPress with a simple block for effortless uploading, browsing, and embedding of image, video,  &hellip;",400,21347,100,41,"2025-10-28T17:11:00.000Z","6.8.5","3.0.1","",[19,20,4,21,22],"embed","images","upload","videos","https:\u002F\u002Fpublit.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublitio.zip",72,5,1,"2025-10-10 00:00:00","2026-03-15T15:16:48.613Z",[31,45,59,72,86],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-62947","publitio-authenticated-contributor-information-exposure","Publitio \u003C= 2.2.3 - Authenticated (Contributor+) Information Exposure","The Publitio plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.3. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive user or configuration data.",null,"\u003C=2.2.3","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2025-10-29 16:08:35",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff7cd392e-f223-4c39-bdf7-f0584c5b5bd8?source=api-prod",{"id":46,"url_slug":47,"title":48,"description":49,"plugin_slug":4,"theme_slug":36,"affected_versions":50,"patched_in_version":51,"severity":38,"cvss_score":52,"cvss_vector":53,"vuln_type":54,"published_date":55,"updated_date":56,"references":57,"days_to_patch":26},"CVE-2025-58962","publitio-authenticated-contributor-server-side-request-forgery","Publitio \u003C= 2.2.1 - Authenticated (Contributor+) Server-Side Request Forgery","The Publitio plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.2.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to make web requests to arbitrary locations originating from the web application which can be used to query and modify information from internal services.","\u003C=2.2.1","2.2.2",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Server-Side Request Forgery (SSRF)","2025-09-22 00:00:00","2025-09-26 20:15:06",[58],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F943e20a1-b9f8-49b1-960a-7cab0f1b7683?source=api-prod",{"id":60,"url_slug":61,"title":62,"description":63,"plugin_slug":4,"theme_slug":36,"affected_versions":50,"patched_in_version":51,"severity":38,"cvss_score":64,"cvss_vector":65,"vuln_type":66,"published_date":67,"updated_date":68,"references":69,"days_to_patch":71},"CVE-2025-31800","publitio-authenticated-contributor-arbitrary-file-read","Publitio \u003C= 2.2.1 - Authenticated (Contributor+) Arbitrary File Read","The Publitio plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 2.2.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","2025-04-03 00:00:00","2025-09-11 14:45:46",[70],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F9eb7fc3a-6575-42ed-9304-d8ce02a849c2?source=api-prod",162,{"id":73,"url_slug":74,"title":75,"description":76,"plugin_slug":4,"theme_slug":36,"affected_versions":77,"patched_in_version":78,"severity":38,"cvss_score":39,"cvss_vector":79,"vuln_type":80,"published_date":81,"updated_date":82,"references":83,"days_to_patch":85},"CVE-2025-31799","publitio-missing-authorization","Publitio \u003C= 2.1.8 - Missing Authorization","The Publitio plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 2.1.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform an unauthorized action.","\u003C=2.1.8","2.1.9","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-04-01 00:00:00","2025-09-11 14:45:14",[84],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F450e5cfb-8427-4c50-b1a3-8fceb5c78099?source=api-prod",164,{"id":87,"url_slug":88,"title":75,"description":89,"plugin_slug":4,"theme_slug":36,"affected_versions":77,"patched_in_version":78,"severity":38,"cvss_score":39,"cvss_vector":79,"vuln_type":80,"published_date":81,"updated_date":90,"references":91,"days_to_patch":93},"CVE-2025-31798","publitio-missing-authorization-2","The Publitio plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the update_settings() function in all versions up to, and including, 2.1.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update plugin settings.","2025-04-23 17:48:11",[92],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc7f5aece-dff2-40d9-bab7-9e2a795fab5b?source=api-prod",23,{"slug":4,"display_name":4,"profile_url":7,"plugin_count":95,"total_installs":96,"avg_security_score":97,"avg_patch_time_days":98,"trust_score":99,"computed_at":100},2,600,86,89,78,"2026-04-04T02:40:46.694Z",[102,121,144,162,186],{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":110,"num_ratings":110,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":119,"download_link":120,"security_score":12,"vuln_count":110,"unpatched_count":110,"last_vuln_date":36,"fetched_at":29},"zyflora-media-share-widget","Zyflora Media Share Widget","1.0.0","Bjjoha","https:\u002F\u002Fprofiles.wordpress.org\u002Fbjjoha\u002F","\u003Cp>Zyflora Media Share Widget makes it easy to add share and embed functionality to your media content.\u003C\u002Fp>\n\u003Cp>The plugin adds a Gutenberg block that can be placed below images or videos, allowing visitors to copy an embed code or share the content using a clean, lightweight interface.\u003C\u002Fp>\n\u003Cp>It is designed to be simple, fast, and fully compatible with modern block-based WordPress sites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add a media share widget below images or videos\u003C\u002Fli>\n\u003Cli>Copy embed code for easy reuse\u003C\u002Fli>\n\u003Cli>Works seamlessly with the Gutenberg editor\u003C\u002Fli>\n\u003Cli>Lightweight and performance-friendly\u003C\u002Fli>\n\u003Cli>No external tracking or third-party scripts\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple Gutenberg block that lets visitors share and embed images, videos, and YouTube content directly from your site.",0,243,"2026-01-13T12:36:00.000Z","6.9.4","5.8","7.4",[19,117,20,118,22],"gutenberg","media-sharing","https:\u002F\u002Fwww.zyflora.org\u002Fphoto-share-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzyflora-media-share-widget.1.0.1.zip",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":97,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":17,"tags":135,"homepage":139,"download_link":140,"security_score":141,"vuln_count":142,"unpatched_count":27,"last_vuln_date":143,"fetched_at":29},"auto-upload-images","Auto Upload Images","3.3.2","Ali Irani","https:\u002F\u002Fprofiles.wordpress.org\u002Fairani\u002F","\u003Cp>When you want to save a post, this plugin search for image urls which exists in post and automatically upload and import external images to the WordPress upload directory and add images to the media library and then replace new image urls with old urls.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatically find images in posts and save them to the your server and wp media library\u003C\u002Fli>\n\u003Cli>Update posts with new image urls in your server\u003C\u002Fli>\n\u003Cli>Add images saved by plugin to the WordPress media library\u003C\u002Fli>\n\u003Cli>Select custom post types for excluding auto upload images\u003C\u002Fli>\n\u003Cli>Choose exclude domain to save images from this domain address\u003C\u002Fli>\n\u003Cli>Choose custom your base url for images\u003C\u002Fli>\n\u003Cli>Choose custom images file name with patterns\u003C\u002Fli>\n\u003Cli>Choose custom image alt name with patterns\u003C\u002Fli>\n\u003Cli>Choose max width and height for images uploaded\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Persian (fa_IR) – \u003Ca href=\"https:\u002F\u002Firani.im\" rel=\"nofollow ugc\">Ali Irani\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Español (es) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdiegoh\" rel=\"nofollow ugc\">Diego Herrera\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Russion (ru_RU) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Frad96\" rel=\"nofollow ugc\">Артём Рябков\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>German (de_DE) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftillz\" rel=\"nofollow ugc\">Till Zimmermann\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>French (fr_FR) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMalaiac\" rel=\"nofollow ugc\">Malaiac\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Korean (ko_KR) – \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fluvrei\" rel=\"nofollow ugc\">Shodan\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian (it_IT) – Patryk Chmura\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Firani.im\u002Fwp-auto-upload-images.html\" rel=\"nofollow ugc\">Official Plugin Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fairani\u002Fwp-auto-upload\" rel=\"nofollow ugc\">Github Repository\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fairani\u002Fwp-auto-upload\u002Fissues\u002Fnew\" rel=\"nofollow ugc\">Report Issues\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Firani.im\u002Fwp-auto-upload-images.html#donate\" rel=\"nofollow ugc\">Make a Donation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically detect external images in the post content and import images to your site then adding to the media library and replace image urls.",30000,323518,104,"2022-12-16T10:32:00.000Z","6.1.10","2.7",[136,137,138,20,21],"auto","automatically","image","https:\u002F\u002Firani.im\u002Fwp-auto-upload-images.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-upload-images.3.3.2.zip",58,3,"2025-06-19 00:00:00",{"slug":145,"name":146,"version":147,"author":148,"author_profile":149,"description":150,"short_description":151,"active_installs":129,"downloaded":152,"rating":153,"num_ratings":154,"last_updated":155,"tested_up_to":113,"requires_at_least":156,"requires_php":17,"tags":157,"homepage":17,"download_link":161,"security_score":12,"vuln_count":110,"unpatched_count":110,"last_vuln_date":36,"fetched_at":29},"clean-image-filenames","Clean Image Filenames","1.5","Upperdog","https:\u002F\u002Fprofiles.wordpress.org\u002Fupperdog\u002F","\u003Cp>This plugin automatically converts language accent characters in filenames when uploading to the media library. Characters are converted into browser and server friendly, non-accent characters.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Converts accent characters to non-accent, latin equivalents in Swedish, Danish, German, and more.\u003C\u002Fli>\n\u003Cli>Removes special characters like exclamation marks, periods, hashtags, and more.\u003C\u002Fli>\n\u003Cli>Lets you choose if you want to convert only image files, or all file types.\u003C\u002Fli>\n\u003Cli>Makes site and server migrations easier thanks to non-accent character filenames.\u003C\u002Fli>\n\u003Cli>Provides filter hook for developers who want to specify which file types to convert.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Examples\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Räksmörgås.jpg \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> raksmorgas.jpg\u003C\u002Fli>\n\u003Cli>Æblegrød_FTW!.gif \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> aeblegrod-ftw.gif\u003C\u002Fli>\n\u003Cli>Château de Ferrières.png \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> chateau-de-ferrieres.png\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Worth noting\u003C\u002Fh3>\n\u003Cp>The plugin only converts filenames when the files are being uploaded. It can not convert existing files.\u003C\u002Fp>\n\u003Ch3>Filter for developers\u003C\u002Fh3>\n\u003Cp>This filter provides developers a way to specify which file types the plugin should convert. This filter overrides the plugin settings on the media settings page. For a complete list of mime types, see \u003Ca href=\"http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FInternet_media_type\" rel=\"nofollow ugc\">Wikipedia\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The following example will convert PDF, JPEG and PNG files only:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>function my_clean_image_filenames_mime_types() {\n    $mime_types = array(\n        'application\u002Fpdf',\n        'image\u002Fjpeg',\n        'image\u002Fpng',\n    );\n    return $mime_types;\n}\nadd_filter( 'clean_image_filenames_mime_types', 'my_clean_image_filenames_mime_types' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","This plugin automatically converts language accent characters to non-accent characters in filenames when uploading to the media library.",335219,92,21,"2026-01-14T09:45:00.000Z","2.9",[158,20,159,160,21],"files","media","sanitize","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclean-image-filenames.1.5.zip",{"slug":163,"name":164,"version":165,"author":166,"author_profile":167,"description":168,"short_description":169,"active_installs":170,"downloaded":171,"rating":172,"num_ratings":173,"last_updated":174,"tested_up_to":175,"requires_at_least":176,"requires_php":17,"tags":177,"homepage":183,"download_link":184,"security_score":97,"vuln_count":26,"unpatched_count":110,"last_vuln_date":185,"fetched_at":29},"yotuwp-easy-youtube-embed","Video Gallery – YouTube Playlist, Channel Gallery by YotuWP","1.3.14","yotuwp","https:\u002F\u002Fprofiles.wordpress.org\u002Fyotuwp\u002F","\u003Cblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002Fdemo\u002F?utm_source=wp-plugin-repo&utm_medium=top-link\" title=\"Demo YotuWP\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002Fdocument\u002F?utm_source=wp-plugin-repo&utm_medium=top-link\" rel=\"nofollow ugc\">Document\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002Fcontact\u002F?utm_source=wp-plugin-repo&utm_medium=top-link\" title=\"Contact & Support\" rel=\"nofollow ugc\">Contact & Support\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002F?utm_source=wp-plugin-repo&utm_medium=top-link\" title=\"YotuWP Landingpage\" rel=\"nofollow ugc\">Home Page\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>The longer you keep vistors on website, the better. Video was a game-changer for us personally in regards to keeping people on the site longer.\u003C\u002Fp>\n\u003Cp>YotuWP is your solution for embeding videos YouTube on your website. YotuWP is modern and mobile responsive video gallery. Easy embed videos from YouTube video playlist, channel and videos IDs to your WordPress website.\u003C\u002Fp>\n\u003Ch3>Support resource from:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Videos from playlist\u003C\u002Fli>\n\u003Cli>Videos from channel\u003C\u002Fli>\n\u003Cli>Videos from username\u003C\u002Fli>\n\u003Cli>Videos from list of video ids\u003C\u002Fli>\n\u003Cli>Embed single video with video url only.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002Fdemo\u002F?utm_source=wp-plugin-repo&utm_medium=resource-section\" title=\"Demo YotuWP\" rel=\"nofollow ugc\">View More\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Layouts\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Grid : with multi columns videos and vertical video info. You can change number of columns via setting.\u003C\u002Fli>\n\u003Cli>List : with one column and horizontal video info \u003C\u002Fli>\n\u003Cli>Mix : that is combie layout between grid and list layout. You can change number of columns via setting.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002Fdemo\u002F?utm_source=wp-plugin-repo&utm_medium=layout-section\" title=\"Demo YotuWP\" rel=\"nofollow ugc\">View More\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Player Mode\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Large : A big player at head of gallery. Item video played when click on item thumbnail or title of gallery.\u003C\u002Fli>\n\u003Cli>Modal\u002FPopup\u002FLightbox : The new youtbe popup\u002Flightbox displayed when click on item thumbnail or title of gallery.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.yotuwp.com\u002Fdemo\u002F?utm_source=wp-plugin-repo&utm_medium=player-section\" title=\"Demo YotuWP\" rel=\"nofollow ugc\">View More\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Shortcode Generator\u003C\u002Fh3>\n\u003Cp>Allow you generate shortcode YotuWP to use on page builders, widgets, product description…\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easy to embed playlist\u002F channel videos to WordPress post\u002Fpage\u003C\u002Fli>\n\u003Cli>Custom layout for display videos\u003C\u002Fli>\n\u003Cli>Video gallery responsive\u003C\u002Fli>\n\u003Cli>Player with a large frame on top\u003C\u002Fli>\n\u003Cli>Player with popup\u002Flightbox\u002Fmodal with thumbnails\u003C\u002Fli>\n\u003Cli>Player responsive\u003C\u002Fli>\n\u003Cli>Pager and load more buttons\u003C\u002Fli>\n\u003Cli>Compatibility with page builders via Shortcode Generator\u003C\u002Fli>\n\u003Cli>Styling settings: buttons color, buttons style\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>BECOME A PREMIUM USER\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Cp>YotuWP has Pro version which comes with several additional benefits. Only $21 for start!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Carousel Layout\u003C\u002Fli>\n\u003Cli>Masonry Layout\u003C\u002Fli>\n\u003Cli>Big Player Left Layout\u003C\u002Fli>\n\u003Cli>Big Player Right Layout\u003C\u002Fli>\n\u003Cli>Flip Layout with 40+ effects\u003C\u002Fli>\n\u003Cli>Replacement: Replace title, description and video thumbnail by your custom info, image\u003C\u002Fli>\n\u003Cli>Multiple video thumbnails styling\u003C\u002Fli>\n\u003Cli>Meta video data: View, Like, Comments, Published Date\u003C\u002Fli>\n\u003Cli>12+ Hover icons\u003C\u002Fli>\n\u003Cli>Custom text for buttons Next, Prev, Load more\u003C\u002Fli>\n\u003Cli>Color styling for title, description, meta data\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fyotuwp.com\u002Fadvanced-demos\u002F?utm_source=wp-plugin-repo&utm_medium=after-features-link\" rel=\"nofollow ugc\">Free Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Modern responsive YouTube video gallery helps your website getting noticed from visitors, increase the reach and stand out from the competitors.",20000,371238,94,320,"2024-06-25T03:20:00.000Z","6.2.9","4.5",[178,179,180,181,182],"youtube-channel","youtube-embed","youtube-gallery","youtube-playlist","youtube-videos","https:\u002F\u002Fwww.yotuwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyotuwp-easy-youtube-embed.zip","2024-06-14 20:13:53",{"slug":187,"name":188,"version":189,"author":190,"author_profile":191,"description":192,"short_description":193,"active_installs":194,"downloaded":195,"rating":196,"num_ratings":197,"last_updated":198,"tested_up_to":199,"requires_at_least":200,"requires_php":201,"tags":202,"homepage":204,"download_link":205,"security_score":206,"vuln_count":110,"unpatched_count":110,"last_vuln_date":36,"fetched_at":29},"disable-big-image-threshold","Disable \"BIG Image\" Threshold","1.0","Jonathan Desrosiers","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesrosj\u002F","\u003Cp>In WordPress 5.3, several improvements were made to how images are processed. One of these improvements was the concept of “BIG images”. When an image is uploaded that exceeds the “BIG image” threshold (2560 by default), a new “full” size image is generated. This new image is then used instead of the true original when generating image subsizes to reduce server load.\u003C\u002Fp>\n\u003Cp>Prior to 5.3, it was possible for the originally uploaded image to be displayed on the front-end, even when they were not “web ready”. Unnecessarily large images can be bad for performance and wastes bandwidth (which is unfortunate for those with slow Internet, or bandwidth caps by their service plans). This new full size image will now be displayed instead.\u003C\u002Fp>\n\u003Cp>There are some scenarios where disabling this threshold would be desired, though. Maybe you run a photography site that\u003Cbr \u002F>\nneeds to display original images, or your theme has full screen backgrounds.\u003C\u002Fp>\n\u003Cp>This plugin disables the “BIG” image threshold and preserves the true originally uploaded image as the full size.\u003C\u002Fp>\n\u003Cp>For more information on the improvements to image processing in WordPress 5.3, check out these \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2019\u002F10\u002F09\u002Fintroducing-handling-of-big-images-in-wordpress-5-3\u002F\" rel=\"nofollow ugc\">developer\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2019\u002F10\u002F11\u002Fupdates-to-image-processing-in-wordpress-5-3\u002F\" rel=\"nofollow ugc\">notes\u003C\u002Fa> on the \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F\" rel=\"nofollow ugc\">Making WordPress Core blog\u003C\u002Fa>.\u003C\u002Fp>\n","Disables the \"BIG image\" threshold introduced in WordPress 5.3.",10000,75196,84,35,"2022-08-02T19:39:00.000Z","6.0.11","5.2","5.6",[203,20,21],"big-images","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdisable-big-image-threshold","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-big-image-threshold.1.0.zip",85,{"attackSurface":208,"codeSignals":273,"taintFlows":309,"riskAssessment":337,"analyzedAt":357},{"hooks":209,"ajaxHandlers":259,"restRoutes":267,"shortcodes":268,"cronEvents":272,"entryPointCount":142,"unprotectedCount":95},[210,216,220,224,228,233,237,242,245,247,250,253,255,257],{"type":211,"name":212,"callback":213,"file":214,"line":215},"action","admin_init","clear_cache_on_settings_page","admin\\class-publitio-admin.php",67,{"type":211,"name":217,"callback":218,"file":214,"line":219},"elementor\u002Fwidgets\u002Fwidgets_registered","register_elementor_widget",504,{"type":211,"name":221,"callback":222,"file":214,"line":223},"wp_enqueue_scripts","register_elementor_assets",505,{"type":211,"name":225,"callback":226,"file":214,"line":227},"elementor\u002Feditor\u002Fbefore_enqueue_scripts","enqueue_elementor_editor_assets",506,{"type":211,"name":229,"callback":230,"file":231,"line":232},"enqueue_block_assets","publitio_block_assets","block\\src\\init.php",36,{"type":211,"name":234,"callback":235,"file":231,"line":236},"enqueue_block_editor_assets","publitio_block_editor_assets",73,{"type":211,"name":238,"callback":239,"file":240,"line":241},"plugins_loaded","anonymous","includes\\class-publitio.php",163,{"type":211,"name":243,"callback":239,"file":240,"line":244},"admin_enqueue_scripts",178,{"type":211,"name":243,"callback":239,"file":240,"line":246},179,{"type":211,"name":248,"callback":239,"file":240,"line":249},"admin_menu",181,{"type":211,"name":251,"callback":239,"file":240,"line":252},"media_buttons",184,{"type":211,"name":238,"callback":239,"file":240,"line":254},190,{"type":211,"name":221,"callback":239,"file":240,"line":256},206,{"type":211,"name":221,"callback":239,"file":240,"line":258},207,[260,264],{"action":261,"nopriv":262,"callback":239,"hasNonce":262,"hasCapCheck":262,"file":240,"line":263},"update_settings_action",false,182,{"action":265,"nopriv":262,"callback":239,"hasNonce":262,"hasCapCheck":262,"file":240,"line":266},"get_players_action",183,[],[269],{"tag":4,"callback":270,"file":240,"line":271},"publitio_shortcode",192,[],{"dangerousFunctions":274,"sqlUsage":280,"outputEscaping":282,"fileOperations":27,"externalRequests":142,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":308},[275],{"fn":276,"file":277,"line":278,"context":279},"unserialize","includes\\publitio_api.php",125,"$unserialized_response = @unserialize($response);",{"prepared":110,"raw":110,"locations":281},[],{"escaped":283,"rawEcho":284,"locations":285},31,10,[286,289,291,293,295,298,300,302,304,306],{"file":287,"line":95,"context":288},"admin\\partials\\publitio-media-button.php","raw output",{"file":287,"line":290,"context":288},4,{"file":287,"line":292,"context":288},6,{"file":287,"line":294,"context":288},8,{"file":296,"line":297,"context":288},"admin\\partials\\publitio-settings-page.php",18,{"file":296,"line":299,"context":288},106,{"file":296,"line":301,"context":288},111,{"file":303,"line":12,"context":288},"elementor\\widget-publitio-media.php",{"file":303,"line":305,"context":288},103,{"file":303,"line":307,"context":288},141,[],[310,329],{"entryPoint":311,"graph":312,"unsanitizedCount":110,"severity":328},"update_settings (admin\\class-publitio-admin.php:141)",{"nodes":313,"edges":325},[314,319],{"id":315,"type":316,"label":317,"file":214,"line":318},"n0","source","$_POST",155,{"id":320,"type":321,"label":322,"file":214,"line":323,"wp_function":324},"n1","sink","update_option() [Settings Manipulation]",160,"update_option",[326],{"from":315,"to":320,"sanitized":327},true,"low",{"entryPoint":330,"graph":331,"unsanitizedCount":110,"severity":328},"\u003Cclass-publitio-admin> (admin\\class-publitio-admin.php:0)",{"nodes":332,"edges":335},[333,334],{"id":315,"type":316,"label":317,"file":214,"line":318},{"id":320,"type":321,"label":322,"file":214,"line":323,"wp_function":324},[336],{"from":315,"to":320,"sanitized":327},{"summary":338,"deductions":339},"The Publitio plugin v2.2.5 exhibits a mixed security posture. While it demonstrates some good practices, such as using prepared statements for all SQL queries and a relatively high percentage of properly escaped outputs, several significant concerns remain. The presence of two AJAX handlers without authentication checks presents a direct attack vector. Additionally, the use of the `unserialize` function, even if not directly exploited in taint analysis, is inherently risky and can lead to code execution vulnerabilities if untrusted data is processed. The plugin's vulnerability history is a major red flag, with a total of five known CVEs, one of which is currently unpatched and rated as medium severity. The common vulnerability types observed, including Exposure of Sensitive Information, SSRF, Path Traversal, and Missing Authorization, suggest recurring weaknesses in how the plugin handles user input and access control. The last recorded vulnerability in late 2025 further indicates ongoing security issues.\n\nIn conclusion, despite some positive coding practices, the Publitio plugin v2.2.5 has notable weaknesses. The unprotected AJAX endpoints and the risky `unserialize` function are immediate code-level concerns. The substantial history of medium-severity vulnerabilities, particularly those involving authorization and input validation, coupled with an unpatched issue, points to a need for significant security improvements. Users should be aware of these risks, especially given the recurring nature of these vulnerability types. The plugin's attack surface is relatively small, but the unprotected entry points and historical issues elevate the overall risk.",[340,342,344,347,349,351,353,355],{"reason":341,"points":284},"Unprotected AJAX handlers",{"reason":343,"points":284},"Dangerous function: unserialize",{"reason":345,"points":346},"Currently unpatched CVE",15,{"reason":348,"points":346},"Vulnerability history: 5 medium CVEs",{"reason":350,"points":26},"Missing authorization vulnerability type",{"reason":352,"points":26},"SSRF vulnerability type",{"reason":354,"points":26},"Path Traversal vulnerability type",{"reason":356,"points":26},"Exposure of Sensitive Information type","2026-03-16T19:45:04.823Z",{"wat":359,"direct":371},{"assetPaths":360,"generatorPatterns":364,"scriptPaths":365,"versionParams":368},[361,362,363],"\u002Fwp-content\u002Fplugins\u002Fpublitio\u002Fcss\u002Fpublitio-admin.css","\u002Fwp-content\u002Fplugins\u002Fpublitio\u002Fjs\u002Fpublitio-admin.js","\u002Fwp-content\u002Fplugins\u002Fpublitio\u002Fimages\u002Fcloud-icon.png",[],[366,367],"https:\u002F\u002Fcdn.jsdelivr.net\u002Fnpm\u002Ftoastify-js\u002Fsrc\u002Ftoastify.min.css","https:\u002F\u002Fcdn.jsdelivr.net\u002Fnpm\u002Ftoastify-js",[369,370],"publitio-admin.css?ver=","publitio-admin.js?ver=",{"cssClasses":372,"htmlComments":373,"htmlAttributes":376,"restEndpoints":382,"jsGlobals":383,"shortcodeOutput":386},[],[374,375],"\u003C!-- Publitio Media Button -->","\u003C!-- Publitio settings -->",[377,378,379,380,381],"data-publitio-upload-url","data-publitio-player-id","data-publitio-asset-url","data-publitio-media-id","data-publitio-controls",[],[384,385],"window.PublitioService","toastify",[387,388],"[publitio]","[\u002Fpublitio]"]