[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsmAgxAJWlg-VQ-uIFmti1w3VFrkl9f7EKnYVPFuu5Qg":3,"$fytzKoLVCjGUgq-bL17ekszD2qnP8JfZpnpGI55EY7AM":184,"$f1hTtc30qVg3luKMtRnrcSLuDnRQ2NiI3qSDVsx1wvSM":189},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":21,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"discovery_status":26,"vulnerabilities":27,"developer":28,"crawl_stats":24,"alternatives":35,"analysis":140,"fingerprints":170},"pz-directhtml","Pz-DirectHTML","1.0.0","ぽぽろん＠ぽぽづれ。","https:\u002F\u002Fprofiles.wordpress.org\u002Fpoporon\u002F","\u003Cp>これはビジュアルエディタでHTMLタグを直接表記するプラグインです。\u003C\u002Fp>\n\u003Cp>主にテキストモードに切り替えるのが面倒なときに使います。\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","ビジュアルエディタだってHTMLしたい。",10,1269,0,"2017-01-20T10:03:00.000Z","4.8.28","3.0","",[19,20],"html","text","https:\u002F\u002Fpopozure.info\u002F20150816\u002F8182","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpz-directhtml.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":23,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"poporon",5,20330,157,69,"2026-05-20T05:17:43.638Z",[36,58,79,102,122],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":17,"download_link":57,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"cf7-ace-syntax-highlighting","Contact Form 7 Syntax Highlighting","0.2.4","Joris van Montfort","https:\u002F\u002Fprofiles.wordpress.org\u002Fjorisvanmontfort\u002F","\u003Cp>Are you using HTML code in your Contact Form 7 forms and email bodies? Ace syntax highlighting enhanches the Contact Form 7 backend and makes it easy to code HTML for complex forms.\u003C\u002Fp>\n","Adds syntax higlighting to the Contact Form 7 admin screens. Requires the Contact Form 7 plugin.",1000,7277,100,6,"2020-05-19T11:47:00.000Z","5.4.19","4.0.1",[52,53,54,55,56],"contact-form-7","contact-form-7-form-editor","contact-form-7-html-editor","form-textarea","html-editor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-ace-syntax-highlighting.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":46,"num_ratings":30,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":17,"tags":71,"homepage":77,"download_link":78,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"lh-multipart-email","LH Multipart Email","1.12","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>This is a plugin you need but probably don’t realise. It does one thing very well and very simply. For every HTML email sent by WordPress it will provide a text alternative (within the one email).\u003C\u002Fp>\n\u003Cp>99% of all email clients will just show the HTML version of the email. The other 1% can’t properly display HTML and will show the plain text email. Without this plugin, they would have had nothing to show. The other major benefit of this plugin come from the fact that will reduce the chances of the emails you send ending up in the recipients spam folder.\u003C\u002Fp>\n\u003Cp>If you have more question about the why’s of this plugin, take a look at the FAQ.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-multipart-email\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-multipart-email\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n","Decreases the chance of your legit emails being marked as spam by providing a text alternative within the one email.",700,6625,"2022-07-30T17:16:00.000Z","6.0.11","5.5",[72,73,74,75,76],"email","html-email","multipart","spam","text-email","https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-multipart-email\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-multipart-email.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":30,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":17,"tags":93,"homepage":97,"download_link":98,"security_score":99,"vuln_count":100,"unpatched_count":100,"last_vuln_date":101,"fetched_at":25},"section-widget","Section Widget","3.3.1","ctltwp","https:\u002F\u002Fprofiles.wordpress.org\u002Fctltwp\u002F","\u003Cp>\u003Cstrong>Grand Prize winner of WordPress Plugin Competition 2009\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Ever wanted to display a widget only on the front page? Subpages of certain pages? Posts with a certain tag? We’ve got you covered. With an extremely easy to use interface, you can create your section-specific widget in no time – without going through the frustration of writing PHP code (ala \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwidget-logic\u002F\" rel=\"ugc\">Widget Logic\u003C\u002Fa>).\u003C\u002Fp>\n\u003Cp>In addition to plain text and HTML, we have added \u003Cstrong>shortcodes\u003C\u002Fstrong> support into the mix. This means you can easily turn your crazy widget ideas into reality. Need a RSS widget for the posts in the “Movies” category? Yep, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Frss-shortcode\u002F\" rel=\"ugc\">there is a shortcode for that\u003C\u002Fa>. Show your AdSense ads only on the front page? \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsmart-ads\u002F\" rel=\"ugc\">There is a shortcode for that too\u003C\u002Fa> – not to mention \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ftemplate-tag-shortcodes\u002F\" rel=\"ugc\">tag clouds\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fpaypal-shortcodes\u002F\" rel=\"ugc\">Paypal\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Famazon-widgets-shortcodes\u002F\" rel=\"ugc\">Amazon\u003C\u002Fa>… you name it. Or throw more CMS hotness into your sidebar with our \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fconditional-custom-fields-shortcode\u002F\" rel=\"ugc\">conditional custom fields\u003C\u002Fa> shortcodes. Checkout the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsection-widget\u002Fscreenshots\u002F\" rel=\"ugc\">screenshots\u003C\u002Fa> for more inspirations.\u003C\u002Fp>\n\u003Cp>But before you hit the download button, we have saved a surprise for you. In order to help you fit all those insane ideas into your already crowded sidebar, we have decided to add \u003Cstrong>tabs\u003C\u002Fstrong> to the equation. With an intuitive drag-and-drop interface, creating your own tabbed widget is completely effortless – even for your grandparents. (See the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsection-widget\u002Fscreenshots\u002F\" rel=\"ugc\">screenshots\u003C\u002Fa> for details.) To bring this to the next level, we have bundled \u003Cem>25 (!) switchable themes\u003C\u002Fem>  (powered by the \u003Ca href=\"http:\u002F\u002Fjqueryui.com\u002F\" rel=\"nofollow ugc\">jQuery UI\u003C\u002Fa> project) with the plugin – and we even included a on preview in the settings page! And of course, you can always roll your own theme to suit the design of your site. (A lite version with the 2 basic themes is also available \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsection-widget\u002Fdownload\u002F\" rel=\"ugc\">here\u003C\u002Fa>.)\u003C\u002Fp>\n\u003Cp>With all those awesome features, you should definitely download it and try it out. If you still cannot find a need for this, you’re probably using WordPress the wrong way 😉 Let us know what you think, drop us a line at the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Ftags\u002Fsection-widget?forum_id=10#postform\" rel=\"ugc\">forums\u003C\u002Fa> – we would love to hear about your creative ways of using this plugin!\u003C\u002Fp>\n\u003Cp>\u003Cem>If you are running a earlier version of the WordPress 3.5 or earlier don’t use the latest version of the plugin.\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch4>Built-in Conditionals\u003C\u002Fh4>\n\u003Cp>In this version, you can freely mix and match these predefined rules which gives you control of where the widget should be displayed:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Everywhere on your site \u003Cem>(new)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>The front page\u003C\u002Fli>\n\u003Cli>The posts page \u003Cem>(new)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>All posts\u003C\u002Fli>\n\u003Cli>All author pages\u003C\u002Fli>\n\u003Cli>All or selected pages and subpages\u003C\u002Fli>\n\u003Cli>Pages or posts with comments enabled\u003C\u002Fli>\n\u003Cli>Pages or posts belongs to selected categories\u003C\u002Fli>\n\u003Cli>Pages or posts with selected tags\u003C\u002Fli>\n\u003Cli>All \u003Cem>(new)\u003C\u002Fem> or selected category archive pages\u003C\u002Fli>\n\u003Cli>All \u003Cem>(new)\u003C\u002Fem> or selected tags archive pages\u003C\u002Fli>\n\u003Cli>All date-based archive pages\u003C\u002Fli>\n\u003Cli>Search results page \u003Cem>(new)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>“404” not found page \u003Cem>(new)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Basic Support for Taxonomies\u003C\u002Fli>\n\u003Cli>Basic Support for Post Types\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Please note: JavaScript is required for the widget interface to display correctly.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This plugin will only run on WordPress 3.3+.\u003C\u002Fstrong>\u003C\u002Fp>\n","Display arbitrary information only on selected sections of your site. Also allows you to easily organize them into tabs in your sidebar.",500,60688,80,"2025-05-02T21:00:00.000Z","3.8.41","3.6",[19,94,95,96,20],"shortcode","tabbed","tabs","http:\u002F\u002Fblogs.ubc.ca\u002Fsupport\u002Fplugins\u002Fsection-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsection-widget.zip",50,2,"2025-05-02 00:00:00",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":13,"num_ratings":13,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":119,"download_link":120,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":121},"html-block","HTML Block","1.1","sidngr","https:\u002F\u002Fprofiles.wordpress.org\u002Fsidngr\u002F","\u003Ch4>Introduction\u003C\u002Fh4>\n\u003Cp>HTML block adds custom html blocks to WordPress. You can then add these blocks anywhere on your WordPress site using the shortcode provided.\u003C\u002Fp>\n","Create your HTML code and place it anywhere  on your site using a shortcode.",300,2908,"2023-11-09T19:51:00.000Z","6.4.8","4.9","5.4",[117,118,19,20],"block","custom","https:\u002F\u002Fwww.codeteam.in\u002Fproduct\u002Fhtml-block\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhtml-block.zip","2026-04-06T09:54:40.288Z",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":46,"downloaded":130,"rating":46,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":17,"tags":135,"homepage":137,"download_link":138,"security_score":139,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"add-plain-text-email","Add Plain-Text Email","1.2.1","Danny van Kooten","https:\u002F\u002Fprofiles.wordpress.org\u002Fdvankooten\u002F","\u003Ch4>Add Plain-Text Email\u003C\u002Fh4>\n\u003Cp>This plugin will add a \u003Ccode>plain\u002Ftext\u003C\u002Fcode> version of your HTML emails to your WordPress emails. This decreases the chance of your legit emails being marked as spam by tools as SpamAssassin.\u003C\u002Fp>\n\u003Cp>This plugin comes without any settings. When activated, it will automatically look for HTML emails being sent using the \u003Ccode>wp_mail()\u003C\u002Fcode> function and when necessary add the plain text version.\u003C\u002Fp>\n\u003Cp>If you have more question about the why’s of this plugin, take a look at the FAQ.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>More information\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>More \u003Ca href=\"https:\u002F\u002Fdannyvankooten.com\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa> by Danny van Kooten.\u003C\u002Fli>\n\u003Cli>Source code of this plugin on SourceHut: \u003Ca href=\"https:\u002F\u002Fgit.sr.ht\u002F~dvko\u002Fwp-add-plaintext-email\" rel=\"nofollow ugc\">~dvko\u002Fwp-add-plaintext-email\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds a text\u002Fplain email to text\u002Fhtml emails to decrease the chance of emails being tagged as spam.",5991,4,"2025-01-06T12:58:00.000Z","6.7.5","3.1",[72,73,75,136,76],"spamassassin","http:\u002F\u002Fwww.dannyvankooten.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadd-plain-text-email.1.2.1.zip",92,{"attackSurface":141,"codeSignals":153,"taintFlows":160,"riskAssessment":161,"analyzedAt":169},{"hooks":142,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":151,"entryPointCount":152,"unprotectedCount":13},[],[],[],[146],{"tag":147,"callback":148,"file":149,"line":150},"direct","Pz_DirectHTML_ShortCode","pz-directhtml.php",12,[],1,{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":159},[],{"prepared":13,"raw":13,"locations":156},[],{"escaped":13,"rawEcho":13,"locations":158},[],[],[],{"summary":162,"deductions":163},"The 'pz-directhtml' plugin v1.0.0 exhibits a strong security posture based on the provided static analysis.  The absence of dangerous functions, file operations, external HTTP requests, and the exclusive use of prepared statements for SQL queries are excellent practices.  Furthermore, all outputs are properly escaped, and there are no recorded vulnerabilities or CVEs, indicating a history of secure development. The plugin's limited attack surface, with only one shortcode and no unprotected entry points, also contributes positively to its security.\n\nDespite the overall good practices, the analysis does highlight a potential concern regarding the lack of nonce checks and capability checks on the identified shortcode. While the current version has no direct vulnerabilities flagged, any shortcode can potentially be a vector for Cross-Site Scripting (XSS) or other injection attacks if user-supplied data is not properly validated and sanitized within the shortcode handler itself, even if the output is escaped. The absence of any taint analysis flows is also notable; while this is positive, it could also suggest that the analysis might not have covered all potential interaction points or that the plugin's functionality is very limited. The vulnerability history of zero CVEs is a significant strength, suggesting a well-maintained codebase or a very simple, and thus less exploitable, functionality.\n\nIn conclusion, 'pz-directhtml' v1.0.0 is a highly secure plugin in its current state, with excellent coding practices demonstrated across SQL handling, output escaping, and a minimal attack surface. The primary area for improvement and vigilance lies in ensuring robust input validation and sanitization within the shortcode implementation to mitigate potential risks, even in the absence of known vulnerabilities or specific taint flows.",[164,167],{"reason":165,"points":166},"Missing nonce checks on shortcode",7,{"reason":168,"points":166},"Missing capability checks on shortcode","2026-04-16T12:49:04.546Z",{"wat":171,"direct":176},{"assetPaths":172,"generatorPatterns":173,"scriptPaths":174,"versionParams":175},[],[],[],[],{"cssClasses":177,"htmlComments":178,"htmlAttributes":179,"restEndpoints":180,"jsGlobals":181,"shortcodeOutput":182},[],[],[],[],[],[183],"[direct]",{"error":185,"url":186,"statusCode":187,"statusMessage":188,"message":188},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fpz-directhtml\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":152,"versions":190},[191],{"version":6,"download_url":192,"svn_tag_url":193,"released_at":24,"has_diff":194,"diff_files_changed":195,"diff_lines":24,"trac_diff_url":24,"vulnerabilities":196,"is_current":185},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpz-directhtml.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpz-directhtml\u002Ftags\u002F1.0.0\u002F",false,[],[]]