[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWOGihsH_EUF_CRS-KDybH3cjUMqXfihhI158ZIBQm28":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":141,"fingerprints":228},"qqworld-share","QQWorld Share","1.2.3","Michael Wang","https:\u002F\u002Fprofiles.wordpress.org\u002Fqqworld\u002F","\u003Cp>Powerful share tools for SNS, MicroBlog, Blog, Bootmark, Mainly for China. 强大的SNS、微博客、博客、书签分享工具，主要用于中国网站。\u003C\u002Fp>\n","Powerful share tools for SNS, MicroBlog, Blog, Bootmark, Mainly for China.",10,1877,0,"2015-03-07T04:57:00.000Z","4.0.38","3.0","",[19,20,21],"china","share","theme","http:\u002F\u002Fproject.qqworld.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fqqworld-share.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":24,"computed_at":34},"qqworld",8,660,87,30,"2026-04-05T09:55:48.587Z",[36,54,72,91,117],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":45,"requires_at_least":46,"requires_php":17,"tags":47,"homepage":50,"download_link":51,"security_score":52,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":53},"china-addthis","China-AddThis","2.8.1","feihuwangluo","https:\u002F\u002Fprofiles.wordpress.org\u002Ffeihuwangluo\u002F","\u003Cp>China-AddThis 是专为中国用户设计制作的社会化网络分享小工具，安装简单无需配置和主题修改，删除无任何数据库残留信息。\u003Cbr \u002F>\n插件启用后会在文章单页的底部添加一些国内流行的社会化分享按钮例如：腾讯微博、新浪微博、腾讯空间、人人网、开心网、豆瓣、百度搜藏等等国内流行的社会化分享服务。\u003C\u002Fp>\n\u003Cp>其实目前国内已经有很多提供第三方收藏或者分享服务的工具和站点例如 JiaThis AddThis等等。\u003Cbr \u002F>\n这些站点提供的插件虽然使用上非常方便但这些插件都有一个共同点就是点击按钮后需要先跳转到第三方站点，或者是让用户新建页面然后继续操作才能分享内容到目标，或许大家跟我一样不喜欢这样……\u003C\u002Fp>\n","专为中国网友设计的社交网络分享插件--China-AddThis",3134,"3.1.4","3.0.0",[48,19,20,49],"button","sns","http:\u002F\u002Fwww.blog.lty0311.com\u002F?p=210","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchina-addthis.zip",100,"2026-03-15T10:48:56.248Z",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":11,"downloaded":62,"rating":13,"num_ratings":13,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":17,"tags":66,"homepage":17,"download_link":71,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"forethemes-functions","Forethemes Functions","1.0.0","forethemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fforethemes\u002F","\u003Cp>This plugin adds some widgets, share buttons, post types and functions that are necessary for ForeThemes’s themes.\u003C\u002Fp>\n","This plugin adds some widgets, share buttons, post types and functions that are necessary for ForeThemes's themes.",1139,"2018-05-13T13:07:00.000Z","4.9.29","4.8.2",[58,67,68,69,70],"harold","share-buttons","tinblog","widgets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fforethemes-functions.zip",{"slug":73,"name":74,"version":57,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":13,"downloaded":79,"rating":13,"num_ratings":13,"last_updated":80,"tested_up_to":81,"requires_at_least":82,"requires_php":83,"tags":84,"homepage":89,"download_link":90,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"share-theme","Share Theme Plugin","MH-Theme","https:\u002F\u002Fprofiles.wordpress.org\u002Fmhtheme\u002F","\u003Cp>\u003Cstrong>Shortcodes and Widgets for Share Theme Plugin\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin is based on the well-known WordPress default widget ‘Recent Posts’ and enhanced to display thumbnails of the posts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Widget List:\u003C\u002Fstrong>\u003Cbr \u002F>\nRecent Post With Thumbnail\u003Cbr \u002F>\nAbout me\u003C\u002Fp>\n\u003Cp>Add sexy-buttons, beautiful  dropcaps, column layouts and much more to WordPress. WP Shortcode makes it happen with a click of a button.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Shortcodes Included:\u003C\u002Fstrong>\u003Cbr \u002F>\nDropcap (two styles – unlimited colors), bulleted list, columns layout, icons (Icons from Fontawesome), Sexy Buttons, Progress Bar.\u003C\u002Fp>\n","This is a extension for Share Theme",957,"2018-12-30T09:21:00.000Z","3.4.2","3.0.1","5.6",[85,86,87,88,73],"images","listed-posts","post-date","post-title","https:\u002F\u002Fgithub.com\u002Fohhmymaill\u002Fshare-theme-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshare-theme.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":99,"downloaded":100,"rating":101,"num_ratings":102,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":112,"download_link":113,"security_score":114,"vuln_count":115,"unpatched_count":13,"last_vuln_date":116,"fetched_at":26},"one-click-demo-import","One Click Demo Import","3.4.0","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>The best feature of this plugin is, that theme authors can define import files in their themes and so all you (the user of the theme) have to do is click on the “Import Demo Data” button.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Are you a theme author?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Setup One Click Demo Imports for your theme and your users will thank you for it!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Focdi.com\u002Fquick-integration-guide\u002F\" rel=\"nofollow ugc\">Follow this easy guide on how to setup this plugin for your themes!\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Are you a theme user?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Contact the author of your theme and \u003Ca href=\"https:\u002F\u002Focdi.com\u002Fask-your-theme-author\u002F\" rel=\"nofollow ugc\">let them know about this plugin\u003C\u002Fa>. Theme authors can make any theme compatible with this plugin in 15 minutes and make it much more user-friendly.\u003C\u002Fp>\n\u003Cp>“\u003Ca href=\"https:\u002F\u002Focdi.com\u002Fask-your-theme-author\u002F#how-can-you-contact-your-theme-author\" rel=\"nofollow ugc\">Where can I find the theme author contact?\u003C\u002Fa>“\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>Please take a look at our \u003Ca href=\"https:\u002F\u002Focdi.com\u002Fuser-guide\u002F\" rel=\"nofollow ugc\">plugin documentation\u003C\u002Fa> for more information on how to import your demo content.\u003C\u002Fp>\n\u003Cp>This plugin is using the modified version of the improved WP import 2.0 that is still in development and can be found here: https:\u002F\u002Fgithub.com\u002Fhumanmade\u002FWordPress-Importer.\u003C\u002Fp>\n\u003Cp>NOTE: There is no setting to “connect” authors from the demo import file to the existing users in your WP site (like there is in the original WP Importer plugin). All demo content will be imported under the current user.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Do you want to contribute?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Please refer to our official \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fawesomemotive\u002Fone-click-demo-import\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n","Import your demo content, widgets and theme settings with one click. Theme authors! Enable simple theme demo import for your users.",1000000,19902961,86,79,"2025-09-11T09:36:00.000Z","6.8.5","5.5","7.4",[108,109,110,111,70],"content","import","settings","theme-options","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fone-click-demo-import\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fone-click-demo-import.3.4.0.zip",97,2,"2024-05-07 00:00:00",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":99,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":106,"tags":131,"homepage":136,"download_link":137,"security_score":138,"vuln_count":139,"unpatched_count":13,"last_vuln_date":140,"fetched_at":26},"redux-framework","Redux Framework","4.5.10","David Anderson \u002F Team Updraft","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidanderson\u002F","\u003Cp>Redux was built by developers for developers. We save you months if not years in your development time. Everything we do is to help innovation in the industry.\u003C\u002Fp>\n\u003Ch4>♥️ What the Plugin does?\u003C\u002Fh4>\n\u003Cp>Redux is a simple, genuinely extensible, and fully responsive options framework for WordPress themes and plugins. Built on the WordPress Settings API; Redux supports many field types, custom error handling, custom fields & validation types, and import\u002Fexport functionality.\u003C\u002Fp>\n\u003Cp>But what does Redux actually DO? We don’t believe that theme and plugin developers should have to reinvent the wheel every time they start work on a project. Redux simplifies the development cycle by providing a streamlined, extensible framework for developers to build on. Through a simple, well-documented config file, third-party developers can build out an options panel limited only by their imagination in a fraction of the time it would take to build from the ground up!\u003C\u002Fp>\n\u003Ch4>🚀 What fields does Redux offer?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Accordion\u003C\u002Fli>\n\u003Cli>ACE Editor\u003C\u002Fli>\n\u003Cli>Background\u003C\u002Fli>\n\u003Cli>Border\u003C\u002Fli>\n\u003Cli>Box Shadow\u003C\u002Fli>\n\u003Cli>Button Set\u003C\u002Fli>\n\u003Cli>Checkbox \u002F Multi-Check\u003C\u002Fli>\n\u003Cli>Color (WordPress Native)\u003C\u002Fli>\n\u003Cli>Color Gradient\u003C\u002Fli>\n\u003Cli>Color Palette\u003C\u002Fli>\n\u003Cli>Color RGBA\u003C\u002Fli>\n\u003Cli>Color Scheme\u003C\u002Fli>\n\u003Cli>Content\u003C\u002Fli>\n\u003Cli>Custom Fonts\u003C\u002Fli>\n\u003Cli>Customizer\u003C\u002Fli>\n\u003Cli>Date\u003C\u002Fli>\n\u003Cli>Date\u002FTime\u003C\u002Fli>\n\u003Cli>Dimensions (Height\u002FWidth)\u003C\u002Fli>\n\u003Cli>Divide (Divider)\u003C\u002Fli>\n\u003Cli>Editor (WordPress Native)\u003C\u002Fli>\n\u003Cli>Gallery (WordPress Native)\u003C\u002Fli>\n\u003Cli>Google Maps\u003C\u002Fli>\n\u003Cli>Icon Select\u003C\u002Fli>\n\u003Cli>Image Select (Patterns\u002FPresets)\u003C\u002Fli>\n\u003Cli>Import\u002FExport\u003C\u002Fli>\n\u003Cli>Info (Header\u002FNotice)\u003C\u002Fli>\n\u003Cli>JS Button\u003C\u002Fli>\n\u003Cli>Link Color\u003C\u002Fli>\n\u003Cli>Media (WordPress Native)\u003C\u002Fli>\n\u003Cli>Metaboxes\u003C\u002Fli>\n\u003Cli>Multi Media\u003C\u002Fli>\n\u003Cli>Multi-Text\u003C\u002Fli>\n\u003Cli>Palette\u003C\u002Fli>\n\u003Cli>Password\u003C\u002Fli>\n\u003Cli>Radio (w\u002F WordPress Data)\u003C\u002Fli>\n\u003Cli>Raw (HTML\u002FPHP\u002FMarkDown)\u003C\u002Fli>\n\u003Cli>Repeater\u003C\u002Fli>\n\u003Cli>Section (Indent and Group Fields)\u003C\u002Fli>\n\u003Cli>Select (Select\u002FMulti-Select w\u002F Select2 & WordPress Data)\u003C\u002Fli>\n\u003Cli>Select Image\u003C\u002Fli>\n\u003Cli>Slider (Drag a Handle)\u003C\u002Fli>\n\u003Cli>Slides (Multiple Images, Titles, and Descriptions)\u003C\u002Fli>\n\u003Cli>Social Profiles\u003C\u002Fli>\n\u003Cli>Sortable (Drag\u002FDrop Checkbox\u002FInput Fields)\u003C\u002Fli>\n\u003Cli>Sorter (Drag\u002FDrop Manager – Works great for content blocks)\u003C\u002Fli>\n\u003Cli>Spacing (Margin\u002FPadding\u002FAbsolute)\u003C\u002Fli>\n\u003Cli>Spinner\u003C\u002Fli>\n\u003Cli>Switch\u003C\u002Fli>\n\u003Cli>Tabbed\u003C\u002Fli>\n\u003Cli>Taxonomy Metaboxes\u003C\u002Fli>\n\u003Cli>Text\u003C\u002Fli>\n\u003Cli>Textarea\u003C\u002Fli>\n\u003Cli>Typography\u003C\u002Fli>\n\u003Cli>User Profile Metaboxes\u003C\u002Fli>\n\u003Cp> * The most advanced typography module complete with preview, Google fonts, and auto-css output!\u003C\u002Fp>\n\u003Cli>User Profile Metaboxes\u003C\u002Fli>\n\u003Cli>Widget Areas (Classic Widgets only)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🎉Additional Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Full value escaping\u003C\u002Fli>\n\u003Cli>Required – Link visibility from parent fields. Set this to affect the visibility of the field on the parent’s value. Fully nested with multiple required parents possible.\u003C\u002Fli>\n\u003Cli>Output CSS Automatically – Redux generates CSS and the appropriate Google Fonts stylesheets for you on select fields. You need to only specify the CSS selector to apply the CSS to (limited to certain fields).\u003C\u002Fli>\n\u003Cli>Compiler integration! A custom hook runs when any fields with the argument `compile => true` are changed.\u003C\u002Fli>\n\u003Cli>Field validation and sanitization\u003C\u002Fli>\n\u003Cli>Field and section disabling\u003C\u002Fli>\n\u003Cli>Oh, and did we mention a fully integrated Google Fonts setup that will make you so happy you’ll want to cry?\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>👍 BE A CONTRIBUTOR\u003C\u002Fh4>\n\u003Cp>If you want to help with translations, \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fredux-framework\" rel=\"nofollow ugc\">go to the Translation Portal at translate.wordpress.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You can also contribute code via our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002F\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>. Be sure to use our develop branch to submit pull requests.\u003C\u002Fp>\n\u003Ch4>📝 Documentation and Support\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>We have extremely extensive docs. Please visit [https:\u002F\u002Fdevs.redux.io\u002F](https:\u002F\u002Fdevs.redux.io). If that doesn’t solve your issue, search [the issue tracker on GitHub](https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002Fissues). If you can’t locate any topics that pertain to your particular problem, [post a new issue](https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002Fissues\u002Fnew) for it. Before you submit an issue, please read [our contributing requirements](https:\u002F\u002Fgithub.com\u002Fredux-framework\u002Fredux-framework\u002Fblob\u002Fmaster\u002FCONTRIBUTING.md). We build on the dev version and push it to WordPress.org when we confirm Redux is stable and ready for release.\u003C\u002Fli>\n\u003Cli>If you have additional questions, reach out to us at support@redux.io\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>⚡ Like the Redux Plugin?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Follow us on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Freduxframework\" rel=\"nofollow ugc\">Facebook 💬\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rate us 5 ⭐ stars\u003C\u002Fstrong> on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fredux-framework\u002Freviews\u002F?filter=5\u002F#new-post\" rel=\"ugc\">WordPress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Follow us on Twitter 🐦: \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Freduxframework\" rel=\"nofollow ugc\">@ReduxFramework\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🔐 Privacy\u003C\u002Fh4>\n\u003Cp>Redux does not interact with end users on your website. If a product is using Redux, the option panel will cease to function without Redux.\u003C\u002Fp>\n\u003Cp>For more details on our privacy policy: \u003Ca href=\"https:\u002F\u002Fredux.io\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fredux.io\u002Fprivacy\u003C\u002Fa>\u003Cbr \u002F>\nFor more details on our terms and conditions: \u003Ca href=\"https:\u002F\u002Fredux.io\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fredux.io\u002Fterms\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>NOTE: Redux is not intended to be used on its own. It requires a config file provided by a third-party theme or plugin developer to actually do anything cool!\u003C\u002Fp>\n","Redux is a simple, truly extensible, and fully responsive options framework for WordPress themes and plugins. It ships with an integrated demo.",31507478,88,272,"2026-01-07T21:08:00.000Z","6.9.4","5.0",[132,133,134,135,111],"admin","options","options-framework","plugin-options","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fredux-framework","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fredux-framework.4.5.10.zip",89,6,"2025-12-12 00:00:00",{"attackSurface":142,"codeSignals":175,"taintFlows":214,"riskAssessment":215,"analyzedAt":227},{"hooks":143,"ajaxHandlers":171,"restRoutes":172,"shortcodes":173,"cronEvents":174,"entryPointCount":13,"unprotectedCount":13},[144,150,154,158,162,167],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","plugins_loaded","load_language","qqworld-share.php",51,{"type":145,"name":151,"callback":152,"file":148,"line":153},"admin_menu","create_menu",52,{"type":145,"name":155,"callback":156,"file":148,"line":157},"admin_init","init",53,{"type":145,"name":159,"callback":160,"file":148,"line":161},"wp_enqueue_scripts","add_style",54,{"type":163,"name":164,"callback":165,"file":148,"line":166},"filter","the_content","add_share",55,{"type":163,"name":168,"callback":169,"priority":11,"file":148,"line":170},"plugin_row_meta","registerPluginLinks",56,[],[],[],[],{"dangerousFunctions":176,"sqlUsage":190,"outputEscaping":192,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":213},[177,181,184,187],{"fn":178,"file":148,"line":179,"context":180},"unserialize",91,"foreach (unserialize(QQWORLD_SHARE_PLUGIN_THTMES) as $key => $theme) :",{"fn":178,"file":148,"line":182,"context":183},106,"foreach (unserialize(QQWORLD_SHARE_PLUGIN_SETTINGS) as $key => $share ):",{"fn":178,"file":148,"line":185,"context":186},165,"$this->shareTo = is_array(get_option('qqworld-share-settings', QQWORLD_SHARE_PLUGIN_DEFAULT_SETTINGS",{"fn":178,"file":148,"line":188,"context":189},219,"$settings = unserialize(QQWORLD_SHARE_PLUGIN_SETTINGS);",{"prepared":13,"raw":13,"locations":191},[],{"escaped":13,"rawEcho":193,"locations":194},12,[195,198,199,200,201,202,204,205,207,208,209,211],{"file":148,"line":196,"context":197},96,"raw output",{"file":148,"line":196,"context":197},{"file":148,"line":196,"context":197},{"file":148,"line":196,"context":197},{"file":148,"line":114,"context":197},{"file":148,"line":203,"context":197},109,{"file":148,"line":203,"context":197},{"file":148,"line":206,"context":197},125,{"file":148,"line":206,"context":197},{"file":148,"line":206,"context":197},{"file":148,"line":210,"context":197},214,{"file":148,"line":212,"context":197},221,[],[],{"summary":216,"deductions":217},"The 'qqworld-share' plugin version 1.2.3 exhibits a mixed security posture. On the positive side, it has a minimal attack surface with no detected AJAX handlers, REST API routes, shortcodes, or cron events that are exposed externally. Furthermore, all SQL queries are secured using prepared statements, and there are no recorded CVEs, indicating a potentially stable and less targeted plugin. The absence of external HTTP requests and file operations is also a good sign for security.\n\nHowever, significant concerns arise from the static code analysis. The plugin uses the dangerous `unserialize` function four times, which is a major security risk as it can lead to Remote Code Execution if it processes untrusted input. Crucially, none of the 12 detected output operations are properly escaped. This means that any data rendered to the user could be vulnerable to Cross-Site Scripting (XSS) attacks, especially if the data originates from user input or external sources. The complete lack of nonce and capability checks is another critical weakness, leaving any functionality vulnerable to unauthorized access and manipulation, particularly in conjunction with the use of `unserialize`.\n\nGiven the absence of known vulnerabilities, the plugin might appear safe, but the internal code analysis reveals substantial latent risks. The reliance on `unserialize` without proper input validation or sanitization, coupled with pervasive unescaped output and the absence of authorization checks, creates a high probability of severe security issues such as RCE and XSS. The plugin's security is heavily dependent on the assumption that its internal functions are never called with untrusted data, which is an unrealistic and dangerous assumption in a web application environment. Therefore, while the attack surface is small and there are no known exploits, the potential for critical vulnerabilities is significant.",[218,221,223,225],{"reason":219,"points":220},"Use of unserialize()",15,{"reason":222,"points":30},"Output escaping is not properly implemented",{"reason":224,"points":11},"Missing nonce checks",{"reason":226,"points":11},"Missing capability checks","2026-03-17T01:42:08.050Z",{"wat":229,"direct":245},{"assetPaths":230,"generatorPatterns":239,"scriptPaths":240,"versionParams":242},[231,232,233,234,235,236,237,238],"\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fqqworld.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fwood.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fdark-metal.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fstone.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fred-earth.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fblueprint.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Flight-metal.css","\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fstyle\u002Fjiathis.css",[],[241],"\u002Fwp-content\u002Fplugins\u002Fqqworld-share\u002Fjs\u002Fshare.js",[243,244],"qqworld-share\u002Fstyle\u002F","qqworld_share\u002Fjs\u002Fshare.js",{"cssClasses":246,"htmlComments":248,"htmlAttributes":249,"restEndpoints":254,"jsGlobals":255,"shortcodeOutput":257},[247],"qqworld-share-style",[],[250,251,252,253],"name=\"qqworld-share-theme\"","name=\"qqworld-share-settings[]\"","name=\"qqworld-share-posttypes[]\"","name=\"qqworld-share-mode\"",[],[256],"qqworld_share_data",[258],"global $qqworld_share;\necho $qqworld_share->get_share();"]