[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNnLlCbhknm6IBSoDcOTyq-kFYIYfJiLmI1zxJG9-4X8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":125,"fingerprints":193},"quotable-tweets","Quotable Tweets by DraftPress","1.1.7","DraftPress Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fdraftpress\u002F","\u003Cp>The Quotable Tweets plugin by https:\u002F\u002Fdraftpress.com gives you an easy way to add a beautiful actionable tweet link to your sidebar.\u003C\u002Fp>\n\u003Cp>Please check out our other \u003Ca href=\"https:\u002F\u002Fdraftpress.com\u002Fproducts\u002F?utm_source=wprepo&utm_medium=quotable-tweets&utm_campaign=desc\" rel=\"nofollow ugc\">plugins\u003C\u002Fa> 🙂\u003C\u002Fp>\n\u003Cp>Contribute to the plugin and submit pull requests through the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwpsite\u002Fquotable-tweets\" rel=\"nofollow ugc\">Quotable Tweets plugin for WordPress GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n","The Quotable Tweets plugin gives you an easy way to add a beautiful actionable tweet link to your sidebar.",10,1845,0,"2021-09-15T21:15:00.000Z","5.8.13","4.9","",[19,20,21,22,23],"quotable-tweet","tweet","tweet-ad","tweet-button","twitter","https:\u002F\u002Fdraftpress.com\u002Fproducts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquotable-tweets.1.1.7.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"draftpress",12,612840,87,1011,70,"2026-04-04T16:39:19.689Z",[39,54,71,89,104],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":11,"downloaded":47,"rating":13,"num_ratings":13,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":52,"download_link":53,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"personal-tweet-me","Personal Tweet Me Button","1.3","svrooij_nl","https:\u002F\u002Fprofiles.wordpress.org\u002Fsvrooij_nl\u002F","\u003Cp>Adds the official tweet button, to your site as a sidebar widget. You can use a twitter account for the entire site, or use personal accounts per author.\u003C\u002Fp>\n","Adds the official tweet button, to your site as a sidebar widget. You can use a twitter account for the entire site, or use personal accounts per auth …",3202,"2013-04-13T13:56:00.000Z","3.5.2","3.0",[22,23],"http:\u002F\u002Fwww.smartersoft.nl\u002Fproducten\u002FtweetMe","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersonal-tweet-me.1.3.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":11,"downloaded":62,"rating":13,"num_ratings":13,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":17,"tags":66,"homepage":69,"download_link":70,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"rsh-tweet-button","rsh-Tweet","1.0","brehash","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrehash\u002F","\u003Cp>This plugin adds the official \u003Ca href=\"http:\u002F\u002Fblog.twitter.com\u002F2010\u002F08\u002Fpushing-our-tweet-button.html\" rel=\"nofollow ugc\">Tweet Button\u003C\u002Fa> from Twitter to your Pages, Posts or Home Page. It lets your users share links directly from the page they’re on. When they click on the Tweet Button, a Tweet box will appear pre-populated with a shortened link that points to the item that they’re sharing.\u003C\u002Fp>\n\u003Cp>This plugin is very customizable via ‘rsh-Tweet Button’ under the ‘Settings’ menu in WordPress Admin. Change the look and feel, pozition and where to seen of the button.\u003C\u002Fp>\n","Adds the official Tweet Button from Twitter.com.",2207,"2010-08-21T07:38:00.000Z","3.0.5","2.0.2",[67,22,23,68],"automated","twitter-button","http:\u002F\u002Fwww.zoonte.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frsh-tweet-button.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":11,"downloaded":79,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":80,"requires_at_least":81,"requires_php":17,"tags":82,"homepage":85,"download_link":86,"security_score":87,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":88},"skysa-tweet-app","Skysa Tweet App","1.4","Skysa","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidskysa\u002F","\u003Cp>Promote your Twitter account at the same time while driving traffic to your website. Customize the default Tweet, set what URL to share in the tweet and set the option to show or hide the tweet count next to the tweet button. By allowing your site visitors to tweet about your site on their twitter accounts, it will help get the word out about your site and drive targeted traffic from twitter users who see the tweets directly to your site.\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=Zj1uGXX2xrk&hd=1\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ftags\u002Fskysa-apps\" rel=\"ugc\">More Skysa App plugins\u003C\u002Fa> -|||- \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fskysa-official\u002F\" rel=\"ugc\">Skysa App Bar Integration plugin\u003C\u002Fa>\u003C\u002Fp>\n","Let people share content on Twitter (a Tweet) without having to leave your web page. This app displays a Tweet button at the bottom of your site.",2564,"4.0.38","2.7",[83,84,20,22,23],"skysa","skysa-apps","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fskysa-tweet-app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fskysa-tweet-app.zip",100,"2026-03-15T10:48:56.248Z",{"slug":90,"name":91,"version":92,"author":93,"author_profile":94,"description":95,"short_description":96,"active_installs":11,"downloaded":97,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":98,"requires_at_least":50,"requires_php":17,"tags":99,"homepage":102,"download_link":103,"security_score":87,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":88},"wp-tweet","WP Tweet","0.1-RC1","Pete Mall","https:\u002F\u002Fprofiles.wordpress.org\u002Fpetemall\u002F","\u003Cp>This plugins enables you to add the official \u003Ca href=\"http:\u002F\u002Fblog.twitter.com\u002F2010\u002F08\u002Fpushing-our-tweet-button.html\" rel=\"nofollow ugc\">Tweet Button\u003C\u002Fa> from Twitter. It lets your users share links directly from the page they’re on. When they click on the Tweet Button, a Tweet box will appear — pre-populated with a shortened link that points to the item that they’re sharing.\u003C\u002Fp>\n","Adds the official Tweet Button from Twitter.",5444,"3.1.4",[100,101,20,22,23],"button","retweet","http:\u002F\u002Fdevelopersmind.com\u002Fwordpress-plugins\u002Fwp-tweet\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-tweet.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":114,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":17,"tags":119,"homepage":123,"download_link":124,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"easy-twitter-feed-widget","Easy Twitter Feed Widget Plugin","0.9","DesignOrbital","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesignorbital\u002F","\u003Cp>Easy Twitter Feed Widget plugin uses the \u003Ccode>Twitter Widget\u003C\u002Fcode> without creating an API to display tweets on your WordPress site. There is no need to create Twitter application. Easy Twitter Feed Widget Plugin provides a nice interface to implement your tweets in an easy way.\u003C\u002Fp>\n\u003Cp>If you are planning to display twitter timeline on your blog’s sidebar without bells and whistles than our plugin can be your ideal choice.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy Twitter Feed Widget Plugin is very easy to setup and use.\u003C\u002Fli>\n\u003Cli>You can blend your tweets professionally with the layout of any WordPress theme.\u003C\u002Fli>\n\u003Cli>Make it your own by customizing the link color, border color, background choice and other useful options.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Further Useful Stuff\u003C\u002Fh4>\n\u003Cp>Easy Twitter Feed Widget plugin is developed by DesignOrbital. You may be interested to use our \u003Ca href=\"https:\u002F\u002Fdesignorbital.com\u002F\" rel=\"nofollow ugc\">Premium WordPress Themes\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fdesignorbital.com\u002Ffree-wordpress-themes\u002F\" rel=\"nofollow ugc\">Free WordPress Themes\u003C\u002Fa> to run your website under the clean and SEO optimized code.\u003C\u002Fp>\n","Add twitter feeds on your WordPress site by using the Easy Twitter Feed Widget plugin.",10000,503422,74,55,"2017-12-20T18:46:00.000Z","4.9.29","4.7",[120,20,23,121,122],"feed","twitter-feed","twitter-widget","https:\u002F\u002Fdesignorbital.com\u002Feasy-twitter-feed-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-twitter-feed-widget.0.9.zip",{"attackSurface":126,"codeSignals":142,"taintFlows":180,"riskAssessment":181,"analyzedAt":192},{"hooks":127,"ajaxHandlers":138,"restRoutes":139,"shortcodes":140,"cronEvents":141,"entryPointCount":13,"unprotectedCount":13},[128,134],{"type":129,"name":130,"callback":131,"file":132,"line":133},"action","init","load_textdomain","quotable-tweets.php",32,{"type":129,"name":135,"callback":136,"file":132,"line":137},"widgets_init","closure",37,[],[],[],[],{"dangerousFunctions":143,"sqlUsage":144,"outputEscaping":146,"fileOperations":13,"externalRequests":178,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":179},[],{"prepared":13,"raw":13,"locations":145},[],{"escaped":147,"rawEcho":148,"locations":149},6,15,[150,153,155,157,159,161,163,165,167,168,170,172,173,175,177],{"file":132,"line":151,"context":152},146,"raw output",{"file":132,"line":154,"context":152},185,{"file":132,"line":156,"context":152},189,{"file":132,"line":158,"context":152},195,{"file":132,"line":160,"context":152},196,{"file":132,"line":162,"context":152},205,{"file":132,"line":164,"context":152},221,{"file":132,"line":166,"context":152},222,{"file":132,"line":166,"context":152},{"file":132,"line":169,"context":152},227,{"file":132,"line":171,"context":152},228,{"file":132,"line":171,"context":152},{"file":132,"line":174,"context":152},233,{"file":132,"line":176,"context":152},234,{"file":132,"line":176,"context":152},1,[],[],{"summary":182,"deductions":183},"The \"quotable-tweets\" plugin v1.1.7 presents a generally good security posture with no known vulnerabilities or critical static analysis findings. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface, which is a positive indicator.  Furthermore, the fact that all SQL queries utilize prepared statements and there are no recorded file operations or external HTTP requests suggests careful development practices regarding data handling and external interactions.\n\nHowever, a key concern is the low percentage (29%) of properly escaped output. This indicates a risk of Cross-Site Scripting (XSS) vulnerabilities, as unsanitized data could be directly outputted into the browser. While no taint analysis flows were identified, this is likely due to the limited attack surface and lack of input sanitization checks present in the analyzed code signals. The absence of capability checks and nonce checks, coupled with the presence of an external HTTP request, raises potential security concerns that warrant further investigation, especially if the plugin were to gain more complex functionality or interact with user-submitted data in the future.\n\nThe plugin's vulnerability history is clean, with no known CVEs. This, combined with the static analysis results indicating no critical issues, suggests that the developers have maintained a good security focus. However, the limited output escaping remains a notable weakness. In conclusion, while \"quotable-tweets\" v1.1.7 appears relatively secure due to its small attack surface and lack of historical vulnerabilities, the significant unescaped output is a potential security risk that should be addressed.",[184,187,190],{"reason":185,"points":186},"Low output escaping (29% properly escaped)",7,{"reason":188,"points":189},"No capability checks present",5,{"reason":191,"points":189},"No nonce checks present","2026-03-17T00:23:28.185Z",{"wat":194,"direct":201},{"assetPaths":195,"generatorPatterns":197,"scriptPaths":198,"versionParams":199},[196],"\u002Fwp-content\u002Fplugins\u002Fquotable-tweets\u002Fquotable-tweets.css",[],[],[200],"quotable-tweets\u002Fquotable-tweets.css?ver=",{"cssClasses":202,"htmlComments":212,"htmlAttributes":213,"restEndpoints":222,"jsGlobals":223,"shortcodeOutput":224},[203,204,205,206,207,208,209,210,211],"nnr-qt-container","nnr-qt-title-container","nnr-qt-icon-twitter","nnr-qt-title","nnr-qt-text-container","nnr-qt-post-title","nnr-qt-quote-container","nnr-qt-quote","nnr-qt-button",[],[214,215,216,217,218,219,220,221],"id=\"nnrobots_quotable_tweets_widget_\"","name=\"nnrobots_quotable_tweets_widget_\"","id=\"nnrobots_quotable_tweets_title\"","name=\"nnrobots_quotable_tweets_title\"","id=\"nnrobots_quotable_tweets_bitly_access_token\"","name=\"nnrobots_quotable_tweets_bitly_access_token\"","id=\"nnrobots_quotable_tweets_button_text\"","name=\"nnrobots_quotable_tweets_button_text\"",[],[],[]]