[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4cV2l1sj68NK3Y01ChZRvOl6tgiEzpnE6_tcV1Ut_Jc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":121,"fingerprints":208},"random-image-block","Random Image Block","0.10","Matt Rude","https:\u002F\u002Fprofiles.wordpress.org\u002Fmattrude\u002F","\u003Cp>The Random Image Block is a small plugin that will display a random image from your native WordPress photo galley or in-beaded images.\u003C\u002Fp>\n\u003Cp>This widget will display the thumbnail of the random image, the “caption” and the images parent posts name. You may show all pictures on your site, or limit the selection to a single category if you wish. Once installed on your site, it will fully conform to the current theme. The Widgets title is also fully configurable. Random Image Widget was designed with full internationalization in mind and can be fully translated (Any help on this would be appreciated). As of Version 0.3 this plugin works out of the box without any configuraion (assuming you have pictures on your site).\u003C\u002Fp>\n\u003Cp>The Random Image Block plugin works with WordPress 3.0+ in both single and multi site modes.  As a Site Admin, you may activate this plugin across all the sites on your install.\u003C\u002Fp>\n\u003Cp>This Plugin is fully translated into the following languages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Arabic\u003C\u002Fli>\n\u003Cli>Czech\u003C\u002Fli>\n\u003Cli>Finnish\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>Danish\u003C\u002Fli>\n\u003Cli>Dutch\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Indonesian\u003C\u002Fli>\n\u003Cli>Italian\u003C\u002Fli>\n\u003Cli>Portuguese\u003C\u002Fli>\n\u003Cli>Russian\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you would like to help translating this plugin, or you see a problem with the current translation, please see my \u003Ca href=\"http:\u002F\u002Ftranslate.mattrude.com\u002Fprojects\u002Frandom-image-block\" rel=\"nofollow ugc\">Translation\u003C\u002Fa> page, and\u002For \u003Ca href=\"http:\u002F\u002Fmattrude.com\u002Fcontact-me\u002F\" rel=\"nofollow ugc\">contact me\u003C\u002Fa>.\u003C\u002Fp>\n","A small plugin that will display a random image from your native WordPress photo galley or in-beaded images.",100,16782,0,"2011-09-19T17:50:00.000Z","3.2.1","2.9","",[19,20,21,22],"gallery","image-block","images","widget","http:\u002F\u002Fmattrude.com\u002Fprojects\u002Frandom-image-block\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-image-block.0.10.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"mattrude",4,150,89,30,86,"2026-04-04T02:41:08.659Z",[38,54,77,93,107],{"slug":39,"name":40,"version":41,"author":7,"author_profile":8,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":11,"num_ratings":46,"last_updated":17,"tested_up_to":47,"requires_at_least":48,"requires_php":17,"tags":49,"homepage":51,"download_link":52,"security_score":11,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":53},"wp-gallery2-image-block","Gallery2 Image Block","0.6.4","\u003Cp>This plugin will allow you to put one of the meny \u003Ca href=\"http:\u002F\u002Fgallery.menalto.com\u002F\" rel=\"nofollow ugc\">Gallery2\u003C\u002Fa> Image Blocks on your WordPress site.  You are required to have a running Gallery2 install to use this plugin.\u003C\u002Fp>\n\u003Cp>This is a complete rewrite of \u003Ca href=\"http:\u002F\u002Fwww.theschierers.net\u002Fblog\" rel=\"nofollow ugc\">Chris Schierer (aka Lentil)\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgallery2-image-block-widget\" rel=\"ugc\">Gallery2 Image Block Plugin\u003C\u002Fa> 0.1.4.  This rewrite uses the new WordPress 2.8 Widget API, so is only compatable with wordpress 2.8+.\u003C\u002Fp>\n\u003Cp>All options described in the \u003Ca href=\"http:\u002F\u002Fcodex.gallery2.org\u002FGallery2:Modules:imageblock\" rel=\"nofollow ugc\">Gallery 2 Image Block\u003C\u002Fa> documentation are included. User configuration of Image Block options are available in the Widget configuration panel.  Blank (empty) options use the Gallery2 defaults.\u003C\u002Fp>\n\u003Cp>As of version 0.5, wp-gallery2-image-block has full localization support, and ships with 5 languages besides English. Please contact me if you would like to translate it into more langages, I would love for as meny peaple as posible to be able to use this plugin.\u003C\u002Fp>\n\u003Ch4>Fully Translated into:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Dutch (0.5.1)\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Italian (0.6.1)\u003C\u002Fli>\n\u003Cli>Polish (0.6.1)\u003C\u002Fli>\n\u003Cli>Portuguese (0.5.1)\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Note:\u003C\u002Fem> This widget was written using \u003Ca href=\"http:\u002F\u002Fplanetozh.com\u002Fblog\u002F2009\u002F08\u002Fhow-to-make-http-requests-with-wordpress\u002F\" rel=\"nofollow ugc\">wp_http\u003C\u002Fa> to increase compatibility with more sites (version 0.6).\u003C\u002Fp>\n","Widget to display your Gallery 2 Image Block on your WordPress sidebar",10,7059,1,"3.3.2","2.8",[50,20,21,22],"gallery2","http:\u002F\u002Fmattrude.com\u002Fprojects\u002Fwp-gallery2-image-block\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-gallery2-image-block.0.6.4.zip","2026-03-15T10:48:56.248Z",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":17,"tags":69,"homepage":17,"download_link":75,"security_score":25,"vuln_count":46,"unpatched_count":13,"last_vuln_date":76,"fetched_at":27},"meks-easy-instagram-widget","Meks Easy Photo Feed Widget","1.2.8","Meks","https:\u002F\u002Fprofiles.wordpress.org\u002Fmekshq\u002F","\u003Cp>Meks Easy Photo Feed (formerly Instagram) Widget WordPress plugin is made to help you display good looking Instagram photos with a few clicks of the button. Several smart options are provided to fine-tune the widget appearance in order to match your personal taste as well as match any WordPress theme style out of the box.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Pull Instagram images by username\u003C\u002Fli>\n\u003Cli>Multiple usernames\u003C\u002Fli>\n\u003Cli>Choose number of Instagram photos to pull\u003C\u002Fli>\n\u003Cli>Choose in how many columns you would like to display your Instagram photos\u003C\u002Fli>\n\u003Cli>Specify spacing between Instagram images\u003C\u002Fli>\n\u003Cli>Fine-tune widget container size to pull the most optimized Instagram image size and match the current theme layout\u003C\u002Fli>\n\u003Cli>Automatically display the “Follow me” link\u003C\u002Fli>\n\u003Cli>Built-in caching (via transients) for optimized performance\u003C\u002Fli>\n\u003Cli>Shortcode [meks_easy_photo_feed title=”Your Feed Title” username=”your_username” container_size=2000 columns=6 photo_space=5 photos_number=12 link_text=”your_username”]\u003C\u002Fli>\n\u003Cli>Instagram authorization required since Instagram “Basic Permission” API is now Legacy API\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Meks Easy Photo Feed Widget plugin is created by \u003Ca href=\"https:\u002F\u002Fmekshq.com\" rel=\"nofollow ugc\">Meks\u003C\u002Fa>\u003C\u002Fp>\n","Easily display Instagram photos as a widget that looks good in (almost) any WordPress theme.",20000,407056,76,12,"2023-09-11T11:53:00.000Z","6.3.8","3.7",[70,71,72,73,74],"instagram","instagram-feed","instagram-gallery","instagram-images","instagram-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmeks-easy-instagram-widget.zip","2021-11-10 00:00:00",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":44,"downloaded":85,"rating":13,"num_ratings":13,"last_updated":86,"tested_up_to":15,"requires_at_least":15,"requires_php":17,"tags":87,"homepage":91,"download_link":92,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"display-cpg-thumbnails","Display CPG Thumbnails","1.0","macmiller","https:\u002F\u002Fprofiles.wordpress.org\u002Fmacmiller\u002F","\u003Cp>The plugin is intended to create a number of links which you can display on your wordpress page.  Each link is represented by a thumbnail image which exists within the associated CPG Gallery.  Clicking on a link will take you to the associated picture within the CPG application.  There are a number of parameters which indicate how many images to display per row and how many columns, along with size information and flexible caption (user defined information).\u003C\u002Fp>\n\u003Cp>As one of the parameter driven data points which can be used in the caption is user name.  For this reason the plugin will work correctly if the CPG Gallery is ‘bridged’ to phpbb or not (in the case in which it is bridged, the user name is pulled from the phpbb database).\u003C\u002Fp>\n\u003Cp>One of the very nice features of the plug in is that you can specify the maximum number of images for one user (or the maximum number of images for one album).  If you are displaying the latest uploaded images and one user has just uploaded a bunch of images, this helps keep the display ‘balanced’ and present a cross section of images on your page.\u003C\u002Fp>\n","A widget that accesses your Coppermine Gallery and displays thumbnails on your Wordpress page.",4708,"2011-10-31T09:39:00.000Z",[88,89,90,19,22],"coppermine","cpg","display-images","none","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisplay-cpg-thumbnails.1.0481.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":44,"downloaded":101,"rating":13,"num_ratings":13,"last_updated":102,"tested_up_to":103,"requires_at_least":48,"requires_php":17,"tags":104,"homepage":105,"download_link":106,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"fx-gallery-widget","FX Gallery Widget","1.0.2","AivarasFX","https:\u002F\u002Fprofiles.wordpress.org\u002Faivarasfx\u002F","\u003Cp>FX Gallery Widget adds a widget for displaying gallery for attached images to current page or post, or to a specific post or page by ID. It is used to show images in widget area if they are linked to a page or post, they don’t have to be inserted in page as images. Widget has setting for number of images to display, also displaying order may be set to random.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Show images from currently displayed page or post\u003C\u002Fli>\n\u003Cli>Add as many widgets as you want, wherever you want\u003C\u002Fli>\n\u003Cli>Select a number of images\u003C\u002Fli>\n\u003Cli>Select any registered size in WordPress\u003C\u002Fli>\n\u003Cli>Display the images in ascending, descending, or random order\u003C\u002Fli>\n\u003Cli>Link the images to the original file, post, anchor in the post, attachment page, or nothing\u003C\u002Fli>\n\u003Cli>Add a prefix to the link and image title (appears as a tooltip)\u003C\u002Fli>\n\u003Cli>Use a rel attribute for the link – great for lightboxes\u003C\u002Fli>\n\u003C\u002Ful>\n","Simple widget for displaying gallery images of current page or post, or from a specific post or page set by ID",4220,"2011-05-31T10:15:00.000Z","3.1.4",[19,21,22],"http:\u002F\u002Fwww.wordpress.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffx-gallery-widget.1.0.2.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":44,"downloaded":115,"rating":13,"num_ratings":13,"last_updated":116,"tested_up_to":117,"requires_at_least":17,"requires_php":17,"tags":118,"homepage":119,"download_link":120,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"gallery2-image-block-widget","External Gallery2 Image Block Plugin","0.1.5","Lentil","https:\u002F\u002Fprofiles.wordpress.org\u002Flentil\u002F","\u003Cp>If you use Gallery2 in an external (non WPG2) installation, you may want to display images using the Gallery2 Image Block module.  If so, this is the widget for you.  Options described in the \u003Ca href=\"http:\u002F\u002Fcodex.gallery2.org\u002FGallery2:Modules:imageblock\" rel=\"nofollow ugc\">Gallery 2 Image Block\u003C\u002Fa> documentation are included, but not all have been tested.  Your mileage may vary.\u003C\u002Fp>\n\u003Cp>User configuration of Image Block options is available through the Widget configuration panel.  Blank (empty) options use the Gallery2 defaults.\u003C\u002Fp>\n\u003Cp>\u003Cem>Note:\u003C\u002Fem> The widget is written using \u003Ca href=\"http:\u002F\u002Fwww.php.net\u002Fcurl\" rel=\"nofollow ugc\">lib_curl()\u003C\u002Fa> to avoid url_fopen issues.\u003C\u002Fp>\n\u003Cp>For more information, see the \u003Ca href=\"http:\u002F\u002Fwww.theschierers.net\u002Fblog\u002Fg2-imageblock-plugin\" rel=\"nofollow ugc\">plugin page\u003C\u002Fa>.\u003C\u002Fp>\n","Widget to display a Gallery 2 (not WPG2!) Image Block in Wordpress sidebar",5059,"2009-08-14T02:32:00.000Z","2.8.4",[50,20,22],"http:\u002F\u002Fwww.theschierers.net\u002Fblog\u002Fg2-imageblock-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgallery2-image-block-widget.zip",{"attackSurface":122,"codeSignals":134,"taintFlows":200,"riskAssessment":201,"analyzedAt":207},{"hooks":123,"ajaxHandlers":130,"restRoutes":131,"shortcodes":132,"cronEvents":133,"entryPointCount":13,"unprotectedCount":13},[124],{"type":125,"name":126,"callback":127,"file":128,"line":129},"action","widgets_init","random_image_widget_init","random-image-block.php",175,[],[],[],[],{"dangerousFunctions":135,"sqlUsage":136,"outputEscaping":138,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":46,"bundledLibraries":199},[],{"prepared":13,"raw":13,"locations":137},[],{"escaped":139,"rawEcho":140,"locations":141},2,34,[142,145,147,149,150,151,153,154,156,158,160,161,162,164,165,167,169,171,172,174,176,177,179,181,182,184,186,187,189,191,192,194,196,197],{"file":128,"line":143,"context":144},81,"raw output",{"file":128,"line":146,"context":144},83,{"file":128,"line":148,"context":144},84,{"file":128,"line":25,"context":144},{"file":128,"line":35,"context":144},{"file":128,"line":152,"context":144},88,{"file":128,"line":33,"context":144},{"file":128,"line":155,"context":144},90,{"file":128,"line":157,"context":144},92,{"file":128,"line":159,"context":144},125,{"file":128,"line":159,"context":144},{"file":128,"line":159,"context":144},{"file":128,"line":163,"context":144},127,{"file":128,"line":163,"context":144},{"file":128,"line":166,"context":144},128,{"file":128,"line":168,"context":144},130,{"file":128,"line":170,"context":144},134,{"file":128,"line":170,"context":144},{"file":128,"line":173,"context":144},135,{"file":128,"line":175,"context":144},154,{"file":128,"line":175,"context":144},{"file":128,"line":178,"context":144},155,{"file":128,"line":180,"context":144},157,{"file":128,"line":180,"context":144},{"file":128,"line":183,"context":144},158,{"file":128,"line":185,"context":144},161,{"file":128,"line":185,"context":144},{"file":128,"line":188,"context":144},162,{"file":128,"line":190,"context":144},164,{"file":128,"line":190,"context":144},{"file":128,"line":193,"context":144},165,{"file":128,"line":195,"context":144},167,{"file":128,"line":195,"context":144},{"file":128,"line":198,"context":144},168,[],[],{"summary":202,"deductions":203},"The \"random-image-block\" plugin v0.10 exhibits a generally good security posture with no identified vulnerabilities in its history and a lack of common attack vectors such as AJAX handlers, REST API routes, or shortcodes. The static analysis also shows a positive absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests. The use of prepared statements for SQL queries and the single capability check observed are also good practices. \n\nHowever, a significant concern arises from the extremely low rate of properly escaped output (6%). This suggests a high likelihood of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied or dynamically generated data could be rendered directly into the HTML without proper sanitization. The absence of taint analysis results is also noteworthy, implying either the analysis tools did not identify any flows or the plugin's structure prevented such analysis, which could mask potential issues. Despite the lack of historical vulnerabilities, the poor output escaping is a critical weakness that could be exploited.\n\nIn conclusion, while the plugin's minimal attack surface and lack of historical vulnerabilities are strengths, the severe deficiency in output escaping presents a substantial security risk. This weakness could lead to XSS vulnerabilities affecting users. Further investigation into the output escaping is strongly recommended, as this is the most prominent area of concern based on the provided data.",[204],{"reason":205,"points":206},"Low percentage of properly escaped output",8,"2026-03-16T21:12:43.223Z",{"wat":209,"direct":215},{"assetPaths":210,"generatorPatterns":212,"scriptPaths":213,"versionParams":214},[211],"\u002Fwp-content\u002Fplugins\u002Frandom-image-block\u002Frandom-image-block.php",[],[],[],{"cssClasses":216,"htmlComments":223,"htmlAttributes":224,"restEndpoints":226,"jsGlobals":227,"shortcodeOutput":228},[217,218,219,220,221,222],"random-image","random-image-title","random-image-img","random-image-caption","random-image-description","random-image-album",[],[225],"align=center",[],[],[]]