[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpU8zpoEvxRJnxdHLOvenn-PHVULUi8s2rrW6d0kedFE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":126,"fingerprints":171},"random-tumblr","Random Tumblr","0.1.0","V.J.Catkick","https:\u002F\u002Fprofiles.wordpress.org\u002Fvjcatkick-1\u002F","\u003Cp>Sidebar widget which displays one photo from your tumblr entries randomly. This widget pulls only photo image which you uploaded and\u002For rebloged.\u003C\u002Fp>\n","Sidebar widget which displays one photo from your tumblr entries randomly. This widget pulls only photo image which you uploaded and\u002For rebloged.",10,2456,0,"2009-02-03T13:26:00.000Z","2.7","2.5","",[19,20,21],"random","sidebar","tumblr","http:\u002F\u002Fwww.vjcatkick.com\u002F?page_id=7015","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-tumblr.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":11,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"vjcatkick-1",110,88,30,86,"2026-04-05T02:08:07.264Z",[36,58,76,93,109],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":56,"download_link":57,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"advanced-random-posts-widget","Advanced Random Posts Widget","2.2.1","Ga Satrya","https:\u002F\u002Fprofiles.wordpress.org\u002Fsatrya\u002F","\u003Ch4>Notice\u003C\u002Fh4>\n\u003Cp>This plugin is no longer supported, please use \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frecent-posts-widget-extended\u002F\" rel=\"ugc\">Recent posts widget Extended\u003C\u002Fa> instead.\u003C\u002Fp>\n\u003Cp>This plugin will enable a custom, flexible and advanced random posts. It allows you to display a list of random posts via shortcode or widget with thumbnail, excerpt and post date, also you can display it from all or specific or multiple taxonomy.\u003C\u002Fp>\n\u003Ch4>Features Include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Allow you to set title url.\u003C\u002Fli>\n\u003Cli>Display thumbnails, with customizable size and alignment.\u003C\u002Fli>\n\u003Cli>Display excerpt, with customizable length.\u003C\u002Fli>\n\u003Cli>Display from all, specific or multiple category.\u003C\u002Fli>\n\u003Cli>Display from all, specific or multiple tag.\u003C\u002Fli>\n\u003Cli>Display from all, specific or multiple taxonomy.\u003C\u002Fli>\n\u003Cli>Display post date.\u003C\u002Fli>\n\u003Cli>Display post modified date.\u003C\u002Fli>\n\u003Cli>Post types.\u003C\u002Fli>\n\u003Cli>Post status.\u003C\u002Fli>\n\u003Cli>Allow you to set custom css class per widget.\u003C\u002Fli>\n\u003Cli>Add custom html or text before and\u002For after random posts.\u003C\u002Fli>\n\u003Cli>Multiple widgets.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support Me\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Purchase or download my \u003Ca href=\"https:\u002F\u002Fwp.idenovasi.com\u002F\" rel=\"nofollow ugc\">WordPress themes\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Purchase my \u003Ca href=\"https:\u002F\u002Fwww.fiverr.com\u002Fidenovasi\" rel=\"nofollow ugc\">Services\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Try another \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fidenovasi\u002F#content-plugins\" rel=\"nofollow ugc\">WordPress plugin\u003C\u002Fa> from me.\u003C\u002Fli>\n\u003Cli>Contribute on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fidenovasi\u002Fadvanced-random-posts-widget\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Shorcode Explanation\u003C\u002Fh3>\n\u003Cp>Explanation of shortcode options:\u003C\u002Fp>\n\u003Cp>Basic shortcode\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[arpw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Display 10 random posts\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[arpw limit=\"10\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Display with thumbnail and set the size\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[arpw thumbnail=\"true\" thumbnail_size=\"arpw-thumbnail\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Display posts based on category by id\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[arpw thumbnail=\"true\" cat=\"10\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Display portfolio post type\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[arpw post_type=\"portfolio\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Here’s the full default shortcode arguments\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>title=\"\"\noffset=\"\"\nlimit=\"5\"\npost_type=\"post\"\npost_status=\"publish\"\nignore_sticky=\"1\"\ntaxonomy=\"\"\ncat=\"\"\ntag=\"\"\nthumbnail=\"false\"\nthumbnail_size=\"arpw-thumbnail\"\nthumbnail_align=\"left\"\nexcerpt=\"false\"\nexcerpt_length=\"10\"\ndate=\"false\"\ndate_modified=\"false\"\ndate_relative=\"false\"\ncss_class=\"\"\nbefore=\"\"\nafter=\"\"\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Provides flexible and advanced random posts. Display it via shortcode or widget with thumbnails, post excerpt, and much more!",10000,216217,80,39,"2023-08-05T11:11:00.000Z","6.1.10","4.5",[52,20,53,54,55],"random-posts","thumbnail","widget","widgets","https:\u002F\u002Fgithub.com\u002Fidenovasi\u002Fadvanced-random-posts-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-random-posts-widget.2.2.1.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":13,"num_ratings":13,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":17,"tags":71,"homepage":74,"download_link":75,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"random-related-posts","Random Related Posts","1.0","ray.viljoen","https:\u002F\u002Fprofiles.wordpress.org\u002Frayviljoen\u002F","\u003Cp>The plugin provides a sidebar widget with customisable title and number of related posts to display.\u003Cbr \u002F>\nThe widget will display a random list of x number of posts ( selected in widget options ) together with a small tag including the publish date and author.\u003Cbr \u002F>\nIf used outside of a specific category the widget will default to all categories, whilst still displaying the selected number of random posts.\u003C\u002Fp>\n\u003Cp>Developed by \u003Ca href=\"http:\u002F\u002Fwww.catn.com\" rel=\"nofollow ugc\">PHP Hosting Experts CatN\u003C\u002Fa>\u003C\u002Fp>\n","A simple sidebar widget to include a custom number of posts from the same category as the current post.",40,6042,"2011-04-27T13:57:00.000Z","3.1.4","3.0",[72,52,73,20,54],"customisable","related-posts","http:\u002F\u002Fcatn.com\u002Fcommunity\u002Fplugins\u002Frandom-related-posts\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frandom-related-posts.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":32,"downloaded":84,"rating":13,"num_ratings":13,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":17,"tags":88,"homepage":91,"download_link":92,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"wp-random-quote","WP Random Quote","1.0.3","sabirmostofa","https:\u002F\u002Fprofiles.wordpress.org\u002Fsabirmostofa\u002F","\u003Cp>Display a random quote provided by QOTD.org in your sidebar as a widget or in a page\u002Fpost using a shortcode. For more info:www.qotd.org\u002Fwp-plugin.html\u003C\u002Fp>\n\u003Cp>The main features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>As many \u003Cstrong>widgets\u003C\u002Fstrong> as you need\u003C\u002Fli>\n\u003Cli>Font sizes can be configured\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Optional \u003Cstrong>automatic rotation\u003C\u002Fstrong> of the quotes\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Shortcodes\u003C\u002Fstrong> can be used to add one quote or series of quotes to your posts and pages. The shortcodes come with a set of individual options as well and, if needed, they can be extended to apply everywhere on the blog, allowing random words for the tagline, the category names, the post titles etc.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Display a random quote provided by QOTD.org in your sidebar as a widget or in a page\u002Fpost using a shortcode. For more info:www.qotd.org\u002Fwp-plugin.html",5773,"2015-01-19T23:59:00.000Z","4.1.42","2.8",[89,19,90,20,54],"quotes","random-quotes","http:\u002F\u002Fwww.qotd.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-random-quote.1.0.3.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":11,"downloaded":101,"rating":13,"num_ratings":13,"last_updated":102,"tested_up_to":87,"requires_at_least":103,"requires_php":17,"tags":104,"homepage":107,"download_link":108,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"daily-fitness-tips","Daily Fitness Tips","1.7","SimonTurner","https:\u002F\u002Fprofiles.wordpress.org\u002Fsimonturner\u002F","\u003Cp>This widget will add daily fitness tips to your blog giving it new fresh content and hopefully helping your readers to keep in shape.  All \u003Ca href=\"http:\u002F\u002Fwww.workoutbox.com\u002Fworkouts\u002F\" rel=\"nofollow ugc\">workout routines\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fwww.workoutbox.com\u002Fexercises\u002F\" rel=\"nofollow ugc\">exercises\u003C\u002Fa> are provided by the personal training team at \u003Ca href=\"http:\u002F\u002Fwww.workoutbox.com\" rel=\"nofollow ugc\">WorkoutBOX\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdaily-fitness-tips.zip\" rel=\"nofollow ugc\">Download Now!\u003C\u002Fa>\u003C\u002Fp>\n","This widget will add daily fitness tips to your blog giving it new fresh content and hopefully helping your readers to keep in shape.",7057,"2010-08-24T07:06:00.000Z","1.3",[105,19,106,20,54],"admin","rss","http:\u002F\u002Fwww.workoutbox.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdaily-fitness-tips.zip",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":11,"downloaded":117,"rating":13,"num_ratings":13,"last_updated":118,"tested_up_to":119,"requires_at_least":120,"requires_php":17,"tags":121,"homepage":124,"download_link":125,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"dice-widget","Dice Roller","1.4","kevinodie","https:\u002F\u002Fprofiles.wordpress.org\u002Fkevinodie\u002F","\u003Cp>Adds a simple dice roller widget that you can add to your sidebar\u003C\u002Fp>\n","Adds a simple dice roller widget that you can add to your sidebar",3262,"2016-03-31T15:20:00.000Z","4.4.34","3.0.1",[122,19,123,20,54],"dice","roller","http:\u002F\u002Fwww.korpg.com\u002Fblog\u002Fdice-roller-wordpress-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdice-widget.1.4.zip",{"attackSurface":127,"codeSignals":139,"taintFlows":164,"riskAssessment":165,"analyzedAt":170},{"hooks":128,"ajaxHandlers":135,"restRoutes":136,"shortcodes":137,"cronEvents":138,"entryPointCount":13,"unprotectedCount":13},[129],{"type":130,"name":131,"callback":132,"file":133,"line":134},"action","plugins_loaded","widget_random_tumblr_init","random_tumblr.php",154,[],[],[],[],{"dangerousFunctions":140,"sqlUsage":141,"outputEscaping":143,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":163},[],{"prepared":13,"raw":13,"locations":142},[],{"escaped":13,"rawEcho":144,"locations":145},8,[146,149,151,153,155,157,159,161],{"file":133,"line":147,"context":148},105,"raw output",{"file":133,"line":150,"context":148},106,{"file":133,"line":152,"context":148},107,{"file":133,"line":154,"context":148},136,{"file":133,"line":156,"context":148},137,{"file":133,"line":158,"context":148},138,{"file":133,"line":160,"context":148},139,{"file":133,"line":162,"context":148},142,[],[],{"summary":166,"deductions":167},"The \"random-tumblr\" v0.1.0 plugin exhibits a strong initial security posture based on the provided static analysis.  The plugin has no identified attack surface in terms of AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, the code signals indicate a complete absence of dangerous functions, external HTTP requests, and file operations, which are common vectors for exploitation.  The use of prepared statements for all SQL queries is a significant strength, demonstrating a commitment to preventing SQL injection vulnerabilities.  However, the analysis also reveals a critical weakness: 100% of its eight identified output points are not properly escaped. This means that any data displayed by the plugin, if it originates from user input or an untrusted source, is susceptible to cross-site scripting (XSS) attacks.  The vulnerability history shows no known CVEs, which is positive, but given the other findings, this may be more indicative of a lack of deep security auditing rather than inherent security.  In conclusion, while the plugin avoids many common pitfalls and boasts a clean history, the pervasive lack of output escaping represents a substantial and exploitable security risk that must be addressed.",[168],{"reason":169,"points":144},"Unescaped output found in 100% of output points","2026-03-17T01:33:21.257Z",{"wat":172,"direct":177},{"assetPaths":173,"generatorPatterns":174,"scriptPaths":175,"versionParams":176},[],[],[],[],{"cssClasses":178,"htmlComments":180,"htmlAttributes":181,"restEndpoints":196,"jsGlobals":197,"shortcodeOutput":198},[179],"widget_random_tumblr",[],[182,183,184,185,186,187,188,189,190,191,192,193,194,195],"id=\"widget_random_tumblr_title\"","name=\"widget_random_tumblr_title\"","id=\"widget_random_tumblr_uid\"","name=\"widget_random_tumblr_uid\"","id=\"widget_random_tumblr_width\"","name=\"widget_random_tumblr_width\"","id=\"widget_random_tumblr_img_style\"","name=\"widget_random_tumblr_img_style\"","id=\"widget_random_tumblr_display_pagelink\"","name=\"widget_random_tumblr_display_pagelink\"","id=\"widget_random_tumblr_additional_html\"","name=\"widget_random_tumblr_additional_html\"","id=\"widget_random_tumblr_submit\"","name=\"widget_random_tumblr_submit\"",[],[],[]]