[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3hSwv5XA3wueJ-wxn-xsSA5FvB4IfPUTEdSvq2TxWr0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":134,"fingerprints":236},"rating-builder","Rating Builder","1.0.3","redq","https:\u002F\u002Fprofiles.wordpress.org\u002Fredq\u002F","\u003Cp>Rating builder supports any custom post type. You can build any type of rating with your WordPress comment. The plugin built with React.js.\u003C\u002Fp>\n\u003Ch4>The features are offered by this plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Multiple post type supported\u003C\u002Fli>\n\u003Cli>Can be used in WooCommerce Product Rating.\u003C\u002Fli>\n\u003Cli>Support Multiple Rating Parameter.\u003C\u002Fli>\n\u003Cli>Supported with comment disabled.\u003C\u002Fli>\n\u003Cli>Support Multiple Icon as Rating Icon.\u003C\u002Fli>\n\u003Cli>You can specify Total Number of icons and post type to implement rating on that post.   \u003C\u002Fli>\n\u003Cli>Multilingual\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Demo & Docs\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fredq.gitbooks.io\u002Frating-builder\u002Fcontent\u002F\" rel=\"nofollow ugc\">Online Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Check \u003Ca href=\"http:\u002F\u002Fpreview.codecanyon.net\u002Fitem\u002Freactive-pro-advance-wp-search-filter-grid\u002Ffull_screen_preview\u002F17425763?ref=redqteam\" rel=\"nofollow ugc\">online demo\u003C\u002Fa> for WordPress Rating Builder.\u003C\u002Fp>\n\u003Ch4>Our Portfilio\u003C\u002Fh4>\n\u003Cp>You can check our \u003Ca href=\"http:\u002F\u002Fcodecanyon.net\u002Fuser\u002Fredqteam\u002Fportfolio?ref=redqteam\" rel=\"nofollow ugc\">Portfolio\u003C\u002Fa> from here.\u003C\u002Fp>\n","A simple WordPress rating builder supports any post type. Build rating system for your post, product or any custom post.",0,1367,"2018-01-09T11:40:00.000Z","4.7.32","4.6","",[18,19,20,21,22],"comment","posts","ratings","reviews","shortcode","http:\u002F\u002Fcodecanyon.com\u002Fuser\u002Fredqteam","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frating-builder.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},5,300,86,30,84,"2026-04-04T14:10:37.019Z",[37,62,79,100,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":57,"download_link":58,"security_score":59,"vuln_count":60,"unpatched_count":11,"last_vuln_date":61,"fetched_at":27},"stars-rating","Stars Rating","4.0.7","Fahid Javid","https:\u002F\u002Fprofiles.wordpress.org\u002Ffahidjavid\u002F","\u003Cp>A simple and easy to use plugin that turns post, pages and custom post types comments into reviews.\u003C\u002Fp>\n\u003Cp>Its main features are as follows:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Turns post, pages and custom post types comments into reviews.\u003C\u002Fli>\n\u003Cli>Allows you to choose post types on which you want to enable Stars Rating feature.\u003C\u002Fli>\n\u003Cli>An option to require rating selection to leave a review.\u003C\u002Fli>\n\u003Cli>Also, allows you to enable\u002Fdisable stars rating feature for the posts and pages individually.\u003C\u002Fli>\n\u003Cli>An option to display stars rating in Google search results.\u003C\u002Fli>\n\u003Cli>Choose from two different rating stars styles according to your site look.\u003C\u002Fli>\n\u003Cli>Offers a shortcode \u003Cstrong>[stars_rating_avg]\u003C\u002Fstrong> to display average rating anywhere in the post\u002Fpage\u002FCPTs detail or listing pages.\u003C\u002Fli>\n\u003Cli>Hide average rating text \u003Cstrong>[stars_rating_avg show_text=”no”]\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Hide empty average rating \u003Cstrong>[stars_rating_avg show_empty_rating=”no”]\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>See each review stars rating on the comments page (backend).\u003C\u002Fli>\n\u003Cli>Enhanced SEO with structured data for standout reviews in Google with “Google Review Schema” integration.\u003C\u002Fli>\n\u003Cli>Preempt negativity with the “Negative Rating Alert” feature, promoting issue resolution before reviews are posted.\u003C\u002Fli>\n\u003C\u002Ful>\n","A plugin to turn comments into reviews by adding rating feature.",1000,33150,94,23,"2025-12-04T10:00:00.000Z","6.9.4","6.0","8.3",[54,55,21,22,56],"comments","rating","stars","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fstars-rating\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstars-rating.4.0.7.zip",99,1,"2021-12-06 00:00:00",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":32,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":16,"tags":76,"homepage":16,"download_link":78,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"rate","Rate","0.4","Scott Taylor","https:\u002F\u002Fprofiles.wordpress.org\u002Fwonderboymusic\u002F","\u003Cp>Most ratings plugins contain too much code: inline JavaScript, messy markup, weird CSS. Rate is simple, hardly intrusive, and completely overridable.\u003C\u002Fp>\n\u003Cp>A Post\u002FPage\u002FCustom Post Type’s rating is the average of all comment ratings. A user can leave a rating when commenting, and change that rating inline after leaving a comment (if logged-in or Cookie’d).\u003C\u002Fp>\n\u003Cp>Don’t be afraid to play around and extend the code: drop a \u003Ccode>rate.css\u003C\u002Fcode> file in your theme directory and mine won’t even load (by default, Rate stars are transparent with a white border, so you can use \u003Ccode>background-color\u003C\u002Fcode> to set your stars’ colors)!\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php \n\u002F\u002F in this version, you need to insert these functions into your theme for ratings to appear\n\u002F\u002F you don't have to use the_rating(), the comment_rating() will work by itself, but the_rating() will not\n\n\u002F\u002F for a Post, Page, or Custom Post Type (average of all comment ratings)\nthe_rating();\n\n\u002F\u002F for a comment\nthe_comment_rating();\n?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Read More: http:\u002F\u002Fscottctaylor.wordpress.com\u002F2010\u002F11\u002F30\u002Fnew-plugin-rate\u002F\u003C\u002Fp>\n","Most ratings plugins contain too much code: inline JavaScript, messy markup, weird CSS. Rate is simple, hardly intrusive, and completely overridable.",40,23304,6,"2015-07-30T21:33:00.000Z","3.0.5","3.0",[54,77,19,63,20],"pages","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frate.0.4.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":16,"tags":94,"homepage":98,"download_link":99,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"insert-post-from-front-end-with-featured-image","Insert post from front-end with featured image","1.0.0","Mohsin Khan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhellomohsinkhan\u002F","\u003Cp>This plugin is created for insert post from front-end, Using this plugin we can insert any type of post from front-end with featured image.\u003Cbr \u002F>\nAnd also we can pass post status in shortcode like publish,draft,pending etc.\u003C\u002Fp>\n","This plugin is created for insert post from front-end, Using this plugin we can insert any type of post from front-end with featured image.",10,2039,100,2,"2020-01-28T13:01:00.000Z","5.3.21","3.0.1",[54,95,96,21,97],"custom-posts","news","testimonial","http:\u002F\u002Fwebprepration.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-post-from-front-end-with-featured-image.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":87,"downloaded":108,"rating":11,"num_ratings":11,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":116,"download_link":117,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"integration-for-baazarvoice","Integration for BazaarVoice","1.0.2","Miriam Goldman","https:\u002F\u002Fprofiles.wordpress.org\u002Fmiriamgoldman\u002F","\u003Cp>This plugin will allow you to connect your WordPress site to your BazaarVoice integration, by providing shortcodes to display your reviews, and overall star ratings for each product.\u003C\u002Fp>\n","An plugin that will integrate with the Bazaarvoice rating system.",1173,"2022-02-24T18:32:00.000Z","5.9.13","5.0","7.4",[114,54,20,21,115],"bazaarvoice","workable","https:\u002F\u002Fknowledge.bazaarvoice.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fintegration-for-baazarvoice.zip",{"slug":119,"name":120,"version":121,"author":119,"author_profile":122,"description":123,"short_description":124,"active_installs":87,"downloaded":125,"rating":89,"num_ratings":90,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":16,"tags":129,"homepage":132,"download_link":133,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"weecomments","weeComments – Shop & Products Reviews","3.1.4","https:\u002F\u002Fprofiles.wordpress.org\u002Fweecomments\u002F","\u003Cp>Genera confianza en tu tienda online y aumenta las ventas con weecomments. http:\u002F\u002Fweecomments.com Muestra un widget de opiniones de la tienda online, se envian emails de invitación a dejar una opinión sobre los últimos pedidos. Solo opiniones de clientes reales. Rich Snippets de google, mejora el SEO. Valoraciones por producto.\u003C\u002Fp>\n","Genera confianza en tu tienda online y aumenta las ventas con weecomments. http:\u002F\u002Fweecomments.com Muestra un widget de opiniones de la tienda online,  &hellip;",2398,"2017-12-11T13:31:00.000Z","4.6.30","3.0.2",[54,130,20,21,131],"product-reviews","rich-snippets","http:\u002F\u002Fweecomments.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fweecomments.zip",{"attackSurface":135,"codeSignals":197,"taintFlows":223,"riskAssessment":224,"analyzedAt":235},{"hooks":136,"ajaxHandlers":186,"restRoutes":194,"shortcodes":195,"cronEvents":196,"entryPointCount":90,"unprotectedCount":90},[137,142,146,150,156,160,164,166,169,173,178,182],{"type":138,"name":139,"callback":140,"file":141,"line":72},"action","init","redq_rb_post_type","includes\\admin\\class-rating-post-type.php",{"type":138,"name":143,"callback":144,"file":141,"line":145},"add_meta_boxes","redq_rb_metaboxs",7,{"type":138,"name":147,"callback":148,"file":149,"line":30},"save_post","redq_rb_save_rating_meta","includes\\admin\\class-save-rating.php",{"type":151,"name":152,"callback":153,"priority":59,"file":154,"line":155},"filter","get_comment_text","redq_rb_extend_comment","includes\\class-rating-comments-extend.php",14,{"type":151,"name":157,"callback":158,"file":154,"line":159},"woocommerce_product_review_comment_form_args","redq_rb_woocommerce_rating_override",15,{"type":138,"name":161,"callback":162,"file":163,"line":30},"comment_form_logged_in_after","redq_rb_add_rating_field","includes\\class-rating-comments-form-extend.php",{"type":138,"name":165,"callback":162,"file":163,"line":72},"comment_form_before_fields",{"type":151,"name":167,"callback":168,"file":163,"line":145},"comment_form_submit_button","redq_rb_attachments_fields",{"type":138,"name":170,"callback":171,"priority":87,"file":163,"line":172},"comment_post","redq_rb_save_rating_field",8,{"type":138,"name":174,"callback":175,"priority":60,"file":176,"line":177},"plugins_loaded","redq_rb_language_textdomain","rating-builder.php",48,{"type":138,"name":179,"callback":180,"file":176,"line":181},"admin_enqueue_scripts","redq_rb_enqueue_admin_script",49,{"type":138,"name":183,"callback":184,"file":176,"line":185},"wp_enqueue_scripts","redq_rb_enqueue_script",50,[187,192],{"action":188,"nopriv":189,"callback":188,"hasNonce":189,"hasCapCheck":189,"file":190,"line":191},"redq_rb_save_review",false,"includes\\class-handle-ajax.php",4,{"action":193,"nopriv":189,"callback":193,"hasNonce":189,"hasCapCheck":189,"file":190,"line":30},"increase_like_dislike",[],[],[],{"dangerousFunctions":198,"sqlUsage":199,"outputEscaping":201,"fileOperations":191,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":222},[],{"prepared":11,"raw":11,"locations":200},[],{"escaped":202,"rawEcho":172,"locations":203},46,[204,208,210,212,214,216,218,220],{"file":205,"line":206,"context":207},"includes\\admin\\class-shortcode-review.php",72,"raw output",{"file":205,"line":209,"context":207},103,{"file":190,"line":211,"context":207},44,{"file":190,"line":213,"context":207},55,{"file":190,"line":215,"context":207},69,{"file":190,"line":217,"context":207},80,{"file":190,"line":219,"context":207},91,{"file":190,"line":221,"context":207},105,[],[],{"summary":225,"deductions":226},"The \"rating-builder\" plugin version 1.0.3 exhibits a mixed security posture.  On the positive side, the plugin demonstrates good practices by utilizing prepared statements for all SQL queries and properly escaping a high percentage of its output. There are no known vulnerabilities or CVEs associated with this plugin, suggesting a generally well-maintained codebase.\n\nHowever, significant security concerns are present due to the unprotected attack surface.  The plugin exposes two AJAX handlers that lack any authentication or capability checks. This means any unauthenticated user could potentially trigger these handlers, opening the door to various exploits if these handlers are not inherently secure in their implementation (which static analysis alone cannot fully determine).\n\nDespite the lack of identified taint flows and dangerous functions, the unprotected AJAX endpoints represent a critical weakness. While the plugin has a clean vulnerability history, this is not a guarantee of future security. The absence of nonces and capability checks on these entry points is a clear oversight. Overall, the plugin has a strong foundation in terms of SQL and output sanitization, but the critical lack of access control on its AJAX endpoints significantly elevates its risk profile.",[227,229,231,233],{"reason":228,"points":87},"AJAX handlers without auth checks",{"reason":230,"points":30},"AJAX handlers without capability checks",{"reason":232,"points":30},"No nonce checks on AJAX entry points",{"reason":234,"points":72},"Unescaped output (15% of total)","2026-03-17T07:12:50.914Z",{"wat":237,"direct":256},{"assetPaths":238,"generatorPatterns":246,"scriptPaths":247,"versionParams":250},[239,240,241,242,243,244,245],"\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fcss\u002Fredq-rating-builder-style.css","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fcss\u002Fmagnific-popup.css","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fmagnific-popup.js","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fwp-rating-custom.js","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fmedia-upload.js","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fcss\u002Fredq-review.css","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fjs\u002Ffrontend-assets.json",[],[248,249,242],"\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Freact.min.js","\u002Fwp-content\u002Fplugins\u002Frating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Freact-dom.min.js",[251,252,253,254,255],"rating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fcss\u002Fredq-rating-builder-style.css?ver=","rating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fcss\u002Fmagnific-popup.css?ver=","rating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fwp-rating-custom.js?ver=","rating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fmedia-upload.js?ver=","rating-builder\u002Fassets\u002Fdist\u002Fvendor\u002Fcss\u002Fredq-review.css?ver=",{"cssClasses":257,"htmlComments":259,"htmlAttributes":260,"restEndpoints":263,"jsGlobals":264,"shortcodeOutput":267},[258],"redq_rb_rating_builder_wrapper",[],[261,262],"data-post-id","data-rating-id",[],[265,266],"RATING_FRONTEND","RATING_BACKEND",[268],"[rating_builder]"]