[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6MuAgaMYoQ5A-Cocf3M3WIG52SPdEVbrjA1uWHvu_C4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":143,"fingerprints":281},"readers-wall","Readers Wall","1.3.7","Leniy","https:\u002F\u002Fprofiles.wordpress.org\u002Fleniy\u002F","\u003Cp>高度自定制性能的读者墙\u003Cbr \u002F>\ncss样式、短代码、展示数量完全可以自行定义\u003C\u002Fp>\n\u003Cp>同时插件提供默认的动态css设置，可以避免对css不熟悉用户的麻烦。\u003C\u002Fp>\n\u003Cp>简单易用，DEMO:\u003Ca href=\"http:\u002F\u002Fblog.leniy.org\u002Fliuyan\" title=\"示例页面\" rel=\"nofollow ugc\">Leniy\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=HAENMLDR2UMFJ&lc=US&item_name=Leniy%20Plugins%20Donation&item_number=plugin%2ddonate&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donate_SM%2egif%3aNonHosted\" rel=\"nofollow ugc\">Donate link\u003C\u002Fa>\u003C\u002Fp>\n","高度自定制性能的读者墙",10,3018,100,1,"2016-08-17T12:49:00.000Z","4.7.32","3.0","",[20,21,22,23,24],"comments","link","page","post","wall","http:\u002F\u002Fblog.leniy.org\u002Freaders-wall.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freaders-wall.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"leniy",3,40,30,84,"2026-04-04T23:27:47.693Z",[40,60,84,105,125],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":13,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":58,"download_link":59,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"vk-link-target-controller","VK Link Target Controller","1.8.0.1","Vektor,Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fvektor-inc\u002F","\u003Ch4>Plugin presentation\u003C\u002Fh4>\n\u003Cp>VK Link Target Controller enables to redirect your visitors to another page than the post content when they click on the post title that displays on the Recent Posts list or the Archives Page.\u003C\u002Fp>\n\u003Ch4>Example of use\u003C\u002Fh4>\n\u003Cp>Let’s say you have a new product for sale on eBay or Etsy.\u003Cbr \u002F>\nYou find it annoying to write a complete post entry on your blog (or WordPress powered website) to explain you have a new product to sell there and would like your visitors to access directly the product page.\u003C\u002Fp>\n\u003Cp>With VK Link Target Controller your visitors will access directly that product page when clicking on the post title.\u003Cbr \u002F>\nFast redirection to the product you want to sell!.\u003C\u002Fp>\n\u003Ch4>GitHub repository\u003C\u002Fh4>\n\u003Cp>VK Link Target Controller official repository on GitHub.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkurudrive\u002Fvk-link-target-controller\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fkurudrive\u002Fvk-link-target-controller\u003C\u002Fa>\u003Cbr \u002F>\nLatest plugin version is always on GitHub.\u003C\u002Fp>\n","Redirect your visitors to another page than the post content when they click on the post title.",30000,253504,2,"2026-02-19T09:04:00.000Z","6.9.4","5.3",[21,55,22,56,57],"list","recent-posts","redirection","https:\u002F\u002Fgithub.com\u002Fvektor-inc\u002Fvk-link-target-controller","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvk-link-target-controller.1.8.0.1.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":70,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":18,"download_link":81,"security_score":82,"vuln_count":50,"unpatched_count":28,"last_vuln_date":83,"fetched_at":30},"no-page-comment","No Page Comment","1.3.1","Seth Alling","https:\u002F\u002Fprofiles.wordpress.org\u002Fsethta\u002F","\u003Cp>Up until recently, WordPress gave two options: You could either disable comments and trackbacks by default for all pages and posts, or you could have them active by default. In WordPress version 4.3, this finally changed so comments are always disabled on new pages.\u003C\u002Fp>\n\u003Cp>While the new change makes it easier for many of the sites, it make it harder for people who need to get the reverse and enable comments on all pages, or if they need to change the default for a custom post type. This plugin allows you to choose whether comments are enabled or disabled by default on all new posts, pages and custom post types, while still giving the ability to individually enable comments on posts or pages.\u003C\u002Fp>\n\u003Cp>Also, this plugin provides a way to quickly disable all comments or pingbacks for a specific custom post type. It directly interacts with your database to modify the status, so it is highly recommended that you backup your database first. There shouldn’t be any issues using this feature, but it’s always good to play it safe.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsethta\u002Fno-page-comment\" title=\"No Page Comment Development on Github\" rel=\"nofollow ugc\">View No Page Comment Development on Github\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsethta\u002Fno-page-comment\u002Fissues\" title=\"Report an Issue about No Page Comment on Github\" rel=\"nofollow ugc\">Please Report any Issues about No Page Comment on Github\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_s-xclick&hosted_button_id=5WWP2EDSCAJR4\" title=\"Donate to support the No Page Comment Plugin development\" rel=\"nofollow ugc\">Donate to Support No Page Comment Development\u003C\u002Fa>\u003C\u002Fp>\n","An admin interface to control the default comment and trackback settings on new posts, pages and custom post types.",10000,250545,96,23,"2025-11-17T15:09:00.000Z","6.8.5","6.2","7.4",[20,77,78,79,80],"custom-post-types","discussion","pages","posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fno-page-comment.zip",99,"2022-09-21 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":70,"num_ratings":94,"last_updated":95,"tested_up_to":52,"requires_at_least":96,"requires_php":75,"tags":97,"homepage":101,"download_link":102,"security_score":103,"vuln_count":50,"unpatched_count":28,"last_vuln_date":104,"fetched_at":30},"mihdan-no-external-links","No External Links","5.1.8","mihdan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmihdan\u002F","\u003Cp>No External Links converts external links to internal links. Featuring \u003Cem>Full Page or Targeted Content Filtering\u003C\u002Fem>, \u003Cem>Custom Redirect Page\u002FMessage\u003C\u002Fem>, \u003Cem>Encoded Masks\u003C\u002Fem>, \u003Cem>External Link Click Logging\u003C\u002Fem>, \u003Cem>Individual Link Exclusion\u003C\u002Fem>, \u003Cem>Post\u002FPage Specific Exclusion\u003C\u002Fem>, and many more…\u003C\u002Fp>\n\u003Ch4>Example\u003C\u002Fh4>\n\u003Cp>Links like “\u003Cem>https:\u002F\u002Fwordpress.org\u003C\u002Fem>” will be masked into\u003Cbr \u002F>\n“\u003Cem>http:\u002F\u002Fwww.example.com\u002Fgoto\u002Fhttps:\u002F\u002Fwordpress.org\u003C\u002Fem>“.\u003C\u002Fp>\n\u003Ch4>Warning\u003C\u002Fh4>\n\u003Cp>No External Links may conflict with cache plugins.\u003Cbr \u002F>\nUsually adding the redirect page to the caching plugin exclusions works fine, but there are no guarantees.\u003Cbr \u002F>\nCreate a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmihdan-no-external-links\" rel=\"ugc\">support topic\u003C\u002Fa> if you need assistance resolving a caching issue.\u003Cbr \u002F>\n\u003Cstrong>\u003Cem>Please provide as much detail as possible, for example, what version of WordPress & PHP you are using. Which caching plugin you are using. The more information you include the better.\u003C\u002Fem>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Details\u003C\u002Fh4>\n\u003Cp>No External Links is designed for specialists who sell different kinds of advertisements on their web site and care about the number of outgoing links that can be found by search engines. Now you can make all external links internal.\u003C\u002Fp>\n\u003Ch4>How To Use\u003C\u002Fh4>\n\u003Cp>Just do everything like you would normally, and as long as the plugin is active, external links will be automatically masked.\u003C\u002Fp>\n\u003Ch4>Recommended Settings\u003C\u002Fh4>\n\u003Cp>The default settings that are used on a fresh install of the plugin are what we recommend.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Need help with anything? Please create a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmihdan-no-external-links\" rel=\"ugc\">support topic\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Cstrong>\u003Cem>Please provide as much detail as possible, for example, what version of WordPress & PHP you are using. Examples of links that do not work. If you are using a caching plugin, please specify which one. The more information you include the better.\u003C\u002Fem>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Feature Request\u003C\u002Fh4>\n\u003Cp>Want a feature added to this plugin? Create a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmihdan-no-external-links\" rel=\"ugc\">support topic\u003C\u002Fa>.\u003Cbr \u002F>\nWe are always looking to add features to improve our plugin.\u003C\u002Fp>\n\u003Ch4>Localization\u003C\u002Fh4>\n\u003Cp>We apologize that the latest version has changed so much that existing localizations no longer work.\u003Cbr \u002F>\nIf you would like to contribute to the translations please get in touch.\u003C\u002Fp>\n\u003Ch4>Note\u003C\u002Fh4>\n\u003Cp>No External Links \u003Cstrong>does not\u003C\u002Fstrong> make any changes to your database, it just processes the output. So you will not see these changes within the WYSIWYG editor.\u003C\u002Fp>\n","Convert external links into internal links, site wide or post\u002Fpage specific. Add NoFollow, Click logging, and more...",6000,78779,16,"2025-11-29T11:53:00.000Z","5.7.4",[20,98,80,99,100],"links","seo","seo-hide","https:\u002F\u002Fwww.kobzarev.com\u002Fprojects\u002Fno-external-links\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmihdan-no-external-links.5.1.8.zip",98,"2025-09-22 00:00:00",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":13,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":119,"tags":120,"homepage":123,"download_link":124,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"remove-noreferrer","Remove noreferrer","2.0.0","gruz0","https:\u002F\u002Fprofiles.wordpress.org\u002Fgruz0\u002F","\u003Cp>\u003Cstrong>“Remove noreferrer” automatically removes \u003Ccode>rel=\"noreferrer\"\u003C\u002Fcode> attribute from links on your website on-the-fly.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Plugin does not modify original links or content in the database.\u003C\u002Fp>\n\u003Ch3>Which kind of content supported?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Posts\u003C\u002Fli>\n\u003Cli>Pages\u003C\u002Fli>\n\u003Cli>Blog page (homepage, etc.)\u003C\u002Fli>\n\u003Cli>Comments\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Also it supports standard WordPress widgets:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>“Text”\u003C\u002Fli>\n\u003Cli>“Custom HTML”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Docs & Support\u003C\u002Fh4>\n\u003Cp>This plugin is an open source project and we would love you to help us make it better. If you want a new feature will be implemented in this plugin, you can open a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fgruz0\u002Fremove-noreferrer\u002Fissues\u002Fnew\" rel=\"nofollow ugc\">GitHub Issue\u003C\u002Fa>. If you don’t have a GitHub Account you can send me email to \u003Ca href=\"mailto:alexander@kadyrov.dev\" rel=\"nofollow ugc\">alexander@kadyrov.dev\u003C\u002Fa>. You can find more detailed information about plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fgruz0\u002Fremove-noreferrer\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.buymeacoffee.com\u002Fgruz0\" rel=\"nofollow ugc\">Buy Me a Coffee\u003C\u002Fa>\u003C\u002Fp>\n","\"Remove noreferrer\" automatically removes rel=\"noreferrer\" attribute from links on your website on-the-fly.",5000,15740,14,"2021-01-04T11:56:00.000Z","5.6.17","5.1","5.6",[20,121,22,23,122],"noreferrer","widgets","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fremove-noreferrer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-noreferrer.2.0.0.zip",{"slug":126,"name":127,"version":128,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":133,"downloaded":134,"rating":103,"num_ratings":135,"last_updated":136,"tested_up_to":137,"requires_at_least":138,"requires_php":18,"tags":139,"homepage":141,"download_link":142,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"admin-collapse-subpages","Admin Collapse Subpages","2.4","bravokeyl","https:\u002F\u002Fprofiles.wordpress.org\u002Fbravokeyl\u002F","\u003Cp>Simple plugin that allows you to collapse subpages in the Pages admin list also for custom post types that are heirarchial. Especially helpful if you have a ton of pages \u002Fcpt’s with heiararchial set to true. It uses a cookie to save the expand\u002Fcollapse status of your pages.\u003C\u002Fp>\n\u003Cp>This is loosely based on Collapse Sub-Pages by Dan Dietz, which broke with the 3.0 upgrade due to UI changes and hasn’t been updated. I’ve had to rewrite the jQuery to make it work with 3.x versions.\u003C\u002Fp>\n\u003Cp>Because this is a jQuery, it’s possible that they could make additional changes that would break it. I’ll do my best to stay on top of it, but let me know if it stops working.\u003C\u002Fp>\n\u003Ch3>Plugin in your Language\u003C\u002Fh3>\n\u003Cp>From version 2.3 our plugin supports internationalization, which means you can have plugin in your specified language.\u003C\u002Fp>\n\u003Cp>It’s currently available in US English ,UK English, Chinese, Telugu , Serbian.\u003C\u002Fp>\n\u003Ch3>Support us by Translating\u003C\u002Fh3>\n\u003Cp>Go \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fadmin-collapse-subpages\" rel=\"nofollow ugc\">here\u003C\u002Fa> and translate into your language.\u003C\u002Fp>\n\u003Ch3>Special Thanks\u003C\u002Fh3>\n\u003Cp>We specially thank \u003Ca href=\"http:\u002F\u002Fwww.webhostinghub.com\u002F\" rel=\"nofollow ugc\">Borisa Djuraskovic\u003C\u002Fa> for translating this plugin in Serbian Language.\u003C\u002Fp>\n\u003Cp>What’s new in Version 2.0 ?\u003C\u002Fp>\n\u003Cp>1)Fix en-queuing of scripts .\u003Cbr \u002F>\n2)Expand all , Collapse all links appear only on the pages list not on every list (like plugins ,posts etc.,)\u003Cbr \u002F>\n3)Updated jQuery.cookie.js to 1.4.0\u003C\u002Fp>\n","Using this plugin one can easily collapse\u002Fexpand pages with children and grand children.",4000,46956,20,"2019-07-09T17:11:00.000Z","5.2.24","4.6",[140,98,22,79,23],"admin","https:\u002F\u002Fbravokeyl.com\u002Fadmin-collapse-subpages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-collapse-subpages.zip",{"attackSurface":144,"codeSignals":159,"taintFlows":185,"riskAssessment":263,"analyzedAt":280},{"hooks":145,"ajaxHandlers":155,"restRoutes":156,"shortcodes":157,"cronEvents":158,"entryPointCount":28,"unprotectedCount":28},[146,151],{"type":147,"name":148,"callback":149,"file":150,"line":71},"action","admin_menu","register_leniy_plugins_admin_menu_page","inc\\leniy_admin_menu.php",{"type":147,"name":148,"callback":152,"file":153,"line":154},"qw_RW_menu","readers-wall.php",51,[],[],[],[],{"dangerousFunctions":160,"sqlUsage":161,"outputEscaping":163,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":184},[],{"prepared":14,"raw":28,"locations":162},[],{"escaped":28,"rawEcho":164,"locations":165},9,[166,168,170,172,174,176,178,180,182],{"file":150,"line":36,"context":167},"raw output",{"file":153,"line":169,"context":167},69,{"file":153,"line":171,"context":167},73,{"file":153,"line":173,"context":167},104,{"file":153,"line":175,"context":167},111,{"file":153,"line":177,"context":167},118,{"file":153,"line":179,"context":167},125,{"file":153,"line":181,"context":167},136,{"file":153,"line":183,"context":167},149,[],[186,240],{"entryPoint":187,"graph":188,"unsanitizedCount":238,"severity":239},"qw_RW_setpage (readers-wall.php:61)",{"nodes":189,"edges":230},[190,195,200,204,206,210,212,216,218,222,224,228],{"id":191,"type":192,"label":193,"file":153,"line":194},"n0","source","$_POST['qw_RW_css']",64,{"id":196,"type":197,"label":198,"file":153,"line":194,"wp_function":199},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":201,"type":192,"label":202,"file":153,"line":203},"n2","$_POST['qw_RW_shortcode']",65,{"id":205,"type":197,"label":198,"file":153,"line":203,"wp_function":199},"n3",{"id":207,"type":192,"label":208,"file":153,"line":209},"n4","$_POST['qw_RW_shownumber']",66,{"id":211,"type":197,"label":198,"file":153,"line":209,"wp_function":199},"n5",{"id":213,"type":192,"label":214,"file":153,"line":215},"n6","$_POST['qw_RW_commentatleast']",67,{"id":217,"type":197,"label":198,"file":153,"line":215,"wp_function":199},"n7",{"id":219,"type":192,"label":220,"file":153,"line":221},"n8","$_POST['qw_RW_days']",68,{"id":223,"type":197,"label":198,"file":153,"line":221,"wp_function":199},"n9",{"id":225,"type":192,"label":226,"file":153,"line":227},"n10","$_POST['qw_RW_manualcss']",76,{"id":229,"type":197,"label":198,"file":153,"line":227,"wp_function":199},"n11",[231,233,234,235,236,237],{"from":191,"to":196,"sanitized":232},false,{"from":201,"to":205,"sanitized":232},{"from":207,"to":211,"sanitized":232},{"from":213,"to":217,"sanitized":232},{"from":219,"to":223,"sanitized":232},{"from":225,"to":229,"sanitized":232},6,"low",{"entryPoint":241,"graph":242,"unsanitizedCount":238,"severity":239},"\u003Creaders-wall> (readers-wall.php:0)",{"nodes":243,"edges":256},[244,245,246,247,248,249,250,251,252,253,254,255],{"id":191,"type":192,"label":193,"file":153,"line":194},{"id":196,"type":197,"label":198,"file":153,"line":194,"wp_function":199},{"id":201,"type":192,"label":202,"file":153,"line":203},{"id":205,"type":197,"label":198,"file":153,"line":203,"wp_function":199},{"id":207,"type":192,"label":208,"file":153,"line":209},{"id":211,"type":197,"label":198,"file":153,"line":209,"wp_function":199},{"id":213,"type":192,"label":214,"file":153,"line":215},{"id":217,"type":197,"label":198,"file":153,"line":215,"wp_function":199},{"id":219,"type":192,"label":220,"file":153,"line":221},{"id":223,"type":197,"label":198,"file":153,"line":221,"wp_function":199},{"id":225,"type":192,"label":226,"file":153,"line":227},{"id":229,"type":197,"label":198,"file":153,"line":227,"wp_function":199},[257,258,259,260,261,262],{"from":191,"to":196,"sanitized":232},{"from":201,"to":205,"sanitized":232},{"from":207,"to":211,"sanitized":232},{"from":213,"to":217,"sanitized":232},{"from":219,"to":223,"sanitized":232},{"from":225,"to":229,"sanitized":232},{"summary":264,"deductions":265},"The \"readers-wall\" plugin version 1.3.7 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by exclusively using prepared statements for its SQL queries and having a reported history free of any known CVEs. There are no external HTTP requests or file operations, which reduces the attack surface in those areas. However, significant concerns arise from the static analysis. The complete lack of output escaping for all identified output points is a critical weakness, potentially leading to cross-site scripting (XSS) vulnerabilities if user-supplied data is displayed without sanitization. Furthermore, the absence of nonce and capability checks across all entry points, including the lack of authentication checks on any AJAX handlers or permission callbacks on REST API routes, represents a substantial risk. While the taint analysis did not reveal critical or high severity flows, the presence of unsanitized paths suggests that with a larger attack surface or more complex interactions, vulnerabilities could be introduced. The vulnerability history, while clean, could also indicate limited historical scrutiny. Overall, the lack of proper output escaping and authentication\u002Fauthorization controls on all potential entry points are the most pressing issues.",[266,269,271,273,276,278],{"reason":267,"points":268},"0% of output properly escaped",15,{"reason":270,"points":11},"0 Nonce checks",{"reason":272,"points":11},"0 Capability checks",{"reason":274,"points":275},"Unprotected AJAX handlers",5,{"reason":277,"points":275},"Unprotected REST API routes",{"reason":279,"points":275},"Flows with unsanitized paths","2026-03-17T01:39:18.320Z",{"wat":282,"direct":288},{"assetPaths":283,"generatorPatterns":285,"scriptPaths":286,"versionParams":287},[284],"\u002Fwp-content\u002Fplugins\u002Freaders-wall\u002Fresource\u002Fdefault.png",[],[],[],{"cssClasses":289,"htmlComments":292,"htmlAttributes":293,"restEndpoints":307,"jsGlobals":308,"shortcodeOutput":311},[290,291],"RW-btn","RW-btn-slide-text",[],[294,295,296,297,298,299,300,301,302,303,304,305,306],"name=\"qw_RW_css\"","name=\"qw_RW_shortcode\"","name=\"qw_RW_shownumber\"","name=\"qw_RW_commentatleast\"","name=\"qw_RW_days\"","name=\"qw_RW_manualcss\"","id=\"qw_RW_shortcode\"","id=\"qw_RW_shownumber\"","id=\"qw_RW_commentatleast\"","id=\"qw_RW_days\"","id=\"temptemptemp\"","id=\"manualarea\"","id=\"qw_RW_manualcss\"",[],[309,310],"qwshow","qwhide",[312],"\u003Ca title=\""]