[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_TlUMJsclvC2aoIinj6nNQqbaE1vzTXcTFw6FvmdDUY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":133,"fingerprints":276},"realtime-comments","Realtime Comments","0.8","Eero Hermlin","https:\u002F\u002Fprofiles.wordpress.org\u002Feero-hermlin\u002F","\u003Cp>Native, lightweight, super-fast plugin for updating comments in real-time with Ajax, without need to refresh the page. Allows comments section work interactively like a chatroom. Comments re-classified as trash or spam will be dynamically removed from users screen. It’s pure WordPress plugin, no need for third parties (like Disqus), no paid services, no secondary logins. Perfect alternative to Disqus.\u003C\u002Fp>\n\u003Cp>Administrator can choose update frequency, define in what pages realtime comments are used, comments ordering in selected pages. Additionally is possible to set custom walker function (if used theme uses it) and size of avatar.\u003C\u002Fp>\n\u003Cp>Supports also paginated view of comments: in this case new top-level comments will be dynamically are added to newest comments page. Nested comments will be dynamically added to parent comments at any comments page.\u003C\u002Fp>\n","Accepted comments from users are added to pages in real-time, without need to refresh. Makes comments section work interactively, like a chatroom.",10,2766,100,2,"2016-02-13T16:20:00.000Z","4.4.34","3.0","",[20,21,22,23],"comments","real-time","realtime","update","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frealtime-comments.0.8.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"eero-hermlin",1,30,84,"2026-04-05T18:58:44.972Z",[37,54,74,94,113],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":26,"downloaded":45,"rating":26,"num_ratings":26,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":18,"download_link":53,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"wp-mercure","WP Mercure","0.1","Clement Decou","https:\u002F\u002Fprofiles.wordpress.org\u002Fcdecou\u002F","\u003Cp>Used for developer or non developer with a Mercure server configured.\u003C\u002Fp>\n\u003Cp>The plugin permit to send notification for the current visitor of your site.\u003Cbr \u002F>\nOne feature is to send notification of a current reader of your post to notify that there is a new version of the post content. The user click to the notification and the post content updated in real time.\u003C\u002Fp>\n","Add WordPress integration of Mercure protocol and add realtime post modification.",863,"2020-11-25T14:45:00.000Z","5.5.18","4.9","7.1.3",[51,52,21,22,23],"mercure","post","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mercure.0.1.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":18,"tags":69,"homepage":72,"download_link":73,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"heatmap-for-wp","heatmap for WordPress – Realtime analytics","0.5.2","heatmap","https:\u002F\u002Fprofiles.wordpress.org\u002Fheatmap\u002F","\u003Cp>heatmap provides realtime analytics and mouse tracking that helps sites editors understand in seconds which are their best performing contents. heatmap is used to optimize the traffic flow on websites and significantly reduce exit rates.\u003C\u002Fp>\n\u003Ch4>Key features of heatmap\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>realtime analytics, with easy-to-understand heat maps, that are overlaid on your site\u003C\u002Fli>\n\u003Cli>smart heat maps that support responsive web design and touch devices\u003C\u002Fli>\n\u003Cli>fully asynchronous tag; no impact on your site’s performance\u003C\u002Fli>\n\u003Cli>no sampling\u003C\u002Fli>\n\u003Cli>automatic updates (no need to refresh the page)\u003C\u002Fli>\n\u003Cli>only you can see the data of your site\u003C\u002Fli>\n\u003Cli>https supported\u003C\u002Fli>\n\u003Cli>full privacy (your users are anonymous)\u003C\u002Fli>\n\u003Cli>free plan available!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Visit \u003Ca href=\"https:\u002F\u002Fheatmap.com\u002F\" rel=\"nofollow ugc\">heatmap.com\u003C\u002Fa> to learn more\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key features of the plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>easy and automatic installation of heatmap’s tag\u003C\u002Fli>\n\u003Cli>no extra load on the database of your wordpress site (no impact on your page speed)\u003C\u002Fli>\n\u003Cli>compatible with symbolic links if you have lots of websites\u003C\u002Fli>\n\u003Cli>written and maintained by the team behind \u003Ca href=\"https:\u002F\u002Fheatmap.com\u002F\" rel=\"nofollow ugc\">heatmap\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Real-time analytics and event tracking for your WordPress sites.",1000,100798,82,19,"2019-02-21T03:11:00.000Z","5.1.22","3.1",[70,71,58,21,22],"analytics","heat-map","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fheatmap-for-wp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fheatmap-for-wp.0.5.2.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":62,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":17,"requires_php":18,"tags":87,"homepage":92,"download_link":93,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"tako-movable-comments","Tako Movable Comments","1.0.7","RenettaRenula","https:\u002F\u002Fprofiles.wordpress.org\u002Frenettarenula\u002F","\u003Cp>This plugin allows you to move comments from one post or page to another. You can also move comments across post types and custom post types.\u003C\u002Fp>\n\u003Cp>By using this plugin in order to move comments, admins no longer need to manually insert the post ID number. Instead, admins can choose the post title through a drop down list. This allows admins to choose the post title that they want to move the comments to easily. Nested comments will also be automatically moved if the comment chosen to be moved has any nested comments under it. This plugin also allows admin to move WordPress comments in bulk. It has a bulk action that moves bulk comments automatically across posts, pages, and custom post types!\u003C\u002Fp>\n\u003Cp>In order to use the plugin, just click on edit comments and move your comments through the ‘Move Comments with Tako’ metabox.\u003C\u002Fp>\n\u003Cp>Notice: PHP5 is required since version 1.0.5!\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Move comments across posts, pages, and posts under custom post types\u003C\u002Fli>\n\u003Cli>Automatically move all the nested comments under the comment chosen to be moved\u003C\u002Fli>\n\u003Cli>Manual insertion of post ID is not needed; post\u002Fpage can be chosen under a dropdown list\u003C\u002Fli>\n\u003Cli>No more ugly dropdowns! Autocomplete enabled; searching for post title becomes easier\u003C\u002Fli>\n\u003Cli>Comments can be move in bulk! No more slaving around and moving only one comment at a time!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Rate this Plugin\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Please rate this plugin if you find it useful. It gives the plugin more exposure and it will generate more downloads. Thank you so much for your help! 🙂\u003C\u002Fp>\n","Move WordPress comments easily with Tako Movable Comments.",22041,96,77,"2016-10-14T04:13:00.000Z","4.6.30",[88,20,89,90,91],"change-comment","edit-comments","nested-comments","update-comment","https:\u002F\u002Fgithub.com\u002Frenettarenula\u002FTako\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftako-movable-comments.1.0.7.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":34,"num_ratings":11,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":18,"tags":107,"homepage":111,"download_link":112,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"update-comments-count","Update Comments Count","1.0","Pau Iglesias","https:\u002F\u002Fprofiles.wordpress.org\u002Fpauiglesias\u002F","\u003Cp>This plugin provides a simple method to update the comment counters stored in each post.\u003C\u002Fp>\n\u003Cp>Works with multiple AJAX calls and processes packs of 50 posts by default.\u003C\u002Fp>\n\u003Cp>For each entry, the comments counter is updated calling the WordPress function \u003Ccode>wp_update_comment_count_now\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>Allows support for existing custom post types, and gives some plugin filters to change core configuration.\u003C\u002Fp>\n","An easy way to update post comments counters, even for large sites, using WordPress standar function.",70,3161,"2015-08-31T10:34:00.000Z","4.3.34","3.3.2",[108,20,109,91,110],"comment","fix-comment","update-comments","http:\u002F\u002Fblogestudio.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fupdate-comments-count.1.0.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":123,"num_ratings":65,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":18,"tags":127,"homepage":131,"download_link":132,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"muut","Muut – Commenting and Forums Re-Imagined","3.0.6","Paul","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaulhughes01\u002F","\u003Cp>Muut represents a complete re-imagination of what internet discussion forums and commenting should be. It’s a modern, fast, highly scalable discussion platform that you can embed onto your WordPress website, and personalize with css to match the design of your site.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FhuOjL8t-q_0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Starting at just $16 a month, you have a discussion platform that offers unlimited posts, comments, users, threads — and we never charge you based on usage. That means you’ll never be punished by having to pay more for a successful community.\u003C\u002Fp>\n\u003Cp>Whether you’re setting up for the first time or have just updated to the new version of the plugin, you’re going to love what we’ve done to make implementing Muut in your WordPress website easy and flexible.\u003C\u002Fp>\n\u003Ch4>Why Muut?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Unified system for both forums and commenting. Same users and design\u003C\u002Fli>\n\u003Cli>Full featured forums makes your WordPress site conversational\u003C\u002Fli>\n\u003Cli>Flat or threaded commenting for small or big topics\u003C\u002Fli>\n\u003Cli>Real-time. No page reloads – posts, replies, likes and users appear in real-time\u003C\u002Fli>\n\u003Cli>Spam filtering, email notifications and 20+ different language versions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Built For WordPress\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Skinnable style the discussion directly from the WordPress CSS editor\u003C\u002Fli>\n\u003Cli>Focus on content. Text focused, uncluttered and linear user interface\u003C\u002Fli>\n\u003Cli>Comes with five widgets, all of which update in real-time \u003C\u002Fli>\n\u003Cli>Single Sign-On. Use the WordPress login, users and avatars\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Optimized for SEO\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Micro format optimized static content\u003C\u002Fli>\n\u003Cli>Static content served from your domain\u003C\u002Fli>\n\u003Cli>Custom S3 bucket support for Developer accounts\u003C\u002Fli>\n\u003Cli>Escaped fragment support for Google\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>New! Widget Details\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cem>Online Users\u003C\u002Fem> – Now the Online Users list isn’t limited to just your main forum page and channel embeds. You can use the Online Users widget on any of your pages to show who is currently logged in (and how many other people are viewing the site). Watch users’ portraits appear on the fly as they sign in to join the discussion.\u003C\u002Fli>\n\u003Cli>\u003Cem>Latest Comments\u003C\u002Fem> – Since Muut is so great to use as the commenting system on your posts and pages, the Latest Comments widget keeps track of which posts have received the latest comments and who made them, and all the users on your website can see it update in real-time as they participate in the discussions on all your posts.\u003C\u002Fli>\n\u003Cli>\u003Cem>Trending Topics\u003C\u002Fem> – If you want to help users stay on top of which posts are getting the most activity on your forum, the Trending Posts widget does just that, with real-time updates to comments and likes—not to mention the trademark Muut green “currently typing” circle.\u003C\u002Fli>\n\u003Cli>\u003Cem>Discussion Channel\u003C\u002Fem> – You can now embed a single specific channel in your website’s sidebar. Users can watch and join the discussion without having to stop browsing the rest of your website.\u003C\u002Fli>\n\u003Cli>\u003Cem>My Feed\u003C\u002Fem> – By using the My Feed widget, users can keep track of all the activity on all the discussions they’ve joined and postes they’ve made right in your website’s sidebars.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can find more information about Muut at our \u003Ca href=\"https:\u002F\u002Fmuut.com\" rel=\"nofollow ugc\">website\u003C\u002Fa> and read the full \u003Ca href=\"http:\u002F\u002Flearn.muut.com\u002Fintegrations\u002Fwordpress\u002Fgetting-started\" rel=\"nofollow ugc\">plugin documentation\u003C\u002Fa>. For more information about why we do what we do, check out our \u003Ca href=\"https:\u002F\u002Fmuut.com\u002Fmanifesto\u002F\" rel=\"nofollow ugc\">Manifesto\u003C\u002Fa> and see our \u003Ca href=\"https:\u002F\u002Fmuut.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">pricing page\u003C\u002Fa> for details on the features available on your Muut subscription.\u003C\u002Fp>\n","Muut represents a complete re-imagination of what internet discussion forums and commenting should be. It’s a modern, fast, highly scalable discussion …",50,32400,78,"2015-11-02T02:26:00.000Z","4.8.0","3.7",[128,20,129,22,130],"commenting","forum","social","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmuut\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmuut.3.0.6.zip",{"attackSurface":134,"codeSignals":188,"taintFlows":261,"riskAssessment":262,"analyzedAt":275},{"hooks":135,"ajaxHandlers":184,"restRoutes":185,"shortcodes":186,"cronEvents":187,"entryPointCount":26,"unprotectedCount":26},[136,142,145,148,152,157,161,165,169,172,176,180],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","wp_set_comment_status","update_last_modified","realtime-comments.php",106,{"type":137,"name":143,"callback":139,"file":140,"line":144},"wp_insert_comment",107,{"type":137,"name":146,"callback":139,"file":140,"line":147},"edit_comment",108,{"type":137,"name":149,"callback":150,"priority":13,"file":140,"line":151},"switch_theme","comment_walker_update",109,{"type":153,"name":154,"callback":155,"file":140,"line":156},"filter","wp_list_comments_args","reverse_comments",110,{"type":153,"name":158,"callback":159,"file":140,"line":160},"comments_array","show_last_comments_only",113,{"type":137,"name":162,"callback":163,"file":140,"line":164},"wp_enqueue_scripts","enqueue_script",114,{"type":137,"name":166,"callback":167,"file":140,"line":168},"admin_enqueue_scripts","enqueue_admin_style_n_script",115,{"type":137,"name":170,"callback":170,"file":140,"line":171},"wp_footer",116,{"type":137,"name":173,"callback":174,"file":140,"line":175},"admin_notices","wp_version_error",121,{"type":137,"name":177,"callback":178,"file":140,"line":179},"admin_menu","admin_page",124,{"type":137,"name":181,"callback":182,"file":140,"line":183},"admin_init","register_and_build_fields",125,[],[],[],[],{"dangerousFunctions":189,"sqlUsage":190,"outputEscaping":204,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":260},[],{"prepared":14,"raw":191,"locations":192},4,[193,197,199,202],{"file":194,"line":195,"context":196},"ajax.php",53,"$wpdb->get_results() with variable interpolation",{"file":140,"line":198,"context":196},591,{"file":140,"line":200,"context":201},723,"$wpdb->query() with variable interpolation",{"file":140,"line":203,"context":201},724,{"escaped":205,"rawEcho":206,"locations":207},3,26,[208,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,258],{"file":140,"line":209,"context":210},265,"raw output",{"file":140,"line":212,"context":210},299,{"file":140,"line":214,"context":210},304,{"file":140,"line":216,"context":210},308,{"file":140,"line":218,"context":210},367,{"file":140,"line":220,"context":210},372,{"file":140,"line":222,"context":210},376,{"file":140,"line":224,"context":210},387,{"file":140,"line":226,"context":210},391,{"file":140,"line":228,"context":210},393,{"file":140,"line":230,"context":210},399,{"file":140,"line":232,"context":210},408,{"file":140,"line":234,"context":210},409,{"file":140,"line":236,"context":210},413,{"file":140,"line":238,"context":210},417,{"file":140,"line":240,"context":210},421,{"file":140,"line":242,"context":210},426,{"file":140,"line":244,"context":210},427,{"file":140,"line":246,"context":210},428,{"file":140,"line":248,"context":210},429,{"file":140,"line":250,"context":210},430,{"file":140,"line":252,"context":210},431,{"file":140,"line":254,"context":210},432,{"file":140,"line":256,"context":210},581,{"file":140,"line":256,"context":210},{"file":140,"line":259,"context":210},731,[],[],{"summary":263,"deductions":264},"The realtime-comments plugin v0.8 exhibits a mixed security posture.  On the positive side, the static analysis reveals no critical or high severity taint flows, a clean vulnerability history with no recorded CVEs, and no apparent file operations or external HTTP requests. This suggests a generally well-contained plugin. However, significant concerns arise from the code signals. The low percentage of SQL queries using prepared statements (33%) and the even lower percentage of properly escaped output (10%) represent substantial risks.  Without proper sanitization and escaping, the plugin is vulnerable to SQL injection and cross-site scripting (XSS) attacks, respectively, especially if data originating from user input is involved in these operations. The absence of nonce checks and capability checks on any entry points (though none were identified) could also be a latent risk if new entry points are introduced in future versions without adequate security. The vulnerability history, while currently clean, doesn't guarantee future safety, and the identified code weaknesses could easily lead to new vulnerabilities.",[265,268,270,273],{"reason":266,"points":267},"Low percentage of SQL prepared statements",7,{"reason":269,"points":267},"Very low percentage of output escaping",{"reason":271,"points":272},"No nonce checks on entry points",5,{"reason":274,"points":272},"No capability checks on entry points","2026-03-17T01:32:16.406Z",{"wat":277,"direct":288},{"assetPaths":278,"generatorPatterns":282,"scriptPaths":283,"versionParams":284},[279,280,281],"\u002Fwp-content\u002Fplugins\u002Frealtime-comments\u002Fcss\u002Frtc-admin.css","\u002Fwp-content\u002Fplugins\u002Frealtime-comments\u002Fjs\u002Frtc-admin.js","\u002Fwp-content\u002Fplugins\u002Frealtime-comments\u002Fjs\u002Frtc-client.js",[],[281],[285,286,287],"realtime-comments\u002Fcss\u002Frtc-admin.css?ver=","realtime-comments\u002Fjs\u002Frtc-admin.js?ver=","realtime-comments\u002Fjs\u002Frtc-client.js?ver=",{"cssClasses":289,"htmlComments":292,"htmlAttributes":295,"restEndpoints":298,"jsGlobals":300,"shortcodeOutput":303},[290,291],"comment-list","children",[293,294],"\u003C!-- realtime comments -->","\u003C!-- \u002Frealtime comments -->",[296,297],"data-comment-id","data-comment-status",[299],"\u002Fwp-json\u002Frealtime-comments\u002Fv1\u002Fcomments",[301,302],"window.rtc_settings","var RTC_SETTINGS",[]]