[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fykyA9VqtaWLf2z4EuHyuHOcVlRiOM6MvZAdjPMsvTI0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":123,"fingerprints":537},"recommended-links","Recommended Links for WordPress","0.4.2","goldenapples","https:\u002F\u002Fprofiles.wordpress.org\u002Fgoldenapples\u002F","\u003Cp>This plugin aims to support community link-sharing, social bookmarking, and discussion of links in the WordPress environment.\u003C\u002Fp>\n\u003Cp>This is still at an early stage of what I hope will be a much more ambitious project. If you want to try this out, please give me feedback.\u003C\u002Fp>\n\u003Cp>I will guarantee backwards compatibility with all data saved by the plugin, so it should be safe to install and activate, and as I add features, your existing posts and links will work with them just fine.\u003C\u002Fp>\n\u003Cp>See the plugin’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fgoldenapples\u002Frecommended-links\u002Fwiki\" rel=\"nofollow ugc\">wiki page on github\u003C\u002Fa> for more up-to-date documentation (its hard to keep documentation updated in multiple places).\u003C\u002Fp>\n","A sort of \"Reddit clone\" that allows users to post links, up- or down-vote them, and comment on them.",10,3704,80,1,"2012-05-24T22:25:00.000Z","3.4.2","3.2.1","",[20,21,22,23,24],"digg","reddit","sharing","social-bookmarking","voting","http:\u002F\u002Fgoldenapplesdesign.com\u002Fprojects\u002Frecommended-links-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecommended-links.0.4.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},3,50,30,84,"2026-04-05T02:05:51.719Z",[39,58,76,93,107],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":28,"num_ratings":28,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":56,"download_link":57,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"tilt-social-share-widget","Tilt Social Share Widget","0.97","Xonox","https:\u002F\u002Fprofiles.wordpress.org\u002Fxonox\u002F","\u003Cp>Tilt Social Share Widget is a simple widget that allows you to enable sharing of your posts and\u002For pages.\u003C\u002Fp>\n\u003Ch4>Available Services\u003C\u002Fh4>\n\u003Cp>With Tilt Social Share Widget you can activate the following sharing services:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Del.icio.us\u003C\u002Fli>\n\u003Cli>Designbump\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Diigo\u003C\u002Fli>\n\u003Cli>Evernote\u003C\u002Fli>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Friendfeed\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Google Bookmarks\u003C\u002Fli>\n\u003Cli>Google Buzz\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Newsvine\u003C\u002Fli>\n\u003Cli>Ping.fm\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Posterous\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Slashdot\u003C\u002Fli>\n\u003Cli>StumbleUpon\u003C\u002Fli>\n\u003Cli>Technorati\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Yahoo Bookmarks\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>More Information\u003C\u002Fh4>\n\u003Cp>To know more about Tilt Social Share Widget go to \u003Ca href=\"http:\u002F\u002Fxonoxlabs.com\u002F94\u002Ftilt-social-share-widget\" rel=\"nofollow ugc\">xonoxlabs.com\u003C\u002Fa>\u003C\u002Fp>\n","Tilt Social Share Widget allows your users to quickly share your content on social sites. View \"Description\" tab for available services.",300,33236,"2012-06-28T22:06:00.000Z","3.3.2","3.3",[53,20,54,22,55],"delicious","share","social","http:\u002F\u002Fxonoxlabs.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftilt-social-share-widget.0.97.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":28,"num_ratings":28,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":74,"download_link":75,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"social-buttons","Social Buttons","1.0","alexpooley","https:\u002F\u002Fprofiles.wordpress.org\u002Falexpooley\u002F","\u003Cp>Selectively add social network buttons such as digg, sphinn, etc to your posts or theme design.\u003C\u002Fp>\n\u003Cp>I wrote this plugin because I wanted finer control over where and which buttons\u003Cbr \u002F>\nwere placed on my site and in my posts.\u003C\u002Fp>\n\u003Cp>Sometimes I have marketing posts so I want to link to Sphinn, but sometimes I have\u003Cbr \u002F>\ntechnical posts so Reddit would be a better choice. This plugin is flexible enough that\u003Cbr \u002F>\nif you want the same button in every post, then you can still modify your theme very easily\u003Cbr \u002F>\nto accomplish this.\u003C\u002Fp>\n\u003Cp>You may place as many buttons, in as many places in your posts as you like.\u003C\u002Fp>\n\u003Cp>This plugin handles:\u003Cbr \u002F>\n– Digg\u003Cbr \u002F>\n– Reddit (all button styles)\u003Cbr \u002F>\n– Delicious\u003Cbr \u002F>\n– Sphinn\u003Cbr \u002F>\n– Dzone (all button styles)\u003Cbr \u002F>\n– StumbleUpon\u003C\u002Fp>\n\u003Ch4>For Your Posts\u003C\u002Fh4>\n\u003Cp>Use the following in your posts: [SB button 1, …, button N]\u003C\u002Fp>\n\u003Cp>Here’s an example post…\u003C\u002Fp>\n\u003Cpre>\u003Ccode>Hey, check out my new buttons!\nHere they are: [SB digg, delicious, reddit]\nAnd look\nHere's some more:\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>    [SB reddit, sphinn]\u003C\u002Fp>\n\u003Cp>The different button types are:\u003Cbr \u002F>\n– digg\u003Cbr \u002F>\n– delicious\u003Cbr \u002F>\n– reddit\u003Cbr \u002F>\n– reddit1 (same as reddit)\u003Cbr \u002F>\n– reddit2\u003Cbr \u002F>\n– reddit3\u003Cbr \u002F>\n– sphinn\u003Cbr \u002F>\n– dzone\u003Cbr \u002F>\n– dzone1 (same as dzone)\u003Cbr \u002F>\n– dzone2\u003Cbr \u002F>\n– stumbleupon\u003Cbr \u002F>\n– stumble (same as stumbleupon)\u003C\u002Fp>\n\u003Ch4>For Your Themes\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>\u003C?php echo sb_make_button('digg', 'http:\u002F\u002Fwww.alexpooley.com') ?>\n\u003C?php echo 'I'm in a post now:'.sb_make_button('reddit', get_permalink()) ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Selectively add social network buttons to your posts, or theme design.",70,9810,"2008-05-18T10:33:00.000Z","2.2.5","2.0.2",[53,20,21,72,73],"social-networks","sphinn","http:\u002F\u002Fwww.alexpooley.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-buttons.1.1.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":28,"num_ratings":28,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":18,"tags":88,"homepage":91,"download_link":92,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"damnsexybookmarks","DamnSexyBookmarks","1.0.1","normanyung","https:\u002F\u002Fprofiles.wordpress.org\u002Fnormanyung\u002F","\u003Cp>= UPDATE v.1.0.2=\u003Cbr \u002F>\nAll additions made in DamnSexyBookmarks have been merged into to \u003Ca href=\"http:\u002F\u002Feight7teen.com\u002Fsexy-bookmarks\" rel=\"nofollow ugc\">SexyBookmarks\u003C\u002Fa>. I’ll continue working on changes there.\u003C\u002Fp>\n\u003Ch4>1.0 First Release\u003C\u002Fh4>\n\u003Cp>Based on \u003Ca href=\"http:\u002F\u002Feight7teen.com\u002Fsexy-bookmarks\" rel=\"nofollow ugc\">Josh Jones’ SexyBookmarks v.2.1.2 plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>It includes all the features of SexyBookmarks v.2.1.2 with the following changes\u002Fadditions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Customizable display order of bookmarks.\u003C\u002Fli>\n\u003Cli>Uses WP Custom Fields to store the short URL for each post\u002Fpage.\u003Cbr \u002F>\nThis minimizes the need to make a remote request for a short URL each time the post or page is processed.\u003C\u002Fli>\n\u003Cli>Fix to remove inline CSS when DamnSexyBookmarks is displayed in the feed.\u003C\u002Fli>\n\u003Cli>Added an option to hide or display DamnSexyBookmarks in feeds.\u003C\u002Fli>\n\u003Cli>Added an option to hide “Sharing is Caring” or “Sharing is Sexy”.\u003C\u002Fli>\n\u003Cli>Streamlined code for easier maintenance.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Credit goes to \u003Ca href=\"http:\u002F\u002Feight7teen.com\u002Fsexy-bookmarks\" rel=\"nofollow ugc\">Josh Jones’ SexyBookmarks plugin\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds a social bookmarking menu to your posts\u002Fpages\u002Findex. Based on Josh Jones' SexyBookmarks plugin: http:\u002F\u002Feight7teen.com\u002Fsexy-bookmarks",12509,"2009-04-24T16:25:00.000Z","2.7.1","2.7",[89,53,20,90,23],"bookmarks-menu","furl","http:\u002F\u002Fwww.robotwithaheart.com\u002Fwordpress-work\u002Fdamnsexybookmarks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdamnsexybookmarks.1.0.2.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":11,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":87,"requires_at_least":18,"requires_php":18,"tags":103,"homepage":105,"download_link":106,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"grouptivity","Share+ by Grouptivity","2.1.0","MartinLogan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmartinlogan\u002F","\u003Cp>\u003Cstrong>For Your Readers\u003C\u002Fstrong>\u003Cbr \u002F>\nEmpower your readers with a social tool for sharing, saving and discovering new content with the click of a button. Our plugin provides social features for sharing content across all major social bookmarking sites and a clipping feature for adding text, images and personalized messages for friends, family and co-workers.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For Publishers\u003C\u002Fstrong>\u003Cbr \u002F>\nDownload our free content monetization plugin by adding your Google Adsense ID, embedding ads into shared content and keeping all revenue generated by the viral effect of people discussing your articles and blog posts. That’s right, 100% of ad revenue is yours.\u003C\u002Fp>\n\u003Cp>The Share+ button offers the following features for readers and publishers:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatic Plugin Updates\u003C\u002Fli>\n\u003Cli>Email This (with private discussions and forum) \u003C\u002Fli>\n\u003Cli>Content Clipping (\u003Cem>add photos and personalized messages\u003C\u002Fem>)\u003C\u002Fli>\n\u003Cli>Social Bookmarking (\u003Cem>all major services and browsers\u003C\u002Fem>)\u003C\u002Fli>\n\u003Cli>Portable Address Book (\u003Cem>access all contacts anywhere on the web\u003C\u002Fem>)\u003C\u002Fli>\n\u003Cli>Tracking and dashboard for your blog or website\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The days of cutting and pasting links are over. With the Share+ button by Grouptivity, your readers get a better experience and tools to track the articles, posts and clips they share with friends. Web publishers get access to a free Content Monetization Platform that allows them to drive 3 times more traffic and make money from the viral spread of their content. Make your content work for you and get started today!\u003C\u002Fp>\n","Not just another sharing plugin. Share+ gives readers a simple way to save, share and discover your top content with friends, family and co-workers.",12004,"2009-01-02T23:49:00.000Z",[104,54,22,23],"links","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgrouptivity\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgrouptivity.2.1.1.zip",{"slug":108,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":11,"downloaded":114,"rating":115,"num_ratings":14,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":18,"tags":119,"homepage":121,"download_link":122,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"notable","2.3","Scott Grayban","https:\u002F\u002Fprofiles.wordpress.org\u002Fsgrayban\u002F","\u003Cp>It puts a bar of icons at the bottom of each post allowing your readers to submit your posts to several different\u003Cbr \u002F>\nsocial networking and bookmarking sites. (del.icio.us, digg, fark, etc.)\u003C\u002Fp>\n\u003Cp>The original plugin was called \u003Ca href=\"http:\u002F\u002Fblog.calevans.com\u002F2006\u002F02\u002F08\u002Fnotable-another-wordpress-plugin\u002F\" rel=\"nofollow ugc\">wp-notable\u003C\u002Fa>\u003Cbr \u002F>\nbut no longer worked or was supported. The author was Cal Evans.\u003C\u002Fp>\n","Adds social bookmark links to each blog entry.",3266,20,"2015-11-25T11:49:00.000Z","4.4.34","3.0",[120,20,108,21,72],"del-icio-us","http:\u002F\u002Fblog.borgnet.us\u002Flinks\u002Fwp-notable\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnotable.2.3.zip",{"attackSurface":124,"codeSignals":300,"taintFlows":434,"riskAssessment":521,"analyzedAt":536},{"hooks":125,"ajaxHandlers":265,"restRoutes":284,"shortcodes":285,"cronEvents":297,"entryPointCount":298,"unprotectedCount":299},[126,131,136,140,144,148,152,157,161,165,169,173,177,181,185,189,192,196,198,201,203,205,207,210,212,214,216,218,222,226,230,233,238,242,245,249,253,257,261],{"type":127,"name":128,"callback":129,"file":130,"line":33},"action","admin_menu","reclinks_admin_pages","admin-functions.php",{"type":132,"name":133,"callback":134,"file":130,"line":135},"filter","manage_edit-reclink_columns","reclinks_votes_column_register",87,{"type":127,"name":137,"callback":138,"priority":11,"file":130,"line":139},"manage_posts_custom_column","reclinks_votes_column_display",94,{"type":132,"name":141,"callback":142,"file":130,"line":143},"manage_edit-reclink_sortable_columns","reclink_column_register_sortable",110,{"type":132,"name":145,"callback":146,"file":130,"line":147},"request","votescore_column_orderby",118,{"type":127,"name":149,"callback":150,"file":130,"line":151},"save_post","save_edited_reclink_href",146,{"type":127,"name":153,"callback":154,"file":155,"line":156},"init","reclink_frontend_entries","ajax-functions.php",5,{"type":132,"name":158,"callback":159,"file":155,"line":160},"show_admin_bar","__return_false",43,{"type":132,"name":162,"callback":163,"file":164,"line":11},"query_vars","gad_reclinks_add_query_vars","display-filters.php",{"type":127,"name":166,"callback":167,"file":164,"line":168},"wp_loaded","gad_reclinks_flush_rules",18,{"type":132,"name":170,"callback":171,"file":164,"line":172},"rewrite_rules_array","gad_reclinks_sortorder_rewrite",38,{"type":132,"name":174,"callback":175,"file":164,"line":176},"pre_get_posts","gad_reclinks_sortby",58,{"type":132,"name":178,"callback":179,"file":164,"line":180},"posts_fields","gad_reclinks_posts_fields",115,{"type":132,"name":182,"callback":183,"file":164,"line":184},"posts_join","gad_reclinks_votes_join_current",116,{"type":132,"name":186,"callback":187,"file":164,"line":188},"posts_groupby","gad_reclinks_groupby",117,{"type":132,"name":190,"callback":191,"file":164,"line":147},"posts_orderby","gad_reclinks_orderby",{"type":127,"name":193,"callback":194,"file":164,"line":195},"the_posts","gad_remove_custom_filters",119,{"type":132,"name":178,"callback":179,"file":164,"line":197},122,{"type":132,"name":182,"callback":199,"file":164,"line":200},"gad_reclinks_votes_join_hot",123,{"type":132,"name":186,"callback":187,"file":164,"line":202},124,{"type":132,"name":190,"callback":191,"file":164,"line":204},125,{"type":127,"name":193,"callback":194,"file":164,"line":206},126,{"type":132,"name":178,"callback":208,"file":164,"line":209},"gad_reclinks_posts_fields_absval",129,{"type":132,"name":182,"callback":183,"file":164,"line":211},130,{"type":132,"name":186,"callback":187,"file":164,"line":213},131,{"type":132,"name":190,"callback":191,"file":164,"line":215},132,{"type":127,"name":193,"callback":194,"file":164,"line":217},133,{"type":132,"name":219,"callback":220,"file":164,"line":221},"the_content","gad_reclinks_show_votelinks",199,{"type":132,"name":223,"callback":224,"file":164,"line":225},"comment_text","reclinks_comment_show_votelinks",222,{"type":132,"name":227,"callback":228,"file":164,"line":229},"the_permalink","gad_reclinks_permalink",249,{"type":132,"name":219,"callback":231,"file":164,"line":232},"gad_reclinks_page",291,{"type":127,"name":234,"callback":235,"file":236,"line":237},"shutdown","reclinks_import_old_links","plugin-activation.php",74,{"type":127,"name":153,"callback":239,"file":240,"line":241},"register_cpt_reclink","recommended-links.php",34,{"type":127,"name":243,"callback":244,"file":240,"line":36},"admin_init","gad_check_db_tables",{"type":127,"name":246,"callback":247,"file":240,"line":248},"wp_enqueue_scripts","gad_reclinks_enqueues",96,{"type":127,"name":153,"callback":250,"file":251,"line":252},"reclinks_define_capabilities","user-functions.php",11,{"type":132,"name":254,"callback":255,"file":251,"line":256},"login_message","reclinks_custom_login_message",32,{"type":127,"name":258,"callback":259,"priority":11,"file":251,"line":260},"reclink_add_vote","update_author_karma",47,{"type":127,"name":262,"callback":263,"file":264,"line":33},"widgets_init","gad_reclinks_widgets","widgets.php",[266,272,274,278,279,283],{"action":267,"nopriv":268,"callback":269,"hasNonce":270,"hasCapCheck":268,"file":155,"line":271},"add_reclink",true,"gad_reclinks_ajax_add",false,51,{"action":267,"nopriv":270,"callback":269,"hasNonce":270,"hasCapCheck":268,"file":155,"line":273},52,{"action":275,"nopriv":270,"callback":276,"hasNonce":270,"hasCapCheck":268,"file":155,"line":277},"vote_reclink","gad_reclinks_ajax_vote",73,{"action":275,"nopriv":268,"callback":276,"hasNonce":270,"hasCapCheck":268,"file":155,"line":237},{"action":280,"nopriv":270,"callback":281,"hasNonce":270,"hasCapCheck":270,"file":155,"line":282},"check_reclink_title","gad_reclinks_check_link_title",95,{"action":280,"nopriv":268,"callback":281,"hasNonce":270,"hasCapCheck":270,"file":155,"line":248},[],[286,291,294],{"tag":287,"callback":288,"file":289,"line":290},"reclink_addform","output_addlink_form","display-shortcodes.php",13,{"tag":292,"callback":293,"file":289,"line":66},"reclink_bookmarklet","reclinks_bookmarklet",{"tag":295,"callback":295,"file":289,"line":296},"reclink_sort_options",209,[],9,2,{"dangerousFunctions":301,"sqlUsage":302,"outputEscaping":332,"fileOperations":28,"externalRequests":14,"nonceChecks":14,"capabilityChecks":156,"bundledLibraries":433},[],{"prepared":28,"raw":290,"locations":303},[304,307,309,311,313,314,316,319,321,324,326,329,330],{"file":130,"line":305,"context":306},103,"$wpdb->get_var() with variable interpolation",{"file":130,"line":308,"context":306},104,{"file":289,"line":310,"context":306},138,{"file":289,"line":312,"context":306},143,{"file":236,"line":277,"context":306},{"file":236,"line":315,"context":306},76,{"file":236,"line":317,"context":318},113,"$wpdb->get_results() with variable interpolation",{"file":236,"line":320,"context":318},128,{"file":236,"line":322,"context":323},158,"$wpdb->query() with variable interpolation",{"file":236,"line":325,"context":323},159,{"file":240,"line":327,"context":328},203,"$wpdb->get_row() with variable interpolation",{"file":240,"line":296,"context":328},{"file":240,"line":331,"context":306},233,{"escaped":333,"rawEcho":176,"locations":334},35,[335,339,341,343,344,346,348,349,351,353,355,357,359,361,363,365,367,369,371,373,376,377,378,379,380,382,384,385,386,387,388,389,390,391,393,395,397,399,400,402,403,404,406,408,409,411,413,414,416,418,420,422,424,426,427,428,430,432],{"file":336,"line":337,"context":338},"admin\\options-general.php",40,"raw output",{"file":336,"line":340,"context":338},53,{"file":130,"line":342,"context":338},29,{"file":130,"line":35,"context":338},{"file":130,"line":345,"context":338},100,{"file":130,"line":347,"context":338},106,{"file":130,"line":312,"context":338},{"file":155,"line":350,"context":338},68,{"file":155,"line":352,"context":338},144,{"file":155,"line":354,"context":338},148,{"file":155,"line":356,"context":338},149,{"file":155,"line":358,"context":338},150,{"file":164,"line":360,"context":338},268,{"file":164,"line":362,"context":338},278,{"file":289,"line":364,"context":338},19,{"file":289,"line":366,"context":338},36,{"file":289,"line":368,"context":338},54,{"file":289,"line":370,"context":338},83,{"file":289,"line":372,"context":338},169,{"file":374,"line":375,"context":338},"loop-reclinks.php",24,{"file":264,"line":35,"context":338},{"file":264,"line":241,"context":338},{"file":264,"line":366,"context":338},{"file":264,"line":172,"context":338},{"file":264,"line":381,"context":338},56,{"file":264,"line":383,"context":338},57,{"file":264,"line":383,"context":338},{"file":264,"line":36,"context":338},{"file":264,"line":135,"context":338},{"file":264,"line":317,"context":338},{"file":264,"line":188,"context":338},{"file":264,"line":147,"context":338},{"file":264,"line":195,"context":338},{"file":264,"line":392,"context":338},120,{"file":264,"line":394,"context":338},127,{"file":264,"line":396,"context":338},153,{"file":264,"line":398,"context":338},154,{"file":264,"line":398,"context":338},{"file":264,"line":401,"context":338},157,{"file":264,"line":322,"context":338},{"file":264,"line":322,"context":338},{"file":264,"line":405,"context":338},161,{"file":264,"line":407,"context":338},162,{"file":264,"line":407,"context":338},{"file":264,"line":410,"context":338},165,{"file":264,"line":412,"context":338},166,{"file":264,"line":412,"context":338},{"file":264,"line":415,"context":338},202,{"file":264,"line":417,"context":338},206,{"file":264,"line":419,"context":338},208,{"file":264,"line":421,"context":338},211,{"file":264,"line":423,"context":338},213,{"file":264,"line":425,"context":338},232,{"file":264,"line":331,"context":338},{"file":264,"line":331,"context":338},{"file":264,"line":429,"context":338},236,{"file":264,"line":431,"context":338},237,{"file":264,"line":431,"context":338},[],[435,452,484,494],{"entryPoint":436,"graph":437,"unsanitizedCount":14,"severity":451},"gad_reclinks_check_link_title (ajax-functions.php:98)",{"nodes":438,"edges":449},[439,444],{"id":440,"type":441,"label":442,"file":155,"line":443},"n0","source","$_POST",99,{"id":445,"type":446,"label":447,"file":155,"line":305,"wp_function":448},"n1","sink","wp_remote_get() [SSRF]","wp_remote_get",[450],{"from":440,"to":445,"sanitized":270},"medium",{"entryPoint":453,"graph":454,"unsanitizedCount":483,"severity":451},"reclinks_bookmarklet_request (ajax-functions.php:125)",{"nodes":455,"edges":478},[456,458,461,464,468,471,473,476],{"id":440,"type":441,"label":457,"file":155,"line":211},"$_SERVER",{"id":445,"type":446,"label":459,"file":155,"line":213,"wp_function":460},"wp_redirect() [Open Redirect]","wp_redirect",{"id":462,"type":441,"label":463,"file":155,"line":354},"n2","$_GET['u']",{"id":465,"type":446,"label":466,"file":155,"line":354,"wp_function":467},"n3","echo() [XSS]","echo",{"id":469,"type":441,"label":470,"file":155,"line":356},"n4","$_GET['t']",{"id":472,"type":446,"label":466,"file":155,"line":356,"wp_function":467},"n5",{"id":474,"type":441,"label":475,"file":155,"line":358},"n6","$_GET['s']",{"id":477,"type":446,"label":466,"file":155,"line":358,"wp_function":467},"n7",[479,480,481,482],{"from":440,"to":445,"sanitized":270},{"from":462,"to":465,"sanitized":270},{"from":469,"to":472,"sanitized":270},{"from":474,"to":477,"sanitized":270},4,{"entryPoint":485,"graph":486,"unsanitizedCount":28,"severity":493},"gad_reclinks_ajax_add (ajax-functions.php:54)",{"nodes":487,"edges":491},[488,490],{"id":440,"type":441,"label":442,"file":155,"line":489},64,{"id":445,"type":446,"label":466,"file":155,"line":350,"wp_function":467},[492],{"from":440,"to":445,"sanitized":268},"low",{"entryPoint":495,"graph":496,"unsanitizedCount":28,"severity":493},"\u003Cajax-functions> (ajax-functions.php:0)",{"nodes":497,"edges":514},[498,499,500,501,502,503,504,505,506,508,510,512],{"id":440,"type":441,"label":442,"file":155,"line":489},{"id":445,"type":446,"label":466,"file":155,"line":350,"wp_function":467},{"id":462,"type":441,"label":442,"file":155,"line":443},{"id":465,"type":446,"label":447,"file":155,"line":305,"wp_function":448},{"id":469,"type":441,"label":457,"file":155,"line":211},{"id":472,"type":446,"label":459,"file":155,"line":213,"wp_function":460},{"id":474,"type":441,"label":463,"file":155,"line":354},{"id":477,"type":446,"label":466,"file":155,"line":354,"wp_function":467},{"id":507,"type":441,"label":470,"file":155,"line":356},"n8",{"id":509,"type":446,"label":466,"file":155,"line":356,"wp_function":467},"n9",{"id":511,"type":441,"label":475,"file":155,"line":358},"n10",{"id":513,"type":446,"label":466,"file":155,"line":358,"wp_function":467},"n11",[515,516,517,518,519,520],{"from":440,"to":445,"sanitized":268},{"from":462,"to":465,"sanitized":268},{"from":469,"to":472,"sanitized":268},{"from":474,"to":477,"sanitized":268},{"from":507,"to":509,"sanitized":268},{"from":511,"to":513,"sanitized":268},{"summary":522,"deductions":523},"The \"recommended-links\" plugin version 0.4.2 presents a mixed security posture. While it has no recorded historical vulnerabilities and avoids dangerous functions and file operations, significant concerns arise from its static analysis. The plugin utilizes raw SQL queries for all its database interactions, representing a major risk for SQL injection vulnerabilities. Furthermore, a concerning number of output operations are not properly escaped, leaving the plugin susceptible to Cross-Site Scripting (XSS) attacks. The presence of unprotected AJAX handlers increases the attack surface, as these can be exploited without proper authentication, potentially leading to unauthorized actions or data compromise. The lack of historical CVEs is a positive indicator, but the current code quality signals suggest a high potential for undiscovered vulnerabilities. The plugin's strengths lie in its lack of file operations and external HTTP requests, but these are overshadowed by critical weaknesses in data sanitization and input validation.",[524,526,529,532,534],{"reason":525,"points":11},"All SQL queries use raw SQL",{"reason":527,"points":528},"Low output escaping rate (38%)",8,{"reason":530,"points":531},"Unprotected AJAX handlers (2)",7,{"reason":533,"points":156},"Flows with unsanitized paths",{"reason":535,"points":483},"Limited nonce checks (1)","2026-03-17T01:24:31.189Z",{"wat":538,"direct":545},{"assetPaths":539,"generatorPatterns":542,"scriptPaths":543,"versionParams":544},[540,541],"\u002Fwp-content\u002Fplugins\u002Frecommended-links\u002Fjs\u002Freclinks-scripts.js","\u002Fwp-content\u002Fplugins\u002Frecommended-links\u002Freclinks-styles.css",[],[540],[],{"cssClasses":546,"htmlComments":547,"htmlAttributes":548,"restEndpoints":549,"jsGlobals":550,"shortcodeOutput":552},[],[],[],[],[551],"reclinks",[]]