[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmbkTkMOnrfzHdM-EZ6omKmB4mq6iYgwukuCnEQY5HIA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":133,"fingerprints":196},"rest-api-enabler","REST API Enabler","1.1.0","Mickey Kay","https:\u002F\u002Fprofiles.wordpress.org\u002Fmcguive7\u002F","\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Frest-api-enabler\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, custom post types and custom fields are not accessible via the WordPress REST API. REST API Enabler allows you to:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enable the WP REST API for custom post types and specify WP REST API custom endpoints.\u003C\u002Fli>\n\u003Cli>Choose which custom fields to include in WP REST API responses for posts, pages, and custom post types.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>All enabled custom field data is included in the REST API response, nested under the \u003Ccode>rest_api_enabler\u003C\u002Fcode> key, like so:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[\n  {\n    \"id\": 179,\n    \"date\": \"2016-07-03T18:06:50\",\n    \"title\": {\n      \"rendered\": \"Test Job\"\n    },\n    .\n    .\n    .\n    \"rest_api_enabler\": {\n      \"custom_meta_1\": \"Value 1\",\n      \"custom_meta_2\": \"Value 2\",\n      \"custom_meta_3\": [\n        \"Array value 1\",\n        \"Array value 2\"\n      ]\n    }\n  }\n]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Note: prior to verion 1.1.0, all meta keys were included as top-level keys in the API response. Additionally, all values were returned as arrays, regardless of whether the original value was actually an array. This functionality is now deprecated as it risks key-name collisions. Please reference the \u003Ccode>rest_api_enabler\u003C\u002Fcode> top-level key instead.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Activate the plugin, then go to \u003Cstrong>Settings &rarr; REST API Enabler\u003C\u002Fstrong> in the admin.\u003C\u002Fli>\n\u003Cli>Click the \u003Cstrong>Post Types\u003C\u002Fstrong> tab to enable\u002Fdisable post types and customize their endpoints.\u003C\u002Fli>\n\u003Cli>Click the \u003Cstrong>Post Meta\u003C\u002Fstrong> tab to enable\u002Fdisable post meta (custom fields).\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong> by default, the plugin does not display settings for protected post meta (post meta that begins with an underscore and is intended for internal use only). If you wish to include protected post meta in the plugin settings, you can use the \u003Ccode>rae_include_protected_meta\u003C\u002Fcode> filter to do so. The following code can be placed in your theme’s \u003Ccode>functions.php\u003C\u002Fcode> file, or in a custom plugin (on \u003Ccode>init\u003C\u002Fcode> priority 10 or earlier):\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'rae_include_protected_meta', '__return_true' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Enable the WP REST API to work with custom post types, custom fields, and custom endpoints.",200,10623,100,3,"2016-07-04T01:40:00.000Z","4.4.34","3.5","",[20,21,22,23,24],"api","custom","post","rest","type","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Frest-api-enabler","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frest-api-enabler.1.1.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"mcguive7",5,71130,89,467,71,"2026-04-04T15:59:02.449Z",[41,62,82,102,121],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":13,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":60,"download_link":61,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"post-porter","Post Porter","1.0.1","Weboccult Technologies Pvt Ltd","https:\u002F\u002Fprofiles.wordpress.org\u002Fweboccults\u002F","\u003Cp>Post Porter | Import any post type from one WordPress site to another WordPress site with one click using REST API.\u003C\u002Fp>\n\u003Cp>For the best results and ease of use, ensure that the content you want to import or export closely resembles the structure of standard posts or is based on similar principles.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>It allows users to import and export any post type including custom post types between their wordpress websites.\u003C\u002Fli>\n\u003Cli>It allows users to select from which post type to import data in which post type of current website.\u003C\u002Fli>\n\u003Cli>It also import posts with custom taxonomy(Custom Categories \u002F Tags) if its defined in imorting website.\u003C\u002Fli>\n\u003Cli>It allows users to cancel importing process in while background process is running.\u003C\u002Fli>\n\u003Cli>Securely import and export data by key based authentication.\u003C\u002Fli>\n\u003Cli>Importing process done in background so, it will not affect your other processes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Steps to Use\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Install plugin in website from you want to import posts.\u003C\u002Fli>\n\u003Cli>After installation goto export key page of plugin and copy website url and copy export key.\u003C\u002Fli>\n\u003Cli>Install plugin in website where you want to import posts.\u003C\u002Fli>\n\u003Cli>After installation goto post porter page of plugin and paste copied website url and export key then click on submit.\u003C\u002Fli>\n\u003Cli>After submit there is two select box to select post types.\u003C\u002Fli>\n\u003Cli>After selection of post types click on save settings button to save settings.\u003C\u002Fli>\n\u003Cli>After that import post button is enabled click on import posts button to start importing process.\u003C\u002Fli>\n\u003Cli>For checking log details goto import logs page of website.\u003C\u002Fli>\n\u003Cli>By click on clear logs button all the logs details will be cleared.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Note\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>This plugin use \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdeliciousbrains\u002Fwp-background-processing\" rel=\"nofollow ugc\">WP Background Processing Library\u003C\u002Fa> so if you have any active plugin which using the same library or plugin used to import data in background then deactivate it to avoide any conflicts.\u003C\u002Fli>\n\u003Cli>Post Porter is not compatible with all custom post types, especially those with highly customized structures or unique data fields. It is recommended to test the plugin thoroughly if you intend to use it with custom post types other than standard posts.\u003C\u002Fli>\n\u003C\u002Ful>\n","Post Porter enables seamless posts migration between WordPress sites via REST API, ensuring alignment with standard post principles.",30,1964,4,"2025-06-12T06:04:00.000Z","6.8.5","6.2","7.0",[20,57,58,59],"import-export-custom-post-type","import-export","restapi","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-porter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-porter.1.0.1.zip",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":13,"num_ratings":72,"last_updated":73,"tested_up_to":16,"requires_at_least":74,"requires_php":18,"tags":75,"homepage":80,"download_link":81,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-rest-api-post-type-taxonomies","WP REST API – Post Type Taxonomies","1.0","Andrew MAGIK","https:\u002F\u002Fprofiles.wordpress.org\u002Fmagikru\u002F","\u003Cp>This plugin will add separate WordPress REST API (v2) endpoint, with all relations between existing post types and attached to them terms (taxonomies).\u003Cbr \u002F>\nIt is very useful when you need to create some filters, when you want to know what taxonomies are attached to the current post type.\u003C\u002Fp>\n\u003Cp>For example what can you get, using \u003Ccode>wp-json\u002Fwp\u002Fv2\u002Fpost-type-taxonomies\u003C\u002Fcode> request (empty results not included):\u003C\u002Fp>\n\u003Cpre>\u003Ccode>{\n    post: [\n        \"category\",\n        \"post_tag\",\n        \"post_format\"\n    ],\n    portfolio: [\n        \"technologies\",\n        \"clients\",\n        \"work_types\"\n    ]\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Check my other useful rest-api plugins: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftags\u002Fandrew-magik-rest-api\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftags\u002Fandrew-magik-rest-api\u003C\u002Fa>.\u003C\u002Fp>\n","This plugin show all relations between existing post types and attached to them terms (taxonomies) in separate WordPress REST API (v2) endpoint.",10,2099,1,"2016-03-01T08:14:00.000Z","4.4",[20,76,77,78,79],"custom-post-type","post-type","rest-api","wp-api","http:\u002F\u002Fmagiks.ru","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rest-api-post-type-taxonomies.1.0.zip",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":18,"tags":97,"homepage":100,"download_link":101,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"registration-honeypot","Registration Honeypot","1.0.0","Justin Tadlock","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreenshady\u002F","\u003Cp>A plugin for stopping most spambots from registering user accounts on WordPress sites with open user registration. This plugin creates a simple, hidden field that spambots will automatically fill out. If this registration field has data entered into it, the registration process is cut off and no spam user account will be created.\u003C\u002Fp>\n\u003Cp>This plugin isn’t an end-all solution to spam registrations. It’s a simple solution for one type of spam registration issue that has come in handy for me many times.\u003C\u002Fp>\n\u003Cp>There’s no configuration. Simply install, activate, and let the plugin do its work.\u003C\u002Fp>\n\u003Ch3>Professional Support\u003C\u002Fh3>\n\u003Cp>If you need professional plugin support from me, the plugin author, you can access the support forums at \u003Ca href=\"http:\u002F\u002Fthemehybrid.com\u002Fsupport\" rel=\"nofollow ugc\">Theme Hybrid\u003C\u002Fa>, which is a professional WordPress help\u002Fsupport site where I handle support for all my plugins and themes for a community of 40,000+ users (and growing).\u003C\u002Fp>\n\u003Ch3>Plugin Development\u003C\u002Fh3>\n\u003Cp>If you’re a plugin author or just a code hobbyist, you can follow the development of this plugin on it’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjustintadlock\u002Fregistration-honeypot\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>Yes, I do accept donations.  If you want to buy me a beer or whatever, you can do so from my \u003Ca href=\"http:\u002F\u002Fthemehybrid.com\u002Fdonate\" rel=\"nofollow ugc\">donations page\u003C\u002Fa>.  I appreciate all donations, no matter the size.  Further development of this plugin is not contingent on donations, but they are always a nice incentive.\u003C\u002Fp>\n","Plugin for stopping most spambot registrations via a simple honeypot method.",300,11204,70,8,"2014-05-12T16:00:00.000Z","3.9.40","3.7",[76,98,99],"restaurant","taxonomy","http:\u002F\u002Fthemehybrid.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fregistration-honeypot.1.0.0.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":13,"downloaded":110,"rating":28,"num_ratings":28,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":119,"download_link":120,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-api-multiple-posttype","WP Rest Api V2 Multiple PostTypes","1.0.3","salilkothadia","https:\u002F\u002Fprofiles.wordpress.org\u002Fsalilkothadia\u002F","\u003Ch3>Multiple Content type Query API for WordPress Rest Api V2\u003C\u002Fh3>\n\u003Cp>Extension of wp\u002Fv2\u002Fposts api to allow query multiple post types\u003C\u002Fp>\n\u003Ch3>About\u003C\u002Fh3>\n\u003Cp>Want to get your site’s posts, pages, articles, events?\u003C\u002Fp>\n\u003Cp>Use the Endpoint: ‘\u002Fwp-json\u002Fwp\u002Fv2\u002Fmultiple-post-type’\u003C\u002Fp>\n\u003Cp>List:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>GET request to `\u002Fwp-json\u002Fwp\u002Fv2\u002Fmultiple-post-type?&type[]=post&type[]=page`\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Get the page with slug “about-me”:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>GET \u002Fwp-json\u002Fwp\u002Fv2\u002Fmultiple-post-type?slug=about-me&type[]=post&type[]=page\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Search term “awesome”:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>GET \u002Fwp-json\u002Fwp\u002Fv2\u002Fmultiple-post-type?search=awesome&type[]=post&type[]=page&type[]=articles\u003Ch3>Credits\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Build using the code shared by Ruben Vreeken, (https:\u002F\u002Fgithub.com\u002FRayraz)\u003Cbr \u002F>\non stackoverflow (http:\u002F\u002Fstackoverflow.com\u002Fquestions\u002F38059805\u002Fquery-multiple-post-types-using-wp-rest-api-v2-wordpress)\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.html\" rel=\"nofollow ugc\">GPLv3\u003C\u002Fa>\u003C\u002Fp>\n","Multiple Content type Query API for Wordpress Rest Api V2",3316,"2018-07-12T14:37:00.000Z","4.9.29","4.8","5.2.4",[20,116,117,59,118],"json","posttypes","v2","https:\u002F\u002Fgithub.com\u002Felevati\u002Fwp-api-multiple-posttype","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-api-multiple-posttype.zip",{"slug":98,"name":122,"version":85,"author":86,"author_profile":87,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":13,"num_ratings":127,"last_updated":18,"tested_up_to":128,"requires_at_least":96,"requires_php":18,"tags":129,"homepage":130,"download_link":131,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":132},"Restaurant","\u003Cp>A plugin for setting up small restaurant sites.  This plugin was created as a simple base for theme authors to build custom restaurant themes.  It also serves as a foundation for other plugins to build from and add restaurant-related features.  This plugin merely handles a restaurant “menu”.  In particular, it creates a ‘restaurant_item’ post type and ‘restaurant_tag’ taxonomy.  Other plugins should be created to extend the menu functionality.\u003C\u002Fp>\n\u003Ch3>Themes\u003C\u002Fh3>\n\u003Cp>Currently, the following themes integrate with the Restaurant plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fdevpress.com\u002Fthemes\u002Fravintola\u002F\" rel=\"nofollow ugc\">Ravintola\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Professional Support\u003C\u002Fh3>\n\u003Cp>If you need professional plugin support from me, the plugin author, you can access the support forums at \u003Ca href=\"http:\u002F\u002Fthemehybrid.com\u002Fsupport\" rel=\"nofollow ugc\">Theme Hybrid\u003C\u002Fa>, which is a professional WordPress help\u002Fsupport site where I handle support for all my plugins and themes for a community of 40,000+ users (and growing).\u003C\u002Fp>\n\u003Ch3>Plugin Development\u003C\u002Fh3>\n\u003Cp>If you’re a theme author, plugin author, or just a code hobbyist, you can follow the development of this plugin on it’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjustintadlock\u002Frestaurant\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>Yes, I do accept donations.  If you want to buy me a beer or whatever, you can do so from my \u003Ca href=\"http:\u002F\u002Fthemehybrid.com\u002Fdonate\" rel=\"nofollow ugc\">donations page\u003C\u002Fa>.  I appreciate all donations, no matter the size.  Further development of this plugin is not contingent on donations, but they are always a nice incentive.\u003C\u002Fp>\n","A restaurant and menu item manager for small restaurant sites, which can be extended for larger sites.",40,9469,2,"3.7.41",[76,98,99],"http:\u002F\u002Fthemehybrid.com\u002Fplugins\u002Frestaurant","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestaurant.1.0.0.zip","2026-03-15T10:48:56.248Z",{"attackSurface":134,"codeSignals":162,"taintFlows":187,"riskAssessment":188,"analyzedAt":195},{"hooks":135,"ajaxHandlers":158,"restRoutes":159,"shortcodes":160,"cronEvents":161,"entryPointCount":28,"unprotectedCount":28},[136,142,145,147,150,153,156],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","plugins_loaded","anonymous","includes\\class-rest-api-enabler.php",204,{"type":137,"name":143,"callback":139,"file":140,"line":144},"admin_enqueue_scripts",219,{"type":137,"name":143,"callback":139,"file":140,"line":146},220,{"type":137,"name":148,"callback":139,"file":140,"line":149},"admin_menu",223,{"type":137,"name":151,"callback":139,"file":140,"line":152},"admin_init",224,{"type":137,"name":154,"callback":139,"file":140,"line":155},"init",240,{"type":137,"name":154,"callback":139,"file":140,"line":157},243,[],[],[],[],{"dangerousFunctions":163,"sqlUsage":164,"outputEscaping":169,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":186},[],{"prepared":28,"raw":72,"locations":165},[166],{"file":140,"line":167,"context":168},296,"$wpdb->get_results() with variable interpolation",{"escaped":28,"rawEcho":170,"locations":171},7,[172,176,178,180,182,183,185],{"file":173,"line":174,"context":175},"admin\\class-rest-api-enabler-admin.php",135,"raw output",{"file":173,"line":177,"context":175},136,{"file":173,"line":179,"context":175},140,{"file":173,"line":181,"context":175},150,{"file":173,"line":181,"context":175},{"file":173,"line":184,"context":175},151,{"file":173,"line":184,"context":175},[],[],{"summary":189,"deductions":190},"The \"rest-api-enabler\" plugin version 1.1.0 presents a mixed security posture.  While the static analysis reports a complete absence of identifiable attack surface points like unprotected AJAX handlers, REST API routes without permission callbacks, shortcodes, or cron events, and no critical or high severity taint flows, these findings are overshadowed by significant concerns in how the code handles data. The plugin performs a single SQL query that is not prepared, posing a potential risk for SQL injection if any user-supplied data is incorporated into this query without proper sanitization. Furthermore, all seven detected output operations lack proper escaping, making it vulnerable to cross-site scripting (XSS) attacks.  The plugin's vulnerability history is clean, with no known CVEs, which is a positive indicator. However, the internal code quality issues, particularly the unprepared SQL query and pervasive lack of output escaping, indicate a departure from secure coding best practices. Despite the lack of direct entry points for exploitation, the presence of these vulnerabilities means that if an attacker can find a way to inject data into the SQL query or trigger an unescaped output, significant damage could occur.  The plugin's strengths lie in its limited attack surface and clean vulnerability history, but its weaknesses in data handling are critical security concerns that require immediate attention.",[191,193],{"reason":192,"points":93},"SQL queries not using prepared statements",{"reason":194,"points":170},"Output escaping is not properly implemented","2026-03-16T20:22:43.485Z",{"wat":197,"direct":206},{"assetPaths":198,"generatorPatterns":201,"scriptPaths":202,"versionParams":203},[199,200],"\u002Fwp-content\u002Fplugins\u002Frest-api-enabler\u002Fadmin\u002Fcss\u002Frest-api-enabler-admin.css","\u002Fwp-content\u002Fplugins\u002Frest-api-enabler\u002Fadmin\u002Fjs\u002Frest-api-enabler-admin.js",[],[200],[204,205],"rest-api-enabler\u002Fadmin\u002Fcss\u002Frest-api-enabler-admin.css?ver=","rest-api-enabler\u002Fadmin\u002Fjs\u002Frest-api-enabler-admin.js?ver=",{"cssClasses":207,"htmlComments":212,"htmlAttributes":213,"restEndpoints":215,"jsGlobals":216,"shortcodeOutput":217},[208,209,210,211],"rest-api-enabler-settings","rae-settings-tab","rae-post-types-settings","rae-post-meta-settings",[],[214],"data-setting-name",[],[],[]]