[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fs52F1O4ixwMyZsMUnNMxI9aEpSB400rSi68dcZlehS0":3,"$fNeSy8h1xLxWW2IbNiEEb-FpAJDtPdgfeVUsrGOsxFZc":740,"$foOl6SJS5j_N5GWji1CiLhbfH-lgYbZdlB_MiJcufRsU":744},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":79,"crawl_stats":36,"alternatives":86,"analysis":191,"fingerprints":676},"review-buddypress-groups","Wbcom Designs – BuddyPress Group Reviews","3.8.1","wbcomdesigns","https:\u002F\u002Fprofiles.wordpress.org\u002Fwbcomdesigns\u002F","\u003Cp>BuddyPress Group Reviews allows BuddyPress members to add group reviews & give multiple to given criteria(s). After posting reviews, all reviews will be displayed in the Manage Review section of the group.\u003Cbr \u002F>\nAdmins can approve or deny the review. When the admin approves the review, it will be published. All published reviews will be shown in the reviews tab on the single group page. Admin can add as many criteria for the rating as he wants.\u003C\u002Fp>\n\u003Cp>Group Ratings will also be visible on the group directory page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Allows review moderation\u003C\u002Fli>\n\u003Cli>Allows BuddyPress notification for group admin for new reviews\u003C\u002Fli>\n\u003Cli>Allows BuddyPress Email Notification for group admin for new reviews\u003C\u002Fli>\n\u003Cli>Allows to exclude certain groups from review criteria\u003C\u002Fli>\n\u003Cli>Allows to add multiple criteria as per your choice\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It’s designed to be reliable, scalable, secure, and flexible. We’ve made it easy to use and would love your feedback on how to improve it.\u003C\u002Fp>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F556662460\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbb-free.buddyxtheme.com\u002F\" rel=\"nofollow ugc\">Live demo >\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>THEME – WORDPRESS THEME WITH OUTSTANDING BUDDYPRESS SUPPORT\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fbuddyx\u002F\" rel=\"ugc\">FREE BuddyPress Theme: BuddyX\u003C\u002Fa> – Offers unique layouts with clean code and easy-to-customize options, giving you a whole new way to visualize BuddyPress.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>OUR ADON PLUGINS TO FURTHER IMPROVE YOUR BUDDYPRESS OR BUDDYBOSS PLATFORM COMMUNITY\u003C\u002Fh4>\n\u003Cp>Check out free community add-ons by Wbcom Designs:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-user-profile-reviews\u002F\" rel=\"ugc\">Wbcom Designs – BuddyPress Member Reviews\u003C\u002Fa>\u003C\u002Fstrong> Allow members to add ratings or feedback to other community members.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Freview-buddypress-groups\u002F\" rel=\"ugc\">Wbcom Designs – BuddyPress Group Reviews\u003C\u002Fa>\u003C\u002Fstrong> Allow members to add ratings or feedback to BuddyPress groups.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-activity-social-share\u002F\" rel=\"ugc\">Wbcom Designs – BuddyPress Activity Social Share\u003C\u002Fa>\u003C\u002Fstrong> Allow members to share activities on their social profiles like Facebook, Twitter, What’s App, and LinkedIn with OG metadata.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flock-my-bp\u002F\" rel=\"ugc\">Wbcom Designs – Private Community with BP Lock\u003C\u002Fa>\u003C\u002Fstrong> A plugin to make your community private and only accessible to logged-in users. It also allows you to keep select pages or the component public.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-job-manager\u002F\" rel=\"ugc\">Wbcom Designs – BuddyPress Job Manager\u003C\u002Fa>\u003C\u002Fstrong> Allows you to integrate the WP Job Manager plugin into BuddyPress.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-check-in\u002F\" rel=\"ugc\">Wbcom Designs – Check-ins for BuddyPress Activity\u003C\u002Fa>\u003C\u002Fstrong> Allow members to add their location or post their check-in updates to the activity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbp-favorite-notification\u002F\" rel=\"ugc\">Wbcom Designs – BuddyPress Favorite Notification\u003C\u002Fa>\u003C\u002Fstrong> Allow members to be notified after any like or favorite on their BuddyPress activity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshortcodes-for-buddypress\u002F\" rel=\"ugc\">Wbcom Designs – Shortcodes & Elementor Widgets For BuddyPress\u003C\u002Fa>\u003C\u002Fstrong> It offers shortcodes and elementor widgets for the activity listing, member’s directory display, and the group’s directory on any post\u002Fpage.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check out paid community add-ons by Wbcom Designs:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-hashtags\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Hashtags\u003C\u002Fa>\u003C\u002Fstrong> Allows members to use hashtags in BuddyPress or BuddyBoss Platform activities and bbPress topics.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-polls\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Polls\u003C\u002Fa>\u003C\u002Fstrong>  It allows you to extend BuddyPress or BuddyBoss Platform Activity for members to publish Polls with various options and works perfectly for individual activities and group activities.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-quotes\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Quotes\u003C\u002Fa>\u003C\u002Fstrong> It allows the feature to let members post their activity updates with interactive background selection such as colors and images set by the site administrator to tell a more expressive story.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-status\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Status & Reaction\u003C\u002Fa>\u003C\u002Fstrong> Allow your members to set a status icon and tagline on their profile and offer a big set of icons to react to published activities.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-profanity\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Profanity\u003C\u002Fa>\u003C\u002Fstrong> Allow you to censor content in your community! Easily Censor all the unwanted words in activities, and private message contents by specifying a list of keywords to be filtered.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-sticky-post\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Sticky Post\u003C\u002Fa>\u003C\u002Fstrong> Allows site administrators to prioritize certain activities over others. It lets the admin pin up site-wide and group activities to the top of the activity list.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-auto-friends\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"nofollow ugc\">Wbcom Designs – BuddyPress Auto Friends\u003C\u002Fa>\u003C\u002Fstrong> Allow the site admin to select global friends for all his members and add bulk global friends.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshortcodes-for-buddypress\u002F?utm_source=wp.org&utm_medium=plugins&utm_campaign=wp.org\" rel=\"ugc\">Wbcom Designs – Shortcodes & Elementor Widgets For BuddyPress Pro\u003C\u002Fa>\u003C\u002Fstrong> It offers shortcodes and elementor widgets with various argument parameters for the activity listing, member’s directory display, and the group’s directory on any post\u002Fpage.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>EXPERT SUPPORT\u003C\u002Fh4>\n\u003Cp>We are ready to provide incredible support. Ask your questions at \u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">contact us directly\u003C\u002Fa>.\u003C\u002Fp>\n","BuddyPress Group Reviews allows members to add group reviews and rate groups with multiple criteria.",70,19370,76,4,"2026-03-13T12:16:00.000Z","6.9.4","4.0","7.4",[20,21],"buddypress","groups","https:\u002F\u002Fwbcomdesigns.com\u002Fcontact\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.8.1.zip",99,3,0,"2022-06-16 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[31,49,64],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":27,"updated_date":43,"references":44,"days_to_patch":46,"patch_diff_files":47,"patch_trac_url":36,"research_status":36,"research_verified":48,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":48,"poc_model_used":36,"poc_verification_depth":36},"CVE-2022-2108","wbcom-designs-buddypress-group-reviews-unauthorized-ajax-actions-due-to-nonce-bypass","Wbcom Designs – BuddyPress Group Reviews \u003C= 2.8.3 - Unauthorized AJAX Actions due to Nonce Bypass","The plugin Wbcom Designs – BuddyPress Group Reviews for WordPress is vulnerable to unauthorized settings changes and review modification due to missing capability checks and improper nonce checks in several functions related to said actions in versions up to, and including, 2.8.3. This makes it possible for unauthenticated attackers to modify reviews and plugin settings on the affected site.",null,"\u003C=2.8.3","2.8.4","medium",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:N","Missing Authorization","2024-01-22 19:56:02",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F397dabc3-5dcf-4d1f-9e24-28af889cb76f?source=api-prod",586,[],false,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":36,"affected_versions":54,"patched_in_version":55,"severity":39,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":43,"references":60,"days_to_patch":62,"patch_diff_files":63,"patch_trac_url":36,"research_status":36,"research_verified":48,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":48,"poc_model_used":36,"poc_verification_depth":36},"WF-8d7de93c-f642-4870-b2f9-5070fdccd26b-review-buddypress-groups","wbcom-designs-buddypress-group-reviews-cross-site-scripting","Wbcom Designs – BuddyPress Group Reviews \u003C= 2.8.1 - Cross-Site Scripting","The Wbcom Designs – BuddyPress Group Reviews plugin for WordPress is vulnerable to Cross-Site Scripting via several parameters in versions up to, and including, 2.8.1 due to insufficient input sanitization and output escaping. This makes it possible for attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=2.8.1","2.8.2",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2022-05-25 00:00:00",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8d7de93c-f642-4870-b2f9-5070fdccd26b?source=api-prod",608,[],{"id":65,"url_slug":66,"title":67,"description":68,"plugin_slug":4,"theme_slug":36,"affected_versions":69,"patched_in_version":70,"severity":39,"cvss_score":71,"cvss_vector":72,"vuln_type":42,"published_date":73,"updated_date":74,"references":75,"days_to_patch":77,"patch_diff_files":78,"patch_trac_url":36,"research_status":36,"research_verified":48,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":48,"poc_model_used":36,"poc_verification_depth":36},"WF-74d222b9-22e9-485d-8111-d3bee505b200-review-buddypress-groups","wbcom-designs-plugins-various-versions-arbitrary-plugin-installation-activation-and-deactivation-8","Wbcom Designs Plugins (Various Versions) - Arbitrary Plugin Installation, Activation and Deactivation","Several WordPress plugins by Wbcom Designs were vulnerable to arbitrary plugin installation, activation and deactivation due to missing authorization checks on the wp_ajax_wbcom_manage_plugin_installation AJAX action function wbcom_do_plugin_action.","\u003C2.8.1","2.8.1",6.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","2022-04-13 00:00:00","2025-03-04 20:36:33",[76],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F74d222b9-22e9-485d-8111-d3bee505b200?source=api-prod",1057,[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":80,"total_installs":81,"avg_security_score":82,"avg_patch_time_days":83,"trust_score":84,"computed_at":85},19,9740,98,807,78,"2026-05-20T06:44:46.099Z",[87,110,132,150,170],{"slug":88,"name":89,"version":90,"author":91,"author_profile":92,"description":93,"short_description":94,"active_installs":95,"downloaded":96,"rating":97,"num_ratings":98,"last_updated":99,"tested_up_to":100,"requires_at_least":101,"requires_php":102,"tags":103,"homepage":107,"download_link":108,"security_score":109,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"bp-registration-options","Registration Options for BuddyPress","4.4.5","Brian Messenlehner","https:\u002F\u002Fprofiles.wordpress.org\u002Fmessenlehner\u002F","\u003Cp>Prevent users and bots from accessing the BuddyPress or bbPress areas of your website(s) until they are approved.\u003C\u002Fp>\n\u003Cp>This BuddyPress extension allows you to enable user moderation for new members, as well as help create a private network for your users. If moderation is enabled, any new members will be denied access to your BuddyPress and bbPress areas on your site, with the exception of their own user profile. They will be allowed to edit and configure that much. They will also not be listed in the members lists on the frontend until approved. Custom messages are available so you can tailor them to the tone of your website and community. When an admin approves or denies a user, email notifications will be sent to let them know of the decision.\u003C\u002Fp>\n\u003Cp>Requires BuddyPress version 1.7 or higher and bbPress 2.0 or higher.\u003C\u002Fp>\n\u003Ch3>General Data Protection Regulation\u003C\u002Fh3>\n\u003Cp>BuddyPress Registration Options temporarily stores user IP addresses as user meta to help validate and vet pending users. Saved IP values are deleted upon both approval and denial of pending user. No other personal data is recorded.\u003C\u002Fp>\n","Moderate new BuddyPress members and fight BuddyPress spam.",1000,175783,88,33,"2023-03-05T15:26:00.000Z","6.0.11","5.2","5.6",[104,20,21,105,106],"admin","moderation","registration","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-registration-options.zip",85,{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":95,"downloaded":118,"rating":119,"num_ratings":120,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":124,"tags":125,"homepage":129,"download_link":130,"security_score":131,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"buddypress-group-email-subscription","BuddyPress Group Email Subscription","4.2.4","Boone Gorges","https:\u002F\u002Fprofiles.wordpress.org\u002Fboonebgorges\u002F","\u003Cp>This powerful plugin allows users to receive email notifications of group activity. Weekly or daily digests are available. Each user can choose how they want to subscribe to their groups.\u003C\u002Fp>\n\u003Cp>Please note that this plugin requires BuddyPress, as well as the BuddyPress Groups and Activity components.\u003C\u002Fp>\n\u003Cp>EMAIL SUBSCRIPTION LEVELS\u003Cbr \u002F>\nThere are 5 levels of email subscription options:\u003C\u002Fp>\n\u003Col>\n\u003Cli>No Email – Read this group on the web\u003C\u002Fli>\n\u003Cli>Weekly Summary Email – A summary of new topics each week\u003C\u002Fli>\n\u003Cli>Daily Digest Email – All the day’s activity bundled into a single email\u003C\u002Fli>\n\u003Cli>New Topics Email – Send new topics as they arrive (but don’t send replies)\u003C\u002Fli>\n\u003Cli>All Email – Send all group activity as it arrives\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>DEFAULT SUBSCRIPTION STATUS\u003Cbr \u002F>\nGroup admins can choose one of the 5 subscription levels as a default that gets applied when new members join.\u003C\u002Fp>\n\u003Cp>DIGEST AND SUMMARY EMAILS\u003Cbr \u002F>\nThe daily digest email is sent every morning and contains all the emails from all the groups a user is subscribed to. The digest begins with a helpful topic summary. The weekly summary email contains the topic titles from the past week by default. Summary and digest timing can be configured in the back end. (The admin can view a sample of the digests and summaries in the queue by going adding this to your url: mydomain.com\u002Fsum=1. This won’t send emails just show what will be sent)\u003C\u002Fp>\n\u003Cp>HTML EMAILS\u003Cbr \u002F>\nThe digest and summary emails are sent out in multipart HTML and plain text email format. This makes the digest much more readable with better links. The email is multipart so users who need only plain text will get plain text.\u003C\u002Fp>\n\u003Cp>EMAILS FOR TOPICS I’VE STARTED OR COMMENTED ON (only available with BuddyPress legacy discussion forums)\u003Cbr \u002F>\nUsers receive email notifications when someone replies to a topic they create or comment on (similar to Facebook). This happens whether they are subscribed or not. Users can control this behaviour in their notifications page.\u003C\u002Fp>\n\u003Cp>TOPIC FOLLOW AND MUTE (only available with BuddyPress legacy discussion forums)\u003Cbr \u002F>\nUsers who are not fully subscribed to a group (ie. maybe they are on digest) can choose to get immediate email updates for specific topic threads. Any subsequent replies to that thread will be emailed to them. In an opposite way, users who are fully subscribed to a group but want to stop getting emails from a specific (perhaps annoying) thread can choose to mute that topic.  bbPress plugin users can utilize the “Subscribe” \u002F “Notify me of follow-up replies via email” option.\u003C\u002Fp>\n\u003Cp>ADMIN NOTIFICATION\u003Cbr \u002F>\nGroup admins can send out an email to all group members from the group’s admin section. This feature is helpful to quickly communicate to the whole group, but it should be used with caution.\u003C\u002Fp>\n\u003Cp>GROUP ADMINS CAN SET SUBSCRIPTION LEVEL\u003Cbr \u002F>\nGroup admins can set the subscription level for existing users on the group’s “Admin > Manage Members” page – either one by one or all at once.\u003C\u002Fp>\n\u003Cp>SPAM PROTECTION\u003Cbr \u002F>\nTo protect against spam, you can set a minimum number of days users need to be registered before their group activity will be emailed to other users. This feature is off by default, but can be enabled in the admin.\u003C\u002Fp>\n\u003Cp>TRANSLATORS\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Brazilian Portuguese – www.about.me\u002Fdennisaltermann (or www.congregacao.net)\u003C\u002Fli>\n\u003Cli>Catalan – Sara Arjona Téllez\u003C\u002Fli>\n\u003Cli>Danish – Morten Nalholm\u003C\u002Fli>\n\u003Cli>Dutch – Anja werkgroepen.net\u002Fwordpress, Tim de Hoog\u003C\u002Fli>\n\u003Cli>Farsi – Vahid Masoomi http:\u002F\u002Fwww.AzUni.ir\u003C\u002Fli>\n\u003Cli>French – http:\u002F\u002Fwww.claudegagne-photo.com, Sylvain Ghysens\u003C\u002Fli>\n\u003Cli>German – Peter Peterson, Thorsten Wollenhöfer, Jörg Lohrer\u003C\u002Fli>\n\u003Cli>Hebrew – Iggy Pritzker\u003C\u002Fli>\n\u003Cli>Italian – Stefano Russo\u003C\u002Fli>\n\u003Cli>Japanese – https:\u002F\u002Fbuddypress.org\u002Fcommunity\u002Fmembers\u002Fchestnut_jp\u002F\u003C\u002Fli>\n\u003Cli>Lithuanian – Vincent G http:\u002F\u002Fwww.Host1Free.com\u003C\u002Fli>\n\u003Cli>Russian – http:\u002F\u002Fwww.viaestvita.net\u002Fgroups\u002F\u003C\u002Fli>\n\u003Cli>Spanish – Williams Castillo, Gregor Gimmy\u003C\u002Fli>\n\u003Cli>Swedish – Thomas Schneider, Joakim Hising\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>NOTE TO PLUGIN AUTHORS\u003Cbr \u002F>\nIf your plugin posts updates to the standard BuddyPress activity stream, then group members who are subscribed via 3. Daily Digest and 5. All Email will get your updates automatically. However people subscribed as 2. Weekly Summary and 4. New Topic will not. If you feel some of your plugin’s updates are very important and want to make sure all subscribed members receive them, you can filter ‘ass_this_activity_is_important’ and return TRUE when $type matches your activity. See the ass_this_activity_is_important() function in bp-activity-subscription-functions.phpfor more info.\u003C\u002Fp>\n\u003Cp>PLUGIN SUPPORTERS:\u003Cbr \u002F>\nMajor supporters: shambhalanetwork.org & commons.gc.cuny.edu\u003Cbr \u002F>\nOther supporters: bluedotproductions.com\u003C\u002Fp>\n\u003Cp>PLUGIN DEVELOPMENT\u003Cbr \u002F>\nFor bug reports or to add patches or translation files, please visit the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fboonebgorges\u002Fbuddypress-group-email-subscription\u002F\" rel=\"nofollow ugc\">GES Github page\u003C\u002Fa>.  Contributions are definitely welcome!\u003C\u002Fp>\n","This powerful plugin allows users to receive email notifications of group activity. Weekly or daily digests are available.",230873,80,32,"2024-10-04T14:35:00.000Z","6.6.5","3.2","5.3",[126,127,128,20,21],"activities","activity","bp","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbuddypress-group-email-subscription\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-group-email-subscription.4.2.4.zip",92,{"slug":133,"name":134,"version":135,"author":7,"author_profile":8,"description":136,"short_description":137,"active_installs":138,"downloaded":139,"rating":131,"num_ratings":140,"last_updated":141,"tested_up_to":142,"requires_at_least":143,"requires_php":107,"tags":144,"homepage":147,"download_link":148,"security_score":149,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"shortcodes-for-buddypress","Wbcom Designs – Shortcodes & Elementor Widgets For BuddyPress","2.9.1","\u003Cp>This plugin will add an extended feature to BuddyPress. It will use Shortcode for Listing Activity Streams, Members directory, and Groups directory on any post or page within the website.\u003C\u002Fp>\n\u003Cp>With our current update, we have added three widgets to display the activity stream, member directory, and group directory using Elementor.\u003C\u002Fp>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F554193567\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch3>THEME – WORDPRESS THEME WITH OUTSTANDING BUDDYPRESS SUPPORT\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fbuddyx\u002F\" rel=\"ugc\">FREE BuddyPress Theme: BuddyX\u003C\u002Fa> – Offers unique layouts with clean code and easy-to-customise options, giving you a whole new way to visualize BuddyPress.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin generates shortcodes for Listing Activity Streams, Members, and Groups on any website post or page.",700,51984,10,"2025-09-22T06:44:00.000Z","6.8.5","5.0.0",[127,20,145,21,146],"buddypress-shortcodes","members","https:\u002F\u002Fgithub.com\u002Fwbcomdesigns\u002Fshortcodes-for-buddypress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshortcodes-for-buddypress.2.9.1.zip",100,{"slug":151,"name":152,"version":153,"author":154,"author_profile":155,"description":156,"short_description":157,"active_installs":158,"downloaded":159,"rating":84,"num_ratings":160,"last_updated":161,"tested_up_to":162,"requires_at_least":163,"requires_php":124,"tags":164,"homepage":168,"download_link":169,"security_score":131,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"bp-default-data","BuddyPress Default Data","1.4.0","Slava Abakumov","https:\u002F\u002Fprofiles.wordpress.org\u002Fslaffik\u002F","\u003Cp>Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data – useful for testing purpose.\u003C\u002Fp>\n\u003Cp>All imported users will have avatars, generated by 8biticon.com and displayed by Gravatar.\u003C\u002Fp>\n\u003Cp>Please use this plugin with caution and not on a live site! Again, USE FOR TESTING THEMES AND PLUGINGS, NOT ON A STAGING SITE WITH LIVE DATA. Plugin should not mess with your live data, but not guaranteed.\u003C\u002Fp>\n\u003Cp>Clear BuddyPress button will delete all data, that was generated by this plugin: messages, groups, notifications, friends, forum posts, xprofile. Plugin won’t reimport data if clicked twice.\u003C\u002Fp>\n\u003Cp>And turn off email notifications in profile (friendship accepted and messages received) – or you will spam yourself 🙂 Imported users have these settings already turned off.\u003C\u002Fp>\n","Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data - useful for testing purpose.",400,73182,22,"2024-11-30T22:53:00.000Z","6.7.5","4.4",[20,21,165,166,167],"import","messages","users","https:\u002F\u002Fovirium.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-default-data.1.4.0.zip",{"slug":171,"name":172,"version":173,"author":154,"author_profile":155,"description":174,"short_description":175,"active_installs":158,"downloaded":176,"rating":177,"num_ratings":178,"last_updated":179,"tested_up_to":162,"requires_at_least":180,"requires_php":181,"tags":182,"homepage":186,"download_link":187,"security_score":188,"vuln_count":189,"unpatched_count":26,"last_vuln_date":190,"fetched_at":28},"buddypress-groups-extras","BuddyPress Groups Extras","3.7.0","\u003Cp>BuddyPress Groups doesn’t have much-predefined content inside. Forums and activities are created (or not) by users. But most of the time group creators (aka administrators) have much more to say or explain to other members of the community.\u003C\u002Fp>\n\u003Cp>BuddyPress Groups Extras will give the ability to them to create extra content.\u003C\u002Fp>\n\u003Ch4>General\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choose groups you want to allow custom fields and pages.\u003C\u002Fli>\n\u003Cli>Define who will have access to managing fields or pages in groups (groups admins or site admins or both).\u003C\u002Fli>\n\u003Cli>Create a predefined Set of Fields that can be imported to all groups on a site OR can be imported on a per-group basis.\u003C\u002Fli>\n\u003Cli>Tweak various options, like enabling Rich Editor.\u003C\u002Fli>\n\u003Cli>Drag-n-drop groups nav menu items as you wish (Fields and Pages can be your new group front page!).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Custom Group Fields\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Create custom fields using various types (radios, checkboxes, dropdown select, textarea, and text).\u003C\u002Fli>\n\u003Cli>Edit fields data on Edit Group Details page in Group Admin area.\u003C\u002Fli>\n\u003Cli>Display\u002Fhide page, where all groups fields will be displayed (and rename it too).\u003C\u002Fli>\n\u003Cli>Reorder fields.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Custom Group Pages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Create group pages (for group FAQ or wiki, or events, or descriptions or whatever you want).\u003C\u002Fli>\n\u003Cli>Edit page data in the Group Admin area using WordPress RichEditor (with embedding content that WordPress supports!).\u003C\u002Fli>\n\u003Cli>Display\u002Fhide page, where all group pages will be displayed (and rename it too).\u003C\u002Fli>\n\u003Cli>Reorder pages.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Make your groups full of possibilities!\u003C\u002Fp>\n","Introduce custom fields and custom pages to your BuddyPress-powered groups.",80704,86,35,"2024-12-01T18:56:00.000Z","6.0","7.2",[20,183,184,185,21],"field-sets","group-fields","group-pages","https:\u002F\u002Fovirium.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-groups-extras.3.7.0.zip",91,1,"2024-11-08 00:00:00",{"attackSurface":192,"codeSignals":558,"taintFlows":608,"riskAssessment":663,"analyzedAt":675},{"hooks":193,"ajaxHandlers":464,"restRoutes":521,"shortcodes":544,"cronEvents":556,"entryPointCount":236,"unprotectedCount":557},[194,200,203,206,211,214,218,222,225,228,233,237,242,247,251,256,260,264,267,273,277,281,283,286,290,294,297,301,304,308,312,314,318,321,324,328,332,335,339,342,346,349,352,356,359,362,366,370,375,379,381,383,386,390,393,396,400,403,405,409,412,415,419,421,424,429,433,436,440,442,445,449,452,454,457,461],{"type":195,"name":196,"callback":197,"file":198,"line":199},"action","admin_init","check_installation_date","admin\\bgr-admin-feedback.php",75,{"type":195,"name":196,"callback":201,"priority":202,"file":198,"line":13},"set_no_bug",5,{"type":195,"name":204,"callback":205,"file":198,"line":188},"admin_notices","display_admin_notice",{"type":195,"name":207,"callback":208,"file":209,"line":210},"admin_menu","bp_group_review_add_submenu_page_admin_settings","admin\\bgr-admin.php",37,{"type":195,"name":207,"callback":212,"file":209,"line":213},"bp_group_review_get_review_count",38,{"type":195,"name":215,"callback":216,"file":209,"line":217},"in_admin_header","wbcom_hide_all_admin_notices_from_setting_page",39,{"type":195,"name":219,"callback":220,"file":209,"line":221},"init","bp_group_review_cpt",43,{"type":195,"name":219,"callback":223,"file":209,"line":224},"bp_group_review_taxonomy_cpt",44,{"type":195,"name":219,"callback":226,"file":209,"line":227},"bp_group_review_add_capabilities_to_roles",47,{"type":195,"name":207,"callback":229,"priority":230,"file":231,"line":232},"wbcom_admin_additional_pages",999,"admin\\wbcom\\wbcom-admin-settings.php",28,{"type":195,"name":234,"callback":235,"file":231,"line":236},"admin_enqueue_scripts","wbcom_enqueue_admin_scripts",29,{"type":195,"name":238,"callback":239,"priority":140,"file":240,"line":241},"bp_register_activity_actions","bp_group_review_register_activity_actions","includes\\bgr-activity.php",66,{"type":195,"name":243,"callback":244,"priority":245,"file":240,"line":246},"transition_post_status","bp_group_review_group_post_activity_after_approval",15,67,{"type":195,"name":248,"callback":249,"priority":245,"file":240,"line":250},"bgr_group_after_review_submit","bp_group_review_create_group_post_activity",68,{"type":252,"name":253,"callback":254,"priority":140,"file":240,"line":255},"filter","bp_get_activity_content_body","bp_group_review_added_activity_star_rating",69,{"type":252,"name":257,"callback":258,"file":259,"line":178},"bp_rest_groups_get_item_schema","add_review_fields_to_schema","includes\\bgr-bp-rest-integration.php",{"type":252,"name":261,"callback":262,"priority":140,"file":259,"line":263},"rest_prepare_buddypress_group","add_review_data_to_response",36,{"type":195,"name":265,"callback":266,"file":259,"line":217},"rest_api_init","register_bp_review_routes",{"type":195,"name":268,"callback":269,"priority":270,"file":271,"line":272},"wp_enqueue_scripts","bp_group_review_dynamic_rating_method",20,"includes\\bgr-dynamic-css.php",56,{"type":195,"name":274,"callback":275,"priority":230,"file":271,"line":276},"wp_head","bp_group_review_rating_color_fallback",110,{"type":195,"name":278,"callback":279,"file":280,"line":210},"wp","bp_group_review_add_group_reviews_tab","includes\\bgr-filters.php",{"type":195,"name":219,"callback":282,"file":280,"line":213},"bp_group_review_add_taxonomy_term",{"type":252,"name":284,"callback":285,"priority":140,"file":280,"line":217},"post_row_actions","bp_group_review_row_actions",{"type":252,"name":287,"callback":288,"priority":140,"file":280,"line":289},"bulk_actions-edit-review","bp_group_review_bulk_actions",40,{"type":252,"name":291,"callback":292,"priority":140,"file":280,"line":293},"handle_bulk_actions-edit-review","bp_group_review_handle_bulk_actions",41,{"type":195,"name":204,"callback":295,"file":280,"line":296},"bp_group_review_bulk_action_notices",42,{"type":195,"name":298,"callback":299,"file":280,"line":300},"restrict_manage_posts","bp_group_review_export_button",45,{"type":195,"name":196,"callback":302,"file":280,"line":303},"bp_group_review_handle_csv_export",46,{"type":195,"name":305,"callback":306,"file":280,"line":307},"bp_before_group_header_meta","bp_group_review_group_average_rating",49,{"type":195,"name":309,"callback":310,"file":280,"line":311},"bb_group_single_top_header_action","bp_group_review_group_header_review_btn",54,{"type":195,"name":313,"callback":310,"file":280,"line":272},"bp_group_header_actions",{"type":195,"name":315,"callback":316,"file":280,"line":317},"bp_directory_groups_item","bp_group_review_group_directory_rating",60,{"type":195,"name":319,"callback":306,"file":280,"line":320},"youzify_before_group_header_meta",64,{"type":195,"name":322,"callback":310,"file":280,"line":323},"youzify_after_group_header_meta",65,{"type":252,"name":325,"callback":326,"file":280,"line":327},"gamipress_activity_triggers","bp_group_review_bp_activity_triggers",72,{"type":252,"name":329,"callback":330,"priority":140,"file":280,"line":331},"gamipress_trigger_get_user_id","bp_group_review_trigger_get_user_id",73,{"type":252,"name":333,"callback":334,"priority":140,"file":280,"line":13},"bp_nouveau_nav_has_count","bp_group_review_nav_has_count",{"type":252,"name":336,"callback":337,"priority":140,"file":280,"line":338},"bp_nouveau_get_nav_count","bp_group_review_get_nav_count",77,{"type":195,"name":340,"callback":341,"priority":140,"file":280,"line":119},"save_post_review","invalidate_cache_on_review_save",{"type":195,"name":343,"callback":344,"priority":140,"file":280,"line":345},"bgr_group_accept_review","invalidate_cache_on_review_action",81,{"type":195,"name":347,"callback":344,"priority":140,"file":280,"line":348},"bgr_group_deny_review",82,{"type":195,"name":350,"callback":344,"priority":140,"file":280,"line":351},"before_delete_post",83,{"type":195,"name":353,"callback":354,"file":280,"line":355},"bp_template_content","bp_group_review_add_reviews_tab_template",921,{"type":195,"name":353,"callback":357,"file":280,"line":358},"bp_group_reviews_tab_template",938,{"type":195,"name":274,"callback":360,"file":361,"line":289},"bp_group_review_remove_add_review_tab","includes\\bgr-functions.php",{"type":195,"name":219,"callback":363,"file":364,"line":365},"bp_group_review_globals","includes\\bgr-globals.php",134,{"type":195,"name":265,"callback":367,"file":368,"line":369},"bgr_register_group_criteria_rest_routes","includes\\bgr-group-criteria-ajax.php",357,{"type":252,"name":371,"callback":372,"file":373,"line":374},"query_vars","add_custom_pagination_query_vars","includes\\bgr-grp-extn.php",108,{"type":195,"name":376,"callback":377,"priority":24,"file":378,"line":119},"bgr_group_add_review","bp_group_review_add_review_notification","includes\\bgr-notifications.php",{"type":195,"name":343,"callback":380,"priority":24,"file":378,"line":345},"bp_group_review_accept_review_notification",{"type":195,"name":347,"callback":382,"priority":24,"file":378,"line":348},"bp_group_review_deny_review_notification",{"type":195,"name":384,"callback":385,"priority":189,"file":378,"line":351},"bp_actions","bp_group_review_mark_group_notification_as_read",{"type":195,"name":387,"callback":388,"file":389,"line":217},"bgr_display_ratings","bp_group_review_select_rating_type","includes\\bgr-rating-display.php",{"type":195,"name":391,"callback":392,"file":389,"line":289},"bgr_display_widget_average_ratings","bp_group_review_widget_average_ratings",{"type":195,"name":394,"callback":395,"file":389,"line":293},"bgr_display_group_average_ratings","bp_group_review_average_group_ratings",{"type":195,"name":274,"callback":397,"priority":202,"file":398,"line":399},"add_group_review_schema","includes\\bgr-schema.php",30,{"type":195,"name":268,"callback":401,"file":402,"line":217},"bp_group_review_custom_variables","includes\\bgr-scripts.php",{"type":195,"name":234,"callback":404,"file":402,"line":289},"bp_group_review_admin_custom_variables",{"type":195,"name":406,"callback":407,"priority":140,"file":408,"line":348},"bgr_global_criteria_deleted","handle_global_criteria_deleted","includes\\class-bgr-group-criteria.php",{"type":195,"name":410,"callback":411,"priority":140,"file":408,"line":109},"bgr_global_criteria_archived","handle_global_criteria_archived",{"type":195,"name":196,"callback":413,"file":414,"line":109},"bp_group_review_multisite_activation","includes\\class-bgr-multi-support.php",{"type":195,"name":416,"callback":417,"file":414,"line":418},"network_admin_notices","bp_group_review_show_buddypress_root_blog_notice",103,{"type":195,"name":204,"callback":420,"file":414,"line":374},"bp_group_review_show_bp_root_blog_notice",{"type":195,"name":204,"callback":422,"file":414,"line":423},"bp_group_review_show_buddypress_required_notice",112,{"type":195,"name":425,"callback":426,"file":427,"line":428},"widgets_init","bp_group_review_register_widget","includes\\widgets\\bgr-review.php",328,{"type":195,"name":425,"callback":430,"file":431,"line":432},"bp_group_review_register_rating_widget","includes\\widgets\\group-rating.php",289,{"type":195,"name":219,"callback":434,"file":435,"line":213},"bp_group_review_load_textdomain","review-bp-grps.php",{"type":195,"name":437,"callback":438,"file":435,"line":439},"bp_loaded","bp_group_review_plugin_execute",71,{"type":195,"name":204,"callback":441,"file":435,"line":348},"bp_group_review_admin_group_notice",{"type":195,"name":443,"callback":444,"file":435,"line":177},"bp_init","bp_group_review_include_files_bp",{"type":195,"name":443,"callback":446,"priority":447,"file":435,"line":448},"bp_group_review_notifications",12,89,{"type":195,"name":204,"callback":450,"file":435,"line":451},"bp_group_review_admin_notice",109,{"type":195,"name":196,"callback":453,"file":435,"line":423},"bp_group_review_requires_buddypress",{"type":195,"name":219,"callback":455,"file":435,"line":456},"bp_group_review_add_multi_support",221,{"type":195,"name":458,"callback":459,"file":435,"line":460},"activated_plugin","bp_group_review_activation_redirect_settings",240,{"type":195,"name":207,"callback":462,"file":435,"line":463},"bp_group_review_save_email_settigs",280,[465,469,472,474,476,478,479,481,482,484,485,487,488,491,494,496,498,501,505,509,513,517],{"action":466,"nopriv":48,"callback":467,"hasNonce":468,"hasCapCheck":48,"file":231,"line":399},"wbcom_addons_cards","wbcom_addons_cards_links",true,{"action":470,"nopriv":48,"callback":470,"hasNonce":468,"hasCapCheck":468,"file":471,"line":210},"bp_group_review_save_admin_criteria_settings","includes\\bgr-ajax.php",{"action":473,"nopriv":48,"callback":473,"hasNonce":468,"hasCapCheck":468,"file":471,"line":213},"bp_group_review_save_admin_display_settings",{"action":475,"nopriv":48,"callback":475,"hasNonce":468,"hasCapCheck":468,"file":471,"line":217},"bp_group_review_save_admin_general_settings",{"action":477,"nopriv":48,"callback":477,"hasNonce":468,"hasCapCheck":468,"file":471,"line":289},"bp_group_review_accept_review",{"action":477,"nopriv":468,"callback":477,"hasNonce":468,"hasCapCheck":468,"file":471,"line":293},{"action":480,"nopriv":48,"callback":480,"hasNonce":468,"hasCapCheck":468,"file":471,"line":296},"bp_group_review_deny_review",{"action":480,"nopriv":468,"callback":480,"hasNonce":468,"hasCapCheck":468,"file":471,"line":221},{"action":483,"nopriv":48,"callback":483,"hasNonce":468,"hasCapCheck":468,"file":471,"line":224},"bp_group_remove_review",{"action":483,"nopriv":468,"callback":483,"hasNonce":468,"hasCapCheck":468,"file":471,"line":300},{"action":486,"nopriv":48,"callback":486,"hasNonce":468,"hasCapCheck":48,"file":471,"line":303},"bp_group_submit_review",{"action":486,"nopriv":468,"callback":486,"hasNonce":468,"hasCapCheck":48,"file":471,"line":227},{"action":489,"nopriv":48,"callback":489,"hasNonce":468,"hasCapCheck":468,"file":471,"line":490},"bp_group_review_admin_approve_review",50,{"action":492,"nopriv":48,"callback":492,"hasNonce":468,"hasCapCheck":468,"file":471,"line":493},"bp_group_review_admin_deny_review",52,{"action":495,"nopriv":48,"callback":495,"hasNonce":468,"hasCapCheck":48,"file":471,"line":311},"bp_group_review_filter_ratings",{"action":495,"nopriv":468,"callback":495,"hasNonce":468,"hasCapCheck":48,"file":471,"line":497},55,{"action":499,"nopriv":48,"callback":500,"hasNonce":468,"hasCapCheck":48,"file":368,"line":323},"bgr_save_group_criteria_settings","bgr_ajax_save_group_criteria_settings",{"action":502,"nopriv":48,"callback":503,"hasNonce":468,"hasCapCheck":48,"file":368,"line":504},"bgr_add_custom_criteria","bgr_ajax_add_custom_criteria",114,{"action":506,"nopriv":48,"callback":507,"hasNonce":468,"hasCapCheck":48,"file":368,"line":508},"bgr_archive_custom_criteria","bgr_ajax_archive_custom_criteria",152,{"action":510,"nopriv":48,"callback":511,"hasNonce":468,"hasCapCheck":48,"file":368,"line":512},"bgr_delete_custom_criteria","bgr_ajax_delete_custom_criteria",190,{"action":514,"nopriv":48,"callback":515,"hasNonce":468,"hasCapCheck":48,"file":368,"line":516},"bgr_toggle_global_criteria","bgr_ajax_toggle_global_criteria",229,{"action":518,"nopriv":48,"callback":519,"hasNonce":468,"hasCapCheck":48,"file":368,"line":520},"bgr_get_group_criteria","bgr_ajax_get_group_criteria",261,[522,529,533,540],{"namespace":523,"route":524,"methods":525,"callback":527,"permissionCallback":36,"file":259,"line":528},"buddypress\u002Fv1","\u002Fgroups\u002F(?P\u003Cgroup_id>\\d+)\u002Freviews",[526],"GET","anonymous",232,{"namespace":523,"route":530,"methods":531,"callback":527,"permissionCallback":36,"file":259,"line":532},"\u002Fgroups\u002F(?P\u003Cgroup_id>\\d+)\u002Freviews\u002F(?P\u003Creview_id>\\d+)",[526],291,{"namespace":534,"route":535,"methods":536,"callback":537,"permissionCallback":538,"file":368,"line":539},"bgr\u002Fv1","\u002Fgroups\u002F(?P\u003Cid>\\d+)\u002Fcriteria",[526],"bgr_rest_get_group_criteria","closure",304,{"namespace":534,"route":535,"methods":541,"callback":542,"permissionCallback":538,"file":368,"line":543},[526],"bgr_rest_update_group_criteria",337,[545,549,553],{"tag":546,"callback":547,"file":231,"line":548},"wbcom_admin_setting_header","wbcom_admin_setting_header_html",27,{"tag":550,"callback":551,"file":552,"line":120},"add_group_review_form","bp_group_review_add_new_review","includes\\bgr-shortcodes.php",{"tag":554,"callback":555,"file":552,"line":98},"bgr_display_top_groups","bp_group_review_leaderboard",[],2,{"dangerousFunctions":559,"sqlUsage":560,"outputEscaping":568,"fileOperations":189,"externalRequests":26,"nonceChecks":80,"capabilityChecks":606,"bundledLibraries":607},[],{"prepared":561,"raw":557,"locations":562},8,[563,566],{"file":564,"line":217,"context":565},"uninstall.php","$wpdb->get_col() with variable interpolation",{"file":564,"line":119,"context":567},"$wpdb->query() with variable interpolation",{"escaped":569,"rawEcho":570,"locations":571},423,17,[572,575,577,578,580,582,584,586,588,589,591,593,595,597,600,603,604],{"file":198,"line":573,"context":574},210,"raw output",{"file":198,"line":576,"context":574},213,{"file":198,"line":456,"context":574},{"file":209,"line":579,"context":574},113,{"file":581,"line":232,"context":574},"admin\\wbcom\\templates\\wbcom-license-page.php",{"file":583,"line":160,"context":574},"admin\\wbcom\\templates\\wbcom-plugins-page.php",{"file":585,"line":160,"context":574},"admin\\wbcom\\templates\\wbcom-support-page.php",{"file":231,"line":587,"context":574},266,{"file":231,"line":463,"context":574},{"file":231,"line":590,"context":574},294,{"file":471,"line":592,"context":574},180,{"file":280,"line":594,"context":574},986,{"file":398,"line":596,"context":574},160,{"file":598,"line":599,"context":574},"includes\\templates\\bgr-reviews-tab-template.php",265,{"file":601,"line":602,"context":574},"includes\\templates\\bgr-single-review-template.php",25,{"file":601,"line":98,"context":574},{"file":431,"line":605,"context":574},206,14,[],[609,626,636,644,655],{"entryPoint":610,"graph":611,"unsanitizedCount":557,"severity":39},"bp_group_review_bulk_action_notices (includes\\bgr-filters.php:537)",{"nodes":612,"edges":624},[613,618],{"id":614,"type":615,"label":616,"file":280,"line":617},"n0","source","$_GET (x2)",551,{"id":619,"type":620,"label":621,"file":280,"line":622,"wp_function":623},"n1","sink","echo() [XSS]",564,"echo",[625],{"from":614,"to":619,"sanitized":48},{"entryPoint":627,"graph":628,"unsanitizedCount":26,"severity":635},"wbcom_addons_cards_links (admin\\wbcom\\wbcom-admin-settings.php:38)",{"nodes":629,"edges":633},[630,632],{"id":614,"type":615,"label":631,"file":231,"line":221},"$_POST",{"id":619,"type":620,"label":621,"file":231,"line":224,"wp_function":623},[634],{"from":614,"to":619,"sanitized":468},"low",{"entryPoint":637,"graph":638,"unsanitizedCount":26,"severity":635},"\u003Cwbcom-admin-settings> (admin\\wbcom\\wbcom-admin-settings.php:0)",{"nodes":639,"edges":642},[640,641],{"id":614,"type":615,"label":631,"file":231,"line":221},{"id":619,"type":620,"label":621,"file":231,"line":224,"wp_function":623},[643],{"from":614,"to":619,"sanitized":468},{"entryPoint":645,"graph":646,"unsanitizedCount":26,"severity":635},"\u003Cbgr-ajax> (includes\\bgr-ajax.php:0)",{"nodes":647,"edges":653},[648,651],{"id":614,"type":615,"label":649,"file":471,"line":650},"$_POST (x2)",372,{"id":619,"type":620,"label":621,"file":471,"line":652,"wp_function":623},497,[654],{"from":614,"to":619,"sanitized":468},{"entryPoint":656,"graph":657,"unsanitizedCount":26,"severity":635},"\u003Cbgr-filters> (includes\\bgr-filters.php:0)",{"nodes":658,"edges":661},[659,660],{"id":614,"type":615,"label":616,"file":280,"line":617},{"id":619,"type":620,"label":621,"file":280,"line":622,"wp_function":623},[662],{"from":614,"to":619,"sanitized":468},{"summary":664,"deductions":665},"The \"review-buddypress-groups\" plugin v3.8.1 presents a mixed security posture. On the positive side, the plugin demonstrates good practices with a high percentage of properly escaped outputs and a significant majority of SQL queries utilizing prepared statements. The presence of numerous nonce and capability checks also suggests an awareness of security principles. However, there are notable areas of concern.\n\nThe static analysis reveals a substantial attack surface with 29 total entry points, of which 2 are unprotected. This is further compounded by 4 REST API routes, 2 of which lack proper permission callbacks, making them potentially exploitable without authentication. While the taint analysis did not reveal critical or high-severity issues, a flow with unsanitized paths is a red flag that warrants investigation, as even lower-severity unsanitized flows can lead to vulnerabilities.\n\nThe plugin's vulnerability history is a significant concern. With 3 known medium-severity CVEs, specifically related to Missing Authorization and Cross-Site Scripting, the plugin has a track record of exploitable weaknesses. Although none are currently unpatched, the recurring nature of these vulnerability types suggests that developers may not have fully addressed the root causes in past fixes. The last vulnerability was identified in mid-2022, meaning recent versions haven't been independently vetted or have been vulnerable since then. In conclusion, while the plugin has strengths in output escaping and prepared statements, the unprotected entry points, the presence of unsanitized paths, and the history of authorization and XSS vulnerabilities necessitate caution.",[666,668,670,673],{"reason":667,"points":140},"REST API routes without permission callbacks",{"reason":669,"points":202},"Unprotected entry points (AJAX\u002FREST)",{"reason":671,"points":672},"Taint flow with unsanitized paths",7,{"reason":674,"points":245},"Medium severity CVEs in history (x3)","2026-03-16T21:36:19.055Z",{"wat":677,"direct":698},{"assetPaths":678,"generatorPatterns":687,"scriptPaths":688,"versionParams":689},[679,680,681,682,683,684,685,686],"\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fcss\u002Fbgr-frontend.css","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fcss\u002Fbgr-group-details.css","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fcss\u002Fjquery.rateyo.min.css","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fcss\u002Freview-buddy.css","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fjs\u002Fbgr-admin.js","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fjs\u002Fbgr-frontend.js","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fjs\u002Fjquery.rateyo.min.js","\u002Fwp-content\u002Fplugins\u002Freview-buddypress-groups\u002Fassets\u002Fjs\u002Freview-buddy.js",[],[],[690,691,692,693,694,695,696,697],"review-buddypress-groups\u002Fassets\u002Fcss\u002Fbgr-frontend.css?ver=","review-buddypress-groups\u002Fassets\u002Fcss\u002Fbgr-group-details.css?ver=","review-buddypress-groups\u002Fassets\u002Fcss\u002Fjquery.rateyo.min.css?ver=","review-buddypress-groups\u002Fassets\u002Fcss\u002Freview-buddy.css?ver=","review-buddypress-groups\u002Fassets\u002Fjs\u002Fbgr-admin.js?ver=","review-buddypress-groups\u002Fassets\u002Fjs\u002Fbgr-frontend.js?ver=","review-buddypress-groups\u002Fassets\u002Fjs\u002Fjquery.rateyo.min.js?ver=","review-buddypress-groups\u002Fassets\u002Fjs\u002Freview-buddy.js?ver=",{"cssClasses":699,"htmlComments":714,"htmlAttributes":721,"restEndpoints":727,"jsGlobals":732,"shortcodeOutput":736},[700,701,702,703,704,705,706,707,708,709,710,711,712,713],"bgr-group-rating-wrap","bgr-group-rating-star","bgr-group-rating-list","bgr-single-group-rating","bgr-review-meta","bgr-review-content","bgr-review-title","bgr-user-review-form","bgr-review-criteria","bgr-criteria-label","bgr-criteria-input","bgr-rating-details-wrap","bgr-rating-details-item","bp-group-reviews",[715,716,717,718,719,720],"\u003C!-- buddypress group reviews -->","\u003C!-- group reviews -->","\u003C!-- Reviews Tab Start -->","\u003C!-- Reviews Tab End -->","\u003C!-- Review Form Start -->","\u003C!-- Review Form End -->",[722,723,724,725,726],"data-bp-group-reviews-rating","data-group-id","data-user-id","data-review-id","data-criteria-name",[728,729,730,731],"\u002Fwp-json\u002Fbp-group-reviews\u002Fv1\u002Freviews","\u002Fwp-json\u002Fbp-group-reviews\u002Fv1\u002Fgroup\u002F(?P\u003Cgroup_id>\\d+)\u002Freviews","\u002Fwp-json\u002Fbp-group-reviews\u002Fv1\u002Freview\u002F(?P\u003Creview_id>\\d+)","\u002Fwp-json\u002Fbp-group-reviews\u002Fv1\u002Fgroup\u002F(?P\u003Cgroup_id>\\d+)\u002Fcriteria",[733,734,735],"BGR_Review_FrontEnd","BGR_Frontend_Vars","BGR_Admin_Vars",[737,738,739],"[group_reviews]","[group_review_form]","[bp_group_reviews_stats]",{"error":468,"url":741,"statusCode":742,"statusMessage":743,"message":743},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Freview-buddypress-groups\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":140,"versions":745},[746,751,758,764,771,778,785,792,799,806],{"version":6,"download_url":23,"svn_tag_url":747,"released_at":36,"has_diff":48,"diff_files_changed":748,"diff_lines":36,"trac_diff_url":749,"vulnerabilities":750,"is_current":468},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.8.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.8.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.8.1",[],{"version":752,"download_url":753,"svn_tag_url":754,"released_at":36,"has_diff":48,"diff_files_changed":755,"diff_lines":36,"trac_diff_url":756,"vulnerabilities":757,"is_current":48},"3.8.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.8.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.8.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.7.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.8.0",[],{"version":173,"download_url":759,"svn_tag_url":760,"released_at":36,"has_diff":48,"diff_files_changed":761,"diff_lines":36,"trac_diff_url":762,"vulnerabilities":763,"is_current":48},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.7.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.7.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.6.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.7.0",[],{"version":765,"download_url":766,"svn_tag_url":767,"released_at":36,"has_diff":48,"diff_files_changed":768,"diff_lines":36,"trac_diff_url":769,"vulnerabilities":770,"is_current":48},"3.6.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.6.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.6.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.5.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.6.0",[],{"version":772,"download_url":773,"svn_tag_url":774,"released_at":36,"has_diff":48,"diff_files_changed":775,"diff_lines":36,"trac_diff_url":776,"vulnerabilities":777,"is_current":48},"3.5.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.5.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.5.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.4.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.5.0",[],{"version":779,"download_url":780,"svn_tag_url":781,"released_at":36,"has_diff":48,"diff_files_changed":782,"diff_lines":36,"trac_diff_url":783,"vulnerabilities":784,"is_current":48},"3.4.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.4.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.4.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.3.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.4.0",[],{"version":786,"download_url":787,"svn_tag_url":788,"released_at":36,"has_diff":48,"diff_files_changed":789,"diff_lines":36,"trac_diff_url":790,"vulnerabilities":791,"is_current":48},"3.3.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.3.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.2.2&new_path=%2Freview-buddypress-groups%2Ftags%2F3.3.0",[],{"version":793,"download_url":794,"svn_tag_url":795,"released_at":36,"has_diff":48,"diff_files_changed":796,"diff_lines":36,"trac_diff_url":797,"vulnerabilities":798,"is_current":48},"3.2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.2.1&new_path=%2Freview-buddypress-groups%2Ftags%2F3.2.2",[],{"version":800,"download_url":801,"svn_tag_url":802,"released_at":36,"has_diff":48,"diff_files_changed":803,"diff_lines":36,"trac_diff_url":804,"vulnerabilities":805,"is_current":48},"3.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Freview-buddypress-groups%2Ftags%2F3.1.0&new_path=%2Freview-buddypress-groups%2Ftags%2F3.2.1",[],{"version":807,"download_url":808,"svn_tag_url":809,"released_at":36,"has_diff":48,"diff_files_changed":810,"diff_lines":36,"trac_diff_url":36,"vulnerabilities":811,"is_current":48},"3.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freview-buddypress-groups.3.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Freview-buddypress-groups\u002Ftags\u002F3.1.0\u002F",[],[]]