[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjbF8jIIcx5JZlJyTiqtltKa_0DXI8JQV_9Dg-0U9xYo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":142,"fingerprints":306},"scissors-watermark","Scissors and Watermark","3.2.1","Apollo139","https:\u002F\u002Fprofiles.wordpress.org\u002Faloziak\u002F","\u003Cp>This plugin adds cropping, resizing, and rotating functionality to WordPress’ image upload and management dialogs. Scissors also allows automatic resizing of images when they are uploaded and supports automatic and manual watermarking of images. Additionally, images that are resized in the post editor are automatically resampled to the requested size using bilinear filtering when a post is saved, which improves the perceived image quality while reducing the amount of data transferred at the same time.\u003C\u002Fp>\n\u003Cp>Custom image size supported!\u003C\u002Fp>\n\u003Cp>Check settings of this plugin after activation. Watermarking function must be set before using!\u003C\u002Fp>\n\u003Cp>Please note that WordPress versions 3.4.2 and older are not supported!\u003C\u002Fp>\n\u003Cp>This plugin builds on the plugin Scissors Continued v2.1. Many thanks to \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fhuiz\u002F\" rel=\"nofollow ugc\">huiz\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fstephanreiter\u002F\" rel=\"nofollow ugc\">stephanreiter\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsamuelaguilera\u002F\" rel=\"nofollow ugc\">samuelaguilera\u003C\u002Fa>.\u003C\u002Fp>\n","Scissors and Watermark enhances WordPress' handling of images by introducing cropping, resizing, rotating, and watermarking functionality.",200,15831,62,7,"2013-01-02T15:16:00.000Z","3.5.2","3.5","",[20,21,22,23,24],"admin","gallery","images","library","media","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fscissors-watermark\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscissors-watermark.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"aloziak",2,700,30,84,"2026-04-03T23:37:55.130Z",[40,59,81,96,113],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":18,"tags":55,"homepage":57,"download_link":58,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"polaroid-gallery","Polaroid Gallery","2.2","janisto","https:\u002F\u002Fprofiles.wordpress.org\u002Fjanisto\u002F","\u003Cp>Polaroid Gallery is a CSS3 & jQuery Image Gallery plugin for WordPress Media Library. It is used to overlay images as polaroid pictures on the current page or post and uses WordPress Media Library. Using Polaroid Gallery you add unique view for your blog posts. Polaroid Gallery adds feeling of old good times.\u003Cbr \u002F>\nIt is quite easy to use. All you need to do is to create standard wordpress gallery. All other things Polaroid Gallery will make for you by its own. Once you try it you love it.\u003C\u002Fp>\n\u003Cp>Polaroid Gallery has translations for the following languages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English (default)\u003C\u002Fli>\n\u003Cli>Finnish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Use \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fregenerate-thumbnails\u002F\" rel=\"ugc\">Regenerate Thumbnails\u003C\u002Fa> plugin to regenerate thumbnails for all images that you have uploaded to your blog.\u003C\u002Fp>\n\u003Cp>For more information visit \u003Ca href=\"http:\u002F\u002Fen.support.wordpress.com\u002Fimages\u002Fgallery\u002F\" rel=\"nofollow ugc\">WordPress Gallery support\u003C\u002Fa>.\u003Cbr \u002F>\nPlugin in use:\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwp.mikkonen.info\u002Fsummer-2010\u002F\" rel=\"nofollow ugc\">Demo 1\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Flife-thai.com\u002Fchem-horosha-shri-lanka\u002F\" rel=\"nofollow ugc\">Demo 2\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Feel donating? You are wellcome \u003Ca href=\"http:\u002F\u002Fgoo.gl\u002F0gvUvm\" rel=\"nofollow ugc\">to donate\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Would you like to add your language to the list? Contact \u003Ca href=\"http:\u002F\u002Fwww.mikkonen.info\u002Fpolaroid_gallery\u002F\" rel=\"nofollow ugc\">janisto\u003C\u002Fa> or \u003Ca href=\"info@life-thai.com\" rel=\"nofollow ugc\">tashemi\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Polaroid Gallery is free and unencumbered \u003Ca href=\"http:\u002F\u002Funlicense.org\u002F\" rel=\"nofollow ugc\">public domain\u003C\u002Fa> software.\u003C\u002Fp>\n","Polaroid Gallery is a CSS3 & jQuery Image Gallery plugin for WordPress Media Library.",1000,82843,76,4,"2017-01-26T05:57:00.000Z","4.7.32","3.1",[21,56,22,23,24],"image","http:\u002F\u002Fwww.mikkonen.info\u002Fpolaroid_gallery\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpolaroid-gallery.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":34,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":79,"download_link":80,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"nextcellent-gallery-media-addon","NextCellent Media Library Addon","2.1.0","niknetniko","https:\u002F\u002Fprofiles.wordpress.org\u002Fniknetniko\u002F","\u003Cp>If you use NextCellent Gallery, then you know that, when you create a gallery, you must upload the images for that gallery, which is then stored in a separate folder from your WordPress Media Library.\u003C\u002Fp>\n\u003Cp>Now, with this NextCellent Gallery Media Library Addon, you will have the option of adding images that are already stored in your Media Library. Just like adding an image to a page or post, adding an image to your NextCellent Gallery can be a matter of clicking a button and finding an image you have already uploaded.\u003C\u002Fp>\n\u003Cp>This plugin is a fork of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnextgen-gallery-media-library-addon\u002F\" rel=\"ugc\">NextGEN Gallery Media Library Addon\u003C\u002Fa>, updated to work with NextCellent.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cp>NextCellent Gallery Media Library Addon requires some things:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnextcellent-gallery-nextgen-legacy\u002F\" rel=\"ugc\">NextCellent\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>PHP 5.4 or higher\u003C\u002Fli>\n\u003Cli>WordPress 4.0 or higher\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u002FLanguages\u003C\u002Fh4>\n\u003Cp>NextCellent Gallery Media Library Addon is currently available in following languages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Dutch\u003C\u002Fli>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Polish (\u003Ca href=\"http:\u002F\u002Ffw2s.com\u002F\" rel=\"nofollow ugc\">Frank P. Walentynowicz\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Danish (\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002FThomasDK81\" rel=\"nofollow ugc\">thomasdk81\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin adds a feature to NextCellent Gallery to add an image from the WP Media Library.",50,4145,100,"2016-04-01T10:56:00.000Z","4.5.33","4.0",[74,75,76,77,78],"adding-images","gallery-images","media-library","nextcellent","nextgen-gallery","https:\u002F\u002Fbitbucket.org\u002Fniknetniko\u002Fnextcellent-media-addon","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnextcellent-gallery-media-addon.2.1.0.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":36,"downloaded":89,"rating":28,"num_ratings":28,"last_updated":90,"tested_up_to":91,"requires_at_least":72,"requires_php":18,"tags":92,"homepage":18,"download_link":94,"security_score":95,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"qbank-dam-connector","QBank Connector","1.1.1","QBank DAM","https:\u002F\u002Fprofiles.wordpress.org\u002Fqbank\u002F","\u003Cp>By using QBank’s Connector to WordPress you gain access to all your files in QBank that you can\u003Cbr \u002F>\npublish directly from WordPress without leaving their interface.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Search and filter media\u003C\u002Fli>\n\u003Cli>Edit media\u003C\u002Fli>\n\u003Cli>Uploading and publishing\u003C\u002Fli>\n\u003Cli>Responsive design and multi-sites\u003C\u002Fli>\n\u003C\u002Ful>\n","Gain access to all your files in QBank that you can publish directly from Wordpress without leaving their interface.",4540,"2025-01-21T18:24:00.000Z","6.5.8",[21,56,22,76,93],"media-uploader","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fqbank-dam-connector.zip",92,{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":106,"requires_at_least":107,"requires_php":18,"tags":108,"homepage":110,"download_link":111,"security_score":69,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":112},"awsom-pixgallery","AWSOM Pixgallery","4.8.0","harknell","https:\u002F\u002Fprofiles.wordpress.org\u002Fharknell\u002F","\u003Cp>AWSOM Pixgallery is an Image Gallery\u002FArchive plugin designed to make it easier for Artists or Webcomic creators to set up a portfolio of their artwork. It features Automatic Watermarking, captioning using the Visual Editor or HTML, sorting, auto-thumbnailing, Comicpress theme support, per image\u002Fgallery commenting and more. It is a WordPress native Plugin and does not require any config or file changes or outside tool integration to work; just activate the plugin and add a line of text to any post or page and your Gallery of Images will appear. All options are handled through the regular WordPress Admin interface. More features are in development now such as tagging, extensive theme control through Admin interface, and more.\u003Cbr \u002F>\nPart of the www.AWSOM.org series of WordPress Plugins developed by Harknell\u003C\u002Fp>\n\u003Ch3>Upgrading From Previous Version\u003C\u002Fh3>\n\u003Cp>To upgrade from a previous version to the 4.8.X version:\u003C\u002Fp>\n\u003Cp>1) Go to the Admin Plugins menu and deactivate the previous version of AWSOM Pixgallery.\u003C\u002Fp>\n\u003Cp>2) Delete the pixgallery folder from your wp-content\u002Fplugins folder\u003C\u002Fp>\n\u003Cp>3) copy the new awsom-pixgallery plugin folder to the wp-content\u002Fplugins folder (please note the folder name now MUST be awsom-pixgallery)\u003C\u002Fp>\n\u003Cp>4) go to the Admin Plugins menu and activate the 4.8.X version.\u003C\u002Fp>\n\u003Cp>5) Upgrade is complete.\u003C\u002Fp>\n\u003Cp>6) Optional steps: There is a new option in the Pixgallery options area to create the default cache folder used by the new version of the plugin.\u003Cbr \u002F>\nIt is not a requirement to switch to the new default cache folder if your previous one was working fine, it’s just an option.\u003Cbr \u002F>\nFor anyone having issues with their cache folder it is suggested to click the “Create Default Cache” button, which should eliminate\u003Cbr \u002F>\nyour issue. The cache folder field will then automatically update to reflect that you are using the default cache folder. You may delete the old cache folder you\u003Cbr \u002F>\nwere originally using.\u003C\u002Fp>\n\u003Cp>7) AWSOM Pixgallery now also has the ability to create a default gallery folder in your uploads folder. You can create this folder by going to the Appearance Galleries admin\u003Cbr \u002F>\nmenu and clicking the create default gallery button.\u003C\u002Fp>\n","AWSOM Pixgallery is an Image Gallery\u002FArchive plugin for Wordpress designed to make it easier for Artists or Webcomic creators to set up a portfolio of &hellip;",20,31520,"6.0.11","2.0.5",[20,21,22,24,109],"post","http:\u002F\u002Fwww.awsom.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawsom-pixgallery.zip","2026-03-15T10:48:56.248Z",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":18,"short_description":119,"active_installs":104,"downloaded":120,"rating":28,"num_ratings":28,"last_updated":121,"tested_up_to":71,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":18,"download_link":141,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"real-postimages","real.PostImages","1.3","real.master","https:\u002F\u002Fprofiles.wordpress.org\u002Frealmaster-1\u002F","Дополнительное поле записей (постов) для изображений. | English read below",2054,"2016-05-15T14:51:00.000Z","4.1.1",[20,124,125,126,127,128,129,130,131,132,133,21,56,22,24,134,109,135,136,137,114,138,139,140],"%d0%b0%d0%b4%d0%bc%d0%b8%d0%bd","%d0%b3%d0%b0%d0%bb%d0%b5%d1%80%d0%b5%d1%8f","%d0%b7%d0%b0%d0%bf%d0%b8%d1%81%d1%8c","%d0%b8%d0%b7%d0%be%d0%b1%d1%80%d0%b0%d0%b6%d0%b5%d0%bd%d0%b8%d1%8f","%d0%ba%d0%b0%d1%80%d1%82%d0%b8%d0%bd%d0%ba%d0%b0","%d0%ba%d0%b0%d1%80%d1%82%d0%b8%d0%bd%d0%ba%d0%b8","%d0%bc%d0%b5%d0%b4%d0%b8%d0%b0","%d0%bc%d0%b8%d0%bd%d0%b8%d0%b0%d1%82%d1%8e%d1%80%d0%b0","%d0%bc%d0%b8%d0%bd%d0%b8%d0%b0%d1%82%d1%8e%d1%80%d1%8b","%d0%bf%d0%be%d1%81%d1%82","%d1%80%d0%b5%d0%b0%d0%bb%d0%b8%d1%81%d1%82","post-images","postimages","real","thumb","thumbnail","thumbnails","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freal-postimages.zip",{"attackSurface":143,"codeSignals":224,"taintFlows":261,"riskAssessment":295,"analyzedAt":305},{"hooks":144,"ajaxHandlers":206,"restRoutes":221,"shortcodes":222,"cronEvents":223,"entryPointCount":51,"unprotectedCount":51},[145,150,153,157,160,163,166,171,175,178,181,184,187,191,194,199,202],{"type":146,"name":147,"callback":148,"file":149,"line":14},"filter","wp_generate_attachment_metadata","scissors_resize_auto","functions.php",{"type":146,"name":151,"callback":151,"file":149,"line":152},"content_save_pre",1481,{"type":154,"name":155,"callback":155,"file":149,"line":156},"action","save_post",1482,{"type":154,"name":158,"callback":158,"file":149,"line":159},"delete_post",1483,{"type":154,"name":161,"callback":161,"file":149,"line":162},"delete_attachment",1487,{"type":146,"name":164,"callback":164,"file":149,"line":165},"wp_delete_file",1492,{"type":154,"name":167,"callback":168,"file":169,"line":170},"admin_init","scissors_autosize_add_settings","scissors-and-watermark.php",44,{"type":154,"name":172,"callback":173,"file":169,"line":174},"admin_notices","scissors_activation",47,{"type":154,"name":167,"callback":176,"file":169,"line":177},"scissors_activation_notice_ignore",49,{"type":154,"name":167,"callback":179,"file":169,"line":180},"scissors_cropping_add_settings",51,{"type":146,"name":147,"callback":182,"file":169,"line":183},"scissors_apply_initial_watermarks",54,{"type":146,"name":164,"callback":185,"file":169,"line":186},"scissors_delete_watermark_meta",55,{"type":154,"name":188,"callback":189,"file":169,"line":190},"admin_print_scripts","scissors_admin_head_watermark",57,{"type":154,"name":167,"callback":192,"file":169,"line":193},"scissors_watermarking_add_settings",58,{"type":154,"name":195,"callback":196,"priority":197,"file":169,"line":198},"add_meta_boxes","add_scissors_metabox",99,67,{"type":154,"name":188,"callback":200,"file":169,"line":201},"scissors_admin_head",68,{"type":154,"name":203,"callback":204,"file":169,"line":205},"admin_print_styles","scissors_styles",69,[207,212,215,218],{"action":208,"nopriv":209,"callback":210,"hasNonce":209,"hasCapCheck":209,"file":169,"line":211},"scissorsCrop",false,"scissors_action",70,{"action":213,"nopriv":209,"callback":210,"hasNonce":209,"hasCapCheck":209,"file":169,"line":214},"scissorsResize",71,{"action":216,"nopriv":209,"callback":210,"hasNonce":209,"hasCapCheck":209,"file":169,"line":217},"scissorsRotate",72,{"action":219,"nopriv":209,"callback":210,"hasNonce":209,"hasCapCheck":209,"file":169,"line":220},"scissorsWatermark",73,[],[],[],{"dangerousFunctions":225,"sqlUsage":226,"outputEscaping":229,"fileOperations":258,"externalRequests":28,"nonceChecks":259,"capabilityChecks":259,"bundledLibraries":260},[],{"prepared":227,"raw":28,"locations":228},6,[],{"escaped":230,"rawEcho":231,"locations":232},26,12,[233,236,238,240,242,244,246,248,250,252,254,256],{"file":149,"line":234,"context":235},281,"raw output",{"file":149,"line":237,"context":235},308,{"file":149,"line":239,"context":235},728,{"file":149,"line":241,"context":235},734,{"file":149,"line":243,"context":235},735,{"file":149,"line":245,"context":235},736,{"file":149,"line":247,"context":235},738,{"file":149,"line":249,"context":235},758,{"file":149,"line":251,"context":235},796,{"file":149,"line":253,"context":235},875,{"file":149,"line":255,"context":235},896,{"file":149,"line":257,"context":235},1467,14,1,[],[262],{"entryPoint":263,"graph":264,"unsanitizedCount":34,"severity":294},"\u003Cfunctions> (functions.php:0)",{"nodes":265,"edges":289},[266,271,276,280,284],{"id":267,"type":268,"label":269,"file":149,"line":270},"n0","source","$_POST",1427,{"id":272,"type":273,"label":274,"file":149,"line":257,"wp_function":275},"n1","sink","echo() [XSS]","echo",{"id":277,"type":268,"label":278,"file":149,"line":279},"n2","$_POST (x2)",1657,{"id":281,"type":282,"label":283,"file":149,"line":279},"n3","transform","→ _getImagePostIdFromUrl()",{"id":285,"type":273,"label":286,"file":149,"line":287,"wp_function":288},"n4","get_row() [SQLi]",1512,"get_row",[290,292,293],{"from":267,"to":272,"sanitized":291},true,{"from":277,"to":281,"sanitized":209},{"from":281,"to":285,"sanitized":209},"high",{"summary":296,"deductions":297},"The \"scissors-watermark\" v3.2.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and does not make external HTTP requests. The absence of known vulnerabilities (CVEs) in its history is also a positive indicator of its historical stability.  However, significant concerns arise from the static analysis. The plugin has four AJAX handlers, all of which lack authentication checks, creating a substantial attack surface that could be exploited by unauthenticated users. Furthermore, the taint analysis revealed one flow with unsanitized paths, categorized as high severity, which could potentially lead to code injection or other serious vulnerabilities. While the plugin uses nonces and capability checks on some entry points, the lack of these on the majority of its AJAX handlers is a critical oversight.\n\nConsidering the high number of unprotected AJAX entry points and the presence of a high-severity taint flow, the plugin's security is compromised. The lack of historical vulnerabilities might be due to the plugin's relatively simple functionality or perhaps a lack of rigorous security auditing in the past. Nevertheless, the identified weaknesses are immediate risks that require attention. The plugin has the potential to be a secure solution, but the current implementation of its AJAX handlers and the identified taint flow represent considerable security risks that must be addressed to improve its overall security posture.",[298,301,303],{"reason":299,"points":300},"Unprotected AJAX handlers",10,{"reason":302,"points":231},"High severity unsanitized path taint flow",{"reason":304,"points":227},"Low percentage of properly escaped output","2026-03-16T20:30:34.281Z",{"wat":307,"direct":316},{"assetPaths":308,"generatorPatterns":311,"scriptPaths":312,"versionParams":313},[309,310],"\u002Fwp-content\u002Fplugins\u002Fscissors-watermark\u002Fjs\u002Fscissors.js","\u002Fwp-content\u002Fplugins\u002Fscissors-watermark\u002Fcss\u002Fscissors.css",[],[309],[314,315],"scissors-watermark\u002Fjs\u002Fscissors.js?ver=","scissors-watermark\u002Fcss\u002Fscissors.css?ver=",{"cssClasses":317,"htmlComments":318,"htmlAttributes":320,"restEndpoints":322,"jsGlobals":323,"shortcodeOutput":325},[],[319],"\u003C!-- TinyMCE -->",[321],"data-editor=\"tinymce\"",[],[324],"scissors",[]]