[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ffgJmXfDE-M0lPtfrpAdOY13No__EaKUEdJSJXwswHRE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":47,"crawl_stats":36,"alternatives":50,"analysis":153,"fingerprints":372},"secondary-title","Secondary Title","2.2.0","thaikolja","https:\u002F\u002Fprofiles.wordpress.org\u002Fthaikolja\u002F","\u003Cp>\u003Cstrong>Secondary Title\u003C\u002Fstrong> is a simple, light-weight plugin that adds an alternative title to posts, pages, and\u002For \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FPost_Types\" rel=\"nofollow ugc\">custom post types\u003C\u002Fa>, which can be displayed automatically, with a shortcode or by using PHP.\u003C\u002Fp>\n\u003Cp>The plugin comes with an extra settings page, which allows you to customize the plugin according to your needs. You can change:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FPost_Types\" rel=\"nofollow ugc\">post types\u003C\u002Fa>, categories, and specific post IDs the secondary title will be\u003Cbr \u002F>\nshown on,\u003C\u002Fli>\n\u003Cli>whether the secondary title should be automatically added to the standard title (\u003Cem>Auto show\u003C\u002Fem>),\u003C\u002Fli>\n\u003Cli>the format both titles are being shown (only works when \u003Cem>Auto show\u003C\u002Fem> is activated),\u003C\u002Fli>\n\u003Cli>the position where the secondary title input field should be displayed (above or below the standard title) within the admin interface (Classic Editor only),\u003C\u002Fli>\n\u003Cli>whether the secondary title should only be displayed in the main post and not within widgets, etc.,\u003C\u002Fli>\n\u003Cli>if the secondary title should be usable in \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FUsing_Permalinks\" rel=\"nofollow ugc\">permalinks\u003C\u002Fa>,\u003C\u002Fli>\n\u003Cli>and even more.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Please see the \u003Ca href=\"https:\u002F\u002Fdocs.kolja-nolte.com\u002Fsecondary-title\u002F\" rel=\"nofollow ugc\">official website\u003C\u002Fa> for a full documentation.\u003C\u002Fstrong>\u003C\u002Fp>\n","Secondary Title is a simple, lightweight plugin that allows you to easily add an alternative title to posts, pages, and\u002For custom post types.",8000,177853,98,72,"2025-01-09T23:05:00.000Z","6.7.5","4.0","7.4",[20,4,21,22],"heading","subheading","title","https:\u002F\u002Fdocs.kolja-nolte.com\u002Fsecondary-title","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsecondary-title.2.2.0.zip",92,1,0,"2023-07-05 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2023-28773","secondary-title-authenticated-contributor-stored-cross-site-scripting","Secondary Title \u003C= 2.0.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Secondary Title plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.0.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.0.9.1","2.1.0","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff5ab7d3e-b0c8-4e30-942b-23d91daff2ac?source=api-prod",202,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":46,"trust_score":48,"computed_at":49},73,"2026-04-04T09:09:37.292Z",[51,74,95,116,136],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":65,"tags":66,"homepage":70,"download_link":71,"security_score":13,"vuln_count":72,"unpatched_count":27,"last_vuln_date":73,"fetched_at":29},"wp-subtitle","WP Subtitle","3.4.2","husani","https:\u002F\u002Fprofiles.wordpress.org\u002Fhusani\u002F","\u003Cp>The WP Subtitle plugin allows your pages and posts to contain a subtitle.  Also called a sub-heading, this this short line of text is meant to appear beneath a post’s (or page’s) title, but can be inserted in your template wherever you choose.\u003C\u002Fp>\n\u003Cp>The subtitle can be inserted into your theme template files (or plugin) using the following API:\u003C\u002Fp>\n\u003Ch4>Display The Subtitle\u003C\u002Fh4>\n\u003Cp>All parameters are optional. If ‘post_id’ is omitted then the current post ID in the loop is used.\u003C\u002Fp>\n\u003Cp>PHP Code:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>do_action( 'plugins\u002Fwp_subtitle\u002Fthe_subtitle', array(\n    'before'        => '\u003Cp class=\"subtitle\">',\n    'after'         => '\u003C\u002Fp>',\n    'post_id'       => get_the_ID(),\n    'default_value' => ''\n) );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Output:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cp class=\"subtitle\">My Post Subtitle\u003C\u002Fp>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Get The Subtitle\u003C\u002Fh4>\n\u003Cp>All parameters are optional. If ‘post_id’ is omitted then the current post ID in the loop is used.\u003C\u002Fp>\n\u003Cp>A default value can be supplied as the second parameter for \u003Ccode>apply_filters\u003C\u002Fcode>. This will be used if the post does not have a subtitle. Leave as an empty string to return an empty string if the post does not have a subtitle.\u003C\u002Fp>\n\u003Cp>PHP Code:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>$subtitle = apply_filters( 'plugins\u002Fwp_subtitle\u002Fget_subtitle', '', array(\n    'before'  => '\u003Cp class=\"subtitle\">',\n    'after'   => '\u003C\u002Fp>',\n    'post_id' => get_the_ID()\n) );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Result:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>$subtitle = '\u003Cp class=\"subtitle\">My Post Subtitle\u003C\u002Fp>'\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Parameters\u003C\u002Fh4>\n\u003Cp>The array of arguments accepted for the \u003Ccode>plugins\u002Fwp_subtitle\u002Fthe_subtitle\u003C\u002Fcode> action and \u003Ccode>plugins\u002Fwp_subtitle\u002Fget_subtitle\u003C\u002Fcode> filter are:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>before\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>(string)\u003C\u002Fem> Text to place before the subtitle if one exists. Defaults to an empty string.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>after\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>(string)\u003C\u002Fem> Text to place after the subtitle if one exists. Defaults to to an empty string.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>post_id\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>(integer)\u003C\u002Fem> Post, page or custom post type ID.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>default_value\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>(string)\u003C\u002Fem> Only used by the \u003Ccode>plugins\u002Fwp_subtitle\u002Fthe_subtitle\u003C\u002Fcode> action, allows you to specify a default subtitle to display if the post does not have one. For the \u003Ccode>plugins\u002Fwp_subtitle\u002Fget_subtitle\u003C\u002Fcode> filter the second parameter of \u003Ccode>apply_filters\u003C\u002Fcode> should be used instead. Defaults to to an empty string.\u003C\u002Fp>\n\u003Ch4>Post Type Support\u003C\u002Fh4>\n\u003Cp>By default, subtitle are supported by both posts and pages. To add support for custom post types add teh following to your theme functions file or plugin:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_post_type_support( 'my_post_type', 'wps_subtitle' )\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>WooCommerce Plugin Support\u003C\u002Fh4>\n\u003Cp>Subtitles can automatically be added to your WooCommerce products without needing to make template changes. In the admin go to WooCommerce > Settings > Products where you can choose to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable Product Subtitles\u003C\u002Fli>\n\u003Cli>Display the subtitle on single product pages\u003C\u002Fli>\n\u003Cli>Display the subtitle on product archives (category pages)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Yoast SEO and SEOPress Plugin Support\u003C\u002Fh4>\n\u003Cp>The plugin allows you to include the subtitle in your meta titles and descriptions via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwordpress-seo\u002F\" rel=\"ugc\">Yoast SEO\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-seopress\u002F\" rel=\"ugc\">SEOPress\u003C\u002Fa> plugins.\u003C\u002Fp>\n\u003Cp>Similar to the Yoast \u003Ccode>%%title%%\u003C\u002Fcode> placeholder which inserts the post title, you can use \u003Ccode>%%wps_subtitle%%\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>There are also addition placeholders and filters to allow to to customize seperators for the subtitle.\u003C\u002Fp>\n\u003Cp>For more information, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbenhuson\u002Fwp-subtitle\u002Fwiki\u002FYoast-SEO-Plugin-Support\" rel=\"nofollow ugc\">view the SEO support documentation here\u003C\u002Fa>.\u003C\u002Fp>\n","Add subtitles (subheadings) to your pages, posts or custom post types.",10000,482969,82,21,"2026-03-05T22:12:00.000Z","6.9.4","5.6",[67,68,21,69,22],"content","subhead","subtitle","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-subtitle\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-subtitle.3.4.2.zip",2,"2025-09-22 00:00:00",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":27,"num_ratings":27,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":92,"download_link":93,"security_score":94,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"correct-my-headings","Correct My Headings","1.0","Stefan Matei","https:\u002F\u002Fprofiles.wordpress.org\u002Fnonsalant\u002F","\u003Cp>If your subheadings appear on archive pages, they need to start from H3 (because H2 tags are used by the post titles on archive pages).\u003C\u002Fp>\n\u003Cp>This plugin dynamically corrects subheadings before they are displayed on your site — for SEO and semantic markup purposes.\u003C\u002Fp>\n\u003Cp>You will be able to select one of the following two options (the first one being the default):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>My subheadings start from the H2 level: \u003Cstrong>turn them down\u003C\u002Fstrong> a level on archive pages.\u003Cbr \u002F>\n\u003Cem>H2’s become H3’s, H3’s become H4’s, H4’s become H5’s, H5’s become H6’s and H6’s become paragraphs\u003C\u002Fem>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>My subheadings start from the H3 level: \u003Cstrong>turn them up\u003C\u002Fstrong> a level on single posts or pages.\u003Cbr \u002F>\n\u003Cem>H3’s become H2’s, H4’s become H3’s, H5’s become H4’s and H6’s become H5’s\u003C\u002Fem>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>This plugin does not make any changes to your database\u003C\u002Fstrong>: the subheadings will \u003Cstrong>only be displayed differently\u003C\u002Fstrong> on the front-end site.\u003Cbr \u002F>\nIf you disable the plugin or decide to uninstall it everything will be back to normal.\u003C\u002Fp>\n\u003Cp>Visit the \u003Ca href=\"http:\u002F\u002Fwww.vileworks.com\u002Fcorrect-my-headings\" title=\"Correct My Headings\" rel=\"nofollow ugc\">plugin page\u003C\u002Fa> on VileWorks.com.\u003C\u002Fp>\n","If your subheadings appear on archive pages, they need to start from H3 (because H2 tags are used by the post titles on archive pages).",10,3723,"2012-04-10T00:45:00.000Z","3.3.2","2.7","",[67,89,90,91,22],"headings","seo","subheadings","http:\u002F\u002Fvileworks.com\u002Fcorrect-my-headings","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcorrect-my-headings.zip",85,{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":87,"tags":110,"homepage":114,"download_link":115,"security_score":94,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"custom-archive-titles","Custom Archive Titles","1.1","ThemeZee","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemezee\u002F","\u003Cp>The \u003Cem>Custom Archive Titles\u003C\u002Fem> plugin allows you to change the default texts of archive titles in WordPress.\u003C\u002Fp>\n\u003Ch4>Set custom titles on\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Category Archives (Category: %s)\u003C\u002Fli>\n\u003Cli>Tag Archives (Tag: %s)\u003C\u002Fli>\n\u003Cli>Author Archives (Author: %s)\u003C\u002Fli>\n\u003Cli>Yearly Archives (Year: %s)\u003C\u002Fli>\n\u003Cli>Monthly Archives (Month: %s)\u003C\u002Fli>\n\u003Cli>Daily Archives (Day: %s)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Examples\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Published in News\u003C\u002Fli>\n\u003Cli>Tagged with Books\u003C\u002Fli>\n\u003Cli>Posts written by Jane Doe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cp>Your theme has to use \u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Freference\u002Ffunctions\u002Fthe_archive_title\u002F\" rel=\"nofollow ugc\">the_archive_title()\u003C\u002Fa> for showing archive titles.\u003C\u002Fp>\n","A small and simple plugin to adjust the default texts of archive titles in WordPress",2000,53867,100,4,"2021-06-06T17:10:00.000Z","5.8.13","4.4",[111,112,113,20,22],"archive","category","custom","https:\u002F\u002Fthemezee.com\u002Fplugins\u002Fcustom-archive-titles\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-archive-titles.1.1.zip",{"slug":21,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":87,"tags":130,"homepage":134,"download_link":135,"security_score":94,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"SubHeading","1.8.1","Steve","https:\u002F\u002Fprofiles.wordpress.org\u002Fstvwhtly\u002F","\u003Cp>This plugin uses a custom field to allow sub titles\u002Fheadings to be added to any post type, including pages, posts and any public custom post type.\u003C\u002Fp>\n\u003Cp>The custom subheading field is re-positioned so it is directly below the main title when editing.\u003C\u002Fp>\n\u003Cp>Updates to your theme templates may be required in order for you to output the subheading values, please refer to the Installation instructions.\u003C\u002Fp>\n\u003Cp>By default subheadings are also appended to RSS feeds and the admin edit post\u002Fpage lists, these options and more can be modified via the settings page.\u003C\u002Fp>\n\u003Cp>Following a plugin review by Alison Barrett (WordPress.com VIP) a number of improvements were introduced in version 1.7.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Languages:\u003C\u002Fstrong> Also available in Brazilian Portuguese (Português do Brasil by mauriciomesquita).\u003C\u002Fp>\n","Adds the ability to easily add and display a sub title\u002Fheading on any public post type.",1000,64821,84,11,"2017-11-28T21:43:00.000Z","4.2.39","3.2.1",[131,20,132,133,22],"admin","sub","template","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsubheading\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsubheading.1.8.1.zip",{"slug":137,"name":138,"version":139,"author":140,"author_profile":141,"description":142,"short_description":143,"active_installs":144,"downloaded":145,"rating":105,"num_ratings":26,"last_updated":146,"tested_up_to":147,"requires_at_least":148,"requires_php":87,"tags":149,"homepage":87,"download_link":152,"security_score":25,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"advanced-heading","Advanced Heading","1.1.5","WPDeveloper","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdevteam\u002F","\u003Cp>\u003Cstrong>Advanced Heading\u003C\u002Fstrong> Use this amazing block to display the web pages and post titles more stunningly with subtitles and separators. Using Advanced Heading, you can adjust title, subtitle, and separator according to your needs. The subtitle and separator can be enabled or disabled. The Separator has 2 styles: Line and Icon, so you can use a solid, dotted, hashed, etc. line and 100+ icons. Margin, padding, background, and border of the heading wrapper can be customized with responsive options.\u003C\u002Fp>\n\u003Cp>⚙️ \u003Cstrong>Completely Customizable:\u003C\u002Fstrong> You can customize the content, colors, etc. to make it suitable for your website design\u003C\u002Fp>\n\u003Cp>⚡ \u003Cstrong>Super Light-weight:\u003C\u002Fstrong> No extra resources used and it’s highly optimized for super-fast loading & instant Live editing\u003C\u002Fp>\n\u003Cp>🧑‍💻 \u003Cstrong>Dedicated Support:\u003C\u002Fstrong> We have an extraordinary support team ready to help you. Ask your questions in the support forum, we’ll get back to you immediately\u003C\u002Fp>\n\u003Ch3>🚀 BACKED BY A TRUSTED TEAM\u003C\u002Fh3>\n\u003Cp>This Block is brought to you by \u003Ca href=\"https:\u002F\u002Fwpdeveloper.com\" rel=\"nofollow ugc\">WPDeveloper\u003C\u002Fa>, the team behind the most popular elements library \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fessential-addons-for-elementor-lite\u002F\" rel=\"ugc\">Essential Addons for Elementor\u003C\u002Fa> (used by almost 1 million+ happy users from 180+ countries).\u003C\u002Fp>\n\u003Ch3>👨‍💻 DOCUMENTATION AND SUPPORT\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>For documentation and tutorials go to our \u003Ca href=\"https:\u002F\u002Fessential-blocks.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>To report issue and contribution visit \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FEssentialBlocks\u002Fadvanced-heading\u002F\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>If you have any more questions, visit our support on the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fadvanced-heading\u002F\" rel=\"ugc\">Plugin’s Forum\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>For more information about features, FAQs and documentation, check out our website at \u003Ca href=\"https:\u002F\u002Fwpdeveloper.com\u002F\" rel=\"nofollow ugc\">WPDeveloper\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🙌 JOIN THE COMMUNITY\u003C\u002Fh3>\n\u003Cp>🎦 Subscribe to our \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwpdevelopernet\u002F?sub_confirmation=1\" rel=\"nofollow ugc\">Youtube Channel\u003C\u002Fa> to watch video tutorials on WordPress.\u003C\u002Fp>\n\u003Cp>🤝 Join our \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002Fwpdeveloper.net\u002F\" rel=\"nofollow ugc\">Facebook Community\u003C\u002Fa> & get connected with expert web creators like yourself.\u003C\u002Fp>\n\u003Cp>🧡 LOVED on Advanced Heading Block? Rate us on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fadvanced-heading\u002Freviews\u002F#new-post\" rel=\"ugc\">WordPress Repository\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>🔥 GET FREEBIES FOR YOUR WORDPRESS SITE\u003C\u002Fp>\n\u003Cp>Consider checking out our other WordPress solutions & boost your WordPress website:\u003C\u002Fp>\n\u003Cp>🔝 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fessential-addons-for-elementor-lite\u002F\" rel=\"ugc\">Essential Addons For Elementor\u003C\u002Fa>: Most popular Elementor addons with 70+ widgets & ready blocks\u003C\u002Fp>\n\u003Cp>☁ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftemplately\u002F\" rel=\"ugc\">Templately\u003C\u002Fa>: Free templates library for Elementor & Gutenberg along with the cloud collaboration for WordPress\u003C\u002Fp>\n\u003Cp>🔔 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnotificationx\u002F\" rel=\"ugc\">NotificationX\u003C\u002Fa>: Best Social Proof & FOMO Marketing Solution to increase conversion rates\u003C\u002Fp>\n\u003Cp>📚 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbetterdocs\u002F\" rel=\"ugc\">BetterDocs\u003C\u002Fa>: Best Documentation & Knowledge Base Plugin for WordPress reduce manual support tickets & improve user experience.\u003C\u002Fp>\n\u003Cp>⏰ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-scheduled-posts\u002F\" rel=\"ugc\">WP Scheduled Posts\u003C\u002Fa>: Advanced editorial calendar & complete solution for WordPress Post Scheduling, social sharing, missed scheduled alerts and more.\u003C\u002Fp>\n\u003Cp>⭐ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Freviewx\u002F\" rel=\"ugc\">ReviewX\u003C\u002Fa>: WooCommerce Product review plugin that allows users to submit product reviews with multiple criteria, photos, video and more\u003C\u002Fp>\n\u003Cp>⚡ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fflexia\" rel=\"ugc\">Flexia\u003C\u002Fa>: Most lightweight, customizable & multi purpose theme for WordPress\u003C\u002Fp>\n","Create Advanced Heading with Title, Subtitle and Separator Controls",300,7417,"2024-07-29T07:38:00.000Z","6.6.5","5.0",[137,150,151,20,22],"block","blocks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-heading.1.1.5.zip",{"attackSurface":154,"codeSignals":247,"taintFlows":325,"riskAssessment":360,"analyzedAt":371},{"hooks":155,"ajaxHandlers":239,"restRoutes":240,"shortcodes":241,"cronEvents":246,"entryPointCount":26,"unprotectedCount":27},[156,162,166,170,174,178,183,187,191,194,198,202,206,210,214,217,221,225,228,232,236],{"type":157,"name":158,"callback":159,"file":160,"line":161},"action","admin_footer","init_secondary_title_admin_posts","includes\\admin.php",61,{"type":157,"name":163,"callback":164,"file":160,"line":165},"admin_init","secondary_title_load_overview_columns_hook",144,{"type":157,"name":167,"callback":168,"file":169,"line":48},"add_meta_boxes","secondary_title_gutenberg_add_meta_box","includes\\hooks.php",{"type":157,"name":171,"callback":172,"file":169,"line":173},"init","secondary_title_gutenberg_register_meta",90,{"type":157,"name":175,"callback":176,"file":169,"line":177},"save_post","secondary_title_edit_post",131,{"type":179,"name":180,"callback":181,"file":169,"line":182},"filter","the_title","secondary_title_auto_show",273,{"type":157,"name":184,"callback":185,"file":169,"line":186},"admin_enqueue_scripts","secondary_title_scripts_and_styles",315,{"type":157,"name":188,"callback":189,"file":169,"line":190},"admin_menu","secondary_title_init_admin_settings",333,{"type":157,"name":171,"callback":192,"file":169,"line":193},"secondary_title_permalinks_init",345,{"type":179,"name":195,"callback":196,"priority":82,"file":169,"line":197},"post_link","secondary_title_modify_permalink",370,{"type":179,"name":199,"callback":200,"file":169,"line":201},"the_title_rss","secondary_title_modify_feed_title",412,{"type":179,"name":203,"callback":204,"file":169,"line":205},"posts_join","secondary_title_search_join",508,{"type":179,"name":207,"callback":208,"file":169,"line":209},"posts_where","secondary_title_search_where",509,{"type":179,"name":211,"callback":212,"file":169,"line":213},"posts_distinct","secondary_title_search_distinct",510,{"type":157,"name":171,"callback":215,"file":169,"line":216},"secondary_title_add_shortcode_function_init",552,{"type":157,"name":218,"callback":219,"file":169,"line":220},"admin_notices","secondary_title_donation_notice",618,{"type":157,"name":222,"callback":223,"file":169,"line":224},"admin_head-settings_page_secondary-title","secondary_title_display_donation_notice",622,{"type":157,"name":163,"callback":226,"file":169,"line":227},"secondary_title_deactivate_donation_notice",663,{"type":157,"name":229,"callback":230,"file":169,"line":231},"aioseop_title_format","secondary_title_support_aioseop_title_format",729,{"type":179,"name":233,"callback":234,"priority":82,"file":169,"line":235},"aioseop_title","secondary_title_support_aioseop_title",767,{"type":157,"name":171,"callback":237,"file":169,"line":238},"secondary_title_support_aioseop",771,[],[],[242],{"tag":243,"callback":244,"file":169,"line":245},"secondary_title","secondary_title_add_shortcode_function",549,[],{"dangerousFunctions":248,"sqlUsage":249,"outputEscaping":251,"fileOperations":27,"externalRequests":27,"nonceChecks":323,"capabilityChecks":323,"bundledLibraries":324},[],{"prepared":27,"raw":27,"locations":250},[],{"escaped":252,"rawEcho":253,"locations":254},9,34,[255,258,260,262,265,267,269,271,273,275,277,279,282,284,286,288,290,292,294,296,298,299,301,303,305,307,309,311,312,314,316,318,320,322],{"file":160,"line":256,"context":257},48,"raw output",{"file":160,"line":259,"context":257},57,{"file":160,"line":261,"context":257},160,{"file":263,"line":264,"context":257},"includes\\functions.php",276,{"file":263,"line":266,"context":257},537,{"file":263,"line":268,"context":257},538,{"file":169,"line":270,"context":257},47,{"file":169,"line":272,"context":257},51,{"file":169,"line":274,"context":257},52,{"file":169,"line":276,"context":257},579,{"file":169,"line":278,"context":257},601,{"file":280,"line":281,"context":257},"includes\\settings.php",139,{"file":280,"line":283,"context":257},162,{"file":280,"line":285,"context":257},173,{"file":280,"line":287,"context":257},179,{"file":280,"line":289,"context":257},203,{"file":280,"line":291,"context":257},206,{"file":280,"line":293,"context":257},217,{"file":280,"line":295,"context":257},326,{"file":280,"line":297,"context":257},327,{"file":280,"line":297,"context":257},{"file":280,"line":300,"context":257},328,{"file":280,"line":302,"context":257},329,{"file":280,"line":304,"context":257},330,{"file":280,"line":306,"context":257},371,{"file":280,"line":308,"context":257},381,{"file":280,"line":310,"context":257},382,{"file":280,"line":310,"context":257},{"file":280,"line":313,"context":257},383,{"file":280,"line":315,"context":257},384,{"file":280,"line":317,"context":257},419,{"file":280,"line":319,"context":257},569,{"file":280,"line":321,"context":257},603,{"file":280,"line":224,"context":257},3,[],[326,350],{"entryPoint":327,"graph":328,"unsanitizedCount":26,"severity":349},"secondary_title_settings_page (includes\\settings.php:35)",{"nodes":329,"edges":345},[330,335,339],{"id":331,"type":332,"label":333,"file":280,"line":334},"n0","source","$_POST",56,{"id":336,"type":337,"label":338,"file":280,"line":334},"n1","transform","→ secondary_title_update_settings()",{"id":340,"type":341,"label":342,"file":263,"line":343,"wp_function":344},"n2","sink","update_option() [Settings Manipulation]",403,"update_option",[346,348],{"from":331,"to":336,"sanitized":347},false,{"from":336,"to":340,"sanitized":347},"low",{"entryPoint":351,"graph":352,"unsanitizedCount":26,"severity":349},"\u003Csettings> (includes\\settings.php:0)",{"nodes":353,"edges":357},[354,355,356],{"id":331,"type":332,"label":333,"file":280,"line":334},{"id":336,"type":337,"label":338,"file":280,"line":334},{"id":340,"type":341,"label":342,"file":263,"line":343,"wp_function":344},[358,359],{"from":331,"to":336,"sanitized":347},{"from":336,"to":340,"sanitized":347},{"summary":361,"deductions":362},"The \"secondary-title\" plugin version 2.2.0 exhibits a mixed security posture. While it demonstrates good practices in areas like avoiding dangerous functions, raw SQL queries, and file operations, and has a history of resolved vulnerabilities, there are significant concerns regarding output escaping and the presence of unsanitized taint flows. The low percentage of properly escaped output (21%) is a major red flag, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. The two identified unsanitized paths in the taint analysis, even without critical or high severity, suggest potential avenues for malicious input to be processed without adequate cleaning. The plugin's past vulnerability history, including a medium severity XSS, reinforces the concern about output handling. Although no unpatched vulnerabilities currently exist and critical\u002Fhigh severity taint flows are absent, the potential for XSS due to poor output escaping and the identified taint flows necessitate careful consideration.",[363,366,369],{"reason":364,"points":365},"Low output escaping rate",15,{"reason":367,"points":368},"Taint flows with unsanitized paths",8,{"reason":370,"points":82},"Past medium severity vulnerability (XSS)","2026-03-16T17:56:29.530Z",{"wat":373,"direct":382},{"assetPaths":374,"generatorPatterns":377,"scriptPaths":378,"versionParams":379},[375,376],"\u002Fwp-content\u002Fplugins\u002Fsecondary-title\u002Fassets\u002Fcss\u002Fsecondary-title.css","\u002Fwp-content\u002Fplugins\u002Fsecondary-title\u002Fassets\u002Fjs\u002Fsecondary-title.js",[],[376],[380,381],"secondary-title\u002Fassets\u002Fcss\u002Fsecondary-title.css?ver=","secondary-title\u002Fassets\u002Fjs\u002Fsecondary-title.js?ver=",{"cssClasses":383,"htmlComments":385,"htmlAttributes":386,"restEndpoints":390,"jsGlobals":393,"shortcodeOutput":395},[384],"components-text-control__input",[],[387,388,389],"id=\"secondary-title\"","name=\"secondary_post_title\"","title=\"Enter secondary title here\"",[391,392],"\u002Fwp-json\u002Fwp\u002Fv2\u002Fposts?_fields=id,_links.self,title,meta&meta=_secondary_title","\u002Fwp-json\u002Fwp\u002Fv2\u002Fpages?_fields=id,_links.self,title,meta&meta=_secondary_title",[394],"secondary_title_settings",[]]