[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9NSBs_YNR3VqdM7EA2frt2UHfL5MQWhKJr9hgs7R3ww":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":43,"crawl_stats":34,"alternatives":51,"analysis":162,"fingerprints":256},"series","Series","2.0.1","Justin Tadlock","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreenshady\u002F","\u003Cp>Series is a plugin created to allow users to easily link posts together by using a WordPress taxonomy (like tags or categories) called “series”.  It can be particularly useful if you write several posts spanning the same topic and want them tied together in some way that tags or categories doesn’t cover.\u003C\u002Fp>\n\u003Ch3>Professional Support\u003C\u002Fh3>\n\u003Cp>If you need professional plugin support from me, the plugin author, you can access the support forums at \u003Ca href=\"https:\u002F\u002Fthemehybrid.com\u002Fsupport\" rel=\"nofollow ugc\">Theme Hybrid\u003C\u002Fa>, which is a professional WordPress help\u002Fsupport site where I handle support for all my plugins and themes for a community of 75,000+ users (and growing).\u003C\u002Fp>\n\u003Ch3>Plugin Development\u003C\u002Fh3>\n\u003Cp>If you’re a theme author, plugin author, or just a code hobbyist, you can follow the development of this plugin on it’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjustintadlock\u002Fseries\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>Yes, I do accept donations.  If you want to donate, you can do so from my \u003Ca href=\"https:\u002F\u002Fthemehybrid.com\u002Fdonate\" rel=\"nofollow ugc\">donations page\u003C\u002Fa> or grab me something from my \u003Ca href=\"http:\u002F\u002Fa.co\u002FflUb0ns\" rel=\"nofollow ugc\">Amazon Wish List\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>I appreciate all donations, no matter the size.  Further development of this plugin is not contingent on donations, but they are always a nice incentive.\u003C\u002Fp>\n","Plugin that allows you to collect posts in a series.",2000,46271,84,5,"2018-12-17T20:52:00.000Z","5.0.25","4.8","5.3",[4,20,21],"shortcodes","widgets","https:\u002F\u002Fthemehybrid.com\u002Fplugins\u002Fseries","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fseries.2.0.1.zip",63,1,"2025-12-31 00:00:00","2026-03-15T15:16:48.613Z",[29],{"id":30,"url_slug":31,"title":32,"description":33,"plugin_slug":4,"theme_slug":34,"affected_versions":35,"patched_in_version":34,"severity":36,"cvss_score":37,"cvss_vector":38,"vuln_type":39,"published_date":26,"updated_date":40,"references":41,"days_to_patch":34},"CVE-2025-62759","series-authenticated-contributor-stored-cross-site-scripting","Series \u003C= 2.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Series plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.0.1","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2026-01-05 18:36:10",[42],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F935b5620-40d8-40ef-99f3-260e6f49f84c?source=api-prod",{"slug":44,"display_name":7,"profile_url":8,"plugin_count":45,"total_installs":46,"avg_security_score":47,"avg_patch_time_days":48,"trust_score":49,"computed_at":50},"greenshady",33,33530,87,30,85,"2026-04-04T03:37:44.974Z",[52,77,98,120,143],{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":62,"num_ratings":25,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":71,"download_link":72,"security_score":73,"vuln_count":74,"unpatched_count":75,"last_vuln_date":76,"fetched_at":27},"apollo13-framework-extensions","Apollo13 Framework Extensions","1.9.9","apollo13themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fapollo13themes\u002F","\u003Cp>\u003Cstrong>Apollo13 Framework Extensions\u003C\u002Fstrong> adds few features to themes build on Apollo13 Framework. These are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Designs Importer,\u003C\u002Fli>\n\u003Cli>shortcodes based on Apollo13 Framework features: writtng effect, count down, socials, scroller, slider, galleries, post grid,\u003C\u002Fli>\n\u003Cli>support for WPBakery Page Builder elements added by Apollo13 Framework,\u003C\u002Fli>\n\u003Cli>custom post types: albums, works & people,\u003C\u002Fli>\n\u003Cli>Export\u002FImport of theme options,\u003C\u002Fli>\n\u003Cli>Custom Sidebar,\u003C\u002Fli>\n\u003Cli>Custom CSS,\u003C\u002Fli>\n\u003Cli>Meta options that are creating content for posts, pages, albums and works,\u003C\u002Fli>\n\u003Cli>Responsive Image resizing ,\u003C\u002Fli>\n\u003Cli>Maintenance mode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin requires one of themes build on \u003Cstrong>Apollo13 Framework\u003C\u002Fstrong> theme to be installed.\u003C\u002Fp>\n\u003Cp>It is mostly used for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree\u002F\" rel=\"nofollow ugc\">Rife Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002F\" rel=\"nofollow ugc\">Rife Pro\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits & Copyright\u003C\u002Fh3>\n\u003Ch4>Anime.js, Copyright 2019 Julian Garnier\u003C\u002Fh4>\n\u003Cp>Licenses: MIT\u003Cbr \u002F>\nSource: https:\u002F\u002Fanimejs.com\u002F\u003C\u002Fp>\n","Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.",20000,534616,100,"2025-12-04T08:12:00.000Z","6.5.8","4.7","5.4.0",[68,69,20,70],"custom-post-types","elementor-widgets","wpbakery-page-builder-support","https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapollo13-framework-extensions.zip",95,6,0,"2026-02-18 15:32:44",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":62,"num_ratings":87,"last_updated":88,"tested_up_to":64,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":93,"download_link":94,"security_score":95,"vuln_count":96,"unpatched_count":75,"last_vuln_date":97,"fetched_at":27},"weaverx-theme-support","Weaver Xtreme Theme Support","6.5.1","wpweaver","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpweaver\u002F","\u003Cp>This is the theme support for the Weaver Xtreme Theme. This plugin provides a collection of useful shortcodes and widgets designed to complement the Weaver Xtreme theme. These shortcodes have been selected and developed based on requests and feedback from thousands of users of the Weaver Xtreme and previous versions of Weaver.\u003C\u002Fp>\n\u003Cp>This plugin also provides the Legacy Weaver Xtreme Admin Dashboard interface. The Legacy Admin is an old style interface alternative to the Customizer interface. The Legacy Interface has been updated for compatibility with Weaver Xtreme Version 5, and will automatically update and convert .wxt settings files from Weaver Xtreme 4.\u003C\u002Fp>\n\u003Cp>Includes complete documentation help file. Instructions for using the shortcodes and widgets are in the help file.\u003C\u002Fp>\n\u003Ch4>Shortcodes included\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>[tab_group]\u003C\u002Fstrong> – Display content in a tabbed box.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003C!--YouTube Error: bad URL entered-->\u003C\u002Fstrong> – Show your YouTube videos responsively, and with the capability to use any of the YouTube custom display options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003C!-- vimeo error: not a vimeo video -->\u003C\u002Fstrong> –  Show your Vimeo videos responsively, and with the capability to use any of the Vimeo custom display options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[iframe]\u003C\u002Fstrong> – Quick and easy display of content in an iframe.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[div]\u003C\u002Fstrong>, \u003Cstrong>[span]\u003C\u002Fstrong>, \u003Cstrong>[html]\u003C\u002Fstrong> – Add div, span, and other html to pages\u002Fposts without the need to switch to Text view.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[hide\u002Fshow_if]\u003C\u002Fstrong> – Show or hide content depending upon options: device, page ID, user capability, logged in status.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[bloginfo]\u003C\u002Fstrong> – Display any information available from WordPress bloginfo function.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[user_can]\u003C\u002Fstrong> – Display content base on logged-in user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[site_title]\u003C\u002Fstrong> – Display Site title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[site_tagline]\u003C\u002Fstrong> – Display Site tag line.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Widgets Included\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Weaver 2 Column Text Widget\u003C\u002Fstrong> – Add text into two columns in a widget\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Weaver Per Page Text Widget\u003C\u002Fstrong> – Add a text widget on a per-page basis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Weaver Login\u003C\u002Fstrong> – Simplified login widget\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Licenses\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>The Weaver Xtreme Theme Support plugin is licensed under the terms of the GNU GENERAL PUBLIC LICENSE, Version 2,\u003Cbr \u002F>\nJune 1991. (GPL) The full text of the license is in the license.txt file.\u003C\u002Fli>\n\u003Cli>All images included with this plugin are either original works of the author which\u003Cbr \u002F>\nhave been placed into the public domain, or have been derived from other public domain sources,\u003Cbr \u002F>\nand thus need no license. (This does not include the images provided with any of the\u003Cbr \u002F>\nbelow listed scripts and libraries. Those images are covered by their respective licenses.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin also includes several scripts and libraries that are covered under the terms\u003Cbr \u002F>\nof their own licenses in the listed files in the plugin distribution:\u003C\u002Fp>\n","A useful shortcode and widget collection for Weaver Xtreme",9000,382934,4,"2024-05-31T18:31:00.000Z","6.0","7.2",[20,92,21],"weaver-xtreme-theme","http:\u002F\u002Fweavertheme.com\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fweaverx-theme-support.6.5.1.zip",89,3,"2024-06-04 19:18:53",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":62,"num_ratings":25,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":111,"tags":112,"homepage":116,"download_link":117,"security_score":118,"vuln_count":96,"unpatched_count":25,"last_vuln_date":119,"fetched_at":27},"popularis-extra","Popularis Extra","1.2.10","Themes4WP","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemes4wp\u002F","\u003Cp>Popularis Extra gives you access to demo import for free PopularisWP themes, extra features like widgets, shortcodes or additional Elementor widgets.\u003C\u002Fp>\n\u003Cp>This plugin requires PopularisWP theme to be installed.\u003C\u002Fp>\n\u003Ch3>Supported Themes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis\u002F\" rel=\"ugc\">Popularis\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-ecommerce\u002F\" rel=\"nofollow ugc\">Popularis eCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-verse\u002F\" rel=\"ugc\">Popularis Verse\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-hub\u002F\" rel=\"ugc\">Popularis Hub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-star\u002F\" rel=\"ugc\">Popularis Star\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-writer\u002F\" rel=\"ugc\">Popularis Writer\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-press\u002F\" rel=\"ugc\">Popularis Press\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-fashion\u002F\" rel=\"nofollow ugc\">Popularis Fashion\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-business\u002F\" rel=\"nofollow ugc\">Popularis Business\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Popularis Extra add extra features to Popularis theme like demo import, widgets, shortcodes or Elementor widgets.",8000,225336,"2025-12-03T07:12:00.000Z","6.9.4","4.4","5.6",[113,114,115,20,21],"demo","elementor","import","https:\u002F\u002Fpopulariswp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpopularis-extra.1.2.10.zip",74,"2026-01-28 00:00:00",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":135,"tags":136,"homepage":140,"download_link":141,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":142,"fetched_at":27},"wp-widgets-shortcode","WordPress Widgets Shortcode","1.0.3","Brajesh Singh","https:\u002F\u002Fprofiles.wordpress.org\u002Fsbrajesh\u002F","\u003Cp>The plugin allows you to embed any WordPress Widget area\u002FDynamic Sidebar to your WordPress posts\u003C\u002Fp>\n\u003Cp>What you can do:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use the shortcode to embed widget areas in posts\u003C\u002Fli>\n\u003Cli>Use the shortcode to embed Widget areas in Pages\u003C\u002Fli>\n\u003Cli>The widgets can be embedded anywhere, at the begining of content, middle, bottom or where ever you want. Just put the shortcode there.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please leave a comment here at \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002Fwordpress\u002Fembed-wordpress-widget-areasdynamic-sidebars-in-posts-or-pages-using-simple-shortcodes\u002F\" title=\"Post about this plugin\" rel=\"nofollow ugc\">BuddyDev.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Others\u003C\u002Fh3>\n\u003Cp>For more info, please visit us at \u003Ca href=\"https:\u002F\u002Fbuddydev.com\u002F\" title=\"The best place for all BuddyPress based plugins, themes tutorials\" rel=\"nofollow ugc\">BuddyDev.com\u003C\u002Fa>\u003C\u002Fp>\n","Embed any widget area\u002Fdynamic sidebar to your pages\u002Fposts using the shortcode [dynamic-sidebar id='Your Widget Area\u002FSidebar name']",500,17170,90,8,"2016-05-14T08:01:00.000Z","4.7.32","3.5","",[137,138,139,20,21],"dynamic-sidebar","embed","embed-widgets","http:\u002F\u002Fbuddydev.com\u002Fplugins\u002Fwp-widgets-shortcode\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-widgets-shortcode.1.0.3.zip","2025-09-22 00:00:00",{"slug":144,"name":145,"version":146,"author":147,"author_profile":148,"description":149,"short_description":150,"active_installs":151,"downloaded":152,"rating":62,"num_ratings":153,"last_updated":154,"tested_up_to":133,"requires_at_least":155,"requires_php":135,"tags":156,"homepage":160,"download_link":161,"security_score":49,"vuln_count":75,"unpatched_count":75,"last_vuln_date":34,"fetched_at":27},"shortcodes-in-sidebar","Shortcodes in Sidebar","3.0","Pankaj Anupam","https:\u002F\u002Fprofiles.wordpress.org\u002Fpankajanupam\u002F","\u003Cp>Shortcodes in Sidebar plugin allow shortcodes to execute when used in sidebar text widgets.  All that is needed is to download, install and activate. This is very useful for placing things like contact forms and other shortcode enabled features in sidebars.\u003C\u002Fp>\n","Shortcodes in Sidebar allows shortcodes to execute in sidebars.",400,14783,2,"2017-02-01T15:24:00.000Z","2.5",[157,20,158,159,21],"shortcode","sidebar","sidebars","http:\u002F\u002Fpankajanupam.com\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshortcodes-in-sidebar.zip",{"attackSurface":163,"codeSignals":209,"taintFlows":243,"riskAssessment":244,"analyzedAt":255},{"hooks":164,"ajaxHandlers":197,"restRoutes":198,"shortcodes":199,"cronEvents":208,"entryPointCount":96,"unprotectedCount":75},[165,170,173,178,181,184,188,193],{"type":166,"name":167,"callback":167,"file":168,"line":169},"action","admin_menu","admin\\class-settings.php",39,{"type":166,"name":171,"callback":172,"file":168,"line":24},"admin_init","register_settings",{"type":166,"name":174,"callback":175,"file":176,"line":177},"pre_get_posts","anonymous","inc\\functions-filters.php",15,{"type":166,"name":179,"callback":175,"file":180,"line":177},"init","inc\\functions-shortcodes.php",{"type":166,"name":179,"callback":175,"priority":182,"file":183,"line":177},9,"inc\\functions-taxonomies.php",{"type":185,"name":186,"callback":175,"priority":14,"file":183,"line":187},"filter","term_updated_messages",18,{"type":166,"name":189,"callback":190,"priority":153,"file":191,"line":192},"plugins_loaded","i18n","series.php",154,{"type":166,"name":194,"callback":195,"file":191,"line":196},"widgets_init","register_widgets",157,[],[],[200,203,206],{"tag":201,"callback":175,"file":180,"line":202},"series_list_posts",26,{"tag":204,"callback":175,"file":180,"line":205},"series_list_related",27,{"tag":207,"callback":175,"file":180,"line":48},"the-series",[],{"dangerousFunctions":210,"sqlUsage":211,"outputEscaping":213,"fileOperations":75,"externalRequests":75,"nonceChecks":75,"capabilityChecks":75,"bundledLibraries":242},[],{"prepared":75,"raw":75,"locations":212},[],{"escaped":214,"rawEcho":215,"locations":216},66,11,[217,221,223,226,228,230,232,234,236,238,240],{"file":218,"line":219,"context":220},"inc\\template-general.php",51,"raw output",{"file":218,"line":222,"context":220},159,{"file":224,"line":225,"context":220},"inc\\widgets\\class-list-posts.php",76,{"file":224,"line":227,"context":220},80,{"file":224,"line":229,"context":220},86,{"file":224,"line":231,"context":220},165,{"file":233,"line":13,"context":220},"inc\\widgets\\class-list-related.php",{"file":233,"line":235,"context":220},88,{"file":233,"line":237,"context":220},91,{"file":233,"line":239,"context":220},94,{"file":233,"line":241,"context":220},161,[],[],{"summary":245,"deductions":246},"The 'series' v2.0.1 plugin exhibits a generally good security posture in its static analysis, with no identified dangerous functions, raw SQL queries, file operations, or external HTTP requests. The high percentage of properly escaped output (86%) is a positive indicator. However, the complete absence of nonce and capability checks across all identified entry points (shortcodes) is a significant concern, leaving them potentially vulnerable to unauthorized actions or data manipulation if the shortcode's functionality involves sensitive operations.\n\nThe vulnerability history reveals a concerning pattern of past security issues. The presence of one known, currently unpatched medium-severity CVE, specifically related to Cross-site Scripting (XSS), indicates a historical tendency for input sanitization or output escaping flaws. While the static analysis shows good output escaping for the current version, the past XSS vulnerability, which is still unpatched, strongly suggests a residual risk that could be exploited if the vulnerability has not been addressed within the plugin's core functionality or if the patch is not applied.\n\nIn conclusion, while the current code appears to follow some good security practices, the lack of authentication and authorization checks on its shortcodes and the unpatched historical vulnerability present significant risks. The plugin has strengths in its handling of SQL and file operations, but these are overshadowed by the potential for exploitation through its exposed entry points and the existing, unpatched security flaw.",[247,249,251,253],{"reason":248,"points":187},"Unpatched medium severity CVE",{"reason":250,"points":177},"No nonce checks on entry points",{"reason":252,"points":177},"No capability checks on entry points",{"reason":254,"points":87},"Some output not properly escaped","2026-03-16T18:39:08.114Z",{"wat":257,"direct":272},{"assetPaths":258,"generatorPatterns":269,"scriptPaths":270,"versionParams":271},[259,260,261,262,263,264,265,266,267,268],"\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Fwidgets\u002Fclass-list-posts.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Fwidgets\u002Fclass-list-related.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Fadmin\u002Fclass-settings.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ffunctions-filters.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ffunctions-options.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ffunctions-rewrite.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ffunctions-shortcodes.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ffunctions-taxonomies.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ffunctions-deprecated.php","\u002Fwp-content\u002Fplugins\u002Fseries\u002Finc\u002Ftemplate-general.php",[],[],[],{"cssClasses":273,"htmlComments":274,"htmlAttributes":275,"restEndpoints":276,"jsGlobals":277,"shortcodeOutput":278},[],[],[],[],[],[279,280,281],"[series_list_posts]","[series_list_related]","[the-series]"]