[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fgpBArufxhgSc3OSdJoPqnxMo3ZPzrT3Fz7qBAEoYdIU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":128,"fingerprints":164},"show-pending-comments-count","Show Pending Comments Count","1.3","Kónståntîn český คำถาม 問題和答案 Поделитьс","https:\u002F\u002Fprofiles.wordpress.org\u002Fcode2coffee\u002F","\u003Cp>\u003Cstrong>NOTE: This plugin is deprecated as of WordPress 4.3, which now includes a display of the count of pending comments alongside the regular count of comments. And it does so in a more aesthetically pleasing fashion than this plugin ever did, so if you are using WP 4.3 or later, there’s no need to use this plugin. In fact, it won’t do anything for you if you try to use it. The plugin is still fully functional for WP 4.2 and earlier.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, in the admin listing of posts, each post has its count of approved comments displayed within a word bubble. If you hover over a comment count, the tooltip hover text indicates the number of pending comments. This plugin utilizes JavaScript to change the post listings so that the pending comments count is displayed next to the approved comments count inside the same word bubble (though with a separator).\u003C\u002Fp>\n\u003Cp>The pending comments count will appear next to post comment counts in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The “Posts” listing of posts (formerly called “Edit Posts”)\u003C\u002Fli>\n\u003Cli>The “Pages” listing of pages (formerly called “Edit Pages”)\u003C\u002Fli>\n\u003Cli>The “Comments” listing of comments (formerly called “Edit Comments”)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin will only function for users in the admin who have JavaScript enabled.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fshow-pending-comments-count\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshow-pending-comments-count\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Filters\u003C\u002Fh3>\n\u003Cp>The plugin is further customizable via two filters. Typically, these customizations would be put into your active theme’s functions.php file, or used by another plugin.\u003C\u002Fp>\n\u003Ch4>c2c_show_pending_comments_count_column_width\u003C\u002Fh4>\n\u003Cp>The ‘c2c_show_pending_comments_count_column_width’ filter allows you to customize the column width used for the comment column when pending comments are also being displayed. The WP default is “4em”, which is not sufficient to display a possible 3 digits for approved comments in addition to a possible 2 digits in pending comments. The default defined by the plugin is “5em” which should handle most cases sufficiently. Use the filter if you want to change the width.\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>$comment_column_width (string): The width of the comment column. Default is “5em”. Express as a width measurement recognized by CSS.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\n\u002F\u002F Make it even wider\nfunction my_c2c_show_pending_comments_count_column_width( $comment_column_width ) {\n    return '6em';\n}\nadd_filter( 'c2c_show_pending_comments_count_column_width', 'my_c2c_show_pending_comments_count_column_width' );\n?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>c2c_show_pending_comments_count_separator\u003C\u002Fh4>\n\u003Cp>The ‘c2c_show_pending_comments_count_separator’ filter allows you to specify the character used as the separator between the count of approved comments and the count of pending comments. By default this is ‘ • ‘ (a bullet, with space on either side).\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>$separator (string): The character or string to be used as the separator. By default this is ‘ • ‘ (note space of either side).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Display the pending comments count next to the approved comments count in the admin listing of posts.",10,4067,0,"2015-08-08T06:42:00.000Z","4.2.39","2.6","",[19,20,21,22,23],"admin","coffee2code","comments","edit-posts","pending-comments","http:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fshow-pending-comments-count\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-pending-comments-count.1.3.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"code2coffee",1,30,84,"2026-04-04T15:13:53.753Z",[37,58,77,95,109],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":11,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":32,"unpatched_count":13,"last_vuln_date":57,"fetched_at":28},"one-click-close-comments","One Click Close Comments","3.0","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>From the admin listing of posts (‘Edit Posts’) and pages (‘Edit Pages’), a user can close or open comments to any posts to which they have sufficient privileges to make such changes (essentially admins and post authors for their own posts). This is done via an AJAX-powered color-coded indicator. The color-coding gives instant feedback on the current status of the post for comments: green means the post\u002Fpage is open to comments, red means the post\u002Fpage is closed to comments. Being AJAX-powered means that the change is submitted in the background after being clicked without requiring a page reload.\u003C\u002Fp>\n\u003Cp>This plugin will only function for administrative users in the admin who have JavaScript enabled.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fone-click-close-comments\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fone-click-close-comments\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fone-click-close-comments\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Developer Documentation\u003C\u002Fh3>\n\u003Cp>Developer documentation can be found in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fone-click-close-comments\u002Fblob\u002Fmaster\u002FDEVELOPER-DOCS.md\" rel=\"nofollow ugc\">DEVELOPER-DOCS.md\u003C\u002Fa>. That documentation covers the hooks provided by the plugin.\u003C\u002Fp>\n\u003Cp>As an overview, these are the hooks provided by the plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>c2c_one_click_close_comments_click_char\u003C\u002Fcode> : Filter to customize the character, string, or markup used as the indicator used to toggle a post’s comment status.\u003C\u002Fli>\n\u003C\u002Ful>\n","Conveniently close or open comments for a post or page with one click from the admin listing of posts.",6000,159941,98,"2025-04-17T20:29:00.000Z","6.8.5","4.7",[19,20,52,21,53],"comment","status","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fone-click-close-comments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fone-click-close-comments.3.0.zip",99,"2024-07-26 13:12:00",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":34,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":17,"tags":72,"homepage":75,"download_link":76,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"relative-url","Relative URL","0.1.8","Sparanoid","https:\u002F\u002Fprofiles.wordpress.org\u002Fsparanoid\u002F","\u003Cp>Relative URL applies the \u003Ccode>wp_make_link_relative\u003C\u002Fcode> function to links (posts, categories, pages, etc.) to convert them to relative URLs. Useful for developers when debugging local WordPress instance on a mobile device (iPad, iPhone, etc.).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notice\u003C\u002Fstrong>: This plugin SHOULD be used for local development only. I haven’t tested on a production environment; it \u003Cstrong>may\u003C\u002Fstrong> work with some issues, like unwanted URLs in RSS feed or sharing URLs are replaced with relative URLs, etc.\u003C\u002Fp>\n\u003Cp>More information please visit my \u003Ca href=\"https:\u002F\u002Fsparanoid.com\u002Fwork\u002Frelative-url\u002F\" rel=\"nofollow ugc\">site\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>http:\u002F\u002Flocalhost:8080\u002Fwp\u002F\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Will be converted to:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002Fwp\u002F\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>And..\u003C\u002Fp>\n\u003Cpre>\u003Ccode>http:\u002F\u002Flocalhost:8080\u002Fwp\u002F2012\u002F09\u002F01\u002Fhello-world\u002F\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Will be converted to:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002Fwp\u002F2012\u002F09\u002F01\u002Fhello-world\u002F\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>And..\u003C\u002Fp>\n\u003Cpre>\u003Ccode>http:\u002F\u002Flocalhost:8080\u002Fwp\u002Fwp-content\u002Fthemes\u002Ftwentyeleven\u002Fstyle.css\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Will be converted to:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002Fwp\u002Fwp-content\u002Fthemes\u002Ftwentyeleven\u002Fstyle.css\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Then after activating this plugin, you can simply access your local instance using \u003Ccode>http:\u002F\u002F10.0.1.5:8888\u002Fwp\u002F\u003C\u002Fcode> on your iPad or other mobile devices without having styles and navigation issue.\u003C\u002Fp>\n","Relative URL applies wp_make_link_relative function to links to convert them to relative URLs.",3000,108283,26,"2021-08-11T18:45:00.000Z","5.8.13","2.1.0",[19,73,52,21,74],"administration","content","https:\u002F\u002Fsparanoid.com\u002Fwork\u002Frelative-url\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frelative-url.0.1.8.zip",{"slug":78,"name":79,"version":80,"author":41,"author_profile":42,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":49,"requires_at_least":88,"requires_php":17,"tags":89,"homepage":93,"download_link":94,"security_score":85,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"force-admin-color-scheme","Force Admin Color Scheme","2.1","\u003Cp>Though it is typically an individually configurable aspect of WordPress, there are times when forcing a single admin color scheme upon all users of a site can be warranted, such as to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Provide a unique backend color scheme for multiple sites used by the same set of users to reinforce the difference between the sites.\u003C\u002Fli>\n\u003Cli>Clearly denote backend differences between a production and staging\u002Ftest instance of a site. Especially given that in this situation with the same plugins active and often the same data present, it can be easy to get mixed up about what site you’re actually on.\u003C\u002Fli>\n\u003Cli>Force a site brand-appropriate color scheme.\u003C\u002Fli>\n\u003Cli>Crush the expression of individuality under your iron fist.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Additionally, the plugin removes the “Admin Color Scheme” profile setting from users who don’t have the capability to set the admin color scheme globally since being able to set its value gives them the false impression that it may actually apply.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fforce-admin-color-scheme\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fforce-admin-color-scheme\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fforce-admin-color-scheme\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Hooks\u003C\u002Fh3>\n\u003Cp>The plugin is further customizable via one filter. Typically, code making use of filters should ideally be put into a mu-plugin or site-specific plugin (which is beyond the scope of this readme to explain).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>c2c_force_admin_color_scheme (filter)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The ‘c2c_force_admin_color_scheme’ filter allows you to set or override the forced admin color scheme. Use of the constant (“) takes priority over the filtered value, but the filtered value takes priority over the value set via the admin.\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>$color (string): The name of the admin color scheme. If an empty string is returned, then the plugin will behave as if no forced admin color scheme has been defined.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002F**\n * Sets a forced admin color scheme based on user. Admins get one color scheme, whereas everyone else gets another.\n *\n * @param string $color The current forced admin color scheme. Empty string indicates no forced admin color scheme.\n * @return string\n *\u002F\nfunction my_c2c_force_admin_color_scheme( $color ) {\n    return current_user_can( 'manage_options' ) ? 'sunrise' : 'coffee';\n}\nadd_filter( 'c2c_force_admin_color_scheme', 'my_c2c_force_admin_color_scheme' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Force a single admin color scheme for all users of the site.",600,10115,100,2,"2025-04-17T19:49:00.000Z","4.1",[19,90,20,91,92],"admin-colors","color-scheme","staging","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fforce-admin-color-scheme\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fforce-admin-color-scheme.2.1.zip",{"slug":96,"name":97,"version":98,"author":62,"author_profile":63,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":85,"num_ratings":103,"last_updated":104,"tested_up_to":70,"requires_at_least":105,"requires_php":17,"tags":106,"homepage":107,"download_link":108,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"quotmarks-replacer","Quotmarks Replacer","2.6.21","\u003Cp>Quotmarks Replacer disables \u003Ccode>wptexturize\u003C\u002Fcode> function that keeps all quotation marks and suspension points in half-width form. This plugin also works fine with multisite enabled WordPress (aka. WordPress Mu).\u003C\u002Fp>\n\u003Cp>More information please visit my \u003Ca href=\"https:\u002F\u002Fsparanoid.com\u002Fwork\u002Fquotmarks-replacer\u002F\" rel=\"nofollow ugc\">site\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Quotmarks Replacer 通過禁用 \u003Ccode>wptexturize\u003C\u002Fcode> 函數，解決 WordPress 自動將半形的單引號、雙引號和省略號轉換爲全形標點的問題。使後台輸入的標點格式與前台讀者瀏覽的標點格式保持一致。並且對 multisite 多站點（WordPress Mu）有良好的支持\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Reviews（用戶評價）\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>我──一個網絡民工──當然有人會覺得這是謙虛，終於擁有了強悍的標點符號插件──也可能是世界上最棒的！我可以這樣雙引號“”，也可以這樣””，還可以這樣”──無論是哪一樣，都是最自由的表達！ ── 和菜頭\u003C\u002Fp>\n\u003Cp>It’s absolutely amazing. One of my all-time favorites. ── Steve Jobs\u003C\u002Fp>\n\u003Cp>Shut up, Matt. ──  WordPress\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Quotmarks Replacer disables wptexturize function that keeps all quotation marks and suspension points in half-width form.",300,24249,3,"2021-08-11T17:08:00.000Z","1.5",[19,73,52,21,74],"https:\u002F\u002Fsparanoid.com\u002Fwork\u002Fquotmarks-replacer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquotmarks-replacer.2.6.21.zip",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":85,"num_ratings":86,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":17,"tags":122,"homepage":126,"download_link":127,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"nofollow-case-by-case","Nofollow Case by Case","1.5.6","fob","https:\u002F\u002Fprofiles.wordpress.org\u002Ffob\u002F","\u003Cp>For unmodified links Nofollow Case by Case works like a (do)follow plugin for WordPress. It simply removes rel=”nofollow” from your comment links.\u003C\u002Fp>\n\u003Cp>Whenever you get the feeling that one of your comment links might be able to harm your own website reputation, if you think about SEO and found a link that looks a bit like spam but should not be deleted, you can replace nofollow to every single comment link at any time. If you want to replace nofollow for a link like that you simply add \u002Fdontfollow at the end of the link. You can do this for author links in comments as well as for the links you find in the text.\u003C\u002Fp>\n\u003Ch4>This is what the plugin will do automatically:\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>1. Clean up some code:\u003C\u002Fstrong>\u003Cbr \u002F>\nIt tries to remove all variants of rel=”nofollow”, target=”blank” and rel=”external” from comment author links and other links in comments first. A link will become a “real link” no matter if it is a pingback, a trackback or a “real comment”.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Fix semantical incorrectness:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin now applies rel=”external” – but ONLY for external links!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. jQuery functions of Nofollow Case by Case:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>a) The plugin detects rel=”external” in comments and opens those links in a new window.\u003Cbr \u002F>\nNo need for target=”_blank” which would not validate in XMTML. jQuery replacement does.\u003C\u002Fp>\n\u003Cp>b) The plugin tries to correct author urls that could not be fully replaced before.\u003Cbr \u002F>\nThis has something to do with template development. Find more information on this within the FAQ.\u003C\u002Fp>\n\u003Ch4>Add on\u003C\u002Fh4>\n\u003Cp>You can try this \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fnfcbc-seo-plugin-add-on\u002F\" title=\"NFCBC SEO Plugin Add-on\" rel=\"ugc\">NFCBC SEO Plugin ADD-on\u003C\u002Fa> for easier comment management. The plugin is an old one using javascript but still works. I currently do not have the time to rebuild it. A new version should later support Ajax and nonces and on the other hand will not support old versions of WordPress anymore.\u003C\u002Fp>\n\u003Ch4>Alternative Tool\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fnfcbc-seo-light\u002F\" title=\"NFCBC SEO Light\" rel=\"ugc\">NFCBC SEO Light\u003C\u002Fa> could be used alternatively. It suggests “follow” or “nofollow” or “no link” automatically, depending on comments length. This plugin might be updated soon. I personally prefer Nofollow Case by Case.\u003C\u002Fp>\n\u003Ch4>Need more information?\u003C\u002Fh4>\n\u003Cp>I have updated the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fnofollow-case-by-case\u002Ffaq\u002F\" title=\"FAQ for Nofollow Case by Case\" rel=\"ugc\">FAQ for Nofollow Case by Case\u003C\u002Fa> and the German description can be found at the old place as well:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.fob-marketing.de\u002Fmarketing-seo-blog\u002Fwordpress-nofollow-seo-plugin-nofollow-case-by-case.html\" title=\"Nofollow Case by Case SEO Plugin\" rel=\"nofollow ugc\">Deutsche Plugin-Beschreibung auf fob-marketing.de\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.fob-marketing.de\u002Fmarketing-seo-blog\u002Fantworten-zu-nofollow-case-by-case-und-relexternal-nofollow.html\" title=\"FAQ bei fob marketing\" rel=\"nofollow ugc\">Deutsche FAQ auf fob-marketing.de\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contact\u003C\u002Fh3>\n\u003Cp>For further information please send me an \u003Ca href=\"http:\u002F\u002Fwww.fob-marketing.de\u002Ffob\u002Fueber-fob-marketing\u002Ffob-marketing-kontakt\u002F\" title=\"Send an email to Oliver Bockelmann\" rel=\"nofollow ugc\">email\u003C\u002Fa>.\u003C\u002Fp>\n","\"Dofollow\" but Nofollow Case by Case allows you to selectively apply nofollow to your comments as well.",200,38477,"2013-12-10T17:07:00.000Z","3.7.41","2.0",[73,21,123,124,125],"dofollow","links","nofollow","http:\u002F\u002Fwww.fob-marketing.de\u002Fmarketing-blog-184-wordpress-nofollow-seo-plugin-nofollow-case-by-case.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnofollow-case-by-case.1.5.6.zip",{"attackSurface":129,"codeSignals":145,"taintFlows":156,"riskAssessment":157,"analyzedAt":163},{"hooks":130,"ajaxHandlers":141,"restRoutes":142,"shortcodes":143,"cronEvents":144,"entryPointCount":13,"unprotectedCount":13},[131,137],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","admin_head","add_css","show-pending-comments-count.php",89,{"type":132,"name":138,"callback":139,"file":135,"line":140},"admin_print_footer_scripts","add_js",90,[],[],[],[],{"dangerousFunctions":146,"sqlUsage":147,"outputEscaping":149,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":155},[],{"prepared":13,"raw":13,"locations":148},[],{"escaped":13,"rawEcho":86,"locations":150},[151,153],{"file":135,"line":85,"context":152},"raw output",{"file":135,"line":154,"context":152},113,[],[],{"summary":158,"deductions":159},"The 'show-pending-comments-count' plugin v1.3 exhibits a seemingly robust security posture based on the provided static analysis.  There are no identified entry points like AJAX handlers, REST API routes, or shortcodes that are exposed without authentication checks, and no dangerous functions or raw SQL queries were detected. The absence of external HTTP requests and file operations further limits its attack surface.  Furthermore, the vulnerability history is clean, with no recorded CVEs, suggesting a well-maintained or low-impact codebase.\n\nHowever, a significant concern arises from the output escaping. With two total outputs and 0% properly escaped, there's a strong indication of potential Cross-Site Scripting (XSS) vulnerabilities. Any data processed or displayed by this plugin that originates from user input or external sources, without proper sanitization, could be exploited by attackers to inject malicious scripts. While the attack surface is small, this single weakness in output handling represents a notable risk.\n\nIn conclusion, the plugin scores well on attack surface reduction and secure coding practices concerning SQL and function usage. The lack of historical vulnerabilities is a positive sign. The primary and significant weakness lies in the complete lack of output escaping, which demands immediate attention as it presents a clear avenue for XSS attacks. Addressing this single issue would drastically improve the plugin's security.",[160],{"reason":161,"points":162},"Output not properly escaped",8,"2026-03-17T00:56:34.716Z",{"wat":165,"direct":170},{"assetPaths":166,"generatorPatterns":167,"scriptPaths":168,"versionParams":169},[],[],[],[],{"cssClasses":171,"htmlComments":174,"htmlAttributes":175,"restEndpoints":176,"jsGlobals":177,"shortcodeOutput":179},[172,173],"column-comments","post-com-count",[],[],[],[178],"jQuery",[]]