[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGS4aZ4qUV-cqYJAfuzb-8lNDHokZDuJ6haFoiOAaDpE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":52,"analysis":147,"fingerprints":299},"shrinktheweb-website-preview-plugin","ShrinkTheWeb (STW) Website Previews Plugin","2.8.5","puravida1976","https:\u002F\u002Fprofiles.wordpress.org\u002Fpuravida1976\u002F","\u003Cp>This plugin allows any WordPress user to \u003Cstrong>easily add thumbnail previews\u003C\u002Fstrong> of websites right in the content of their posts using a simple \u003Ccode>[stwthumb]http:\u002F\u002Fwww.yourwebsite.com[\u002Fstwthumb]\u003C\u002Fcode> format. Loads of examples are available within the plugin documentation (you’ll see it when you activate the plugin).\u003C\u002Fp>\n\u003Cp>The plugin requires a free or paid account from the thumbnail provider service \u003Ca href=\"https:\u002F\u002Fshrinktheweb.com\u002F\" rel=\"nofollow ugc\">ShrinkTheWeb.com\u003C\u002Fa>. No purchase is required to use the plugin or the free service.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cool Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easily embed web page screenshots anywhere using shortcode!\u003C\u002Fli>\n\u003Cli>So simple to use with TinyMCE shortcode helper!\u003C\u002Fli>\n\u003Cli>Supports caching screenshots locally\u003C\u002Fli>\n\u003Cli>Plenty of examples in the plugin documentation\u003C\u002Fli>\n\u003Cli>Custom screenshot image quality\u003C\u002Fli>\n\u003Cli>Enable mouseover (hover) screenshot previews\u003C\u002Fli>\n\u003Cli>Alt and Title attributes support via shortcodes\u003C\u002Fli>\n\u003Cli>Custom filename option support via shortcode for SEO purposes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Supported ShrinkTheWeb PRO features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Display “Inside Pages” or full URLs (Upgrade required)\u003Cbr \u002F>\n…rather than just the homepage of a domain.\u003C\u002Fli>\n\u003Cli>Full-Length screenshot captures (Upgrade required)\u003C\u002Fli>\n\u003Cli>Custom Size screenshot captures (Upgrade required)\u003C\u002Fli>\n\u003Cli>Custom Browser Resolution (Upgrade required)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Take a look at ShrinkTheWeb for more information \u003Ca href=\"https:\u002F\u002Fshrinktheweb.com\u002F\" title=\"Automated Website Preview Provider\" rel=\"nofollow ugc\">Shrink The Web\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Donate\u003C\u002Fh4>\n\u003Cp>Did this plugin get you out of trouble? Please consider \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=ZBNAT7HJACUAG&lc=US&item_name=ShrinkTheWeb&no_note=0&cn=Add%20special%20instructions%20to%20the%20seller%3a&no_shipping=1&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donateCC_LG%2egif%3aNonHosted\" rel=\"nofollow ugc\">making a small donation\u003C\u002Fa> to thank the developer for their time.\u003C\u002Fp>\n","This plugin accesses the ShrinkTheWeb API to automatically replace special tags in posts with website screenshots, where desired.",70,19716,74,6,"2017-08-04T04:53:00.000Z","4.8.28","2.9","",[20,21,22,23,24],"preview","screenshot","snapshot","thumbnails","website-screenshots","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fshrinktheweb-website-preview-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshrinktheweb-website-preview-plugin.2.8.5.zip",63,1,"2025-09-22 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-58677","shrinktheweb-stw-website-previews-cross-site-request-forgery","ShrinkTheWeb (STW) Website Previews \u003C= 2.8.5 - Cross-Site Request Forgery","The ShrinkTheWeb (STW) Website Previews plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.8.5. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=2.8.5","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-09-26 17:50:46",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F876d81fd-f8fc-481c-b5d6-e071591ac438?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":13,"avg_patch_time_days":49,"trust_score":50,"computed_at":51},2,80,30,76,"2026-04-05T09:56:49.074Z",[53,71,89,114,131],{"slug":54,"name":55,"version":56,"author":7,"author_profile":8,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":28,"last_updated":62,"tested_up_to":16,"requires_at_least":63,"requires_php":18,"tags":64,"homepage":18,"download_link":68,"security_score":69,"vuln_count":70,"unpatched_count":70,"last_vuln_date":37,"fetched_at":30},"shrinktheweb-refresh-all","ShrinkTheWeb Refresh All","1.3.1","\u003Cp>This plugin works with the Directorypress theme, WP-Portfolio plugin, and\u002For with the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshrinktheweb-website-preview-plugin\u002F\" rel=\"ugc\">STW WordPress plugin\u003C\u002Fa>.\u003Cbr \u002F>\nIt refreshes all the thumbnails at once with the option to schedule the refresh action in selected intervals or immmediately.\u003Cbr \u002F>\nIt also allows the users to clear the cache immediately.\u003C\u002Fp>\n\u003Ch4>Donate\u003C\u002Fh4>\n\u003Cp>Did this plugin get you out of trouble? Please consider \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=ZBNAT7HJACUAG&lc=US&item_name=ShrinkTheWeb&no_note=0&cn=Add%20special%20instructions%20to%20the%20seller%3a&no_shipping=1&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donateCC_LG%2egif%3aNonHosted\" rel=\"nofollow ugc\">making a small donation\u003C\u002Fa> to thank the developer for their time.\u003C\u002Fp>\n","Refresh all the STW shrinktheweb.com screenshots at once",10,1806,100,"2017-03-28T06:37:00.000Z","3.1",[65,66,67,23,24],"previews","recapture","schedule","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshrinktheweb-refresh-all.zip",85,0,{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":70,"downloaded":79,"rating":70,"num_ratings":70,"last_updated":80,"tested_up_to":81,"requires_at_least":82,"requires_php":18,"tags":83,"homepage":18,"download_link":88,"security_score":69,"vuln_count":70,"unpatched_count":70,"last_vuln_date":37,"fetched_at":30},"auto-social-media-screenshot-preview","Auto Social-Media Screenshot Preview","1.0.4","kobosil","https:\u002F\u002Fprofiles.wordpress.org\u002Fkobosil\u002F","\u003Cp>Use our simple plugin to display aesthetic thumbnails of your web presence on social media (Facebook, Twitter, LinkedIn, Telegram and co.).\u003Cbr \u002F>\nEvery time a user shares a URL of your website, an updated screenshot will be displayed.\u003Cbr \u002F>\nThe rendering of the screenshot is performed by our Screenshot Cluster, which supports all current web technologies.\u003Cbr \u002F>\nThis ensures consistent quality and response time for social media crawler queries.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Creates automatic live thumbnails of your pages, which will be displayed in social media.\u003C\u002Fli>\n\u003Cli>Custom thumbnail caching\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin uses technology of \u003Ca href=\"https:\u002F\u002Fscreenshot-capture-api.com\u002F\" rel=\"nofollow ugc\">screenshot-capture-api.com\u003C\u002Fa> that requires prior \u003Ca href=\"https:\u002F\u002Fscreenshot-capture-api.com\u002Fsignup-cover\" rel=\"nofollow ugc\">registration\u003C\u002Fa>.\u003C\u002Fp>\n","Add a unique live social media preview to your web pages. Free for small sites.",932,"2021-10-02T09:38:00.000Z","5.8.13","3.0.1",[84,85,86,87],"open-graph-preview","preview-thumbnails","screenshot-preview","social-media-screenshot","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-social-media-screenshot-preview.zip",{"slug":90,"name":91,"version":92,"author":93,"author_profile":94,"description":95,"short_description":96,"active_installs":97,"downloaded":98,"rating":99,"num_ratings":100,"last_updated":101,"tested_up_to":102,"requires_at_least":18,"requires_php":18,"tags":103,"homepage":109,"download_link":110,"security_score":111,"vuln_count":112,"unpatched_count":70,"last_vuln_date":113,"fetched_at":30},"wp-links-page","WP Links Page","5.0","Rico Macchi","https:\u002F\u002Fprofiles.wordpress.org\u002Frico-macchi\u002F","\u003Ch4>Dynamic Links with Live Screenshots for your WordPress Website\u003C\u002Fh4>\n\u003Cp>A WordPress plugin that allows you to create a dynamic link gallery with screenshots of each link. It will automatically create screenshots of each link and save you from creating a hardcoded links page or finding images for each site. It allows sites to create link displays with several different views. The screenshots for the links can be updated on a set schedule or with the click of a button. Links can be added and edited in the same way you add and edit posts.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create a dynamic link gallery with screenshots of each link.\u003C\u002Fli>\n\u003Cli>Links can be displayed in a grid or list with title and description.\u003C\u002Fli>\n\u003Cli>Screenshots can be updated on schedule or on command.\u003C\u002Fli>\n\u003Cli>A shortcode is provided to showcase your links anywhere on your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Build Awesome Websites\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Links can be added, and edited in the same way you add posts or pages.\u003C\u002Fli>\n\u003Cli>The link sceenshots give you the opportunity to showcase your content.\u003C\u002Fli>\n\u003Cli>The shortcode options gives you a way to display your links wherever you want them.\u003C\u002Fli>\n\u003Cli>Set the number of columns for your grid from two to six columns.\u003C\u002Fli>\n\u003Cli>Your choice of the screenshot refresh rate: Twice Daily, Daily, Every two days, Weekly, Monthly.\u003C\u002Fli>\n\u003Cli>Customize your link titles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>We are here help answer any questions. Please contact us at \u003Ca href=\"http:\u002F\u002Fwww.wplinkspage.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.wplinkspage.com\u002Fcontact\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch4>Adding and Editing Links\u003C\u002Fh4>\n\u003Cp>Visit the All Links section of the dashboard to add and edit the links.\u003C\u002Fp>\n\u003Cp>Add links by entering the Link URL, description, and generating a screenshot. Click Publish to create your link.\u003C\u002Fp>\n\u003Cp>You may edit the link or description with the edit button, make sure you click save to keep your changes.\u003C\u002Fp>\n\u003Cp>Clicking the ‘Update Screenshots’ button on the this page can take several minutes depending on your connection. Please be patient while it retrieves new images. If for some reason it does not automatically refresh when completed, simply refresh the page to see the new images.\u003C\u002Fp>\n\u003Ch4>Settings\u003C\u002Fh4>\n\u003Cp>Visit the Settings page in the WP Links Page section to set the timeframe to retrieve new screenshots and set the screenshot size.\u003C\u002Fp>\n\u003Cp>You can also import links from previous versions on this screen.\u003C\u002Fp>\n\u003Cp>Options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Screenshot refresh rate: Twice Daily, Daily, Every two days, Weekly, Every two Weeks, Monthly.\u003C\u002Fli>\n\u003Cli>Screenshot Size: 320px or 1200px.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcode\u003C\u002Fh4>\n\u003Cp>Use this shortcode to add your links anywhere shortcode is accepted:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[wp_links_page]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This displays all links with the default settings.\u003C\u002Fp>\n\u003Cp>For more detailed documentation there is a help page included with this plugin found under the WP Links Page section in your dashboard.\u003C\u002Fp>\n\u003Ch4>Pro Version Available\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Link Categories and Tags\u003C\u002Fli>\n\u003Cli>Automatic Metadata Import\u003C\u002Fli>\n\u003Cli>Carousel and Compact List Displays.\u003C\u002Fli>\n\u003Cli>Pagination, Load More, and Infinite Scroll\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please visit \u003Ca href=\"http:\u002F\u002Fwww.wplinkspage.com\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.wplinkspage.com\u002F\u003C\u002Fa> for more information on WP Links Page Pro.\u003C\u002Fp>\n\u003Cp>Click here to view a demo of the pro version: \u003Ca href=\"http:\u002F\u002Fwww.wplinkspage.com\u002Fgrid-3-columns\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.wplinkspage.com\u002Fgrid-3-columns\u002F\u003C\u002Fa>\u003C\u002Fp>\n","This plugin allows you to create a dynamic link gallery with screenshots of each link.",4000,123881,92,45,"2025-12-04T11:03:00.000Z","6.9.4",[104,105,106,107,108],"link-directory","link-gallery","link-screenshots","link-thumbnails","links-page","http:\u002F\u002Fwww.wplinkspage.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-links-page.5.0.zip",95,5,"2025-10-10 20:39:51",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":70,"num_ratings":70,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":18,"tags":127,"homepage":129,"download_link":130,"security_score":69,"vuln_count":70,"unpatched_count":70,"last_vuln_date":37,"fetched_at":30},"snap-a-site","Snap A Site","1.2","Babar","https:\u002F\u002Fprofiles.wordpress.org\u002Fibabar\u002F","\u003Cp>Take a snapshot of a website and embed it on your blog post on the fly. No need any screen capture tools, no need any coding.\u003Cbr \u002F>\nJust insert the shortcode, and snapshot will be embed automatically on your post.\u003C\u002Fp>\n\u003Cp>Here is an example: \u003Ccode>[snap url=http:\u002F\u002Fexample.com alt=\"This snapshot has taken by Snap A Site\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>For more details reffer to the User Manual part of the readme.txt file or find \u003Ca href=\"http:\u002F\u002Fen.ibabar.com\u002Fsnap-a-site#manual\" title=\"Find the user manual of Snap A Site on my blog\" rel=\"follow nofollow ugc\">Snap A Site user manual\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Still searcing for something? Just drop a message @ \u003Ca href=\"http:\u002F\u002Fen.ibabar.com\" title=\"Use the contact form on my blog\" rel=\"follow nofollow ugc\">My Blog\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>User Manual\u003C\u002Fh3>\n\u003Cp>It’s easy. Just insert this shortcode in your post: [snap url=http:\u002F\u002Fexample.com]\u003C\u002Fp>\n\u003Cp>Supported parameters for \u003Cstrong>[snap]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>url – URL of the site to take snapshot\u003C\u002Fli>\n\u003Cli>alt – For image alt\u003C\u002Fli>\n\u003Cli>h – For imahe height\u003C\u002Fli>\n\u003Cli>w – For image width\u003C\u002Fli>\n\u003Cli>alt – For image alt\u003C\u002Fli>\n\u003Cli>h – For imahe height\u003C\u002Fli>\n\u003Cli>w – For image width\u003C\u002Fli>\n\u003Cli>title -For link title\u003C\u002Fli>\n\u003Cli>target – For link target\u003C\u002Fli>\n\u003Cli>rel – For link rel\u003C\u002Fli>\n\u003Cli>link – For linking to other site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Have further question? Let me know. Just drop a message @ \u003Ca href=\"http:\u002F\u002Fen.ibabar.com\" title=\"Use the contact form on my blog\" rel=\"follow nofollow ugc\">My Blog\u003C\u002Fa>\u003C\u002Fp>\n","The easiest way to take and embed snapshot of a site on Wordpress blog.",50,3590,"2013-05-24T10:06:00.000Z","3.5.2","3.0",[21,128,22],"shortcode","http:\u002F\u002Fen.ibabar.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsnap-a-site.zip",{"slug":132,"name":133,"version":134,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":139,"downloaded":140,"rating":70,"num_ratings":70,"last_updated":141,"tested_up_to":102,"requires_at_least":142,"requires_php":143,"tags":144,"homepage":18,"download_link":146,"security_score":61,"vuln_count":70,"unpatched_count":70,"last_vuln_date":37,"fetched_at":30},"page-preview","Page Preview","1.1","handyplugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fhandyplugins\u002F","\u003Cp>Page Preview, provides a visual enhancement to your WordPress dashboard by automatically adding screenshot of your published pages directly in the post listings. This feature allows you to see a visual representation of each page without the need to individually open and review them, saving you time and simplifying your workflow.\u003C\u002Fp>\n\u003Ch4>Features 🖼️\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Automatic Screenshots:\u003C\u002Fstrong> Automatically captures and updates screenshots of your pages whenever they are published or updated.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard Integration:\u003C\u002Fstrong> Integrates smoothly into your WordPress dashboard, adding screenshots to your post listings for easy visual management.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Responsive Previews:\u003C\u002Fstrong> Displays responsive screenshots that adapt to the size of your screen, ensuring a consistent viewing experience.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Efficient Content Management:\u003C\u002Fstrong> Helps you quickly identify the pages by their appearance, which is particularly useful for sites with a large number of pages or frequent updates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post Type Support:\u003C\u002Fstrong> Supports custom post types, enabling you to display screenshots for any public type of content on your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Batch Processing:\u003C\u002Fstrong> Supports batch processing from the post listing to generate or update screenshots in bulk, enhancing your productivity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CLI Support:\u003C\u002Fstrong> Offers a CLI command feature for advanced users to manage screenshots generation via command line.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Customization:\u003C\u002Fstrong> Provides a range of customization options to adjust the behavior of the screenshots according to your preferences.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multisite Compatibility:\u003C\u002Fstrong> Fully compatible with WordPress Multisite, allowing you to manage screenshots across multiple sites from a single network.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>“Page Preview” is the perfect tool for content creators, website administrators, and anyone who manages a WordPress site and values efficiency, automation, and responsive design. Install it today to streamline your site management and enhance your productivity.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>This plugin makes HTTP requests to \u003Ccode>https:\u002F\u002Fscreenshot.handyplugins.co\u003C\u002Fcode> to generate screenshots of your pages.\u003C\u002Fp>\n\u003Cp>Our screenshot capturing service requires the URL of the public page to generate screenshots. While we do not collect personal information directly from users, we do record IP addresses and domain names from the servers initiating the requests. This data is used exclusively for rate limiting and to prevent abuse of our service, ensuring fair usage and stability.\u003C\u002Fp>\n\u003Ch4>Contributing & Bug Report\u003C\u002Fh4>\n\u003Cp>Bug reports and pull requests are welcome on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FHandyPlugins\u002Fpage-preview\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Quickly see how each page looks at a glance and manage your site more efficiently.",20,1746,"2025-11-20T12:30:00.000Z","6.0","7.4",[132,145,20,21],"page-screenshot","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpage-preview.1.1.zip",{"attackSurface":148,"codeSignals":227,"taintFlows":285,"riskAssessment":286,"analyzedAt":298},{"hooks":149,"ajaxHandlers":206,"restRoutes":216,"shortcodes":217,"cronEvents":225,"entryPointCount":226,"unprotectedCount":70},[150,156,160,164,168,172,176,181,184,188,192,196,199,203],{"type":151,"name":152,"callback":153,"file":154,"line":155},"action","init","stwwt_load_textdomain","stw-wp-thumbnails.php",52,{"type":151,"name":157,"callback":158,"file":154,"line":159},"admin_menu","STWWT_plugin_mainMenu",67,{"type":151,"name":161,"callback":162,"file":154,"line":163},"admin_head","STWWT_plugin_renameFirstMenuEntry",68,{"type":151,"name":165,"callback":166,"file":154,"line":167},"admin_print_styles","STWWT_plugin_styles_Backend",71,{"type":151,"name":169,"callback":170,"file":154,"line":171},"admin_notices","STWWT_show_thanks_admin_notice",77,{"type":151,"name":173,"callback":174,"file":154,"line":175},"wp_footer","STWWT_plugin_addAutoPopupJS",86,{"type":177,"name":178,"callback":179,"priority":59,"file":154,"line":180},"filter","plugin_action_links","STWWT_add_custom_plugin_actions",97,{"type":151,"name":152,"callback":182,"file":154,"line":183},"STWWT_plugin_init",99,{"type":177,"name":185,"callback":186,"file":154,"line":187},"mce_buttons","register_wpthumb_mce_button",1183,{"type":177,"name":189,"callback":190,"file":154,"line":191},"mce_external_plugins","register_wpthumbtinymce_mce_plugin",1184,{"type":177,"name":193,"callback":194,"priority":59,"file":154,"line":195},"mce_external_languages","mce_wpthumbtinymce_plugin_locale",1185,{"type":151,"name":152,"callback":197,"file":154,"line":198},"setup_wpthumbtinymce_plugin",1188,{"type":151,"name":200,"callback":201,"file":154,"line":202},"admin_footer","wpthumb_account_info_output",1263,{"type":151,"name":152,"callback":204,"file":154,"line":205},"check_stwwt_plugin_version",1295,[207,212],{"action":201,"nopriv":208,"callback":209,"hasNonce":210,"hasCapCheck":208,"file":154,"line":211},false,"wpthumb_account_info_ajax",true,1224,{"action":213,"nopriv":208,"callback":214,"hasNonce":210,"hasCapCheck":208,"file":154,"line":215},"stwwt_dismiss_notice_ajax","stwwt_dismiss_notice_ajax_handler",1284,[],[218,222],{"tag":219,"callback":220,"file":154,"line":221},"thumb","STWWT_shortcode_showThumbnail",91,{"tag":223,"callback":220,"file":154,"line":224},"stwthumb",93,[],4,{"dangerousFunctions":228,"sqlUsage":239,"outputEscaping":247,"fileOperations":226,"externalRequests":240,"nonceChecks":47,"capabilityChecks":240,"bundledLibraries":281},[229,234],{"fn":230,"file":231,"line":232,"context":233},"create_function","wplib\\utils_formbuilder.inc.php",1842,"$filterFunc = create_function('$v', '$filterStr = \"'.$this->name.'_\"; return (substr($v, 0, strlen($",{"fn":235,"file":236,"line":237,"context":238},"unserialize","wplib\\utils_settings.inc.php",121,"return unserialize($rawSettings);",{"prepared":240,"raw":47,"locations":241},3,[242,245],{"file":154,"line":243,"context":244},184,"$wpdb->get_var() with variable interpolation",{"file":154,"line":246,"context":244},1038,{"escaped":248,"rawEcho":249,"locations":250},38,14,[251,254,256,258,260,262,265,268,270,272,274,276,278,279],{"file":154,"line":252,"context":253},105,"raw output",{"file":154,"line":255,"context":253},855,{"file":154,"line":257,"context":253},860,{"file":154,"line":259,"context":253},987,{"file":154,"line":261,"context":253},1241,{"file":263,"line":264,"context":253},"wplib\\utils_easyform.inc.php",412,{"file":266,"line":267,"context":253},"wplib\\utils_pagebuilder.inc.php",69,{"file":266,"line":269,"context":253},110,{"file":266,"line":271,"context":253},119,{"file":266,"line":273,"context":253},125,{"file":266,"line":275,"context":253},156,{"file":266,"line":277,"context":253},216,{"file":266,"line":277,"context":253},{"file":266,"line":280,"context":253},218,[282],{"name":283,"version":37,"knownCves":284},"TinyMCE",[],[],{"summary":287,"deductions":288},"The \"shrinktheweb-website-preview-plugin\" v2.8.5 exhibits a mixed security posture.  The static analysis shows a relatively small attack surface with no immediately apparent unprotected entry points.  However, the presence of dangerous functions like `create_function` and `unserialize` raises significant concerns, as these can be exploited for code execution if not handled with extreme care and input validation.  While the majority of SQL queries use prepared statements and output escaping is generally good, these specific dangerous functions represent a potential backdoor for attackers. The vulnerability history reveals a past medium severity Cross-Site Request Forgery (CSRF) vulnerability, and importantly, one currently unpatched CVE. This pattern suggests a need for more robust security practices to prevent future exploits, especially given the unpatched vulnerability that could still be leveraged.",[289,291,294,296],{"reason":290,"points":139},"Unpatched CVE found",{"reason":292,"points":293},"Use of dangerous function: unserialize",8,{"reason":295,"points":293},"Use of dangerous function: create_function",{"reason":297,"points":59},"Medium severity vulnerability in history","2026-03-16T21:38:01.400Z",{"wat":300,"direct":309},{"assetPaths":301,"generatorPatterns":304,"scriptPaths":305,"versionParams":306},[302,303],"\u002Fwp-content\u002Fplugins\u002Fshrinktheweb-website-preview-plugin\u002Fjs\u002Fstw-script.js","\u002Fwp-content\u002Fplugins\u002Fshrinktheweb-website-preview-plugin\u002Fcss\u002Fstw-style.css",[],[302],[307,308],"shrinktheweb-website-preview-plugin\u002Fjs\u002Fstw-script.js?ver=","shrinktheweb-website-preview-plugin\u002Fcss\u002Fstw-style.css?ver=",{"cssClasses":310,"htmlComments":311,"htmlAttributes":312,"restEndpoints":319,"jsGlobals":320,"shortcodeOutput":330},[],[],[313,314,315,316,317,318],"data-stw-image-width","data-stw-image-height","data-stw-image-url","data-stw-site-url","data-stw-title","data-stw-description",[],[321,322,323,324,325,326,327,328,329],"STWWT_plugin_path","STWWT_THUMBNAIL_WIDTH","STWWT_THUMBNAIL_HEIGHT","STWWT_THUMBNAIL_LINK","STWWT_THUMBNAIL_LINK_TARGET","STWWT_THUMBNAIL_ALT_TEXT","STWWT_THUMBNAIL_IMG_ATTRIBUTES","STWWT_JS_AJAX_URL","STWWT_JS_NONCE",[331,332],"[thumb]","[stwthumb]"]