[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fc42EuN5HRm9NT1soCgOCHV3HKKoOGGZ-8zXWT9OJRRM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":47,"crawl_stats":37,"alternatives":50,"analysis":148,"fingerprints":217},"simple-pull-quote","Simple Pull Quote","1.6.4","llamaman","https:\u002F\u002Fprofiles.wordpress.org\u002Fllamaman\u002F","\u003Cp>Simple Pull Quote WordPress Plugin provides an easy way for you to insert pull quotes into your posts and pages.  It adds an easy-to-use “Pullquote” button to both the HTML and TinyMCE editors.\u003C\u002Fp>\n\u003Cp>IMPORTANT: To use in the new WordPress (Gutenberg) editor, you can either:\u003Cbr \u002F>\n1. \u003Ca href=\"https:\u002F\u002Fps.w.org\u002Fsimple-pull-quote\u002Ftrunk\u002Fscreenshot-4.gif\" rel=\"nofollow ugc\">use the “Classic” block\u003C\u002Fa>.\u003Cbr \u002F>\n2. Use shortcodes such as \u003Ccode>[pullquote class=\"left”]TEXT HERE[\u002Fpullquote]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>See the plugin in action as well as how to use it:\u003Cbr \u002F>\nhttp:\u002F\u002Fyoutu.be\u002FJGudI9gr9iE\u003C\u002Fp>\n\u003C!--YouTube Error: bad URL entered-->\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Select the text that you want to use as your pull quote.\u003C\u002Fli>\n\u003Cli>Click on the “Pullquote” button in either the Visual or HTML editor.\n\u003Cp>For more help on usage, visit the \u003Ca href=\"http:\u002F\u002Fthemightymo.com\u002Fsimple-pull-quote\" title=\"Simple Pull Quote WordPress Plugin\" rel=\"nofollow ugc\">Simple Pull Quote Homepage\u003C\u002Fa> for a visual guide.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>How do I update the look of the pull quotes?\u003C\u002Fh4>\n\u003Cp>To change the look of your pull quotes, open your theme’s “style.css” file and create a CSS class called “simplePullQuotes”.  Edit this class according to your tastes.  \u003Cstrong>IMPORTANT:\u003C\u002Fstrong> Make sure your theme’s “wp_head()” function comes before your theme’s stylesheet or else this won’t work.\u003C\u002Fp>\n\u003Ch4>How do I use more than one pull quote in a single post or page?\u003C\u002Fh4>\n\u003Cp>Simply select the text that you want to use as a pull quote and click the “Pullquote” button in either the visual or html editor.\u003C\u002Fp>\n","The Simple Pull Quote WordPress Plugin provides an easy way for you to insert pull quotes into your posts and pages.",1000,81993,84,10,"2025-11-24T16:35:00.000Z","6.6.5","2.5","7.2.5",[20,21,22,23],"pull-quote","pullquote","quotation","quotes","http:\u002F\u002Fwww.themightymo.com\u002Fsimple-pull-quote","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-pull-quote.zip",99,1,0,"2025-10-23 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":6,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2025-62985","simple-pull-quote-authenticated-contributor-stored-cross-site-scripting","Simple Pull Quote \u003C= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Simple Pull Quote plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.6.3","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-12-11 19:43:13",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F098348de-f6b5-4eab-ae41-2dd32ca951fd?source=api-prod",50,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":46,"trust_score":48,"computed_at":49},87,"2026-04-04T11:38:05.876Z",[51,75,96,114,129],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":72,"download_link":73,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"beautiful-pull-quotes","Beautiful Pull Quotes","1.0","SaiKrishna Mundreti","https:\u002F\u002Fprofiles.wordpress.org\u002Fkrishnasai44\u002F","\u003Cp>Beautiful Pull Quotes is an instant solution to add stylish quotes to your wordpress posts and pages. This plugin has 3 ready-made quote styles available for you. You can also align the quote and add cite text to grab reader\\’s attention.\u003C\u002Fp>\n\u003Cp>** SELECTING QUOTE STYLE **\u003Cbr \u002F>\n1. Go to Your WP Dashboard > Settings > Beautiful PullQuotes\u003Cbr \u002F>\n2. Choose one of the 3 Styles namely Basic \u002F Gradient \u002F Classic\u003C\u002Fp>\n\u003Cp>** INSERTING THE QUOTE **\u003Cbr \u002F>\nOption 1: Use the green colored editor button.\u003Cbr \u002F>\nOption 2: Manually insert the below short code.\u003C\u002Fp>\n\u003Cp>SHORT CODE STRUCTURE\u003C\u002Fp>\n\u003Cp>[beautifulquote align=\\”left\u002Fright\u002Ffull\\” cite=\\”\\”] your pull quote here [\u002Fbeautifulquote]\u003C\u002Fp>\n\u003Cp>Use the above short code anywhere as you want to insert the pull quote.\u003C\u002Fp>\n","Beautiful Pull Quotes Plugin can instantly add stylish quotes to your content with cite and alignment, choose from 3 ready-made styles available.",40,2970,90,2,"2016-07-28T07:53:00.000Z","4.5.33","3.0.1","",[68,69,70,21,71],"block-quotes","easy-pull-quotes","pull-quotes","quote-styles","http:\u002F\u002Ftechcarnival.org\u002Fbeautiful-pull-quotes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbeautiful-pull-quotes.1.0.zip",85,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":65,"requires_php":66,"tags":89,"homepage":94,"download_link":95,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"quote-of-the-day-by-brainyquote","Quote of the Day by BrainyQuote","1.20","brainyquote","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainyquote\u002F","\u003Cp>This plugin lets you add a Quote of the Day widget to your WordPress page. Select your favorite topic – BrainyQuote, Art Quote, Funny Quote, Love Quote or Nature Quote – and famous quotations will automatically appear on your page, every day!\u003C\u002Fp>\n\u003Cp>Can’t decide which topic you like best? No problem! You can place multiple Quote of the Day widgets on your page and enjoy several topic feeds. Our BrainyQuote, Art Quote, Funny Quote, Love Quote and Nature Quote topic feeds contain family-friendly quotes by famous authors that are funny, inspirational, motivational and wise.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.brainyquote.com\" rel=\"nofollow ugc\">BrainyQuote\u003C\u002Fa> is the web’s largest quotation site, and with our huge collection of quotes, you can expect a fresh Quote of the Day that educates, entertains and informs your audience.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Widget allows you to place a Quote of the Day sidebar on your page\u003C\u002Fli>\n\u003Cli>Widget adapts to the theme of your page\u003C\u002Fli>\n\u003Cli>Widget has five different Quote of the Day feeds to choose from\u003C\u002Fli>\n\u003Cli>Plugin allows you to place multiple widgets on your page\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>For more information\u003C\u002Fh4>\n\u003Cp>To learn more about the plugin, visit our \u003Ca href=\"http:\u002F\u002Fwww.brainyquote.com\u002Flink\u002Fwordpress_plugin.html\" rel=\"nofollow ugc\">Brainyquote WordPress Plugin\u003C\u002Fa> page.\u003C\u002Fp>\n","This plugin lets you add a Quote of the Day widget to your WordPress page.",300,19681,68,5,"2020-10-25T00:17:00.000Z","5.5.18",[90,91,92,93,23],"famous-quotes","quotations","quote","quote-of-the-day","https:\u002F\u002Fwww.brainyquote.com\u002Flink\u002Fwordpress_plugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquote-of-the-day-by-brainyquote.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":104,"num_ratings":62,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":66,"tags":109,"homepage":112,"download_link":113,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"quote-of-the-day-and-random-quote","Quote of the Day and Random Quote","1.2","dailyverses","https:\u002F\u002Fprofiles.wordpress.org\u002Fdailyverses\u002F","\u003Cp>This plugins shows a Quote of the Day, or a Random Quote.\u003C\u002Fp>\n\u003Cp>It can be used as a widget, so it’s easy to install. After installing the plugin you will have two widgets: ‘Quote of the Day’ and ‘Random Quote’.\u003C\u002Fp>\n\u003Cp>You can also use the following tags: [quoteoftheday] and [randomquote].\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n","This plugins shows a Quote of the Day, or a Random Quote.",100,10389,"2018-09-08T07:56:00.000Z","4.8.28","2.7.0",[110,91,92,23,111],"daily","widget","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fquote-of-the-day-and-random-quote\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquote-of-the-day-and-random-quote.zip",{"slug":115,"name":116,"version":54,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":61,"downloaded":121,"rating":104,"num_ratings":27,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":66,"tags":125,"homepage":127,"download_link":128,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"nice-quotes-rotator","Nice Quotes Rotator","CodeAndReload","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodeandreload\u002F","\u003Cp>This plugin provides the ability to have randomly selected quotes displayed on the admin page, by using a\u003Cbr \u002F>\nshortcode or by using a sidebar widget. The quotes include user-entered quotes, and can optionally include\u003Cbr \u002F>\nexcerpts from a user-chosen category and can also optionally include links from a user-chosen links category\u003Cbr \u002F>\nThere also is an option for including the lyrics from “Hello Dolly”. The plugin can be used for random\u003Cbr \u002F>\nquotes, rotating testimonials, rotating random affiliate links, or random featured posts. It was inspired by\u003Cbr \u002F>\nthe Hello Dolly plugin (hello.php) that comes bundled with WordPress.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Technical support for this plugin will be provided via the WordPress plugin forum.  Additional support may be\u003Cbr \u002F>\navailable at \u003Ca href=\"http:\u002F\u002Fwww.codeandreload.com\u002Fwp-plugins\u002Fnicequotes\u002F\" title=\"Nice Quotes at Code\nand Reload\">plugin’s homepage\u003C\u002Fa>.\u003C\u002Fp>\n","Allows display of random quotes via shortcode, a sidebar widget, and\u002For on the admin page. Quotes can be user-entered, post excerpts or links.",13413,"2012-10-12T00:48:00.000Z","3.4.2","2.9",[22,91,92,23,126],"random","http:\u002F\u002FCodeAndReload.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnice-quotes-rotator.1.0.zip",{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":139,"num_ratings":140,"last_updated":141,"tested_up_to":142,"requires_at_least":65,"requires_php":143,"tags":144,"homepage":146,"download_link":147,"security_score":74,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"quote-of-the-day-itslum","Quote of the Day – ITslum","3.1","ximrx","https:\u002F\u002Fprofiles.wordpress.org\u002Fximrx\u002F","\u003Cp>Quote of the Day plugin lets you show famous quotation of famous author on your WordPress website, this quotes of the day will change every day. You can select a topic like Relationship Quote, Nature Quote, Health Quote or Quote of the Day – and famous quotations will automatically appear on your website or blog, every day!\u003C\u002Fp>\n\u003Cp>This widget gets Quote of the day from Hearty Tools API. The API is associated with the web’s largest quotation repository, using Hearty Tools’ huge collection of quotations, you can share a fresh Quotation of the Day to educate, entertain and inform your website\u002Fblog visitors.\u003C\u002Fp>\n\u003Cp>You can place one or multiple Quote of the Day widgets on your website\u002Fblog and show quotes from different categories. Hearty Tools’ directory of Nature Quote, Health Quote, Relationship Quote categories contain decent and meaningful quotes of famous authors that are inspirational, motivational and wise.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Plugin lets you display a Quote of the Day field on your website\u002Fblog.\u003C\u002Fli>\n\u003Cli>Plugin adapts to the styling of your site’s active theme.\u003C\u002Fli>\n\u003Cli>Plugin has different Quote categories to choose from.\u003C\u002Fli>\n\u003Cli>Plugin allows you to place multiple widgets anywhere on your page as supported by theme.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>For more information\u003C\u002Fh4>\n\u003Cp>To find more about \u003Ca href=\"https:\u002F\u002Fheartytools.com\u002F\" rel=\"nofollow ugc\">Hearty Tools\u003C\u002Fa> and about this plugin, visit \u003Ca href=\"https:\u002F\u002Fheartytools.com\u002Fguide\u002Fquote-of-the-day-plugin-for-wordpress\u002F\" rel=\"nofollow ugc\">plugin page\u003C\u002Fa> page. This plugin is developed by \u003Ca href=\"https:\u002F\u002Fheartytools.com\u002Fweb-developer\" rel=\"nofollow ugc\">Hearty Tools developmen team\u003C\u002Fa>. You can contact us for any kind of plugin and website development and customization.\u003C\u002Fp>\n","Show a new Quote of the Day to your website visitors with this widget on your WordPress website.",60,16983,80,3,"2022-03-15T07:34:00.000Z","5.9.13","5.4",[90,91,92,93,145],"quotes-rotator","https:\u002F\u002Fheartytools.com\u002Fguide\u002Fquote-of-the-day-plugin-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquote-of-the-day-itslum.zip",{"attackSurface":149,"codeSignals":197,"taintFlows":208,"riskAssessment":209,"analyzedAt":216},{"hooks":150,"ajaxHandlers":179,"restRoutes":180,"shortcodes":181,"cronEvents":196,"entryPointCount":169,"unprotectedCount":28},[151,157,161,165,170,175],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","wp_head","my_css","simple-pull-quote.php",46,{"type":152,"name":158,"callback":159,"file":155,"line":160},"admin_print_scripts","simplePullQuotes",66,{"type":152,"name":162,"callback":163,"file":155,"line":164},"admin_enqueue_scripts","specific_enqueue",69,{"type":152,"name":166,"callback":167,"file":168,"line":169},"init","spq_addbuttons","simple-pull-quote_tinymce.php",4,{"type":171,"name":172,"callback":173,"file":168,"line":174},"filter","mce_external_plugins","add_spq_tinymce_plugin",14,{"type":171,"name":176,"callback":177,"file":168,"line":178},"mce_buttons","register_spq_button",15,[],[],[182,185,188,192],{"tag":21,"callback":183,"file":155,"line":184},"getSimplePullQuote",98,{"tag":92,"callback":186,"file":155,"line":187},"getQuote",113,{"tag":189,"callback":190,"file":155,"line":191},"quote1","getQuote1",123,{"tag":193,"callback":194,"file":155,"line":195},"quote2","getQuote2",135,[],{"dangerousFunctions":198,"sqlUsage":199,"outputEscaping":201,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":62,"bundledLibraries":204},[],{"prepared":28,"raw":28,"locations":200},[],{"escaped":202,"rawEcho":28,"locations":203},8,[],[205],{"name":206,"version":37,"knownCves":207},"TinyMCE",[],[],{"summary":210,"deductions":211},"The simple-pull-quote plugin exhibits a generally strong security posture based on the static analysis. The absence of dangerous functions, raw SQL queries, unescaped output, file operations, and external HTTP requests is commendable. The plugin also correctly utilizes prepared statements for its SQL queries and properly escapes all identified outputs. Furthermore, the integration with TinyMCE is noted as a bundled library, which can sometimes introduce risks if outdated, but no specific issues are highlighted here.\n\nHowever, there are a few areas that warrant attention. The presence of 4 shortcodes represents a notable attack surface. While the analysis states 0 unprotected entry points, the lack of explicit nonce checks for these shortcodes is a potential concern. Historically, the plugin has had one medium-severity CVE related to Cross-Site Scripting, which, although patched, indicates past vulnerabilities in input sanitization or output handling. The fact that the last vulnerability was in the future (2025-10-23) is likely a data error but should be disregarded.\n\nIn conclusion, the plugin demonstrates good coding practices in many areas. The primary concerns revolve around the attack surface presented by shortcodes and the historical precedent of XSS vulnerabilities, even though they are currently patched. Addressing the potential for subtle vulnerabilities in shortcode processing and maintaining vigilance against past issues would further bolster its security.",[212,214],{"reason":213,"points":202},"Shortcode attack surface without nonce checks",{"reason":215,"points":86},"Historical medium severity CVE (XSS)","2026-03-16T18:50:41.445Z",{"wat":218,"direct":229},{"assetPaths":219,"generatorPatterns":223,"scriptPaths":224,"versionParams":225},[220,221,222],"\u002Fwp-content\u002Fplugins\u002Fsimple-pull-quote\u002Fcss\u002Fsimple-pull-quote.css","\u002Fwp-content\u002Fplugins\u002Fsimple-pull-quote\u002Fsimple-pull-quote.js","\u002Fwp-content\u002Fplugins\u002Fsimple-pull-quote\u002Ftinymce3\u002Feditor_plugin.js",[],[221],[226,227,228],"simple-pull-quote\u002Fcss\u002Fsimple-pull-quote.css?ver=","simple-pull-quote\u002Fsimple-pull-quote.js?ver=","simple-pull-quote\u002Ftinymce3\u002Feditor_plugin.js?ver=",{"cssClasses":230,"htmlComments":232,"htmlAttributes":233,"restEndpoints":235,"jsGlobals":236,"shortcodeOutput":237},[231],"simplePullQuote",[],[234],"class",[],[],[238,239,240],"\u003Cdiv class=\"simplePullQuote ","\">","\u003C\u002Fdiv>"]