[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJS9KeULluqN91kvyXxtYCA_1NP2nYPD5D5haB1HV44M":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":21,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":34,"analysis":124,"fingerprints":175},"single-photo","Single Photo","0.0.3","V.J.Catkick","https:\u002F\u002Fprofiles.wordpress.org\u002Fvjcatkick-1\u002F","\u003Cp>A photo image on your sidebar with fancy film like frame. You can bring recent photo from your blogs. The photo source should be WordPress -based blog with default-based theme.\u003C\u002Fp>\n","Display one single photo from your WordPress blog or another WordPress-based blog on your sidebar with fancy \"film like\" frame.",10,4013,0,"","2.6.3","2.5",[18,19,20],"image","photo","sidebar","http:\u002F\u002Fwww.vjcatkick.com\u002F?page_id=3860","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsingle-photo.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":11,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"vjcatkick-1",110,88,30,86,"2026-04-05T02:05:21.882Z",[35,56,75,94,110],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":23,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":14,"tags":49,"homepage":52,"download_link":53,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":55},"webdoone-simple-image-widget","Webdoone Simple Image Widget","1.1.2","webdoone","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebdoone\u002F","\u003Cp>\u003Cstrong>Webdoone Simple Image Widget\u003C\u002Fstrong> is a really simple to use plugin which adds new widget to your widgets section. You can use it in every widget area available on your website. The main purpose for this widget is to place any image you want.\u003C\u002Fp>\n\u003Cp>Besides the image you can also add title, description and link. You have also the possibility to choose the size of your image from the list of registered sizes within any WordPress theme.\u003C\u002Fp>\n\u003Cp>Check it out in action \u003Ca href=\"http:\u002F\u002Fwebdoone.com\u002Fruby-gaming\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n","A simpe and easy way to place an image in your any widget area.",70,4860,1,"2016-08-25T10:06:00.000Z","4.6.30","4.4",[18,50,19,20,51],"image-widget","widget","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwebdoone-simple-image-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwebdoone-simple-image-widget.1.1.2.zip",85,"2026-03-15T15:16:48.613Z",{"slug":57,"name":58,"version":16,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":23,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":14,"tags":69,"homepage":73,"download_link":74,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":55},"oms-sidebar-widgets","OMS Sidebar Widgets","Jimmy K.","https:\u002F\u002Fprofiles.wordpress.org\u002Fjklatt86\u002F","\u003Cp>A collection of widgets for displaying maps, images, and\u002For videos in your\u003Cbr \u002F>\nwebsite sidebars.\u003C\u002Fp>\n\u003Ch4>Sidebar Map\u003C\u002Fh4>\n\u003Cp>Maps are powered by the Google Maps API v3. Locations can be automatically\u003Cbr \u002F>\ngeocoded or latitude and longitude coordinates can be specified for more precise\u003Cbr \u002F>\ncontrol. Multiple map locations (pins) are supported.\u003C\u002Fp>\n\u003Ch4>Sidebar Image & Sidebar Video\u003C\u002Fh4>\n\u003Cp>Images and videos play in a \u003Ccode>prettyPhoto\u003C\u002Fcode> lightbox. External images are\u003Cbr \u002F>\nsupported. Videos can be hosted on either YouTube or Vimeo. Viddler is currently\u003Cbr \u002F>\nnot supported.\u003C\u002Fp>\n\u003Ch4>Notes\u003C\u002Fh4>\n\u003Cp>This plugin pairs well with the \u003Ccode>Simple Page Sidebars\u003C\u002Fcode> plugin to allow different\u003Cbr \u002F>\nimages, videos, or maps to be displayed on individual pages.\u003C\u002Fp>\n","A WordPress plugin to display image, video, and\u002For map widgets in the sidebar.",50,6125,5,"2015-05-25T22:46:00.000Z","4.2.39","3.0.1",[18,70,20,71,72],"prettyphoto","video","youtube","http:\u002F\u002Fwww.orbitmedia.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foms-sidebar-widgets.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":23,"num_ratings":45,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":14,"tags":88,"homepage":92,"download_link":93,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":55},"flickr-me","Flickr Me","1.0.6","Erik Ford","https:\u002F\u002Fprofiles.wordpress.org\u002Fwearepixel8\u002F","\u003Cp>With Flickr Me, you can add Flickr feeds, from an individual account or group, to your widget ready areas. Once installed and activated the widget is an easy to manage, out of box solution for displaying a Flickr gallery of images. Each photo, in the feed, will link to its Flickr permalink and you can optionally set to display the title when stacking images.\u003C\u002Fp>\n","Add Flickr feeds to your widget ready areas.",40,6088,"2016-05-02T15:14:00.000Z","4.5.33","3.1",[89,90,91,20,51],"flickr","images","photos","http:\u002F\u002Fheavyheavy.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fflickr-me.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":31,"downloaded":102,"rating":13,"num_ratings":13,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":14,"tags":106,"homepage":108,"download_link":109,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":55},"flickrapi","Flickr API","0.7","David Walker","https:\u002F\u002Fprofiles.wordpress.org\u002Fpolaraction\u002F","\u003Cp>This plugin allows you to easily display Flickr photos on your site and using the Flickr API doesn’t limit you to\u003Cbr \u002F>\nthe standard 20 photos. It supports user, set, favorite, group and public photostreams.\u003C\u002Fp>\n\u003Cp>The plugin is relatively easy to setup and configure via an options panel.\u003Cbr \u002F>\nIt also has support for an image cache located on your server.\u003C\u002Fp>\n\u003Ch3>Feedback and Support\u003C\u002Fh3>\n\u003Cp>For API problems you can visit the plugin page (http:\u002F\u002Fmalton-webdesign.co.uk\u002Fflickrapi)\u003C\u002Fp>\n\u003Ch3>Advanced\u003C\u002Fh3>\n\u003Cp>The plugin also supports a number of parameters, allowing you to have multiple instances across your\u003C\u002Fp>\n\u003Cp>site.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Ccode>'type' => 'user'\u003C\u002Fcode> – The type of Flickr images that you want to show. Possible values: ‘user’, \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>‘favorite’, ‘set’, ‘group’, ‘public’\u003Cbr \u002F>\n2. \u003Ccode>'api' => ''\u003C\u002Fcode> – Optional but the point of the plugin!\u003Cbr \u002F>\n2. \u003Ccode>'tags' => ''\u003C\u002Fcode> – Optional: Can be used with type = ‘user’ or ‘public’, comma separated\u003Cbr \u002F>\n3. \u003Ccode>'set' => ''\u003C\u002Fcode> – Optional: To be used with type = ‘set’\u003Cbr \u002F>\n4. \u003Ccode>'id' => ''\u003C\u002Fcode> – Optional: Your Group or User ID. To be used with type = ‘user’ or ‘group’\u003Cbr \u002F>\n5. \u003Ccode>'do_cache' => false\u003C\u002Fcode> – Enable the image cache\u003Cbr \u002F>\n6. \u003Ccode>'cache_sizes' => array('square')\u003C\u002Fcode> – What are the image sizes we want to cache locally? Possible\u003Cbr \u002F>\nvalues: ‘square’, ‘thumbnail’, ‘small’, ‘medium’\u003Cbr \u002F>\n7. \u003Ccode>'cache_path' => ''\u003C\u002Fcode> – Where the images are saved (server path)\u003Cbr \u002F>\n8. \u003Ccode>'cache_uri' => ''\u003C\u002Fcode> – The URI associated to the cache path (web address)\u003Cbr \u002F>\n9. \u003Ccode>'num_items' => 4\u003C\u002Fcode> – The number of images that you want to display\u003Cbr \u002F>\n10. \u003Ccode>'before_list' => ''\u003C\u002Fcode> – The HTML to print before the list of images\u003Cbr \u002F>\n11. \u003Ccode>'html' => '\u003Ca href=\"%flickr_page%\" title=\"%title%\">\u003Cimg src=\"%image_square%\" alt=\"%title%\">\u003C\u002Fa&>'\u003C\u002Fcode> –\u003C\u002Fp>\n\u003Cp>the code to print out for each image.\u003Cbr \u002F>\n Meta tags available: %flickr_page%, %title%, %image_small%, %image_square%, %image_thumbnail%,\u003C\u002Fp>\n\u003Cp>%image_medium%, %image_large%\u003Cbr \u002F>\n12. \u003Ccode>'default_title' => \"Untitled Flickr photo\"\u003C\u002Fcode> – the default title\u003Cbr \u002F>\n13. \u003Ccode>'after_list' => ''\u003C\u002Fcode> – the HTML to print after the list of images\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Example 1\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode> get_flickrAPI(array('num_items' => 36, \n 'type' => 'group', \n 'tags' => '',\n 'id' => '12325216@N00',\n 'api' => '3370ecbd3e604245581eb4955fd6xxxx')); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This would show the 36 most recent group photos\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Example 2\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode> get_flickrAPI(array('num_items' => 30, \n 'type' => 'user', \n 'tags' => '',\n 'id' => '10529805@N00',\n 'api' => '3370ecbd3e604245581eb4955fd6xxxx')); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This would show the 30 most recent thumbnail sized photos from the specified user’s set.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Example 3\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode> get_flickrAPI(array('num_items' => 30, \n 'type' => 'public', \n 'text' => '',\n 'tags' => '',\n 'api' => '3370ecbd3e604245581eb4955fd6xxxx')); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This would show the 30 most recent photos from all of FLickr.\u003C\u002Fp>\n\u003Ch3>Plugin History\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>0.7 – Change of the Support page to new website\u003C\u002Fli>\n\u003Cli>0.6 – Removed the Large option as FLickr seem to have removed it.\u003C\u002Fli>\n\u003Cli>0.5 – Added search by Text facilty\u003C\u002Fli>\n\u003Cli>0.4 – Debug Option Added \u003C\u002Fli>\n\u003Cli>0.3 – Upgrade bug fix. \u003C\u002Fli>\n\u003Cli>0.2 – Readme.txt updated properly\u003C\u002Fli>\n\u003Cli>0.1 – Beta release (Plugin amended from the original “eightface” flickrRSS plugin\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin is an amended version of flickrRSS by \"eightface\". As well as allowing you to integrate Flickr photos into your site, supportin …",10412,"2012-04-24T16:05:00.000Z","3.3.2","2.6",[107,89,90,91,20],"api","http:\u002F\u002Fmalton-webdesign.co.uk\u002FflickrAPI\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fflickrapi.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":11,"downloaded":118,"rating":13,"num_ratings":13,"last_updated":119,"tested_up_to":120,"requires_at_least":16,"requires_php":14,"tags":121,"homepage":14,"download_link":123,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":55},"ipad-widget","iPad-Widget","1.2","Aaron Kittredge","https:\u002F\u002Fprofiles.wordpress.org\u002Fkittyridge\u002F","\u003Cp>Using this widget you can easily place the iPad containing an image of the cover of the book you are reading in the sidebar. You can also specify a URL to link to when clicking on the book cover image. Supports multiple instances, so you can use it multiple times in multiple sidebars. (adapted from the Simple Image Widget)\u003C\u002Fp>\n\u003Cp>Once the plugin is enabled, the widget will be available in your widgets list as “iPad Widget”. You can add this widget to sidebars as many times as you need. The control interface allows you to specify the following options for each instance of the widget:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Image URL: The full URL to the image file\u003C\u002Fli>\n\u003Cli>Alternate Text: Shown by the browser if image cannot be displayed\u003C\u002Fli>\n\u003Cli>Link URL: URL to open when the book cover image is clicked on (optional)\u003C\u002Fli>\n\u003Cli>Open link in new window: If this is checked, the above link URL will open in a new browser window\u003C\u002Fli>\n\u003C\u002Ful>\n","The simple way to show what your reading on your iPad or e-reader.",3562,"2010-04-03T22:39:00.000Z","2.9.2",[18,19,122,20,51],"picture","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fipad-widget.zip",{"attackSurface":125,"codeSignals":137,"taintFlows":160,"riskAssessment":161,"analyzedAt":174},{"hooks":126,"ajaxHandlers":133,"restRoutes":134,"shortcodes":135,"cronEvents":136,"entryPointCount":13,"unprotectedCount":13},[127],{"type":128,"name":129,"callback":130,"file":131,"line":132},"action","plugins_loaded","widget_single_photo_init","widget_single_photo.php",213,[],[],[],[],{"dangerousFunctions":138,"sqlUsage":139,"outputEscaping":141,"fileOperations":45,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":159},[],{"prepared":13,"raw":13,"locations":140},[],{"escaped":13,"rawEcho":142,"locations":143},7,[144,147,149,151,153,155,157],{"file":131,"line":145,"context":146},159,"raw output",{"file":131,"line":148,"context":146},160,{"file":131,"line":150,"context":146},161,{"file":131,"line":152,"context":146},193,{"file":131,"line":154,"context":146},194,{"file":131,"line":156,"context":146},195,{"file":131,"line":158,"context":146},200,[],[],{"summary":162,"deductions":163},"The 'single-photo' plugin v0.0.3 exhibits a concerning security posture despite a lack of recorded vulnerabilities and a seemingly small attack surface. The static analysis reveals that 100% of its outputs are not properly escaped. This represents a significant risk, as unsanitized output can lead to Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into web pages viewed by users. Furthermore, the absence of any capability checks or nonce checks on its entry points, though currently limited in number, means that any future expansion of the plugin's functionality without proper authorization checks could introduce serious security flaws. The presence of file operations without explicit security considerations also warrants caution. While the plugin has no recorded CVEs, the poor output escaping practices are a clear indicator of potential underlying security weaknesses that could be exploited.",[164,167,169,172],{"reason":165,"points":166},"0% of outputs properly escaped",15,{"reason":168,"points":11},"No capability checks found",{"reason":170,"points":171},"No nonce checks found",8,{"reason":173,"points":65},"File operations without explicit security","2026-03-16T23:30:03.424Z",{"wat":176,"direct":183},{"assetPaths":177,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[178,179],"\u002Fwp-content\u002Fplugins\u002Fsingle-photo\u002Fimageback_v.jpg","\u002Fwp-content\u002Fplugins\u002Fsingle-photo\u002Fimageback_h.jpg",[],[],[],{"cssClasses":184,"htmlComments":186,"htmlAttributes":187,"restEndpoints":190,"jsGlobals":191,"shortcodeOutput":192},[185],"widget_single_photo",[],[188,189],"id=\"photof\"","id=\"widget_single_photo\"",[],[],[]]