[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQxUD7vh2KE3zkNG4WGcHSD47ahYz0mTvTNfKfGW9i1Y":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":135,"fingerprints":284},"smart-editor","Smart Editor","0.8.2","wadadanet","https:\u002F\u002Fprofiles.wordpress.org\u002Fwadadanet\u002F","\u003Cp>WYSIWYG(What You See Is What You Get.) HTML5 Editor.\u003Cbr \u002F>\nPlugin which edits a Page directly from a preview screen.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FVVfohIyBaww?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.coffee-break-designs.com\u002Fplugin\u002Fword-press\u002Fsmart-editor\u002F\" title=\"Official site\" rel=\"nofollow ugc\">official site\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>日本語:\u003Cbr \u002F>\n本当のWYSIWYGエディターです。\u003Cbr \u002F>\nだって、プレビュー画面で編集しているんだもん。\u003Cbr \u002F>\n詳しくは\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.coffee-break-designs.com\u002Fplugin\u002Fword-press\u002Fsmart-editor\u002F\" title=\"Official site\" rel=\"nofollow ugc\">official site\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>Since there is no contribution, it cannot develop at all. (TT)\u003C\u002Fp>\n","WYSIWYG(What You See Is What You Get.) HTML5 Editor,",10,3399,100,2,"2014-03-05T06:07:00.000Z","3.7.41","3.6","",[20,21,22,23],"editor","html5","preview","wysiwyg","http:\u002F\u002Fwww.coffee-break-designs.com\u002Fplugin\u002Fword-press\u002Fsmart-editor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmart-editor.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},3,20,30,84,"2026-04-04T17:24:41.313Z",[38,56,78,99,116],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":54,"download_link":55,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"easy-wysiwyg-style","Easy Wysiwyg Style","1.2","jokiruiz","https:\u002F\u002Fprofiles.wordpress.org\u002Fjokioki\u002F","\u003Cp>The Easy Wysiwyg Style plugin allows you to see your styles in the editor in\u003Cbr \u002F>\nreal time. You won’t need to press preview.\u003C\u002Fp>\n\u003Cp>Enhances your Wysiwyg and adds the insert table functionality.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Open Settings -> Easy Wysiwyg Style\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Specify the Context Class name (if exists). The context class name is the\u003Cbr \u002F>\ncss class that wraps the container where you place your Wysiwyg content.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Specify the CSS file location in your theme (style.css , css\u002Fstyle.css)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>From v1.1\u003C\u002Fstrong> It adds the insert table functionality.\u003C\u002Fp>\n\u003Cp>Do you use worpdress admin with an iPad? Don´t worry, this plugin is fully\u003Cbr \u002F>\nadapted for tablets and smartphones.\u003C\u002Fp>\n\u003Cp>\u003Cem>Thank you for downloading! your feedback is well appreciated!\u003C\u002Fem>\u003C\u002Fp>\n","The Easy Wysiwyg Style WordPress plugin makes it even easier to format your content and customize your site. Enhances your Wysiwyg and includes the in &hellip;",400,13910,5,"2015-10-31T16:17:00.000Z","4.3.34","3.0.1",[53],"wysiwyg-editor-style-css-preview","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-wysiwyg-style\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-wysiwyg-style.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"black-studio-tinymce-widget","Black Studio TinyMCE Widget","2.7.3","Black Studio","https:\u002F\u002Fprofiles.wordpress.org\u002Fblack-studio\u002F","\u003Cp>This plugin adds a new \u003Ccode>Visual Editor\u003C\u002Fcode> widget type that allows you to insert rich text and media objects in your sidebars with no hassle. With Black Studio TinyMCE Widget you will be able to edit your widgets in a WYSIWYG manner using the native WordPress TinyMCE editor, just like you do in posts and pages. And if you are a developer you may still switch back and forth from Visual to HTML mode.\u003C\u002Fp>\n\u003Cp>For years the default WordPress text widget has been very basic and it required HTML knowledge to add formatting and images\u002Fmedia to the text. This plugin was born in 2011 to overcome these limitations. After a long time, in June 2017, version 4.8 of WordPress finally introduced a new text widget that included the ability to manage text widgets with the visual editor. The new widget available in WordPress core could now be used as a basic replacement of Black Studio TinyMCE Widget, but the plugin still offers some additional features, so it remains a must-have for advanced users.\u003C\u002Fp>\n\u003Ch4>Basic Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add rich text widgets to your sidebars and edit them using the TinyMCE visual editor\u003C\u002Fli>\n\u003Cli>Switch between Visual mode and HTML mode (including Quicktags toolbar)\u003C\u002Fli>\n\u003Cli>Insert images, videos, and other media from WordPress Media Library\u003C\u002Fli>\n\u003Cli>Insert links to existing WordPress pages\u002Fposts or external resources\u003C\u002Fli>\n\u003Cli>Support for shortcodes, smilies and embed in widget text (including preview)\u003C\u002Fli>\n\u003Cli>Support for the Block-based Widgets Editor introduced with WordPress 5.8\u003C\u002Fli>\n\u003Cli>Support for Customizer with live preview and quick edit\u003C\u002Fli>\n\u003Cli>Support for widgets accessibility mode\u003C\u002Fli>\n\u003Cli>Compatible with multi-site (WordPress networks)\u003C\u002Fli>\n\u003Cli>Compatible with the most common multi-language plugins\u003C\u002Fli>\n\u003Cli>Compatible with Page Builder plugin by SiteOrigin\u003C\u002Fli>\n\u003Cli>Translations available in 20+ languages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Advanced Features\u003C\u002Fh4>\n\u003Cp>These features are what makes this plugin better than the WordPress (4.8+) native widget:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Full featured TinyMCE Visual Editor (the same you have for pages and posts)\u003C\u002Fli>\n\u003Cli>Wide text area for an enhanced editing experience\u003C\u002Fli>\n\u003Cli>Compatible with 3rd party TinyMCE customization plugins (TinyMCE Advanced, WP Edit, …)\u003C\u002Fli>\n\u003Cli>Support for distraction-free (fullscreen) editing mode \u003C\u002Fli>\n\u003Cli>Option to “Automatically add paragraphs” to widget text\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>About the plugin\u003C\u002Fh4>\n\u003Cp>The story of the plugin was featured in a talk at WordCamp Europe 2018 in Belgrade.\u003Cbr \u002F>\nSee the video \u003Ca href=\"https:\u002F\u002Fwordpress.tv\u002F2018\u002F07\u002F11\u002Ffrancesco-canovi-marco-chiesi-once-upon-a-time-there-was-a-plugin\u002F\" rel=\"nofollow ugc\">Once upon a time, there was a plugin…\u003C\u002Fa> on WordPress.tv.\u003C\u002Fp>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.blackstudio.it\u002Fen\u002F\" rel=\"nofollow ugc\">Author’s web site\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.blackstudio.it\u002Fen\u002Fwordpress-plugins\u002Fblack-studio-tinymce-widget\u002F\" rel=\"nofollow ugc\">Plugin’s page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblack-studio-tinymce-widget\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fblack-studio-tinymce-widget\" rel=\"ugc\">Support forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Follow us on \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fblackstudioita\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fblackstudiocomunicazione\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Fblack-studio\" rel=\"nofollow ugc\">LinkedIn\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fblack-studio\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get involved\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Developers can contribute to the source code on our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fblack-studio\u002Fblack-studio-tinymce-widget\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Translators can contribute through the \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fblack-studio-tinymce-widget\" rel=\"nofollow ugc\">Official WordPress Translation platform\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Users can contribute by leaving a 5 stars \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fblack-studio-tinymce-widget#postform\" rel=\"ugc\">review\u003C\u002Fa> or making a \u003Ca href=\"https:\u002F\u002Fwww.blackstudio.it\u002Fen\u002Fwordpress-plugins\u002Fblack-studio-tinymce-widget\u002F\" rel=\"nofollow ugc\">donation\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","The visual editor widget for WordPress.",200000,11110927,96,192,"2026-03-08T20:09:00.000Z","6.9.4","3.1","5.2",[20,73,74,75,23],"tinymce","visual","widget","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblack-studio-tinymce-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblack-studio-tinymce-widget.2.7.3.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":69,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":97,"download_link":98,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"re-add-underline-justify","Re-add text underline and justify","0.4.2","Brice Capobianco","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrikou\u002F","\u003Cp>\u003Cstrong>Works well with the \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"nofollow ugc\">Classic Editor\u003C\u002Fa> plugin, \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fadvanced-custom-fields\u002F\" rel=\"nofollow ugc\">Advanced Custom Fields\u003C\u002Fa> (Free & Pro) and is also compatible with the Gutenberg’s “Classic” bloc.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In WordPress 4.7, the core developper team decided to make various changes in the editor (TinyMce WYSIWYG), including removing the \u003Cstrong>underline and justify buttons\u003C\u002Fstrong> and rearranging some of the toolbar buttons.\u003Cbr \u002F>\nIf you don’t want to change the way you edit your content and\u002For don’t want to confuse your customers with a new contribution interface, this very lightweight plugin will set the editor style back to its previous state (like in WordPress 4.6 and above versions).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>You may change the Editor style from the Writing option page.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>3 options are available for the Editor style:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Without underline & justify buttons\u003C\u002Fli>\n\u003Cli>Default – Re-add underline & justify buttons\u003C\u002Fli>\n\u003Cli>Re-add justify only\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please note, the previous option “Re-add underline & justify + rearrange” has been deprecated in 0.2 (sept. 2018) as it causes conflicts with the new Gutenberg editor. This option automatically switches to “Re-add underline & justify buttons” from now on.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.b-website.com\u002Fre-add-text-underline-and-justify\" title=\"Plugin documentation\" rel=\"nofollow ugc\">DOCUMENTATION\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.b-website.com\u002Fcategory\u002Fplugins-en\" title=\"More plugins by b*web\" rel=\"nofollow ugc\">CHECK OUT MY OTHER PLUGINS\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please ask for help or report bugs if anything goes wrong. It is the best way to make the community benefit!\u003C\u002Fstrong>\u003C\u002Fp>\n","This tiny plugin re-adds the Editor text underline & text justify buttons in the WYSIWYG removed in WordPress 4.7.0",50000,538734,94,26,"2025-11-30T12:40:00.000Z","4.7","5.5.12",[20,94,95,96,23],"gutenberg","justify","underline","https:\u002F\u002Fwww.b-website.com\u002Fre-add-text-underline-and-justify","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fre-add-underline-justify.0.4.2.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":66,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":18,"tags":113,"homepage":114,"download_link":115,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"advanced-tinymce-configuration","Advanced TinyMCE Configuration","1.6","Andrew Ozz","https:\u002F\u002Fprofiles.wordpress.org\u002Fazaozz\u002F","\u003Cp>This plugin is intended for more advanced users that would like to change the default TinyMCE configuration in WordPress.\u003Cbr \u002F>\nIt makes it very easy to add, remove or change all TinyMCE settings for the classic editor and for the classic block in the block editor.\u003C\u002Fp>\n","Set advanced TinyMCE options for the classic block and classic editor.",10000,210369,12,"2023-04-10T23:51:00.000Z","6.6.5","3.9",[20,73,23],"http:\u002F\u002Fwww.laptoptips.ca\u002Fprojects\u002Fadvanced-tinymce-configuration\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-tinymce-configuration.1.6.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":107,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":18,"tags":130,"homepage":133,"download_link":134,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-editor-widget","WP Editor Widget","0.6.0","feedmeastraycat","https:\u002F\u002Fprofiles.wordpress.org\u002Ffeedmeastraycat\u002F","\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> This plugin still works but it doesn’t really contain any major features that the native Text widget is missing. The plugin is no longer in active developement.\u003C\u002Fp>\n\u003Cp>This plugin adds a rich text widget where the content is edited using the standard WordPress visual editor which most users already are familiar with.\u003Cbr \u002F>\nIt uses the WP core function wp_editor() without adding a custom post type post for each widget making the widget quicker and simpler to edit.\u003C\u002Fp>\n\u003Cp>Feel free to help with developement or issue reporting on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffeedmeastraycat\u002Fwp-editor-widget\" rel=\"nofollow ugc\">Github\u003C\u002Fa>!\u003C\u002Fp>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Swedish\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Danish\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fwp-editor-widget\" rel=\"nofollow ugc\">More translations\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Editor Widget adds a rich text widget where the content is edited using the standard WordPress visual editor.",153242,92,18,"2020-11-07T22:20:00.000Z","5.5.18","3.5.1",[20,131,75,132,23],"rich-text","wpml","https:\u002F\u002Fgithub.com\u002Ffeedmeastraycat\u002Fwp-editor-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-editor-widget.0.6.0.zip",{"attackSurface":136,"codeSignals":184,"taintFlows":227,"riskAssessment":275,"analyzedAt":283},{"hooks":137,"ajaxHandlers":180,"restRoutes":181,"shortcodes":182,"cronEvents":183,"entryPointCount":27,"unprotectedCount":27},[138,144,147,151,155,160,164,167,170,174,177],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","wp","approve_post","smarteditor.php",39,{"type":139,"name":145,"callback":145,"file":142,"line":146},"admin_menu",40,{"type":139,"name":148,"callback":149,"priority":14,"file":142,"line":150},"the_content","addSmartEditor",42,{"type":139,"name":152,"callback":153,"file":142,"line":154},"wp_print_footer_scripts","footer_scripts",44,{"type":139,"name":156,"callback":157,"priority":158,"file":142,"line":159},"admin_bar_menu","add_bar_item",9999,83,{"type":139,"name":161,"callback":161,"file":162,"line":163},"edit_page_form","smarteditor_admin.php",13,{"type":139,"name":165,"callback":161,"file":162,"line":166},"load-post.php",14,{"type":139,"name":168,"callback":161,"file":162,"line":169},"load-post-new.php",15,{"type":171,"name":172,"callback":173,"priority":11,"file":162,"line":126},"filter","post_row_actions","addSmartEditorLink",{"type":171,"name":175,"callback":173,"priority":11,"file":162,"line":176},"page_row_actions",19,{"type":139,"name":178,"callback":179,"file":162,"line":34},"admin_footer","add_edit_page_form",[],[],[],[],{"dangerousFunctions":185,"sqlUsage":186,"outputEscaping":188,"fileOperations":27,"externalRequests":27,"nonceChecks":189,"capabilityChecks":14,"bundledLibraries":226},[],{"prepared":27,"raw":27,"locations":187},[],{"escaped":189,"rawEcho":190,"locations":191},1,17,[192,195,197,199,201,203,205,207,209,211,213,215,217,219,220,222,224],{"file":142,"line":193,"context":194},66,"raw output",{"file":142,"line":196,"context":194},67,{"file":142,"line":198,"context":194},68,{"file":142,"line":200,"context":194},69,{"file":142,"line":202,"context":194},70,{"file":142,"line":204,"context":194},71,{"file":142,"line":206,"context":194},72,{"file":142,"line":208,"context":194},73,{"file":142,"line":210,"context":194},74,{"file":142,"line":212,"context":194},75,{"file":142,"line":214,"context":194},76,{"file":162,"line":216,"context":194},41,{"file":218,"line":143,"context":194},"smarteditor_option_screen.php",{"file":218,"line":202,"context":194},{"file":221,"line":126,"context":194},"smarteditor_tool.php",{"file":221,"line":223,"context":194},22,{"file":221,"line":225,"context":194},29,[],[228,247,255,267],{"entryPoint":229,"graph":230,"unsanitizedCount":27,"severity":246},"approve_post (smarteditor.php:156)",{"nodes":231,"edges":243},[232,237],{"id":233,"type":234,"label":235,"file":142,"line":236},"n0","source","$_REQUEST (x2)",173,{"id":238,"type":239,"label":240,"file":142,"line":241,"wp_function":242},"n1","sink","wp_redirect() [Open Redirect]",176,"wp_redirect",[244],{"from":233,"to":238,"sanitized":245},true,"low",{"entryPoint":248,"graph":249,"unsanitizedCount":27,"severity":246},"\u003Csmarteditor> (smarteditor.php:0)",{"nodes":250,"edges":253},[251,252],{"id":233,"type":234,"label":235,"file":142,"line":236},{"id":238,"type":239,"label":240,"file":142,"line":241,"wp_function":242},[254],{"from":233,"to":238,"sanitized":245},{"entryPoint":256,"graph":257,"unsanitizedCount":189,"severity":246},"__construct (smarteditor_option_screen.php:11)",{"nodes":258,"edges":264},[259,261],{"id":233,"type":234,"label":260,"file":218,"line":163},"$_POST['smart_editor_options']",{"id":238,"type":239,"label":262,"file":218,"line":163,"wp_function":263},"update_option() [Settings Manipulation]","update_option",[265],{"from":233,"to":238,"sanitized":266},false,{"entryPoint":268,"graph":269,"unsanitizedCount":189,"severity":246},"\u003Csmarteditor_option_screen> (smarteditor_option_screen.php:0)",{"nodes":270,"edges":273},[271,272],{"id":233,"type":234,"label":260,"file":218,"line":163},{"id":238,"type":239,"label":262,"file":218,"line":163,"wp_function":263},[274],{"from":233,"to":238,"sanitized":266},{"summary":276,"deductions":277},"The \"smart-editor\" plugin v0.8.2 exhibits a mixed security posture. On the positive side, it demonstrates good practices by having no known vulnerabilities (CVEs), no dangerous functions, all SQL queries using prepared statements, and no file operations or external HTTP requests. It also includes a nonce check and capability checks, which are fundamental security measures.  However, a significant concern arises from the static analysis showing a low percentage (6%) of properly escaped output. This indicates a potential for Cross-Site Scripting (XSS) vulnerabilities, especially given the 18 total output operations. Furthermore, the taint analysis revealed two flows with unsanitized paths, which could lead to path traversal vulnerabilities if not handled carefully, although no critical or high severity issues were flagged here.",[278,281],{"reason":279,"points":280},"Low output escaping percentage",6,{"reason":282,"points":48},"Taint flows with unsanitized paths","2026-03-17T00:05:13.512Z",{"wat":285,"direct":301},{"assetPaths":286,"generatorPatterns":293,"scriptPaths":294,"versionParams":295},[287,288,289,290,291,292],"\u002Fwp-content\u002Fplugins\u002Fsmart-editor\u002Fcss\u002Fsmarteditor.css","\u002Fwp-content\u002Fplugins\u002Fsmart-editor\u002Fjs\u002Fsmarteditor-utilty.js","\u002Fwp-content\u002Fplugins\u002Fsmart-editor\u002Fjs\u002Fsmarteditor-window.js","\u002Fwp-content\u002Fplugins\u002Fsmart-editor\u002Fjs\u002Fsmarteditor-element-editor.js","\u002Fwp-content\u002Fplugins\u002Fsmart-editor\u002Fjs\u002Fsmarteditor-source-editor.js","\u002Fwp-content\u002Fplugins\u002Fsmart-editor\u002Fjs\u002Fsmarteditor.js",[],[288,289,290,291,292],[296,297,298,299,300],"smarteditor-utilty.js?ver=","smarteditor-window.js?ver=","smarteditor-element-editor.js?ver=","smarteditor-source-editor.js?ver=","smarteditor.js?ver=",{"cssClasses":302,"htmlComments":303,"htmlAttributes":304,"restEndpoints":306,"jsGlobals":307,"shortcodeOutput":309},[],[],[305],"contenteditable=\"false\"",[],[308],"smart_editor_options_classnames",[]]