[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fe3B7-Y1eUKlF345XsA5S7mbw5WApYDNUSOvqVuqsXvc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":22,"download_link":23,"security_score":11,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":137,"fingerprints":182},"smart-quotes","Smart Quotes","0.4","Martin Lormes","https:\u002F\u002Fprofiles.wordpress.org\u002Ftfnab\u002F","\u003Cp>Change the quotation marks, that are automatically rendered as smart or curly quotes inside your content, from the default English style (“…”) to anything you like, e.g. to Croatian\u002FHungarian\u002FPolish\u002FRomanian style quotation marks („…”), Czech or German style („…“), Danish style (»…«), Finnish or Swedish style (”…”), French style (« … » – with spaces), Greek\u002FItalian\u002FNorwegian\u002FPortuguese\u002FRussian\u002FSpanish\u002FSwiss style («…» – without spaces), Japanese or Traditional Chinese style (「⋯」), or actually to any arbitrary character combination of your choice. Of course you can turn off curly quotes entirely by picking the so-called \"dumb\" quotes (\"…\").\u003C\u002Fp>\n","Change the quotation marks that are automatically rendered as smart or curly quotes inside your content.",100,4616,1,"","3.6.1","2.9",[18,19,20,4,21],"curly","curly-quotes","quotes","wptexturize","http:\u002F\u002Ften-fingers-and-a-brain.com\u002Fwordpress-plugins\u002Fsmart-quotes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmart-quotes.0.4.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"tfnab",5,2220,88,30,86,"2026-04-04T20:19:44.800Z",[37,56,76,99,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":11,"downloaded":45,"rating":11,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":14,"tags":50,"homepage":52,"download_link":53,"security_score":54,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":55},"smart-quote-fixer","Smart Quote Fixer","1.0","SaltedStone","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaltedstone\u002F","\u003Cp>All of the other plugins that I have found only replace the smart quotes after the content has been saved to the database.\u003C\u002Fp>\n\u003Cp>This plugin will actually replace the smart quotes before it gets saved to the database.\u003C\u002Fp>\n\u003Cp>What does that mean? It means that you will now be able to perform better searches for content without having to worry about those annoying smart quotes.\u003C\u002Fp>\n\u003Cp>Not only does this plugin fix smart quotes, it also replaces the ™ (c) and (r) symbols into proper HTML entities.\u003C\u002Fp>\n\u003Cp>If you find this plugin useful, please give it a rating.\u003C\u002Fp>\n","Automatically remove smart quotes from post content and titles, before it gets to the database.",5076,3,"2019-07-12T23:25:00.000Z","5.2.24","1.5",[51,18,19,20,4],"content_save_pre","http:\u002F\u002Fwww.SaltedStone.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmart-quote-fixer.1.0.zip",85,"2026-03-15T15:16:48.613Z",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":33,"downloaded":64,"rating":65,"num_ratings":30,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":14,"tags":69,"homepage":74,"download_link":75,"security_score":54,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":55},"selfish-fresh-start","Selfish Fresh Start","1.2.0","Chuck Reynolds","https:\u002F\u002Fprofiles.wordpress.org\u002Fryno267\u002F","\u003Cp>This WordPress plugin removes most, in my opinion, unneeded crappy dashboard, post and page widgets, fixes formatted curly quote problems, checks for and removes Hello Dolly plugin, removes junk header tags, removes generator header tag for extra security, removes update notifications for non-admins, prevents self-pinging, removes smilies and trackbacks, and a few other settings that nobody needs either. This is built to be very generalized so it will work with every WordPress site as a good clean-up fresh start and help keep clients out of the editing files.\u003C\u002Fp>\n\u003Ch4>Current Operations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Removed: clean up unneeded header tags including:\n\u003Cul>\n\u003Cli>wlw manifest links\u003C\u002Fli>\n\u003Cli>rsd links\u003C\u002Fli>\n\u003Cli>previous and next post links\u003C\u002Fli>\n\u003Cli>wordpress generator\u003C\u002Fli>\n\u003Cli>shortlink generation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Removed: admin dashboard widgets:\n\u003Cul>\n\u003Cli>core: quick draft \u002F your recent drafts\u003C\u002Fli>\n\u003Cli>core: wordpress events and news\u003C\u002Fli>\n\u003Cli>plugin: yoast seo overview box\u003C\u002Fli>\n\u003Cli>plugin: wp socializer box\u003C\u002Fli>\n\u003Cli>plugin: w3 total cache news box\u003C\u002Fli>\n\u003Cli>plugin: gravity forms box\u003C\u002Fli>\n\u003Cli>plugin: bpress right now in forums\u003C\u002Fli>\n\u003Cli>plugin: jetpack box\u003C\u002Fli>\n\u003Cli>plugin: modern tribe rss box (issues\u002F7)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Removed: post metabox’s\n\u003Cul>\n\u003Cli>trackbacks\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Removed: page metabox’s\n\u003Cul>\n\u003Cli>comments box\u003C\u002Fli>\n\u003Cli>discussion box\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Removed: appearance menu theme editor\u003C\u002Fli>\n\u003Cli>Removed: plugins editor menu\u003C\u002Fli>\n\u003Cli>Removed: plugins list edit links\u003C\u002Fli>\n\u003Cli>Removed: more jump link to #anchor\u003C\u002Fli>\n\u003Cli>Removed: update notifications for non-admin users\u003C\u002Fli>\n\u003Cli>Removed: potential for self ping backs\u003C\u002Fli>\n\u003Cli>Removed: checks for and nukes Hello Dolly plugin \u003Cem>(sorry @photomatt)\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Off: turn off plugin\u002Ftheme editor\u003C\u002Fli>\n\u003Cli>Off: turn off global trackback\u002Fpingback setting\u003C\u002Fli>\n\u003Cli>Off: turn off global formatting of text to graphic smilies\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Additional Functionality\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Do you use Yoast SEO? and don’t need all the beginner \u002F noob stuff? Use this plugin: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpseo-nuke-noob-stuff\u002F\" rel=\"ugc\">Yoast SEO Nuke Noob Stuff\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Emojis scripts and support removal? I almost included it in this plugin but just use this plugin: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdisable-emojis\u002F\" rel=\"ugc\">Disable Emojis\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Want to remove the Tools Menu? There’s a plugin for that: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fremove-tools-menu\u002F\" rel=\"ugc\">Remove Tools Menu\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Development\u003C\u002Fh4>\n\u003Cp>If you think you’d like to contribute, Pull Requests on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fchuckreynolds\u002FSelfish-Fresh-Start\u002Ftree\u002Fdevelop\" rel=\"nofollow ugc\">Develop Branch on Github\u003C\u002Fa> are accepted.\u003Cbr \u002F>\n* Built in Chandler AZ, Updated in San Francisco, CA. I always used a lot of these functions on every site to help clean up the admin stuff and do some basic settings and based on some twitter replies others wanted this too as a public plugin. So… here we go. Feel free to do pull requests or add issues on github: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fchuckreynolds\u002FSelfish-Fresh-Start\u002Ftree\u002Fdevelop\" rel=\"nofollow ugc\">Develop Branch on Github\u003C\u002Fa>\u003C\u002Fp>\n","Built to run on EVERY WordPress install, selfish fresh start removes unneeded admin and html meta clutter.",8493,80,"2017-11-15T01:40:00.000Z","4.9.29","4.0",[70,71,19,72,73],"clean","clean-admin","fresh-start","new-install","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fselfish-fresh-start\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fselfish-fresh-start.1.2.0.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":97,"download_link":98,"security_score":86,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":55},"wp-typography","wp-Typography","5.11.0","pepe","https:\u002F\u002Fprofiles.wordpress.org\u002Fpputzer\u002F","\u003Cp>Improve your web typography with:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Hyphenation — \u003Ca href=\"https:\u002F\u002Fcode.mundschenk.at\u002Fwp-typography\u002Ffrequently-asked-questions\u002F#faq-what-hyphenation-language-patterns-are-included\" rel=\"nofollow ugc\">over 70 languages supported\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Space control, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>widow protection\u003C\u002Fli>\n\u003Cli>gluing values to units\u003C\u002Fli>\n\u003Cli>forced internal wrapping of long URLs & email addresses\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Intelligent character replacement, including smart handling of:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>quote marks\u003C\u002Fli>\n\u003Cli>dashes\u003C\u002Fli>\n\u003Cli>ellipses\u003C\u002Fli>\n\u003Cli>trademarks, copyright & service marks\u003C\u002Fli>\n\u003Cli>math symbols\u003C\u002Fli>\n\u003Cli>fractions\u003C\u002Fli>\n\u003Cli>ordinal suffixes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>CSS hooks for styling:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>ampersands,\u003C\u002Fli>\n\u003Cli>uppercase words,\u003C\u002Fli>\n\u003Cli>numbers,\u003C\u002Fli>\n\u003Cli>initial quotes & guillemets.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Improve your web typography with: hyphenation, space control, intelligent character replacement, and CSS hooks.",20000,522763,92,70,"2025-02-23T17:45:00.000Z","6.7.5","6.6","7.4",[93,4,94,95,96],"hyphenation","typography","typogrify","widows","https:\u002F\u002Fcode.mundschenk.at\u002Fwp-typography\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-typography.5.11.0.zip",{"slug":100,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":86,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":14,"tags":112,"homepage":116,"download_link":117,"security_score":11,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":55},"wpuntexturize","2.3","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>By default, WordPress converts single and double quotation marks into their curly alternatives. This plugin prevents that from happening, so you can enjoy your quotation marks in their non-curly glory. If your content happens to already have curly quotation marks in it, then this plugin can optionally also convert them to their non-curly alternatives.\u003C\u002Fp>\n\u003Cp>\u003Cem>Note:\u003C\u002Fem> Despite the unfortunately misleading name, this plugin is NOT the antithesis of WordPress’s \u003Ccode>wptexturize()\u003C\u002Fcode> function. This ONLY prevents WordPress from making HTML entity code substitutions of single and double quotation marks with their curly alternatives and does NOT prevent \u003Ccode>wptexturize()\u003C\u002Fcode> from making any other character and string substitutions. See the FAQ for details on the filters processed by the plugin.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fwpuntexturize\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpuntexturize\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fwpuntexturize\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Developer Documentation\u003C\u002Fh3>\n\u003Cp>Developer documentation can be found in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fwpuntexturize\u002Fblob\u002Fmaster\u002FDEVELOPER-DOCS.md\" rel=\"nofollow ugc\">DEVELOPER-DOCS.md\u003C\u002Fa>. That documentation covers the numerous hooks provided by the plugin. Those hooks are listed below to provide an overview of what’s available.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>c2c_wpuntexturize\u003C\u002Fcode> : An alternative approach to safely invoke \u003Ccode>c2c_wpuntexturize()\u003C\u002Fcode> in such a way that if the plugin were deactivated or deleted, then your calls to the function won’t cause errors in your site. This only applies if you use the function directly, which is not typical usage for most users.\u003C\u002Fli>\n\u003Cli>\u003Ccode>wpuntexturize_filters\u003C\u002Fcode> : customize what filters to hook to be filtered with wpuntexturize. See the Description section for a complete list of all filters that are filtered by default.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_wpuntexturize_replacements\u003C\u002Fcode> : Customize the character replacements handled by the plugin.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_wpuntexturize_convert_curly_quotes\u003C\u002Fcode> : Enable conversion of preexisting curly quotes into their non-curly alternatives.\u003C\u002Fli>\n\u003C\u002Ful>\n","Prevent WordPress from converting single and double quotation marks into their curly alternatives.",900,25406,12,"2025-04-08T22:17:00.000Z","6.8.5","5.5",[113,114,20,115,21],"formatting","post","substitutions","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fwpuntexturize\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpuntexturize.2.3.zip",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":24,"num_ratings":24,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":14,"tags":131,"homepage":135,"download_link":136,"security_score":54,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":55},"cleanup-text","Cleanup Text","2.0.1","roggie","https:\u002F\u002Fprofiles.wordpress.org\u002Froggie\u002F","\u003Cp>WordPress posts and pages can contain Smart quotes and other fancy characters. But Smartquotes and other special characters don’t work properly if you send the contents of a post by email. This plugin cleans up text so it can be emailed properly.\u003C\u002Fp>\n\u003Cp>Instead of using this plugin you could use WordPress filters to reformat text, but WordPress filters cannot be used with PHP functions like strip_tags. If you use a filter to remove Smart quotes you can’t also use strip_tags to remove HTML.\u003C\u002Fp>\n\u003Cp>Also, WordPress filters don’t remove all the characters that could cause problems. For example, double spaces are not removed properly by WordPress, and Europeans will have problems with the UK pound currency symbol.\u003C\u002Fp>\n\u003Cp>This very simple plugin removes all sorts of special characters, including double spaces and currency symbols that WordPress filters don’t manage.\u003C\u002Fp>\n\u003Cp>It also has an option to remove HTML.\u003C\u002Fp>\n","Function to remove smart quotes, HTML and other special characters from text. Call the function with text as argument, function returns clean text.",10,2587,"2010-08-12T12:35:00.000Z","3.0.0","1.0.0",[132,133,4,134],"filter","html","special-characters","http:\u002F\u002Fwww.thehypervisor.com\u002Fcleanup-text\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcleanup-text.zip",{"attackSurface":138,"codeSignals":161,"taintFlows":174,"riskAssessment":175,"analyzedAt":181},{"hooks":139,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":24,"unprotectedCount":24},[140,145,150,154],{"type":132,"name":141,"callback":142,"priority":126,"file":143,"line":144},"gettext_with_context","tfnab_smart_quotes_gettext_with_context","smart-quotes.php",67,{"type":146,"name":147,"callback":148,"file":143,"line":149},"action","wp_head","tfnab_smart_quotes_wp_head",90,{"type":146,"name":151,"callback":152,"file":143,"line":153},"admin_print_styles-options-writing.php","admin_print_styles__options__writing",156,{"type":146,"name":155,"callback":155,"file":143,"line":156},"admin_init",182,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":24,"externalRequests":24,"nonceChecks":24,"capabilityChecks":24,"bundledLibraries":173},[],{"prepared":24,"raw":24,"locations":164},[],{"escaped":24,"rawEcho":166,"locations":167},2,[168,171],{"file":143,"line":169,"context":170},81,"raw output",{"file":143,"line":172,"context":170},84,[],[],{"summary":176,"deductions":177},"The \"smart-quotes\" plugin, version 0.4, presents a generally positive security posture based on the static analysis.  The plugin has a remarkably small attack surface with no identified entry points, including AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all observed SQL queries utilize prepared statements, indicating good database interaction practices. The absence of any known vulnerabilities, CVEs, or recorded past security incidents is a significant strength.\n\nHowever, a critical concern arises from the output escaping analysis. With 100% of observed outputs not properly escaped, this plugin is highly susceptible to Cross-Site Scripting (XSS) vulnerabilities. Any data processed and displayed by the plugin, even if it originates from trusted sources, could be manipulated to inject malicious scripts. The lack of capability checks and nonce checks, while not directly indicative of a vulnerability in this specific version due to the lack of an attack surface, leaves potential future expansion or unintended feature introductions at a security risk if not addressed.\n\nIn conclusion, while \"smart-quotes\" v0.4 benefits from a lack of direct attack vectors and secure SQL practices, the complete absence of output escaping creates a significant and actionable security risk that overshadows its positive attributes. The plugin's history of no vulnerabilities is reassuring, but the current code analysis reveals a critical weakness.",[178],{"reason":179,"points":180},"Outputs not properly escaped",8,"2026-03-16T20:32:09.867Z",{"wat":183,"direct":188},{"assetPaths":184,"generatorPatterns":185,"scriptPaths":186,"versionParams":187},[],[],[],[],{"cssClasses":189,"htmlComments":191,"htmlAttributes":192,"restEndpoints":196,"jsGlobals":197,"shortcodeOutput":199},[190],"smart-quotes-examples",[],[193,194,195],"id=\"smart-quotes-opening\"","id=\"smart-quotes-closing\"","id=\"smart-quotes-examples\"",[],[198],"set_smart_quotes",[]]