[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0j7h4wh25IeoqLPXWFppofqtB7tYGv3KGSVVihUVJjI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":118,"fingerprints":212},"social-counter-widget","Social Counter Widget","0.8.1","d3wp","https:\u002F\u002Fprofiles.wordpress.org\u002Fd3wp\u002F","\u003Cp>This widget will display your RSS subscribers, Twitter followers and Facebook fans in one nice looking box. Please take a look at the screenshot.\u003C\u002Fp>\n\u003Ch3>Feedback\u003C\u002Fh3>\n\u003Cp>http:\u002F\u002Fwww.webdev3000.com\u002Fsocial-counter-widget\u002F\u003C\u002Fp>\n","This widget will display your RSS subscribers, Twitter followers and Facebook fans in one nice looking box.",20,11061,100,1,"2011-12-26T15:33:00.000Z","3.1.4","2.0.2","",[20,21,22,23,24],"facebook","rss","social-counter","social-widget","twitter","http:\u002F\u002Fwww.webdev3000.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-counter-widget.0.8.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":27,"computed_at":37},11,2110,87,30,"2026-04-04T13:59:21.254Z",[39,50,71,88,103],{"slug":40,"name":41,"version":42,"author":7,"author_profile":8,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":28,"num_ratings":28,"last_updated":47,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":48,"homepage":25,"download_link":49,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"total-social-counter","Total Social Counter","0.8.0","\u003Cp>This widget combines the number of your RSS readers, twitter followers, and fans of your facebook fan page, to give an estimate of your social popularity.\u003Cbr \u002F>\nTipTip jQuery plugin is used to show nice looking tooltips with count for every particular social network. Credit goes to Martin Angelov from Tutorialzine.com\u003C\u002Fp>\n\u003Ch3>Feedback\u003C\u002Fh3>\n\u003Cp>http:\u002F\u002Fwww.webdev3000.com\u002Ftotal-social-counter-widget\u002F\u003C\u002Fp>\n","This widget combines the number of your RSS readers, twitter followers, and fans of your facebook fan page.",10,4458,"2011-12-12T17:55:00.000Z",[20,21,22,23,24],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftotal-social-counter.0.8.0.zip",{"slug":51,"name":52,"version":53,"author":54,"author_profile":55,"description":56,"short_description":57,"active_installs":58,"downloaded":59,"rating":60,"num_ratings":61,"last_updated":62,"tested_up_to":63,"requires_at_least":64,"requires_php":18,"tags":65,"homepage":69,"download_link":70,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"metro-style-social-widget","Metro Style Social Widget","1.0.2","Manivannan M","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanivannan-m\u002F","\u003Cp>A light weight wordpress widget that displays Metro Style social network icons in Sidebar and links to your social network profiles.\u003C\u002Fp>\n\u003Cp>Add button option will display the Like \u002F Follow button on the Social icons so that your users can immediately Like \u002F Follow your page or profile without leaving your site.\u003C\u002Fp>\n\u003Cp>Since every one use Facebook and Twitter, we made them as default and other network as optional.\u003C\u002Fp>\n\u003Ch4>Update\u003C\u002Fh4>\n\u003Cp>Color Picker added, Now you can set any color to any icons in the widget.\u003C\u002Fp>\n\u003Cp>On Users request Google+ and RSS Feed are now optional.\u003C\u002Fp>\n\u003Cp>If needed you can display Google+, Linkedin, Youtube, RSS Feed and Pinterest else choose don’t show option in widget settings.\u003C\u002Fp>\n\u003Cp>Responsive design, Plugin will automatically fit within your siderbar width else you can specify width for the widget.\u003C\u002Fp>\n\u003Ch4>Next Release will Include the Below Feature\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> User side configuration \u002F customization in Widget admin page\u003C\u002Fli>\n\u003Cli> More Styles \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support \u002F Contact\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\u002Fmetro-style-social-widget-wordpress\" title=\"More info about Metro Style Social Widget plugin\" rel=\"nofollow ugc\">More Info \u002F DEMO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\" title=\"Contact at Aidful.com\" rel=\"nofollow ugc\">Developer Blog: Aidful.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Sponsors\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.specificfeeds.com\u002F\" title=\"Donated 30 USD\" rel=\"nofollow ugc\">SpecificFeeds\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plug-in, please don’t forget to rate this plugin.\u003C\u002Fp>\n","Metro Style Social Network Widget",300,56781,92,22,"2016-08-02T08:32:00.000Z","4.5.33","2.5",[20,66,67,68,24],"google","metro-social-widget","specificfeeds","http:\u002F\u002Fwww.aidful.com\u002Fmetro-style-social-widget-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmetro-style-social-widget.1.0.2.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":45,"downloaded":79,"rating":28,"num_ratings":28,"last_updated":80,"tested_up_to":81,"requires_at_least":82,"requires_php":18,"tags":83,"homepage":86,"download_link":87,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"lh-posse","LH Posse","1.03","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>Once activated the plugin adds three new feeds:\u003C\u002Fp>\n\u003Cp>To assist in this synidication LH-posse also:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>A Facebook optimised feed of your posts: eg http:\u002F\u002Flhero.org\u002F?feed=lh-posse-fb.\u003C\u002Fli>\n\u003Cli>A twitter optimised feed of your posts: eg http:\u002F\u002Flhero.org\u002F?feed=lh-posse-tw\u003C\u002Fli>\n\u003Cli>A general feed of your attachments: eg http:\u002F\u002Flhero.org\u002F?feed=lh-posse-attach\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All feeds are built to work with post formats so the message output that is avaialable for each social network (or other location) is tailored for thta social network and adjusted based on the post format used.\u003C\u002Fp>\n\u003Cp>It has been developed for use in \u003Ca href=\"http:\u002F\u002Flocalhero.biz\u002F\" rel=\"nofollow ugc\">LocalHero\u003C\u002Fa>.\u003C\u002Fp>\n","A flexible way to syndicate your content to Facebook, Twitter, or anywhere via IFTTT using customised feeds.",1837,"2017-12-16T00:39:00.000Z","4.9.29","3.0",[20,84,85,21,24],"feed","feeds","https:\u002F\u002Flhero.org\u002Fplugins\u002Flh-posse\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-posse.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":45,"downloaded":96,"rating":28,"num_ratings":28,"last_updated":97,"tested_up_to":18,"requires_at_least":82,"requires_php":18,"tags":98,"homepage":101,"download_link":102,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"my-social-widgets-with-shortcode","My Social Widgets With ShortCode","1.0","krishna711","https:\u002F\u002Fprofiles.wordpress.org\u002Fkrishna711\u002F","\u003Cp>Add social media widgets in the sidebar via widget or shortcode. Support Facebook, Twitter, Recent Posts. Fully Customizable\u003C\u002Fp>\n\u003Ch3>Follow Me\u003C\u002Fh3>\n\u003Cp>Follow me on Twitter to keep up with the latest updates \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fbalakrishna\u002F\" rel=\"nofollow ugc\">Bala Krishna\u003C\u002Fa>\u003C\u002Fp>\n","Add social media widgets in the sidebar via widget or shortcode. Support Facebook, Twitter, Recent Posts. Fully Customizable",1543,"2013-04-05T15:00:00.000Z",[20,99,100,23,24],"recnet-post","social","http:\u002F\u002Fwww.bala-krishna.com\u002Fwordpress-plugins\u002Fsocial-widgets-with-shortcode\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-social-widgets-with-shortcode.1.0.zip",{"slug":104,"name":105,"version":91,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":45,"downloaded":110,"rating":28,"num_ratings":28,"last_updated":111,"tested_up_to":112,"requires_at_least":82,"requires_php":18,"tags":113,"homepage":116,"download_link":117,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"subscribers-count","Subscribers Count","hyptos","https:\u002F\u002Fprofiles.wordpress.org\u002Fhyptos\u002F","\u003Cp>Subscriber count show up the number of members of your community.\u003C\u002Fp>\n","Subscriber count show up the number of members of your community.",3814,"2012-03-14T11:10:00.000Z","3.3.2",[114,20,21,115,24],"count","subscriber","http:\u002F\u002Fwww.techpaf.fr\u002Fsubscriber-count\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsubscribers-count.1.4.zip",{"attackSurface":119,"codeSignals":135,"taintFlows":194,"riskAssessment":195,"analyzedAt":211},{"hooks":120,"ajaxHandlers":131,"restRoutes":132,"shortcodes":133,"cronEvents":134,"entryPointCount":28,"unprotectedCount":28},[121,127],{"type":122,"name":123,"callback":124,"file":125,"line":126},"action","widgets_init","anonymous","social-counter-widget.php",114,{"type":122,"name":128,"callback":129,"file":125,"line":130},"wp_print_styles","sc_stylesheet",115,[],[],[],[],{"dangerousFunctions":136,"sqlUsage":144,"outputEscaping":146,"fileOperations":192,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":193},[137,141],{"fn":138,"file":125,"line":139,"context":140},"unserialize",32,"$stats = unserialize(file_get_contents($cacheFileName));",{"fn":142,"file":125,"line":126,"context":143},"create_function","add_action('widgets_init', create_function('', 'return register_widget(\"SC_widget\");'));",{"prepared":28,"raw":28,"locations":145},[],{"escaped":147,"rawEcho":148,"locations":149},4,26,[150,154,156,158,160,162,163,165,167,168,170,172,173,174,175,177,179,180,181,182,184,185,186,188,190,191],{"file":151,"line":152,"context":153},"scw_stats.class.php",48,"raw output",{"file":151,"line":155,"context":153},51,{"file":151,"line":157,"context":153},55,{"file":151,"line":159,"context":153},58,{"file":151,"line":161,"context":153},63,{"file":151,"line":161,"context":153},{"file":151,"line":164,"context":153},66,{"file":125,"line":166,"context":153},56,{"file":125,"line":159,"context":153},{"file":125,"line":169,"context":153},60,{"file":125,"line":171,"context":153},84,{"file":125,"line":27,"context":153},{"file":125,"line":27,"context":153},{"file":125,"line":27,"context":153},{"file":125,"line":176,"context":153},88,{"file":125,"line":178,"context":153},89,{"file":125,"line":178,"context":153},{"file":125,"line":178,"context":153},{"file":125,"line":60,"context":153},{"file":125,"line":183,"context":153},93,{"file":125,"line":183,"context":153},{"file":125,"line":183,"context":153},{"file":125,"line":187,"context":153},96,{"file":125,"line":189,"context":153},97,{"file":125,"line":189,"context":153},{"file":125,"line":189,"context":153},6,[],[],{"summary":196,"deductions":197},"The \"social-counter-widget\" plugin v0.8.1 exhibits a mixed security posture.  On the positive side, it boasts a clean vulnerability history with no recorded CVEs and a complete absence of direct SQL injection risks due to the exclusive use of prepared statements.  Furthermore, the plugin presents a remarkably small attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed, significantly limiting potential entry points for attackers.  External requests and bundled libraries are also absent, further reducing attack vectors. \n\nHowever, the static analysis reveals significant concerns within the code itself. The presence of two dangerous functions, `unserialize` and `create_function`, immediately raises a red flag.  `unserialize` is notoriously susceptible to object injection vulnerabilities if used with untrusted input, and `create_function` can lead to arbitrary code execution.  The extremely low percentage of properly escaped output (13%) is another critical issue, suggesting a high likelihood of cross-site scripting (XSS) vulnerabilities. The lack of any nonce or capability checks on the identified entry points (even though there are none) indicates a potential for privilege escalation or unauthorized actions if entry points were to be added or discovered in future versions.  While the current attack surface is zero, the potential for exploitation through the identified dangerous functions and unescaped output is substantial.\n\nIn conclusion, while the plugin's history and current attack surface appear secure, the underlying code quality regarding dangerous functions and output escaping presents a significant risk.  These are fundamental security flaws that could be exploited if any untrusted data were to reach these vulnerable code paths.  The plugin's strengths lie in its minimal attack surface and lack of historical vulnerabilities, but these are overshadowed by the critical code-level risks that require immediate attention.",[198,201,203,206,209],{"reason":199,"points":200},"Dangerous function: unserialize",15,{"reason":202,"points":200},"Dangerous function: create_function",{"reason":204,"points":205},"Low output escaping (13%)",8,{"reason":207,"points":208},"No nonce checks",5,{"reason":210,"points":208},"No capability checks","2026-03-16T22:48:07.841Z",{"wat":213,"direct":220},{"assetPaths":214,"generatorPatterns":216,"scriptPaths":217,"versionParams":218},[215],"\u002Fwp-content\u002Fplugins\u002Fsocial-counter-widget\u002Fcss\u002Fsocial-counter.css",[],[],[219],"social-counter-widget\u002Fcss\u002Fsocial-counter.css?ver=",{"cssClasses":221,"htmlComments":223,"htmlAttributes":224,"restEndpoints":225,"jsGlobals":226,"shortcodeOutput":227},[222],"sc-stats",[],[],[],[],[228],"\u003C?php $stats->generate(); ?>"]