[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$feYZcaJ_fsTorb5tjSJNlUFPQnhIsYIwifUkXGbke5Pg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":135,"fingerprints":385},"social-media-badge-widget","Social Media Badge Widget","2.7.0","StressFree Sites","https:\u002F\u002Fprofiles.wordpress.org\u002Fstressfree-sites\u002F","\u003Cp>This plugin creates a widget which easily displays the social badges from the leading social media websites (Twitter, Facebook, Google+, LinkedIn, You Tube, Pinterest and Flickr) in a clear and elegant way.\u003C\u002Fp>\n\u003Cp>It displays the information in an accordion, so only one section is open at a time, which ensures your website does not become cluttered visually.\u003C\u002Fp>\n\u003Cp>The plugin includes a plugin admin page where it is possible to customise everything from the social media channel to the visual styling of the accordion.\u003C\u002Fp>\n\u003Ch3>Plugin features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Widget content displays in a jQuery accordion.\u003C\u002Fli>\n\u003Cli>Display Twitter, Facebook, Google+, LinkedI, You Tube, Pinterest, Flickr\u003C\u002Fli>\n\u003Cli>Customise the Twitter widget for different colour schemes and to show replies.\u003C\u002Fli>\n\u003Cli>Customise the Facebook widget for different colour schemes, show news stream and show fans faces.\u003C\u002Fli>\n\u003Cli>Change the colour of the accordion, gray, blue, red, green and black.\u003C\u002Fli>\n\u003Cli>Two different icons sets: colour and grey.\u003C\u002Fli>\n\u003Cli>Select accordion section to open on page load.\u003C\u002Fli>\n\u003Cli>Ability to make the accordion all collapsible and load with all section closed.\u003C\u002Fli>\n\u003Cli>Choose which accordion section to display on each widget.\u003C\u002Fli>\n\u003Cli>Skeleton styling to enable easy custom styling.\u003C\u002Fli>\n\u003Cli>Ability to manually load jQuery to increase compatability.\u003C\u002Fli>\n\u003Cli>Troubleshooting section to ensure any problems are resolved quickly.\u003C\u002Fli>\n\u003Cli>Support requests answered in less and 24 hours on average.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Like this plugin?\u003C\u002Fh3>\n\u003Cp>You maybe interested in our \u003Ca href=\"http:\u002F\u002Fsocialprofilesandcontactdetailswordpressplugin.com\u002F\" rel=\"nofollow ugc\">premium plugin\u003C\u002Fa> to enable more features.\u003C\u002Fp>\n\u003Cp>Otherwise, please have a look at our other plugin \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbusiness-contact-widget\u002F\" rel=\"ugc\">Business Contact Widget\u003C\u002Fa> which displays all your contact details in a clear and elegant way.\u003C\u002Fp>\n","This plugin creates a widget which easily displays the social badges from the leading social media websites in a clear an elegant way.",200,54660,92,5,"2015-09-17T23:00:00.000Z","4.3.34","3.0.0","",[20,21,22,23,24],"badge","facebook","social-media","twitter","widget","http:\u002F\u002Fstressfreesites.co.uk\u002Fplugins\u002Fsocial-media-badge-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-badge-widget.2.7.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"stressfree-sites",1,30,84,"2026-04-04T07:20:11.807Z",[39,55,74,95,113],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":28,"num_ratings":28,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":53,"download_link":54,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"social-icons-widget","Social Icons Widget","0.1a","Curtiss Grymala","https:\u002F\u002Fprofiles.wordpress.org\u002Fcgrymala\u002F","\u003Cp>Adds an available widget to list various social media profiles. The following social media sites are included by default:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>FriendFeed\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin also includes a filter hook allowing you to extend the available services.\u003C\u002Fp>\n\u003Cp>By default, this plugin outputs an unordered list (ul) with a class of \u003Ccode>social-icons-list\u003C\u002Fcode>. Each service is output as a list item (li) with the service name used as the HTML class attribute. Filters are available to allow you to change those HTML elements.\u003C\u002Fp>\n","A developer-friendly plugin that allows you to add a widget with links to various social media profiles.",100,19301,"2011-08-26T19:53:00.000Z","3.2.1","3.1",[21,22,23,24],"http:\u002F\u002Fplugins.ten-321.com\u002Fsocial-icons-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-icons-widget.0.1.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":72,"download_link":73,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"round-social-media-buttons","Round Social Media Buttons","1.0","solomon_s_scott","https:\u002F\u002Fprofiles.wordpress.org\u002Fsolomon_s_scott\u002F","\u003Cp>This plugin creates a responsive widget that displays up to eight different social media websites. (Not all 8 are required)\u003C\u002Fp>\n\u003Col>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003C\u002Fol>\n","Provides a responsive social media widget that displays up to eight different social media websites.",90,9114,74,3,"2014-04-17T23:05:00.000Z","3.9.40","3.0.1",[21,71,22,23,24],"linkedin","http:\u002F\u002Fsolomonscott.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fround-social-media-buttons.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":47,"num_ratings":84,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":18,"tags":88,"homepage":93,"download_link":94,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"feeder-ninja-feed","Feeder Ninja: Create and add RSS & Social feeds to your website on-the-fly","2.1.0","Common Ninja","https:\u002F\u002Fprofiles.wordpress.org\u002Fcommonninja\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Ffeeds.commoninja.com\u002F\" rel=\"nofollow ugc\">Feeder Ninja\u003C\u002Fa> is a useful tool for creating Rss & Social media feeds. Feeder Ninja using innovative and intuitive user interfaces so you don’t need any prior knowledge to use it. We’re supporting RSS, Facebook, Twitter, Pinterest, Thumblr, YouTube, Vimeo,and WordPress \u003Ca href=\"https:\u002F\u002Ffeeds.commoninja.com\" rel=\"nofollow ugc\">Sing up to Feeder Ninja now\u003C\u002Fa> and start creating beautiful feeds!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ffeeds.commoninja.com\u002Fgallery\" rel=\"nofollow ugc\">You may browse our public gallery to see some examples.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>IMPORTANT: In order to add a feed to your WordPress website, you will FIRST need to go to \u003Ca href=\"https:\u002F\u002Ffeeds.commoninja.com\" rel=\"nofollow ugc\">Feeder Ninja\u003C\u002Fa>, sign up for FREE, and create a new feed in our feeds maker.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Got any feedback or question? Contact us via contact{at}commoninja.com.\u003C\u002Fp>\n\u003Cp>** It’s really easy. Get started in 2 minutes tops, no training needed! **\u003C\u002Fp>\n","The best tool for adding RSS & Social media feeds to your Wordpress website. Powered by Common Ninja.",50,15339,2,"2020-05-12T07:47:00.000Z","5.4.19","4.0",[89,90,91,22,92],"facebook-widget","feeder-ninja","feeds","twitter-widget","https:\u002F\u002Ffeeds.commoninja.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeeder-ninja-feed.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":28,"num_ratings":28,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":18,"tags":108,"homepage":111,"download_link":112,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"tweetroll","TweetRoll","1.6","owencutajar","https:\u002F\u002Fprofiles.wordpress.org\u002Fowencutajar\u002F","\u003Cp>A smart badge that shows your Twitter details and who you’re following on Twitter. It shows your friends’ avatars and invites your readers to come and follow you too.\u003C\u002Fp>\n\u003Cp>The plugin makes use of the TweetBurn server and doesn’t reduce the number of API calls you can make without hitting Twitter’s limit. It also automatically integrates with \u003Ca href=\"http:\u002F\u002Fbit.ly\u002F6B8L7w\" rel=\"nofollow ugc\">Sponsored Tweets\u003C\u002Fa> and if you have an account on that service, it will automatically invite viewers to Sponsor one of your Tweets.\u003C\u002Fp>\n\u003Cp>Setting up the widget is simple, just install the plugin, activate, and specify your Twitter user name. Once the widget is installed, you can log into \u003Ca href=\"http:\u002F\u002Ftweetburn.com\u002F\" rel=\"nofollow ugc\">Tweetburn\u003C\u002Fa> and change your colours, size and even captions.\u003C\u002Fp>\n\u003Cp>Are you listed in our \u003Ca href=\"http:\u002F\u002Ftweetburn.com\u002F\" rel=\"nofollow ugc\">Tweetburn directory for Twitter users\u003C\u002Fa>?\u003C\u002Fp>\n","TweetRoll displays your Twitter details and the avatars of some of your friends, together with the ability to monitise your Twitter stream.",10,5708,"2009-12-15T11:43:00.000Z","2.8.6","2.0",[109,22,23,110,92],"mybloglog","twitter-badge","http:\u002F\u002Ftweetburn.com\u002Ftools\u002Ftweetroll\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftweetroll.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":13,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":18,"download_link":132,"security_score":133,"vuln_count":84,"unpatched_count":28,"last_vuln_date":134,"fetched_at":30},"wonderm00ns-simple-facebook-open-graph-tags","Open Graph and Twitter Card Tags","3.3.9","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>This plugin improves the sharing of your WordPress pages, posts, WooCommerce products, or any other post type on social media, by setting the correct Facebook Open Graph Tags.\u003C\u002Fp>\n\u003Cp>It also allows you to add the Twitter Card tags for more effective and efficient Twitter sharing results, as well as the Meta Description and Canonical tags if no other SEO plugin is setting them.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This plugin is not, in any way, affiliated or endorsed by Facebook, Twitter, Google or any other 3rd party.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can also choose to insert the “enclosure” and “media:content” tags to the RSS feeds, so that apps like RSS Graffiti and twitterfeed post the image to Facebook correctly.\u003C\u002Fp>\n\u003Cp>It allows the user to choose which tags are included, and also the default image if the post\u002Fpage doesn’t have one.\u003C\u002Fp>\n\u003Cp>It’s also possible to add an overlay logo\u002Fwatermark to the image. The plugin will resize and crop the original image to 1200×630 and then overlay the chosen 1200×630 PNG file over it.\u003Cbr \u002F>\nIt be usefull to add your brand to the image that shows up on Facebook shared links.\u003C\u002Fp>\n\u003Cp>Our settings page is discreetly kept under “Options”.\u003C\u002Fp>\n\u003Ch4>The generated (Facebook) Open Graph Tags are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>og:title\u003C\u002Fstrong>: From post\u002Fpage\u002Farchive\u002Ftag\u002F… title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:site_name\u003C\u002Fstrong>: From blog title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:url\u003C\u002Fstrong>: From the post\u002Fpage permalink.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:description\u003C\u002Fstrong>: From our specific custom field of the post\u002Fpage, or if not set post\u002Fpage excerpt if it exist, or from post\u002Fpage content. From category\u002Ftag description on its pages, if it exist. From tagline, or custom text, on all the others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image\u003C\u002Fstrong>: From our specific custom field of the post\u002Fpage, or if not set from the post\u002Fpage featured\u002Fthumbnail image, or if it doesn’t exist from the first image in the post content, or if it doesn’t exist from the first image on the post media gallery, or if it doesn’t exist from the default image defined on the options menu. The same image chosen here will be used and enclosure\u002Fmedia:content on the RSS feed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:url\u003C\u002Fstrong>: Same as \u003Cstrong>og:image\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:secure_url\u003C\u002Fstrong>: Same as \u003Cstrong>og:image\u003C\u002Fstrong> if SSL is being used.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:image:width\u003C\u002Fstrong> and \u003Cstrong>og:image:height\u003C\u002Fstrong>: Image dimensions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:type\u003C\u002Fstrong>: “website” or “blog” for the homepage, “product” for WooCommerce products and “article” for all the others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:author\u003C\u002Fstrong>: From the user (post author) Faceboook Profile URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:published_time\u003C\u002Fstrong>: Article published time (for posts only)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:modified_time\u003C\u002Fstrong> and \u003Cstrong>og:updated_time\u003C\u002Fstrong>: Article modified time (for posts only)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:section\u003C\u002Fstrong>: From post categories.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>article:publisher\u003C\u002Fstrong>: The website Facebook Page URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:locale\u003C\u002Fstrong>: From WordPress locale or chosen by the user.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>fb:admins\u003C\u002Fstrong>: From settings on the options screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>fb:app_id\u003C\u002Fstrong>: From settings on the options screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>og:price:amount\u003C\u002Fstrong> and \u003Cstrong>og:price:currency\u003C\u002Fstrong>: Price on WooCommerce products.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>The generated Twitter Card Tags are:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>twitter:title\u003C\u002Fstrong>: Same as \u003Ccode>og:title\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:url\u003C\u002Fstrong>: Sames as \u003Ccode>og:url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:description\u003C\u002Fstrong>: Same as \u003Ccode>og:description\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:image\u003C\u002Fstrong>: Same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:creator\u003C\u002Fstrong>: From the user (post author) Twitter account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:site\u003C\u002Fstrong>: The website Twitter account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>twitter:card\u003C\u002Fstrong>: With value “summary_large_image” or “summary”.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Other Tags:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>canonical\u003C\u002Fstrong>: Same as \u003Ccode>og:url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta description\u003C\u002Fstrong>: Same as \u003Ccode>og:description\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta author\u003C\u002Fstrong>: From the user (post author) Display Name.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>meta publisher\u003C\u002Fstrong>: From the website title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>enclosure\u003C\u002Fstrong>: On RSS feeds, same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>media:content\u003C\u002Fstrong>: On RSS feeds, same as \u003Ccode>og:image\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>3rd Party Integration:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwordpress-seo\u002F\" rel=\"ugc\">Yoast SEO\u003C\u002Fa>\u003C\u002Fstrong>: Allows you to use the title, URL (canonical), and description from the Yoast SEO plugin.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fstrong>: On product pages sets \u003Ccode>og:type\u003C\u002Fcode> to “product” and adds the price including tax to the \u003Ccode>product:price\u003C\u002Fcode> and \u003Ccode>product:availability\u003C\u002Fcode> tags. Also allows you to use the Product Category thumbnails as Open Graph Image and have Product Gallery images as additional Open Graph Images\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fbrands\u002F\" rel=\"nofollow ugc\">WooCommerce Brands\u003C\u002Fa>\u003C\u002Fstrong>: On brand pages uses the brand image as Open Graph Image \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbusiness-directory-plugin\u002F\" rel=\"ugc\">Business Directory Plugin\u003C\u002Fa>\u003C\u002Fstrong> (deprecated): Allows you to use BDP listing contents as Open Graph Tags.\u003C\u002Fli>\n\u003C\u002Ful>\n","Improve social media sharing by inserting Facebook Open Graph, Twitter Card, and SEO Meta Tags on your WordPress website pages, posts, WooCommerce pro &hellip;",60000,2301341,122,"2026-01-28T07:38:00.000Z","6.9.4","5.0","7.0",[21,129,130,22,131],"open-graph","open-graph-protocol","twitter-card","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwonderm00ns-simple-facebook-open-graph-tags.3.3.9.zip",99,"2018-06-27 00:00:00",{"attackSurface":136,"codeSignals":177,"taintFlows":340,"riskAssessment":376,"analyzedAt":384},{"hooks":137,"ajaxHandlers":173,"restRoutes":174,"shortcodes":175,"cronEvents":176,"entryPointCount":28,"unprotectedCount":28},[138,144,148,153,157,161,165,169],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","admin_menu","smbw_settings_page_init","social-media-badge-widget-admin.php",45,{"type":139,"name":145,"callback":146,"file":142,"line":147},"init","smbw_settings_init",59,{"type":139,"name":149,"callback":150,"file":151,"line":152},"plugins_loaded","smbw_init","social-media-badge-widget.php",38,{"type":139,"name":154,"callback":155,"file":151,"line":156},"wp_enqueue_scripts","smbw_enqueue_scripts",87,{"type":139,"name":158,"callback":159,"file":151,"line":160},"wp_print_styles","smbw_enqueue_styles",125,{"type":139,"name":162,"callback":163,"file":151,"line":164},"admin_notices","smbw_plugin_admin_notice",198,{"type":139,"name":166,"callback":167,"file":151,"line":168},"admin_init","smbw_plugin_nag_ignore",208,{"type":139,"name":170,"callback":171,"file":151,"line":172},"widgets_init","anonymous",472,[],[],[],[],{"dangerousFunctions":178,"sqlUsage":182,"outputEscaping":184,"fileOperations":28,"externalRequests":28,"nonceChecks":34,"capabilityChecks":34,"bundledLibraries":339},[179],{"fn":180,"file":151,"line":172,"context":181},"create_function","add_action( 'widgets_init', create_function('', 'return register_widget(\"Social_Media_Badge_Widget\")",{"prepared":28,"raw":28,"locations":183},[],{"escaped":185,"rawEcho":27,"locations":186},25,[187,190,192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,250,252,254,256,258,260,261,262,264,266,268,270,272,273,275,276,278,280,281,283,285,287,289,291,293,295,297,299,300,301,303,305,306,307,309,310,312,314,315,317,319,320,322,324,325,327,329,330,332,333,334,335,336,337],{"file":142,"line":188,"context":189},223,"raw output",{"file":142,"line":191,"context":189},236,{"file":142,"line":193,"context":189},243,{"file":142,"line":195,"context":189},244,{"file":142,"line":197,"context":189},245,{"file":142,"line":199,"context":189},246,{"file":142,"line":201,"context":189},270,{"file":142,"line":203,"context":189},273,{"file":142,"line":205,"context":189},275,{"file":142,"line":207,"context":189},287,{"file":142,"line":209,"context":189},289,{"file":142,"line":211,"context":189},304,{"file":142,"line":213,"context":189},308,{"file":142,"line":215,"context":189},310,{"file":142,"line":217,"context":189},313,{"file":142,"line":219,"context":189},317,{"file":142,"line":221,"context":189},319,{"file":142,"line":223,"context":189},322,{"file":142,"line":225,"context":189},331,{"file":142,"line":227,"context":189},333,{"file":142,"line":229,"context":189},337,{"file":142,"line":231,"context":189},339,{"file":142,"line":233,"context":189},343,{"file":142,"line":235,"context":189},345,{"file":142,"line":237,"context":189},353,{"file":142,"line":239,"context":189},428,{"file":142,"line":241,"context":189},458,{"file":142,"line":243,"context":189},459,{"file":142,"line":245,"context":189},460,{"file":142,"line":247,"context":189},462,{"file":142,"line":249,"context":189},463,{"file":142,"line":251,"context":189},491,{"file":142,"line":253,"context":189},500,{"file":151,"line":255,"context":189},258,{"file":151,"line":257,"context":189},262,{"file":151,"line":259,"context":189},265,{"file":151,"line":203,"context":189},{"file":151,"line":205,"context":189},{"file":151,"line":263,"context":189},283,{"file":151,"line":265,"context":189},299,{"file":151,"line":267,"context":189},303,{"file":151,"line":269,"context":189},309,{"file":151,"line":271,"context":189},312,{"file":151,"line":219,"context":189},{"file":151,"line":274,"context":189},336,{"file":151,"line":233,"context":189},{"file":151,"line":277,"context":189},346,{"file":151,"line":279,"context":189},352,{"file":151,"line":237,"context":189},{"file":151,"line":282,"context":189},361,{"file":151,"line":284,"context":189},363,{"file":151,"line":286,"context":189},369,{"file":151,"line":288,"context":189},370,{"file":151,"line":290,"context":189},375,{"file":151,"line":292,"context":189},384,{"file":151,"line":294,"context":189},388,{"file":151,"line":296,"context":189},425,{"file":151,"line":298,"context":189},426,{"file":151,"line":298,"context":189},{"file":151,"line":298,"context":189},{"file":151,"line":302,"context":189},430,{"file":151,"line":304,"context":189},431,{"file":151,"line":304,"context":189},{"file":151,"line":304,"context":189},{"file":151,"line":308,"context":189},439,{"file":151,"line":308,"context":189},{"file":151,"line":311,"context":189},440,{"file":151,"line":313,"context":189},443,{"file":151,"line":313,"context":189},{"file":151,"line":316,"context":189},444,{"file":151,"line":318,"context":189},447,{"file":151,"line":318,"context":189},{"file":151,"line":321,"context":189},448,{"file":151,"line":323,"context":189},451,{"file":151,"line":323,"context":189},{"file":151,"line":326,"context":189},452,{"file":151,"line":328,"context":189},455,{"file":151,"line":328,"context":189},{"file":151,"line":331,"context":189},456,{"file":151,"line":243,"context":189},{"file":151,"line":243,"context":189},{"file":151,"line":245,"context":189},{"file":151,"line":249,"context":189},{"file":151,"line":249,"context":189},{"file":151,"line":338,"context":189},464,[],[341,360],{"entryPoint":342,"graph":343,"unsanitizedCount":28,"severity":359},"smbw_update_settings (social-media-badge-widget-admin.php:61)",{"nodes":344,"edges":356},[345,350],{"id":346,"type":347,"label":348,"file":142,"line":349},"n0","source","$_GET",67,{"id":351,"type":352,"label":353,"file":142,"line":354,"wp_function":355},"n1","sink","wp_redirect() [Open Redirect]",68,"wp_redirect",[357],{"from":346,"to":351,"sanitized":358},true,"low",{"entryPoint":361,"graph":362,"unsanitizedCount":28,"severity":359},"\u003Csocial-media-badge-widget-admin> (social-media-badge-widget-admin.php:0)",{"nodes":363,"edges":373},[364,365,366,369],{"id":346,"type":347,"label":348,"file":142,"line":349},{"id":351,"type":352,"label":353,"file":142,"line":354,"wp_function":355},{"id":367,"type":347,"label":348,"file":142,"line":368},"n2",80,{"id":370,"type":352,"label":371,"file":142,"line":188,"wp_function":372},"n3","echo() [XSS]","echo",[374,375],{"from":346,"to":351,"sanitized":358},{"from":367,"to":370,"sanitized":358},{"summary":377,"deductions":378},"The 'social-media-badge-widget' plugin v2.7.0 exhibits a mixed security posture. On the positive side, there are no known CVEs, no raw SQL queries, and a good number of identified output operations are properly escaped. The plugin also correctly implements nonce and capability checks, indicating some awareness of WordPress security best practices. The absence of file operations and external HTTP requests further reduces potential attack vectors.\n\nHowever, the presence of the `create_function` PHP construct is a significant concern. While not directly linked to a taint flow in this analysis, `create_function` is deprecated and can be a source of vulnerabilities, especially if user-supplied data is passed into it without proper sanitization. The low percentage of properly escaped outputs (23%) suggests that a substantial number of dynamic outputs might be vulnerable to cross-site scripting (XSS) attacks if they handle user-controlled data, even though no specific taint flows were identified in this static analysis. The lack of any identified entry points in the static analysis is unusual and could mean the scan was incomplete or that the plugin genuinely has no direct user-facing interactions that the tools could detect.\n\nGiven the clean vulnerability history and the absence of identified critical taint flows, the immediate risk appears to be moderate. The primary concerns stem from the use of `create_function` and the high proportion of unescaped output. A comprehensive security audit would be beneficial to confirm the absence of vulnerabilities related to these areas and to ensure the static analysis covered all plugin functionalities.",[379,382],{"reason":380,"points":381},"Use of deprecated and potentially dangerous function (create_function)",15,{"reason":383,"points":103},"Low percentage of properly escaped outputs","2026-03-16T20:28:36.629Z",{"wat":386,"direct":410},{"assetPaths":387,"generatorPatterns":397,"scriptPaths":398,"versionParams":400},[388,389,390,391,392,393,394,395,396],"\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fjquery-ui-grey.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fjquery-ui-black.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fjquery-ui-blue.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fjquery-ui-red.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fjquery-ui-green.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fjquery-ui-skeleton.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fsocial-media-badge-widget-skeleton.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fcss\u002Fsocial-media-badge-widget.min.css","\u002Fwp-content\u002Fplugins\u002Fsocial-media-badge-widget\u002Fjs\u002Fsocial-media-badge-widget.min.js",[],[399],"social-media-badge-widget\u002Fjs\u002Fsocial-media-badge-widget.min.js",[401,402,403,404,405,406,407,408,409],"social-media-badge-widget\u002Fcss\u002Fjquery-ui-grey.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fjquery-ui-black.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fjquery-ui-blue.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fjquery-ui-red.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fjquery-ui-green.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fjquery-ui-skeleton.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fsocial-media-badge-widget-skeleton.min.css?ver=","social-media-badge-widget\u002Fcss\u002Fsocial-media-badge-widget.min.css?ver=","social-media-badge-widget\u002Fjs\u002Fsocial-media-badge-widget.min.js?ver=",{"cssClasses":411,"htmlComments":413,"htmlAttributes":414,"restEndpoints":415,"jsGlobals":416,"shortcodeOutput":418},[412],"smbw",[],[],[],[417],"website_information",[]]