[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f44v5j9MJn1VN4uX0Q1dK8DjtXiet8ewB0F5dTKH5Gt8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":116,"fingerprints":281},"sociallist-social-bookmarking-widget","Sociallist","1.5.1","Chris Clark","https:\u002F\u002Fprofiles.wordpress.org\u002Fktulhu\u002F","\u003Cp>SocialList.org spreads your content across the Internet by making it easier for your website visitors to share it with other people. Social bookmarking sites are a popular way to store, classify, share and search links. In a social bookmarking system, users store lists of Internet resources, which they find useful. These lists are both accessible to the public or a specific network, and other people with similar interests can view the links by category, tags, or even randomly. Our simple yet powerful widget and plugins are very easy to install. SocialList Bookmarking Widget is the best tool to help your website visitors create a buzz for your site and increase its ranking and popularity.\u003C\u002Fp>\n\u003Ch3>Upgrade\u003C\u002Fh3>\n\u003Col>\n\u003Cli>First deactivate Sociallist\u003C\u002Fli>\n\u003Cli>Remove the sociallist-social-bookmarking-widget directory\u003C\u002Fli>\n\u003Cli>Unzip the sociallist-social-bookmarking-widget.\u003Cem>.\u003C\u002Fem>.zip file.\u003C\u002Fli>\n\u003Cli>Upload the the sociallist-social-bookmarking-widget folder (not just the files in it!) in your\u003Cbr \u002F>\nwp-contents\u002Fplugins folder. If you’re using FTP, use ‘binary’ mode.\u003C\u002Fli>\n\u003Cli>In your WordPress administration, go to the Plugins page\u003C\u002Fli>\n\u003Cli>Activate the Sociallist plugin and a subpage for Sociallist will appear\u003Cbr \u002F>\nin your Options menu.\u003C\u002Fli>\n\u003C\u002Fol>\n","Allow websurfers to save and share interesting pages. The plugin appends widget for popular social bookmarking sites to the end of blog’s posts.",10,5497,0,"2008-05-08T04:34:00.000Z","2.5.1","2.0.2","",[19,20,21,22,23],"bookmark","bookmarking","bookmarks","social","social-bookmarking","http:\u002F\u002Fsociallist.org\u002Fplugin-wp.php","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsociallist-social-bookmarking-widget.1.5.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"ktulhu",2,20,30,84,"2026-04-05T15:55:02.746Z",[38,54,74,88,101],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":13,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":52,"download_link":53,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"sociable-re","Sociable RE","3.5.2.10","jackyfox","https:\u002F\u002Fprofiles.wordpress.org\u002Fjackyfox\u002F","\u003Cp>Плагин добавляет множество кнопок для публикации ссылок на страницы вашего блога в различных социальных сетях и сервисах закладок.\u003C\u002Fp>\n\u003Cp>В русской версии плагина добавлены:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>ВКонтакте\u003C\u002Fli>\n\u003Cli>Мой Мир @mail.ru\u003C\u002Fli>\n\u003Cli>Яндекс.Закладки\u003C\u002Fli>\n\u003Cli>БобрДобр\u003C\u002Fli>\n\u003Cli>Memori.ru\u003C\u002Fli>\n\u003Cli>МоёМесто.ru\u003C\u002Fli>\n\u003Cli>Сто закладок\u003C\u002Fli>\n\u003Cli>MisterWong.RU\u003C\u002Fli>\n\u003Cli>Google Buzz, он же «Живая лента Google»\u003C\u002Fli>\n\u003Cli>Google Orkut\u003C\u002Fli>\n\u003Cli>Live Journal, он же Живой Журнал\u003C\u002Fli>\n\u003Cli>Blogger\u003C\u002Fli>\n\u003Cli>Одноклассники\u003C\u002Fli>\n\u003Cli>Блог Я.ру\u003C\u002Fli>\n\u003Cli>Блог liveinternet.ru\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Чего-то не хватает? Запросите добавление Вашего любимого сайта на \u003Ca href=\"http:\u002F\u002Fwww.jackyfox.com\u002Fsociable-re\u002F\" rel=\"nofollow ugc\">странице плагина\u003C\u002Fa>\u003C\u002Fp>\n","Добавляет кнопки для публикации ссылок в соц. сетях на страницы блога.",100,16820,"2011-05-29T16:56:00.000Z","3.1.4","2.8",[19,20,21,22,23],"http:\u002F\u002Fwww.jackyfox.com\u002Fsociable-re\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsociable-re.3.5.2.10.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":13,"num_ratings":13,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":17,"tags":67,"homepage":69,"download_link":70,"security_score":71,"vuln_count":72,"unpatched_count":72,"last_vuln_date":73,"fetched_at":28},"social-profilr-display-social-network-profile","Social Profilr","1.0","socialprofilr","https:\u002F\u002Fprofiles.wordpress.org\u002Fsocialprofilr\u002F","\u003Cp>This plugin is a sidebar widget which will display icons\u003Cbr \u002F>\nfor your social network sites that linkback to your\u003Cbr \u002F>\nsocial networking profiles.\u003C\u002Fp>\n\u003Cp>There is a choice of two sizes for the icons 16×16 or 32×32.\u003Cbr \u002F>\nIcons have been custom designed therefore unique.\u003Cbr \u002F>\nThe display options are Horizontal, Vertical or DropDown.\u003Cbr \u002F>\nHorizontal displays the name of the social network, DropDown\u003Cbr \u002F>\ndisplays on hovering over the ‘SocialProfilr’ custom icon.\u003C\u002Fp>\n\u003Cp>The style of display is unique whereby initially ‘grey’ display\u003Cbr \u002F>\nand hover over will display in colour.\u003C\u002Fp>\n\u003Cp>All icons have rel=nofollow, this ensures that your webpage is\u003Cbr \u002F>\nnot leaking essential PR juice.\u003C\u002Fp>\n\u003Cp>Statistics are provided via the ‘socialprofilr statistics’ link\u003Cbr \u002F>\nunder ‘tools’within the admin dashboard.  This will show display\u003Cbr \u002F>\nwhich social network profile has been linked on per day.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Cem>Version With Statistics Only Available If Downloaded From Website\u003C\u002Fem>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Insert custom description above social icons.\u003C\u002Fp>\n\u003Ch3>Donation\u003C\u002Fh3>\n\u003Cp>Your donation will not only put bread on the table but compel me to create\u003Cbr \u002F>\noutstanding tools that can be of true benefit and provide an excellent\u003Cbr \u002F>\nuser experience for you and you visitors.\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fsocialprofilr.com\u002Fdonate\u002F\u003C\u002Fp>\n\u003Ch3>Update\u003C\u002Fh3>\n\u003Cp>Since you can only receive this plugin from the SVN repository you will not\u003Cbr \u002F>\nreceive the version that has statistics.  By registering and optin at the\u003Cbr \u002F>\nsite then you can download the statistic version and should recieve latest\u003Cbr \u002F>\nupdates and new creations by email.  Perchance you got this by other medium\u003Cbr \u002F>\nI suggest you sign up As Soon As otherwise you will missed out on the latest\u003Cbr \u002F>\ndevelopments coming up!\u003C\u002Fp>\n","Sidebar Widget To Display Eye Candy Icon to Display Your Social Network Profile",40,16077,"2009-02-06T13:37:00.000Z","2.7","2.5",[19,20,21,23,68],"social-bookmarks","http:\u002F\u002Fwww.socialprofilr.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-profilr-display-social-network-profile.zip",63,1,"2025-12-31 00:00:00",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":33,"downloaded":82,"rating":13,"num_ratings":13,"last_updated":83,"tested_up_to":84,"requires_at_least":50,"requires_php":17,"tags":85,"homepage":86,"download_link":87,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"ceske-a-slovenske-linkovaci-sluzby","České a slovenské linkovací služby","0.3","pavelevap","https:\u002F\u002Fprofiles.wordpress.org\u002Fpavelevap\u002F","\u003Cp>České a slovenské linkovací služby (Linkuj.cz, Jagg.cz, MediaBlog.cz, TOPodkazy.cz, Bookmarky.cz, Mojelinky.sk, vybrali.sme.sk, Pozrisi.sk, Park.sk, TextTip.eu, Top Články.cz a Blogus.cz) jako doplněk pluginu \u003Ca href=\"http:\u002F\u002Fyoast.com\u002Fwordpress\u002Fsociable\u002F\" rel=\"nofollow ugc\">Sociable\u003C\u002Fa>.\u003Cbr \u002F>\nTento plugin tedy vyžaduje nainstalovaný plugin Sociable (verze 3.4 a vyšší).\u003C\u002Fp>\n\u003Cp>Pokud chcete přidat další službu, neváhejte o ni požádat \u003Ca href=\"http:\u002F\u002Fwww.separatista.net\u002Fwordpress\u002Fpluginy\u002Fceske-a-slovenske-linkovaci-sluzby-jako-samostatny-plugin-ve-wordpressu\" rel=\"nofollow ugc\">zde\u003C\u002Fa>.\u003C\u002Fp>\n","České a slovenské linkovací služby jako doplněk pluginu Sociable.",3295,"2009-11-02T18:00:00.000Z","2.8.5",[19,20,21,22,23],"http:\u002F\u002Fwww.separatista.net\u002Fwordpress\u002Fpluginy\u002Fceske-a-slovenske-linkovaci-sluzby-jako-samostatny-plugin-ve-wordpressu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fceske-a-slovenske-linkovaci-sluzby.0.3.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":17,"short_description":94,"active_installs":33,"downloaded":95,"rating":13,"num_ratings":13,"last_updated":96,"tested_up_to":15,"requires_at_least":97,"requires_php":17,"tags":98,"homepage":99,"download_link":100,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"sociofluid","SocioFluid","1.1","adiian","https:\u002F\u002Fprofiles.wordpress.org\u002Fadiian\u002F","SocioFluid is a social bookmarking plugin for wordpress. For details you can check the \u003Ca href=\"http:\u002F\u002Fwww.improveseo.info\u002FSocioFluid\">SocioFluid Homepage\u003C\u002Fa>.",33370,"2008-11-01T23:44:00.000Z","2.3.1",[19,20,21,22,23],"http:\u002F\u002Fwww.improveseo.info\u002Fcategory\u002Fsociofluid\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsociofluid.zip",{"slug":102,"name":103,"version":91,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":33,"downloaded":108,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":109,"requires_at_least":66,"requires_php":17,"tags":110,"homepage":113,"download_link":114,"security_score":46,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":115},"wp-add-social-bookmarks","Add Social Bookmarks","Aditya Subawa","https:\u002F\u002Fprofiles.wordpress.org\u002Fadityasubawa\u002F","\u003Cp>This plugin is for wordpress users, both beginner and expert.function is to distribute your articles to popular social bookmarking sites. This plugin provides social bookmarking 8 favorites such as,Facebook, twitter, reddit, digg, technorati, stumbleupon, delicious and yahoo buzz.\u003C\u002Fp>\n\u003Cp>This plugin requires no configuration at all. simply activate and the plugin will be installed under your wordpress post articles.\u003C\u002Fp>\n\u003Cp>image in the folder “images” in directory installation of this plugin ‘\u002Fwp-content\u002Fplugins\u002Fwp-add-socialbookmarks\u002Fimages’. if you want to change an image, just need a little change. and can be customized to the Editor Plugin.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>Refer Installation and FAQ section for all required information\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Cp>Ordered list:\u003C\u002Fp>\n\u003Col>\n\u003Cli>WP Add Social Bookmarks plugin available so far\u003C\u002Fli>\n\u003Cli>No configuration required at all\u003C\u002Fli>\n\u003C\u002Fol>\n","WP Add Social Bookmarks + Animation effect is a plug-in designed to add major social bookmarks to your website.",9799,"3.0.5",[111,112,21,23,68],"add-simple-social-bookmarks","adding-social-bookmarks","http:\u002F\u002Fwww.adityawebs.com\u002Fblog\u002Fwordpress\u002F313-wp-add-social-bookmarks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-add-social-bookmarks.zip","2026-03-15T10:48:56.248Z",{"attackSurface":117,"codeSignals":145,"taintFlows":177,"riskAssessment":267,"analyzedAt":280},{"hooks":118,"ajaxHandlers":141,"restRoutes":142,"shortcodes":143,"cronEvents":144,"entryPointCount":13,"unprotectedCount":13},[119,125,128,133,137],{"type":120,"name":121,"callback":122,"file":123,"line":124},"filter","the_content","sociallist_display_hook","sociallist.php",114,{"type":120,"name":126,"callback":122,"file":123,"line":127},"the_excerpt",115,{"type":129,"name":130,"callback":131,"file":123,"line":132},"action","wp_head","sociallist_wp_head",133,{"type":129,"name":134,"callback":135,"file":123,"line":136},"admin_menu","sociallist_admin_menu",187,{"type":129,"name":138,"callback":139,"file":123,"line":140},"admin_head","sociallist_admin_head",193,[],[],[],[],{"dangerousFunctions":146,"sqlUsage":147,"outputEscaping":149,"fileOperations":72,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":176},[],{"prepared":13,"raw":13,"locations":148},[],{"escaped":13,"rawEcho":150,"locations":151},12,[152,155,157,159,161,163,165,166,168,170,172,174],{"file":123,"line":153,"context":154},135,"raw output",{"file":123,"line":156,"context":154},136,{"file":123,"line":158,"context":154},211,{"file":123,"line":160,"context":154},216,{"file":123,"line":162,"context":154},298,{"file":123,"line":164,"context":154},323,{"file":123,"line":164,"context":154},{"file":123,"line":167,"context":154},332,{"file":123,"line":169,"context":154},339,{"file":123,"line":171,"context":154},341,{"file":123,"line":173,"context":154},348,{"file":123,"line":175,"context":154},350,[],[178,240],{"entryPoint":179,"graph":180,"unsanitizedCount":238,"severity":239},"sociallist_submenu (sociallist.php:248)",{"nodes":181,"edges":229},[182,187,192,196,198,202,204,208,210,214,216,220,222,225],{"id":183,"type":184,"label":185,"file":123,"line":186},"n0","source","$_REQUEST['lang']",260,{"id":188,"type":189,"label":190,"file":123,"line":186,"wp_function":191},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":193,"type":184,"label":194,"file":123,"line":195},"n2","$_REQUEST['button_dx']",262,{"id":197,"type":189,"label":190,"file":123,"line":195,"wp_function":191},"n3",{"id":199,"type":184,"label":200,"file":123,"line":201},"n4","$_REQUEST['button_dy']",263,{"id":203,"type":189,"label":190,"file":123,"line":201,"wp_function":191},"n5",{"id":205,"type":184,"label":206,"file":123,"line":207},"n6","$_REQUEST['cols']",264,{"id":209,"type":189,"label":190,"file":123,"line":207,"wp_function":191},"n7",{"id":211,"type":184,"label":212,"file":123,"line":213},"n8","$_REQUEST['rows']",265,{"id":215,"type":189,"label":190,"file":123,"line":213,"wp_function":191},"n9",{"id":217,"type":184,"label":218,"file":123,"line":219},"n10","$_REQUEST['tagline']",278,{"id":221,"type":189,"label":190,"file":123,"line":219,"wp_function":191},"n11",{"id":223,"type":184,"label":224,"file":123,"line":162},"n12","$_SERVER['REQUEST_URI']",{"id":226,"type":189,"label":227,"file":123,"line":162,"wp_function":228},"n13","echo() [XSS]","echo",[230,232,233,234,235,236,237],{"from":183,"to":188,"sanitized":231},false,{"from":193,"to":197,"sanitized":231},{"from":199,"to":203,"sanitized":231},{"from":205,"to":209,"sanitized":231},{"from":211,"to":215,"sanitized":231},{"from":217,"to":221,"sanitized":231},{"from":223,"to":226,"sanitized":231},7,"medium",{"entryPoint":241,"graph":242,"unsanitizedCount":238,"severity":266},"\u003Csociallist> (sociallist.php:0)",{"nodes":243,"edges":258},[244,245,246,247,248,249,250,251,252,253,254,255,256,257],{"id":183,"type":184,"label":185,"file":123,"line":186},{"id":188,"type":189,"label":190,"file":123,"line":186,"wp_function":191},{"id":193,"type":184,"label":194,"file":123,"line":195},{"id":197,"type":189,"label":190,"file":123,"line":195,"wp_function":191},{"id":199,"type":184,"label":200,"file":123,"line":201},{"id":203,"type":189,"label":190,"file":123,"line":201,"wp_function":191},{"id":205,"type":184,"label":206,"file":123,"line":207},{"id":209,"type":189,"label":190,"file":123,"line":207,"wp_function":191},{"id":211,"type":184,"label":212,"file":123,"line":213},{"id":215,"type":189,"label":190,"file":123,"line":213,"wp_function":191},{"id":217,"type":184,"label":218,"file":123,"line":219},{"id":221,"type":189,"label":190,"file":123,"line":219,"wp_function":191},{"id":223,"type":184,"label":224,"file":123,"line":162},{"id":226,"type":189,"label":227,"file":123,"line":162,"wp_function":228},[259,260,261,262,263,264,265],{"from":183,"to":188,"sanitized":231},{"from":193,"to":197,"sanitized":231},{"from":199,"to":203,"sanitized":231},{"from":205,"to":209,"sanitized":231},{"from":211,"to":215,"sanitized":231},{"from":217,"to":221,"sanitized":231},{"from":223,"to":226,"sanitized":231},"low",{"summary":268,"deductions":269},"The \"sociallist-social-bookmarking-widget\" plugin, version 1.5.1, presents a mixed security profile. On the positive side, the plugin boasts a completely clean vulnerability history with no known CVEs, indicating a strong track record of security. The absence of any declared dangerous functions, SQL queries without prepared statements, and external HTTP requests are also positive signs of secure coding practices. However, significant concerns arise from the static analysis. A critical finding is that 100% of the 12 output operations are not properly escaped. This means that any user-supplied data that is displayed by the plugin could potentially be exploited through cross-site scripting (XSS) attacks. Furthermore, the taint analysis revealed two flows with unsanitized paths, which could be indicative of potential vulnerabilities related to file path manipulation or directory traversal if not handled carefully, though the analysis did not flag these as critical or high severity. The lack of nonce and capability checks on the identified entry points, though currently zero, could become a risk if the plugin were to be extended or if new entry points are introduced without proper authentication and authorization measures. \n\nIn conclusion, while the plugin has a strong history of being vulnerability-free and avoids common pitfalls like raw SQL and dangerous functions, the complete lack of output escaping is a glaring security weakness that leaves it susceptible to XSS attacks. The unsanitized paths also warrant attention. Developers should prioritize addressing the output escaping issue to mitigate the risk of XSS. The absence of authentication checks, while not currently exploitable due to a zero attack surface, is a potential future risk that should be considered as the plugin evolves.",[270,273,276,278],{"reason":271,"points":272},"0% of outputs properly escaped",6,{"reason":274,"points":275},"2 flows with unsanitized paths",4,{"reason":277,"points":32},"0 capability checks found",{"reason":279,"points":32},"0 nonce checks found","2026-03-17T00:26:23.904Z",{"wat":282,"direct":291},{"assetPaths":283,"generatorPatterns":287,"scriptPaths":288,"versionParams":290},[284,285,286],"\u002Fwp-content\u002Fplugins\u002Fsociallist-social-bookmarking-widget\u002Fsociallist.css","\u002Fwp-content\u002Fplugins\u002Fsociallist-social-bookmarking-widget\u002Fsociallist-admin.css","\u002Fwp-content\u002Fplugins\u002Fsociallist-social-bookmarking-widget\u002Fdescription_selection.js",[],[289],"http:\u002F\u002Fsociallist.org\u002Fwidget.js",[],{"cssClasses":292,"htmlComments":295,"htmlAttributes":298,"restEndpoints":303,"jsGlobals":304,"shortcodeOutput":306},[293,294],"sociallist","sociallist_tagline",[296,297],"\u003C!-- SocialList.org BEGIN -->","\u003C!-- SocialList.org END -->",[299,300,301,302],"data-sociallist_url","data-sociallist_title","data-sociallist_text","data-sociallist_tags",[],[305],"sociallist_",[307],"\u003Cdiv class=\"sociallist\">\n\u003Cspan class=\"sociallist_tagline\">\n"]