[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYqwc2ri8r6VUjZ9zdXWcU9S_1HHinVJPunf5iALNiFU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":15,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":128,"fingerprints":223},"socwidgit","SocWidgIt!","0.5.1","elCreator","https:\u002F\u002Fprofiles.wordpress.org\u002Felcreator\u002F","\u003Cp>With this plugin you can easy place some Social Like buttons to sidebar.\u003Cbr \u002F>\nCurrent release supports vk.com (vkontakte.ru) Like, Facebook Like, Twitter Like and Google Plus (+1)\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>This plug-in is not guaranteed. You can use this plug-in for free regardless of the purpose.\u003C\u002Fp>\n\u003Ch3>Contact\u003C\u002Fh3>\n\u003Cp>admin@itcreati.com\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fitcreati.com\u003C\u002Fp>\n","With this plugin you can easy place some Social Like buttons to sidebar.",10,2388,0,"2011-12-03T22:57:00.000Z","","2.8",[18,19,20,21,22],"facebook","sidebar","social","twitter","widget","http:\u002F\u002Fwww.itcreati.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocwidgit.0.5.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"elcreator",1,30,84,"2026-04-04T07:23:14.706Z",[36,55,75,94,110],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":33,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":15,"tags":50,"homepage":52,"download_link":53,"security_score":54,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"juiz-last-tweet-widget","Juiz Last Tweet Widget","1.3.8","Geoffrey","https:\u002F\u002Fprofiles.wordpress.org\u002Fcreativejuiz\u002F","\u003Cp>Add a widget to your sidebar to show your latest tweet(s) with style and without JavaScript! Retweet, Favorite and Reply links are available.\u003C\u002Fp>\n\u003Cp>This sidebar’s widget offer you the possibility to show your last tweet(s) (THE last by default) in your WordPress web site.\u003Cbr \u002F>\nThe advantage of this plugin is the absence of JavaScript script to load tweets from twitter : a very good point for your page speed.\u003Cbr \u002F>\nAnother advantage is the possibility to use a cache system with an adjustable period.\u003Cbr \u002F>\nYou also can show your avatar, action links (Favorite, Reply, Retweet), activate a slideshow of latest tweets, and customize the CSS.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In admin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to install.\u003C\u002Fli>\n\u003Cli>Panel for easy configuration (Appearance -> Widgets).\u003C\u002Fli>\n\u003Cli>Show or hide your avatar\u003C\u002Fli>\n\u003Cli>Default CSS can be disabled or customized\u003C\u002Fli>\n\u003Cli>Unlimited customization (colors of the widget, several default styles, etc.)\u003C\u002Fli>\n\u003Cli>Adjustable period for cache system\u003C\u002Fli>\n\u003Cli>Can active the action links\u003C\u002Fli>\n\u003Cli>Can active an auto slideshow script and chose delay between two tweets\u003C\u002Fli>\n\u003Cli>Shortcode to insert the widget where you want\u003C\u002Fli>\n\u003Cli>Included: Tutorial to create a Twitter plugin (needed for API 1.1)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In your site:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Smart default style (CSS) and compatible with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsocial-subscribers-counter\u002F\" rel=\"ugc\">Social Subscribers Counter\u003C\u002Fa> styles\u003C\u002Fli>\n\u003Cli>Flat styles with customizable colors\u003C\u002Fli>\n\u003Cli>Display link (with special CSS classes) for hastags, users, and web link (\u003Ccode>nofollow\u003C\u002Fcode> links)\u003C\u002Fli>\n\u003Cli>Display twitter’s user link and statut’s link\u003C\u002Fli>\n\u003Cli>Display source (web, Tweetdeck, etc.) when it’s possible\u003C\u002Fli>\n\u003Cli>In option: Show action links like Retweet, Reply and Fav\u003C\u002Fli>\n\u003Cli>In option: little slideshow of one tweet in a list of tweets\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For developpers, numerous hooks are available, template function is available (see FAQ for more info) 😉\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Spannish\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>Turkish (thanks to \u003Ca href=\"http:\u002F\u002Fhakanertr.wordpress.com\u002F\" title=\"His website\" rel=\"nofollow ugc\">Hakaner\u003C\u002Fa>!)\u003C\u002Fli>\n\u003Cli>Nowegian (thanks to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Fnilsel\" title=\"His WordPress profile\" rel=\"ugc\">Nilsel\u003C\u002Fa>!)\u003C\u002Fli>\n\u003Cli>Italian (thanks to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Fsuperciccio14\" title=\"His WordPress profile\" rel=\"ugc\">superciccio14\u003C\u002Fa>!)\u003C\u002Fli>\n\u003Cli>Portuguese (Brazilian) (thanks to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Ftrindademeier\" title=\"His WordPress profile\" rel=\"ugc\">trindademeier\u003C\u002Fa>!)\u003C\u002Fli>\n\u003Cli>Dutch (thanks to \u003Ca href=\"http:\u002F\u002Fwww.directic.nl\" title=\"His Web site\" rel=\"nofollow ugc\">Jan Willem Wilmsen\u003C\u002Fa>!)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Thanks to \u003Ca href=\"http:\u002F\u002Fscreenfeed.fr\" rel=\"nofollow ugc\">Greg\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Ftweetpress.fr\u002F\" rel=\"nofollow ugc\">Julien\u003C\u002Fa> for your advices in some parts of this plugin 😉\u003C\u002Fp>\n\u003Ch3>Informations\u003C\u002Fh3>\n\u003Cp>Another plugin :\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fjuiz-social-post-sharer\u002F\" title=\"WordPress Social Networks Buttons\" rel=\"ugc\">Juiz Social Post Sharer\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You like it ? You can donate or \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fintent\u002Ftweet?hashtags=CreativeJuiz&original_referer=http%3A%2F%2Fwordpress.org%2Fextend%2Fplugins%2Fjuiz-last-tweet-widget%2F&related=geoffrey_crofte&source=WordPress&text=I%20use%20Juiz-Last-Tweet%20Plugin%20for%20WordPress.%20It's%20usefull!!&url=http%3A%2F%2Fwww.creativejuiz.fr%2Fblog%2Fwordpress%2Fwordpress-plugin-afficher-derniers-tweets-widget&via=geoffrey_crofte\" title=\"Tweet a little word\" rel=\"nofollow ugc\">tweet\u003C\u002Fa> for this plugin.\u003Cbr \u002F>\nThank you !\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=P39NJPCWVXGDY&lc=FR&item_name=Juiz%20Last%20Tweet%20Widget%20%2d%20WordPress%20Plugin&currency_code=EUR&bn=PP%2dDonationsBF%3abtn_donateCC_LG%2egif%3aNonHostedGuest\" title=\"Donate to this WordPress plugin\" rel=\"nofollow ugc\">Donate\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Full documentation in the plugin folder ! (documentation.html)\u003Cbr \u002F>\nOr here: \u003Ca href=\"http:\u002F\u002Fcreativejuiz.fr\u002Fblog\u002Fdoc\u002Fjuiz-last-tweet-widget-documentation.html\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n","Add a widget to your sidebar to show your latest tweet(s) with style and without JavaScript! Retweet, Favorite and Reply links are available.",600,104303,26,"2024-11-28T16:08:00.000Z","6.7.5","3.0.1",[51,19,20,21,22],"last","https:\u002F\u002Fwww.creativejuiz.fr\u002Fblog\u002Fwordpress\u002Fwordpress-plugin-afficher-derniers-tweets-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjuiz-last-tweet-widget.zip",92,{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":54,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":15,"tags":69,"homepage":73,"download_link":74,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"metro-style-social-widget","Metro Style Social Widget","1.0.2","Manivannan M","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanivannan-m\u002F","\u003Cp>A light weight wordpress widget that displays Metro Style social network icons in Sidebar and links to your social network profiles.\u003C\u002Fp>\n\u003Cp>Add button option will display the Like \u002F Follow button on the Social icons so that your users can immediately Like \u002F Follow your page or profile without leaving your site.\u003C\u002Fp>\n\u003Cp>Since every one use Facebook and Twitter, we made them as default and other network as optional.\u003C\u002Fp>\n\u003Ch4>Update\u003C\u002Fh4>\n\u003Cp>Color Picker added, Now you can set any color to any icons in the widget.\u003C\u002Fp>\n\u003Cp>On Users request Google+ and RSS Feed are now optional.\u003C\u002Fp>\n\u003Cp>If needed you can display Google+, Linkedin, Youtube, RSS Feed and Pinterest else choose don’t show option in widget settings.\u003C\u002Fp>\n\u003Cp>Responsive design, Plugin will automatically fit within your siderbar width else you can specify width for the widget.\u003C\u002Fp>\n\u003Ch4>Next Release will Include the Below Feature\u003C\u002Fh4>\n\u003Cul>\n\u003Cli> User side configuration \u002F customization in Widget admin page\u003C\u002Fli>\n\u003Cli> More Styles \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support \u002F Contact\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\u002Fmetro-style-social-widget-wordpress\" title=\"More info about Metro Style Social Widget plugin\" rel=\"nofollow ugc\">More Info \u002F DEMO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.aidful.com\" title=\"Contact at Aidful.com\" rel=\"nofollow ugc\">Developer Blog: Aidful.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Sponsors\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.specificfeeds.com\u002F\" title=\"Donated 30 USD\" rel=\"nofollow ugc\">SpecificFeeds\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like this plug-in, please don’t forget to rate this plugin.\u003C\u002Fp>\n","Metro Style Social Network Widget",300,56781,22,"2016-08-02T08:32:00.000Z","4.5.33","2.5",[18,70,71,72,21],"google","metro-social-widget","specificfeeds","http:\u002F\u002Fwww.aidful.com\u002Fmetro-style-social-widget-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmetro-style-social-widget.1.0.2.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":54,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":15,"tags":89,"homepage":92,"download_link":93,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"social-media-badge-widget","Social Media Badge Widget","2.7.0","StressFree Sites","https:\u002F\u002Fprofiles.wordpress.org\u002Fstressfree-sites\u002F","\u003Cp>This plugin creates a widget which easily displays the social badges from the leading social media websites (Twitter, Facebook, Google+, LinkedIn, You Tube, Pinterest and Flickr) in a clear and elegant way.\u003C\u002Fp>\n\u003Cp>It displays the information in an accordion, so only one section is open at a time, which ensures your website does not become cluttered visually.\u003C\u002Fp>\n\u003Cp>The plugin includes a plugin admin page where it is possible to customise everything from the social media channel to the visual styling of the accordion.\u003C\u002Fp>\n\u003Ch3>Plugin features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Widget content displays in a jQuery accordion.\u003C\u002Fli>\n\u003Cli>Display Twitter, Facebook, Google+, LinkedI, You Tube, Pinterest, Flickr\u003C\u002Fli>\n\u003Cli>Customise the Twitter widget for different colour schemes and to show replies.\u003C\u002Fli>\n\u003Cli>Customise the Facebook widget for different colour schemes, show news stream and show fans faces.\u003C\u002Fli>\n\u003Cli>Change the colour of the accordion, gray, blue, red, green and black.\u003C\u002Fli>\n\u003Cli>Two different icons sets: colour and grey.\u003C\u002Fli>\n\u003Cli>Select accordion section to open on page load.\u003C\u002Fli>\n\u003Cli>Ability to make the accordion all collapsible and load with all section closed.\u003C\u002Fli>\n\u003Cli>Choose which accordion section to display on each widget.\u003C\u002Fli>\n\u003Cli>Skeleton styling to enable easy custom styling.\u003C\u002Fli>\n\u003Cli>Ability to manually load jQuery to increase compatability.\u003C\u002Fli>\n\u003Cli>Troubleshooting section to ensure any problems are resolved quickly.\u003C\u002Fli>\n\u003Cli>Support requests answered in less and 24 hours on average.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Like this plugin?\u003C\u002Fh3>\n\u003Cp>You maybe interested in our \u003Ca href=\"http:\u002F\u002Fsocialprofilesandcontactdetailswordpressplugin.com\u002F\" rel=\"nofollow ugc\">premium plugin\u003C\u002Fa> to enable more features.\u003C\u002Fp>\n\u003Cp>Otherwise, please have a look at our other plugin \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbusiness-contact-widget\u002F\" rel=\"ugc\">Business Contact Widget\u003C\u002Fa> which displays all your contact details in a clear and elegant way.\u003C\u002Fp>\n","This plugin creates a widget which easily displays the social badges from the leading social media websites in a clear an elegant way.",200,54660,5,"2015-09-17T23:00:00.000Z","4.3.34","3.0.0",[90,18,91,21,22],"badge","social-media","http:\u002F\u002Fstressfreesites.co.uk\u002Fplugins\u002Fsocial-media-badge-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-badge-widget.2.7.0.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":13,"num_ratings":13,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":15,"tags":107,"homepage":108,"download_link":109,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"social-icons-widget","Social Icons Widget","0.1a","Curtiss Grymala","https:\u002F\u002Fprofiles.wordpress.org\u002Fcgrymala\u002F","\u003Cp>Adds an available widget to list various social media profiles. The following social media sites are included by default:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>FriendFeed\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin also includes a filter hook allowing you to extend the available services.\u003C\u002Fp>\n\u003Cp>By default, this plugin outputs an unordered list (ul) with a class of \u003Ccode>social-icons-list\u003C\u002Fcode>. Each service is output as a list item (li) with the service name used as the HTML class attribute. Filters are available to allow you to change those HTML elements.\u003C\u002Fp>\n","A developer-friendly plugin that allows you to add a widget with links to various social media profiles.",100,19301,"2011-08-26T19:53:00.000Z","3.2.1","3.1",[18,91,21,22],"http:\u002F\u002Fplugins.ten-321.com\u002Fsocial-icons-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-icons-widget.0.1.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":120,"num_ratings":121,"last_updated":122,"tested_up_to":123,"requires_at_least":49,"requires_php":15,"tags":124,"homepage":126,"download_link":127,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"round-social-media-buttons","Round Social Media Buttons","1.0","solomon_s_scott","https:\u002F\u002Fprofiles.wordpress.org\u002Fsolomon_s_scott\u002F","\u003Cp>This plugin creates a responsive widget that displays up to eight different social media websites. (Not all 8 are required)\u003C\u002Fp>\n\u003Col>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003C\u002Fol>\n","Provides a responsive social media widget that displays up to eight different social media websites.",90,9114,74,3,"2014-04-17T23:05:00.000Z","3.9.40",[18,125,91,21,22],"linkedin","http:\u002F\u002Fsolomonscott.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fround-social-media-buttons.zip",{"attackSurface":129,"codeSignals":141,"taintFlows":175,"riskAssessment":210,"analyzedAt":222},{"hooks":130,"ajaxHandlers":137,"restRoutes":138,"shortcodes":139,"cronEvents":140,"entryPointCount":13,"unprotectedCount":13},[131],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","plugins_loaded","widget_socwidgit_init","socWidgIt.php",134,[],[],[],[],{"dangerousFunctions":142,"sqlUsage":143,"outputEscaping":145,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":174},[],{"prepared":13,"raw":13,"locations":144},[],{"escaped":146,"rawEcho":147,"locations":148},2,13,[149,152,154,156,158,160,161,162,164,166,168,170,172],{"file":135,"line":150,"context":151},33,"raw output",{"file":135,"line":153,"context":151},34,{"file":135,"line":155,"context":151},44,{"file":135,"line":157,"context":151},52,{"file":135,"line":159,"context":151},65,{"file":135,"line":159,"context":151},{"file":135,"line":159,"context":151},{"file":135,"line":163,"context":151},71,{"file":135,"line":165,"context":151},78,{"file":135,"line":167,"context":151},109,{"file":135,"line":169,"context":151},112,{"file":135,"line":171,"context":151},115,{"file":135,"line":173,"context":151},118,[],[176,193,201],{"entryPoint":177,"graph":178,"unsanitizedCount":121,"severity":192},"widget_socwidgit_init (socWidgIt.php:15)",{"nodes":179,"edges":189},[180,184],{"id":181,"type":182,"label":183,"file":135,"line":46},"n0","source","$_SERVER (x3)",{"id":185,"type":186,"label":187,"file":135,"line":155,"wp_function":188},"n1","sink","echo() [XSS]","echo",[190],{"from":181,"to":185,"sanitized":191},false,"medium",{"entryPoint":194,"graph":195,"unsanitizedCount":121,"severity":192},"widget_socwidgit (socWidgIt.php:20)",{"nodes":196,"edges":199},[197,198],{"id":181,"type":182,"label":183,"file":135,"line":46},{"id":185,"type":186,"label":187,"file":135,"line":155,"wp_function":188},[200],{"from":181,"to":185,"sanitized":191},{"entryPoint":202,"graph":203,"unsanitizedCount":121,"severity":209},"\u003CsocWidgIt> (socWidgIt.php:0)",{"nodes":204,"edges":207},[205,206],{"id":181,"type":182,"label":183,"file":135,"line":46},{"id":185,"type":186,"label":187,"file":135,"line":155,"wp_function":188},[208],{"from":181,"to":185,"sanitized":191},"low",{"summary":211,"deductions":212},"The \"socwidgit\" plugin v0.5.1 presents a mixed security posture. On the positive side, the absence of known CVEs and a clean vulnerability history suggest a relatively stable and well-maintained codebase, at least concerning historical vulnerabilities. The plugin also appears to have a minimal attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all SQL queries utilize prepared statements, which is a critical security best practice for preventing SQL injection vulnerabilities.\n\nHowever, there are significant concerns arising from the static analysis. The low percentage of properly escaped output (13%) is a major red flag, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is not properly escaped before being displayed in the frontend or backend could be exploited. Additionally, the taint analysis revealed 3 flows with unsanitized paths, and while no critical or high severity issues were identified at this stage, unsanitized paths often lead to security vulnerabilities, especially when combined with insufficient output escaping. The lack of nonce checks and capability checks across the plugin's entry points (though there are none in this case) generally indicates a less robust approach to authorization and request verification if new entry points were to be added without careful consideration.\n\nIn conclusion, while \"socwidgit\" benefits from a clean vulnerability history and secure SQL practices, the severe lack of output escaping and the presence of unsanitized paths represent significant weaknesses that could be exploited. Developers should prioritize addressing the output escaping issues to mitigate XSS risks and investigate the identified unsanitized paths.",[213,216,218,220],{"reason":214,"points":215},"Low output escaping rate",15,{"reason":217,"points":11},"Unsanitized paths found",{"reason":219,"points":85},"No nonce checks",{"reason":221,"points":85},"No capability checks","2026-03-17T00:43:39.800Z",{"wat":224,"direct":232},{"assetPaths":225,"generatorPatterns":227,"scriptPaths":228,"versionParams":231},[226],"\u002Fwp-content\u002Fplugins\u002Fsocwidgit\u002Fopenapi.js",[],[229,230],"http:\u002F\u002Fplatform.twitter.com\u002Fwidgets.js","https:\u002F\u002Fapis.google.com\u002Fjs\u002Fplusone.js",[],{"cssClasses":233,"htmlComments":241,"htmlAttributes":242,"restEndpoints":247,"jsGlobals":248,"shortcodeOutput":251},[234,235,236,237,238,239,240],"SocWidgIt","SocWidgIt-FB","SocWidgIt-VK","SocWidgIt-Tw","SocWidgIt-GP","SocWidgIt-FB iframe","vk_like",[],[243,244,245,246],"data-count","data-counturl","data-via","data-related",[],[249,250],"VK","gapi",[]]