[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fyBn3gTUEUx2bfK8PgXQI5opIwc1nGYN37DZLnw6kGY8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":89,"crawl_stats":38,"alternatives":95,"analysis":194,"fingerprints":826},"speakout","SpeakOut! Email Petitions","4.6.5.1","RopeSwingHld","https:\u002F\u002Fprofiles.wordpress.org\u002Fropeswinghld\u002F","\u003Cp>\u003Cstrong>SpeakOut! Email Petitions\u003C\u002Fstrong> allows you to easily create petition forms on your site.\u003C\u002Fp>\n\u003Cp>When visitors to your site submit the petition form, a copy of your message will be sent to the email address you specified e.g. your mayor. They can also choose to have the email BCC’d to themselves (default).  The petition message will be signed with the contact information provided by the form submitter. After signing the petition, visitors will have the option of sharing your petition page with their followers on Facebook or x.\u003C\u002Fp>\n\u003Cp>Signatures are stored in the WordPress database and can be easily exported to CSV format for further analysis (there is no import function). You may set a goal for the number of signatures you hope to collect and then watch as a progress bar tracks your petition’s advance toward it’s goal – the goal can even update automatically when a % of your goal is reached. Petitions may also be configured to stop accepting new signatures on a specified date.\u003C\u002Fp>\n\u003Cp>The free version includes the core features needed to run a successful petition. For those who need more, the \u003Cstrong>Pro version\u003C\u002Fstrong> unlocks the ability to run unlimited campaigns and provides additional tools, such as an email sharing option and expanded integration with third-party mailing services.\u003C\u002Fp>\n\u003Cp>More information about the plugin and how to upgrade to the fully featured Pro version can be found at the official \u003Ca href=\"https:\u002F\u002Fspeakoutpetitions.com\" rel=\"nofollow ugc\">SpeakOut! WordPress petition plugin website\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>4.6.5.1\u003C\u002Fh3>\n\u003Cp>This is a critical security patch. Please update immediately to protect your user data.\u003C\u002Fp>\n\u003Ch3>4.6.5\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Bugfix: address misc warnings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.6.4\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Bugfix: fix anonmyous record keeping issue. \u003C\u002Fli>\n\u003Cli>Bugfix: fix nonce issue with some admin pages causing permision errors.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.6.3\u003C\u002Fh3>\n\u003Cp>Fix bad cache.\u003C\u002Fp>\n\u003Ch3>4.6.2\u003C\u002Fh3>\n\u003Cp>Fix php warning regarding missing options.\u003C\u002Fp>\n\u003Ch3>4.6.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Security: Added a secure AJAX endpoint with nonce and capability checks for dismissing admin notices.\u003C\u002Fli>\n\u003Cli>Improvement: Modernized admin script and style loading to improve performance and adhere to WordPress best practices.\u003C\u002Fli>\n\u003Cli>Improvement: Redesigned the the admin pages the petition settings page for a cleaner and more consistent user interface.\u003C\u002Fli>\n\u003Cli>Improvement: The GDPR (Privacy Policy) setting is now mandatory when enabled.\u003C\u002Fli>\n\u003Cli>Bug fix: Corrected an issue in an AJAX handler that could prevent petition emails from being sent correctly.\u003C\u002Fli>\n\u003Cli>Bug fix: Prevented a potential PHP warning by ensuring the petition message is always a string.\u003C\u002Fli>\n\u003Cli>Improvement: updated “tested up to” to WP version 6.8.3\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.6.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Security: Hardened the plugin by adding comprehensive data sanitization and output escaping across all forms, AJAX handlers, and admin pages to prevent XSS and other vulnerabilities.\u003C\u002Fli>\n\u003Cli>Security: Replaced direct use of \u003Ccode>$_POST\u003C\u002Fcode>, \u003Ccode>$_GET\u003C\u002Fcode>, and \u003Ccode>$_REQUEST\u003C\u002Fcode> variables with sanitized and validated data.\u003C\u002Fli>\n\u003Cli>Security: Ensured all URLs generated by the plugin are properly escaped using \u003Ccode>esc_url\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Refactor: Completely overhauled the \u003Ccode>[emailpetition]\u003C\u002Fcode> shortcode rendering. The form HTML is now loaded from a separate template file ( \u003Ccode>includes\u002Femail-petition-form-template.php\u003C\u002Fcode>), improving code organization and making customization easier.\u003C\u002Fli>\n\u003Cli>Refactor: Consolidated all mailing list integration logic (ActiveCampaign, MailChimp, etc.) into a single, cleaner function call.\u003C\u002Fli>\n\u003Cli>Refactor: Improved custom field rendering by creating a dedicated helper function to reduce code duplication.\u003C\u002Fli>\n\u003Cli>Refactor: Updated AJAX handlers to securely process and validate all incoming data.\u003C\u002Fli>\n\u003Cli>Refactor: Switched to using WordPress best practices, such as \u003Ccode>has_shortcode()\u003C\u002Fcode> for content checking and \u003Ccode>admin_url()\u003C\u002Fcode> for creating admin links.\u003C\u002Fli>\n\u003Cli>Tweak: Improved pagination logic to be more robust and prevent potential errors.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.5.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated “tested up to” to WP version 6.8\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.5.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: CSV export was throwing an error – thanks Vegard B.\u003C\u002Fli>\n\u003Cli>improvement: updates to Swedish translations – thanks Magnus\u003C\u002Fli>\n\u003Cli>improvement: updated “test to” to WordPress 6.8\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.5.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: further refined bug fixed in 4.4.0 – thanks Darius S. @ patchstack.com\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.4.3\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated old changelog link at end of current changelog\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.4.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated “Tested up to” to 6.7\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.4.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: Export to CSV not working – thanks Vincent R & Shawn D\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.4.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: fixed XSS vulnerability in specially crafted shortcode – thanks Darius S. @ patchstack.com\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.6\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: wonky CSS setting in basic theme – thanks Jordan.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.5.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated “tested to” to version 6.6\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.5.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: changed CSV max_execution_time from 180 to 300 seconds and moved it so it is only applied if script is actually run.  Also reset it to system default at end of script – thanks @gideonlupine\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.4\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated compatibility to WordPress 6.5\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.3.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: debug code removed\u003C\u002Fli>\n\u003Cli>bug fix: new social icons missing in free version\u003C\u002Fli>\n\u003Cli>bug fix: in some circumstances an error was thrown in settings page – thanks Heiko\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.3\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: error being thrown by field that can’t be edited in free version – thanks Giuseppe\u003C\u002Fli>\n\u003Cli>bug fix: somehow above error wasn’t fixed in 4.3.2 – thanks Mayda\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated social icons in all style sheets\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.3.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: changed “twitter” to “X” – thanks Jos\u003C\u002Fli>\n\u003Cli>improvement: removed some superfluous code\u003C\u002Fli>\n\u003Cli>improvement: added Serbian language\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.2.6\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: no error if privacy policy box not checked – thanks Mika\u003C\u002Fli>\n\u003Cli>improvement: SpeakOut! now has its own domain SpeakOutPetitions.com\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.2.3\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: In certain languages if privacy was enabled to show only the first letter of the surname, it would display a \u003Ccode>?\u003C\u002Fcode> instead – thanks Niklas\u003C\u002Fli>\n\u003Cli>bug fix: signature list wouldn’t display if petition ID was greater than one.  This was implemented to limit free users, but it has unintended consequences for legacy users with multiple petitions.  Thanks Jim for letting me poke around.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.2.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: updated “tested to” to 6.3\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.2.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: multiple email addresses in Target Email or CC Email fields would be mashed together – thanks James and someone else who reported this\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.2.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: custom field 6 location wasn’t being saved\u003C\u002Fli>\n\u003Cli>bug fix: in admin signature list, “anonymous” icon was showing HTML instead of being superscript\u003C\u002Fli>\n\u003Cli>improvement: added several webhooks – see https:\u002F\u002Fspeakoutpetitions.com\u002Fwebhooks. Thanks for the idea Ben & Nick\u003C\u002Fli>\n\u003Cli>improvement: added email share icon to Pro version – thanks to whoever suggested it.\u003C\u002Fli>\n\u003Cli>improvement: displaying emails in the public signature list is now optional – with a warning that it might not be a wise idea\u003C\u002Fli>\n\u003Cli>improvement: translation updates\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.1.3.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: Somehow a stray character found its way into the code which was breaking petitions. – thanks Meagan\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.1.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: database creation error for new installs\u003C\u002Fli>\n\u003Cli>bug fix: if message was editable, formating was lost when sent to target (Pro only) – thanks Linda\u003C\u002Fli>\n\u003Cli>bug fix: language wasn’t bein passed via URL in confirmation emails\u003C\u002Fli>\n\u003Cli>improvement: eliminated php warning “ob_end_flush(): failed to send buffer of zlib output compression”\u003C\u002Fli>\n\u003Cli>improvement: added note to when “Do not send email (only collect signatures)” is checked\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.1.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: if the \u003Cem>petitionmessage\u003C\u002Fem> shortcode was used, any Markdown in the message wasn’t being displayed.  Thanks Michael.\u003C\u002Fli>\n\u003Cli>bug fix: if email confirmation was enabled, the numbering in the public signature list reflected the total number of signatures, not just the confirmed signtures.  Thanks Rene & Martin\u003C\u002Fli>\n\u003Cli>bug fix: if email confirmation was enabled and public signatures spanned more than one page, scrolling didn’t work as expected – thanks Rene\u003C\u002Fli>\n\u003Cli>bug fix: on one layout of the public signature list, the word \u003Cem>anonymous\u003C\u002Fem> wasn’t translated – thanks Myriam-Zaa\u003C\u002Fli>\n\u003Cli>bug fix: increased size of honorifics field in database – thanks Glen C.\u003C\u002Fli>\n\u003Cli>bug fix: following some actions in the admin signature list it wasn’t showing the signature count\u003C\u002Fli>\n\u003Cli>improvement: new installs will now use the utf8mb4_general_ci character set for database text fields, instead of just utf8 – down the track I will change the character set for existing installs\u003C\u002Fli>\n\u003Cli>improvement: database creation now makes fields NULL instead of NOT NULL to allow for not collecting some data – down the track I will change all fields to NULL in existing installs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.1.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: Confirmation emails weren’t being sent if Email From field wasn’t set up properly, which was impossible.  Thanks Thomas and Rene\u003C\u002Fli>\n\u003Cli>bug fix: non-existant parameter being passed to function\u003C\u002Fli>\n\u003Cli>improvement: updated the contextual help – first time ever :o)\u003C\u002Fli>\n\u003Cli>improvement: clarified wording of “display signature count” and where it refers to.\u003C\u002Fli>\n\u003Cli>improvement: database updates so free version is ready to upgrade to Pro\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.10\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>improvement: changed a page title – thanks Debbie P\u003C\u002Fli>\n\u003Cli>bug fix: some required fields were not showing red border – thanks Debbie P\u003C\u002Fli>\n\u003Cli>bug fix: redirect after signing not working – thanks Debbie P\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.9\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: when clicking \u003Cem>next\u003C\u002Fem> in signature list it was displaying html – thanks Dan @tahninial\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.8\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: slashes added to any apostrophes in email subject or greeting\u003C\u002Fli>\n\u003Cli>bug fix: missing default value in free version\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.7\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: missing character would cause error in certain circumstances – thanks heiko\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.6.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: if WordPress was installed in a subfolder, some administrator links may not have worked.  Thanks Calvin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.6\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: petition message kept adding slashes in editor when saved.  Thanks Calvin\u003C\u002Fli>\n\u003Cli>improvement: removed \u003Cem>%%Your Signature%%\u003C\u002Fem> from the petition message displayed on your site.  It was causing confusion.  Thanks Razvan\u003C\u002Fli>\n\u003Cli>improvement: minor typo fixed\u003C\u002Fli>\n\u003Cli>improvement: Dutch language imrovements – thanks Michiel\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.5\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: petition message losing formatting – thanks @dcbuffalo\u003C\u002Fli>\n\u003Cli>improvement: better data sanitization in signature list\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.4.6\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: html being displayed in admin signature list\u003C\u002Fli>\n\u003Cli>bug fix: file was being included twice\u003C\u002Fli>\n\u003Cli>bug fix: reconfirming selected signatures wasn’t working\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.4.5\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bug fix: settings not saving due to incorrect input sanitize function\u003C\u002Fli>\n\u003Cli>improvement: German language update – thanks Mario\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>4.0.4.4\u003C\u002Fh3>\n\u003Cp>bug fix: in some circumstances an error was thrown in settings page – thanks Heiko\u003C\u002Fp>\n\u003Ch3>4.0.4.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Policy compliance: Version 3 of SpeakOut! included a method of upgrading that turned out to be a WordPress plugin policy breach (4 months later!) and some potential security issues (after 10+ years!).  This version remedies that and introduces a more cumbersome (for users), but compliant method of upgrading.\u003C\u002Fli>\n\u003Cli>bug fix: various fixes of things found while creating V4\u003C\u002Fli>\n\u003Cli>improvement: removed support for importing the original speakup plugin.  After 10 years, it’s time.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fspeakoutpetitions.com\u002Fspeakout-free-changelog\u002F\" title=\"SpeakOut! old Changelog\" rel=\"nofollow ugc\">Earlier Changelog\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Localizations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Albanian \u003Cstrong>sq_AL\u003C\u002Fstrong> Incomplete\u003C\u002Fli>\n\u003Cli>Arabic \u003Cstrong>ar_AR\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Arabic \u003Cstrong>ar\u003C\u002Fstrong> (Faisal Kadri)\u003C\u002Fli>\n\u003Cli>Catalan \u003Cstrong>ca\u003C\u002Fstrong>  (Alberto Canals)\u003C\u002Fli>\n\u003Cli>Czech \u003Cstrong>cs_CZ\u003C\u002Fstrong> (Petr Å tepÃ¡n, Michal HradeckÃ½)\u003C\u002Fli>\n\u003Cli>Danish \u003Cstrong>da_DK\u003C\u002Fstrong> (A. L.)\u003C\u002Fli>\n\u003Cli>Dutch \u003Cstrong>nl_NL\u003C\u002Fstrong> (Kris Zanders, Petronella van Leusden)\u003C\u002Fli>\n\u003Cli>Finnish \u003Cstrong>fi_FI\u003C\u002Fstrong> \u003C\u002Fli>\n\u003Cli>French \u003Cstrong>fr_FR\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>German \u003Cstrong>de_DE\u003C\u002Fstrong> (Hannes Heller, Armin Vasilico, Andreas Kumlehn, Frank Jermann)\u003C\u002Fli>\n\u003Cli>Hebrew \u003Cstrong>he_IL\u003C\u002Fstrong> (Oren L)\u003C\u002Fli>\n\u003Cli>Korean \u003Cstrong>ko_KO\u003C\u002Fstrong> (Paul Lawley-Jones)\u003C\u002Fli>\n\u003Cli>Icelandic \u003Cstrong>is_IS\u003C\u002Fstrong> (Hildur Sif Thorarensen)\u003C\u002Fli>\n\u003Cli>Italian \u003Cstrong>it_IT\u003C\u002Fstrong> (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Fmacitaly\" rel=\"ugc\">MacItaly\u003C\u002Fa>, Davide Granti, Simone Apollo)\u003C\u002Fli>\n\u003Cli>Norwegian \u003Cstrong>nb_NO\u003C\u002Fstrong> (Howard Gittela)\u003C\u002Fli>\n\u003Cli>Polish \u003Cstrong>pl_PL\u003C\u002Fstrong> (Damian Dzieduch)\u003C\u002Fli>\n\u003Cli>Portuguese (Brazil) \u003Cstrong>pt_BR\u003C\u002Fstrong> (Tel Amiel)\u003C\u002Fli>\n\u003Cli>Romanian \u003Cstrong>ro_RO\u003C\u002Fstrong> (\u003Ca href=\"http:\u002F\u002Fwebhostinggeeks.com\" rel=\"nofollow ugc\">Web Hosting Geeks\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Russian \u003Cstrong>ru_RU\u003C\u002Fstrong> (\u003Ca href=\"te-st.ru\" rel=\"nofollow ugc\">Teplitsa\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Serbian \u003Cstrong>sr_RS\u003C\u002Fstrong> (Mikhailo Matovic)\u003C\u002Fli>\n\u003Cli>Slovak \u003Cstrong>sk_SK\u003C\u002Fstrong> (@Beata)\u003C\u002Fli>\n\u003Cli>Slovenian \u003Cstrong>sl_SI\u003C\u002Fstrong> (\u003Ca href=\"http:\u002F\u002Fma-seo.com\" rel=\"nofollow ugc\">MA-SEO\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Spanish \u003Cstrong>es_ES\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Swedish \u003Cstrong>sv_SE\u003C\u002Fstrong> (Susanne Nyman FurugÃ¥rd @sunyfu)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you would like to request or contribute a specific translation not listed above, visit the \u003Ca href=\"http:\u002F\u002Fspeakoutpetitions.com\u002F\" rel=\"nofollow ugc\">SpeakOut! Email Petitions website\u003C\u002Fa> and use the contact form.\u003C\u002Fp>\n\u003Ch3>Emailpetition Shortcode Attributes\u003C\u002Fh3>\n\u003Cp>The following attributes may be applied when using the ‘[emailpetition]’ shortcode\u003C\u002Fp>\n\u003Ch4>id\u003C\u002Fh4>\n\u003Cp>The ID number of your petition (required). To display a basic petition, use this format:\u003Cbr \u002F>\n‘[emailpetition id=”1″]’\u003C\u002Fp>\n\u003Ch4>width\u003C\u002Fh4>\n\u003Cp>This sets the width of the wrapper “\u003C\u002Fp>\n\u003Cp>\u003C\u003C\u002Fp>\n\u003Cp>div>” that surrounds the petition form. Format as you would a width rule for any standard CSS selector. Values can be denominated in px, pt, em, % etc. The units marker (px, %) must be included.\u003C\u002Fp>\n\u003Cp>To set the petition from to display at 100% of it’s container, use:\u003Cbr \u002F>\n‘[emailpetition id=”1″ width=”100%”]’\u003C\u002Fp>\n\u003Cp>A petition set to display at 500 pixels wide can be achieved using:\u003Cbr \u002F>\n‘[emailpetition id=”1″ width=”500px”]’\u003C\u002Fp>\n\u003Ch4>height\u003C\u002Fh4>\n\u003Cp>This sets the height of the petition message box (rather than the height of the entire form). Format as you would a height rule for any standard CSS selector. Values can be denominated in px, pt, em, % etc. The units marker (px, %) must be included.\u003C\u002Fp>\n\u003Cp>A few notes on using percentages:\u003Cbr \u002F>\nUsing a % value only works when the “Allow messages to be edited” feature is turned offâ€”because the petition message will be displayed in a ‘\u003C\u002Fp>\n\u003Cp>\u003C\u003C\u002Fp>\n\u003Cp>div>’. When “Allow  messages to be edited” is turned on, the petition message is displayed in a ”, which cannot be styled with % heights. Use px to set the height on petitions that allow message customization.\u003C\u002Fp>\n\u003Cp>To set the message box to scale to 100% of the height of the message it contains, use any % value (setting this to 100%, 0%, 200% or any other % value has the same result). Use px if you want the box to scale to a specific height.\u003C\u002Fp>\n\u003Cp>Examples:\u003Cbr \u002F>\n‘[emailpetition id=”1″ height=”500px”]’\u003C\u002Fp>\n\u003Cp>‘[emailpetition id=”1″ height=”100%”]’\u003C\u002Fp>\n\u003Ch4>progresswidth\u003C\u002Fh4>\n\u003Cp>Sets the width of the outer progress bar. The filled area of the progress bar will automatically scale proportionally with the width of the outer prgress bar. Provide a numeric value in pixels only. Do not include the px unit marker.\u003C\u002Fp>\n\u003Cp>To display the progress bar at 300 pixels wide, use:\u003C\u002Fp>\n\u003Cp>‘[emailpetition id=”1″ progresswidth=”300″]’\u003C\u002Fp>\n\u003Ch4>class\u003C\u002Fh4>\n\u003Cp>Adds an arbitrary class name to the wrapper ‘\u003C\u002Fp>\n\u003Cp>\u003C\u003C\u002Fp>\n\u003Cp>div>’ that surrounds the petition form. Typically used to assign the alignright, alignleft or aligncenter classes to the petition in order to float the petition form to one side of its container. To assign multiple classes, separate the class names with spaces.\u003C\u002Fp>\n\u003Cp>Examples:\u003C\u002Fp>\n\u003Cp>‘[emailpetition id=”1″ class=”alignright”]’\u003C\u002Fp>\n\u003Cp>‘[emailpetition id=”1″ class=”style1 style2″]’\u003C\u002Fp>\n\u003Ch3>Signaturelist Shortcode Attributes\u003C\u002Fh3>\n\u003Ch4>id\u003C\u002Fh4>\n\u003Cp>The ID number of your petition (required). To display a basic signature list, use this format:\u003C\u002Fp>\n\u003Cp>‘[signaturelist id=”1″]’\u003C\u002Fp>\n\u003Ch4>rows\u003C\u002Fh4>\n\u003Cp>The number of signature rows to display in the table. This will override the default value provided on the Settings page. To display 10 rows, use:\u003C\u002Fp>\n\u003Cp>‘[signaturelist id=”1″ rows=”10″]’\u003C\u002Fp>\n\u003Ch4>dateformat\u003C\u002Fh4>\n\u003Cp>Format of values in the date column. Use any of the standard \u003Ca href=\"http:\u002F\u002Fphp.net\u002Fmanual\u002Fen\u002Ffunction.date.php\" rel=\"nofollow ugc\">PHP date formating characters\u003C\u002Fa>. Default is ‘M d, Y’. A date such as “Sunday October 14, 2012 @ 9:42 am” can be displayed using:\u003C\u002Fp>\n\u003Cp>‘[signaturelist id=”1″ dateformat=”l F d, Y @ g:i a”]’\u003C\u002Fp>\n\u003Ch4>prevbuttontext\u003C\u002Fh4>\n\u003Cp>The text that displays in the previous signatures pagination button. Default is \u003C.\u003C\u002Fp>\n\u003Ch4>nextbuttontext\u003C\u002Fh4>\n\u003Cp>The text that displays in the next signatures pagination button. Default is >.\u003C\u002Fp>\n\u003Ch3>signaturecount Shortcode\u003C\u002Fh3>\n\u003Cp>Display the number (as text) of signatures collected for a given petition:\u003C\u002Fp>\n\u003Ch4>id\u003C\u002Fh4>\n\u003Cp>The ID number of your petition (required).\u003C\u002Fp>\n\u003Cp>‘[signaturecount id=”3″]’\u003C\u002Fp>\n\u003Ch3>signaturegoal Shortcode\u003C\u002Fh3>\n\u003Cp>Display the number (as text) of goal for a given petition:\u003C\u002Fp>\n\u003Ch4>id\u003C\u002Fh4>\n\u003Cp>The ID number of your petition (required).\u003C\u002Fp>\n\u003Cp>‘[signaturegoal id=”3″]’\u003C\u002Fp>\n","SpeakOut! Email Petitions makes it easy to add petitions to your website and rally your community to Speak Out about a cause by using direct action.",3000,326012,96,43,"2026-03-04T20:12:00.000Z","6.8.5","5.0","7.4",[20,21,22,23,24],"activism","community","email","petition","social-media","https:\u002F\u002Fspeakoutpetitions.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspeakout.4.6.5.1.zip",95,4,0,"2025-01-06 00:00:00","2026-03-15T15:16:48.613Z",[33,49,63,78],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-22309","speakout-email-petitions-authenticated-contributor-stored-cross-site-scripting","SpeakOut! Email Petitions \u003C= 4.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting","The SpeakOut! Email Petitions plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 4.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=4.4.2","4.5.0","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-01-15 14:48:35",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fee0acdaa-3c56-4a57-865e-44e8ecd7fba0?source=api-prod",10,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":44,"published_date":58,"updated_date":59,"references":60,"days_to_patch":62},"WF-624af5e1-dc40-4d33-bfac-1a409b81a096-speakout","speakout-email-petitions-reflected-cross-site-scripting","SpeakOut! Email Petitions \u003C= 4.0.3 - Reflected Cross-Site Scripting","The SpeakOut! Email Petitions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 4.0.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=4.0.3","4.0.4",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2022-11-20 00:00:00","2024-01-22 19:56:02",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F624af5e1-dc40-4d33-bfac-1a409b81a096?source=api-prod",429,{"id":64,"url_slug":65,"title":66,"description":67,"plugin_slug":4,"theme_slug":38,"affected_versions":68,"patched_in_version":69,"severity":70,"cvss_score":71,"cvss_vector":72,"vuln_type":73,"published_date":74,"updated_date":59,"references":75,"days_to_patch":77},"CVE-2022-0846","speakout-email-petitions-unauthenticated-sql-injection","SpeakOut! Email Petitions \u003C 2.14.15.1 - Unauthenticated SQL Injection","The SpeakOut! Email Petitions WordPress plugin before 2.14.15.1 does not sanitise and escape the id parameter before using it in a SQL statement via the dk_speakout_sendmail AJAX action, leading to an SQL Injection exploitable by unauthenticated users.","\u003C2.14.15.1","2.14.15.1","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2022-03-07 00:00:00",[76],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fab9a5d89-16be-4dc7-9361-2b1be2324239?source=api-prod",687,{"id":79,"url_slug":80,"title":81,"description":82,"plugin_slug":4,"theme_slug":38,"affected_versions":83,"patched_in_version":84,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":44,"published_date":85,"updated_date":59,"references":86,"days_to_patch":88},"WF-be44a7e0-f0e0-4e2e-ac1e-0550d8e5d994-speakout","speakout-email-petitions-cross-site-scripting","SpeakOut! Email Petitions \u003C= 2.13.1.1 - Cross-Site Scripting","The SpeakOut! Email Petitions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘searchString’ parameter in versions up to, and including, 2.13.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=2.13.1.1","2.13.3","2021-08-09 00:00:00",[87],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbe44a7e0-f0e0-4e2e-ac1e-0550d8e5d994?source=api-prod",897,{"slug":90,"display_name":7,"profile_url":8,"plugin_count":91,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":92,"trust_score":93,"computed_at":94},"ropeswinghld",1,506,76,"2026-04-04T00:35:42.645Z",[96,115,134,155,175],{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":13,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":113,"download_link":114,"security_score":104,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"petitioner","Petitioner","0.8.0","Anton Voytenko","https:\u002F\u002Fprofiles.wordpress.org\u002Favoytenko\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgetpetitioner.com\" rel=\"nofollow ugc\">Plugin homepage & demo\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgetpetitioner.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>.\u003Cbr \u002F>\nPetitioner pairs unlimited, drag-and-drop petition forms with advanced targeting and export tools, everything you expect from premium petition builders, available free in the plugin directory.\u003Cbr \u002F>\nIt’s built for advocacy teams, nonprofits, campaigns, and publishers who need high-volume petitions with reliable delivery, flexible layouts, and clear reporting without SaaS lock-in.\u003C\u002Fp>\n\u003Ch3>Quick start\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install Petitioner and create your first petition under Petitioner -> Add New.\u003C\u002Fli>\n\u003Cli>Configure delivery (target email, confirmations, approval defaults) and design under the Settings tabs.\u003C\u002Fli>\n\u003Cli>Drop the Gutenberg block or shortcode into any page, collect signatures, and export or display submissions as needed.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Highlights\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Unlimited petitions powered by a drag-and-drop builder with 10+ specialized fields.\u003C\u002Fli>\n\u003Cli>Automated decision-maker delivery plus optional double opt-in and manual moderation.\u003C\u002Fli>\n\u003Cli>Frontend submission showcases (grid, list, ticker) with privacy-friendly options.\u003C\u002Fli>\n\u003Cli>CSV exports with advanced filtering for accurate reporting and CRM imports.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Unlimited petitions\u003C\u002Fstrong>\u003Cbr \u002F>\nCreate and manage an unlimited number of petitions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Drag and drop form builder\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add\u002Fremove\u002Freorder fields based on your needs\u003Cbr \u002F>\n– Supports over ten field types: text, email, phone, address, date of birth, newsletter opt-in, anonymous signature, terms acceptance, and more\u003Cbr \u002F>\n– Add rich text to the form for disclaimers and legal text\u003Cbr \u002F>\n– Edit each field’s label, placeholder, and required state\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Control submission behaviour\u003C\u002Fstrong>\u003Cbr \u002F>\n– Show submissions on the frontend in a few different styles\u003Cbr \u002F>\n– Email functionality: Automatically send petition letters to representatives via email.\u003Cbr \u002F>\n– Ability to store submissions without sending emails to the rep.\u003Cbr \u002F>\n– Ability to manually approve\u002Fdeny petitions and set the default approval behavior (approved by default or declined)\u003Cbr \u002F>\n– Option to confirm emails via email\u003Cbr \u002F>\n– Customize email confirmations, petition letters, and thank you emails\u003Cbr \u002F>\n– Option to edit and delete submissions\u003Cbr \u002F>\n– Form submissions export: Export petition signups and submission data to a CSV file for easy reporting.\u003Cbr \u002F>\n– Filter out unwanted submissions before exporting by targeting any form field\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Design & layout features\u003C\u002Fstrong>\u003Cbr \u002F>\n– The plugin features a modern, mobile-friendly design for a seamless user experience.\u003Cbr \u002F>\n– Color customizations & custom CSS options\u003Cbr \u002F>\n– WYSIWYG editor: Easily edit petition letters and confirmation emails using a modern WYSIWYG editor.\u003Cbr \u002F>\n– Gutenberg integration with a custom petition block!\u003Cbr \u002F>\n– Several shortcodes to take your petitions to the next level:\u003Cbr \u002F>\n  – Form shortcode – embed the entire petition anywhere shortcodes are supported.\u003Cbr \u002F>\n  – Petition goal – surface your signature target dynamically.\u003Cbr \u002F>\n  – Progress bar – visualize progress toward the goal in real time.\u003Cbr \u002F>\n  – Petition letter popup – open the full letter in a modal.\u003Cbr \u002F>\n  – Submission count – show live signature totals.\u003Cbr \u002F>\n  – Submissions display – list, grid, and ticker layouts with privacy controls.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Spam protection features\u003C\u002Fstrong>\u003Cbr \u002F>\n– Captcha integrations: reCAPTCHA, hCaptcha, and Cloudflare Turnstile\u003Cbr \u002F>\n– Akismet integration – handle spam seamlessly without adding any js libraries\u003Cbr \u002F>\n– Honeypot field\u003Cbr \u002F>\n– Email confirmations\u003Cbr \u002F>\n– Compatible with all of the popular SMTP plugins (uses wp_mail behind the scenes)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Extremely lightweight and modern\u003C\u002Fstrong>\u003Cbr \u002F>\n– Vanilla JavaScript bundle weighs in at ~4KB gzipped\u003Cbr \u002F>\n– Theme-friendly CSS variables let you match any brand quickly\u003Cbr \u002F>\n– Rich hooks and filters make third-party integrations effortless\u003C\u002Fp>\n\u003Ch3>Development and Source Code\u003C\u002Fh3>\n\u003Cp>The source code for this plugin is publicly available on GitHub:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Favoy18\u002Fpetitioner\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Favoy18\u002Fpetitioner\u003C\u002Fa>\u003C\u002Fp>\n","Create, target, and track high-impact petitions with Petitioner: automate delivery to decision-makers, manage approvals, and export rich submission da &hellip;",100,4661,5,"2026-02-25T01:44:00.000Z","6.9.4","5.9","8.0",[20,21,22,112,23],"form","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpetitioner.0.8.0.zip",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":108,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":113,"download_link":133,"security_score":104,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"civist","Civist – Petitions and Fundraising","7.9.0","Civist","https:\u002F\u002Fprofiles.wordpress.org\u002Fcivist\u002F","\u003Cp>Create and configure your petition directly in your own WordPress. Publish them in a page or post and you are ready to go! Your supporters sign the petition right there, embedded in your website.\u003C\u002Fp>\n\u003Cp>Just add a donation form to your petitions to collect SEPA and credit card donations in compliance with EU legislation.\u003C\u002Fp>\n\u003Cp>With Civist, you manage your supporters directly in WordPress. Contacts are automatically saved in your mailing list manager. Simple!\u003C\u002Fp>\n\u003Cp>Export your contacts and signatures as CSV-files for further processing.\u003C\u002Fp>\n","With Civist you create petitions directly in WordPress, raise funds and build strong supporter networks.",1000,29365,92,19,"2025-12-18T11:51:00.000Z","4.4","7.1",[20,131,132,23],"donation","fundraising","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcivist.zip",{"slug":135,"name":136,"version":137,"author":138,"author_profile":139,"description":140,"short_description":141,"active_installs":123,"downloaded":142,"rating":143,"num_ratings":144,"last_updated":145,"tested_up_to":108,"requires_at_least":146,"requires_php":18,"tags":147,"homepage":152,"download_link":153,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":154,"fetched_at":31},"salesmanago","SALESmanago & Leadoo","3.10.0","SALESmanago","https:\u002F\u002Fprofiles.wordpress.org\u002Fsalesmanag0\u002F","\u003Cp>AI-powered Customer Engagement Platform for impact-hungry eCommerce marketing teams\u003C\u002Fp>\n\u003Ch3>Overview\u003C\u002Fh3>\n\u003Cp>SALESmanago is a European SaaS company offering a powerful, feature-rich Customer Engagement Platform built for digitally-fueled eCommerce marketing teams. Trusted by 2,000 mid-size businesses across Europe—including Victoria’s Secret, iSpot, Orbico, Vobis, Porta, Savicki, Pitbull, Würth, Vox, 4F—SALESmanago helps brands acquire, convert, and engage customers with deep, AI-powered personalisation and orchestrated customer journeys.\u003Cbr \u002F>\nFollowing the acquisition of Leadoo, SALESmanago has strengthened its platform with personalisation and conversational marketing capabilities, further enhancing how B2C and B2B brands engage and convert their audiences. Central to this is the unique \u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Fgrowth-framework.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">SALESmanago Growth Framework\u003C\u002Fa>, empowering eCommerce marketers to drive revenue growth more efficiently and intelligently.\u003Cbr \u002F>\nMore information on: \u003Ca href=\"http:\u002F\u002Fwww.salesmanago.com?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">www.salesmanago.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FlSNp3d75Qaw?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>SALESmanago Platform & Modules\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Fplatform-overview.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">Platform Overview\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Faudiences.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">Audiences\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Fchannels.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">Channels\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Fwebsite-experience.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">Website Experience\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Frecommendations.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">Recommendations\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Fconversational-marketing.htm?utm_source=product&utm_medium=wpplugin&utm_campaign=marketplace\" rel=\"nofollow ugc\">Conversational Marketing\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Personal Data Processing Information\u003C\u002Fh3>\n\u003Cp>The data controller is Benhauer sp. z o.o. (SALESmanago). We process your data to provide our services — where applicable, under the relevant Terms of Service — and, based on our legitimate interest, to improve the platform, for statistical and analytical purposes, and for the establishment, exercise or defence of legal claims.\u003Cbr \u002F>\nYou have the right to access, correct, delete your data, limit how we use it, object to processing, and file a complaint with a data protection authority.\u003Cbr \u002F>\nFull details are available \u003Ca href=\"https:\u002F\u002Fwww.salesmanago.com\u002Finfo\u002Finformation-obligation.htm\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n","AI-powered Customer Engagement Platform for impact-hungry eCommerce marketing teams",37886,60,2,"2026-03-02T14:04:00.000Z","5.6",[148,149,150,151,24],"crm","email-marketing","live-chat","marketing-automation","https:\u002F\u002Fwww.salesmanago.com\u002F?utm_source=integration&utm_medium=WORDPRESS&utm_content=marketplace","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsalesmanago.3.10.0.zip","2025-12-24 00:00:00",{"slug":156,"name":157,"version":158,"author":159,"author_profile":160,"description":161,"short_description":162,"active_installs":163,"downloaded":164,"rating":29,"num_ratings":29,"last_updated":165,"tested_up_to":108,"requires_at_least":166,"requires_php":113,"tags":167,"homepage":171,"download_link":172,"security_score":173,"vuln_count":91,"unpatched_count":29,"last_vuln_date":174,"fetched_at":31},"cbxpetition","CBX Petition","2.0.14","Sabuj Kundu","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanchumahara\u002F","\u003Cp>CBX Petition for WordPress makes it easy to create, manage, and showcase online petitions—right from your WordPress dashboard. Whether you’re driving change locally or globally, this plugin gives you the tools to build momentum, collect signatures, and inspire action.\u003C\u002Fp>\n\u003Ch3>CBX Petition by \u003Ca href=\"https:\u002F\u002Fcodeboxr.com\u002Fproduct\u002Fcbx-petition-for-wordpress\u002F\" rel=\"nofollow ugc\">Codeboxr\u003C\u002Fa>\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Cp>🤴 \u003Ca href=\"https:\u002F\u002Fcodeboxr.net\u002Fwordpress\u002Fpetition\u002Fsave-the-green-park-stop-unplanned-commercial-construction\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa> | 📋 \u003Ca href=\"https:\u002F\u002Fcodeboxr.com\u002Fdoc\u002Fcbxpetition-doc\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> | 🌟 \u003Ca href=\"https:\u002F\u002Fcodeboxr.com\u002Fproduct\u002Fcbx-petition-for-wordpress\u002F\" rel=\"nofollow ugc\">Upgrade to PRO\u003C\u002Fa> |  👨‍💻 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcbxpetition\u002F\" rel=\"ugc\">Free Support\u003C\u002Fa> | 📱 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcbxpetition\u002F\" rel=\"ugc\">Free Support\u003C\u002Fa> | 🤴 \u003Ca href=\"https:\u002F\u002Fcodeboxr.com\u002Fcontact-us\" rel=\"nofollow ugc\">Pro Support\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>Note: Full source code(including scss files) available at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcodeboxrcodehub\u002Fcbxpetition\" rel=\"nofollow ugc\">Github Repo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>If you think any necessary feature is missing contact with us, we will add in new release. Best way to check the feature is install the free core version in any dev site and explore\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Core Plugin Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Petition Backend\u002FPetition Properties\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create Petition from admin panel\u003C\u002Fli>\n\u003Cli>Custom category adn tag taxonomy with petition\u003C\u002Fli>\n\u003Cli>Petition Title and Description using wordpress core\u003C\u002Fli>\n\u003Cli>\u003Cem>Petition Meta fields\u003C\u002Fem>\u003Cbr \u002F>\n— Signature Target (Required)\u003Cbr \u002F>\n— Expire Date\u003Cbr \u002F>\n— Petition Photos (Drag and drop photo upload to custom uploads dir, no wordpress media manager used)\u003Cbr \u002F>\n— Petition Banner (Drag and drop photo\u002Fbanner upload to custom uploads dir, no wordpress media manager used)\u003Cbr \u002F>\n— Youtube Video url, title, mini description\u003Cbr \u002F>\n— Petition Letter\u002FLetter Text Field\u003Cbr \u002F>\n— Petition Recipients (Name, Designation, Email)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Petition Frontend\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Petition Title, Description Using WordPress Theme Core feature\u003C\u002Fli>\n\u003Cli>\u003Cem>Extra information using Hooks(Configurable from Settings):\u003C\u002Fem>\u003Cbr \u002F>\n— Petition Video, Video Title, Video Text\u003Cbr \u002F>\n— Petition Photos\u003Cbr \u002F>\n— Petition Banner\u003Cbr \u002F>\n— Letter Text\u003Cbr \u002F>\n— Letter Recipients\u003Cbr \u002F>\n— Petition Sign Form\u003Cbr \u002F>\n— Petition Listing\u003Cbr \u002F>\n— Petition Statistics(Total Target, Sign Collected, Ratio\u002FBars)\u003Cbr \u002F>\n— Most of these features are available via shortcodes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Petition Display Shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Petition banner [cbxpetition_banner]\u003C\u002Fli>\n\u003Cli>Petition statistics [cbxpetition_stat]\u003C\u002Fli>\n\u003Cli>Petition video [cbxpetition_video]\u003C\u002Fli>\n\u003Cli>Petition photos [cbxpetition_photos]\u003C\u002Fli>\n\u003Cli>Petition letter [cbxpetition_letter]\u003C\u002Fli>\n\u003Cli>Petition signature form [cbxpetition_signform]\u003C\u002Fli>\n\u003Cli>Petition signature listing [cbxpetition_signatures]\u003C\u002Fli>\n\u003Cli>Petition Details [cbxpetition]  (New in V1.0.1) to display full petition inside any page or post\u003C\u002Fli>\n\u003Cli>Petition Summary [cbxpetition_summary]  (New in V1.0.1) to display petition summary inside any page or post\u003C\u002Fli>\n\u003Cli>Full Petition Display [cbxpetition]  (New in V1.0.1) to display full petition inside any page or post\u003C\u002Fli>\n\u003Cli>Any shortcode should have but missing? let us know\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Classic Widgets\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Petition Summary Classic Widget [New in V1.0.2]\u003C\u002Fli>\n\u003Cli>Petition Sign Form Classic Widget [New in V1.0.2]\u003C\u002Fli>\n\u003Cli>Latest Petitions Classic Widget [New in V1.0.2]\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Elementor Widgets(Pro)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Petition banner widget compatible with shortcode [cbxpetition_banner]\u003C\u002Fli>\n\u003Cli>Petition statistics widget compatible with shortcode [cbxpetition_stat]\u003C\u002Fli>\n\u003Cli>Petition photos widget compatible with shortcode  [cbxpetition_photos]\u003C\u002Fli>\n\u003Cli>Petition video widget compatible with shortcode [cbxpetition_video]\u003C\u002Fli>\n\u003Cli>Petition letter widget compatible with shortcode [cbxpetition_letter]\u003C\u002Fli>\n\u003Cli>Petition signature form widget compatible with shortcode [cbxpetition_signform]\u003Cbr \u002F>\n7.Petition signature listing widget compatible with shortcode [cbxpetition_signatures]\u003C\u002Fli>\n\u003Cli>Petition Details widget compatible with shortcode [cbxpetition]\u003C\u002Fli>\n\u003Cli>Petition Summary widget compatible with shortcode [cbxpetition_summary]\u003C\u002Fli>\n\u003Cli>Petition Latest Listing widget compatible with shortcode [cbxpetition_latest]\u003C\u002Fli>\n\u003Cli>Any elementor widget missing? let us know\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Block Widgets(Pro)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Petition banner widget compatible with shortcode [cbxpetition_banner]\u003C\u002Fli>\n\u003Cli>Petition statistics widget compatible with shortcode [cbxpetition_stat]\u003C\u002Fli>\n\u003Cli>Petition photos widget compatible with shortcode  [cbxpetition_photos]\u003C\u002Fli>\n\u003Cli>Petition video widget compatible with shortcode [cbxpetition_video]\u003C\u002Fli>\n\u003Cli>Petition letter widget compatible with shortcode [cbxpetition_letter]\u003C\u002Fli>\n\u003Cli>Petition signature form widget compatible with shortcode [cbxpetition_signform]\u003C\u002Fli>\n\u003Cli>Petition signature listing widget compatible with shortcode [cbxpetition_signatures]\u003C\u002Fli>\n\u003Cli>Petition Details widget compatible with shortcode [cbxpetition]\u003C\u002Fli>\n\u003Cli>Petition Summary widget compatible with shortcode [cbxpetition_summary]\u003C\u002Fli>\n\u003Cli>Petition Latest Listing widget compatible with shortcode [cbxpetition_latest]\u003C\u002Fli>\n\u003Cli>Any block widget missing? let us know\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Petition Backend Settings\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Basic Setting\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Enable Auto Integration\u003C\u002Fli>\n\u003Cli>Auto Integration Before Content\u003C\u002Fli>\n\u003Cli>Auto Integration After Content\u003C\u002Fli>\n\u003Cli>Default Sign Status(Unverified, Pending, Approved, Unapproved), possible to extend\u003C\u002Fli>\n\u003Cli>Guest Email Activation(Guest signature approval can be verified via email)\u003C\u002Fli>\n\u003Cli>Frontend Signature listing limit\u003C\u002Fli>\n\u003Cli>\u003Cem>Petition Photo(s) Configuration:\u003C\u002Fem>\u003Cbr \u002F>\n— Petition Photo Limit\u003Cbr \u002F>\n— Petition Photo Max File Size(MB)\u003Cbr \u002F>\n— Petition Photo Extensions\u003Cbr \u002F>\n— Petition Photo Thumbnail max width\u003Cbr \u002F>\n— Petition Photo Thumbnail max height\u003Cbr \u002F>\n— Petition Photo(s) max width\u003Cbr \u002F>\n— Petition Photo(s) max height\u003C\u002Fli>\n\u003Cli>\u003Cem>Petition Banner Configuration:\u003C\u002Fem>\u003Cbr \u002F>\n— Petition Banner Max File Size(MB)\u003Cbr \u002F>\n— Petition Banner Extensions\u003Cbr \u002F>\n— Petition Banner max width\u003Cbr \u002F>\n— Petition Banner max height\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Global Email Template\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Header Image\u003C\u002Fli>\n\u003Cli>Footer Text\u003C\u002Fli>\n\u003Cli>Base colors and other email template colors\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Email Alert\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>New Sign Admin Email Alert\u003C\u002Fli>\n\u003Cli>Email enable\u002Fdisable\u003C\u002Fli>\n\u003Cli>Email Subject, Template Heading, Template, Template Syntax for dynamic parsing\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Email Alert\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>New Sign User Email Alert\u003C\u002Fli>\n\u003Cli>Sign Approve Email Alert\u003C\u002Fli>\n\u003Cli>Email enable\u002Fdisable\u003C\u002Fli>\n\u003Cli>Email Subject, Template Heading, Template, Template Syntax for dynamic parsing\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tools\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>On Uninstall delete plugin data\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Petition Signature\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Backend Signature listing\u003C\u002Fli>\n\u003Cli>Edit Signature, approve\u002Funapprove signature\u003C\u002Fli>\n\u003Cli>Delete Signature\u003C\u002Fli>\n\u003Cli>Search Signature\u003C\u002Fli>\n\u003Cli>User or guest both can sign\u003C\u002Fli>\n\u003Cli>Guest signature needs First Name, Last Name and Email\u003C\u002Fli>\n\u003Cli>Signature submit needs privacy confirmation in frontend\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Our Core plugin is free and will always be free. To extends the petition features we have Pro addon called \u003Cstrong>CBX Petition Pro Addon\u003C\u002Fstrong>\u003Cbr \u002F>\nUsing the pro addon we have added some cool features like frontend petition submit and user dashboard with some more controls everywhere.\u003C\u002Fp>\n\u003Ch4>CBX Petition Pro Addon Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Pro Addon Backend Setting\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Who Can Create Petition – Role Selection(s)\u003C\u002Fli>\n\u003Cli>Who Can Publish Petition – Role Selection(s)\u003C\u002Fli>\n\u003Cli>Who Can Delete Own petition – Role Selection(s)\u003C\u002Fli>\n\u003Cli>Maximum Petition Limit\u003C\u002Fli>\n\u003Cli>Petition Per Page\u003C\u002Fli>\n\u003Cli>User Front Dashboard Page – Page select dropdown\u003C\u002Fli>\n\u003Cli>Admin Email Alert for Petition Approval\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable and Email Template\u003C\u002Fli>\n\u003Cli>User Email Alert for Petition Approval\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable and Email Template\u003C\u002Fli>\n\u003Cli>Send signature to petition recipients\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Pro Addon Frontend and Other Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Frontend Dashboard shorcode [cbxpetition_dashboard]\u003C\u002Fli>\n\u003Cli>Frontend Petition listing\u003C\u002Fli>\n\u003Cli>Frontend Petition Create with same backend features(Title, Description, Photos, Banner, Video, Letter, Recipients)\u003C\u002Fli>\n\u003Cli>Frontend Petition Delete\u003C\u002Fli>\n\u003Cli>Frontend Petition Edit\u003C\u002Fli>\n\u003Cli>Frontend Per Petition Signature Listing\u003C\u002Fli>\n\u003Cli>Role based control and access\u003C\u002Fli>\n\u003Cli>Template\u002FTheme override features like core for pro addon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Pro Addon Custom Integration\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Gamipress\u003C\u002Fli>\n\u003Cli>Uncanny Automator\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Get the \u003Ca href=\"https:\u002F\u002Fcodeboxr.com\u002Fproduct\u002Fcbx-petition-for-wordpress\u002F\" rel=\"nofollow ugc\">pro addon\u003C\u002Fa>\u003C\u002Fp>\n","A plugin to create, manage petition and collect signatures for petition inside WordPress environment.",70,4388,"2026-02-04T08:35:00.000Z","5.3",[20,168,169,23,170],"campaign","change","signature","https:\u002F\u002Fcodeboxr.com\u002Fproduct\u002Fcbx-petition-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcbxpetition.2.0.14.zip",98,"2022-12-27 00:00:00",{"slug":176,"name":177,"version":178,"author":179,"author_profile":180,"description":181,"short_description":182,"active_installs":48,"downloaded":183,"rating":29,"num_ratings":29,"last_updated":184,"tested_up_to":185,"requires_at_least":186,"requires_php":113,"tags":187,"homepage":191,"download_link":192,"security_score":193,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"louder-petition","Louder petition","1.0 beta","Adam Sargant","https:\u002F\u002Fprofiles.wordpress.org\u002Fadamsargant\u002F","\u003Cp>The Louder Petition plugin will access the petition tool being used by a \u003Ca href=\"http:\u002F\u002Fwww.louder.org.uk\" rel=\"nofollow ugc\">Louder.org.uk\u003C\u002Fa> campaign page petition and display the title, description and petition form on your blog. If no petition is currently active for that campaign, the widget will not display on your blog and a message to that effect will be displayed in the widget configuration panel.\u003C\u002Fp>\n\u003Cp>Louder is the new home for e-campaigning. The site draws together a range of online activist tools enabling activists and campaigners to create and run their own campaigns and connect with others.\u003C\u002Fp>\n","A widget\u002Fplugin that uses the Louder.org.uk Developer's API to access a petition details and form from a Louder campaign",2094,"2010-04-14T17:25:00.000Z","2.9.2","2.0.2",[20,188,189,190,23],"campaigns","ecampaigning","louder","http:\u002F\u002Fwww.louder.org.uk\u002Fplugins_wp.php","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flouder-petition.zip",85,{"attackSurface":195,"codeSignals":290,"taintFlows":578,"riskAssessment":812,"analyzedAt":825},{"hooks":196,"ajaxHandlers":248,"restRoutes":264,"shortcodes":265,"cronEvents":289,"entryPointCount":269,"unprotectedCount":28},[197,202,206,210,215,219,225,230,234,239,244],{"type":198,"name":199,"callback":200,"file":201,"line":28},"action","admin_menu","dk_speakout_create_menus","includes\\admin.php",{"type":198,"name":203,"callback":204,"file":201,"line":205},"admin_head","dk_speakout_menu_icon",87,{"type":198,"name":207,"callback":208,"file":201,"line":209},"admin_enqueue_scripts","dk_speakout_admin_enqueue_scripts",109,{"type":198,"name":211,"callback":212,"file":213,"line":214},"template_redirect","dk_speakout_confirm_email","includes\\confirmations.php",9,{"type":198,"name":199,"callback":216,"file":217,"line":218},"dk_speakout_signatures_csv","includes\\csv.php",8,{"type":220,"name":221,"callback":222,"file":223,"line":224},"filter","the_posts","dk_speakout_public_css_js","includes\\emailpetition.php",237,{"type":198,"name":226,"callback":227,"file":228,"line":229},"plugins_loaded","dk_speakout_update","includes\\install.php",261,{"type":220,"name":221,"callback":231,"file":232,"line":233},"dk_speakout_signaturelist_css","includes\\signaturelist.php",75,{"type":198,"name":235,"callback":236,"file":237,"line":238},"widgets_init","dk_speakout_register_widgets","includes\\widget.php",3,{"type":198,"name":240,"callback":241,"file":242,"line":243},"init","dk_speakout_translate","speakout-email-petitions.php",40,{"type":220,"name":245,"callback":246,"priority":48,"file":242,"line":247},"plugin_row_meta","dk_speakout_meta_links",72,[249,254,257,260,261],{"action":250,"nopriv":251,"callback":250,"hasNonce":251,"hasCapCheck":251,"file":252,"line":253},"dk_speakout_sendmail",false,"includes\\ajax.php",6,{"action":250,"nopriv":255,"callback":250,"hasNonce":251,"hasCapCheck":251,"file":252,"line":256},true,7,{"action":258,"nopriv":251,"callback":258,"hasNonce":251,"hasCapCheck":251,"file":252,"line":259},"dk_speakout_paginate_signaturelist",94,{"action":258,"nopriv":255,"callback":258,"hasNonce":251,"hasCapCheck":251,"file":252,"line":27},{"action":262,"nopriv":251,"callback":262,"hasNonce":255,"hasCapCheck":255,"file":252,"line":263},"dk_speakout_hide_mailerlite_form",112,[],[266,270,274,278,282,286],{"tag":267,"callback":268,"file":223,"line":269},"signaturecount","dk_speakout_signaturescount_shortcode",11,{"tag":271,"callback":272,"file":223,"line":273},"signaturegoal","dk_speakout_signaturesgoal_shortcode",30,{"tag":275,"callback":276,"file":223,"line":277},"petitiontitle","dk_speakout_petitiontitle_shortcode",49,{"tag":279,"callback":280,"file":223,"line":281},"petitionmessage","dk_speakout_petitionmessage_shortcode",68,{"tag":283,"callback":284,"file":223,"line":285},"emailpetition","dk_speakout_emailpetition_shortcode",147,{"tag":287,"callback":288,"file":232,"line":28},"signaturelist","dk_speakout_signatures_shortcode",[],{"dangerousFunctions":291,"sqlUsage":307,"outputEscaping":310,"fileOperations":573,"externalRequests":29,"nonceChecks":269,"capabilityChecks":253,"bundledLibraries":574},[292,297,301,305],{"fn":293,"file":294,"line":295,"context":296},"unserialize","includes\\class.petition.php",968,"$this->address_fields        = unserialize( $petition->address_fields );",{"fn":293,"file":298,"line":299,"context":300},"includes\\class.settings.php",380,"$signature_columns = unserialize( $this->signaturelist_columns );",{"fn":293,"file":302,"line":303,"context":304},"includes\\class.signaturelist.php",47,"$columns = unserialize( $options['signaturelist_columns'] );",{"fn":293,"file":302,"line":306,"context":304},195,{"prepared":308,"raw":29,"locations":309},90,[],{"escaped":311,"rawEcho":312,"locations":313},635,148,[314,317,318,320,322,323,324,326,328,330,332,334,336,338,340,342,344,346,348,350,352,354,356,358,360,362,364,366,368,369,371,372,374,376,378,380,382,384,386,388,390,392,394,395,396,397,398,399,401,402,403,404,406,407,409,411,412,414,416,418,419,421,423,425,426,427,428,430,432,434,436,438,440,442,444,446,448,449,450,452,453,455,457,458,460,461,463,465,466,468,469,471,472,474,476,477,479,481,483,485,487,489,491,492,494,496,498,500,502,504,506,508,509,511,513,515,517,519,520,522,525,526,527,529,531,533,535,537,539,541,543,544,546,548,549,551,552,554,556,558,559,561,562,564,566,567,569,571],{"file":315,"line":214,"context":316},"includes\\addnew.view.php","raw output",{"file":315,"line":303,"context":316},{"file":315,"line":319,"context":316},61,{"file":315,"line":321,"context":316},64,{"file":315,"line":163,"context":316},{"file":315,"line":233,"context":316},{"file":315,"line":325,"context":316},80,{"file":315,"line":327,"context":316},133,{"file":315,"line":329,"context":316},158,{"file":315,"line":331,"context":316},167,{"file":315,"line":333,"context":316},176,{"file":315,"line":335,"context":316},192,{"file":315,"line":337,"context":316},199,{"file":315,"line":339,"context":316},284,{"file":315,"line":341,"context":316},304,{"file":315,"line":343,"context":316},313,{"file":315,"line":345,"context":316},323,{"file":315,"line":347,"context":316},332,{"file":315,"line":349,"context":316},341,{"file":315,"line":351,"context":316},351,{"file":315,"line":353,"context":316},362,{"file":315,"line":355,"context":316},371,{"file":315,"line":357,"context":316},381,{"file":315,"line":359,"context":316},387,{"file":315,"line":361,"context":316},402,{"file":315,"line":363,"context":316},411,{"file":315,"line":365,"context":316},420,{"file":315,"line":367,"context":316},430,{"file":201,"line":308,"context":316},{"file":252,"line":370,"context":316},77,{"file":252,"line":205,"context":316},{"file":252,"line":373,"context":316},106,{"file":213,"line":375,"context":316},14,{"file":213,"line":377,"context":316},136,{"file":217,"line":379,"context":316},29,{"file":381,"line":375,"context":316},"includes\\email-petition-form-template.php",{"file":381,"line":383,"context":316},38,{"file":381,"line":385,"context":316},39,{"file":381,"line":387,"context":316},44,{"file":381,"line":389,"context":316},50,{"file":381,"line":391,"context":316},54,{"file":381,"line":393,"context":316},57,{"file":381,"line":319,"context":316},{"file":381,"line":281,"context":316},{"file":381,"line":281,"context":316},{"file":381,"line":93,"context":316},{"file":381,"line":93,"context":316},{"file":381,"line":400,"context":316},83,{"file":381,"line":400,"context":316},{"file":381,"line":308,"context":316},{"file":381,"line":308,"context":316},{"file":381,"line":405,"context":316},97,{"file":381,"line":405,"context":316},{"file":381,"line":408,"context":316},104,{"file":381,"line":410,"context":316},105,{"file":381,"line":373,"context":316},{"file":381,"line":413,"context":316},111,{"file":381,"line":415,"context":316},118,{"file":381,"line":417,"context":316},119,{"file":381,"line":417,"context":316},{"file":381,"line":420,"context":316},125,{"file":381,"line":422,"context":316},139,{"file":381,"line":424,"context":316},149,{"file":381,"line":329,"context":316},{"file":381,"line":331,"context":316},{"file":381,"line":331,"context":316},{"file":381,"line":429,"context":316},197,{"file":381,"line":431,"context":316},200,{"file":381,"line":433,"context":316},225,{"file":381,"line":435,"context":316},226,{"file":381,"line":437,"context":316},227,{"file":381,"line":439,"context":316},231,{"file":381,"line":441,"context":316},233,{"file":443,"line":126,"context":316},"includes\\mailchimp\\composer\\platform_check.php",{"file":445,"line":48,"context":316},"includes\\petitions.view.php",{"file":445,"line":447,"context":316},34,{"file":445,"line":14,"context":316},{"file":445,"line":387,"context":316},{"file":445,"line":451,"context":316},46,{"file":445,"line":303,"context":316},{"file":445,"line":454,"context":316},48,{"file":445,"line":456,"context":316},59,{"file":445,"line":319,"context":316},{"file":445,"line":459,"context":316},63,{"file":445,"line":163,"context":316},{"file":462,"line":218,"context":316},"includes\\settings.view.php",{"file":462,"line":464,"context":316},42,{"file":462,"line":14,"context":316},{"file":462,"line":467,"context":316},51,{"file":462,"line":393,"context":316},{"file":462,"line":470,"context":316},71,{"file":462,"line":93,"context":316},{"file":462,"line":473,"context":316},81,{"file":462,"line":475,"context":316},86,{"file":462,"line":329,"context":316},{"file":462,"line":478,"context":316},169,{"file":462,"line":480,"context":316},177,{"file":462,"line":482,"context":316},188,{"file":462,"line":484,"context":316},211,{"file":462,"line":486,"context":316},234,{"file":462,"line":488,"context":316},250,{"file":462,"line":490,"context":316},252,{"file":462,"line":339,"context":316},{"file":462,"line":493,"context":316},287,{"file":462,"line":495,"context":316},290,{"file":462,"line":497,"context":316},293,{"file":462,"line":499,"context":316},296,{"file":462,"line":501,"context":316},299,{"file":462,"line":503,"context":316},302,{"file":462,"line":505,"context":316},315,{"file":462,"line":507,"context":316},376,{"file":462,"line":299,"context":316},{"file":462,"line":510,"context":316},384,{"file":462,"line":512,"context":316},388,{"file":462,"line":514,"context":316},392,{"file":462,"line":516,"context":316},396,{"file":462,"line":518,"context":316},427,{"file":462,"line":62,"context":316},{"file":462,"line":521,"context":316},431,{"file":523,"line":524,"context":316},"includes\\signatures.view.php",33,{"file":523,"line":524,"context":316},{"file":523,"line":524,"context":316},{"file":523,"line":528,"context":316},52,{"file":523,"line":530,"context":316},53,{"file":523,"line":532,"context":316},93,{"file":523,"line":534,"context":316},117,{"file":523,"line":536,"context":316},129,{"file":523,"line":538,"context":316},162,{"file":523,"line":540,"context":316},165,{"file":523,"line":542,"context":316},190,{"file":523,"line":335,"context":316},{"file":523,"line":545,"context":316},217,{"file":523,"line":547,"context":316},496,{"file":523,"line":547,"context":316},{"file":523,"line":550,"context":316},502,{"file":523,"line":92,"context":316},{"file":523,"line":553,"context":316},534,{"file":237,"line":555,"context":316},88,{"file":237,"line":557,"context":316},89,{"file":237,"line":308,"context":316},{"file":237,"line":560,"context":316},91,{"file":237,"line":259,"context":316},{"file":237,"line":563,"context":316},581,{"file":565,"line":106,"context":316},"page-templates\\speakout-confirmation.php",{"file":565,"line":256,"context":316},{"file":565,"line":568,"context":316},15,{"file":565,"line":570,"context":316},22,{"file":565,"line":572,"context":316},32,12,[575],{"name":576,"version":38,"knownCves":577},"Guzzle",[],[579,595,605,614,624,632,651,661,674,684,694,704,777],{"entryPoint":580,"graph":581,"unsanitizedCount":91,"severity":41},"dk_speakout_paginate_signaturelist (includes\\ajax.php:96)",{"nodes":582,"edges":593},[583,588],{"id":584,"type":585,"label":586,"file":252,"line":587},"n0","source","$_POST",99,{"id":589,"type":590,"label":591,"file":252,"line":373,"wp_function":592},"n1","sink","echo() [XSS]","echo",[594],{"from":584,"to":589,"sanitized":251},{"entryPoint":596,"graph":597,"unsanitizedCount":91,"severity":41},"widget (includes\\widget.php:116)",{"nodes":598,"edges":603},[599,602],{"id":584,"type":585,"label":600,"file":237,"line":601},"$_SERVER",572,{"id":589,"type":590,"label":591,"file":237,"line":563,"wp_function":592},[604],{"from":584,"to":589,"sanitized":251},{"entryPoint":606,"graph":607,"unsanitizedCount":29,"severity":613},"\u003Cajax> (includes\\ajax.php:0)",{"nodes":608,"edges":611},[609,610],{"id":584,"type":585,"label":586,"file":252,"line":587},{"id":589,"type":590,"label":591,"file":252,"line":373,"wp_function":592},[612],{"from":584,"to":589,"sanitized":255},"low",{"entryPoint":615,"graph":616,"unsanitizedCount":29,"severity":613},"\u003Csignatures.view> (includes\\signatures.view.php:0)",{"nodes":617,"edges":622},[618,621],{"id":584,"type":585,"label":619,"file":523,"line":620},"$_REQUEST",116,{"id":589,"type":590,"label":591,"file":523,"line":415,"wp_function":592},[623],{"from":584,"to":589,"sanitized":255},{"entryPoint":625,"graph":626,"unsanitizedCount":91,"severity":613},"\u003Cwidget> (includes\\widget.php:0)",{"nodes":627,"edges":630},[628,629],{"id":584,"type":585,"label":600,"file":237,"line":601},{"id":589,"type":590,"label":591,"file":237,"line":563,"wp_function":592},[631],{"from":584,"to":589,"sanitized":251},{"entryPoint":633,"graph":634,"unsanitizedCount":91,"severity":650},"table (includes\\class.signaturelist.php:22)",{"nodes":635,"edges":647},[636,638,641],{"id":584,"type":585,"label":637,"file":302,"line":524},"$_GET",{"id":589,"type":639,"label":640,"file":302,"line":524},"transform","→ retrieve()",{"id":642,"type":590,"label":643,"file":644,"line":645,"wp_function":646},"n2","get_row() [SQLi]","includes\\class.signature.php",508,"get_row",[648,649],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},"high",{"entryPoint":652,"graph":653,"unsanitizedCount":91,"severity":650},"\u003Cclass.signaturelist> (includes\\class.signaturelist.php:0)",{"nodes":654,"edges":658},[655,656,657],{"id":584,"type":585,"label":637,"file":302,"line":524},{"id":589,"type":639,"label":640,"file":302,"line":524},{"id":642,"type":590,"label":643,"file":644,"line":645,"wp_function":646},[659,660],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"entryPoint":662,"graph":663,"unsanitizedCount":91,"severity":650},"dk_speakout_confirm_email (includes\\confirmations.php:21)",{"nodes":664,"edges":671},[665,667,669],{"id":584,"type":585,"label":619,"file":213,"line":666},82,{"id":589,"type":639,"label":668,"file":213,"line":666},"→ check_confirmation()",{"id":642,"type":590,"label":643,"file":644,"line":670,"wp_function":646},191,[672,673],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"entryPoint":675,"graph":676,"unsanitizedCount":91,"severity":650},"\u003Cconfirmations> (includes\\confirmations.php:0)",{"nodes":677,"edges":681},[678,679,680],{"id":584,"type":585,"label":619,"file":213,"line":666},{"id":589,"type":639,"label":668,"file":213,"line":666},{"id":642,"type":590,"label":643,"file":644,"line":670,"wp_function":646},[682,683],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"entryPoint":685,"graph":686,"unsanitizedCount":91,"severity":650},"dk_speakout_signatures_csv (includes\\csv.php:9)",{"nodes":687,"edges":691},[688,689,690],{"id":584,"type":585,"label":619,"file":217,"line":570},{"id":589,"type":639,"label":640,"file":217,"line":570},{"id":642,"type":590,"label":643,"file":644,"line":645,"wp_function":646},[692,693],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"entryPoint":695,"graph":696,"unsanitizedCount":91,"severity":650},"\u003Ccsv> (includes\\csv.php:0)",{"nodes":697,"edges":701},[698,699,700],{"id":584,"type":585,"label":619,"file":217,"line":570},{"id":589,"type":639,"label":640,"file":217,"line":570},{"id":642,"type":590,"label":643,"file":644,"line":645,"wp_function":646},[702,703],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"entryPoint":705,"graph":706,"unsanitizedCount":269,"severity":650},"dk_speakout_signatures_page (includes\\signatures.php:3)",{"nodes":707,"edges":764},[708,712,713,714,716,719,724,728,731,734,738,741,746,749,752,755,758,761],{"id":584,"type":585,"label":709,"file":710,"line":711},"$_REQUEST (x4)","includes\\signatures.php",20,{"id":589,"type":639,"label":640,"file":710,"line":711},{"id":642,"type":590,"label":643,"file":644,"line":645,"wp_function":646},{"id":715,"type":585,"label":619,"file":710,"line":393},"n3",{"id":717,"type":639,"label":718,"file":710,"line":393},"n4","→ retrieve_unconfirmed()",{"id":720,"type":590,"label":721,"file":644,"line":722,"wp_function":723},"n5","get_results() [SQLi]",580,"get_results",{"id":725,"type":585,"label":726,"file":710,"line":727},"n6","$_REQUEST (x3)",69,{"id":729,"type":639,"label":730,"file":710,"line":727},"n7","→ unconfirmed()",{"id":732,"type":590,"label":721,"file":644,"line":733,"wp_function":723},"n8",614,{"id":735,"type":585,"label":736,"file":710,"line":737},"n9","$_GET['siglist']",170,{"id":739,"type":639,"label":740,"file":710,"line":737},"n10","→ confirmSelected()",{"id":742,"type":590,"label":743,"file":644,"line":744,"wp_function":745},"n11","query() [SQLi]",643,"query",{"id":747,"type":585,"label":736,"file":710,"line":748},"n12",180,{"id":750,"type":639,"label":751,"file":710,"line":748},"n13","→ deleteSelected()",{"id":753,"type":590,"label":721,"file":644,"line":754,"wp_function":723},"n14",670,{"id":756,"type":585,"label":757,"file":710,"line":542},"n15","$_POST['searchString']",{"id":759,"type":639,"label":760,"file":710,"line":542},"n16","→ search()",{"id":762,"type":590,"label":721,"file":644,"line":763,"wp_function":723},"n17",171,[765,766,767,768,769,770,771,772,773,774,775,776],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"from":715,"to":717,"sanitized":251},{"from":717,"to":720,"sanitized":251},{"from":725,"to":729,"sanitized":251},{"from":729,"to":732,"sanitized":251},{"from":735,"to":739,"sanitized":251},{"from":739,"to":742,"sanitized":251},{"from":747,"to":750,"sanitized":251},{"from":750,"to":753,"sanitized":251},{"from":756,"to":759,"sanitized":251},{"from":759,"to":762,"sanitized":251},{"entryPoint":778,"graph":779,"unsanitizedCount":269,"severity":650},"\u003Csignatures> (includes\\signatures.php:0)",{"nodes":780,"edges":799},[781,782,783,784,785,786,787,788,789,790,791,792,793,794,795,796,797,798],{"id":584,"type":585,"label":709,"file":710,"line":711},{"id":589,"type":639,"label":640,"file":710,"line":711},{"id":642,"type":590,"label":643,"file":644,"line":645,"wp_function":646},{"id":715,"type":585,"label":619,"file":710,"line":393},{"id":717,"type":639,"label":718,"file":710,"line":393},{"id":720,"type":590,"label":721,"file":644,"line":722,"wp_function":723},{"id":725,"type":585,"label":726,"file":710,"line":727},{"id":729,"type":639,"label":730,"file":710,"line":727},{"id":732,"type":590,"label":721,"file":644,"line":733,"wp_function":723},{"id":735,"type":585,"label":736,"file":710,"line":737},{"id":739,"type":639,"label":740,"file":710,"line":737},{"id":742,"type":590,"label":743,"file":644,"line":744,"wp_function":745},{"id":747,"type":585,"label":736,"file":710,"line":748},{"id":750,"type":639,"label":751,"file":710,"line":748},{"id":753,"type":590,"label":721,"file":644,"line":754,"wp_function":723},{"id":756,"type":585,"label":757,"file":710,"line":542},{"id":759,"type":639,"label":760,"file":710,"line":542},{"id":762,"type":590,"label":721,"file":644,"line":763,"wp_function":723},[800,801,802,803,804,805,806,807,808,809,810,811],{"from":584,"to":589,"sanitized":251},{"from":589,"to":642,"sanitized":251},{"from":715,"to":717,"sanitized":251},{"from":717,"to":720,"sanitized":251},{"from":725,"to":729,"sanitized":251},{"from":729,"to":732,"sanitized":251},{"from":735,"to":739,"sanitized":251},{"from":739,"to":742,"sanitized":251},{"from":747,"to":750,"sanitized":251},{"from":750,"to":753,"sanitized":251},{"from":756,"to":759,"sanitized":251},{"from":759,"to":762,"sanitized":251},{"summary":813,"deductions":814},"The SpeakOut plugin v4.6.5.1 presents a mixed security posture. On the positive side, it demonstrates good practices by consistently using prepared statements for its SQL queries and has a high percentage of properly escaped output. The plugin also includes nonce checks for all identified AJAX handlers and capability checks for several functions, indicating some awareness of security principles. However, several significant concerns emerge from the static analysis. The presence of 4 unprotected AJAX handlers creates a substantial attack surface. Furthermore, the taint analysis reveals 8 high-severity flows with unsanitized paths, suggesting a critical risk of vulnerabilities if these flows are exploitable. The vulnerability history, with 4 known CVEs including one critical and three medium, and the recent critical vulnerability dating to early 2025, indicates a pattern of past security weaknesses that have required significant patching. While there are currently no unpatched CVEs, the historical prevalence of critical and medium vulnerabilities, particularly those related to XSS and SQL injection, is a considerable red flag. The use of the `unserialize` function, while not explicitly flagged as a vulnerability in the taint analysis, is often associated with security risks if not handled with extreme caution and proper input validation.",[815,817,819,821,823],{"reason":816,"points":48},"4 unprotected AJAX handlers",{"reason":818,"points":573},"8 high severity taint flows with unsanitized paths",{"reason":820,"points":568},"1 critical CVE in vulnerability history",{"reason":822,"points":214},"3 medium CVEs in vulnerability history",{"reason":824,"points":106},"4 dangerous functions (unserialize)","2026-03-16T18:24:40.748Z",{"wat":827,"direct":848},{"assetPaths":828,"generatorPatterns":837,"scriptPaths":838,"versionParams":839},[829,830,831,832,833,834,835,836],"\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fcss\u002Fspeakout.css","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fcss\u002Fpetitionlist.css","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fcss\u002Fwidget.css","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fcss\u002Fdonate.css","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fjs\u002Fpetitionform.js","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fjs\u002Fpetitionlist.js","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fjs\u002Fwidget.js","\u002Fwp-content\u002Fplugins\u002Fspeakout\u002Fjs\u002Fdonate.js",[],[833,834,835,836],[840,841,842,843,844,845,846,847],"speakout\u002Fcss\u002Fspeakout.css?ver=","speakout\u002Fcss\u002Fpetitionlist.css?ver=","speakout\u002Fcss\u002Fwidget.css?ver=","speakout\u002Fcss\u002Fdonate.css?ver=","speakout\u002Fjs\u002Fpetitionform.js?ver=","speakout\u002Fjs\u002Fpetitionlist.js?ver=","speakout\u002Fjs\u002Fwidget.js?ver=","speakout\u002Fjs\u002Fdonate.js?ver=",{"cssClasses":849,"htmlComments":855,"htmlAttributes":858,"restEndpoints":863,"jsGlobals":866,"shortcodeOutput":869},[850,851,852,853,854],"dk-speakout-petition-form","dk-speakout-petition-list","dk-speakout-widget","dk-speakout-donate-button","dk_speakout_admin_menu",[856,857],"SpeakOut! Email Petitions plugin","Admin menu",[859,860,861,862],"data-petition-id","data-target-email","data-thank-you-message","data-signature-count",[864,865],"\u002Fwp-json\u002Fspeakout\u002Fv1\u002Fpetition\u002F","\u002Fwp-json\u002Fspeakout\u002Fv1\u002Fsignature\u002F",[867,868],"SpeakOutPetitions","dk_speakout_ajax_object",[870,871],"[speakout]","[speakout_list]"]