[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fm5pLDT5QPLWdA1EiqHCRIl3byU9s9WNLOBwCPZL-5qs":3,"$fj9pPDoVaThYj3Bd-a53FB0ql_LccyngP3RwXKvLA_fw":224,"$f9g3u2i4ZMTKy5wOM5eBVnMAqCrJMXbhjmvMbKBaerhk":229},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":39,"analysis":99,"fingerprints":194},"statsfc-top-scorers","StatsFC Top Scorers","3.0.1","Will Woodward","https:\u002F\u002Fprofiles.wordpress.org\u002Fwilljw\u002F","\u003Cp>Add a football top scorers table to your WordPress website. To request a key sign up for your free trial at \u003Ca href=\"https:\u002F\u002Fstatsfc.com\" rel=\"nofollow ugc\">statsfc.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For a demo, check out \u003Ca href=\"https:\u002F\u002Fwp.statsfc.com\u002Ftop-scorers\u002F\" rel=\"nofollow ugc\">wp.statsfc.com\u002Ftop-scorers\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bahasa Indonesia\u003C\u002Fli>\n\u003Cli>Dansk\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Eesti\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Hrvatski Jezik\u003C\u002Fli>\n\u003Cli>Italiano\u003C\u002Fli>\n\u003Cli>Magyar\u003C\u002Fli>\n\u003Cli>Norsk bokmål\u003C\u002Fli>\n\u003Cli>Slovenčina\u003C\u002Fli>\n\u003Cli>Slovenski Jezik\u003C\u002Fli>\n\u003Cli>Suomi\u003C\u002Fli>\n\u003Cli>Svenska\u003C\u002Fli>\n\u003Cli>Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’re interested in translating for us, please get in touch at \u003Ca href=\"mailto:hello@statsfc.com\" rel=\"nofollow ugc\">hello@statsfc.com\u003C\u002Fa> or on Twitter \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FStatsFC\" rel=\"nofollow ugc\">@StatsFC\u003C\u002Fa>.\u003C\u002Fp>\n","This widget will place a live football top scorers table in your website.",30,5105,100,1,"2023-06-21T23:28:00.000Z","6.2.9","3.3","",[20,21,22,23],"football","premier-league","soccer","widget","https:\u002F\u002Fstatsfc.com\u002Ftop-scorers","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatsfc-top-scorers.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":11,"trust_score":37,"computed_at":38},"willjw",14,370,86,84,"2026-05-20T06:56:10.394Z",[40,53,67,77,88],{"slug":41,"name":42,"version":43,"author":7,"author_profile":8,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":36,"num_ratings":48,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":49,"homepage":51,"download_link":52,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"statsfc-table","StatsFC Table","2.2.1","\u003Cp>Add a football league table to your WordPress website. To request a key sign up for your free trial at \u003Ca href=\"https:\u002F\u002Fstatsfc.com\" rel=\"nofollow ugc\">statsfc.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For a demo, check out \u003Ca href=\"https:\u002F\u002Fwp.statsfc.com\u002Fleague-table\u002F\" rel=\"nofollow ugc\">wp.statsfc.com\u002Fleague-table\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bahasa Indonesia\u003C\u002Fli>\n\u003Cli>Dansk\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Eesti\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Hrvatski Jezik\u003C\u002Fli>\n\u003Cli>Italiano\u003C\u002Fli>\n\u003Cli>Magyar\u003C\u002Fli>\n\u003Cli>Norsk bokmål\u003C\u002Fli>\n\u003Cli>Slovenčina\u003C\u002Fli>\n\u003Cli>Slovenski Jezik\u003C\u002Fli>\n\u003Cli>Suomi\u003C\u002Fli>\n\u003Cli>Svenska\u003C\u002Fli>\n\u003Cli>Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’re interested in translating for us, please get in touch at \u003Ca href=\"mailto:hello@statsfc.com\" rel=\"nofollow ugc\">hello@statsfc.com\u003C\u002Fa> or on Twitter \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FStatsFC\" rel=\"nofollow ugc\">@StatsFC\u003C\u002Fa>.\u003C\u002Fp>\n","This widget will place a football league table on your website.",70,11784,4,[20,21,22,50,23],"uefa","https:\u002F\u002Fstatsfc.com\u002Fleague-table","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatsfc-table.zip",{"slug":54,"name":55,"version":56,"author":7,"author_profile":8,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":13,"num_ratings":61,"last_updated":62,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":63,"homepage":65,"download_link":66,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"statsfc-fixtures","StatsFC Fixtures","3.1.0","\u003Cp>Add a list of football fixtures to your WordPress website. To request a key sign up for your free trial at \u003Ca href=\"https:\u002F\u002Fstatsfc.com\u002Fsign-up\" rel=\"nofollow ugc\">statsfc.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For a demo, check out \u003Ca href=\"https:\u002F\u002Fwp.statsfc.com\u002Ffixtures\u002F\" rel=\"nofollow ugc\">wp.statsfc.com\u002Ffixtures\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bahasa Indonesia\u003C\u002Fli>\n\u003Cli>Dansk\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Eesti\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Hrvatski Jezik\u003C\u002Fli>\n\u003Cli>Italiano\u003C\u002Fli>\n\u003Cli>Magyar\u003C\u002Fli>\n\u003Cli>Norsk bokmål\u003C\u002Fli>\n\u003Cli>Slovenčina\u003C\u002Fli>\n\u003Cli>Slovenski Jezik\u003C\u002Fli>\n\u003Cli>Suomi\u003C\u002Fli>\n\u003Cli>Svenska\u003C\u002Fli>\n\u003Cli>Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’re interested in translating for us, please get in touch at \u003Ca href=\"mailto:hello@statsfc.com\" rel=\"nofollow ugc\">hello@statsfc.com\u003C\u002Fa> or on Twitter \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FStatsFC\" rel=\"nofollow ugc\">@StatsFC\u003C\u002Fa>.\u003C\u002Fp>\n","This widget will display a list of football fixtures on your website, for a chosen competition or team.",50,8256,2,"2024-04-22T22:53:00.000Z",[64,20,21,22,23],"fixtures","https:\u002F\u002Fstatsfc.com\u002Ffixtures","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatsfc-fixtures.zip",{"slug":68,"name":69,"version":6,"author":7,"author_profile":8,"description":70,"short_description":71,"active_installs":11,"downloaded":72,"rating":13,"num_ratings":14,"last_updated":73,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":74,"homepage":75,"download_link":76,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"statsfc-next-fixture","StatsFC Next Fixture","\u003Cp>Add the next fixture for any Premier League team to your WordPress website. To request a key sign up for your free trial at \u003Ca href=\"https:\u002F\u002Fstatsfc.com\" rel=\"nofollow ugc\">statsfc.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Fixture times are automatically adjusted to your website’s local time.\u003C\u002Fp>\n\u003Cp>For a demo, check out \u003Ca href=\"https:\u002F\u002Fwp.statsfc.com\u002Fnext-fixture\u002F\" rel=\"nofollow ugc\">wp.statsfc.com\u002Fnext-fixture\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bahasa Indonesia\u003C\u002Fli>\n\u003Cli>Dansk\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Eesti\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Hrvatski Jezik\u003C\u002Fli>\n\u003Cli>Italiano\u003C\u002Fli>\n\u003Cli>Magyar\u003C\u002Fli>\n\u003Cli>Norsk bokmål\u003C\u002Fli>\n\u003Cli>Slovenčina\u003C\u002Fli>\n\u003Cli>Slovenski Jezik\u003C\u002Fli>\n\u003Cli>Suomi\u003C\u002Fli>\n\u003Cli>Svenska\u003C\u002Fli>\n\u003Cli>Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’re interested in translating for us, please get in touch at \u003Ca href=\"mailto:hello@statsfc.com\" rel=\"nofollow ugc\">hello@statsfc.com\u003C\u002Fa> or on Twitter \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FStatsFC\" rel=\"nofollow ugc\">@StatsFC\u003C\u002Fa>.\u003C\u002Fp>\n","This widget will show the next fixture for a Premier League team on your website.",5014,"2023-06-21T23:27:00.000Z",[64,20,21,22,23],"https:\u002F\u002Fstatsfc.com\u002Fnext-fixture","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatsfc-next-fixture.zip",{"slug":78,"name":79,"version":56,"author":7,"author_profile":8,"description":80,"short_description":81,"active_installs":11,"downloaded":82,"rating":13,"num_ratings":14,"last_updated":83,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":84,"homepage":86,"download_link":87,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"statsfc-results","StatsFC Results","\u003Cp>Add a list of football results to your WordPress website. To request a key sign up for your free trial at \u003Ca href=\"https:\u002F\u002Fstatsfc.com\" rel=\"nofollow ugc\">statsfc.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For a demo, check out \u003Ca href=\"https:\u002F\u002Fwp.statsfc.com\u002Fresults\u002F\" rel=\"nofollow ugc\">wp.statsfc.com\u002Fresults\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bahasa Indonesia\u003C\u002Fli>\n\u003Cli>Dansk\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Eesti\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Hrvatski Jezik\u003C\u002Fli>\n\u003Cli>Italiano\u003C\u002Fli>\n\u003Cli>Magyar\u003C\u002Fli>\n\u003Cli>Norsk bokmål\u003C\u002Fli>\n\u003Cli>Slovenčina\u003C\u002Fli>\n\u003Cli>Slovenski Jezik\u003C\u002Fli>\n\u003Cli>Suomi\u003C\u002Fli>\n\u003Cli>Svenska\u003C\u002Fli>\n\u003Cli>Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’re interested in translating for us, please get in touch at \u003Ca href=\"mailto:hello@statsfc.com\" rel=\"nofollow ugc\">hello@statsfc.com\u003C\u002Fa> or on Twitter \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FStatsFC\" rel=\"nofollow ugc\">@StatsFC\u003C\u002Fa>.\u003C\u002Fp>\n","This widget will place list of football results in your website.",6527,"2024-04-22T22:56:00.000Z",[20,21,85,22,23],"results","https:\u002F\u002Fstatsfc.com\u002Fresults","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatsfc-results.zip",{"slug":89,"name":90,"version":6,"author":7,"author_profile":8,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":13,"num_ratings":14,"last_updated":95,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":96,"homepage":97,"download_link":98,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"statsfc-form","StatsFC Form","\u003Cp>Add a football form guide to your WordPress website. To request a key sign up for your free trial at \u003Ca href=\"https:\u002F\u002Fstatsfc.com\u002Fsign-up\" rel=\"nofollow ugc\">statsfc.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For a demo, check out \u003Ca href=\"https:\u002F\u002Fwp.statsfc.com\u002Fform\u002F\" rel=\"nofollow ugc\">wp.statsfc.com\u002Fform\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bahasa Indonesia\u003C\u002Fli>\n\u003Cli>Dansk\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Eesti\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Hrvatski Jezik\u003C\u002Fli>\n\u003Cli>Italiano\u003C\u002Fli>\n\u003Cli>Magyar\u003C\u002Fli>\n\u003Cli>Norsk bokmål\u003C\u002Fli>\n\u003Cli>Slovenčina\u003C\u002Fli>\n\u003Cli>Slovenski Jezik\u003C\u002Fli>\n\u003Cli>Suomi\u003C\u002Fli>\n\u003Cli>Svenska\u003C\u002Fli>\n\u003Cli>Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’re interested in translating for us, please get in touch at \u003Ca href=\"mailto:hello@statsfc.com\" rel=\"nofollow ugc\">hello@statsfc.com\u003C\u002Fa> or on Twitter \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FStatsFC\" rel=\"nofollow ugc\">@StatsFC\u003C\u002Fa>.\u003C\u002Fp>\n","This widget will place a current football form guide in your website.",20,3678,"2023-06-21T23:26:00.000Z",[20,21,22,23],"https:\u002F\u002Fstatsfc.com\u002Fteam-form","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatsfc-form.zip",{"attackSurface":100,"codeSignals":118,"taintFlows":153,"riskAssessment":181,"analyzedAt":193},{"hooks":101,"ajaxHandlers":111,"restRoutes":112,"shortcodes":113,"cronEvents":117,"entryPointCount":14,"unprotectedCount":27},[102,108],{"type":103,"name":104,"callback":105,"file":106,"line":107},"action","wp_print_footer_scripts","closure","statsfc-top-scorers.php",272,{"type":103,"name":109,"callback":105,"file":106,"line":110},"widgets_init",295,[],[],[114],{"tag":4,"callback":115,"file":106,"line":116},"anonymous",299,[],{"dangerousFunctions":119,"sqlUsage":120,"outputEscaping":122,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":152},[],{"prepared":27,"raw":27,"locations":121},[],{"escaped":123,"rawEcho":124,"locations":125},16,13,[126,128,130,132,134,136,138,140,142,144,146,148,150],{"file":106,"line":13,"context":127},"raw output",{"file":106,"line":129,"context":127},106,{"file":106,"line":131,"context":127},112,{"file":106,"line":133,"context":127},118,{"file":106,"line":135,"context":127},124,{"file":106,"line":137,"context":127},130,{"file":106,"line":139,"context":127},136,{"file":106,"line":141,"context":127},142,{"file":106,"line":143,"context":127},148,{"file":106,"line":145,"context":127},154,{"file":106,"line":147,"context":127},160,{"file":106,"line":149,"context":127},273,{"file":106,"line":151,"context":127},279,[],[154,172],{"entryPoint":155,"graph":156,"unsanitizedCount":14,"severity":171},"widget (statsfc-top-scorers.php:202)",{"nodes":157,"edges":168},[158,163],{"id":159,"type":160,"label":161,"file":106,"line":162},"n0","source","$_SERVER",209,{"id":164,"type":165,"label":166,"file":106,"line":149,"wp_function":167},"n1","sink","echo() [XSS]","echo",[169],{"from":159,"to":164,"sanitized":170},false,"medium",{"entryPoint":173,"graph":174,"unsanitizedCount":14,"severity":180},"\u003Cstatsfc-top-scorers> (statsfc-top-scorers.php:0)",{"nodes":175,"edges":178},[176,177],{"id":159,"type":160,"label":161,"file":106,"line":162},{"id":164,"type":165,"label":166,"file":106,"line":149,"wp_function":167},[179],{"from":159,"to":164,"sanitized":170},"low",{"summary":182,"deductions":183},"The \"statsfc-top-scorers\" plugin v3.0.1 exhibits a mixed security posture.  On the positive side, there are no recorded CVEs, no dangerous functions detected, and all SQL queries are properly prepared. File operations and external HTTP requests are also absent, which reduces potential attack vectors. However, several areas raise concerns. The plugin has 55% of its output properly escaped, indicating a potential for cross-site scripting (XSS) vulnerabilities where unsanitized data could be rendered directly in the browser. Furthermore, the taint analysis revealed 2 flows with unsanitized paths, which, while not flagged as critical or high severity, still represent a risk for path traversal or local file inclusion vulnerabilities if these paths are user-controlled. The lack of nonce checks and capability checks on its single shortcode entry point is a significant weakness, allowing potentially unauthorized actions or data manipulation through its shortcode.\n\nWhile the plugin has no known vulnerability history, this does not guarantee future security. The presence of unescaped outputs and unsanitized paths, coupled with a lack of authorization checks on its primary entry point, presents a notable risk. Developers should prioritize addressing the output escaping and taint flow issues, and critically, implement proper nonce and capability checks on the shortcode to mitigate potential security exploits.",[184,187,190],{"reason":185,"points":186},"Unescaped output (55% proper)",5,{"reason":188,"points":189},"Taint flows with unsanitized paths (2 total)",6,{"reason":191,"points":192},"Shortcode lacks nonce\u002Fcapability checks",7,"2026-04-16T11:24:07.906Z",{"wat":195,"direct":204},{"assetPaths":196,"generatorPatterns":199,"scriptPaths":200,"versionParams":201},[197,198],"\u002Fwp-content\u002Fplugins\u002Fstatsfc-top-scorers\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fstatsfc-top-scorers\u002Fjs\u002Fscript.js",[],[198],[202,203],"statsfc-top-scorers\u002Fcss\u002Fstyle.css?ver=","statsfc-top-scorers\u002Fjs\u002Fscript.js?ver=",{"cssClasses":205,"htmlComments":213,"htmlAttributes":216,"restEndpoints":219,"jsGlobals":220,"shortcodeOutput":222},[206,207,208,209,210,211,212],"statsfc-top-scorers-widget","statsfc-scorers-table","statsfc-scorers-row","statsfc-scorers-player","statsfc-scorers-team","statsfc-scorers-goals","statsfc-scorers-image",[214,215],"\u003C!-- statsfc-top-scorers widget -->","\u003C!-- \u002Fstatsfc-top-scorers widget -->",[217,218],"data-plugin-name=\"statsfc-top-scorers\"","data-plugin-version=\"3.0.1\"",[],[221],"var statsfcTopScorersPluginUrl = '",[223],"[statsfc_top_scorers",{"error":225,"url":226,"statusCode":227,"statusMessage":228,"message":228},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fstatsfc-top-scorers\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":27,"versions":230},[]]