[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fnh1d58rTSeeRPB50GMx87rvADzXm7TEb8O_i1XLa3hc":3,"$fY-loFk6rInfc5Z55ikHhLRa4TJtNuflxxk7JXLiSsmo":538,"$f8qQYpCPKRklp6UADzGvNNJOIGghUFa4tbaJRVHOSiq4":543},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":35,"analysis":143,"fingerprints":489},"steed-companion","Steed Companion","1.2.1","TallyThemes","https:\u002F\u002Fprofiles.wordpress.org\u002Ftallythemes\u002F","\u003Cp>Enhances Steed themes with extra functionalities. This plugin supply some Widgets, Shortccode and Customize settings. Please note that you need Steed WordPress theme installed to get proper support of the plugin.\u003C\u002Fp>\n","Enhances Steed’s themes with extra functionalities.",0,1366,"2017-09-25T18:18:00.000Z","4.8.28","4.4","",[18,19,4,20,21],"shortcode","steed","tallythemes","widgets","http:\u002F\u002Ftallythemes.com\u002Fproduct\u002Fsteed-companion\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsteed-companion.1.2.1.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":20,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},5,130,30,84,"2026-05-20T01:26:49.056Z",[36,62,83,104,125],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":57,"download_link":58,"security_score":59,"vuln_count":60,"unpatched_count":11,"last_vuln_date":61,"fetched_at":26},"apollo13-framework-extensions","Apollo13 Framework Extensions","1.9.9","apollo13themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fapollo13themes\u002F","\u003Cp>\u003Cstrong>Apollo13 Framework Extensions\u003C\u002Fstrong> adds few features to themes build on Apollo13 Framework. These are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Designs Importer,\u003C\u002Fli>\n\u003Cli>shortcodes based on Apollo13 Framework features: writtng effect, count down, socials, scroller, slider, galleries, post grid,\u003C\u002Fli>\n\u003Cli>support for WPBakery Page Builder elements added by Apollo13 Framework,\u003C\u002Fli>\n\u003Cli>custom post types: albums, works & people,\u003C\u002Fli>\n\u003Cli>Export\u002FImport of theme options,\u003C\u002Fli>\n\u003Cli>Custom Sidebar,\u003C\u002Fli>\n\u003Cli>Custom CSS,\u003C\u002Fli>\n\u003Cli>Meta options that are creating content for posts, pages, albums and works,\u003C\u002Fli>\n\u003Cli>Responsive Image resizing ,\u003C\u002Fli>\n\u003Cli>Maintenance mode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin requires one of themes build on \u003Cstrong>Apollo13 Framework\u003C\u002Fstrong> theme to be installed.\u003C\u002Fp>\n\u003Cp>It is mostly used for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree\u002F\" rel=\"nofollow ugc\">Rife Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fapollo13themes.com\u002Frife\u002F\" rel=\"nofollow ugc\">Rife Pro\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits & Copyright\u003C\u002Fh3>\n\u003Ch4>Anime.js, Copyright 2019 Julian Garnier\u003C\u002Fh4>\n\u003Cp>Licenses: MIT\u003Cbr \u002F>\nSource: https:\u002F\u002Fanimejs.com\u002F\u003C\u002Fp>\n","Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.",20000,536744,100,1,"2025-12-04T08:12:00.000Z","6.5.8","4.7","5.4.0",[53,54,55,56],"custom-post-types","elementor-widgets","shortcodes","wpbakery-page-builder-support","https:\u002F\u002Fapollo13themes.com\u002Frife\u002Ffree","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fapollo13-framework-extensions.zip",95,6,"2026-02-18 15:32:44",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":46,"num_ratings":72,"last_updated":73,"tested_up_to":49,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":78,"download_link":79,"security_score":80,"vuln_count":81,"unpatched_count":11,"last_vuln_date":82,"fetched_at":26},"weaverx-theme-support","Weaver Xtreme Theme Support","6.5.1","wpweaver","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpweaver\u002F","\u003Cp>This is the theme support for the Weaver Xtreme Theme. This plugin provides a collection of useful shortcodes and widgets designed to complement the Weaver Xtreme theme. These shortcodes have been selected and developed based on requests and feedback from thousands of users of the Weaver Xtreme and previous versions of Weaver.\u003C\u002Fp>\n\u003Cp>This plugin also provides the Legacy Weaver Xtreme Admin Dashboard interface. The Legacy Admin is an old style interface alternative to the Customizer interface. The Legacy Interface has been updated for compatibility with Weaver Xtreme Version 5, and will automatically update and convert .wxt settings files from Weaver Xtreme 4.\u003C\u002Fp>\n\u003Cp>Includes complete documentation help file. Instructions for using the shortcodes and widgets are in the help file.\u003C\u002Fp>\n\u003Ch4>Shortcodes included\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>[tab_group]\u003C\u002Fstrong> – Display content in a tabbed box.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003C!--YouTube Error: bad URL entered-->\u003C\u002Fstrong> – Show your YouTube videos responsively, and with the capability to use any of the YouTube custom display options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003C!-- vimeo error: not a vimeo video -->\u003C\u002Fstrong> –  Show your Vimeo videos responsively, and with the capability to use any of the Vimeo custom display options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[iframe]\u003C\u002Fstrong> – Quick and easy display of content in an iframe.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[div]\u003C\u002Fstrong>, \u003Cstrong>[span]\u003C\u002Fstrong>, \u003Cstrong>[html]\u003C\u002Fstrong> – Add div, span, and other html to pages\u002Fposts without the need to switch to Text view.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[hide\u002Fshow_if]\u003C\u002Fstrong> – Show or hide content depending upon options: device, page ID, user capability, logged in status.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[bloginfo]\u003C\u002Fstrong> – Display any information available from WordPress bloginfo function.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[user_can]\u003C\u002Fstrong> – Display content base on logged-in user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[site_title]\u003C\u002Fstrong> – Display Site title.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[site_tagline]\u003C\u002Fstrong> – Display Site tag line.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Widgets Included\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Weaver 2 Column Text Widget\u003C\u002Fstrong> – Add text into two columns in a widget\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Weaver Per Page Text Widget\u003C\u002Fstrong> – Add a text widget on a per-page basis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Weaver Login\u003C\u002Fstrong> – Simplified login widget\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Licenses\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>The Weaver Xtreme Theme Support plugin is licensed under the terms of the GNU GENERAL PUBLIC LICENSE, Version 2,\u003Cbr \u002F>\nJune 1991. (GPL) The full text of the license is in the license.txt file.\u003C\u002Fli>\n\u003Cli>All images included with this plugin are either original works of the author which\u003Cbr \u002F>\nhave been placed into the public domain, or have been derived from other public domain sources,\u003Cbr \u002F>\nand thus need no license. (This does not include the images provided with any of the\u003Cbr \u002F>\nbelow listed scripts and libraries. Those images are covered by their respective licenses.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin also includes several scripts and libraries that are covered under the terms\u003Cbr \u002F>\nof their own licenses in the listed files in the plugin distribution:\u003C\u002Fp>\n","A useful shortcode and widget collection for Weaver Xtreme",9000,383370,4,"2024-05-31T18:31:00.000Z","6.0","7.2",[55,77,21],"weaver-xtreme-theme","http:\u002F\u002Fweavertheme.com\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fweaverx-theme-support.6.5.1.zip",89,3,"2024-06-04 19:18:53",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":46,"num_ratings":47,"last_updated":93,"tested_up_to":94,"requires_at_least":15,"requires_php":95,"tags":96,"homepage":100,"download_link":101,"security_score":102,"vuln_count":81,"unpatched_count":47,"last_vuln_date":103,"fetched_at":26},"popularis-extra","Popularis Extra","1.2.10","Themes4WP","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemes4wp\u002F","\u003Cp>Popularis Extra gives you access to demo import for free PopularisWP themes, extra features like widgets, shortcodes or additional Elementor widgets.\u003C\u002Fp>\n\u003Cp>This plugin requires PopularisWP theme to be installed.\u003C\u002Fp>\n\u003Ch3>Supported Themes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis\u002F\" rel=\"ugc\">Popularis\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-ecommerce\u002F\" rel=\"nofollow ugc\">Popularis eCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-verse\u002F\" rel=\"ugc\">Popularis Verse\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-hub\u002F\" rel=\"ugc\">Popularis Hub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-star\u002F\" rel=\"ugc\">Popularis Star\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-writer\u002F\" rel=\"ugc\">Popularis Writer\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fpopularis-press\u002F\" rel=\"ugc\">Popularis Press\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-fashion\u002F\" rel=\"nofollow ugc\">Popularis Fashion\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpopulariswp.com\u002Fpopularis-business\u002F\" rel=\"nofollow ugc\">Popularis Business\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Popularis Extra add extra features to Popularis theme like demo import, widgets, shortcodes or Elementor widgets.",8000,226297,"2025-12-03T07:12:00.000Z","6.9.4","5.6",[97,98,99,55,21],"demo","elementor","import","https:\u002F\u002Fpopulariswp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpopularis-extra.1.2.10.zip",74,"2026-01-28 00:00:00",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":114,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":16,"tags":119,"homepage":123,"download_link":124,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"disable-author-pages","Disable Author Pages","0.11","Frank Neumann-Staude","https:\u002F\u002Fprofiles.wordpress.org\u002Ffstaude\u002F","\u003Cp>Disable the author pages ( \u002Fauthor=? ) in wordpress and redirect the user to another page.\u003C\u002Fp>\n","Disable the author pages",6000,50772,98,17,"2017-11-28T17:13:00.000Z","4.7.33","3.0",[120,121,18,122,21],"page","post","sidebar","https:\u002F\u002Fstaude.net\u002Fwordpress\u002Fplugins\u002Fdisable-author-pages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-author-pages.0.11.zip",{"slug":126,"name":127,"version":128,"author":66,"author_profile":67,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":46,"num_ratings":133,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":75,"tags":137,"homepage":138,"download_link":139,"security_score":140,"vuln_count":141,"unpatched_count":47,"last_vuln_date":142,"fetched_at":26},"show-posts","Weaver Show Posts","2.0","\u003Cp>This plugin provides a very flexible way to show posts anywhere on a site using a shortcode. It works with any theme. Weaver Show Posts is by far the most flexible with an easy to use interface to select which posts to show.\u003C\u002Fp>\n\u003Cp>Note: this plugin was formerly named ATW Show Posts. There is no difference in functionality between the versions.\u003C\u002Fp>\n\u003Ch4>Easy to select which posts to show\u003C\u002Fh4>\n\u003Cp>There are several WordPress plugins that allow you to display selected posts via shortcode on your pages, other posts, or in widgets.\u003C\u002Fp>\n\u003Cp>This plugin provides a powerful interactive admin page that allows you to specify exactly which posts you want displayed. The specifications are called a “filter”, and you can define as many filters as you need to display different posts via the shortcode. Includes support for custom post types and taxonomies.\u003C\u002Fp>\n\u003Ch4>Style of Displayed Posts\u003C\u002Fh4>\n\u003Cp>Weaver Show Posts will normally display posts using its own basic display functions. These can be easily styled to match the rest\u003Cbr \u002F>\nof your site by defining Custom CSS rules in the Custom CSS option.\u003C\u002Fp>\n\u003Cp>But Weaver Show Posts can go way beyond that. For many Themes, you can elect to use the native Theme Post formatting function.\u003Cbr \u002F>\nThe posts displayed by Show Posts will match other posts displayed by your theme. If you are using the Weaver Xtreme or Weaver II\u003Cbr \u002F>\nthemes, there is even more integrated display of posts.\u003C\u002Fp>\n\u003Ch4>Show Posts in a Text Widget\u003C\u002Fh4>\n\u003Cp>You can add [show_posts] to the standard Text Widget. If your theme or other plugin doesn’t add this capability, Weaver Show Posts\u003Cbr \u002F>\nincludes an option to allow the Text Widget to support shortcodes.\u003C\u002Fp>\n\u003Ch4>The Shortcode\u003C\u002Fh4>\n\u003Cp>The form of the shortcode is:\u003C\u002Fp>\n\u003Cp>[show_posts filter=filter-name]\u003C\u002Fp>\n","Show Posts in a Page via shortcode for any theme",5000,212320,7,"2026-04-10T23:04:00.000Z","7.0","6.6",[55,77,21],"http:\u002F\u002FWeaverTheme.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-posts.2.0.zip",76,2,"2026-03-20 15:17:17",{"attackSurface":144,"codeSignals":184,"taintFlows":481,"riskAssessment":482,"analyzedAt":488},{"hooks":145,"ajaxHandlers":180,"restRoutes":181,"shortcodes":182,"cronEvents":183,"entryPointCount":11,"unprotectedCount":11},[146,152,156,160,163,167,170,172,174,178],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","after_setup_theme","SteedCOM_load","steed-companion.php",44,{"type":147,"name":153,"callback":154,"file":150,"line":155},"admin_enqueue_scripts","SteedCOM_admin_script",60,{"type":147,"name":157,"callback":158,"file":150,"line":159},"wp_enqueue_scripts","SteedCOM_front_script",71,{"type":147,"name":161,"callback":162,"file":150,"line":33},"widgets_init","SteedCOM_load_widget",{"type":147,"name":153,"callback":164,"file":165,"line":166},"widgets_scripts","widgets\\advance-text-widget.php",12,{"type":147,"name":153,"callback":164,"file":168,"line":169},"widgets\\quote.php",16,{"type":147,"name":153,"callback":164,"file":171,"line":169},"widgets\\service.php",{"type":147,"name":153,"callback":164,"file":173,"line":169},"widgets\\slider-item-widget.php",{"type":147,"name":175,"callback":176,"priority":177,"file":173,"line":115},"admin_footer-widgets.php","print_scripts",9999,{"type":147,"name":153,"callback":164,"file":179,"line":169},"widgets\\vCard.php",[],[],[],[],{"dangerousFunctions":185,"sqlUsage":186,"outputEscaping":188,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":480},[],{"prepared":11,"raw":11,"locations":187},[],{"escaped":189,"rawEcho":190,"locations":191},141,189,[192,195,197,198,200,202,204,205,207,208,209,210,212,213,215,217,218,220,222,224,226,228,229,231,232,233,235,237,238,240,242,243,245,247,248,250,252,253,254,256,258,259,260,262,264,266,268,270,272,274,276,278,280,282,283,284,286,287,288,290,291,292,293,294,295,296,298,300,302,304,306,308,309,310,312,313,314,316,317,318,320,321,323,325,327,328,329,331,332,334,336,337,339,341,342,344,346,347,349,351,352,353,354,356,358,360,362,363,364,366,367,369,370,371,373,374,375,376,378,380,381,382,384,385,386,388,389,390,392,393,395,396,397,399,400,401,402,404,406,407,409,411,412,414,416,417,419,421,422,424,426,427,429,431,432,434,436,437,439,441,442,444,446,447,448,449,451,453,454,455,456,457,458,459,460,462,463,465,466,467,468,469,470,471,473,475,476,477,479],{"file":165,"line":193,"context":194},22,"raw output",{"file":165,"line":196,"context":194},25,{"file":165,"line":32,"context":194},{"file":165,"line":199,"context":194},39,{"file":165,"line":201,"context":194},66,{"file":165,"line":203,"context":194},67,{"file":165,"line":203,"context":194},{"file":165,"line":206,"context":194},70,{"file":165,"line":159,"context":194},{"file":165,"line":159,"context":194},{"file":165,"line":102,"context":194},{"file":165,"line":211,"context":194},75,{"file":165,"line":211,"context":194},{"file":165,"line":214,"context":194},78,{"file":165,"line":216,"context":194},81,{"file":165,"line":216,"context":194},{"file":165,"line":219,"context":194},82,{"file":165,"line":221,"context":194},83,{"file":165,"line":223,"context":194},88,{"file":165,"line":225,"context":194},93,{"file":165,"line":227,"context":194},94,{"file":165,"line":227,"context":194},{"file":165,"line":230,"context":194},97,{"file":165,"line":114,"context":194},{"file":165,"line":114,"context":194},{"file":165,"line":234,"context":194},101,{"file":165,"line":236,"context":194},102,{"file":165,"line":236,"context":194},{"file":165,"line":239,"context":194},105,{"file":165,"line":241,"context":194},106,{"file":165,"line":241,"context":194},{"file":165,"line":244,"context":194},109,{"file":165,"line":246,"context":194},110,{"file":165,"line":246,"context":194},{"file":165,"line":249,"context":194},116,{"file":165,"line":251,"context":194},117,{"file":165,"line":251,"context":194},{"file":165,"line":251,"context":194},{"file":165,"line":255,"context":194},120,{"file":165,"line":257,"context":194},121,{"file":165,"line":257,"context":194},{"file":165,"line":257,"context":194},{"file":165,"line":261,"context":194},142,{"file":165,"line":263,"context":194},143,{"file":165,"line":265,"context":194},152,{"file":165,"line":267,"context":194},154,{"file":165,"line":269,"context":194},155,{"file":165,"line":271,"context":194},156,{"file":168,"line":273,"context":194},31,{"file":168,"line":275,"context":194},40,{"file":168,"line":277,"context":194},41,{"file":168,"line":279,"context":194},47,{"file":168,"line":281,"context":194},69,{"file":168,"line":206,"context":194},{"file":168,"line":206,"context":194},{"file":168,"line":285,"context":194},73,{"file":168,"line":102,"context":194},{"file":168,"line":102,"context":194},{"file":168,"line":289,"context":194},77,{"file":168,"line":214,"context":194},{"file":168,"line":214,"context":194},{"file":168,"line":221,"context":194},{"file":168,"line":230,"context":194},{"file":168,"line":114,"context":194},{"file":168,"line":114,"context":194},{"file":171,"line":297,"context":194},43,{"file":171,"line":299,"context":194},48,{"file":171,"line":301,"context":194},49,{"file":171,"line":303,"context":194},54,{"file":171,"line":305,"context":194},55,{"file":171,"line":307,"context":194},65,{"file":171,"line":206,"context":194},{"file":171,"line":114,"context":194},{"file":171,"line":311,"context":194},99,{"file":171,"line":311,"context":194},{"file":171,"line":236,"context":194},{"file":171,"line":315,"context":194},103,{"file":171,"line":315,"context":194},{"file":171,"line":241,"context":194},{"file":171,"line":319,"context":194},107,{"file":171,"line":319,"context":194},{"file":171,"line":322,"context":194},112,{"file":171,"line":324,"context":194},126,{"file":171,"line":326,"context":194},127,{"file":171,"line":326,"context":194},{"file":171,"line":31,"context":194},{"file":171,"line":330,"context":194},131,{"file":171,"line":330,"context":194},{"file":171,"line":333,"context":194},138,{"file":171,"line":335,"context":194},139,{"file":171,"line":335,"context":194},{"file":171,"line":338,"context":194},146,{"file":171,"line":340,"context":194},147,{"file":171,"line":340,"context":194},{"file":171,"line":343,"context":194},159,{"file":171,"line":345,"context":194},160,{"file":171,"line":345,"context":194},{"file":171,"line":348,"context":194},170,{"file":171,"line":350,"context":194},171,{"file":171,"line":350,"context":194},{"file":173,"line":275,"context":194},{"file":173,"line":277,"context":194},{"file":173,"line":355,"context":194},42,{"file":173,"line":357,"context":194},46,{"file":173,"line":359,"context":194},56,{"file":173,"line":361,"context":194},63,{"file":173,"line":281,"context":194},{"file":173,"line":319,"context":194},{"file":173,"line":365,"context":194},108,{"file":173,"line":365,"context":194},{"file":173,"line":368,"context":194},111,{"file":173,"line":322,"context":194},{"file":173,"line":322,"context":194},{"file":173,"line":372,"context":194},115,{"file":173,"line":249,"context":194},{"file":173,"line":249,"context":194},{"file":173,"line":257,"context":194},{"file":173,"line":377,"context":194},135,{"file":173,"line":379,"context":194},136,{"file":173,"line":379,"context":194},{"file":173,"line":335,"context":194},{"file":173,"line":383,"context":194},140,{"file":173,"line":383,"context":194},{"file":173,"line":263,"context":194},{"file":173,"line":387,"context":194},144,{"file":173,"line":387,"context":194},{"file":173,"line":340,"context":194},{"file":173,"line":391,"context":194},148,{"file":173,"line":391,"context":194},{"file":173,"line":394,"context":194},151,{"file":173,"line":265,"context":194},{"file":173,"line":265,"context":194},{"file":173,"line":398,"context":194},158,{"file":173,"line":343,"context":194},{"file":173,"line":343,"context":194},{"file":173,"line":343,"context":194},{"file":173,"line":403,"context":194},162,{"file":173,"line":405,"context":194},163,{"file":173,"line":405,"context":194},{"file":173,"line":408,"context":194},182,{"file":173,"line":410,"context":194},183,{"file":173,"line":410,"context":194},{"file":173,"line":413,"context":194},190,{"file":173,"line":415,"context":194},191,{"file":173,"line":415,"context":194},{"file":173,"line":418,"context":194},203,{"file":173,"line":420,"context":194},204,{"file":173,"line":420,"context":194},{"file":173,"line":423,"context":194},214,{"file":173,"line":425,"context":194},215,{"file":173,"line":425,"context":194},{"file":173,"line":428,"context":194},230,{"file":173,"line":430,"context":194},231,{"file":173,"line":430,"context":194},{"file":173,"line":433,"context":194},237,{"file":173,"line":435,"context":194},238,{"file":173,"line":435,"context":194},{"file":173,"line":438,"context":194},249,{"file":173,"line":440,"context":194},250,{"file":173,"line":440,"context":194},{"file":173,"line":443,"context":194},260,{"file":173,"line":445,"context":194},261,{"file":173,"line":445,"context":194},{"file":179,"line":196,"context":194},{"file":179,"line":273,"context":194},{"file":179,"line":450,"context":194},36,{"file":179,"line":452,"context":194},50,{"file":179,"line":289,"context":194},{"file":179,"line":214,"context":194},{"file":179,"line":214,"context":194},{"file":179,"line":216,"context":194},{"file":179,"line":219,"context":194},{"file":179,"line":219,"context":194},{"file":179,"line":24,"context":194},{"file":179,"line":461,"context":194},86,{"file":179,"line":461,"context":194},{"file":179,"line":464,"context":194},91,{"file":179,"line":239,"context":194},{"file":179,"line":241,"context":194},{"file":179,"line":241,"context":194},{"file":179,"line":244,"context":194},{"file":179,"line":246,"context":194},{"file":179,"line":246,"context":194},{"file":179,"line":472,"context":194},113,{"file":179,"line":474,"context":194},114,{"file":179,"line":474,"context":194},{"file":179,"line":251,"context":194},{"file":179,"line":478,"context":194},118,{"file":179,"line":478,"context":194},[],[],{"summary":483,"deductions":484},"The steed-companion plugin v1.2.1 exhibits a strong security posture based on the provided static analysis and vulnerability history.  The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. Furthermore, the code analysis reveals no dangerous functions, file operations, or external HTTP requests, and all SQL queries utilize prepared statements. This indicates good development practices in these critical areas.\n\nThe primary area of concern lies in the output escaping. With 330 total outputs and only 43% properly escaped, there is a significant risk of Cross-Site Scripting (XSS) vulnerabilities. This means that user-supplied data, if not properly handled before being displayed, could be injected into the page and executed by a user's browser.\n\nThe vulnerability history is completely clean, with no known CVEs recorded. This, combined with the absence of critical taint flows and the use of prepared statements, suggests a generally secure codebase. However, the unescaped output remains a notable weakness that could be exploited despite the lack of historical vulnerabilities.",[485],{"reason":486,"points":487},"Significant percentage of unescaped output",8,"2026-03-17T06:49:24.696Z",{"wat":490,"direct":501},{"assetPaths":491,"generatorPatterns":496,"scriptPaths":497,"versionParams":498},[492,493,494,495],"\u002Fwp-content\u002Fplugins\u002Fsteed-companion\u002Fassets\u002Fcss\u002Fsteed-companion-admin.css","\u002Fwp-content\u002Fplugins\u002Fsteed-companion\u002Fassets\u002Fjs\u002Fsteed-companion-admin.js","\u002Fwp-content\u002Fplugins\u002Fsteed-companion\u002Fassets\u002Fcss\u002Fsteed-companion.css","\u002Fwp-content\u002Fplugins\u002Fsteed-companion\u002Fassets\u002Fjs\u002Fsteed-companion.js",[],[493,495],[499,500],"steed-companion-admin?ver=","steed-companion?ver=",{"cssClasses":502,"htmlComments":516,"htmlAttributes":523,"restEndpoints":527,"jsGlobals":528,"shortcodeOutput":537},[503,504,505,506,507,508,509,510,511,512,513,514,515,510,511,505],"scw-warp","scw-warp-in","scw-img","scw-img-bg","scw-link","scw-content","scw-content-in","scw-subtitle","scw-text","scw-button","scw-button-1","scw-button-2","scw-title",[517,518,519,520,521,522],"\u003C!--\nThis program is free software; you can redistribute it and\u002For\nmodify it under the terms of the GNU General Public License\nas published by the Free Software Foundation; either version 2\nof the License, or (at your option) any later version.\n\nThis program is distributed in the hope that it will be useful,\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\nGNU General Public License for more details.\n\nYou should have received a copy of the GNU General Public License\nalong with this program; if not, write to the Free Software\nFoundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA..\n-->","\u003C!--\n\tLoad the plugin in a safe action\n------------------------------------------\n-->","\u003C!--\n\tLoad some Admin side CSS and JavaScript\n\tfiles.\n------------------------------------------\n-->","\u003C!--\n\tLoad some CSS and JavaScript\n\tfiles.\n------------------------------------------\n-->","\u003C!--\n\tLoad Widgets\n------------------------------------------\n-->","\u003C!-- Widget Backend -->",[524,525,526],"data-color-picker","data-id","data-name",[],[529,530,531,532,533,534,535,536],"SteedCOM_URL","STEEDCOM_URL","STEEDCOM_DRI","SteedCOM_widget_SliderItem","SteedCOM_widget_vCard","SteedCOM_widget_quote","SteedCOM_widget_service","SteedCOM_widget_AdvanceText",[],{"error":539,"url":540,"statusCode":541,"statusMessage":542,"message":542},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fsteed-companion\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":72,"versions":544},[545,551,558,565],{"version":6,"download_url":23,"svn_tag_url":546,"released_at":25,"has_diff":547,"diff_files_changed":548,"diff_lines":25,"trac_diff_url":549,"vulnerabilities":550,"is_current":539},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsteed-companion\u002Ftags\u002F1.2.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fsteed-companion%2Ftags%2F1.2&new_path=%2Fsteed-companion%2Ftags%2F1.2.1",[],{"version":552,"download_url":553,"svn_tag_url":554,"released_at":25,"has_diff":547,"diff_files_changed":555,"diff_lines":25,"trac_diff_url":556,"vulnerabilities":557,"is_current":547},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsteed-companion.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsteed-companion\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fsteed-companion%2Ftags%2F1.1&new_path=%2Fsteed-companion%2Ftags%2F1.2",[],{"version":559,"download_url":560,"svn_tag_url":561,"released_at":25,"has_diff":547,"diff_files_changed":562,"diff_lines":25,"trac_diff_url":563,"vulnerabilities":564,"is_current":547},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsteed-companion.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsteed-companion\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fsteed-companion%2Ftags%2F1.0&new_path=%2Fsteed-companion%2Ftags%2F1.1",[],{"version":566,"download_url":567,"svn_tag_url":568,"released_at":25,"has_diff":547,"diff_files_changed":569,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":570,"is_current":547},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsteed-companion.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsteed-companion\u002Ftags\u002F1.0\u002F",[],[]]