[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fKLOUZp-JpKoKB9-N4s3b1kloTeR9M61cK_uIMKxzgpE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":45,"crawl_stats":36,"alternatives":53,"analysis":159,"fingerprints":308},"sticky-social-link","Sticky Social Link","2.0.1","Habibur Rahman","https:\u002F\u002Fprofiles.wordpress.org\u002Fhrhabibpro\u002F","\u003Cp>\u003Cstrong>Sticky Social Link\u003C\u002Fstrong> is a WordPress Popular Plugin for adding a floating social link menu in your WP Website. You can add 20 social link in your website for contacting with you by your social link. You can change floating\u002Fsticky menu background color, icons color and icon hover color. If you want to move the social link menu, you can do this also. You can move the social link menu like Right side, Left side and at Botton of your website. It’s easy to use this plugin in your WordPress Website.\u003C\u002Fp>\n\u003Ch3>Docs and Support\u003C\u002Fh3>\n\u003Cp>You can find \u003Ca href=\"https:\u002F\u002Fhabibcoder.com\u002Fstickysocial\" rel=\"nofollow ugc\">Docs\u003C\u002Fa> here and more detailed information about Sticky Social Link Plugin. When you cannot find the answer to your question on the FAQ or in any of the documentation, check the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsticky-social-link\" rel=\"ugc\">support forum\u003C\u002Fa> on WordPress.org.\u003C\u002Fp>\n\u003Ch3>Sticky Social Link Need Support\u003C\u002Fh3>\n\u003Cp>It is hard to continue development and support for this free plugin without contributions from users like you. If you enjoy using Sticky Social Link and find it useful, please consider \u003Ca href=\"https:\u002F\u002Fwww.buymeacoffee.com\u002Fhabibcoder\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>. Your donation will help encourage and support the plugin’s continued development and better user support.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add Social Links\u003C\u002Fli>\n\u003Cli>20 Social Links option\u003C\u002Fli>\n\u003Cli>Social Link Menu moving\u003C\u002Fli>\n\u003Cli>Menu background color change option\u003C\u002Fli>\n\u003Cli>Icons Background color change option\u003C\u002Fli>\n\u003Cli>Icons Hover color change option\u003C\u002Fli>\n\u003Cli>Move to Right side, Left side and at bottom\u003C\u002Fli>\n\u003Cli>Don’t load extra codes\u003C\u002Fli>\n\u003Cli>Hand Coding Plugin\u003C\u002Fli>\n\u003Cli>No use of any Framework\u002FLibrary\u003C\u002Fli>\n\u003Cli>Light Weight Plugin\u003C\u002Fli>\n\u003Cli>Author Contact info, If you face any problems.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage The Plugin\u003C\u002Fh3>\n\u003Cp>You can use this plugin with some steps, like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Search and Install the Sticky Social Link. You will be redirected to the plugin admin page after installing it.\u003C\u002Fli>\n\u003Cli>You can change everything from here like more social link adding option. Social link menu position, background color, icons and hover color option etc.\u003C\u002Fli>\n\u003Cli>Then you go to your website and when you will see the social link menu at your chosen postion in your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Benefit\u003C\u002Fh3>\n\u003Cp>An awesome sticky\u002Ffloating social link menu will add on your website.\u003C\u002Fp>\n","Sticky Social Link is a Floating\u002FSticky Social Link Plugin. This Plugin will make Your social media links sticky\u002Ffloating on your website.",1000,6743,100,4,"2026-01-11T18:46:00.000Z","6.9.4","6.0","7.0",[20,21,22,23,4],"float-social-link","floating-social","social-links","sticky-social","https:\u002F\u002Fplugin.habibcoder.com\u002Fsticky-social-link\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsticky-social-link.2.0.1.zip",79,1,"2024-05-07 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2024-34546","sticky-social-link-authenticated-admin-stored-cross-site-scripting","Sticky Social Link \u003C= 2.0.0 - Authenticated (Admin+) Stored Cross-Site Scripting","The Sticky Social Link plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=2.0.0","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-07-18 14:26:12",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F50affe4f-d27e-4ead-a14b-abf792d5f0f0?source=api-prod",{"slug":46,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":49,"avg_patch_time_days":50,"trust_score":51,"computed_at":52},"hrhabibpro",7,1880,94,30,90,"2026-04-03T21:32:04.738Z",[54,74,97,116,137],{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":62,"num_ratings":62,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":18,"tags":67,"homepage":72,"download_link":73,"security_score":13,"vuln_count":62,"unpatched_count":62,"last_vuln_date":36,"fetched_at":29},"indoge-social-share-pro","IndoAge Social Share Pro","1.0.1","indoage","https:\u002F\u002Fprofiles.wordpress.org\u002Findoge\u002F","\u003Cp>\u003Cstrong>Indoge Social Share Pro\u003C\u002Fstrong> lets you easily display floating social media buttons on your WordPress site with stylish designs and complete customization options.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add social links: Facebook, Instagram, LinkedIn, Twitter.\u003Cbr \u002F>\n– Show or hide individual social links as needed.\u003Cbr \u002F>\n– Choose from 4 unique design layouts:\u003Cbr \u002F>\n  1. Bottom Right Toggle\u003Cbr \u002F>\n  2. Left Centered Fixed\u003Cbr \u002F>\n  3. Ribbon Tabs\u003Cbr \u002F>\n  4. Circular Orbit\u003Cbr \u002F>\n– Mobile-friendly and responsive design.\u003Cbr \u002F>\n– Simple and intuitive admin interface.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Use Case Examples:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add a fixed set of social links to promote your profiles.\u003Cbr \u002F>\n– Highlight specific campaigns or platforms with social buttons.\u003Cbr \u002F>\n– Use creative layouts like Circular Orbit for a unique user experience.\u003C\u002Fp>\n\u003Cp>No coding knowledge required — just install, configure, and publish your floating social buttons.\u003C\u002Fp>\n","Display floating social media buttons with customizable links, icons, and layouts for better engagement.",0,156,"2025-10-25T07:29:00.000Z","6.8.5","5.0",[68,69,70,22,71],"floating-social-buttons","share-buttons","social-icons","social-media","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Findoge-social-share-pro.1.0.1.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":51,"num_ratings":84,"last_updated":85,"tested_up_to":16,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":92,"download_link":93,"security_score":94,"vuln_count":95,"unpatched_count":62,"last_vuln_date":96,"fetched_at":29},"powerkit","Powerkit – Supercharge your WordPress Site","3.0.4","codesupplyco","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodesupplyco\u002F","\u003Cp>We’ve been developing \u003Ca href=\"https:\u002F\u002Fcodesupply.co\" rel=\"nofollow ugc\">premium WordPress themes\u003C\u002Fa> for a few years and have always been lacking essentials things in the WordPress core.\u003C\u002Fp>\n\u003Cp>There’re numerous plugins in the WordPress repository, however if you install them all, there’s inconsistency in their backend and frontend styles and possible plugin conflicts.\u003C\u002Fp>\n\u003Cp>That’s why we created Powerkit, essentials components for every WordPress blog or magazine.\u003C\u002Fp>\n\u003Cp>Components have modular structure and can be enabled or disabled with a single click. They have been thoroughly tested and play well together.\u003C\u002Fp>\n\u003Ch3>Social Integrations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Share Buttons\u003C\u002Fli>\n\u003Cli>Social Links\u003C\u002Fli>\n\u003Cli>Facebook Integration\u003C\u002Fli>\n\u003Cli>Pinterest Integration\u003C\u002Fli>\n\u003Cli>Twitter Integration\u003C\u002Fli>\n\u003Cli>Instagram Integration\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Marketing\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Opt-In Forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Content Presentation\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Basic Shortcodes\u003C\u002Fli>\n\u003Cli>Justified Gallery\u003C\u002Fli>\n\u003Cli>Slider Gallery\u003C\u002Fli>\n\u003Cli>Lightbox\u003C\u002Fli>\n\u003Cli>Typekit Fonts\u003C\u002Fli>\n\u003Cli>Custom Fonts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Image Optimization\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Retina Images\u003C\u002Fli>\n\u003Cli>Lazyload\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Utilities\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Contributors Widget\u003C\u002Fli>\n\u003Cli>Author Widget\u003C\u002Fli>\n\u003Cli>Featured Posts Widget\u003C\u002Fli>\n\u003Cli>Scroll To Top Button\u003C\u002Fli>\n\u003C\u002Ful>\n","Essential components for every WordPress site: share buttons, social links, social media integrations, galleries, lazyload, custom widgets, and more.",20000,876126,14,"2025-12-03T14:00:00.000Z","4.0","5.4",[89,90,69,91,22],"gallery","lazyload","slider","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpowerkit\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpowerkit.3.0.4.zip",98,2,"2024-04-05 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":62,"num_ratings":62,"last_updated":107,"tested_up_to":16,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":114,"download_link":115,"security_score":13,"vuln_count":62,"unpatched_count":62,"last_vuln_date":36,"fetched_at":29},"raratheme-companion","RaraTheme Companion","1.4.4","Rara Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fraratheme\u002F","\u003Cp>RaraTheme Companion is truly a must have companion for your website. It provides 23 useful and frequently used widgets that you can add to the sidebars to create an engaging website.\u003C\u002Fp>\n\u003Ch3>Widgets offered\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Advertisement\u003C\u002Fli>\n\u003Cli>A Featured Page\u003C\u002Fli>\n\u003Cli>Author Bio\u003C\u002Fli>\n\u003Cli>Call to Action\u003C\u002Fli>\n\u003Cli>Client Logo\u003C\u002Fli>\n\u003Cli>Contact\u003C\u002Fli>\n\u003Cli>Custom Categories\u003C\u002Fli>\n\u003Cli>Facebook Page\u003C\u002Fli>\n\u003Cli>FAQs\u003C\u002Fli>\n\u003Cli>Featured Post\u003C\u002Fli>\n\u003Cli>Icon Text\u003C\u002Fli>\n\u003Cli>Image Text\u003C\u002Fli>\n\u003Cli>Image\u003C\u002Fli>\n\u003Cli>Latest Tweets\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Popular Post\u003C\u002Fli>\n\u003Cli>Posts Category Slider\u003C\u002Fli>\n\u003Cli>Recent Post\u003C\u002Fli>\n\u003Cli>Snapchat\u003C\u002Fli>\n\u003Cli>Social Media\u003C\u002Fli>\n\u003Cli>Stat Counter\u003C\u002Fli>\n\u003Cli>Team Member\u003C\u002Fli>\n\u003Cli>Testimonial\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>The plugin works best with themes developed by Rara Theme.\u003C\u002Fp>\n\u003Cp>The plugin also provides simple yet clean code which allows developers to overwrite the plugin properties. The plugin offers a multiple numbers of filters and action hooks which for maximum flexibility to the developers.\u003C\u002Fp>\n","23 extremely useful custom widgets to create an engaging website.",10000,497772,"2026-01-06T05:43:00.000Z","4.4.0","7.4",[111,112,22,113],"posts","sidebars","widgets","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fraratheme-companion","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraratheme-companion.1.4.4.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":49,"num_ratings":126,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":72,"tags":130,"homepage":132,"download_link":133,"security_score":134,"vuln_count":135,"unpatched_count":27,"last_vuln_date":136,"fetched_at":29},"wp-social-widget","WP Social Widget","2.3.1","catchsquare","https:\u002F\u002Fprofiles.wordpress.org\u002Fcatchsquare\u002F","\u003Cp>WP Social Widget is a plugin which takes a simple, extendable approach to display links along with social icons to your social networking  profiles in WordPress\u003C\u002Fp>\n\u003Cp>You will find following widget with options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Background Color\u003C\u002Fli>\n\u003Cli>Background Hover Color\u003C\u002Fli>\n\u003Cli>Icon Color\u003C\u002Fli>\n\u003Cli>Icon Hover Color\u003C\u002Fli>\n\u003Cli>Icon to circle\u003C\u002Fli>\n\u003Cli>Input fields to input your social profile links\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>From ver 2.0.0, we also have added shortcode feature . You can use shortcode => \u003Ccode>[wpsw]\u003C\u002Fcode> to produce the social icons.\u003Cbr \u002F>\nBefore that you need to assign social link in the shortcode.\u003Cbr \u002F>\nFor example \u003Ccode>[wpsw background_color = \"#ffffff\" facebook=\"your_profile_url\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch4>Here are the parameters of the shortcode given below\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>background_color        [default: #ffffff ]       \u003C\u002Fli>\n\u003Cli>background_hover_color  [default: #000000 ]  \u003C\u002Fli>\n\u003Cli>icon_color              [default: #000000 ]           \u003C\u002Fli>\n\u003Cli>icon_hover_color        [default: #ffffff ]    \u003C\u002Fli>\n\u003Cli>target                  [default: _blank options: same as \u003Ccode>\u003Ca>\u003C\u002Fcode> tag’s target attribute  ]\u003C\u002Fli>\n\u003Cli>icon_circle             [default: “no” | options: yes,no ] \u003C\u002Fli>\n\u003Cli>title                   \u003C\u002Fli>\n\u003Cli>facebook              \u003C\u002Fli>\n\u003Cli>twitter               \u003C\u002Fli>\n\u003Cli>behance               \u003C\u002Fli>\n\u003Cli>dribbble              \u003C\u002Fli>\n\u003Cli>flickr                \u003C\u002Fli>\n\u003Cli>foursquare            \u003C\u002Fli>\n\u003Cli>github                \u003C\u002Fli>\n\u003Cli>google                \u003C\u002Fli>\n\u003Cli>instagram             \u003C\u002Fli>\n\u003Cli>linkedin              \u003C\u002Fli>\n\u003Cli>mail                  \u003C\u002Fli>\n\u003Cli>pinterest             \u003C\u002Fli>\n\u003Cli>rss                   \u003C\u002Fli>\n\u003Cli>skype                 \u003C\u002Fli>\n\u003Cli>soundcloud            \u003C\u002Fli>\n\u003Cli>stumbleupon           \u003C\u002Fli>\n\u003Cli>tumblr                \u003C\u002Fli>\n\u003Cli>vimeo                 \u003C\u002Fli>\n\u003Cli>vine                  \u003C\u002Fli>\n\u003Cli>vk                    \u003C\u002Fli>\n\u003Cli>xing                  \u003C\u002Fli>\n\u003Cli>yelp                  \u003C\u002Fli>\n\u003Cli>youtube\u003C\u002Fli>\n\u003C\u002Ful>\n","A widget to add links of social networking sites.",4000,121857,11,"2025-05-25T08:42:00.000Z","6.7.5","2.8",[70,22,71,131,117],"social-network","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-social-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-social-widget.2.3.1.zip",74,5,"2025-09-22 00:00:00",{"slug":138,"name":139,"version":140,"author":141,"author_profile":142,"description":143,"short_description":144,"active_installs":145,"downloaded":146,"rating":147,"num_ratings":47,"last_updated":148,"tested_up_to":149,"requires_at_least":150,"requires_php":151,"tags":152,"homepage":156,"download_link":157,"security_score":158,"vuln_count":62,"unpatched_count":62,"last_vuln_date":36,"fetched_at":29},"the-social-links","The Social Links","2.0.5","seagyn","https:\u002F\u002Fprofiles.wordpress.org\u002Fseags\u002F","\u003Cp>\u003Cstrong>Note: Development for The Social Links happens on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fflickerleap\u002Fthe-social-links\" rel=\"nofollow ugc\">Github\u003C\u002Fa>. Please submit an issue there.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The Social Links plugin adds a widget and shortcode to your WordPress website allowing you to display icons linking to your social profiles. The new version includes the following social networks:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Telegram\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Linkedin\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Behance\u003C\u002Fli>\n\u003Cli>Bitcoin\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>DeviantArt\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Dribble\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Foursquare\u003C\u002Fli>\n\u003Cli>GitHub\u003C\u002Fli>\n\u003Cli>LastFM\u003C\u002Fli>\n\u003Cli>Medium\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003Cli>Soundcloud\u003C\u002Fli>\n\u003Cli>Spotify\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Vine\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Telegram\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>We’ve also added support for a \u003Cstrong>shortcode\u003C\u002Fstrong> (\u003Ccode>[the-social-links]\u003C\u002Fcode>) for use in WordPress posts and pages and a \u003Cstrong>custom template tag\u003C\u002Fstrong> (\u003Ccode>\u003C?php the_social_links();?>\u003C\u002Fcode>) for use in template files.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>The Social Links is translation ready!\u003C\u002Fstrong>\u003C\u002Fp>\n","The Social Links plugin adds a widget and shortcode to your WordPress website allowing you to display icons linking to your social profiles.",2000,138326,88,"2021-11-09T21:20:00.000Z","5.8.13","4.2","5.6",[153,154,22,155],"social","social-bookmarks","social-networking","https:\u002F\u002Fgithub.com\u002Fseagyn\u002Fthe-social-links","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthe-social-links.2.0.5.zip",85,{"attackSurface":160,"codeSignals":197,"taintFlows":293,"riskAssessment":294,"analyzedAt":307},{"hooks":161,"ajaxHandlers":193,"restRoutes":194,"shortcodes":195,"cronEvents":196,"entryPointCount":62,"unprotectedCount":62},[162,167,172,177,181,185,189],{"type":163,"name":164,"callback":165,"file":166,"line":84},"action","admin_menu","sslink_admin_menu","dashboard\\sslink-admin.php",{"type":163,"name":168,"callback":169,"file":170,"line":171},"wp_footer","sslink_social_links_add","frontend\\sslink-frontend.php",17,{"type":163,"name":173,"callback":174,"file":175,"line":176},"plugins_loaded","sslink_load_textdomain","sticky-social-link.php",27,{"type":163,"name":178,"callback":179,"file":175,"line":180},"admin_enqueue_scripts","sslink_admin_enqueues",63,{"type":163,"name":182,"callback":183,"file":175,"line":184},"wp_enqueue_scripts","sslink_frontend_enqueues",75,{"type":163,"name":186,"callback":187,"file":175,"line":188},"admin_init","sslink_plugin_redirect",89,{"type":163,"name":190,"callback":191,"file":175,"line":192},"wp_head","sslink_dynamic_styles",106,[],[],[],[],{"dangerousFunctions":198,"sqlUsage":199,"outputEscaping":201,"fileOperations":62,"externalRequests":62,"nonceChecks":62,"capabilityChecks":62,"bundledLibraries":292},[],{"prepared":62,"raw":62,"locations":200},[],{"escaped":202,"rawEcho":203,"locations":204},115,46,[205,208,210,211,213,215,217,219,221,223,225,227,229,231,232,234,235,236,238,239,241,243,245,247,249,251,253,255,257,259,261,263,265,267,269,271,273,275,277,279,281,282,284,286,288,290],{"file":166,"line":206,"context":207},40,"raw output",{"file":166,"line":209,"context":207},43,{"file":166,"line":203,"context":207},{"file":166,"line":212,"context":207},49,{"file":166,"line":214,"context":207},52,{"file":166,"line":216,"context":207},55,{"file":166,"line":218,"context":207},58,{"file":166,"line":220,"context":207},61,{"file":166,"line":222,"context":207},64,{"file":166,"line":224,"context":207},67,{"file":166,"line":226,"context":207},70,{"file":166,"line":228,"context":207},73,{"file":166,"line":230,"context":207},76,{"file":166,"line":26,"context":207},{"file":166,"line":233,"context":207},82,{"file":166,"line":158,"context":207},{"file":166,"line":147,"context":207},{"file":166,"line":237,"context":207},91,{"file":166,"line":49,"context":207},{"file":166,"line":240,"context":207},97,{"file":166,"line":242,"context":207},124,{"file":166,"line":244,"context":207},127,{"file":166,"line":246,"context":207},130,{"file":170,"line":248,"context":207},23,{"file":170,"line":250,"context":207},26,{"file":170,"line":252,"context":207},29,{"file":170,"line":254,"context":207},32,{"file":170,"line":256,"context":207},35,{"file":170,"line":258,"context":207},38,{"file":170,"line":260,"context":207},41,{"file":170,"line":262,"context":207},44,{"file":170,"line":264,"context":207},47,{"file":170,"line":266,"context":207},50,{"file":170,"line":268,"context":207},53,{"file":170,"line":270,"context":207},56,{"file":170,"line":272,"context":207},59,{"file":170,"line":274,"context":207},62,{"file":170,"line":276,"context":207},65,{"file":170,"line":278,"context":207},68,{"file":170,"line":280,"context":207},71,{"file":170,"line":134,"context":207},{"file":170,"line":283,"context":207},77,{"file":170,"line":285,"context":207},80,{"file":175,"line":287,"context":207},111,{"file":175,"line":289,"context":207},112,{"file":175,"line":291,"context":207},113,[],[],{"summary":295,"deductions":296},"The \"sticky-social-link\" plugin, v2.0.1, exhibits a mixed security posture. On one hand, the static analysis reveals no identified attack surface points (AJAX handlers, REST API routes, shortcodes, cron events), no dangerous functions, and all SQL queries utilize prepared statements. This suggests a well-contained codebase with good practices for database interaction. However, a significant concern is the output escaping, with only 71% of outputs being properly escaped, leaving 29% potentially vulnerable to Cross-Site Scripting (XSS) if untrusted data is ever introduced into these outputs. Taint analysis also shows no identified vulnerabilities, which is positive.\n\nThe plugin's vulnerability history is a major red flag. It has one known CVE, which is currently unpatched, and it's of medium severity, specifically an XSS vulnerability. The fact that the last vulnerability was very recent (May 7, 2024) and remains unaddressed indicates a lack of timely security patching and maintenance. This history, coupled with the less-than-perfect output escaping, strongly suggests a pattern of potential security weaknesses that are not being proactively resolved.\n\nIn conclusion, while the plugin demonstrates good internal coding practices regarding SQL and a lack of immediate attack vectors, the unpatched medium severity XSS vulnerability and the moderate rate of unescaped output are critical concerns. The recent nature of the vulnerability further exacerbates the risk, suggesting that users of this plugin are exposed to known security flaws that have not been remediated.",[297,300,303,305],{"reason":298,"points":299},"Currently unpatched medium severity CVE",15,{"reason":301,"points":302},"Moderate percentage of unescaped output",6,{"reason":304,"points":135},"No capability checks found",{"reason":306,"points":135},"No nonce checks found","2026-03-16T19:05:31.641Z",{"wat":309,"direct":320},{"assetPaths":310,"generatorPatterns":314,"scriptPaths":315,"versionParams":316},[311,312,313],"\u002Fwp-content\u002Fplugins\u002Fsticky-social-link\u002Fcss\u002Fsslink-admin.css","\u002Fwp-content\u002Fplugins\u002Fsticky-social-link\u002Fcss\u002Fsslink-frontend.css","\u002Fwp-content\u002Fplugins\u002Fsticky-social-link\u002Fjs\u002Fsslink-admin.js",[],[313],[317,318,319],"sticky-social-link\u002Fcss\u002Fsslink-admin.css?ver=","sticky-social-link\u002Fcss\u002Fsslink-frontend.css?ver=","sticky-social-link\u002Fjs\u002Fsslink-admin.js?ver=",{"cssClasses":321,"htmlComments":324,"htmlAttributes":326,"restEndpoints":328,"jsGlobals":329,"shortcodeOutput":330},[322,323],"sslink-socials","sslink-menu",[325],"\u003C!-- Sticky Social Link Dynamic Style -->",[327],"data-tab-id",[],[],[]]