[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsiPaqTw-6UgTlTQcCunmTwnYje963wHaKJUoeXWrEEE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":134,"fingerprints":219},"subtome","SubToMe","1.5.6","julien51","https:\u002F\u002Fprofiles.wordpress.org\u002Fjulien51\u002F","\u003Cp>This widget adds a \u003Ca href=\"http:\u002F\u002Fwww.subtome.com\u002F\" rel=\"nofollow ugc\">SubToMe\u003C\u002Fa> button to your WordPress blog. This button allows your readers to follow your blog using their \u003Cstrong>favorite\u003C\u002Fstrong> applications.\u003C\u002Fp>\n\u003Cp>If the user clicks the button, then, it will load an external iframe with JavaScript. The iframe will show the user the list of their favorite subscription tools. Once they pick one, they’re redirect to it with your blog information.\u003C\u002Fp>\n\u003Cp>The user information is stored in the browser, but is only accessible on the domain \u003Ccode>subtome.com\u003C\u002Fcode>, which is why we have to load the iframe.\u003C\u002Fp>\n\u003Cp>No data is ever “leaked”. The whole \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsuperfeedr\u002Fsubtome\" rel=\"nofollow ugc\">SubToMe code\u003C\u002Fa> is open source. Feel free to check it out by yourself.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftommcfarlin\u002FWordPress-Widget-Boilerplate\" rel=\"nofollow ugc\">WordPress Widget Boilerplate\u003C\u002Fa>, \u003Ca href=\"http:\u002F\u002Fnotizblog.org\u002F\" rel=\"nofollow ugc\">Matthias Pfefferle\u003C\u002Fa> for his precious help, mostly with version 1.3!\u003C\u002Fp>\n","This widget adds a SubToMe button to your blog and allows people to subscribe to your content in one click.",20,7847,86,3,"2024-07-17T08:14:00.000Z","6.6.5","3.3.1","",[20,21,22,23,4],"feed","follow","rss","subscribe","http:\u002F\u002Fwww.subtome.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsubtome.1.5.6.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},100,87,30,85,"2026-04-04T14:11:50.348Z",[38,57,82,100,116],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":32,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":55,"download_link":56,"security_score":35,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"add-to-any-subscribe","Subscribe Button by AddToAny",".9.10.0","micropat","https:\u002F\u002Fprofiles.wordpress.org\u002Fmicropat\u002F","\u003Cp>The Subscribe button helps people subscribe to your blog using any feed reader, such as Feedly, The Old Reader, Yahoo!, AOL, and many more RSS readers.\u003C\u002Fp>\n\u003Cp>The button displays AddToAny’s customizable Smart Menu, which places the services visitors use at the top of the menu, based on each visitor’s preferences.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.addtoany.com\u002Fbuttons\u002Ffor\u002Fwebsite\u002Fsubscribe\" title=\"Subscribe button\" rel=\"nofollow ugc\">Subscribe Button\u003C\u002Fa> (standard version)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>AddToAny Smart Menu\u003C\u002Fli>\n\u003Cli>Includes all services\u003C\u002Fli>\n\u003Cli>Services updated automatically\u003C\u002Fli>\n\u003Cli>WordPress optimized, localized (i18n)\u003C\u002Fli>\n\u003Cli>Supports WordPress Multisite Networks (MS)\u003C\u002Fli>\n\u003Cli>Many more publisher and user features\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See also:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadd-to-any\u002F\" title=\"Share plugin\" rel=\"ugc\">Share Buttons\u003C\u002Fa> plugin\u003C\u002Fli>\n\u003C\u002Ful>\n","Help visitors subscribe to your blog using email or any feed reader, such as Feedly, The Old Reader, Yahoo!, AOL, and many more feed services.",1000,261065,2,"2017-11-28T17:32:00.000Z","4.7.32","3.7",[53,20,54,22,23],"button","links","https:\u002F\u002Fwww.addtoany.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadd-to-any-subscribe.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":77,"download_link":78,"security_score":79,"vuln_count":80,"unpatched_count":27,"last_vuln_date":81,"fetched_at":29},"simple-feed-stats","Simple Statistics for Feeds","20260202","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fsimple-feed-stats\u002F\" rel=\"nofollow ugc\">Simple Statistics for Feeds\u003C\u002Fa> (SFS) tracks your feeds automatically using a variety of methods, and provides a wealth of tools and options for further configuration and management. Also displays your subscriber count via template tag or shortcode. Fully configurable. Visit the “Simple Statistics for Feeds” settings page for stats, tools, and more info.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>👉 Check out a feed-count demo in the sidebar @ \u003Ca href=\"https:\u002F\u002Fwp-mix.com\u002F\" rel=\"nofollow ugc\">WP-Mix.com\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Fast & Free\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Stop paying 3rd-party fees, track your own stats for free!\u003C\u002Fli>\n\u003Cli>Display a “feed count” badge like the once-awesome Feedburner\u003C\u002Fli>\n\u003Cli>Built with the WP API for optimal performance & security\u003C\u002Fli>\n\u003Cli>Fully compatible with WordPress Multisite\u003C\u002Fli>\n\u003Cli>Regularly updated and “future proof”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Core Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Daily & Total\u003C\u002Fstrong> – collect daily stats and total stats for each feed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Beautiful Stats\u003C\u002Fstrong> – view all your feed stats via the plugin settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard Widget\u003C\u002Fstrong> – get a quick overview of your feed statistics\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Feed Count\u003C\u002Fstrong> – display any number for your feed count\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Content\u003C\u002Fstrong> – embellish your feed with graphics and markup\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom CSS\u003C\u002Fstrong> – use your own styles to customize your feed stats\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>More Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shortcodes & Template Tags to display your feed count anywhere\u003C\u002Fli>\n\u003Cli>Display your daily feed counts for post feeds and comments feeds\u003C\u002Fli>\n\u003Cli>Options to clear cache, reset stats, and restore default settings\u003C\u002Fli>\n\u003Cli>Automatically track custom feeds generated via the WordPress API\u003C\u002Fli>\n\u003Cli>Enable “Strict Mode” reporting for more accurate feed counts\u003C\u002Fli>\n\u003Cli>Track feeds using custom key\u002Fvalue tracking parameters\u003C\u002Fli>\n\u003Cli>Works with or without Gutenberg Block Editor\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Tracking Methods\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Simple Statistics for Feeds provides four ways to track your feeds:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Default Tracking\u003C\u002Fstrong> – tracks feeds directly via URI request\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Tracking\u003C\u002Fstrong> – tracks feeds via embedded post image\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Alternate Tracking\u003C\u002Fstrong> – tracks feeds via embedded feed image\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Open Tracking\u003C\u002Fstrong> – tracks feeds via your own custom image\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Collected Data\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Simple Statistics for Feeds tracks the following data for each feed request:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Feed type\u003C\u002Fli>\n\u003Cli>Tracking type\u003C\u002Fli>\n\u003Cli>Requested URL\u003C\u002Fli>\n\u003Cli>User-agent\u003C\u002Fli>\n\u003Cli>IP address\u003C\u002Fli>\n\u003Cli>Referrer\u003C\u002Fli>\n\u003Cli>Date\u003C\u002Fli>\n\u003Cli>ID\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can view these data at any time by visiting the plugin settings. All feed data are displayed via beautiful, easy-to-use interface. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-feed-stats\u002Fscreenshots\u002F\" rel=\"ugc\">View screenshots »\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin records the user agent, referrer, and IP address for each feed request. IP collection may be disabled via the plugin settings. All collected data may be deleted at any time via the plugin settings. This plugin does not set any cookies, and it does not connect to any third-party locations.\u003C\u002Fp>\n\u003Cp>Simple Statistics for Feeds (formerly Simple Feed Stats) is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thank you! 🙂\u003C\u002Fp>\n","Tracks your feeds and displays your feed count via shortcode.",900,94061,96,58,"2026-02-02T17:18:00.000Z","6.9.4","4.7","5.6.20",[20,22,74,75,76],"statistics","stats","subscribers","https:\u002F\u002Fperishablepress.com\u002Fsimple-feed-stats\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-feed-stats.20260202.zip",99,1,"2025-08-22 00:00:00",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":32,"downloaded":90,"rating":27,"num_ratings":27,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":18,"tags":94,"homepage":98,"download_link":99,"security_score":35,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"subscribe-here-widget","Subscribe Here Widget","1.0","adiian","https:\u002F\u002Fprofiles.wordpress.org\u002Fadiian\u002F","\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show “Subscribe by RSS” and “Subscribe by email”\u003C\u002Fli>\n\u003Cli>Configurable apearance through CSS\u003C\u002Fli>\n\u003Cli>Feedburner Feed Id configurable through widget panel\u003C\u002Fli>\n\u003C\u002Ful>\n","Subscribe Here displays a visible plugin widget in the sidebar with Subscribe by Rss & Subscribe by Email(through Feedburner) options.",23003,"2010-01-11T23:34:00.000Z","2.9.2","2.3.1",[95,22,23,96,97],"feedburner","subscribe-here","widget","http:\u002F\u002Fwww.improveseo.info\u002Fsubscribe-here-widget-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsubscribe-here-widget.1.0.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":34,"downloaded":108,"rating":32,"num_ratings":14,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":18,"tags":112,"homepage":18,"download_link":115,"security_score":35,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"cartograf-featured-image-in-feed","Cartograf Featured-image in Feed","1.2.1","Jose","https:\u002F\u002Fprofiles.wordpress.org\u002Fversvs\u002F","\u003Cp>This plugin allows the user to show a thumbnail of the featured image of a post along with the content (or excerpt, as configured through WP dashboard) of their posts, when they are read using the feeds that WordPress generate.\u003C\u002Fp>\n\u003Cp>The development and manteniance of this plugin is sponsored by \u003Ca href=\"http:\u002F\u002Fwww.cartograf.net\" rel=\"nofollow ugc\">Cartograf\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Contributors\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Jose Alcántara\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>About Cartograf\u003C\u002Fh3>\n\u003Cp>The development of this plugin has been funded by \u003Ca href=\"http:\u002F\u002Fwww.cartograf.net\" rel=\"nofollow ugc\">Cartograf\u003C\u002Fa>, a consultancy company specialized in free software based in Madrid.\u003C\u002Fp>\n","Includes the featured image of a post at the beginning of the item's content in the WordPress generated feeds. With this plugin, you no longer ne …",2719,"2023-04-15T15:04:00.000Z","6.2.0","3.5",[113,20,114,22,76],"featured-image","newsletter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcartograf-featured-image-in-feed.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":27,"num_ratings":27,"last_updated":18,"tested_up_to":126,"requires_at_least":127,"requires_php":18,"tags":128,"homepage":131,"download_link":132,"security_score":32,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":133},"follow-category-feeds","Follow WordPress Category Feeds","2.1.3","Prasanna SP","https:\u002F\u002Fprofiles.wordpress.org\u002Fprasannasp\u002F","\u003Cp>Just like the normal WordPress site feed, wordpress categories and tags also has feeds. The category feed is located at \u003Ccode>site.url\u002Fcategory\u002Fcategoryname\u002Ffeed\u003C\u002Fcode>. This plugin automatically adds the RSS feed link to the current post categories after the post content. By default the plugin shows category feed link on single posts. You can change it’s settings to show it on other pages, such as archives as well. You can change it’s title in WP-Admin –> Settings –> Follow Category Feeds.\u003C\u002Fp>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fwww.prasannasp.net\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">this page\u003C\u002Fa> for more \u003Cstrong>WordPress Plugins\u003C\u002Fstrong> from the developer.\u003C\u002Fp>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fwww.prasannasp.net\u002F\" rel=\"nofollow ugc\">developer’s blog\u003C\u002Fa> for more information on WordPress and plugins.\u003C\u002Fp>\n","This plugin adds link for the category feeds after post content.",10,5306,"3.5.2","3.1",[129,20,21,130,22],"categories","link","http:\u002F\u002Fwww.prasannasp.net\u002Ffollow-wordpress-category-feeds-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffollow-category-feeds.2.1.3.zip","2026-03-15T10:48:56.248Z",{"attackSurface":135,"codeSignals":168,"taintFlows":207,"riskAssessment":208,"analyzedAt":218},{"hooks":136,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":167,"entryPointCount":80,"unprotectedCount":27},[137,142,146,149,153,157],{"type":138,"name":139,"callback":139,"file":140,"line":141},"action","init","subtome.php",31,{"type":138,"name":143,"callback":144,"file":140,"line":145},"widgets_init","register_widget",32,{"type":138,"name":139,"callback":147,"file":140,"line":148},"widget_textdomain",49,{"type":138,"name":150,"callback":151,"file":140,"line":152},"admin_menu","add_menu_item",152,{"type":138,"name":154,"callback":155,"file":140,"line":156},"admin_init","register_settings",153,{"type":138,"name":158,"callback":159,"priority":79,"file":140,"line":160},"the_content","extend_post",154,[],[],[164],{"tag":4,"callback":165,"file":140,"line":166},"shortcode",150,[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":206},[],{"prepared":27,"raw":27,"locations":171},[],{"escaped":173,"rawEcho":174,"locations":175},6,18,[176,179,181,183,184,186,187,188,190,191,192,194,195,196,198,200,202,204],{"file":140,"line":177,"context":178},75,"raw output",{"file":140,"line":180,"context":178},78,{"file":140,"line":182,"context":178},83,{"file":140,"line":35,"context":178},{"file":140,"line":185,"context":178},123,{"file":140,"line":185,"context":178},{"file":140,"line":185,"context":178},{"file":140,"line":189,"context":178},124,{"file":140,"line":189,"context":178},{"file":140,"line":189,"context":178},{"file":140,"line":193,"context":178},125,{"file":140,"line":193,"context":178},{"file":140,"line":193,"context":178},{"file":140,"line":197,"context":178},310,{"file":140,"line":199,"context":178},315,{"file":140,"line":201,"context":178},320,{"file":140,"line":203,"context":178},324,{"file":140,"line":205,"context":178},349,[],[],{"summary":209,"deductions":210},"The subtome v1.5.6 plugin exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and a clean taint analysis indicate a lack of critical vulnerabilities.  The plugin also demonstrates good practices by exclusively using prepared statements for SQL queries and having no file operations or external HTTP requests. However, there are significant areas of concern, particularly regarding output escaping and the complete lack of nonce and capability checks. With 25% of outputs being improperly escaped, there's a notable risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is outputted without proper sanitization.  Furthermore, the absence of nonce and capability checks on its single shortcode entry point makes it susceptible to Cross-Site Request Forgery (CSRF) and unauthorized actions if the shortcode performs any sensitive operations. While the attack surface is small, the lack of protective measures on the existing entry point is a weakness.",[211,213,216],{"reason":212,"points":173},"Low output escaping rate (25%)",{"reason":214,"points":215},"No nonce checks on entry points",7,{"reason":217,"points":215},"No capability checks on entry points","2026-03-16T22:51:33.816Z",{"wat":220,"direct":226},{"assetPaths":221,"generatorPatterns":223,"scriptPaths":224,"versionParams":225},[222],"\u002Fwp-content\u002Fplugins\u002Fsubtome\u002Fimg\u002Fsubtome-button.svg",[],[],[],{"cssClasses":227,"htmlComments":230,"htmlAttributes":231,"restEndpoints":234,"jsGlobals":235,"shortcodeOutput":237},[228,229],"subtome-description","widget_subtome",[],[232,233],"data-caption","data-description",[],[236],"subtome_button_script",[238,239,240,241,242,243,244,245,246],"\u003Cp class=\"subtome\">","\u003Cspan class=\"subtome-description\">","\u003Cimg src=\"","\" onclick=\"","\" alt=\"","\" style=\"vertical-align: middle;\" \u002F>","\u003Cinput type=\"button\" onclick=\"","\" value=\"","\" \u002F>"]