[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWu71_zv8Vh0Omen2i7IkCEKqUXaefjruGrBmx21ItCI":3,"$faAcmwotm7enxUY8YwjUjtbH1f7DIGgY3jhMd7mBb7U8":383,"$fknol0btEKXO1X8DMyNptTsvkkgGHVSMpKaUhLIKN188":387},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":41,"analysis":145,"fingerprints":359},"tf-song-list","tf Song List","1.1.0","Thorsten Frommen","https:\u002F\u002Fprofiles.wordpress.org\u002Ftfrommen\u002F","\u003Cp>\u003Cstrong>tf Song List is an easy-to-use song listing plugin for bands and solo musicians.\u003C\u002Fstrong>\u003Cbr \u002F>\nConveniently manage your song list directly from within the WordPress backend, make use of the nifty CSV import\u002Fexport functionality, and style the actual output entirely to your liking.\u003C\u002Fp>\n\u003Cp>Take a look at the \u003Ca href=\"http:\u002F\u002Fipm-frommen.de\u002Fwordpress\u002Ftf-song-list\u002Flive-example\" rel=\"nofollow ugc\">live example\u003C\u002Fa>, read through the \u003Ca href=\"http:\u002F\u002Fipm-frommen.de\u002Fwordpress\u002Ftf-song-list#documentation\" rel=\"nofollow ugc\">documentation\u003C\u002Fa>, or just \u003Ca href=\"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftf-song-list.zip\" rel=\"nofollow ugc\">download\u003C\u002Fa> the plugin right now.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Manage Songs\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>add new songs to the song list\u003C\u002Fli>\n\u003Cli>edit\u002Fdelete existing songs\u003C\u002Fli>\n\u003Cli>delete the entire song list\u003C\u002Fli>\n\u003Cli>set song status to public (listed both on frontend and backend) or private (listed on backend only)\u003C\u002Fli>\n\u003Cli>filter the song list by the song status (all songs, public songs, private songs)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Import\u002FExport\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>import songs from a CSV file and insert them into the current song list (duplicates will be detected)\u003C\u002Fli>\n\u003Cli>import songs from a CSV file and replace the current song list with the import\u003C\u002Fli>\n\u003Cli>export the entire song list as a CSV file\u003C\u002Fli>\n\u003Cli>export only the public songs as a CSV file\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Settings\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>provide an optional introduction to the song list (some HTML tags allowed)\u003C\u002Fli>\n\u003Cli>order the song list by artist or title\u003C\u002Fli>\n\u003Cli>choose the column order “artist | title” or “title | artist”\u003C\u002Fli>\n\u003Cli>define custom names for the artist and title columns\u003C\u002Fli>\n\u003Cli>show\u002Fhide column names (i.e., table head)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Styling\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>make use of the integrated class names and IDs\u003C\u002Fli>\n\u003Cli>copy the frontend stylesheet to your template directory and thus be independent of any plugin updates\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>The plugin originally comes with English, German and Spanish language.\u003C\u002Fp>\n\u003Cp>If you would like to provide a translation for a currently not included language, please go ahead and do that! I would highly appreciate it, and include the file in the next update.\u003C\u002Fp>\n\u003Cp>You may either download and work with the current POT file that is located in the \u003Ccode>languages\u003C\u002Fcode> folder, or use a plugin (e.g., \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fcodestyling-localization\u002F\" rel=\"ugc\">Codestyling Localization\u003C\u002Fa>) to read the relevant text portions from the plugin files. Then send me the respective \u003Ca href=\"mailto:tf@ipm-frommen.de?subject=[tf Song List] Translation\" rel=\"nofollow ugc\">PO\u002FMO file via e-mail\u003C\u002Fa>.\u003C\u002Fp>\n","tf Song List is an easy-to-use song listing plugin for bands and solo musicians.",20,4555,94,3,"2014-07-16T21:14:00.000Z","3.9.40","3.0","",[20,21,22,23,24],"bands","repertoire","song-list","songlist","songs","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ftf-song-list\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftf-song-list.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":34,"display_name":7,"profile_url":8,"plugin_count":35,"total_installs":36,"avg_security_score":37,"avg_patch_time_days":38,"trust_score":39,"computed_at":40},"tfrommen",8,2220,87,2,91,"2026-05-20T08:44:27.444Z",[42,64,88,109,128],{"slug":43,"name":44,"version":45,"author":46,"author_profile":47,"description":48,"short_description":49,"active_installs":50,"downloaded":51,"rating":52,"num_ratings":35,"last_updated":53,"tested_up_to":54,"requires_at_least":55,"requires_php":18,"tags":56,"homepage":60,"download_link":61,"security_score":39,"vuln_count":62,"unpatched_count":28,"last_vuln_date":63,"fetched_at":30},"bandsintown","Bandsintown Events","1.3.4","bandsintown_legacy","https:\u002F\u002Fprofiles.wordpress.org\u002Fkwestion505\u002F","\u003Cp>Bandsintown’s Events plugin makes it easy for artists to showcase their upcoming events anywhere on their WordPress-powered blog or website.\u003C\u002Fp>\n\u003Cp>Easily display an automatically updated list of your events to your fans using the widget, shortcode or template tag.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically syncs to Facebook, Tumblr and Twitter.\u003C\u002Fli>\n\u003Cli>Buy tickets and RSVP to your events right from your website.\u003C\u002Fli>\n\u003Cli>Fully customizable CSS (uses theme styles by default).\u003C\u002Fli>\n\u003C\u002Ful>\n","Bandsintown's Events plugin for displaying your upcoming events.",4000,87454,66,"2025-03-07T00:11:00.000Z","5.9.13","2.7",[43,57,58,59],"concerts","events","tour-dates","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbandsintown\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbandsintown.1.3.4.zip",1,"2025-02-19 21:09:14",{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":74,"num_ratings":75,"last_updated":76,"tested_up_to":77,"requires_at_least":78,"requires_php":18,"tags":79,"homepage":84,"download_link":85,"security_score":86,"vuln_count":14,"unpatched_count":62,"last_vuln_date":87,"fetched_at":30},"simple-popup-plugin","Simple Popup Plugin","4.6","Garrett Grimm","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrimmdude\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fappsumo.com\u002Fsearch?tags=wordpress&utm_source=sumo&utm_medium=wp-widget&utm_campaign=simple-popup-plugin\" rel=\"nofollow ugc\">Check out the latest WordPress deals for your site.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Use this plugin to easily create links to simple popup windows.  It supports multiple popup links on posts\u002Fpages\u002Fwidgets and window positioning\u002Fcentering options.\u003C\u002Fp>\n","This plugin makes it easy to create a simple, modifiable popup window.",1000,125960,98,12,"2024-10-01T04:54:00.000Z","6.6.5","2.8",[20,80,81,82,83],"music","popup","simple","tools","http:\u002F\u002Fwww.grimmdude.com\u002Fwordpress-simple-popup-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-popup-plugin.4.6.zip",69,"2024-11-28 00:00:00",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":98,"num_ratings":35,"last_updated":99,"tested_up_to":100,"requires_at_least":101,"requires_php":18,"tags":102,"homepage":106,"download_link":107,"security_score":74,"vuln_count":38,"unpatched_count":28,"last_vuln_date":108,"fetched_at":30},"transcoder","Transcoder","1.4.1","rtCamp","https:\u002F\u002Fprofiles.wordpress.org\u002Frtcamp\u002F","\u003Cp>\u003Cstrong>Transcoder plugin has been discontinued and no longer maintained\u003C\u002Fstrong>, we recommend to use our new video management solution \u003Ca href=\"https:\u002F\u002Fgodam.io\u002F?utm_source=readme&utm_medium=plugin&utm_campaign=transcoder\" rel=\"nofollow ugc\">GoDAM\u003C\u002Fa> which provides smart transcoding & adaptive bitrate, generate thumbnail, add custom layers, better way to organize media files, serve via CDN and do a lot more. Install the GoDAM plugin from \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgodam\" rel=\"ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Transcoder easily converts all audio and video files uploaded to your website to a web-friendly format.\u003C\u002Fp>\n\u003Cp>Transcoder eliminates the need for a dedicated media node- no fiddling with installation, managing dependancies or renting servers! Transcoder also works on shared hosting- just install, subscribe and go!\u003C\u002Fp>\n\u003Cp>All transcoding services are available via a subscription plan through this plugin.\u003Cbr \u002F>\nSubscribe to our free plan from the plugin’s settings or from our \u003Ca href=\"https:\u002F\u002Frtmedia.io\u002Ftranscoder\u002F?utm_source=readme&utm_medium=plugin&utm_campaign=transcoder\" rel=\"nofollow ugc\">product page\u003C\u002Fa>. Note that Transcoder will not provide any services without a subscription plan.\u003C\u002Fp>\n\u003Ch4>Supported input media types:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Audio: mp3, m4a, wav, ogg, wma\u003C\u002Fli>\n\u003Cli>Video: 3g2, 3gp, avi, flv, m4v, mp4, mpg, ogv, webm, wmv\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported output media types:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Audio: mp3\u003C\u002Fli>\n\u003Cli>Video: mp4\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Create the ultimate niche community by combining Transcoder with our \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbuddypress-media\u002F\" rel=\"ugc\">rtMedia\u003C\u002Fa> plugin. Transcoder works perfectly with rtMedia to create a social experience that is accessible across all desktop and mobile devices.\u003C\u002Fp>\n\u003Ch4>Transcoder Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Works with ANY WordPress website\u003C\u002Fstrong> – Transcoder plugs into your current website seamlessly, instantly improving user audio\u002Fvideo experience.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>rtMedia integration\u003C\u002Fstrong> – Works perfectly with our own \u003Ca href=\"https:\u002F\u002Frtmedia.io\u002F?utm_source=readme&utm_medium=plugin&utm_campaign=transcoder\" rel=\"nofollow ugc\">rtMedia\u003C\u002Fa>, for a complete social media platform.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Thumbnail generation\u003C\u002Fstrong> – Automatically generate up to 10 thumbnails for every video, from which your users can choose one.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[rt_media] shortcode\u003C\u002Fstrong> – Use our shortcode to display transcoded audio\u002Fvideo file on any post or page. For example, [rt_media attachment_id=xx] the attachment_id parameter specifies the file to be displayed.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Privacy Warning\u003C\u002Fh4>\n\u003Cp>In order for us to transcode your media files, we need to copy it over to our server.\u003Cbr \u002F>\nAfter transcoding is completed, the media can reside on our server for a maximum of 24 hours, before it is permanently and irreversibly removed by a Cron job.\u003C\u002Fp>\n\u003Ch4>Future Roadmap\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Additional output formats for video- ogg, webm\u003C\u002Fli>\n\u003Cli>Downsampling capabilities for output video resolution\u003C\u002Fli>\n\u003Cli>RESTful API\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Important Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frtmedia.io\u002Ftranscoder\u002F?utm_source=readme&utm_medium=plugin&utm_campaign=transcoder\" title=\"Visit Transcoder's Homepage\" rel=\"nofollow ugc\">Project Homepage\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frtmedia.io\u002Fdocs\u002Ftranscoder\u002F?utm_source=readme&utm_medium=plugin&utm_campaign=transcoder\" title=\"Visit Transcoder's Documentation page\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frtmedia.io\u002Ftranscoder\u002F?utm_source=readme&utm_medium=plugin&utm_campaign=transcoder#frequently-asked-questions\" title=\"Visit FAQ page\" rel=\"nofollow ugc\">FAQ\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FrtCamp\u002Ftranscoder\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> – Please mention your wordpress.org username when sending pull requests.\u003C\u002Fli>\n\u003C\u002Ful>\n","Transcoding services for ANY WordPress website. Convert audio\u002Fvideo files of any format to a web-friendly format (mp3\u002Fmp4).",500,87596,72,"2025-08-22T11:38:00.000Z","6.8.5","4.1",[103,104,105,80,24],"audio","media","multimedia","https:\u002F\u002Frtmedia.io\u002Ftranscoder\u002F?utm_source=dashboard&utm_medium=plugin&utm_campaign=transcoder","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftranscoder.1.4.1.zip","2025-08-27 00:00:00",{"slug":110,"name":111,"version":6,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":121,"requires_at_least":67,"requires_php":122,"tags":123,"homepage":18,"download_link":127,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-chords","WP Chords","emreplt","https:\u002F\u002Fprofiles.wordpress.org\u002Femreplt\u002F","\u003Cp>WP Chords allows you to format and display the chords on your blog. You can set font sizes, enable transposing chords especially in your posts. \u003Cstrong>Compatible with \u003Ca href=\"http:\u002F\u002Famp.dev\" rel=\"nofollow ugc\">Google AMP\u003C\u002Fa> (Accelerated Mobile Pages)\u003C\u002Fstrong>.  It’s fully supported different devices such as tablets, mobile phones and most of web browsers.\u003C\u002Fp>\n\u003Ch3>Eazy Real Time Demo\u003C\u002Fh3>\n\u003Cp>As soon as you install the WP Chords plugin, you will find live demo playground under \u003Cstrong>Settings\u003C\u002Fstrong>->\u003Cstrong>WP Chords\u003C\u002Fstrong>. You even don’t need to create a post or a record in your database!\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Please follow \u003Cstrong>How can I test it?\u003C\u002Fstrong> directions in FAQ page.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Formatting\u003C\u002Fh3>\n\u003Cp>You can define your chords at the correct positions in your song using chord shortcodes. 187 codes are available in below. On your final post view your chords will be automatically placed in their correct positions. You can configure formatting with some options such as below\u003C\u002Fp>\n\u003Ch4>Formatting Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display with \u003Cem>monospace\u003C\u002Fem> font.\u003C\u002Fli>\n\u003Cli>Display with alternating chords.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Transposing\u003C\u002Fh3>\n\u003Cp>On your final post view, visitors can adjust chord transposing as they wish with 17 half tones. On the transpose bar, the first chord in the song will be automatically selected as default tone.\u003C\u002Fp>\n\u003Ch4>Transposing Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Tones are: Ab, A, A#, Bb, B, C, C#, Db, D, D#, Db, E, F, F#, Gb, G, G#.\u003C\u002Fli>\n\u003Cli>Transposing can be turned off.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Font Sizing\u003C\u002Fh3>\n\u003Cp>Your visitor can adjust font size for the song, while playing it.\u003C\u002Fp>\n\u003Ch4>Font Sizing Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>It can be turned off\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Printing\u003C\u002Fh3>\n\u003Cp>Your visitor can print the chord itself for using outside.\u003C\u002Fp>\n\u003Ch4>Printing Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>It can be turned off\u003C\u002Fli>\n\u003Cli>Footer text can be adjusted\u003C\u002Fli>\n\u003Cli>Font size applies\u003C\u002Fli>\n\u003Cli>Transpose applies\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Supported Chords:\u003C\u002Fh3>\n\u003Cp>Ab, Abm, Ab6, Ab7, Ab9, Abm6, Abm7, Abmaj7, Abdim, Ab+, Absus, A, Am, A6, A7, A9, Am6, Am7, Amaj7, Adim, A+, Asus, A#, A#m, A#6, A#7, A#9, A#m6, A#m7, A#maj7, A#dim, A#+, A#sus, Bb, Bbm, Bb6, Bb7, Bb9, Bbm6, Bbm7, Bbmaj7, Bbdim, Bb+, Bbsus, B, Bm, B6, B7, B9, Bm6, Bm7, Bmaj7, Bdim, B+, Bsus, C, Cm, C6, C7, C9, Cm6, Cm7, Cmaj7, Cdim, C+, Csus, C#, C#m, C#6, C#7, C#9, C#m6, C#m7, C#maj7, C#dim, C#+, C#sus, Db, Dbm, Db6, Db7, Db9, Dbm6, Dbm7, Dbmaj7, Dbdim, Db+, Dbsus, D, Dm, D6, D7, D9, Dm6, Dm7, Dmaj7, Ddim, D+, Dsus, D#, D#m, D#6, D#7, D#9, D#m6, D#m7, D#maj7, D#dim, D#+, D#sus, Eb, Ebm, Eb6, Eb7, Eb9, Ebm6, Ebm7, Ebmaj7, Ebdim, Eb+, Ebsus, E, Em, E6, E7, E9, Em6, Em7, Emaj7, Edim, E+, Esus, F, Fm, F6, F7, F9, Fm6, Fm7, Fmaj7, Fdim, F+, Fsus, F#, F#m, F#6, F#7, F#9, F#m6, F#m7, F#maj7, F#dim, F#+, F#sus, Gb, Gbm, Gb6, Gb7, Gb9, Gbm6, Gbm7, Gbmaj7, Gbdim, Gb+, Gbsus, G, Gm, G6, G7, G9, Gm6, Gm7, Gmaj7, Gdim, G+, Gsus, G#, G#m, G#6, G#7, G#9, G#m6, G#m7, G#maj7, G#dim, G#+, G#sus\u003C\u002Fp>\n","WP Chords allows you to format and display the chords on your blog including mobile friendly interface and AMP functionality.",200,6021,100,6,"2021-05-10T00:59:00.000Z","5.7.15","5.2.4",[124,125,80,24,126],"chords","guitar","ukulele","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-chords.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":118,"downloaded":136,"rating":28,"num_ratings":28,"last_updated":137,"tested_up_to":138,"requires_at_least":139,"requires_php":18,"tags":140,"homepage":143,"download_link":144,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"better-bandsintown","Better Bandsintown","0.4.2","mrpaplu","https:\u002F\u002Fprofiles.wordpress.org\u002Fmrpaplu\u002F","\u003Cp>Embed Tour Dates from Bandsintown.com without having to deal with CSS (or an ugly widget).\u003C\u002Fp>\n\u003Ch4>Planned features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>More themes\u003C\u002Fli>\n\u003Cli>Customizable widget and shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Know issues\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>The widget doesn’t like narrow spaces\u003C\u002Fli>\n\u003C\u002Ful>\n","Embed Tour Dates from Bandsintown.com without having to deal with CSS (or an ugly widget).",6325,"2015-02-21T22:30:00.000Z","4.1.42","4.0.0",[20,43,141,59,142],"in","town","http:\u002F\u002Fkayvanbree.nl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-bandsintown.0.4.2.zip",{"attackSurface":146,"codeSignals":190,"taintFlows":279,"riskAssessment":353,"analyzedAt":358},{"hooks":147,"ajaxHandlers":183,"restRoutes":184,"shortcodes":185,"cronEvents":189,"entryPointCount":62,"unprotectedCount":28},[148,154,156,160,163,167,171,175,181],{"type":149,"name":150,"callback":151,"file":152,"line":153},"action","init","load_textdomain","tf-song-list.php",84,{"type":149,"name":155,"callback":155,"file":152,"line":27},"admin_menu",{"type":149,"name":157,"callback":158,"file":152,"line":159},"admin_init","register_settings",86,{"type":149,"name":161,"callback":162,"file":152,"line":37},"right_now_content_table_end","right_now_content_songs",{"type":149,"name":164,"callback":165,"file":152,"line":166},"admin_post_tfsl_export","export",88,{"type":149,"name":168,"callback":169,"file":152,"line":170},"admin_post_nopriv_tfsl_export","export_nopriv",89,{"type":149,"name":172,"callback":173,"file":152,"line":174},"template_redirect","head",90,{"type":176,"name":177,"callback":178,"priority":179,"file":152,"line":180},"filter","plugin_row_meta","add_action_links",10,93,{"type":176,"name":182,"callback":182,"file":152,"line":13},"upload_mimes",[],[],[186],{"tag":187,"callback":187,"file":152,"line":188},"tf_song_list",97,[],{"dangerousFunctions":191,"sqlUsage":192,"outputEscaping":195,"fileOperations":38,"externalRequests":28,"nonceChecks":119,"capabilityChecks":62,"bundledLibraries":278},[],{"prepared":193,"raw":28,"locations":194},13,[],{"escaped":196,"rawEcho":197,"locations":198},14,42,[199,203,205,208,210,212,215,217,218,219,221,222,224,226,229,231,232,234,235,236,238,239,241,242,243,245,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276],{"file":200,"line":201,"context":202},"inc\u002Fdebug.php",30,"raw output",{"file":200,"line":204,"context":202},44,{"file":206,"line":207,"context":202},"inc\u002Fimport-export.php",187,{"file":206,"line":209,"context":202},201,{"file":206,"line":211,"context":202},221,{"file":213,"line":214,"context":202},"inc\u002Fsettings.php",29,{"file":213,"line":216,"context":202},35,{"file":213,"line":153,"context":202},{"file":213,"line":39,"context":202},{"file":213,"line":220,"context":202},99,{"file":213,"line":118,"context":202},{"file":213,"line":223,"context":202},109,{"file":213,"line":225,"context":202},110,{"file":227,"line":228,"context":202},"inc\u002Fsongs.php",138,{"file":227,"line":230,"context":202},152,{"file":227,"line":230,"context":202},{"file":227,"line":233,"context":202},153,{"file":227,"line":233,"context":202},{"file":227,"line":233,"context":202},{"file":227,"line":237,"context":202},156,{"file":227,"line":237,"context":202},{"file":227,"line":240,"context":202},157,{"file":227,"line":240,"context":202},{"file":227,"line":240,"context":202},{"file":227,"line":244,"context":202},171,{"file":227,"line":209,"context":202},{"file":227,"line":247,"context":202},207,{"file":227,"line":249,"context":202},220,{"file":227,"line":251,"context":202},222,{"file":227,"line":253,"context":202},224,{"file":227,"line":255,"context":202},227,{"file":227,"line":257,"context":202},229,{"file":227,"line":259,"context":202},231,{"file":227,"line":261,"context":202},235,{"file":227,"line":263,"context":202},237,{"file":227,"line":265,"context":202},239,{"file":227,"line":267,"context":202},243,{"file":227,"line":269,"context":202},269,{"file":227,"line":271,"context":202},270,{"file":227,"line":273,"context":202},280,{"file":227,"line":275,"context":202},290,{"file":152,"line":277,"context":202},417,[],[280,299,315,339],{"entryPoint":281,"graph":282,"unsanitizedCount":28,"severity":298},"export (inc\u002Fimport-export.php:156)",{"nodes":283,"edges":295},[284,289],{"id":285,"type":286,"label":287,"file":206,"line":288},"n0","source","$_POST",161,{"id":290,"type":291,"label":292,"file":206,"line":293,"wp_function":294},"n1","sink","get_results() [SQLi]",164,"get_results",[296],{"from":285,"to":290,"sanitized":297},true,"low",{"entryPoint":300,"graph":301,"unsanitizedCount":28,"severity":298},"\u003Cimport-export> (inc\u002Fimport-export.php:0)",{"nodes":302,"edges":312},[303,304,305,308],{"id":285,"type":286,"label":287,"file":206,"line":288},{"id":290,"type":291,"label":292,"file":206,"line":293,"wp_function":294},{"id":306,"type":286,"label":307,"file":206,"line":214},"n2","$_FILES",{"id":309,"type":291,"label":310,"file":206,"line":211,"wp_function":311},"n3","echo() [XSS]","echo",[313,314],{"from":285,"to":290,"sanitized":297},{"from":306,"to":309,"sanitized":297},{"entryPoint":316,"graph":317,"unsanitizedCount":28,"severity":298},"print_page (inc\u002Fsongs.php:21)",{"nodes":318,"edges":335},[319,322,325,326,330,333],{"id":285,"type":286,"label":320,"file":227,"line":321},"$_GET",25,{"id":290,"type":291,"label":323,"file":227,"line":166,"wp_function":324},"get_row() [SQLi]","get_row",{"id":306,"type":286,"label":320,"file":227,"line":321},{"id":309,"type":291,"label":327,"file":227,"line":328,"wp_function":329},"query() [SQLi]",102,"query",{"id":331,"type":286,"label":332,"file":227,"line":321},"n4","$_GET (x3)",{"id":334,"type":291,"label":310,"file":227,"line":233,"wp_function":311},"n5",[336,337,338],{"from":285,"to":290,"sanitized":297},{"from":306,"to":309,"sanitized":297},{"from":331,"to":334,"sanitized":297},{"entryPoint":340,"graph":341,"unsanitizedCount":28,"severity":298},"\u003Csongs> (inc\u002Fsongs.php:0)",{"nodes":342,"edges":349},[343,344,345,346,347,348],{"id":285,"type":286,"label":320,"file":227,"line":321},{"id":290,"type":291,"label":323,"file":227,"line":166,"wp_function":324},{"id":306,"type":286,"label":320,"file":227,"line":321},{"id":309,"type":291,"label":327,"file":227,"line":328,"wp_function":329},{"id":331,"type":286,"label":332,"file":227,"line":321},{"id":334,"type":291,"label":310,"file":227,"line":233,"wp_function":311},[350,351,352],{"from":285,"to":290,"sanitized":297},{"from":306,"to":309,"sanitized":297},{"from":331,"to":334,"sanitized":297},{"summary":354,"deductions":355},"The tf-song-list v1.1.0 plugin demonstrates a generally good security posture with several positive indicators. Notably, all SQL queries are prepared, and there are no identified critical or high severity taint flows. The absence of any recorded vulnerabilities, including critical or high severity ones, is a strong positive signal regarding its historical security. The presence of nonce and capability checks, along with no external HTTP requests, further contributes to its security. However, a significant concern arises from the output escaping, where only 25% of outputs are properly escaped. This suggests a risk of Cross-Site Scripting (XSS) vulnerabilities, particularly given that the plugin has one shortcode, which is a common vector for such attacks. While the attack surface is small and appears to have no direct unprotected entry points, the low rate of proper output escaping warrants attention.",[356],{"reason":357,"points":35},"Low percentage of properly escaped output","2026-04-16T11:27:10.866Z",{"wat":360,"direct":369},{"assetPaths":361,"generatorPatterns":364,"scriptPaths":365,"versionParams":366},[362,363],"\u002Fwp-content\u002Fplugins\u002Ftf-song-list\u002Fcss\u002Ftf-song-list.css","\u002Fwp-content\u002Fplugins\u002Ftf-song-list\u002Fjs\u002Ftf-song-list.js",[],[363],[367,368],"tf-song-list\u002Fcss\u002Ftf-song-list.css?ver=","tf-song-list\u002Fjs\u002Ftf-song-list.js?ver=",{"cssClasses":370,"htmlComments":376,"htmlAttributes":377,"restEndpoints":378,"jsGlobals":379,"shortcodeOutput":381},[371,372,373,374,375],"tf_song_list_wrapper","tf_song_list_table","tf_song_list_header","tf_song_list_row","tf_song_list_cell",[],[],[],[380],"tf_song_list_options",[382],"[tf_song_list]",{"error":297,"url":384,"statusCode":385,"statusMessage":386,"message":386},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Ftf-song-list\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":28,"versions":388},[]]