[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9o1Trwos26RmERDsRjnVbJUul7Xy4oxgsnFlkWDQTF8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":46,"crawl_stats":36,"alternatives":50,"analysis":152,"fingerprints":373},"thinktwit","ThinkTwit","1.7.1","Stephen Pickett","https:\u002F\u002Fprofiles.wordpress.org\u002Fstephenpickett\u002F","\u003Cp>ThinkTwit is a highly customisable plugin that can output tweets from multiple users (something that very few other plugins can do successfully), #hashtag or keyword. It uses the Twitter Search JSON API v1.1 to access tweets which can be cached. It is very simple, yet flexible and easily customised. It can be placed on your WordPress page simply through drag and drop on the Widgets interface or through the use of Shortcode or Output Anywhere (PHP function call). Supports i18n!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support:\u003C\u002Fstrong> http:\u002F\u002Fwww.thepicketts.org\u002Fthinktwit\u002F or on Twitter \u003Cstrong>@stephenpickett\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Can be configured from Widgets settings (if displayed in sidebar)\u003C\u002Fli>\n\u003Cli>Can be implemented using shortcode or Output Anywhere (PHP function call)\u003C\u002Fli>\n\u003Cli>Contains default slimline CSS for integrated look and feel (can be turned off)\u003C\u002Fli>\n\u003Cli>Easy to configure and customise (through settings and CSS)\u003C\u002Fli>\n\u003Cli>Multiple instances can be deployed (like other widgets\u002Fplugins)\u003C\u002Fli>\n\u003Cli>JavaScript is not required (unless no-caching is activated)\u003C\u002Fli>\n\u003Cli>Can specify multiple usernames\u003C\u002Fli>\n\u003Cli>Tweets can be filtered by #hashtag or keyword\u003C\u002Fli>\n\u003Cli>You can select to filter between an AND or OR filter to either show tweets only containing specified usernames and hashtags or any of them\u003C\u002Fli>\n\u003Cli>Can specify maximum number of tweets to display\u003C\u002Fli>\n\u003Cli>Can specify maximum number of days back to display\u003C\u002Fli>\n\u003Cli>Supports no-caching, to prevent caching of tweets by caching engines such as WP Super Cache\u003C\u002Fli>\n\u003Cli>Supports cURL as a fallback method, if necessary\u003C\u002Fli>\n\u003Cli>Supports optional caching of tweets and avatars\u003C\u002Fli>\n\u003Cli>Cache can be manually cleared and will automatically update if the cache is empty\u003C\u002Fli>\n\u003Cli>Can display the avatar of the Twitter user\u003C\u002Fli>\n\u003Cli>Output can be filtered (using apply_filters)\u003C\u002Fli>\n\u003Cli>Can optionally output “Follow @username” links\u003C\u002Fli>\n\u003Cli>Automated cleanup process that runs periodically according to user setting\u003C\u002Fli>\n\u003Cli>Internationalised using i18n meaning that if it isn’t in your language it’s easy to translate! See Other Notes for more details\u003C\u002Fli>\n\u003Cli>Gracefully deals with Twitter errors and adds them to the PHP error log\u003C\u002Fli>\n\u003Cli>Supports live updates of tweets when using no-caching (AJAX)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Requirements\u002FRestrictions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works with WordPress 3.2 to 5.7.2, not tested with other versions nor re-tested on older versions than most current\u003C\u002Fli>\n\u003Cli>Can be installed using the widgets sidebar\u003C\u002Fli>\n\u003Cli>Can also be used via shortcode or Output Anywhere (PHP function call)\u003C\u002Fli>\n\u003Cli>Uses Twitter REST API v1.1 Application-only authentication and therefore requires an application key (see installation)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>I am looking for more people to translate ThinkTwit in to other languages, if you are interested please see “Internationalisation (i18n)”\u003Cbr \u002F>\nunder “Other Notes”.\u003C\u002Fp>\n\u003Ch3>Uninstall\u003C\u002Fh3>\n\u003Cp>To uninstall simply deactivate and then delete through the Plugins admin interface. All options and files will be automatically removed.\u003C\u002Fp>\n\u003Ch3>Internationalisation (i18n)\u003C\u002Fh3>\n\u003Cp>Currently the following languages are supported:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>es_ES – Spanish in Spain (many thanks to \u003Ca href=\"http:\u002F\u002Fwww.webhostinghub.com\u002F\" rel=\"nofollow ugc\">Maria Ramos\u003C\u002Fa> for contributing)\u003C\u002Fli>\n\u003Cli>en_GB – English in Great Britain (default)\u003C\u002Fli>\n\u003Cli>sr_RS – Serbian in Serbia (many thanks to [Ogi Djuraskovic] (http:\u002F\u002Ffirstsiteguide.com\u002F) for contributing)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If your language is not listed and you would like to translate in to your language please do the following:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Navigate to thinktwit\u002Flanguages and take a copy of thinktwit.pot.\u003C\u002Fli>\n\u003Cli>Open in the language editor of your choice e.g. \u003Ca href=\"http:\u002F\u002Fwww.poedit.net\u002F\" rel=\"nofollow ugc\">POedit\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Translate each line until you’ve done them all.\u003C\u002Fli>\n\u003Cli>Save as thinktwit-lang_COUNTRY.po e.g. thinktwit-en_GB.po – see \u003Ca href=\"http:\u002F\u002Fwww.roseindia.net\u002Ftutorials\u002FI18N\u002Flocales-list.shtml\" rel=\"nofollow ugc\">List of all Locales\u003C\u002Fa> for more.\u003C\u002Fli>\n\u003Cli>Go to \u003Ca href=\"http:\u002F\u002Fwww.thepicketts.org\u002Fcontact\u002F\" rel=\"nofollow ugc\">Contact\u003C\u002Fa> and fill in the form appropriately.\u003C\u002Fli>\n\u003Cli>I will get in touch and ask that you respond with the translated file and a link to your site (if desired).\u003C\u002Fli>\n\u003C\u002Fol>\n","Outputs tweets from any Twitter users, hashtag or keyword through the Widget interface. Can be called via shortcode or PHP function call and supports  &hellip;",10,14696,90,4,"","5.8.13","3.2",[19,20,4,21,22],"hashtag","multiple","tweet","twitter","http:\u002F\u002Fwww.thepicketts.org\u002Fthinktwit\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthinktwit.zip",100,1,0,"2021-08-18 00:00:00","2026-03-15T10:48:56.248Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":6,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":45},"CVE-2021-24582","thinktwit-stored-cross-site-scripting","ThinkTwit \u003C 1.7.1 - Stored Cross-Site Scripting","The ThinkTwit WordPress plugin before 1.7.1 did not sanitise or escape its \"Consumer key\" setting before outputting it its settings page, leading to a Stored Cross-Site Scripting issue.",null,"\u003C1.7.1","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fd4e3e818-8d47-467a-b5cf-7eebd6a624a2?source=api-prod",888,{"slug":47,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":45,"trust_score":48,"computed_at":49},"stephenpickett",79,"2026-04-04T15:17:50.649Z",[51,76,95,113,134],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":15,"tags":66,"homepage":72,"download_link":73,"security_score":74,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":75},"multi-account-tweet-feeds-by-webline","Multi Account Tweet Feeds by Webline","1.0.7","WeblineIndia","https:\u002F\u002Fprofiles.wordpress.org\u002Fweblineindia\u002F","\u003Cp>Multi Account Tweet Feeds by Webline is a simple and easy to use plugin to show latest tweets from a multiple Twitter accounts in the same sidebar widget,post,page or text widget content including parsing of @usernames, #hashtags, media and URLs into links.\u003C\u002Fp>\n\u003Cp>The plugin is based on Twitter API version 1.1.\u003C\u002Fp>\n\u003Cp>In order to use it, you have to create a personal Twitter Application on the https:\u002F\u002Fapps.twitter.com\u002F website. Within your Application, Twitter provides you four values: the Consumer Key, the Consumer Secret, the Access Token and the Access Token Secret.\u003C\u002Fp>\n\u003Cp>Enter all these Authorization strings in the widget options box from \u003Cstrong>Appearance -> Widgets\u003C\u002Fstrong>, along with your other display settings, for display widget in sidebar.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>OR\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Enter all these Authorization strings in settings page from \u003Cstrong>Settings -> Multi Account Tweet Feeds\u003C\u002Fstrong>, along with your other display settings, for use shortcode \u003Cstrong>[wli-multi-account-tweet-feeds]\u003C\u002Fstrong> in post,page or text widget.\u003C\u002Fp>\n\u003Cp>Your Multi Account Tweet Feeds by Webline plugin is now ready and active!\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display tweets in sidebar using widget\u003C\u002Fli>\n\u003Cli>Shortcode [wli-multi-account-tweet-feeds] support, for display tweets on post,page or text widget content\u003C\u002Fli>\n\u003Cli>Show tweets from multiple accounts\u003C\u002Fli>\n\u003Cli>Control for set tweets cache time(in minutes), which improve tweets loading time.\u003C\u002Fli>\n\u003Cli>Control for showing Avtar\u003C\u002Fli>\n\u003Cli>Control for showing Replies\u003C\u002Fli>\n\u003Cli>Control for showing Time (e.g. 4 days ago, 27 mins ago)\u003C\u002Fli>\n\u003Cli>Control for showing Short Time (e.g. Sep 24, Nov 29)\u003C\u002Fli>\n\u003Cli>Control for set widget height.\u003C\u002Fli>\n\u003Cli>Control for set widget title color.\u003C\u002Fli>\n\u003Cli>Control for set widget header background color.\u003C\u002Fli>\n\u003C\u002Ful>\n","A Simple plugin to show latest Tweets from a multiple Twitter accounts in the same sidebar widget,post,page or text widget content.",80,6014,66,3,"2023-02-02T07:48:00.000Z","6.1.10","3.5",[67,68,69,70,71],"multi-account-tweets","multi-account-twitter-feeds","multiple-account","tweets","twitter-feeds","http:\u002F\u002Fwww.weblineindia.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmulti-account-tweet-feeds-by-webline.1.0.7.zip",85,"2026-03-15T15:16:48.613Z",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":84,"num_ratings":26,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":15,"tags":89,"homepage":93,"download_link":94,"security_score":74,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":75},"twitter-hash-tag-shortcode","Twitter Hash Tag Shortcode","0.6.2","Bainternet","https:\u002F\u002Fprofiles.wordpress.org\u002Fbainternet\u002F","\u003Cp>Displaying the most recent twitter status updates for a particular hash tag in your posts\u002Fpages using shortcode.\u003C\u002Fp>\n\u003Cp>Usage:\u003Cbr \u002F>\n    [hashtag_tweets hashtag=”YOUR_TAG” number=”NUMBER_OF_TWEETS_TO_GET” cache=”hours to cache”]\u003C\u002Fp>\n\u003Cp>Feuture relase will have a templating feature but for now i’ll live the design to you with CSS\u003C\u002Fp>\n","Displaying the most recent twitter status updates for a particular hash tag in your posts\u002Fpages using shortcode.",20,6991,"2016-12-11T12:47:00.000Z","4.7.0","2.9.2",[90,91,92],"tweets-hashtag","twitter-hashtag","twitter-shortcode","http:\u002F\u002Fen.bainternet.info","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter-hash-tag-shortcode.0.6.2.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":11,"downloaded":103,"rating":27,"num_ratings":27,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":15,"tags":107,"homepage":111,"download_link":112,"security_score":74,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":75},"fetch-tweets-hashtag-cloud","Fetch Tweets – Hashtag Cloud","1.0.2.1","miunosoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fmiunosoft\u002F","\u003Cp>This is a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffetch-tweets\u002F\" rel=\"ugc\">Fetch Tweets\u003C\u002Fa> template that creates a hashtag cloud from the fetched tweets.\u003C\u002Fp>\n\u003Cp>It can be displayed as a list.\u003C\u002Fp>\n\u003Ch4>Notes\u003C\u002Fh4>\n\u003Cp>In order to use this template, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffetch-tweets\u002F\" rel=\"ugc\">Fetch Tweets\u003C\u002Fa> needs to be installed and activated.\u003C\u002Fp>\n","Extracts and displays only hastags from the result of Fetch Tweets.",2347,"2014-04-28T09:51:00.000Z","3.7.41","3.3",[108,109,19,110,22],"cloud","fetch-tweets","template","http:\u002F\u002Fen.michaeluno.jp\u002Ffetch-tweets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffetch-tweets-hashtag-cloud.1.0.2.1.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":123,"num_ratings":124,"last_updated":125,"tested_up_to":126,"requires_at_least":127,"requires_php":15,"tags":128,"homepage":132,"download_link":133,"security_score":74,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":75},"easy-twitter-feed-widget","Easy Twitter Feed Widget Plugin","0.9","DesignOrbital","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesignorbital\u002F","\u003Cp>Easy Twitter Feed Widget plugin uses the \u003Ccode>Twitter Widget\u003C\u002Fcode> without creating an API to display tweets on your WordPress site. There is no need to create Twitter application. Easy Twitter Feed Widget Plugin provides a nice interface to implement your tweets in an easy way.\u003C\u002Fp>\n\u003Cp>If you are planning to display twitter timeline on your blog’s sidebar without bells and whistles than our plugin can be your ideal choice.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy Twitter Feed Widget Plugin is very easy to setup and use.\u003C\u002Fli>\n\u003Cli>You can blend your tweets professionally with the layout of any WordPress theme.\u003C\u002Fli>\n\u003Cli>Make it your own by customizing the link color, border color, background choice and other useful options.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Further Useful Stuff\u003C\u002Fh4>\n\u003Cp>Easy Twitter Feed Widget plugin is developed by DesignOrbital. You may be interested to use our \u003Ca href=\"https:\u002F\u002Fdesignorbital.com\u002F\" rel=\"nofollow ugc\">Premium WordPress Themes\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fdesignorbital.com\u002Ffree-wordpress-themes\u002F\" rel=\"nofollow ugc\">Free WordPress Themes\u003C\u002Fa> to run your website under the clean and SEO optimized code.\u003C\u002Fp>\n","Add twitter feeds on your WordPress site by using the Easy Twitter Feed Widget plugin.",10000,503422,74,55,"2017-12-20T18:46:00.000Z","4.9.29","4.7",[129,21,22,130,131],"feed","twitter-feed","twitter-widget","https:\u002F\u002Fdesignorbital.com\u002Feasy-twitter-feed-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-twitter-feed-widget.0.9.zip",{"slug":22,"name":135,"version":136,"author":135,"author_profile":137,"description":138,"short_description":139,"active_installs":121,"downloaded":140,"rating":141,"num_ratings":142,"last_updated":143,"tested_up_to":144,"requires_at_least":127,"requires_php":15,"tags":145,"homepage":150,"download_link":151,"security_score":74,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":75},"Twitter","2.0.5","https:\u002F\u002Fprofiles.wordpress.org\u002Ftwitter\u002F","\u003Cp>Embed Twitter content, improve sharing on Twitter, convert your web audience into Twitter or Periscope subscribers, and easily track visits to your website from Twitter advertising.\u003C\u002Fp>\n\u003Cp>Requires PHP version 5.6 or greater.\u003C\u002Fp>\n\u003Ch4>Embed Twitter content\u003C\u002Fh4>\n\u003Cp>Embed Twitter content by pasting a URL, customizing a shortcode, or in a widget area.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Tweet\" title=\"single Tweet embed\" rel=\"nofollow ugc\">single Tweet\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Profile-Timeline\" title=\"Twitter embedded profile timeline\" rel=\"nofollow ugc\">profile timeline\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-List-Timeline\" title=\"Twitter embedded list timeline\" rel=\"nofollow ugc\">list timeline\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Collection-Timeline\" title=\"Twitter embedded collection\" rel=\"nofollow ugc\">collection\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FMoments\" title=\"Twitter embedded Moment\" rel=\"nofollow ugc\">Moment\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Customize embed display to match your theme. Choose a light or dark background, customize link and border colors, and customize timeline template components through your site’s WordPress administrative interface.\u003C\u002Fp>\n\u003Cp>The plugin automatically customizes an embed’s template text to match the locale of your site, optimally loads Twitter’s JavaScript to improve site speed and extensibility, and handles advanced use cases such as articles loaded asynchronously via the WordPress API.\u003C\u002Fp>\n\u003Ch4>Grow your Twitter audience\u003C\u002Fh4>\n\u003Cp>Automatically generate link previews for your site’s URLs shared on Twitter using \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FCards\" rel=\"nofollow ugc\">Twitter Cards markup\u003C\u002Fa> . Easily identify your site and author Twitter accounts through your site and user administrative interfaces.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FTweet-Button\" rel=\"nofollow ugc\">Tweet button\u003C\u002Fa> to public posts to encourage your visitors to share your content on Twitter. Visitors may see recommended accounts to follow after sharing your content including your site and its authors.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FFollow-Button\" rel=\"nofollow ugc\">Follow button\u003C\u002Fa> to convert your site visitors into Twitter subscribers.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FPeriscope-On-Air-Button\" rel=\"nofollow ugc\">Periscope On Air button\u003C\u002Fa> to convert your site visitors into Periscope subscribers.\u003C\u002Fp>\n\u003Ch4>Improve Twitter advertising campaigns\u003C\u002Fh4>\n\u003Cp>Easily add a Twitter website tag to your website to track the effectiveness and \u003Ca href=\"https:\u002F\u002Fbusiness.twitter.com\u002Fen\u002Fhelp\u002Fcampaign-measurement-and-analytics\u002Fconversion-tracking-for-websites.html\" rel=\"nofollow ugc\">conversion rates\u003C\u002Fa> of Twitter advertising campaigns or \u003Ca href=\"https:\u002F\u002Fbusiness.twitter.com\u002Fen\u002Ftargeting\u002Ftailored-audiences.html\" rel=\"nofollow ugc\">build tailored audiences\u003C\u002Fa> to target your Twitter advertisements for your website audience.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Docs and active development\u003C\u002Fstrong>\u003Cbr \u002F>\n  Contribute to the plugin, submit pull requests, or run test suites through the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\" rel=\"nofollow ugc\">Twitter plugin for WordPress GitHub repository\u003C\u002Fa>.\u003Cbr \u002F>\n  View \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\" rel=\"nofollow ugc\">Twitter for WordPress documentation\u003C\u002Fa> to learn more about customization through WordPress filters.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Official Twitter and Periscope plugin for WordPress. Embed content and grow your audience. Requires PHP 5.6 or greater.",705891,50,32,"2019-07-24T22:59:00.000Z","5.2.24",[146,147,22,148,149],"embedded-timeline","embedded-tweet","twitter-list","twitter-profile","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftwitter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter.zip",{"attackSurface":153,"codeSignals":196,"taintFlows":327,"riskAssessment":352,"analyzedAt":372},{"hooks":154,"ajaxHandlers":178,"restRoutes":191,"shortcodes":192,"cronEvents":195,"entryPointCount":14,"unprotectedCount":62},[155,161,165,169,174],{"type":156,"name":157,"callback":158,"file":159,"line":160},"action","widgets_init","anonymous","thinktwit.php",57,{"type":156,"name":162,"callback":163,"file":159,"line":164},"admin_menu","ThinkTwit::admin_menu",112,{"type":156,"name":166,"callback":167,"file":159,"line":168},"admin_init","ThinkTwit::admin_page_init",113,{"type":170,"name":171,"callback":172,"priority":11,"file":159,"line":173},"filter","plugin_action_links","ThinkTwit::plugin_action_links",116,{"type":170,"name":175,"callback":176,"priority":11,"file":159,"line":177},"plugin_row_meta","ThinkTwit::plugin_description_links",117,[179,184,188],{"action":180,"nopriv":181,"callback":182,"hasNonce":181,"hasCapCheck":181,"file":159,"line":183},"clear_cache",false,"ThinkTwit::clear_cache_callback",103,{"action":185,"nopriv":181,"callback":186,"hasNonce":181,"hasCapCheck":181,"file":159,"line":187},"parse_feed","ThinkTwit::parse_feed_callback",106,{"action":185,"nopriv":189,"callback":186,"hasNonce":181,"hasCapCheck":181,"file":159,"line":190},true,107,[],[193],{"tag":4,"callback":194,"file":159,"line":25},"ThinkTwit::shortcode_handler",[],{"dangerousFunctions":197,"sqlUsage":201,"outputEscaping":203,"fileOperations":14,"externalRequests":14,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":326},[198],{"fn":199,"file":159,"line":160,"context":200},"create_function","add_action(\"widgets_init\", create_function(\"\", \"return register_widget(\\\"ThinkTwit\\\");\"));",{"prepared":27,"raw":27,"locations":202},[],{"escaped":204,"rawEcho":205,"locations":206},279,59,[207,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276,278,280,282,284,286,288,290,292,294,296,298,300,302,304,306,308,310,312,314,316,318,320,322,324],{"file":159,"line":208,"context":209},167,"raw output",{"file":159,"line":211,"context":209},171,{"file":159,"line":213,"context":209},175,{"file":159,"line":215,"context":209},179,{"file":159,"line":217,"context":209},184,{"file":159,"line":219,"context":209},262,{"file":159,"line":221,"context":209},265,{"file":159,"line":223,"context":209},268,{"file":159,"line":225,"context":209},277,{"file":159,"line":227,"context":209},280,{"file":159,"line":229,"context":209},283,{"file":159,"line":231,"context":209},336,{"file":159,"line":233,"context":209},352,{"file":159,"line":235,"context":209},355,{"file":159,"line":237,"context":209},358,{"file":159,"line":239,"context":209},361,{"file":159,"line":241,"context":209},364,{"file":159,"line":243,"context":209},367,{"file":159,"line":245,"context":209},370,{"file":159,"line":247,"context":209},373,{"file":159,"line":249,"context":209},376,{"file":159,"line":251,"context":209},379,{"file":159,"line":253,"context":209},382,{"file":159,"line":255,"context":209},412,{"file":159,"line":257,"context":209},413,{"file":159,"line":259,"context":209},414,{"file":159,"line":261,"context":209},415,{"file":159,"line":263,"context":209},416,{"file":159,"line":265,"context":209},417,{"file":159,"line":267,"context":209},418,{"file":159,"line":269,"context":209},419,{"file":159,"line":271,"context":209},420,{"file":159,"line":273,"context":209},421,{"file":159,"line":275,"context":209},422,{"file":159,"line":277,"context":209},423,{"file":159,"line":279,"context":209},424,{"file":159,"line":281,"context":209},425,{"file":159,"line":283,"context":209},426,{"file":159,"line":285,"context":209},427,{"file":159,"line":287,"context":209},428,{"file":159,"line":289,"context":209},429,{"file":159,"line":291,"context":209},430,{"file":159,"line":293,"context":209},431,{"file":159,"line":295,"context":209},432,{"file":159,"line":297,"context":209},433,{"file":159,"line":299,"context":209},434,{"file":159,"line":301,"context":209},435,{"file":159,"line":303,"context":209},436,{"file":159,"line":305,"context":209},437,{"file":159,"line":307,"context":209},630,{"file":159,"line":309,"context":209},654,{"file":159,"line":311,"context":209},655,{"file":159,"line":313,"context":209},656,{"file":159,"line":315,"context":209},657,{"file":159,"line":317,"context":209},658,{"file":159,"line":319,"context":209},659,{"file":159,"line":321,"context":209},665,{"file":159,"line":323,"context":209},764,{"file":159,"line":325,"context":209},1954,[],[328,343],{"entryPoint":329,"graph":330,"unsanitizedCount":26,"severity":38},"parse_feed_callback (thinktwit.php:1927)",{"nodes":331,"edges":341},[332,336],{"id":333,"type":334,"label":335,"file":159,"line":325},"n0","source","$_POST['thinktwit_widget_id']",{"id":337,"type":338,"label":339,"file":159,"line":325,"wp_function":340},"n1","sink","echo() [XSS]","echo",[342],{"from":333,"to":337,"sanitized":181},{"entryPoint":344,"graph":345,"unsanitizedCount":26,"severity":351},"\u003Cthinktwit> (thinktwit.php:0)",{"nodes":346,"edges":349},[347,348],{"id":333,"type":334,"label":335,"file":159,"line":325},{"id":337,"type":338,"label":339,"file":159,"line":325,"wp_function":340},[350],{"from":333,"to":337,"sanitized":181},"low",{"summary":353,"deductions":354},"The thinktwit plugin v1.7.1 exhibits a mixed security posture with notable strengths in SQL query handling but significant concerns in its attack surface and lack of fundamental security checks. While all SQL queries utilize prepared statements, indicating good practice in database interaction, the plugin exposes a substantial attack surface with 3 out of 4 entry points lacking authentication checks. This, combined with the presence of the dangerous 'create_function' and zero nonce or capability checks, creates a high risk of unauthorized actions and potential code injection vulnerabilities. The plugin's vulnerability history, though currently clear of unpatched issues, shows a past medium-severity Cross-Site Scripting (XSS) vulnerability, suggesting a tendency towards input sanitization weaknesses. The taint analysis, showing 2 flows with unsanitized paths, further corroborates these concerns regarding handling user-supplied data. Overall, the lack of robust authentication and authorization on key entry points, coupled with the historical vulnerability pattern, presents a significant risk that outweighs the positive aspects of its SQL implementation.",[355,358,361,363,365,367,370],{"reason":356,"points":357},"Unprotected AJAX handlers",15,{"reason":359,"points":360},"Use of dangerous function create_function",8,{"reason":362,"points":11},"No nonce checks on AJAX handlers",{"reason":364,"points":11},"No capability checks",{"reason":366,"points":11},"Taint analysis: unsanitized paths",{"reason":368,"points":369},"Insufficient output escaping (17% unescaped)",5,{"reason":371,"points":11},"Past medium XSS vulnerability","2026-03-16T23:12:00.766Z",{"wat":374,"direct":382},{"assetPaths":375,"generatorPatterns":377,"scriptPaths":378,"versionParams":379},[376],"\u002Fwp-content\u002Fplugins\u002Fthinktwit\u002Fthinktwit.css",[],[],[380,381],"thinktwit.css?ver=","thinktwit.js?ver=",{"cssClasses":383,"htmlComments":384,"htmlAttributes":386,"restEndpoints":390,"jsGlobals":391,"shortcodeOutput":392},[4],[385],"\u003C!-- ThinkTwit Widget -->",[387,388,389],"data-thinktwit-update-frequency","data-thinktwit-live-update-freq","data-thinktwit-no-cache",[],[4],[393],"[thinktwit"]