[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuekC9k7nGhjPE0djmWVOIK9ibAPYR8gpRQp5crsUxt0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":136,"fingerprints":175},"tinymce-entities-patch","TinyMCE Entities Patch","1.0","EnglishMike","https:\u002F\u002Fprofiles.wordpress.org\u002Fstringfold\u002F","\u003Cblockquote>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Important Note: The recent release of WordPress 2.6 has fixed the disappearing entities bug this plugin was designed to fix, so once you upgrade to WordPress 2.6 please discontinue using this plugin.  I may release a new plugin that prevents spaces from being stripped from the beginning of lines sometime in the near future.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003C\u002Fblockquote>\n\u003Cp>After a few weeks of writing posts on WordPress, I was getting very irritated when all the HTML entities I added to my examples kept being converted into characters — e.g. HTML entities like > \u003C \" would convert to > \u003C \" — when I saved the post I was working on.\u003C\u002Fp>\n\u003Cp>To make matters worse, all the spaces I was using to align my coding examples would disappear when switching between “HTML” mode and “Visual” mode, even if I used the   entity.\u003C\u002Fp>\n\u003Cp>So, I finally bit the bullet and wrote this little plugin to fix these problems.  It does just two things:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Allows you to enter HTML entities like > \u003C & etc. while in “Visual” mode and they will stay put, even after you save your post.\u003C\u002Fli>\n\u003Cli>Allows you to type extra spaces while in “Visual” mode (or   in “HTML” mode) and they will stay put too, allowing you to correctly indent code samples, etc. \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>If you are writing blog posts with source code or HTML examples, you may find this little plugin helps you avoid a ton of aggravation.\u003C\u002Fp>\n\u003Cp>Works with TinyMCE and the TinyMCE Advanced plugin.\u003C\u002Fp>\n\u003Cp>Please note, this plugin is a patch for issues with WordPress’s uses of TinyMCE, and not the editor itself.\u003C\u002Fp>\n\u003Cp>If you try this plugin and like what you see, or you have questions or problems, feel free to email me at mike@englishmike.net or visit the \u003Ca href=\"http:\u002F\u002Fenglishmike.net\u002Ftinymceentities-plugin\u002F\" rel=\"nofollow ugc\">TinyMCE Entities Patch Plugin Home Page\u003C\u002Fa> with your feedback.\u003C\u002Fp>\n\u003Cp>\u003Cem>(Not tested on any version of WordPress older than 2.5.1.  It may work on earlier versions, but I just don’t know for sure.  Try it and see.  If it doesn’t work simply deactivate the plugin.  If it does work, please let me know!!)\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>Release Notes version 1.0\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Changes in version 1.0\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>This is the initial version of the plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n","Prevent spaces and HTML entities (e.g. > or ') from disappearing when editing posts with TinyMCE.",20,3420,0,"2008-07-15T17:20:00.000Z","2.5.1","2.5","",[19,20,21,22,23],"bug","html","html-entities","posts","tinymce","http:\u002F\u002Fenglishmike.net\u002Ftinymceentities-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftinymce-entities-patch.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"stringfold",2,3020,30,84,"2026-04-04T11:04:05.183Z",[38,60,78,97,116],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":17,"tags":53,"homepage":57,"download_link":58,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"raw-html","Raw HTML","1.6.4","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>Lets you disable automatic formatting like smart quotes and automatic paragraph creation, and use raw HTML\u002FJS\u002FCSS code in your posts without WordPress messing it up.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>With this plugin, you can wrap any part of your post in [raw]…[\u002Fraw] tags to prevent WordPress from converting newlines to HTML paragraphs, replacing apostrophes with typographic quotes and so on. This is very useful if you need to add a CSS block or JavaScript to your post.\u003C\u002Fp>\n\u003Cp>RawHTML will also add new checkboxes to the “Edit Post” screen that let you disable certain WP filters on a per-post basis. This way you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable wptexturize (the function that creates smart quotes and other typographic characters).\u003C\u002Fli>\n\u003Cli>Disable automatic paragraph creation.\u003C\u002Fli>\n\u003Cli>Disable image smilies. \u003C\u002Fli>\n\u003Cli>Disable convert_chars (the function that converts ampersands to HTML entities and “fixes” some Unicode characters).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The free version only supports editing posts in the Text tab (called “HTML” in older WordPress versions). \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">Get the Pro version\u003C\u002Fa> if you want to be able to switch between Text and the Visual editor without WordPress messing up your content.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Compatibility\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin doesn’t fully support the Gutenberg editor. As of WordPress 5.0, some Raw HTML features will only work if you use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To prevent a part of your post or page from being filtered by WordPress, switch to the Text\u002FHTML editor and wrap it in \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> or \u003Ccode>\u003C!--raw-->...\u003C!--\u002Fraw-->\u003C\u002Fcode> tags. These two versions work exactly the same, except that the latter won’t be visible to your visitors even if you deactivate Raw HTML.\u003C\u002Fp>\n\u003Cp>\u003Cem>Example :\u003C\u002Fem>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw]\nThis \n\nis \n\na \"test\"!\n[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In this case, the tags will prevent WordPress from inserting paragraph breaks between “This”, “is” and “a “test””, as well as ensure that the double quotes arround “test” are not converted to typographic (curly) quotes.\u003C\u002Fp>\n\u003Cp>To avoid problems, only edit posts that contain your custom code in Text\u002FHTML mode. If you’d like to be able to also use the Visual editor, \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">get the Pro version\u003C\u002Fa>. It will make the code betwen [raw] tags appear as a read-only placeholder when viewed in Visual mode, ensuring WordPress doesn’t change it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Combining shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, shortcodes that are inside [raw] tags will not work. They will just show up as plain text. To enable shortcodes, add the \u003Ccode>shortcodes=1\u003C\u002Fcode> attribute to the tag:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw shortcodes=1]This [shortcode] will be run.[\u002Fraw]\n\n[raw]This [shortcode] won't work.[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Preserving \u003Ccode>[raw]\u003C\u002Fcode> code in excerpts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, the plugin will automatically remove any code that’s inside \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> tags from post excerpts. You can prevent that by adding the following line to \u003Ccode>wp-config.php\u003C\u002Fcode>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define('RAW_HTML_KEEP_RAW_IN_EXCERPTS', true);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This will ensure that the plugin doesn’t strip \u003Ccode>[raw]\u003C\u002Fcode> blocks from automatically generated excerpts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Some features of Raw HTML will only work for users who have the “unfiltered_html” capability. In a normal WordPress install that includes the Editor and Administrator roles. In a Multisite install, only the Super Admin has this capability by default.\u003C\u002Fp>\n","Lets you use raw HTML or any other code in your posts. You can also disable smart quotes and other automatic formatting on a per-post basis.",10000,586247,86,33,"2024-11-11T15:00:00.000Z","6.7.5","2.8",[54,55,20,56,22],"css","formatting","javascript","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2007\u002F12\u002F13\u002Fraw-html-in-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraw-html.1.6.4.zip",92,{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":70,"num_ratings":32,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":76,"download_link":77,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"typepad-emoji-for-tinymce","TypePad emoji for TinyMCE","1.5","picmo","https:\u002F\u002Fprofiles.wordpress.org\u002Fpicmo\u002F","\u003Cp>This plug-in is done by will being able to use the pictograph of TypePad with TinyMCE.\u003Cbr \u002F>\nThe icon palette can be easily called from TinyMCE.\u003C\u002Fp>\n\u003Ch4>for Japanese users\u003C\u002Fh4>\n\u003Cp>このプラグインは、TinyMCE上でTypePad絵文字を使えるようにします。\u003Cbr \u002F>\nTinyMCE上から絵文字パレットを簡単に呼び出すことが出来ます。\u003C\u002Fp>\n","This plug-in is done by will being able to use the pictograph of TypePad with TinyMCE.",9000,32884,90,"2017-11-28T13:05:00.000Z","3.9.40","3.9",[75,22,23],"icons","http:\u002F\u002Fwww.picmo.net\u002Fdl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftypepad-emoji-for-tinymce.1.5.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":17,"tags":93,"homepage":95,"download_link":96,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"clean-html","Cleanup HTML","1.1","closemarketing","https:\u002F\u002Fprofiles.wordpress.org\u002Fclosemarketing\u002F","\u003Cp>Adds a button to your classic editor visual toolbar that when clicked strips all \u003Ccode>div\u003C\u002Fcode>, ‘table’, \u003Ccode>span\u003C\u002Fcode> tags from your post HTML code — those are usually junk tags. The stripping includes any tag attributes.\u003C\u002Fp>\n","Adds a button to your classic editor visual toolbar that when clicked strips all div, 'table', span tags from your post HTML code -- those a …",4000,8228,100,4,"2020-11-30T08:11:00.000Z","5.6.17","3.0",[79,20,23,94],"wysiwyg","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclean-html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclean-html.1.1.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":86,"downloaded":105,"rating":88,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":92,"requires_php":17,"tags":109,"homepage":114,"download_link":115,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"hierarchical-html-sitemap","Hierarchical HTML Sitemap","1.3","Alexis Vovk","https:\u002F\u002Fprofiles.wordpress.org\u002Fegolacrima\u002F","\u003Cp>Hierarchical HTML Sitemap offers visitors an easy and intuitive navigation across your blog.\u003C\u002Fp>\n\u003Cp>This plugin generates HTML Sitemap of your WordPress blog. It displays a list of posts, grouped by hierarchically sorted categories. By using a shortcode you can easily and quickly display sitemap on a page, or anywhere where shortcodes work, e.g. in a widget.\u003C\u002Fp>\n\u003Cp>The output does not include any CSS or JavaScript files – it is pure HTML, ready for you to style as you want it.\u003C\u002Fp>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Short and easy shortcode: \u003Ccode>[htmlmap]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Categories sorted hierarchically.\u003C\u002Fli>\n\u003Cli>Displays posts and\u002For pages.\u003C\u002Fli>\n\u003Cli>Can exclude specified posts\u002Fpages or categories.\u003C\u002Fli>\n\u003Cli>Displays categories cloud above posts list, for better navigation.\u003C\u002Fli>\n\u003Cli>Displays post’s published date.\u003C\u002Fli>\n\u003Cli>Clean HTML without inline styles or scripts.\u003C\u002Fli>\n\u003Cli>Does not enqueue any unnecessary .js or .css files.\u003C\u002Fli>\n\u003Cli>No ads nor author links.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PRO Features\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwp-puzzle.com\u002Fhierarchical-html-sitemap\u002F\" rel=\"nofollow ugc\">Hierarchical HTML Sitemap Pro\u003C\u002Fa> allow:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Extended sitemap settings\u003C\u002Fli>\n\u003Cli>Shortcode generator\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Usage & Options:\u003C\u002Fh4>\n\u003Cp>The plugin’s shortcode \u003Ccode>[htmlmap]\u003C\u002Fcode> accepts several optional parameters:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>exclude\u003C\u002Fcode> : specify posts or pages IDs you don’t want displayed (example: \u003Ccode>[htmlmap exclude=445,446]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Ccode>exclude_cat\u003C\u002Fcode> : specify categories IDs you don’t want displayed (example: \u003Ccode>[htmlmap exclude_cat=1,34]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Ccode>showpages\u003C\u002Fcode> : enables displaying list of pages (example: \u003Ccode>[htmlmap showpages]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Ccode>hidecloud\u003C\u002Fcode> : disable categories cloud (example: \u003Ccode>[htmlmap hidecloud]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Ccode>showdescription\u003C\u002Fcode> : enables displaying categories descriptions (they are not shown by default; example: \u003Ccode>[htmlmap showdescription]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Ccode>hidedate\u003C\u002Fcode> : disable displaying posts published dates (example: \u003Ccode>[htmlmap hidedate]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Ccode>hidecount\u003C\u002Fcode> : disable displaying posts amount in category name (example: \u003Ccode>[htmlmap hidecount]\u003C\u002Fcode>).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Several parameters could be used in the same shortcode. For example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[htmlmap exclude=\"3546,7398\" exclude_cat=\"1,34\" showpages hidecloud]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Extra\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-puzzle.com\u002Fdocs\u002Fhierarchical-html-sitemap\u002Flite-options.html\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwppuzzle\u002Fhierarchical-html-sitemap\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa> for issues and merge request\u003C\u002Fli>\n\u003C\u002Ful>\n","A lightweight and simple HTML sitemap for your WordPress blog.",41549,11,"2018-06-16T05:14:00.000Z","4.9.29",[110,111,22,112,113],"hierarchical-sitemap","html-sitemap","seo","sitemap","https:\u002F\u002Fwp-puzzle.com\u002Fhierarchical-html-sitemap\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhierarchical-html-sitemap.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":88,"num_ratings":126,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":17,"tags":130,"homepage":17,"download_link":135,"security_score":88,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"protect-schemaorg-markup-in-html-editor","Protect schema.org markup in HTML editor","0.6","Ecwid by Lightspeed Ecommerce Shopping Cart","https:\u002F\u002Fprofiles.wordpress.org\u002Fecwid\u002F","\u003Cp>WordPress HTML editor (tinyMCE) treats schema.org attributes like itemscope\u002Fitemtype\u002Fitemprop as invalid HTML attributes and strips them when you save the post or page content. This plugin alters this behavior and prevent the WordPress HTML editor from removing the schema.org\u002Fmicrodata markup.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>@azaozz suggested the solution. See the issue discussion here: https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F27931\u003C\u002Fp>\n","Easy tool to stop HTML editor from removing schema.org\u002Fmicrodata tags from post or page content.",800,18329,5,"2025-12-01T06:20:00.000Z","6.9.4","4.0",[131,132,133,134,23],"html-editor","microdata","rich-snippets","schema-org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprotect-schemaorg-markup-in-html-editor.0.6.zip",{"attackSurface":137,"codeSignals":153,"taintFlows":163,"riskAssessment":164,"analyzedAt":174},{"hooks":138,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":13,"unprotectedCount":13},[139,145],{"type":140,"name":141,"callback":142,"file":143,"line":144},"filter","the_editor_content","preserve_html_chars","tinymceentities.php",28,{"type":140,"name":146,"callback":147,"file":143,"line":148},"tiny_mce_before_init","preserve_nbsp_chars",29,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":159},[],{"prepared":13,"raw":13,"locations":156},[],{"escaped":13,"rawEcho":13,"locations":158},[],[160],{"name":161,"version":6,"knownCves":162},"TinyMCE",[],[],{"summary":165,"deductions":166},"The \"tinymce-entities-patch\" v1.0 plugin exhibits a strong security posture based on the provided static analysis. The absence of any identified dangerous functions, SQL queries without prepared statements, unescaped output, file operations, external HTTP requests, or taint flows with unsanitized paths indicates a well-coded plugin with respect to these common vulnerability vectors.  Furthermore, the plugin has no recorded vulnerabilities, CVEs, or a history of past issues, suggesting a consistent commitment to security.\n\nHowever, the analysis does highlight some areas that, while not currently presenting a direct risk based on the provided data, could be improved for future-proofing. The complete lack of nonce checks and capability checks across all entry points is a notable omission. While the attack surface is currently zero, if any entry points were to be introduced in future versions without these checks, it could immediately open the door to vulnerabilities.  The bundling of TinyMCE v1.0 also represents a potential concern, as older versions of libraries can sometimes harbor undiscovered vulnerabilities or lack modern security patches.\n\nIn conclusion, \"tinymce-entities-patch\" v1.0 appears to be a secure plugin as of its current version and code. Its strengths lie in its clean code and lack of historical vulnerabilities. The primary area for improvement would be the implementation of security checks like nonces and capabilities on any future additions to its entry points, and ideally, ensuring bundled libraries are kept up-to-date.",[167,169,171],{"reason":168,"points":126},"No nonce checks on entry points",{"reason":170,"points":126},"No capability checks on entry points",{"reason":172,"points":173},"Bundled outdated library (TinyMCE v1.0)",3,"2026-03-16T22:47:33.399Z",{"wat":176,"direct":181},{"assetPaths":177,"generatorPatterns":178,"scriptPaths":179,"versionParams":180},[],[],[],[],{"cssClasses":182,"htmlComments":183,"htmlAttributes":184,"restEndpoints":185,"jsGlobals":186,"shortcodeOutput":187},[],[],[],[],[],[]]