[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$flzvHRQrM1UxlBDqscmrgTId13wK6RtGiUmG9BPq4MFQ":3,"$f8s430PWDnRjf6pSjBIzg9DRD6WqRmq6FlNqzxbJb5yI":301},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":143,"fingerprints":266},"tsu-popup","Tsu Popup","1.0","Md Nurullah","https:\u002F\u002Fprofiles.wordpress.org\u002Fnirob19\u002F","\u003Cp>Your visitors can easily visit your Tsu profile and use it as your invitation to the network. You can optionally add a name to be displayed and choose different logo image.\u003C\u002Fp>\n\u003Ch3>Features List : (100% Free)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fully Responsive Design\u003C\u002Fli>\n\u003Cli>Customizable Text\u003C\u002Fli>\n\u003Cli>Easy Settings & Customization\u003C\u002Fli>\n\u003Cli>Easy and user-friendly setup\u003C\u002Fli>\n\u003Cli>Logo Uploader\u003C\u002Fli>\n\u003Cli>Icon Uploader\u003C\u002Fli>\n\u003Cli>Turn On\u002FOff options\u003C\u002Fli>\n\u003Cli>Works with any WordPress Theme\u003C\u002Fli>\n\u003Cli>Works with any WordPress Version\u003C\u002Fli>\n\u003Cli>WordPress Multi-site Supported\u003C\u002Fli>\n\u003Cli>BuddyPress Supported\u003C\u002Fli>\n\u003Cli>Woo-Commerce Supported\u003C\u002Fli>\n\u003Cli>Full Free Plugin\u003C\u002Fli>\n\u003C\u002Ful>\n","Add your own tsu ( Social Network ) popup in any website.",10,1782,100,2,"2015-01-26T12:06:00.000Z","4.0.38","2.0","",[20,21,22,23,24],"follow","invitation","invite","network","tsu","http:\u002F\u002Ftsu.co\u002Ftipstolearn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftsu-popup.1.0.zip",85,0,null,"2026-04-06T09:54:40.288Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"nirob19",1,30,84,"2026-04-06T17:42:48.375Z",[39,55,80,102,125],{"slug":24,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":11,"downloaded":46,"rating":47,"num_ratings":14,"last_updated":48,"tested_up_to":16,"requires_at_least":49,"requires_php":18,"tags":50,"homepage":53,"download_link":54,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"Tsu","1.2.0","noplanman","https:\u002F\u002Fprofiles.wordpress.org\u002Fnoplanman\u002F","\u003Cp>NOTE: This plugin serves as a mini-plugin until Tsu releases an official public API.\u003C\u002Fp>\n\u003Cp>The Tsu plugin adds a widget to place a link to your Tsu profile in your sidebar. Your readers can then easily visit your Tsu profile and use it as your invitation to the network.\u003Cbr \u002F>\nYou can optionally add a name to be displayed and choose if a logo should be shown in different sizes.\u003C\u002Fp>\n\u003Cp>Translations:\u003Cbr \u002F>\n* English, German & Spanish (\u003Ca href=\"https:\u002F\u002Fwww.tsu.co\u002Fnoplanman\" rel=\"nofollow ugc\">Armando Lüscher\u003C\u002Fa>)\u003Cbr \u002F>\n* Dutch (\u003Ca href=\"http:\u002F\u002Ftsunl.nl\" rel=\"nofollow ugc\">Elza van Swieten\u003C\u002Fa>)\u003C\u002Fp>\n","Tsu widget to share your profile \u002F invitation with your readers.",2609,60,"2014-12-29T17:13:00.000Z","3.0.1",[21,22,51,52,24],"profile","share","https:\u002F\u002Fwww.tsu.co\u002Fnoplanman","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftsu.1.2.0.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":75,"download_link":76,"security_score":77,"vuln_count":78,"unpatched_count":28,"last_vuln_date":79,"fetched_at":30},"invite-anyone","Invite Anyone","1.4.10","Boone Gorges","https:\u002F\u002Fprofiles.wordpress.org\u002Fboonebgorges\u002F","\u003Cp>Invite Anyone has two components:\u003C\u002Fp>\n\u003Cp>1) The ability to invite members to the site by email. The plugin creates a tab on each member’s Profile page called “Send Invites”, which contains a form where users can invite outsiders to join the site. There is a field for a custom message. Also, inviters can optionally select any number of their groups, and when the invitee accepts the invitation he or she automatically receive invitations to join those groups.\u003C\u002Fp>\n\u003Cp>The email invitation part of the plugin is customizable by the BP administrator, via Dashboard > BuddyPress > Invite Anyone.\u003C\u002Fp>\n\u003Cp>2) By default, BuddyPress only allows group admins to invite their friends to groups. In some communities, you might want members to be able to invite non-friends to groups as well. This plugin allows you to do so, by populating the invitation checklist with the entire membership of the site, rather than just a friend list.\u003C\u002Fp>\n\u003Cp>Because member lists can get very long and hard to navigate, this plugin adds a autosuggest search box to the Send Invites screen – the same one that appears on the Compose Message screen – which allows inviters to navigate directly to the members they want to invite.\u003C\u002Fp>\n\u003Cp>Invite Anyone features optional integration with CloudSponge http:\u002F\u002Fcloudsponge.com, a premium address book service, that allows your users to invite their friends to the site in a way that’s easy and fun. Enable it at Dashboard > BuddyPress > Invite Anyone.\u003C\u002Fp>\n\u003Ch3>Translation credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Belarussian: Alexander Ovsov (\u003Ca href=\"http:\u002F\u002Fwebhostinggeeks.com\u002Fscience\" rel=\"nofollow ugc\">Web Geek Science\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Brazilian Portuguese: Celso Bessa\u003C\u002Fli>\n\u003Cli>Catalan: Mònica Grau and Toni Ginard\u003C\u002Fli>\n\u003Cli>Danish: Mort3n\u003C\u002Fli>\n\u003Cli>Dutch: Jesper Popma, Tim de Hoog\u003C\u002Fli>\n\u003Cli>French: Guillaume Coulon, Nicolas Mollet\u003C\u002Fli>\n\u003Cli>German: Lars Berning, Thorsten Wollenhöfer, Matthias Lunz\u003C\u002Fli>\n\u003Cli>Greek: Lena Stergatou\u003C\u002Fli>\n\u003Cli>Italian: Luca Camellini\u003C\u002Fli>\n\u003Cli>Norwegian: Stig Ulfsby\u003C\u002Fli>\n\u003Cli>Russian: Jettochkin, Roman Leonov\u003C\u002Fli>\n\u003Cli>Serbo-Croatian: Anja Skrba\u003C\u002Fli>\n\u003Cli>Spanish: Mauricio Camayo, Gregor Gimmy\u003C\u002Fli>\n\u003Cli>Swedish: Alexander Berthelsen, Jan Anderson\u003C\u002Fli>\n\u003Cli>Ukrainian: \u003Ca href=\"http:\u002F\u002Fwww.coupofy.com\u002F\" rel=\"nofollow ugc\">Ivanka\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Additional details about the plugin can be found in the following languages:\u003Cbr \u002F>\n* Serbo-Croatian: \u003Ca href=\"http:\u002F\u002Fscience.webhostinggeeks.com\u002Fteleogistic\" rel=\"nofollow ugc\">http:\u002F\u002Fscience.webhostinggeeks.com\u002Fteleogistic\u003C\u002Fa>\u003C\u002Fp>\n","Makes BuddyPress's invitation features more powerful.",1000,262178,86,26,"2024-08-19T17:09:00.000Z","6.6.5","3.2",[71,72,73,74,22],"buddypress","friends","group","invitations","http:\u002F\u002Fteleogistic.net\u002Fcode\u002Fbuddypress\u002Finvite-anyone\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finvite-anyone.1.4.10.zip",83,6,"2024-08-16 00:00:00",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":90,"num_ratings":66,"last_updated":91,"tested_up_to":92,"requires_at_least":49,"requires_php":18,"tags":93,"homepage":98,"download_link":99,"security_score":100,"vuln_count":34,"unpatched_count":28,"last_vuln_date":101,"fetched_at":30},"wp-ecards-invites","WP eCards – Branded Digital Greeting Cards","1.4.12","Tim from eCardWidget","https:\u002F\u002Fprofiles.wordpress.org\u002Ftimsayshey\u002F","\u003Cp>Add a branded eCard form or eCard gallery directly to your WordPress site with just a few clicks. Visitors can browse your collection of digital greeting cards, personalize a message, and send it instantly via email or social media — no coding required.\u003C\u002Fp>\n\u003Cp>Perfect for organizations, nonprofits, churches, and businesses looking to engage their community, show appreciation, or run creative campaigns with custom-designed cards.\u003C\u002Fp>\n\u003Cp>This plugin is powered by \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002F\" rel=\"nofollow ugc\">eCardWidget\u003C\u002Fa> — the leading platform for customizable digital greeting card forms used by top brands and mission-driven organizations.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why Add Digital Greeting Cards?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Boost engagement. Encourage sharing. Celebrate people. Whether it’s for volunteer appreciation, donor thank-yous, team recognition, or holiday outreach — eCards help you connect in a meaningful way.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Popular Use Cases\u003C\u002Fstrong>\u003Cbr \u002F>\nExplore how businesses, nonprofits, and churches are using eCards to boost engagement and grow impact: \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fexamples\u002F\" rel=\"nofollow ugc\">See real examples\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🚀 New: Built-in WooCommerce Integration!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Easily sell digital eCards as WooCommerce products and let customers send cards right after checkout. No extra plugin required—it’s all built-in! Perfect for organizations, nonprofits, churches, and businesses who want to offer eCards with full e-commerce power.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Embed branded eCard galleries or individual cards anywhere using a simple shortcode\u003C\u002Fli>\n\u003Cli>Fully customizable card designs, branding, and messaging\u003C\u002Fli>\n\u003Cli>Add your logo, links, and custom background\u003C\u002Fli>\n\u003Cli>Choose from a professional template library or upload your own artwork\u003C\u002Fli>\n\u003Cli>Track sent cards and export sender\u002Frecipient emails (CSV)\u003C\u002Fli>\n\u003Cli>Reliable email delivery with spam protection\u003C\u002Fli>\n\u003Cli>Emoji and animated GIF support\u003C\u002Fli>\n\u003Cli>Responsive design, mobile-friendly\u003C\u002Fli>\n\u003Cli>BCC all outgoing eCards for recordkeeping\u003C\u002Fli>\n\u003Cli>Change layouts, fonts, and colors to match your site\u003C\u002Fli>\n\u003Cli>Custom CSS support\u003C\u002Fli>\n\u003Cli>Send eCards to Facebook friends\u003C\u002Fli>\n\u003Cli>Built-in analytics to track card engagement\u003C\u002Fli>\n\u003Cli>Multilingual support (French, German, Dutch, Spanish, Hebrew, Polish, and more)\u003C\u002Fli>\n\u003Cli>And many more features!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Live Examples\u003C\u002Fh3>\n\u003Cp>See how others are using WP eCards:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Business \u002F Marketing\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fex\u002Fraising_canes.html\" rel=\"nofollow ugc\">Raising Cane’s\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fex\u002Fmanagrams.html\" rel=\"nofollow ugc\">Teremana Tequila\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Nonprofits & Fundraising\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fex\u002Fhabitforhumanity.html\" rel=\"nofollow ugc\">Habitat for Humanity\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fex\u002Fmdfoodbank.html\" rel=\"nofollow ugc\">Maryland Food Bank\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Churches\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fex\u002Fvineyardnorthphoenix.html\" rel=\"nofollow ugc\">Vineyard North Phoenix\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Employee Recognition\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fapp.ecardwidget.com\u002Fwidget\u002F5095\" rel=\"nofollow ugc\">Modivcare\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fex\u002Fcircalogica.html\" rel=\"nofollow ugc\">Circalogica\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>View more at \u003Ca href=\"https:\u002F\u002Fecardwidget.com\u002Fexamples\u002F\" rel=\"nofollow ugc\">ecardwidget.com\u002Fexamples\u003C\u002Fa>\u003C\u002Fp>\n","Add interactive digital greeting cards to your WordPress site — fully branded, customizable, and shareable by visitors through email or social media.",300,12017,88,"2025-12-06T14:57:00.000Z","6.9.4",[94,95,74,96,97],"ecards","evites","invites","recognition","http:\u002F\u002Fecardwidget.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-ecards-invites.zip",99,"2024-12-03 00:00:00",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":28,"num_ratings":28,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":18,"tags":115,"homepage":121,"download_link":122,"security_score":123,"vuln_count":34,"unpatched_count":34,"last_vuln_date":124,"fetched_at":30},"social-media-engine","Social Media Engine","1.0.2","ThemesCraft.co","https:\u002F\u002Fprofiles.wordpress.org\u002Fkvasnyi\u002F","\u003Cp>Social follow links shortcode. Built on FontAwesome icons.  30 social networks supported: 500px, behance, bitbucket, delicious, deviantart, digg, dribbble, etsy, facebook, flickr, foursquare, github, google-plus, instagram, lastfm, linkedin, medium, mixcloud, odnoklassniki, quora, reddit, skype, slideshare, soundcloud, spotify, tumblr, twitter, vimeo, vk, wordpress, youtube\u003C\u002Fp>\n\u003Ch4>Usage example\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>This shortcode can be used in posts, pages and widgets areas:\u003Cbr \u002F>\n[sme_social_links facebook=”follow_link” float=”right” skin=”dark” shape=”circle” size=”medium”]\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For placement in the php code, use function:\u003Cbr \u002F>\ndo_shortcode(‘[sme_social_links facebook=”follow_link”]’)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcode settings\u003C\u002Fh4>\n\u003Ch4>Skins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>light\u003C\u002Fli>\n\u003Cli>dark\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shape\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>circle\u003C\u002Fli>\n\u003Cli>square\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Size\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>medium\u003C\u002Fli>\n\u003Cli>large\u003C\u002Fli>\n\u003Cli>xlarge\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Floating\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>right\u003C\u002Fli>\n\u003Cli>left\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported networks\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>500px\u003C\u002Fli>\n\u003Cli>behance\u003C\u002Fli>\n\u003Cli>bitbucket\u003C\u002Fli>\n\u003Cli>delicious\u003C\u002Fli>\n\u003Cli>deviantart\u003C\u002Fli>\n\u003Cli>digg\u003C\u002Fli>\n\u003Cli>dribbble\u003C\u002Fli>\n\u003Cli>etsy\u003C\u002Fli>\n\u003Cli>facebook\u003C\u002Fli>\n\u003Cli>flickr\u003C\u002Fli>\n\u003Cli>foursquare\u003C\u002Fli>\n\u003Cli>github\u003C\u002Fli>\n\u003Cli>google-plus\u003C\u002Fli>\n\u003Cli>instagram\u003C\u002Fli>\n\u003Cli>lastfm\u003C\u002Fli>\n\u003Cli>linkedin\u003C\u002Fli>\n\u003Cli>medium\u003C\u002Fli>\n\u003Cli>mixcloud\u003C\u002Fli>\n\u003Cli>odnoklassniki\u003C\u002Fli>\n\u003Cli>quora\u003C\u002Fli>\n\u003Cli>skype\u003C\u002Fli>\n\u003Cli>slideshare\u003C\u002Fli>\n\u003Cli>soundcloud\u003C\u002Fli>\n\u003Cli>spotify\u003C\u002Fli>\n\u003Cli>tumblr\u003C\u002Fli>\n\u003Cli>twitter\u003C\u002Fli>\n\u003Cli>vimeo\u003C\u002Fli>\n\u003Cli>vk\u003C\u002Fli>\n\u003Cli>wordpress\u003C\u002Fli>\n\u003Cli>youtube\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Based on Font Awesome (http:\u002F\u002Ffontawesome.io),  font is licensed under SIL OFL 1.1.(http:\u002F\u002Fscripts.sil.org\u002FOFL), css file is licensed under MIT License (http:\u002F\u002Fopensource.org\u002Flicenses\u002Fmit-license.html)\u003C\u002Fli>\n\u003C\u002Ful>\n","Social follow links shortcode. Built on FontAwesome icons.  30 social networks supported: 500px, behance, bitbucket, delicious, deviantart, digg, drib &hellip;",40,3688,"2016-11-05T20:39:00.000Z","4.7.33","4.0",[116,117,118,119,120],"follow-links","social","social-bookmarks","social-links","social-networking","http:\u002F\u002Fawothemes.pro\u002Fplugins\u002Fsocial-media-engine","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-media-engine.1.0.2.zip",64,"2025-01-14 00:00:00",{"slug":126,"name":127,"version":105,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":35,"downloaded":132,"rating":133,"num_ratings":78,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":18,"tags":137,"homepage":141,"download_link":142,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"invitations-for-slack","Invitations for Slack","rheinardkorf","https:\u002F\u002Fprofiles.wordpress.org\u002Frheinardkorf\u002F","\u003Cp>Invitations for Slack lets you use convenient shortcodes to show “Join us on Slack.” buttons or Slack badges. Just add\u003Cbr \u002F>\nyour Slack token and use the shortcodes wherever you want your visitors to be able to invite themselves from.\u003C\u002Fp>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easy to use:\n\u003Cul>\n\u003Cli>Visit \u003Ca href=\"https:\u002F\u002Fapi.slack.com\u002Fweb\" rel=\"nofollow ugc\">https:\u002F\u002Fapi.slack.com\u002Fweb\u003C\u002Fa> to generate your Slack token.\u003C\u002Fli>\n\u003Cli>Add the token to the plugin settings.\u003C\u002Fli>\n\u003Cli>Use the [invitations_for_slack] or [invitations_for_slack_badge] shortcodes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Invitations are performed using the WP REST API which in turn communicates with the Slack API. No page reloads.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>A Slack team and the team’s access token.\u003C\u002Fli>\n\u003Cli>A self-hosted WordPress website (Not a WordPress.com website.)\u003C\u002Fli>\n\u003C\u002Ful>\n","Build a Slack community by allowing your visitors (or registered users) to invite themselves to your Slack team.",5761,76,"2016-01-29T01:14:00.000Z","4.4.34","4.4",[138,74,96,139,140],"community","join","slack","http:\u002F\u002Frheinard.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finvitations-for-slack.zip",{"attackSurface":144,"codeSignals":174,"taintFlows":252,"riskAssessment":253,"analyzedAt":265},{"hooks":145,"ajaxHandlers":170,"restRoutes":171,"shortcodes":172,"cronEvents":173,"entryPointCount":28,"unprotectedCount":28},[146,151,156,159,162,166],{"type":147,"name":148,"callback":148,"file":149,"line":150},"action","admin_enqueue_scripts","class.settings-api.php",31,{"type":147,"name":152,"callback":153,"file":154,"line":155},"init","rt_facebook_like_box_wp_latest_jquery","tsu-popup.php",17,{"type":147,"name":157,"callback":157,"file":154,"line":158},"admin_init",33,{"type":147,"name":160,"callback":160,"file":154,"line":161},"admin_menu",34,{"type":147,"name":163,"callback":164,"file":154,"line":165},"wp_enqueue_scripts","tsu_styles",483,{"type":147,"name":167,"callback":168,"file":154,"line":169},"wp_footer","tsu_scripts",501,[],[],[],[],{"dangerousFunctions":175,"sqlUsage":180,"outputEscaping":182,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":251},[176],{"fn":177,"file":149,"line":178,"context":179},"create_function",111,"$callback = create_function('', 'echo \"'.str_replace('\"', '\\\"', $section['desc']).'\";');",{"prepared":28,"raw":28,"locations":181},[],{"escaped":183,"rawEcho":158,"locations":184},8,[185,188,190,192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,249],{"file":149,"line":186,"context":187},154,"raw output",{"file":149,"line":189,"context":187},170,{"file":149,"line":191,"context":187},186,{"file":149,"line":193,"context":187},206,{"file":149,"line":195,"context":187},225,{"file":149,"line":197,"context":187},245,{"file":149,"line":199,"context":187},261,{"file":149,"line":201,"context":187},270,{"file":149,"line":203,"context":187},283,{"file":149,"line":205,"context":187},289,{"file":149,"line":207,"context":187},325,{"file":149,"line":209,"context":187},341,{"file":149,"line":211,"context":187},357,{"file":149,"line":213,"context":187},437,{"file":149,"line":215,"context":187},450,{"file":154,"line":217,"context":187},246,{"file":154,"line":219,"context":187},336,{"file":154,"line":221,"context":187},340,{"file":154,"line":223,"context":187},359,{"file":154,"line":225,"context":187},360,{"file":154,"line":227,"context":187},369,{"file":154,"line":229,"context":187},378,{"file":154,"line":231,"context":187},383,{"file":154,"line":233,"context":187},397,{"file":154,"line":235,"context":187},398,{"file":154,"line":237,"context":187},446,{"file":154,"line":239,"context":187},452,{"file":154,"line":241,"context":187},456,{"file":154,"line":243,"context":187},459,{"file":154,"line":245,"context":187},461,{"file":154,"line":247,"context":187},466,{"file":154,"line":247,"context":187},{"file":154,"line":250,"context":187},470,[],[],{"summary":254,"deductions":255},"The \"tsu-popup\" v1.0 plugin exhibits a mixed security posture.  On one hand, the absence of known CVEs and a clean taint analysis suggest a generally secure codebase with no immediately obvious critical vulnerabilities.  The plugin also demonstrates good practices by utilizing prepared statements for all SQL queries. However, significant concerns arise from the static analysis. The presence of the `create_function` dangerous function is a notable weakness, as it can be a vector for code injection if user-supplied input is passed to it without proper sanitization. Furthermore, a substantial portion of output (80%) is not properly escaped, creating a high risk of Cross-Site Scripting (XSS) vulnerabilities across various display points within the plugin. The lack of nonce checks and capability checks on potential entry points, coupled with a zero-count for these, indicates a potential oversight in securing user interactions.",[256,259,261,263],{"reason":257,"points":258},"Use of dangerous function `create_function`",15,{"reason":260,"points":11},"High percentage of unescaped output",{"reason":262,"points":11},"Missing nonce checks on entry points",{"reason":264,"points":11},"Missing capability checks on entry points","2026-03-17T00:56:56.357Z",{"wat":267,"direct":276},{"assetPaths":268,"generatorPatterns":271,"scriptPaths":272,"versionParams":273},[269,270],"\u002Fwp-content\u002Fplugins\u002Ftsu-popup\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Ftsu-popup\u002Fjs\u002Fmain.js",[],[270],[274,275],"tsu-popup\u002Fcss\u002Fstyle.css?ver=","tsu-popup\u002Fjs\u002Fmain.js?ver=",{"cssClasses":277,"htmlComments":279,"htmlAttributes":280,"restEndpoints":297,"jsGlobals":298,"shortcodeOutput":300},[4,278],"tsu-popup-close",[],[281,281,282,283,284,285,286,287,288,289,290,291,292,293,294,295,296],"data-tsu-username","data-tsu-display_name","data-tsu-title","data-tsu-desc","data-tsu-logo","data-tsu-close-icon","data-tsu-show-title","data-tsu-show-logo","data-tsu-show-desc","data-tsu-show-develop","data-tsu-background-color","data-tsu-title-color","data-tsu-title-background","data-tsu-text-color","data-tsu-link-color","data-tsu-popup-width",[],[299],"tsu_popup_options",[],{"slug":4,"current_version":6,"total_versions":34,"versions":302},[303],{"version":6,"download_url":26,"svn_tag_url":304,"released_at":29,"has_diff":305,"diff_files_changed":306,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":307,"is_current":308},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Ftsu-popup\u002Ftags\u002F1.0\u002F",false,[],[],true]