[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fw8-RqSVBHaH7nw6KqVnM_qoGxH3pxUNV8rDM5DU4-2g":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":131,"fingerprints":223},"tweets-as-posts","Tweets As Posts","1.1","cparekh","https:\u002F\u002Fprofiles.wordpress.org\u002Fcparekh\u002F","\u003Cp>Tweets As Posts (TAP) for WordPress is a plugin that allows you to import tweets from twitter into WordPress as posts by simply stating twitter names and hashtags in the confirguration.\u003C\u002Fp>\n\u003Cp>Unlimited number of Twitter accounts can be used making both personal and company websites easy to update from multiple twitter accounts.\u003C\u002Fp>\n\u003Cp>A custom list of hashtags allows control over which tweets are imported. (Future versions will offer even more options for control)\u003C\u002Fp>\n\u003Cp>The imported tweets are added to WordPress as posts, into a category specified in the settings confirguration, and displayed on the front-end with Search Engine Friendly URLs.\u003C\u002Fp>\n\u003Cp>The import update runs once an hour automatically or can be forced to run from the settings page of the plugin e.g. if you require an important tweet to appear on the site immediately.\u003C\u002Fp>\n\u003Ch4>Why use Tweets As Posts\u003C\u002Fh4>\n\u003Col>\n\u003Cli>A simple way to archive your, and those of others if necessary, tweets and make them available on your website\u003C\u002Fli>\n\u003Cli>Updates your website automatically with content relevant to your site visitors\u003C\u002Fli>\n\u003Cli>Your tweets flow naturally with the rest of your website content e.g. as opposed to being displayed in a widget\u003C\u002Fli>\n\u003Cli>Search engines love sites that are updated regularly – depending on your tweeting frequency this could have a positive effect on your site’s Search Engine ranking\u003C\u002Fli>\n\u003Cli>Urls are Search Engine Friendly making discovery by Search Engines easy\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>This plugin is an extension of the excellent ‘Twitter News Feed’ plugin by Keir Whitaker\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Tweets As Posts 1.1 requires PHP5\u003C\u002Fli>\n\u003Cli>Simplepie – http:\u002F\u002Fsimplepie.org\u002F (This is included in the plugin)\u003C\u002Fli>\n\u003C\u002Fol>\n","Tweets As Posts imports all tweets tagged with specified hashtags from twitter accounts into WordPress as posts.",10,5285,0,"2012-05-28T19:34:00.000Z","3.3.2","2.0.2","",[19,20,21,22,23],"feed","news","posts","tweets","twitter","http:\u002F\u002Fwww.chandeshparekh.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftweets-as-posts.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-05T20:23:51.491Z",[36,56,75,98,115],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":44,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":17,"tags":50,"homepage":54,"download_link":55,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"import-tweets-as-posts","Import Tweets as Posts","3.0","Chandan Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fchandanonline4u\u002F","\u003Cp>“Import Tweets as Posts” plugin allows to easily import tweets from user’s timeline or search query. It has also flexibility to import tweets as custom post type “tweet”. Other settings that user can specify are tweet import interval time, number of tweets to import, Category,  Text before tweet post title. There is also options to exclude retweets and replies from user’s twitter timeline.\u003C\u002Fp>\n\u003Cp>Released under the terms of the GNU GPL, version 2.\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.fsf.org\u002Flicensing\u002Flicenses\u002Fgpl.html\u003C\u002Fp>\n\u003Cp>NO WARRANTY.\u003Cbr \u002F>\nCopyright (c) 2015 Chandan Kumar\u003C\u002Fp>\n","\"Import Tweets as Posts\" plugin allows to easily import tweets from user's timeline or search query. It has also flexibility to import  …",100,12269,8,"2015-11-25T09:14:00.000Z","4.3.34","2.8.6",[51,37,21,52,53],"import-tweets","tweets-to-posts","twitter-feeds","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fimport-tweets-as-posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimport-tweets-as-posts.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":44,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":17,"tags":70,"homepage":73,"download_link":74,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"display-tweets-php","Display Tweets","1.0.3","MatthewRuddy","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatthewruddy\u002F","\u003Cp>Display Tweets is a very simple and easy to use Twitter feed plugin. It allows you to display your tweets using the shortcode, PHP function or widget. It’s completely future proof and makes authenticated requests to the Twitter v1.1 REST API, ensuring that your tweets don’t disappear when the old Twitter API is shutdown (soon).\u003C\u002Fp>\n\u003Cp>For more information, \u003Ca href=\"http:\u002F\u002Fmatthewruddy.com\u002Fdisplay-tweets-plugin\u002F\" rel=\"nofollow ugc\">check out my blog\u003C\u002Fa>. For usage information, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdisplay-tweets-php\u002Finstallation\u002F\" rel=\"ugc\">click here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You can also contribute to the plugin yourself on Github \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMatthewRuddy\u002Fdisplaytweets\" rel=\"nofollow ugc\">. Don’t be shy, get involved!\u003C\u002Fa>\u003C\u002Fp>\n","Display Tweets is an easy to use, future proof Twitter feed plugin that uses PHP to make requests to the v1.1 Twitter REST API.",1000,51171,14,"2017-11-28T17:30:00.000Z","3.6.1","3.5",[19,71,72,22,23],"mentions","retweets","http:\u002F\u002Fmatthewruddy.com\u002Fdisplay-tweets-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisplay-tweets-php.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":17,"tags":90,"homepage":94,"download_link":95,"security_score":96,"vuln_count":31,"unpatched_count":31,"last_vuln_date":97,"fetched_at":28},"wp-twitter-feed","Peadig's Twitter Feed: Embedded Timeline WordPress Plugin","2.2","Alex Moss","https:\u002F\u002Fprofiles.wordpress.org\u002Falexmoss\u002F","\u003Cp>The WordPress Twitter Feed Plugin lets you simply output any user’s tweets into your WordPress page, template or sidebar! You can customise the username, number of tweets, and style of ouput.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002Fwp-twitter-feed\u002F\" rel=\"nofollow ugc\">Twitter Embedded Timeline\u003C\u002Fa> WordPress Plugin homepage.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002Fwp-twitter-feed-pro\u002F\" rel=\"nofollow ugc\">Twitter Feed PRO\u003C\u002Fa> – this plugin outputs tweet using flat HTML and supports Twitter’s API v1.1.\u003C\u002Fli>\n\u003Cli>More \u003Ca href=\"http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple Twitter feed that outputs your latest tweets in HTML into any post, page, template or sidebar widget. Customisable and easy to install!",600,161765,62,7,"2018-04-04T22:46:00.000Z","3.7.41","2.7",[91,22,23,92,93],"seo","twitter-feed","twitter-updates","http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002Fwp-twitter-feed\u002F?utm_source=WordPress&utm_medium=Admin&utm_campaign=Twitter%2BFeed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-twitter-feed.2.2.zip",63,"2010-12-07 00:00:00",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":44,"num_ratings":31,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":17,"tags":111,"homepage":17,"download_link":114,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"ultimate-twitter-feeds","Ultimate Twitter Feeds","0.1","Milap","https:\u002F\u002Fprofiles.wordpress.org\u002Fmilap\u002F","\u003Cp>Ultimate Twitter Feeds is one of the best Lightweight plugin to display Twitter feeds (Tweets) on your website. It fetches feeds from Twitter Profile, Twitter User List and single Tweet. It provides additional configuration options like Height, Width, Language and Theme.\u003C\u002Fp>\n\u003Cp>An inside look:\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F8gxE5CPLiJM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Why should you choose Ultimate Twitter Feeds among the many other plugins?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Light weight & easy to configure.\u003C\u002Fli>\n\u003Cli>Configuration options like show Tweets from Twitter User Profile, User List and Single Tweet.\u003C\u002Fli>\n\u003Cli>Supports Light and Dark theme.\u003C\u002Fli>\n\u003Cli>Additional options like Width, Height and Language.\u003C\u002Fli>\n\u003Cli>Shortcode support (In Next Release)\u003C\u002Fli>\n\u003Cli>Fast & helpful support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cp>The following plugins are recommended for users:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffacebook-pagelike-widget\u002F\" rel=\"ugc\">Facebook Page Feeds Widget\u003C\u002Fa> by Milap – With Facebook Page Feeds Widget, you can display your Facebook Page feeds on your website quickly.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy Notices\u003C\u002Fh4>\n\u003Cp>With the default configuration, this plugin, in itself, does not:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>use cookies.\u003C\u002Fli>\n\u003Cli>track users by stealth.\u003C\u002Fli>\n\u003Cli>write any user personal data to the database.\u003C\u002Fli>\n\u003Cli>send any data to external servers.\u003C\u002Fli>\n\u003C\u002Ful>\n","Ultimate Twitter Feeds allows you to display customizable Twitter Tweets from any user timeline,  any user Twitter List and single Tweet on your websi …",400,5646,"2021-08-23T10:05:00.000Z","5.8.13","3.4",[112,22,23,92,113],"custom-twitter-feed","twitter-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-twitter-feeds.0.1.zip",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":44,"downloaded":123,"rating":124,"num_ratings":125,"last_updated":126,"tested_up_to":48,"requires_at_least":69,"requires_php":17,"tags":127,"homepage":129,"download_link":130,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"timeline-twitter-feed","Timeline Twitter Feed","1.3","ezraverheijen","https:\u002F\u002Fprofiles.wordpress.org\u002Fezraverheijen\u002F","\u003Cp>Timeline Twitter Feed let’s you output your timeline feed and multiple hashtags into your WordPress site as flat HTML.\u003Cbr \u002F>\nThe output is customizable on nearly every aspect. With or without profile pictures, tweet date, usernames before tweets, hashtags and usernames as links etc. etc.\u003Cbr \u002F>\nCSS styling can be added\u002Foverwrited via your theme’s stylesheet or in the Timeline Twitter Feed settings screen.\u003Cbr \u002F>\nThere is also a widget to easily add a Twitter feed to your header, sidebar or footer, if your theme supports it.\u003C\u002Fp>\n\u003Cp>If you have any issues using Timeline Twitter Feed, find a bug or have an idea to make the plugin even better then please \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fezraverheijen\u002Ftimeline-twitter-feed\" rel=\"nofollow ugc\">help to improve Timeline Twitter Feed\u003C\u002Fa>.\u003Cbr \u002F>\nIf you don’t report it, I can’t fix it!\u003C\u002Fp>\n","Output timeline feeds and multiple hashtags into your WordPress site as flat HTML.",14010,70,2,"2015-09-04T14:00:00.000Z",[19,128,22,23,92],"tweet","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftimeline-twitter-feed\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftimeline-twitter-feed.1.3.zip",{"attackSurface":132,"codeSignals":149,"taintFlows":175,"riskAssessment":209,"analyzedAt":222},{"hooks":133,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":13,"unprotectedCount":13},[134,139],{"type":135,"name":136,"callback":137,"file":138,"line":124},"action","admin_menu","tap_admin_actions","tweets-as-posts.php",{"type":135,"name":140,"callback":141,"file":138,"line":142},"tap_hourly_update_action","tap_hourly_update",97,[],[],[],[147],{"hook":140,"callback":140,"file":138,"line":148},105,{"dangerousFunctions":150,"sqlUsage":151,"outputEscaping":157,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":174},[],{"prepared":152,"raw":31,"locations":153},4,[154],{"file":138,"line":155,"context":156},144,"$wpdb->get_var() with variable interpolation",{"escaped":13,"rawEcho":158,"locations":159},6,[160,164,166,168,170,172],{"file":161,"line":162,"context":163},"tweets-as-posts-admin.php",101,"raw output",{"file":161,"line":165,"context":163},107,{"file":161,"line":167,"context":163},111,{"file":161,"line":169,"context":163},115,{"file":161,"line":171,"context":163},138,{"file":161,"line":173,"context":163},146,[],[176],{"entryPoint":177,"graph":178,"unsanitizedCount":46,"severity":208},"\u003Ctweets-as-posts-admin> (tweets-as-posts-admin.php:0)",{"nodes":179,"edges":203},[180,185,191,194,198,201],{"id":181,"type":182,"label":183,"file":161,"line":184},"n0","source","$_POST (x4)",29,{"id":186,"type":187,"label":188,"file":161,"line":189,"wp_function":190},"n1","sink","update_option() [Settings Manipulation]",44,"update_option",{"id":192,"type":182,"label":193,"file":161,"line":162},"n2","$_SERVER['REQUEST_URI'] (x2)",{"id":195,"type":187,"label":196,"file":161,"line":162,"wp_function":197},"n3","echo() [XSS]","echo",{"id":199,"type":182,"label":200,"file":161,"line":184},"n4","$_POST (x2)",{"id":202,"type":187,"label":196,"file":161,"line":165,"wp_function":197},"n5",[204,206,207],{"from":181,"to":186,"sanitized":205},false,{"from":192,"to":195,"sanitized":205},{"from":199,"to":202,"sanitized":205},"low",{"summary":210,"deductions":211},"The \"tweets-as-posts\" v1.1 plugin presents a mixed security posture. On the positive side, it boasts a clean vulnerability history with no recorded CVEs and a generally limited attack surface with no direct AJAX or REST API endpoints exposed without authentication.  Furthermore, the absence of file operations, external HTTP requests, and dangerous functions are good indicators of security awareness.\n\nHowever, significant concerns arise from the static analysis. The most alarming finding is a taint flow with an unsanitized path. This suggests a potential for attackers to inject malicious code or manipulate data that is not properly validated or escaped before being used, which could lead to vulnerabilities like Cross-Site Scripting (XSS) or path traversal. Additionally, the plugin fails to implement any output escaping for its outputs, meaning any data displayed to users is not protected against malicious injection. The lack of nonce and capability checks on its entry points, while limited in number, also represents a potential weakness if any of these were to be exposed or exploited.\n\nIn conclusion, while the plugin's history is positive and its direct attack surface appears small, the critical taint flow and complete lack of output escaping represent serious security flaws that require immediate attention. The absence of these fundamental security practices significantly elevates the risk associated with using this plugin.",[212,215,217,220],{"reason":213,"points":214},"Taint flow with unsanitized path detected",12,{"reason":216,"points":86},"No output escaping for any outputs",{"reason":218,"points":219},"No nonce checks implemented",5,{"reason":221,"points":219},"No capability checks implemented","2026-03-17T01:16:54.236Z",{"wat":224,"direct":232},{"assetPaths":225,"generatorPatterns":227,"scriptPaths":228,"versionParams":229},[226],"\u002Fwp-content\u002Fplugins\u002Ftweets-as-posts\u002F",[],[],[230,231],"tweets-as-posts\u002Fstyle.css?ver=","tweets-as-posts\u002Ftweets-as-posts-admin.js?ver=",{"cssClasses":233,"htmlComments":236,"htmlAttributes":239,"restEndpoints":241,"jsGlobals":242,"shortcodeOutput":244},[234,235],"tap_options","tap_setting",[237,238],"\u003C!-- Tweets As Posts -->","\u003C!-- Tweets As Posts Admin -->",[240],"data-tap-setting",[],[243],"tap_admin_nonce",[]]