[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6GS-AdQwOl3RuxcOoU1KJynabJ8JA7PbznErwbDg0tA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":128,"fingerprints":199},"twitter-highlight","Twitter Highlight","1.2.0","Eduardo Reveles","https:\u002F\u002Fprofiles.wordpress.org\u002Foso96_2000\u002F","\u003Cp>Convert the following formats:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>@username -> http:\u002F\u002Ftwitter.com\u002Fusername\u003C\u002Fli>\n\u003Cli>@username\u002Flistname -> http:\u002F\u002Ftwitter.com\u002Fusername\u002Flistname\u003C\u002Fli>\n\u003Cli>#hashtag -> http:\u002F\u002Fsearch.twitter.com\u002Fsearch?q=%23hashtag\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It comes with some options to configure, like use nofollow attribute, open on a new page and choose where you want the links to be replaced.\u003C\u002Fp>\n","Convert twitter usernames, hashtags and lists in pages, posts or comments to a twitter link.",10,2675,0,"2015-09-29T21:55:00.000Z","4.1.42","2.9","",[19,20,21,22],"hashtag","list","twitter","username","http:\u002F\u002Fosiux.ws\u002F2010\u002F04\u002F13\u002Ftwitter-highlight\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter-highlight.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"oso96_2000",1,30,84,"2026-04-04T09:06:32.084Z",[36,56,75,94,111],{"slug":21,"name":37,"version":38,"author":37,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":44,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":17,"tags":49,"homepage":54,"download_link":55,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"Twitter","2.0.5","https:\u002F\u002Fprofiles.wordpress.org\u002Ftwitter\u002F","\u003Cp>Embed Twitter content, improve sharing on Twitter, convert your web audience into Twitter or Periscope subscribers, and easily track visits to your website from Twitter advertising.\u003C\u002Fp>\n\u003Cp>Requires PHP version 5.6 or greater.\u003C\u002Fp>\n\u003Ch4>Embed Twitter content\u003C\u002Fh4>\n\u003Cp>Embed Twitter content by pasting a URL, customizing a shortcode, or in a widget area.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Tweet\" title=\"single Tweet embed\" rel=\"nofollow ugc\">single Tweet\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Profile-Timeline\" title=\"Twitter embedded profile timeline\" rel=\"nofollow ugc\">profile timeline\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-List-Timeline\" title=\"Twitter embedded list timeline\" rel=\"nofollow ugc\">list timeline\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FEmbedded-Collection-Timeline\" title=\"Twitter embedded collection\" rel=\"nofollow ugc\">collection\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FMoments\" title=\"Twitter embedded Moment\" rel=\"nofollow ugc\">Moment\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Customize embed display to match your theme. Choose a light or dark background, customize link and border colors, and customize timeline template components through your site’s WordPress administrative interface.\u003C\u002Fp>\n\u003Cp>The plugin automatically customizes an embed’s template text to match the locale of your site, optimally loads Twitter’s JavaScript to improve site speed and extensibility, and handles advanced use cases such as articles loaded asynchronously via the WordPress API.\u003C\u002Fp>\n\u003Ch4>Grow your Twitter audience\u003C\u002Fh4>\n\u003Cp>Automatically generate link previews for your site’s URLs shared on Twitter using \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FCards\" rel=\"nofollow ugc\">Twitter Cards markup\u003C\u002Fa> . Easily identify your site and author Twitter accounts through your site and user administrative interfaces.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FTweet-Button\" rel=\"nofollow ugc\">Tweet button\u003C\u002Fa> to public posts to encourage your visitors to share your content on Twitter. Visitors may see recommended accounts to follow after sharing your content including your site and its authors.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FFollow-Button\" rel=\"nofollow ugc\">Follow button\u003C\u002Fa> to convert your site visitors into Twitter subscribers.\u003C\u002Fp>\n\u003Cp>Add a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\u002FPeriscope-On-Air-Button\" rel=\"nofollow ugc\">Periscope On Air button\u003C\u002Fa> to convert your site visitors into Periscope subscribers.\u003C\u002Fp>\n\u003Ch4>Improve Twitter advertising campaigns\u003C\u002Fh4>\n\u003Cp>Easily add a Twitter website tag to your website to track the effectiveness and \u003Ca href=\"https:\u002F\u002Fbusiness.twitter.com\u002Fen\u002Fhelp\u002Fcampaign-measurement-and-analytics\u002Fconversion-tracking-for-websites.html\" rel=\"nofollow ugc\">conversion rates\u003C\u002Fa> of Twitter advertising campaigns or \u003Ca href=\"https:\u002F\u002Fbusiness.twitter.com\u002Fen\u002Ftargeting\u002Ftailored-audiences.html\" rel=\"nofollow ugc\">build tailored audiences\u003C\u002Fa> to target your Twitter advertisements for your website audience.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Docs and active development\u003C\u002Fstrong>\u003Cbr \u002F>\n  Contribute to the plugin, submit pull requests, or run test suites through the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\" rel=\"nofollow ugc\">Twitter plugin for WordPress GitHub repository\u003C\u002Fa>.\u003Cbr \u002F>\n  View \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwitter\u002Fwordpress\u002Fwiki\" rel=\"nofollow ugc\">Twitter for WordPress documentation\u003C\u002Fa> to learn more about customization through WordPress filters.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Official Twitter and Periscope plugin for WordPress. Embed content and grow your audience. Requires PHP 5.6 or greater.",10000,705891,50,32,"2019-07-24T22:59:00.000Z","5.2.24","4.7",[50,51,21,52,53],"embedded-timeline","embedded-tweet","twitter-list","twitter-profile","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftwitter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter.zip",{"slug":19,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":17,"tags":70,"homepage":73,"download_link":74,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"Hashtag","0.5","takien","https:\u002F\u002Fprofiles.wordpress.org\u002Ftakien\u002F","\u003Cp>Use hashtag on WordPress just like on Twitter or Facebook. Word preceded with hash automatically converted into clickable link. If clicked it will search contents contain same hashtag.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Use standard hashtag ( #hashtag )\u003C\u002Fli>\n\u003Cli>Customizable CSS\u003C\u002Fli>\n\u003Cli>Hashtag also can be used for regular search\u003C\u002Fli>\n\u003Cli>Hash on color code, URL and unicode will be skipped\u003C\u002Fli>\n\u003Cli>Supports for non latin characters\u003C\u002Fli>\n\u003C\u002Ful>\n","Use hashtag on WordPress just like on Twitter or Facebook. Word preceded with hash automatically converted into clickable link.",200,18203,86,8,"2016-01-26T16:14:00.000Z","4.4.34","3.0",[71,19,72,21],"facebook","search","http:\u002F\u002Ftakien.com\u002Fplugins\u002Fhashtag","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhashtag.0.5.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":13,"num_ratings":13,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":17,"tags":88,"homepage":92,"download_link":93,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"twitter-goodies-widgets","Twitter Goodies Widgets","1.2","Marcus (aka @msykes)","https:\u002F\u002Fprofiles.wordpress.org\u002Fnetweblogic\u002F","\u003Cp>This plugin will allow you to create any one of the four Twitter widgets located at twitter’s website \u003Ca href=\"twitter.com\u002Fgoodies\u002Fwidgets\" rel=\"nofollow ugc\">twitter.com\u002Fgoodies\u002Fwidgets\u003C\u002Fa> with the friendly wordpress drag & drop convenience of widgets. Some of the features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Can create multiple twitter widget instnaces (uses the new WP widget API)\u003C\u002Fli>\n\u003Cli>Four for one! Four twitter widgets – twitter lists, faves, your twitter profile, or a search\u003C\u002Fli>\n\u003Cli>All the options available via the twitter widget page are available here too (as of Nov 05 2009).\u003C\u002Fli>\n\u003Cli>Save multiple themes for your twitter widget. Use one theme (or many) across multiple widgets, no need to retype settings like on the twitter site.\u003C\u002Fli>\n\u003Cli>Quickly and easly switch between the different twitter widget types.\u003C\u002Fli>\n\u003Cli>One widget makes for twitter widgets.\u003C\u002Fli>\n\u003Cli>Place widgets in your posts and pages too with shortcodes (see notes).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you have any problems with the plugins, please visit our [http:\u002F\u002Fnetweblogic.com\u002Fforums\u002F](support forums) for further information and provide some feedback first, we may be able to help. It’s considered rude to just give low ratings and nothing reason for doing so.\u003C\u002Fp>\n\u003Cp>If you find this plugin useful and would like to say thanks, a link, digg, or some other form of recognition to the plugin page on our blog would be appreciated.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cp>To generate a twitter widget in your pages, here is a shortcode with all the attributes:\u003C\u002Fp>\n\u003Cp>[tgw title=”Title for twitter widget” subject=”Caption for twitter widget” username=”Twitter User Name” search=”Twitter search string” type=”Either (search|list|faves|profile)” list=”Twitter List Name”]\u003C\u002Fp>\n\u003Cp>Look at one of the twitter widget options in your admin panel, or also on the twitter site \u003Ca href=\"twitter.com\u002Fgoodies\u002Fwidgets\" rel=\"nofollow ugc\">twitter.com\u002Fgoodies\u002Fwidgets\u003C\u002Fa> to see what combination you need for which widget type.\u003C\u002Fp>\n","Uses the twitter goodies widgets API to create offical twitter widgets (profiles, lists, faves and search) straight from your control panel.",100,30033,"2011-01-02T15:27:00.000Z","3.0.5","2.7",[20,89,21,90,91],"tweet","twitter-lists","twitter-widget","http:\u002F\u002Fnetweblogic.com\u002Fwordpress\u002Ftwitter-goodies-widgets\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter-goodies-widgets.1.2.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":13,"num_ratings":13,"last_updated":104,"tested_up_to":105,"requires_at_least":16,"requires_php":17,"tags":106,"homepage":109,"download_link":110,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"cbnet-twitter-widget","cbnet Twitter Widget","1.3","Chip Bennett","https:\u002F\u002Fprofiles.wordpress.org\u002Fchipbennett\u002F","\u003Cp>\u003Cstrong>Note: The Twitter 1.1 API broke this Widget. Trying to fix it is a very low priority, though I may come back to it at some point in the future.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin is a widget to add the Twitter Tools Widgets, including all configurable options, with no need to copy\u002Fpaste code. The following Twitter Widgets are supported:\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fgoodies\u002Fwidget_profile\" rel=\"nofollow ugc\">Profile Widget\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fgoodies\u002Fwidget_list\" rel=\"nofollow ugc\">List Widget\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fgoodies\u002Fwidget_faves\" rel=\"nofollow ugc\">Favorites Widget\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fgoodies\u002Fwidget_search\" rel=\"nofollow ugc\">Search Widget\u003C\u002Fa>\u003C\u002Fp>\n","Widget to add the Twitter Tools Profile, List, Faves, and Search Widgets, with all configurable options.",80,22256,"2014-02-11T23:48:00.000Z","3.5.2",[107,21,108,52,53],"cbnet","twitter-favorites","http:\u002F\u002Fwww.chipbennett.net\u002Fwordpress\u002Fplugins\u002Fcbnet-twitter-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcbnet-twitter-widget.1.3.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":32,"downloaded":119,"rating":120,"num_ratings":31,"last_updated":121,"tested_up_to":105,"requires_at_least":69,"requires_php":17,"tags":122,"homepage":126,"download_link":127,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"rehashs-twitter-widget","Twitter Widget","1.4","brehash","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrehash\u002F","\u003Cp>Display tweets from a Twitter account in the sidebar of your blog.\u003C\u002Fp>\n\u003Cp>This plugin was not support for over 2 years, i’ve noticed that it is getting\u003Cbr \u002F>\nbigger the day it passes, so i’ve decided to relunch it. For those who used it\u003Cbr \u002F>\nand they’ve been unpleased, please accept my appologies and update this plugin!\u003C\u002Fp>\n\u003Cp>If the widgets already runs, and you update the settings, please allow\u003Cbr \u002F>\n30 minutes to take effect, this is because of the cache it uses.\u003C\u002Fp>\n","Display tweets from a Twitter account in the sidebar of your blog.",13479,20,"2012-12-21T06:33:00.000Z",[123,124,21,125],"automated","list-tweets","twitter-fetch","http:\u002F\u002Fwww.zoonte.com\u002Ftwitter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frehashs-twitter-widget.zip",{"attackSurface":129,"codeSignals":160,"taintFlows":187,"riskAssessment":188,"analyzedAt":198},{"hooks":130,"ajaxHandlers":156,"restRoutes":157,"shortcodes":158,"cronEvents":159,"entryPointCount":13,"unprotectedCount":13},[131,137,141,146,149,152],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","admin_menu","menu","twitter-highlight.php",35,{"type":132,"name":138,"callback":139,"file":135,"line":140},"admin_init","register_settings",36,{"type":142,"name":143,"callback":144,"file":135,"line":145},"filter","the_content","highlight",40,{"type":142,"name":147,"callback":144,"file":135,"line":148},"the_content_rss",44,{"type":142,"name":150,"callback":144,"file":135,"line":151},"comment_text_rss",45,{"type":142,"name":153,"callback":154,"file":135,"line":155},"comment_text","highlight_comment",49,[],[],[],[],{"dangerousFunctions":161,"sqlUsage":162,"outputEscaping":164,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":186},[],{"prepared":13,"raw":13,"locations":163},[],{"escaped":13,"rawEcho":165,"locations":166},9,[167,170,172,174,176,178,180,182,184],{"file":135,"line":168,"context":169},124,"raw output",{"file":135,"line":171,"context":169},129,{"file":135,"line":173,"context":169},133,{"file":135,"line":175,"context":169},138,{"file":135,"line":177,"context":169},150,{"file":135,"line":179,"context":169},155,{"file":135,"line":181,"context":169},160,{"file":135,"line":183,"context":169},165,{"file":135,"line":185,"context":169},170,[],[],{"summary":189,"deductions":190},"The \"twitter-highlight\" plugin v1.2.0 exhibits a mixed security posture. On the positive side, the plugin demonstrates strong adherence to secure coding practices regarding SQL queries, exclusively using prepared statements. It also appears to have a minimal attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events, and there are no known vulnerabilities or CVEs associated with this version.\n\nHowever, a significant concern arises from the complete lack of output escaping. With 9 total outputs analyzed, none were properly escaped, indicating a high potential for Cross-Site Scripting (XSS) vulnerabilities. This is further compounded by the absence of nonce and capability checks, which, while not directly exploitable given the lack of entry points in this analysis, represent a significant security gap if any new entry points were to be introduced or if the current analysis missed any.\n\nOverall, while the lack of known vulnerabilities and a small attack surface are reassuring, the unescaped output represents a critical weakness that could be leveraged for XSS attacks. The absence of basic security checks like nonces and capability checks, despite having no identified entry points in this analysis, suggests a potential for insecure development practices. Therefore, while not critically compromised based on the provided data, significant improvements in output sanitization are necessary to mitigate the XSS risk.",[191,193,196],{"reason":192,"points":120},"0% output escaping",{"reason":194,"points":195},"No nonce checks",5,{"reason":197,"points":195},"No capability checks","2026-03-17T00:47:33.754Z",{"wat":200,"direct":205},{"assetPaths":201,"generatorPatterns":202,"scriptPaths":203,"versionParams":204},[],[],[],[],{"cssClasses":206,"htmlComments":207,"htmlAttributes":208,"restEndpoints":209,"jsGlobals":210,"shortcodeOutput":211},[],[],[],[],[],[]]