[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fV_aOgZDtozLeV9LA2aDOHOSm_UlJWaNDcC4IT2TGSE8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":141,"fingerprints":299},"tylr-slidr","Tylr Slidr","1.6","tylerc083","https:\u002F\u002Fprofiles.wordpress.org\u002Ftylerc083\u002F","\u003Cp>Tired of copying and pasting the object\u002Fiframe HTML from Flickr and other tools like FlickrSlidr? Then this plugin is for you. It is the easiest way to pull your flickr photos into WordPress.\u003C\u002Fp>\n\u003Cp>This plugin adds a button to the WYSIWYG. Once clicked, an inline popup will come up to allow you to enter the URL of the slideshow. It then creates a quicktag to add the slideshow, similar to Viper’s Quicktags.\u003C\u002Fp>\n","The Easiest Way to Pull Your Flickr Photos into Wordpress.",10,5610,0,"2010-01-20T02:44:00.000Z","2.9.2","2.6","",[19,20,21,22],"flickr","flickrslidr","photos","slideshow","http:\u002F\u002Ftylrslidr.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftylr-slidr.1.6.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},2,20,30,84,"2026-04-05T16:06:30.032Z",[36,58,84,102,120],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":55,"download_link":56,"security_score":57,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"meks-simple-flickr-widget","Meks Simple Flickr Widget","1.3","Meks","https:\u002F\u002Fprofiles.wordpress.org\u002Fmekshq\u002F","\u003Cp>Quickly display your Flickr photos inside WordPress widget. No authorization required (only provide your user id).\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>No authorization required (only provide your user id)\u003C\u002Fli>\n\u003Cli>Support both user Flickr users and Flickr groups \u003C\u002Fli>\n\u003Cli>Change thumbnail size\u003C\u002Fli>\n\u003Cli>Caching system integrated for better performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Simple Flickr Widget plugin is created by \u003Ca href=\"https:\u002F\u002Fmekshq.com\" rel=\"nofollow ugc\">Meks\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Live example?\u003C\u002Fh3>\n\u003Cp>You can see Simple Flickr Widget live example on our \u003Ca href=\"https:\u002F\u002Fmekshq.com\u002Fdemo\u002Fvoice\" rel=\"nofollow ugc\">Voice theme demo website\u003C\u002Fa>\u003C\u002Fp>\n","Quickly display your Flickr photos inside WordPress widget.",20000,405991,86,3,"2024-07-29T12:33:00.000Z","6.6.5","3.0",[19,21,52,53,54],"photostream","sidebar","widget","https:\u002F\u002Fmekshq.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmeks-simple-flickr-widget.zip",92,{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":80,"download_link":81,"security_score":33,"vuln_count":82,"unpatched_count":13,"last_vuln_date":83,"fetched_at":27},"embed-google-photos-album-easily","Embed Google Photos album","2.2.1","pavex","https:\u002F\u002Fprofiles.wordpress.org\u002Fpavex\u002F","\u003Cp>This plugin requires a shared Google Photos album link to view photos using gallery\u002Fplayer or carousel. This widget is free to use for WordPress users.\u003C\u002Fp>\n\u003Cp>It is very easy to use. Just write a \u003Cstrong>shortcode\u003C\u002Fstrong> to your post and include a link of shared Google Photos album as a parameter. Instead of shortcode, html code with links to the photo will be inserted and it will be decorated using Public album javascript.\u003C\u002Fp>\n\u003Ch3>Example\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\"]\n\n[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\" mode=\"carousel\"]\n\n[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\" mediaitems-cover=\"true\"]\n\n[embed-google-photos-album link=\"https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5\" background-color=\"#007acc\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cul>\n\u003Cli>\u003Cstrong>link\u003C\u002Fstrong> – [string] public link of Google Photos album\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mode\u003C\u002Fstrong> – [carousel | gallery-player] setup decorator mode, default id \u003Ccode>gallery-player\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>width\u003C\u002Fstrong> – [int | ‘auto’] set widget width in pixel or “auto” to stretch to 100%\u003C\u002Fli>\n\u003Cli>\u003Cstrong>height\u003C\u002Fstrong> – [int | ‘auto’] set widget height in pixels or “auto” to stretch to 100%\u003C\u002Fli>\n\u003Cli>\u003Cstrong>image-width\u003C\u002Fstrong> – [int] image max-width in pixels, default is 1920\u003C\u002Fli>\n\u003Cli>\u003Cstrong>image-height\u003C\u002Fstrong> – [int] image max-height in pixels, default is 1080\u003C\u002Fli>\n\u003Cli>\u003Cstrong>autoplay\u003C\u002Fstrong> – [true | false] start slideshow in normal view (currently not allowed by decorator)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>delay\u003C\u002Fstrong> – [true | false] slideshow delay in seconds, default is 5 seconds.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>repeat\u003C\u002Fstrong> – [true | false] Enable or disable repeat slideshow, delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-aspectration\u003C\u002Fstrong> – [true | false], Keep asspect ration of images delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-enlarge\u003C\u002Fstrong> – [true | false], Turn on\u002Foff image enlarge, delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-stretch\u003C\u002Fstrong> – [true | false], Tunr on\u002Foff image stretch, delfault is \u003Ccode>true\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>mediaitems-cover\u003C\u002Fstrong> – [true | false], Cover full canvas. Combine with aspect ratio parameter. Delfault is \u003Ccode>false\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>background-color\u003C\u002Fstrong> – [#RRGGBB | transparent], Setup background color to RGB or transparent. Default is \u003Ccode>#000000\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>expiration\u003C\u002Fstrong> – [int] setup expiration timeout in secons; default is 0; min. custom value is 86400s (experimental property)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This widget, unsupported some features like a picture’s timestamp and captions. For a more detailed description of the component, go to \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fwordpress-google-photos-album-plugin\" rel=\"nofollow ugc\">WordPress Google Photos album plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>In some cases, it may be better to use the following code directly in the template.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\n    echo (new Pavex_embed_google_photos_album()) -> getcode(\n        'https:\u002F\u002Fphotos.app.goo.gl\u002FCSV7NDstShTUwUZq5', 0, 480, 1920, 1080\n    );\n?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>How do I update my album?\u003C\u002Fh3>\n\u003Cp>The album will update automatically as soon as you save or update your post.\u003C\u002Fp>\n\u003Ch3>Javascript decorator\u003C\u002Fh3>\n\u003Cp>External javascript decorator is stored on CDN and loading and running of them is \u003Cstrong>optimized for performance\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Javascript widget can be used without photos from Google photos. Detailed information on how to use javascript is available in one of older posts about \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fcarousel-slideshow-gallery-widget-july-update\" rel=\"nofollow ugc\">carusel slideshow\u003C\u002Fa> on my blog.\u003C\u002Fp>\n\u003Ch3>About Public album photo sharing website\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Public album\u003C\u002Fstrong> is now a \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fphoto-sharing-website\" rel=\"nofollow ugc\">photo sharing website\u003C\u002Fa> and service for sharing short photosets available in single user profile.\u003C\u002Fp>\n\u003Cp>The service can also be used as an alternative to \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fpublic-google-photos\" rel=\"nofollow ugc\">public Google Photos\u003C\u002Fa>. It is very suitable for the blogs focused mainly on photos. For example, a \u003Cstrong>photoblog\u003C\u002Fstrong> or a \u003Ca href=\"https:\u002F\u002Fwww.reabr.com\" rel=\"nofollow ugc\">\u003Cstrong>online bookmark manager\u003C\u002Fstrong>\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Important links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Public album sharing website\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.publicalbum.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blog\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.publicalbum.org\u002Fblog\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Facebook\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fpublicalbumapp\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.facebook.com\u002Fpublicalbumapp\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reabr.com\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.reabr.com\" rel=\"nofollow ugc\">online bookmark manager\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Embed Google Photos album using Player widget.",4000,45666,88,15,"2024-03-19T10:32:00.000Z","6.4.8","5.0","5.3",[75,76,77,78,79],"carousel-slideshow","embed-gallery","embed-google-photos","google-photos","wordpress-carousel","https:\u002F\u002Fwww.publicalbum.org\u002Fblog\u002Fembedding-google-photos-albums","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembed-google-photos-album-easily.zip",1,"2024-04-22 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":30,"last_updated":95,"tested_up_to":96,"requires_at_least":97,"requires_php":17,"tags":98,"homepage":17,"download_link":101,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"tz-flickr-widget","TZ Flickr Widget","1.0.3","tuyennv","https:\u002F\u002Fprofiles.wordpress.org\u002Ftuyennv\u002F","\u003Cp>This is a simple widget to display your Flickr latest photostream in widget area using Pretty Photo to open gallery images.\u003Cbr \u002F>\nYou can get your Flickr ID at http:\u002F\u002Fidgettr.com\u002F.\u003Cbr \u002F>\nWith its very beautiful widget interface, tabbed system, and powered by jQuery makes this plugin easier to customize.\u003Cbr \u002F>\nJust put your Flickr ID and your widget will be ready to lunch.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>Features & Options\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Beautiful widget interface\u003C\u002Fli>\n\u003Cli>The type of images from user id.\u003C\u002Fli>\n\u003Cli>Get the latest image.\u003C\u002Fli>\n\u003Cli>Put your number images you want to display.\u003C\u002Fli>\n\u003Cli>Optional image sizes.\u003C\u002Fli>\n\u003Cli>PrettyPhoto for image thumb.\u003C\u002Fli>\n\u003Cli>Free supports.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>Note: If you don’t know your ID of Flickr you can go to http:\u002F\u002Fidgettr.com\u002F get your ID.\u003C\u002Fp>\n","Plugin has get your Flickr photostream in a sidebar easily without authentication.",600,21474,100,"2015-08-24T08:33:00.000Z","4.2.39","3.0.1",[99,100,19,52,54],"badge","feed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftz-flickr-widget.zip",{"slug":103,"name":104,"version":39,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":30,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":17,"tags":115,"homepage":118,"download_link":119,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"quick-flickr-widget","Quick Flickr Widget","Konstantin Kovshenin","https:\u002F\u002Fprofiles.wordpress.org\u002Fkovshenin\u002F","\u003Cp>Use this widget to display your Flickr photos in your sidebar, via a Flickr username or a Flickr RSS feed URL.\u003C\u002Fp>\n","Display your Flickr photos in your sidebar.",400,57922,60,"2012-07-25T06:52:00.000Z","3.4.2","3.3",[19,116,117,21,54],"gallery","photo","http:\u002F\u002Fkovshenin.com\u002Fwordpress\u002Fplugins\u002Fquick-flickr-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquick-flickr-widget.1.3.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":30,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":17,"tags":134,"homepage":137,"download_link":138,"security_score":139,"vuln_count":82,"unpatched_count":82,"last_vuln_date":140,"fetched_at":27},"gpp-slideshow","GPP Slideshow","1.3.5","Thad Allender","https:\u002F\u002Fprofiles.wordpress.org\u002Fendortrails\u002F","\u003Cp>The GPP Slideshow plugin for WordPress allows you to create minimalist image slideshows using the new Gallery post type or using WordPress’ built in [gallery] shortcode on Posts and Pages.  The plugin comes with a  Widget for easily inserting a specific gallery into any widgetized are on your theme.  This plugin requires WordPress 3.1 and works best with \u003Ca href=\"http:\u002F\u002Fgraphpaperpress.com\u002Fthemes\u002F\" rel=\"nofollow ugc\">a Graph Paper Press theme\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fdemo.graphpaperpress.com\u002Fgpp-slideshow\u002F\" rel=\"nofollow ugc\">Live demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fgraphpaperpress.com\u002Fplugins\u002Fgpp-slideshow\u002F\" rel=\"nofollow ugc\">Release info\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fgraphpaperpress.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">Support\u003C\u002Fa>\u003C\u002Fp>\n","A minimalist slideshow plugin that creates a new gallery post type. Add slideshows to widgets, posts, pages and gallery posts.",200,69652,50,"2014-01-07T08:13:00.000Z","3.7.41","3.5",[116,135,21,136,22],"images","portfolio","http:\u002F\u002Fgraphpaperpress.com\u002Fplugins\u002Fgpp-slideshow\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgpp-slideshow.1.3.5.zip",63,"2025-06-05 00:00:00",{"attackSurface":142,"codeSignals":211,"taintFlows":264,"riskAssessment":292,"analyzedAt":298},{"hooks":143,"ajaxHandlers":204,"restRoutes":205,"shortcodes":206,"cronEvents":210,"entryPointCount":82,"unprotectedCount":13},[144,150,155,159,163,166,170,175,177,180,183,187,190,193,196,200],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_menu","RegisterSettingsPage","tylr-slidr.php",98,{"type":151,"name":152,"callback":153,"priority":11,"file":148,"line":154},"filter","plugin_action_links","AddPluginActionLink",99,{"type":145,"name":156,"callback":157,"file":148,"line":158},"admin_post_tssettings","POSTHandler",101,{"type":145,"name":160,"callback":161,"file":148,"line":162},"wp_head","Head",102,{"type":145,"name":164,"callback":161,"file":148,"line":165},"admin_head",103,{"type":145,"name":167,"callback":168,"priority":69,"file":148,"line":169},"the_content","SWFObjectCalls",104,{"type":151,"name":171,"callback":172,"priority":173,"file":148,"line":174},"widget_text","do_shortcode",11,105,{"type":145,"name":171,"callback":168,"priority":69,"file":148,"line":176},106,{"type":151,"name":178,"callback":178,"file":148,"line":179},"tiny_mce_version",112,{"type":151,"name":181,"callback":181,"file":148,"line":182},"mce_external_plugins",113,{"type":145,"name":184,"callback":185,"file":148,"line":186},"edit_form_advanced","AddQuicktagsAndFunctions",114,{"type":145,"name":188,"callback":185,"file":148,"line":189},"edit_page_form",115,{"type":151,"name":191,"callback":191,"file":148,"line":192},"mce_buttons",117,{"type":145,"name":164,"callback":194,"file":148,"line":195},"EditorCSS",132,{"type":145,"name":197,"callback":198,"file":148,"line":199},"admin_footer","OutputjQueryDialogDiv",133,{"type":145,"name":201,"callback":202,"file":148,"line":203},"plugins_loaded","TylrSlidr",802,[],[],[207],{"tag":4,"callback":208,"file":148,"line":209},"shortcode_tylrslidr",122,[],{"dangerousFunctions":212,"sqlUsage":213,"outputEscaping":215,"fileOperations":13,"externalRequests":13,"nonceChecks":82,"capabilityChecks":82,"bundledLibraries":260},[],{"prepared":13,"raw":13,"locations":214},[],{"escaped":13,"rawEcho":216,"locations":217},21,[218,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,254,256,258],{"file":148,"line":219,"context":220},208,"raw output",{"file":148,"line":222,"context":220},228,{"file":148,"line":224,"context":220},263,{"file":148,"line":226,"context":220},269,{"file":148,"line":228,"context":220},282,{"file":148,"line":230,"context":220},288,{"file":148,"line":232,"context":220},302,{"file":148,"line":234,"context":220},304,{"file":148,"line":236,"context":220},408,{"file":148,"line":238,"context":220},409,{"file":148,"line":240,"context":220},421,{"file":148,"line":242,"context":220},430,{"file":148,"line":244,"context":220},434,{"file":148,"line":246,"context":220},437,{"file":148,"line":248,"context":220},444,{"file":148,"line":250,"context":220},579,{"file":148,"line":252,"context":220},601,{"file":148,"line":252,"context":220},{"file":148,"line":255,"context":220},602,{"file":148,"line":257,"context":220},612,{"file":148,"line":259,"context":220},691,[261],{"name":262,"version":26,"knownCves":263},"TinyMCE",[],[265,284],{"entryPoint":266,"graph":267,"unsanitizedCount":13,"severity":283},"POSTHandler (tylr-slidr.php:331)",{"nodes":268,"edges":280},[269,274],{"id":270,"type":271,"label":272,"file":148,"line":273},"n0","source","$_POST",371,{"id":275,"type":276,"label":277,"file":148,"line":278,"wp_function":279},"n1","sink","wp_redirect() [Open Redirect]",377,"wp_redirect",[281],{"from":270,"to":275,"sanitized":282},true,"low",{"entryPoint":285,"graph":286,"unsanitizedCount":13,"severity":283},"\u003Ctylr-slidr> (tylr-slidr.php:0)",{"nodes":287,"edges":290},[288,289],{"id":270,"type":271,"label":272,"file":148,"line":273},{"id":275,"type":276,"label":277,"file":148,"line":278,"wp_function":279},[291],{"from":270,"to":275,"sanitized":282},{"summary":293,"deductions":294},"The 'tylr-slidr' plugin version 1.6 exhibits a generally positive security posture based on the provided static analysis. The absence of known vulnerabilities and CVEs, combined with the presence of nonce and capability checks, suggests a development team that is mindful of security best practices. The plugin also demonstrates good data handling by exclusively using prepared statements for its SQL queries, mitigating the risk of SQL injection. \n\nHowever, a significant concern arises from the complete lack of output escaping. With 21 total output points and 0% properly escaped, this presents a high risk for Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is displayed on the front-end or admin area without proper sanitization can be exploited by attackers to inject malicious scripts. While the attack surface is small and there are no reported vulnerabilities, this lack of output escaping is a critical oversight that could be easily exploited.\n\nIn conclusion, the plugin has strengths in its lack of known vulnerabilities and secure SQL practices. Nevertheless, the pervasive issue of unescaped output significantly undermines its overall security, making it susceptible to XSS attacks. Addressing the output escaping is paramount to improving its security. The bundled TinyMCE library is a common component and not inherently a security risk unless outdated versions are present, which is not indicated here.",[295],{"reason":296,"points":297},"0% output properly escaped",8,"2026-03-16T23:58:26.819Z",{"wat":300,"direct":321},{"assetPaths":301,"generatorPatterns":308,"scriptPaths":309,"versionParams":315},[302,303,304,305,306,307],"\u002Fwp-content\u002Fplugins\u002Ftylr-slidr\u002Fresources\u002Fswfobject.v.2.2.js","\u002Fwp-content\u002Fplugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.core.js","\u002Fwp-content\u002Fplugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.draggable.js","\u002Fwp-content\u002Fplugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.resizable.js","\u002Fwp-content\u002Fplugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.dialog.js","\u002Fwp-content\u002Fplugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fts-jquery-ui.css",[],[310,311,312,313,314],"plugins\u002Ftylr-slidr\u002Fresources\u002Fswfobject.v.2.2.js","plugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.core.js","plugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.draggable.js","plugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.resizable.js","plugins\u002Ftylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.dialog.js",[316,317,318,319,320],"tylr-slidr\u002Fresources\u002Fswfobject.v.2.2.js?ver=","tylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.core.js?ver=","tylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.resizable.js?ver=","tylr-slidr\u002Fresources\u002Fjquery-ui\u002Fui.dialog.js?ver=","tylr-slidr\u002Fresources\u002Fjquery-ui\u002Fts-jquery-ui.css?ver=",{"cssClasses":322,"htmlComments":324,"htmlAttributes":326,"restEndpoints":327,"jsGlobals":328,"shortcodeOutput":330},[323],"ts-jquery-ui",[325],"\u002F*\n\n**************************************************************************\n\nPlugin Name:  Tylr Slidr\nPlugin URI:   http:\u002F\u002Ftylrslidr.com\nDescription:  The Easiest Way to Pull Your Flickr Photos into Wordpress.\nVersion:      1.6\nAuthor:       Tyler Craft\nAuthor URI:   http:\u002F\u002Fwww.tylercraft.com\u002F\n\n**************************************************************************\n\nCopyright (C) 2008 tylercraft.com\n\nThis program is free software: you can redistribute it and\u002For modify\nit under the terms of the GNU General Public License as published by\nthe Free Software Foundation, either version 3 of the License, or\n(at your option) any later version.\n\nThis program is distributed in the hope that it will be useful,\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\nGNU General Public License for more details.\n\nYou should have received a copy of the GNU General Public License\nalong with this program.  If not, see \u003Chttp:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F>.\n\n**************************************************************************\u002F",[],[],[329],"swfobject",[331],"[tylr-slidr]"]