[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fj9CmBD95Hh2AD0Wy_exWi29rbcuq2sjw70-xLtzX0tY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":63,"crawl_stats":37,"alternatives":69,"analysis":166,"fingerprints":570},"visitors-online","Visitors Online by BestWebSoft","1.1.6","bestweblayout","https:\u002F\u002Fprofiles.wordpress.org\u002Fbestweblayout\u002F","\u003Cp>Visitors Online plugin is a helpful tool which displays your website visitors count on WordPress admin dashboard or as a widget in the front-end.\u003Cbr \u002F>\nCustomize and manage your visitor statistic list, see how many visitors are on your website, and the highest level of visits.\u003C\u002Fp>\n\u003Cp>Start tracking your live traffic today!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdemo-visitors-online-for-wordpress\u002F?ref=readme\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F7e6LzyRzxwA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatically display visitor statistics on your dashboard\u003C\u002Fli>\n\u003Cli>Add visitor statistics to widgets\u003C\u002Fli>\n\u003Cli>Set the time when the visitor is considered being online without making any actions\u003C\u002Fli>\n\u003Cli>Customize the structure for data input\u003C\u002Fli>\n\u003Cli>Reset the statistics table\u003C\u002Fli>\n\u003Cli>Add custom code via plugin settings page\u003C\u002Fli>\n\u003Cli>Compatible with latest WordPress version\u003C\u002Fli>\n\u003Cli>Incredibly simple settings for fast setup without modifying code\u003C\u002Fli>\n\u003Cli>Detailed step-by-step documentation and videos\u003C\u002Fli>\n\u003Cli>Multilingual and RTL ready\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All features from Free version included plus:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically download and update list of countries and IP addresses\u003C\u002Fli>\n\u003Cli>Display detailed user information\u003C\u002Fli>\n\u003Cli>Displays online users\u003C\u002Fli>\n\u003Cli>Get answer to your question within one business day (\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fsupport-policy\u002F\" rel=\"nofollow ugc\">Support Policy\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fvisitors-online\u002F?k=a58d73e5dee0c701959b47ea355c6e5b\" rel=\"nofollow ugc\">Upgrade to Pro Now\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>If you have a feature suggestion or idea you’d like to see in the plugin, we’d love to hear about it! \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Documentation & Videos\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.google.com\u002Fdocument\u002Fd\u002F1FaTnRsYs64adPiRz_REGH9u0pOPz2flCL4gi49qdfaw\" rel=\"nofollow ugc\">[Doc] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.google.com\u002Fdocument\u002Fd\u002F1-hvn6WRvWnOqj5v5pLUk7Awyu87lq5B_dO-Tv-MC9JQ\u002F\" rel=\"nofollow ugc\">[Doc] Installation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.google.com\u002Fdocument\u002Fd\u002F1EUdBVvnm7IHZ6y0DNyldZypUQKpB8UVPToSc_LdOYQI\u002F\" rel=\"nofollow ugc\">[Doc] Purchase\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=izPS7Tbgxqg\" rel=\"nofollow ugc\">[Video] Installation Instruction\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Help & Support\u003C\u002Fh4>\n\u003Cp>Visit our Help Center if you have any questions, our friendly Support Team is happy to help — \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fsupport.bestwebsoft.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Arabic (ar) (thanks to \u003Ca href=\"mailto:support@saidmoulla.com\" rel=\"nofollow ugc\">Said Moulla\u003C\u002Fa>, www.SaidMoulla.com)\u003C\u002Fli>\n\u003Cli>Czech (cs_CZ) (thanks to \u003Ca href=\"mailto:info@pamadessoft.cz\" rel=\"nofollow ugc\">PaMaDeSSoft\u003C\u002Fa>, www.pamadessoft.cz)\u003C\u002Fli>\n\u003Cli>Italian (it_IT) (thanks to \u003Ca href=\"mailto:dromar030186@gmail.com\" rel=\"nofollow ugc\">Dromar\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Russian (ru_RU)\u003C\u002Fli>\n\u003Cli>Ukrainian (uk)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Some of these translations are not complete. We are constantly adding new features which should be translated. If you would like to create your own language pack or update the existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">the text of PO and MO files\u003C\u002Fa> to \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">BestWebSoft\u003C\u002Fa> and we’ll add it to the plugin. You can download the latest version of the program for work with PO and MO \u003Ca href=\"https:\u002F\u002Fwww.poedit.net\u002Fdownload.php\" rel=\"nofollow ugc\">files Poedit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fupdater\u002F?k=c2bb0350098ca869742b01301148f8f8\" rel=\"nofollow ugc\">Updater\u003C\u002Fa> – Automatically check and update WordPress website core with all installed plugins and themes to the latest versions.\u003C\u002Fli>\n\u003C\u002Ful>\n","Display live count of online visitors who are currently browsing your WordPress website.",1000,82113,70,11,"2025-06-09T12:27:00.000Z","6.8.5","5.6","",[20,21,22,4,23],"count-visitor","guests","guests-counter","visitors-online-plugin","https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fvisitors-online\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvisitors-online.1.1.6.zip",98,2,0,"2017-04-12 00:00:00","2026-03-15T15:16:48.613Z",[32,48],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2017-18537","visitors-online-by-bestwebsoft-reflected-cross-site-scripting","Visitors Online by BestWebSoft \u003C 1.0.0 - Reflected Cross-Site Scripting","The Visitors plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 0.9 due to insufficient input sanitization and output escaping on the 'category' parameter. This makes it possible for unauthenticated attackers to inject arbitrary web scripts that execute in a victim's browser granted they can trick a victim into performing an action, such as clicking on a link.",null,"\u003C1.0.0","1.0.0","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F9032d416-28d1-4fdc-ac95-ba807df165a2?source=api-prod",2477,{"id":49,"url_slug":50,"title":51,"description":52,"plugin_slug":4,"theme_slug":37,"affected_versions":53,"patched_in_version":54,"severity":55,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":44,"references":60,"days_to_patch":62},"CVE-2015-9325","visitors-online-by-bestwebsoft-sql-injection","Visitors Online by BestWebSoft \u003C= 0.3 - SQL Injection","The Visitors Online by BestWebSoft plugin for WordPress is vulnerable to generic SQL Injection in versions up to, and including, 0.3 due to insufficient escaping on the user-supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","\u003C=0.3","0.4","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2015-10-26 00:00:00",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F5dfa4ddf-bbe7-49b1-8b0d-c030ae81d0e8?source=api-prod",3011,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":64,"total_installs":65,"avg_security_score":26,"avg_patch_time_days":66,"trust_score":67,"computed_at":68},32,16570,1944,78,"2026-04-04T21:17:17.205Z",[70,90,113,128,147],{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":11,"downloaded":78,"rating":79,"num_ratings":80,"last_updated":81,"tested_up_to":16,"requires_at_least":82,"requires_php":18,"tags":83,"homepage":88,"download_link":89,"security_score":79,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"seriously-simple-speakers","Seriously Simple Speakers","1.2.0","Craig Hewitt","https:\u002F\u002Fprofiles.wordpress.org\u002Fpodcastmotor\u002F","\u003Cblockquote>\n\u003Cp>This plugin is an add-on for \u003Ca href=\"https:\u002F\u002Fwww.seriouslysimplepodcasting.com\u002F\" rel=\"nofollow ugc\">Seriously Simple Podcasting\u003C\u002Fa> and requires at least \u003Cstrong>v1.14\u003C\u002Fstrong> of Seriously Simple Podcasting in order to work.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>Does your podcast have a number of different speakers? Or maybe a different guest each week? Perhaps you have unique hosts for each episode? If any of those options describe your podcast then this is the add-on for you!\u003C\u002Fp>\n\u003Cp>Seriously Simple Speakers allows you to add one or more speakers to each of your episodes – the speakers are setup as a new taxonomy (not users), making them easily searchable as well as giving them their own archive pages out of the box.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Primary Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Allows you to add any number of speakers to your podcast episodes\u003C\u002Fli>\n\u003Cli>Adds a new \u003Ccode>speaker\u003C\u002Fcode> taxonomy to all podcast post types\u003C\u002Fli>\n\u003Cli>Displays speakers in the episode details with links to speaker archives\u003C\u002Fli>\n\u003Cli>Add speakers \u003Cem>without\u003C\u002Fem> adding a new user for each speaker\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>How to contribute\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you want to contribute to Seriously Simple Speakers, you can \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fhlashbrooke\u002FSeriously-Simple-Speakers\" rel=\"nofollow ugc\">fork the GitHub repository\u003C\u002Fa> – all pull requests will be reviewed and merged if they fit into the goals for the plugin.\u003C\u002Fp>\n","Add speakers to your Seriously Simple Podcasting episodes.",18709,100,3,"2025-04-29T12:38:00.000Z","4.4",[21,84,85,86,87],"hosts","podcast","seriously-simple-podcasting","speakers","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fseriously-simple-speakers","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fseriously-simple-speakers.1.2.0.zip",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":98,"downloaded":99,"rating":100,"num_ratings":101,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":18,"tags":105,"homepage":18,"download_link":111,"security_score":112,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"simple-visitor-counter-widget","Simple Visitor Counter","1.0","plugindeveloper112","https:\u002F\u002Fprofiles.wordpress.org\u002Fplugindeveloper112\u002F","\u003Cp>The Simple Visitor Counter widget displays a daily, weekly and monthly visitor count. Count your up to date traffic safely and show your current visitors.\u003Cbr \u002F>\nMore info? Visit: \u003Ca href=\"http:\u002F\u002Fsimplevisitorcounter.info\" rel=\"nofollow ugc\">simplevisitorcounter.info\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can simply download and install the Simple Visitor Counter widget through the WordPress directory and install it in any widget, sidebar or footer that your theme allows.\u003C\u002Fp>\n\u003Cp>The Best Visitor Counter Plugin for WP:\u003Cbr \u002F>\nFully-compatible with WordPress!\u003C\u002Fp>\n\u003Cp>Easy to use and setup in seconds\u003C\u002Fp>\n\u003Cp>Downloading the Simple Visitor Counter widget is super easy. Simply click on the download and extract the documents from the .zip file.\u003C\u002Fp>\n\u003Cp>No third-parties required!\u003Cbr \u002F>\nIt’s FREE!\u003C\u002Fp>\n\u003Cp>There is no sign up or signing in to to any service.\u003Cbr \u002F>\nDownload the Simple Visitor Counter now to start promoting the traffic you have on your website!\u003C\u002Fp>\n","The Simple Visitor Counter widget displays a daily, weekly and monthly visitor count. Count your up to date traffic safely and show your current visit &hellip;",800,32906,90,6,"2017-02-09T20:50:00.000Z","4.7.32","3.0.1",[106,107,108,109,110],"count-visitors","count-website-visitors","counter","counter-visitors","visitor-counter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-visitor-counter-widget.zip",85,{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":79,"num_ratings":123,"last_updated":124,"tested_up_to":103,"requires_at_least":125,"requires_php":18,"tags":126,"homepage":18,"download_link":127,"security_score":112,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"awesome-visitor-counter","Awesome Visitor Counter","2.0","Raihanul Islam","https:\u002F\u002Fprofiles.wordpress.org\u002Fraihancse\u002F","\u003Cp>Simply download and install our Visitor Counter Plugin through the WordPress directory and install in in any widget, sidebar or footer that your theme allows. You will be able to track, analyze and even print the results for personal documentation. Sit back and watch the counter rise with every visit.\u003C\u002Fp>\n\u003Cp>The Best Visitor Counter Plugin for WP.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>You may provide arbitrary sections, in the same format as the ones above.  This may be of use for extremely complicated\u003Cbr \u002F>\nplugins where more information needs to be conveyed that doesn’t fit into the categories of “description” or\u003Cbr \u002F>\n“installation.”  Arbitrary sections will be shown below the built-in sections outlined above.\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Cp>Ordered list:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Some feature\u003C\u002Fli>\n\u003Cli>Another feature\u003C\u002Fli>\n\u003Cli>Something else about the plugin\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Unordered list:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>something\u003C\u002Fli>\n\u003Cli>something else\u003C\u002Fli>\n\u003Cli>third thing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Here’s a link to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002F\" title=\"Your favorite software\" rel=\"ugc\">WordPress\u003C\u002Fa> and one to \u003Ca href=\"http:\u002F\u002Fdaringfireball.net\u002Fprojects\u002Fmarkdown\u002Fsyntax\" title=\"Markdown is what the parser uses to process much of the readme file\" rel=\"nofollow ugc\">Markdown’s Syntax Documentation\u003C\u002Fa>.\u003Cbr \u002F>\nTitles are optional, naturally.\u003C\u002Fp>\n\u003Cp>Markdown uses email style notation for blockquotes and I’ve been told:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Asterisks for \u003Cem>emphasis\u003C\u002Fem>. Double it up  for \u003Cstrong>strong\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cpre>\u003Ccode>\u003C?php code(); \u002F\u002F goes in backticks ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Visitor Counter Plugin to display daily, weekly and monthly visitor count. Count your traffic safely and show your visitors.",300,12726,1,"2019-06-16T05:47:00.000Z","4.6",[106,107,108,109,110],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawesome-visitor-counter.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":13,"downloaded":136,"rating":79,"num_ratings":80,"last_updated":137,"tested_up_to":138,"requires_at_least":139,"requires_php":18,"tags":140,"homepage":145,"download_link":146,"security_score":79,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"wedding-party-rsvp","Wedding Party RSVP","7.3.2","Randy Breland","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrelandr\u002F","\u003Cp>Wedding Party RSVP is a streamlined solution for managing wedding guest lists and RSVPs directly inside WordPress.\u003C\u002Fp>\n\u003Ch3>Try It Live – Preview This Plugin Instantly\u003C\u002Fh3>\n\u003Cp>Experience Wedding Party RSVP without installation! Click the link below to open WordPress Playground with the plugin pre-installed and configured with sample data.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fplayground.wordpress.net\u002F?blueprint-url=https:\u002F\u002Fraw.githubusercontent.com\u002Fbrelandr\u002Fwedding-party-rsvp\u002Fmain\u002Fblueprint.json\" rel=\"nofollow ugc\">Preview on WordPress Playground\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>How to Purchase Pro\u003C\u002Fh3>\n\u003Cp>Go to https:\u002F\u002Flandtechwebdesigns.com\u002Fwedding-party-rsvp-wordpress-plugin\u002F\u003C\u002Fp>\n\u003Cp>Purchase the license key to unlock the full suite of features.\u003C\u002Fp>\n","A simple and secure Wedding RSVP management system. Manage unlimited guests and adult meal choices.",638,"2026-03-14T16:50:00.000Z","6.9.4","6.0",[21,141,142,143,144],"invitation","party","rsvp","wedding","https:\u002F\u002Flandtechwebdesigns.com\u002Fwedding-party-rsvp-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwedding-party-rsvp.7.3.2.zip",{"slug":148,"name":149,"version":150,"author":151,"author_profile":152,"description":153,"short_description":154,"active_installs":155,"downloaded":156,"rating":155,"num_ratings":123,"last_updated":157,"tested_up_to":158,"requires_at_least":159,"requires_php":160,"tags":161,"homepage":18,"download_link":164,"security_score":165,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"rsvp-manager","RSVP Manager","1.3","Codeverse","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodeverse93\u002F","\u003Cp>A simple and lightweight plugin for managing private event RSVPs effortlessly. Ideal for events with a user-friendly interface and minimal setup.\u003C\u002Fp>\n\u003Cp>In the WordPress admin console you have the following features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View the event you want the attendees to rsvp.\u003C\u002Fli>\n\u003Cli>Edit the details of the event, including name, start & end date time for rsvp.\u003C\u002Fli>\n\u003Cli>View the list of attendees.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For attendees you have the following options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View the details of the attendee.\u003C\u002Fli>\n\u003Cli>View the RSVP status, RSVP date and custom message.\u003C\u002Fli>\n\u003Cli>Add a new attendee.\u003C\u002Fli>\n\u003Cli>Add related attendees for an attendee.\u003C\u002Fli>\n\u003Cli>Reciprocal attendee associations.\u003C\u002Fli>\n\u003Cli>Update an attendee.\u003C\u002Fli>\n\u003Cli>Delete an attendee.\u003C\u002Fli>\n\u003Cli>Bulk delete attendees.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For the UI, you have options to customize the following labels:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The message displayed when the RSVP is not open.\u003C\u002Fli>\n\u003Cli>The message displayed when the RSVP is already closed.\u003C\u002Fli>\n\u003Cli>The message displayed above the search form.\u003C\u002Fli>\n\u003Cli>“Firt name” label.\u003C\u002Fli>\n\u003Cli>“Last name” label.\u003C\u002Fli>\n\u003Cli>Search button leabel.\u003C\u002Fli>\n\u003Cli>Error displayed when no first and\u002For last name is provided.\u003C\u002Fli>\n\u003Cli>RSVP button label.\u003C\u002Fli>\n\u003Cli>The message displayed when the user already did the RSVP.\u003C\u002Fli>\n\u003Cli>Positive answer label for already RSVP.\u003C\u002Fli>\n\u003Cli>Negative answer label for already RSVP.\u003C\u002Fli>\n\u003Cli>Welcome label in the RSVP form.\u003C\u002Fli>\n\u003Cli>RSVP question.\u003C\u002Fli>\n\u003Cli>RSVP positive answer.\u003C\u002Fli>\n\u003Cli>RSVP nevative answer.\u003C\u002Fli>\n\u003Cli>Custom message label.\u003C\u002Fli>\n\u003Cli>Related attendees info message.\u003C\u002Fli>\n\u003Cli>Related attendees RSVP question.\u003C\u002Fli>\n\u003Cli>Confirmation button label in the RSVP form.\u003C\u002Fli>\n\u003Cli>RSVP positive confirmation message.\u003C\u002Fli>\n\u003Cli>RSVP negative confirmation message.\u003C\u002Fli>\n\u003C\u002Ful>\n","Enhance your event management with RSVP tracking, attendee relationships and customizable labels. Perfect for managing guest lists seamlessly.",20,1292,"2024-11-08T07:09:00.000Z","6.6.5","4.7.19","7.4.19",[162,163,21,143,144],"attendees","event-manager","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frsvp-manager.1.3.zip",92,{"attackSurface":167,"codeSignals":302,"taintFlows":412,"riskAssessment":554,"analyzedAt":569},{"hooks":168,"ajaxHandlers":264,"restRoutes":284,"shortcodes":285,"cronEvents":290,"entryPointCount":101,"unprotectedCount":27},[169,176,180,184,189,193,197,201,206,210,215,219,222,226,229,233,237,241,245,249,253,257,261],{"type":170,"name":171,"callback":172,"priority":173,"file":174,"line":175},"filter","load_textdomain_mofile","bws_get_mofile",10,"bws_menu\\bws_functions.php",43,{"type":170,"name":177,"callback":178,"file":174,"line":179},"mce_external_plugins","bws_add_buttons",1294,{"type":170,"name":181,"callback":182,"file":174,"line":183},"mce_buttons","bws_register_buttons",1295,{"type":185,"name":186,"callback":187,"file":174,"line":188},"action","admin_init","bws_plugins_admin_init",1581,{"type":185,"name":190,"callback":191,"file":174,"line":192},"admin_enqueue_scripts","bws_admin_enqueue_scripts",1582,{"type":185,"name":194,"callback":195,"file":174,"line":196},"admin_head","bws_plugins_admin_head",1583,{"type":185,"name":198,"callback":199,"file":174,"line":200},"admin_footer","bws_plugins_admin_footer",1584,{"type":185,"name":202,"callback":203,"priority":204,"file":174,"line":205},"admin_notices","bws_admin_notices",30,1586,{"type":185,"name":207,"callback":208,"priority":155,"file":174,"line":209},"wp_enqueue_scripts","bws_enqueue_custom_code_css_js",1588,{"type":185,"name":211,"callback":212,"file":213,"line":214},"admin_menu","vstrsnln_admin_menu","visitors-online.php",1390,{"type":185,"name":216,"callback":217,"file":213,"line":218},"init","vstrsnln_plugin_init",1391,{"type":185,"name":186,"callback":220,"file":213,"line":221},"vstrsnln_plugin_admin_init",1392,{"type":185,"name":223,"callback":224,"file":213,"line":225},"plugins_loaded","vstrsnln_plugins_loaded",1393,{"type":185,"name":190,"callback":227,"file":213,"line":228},"vstrsnln_admin_head",1395,{"type":185,"name":230,"callback":231,"file":213,"line":232},"vstrsnln_check_users","vstrsnln_check_user",1397,{"type":185,"name":234,"callback":235,"file":213,"line":236},"vstrsnln_count_visits_day","vstrsnln_write_max_visits",1399,{"type":170,"name":238,"callback":239,"file":213,"line":240},"cron_schedules","vstrsnln_add_user_interval",1401,{"type":170,"name":242,"callback":243,"file":213,"line":244},"bws_shortcode_button_content","vstrsnln_shortcode_button_content",1404,{"type":185,"name":246,"callback":247,"file":213,"line":248},"wp_dashboard_setup","vstrsnln_dashboard_widget",1406,{"type":185,"name":250,"callback":251,"file":213,"line":252},"widgets_init","vstrsnln_register_widget",1407,{"type":170,"name":254,"callback":255,"priority":173,"file":213,"line":256},"plugin_action_links","vstrsnln_plugin_action_links",1410,{"type":170,"name":258,"callback":259,"priority":173,"file":213,"line":260},"plugin_row_meta","vstrsnln_register_plugin_links",1411,{"type":185,"name":202,"callback":262,"file":213,"line":263},"vstrsnln_plugin_banner",1417,[265,271,275,278,281],{"action":266,"nopriv":267,"callback":266,"hasNonce":268,"hasCapCheck":267,"file":269,"line":270},"bws_submit_request_feature_action",false,true,"bws_menu\\class-bws-settings.php",1466,{"action":272,"nopriv":267,"callback":272,"hasNonce":268,"hasCapCheck":267,"file":273,"line":274},"bws_submit_uninstall_reason_action","bws_menu\\deactivation-form.php",433,{"action":276,"nopriv":267,"callback":276,"hasNonce":267,"hasCapCheck":267,"file":213,"line":277},"vstrsnln_count_rows",1413,{"action":279,"nopriv":267,"callback":279,"hasNonce":267,"hasCapCheck":267,"file":213,"line":280},"vstrsnln_insert_rows",1414,{"action":282,"nopriv":267,"callback":282,"hasNonce":268,"hasCapCheck":267,"file":213,"line":283},"vstrsnln_check_country",1415,[],[286],{"tag":287,"callback":288,"file":213,"line":289},"vstrsnln_info","vstrsnln_info_display",1402,[291,294,296,298,300],{"hook":230,"callback":230,"file":292,"line":293},"includes\\class-vstrsnln-settings.php",84,{"hook":230,"callback":230,"file":213,"line":295},286,{"hook":234,"callback":234,"file":213,"line":297},291,{"hook":230,"callback":230,"file":213,"line":299},302,{"hook":234,"callback":234,"file":213,"line":301},307,{"dangerousFunctions":303,"sqlUsage":304,"outputEscaping":369,"fileOperations":173,"externalRequests":101,"nonceChecks":410,"capabilityChecks":80,"bundledLibraries":411},[],{"prepared":204,"raw":305,"locations":306},29,[307,310,313,315,318,322,324,326,327,329,331,333,335,337,339,341,343,345,347,349,351,353,355,357,359,361,363,365,367],{"file":174,"line":308,"context":309},1558,"$wpdb->get_col() with variable interpolation",{"file":292,"line":311,"context":312},66,"$wpdb->query() with variable interpolation",{"file":292,"line":314,"context":312},67,{"file":292,"line":316,"context":317},68,"$wpdb->get_var() with variable interpolation",{"file":319,"line":320,"context":321},"includes\\import-country.php",42,"$wpdb->get_results() with variable interpolation",{"file":319,"line":323,"context":312},198,{"file":319,"line":325,"context":317},290,{"file":319,"line":297,"context":317},{"file":213,"line":328,"context":312},324,{"file":213,"line":330,"context":312},343,{"file":213,"line":332,"context":312},359,{"file":213,"line":334,"context":312},362,{"file":213,"line":336,"context":312},363,{"file":213,"line":338,"context":312},365,{"file":213,"line":340,"context":321},367,{"file":213,"line":342,"context":312},369,{"file":213,"line":344,"context":317},370,{"file":213,"line":346,"context":312},393,{"file":213,"line":348,"context":312},396,{"file":213,"line":350,"context":312},403,{"file":213,"line":352,"context":312},415,{"file":213,"line":354,"context":312},579,{"file":213,"line":356,"context":312},1237,{"file":213,"line":358,"context":309},1242,{"file":213,"line":360,"context":312},1259,{"file":213,"line":362,"context":312},1260,{"file":213,"line":364,"context":312},1261,{"file":213,"line":366,"context":321},1339,{"file":213,"line":368,"context":317},1352,{"escaped":370,"rawEcho":371,"locations":372},500,17,[373,376,378,380,382,385,387,389,391,393,395,397,399,401,403,405,407],{"file":174,"line":374,"context":375},170,"raw output",{"file":174,"line":377,"context":375},189,{"file":174,"line":379,"context":375},191,{"file":174,"line":381,"context":375},216,{"file":383,"line":384,"context":375},"bws_menu\\bws_menu.php",589,{"file":383,"line":386,"context":375},674,{"file":383,"line":388,"context":375},678,{"file":383,"line":390,"context":375},681,{"file":383,"line":392,"context":375},765,{"file":269,"line":394,"context":375},555,{"file":269,"line":396,"context":375},581,{"file":269,"line":398,"context":375},920,{"file":269,"line":400,"context":375},1203,{"file":269,"line":402,"context":375},1205,{"file":269,"line":404,"context":375},1207,{"file":269,"line":406,"context":375},1210,{"file":408,"line":409,"context":375},"bws_menu\\deprecated.php",131,27,[],[413,446,460,470,478,488,496,513,524,542],{"entryPoint":414,"graph":415,"unsanitizedCount":28,"severity":445},"bws_add_menu_render (bws_menu\\bws_menu.php:18)",{"nodes":416,"edges":441},[417,421,427,431,434,438],{"id":418,"type":419,"label":420,"file":383,"line":410},"n0","source","$_GET (x14)",{"id":422,"type":423,"label":424,"file":383,"line":425,"wp_function":426},"n1","sink","echo() [XSS]",374,"echo",{"id":428,"type":419,"label":429,"file":383,"line":430},"n2","$_POST (x2)",101,{"id":432,"type":423,"label":424,"file":383,"line":433,"wp_function":426},"n3",424,{"id":435,"type":419,"label":436,"file":383,"line":437},"n4","$_REQUEST (x2)",288,{"id":439,"type":423,"label":424,"file":383,"line":440,"wp_function":426},"n5",468,[442,443,444],{"from":418,"to":422,"sanitized":268},{"from":428,"to":432,"sanitized":268},{"from":435,"to":439,"sanitized":268},"low",{"entryPoint":447,"graph":448,"unsanitizedCount":28,"severity":445},"\u003Cbws_menu> (bws_menu\\bws_menu.php:0)",{"nodes":449,"edges":456},[450,451,452,453,454,455],{"id":418,"type":419,"label":420,"file":383,"line":410},{"id":422,"type":423,"label":424,"file":383,"line":425,"wp_function":426},{"id":428,"type":419,"label":429,"file":383,"line":430},{"id":432,"type":423,"label":424,"file":383,"line":433,"wp_function":426},{"id":435,"type":419,"label":436,"file":383,"line":437},{"id":439,"type":423,"label":424,"file":383,"line":440,"wp_function":426},[457,458,459],{"from":418,"to":422,"sanitized":268},{"from":428,"to":432,"sanitized":268},{"from":435,"to":439,"sanitized":268},{"entryPoint":461,"graph":462,"unsanitizedCount":28,"severity":445},"display_tabs (bws_menu\\class-bws-settings.php:291)",{"nodes":463,"edges":468},[464,467],{"id":418,"type":419,"label":465,"file":269,"line":466},"$_REQUEST['bws_active_tab']",301,{"id":422,"type":423,"label":424,"file":269,"line":466,"wp_function":426},[469],{"from":418,"to":422,"sanitized":268},{"entryPoint":471,"graph":472,"unsanitizedCount":28,"severity":445},"\u003Cclass-bws-settings> (bws_menu\\class-bws-settings.php:0)",{"nodes":473,"edges":476},[474,475],{"id":418,"type":419,"label":465,"file":269,"line":466},{"id":422,"type":423,"label":424,"file":269,"line":466,"wp_function":426},[477],{"from":418,"to":422,"sanitized":268},{"entryPoint":479,"graph":480,"unsanitizedCount":28,"severity":445},"bws_go_pro_tab_show (bws_menu\\deprecated.php:227)",{"nodes":481,"edges":486},[482,484],{"id":418,"type":419,"label":429,"file":408,"line":483},229,{"id":422,"type":423,"label":424,"file":408,"line":485,"wp_function":426},269,[487],{"from":418,"to":422,"sanitized":268},{"entryPoint":489,"graph":490,"unsanitizedCount":28,"severity":445},"\u003Cdeprecated> (bws_menu\\deprecated.php:0)",{"nodes":491,"edges":494},[492,493],{"id":418,"type":419,"label":429,"file":408,"line":483},{"id":422,"type":423,"label":424,"file":408,"line":485,"wp_function":426},[495],{"from":418,"to":422,"sanitized":268},{"entryPoint":497,"graph":498,"unsanitizedCount":28,"severity":445},"vstrsnln_insert_rows (includes\\import-country.php:215)",{"nodes":499,"edges":510},[500,503,507,508],{"id":418,"type":419,"label":501,"file":319,"line":502},"$_POST",232,{"id":422,"type":423,"label":504,"file":319,"line":505,"wp_function":506},"query() [SQLi]",238,"query",{"id":428,"type":419,"label":501,"file":319,"line":502},{"id":432,"type":423,"label":424,"file":319,"line":509,"wp_function":426},240,[511,512],{"from":418,"to":422,"sanitized":268},{"from":428,"to":432,"sanitized":268},{"entryPoint":514,"graph":515,"unsanitizedCount":28,"severity":445},"\u003Cimport-country> (includes\\import-country.php:0)",{"nodes":516,"edges":521},[517,518,519,520],{"id":418,"type":419,"label":429,"file":319,"line":502},{"id":422,"type":423,"label":504,"file":319,"line":505,"wp_function":506},{"id":428,"type":419,"label":501,"file":319,"line":502},{"id":432,"type":423,"label":424,"file":319,"line":509,"wp_function":426},[522,523],{"from":418,"to":422,"sanitized":268},{"from":428,"to":432,"sanitized":268},{"entryPoint":525,"graph":526,"unsanitizedCount":28,"severity":445},"\u003Cvisitors-online> (visitors-online.php:0)",{"nodes":527,"edges":539},[528,531,535,538],{"id":418,"type":419,"label":529,"file":213,"line":530},"$_COOKIE['vstrsnln']",453,{"id":422,"type":423,"label":532,"file":213,"line":533,"wp_function":534},"get_var() [SQLi]",446,"get_var",{"id":428,"type":419,"label":536,"file":213,"line":537},"$_SERVER",568,{"id":432,"type":423,"label":532,"file":213,"line":396,"wp_function":534},[540,541],{"from":418,"to":422,"sanitized":268},{"from":428,"to":432,"sanitized":268},{"entryPoint":543,"graph":544,"unsanitizedCount":27,"severity":553},"vstrsnln_write_user_base (visitors-online.php:431)",{"nodes":545,"edges":550},[546,547,548,549],{"id":418,"type":419,"label":529,"file":213,"line":530},{"id":422,"type":423,"label":532,"file":213,"line":533,"wp_function":534},{"id":428,"type":419,"label":536,"file":213,"line":537},{"id":432,"type":423,"label":532,"file":213,"line":396,"wp_function":534},[551,552],{"from":418,"to":422,"sanitized":267},{"from":428,"to":432,"sanitized":267},"high",{"summary":555,"deductions":556},"The 'visitors-online' plugin v1.1.6 presents a moderate security risk. While it demonstrates good practices like high output escaping (97%) and a significant percentage of prepared SQL statements (51%), there are notable areas of concern. The presence of 2 unprotected entry points, specifically AJAX handlers, is a significant vulnerability, as is a critical taint flow indicating unsanitized user input that could lead to severe security issues like Cross-Site Scripting or SQL Injection. The plugin's vulnerability history, with 2 known CVEs including one critical and one medium, further underscores these risks, even though they are currently patched. The historical pattern of XSS and SQLi vulnerabilities suggests a recurring need for robust input validation and output sanitization, which is further validated by the critical taint flow. Overall, the plugin has strengths in its output handling but weaknesses in its input sanitization and authentication for certain entry points.",[557,559,562,564,566],{"reason":558,"points":173},"Unprotected AJAX handlers",{"reason":560,"points":561},"Critical severity taint flow found",15,{"reason":563,"points":561},"One critical unpatched CVE historically",{"reason":565,"points":173},"One medium unpatched CVE historically",{"reason":567,"points":568},"59 total SQL queries, only 51% prepared",8,"2026-03-16T18:45:54.240Z",{"wat":571,"direct":582},{"assetPaths":572,"generatorPatterns":576,"scriptPaths":577,"versionParams":578},[573,574,575],"\u002Fwp-content\u002Fplugins\u002Fvisitors-online\u002Fassets\u002Fcss\u002Fvisitors-online.css","\u002Fwp-content\u002Fplugins\u002Fvisitors-online\u002Fassets\u002Fjs\u002Fvisitors-online.js","\u002Fwp-content\u002Fplugins\u002Fvisitors-online\u002Fassets\u002Fjs\u002Fvisitors-online-admin.js",[],[574,575],[579,580,581],"visitors-online\u002Fassets\u002Fcss\u002Fvisitors-online.css?ver=","visitors-online\u002Fassets\u002Fjs\u002Fvisitors-online.js?ver=","visitors-online\u002Fassets\u002Fjs\u002Fvisitors-online-admin.js?ver=",{"cssClasses":583,"htmlComments":585,"htmlAttributes":586,"restEndpoints":598,"jsGlobals":599,"shortcodeOutput":601},[584],"vstrsnln-visitors-online",[],[587,588,589,590,591,592,593,594,595,596,597],"data-total","data-users","data-guests","data-bots","data-max-date","data-max-total","data-max-users","data-max-guests","data-max-bots","data-country","data-browser",[],[600],"vstrsnln_settings",[602,603,604,605,606,607,608],"[visitors-online]","[visitors-online display_settings_notice='1']","[visitors-online display_settings_notice='0']","[visitors-online suggest_feature_banner='1']","[visitors-online suggest_feature_banner='0']","[visitors-online check_user_interval='15']","[visitors-online structure_pattern='Visitors online – {TOTAL}']"]