[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxc7zdEBnvV9yXfoQdVtunNzwRsjwTHOdZ4mUv9gnU34":3,"$f_9CCVA9f_do7M2Pj9wntKnwU4e1yPxtK4X0IH1toRVU":722,"$fyYkjO4nvDmJtlaw7OdRSqT82CC9EuEFSmSpAyRwEu_c":726},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":21,"download_link":22,"security_score":23,"vuln_count":24,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":48,"crawl_stats":35,"alternatives":54,"analysis":99,"fingerprints":682},"visual-slider","Visual Slider","1.7","dastan800","https:\u002F\u002Fprofiles.wordpress.org\u002Fdastan800\u002F","\u003Cp>You can builder slider and allows you to display a group of mixed content in a responsive and touch compatible slider.\u003C\u002Fp>\n","Visual Slider for WordPress  Custom Slider for WordPress",700,4539,50,2,"2026-02-09T02:28:00.000Z","6.8.5","6.0","7.4.0",[20],"slider-builder","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvisual-slider.zip",99,1,0,"2025-01-16 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[30],{"id":31,"url_slug":32,"title":33,"description":34,"plugin_slug":4,"theme_slug":35,"affected_versions":36,"patched_in_version":37,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":26,"updated_date":42,"references":43,"days_to_patch":45,"patch_diff_files":46,"patch_trac_url":35,"research_status":35,"research_verified":47,"research_rounds_completed":25,"research_plan":35,"research_summary":35,"research_vulnerable_code":35,"research_fix_diff":35,"research_exploit_outline":35,"research_model_used":35,"research_started_at":35,"research_completed_at":35,"research_error":35,"poc_status":35,"poc_video_id":35,"poc_summary":35,"poc_steps":35,"poc_tested_at":35,"poc_wp_version":35,"poc_php_version":35,"poc_playwright_script":35,"poc_exploit_code":35,"poc_has_trace":47,"poc_model_used":35,"poc_verification_depth":35},"CVE-2025-23448","visualslider-sldier-reflected-cross-site-scripting","visualslider Sldier \u003C= 1.1.1 - Reflected Cross-Site Scripting","The visualslider Sldier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.1.1","1.4","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-05-16 14:17:36",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc6bc8753-9b63-41ee-8269-89883969983b?source=api-prod",121,[],false,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":49,"total_installs":50,"avg_security_score":23,"avg_patch_time_days":51,"trust_score":52,"computed_at":53},3,1200,48,87,"2026-05-20T07:41:34.172Z",[55,77],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":25,"num_ratings":25,"last_updated":65,"tested_up_to":16,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":73,"download_link":74,"security_score":75,"vuln_count":25,"unpatched_count":25,"last_vuln_date":35,"fetched_at":76},"max-elements","Max Elements for Elementor – Advanced Widgets, Extensions & Theme Builder","1.1.0","Highend Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fhighendthemes\u002F","\u003Cp>\u003Cstrong>Max Elements\u003C\u002Fstrong> is a powerful and lightweight Elementor extension that gives you everything you need to design stunning websites — faster and without writing any code. Max Elements brings you professional widgets, dynamic query and slider builders, template kits, WooCommerce tools, theme building options, popup\u002Foffcanvas capabilities, and much more.\u003C\u002Fp>\n\u003Cp>Upgrade your Elementor experience with an all-in-one toolkit designed for developers, designers, and business owners.\u003C\u002Fp>\n\u003Cp>Free and Pro functionalities are mixed in the Widgets below.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fhighendthemes.com\u002Fportfolio\u002Fmax-elements\u002F\" rel=\"nofollow ugc\">Plugin Demo Page\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🔥 Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Elementor Template Kits\u003C\u002Fli>\n\u003Cli>Dynamic Query Builder\u003C\u002Fli>\n\u003Cli>Dynamic Slider Builder\u003C\u002Fli>\n\u003Cli>Loop Grid \u002F Carousel \u002F Slider\u003C\u002Fli>\n\u003Cli>Header, Footer, Blog & WooCommerce Builder\u003C\u002Fli>\n\u003Cli>Popup & Offcanvas Builder\u003C\u002Fli>\n\u003Cli>Advanced Extensions (Sticky Header, Gradient Backgrounds, Parallax Effects, and more)\u003C\u002Fli>\n\u003Cli>Form integrations (Contact Form 7, WP Forms)\u003C\u002Fli>\n\u003Cli>Priority Support with Pro Version\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Widgets Included\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>📌 Elementor Elements:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Accordion  \u003C\u002Fli>\n\u003Cli>Animated Text  \u003C\u002Fli>\n\u003Cli>Button  \u003C\u002Fli>\n\u003Cli>Contact Form 7  \u003C\u002Fli>\n\u003Cli>Flipbox  \u003C\u002Fli>\n\u003Cli>Heading  \u003C\u002Fli>\n\u003Cli>Icon\u003C\u002Fli>\n\u003Cli>Icon List\u003C\u002Fli>\n\u003Cli>Image Accordion  \u003C\u002Fli>\n\u003Cli>Image Comparison  \u003C\u002Fli>\n\u003Cli>Image Hotspots\u003C\u002Fli>\n\u003Cli>Advanced Image\u003C\u002Fli>\n\u003Cli>Lottie Animation  \u003C\u002Fli>\n\u003Cli>Marquee  \u003C\u002Fli>\n\u003Cli>Nav Menu  \u003C\u002Fli>\n\u003Cli>Modern Services  \u003C\u002Fli>\n\u003Cli>Rotate Circle  \u003C\u002Fli>\n\u003Cli>Search  \u003C\u002Fli>\n\u003Cli>Testimonials Slider  \u003C\u002Fli>\n\u003Cli>Timeline  \u003C\u002Fli>\n\u003Cli>WP Forms  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>📰 Blog Builder Widgets:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Blog Feed Title  \u003C\u002Fli>\n\u003Cli>Blog Feed Image  \u003C\u002Fli>\n\u003Cli>Blog Feed Date  \u003C\u002Fli>\n\u003Cli>Blog Feed Author  \u003C\u002Fli>\n\u003Cli>Blog Feed Content  \u003C\u002Fli>\n\u003Cli>Blog Feed Tags  \u003C\u002Fli>\n\u003Cli>Blog Feed Categories  \u003C\u002Fli>\n\u003Cli>Blog Feed Read More  \u003C\u002Fli>\n\u003Cli>Blog Feed Comments  \u003C\u002Fli>\n\u003Cli>Blog Feed Sidebar  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>🛒 WooCommerce Widgets:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Woo Cart  \u003C\u002Fli>\n\u003Cli>Woo Checkout  \u003C\u002Fli>\n\u003Cli>Woo Mini Cart  \u003C\u002Fli>\n\u003Cli>Woo Shop Grid  \u003C\u002Fli>\n\u003Cli>Add to Cart\u003C\u002Fli>\n\u003Cli>Product Filters  \u003C\u002Fli>\n\u003Cli>Product Price  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Dynamic Widgets:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Dynamic Accordion  \u003C\u002Fli>\n\u003Cli>Dynamic Tabs  \u003C\u002Fli>\n\u003Cli>Dynamic Slider  \u003C\u002Fli>\n\u003Cli>Dynamic Query  \u003C\u002Fli>\n\u003Cli>Dynamic Post Meta\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Theme Builder\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Build Custom Templates for Posts, Pages, Products, Archives, 404, Search Results\u003C\u002Fli>\n\u003Cli>Header & Footer Builder\u003C\u002Fli>\n\u003Cli>Use Conditions to assign templates\u003C\u002Fli>\n\u003Cli>Support for Custom Post Types\u003C\u002Fli>\n\u003Cli>Use any Elementor widget within your templates\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Popup & Offcanvas Builder\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Trigger on: Page Load, Scroll, Exit Intent, Inactivity, Click, Scroll to Element\u003C\u002Fli>\n\u003Cli>Use Prebuilt Library or Design from Scratch\u003C\u002Fli>\n\u003Cli>GDPR Notices, Age Gates, Welcome Mats, Promos, Countdowns, Cookie Consent\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Extensions\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Sticky Header\u003C\u002Fli>\n\u003Cli>Gradient Background (3 Colors)\u003C\u002Fli>\n\u003Cli>Blur & Parallax Effects\u003C\u002Fli>\n\u003Cli>Advanced Hover Effects\u003C\u002Fli>\n\u003Cli>Custom CSS for Any Widget\u003C\u002Fli>\n\u003C\u002Ful>\n","Unlock the full power of Elementor with Max Elements – advanced widgets, dynamic builders, WooCommerce support, popups, offcanvas, and more.",10,424,"2025-09-12T10:26:00.000Z","5.2","7.2",[69,70,20,71,72],"elementor-addons","elementor-templates","theme-builder","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmax-elements\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmax-elements.1.1.0.zip",100,"2026-04-06T09:54:40.288Z",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":25,"downloaded":85,"rating":25,"num_ratings":25,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":95,"download_link":96,"security_score":97,"vuln_count":25,"unpatched_count":25,"last_vuln_date":35,"fetched_at":98},"slider-builder-elementor","Slider Builder Elementor","1.0.0","UnikForce","https:\u002F\u002Fprofiles.wordpress.org\u002Funikforce\u002F","\u003Cp>Enhance your Elementor page building experience with elementor dynamic slider builder. Add power to your page builder using our easy-to-use elements those were designed to make your next WordPress page and posts design easier and prettier than ever before.\u003C\u002Fp>\n\u003Ch3>COMPLETELY CUSTOMIZABLE\u003C\u002Fh3>\n\u003Cp>Each element comes with bunch of options to control every possible things. You can achieve nearly any design with your imagination.\u003C\u002Fp>\n\u003Ch3>LIGHT WEIGHT & INSTANT LOADING\u003C\u002Fh3>\n\u003Cp>No extra resources or messy codes to slow down your website. Optimized for super fast loading and instant Live editing.\u003C\u002Fp>\n\u003Ch3>ELEMENTS CONTROL OPTION\u003C\u002Fh3>\n\u003Cp>Enable and disable individual elements to make your page loading faster and smoother. You can deactivate unnecessary widgets to keep the site lite.\u003C\u002Fp>\n\u003Ch3>EXPERT SUPPORT\u003C\u002Fh3>\n\u003Cp>We have extra-ordinary support team ready to help you. Ask your questions in the support forum, or contact us directly through live chat and contact form.\u003C\u002Fp>\n","Enhance your Elementor page building experience with elementor dynamic slider builder. Add power to your page builder using our easy-to-use elements t &hellip;",882,"2022-02-05T10:16:00.000Z","5.9.13","5.0","5.6",[91,92,93,94],"elementor-slider-builder","elementor-slider","wordpress-slider-builder","wp-elementor-addon","https:\u002F\u002Fwordpress.org\u002Felementor-post-layout\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fslider-builder-elementor.zip",85,"2026-03-15T15:16:48.613Z",{"attackSurface":100,"codeSignals":362,"taintFlows":502,"riskAssessment":670,"analyzedAt":681},{"hooks":101,"ajaxHandlers":283,"restRoutes":350,"shortcodes":351,"cronEvents":360,"entryPointCount":361,"unprotectedCount":24},[102,108,112,116,120,124,130,134,138,140,145,148,153,157,161,164,168,173,177,181,185,190,194,198,202,206,210,213,217,221,224,228,232,235,239,243,246,250,254,259,262,265,269,272,276,280],{"type":103,"name":104,"callback":105,"file":106,"line":107},"filter","vs_icon_element","vs_fa_icon","admin\\fonts\\fa-icon.php",981,{"type":103,"name":104,"callback":109,"file":110,"line":111},"vs_flaticon","admin\\fonts\\flaticon.php",415,{"type":103,"name":104,"callback":113,"file":114,"line":115},"vs_flaticon_thin","admin\\fonts\\flaticon_thin.php",849,{"type":103,"name":104,"callback":117,"file":118,"line":119},"vs_metrizeicon","admin\\fonts\\metrizeicon.php",323,{"type":103,"name":104,"callback":121,"file":122,"line":123},"vs_typicon","admin\\fonts\\typcn.php",358,{"type":125,"name":126,"callback":127,"file":128,"line":129},"action","add_meta_boxes","vs_add_metabox","admin\\includes\\metabox.php",13,{"type":125,"name":131,"callback":132,"file":128,"line":133},"save_post","vs_metabox_save",170,{"type":125,"name":135,"callback":104,"file":136,"line":137},"init","admin\\includes\\options-functions.php",449,{"type":125,"name":135,"callback":104,"file":136,"line":139},570,{"type":125,"name":141,"callback":142,"file":143,"line":144},"admin_enqueue_scripts","vs_admin_shortcode","admin\\index.php",33,{"type":125,"name":141,"callback":146,"file":143,"line":147},"vs_admin_enqueue",51,{"type":103,"name":149,"callback":150,"priority":151,"file":143,"line":152},"manage_visualslider_posts_columns","vs_shortcode_column",5,135,{"type":125,"name":154,"callback":155,"priority":151,"file":143,"line":156},"manage_visualslider_posts_custom_column","vs_shortcode_display_column",142,{"type":103,"name":158,"callback":158,"file":159,"line":160},"vs_setting_options","admin\\setting-options.php",6,{"type":103,"name":162,"callback":162,"file":163,"line":160},"vs_slide_options","admin\\slide-options.php",{"type":125,"name":135,"callback":165,"file":166,"line":167},"vc_visualslider_mapping","inc\\composer-visualslider.php",21,{"type":103,"name":169,"callback":170,"file":171,"line":172},"sao_element_item","vs_element_item_visualslider","inc\\sao-visualslider.php",12,{"type":103,"name":174,"callback":175,"file":171,"line":176},"sao_element_options_visualslider","vs_visualslider_options",32,{"type":103,"name":178,"callback":179,"file":171,"line":180},"sao_builder_perview_visualslider","vs_perview_visualslider_config",108,{"type":103,"name":182,"callback":183,"file":171,"line":184},"sao_builder_visualslider","vs_visualslider_config",151,{"type":103,"name":186,"callback":187,"file":188,"line":189},"vb_element_options","vs_vb_visualslider_options","inc\\vb-visualslider.php",14,{"type":103,"name":191,"callback":192,"file":188,"line":193},"vb_element_visualslider","vs_vb_visualslider_config",74,{"type":125,"name":195,"callback":196,"file":197,"line":160},"widgets_init","register_visualslider_widget","inc\\widget-visualslider.php",{"type":103,"name":199,"callback":200,"file":201,"line":129},"vs_layer_element_options","vs_box_options","layer\\box.php",{"type":103,"name":203,"callback":204,"file":201,"line":205},"vs_layer_perview_box","vs_box_perview",204,{"type":103,"name":207,"callback":208,"file":201,"line":209},"vs_layer_box","vs_box_config",221,{"type":103,"name":199,"callback":211,"file":212,"line":129},"vs_button_options","layer\\button.php",{"type":103,"name":214,"callback":215,"file":212,"line":216},"vs_layer_perview_button","vs_button_perview",307,{"type":103,"name":218,"callback":219,"file":212,"line":220},"vs_layer_button","vs_button_config",320,{"type":103,"name":199,"callback":222,"file":223,"line":129},"vs_icon_options","layer\\icon.php",{"type":103,"name":225,"callback":226,"file":223,"line":227},"vs_layer_perview_icon","vs_icon_perview",297,{"type":103,"name":229,"callback":230,"file":223,"line":231},"vs_layer_icon","vs_icon_config",317,{"type":103,"name":199,"callback":233,"file":234,"line":189},"vs_image_options","layer\\image.php",{"type":103,"name":236,"callback":237,"file":234,"line":238},"vs_layer_perview_image","vs_image_perview",129,{"type":103,"name":240,"callback":241,"file":234,"line":242},"vs_layer_image","vs_image_config",146,{"type":103,"name":199,"callback":244,"file":245,"line":189},"vs_text_options","layer\\text.php",{"type":103,"name":247,"callback":248,"file":245,"line":249},"vs_layer_perview_text","vs_text_perview",328,{"type":103,"name":251,"callback":252,"file":245,"line":253},"vs_layer_text","vs_text_config",350,{"type":125,"name":255,"callback":256,"file":257,"line":258},"visualslider_init","visualslider_constructor","visual-slider.php",35,{"type":125,"name":260,"callback":261,"priority":24,"file":257,"line":147},"plugins_loaded","visualslider_install",{"type":125,"name":135,"callback":263,"file":257,"line":264},"visualslider_post_type",58,{"type":125,"name":266,"callback":267,"file":257,"line":268},"elementor\u002Fwidgets\u002Fregister","visualslider_elementor_widgets",109,{"type":125,"name":135,"callback":270,"file":257,"line":271},"vs_layer_options_element",134,{"type":125,"name":273,"callback":274,"file":257,"line":275},"wp_enqueue_scripts","vs_enqueue",319,{"type":103,"name":277,"callback":278,"file":257,"line":279},"single_template","visualslider_single_template",376,{"type":103,"name":277,"callback":281,"file":257,"line":282},"visualslider_load_cpt_template",425,[284,288,293,295,298,301,304,308,312,316,319,321,324,327,330,333,335,338,341,344,347],{"action":285,"nopriv":47,"callback":285,"hasNonce":47,"hasCapCheck":47,"file":286,"line":287},"vs_options_encode","admin\\includes\\code.php",59,{"action":289,"nopriv":47,"callback":289,"hasNonce":290,"hasCapCheck":290,"file":291,"line":292},"vs_module_layer_list",true,"admin\\includes\\layer.php",28,{"action":294,"nopriv":47,"callback":294,"hasNonce":290,"hasCapCheck":290,"file":291,"line":287},"vs_module_layer_item",{"action":296,"nopriv":47,"callback":296,"hasNonce":290,"hasCapCheck":290,"file":128,"line":297},"vs_module_content",102,{"action":299,"nopriv":47,"callback":299,"hasNonce":290,"hasCapCheck":290,"file":136,"line":300},"vs_icon_picker",464,{"action":302,"nopriv":47,"callback":302,"hasNonce":290,"hasCapCheck":290,"file":136,"line":303},"vs_icon_fonts",588,{"action":305,"nopriv":47,"callback":305,"hasNonce":290,"hasCapCheck":290,"file":306,"line":307},"vs_perview_global","admin\\includes\\perview-global.php",77,{"action":309,"nopriv":47,"callback":309,"hasNonce":290,"hasCapCheck":290,"file":310,"line":311},"vs_perview_layer","admin\\includes\\perview-slide.php",199,{"action":313,"nopriv":47,"callback":313,"hasNonce":290,"hasCapCheck":290,"file":314,"line":315},"vs_module_slide_list","admin\\includes\\slide.php",29,{"action":317,"nopriv":47,"callback":317,"hasNonce":290,"hasCapCheck":290,"file":314,"line":318},"vs_module_slide_item",64,{"action":320,"nopriv":47,"callback":320,"hasNonce":290,"hasCapCheck":290,"file":314,"line":23},"vs_module_slide_inner",{"action":322,"nopriv":47,"callback":322,"hasNonce":290,"hasCapCheck":290,"file":314,"line":323},"vs_module_panel_options",200,{"action":325,"nopriv":47,"callback":325,"hasNonce":290,"hasCapCheck":290,"file":326,"line":160},"vs_template_save","admin\\includes\\template.php",{"action":328,"nopriv":47,"callback":328,"hasNonce":290,"hasCapCheck":290,"file":326,"line":329},"vs_template_save_global",55,{"action":331,"nopriv":47,"callback":331,"hasNonce":290,"hasCapCheck":290,"file":326,"line":332},"vs_template_save_slide",92,{"action":334,"nopriv":47,"callback":334,"hasNonce":290,"hasCapCheck":290,"file":326,"line":45},"vs_template_save_layer",{"action":336,"nopriv":47,"callback":336,"hasNonce":290,"hasCapCheck":290,"file":326,"line":337},"vs_template_options",155,{"action":339,"nopriv":47,"callback":339,"hasNonce":290,"hasCapCheck":290,"file":326,"line":340},"vs_template_remove",211,{"action":342,"nopriv":47,"callback":342,"hasNonce":290,"hasCapCheck":290,"file":326,"line":343},"vs_template_demo",231,{"action":345,"nopriv":47,"callback":345,"hasNonce":290,"hasCapCheck":290,"file":326,"line":346},"vs_template_import",274,{"action":348,"nopriv":47,"callback":348,"hasNonce":290,"hasCapCheck":290,"file":326,"line":349},"vs_template_export",310,[],[352,356],{"tag":353,"callback":354,"file":166,"line":355},"vc_visualslider","vc_visualslider_html",22,{"tag":357,"callback":358,"file":257,"line":359},"visualslider","visualslider_shortcode",371,[],23,{"dangerousFunctions":363,"sqlUsage":364,"outputEscaping":366,"fileOperations":24,"externalRequests":25,"nonceChecks":499,"capabilityChecks":500,"bundledLibraries":501},[],{"prepared":25,"raw":25,"locations":365},[],{"escaped":367,"rawEcho":368,"locations":369},552,73,[370,373,375,377,379,381,383,385,386,387,389,391,393,395,396,397,399,401,403,405,407,409,411,413,414,416,418,420,421,422,423,425,426,428,430,432,434,436,437,438,439,441,443,445,447,449,451,453,455,456,458,459,460,461,463,465,467,469,471,473,475,477,479,481,483,485,487,489,491,493,494,496,497],{"file":286,"line":371,"context":372},70,"raw output",{"file":291,"line":374,"context":372},163,{"file":291,"line":376,"context":372},278,{"file":291,"line":378,"context":372},280,{"file":291,"line":380,"context":372},281,{"file":128,"line":382,"context":372},76,{"file":128,"line":384,"context":372},84,{"file":128,"line":97,"context":372},{"file":128,"line":52,"context":372},{"file":128,"line":388,"context":372},88,{"file":128,"line":390,"context":372},89,{"file":136,"line":392,"context":372},60,{"file":136,"line":394,"context":372},65,{"file":136,"line":238,"context":372},{"file":136,"line":156,"context":372},{"file":136,"line":398,"context":372},147,{"file":136,"line":400,"context":372},240,{"file":136,"line":402,"context":372},250,{"file":136,"line":404,"context":372},380,{"file":136,"line":406,"context":372},482,{"file":136,"line":408,"context":372},533,{"file":306,"line":410,"context":372},11,{"file":306,"line":412,"context":372},17,{"file":306,"line":176,"context":372},{"file":306,"line":415,"context":372},44,{"file":306,"line":417,"context":372},56,{"file":306,"line":419,"context":372},57,{"file":310,"line":417,"context":372},{"file":310,"line":419,"context":372},{"file":310,"line":392,"context":372},{"file":310,"line":424,"context":372},66,{"file":310,"line":368,"context":372},{"file":310,"line":427,"context":372},81,{"file":310,"line":429,"context":372},95,{"file":310,"line":431,"context":372},107,{"file":310,"line":433,"context":372},124,{"file":310,"line":435,"context":372},125,{"file":314,"line":410,"context":372},{"file":314,"line":172,"context":372},{"file":314,"line":129,"context":372},{"file":314,"line":440,"context":372},217,{"file":314,"line":442,"context":372},218,{"file":314,"line":444,"context":372},219,{"file":314,"line":446,"context":372},226,{"file":314,"line":448,"context":372},227,{"file":314,"line":450,"context":372},228,{"file":314,"line":452,"context":372},229,{"file":314,"line":454,"context":372},295,{"file":326,"line":361,"context":372},{"file":326,"line":457,"context":372},26,{"file":326,"line":315,"context":372},{"file":326,"line":176,"context":372},{"file":326,"line":144,"context":372},{"file":326,"line":462,"context":372},37,{"file":326,"line":464,"context":372},40,{"file":326,"line":466,"context":372},177,{"file":326,"line":468,"context":372},180,{"file":326,"line":470,"context":372},183,{"file":326,"line":472,"context":372},187,{"file":326,"line":474,"context":372},188,{"file":326,"line":476,"context":372},196,{"file":326,"line":478,"context":372},245,{"file":326,"line":480,"context":372},248,{"file":326,"line":482,"context":372},249,{"file":326,"line":484,"context":372},261,{"file":326,"line":486,"context":372},288,{"file":326,"line":488,"context":372},291,{"file":326,"line":490,"context":372},292,{"file":326,"line":492,"context":372},325,{"file":326,"line":249,"context":372},{"file":197,"line":495,"context":372},82,{"file":197,"line":52,"context":372},{"file":197,"line":498,"context":372},90,24,43,[],[503,525,535,548,556,566,574,584,593,601,609,619,628,638,647,658],{"entryPoint":504,"graph":505,"unsanitizedCount":14,"severity":38},"vs_module_content (admin\\includes\\metabox.php:103)",{"nodes":506,"edges":522},[507,512,516],{"id":508,"type":509,"label":510,"file":128,"line":511},"n0","source","$_POST (x2)",118,{"id":513,"type":514,"label":515,"file":128,"line":511},"n1","transform","→ vs_module_file_json()",{"id":517,"type":518,"label":519,"file":128,"line":520,"wp_function":521},"n2","sink","file_get_contents() [SSRF\u002FLFI]",165,"file_get_contents",[523,524],{"from":508,"to":513,"sanitized":47},{"from":513,"to":517,"sanitized":47},{"entryPoint":526,"graph":527,"unsanitizedCount":14,"severity":38},"\u003Cmetabox> (admin\\includes\\metabox.php:0)",{"nodes":528,"edges":532},[529,530,531],{"id":508,"type":509,"label":510,"file":128,"line":511},{"id":513,"type":514,"label":515,"file":128,"line":511},{"id":517,"type":518,"label":519,"file":128,"line":520,"wp_function":521},[533,534],{"from":508,"to":513,"sanitized":47},{"from":513,"to":517,"sanitized":47},{"entryPoint":536,"graph":537,"unsanitizedCount":25,"severity":547},"vs_module_layer_item (admin\\includes\\layer.php:60)",{"nodes":538,"edges":545},[539,541],{"id":508,"type":509,"label":540,"file":291,"line":193},"$_POST",{"id":513,"type":518,"label":542,"file":291,"line":543,"wp_function":544},"echo() [XSS]",79,"echo",[546],{"from":508,"to":513,"sanitized":290},"low",{"entryPoint":549,"graph":550,"unsanitizedCount":25,"severity":547},"\u003Clayer> (admin\\includes\\layer.php:0)",{"nodes":551,"edges":554},[552,553],{"id":508,"type":509,"label":540,"file":291,"line":193},{"id":513,"type":518,"label":542,"file":291,"line":543,"wp_function":544},[555],{"from":508,"to":513,"sanitized":290},{"entryPoint":557,"graph":558,"unsanitizedCount":25,"severity":547},"vs_icon_picker (admin\\includes\\options-functions.php:465)",{"nodes":559,"edges":564},[560,562],{"id":508,"type":509,"label":540,"file":136,"line":561},479,{"id":513,"type":518,"label":542,"file":136,"line":563,"wp_function":544},480,[565],{"from":508,"to":513,"sanitized":290},{"entryPoint":567,"graph":568,"unsanitizedCount":25,"severity":547},"\u003Coptions-functions> (admin\\includes\\options-functions.php:0)",{"nodes":569,"edges":572},[570,571],{"id":508,"type":509,"label":540,"file":136,"line":561},{"id":513,"type":518,"label":542,"file":136,"line":563,"wp_function":544},[573],{"from":508,"to":513,"sanitized":290},{"entryPoint":575,"graph":576,"unsanitizedCount":25,"severity":547},"vs_perview_slide_warp (admin\\includes\\perview-slide.php:6)",{"nodes":577,"edges":582},[578,580],{"id":508,"type":509,"label":540,"file":310,"line":579},16,{"id":513,"type":518,"label":542,"file":310,"line":581,"wp_function":544},52,[583],{"from":508,"to":513,"sanitized":290},{"entryPoint":585,"graph":586,"unsanitizedCount":25,"severity":547},"vs_perview_slide (admin\\includes\\perview-slide.php:157)",{"nodes":587,"edges":591},[588,590],{"id":508,"type":509,"label":540,"file":310,"line":589},172,{"id":513,"type":518,"label":542,"file":310,"line":472,"wp_function":544},[592],{"from":508,"to":513,"sanitized":290},{"entryPoint":594,"graph":595,"unsanitizedCount":25,"severity":547},"\u003Cperview-slide> (admin\\includes\\perview-slide.php:0)",{"nodes":596,"edges":599},[597,598],{"id":508,"type":509,"label":510,"file":310,"line":579},{"id":513,"type":518,"label":542,"file":310,"line":581,"wp_function":544},[600],{"from":508,"to":513,"sanitized":290},{"entryPoint":602,"graph":603,"unsanitizedCount":25,"severity":547},"vs_module_slide_item (admin\\includes\\slide.php:65)",{"nodes":604,"edges":607},[605,606],{"id":508,"type":509,"label":540,"file":314,"line":495},{"id":513,"type":518,"label":542,"file":314,"line":97,"wp_function":544},[608],{"from":508,"to":513,"sanitized":290},{"entryPoint":610,"graph":611,"unsanitizedCount":25,"severity":547},"vs_module_panel_options (admin\\includes\\slide.php:201)",{"nodes":612,"edges":617},[613,615],{"id":508,"type":509,"label":540,"file":314,"line":614},212,{"id":513,"type":518,"label":542,"file":314,"line":616,"wp_function":544},214,[618],{"from":508,"to":513,"sanitized":290},{"entryPoint":620,"graph":621,"unsanitizedCount":25,"severity":547},"\u003Cslide> (admin\\includes\\slide.php:0)",{"nodes":622,"edges":626},[623,625],{"id":508,"type":509,"label":624,"file":314,"line":495},"$_POST (x4)",{"id":513,"type":518,"label":542,"file":314,"line":97,"wp_function":544},[627],{"from":508,"to":513,"sanitized":290},{"entryPoint":629,"graph":630,"unsanitizedCount":25,"severity":547},"vs_template_save (admin\\includes\\template.php:7)",{"nodes":631,"edges":636},[632,634],{"id":508,"type":509,"label":540,"file":326,"line":633},15,{"id":513,"type":518,"label":542,"file":326,"line":635,"wp_function":544},18,[637],{"from":508,"to":513,"sanitized":290},{"entryPoint":639,"graph":640,"unsanitizedCount":25,"severity":547},"vs_template_options (admin\\includes\\template.php:156)",{"nodes":641,"edges":645},[642,644],{"id":508,"type":509,"label":540,"file":326,"line":643},169,{"id":513,"type":518,"label":542,"file":326,"line":589,"wp_function":544},[646],{"from":508,"to":513,"sanitized":290},{"entryPoint":648,"graph":649,"unsanitizedCount":25,"severity":547},"vs_template_remove (admin\\includes\\template.php:212)",{"nodes":650,"edges":656},[651,652],{"id":508,"type":509,"label":510,"file":326,"line":209},{"id":513,"type":518,"label":653,"file":326,"line":654,"wp_function":655},"update_option() [Settings Manipulation]",225,"update_option",[657],{"from":508,"to":513,"sanitized":290},{"entryPoint":659,"graph":660,"unsanitizedCount":25,"severity":547},"\u003Ctemplate> (admin\\includes\\template.php:0)",{"nodes":661,"edges":667},[662,663,664,665],{"id":508,"type":509,"label":624,"file":326,"line":633},{"id":513,"type":518,"label":542,"file":326,"line":635,"wp_function":544},{"id":517,"type":509,"label":510,"file":326,"line":209},{"id":666,"type":518,"label":653,"file":326,"line":654,"wp_function":655},"n3",[668,669],{"from":508,"to":513,"sanitized":290},{"from":517,"to":666,"sanitized":290},{"summary":671,"deductions":672},"The visual-slider plugin v1.7 exhibits a generally positive security posture, with a strong reliance on prepared statements for SQL queries and a high percentage of properly escaped output. The plugin also demonstrates a good number of nonce and capability checks, indicating an awareness of common WordPress security practices. However, the presence of an unprotected AJAX handler represents a significant security concern, as it could be exploited by unauthenticated users. The taint analysis showing unsanitized paths, while not reaching critical or high severity, warrants attention as it suggests potential avenues for injection if further exploited. The plugin's vulnerability history, marked by a single medium-severity Cross-Site Scripting (XSS) vulnerability patched in the past, suggests a history of security issues, though the current unpatched status of any CVEs is a positive sign. Overall, while the plugin has strengths in its coding practices, the unprotected entry point and past vulnerability history necessitate careful monitoring and prompt updates.",[673,676,679],{"reason":674,"points":675},"Unprotected AJAX handler",7,{"reason":677,"points":678},"Flows with unsanitized paths",4,{"reason":680,"points":151},"One known medium CVE in history","2026-03-16T19:24:38.682Z",{"wat":683,"direct":709},{"assetPaths":684,"generatorPatterns":706,"scriptPaths":707,"versionParams":708},[685,686,687,688,689,690,691,692,693,694,695,696,697,698,699,700,701,702,703,704,705],"\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Ffontawesome.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonarrow.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonmultimedia.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonbusiness.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonoffice.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticoninterface.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonessentialset.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticontechsupport.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticontech.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonstrategy.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonhipster.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonfashion.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonwebdesign.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticontravel.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fflaticonnetwork.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Fmetrizeicon.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Fassets\u002Fcss\u002Ffonts\u002Ftypcn.css","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Finc\u002Fwidget-visualslider.php","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Finc\u002Fvb-visualslider.php","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Finc\u002Felementor-visualslider.php","\u002Fwp-content\u002Fplugins\u002Fvisual-slider\u002Finc\u002Fcomposer-visualslider.php",[],[],[],{"cssClasses":710,"htmlComments":713,"htmlAttributes":714,"restEndpoints":716,"jsGlobals":717,"shortcodeOutput":719},[711,712],"visualslider_slider","vs_slider_wrapper",[],[715],"data-vsslider-options",[],[718],"visualslider_settings",[720,721],"[visual_slider","[\u002Fvisual_slider]",{"error":290,"url":723,"statusCode":724,"statusMessage":725,"message":725},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fvisual-slider\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":25,"versions":727},[]]