[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ftFBFWPjHgGwwX7ThMyezNg8k0QPjDed1eSzd7fbUcWY":3,"$ftO4iMa0MKdDYj4oBbhWrER7Aqj5lcRUT2fi7GOJWWSk":188,"$fSUcknV7gO0KQLskhR2wZFBi3AM9yzbFrnwQ7cUW6B7s":193},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":39,"analysis":132,"fingerprints":173},"vk-image","VK Image","1.1","ajayver","https:\u002F\u002Fprofiles.wordpress.org\u002Fajayver\u002F","\u003Cp>This plugin forces vk.com to use the first image from post while sharing a link. If there is no image in post or if it is front page, the defaut image will be used, which can be set up on plugin’s settings page.\u003C\u002Fp>\n","Forces vk.com to use the first image from post while sharing a link.",10,2116,60,1,"2013-06-23T20:45:00.000Z","3.5.2","2.7","",[20,21,22,23,24],"image","social","vk","vk-com","vkontakte","http:\u002F\u002Fajayver.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvk-image.1.1.zip",85,0,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},5,150,30,84,"2026-05-20T03:12:34.591Z",[40,63,81,97,114],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":18,"tags":55,"homepage":18,"download_link":59,"security_score":60,"vuln_count":14,"unpatched_count":28,"last_vuln_date":61,"fetched_at":62},"meks-easy-social-share","Meks Easy Social Share","1.3","Meks","https:\u002F\u002Fprofiles.wordpress.org\u002Fmekshq\u002F","\u003Cp>Meks Easy Social share was originally created as a feature for our \u003Ca href=\"https:\u002F\u002Fmekshq.com\u002Ftheme\u002Fjohannes\u002F\" rel=\"nofollow ugc\">Johannes  WordPress theme\u003C\u002Fa> but now it can be used on any WordPress website.\u003C\u002Fp>\n\u003Cp>With this social sharing plugin you can easily add social share buttons to your posts and pages. The plugin is highly flexible and provides you with various styling to match your theme design.\u003C\u002Fp>\n\u003Cp>Meks Easy Social Share WordPress plugin is created by \u003Ca href=\"https:\u002F\u002Fmekshq.com\" rel=\"nofollow ugc\">Meks\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Supports Facebook, Twitter, Reddit, Pinterest, Email, Google+, LinkedIn, StumbleUpon, WhatsApp and vKontakte share buttons.\u003C\u002Fli>\n\u003Cli>15+ styling variations\u003C\u002Fli>\n\u003Cli>Use original social brand colors or specify your custom accent color\u003C\u002Fli>\n\u003Cli>Automatically supports post and pages as well as all registered custom post types on the website\u003C\u002Fli>\n\u003Cli>Multiple placement options (above or below posts), plus template tag option for a custom display location anywhere you want\u003C\u002Fli>\n\u003Cli>Hooks and filters provided for an elegant way to modify the plugin through your own WordPress theme or a plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Live example?\u003C\u002Fh3>\n\u003Cp>You can see Meks Easy Social Share live example on our \u003Ca href=\"https:\u002F\u002Fmekshq.com\u002Fdemo\u002Fjohannes\u002F\" rel=\"nofollow ugc\">Johannes theme demo website\u003C\u002Fa>\u003C\u002Fp>\n","Easily display social share buttons for your posts, pages and custom post types. Supports Facebook, Twitter, Reddit, Pinterest, Email, Google+, Linked …",10000,226576,90,8,"2024-07-29T12:28:00.000Z","6.6.5","3.7",[56,57,21,24,58],"reddit","share","whatsapp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmeks-easy-social-share.zip",92,"2022-09-26 00:00:00","2026-04-16T10:56:18.058Z",{"slug":24,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":34,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":18,"download_link":80,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":62},"VKontakte","3.2.0","Yaroslav Bogutsky","https:\u002F\u002Fprofiles.wordpress.org\u002Fyaryj\u002F","\u003Cp>The plugin adds a wide range of VKontakte functionality to your site.\u003Cbr \u002F>\nThe following feature are currently supported:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>comments\u003C\u002Fli>\n\u003Cli>like button\u003C\u002Fli>\n\u003Cli>share button\u003C\u002Fli>\n\u003Cli>group widget\u003C\u002Fli>\n\u003Cli>poll widget\u003C\u002Fli>\n\u003Cli>recommendations widget\u003C\u002Fli>\n\u003C\u002Ful>\n","The plugin adds a wide range of VKontakte functionality to your site.",300,23931,68,"2022-04-03T10:37:00.000Z","5.9.13","4.6","5.3",[78,79,21,22,24],"comments","%d0%b2%d0%ba%d0%be%d0%bd%d1%82%d0%b0%d0%ba%d1%82%d0%b5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvkontakte.3.2.0.zip",{"slug":82,"name":83,"version":84,"author":66,"author_profile":67,"description":85,"short_description":86,"active_installs":50,"downloaded":87,"rating":50,"num_ratings":88,"last_updated":89,"tested_up_to":74,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":18,"download_link":96,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":62},"vkcommerce","VkCommerce","1.1.1","\u003Cp>VKontakte products is a showcase with goods and services in your VKontakte group. You add products with photos, prices and detailed descriptions on the website, and they are published in the VKontakte catalog, expanding the audience of buyers through users of this social network.\u003C\u002Fp>\n","The plugin publishes photos and descriptions of products from your online store to the storefront in a VKontakte group.",6195,4,"2022-04-26T06:29:00.000Z","5.1","7.0",[93,94,21,24,95],"ecommerce","products","woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvkcommerce.1.1.1.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":28,"num_ratings":28,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":18,"tags":110,"homepage":112,"download_link":113,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":62},"vkontakte-share-button","VKontakte Share Button","1.0.1","jackyfox","https:\u002F\u002Fprofiles.wordpress.org\u002Fjackyfox\u002F","\u003Cp>VKontakte Share Button plugin brings powerful way to add VKontakte share button for you posts and pages.\u003C\u002Fp>\n\u003Cp>It supports all functions of VKontakte API and easy customizable:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can choose one of seven button appearance types include \u003Cstrong>custom\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Place button on posts, pages and frontpage at will\u003C\u002Fli>\n\u003Cli>Select location of button: before or after content, on the left or right\u003C\u002Fli>\n\u003Cli>Exclude pages and posts by ID which should stay without buttons\u003C\u002Fli>\n\u003Cli>Choose description of content: forepart of post\u002Fpage or global description for all site\u003C\u002Fli>\n\u003Cli>Can be used description from meta tag \u003Ccode>description\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Use your own site logo image specifying link or with meta tag \u003Ccode>image-src\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can use the shortcode \u003Ccode>[vk-share-button]\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>Also can be used PHP code in your template:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php if (class_exists('VKShareButton'))\n          if(!isset($VKShareButton)\n              $VKShareButton = new VKShareButton();\n          echo $VKShareButton->the_button() ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Plugin allows you to add fully customizable share button of VKontakte social network.",40,21257,"2010-08-30T08:38:00.000Z","3.0.5","2.8",[111,57,21,24],"post","http:\u002F\u002Fwww.jackyfox.com\u002Fvk-share-button\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvkontakte-share-button.1.0.1.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":28,"num_ratings":28,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":130,"download_link":131,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":62},"import-vk-comments","Import Vk Comments","1.0.0","denandteam","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenandteam\u002F","\u003Cp>Плагин создан для тех, кто планирует перенести свои комментарии из виджета от соцсети Вконтакте в базу данных сайта WordPress.\u003C\u002Fp>\n\u003Cp>Для импорта понадобится сервисный ключ доступа и ID виджета комментариев. Подробнее о их получении будет описано на главной странице плагина.\u003C\u002Fp>\n\u003Cp>На данный момент комментарии можно получить только к типу постов “Записи”. После импорта они появятся во вкладке “Ожидающие модерации”.\u003C\u002Fp>\n\u003Ch4>Отладка\u003C\u002Fh4>\n\u003Cp>Так как получение комментариев идет с задержками, что-то может пойти не так, к примеру со стороны VK API. Необходим доступ сайта к серверам Вконтакте.\u003C\u002Fp>\n\u003Cp>В Console.log передаются подробные сведения о состоянии задач.\u003C\u002Fp>\n","Плагин импортирует комментарии из виджета комментариев ВК в WordPress.",20,1850,"2020-12-23T12:01:00.000Z","5.6.17","5.0.1","7.1",[78,22,23,24,129],"widget","https:\u002F\u002Fgithub.com\u002Fdenand-team\u002Fimport-vk-comments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimport-vk-comments.zip",{"attackSurface":133,"codeSignals":153,"taintFlows":166,"riskAssessment":167,"analyzedAt":172},{"hooks":134,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":28,"unprotectedCount":28},[135,141,144],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","admin_menu","vk_image_options","admin.php",3,{"type":136,"name":142,"callback":143,"file":139,"line":51},"admin_init","register_vk_image_settings",{"type":136,"name":145,"callback":146,"file":147,"line":148},"wp_head","add_image_for_vk","vk-image.php",11,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":165},[],{"prepared":28,"raw":28,"locations":156},[],{"escaped":28,"rawEcho":158,"locations":159},2,[160,163],{"file":139,"line":161,"context":162},31,"raw output",{"file":147,"line":164,"context":162},24,[],[],{"summary":168,"deductions":169},"The \"vk-image\" v1.1 plugin exhibits a seemingly strong security posture based on the provided static analysis. The complete absence of identified AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface.  Furthermore, the code analysis reveals no dangerous functions, no raw SQL queries (all use prepared statements), no file operations, no external HTTP requests, and no observed taint flows, all of which are positive indicators for security.\n\nHowever, a critical concern arises from the output escaping analysis. With 2 total outputs and 0% properly escaped, there is a high likelihood of Cross-Site Scripting (XSS) vulnerabilities. This means user-supplied data, if processed by these unescaped outputs, could be executed as JavaScript in the user's browser, potentially leading to session hijacking, defacement, or credential theft. The lack of any recorded vulnerability history is positive, but it doesn't negate the immediate risk posed by the unescaped output, which is a fundamental security best practice.\n\nIn conclusion, while the \"vk-image\" plugin has successfully avoided common pitfalls like exposed endpoints and vulnerable SQL queries, the complete lack of output escaping presents a significant and actionable security risk that must be addressed to improve its overall security. The absence of historical vulnerabilities is a good sign, but proactive code review for escaping is paramount.",[170],{"reason":171,"points":51},"Output escaping is not implemented","2026-03-17T01:12:15.062Z",{"wat":174,"direct":179},{"assetPaths":175,"generatorPatterns":176,"scriptPaths":177,"versionParams":178},[],[],[],[],{"cssClasses":180,"htmlComments":181,"htmlAttributes":183,"restEndpoints":185,"jsGlobals":186,"shortcodeOutput":187},[],[182],"\u003C!-- Added by VK Image Plugin -->",[184],"rel=\"image_src\"",[],[],[],{"error":189,"url":190,"statusCode":191,"statusMessage":192,"message":192},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fvk-image\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":14,"versions":194},[195],{"version":6,"download_url":26,"svn_tag_url":196,"released_at":29,"has_diff":197,"diff_files_changed":198,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":199,"is_current":189},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fvk-image\u002Ftags\u002F1.1\u002F",false,[],[]]