[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4rG8ipOKYvAPBzmPCeLb2hbQg8MIquWm_Yn2szdsHyA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":133,"fingerprints":262},"webeki-basketball-widgets-basketball-results-rankings","Basketball Widgets – Basketball Results & Rankings","1.1","widgetlab","https:\u002F\u002Fprofiles.wordpress.org\u002Fnvmnewvision\u002F","\u003Cp>Show basketball scores and table rankings in your WordPress website using Basketball Widgets shortcodes. Free data, updated automatically, from 250+ basketball competitions from all over the world, available in multiple languages.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>widgets with basketball table rankings and latest match results from 250+ competitions around the world\u003C\u002Fli>\n\u003Cli>widgets with basketball team stats for all teams playing in the NBA\u003C\u002Fli>\n\u003Cli>data available for pull in 16 languages (English, Spanish, French, German, Swedish, Danish, Norwegian, Finnish, Dutch, Italian, Portuguese, Polish, Romanian, Hungarian, Czech, Estonian)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>How to use:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>install the plugin and activate it in your WordPress website\u003C\u002Fli>\n\u003Cli>in the left side menu in Admin area look for Basketball Widgets item\u003C\u002Fli>\n\u003Cli>go to Basketball Widgets to generate the shortcode for any data options like results and table rankings\u003C\u002Fli>\n\u003Cli>copy the shortcode and paste it in your blog post or page\u003C\u002Fli>\n\u003Cli>optional: most data in widgets are presented in table formats, with 100% width. You can use html code to control the size of the width\u003C\u002Fli>\n\u003Cli>optional: data tables from these widgets make use of your website CSS style. However if you do not like how they look in your pages, play with the Customization option of the plugin to change style colors\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","Basketball Widgets: use shortcodes to deliver updated basketball data like various table rankings and basketball results by competition.",30,2175,0,"2024-01-22T03:03:00.000Z","6.4.8","4.1","",[19,20,21,22,23],"basketball","basketball-rankings","basketball-statistics","basketball-tables","basketball-widgets","https:\u002F\u002Fwww.widgetlab.net\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwebeki-basketball-widgets-basketball-results-rankings.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":11,"trust_score":34,"computed_at":35},"nvmnewvision",2,130,84,"2026-04-04T20:26:25.746Z",[37,57,76,97,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":17,"tags":50,"homepage":55,"download_link":56,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"sportspress-for-basketball","SportsPress for Basketball","0.9.1","ThemeBoy","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeboy\u002F","\u003Ch4>Create a Professional Basketball Team Website\u003C\u002Fh4>\n\u003Cp>Transform your WordPress blog into a fully configurable website for your basketball team. Features a suite of basketball tools including basketball admin branding.\u003C\u002Fp>\n\u003Cp>SportsPress for Basketball is currently in Beta. Please feel free to share your feedback with us so we can continue to develop and improve SportsPress for Basketball!\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Basketball Admin Branding to replace the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsportspress\u002F\" rel=\"ugc\">SportsPress\u003C\u002Fa> icon with a basketball\u003C\u002Fli>\n\u003Cli>Schedule Games (Fixtures & Results)\u003C\u002Fli>\n\u003Cli>Basketball Court Information & Maps\u003C\u002Fli>\n\u003Cli>Starting lineup and bench.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>SportsPress Pro\u003C\u002Fh4>\n\u003Cp>Looking for more advanced basketball functionality? Upgrade to \u003Ca href=\"http:\u002F\u002Ftboy.co\u002Fpro\" rel=\"nofollow ugc\">SportsPress Pro\u003C\u002Fa> to get access to more advanced features for your basketball team website.\u003C\u002Fp>\n\u003Ch4>SportsPress Themes for Teams\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftboy.co\u002Fcourtside\" rel=\"nofollow ugc\">Courtside\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftboy.co\u002Ffc\" rel=\"nofollow ugc\">Football Club\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftboy.co\u002Fpremier\" rel=\"nofollow ugc\">Premier\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftboy.co\u002Femblem\" rel=\"nofollow ugc\">Emblem\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ftboy.co\u002Fmarquee\" rel=\"nofollow ugc\">Marquee\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Please Rate, Vote, and Enjoy!\u003C\u002Fh4>\n\u003Cp>Your feedback is much appreciated and makes all the difference in improving SportsPress for Basketball.\u003C\u002Fp>\n","SportsPress for Basketball is an extension for SportsPress, an all-in-one sports data plugin that helps sports teams set up a basketball website.",1000,40181,"2020-08-27T14:48:00.000Z","5.5.18","3.8",[19,51,52,53,54],"basketball-team","players","sport","sports","http:\u002F\u002Fthemeboy.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsportspress-for-basketball.0.9.1.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":13,"num_ratings":13,"last_updated":67,"tested_up_to":68,"requires_at_least":16,"requires_php":17,"tags":69,"homepage":73,"download_link":74,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"football-standings","Sport livescores: foootball and basketball results, fixtures and standings","1.0.1","footstandings","https:\u002F\u002Fprofiles.wordpress.org\u002Ffootstandings\u002F","\u003Cp>Introducing Sport LiveScores, the ultimate WordPress plugin for every sports enthusiast and website owner! This powerful, free plugin brings real-time football and basketball score updates directly to your WordPress site. With Sport LiveScores, stay updated with all the action from the sports world without the hassle of ads or subscription fees.\u003C\u002Fp>\n\u003Cp>Key Features:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Comprehensive Coverage: Sport LiveScores offers extensive coverage of football and basketball games, ensuring you don’t miss any action. It includes:\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cul>\n\u003Cli>Today’s Games: Get scores and updates on all the football and basketball games happening today.\u003C\u002Fli>\n\u003Cli>Live Games: Stay on top of live matches as they happen.\u003C\u002Fli>\n\u003Cli>Tomorrow’s Games: Preview upcoming games scheduled for the next day.\u003C\u002Fli>\n\u003Cli>Yesterday’s Games: Review scores and highlights from yesterday’s matches.\u003C\u002Fli>\n\u003Cli>Tournament Tracking: Access scores and updates from over 3000 tournaments, including major events like Euro-2024, the English Premier League (EPL), the UEFA Champions League, the NBA, and even the Olympic Games.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Col>\n\u003Cli>\n\u003Cp>User-Friendly Interface: The plugin is fully responsive, providing an optimal viewing experience across all devices. Whether your audience is on desktop, tablet, or mobile, Sport LiveScores adjusts seamlessly.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Timezone Autodetection: Sport LiveScores intelligently detects the user’s timezone, displaying the match times and event data accurately for their specific location. No more timezone confusion for your international audience!\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Multi-Language Support: Break language barriers with Sport LiveScores’s support for 21 languages, making your website accessible to a global audience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Customization at Your Fingertips: Tailor the look and feel of Sport LiveScores to match your website’s theme. The plugin allows you to customize colors, fonts, and layout, offering a consistent user experience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>No Ads, Absolutely Free: Enjoy all the features of Sport LiveScores without any advertisements. This plugin is completely free, providing a clean and uninterrupted experience for both you and your users.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Sport LiveScores is more than just a plugin – it’s a comprehensive solution for integrating live sports scores into your WordPress site. Whether you’re a sports blogger, a fan site, or a news portal, Sport LiveScores enriches your content, engages your audience, and elevates your website’s appeal.\u003C\u002Fp>\n\u003Cp>Get Sport LiveScores now and transform your WordPress site into a dynamic sports hub!\u003C\u002Fp>\n\u003Cp>Sport LiveScores utilizes the external service 777score.com to obtain up-to-date information about the schedule and results of football matches. 777score.com is a recognized source of sports information trusted by the sports community. This service provides a wide range of information about football, including various leagues, tournaments, and championships from around the world.\u003C\u002Fp>\n\u003Cp>The functioning of the 777score.com service is based on delivering real-time data about selected matches, including the match start time, its status, incidents, and the score. Users have the ability to view detailed information about matches, such as goal lists, received cards, and other key events, without the need to refresh the page. This means that data is automatically updated without requiring page reload.\u003C\u002Fp>\n","Add auto-updated live scores information about more than 3000 football and basketball tournaments and standings with ease!",100,9359,"2024-09-02T10:41:00.000Z","6.6.5",[19,70,54,71,72],"football","team","tournaments","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ffootball-standings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffootball-standings.1.0.1.zip",92,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":95,"download_link":96,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"fantasy-football","Fantasy Football","3.4","jdyken","https:\u002F\u002Fprofiles.wordpress.org\u002Fjdyken\u002F","\u003Cp>Looking to beef up your fantasy football, fantasy basketball, or fantasy baseball website or blog with automatically-updated content? Add the draft rankings, draft projections, game day weather, injuries, weekly rankings, weekly projections, bye weeks, draft auction values, depth charts, dynasty rankings, Best Ball rankings, IDP rankings, and more from FantasyNerds.com with the official Fantasy Nerds WordPress Plugin!\u003C\u002Fp>\n","Fantasy football, basketball, and baseball rankings, projections, injuries, depth charts, and more! Automatically updated.",20,5678,86,6,"2025-03-15T16:04:00.000Z","6.7.5","4.6","7.4",[93,94,77],"fantasy-baseball","fantasy-basketball","https:\u002F\u002Fwww.fantasynerds.com\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffantasy-football.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":84,"downloaded":105,"rating":65,"num_ratings":106,"last_updated":107,"tested_up_to":89,"requires_at_least":108,"requires_php":17,"tags":109,"homepage":112,"download_link":113,"security_score":65,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"victorious","Victorious Fantasy Sports","1.91","victoriousclub","https:\u002F\u002Fprofiles.wordpress.org\u002Fvictoriousclub\u002F","\u003Cp>Victorious Fantasy Sports lets you build and manage fantasy contests on your WordPress site without writing a line of code. Set up private or public leagues for traditional sports (football, baseball, hockey, basketball, soccer) or alternative markets (stock tickers, crypto tokens). Choose from multiple game styles—drafts, pick’em, parlays, props, and more—and customize entry fees and scoring rules.\u003C\u002Fp>\n\u003Cp>Key features include:\u003Cbr \u002F>\n* \u003Cstrong>Game Modes\u003C\u002Fstrong> – Drafts, pick’em, parlay, prop bets, season‑long and daily formats.\u003Cbr \u002F>\n* \u003Cstrong>Live Scoring\u003C\u002Fstrong> – Real‑time updates with live leaderboards and scoring pages.\u003Cbr \u002F>\n* \u003Cstrong>Custom Scoring\u003C\u002Fstrong> – Flexible scoring rules per sport or market.\u003Cbr \u002F>\n* \u003Cstrong>Deposits & Withdrawals\u003C\u002Fstrong> – Integrated payments (PayPal) with balance management.\u003Cbr \u002F>\n* \u003Cstrong>Cryptocurrency Support\u003C\u002Fstrong> – Accept Bitcoin, Ethereum, XRP and more.\u003Cbr \u002F>\n* \u003Cstrong>User‑Created Contests\u003C\u002Fstrong> – Allow your community to run their own games.\u003Cbr \u002F>\n* \u003Cstrong>Serviceware Integration\u003C\u002Fstrong> – Data feeds, schedules, results and fantasy engine logic are hosted on Victorious servers for accuracy and speed.\u003C\u002Fp>\n\u003Cp>The plugin is free to download, but you’ll need a valid license key from \u003Ca href=\"https:\u002F\u002Fvictorious.club\u002F\" rel=\"nofollow ugc\">victorious.club\u003C\u002Fa> to enable live data feeds and the game engine. Victorious adheres to WordPress.org plugin guidelines and maintains secure connections to our API services.\u003C\u002Fp>\n\u003Ch3>License & Terms\u003C\u002Fh3>\n\u003Cp>Victorious Fantasy Sports is released under the GPLv2 license. It is serviceware: the core plugin is open source, but it relies on our hosted services for game schedules, results, data feeds and business logic. By using a license key you agree to our terms of service. Each site requires its own license. We adhere to the WordPress.org guidelines and ensure all data is securely managed.\u003C\u002Fp>\n","Victorious Fantasy Sports transforms your WordPress site into a fully‑featured fantasy platform. Create contests and leagues for any sport or market,  …",1515,1,"2025-10-27T20:51:00.000Z","4.0",[93,94,77,110,111],"fantasy-hockey","fantasy-sports","https:\u002F\u002Fvictorious.club","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvictorious.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":13,"downloaded":122,"rating":13,"num_ratings":13,"last_updated":123,"tested_up_to":124,"requires_at_least":125,"requires_php":126,"tags":127,"homepage":131,"download_link":132,"security_score":65,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"basketball-scorebook","Basketball Scorebook","1.0.5.3","ofbita","https:\u002F\u002Fprofiles.wordpress.org\u002Fofbita\u002F","\u003Cp>\u003Cstrong>Basketball Scorebook\u003C\u002Fstrong> is a lightweight, single-page application that runs directly within your WordPress site via a shortcode. It allows you to record basketball games digitally with the precision of a professional table official.\u003C\u002Fp>\n\u003Cp>Unlike traditional paper scorebooks, this “RecordedScorebook” automatically tracks the \u003Cstrong>timestamps\u003C\u002Fstrong> of major events (scores, fouls, timeouts), giving you a complete timeline of the game.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Real‑time Scoring:\u003C\u002Fstrong> Input 2P, 3P, and FT. Player stats are auto-calculated.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Timestamped Events:\u003C\u002Fstrong> Every foul and timeout is recorded with the exact game time.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Running Score:\u003C\u002Fstrong> Visual running score (1–160 pts) tracking with time and player number.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Print Ready:\u003C\u002Fstrong> Designed to print perfectly on A4 landscape paper or save as PDF via the browser.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Persistence and Backup:\u003C\u002Fstrong> Auto-saves to browser LocalStorage, so your data won’t be lost even if the page is accidentally refreshed. However, to protect against browser cache clearing or device failure, we strongly recommend exporting to JSON for important games.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>JSON Import\u002FExport:\u003C\u002Fstrong> Save match data as JSON files for backup, sharing, or templates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Database Bloat:\u003C\u002Fstrong> All data is handled client-side (Alpine.js). It does not clutter your WordPress database.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Usage:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Simply add the shortcode \u003Ccode>[basketball_scorebook]\u003C\u002Fcode> to any page or post.\u003Cbr \u002F>\nFor the best experience, we recommend using a “Full-Width” page template to maximize the workspace.\u003C\u002Fp>\n\u003Ch3>Demo and Usage\u003C\u002Fh3>\n\u003Cp>You can try the full functionality of the Scorebook without installing the plugin at the official demo site:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Demo URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fdoc778.com\u002Fscorebook?lang=en\" rel=\"nofollow ugc\">https:\u002F\u002Fdoc778.com\u002Fscorebook?lang=en\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage Guide:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fdoc778.com\u002Fhelp-scorebook?lang=en\" rel=\"nofollow ugc\">https:\u002F\u002Fdoc778.com\u002Fhelp-scorebook?lang=en\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Simply add the shortcode \u003Ccode>[basketball_scorebook]\u003C\u002Fcode> to any page or post.\u003Cbr \u002F>\nFor the best experience, we recommend using a “Full-Width” page template to maximize the workspace.\u003C\u002Fp>\n\u003Ch3>Third Party Resources\u003C\u002Fh3>\n\u003Cp>This plugin includes the following third-party libraries:\u003C\u002Fp>\n\u003Ch4>Alpine.js\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Version: 3.13.3 (minified)\u003C\u002Fli>\n\u003Cli>Source Code: https:\u002F\u002Fgithub.com\u002Falpinejs\u002Falpine\u003C\u002Fli>\n\u003Cli>License: MIT License\u003C\u002Fli>\n\u003Cli>License URL: https:\u002F\u002Fgithub.com\u002Falpinejs\u002Falpine\u002Fblob\u002Fmain\u002FLICENSE.md\u003C\u002Fli>\n\u003Cli>Used in: assets\u002Fapp\u002Fcdn.min.js\u003C\u002Fli>\n\u003Cli>Official CDN: https:\u002F\u002Fcdn.jsdelivr.net\u002Fnpm\u002Falpinejs@3.13.3\u002Fdist\u002Fcdn.min.js\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The minified version (cdn.min.js) is distributed by the Alpine.js project.\u003Cbr \u002F>\nThe non-minified source code is available at the GitHub repository linked above.\u003C\u002Fp>\n","A digital basketball scorebook with timestamps, running scores, and PDF export. Perfect for coaches and table officials.",371,"2026-02-21T11:19:00.000Z","6.9.4","5.5","7.2",[19,128,129,54,130],"pdf","scorebook","timer","https:\u002F\u002Fdoc778.com\u002Fscorebook\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbasketball-scorebook.1.0.5.3.zip",{"attackSurface":134,"codeSignals":179,"taintFlows":216,"riskAssessment":244,"analyzedAt":261},{"hooks":135,"ajaxHandlers":156,"restRoutes":170,"shortcodes":171,"cronEvents":176,"entryPointCount":177,"unprotectedCount":178},[136,142,145,148,152],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","admin_menu","wbs_widget_add_admin_menu","BasketScores-widget.php",110,{"type":137,"name":143,"callback":143,"file":140,"line":144},"admin_enqueue_scripts",111,{"type":137,"name":143,"callback":146,"file":140,"line":147},"admin_enqueue_styles",112,{"type":137,"name":149,"callback":150,"file":140,"line":151},"wp_enqueue_scripts","frontend_enqueue_script",114,{"type":137,"name":153,"callback":154,"file":140,"line":155},"admin_init","register_settings",116,[157,162,166],{"action":158,"nopriv":159,"callback":160,"hasNonce":159,"hasCapCheck":159,"file":140,"line":161},"ce_bsw_fetchGroup",false,"my_ajax_fetchGroup_handler",117,{"action":163,"nopriv":159,"callback":164,"hasNonce":159,"hasCapCheck":159,"file":140,"line":165},"ce_bsw_fetchTeams","my_ajax_fetchTeams_handler",118,{"action":167,"nopriv":159,"callback":168,"hasNonce":159,"hasCapCheck":159,"file":140,"line":169},"ce_bsw_processPreview","my_ajax_processPreview_handler",119,[],[172],{"tag":173,"callback":174,"file":140,"line":175},"basketstats","basketstats_shortcode",106,[],4,3,{"dangerousFunctions":180,"sqlUsage":181,"outputEscaping":209,"fileOperations":32,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":215},[],{"prepared":13,"raw":182,"locations":183},11,[184,187,189,192,194,197,199,201,203,205,207],{"file":185,"line":87,"context":186},"admin\\customization.php","$wpdb->get_results() with variable interpolation",{"file":188,"line":87,"context":186},"admin\\settings.php",{"file":140,"line":190,"context":191},22,"$wpdb->query() with variable interpolation",{"file":140,"line":193,"context":191},25,{"file":140,"line":195,"context":196},63,"$wpdb->get_var() with variable interpolation",{"file":140,"line":198,"context":196},81,{"file":140,"line":200,"context":186},148,{"file":140,"line":202,"context":186},150,{"file":140,"line":204,"context":186},170,{"file":140,"line":206,"context":186},179,{"file":140,"line":208,"context":186},185,{"escaped":210,"rawEcho":106,"locations":211},68,[212],{"file":140,"line":213,"context":214},139,"raw output",[],[217,234],{"entryPoint":218,"graph":219,"unsanitizedCount":106,"severity":233},"my_ajax_processPreview_handler (BasketScores-widget.php:133)",{"nodes":220,"edges":231},[221,226],{"id":222,"type":223,"label":224,"file":140,"line":225},"n0","source","$_POST",135,{"id":227,"type":228,"label":229,"file":140,"line":213,"wp_function":230},"n1","sink","echo() [XSS]","echo",[232],{"from":222,"to":227,"sanitized":159},"medium",{"entryPoint":235,"graph":236,"unsanitizedCount":32,"severity":243},"\u003CBasketScores-widget> (BasketScores-widget.php:0)",{"nodes":237,"edges":241},[238,240],{"id":222,"type":223,"label":239,"file":140,"line":225},"$_POST (x2)",{"id":227,"type":228,"label":229,"file":140,"line":213,"wp_function":230},[242],{"from":222,"to":227,"sanitized":159},"low",{"summary":245,"deductions":246},"The 'webeki-basketball-widgets-basketball-results-rankings' plugin version 1.1 exhibits significant security concerns despite a clean vulnerability history. The static analysis reveals an attack surface of 4 entry points, with a concerning 3 of these lacking authentication checks. This means that any unauthenticated user could potentially interact with these parts of the plugin, leading to unintended actions.  Furthermore, the plugin utilizes SQL queries without any prepared statements, which is a high risk for SQL injection vulnerabilities, especially when combined with the lack of proper authorization on AJAX handlers that might process user input for these queries.\n\nThe plugin's strong points include robust output escaping, with 99% of outputs properly escaped, and no recorded CVEs or past vulnerabilities, suggesting the developers have been diligent or lucky in the past. However, the absence of nonce checks and capability checks on its AJAX handlers, coupled with unsanitized path taint flows, introduces direct avenues for exploitation. The combination of numerous unprotected entry points and insecure data handling practices creates a substantial risk that outweighs the positive aspects of output escaping and a clean history.",[247,250,253,256,258],{"reason":248,"points":249},"AJAX handlers without auth checks",10,{"reason":251,"points":252},"SQL queries without prepared statements",8,{"reason":254,"points":255},"No nonce checks on AJAX handlers",7,{"reason":257,"points":255},"No capability checks on AJAX handlers",{"reason":259,"points":260},"Taint flows with unsanitized paths",5,"2026-03-16T22:38:43.770Z",{"wat":263,"direct":270},{"assetPaths":264,"generatorPatterns":267,"scriptPaths":268,"versionParams":269},[265,266],"\u002Fwp-content\u002Fplugins\u002Fwebeki-basketball-widgets-basketball-results-rankings\u002Fadmin\u002Fjs\u002Fscript.js","\u002Fwp-content\u002Fplugins\u002Fwebeki-basketball-widgets-basketball-results-rankings\u002Ffrontend\u002Fcss\u002Fstyle.css",[],[265],[],{"cssClasses":271,"htmlComments":274,"htmlAttributes":275,"restEndpoints":276,"jsGlobals":277,"shortcodeOutput":278},[272,273],"isLeague0","isLeague1",[],[],[],[],[279],"[basketstats"]