[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYnRqij7IcSAc-oSMsiEeMHlE4eZtYeCShkkjW6M0G_U":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":136,"fingerprints":173},"wopo-sound-recorder","WoPo Sound Recorder","1.0.0","WoPo Web","https:\u002F\u002Fprofiles.wordpress.org\u002Fthanhbinh8703\u002F","\u003Cp>Microsoft Sound Recorder clone for website\u003C\u002Fp>\n\u003Cp>You can add shortcode [wopo-sound-recorder] to page you want to show app windows\u003C\u002Fp>\n","Microsoft Sound Recorder clone for website",0,816,"","5.7.15","5.2","7.1",[18,19,20,21,4],"recorder","sound","web-app","wopo","https:\u002F\u002Fwopoweb.com\u002Fcontact-us\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwopo-sound-recorder.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"thanhbinh8703",10,280,90,30,87,"2026-04-04T23:34:49.711Z",[37,54,67,93,111],{"slug":38,"name":39,"version":40,"author":7,"author_profile":8,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":11,"num_ratings":11,"last_updated":45,"tested_up_to":46,"requires_at_least":15,"requires_php":16,"tags":47,"homepage":22,"download_link":51,"security_score":52,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":53},"wopo-minesweeper","WoPo Minesweeper","1.2.0","\u003Cp>Minesweeper Game Online\u003C\u002Fp>\n\u003Cp>You can add shortcode [wopo-minesweeper] to page you want to show game windows\u003C\u002Fp>\n","Minesweeper Game",50,2326,"2023-11-21T01:34:00.000Z","6.4.8",[48,49,50,20,21],"game","minesweeper","online","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwopo-minesweeper.zip",85,"2026-03-15T15:16:48.613Z",{"slug":55,"name":56,"version":6,"author":7,"author_profile":8,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":11,"num_ratings":11,"last_updated":61,"tested_up_to":62,"requires_at_least":15,"requires_php":16,"tags":63,"homepage":22,"download_link":65,"security_score":66,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":53},"wopo-solitaire-web-based-game-online","WoPo Solitaire","\u003Cp>Solitaire Game Online\u003C\u002Fp>\n\u003Cp>You can add shortcode [wopo-solitaire] to page you want to show game windows\u003C\u002Fp>\n","Solitaire Game",20,2197,"2024-09-10T10:33:00.000Z","6.6.5",[48,50,64,20,21],"solitaire","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwopo-solitaire-web-based-game-online.1.0.0.zip",92,{"slug":68,"name":69,"version":70,"author":71,"author_profile":72,"description":73,"short_description":74,"active_installs":75,"downloaded":76,"rating":32,"num_ratings":77,"last_updated":78,"tested_up_to":79,"requires_at_least":80,"requires_php":81,"tags":82,"homepage":88,"download_link":89,"security_score":90,"vuln_count":91,"unpatched_count":11,"last_vuln_date":92,"fetched_at":53},"sg-security","Security Optimizer – The All-In-One Protection Plugin","1.5.9","SiteGround","https:\u002F\u002Fprofiles.wordpress.org\u002Fsiteground\u002F","\u003Cp>\u003Cstrong>Bulletproof your website security in a few clicks against a range of security breaches, including brute-force attacks, malware threats and bots, with our free WordPress security plugin – Security Optimizer.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Proactively monitor your site’s security to detect any suspicious activity and take immediate actions to protect your site and prevent further damage with these essential features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable \u003Cstrong>2FA (Two-Factor Authentication)\u003C\u002Fstrong> for an extra layer of website security\u003C\u002Fli>\n\u003Cli>Set \u003Cstrong>Limit Login Attempts\u003C\u002Fstrong> to deter malicious login attempts and brute-force attacks\u003C\u002Fli>\n\u003Cli>Change your default login URL to \u003Cstrong>Custom Login URL\u003C\u002Fstrong> to avoid attacks\u003C\u002Fli>\n\u003Cli>Activate \u003Cstrong>Advanced XSS Protection\u003C\u002Fstrong> to fortify your website against malicious attacks\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lock and Protect System Folders\u003C\u002Fstrong> to ensure no unauthorized or malicious scripts can be executed in your system folders\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Disable Themes & Plugins Editor\u003C\u002Fstrong> to safeguard your website from unauthorized access via the WordPress editor\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hide WordPress Version\u003C\u002Fstrong> effortlessly, keeping it hidden from prying eyes\u003C\u002Fli>\n\u003Cli>Use \u003Cstrong>Activity Log\u003C\u002Fstrong> to monitor your site and quickly prevent malicious actions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post-Hack Actions\u003C\u002Fstrong> to take immediate actions and prevent further damages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Developed by the website security experts at \u003Ca href=\"https:\u002F\u002Fwww.siteground.com\u002Fwordpress-plugins\u002Fsiteground-security\" rel=\"nofollow ugc\">SiteGround\u003C\u002Fa> and trusted by over 900,000 webmasters for its robust security shield and ease of use to safeguard WordPress applications from possible attacks on any hosting platform.\u003C\u002Fp>\n\u003Ch4>AWARDS:\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.templatemonster.com\u002Fawards\u002Fwinners-2022\u002F\" rel=\"nofollow ugc\">Monster Awards 2022\u003C\u002Fa>: Best WordPress Security Plugin 🥇\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.templatemonster.com\u002Fawards\u002Fwinners-2021\u002F\" rel=\"nofollow ugc\">Monster Awards 2021\u003C\u002Fa>: Best WordPress Security Plugin 🥇\u003C\u002Fp>\n\u003Ch4>Plugin Video\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FFOheCz7sm9A?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Plugin Tutorial\u003C\u002Fh4>\n\u003Cp>Unveil the vast array of features and unleash the full potential of our security plugin in our \u003Ca href=\"https:\u002F\u002Fwww.siteground.com\u002Ftutorials\u002Fwordpress\u002Fsg-security\u002F\" rel=\"nofollow ugc\">Security Optimizer Tutorial\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>SITE PROTECTION FEATURES\u003C\u002Fh3>\n\u003Cp>Safeguard your WordPress application using our powerful site security toolset. Our comprehensive features are specifically designed to strengthen your website’s defenses against malware, exploits, and various malicious activities. With these tools at your disposal, you can ensure the utmost bot, malware and brute force protection for your website:\u003C\u002Fp>\n\u003Ch4>Lock and Protect System Folders\u003C\u002Fh4>\n\u003Cp>Ensure the maximum security for your application’s system folders by preventing the execution of any unauthorized or malicious scripts. The Lock and Protect System Folders feature acts as a powerful shield against potential threats.\u003C\u002Fp>\n\u003Ch4>Hide WordPress Version\u003C\u002Fh4>\n\u003Cp>Protect your website from mass attacks by hiding the WordPress version, which helps to mitigate version-specific vulnerabilities.\u003C\u002Fp>\n\u003Ch4>Disable Themes & Plugins Editor\u003C\u002Fh4>\n\u003Cp>Enhance the security of your WordPress admin area by disabling the Themes & Plugins Editor, preventing potential coding errors and unauthorized access through the editor.\u003C\u002Fp>\n\u003Ch4>Disable XML-RPC\u003C\u002Fh4>\n\u003Cp>Mitigate potential security risks by disabling the XML-RPC protocol, which has been exploited in various attacks. Please note that disabling XML-RPC will restrict WordPress from communicating with third-party systems. We recommend enabling this feature unless you have a specific need for it.\u003C\u002Fp>\n\u003Ch4>Disable RSS and ATOM Feeds\u003C\u002Fh4>\n\u003Cp>Prevent content scraping and specific attacks on your site by disabling RSS and ATOM feeds. Unless you have readers accessing your site via RSS readers, it is recommended to keep this feature enabled.\u003C\u002Fp>\n\u003Ch4>Advanced XSS Protection\u003C\u002Fh4>\n\u003Cp>Add an extra layer of website security against cross-site scripting (XSS) attacks by enabling Advanced XSS Protection, bolstering the overall security of your website.\u003C\u002Fp>\n\u003Ch4>Delete Default Readme.html\u003C\u002Fh4>\n\u003Cp>Eliminate potential vulnerabilities by deleting the default readme.txt file, which contains information about your website. By removing this file, you reduce the risk of your site being listed in vulnerable sites targeted by hackers.\u003C\u002Fp>\n\u003Ch3>Login Security\u003C\u002Fh3>\n\u003Ch4>Custom Login Url\u003C\u002Fh4>\n\u003Cp>Personalize your login URL to thwart potential attacks and create a strong entry point. Bid farewell to the default login URL and embrace a bespoke path of your choosing. Additionally, you have the freedom to modify the default sign-up URL as well.\u003C\u002Fp>\n\u003Ch4>Login Access\u003C\u002Fh4>\n\u003Cp>Restrict login page access to specific IP addresses or IP ranges, effectively thwarting malicious login attempts and deterring brute force attacks.\u003C\u002Fp>\n\u003Ch4>2FA (Two-Factor Authentication)\u003C\u002Fh4>\n\u003Cp>Immerse your website in an impenetrable shield of security with 2FA. This formidable feature demands that all admin users furnish a unique token, generated exclusively through the Google Authentication application, during the login process.\u003C\u002Fp>\n\u003Ch4>Disable Common Usernames\u003C\u002Fh4>\n\u003Cp>Don’t fall victim to predictable security breaches! The use of common usernames, such as ‘admin,’ poses a significant threat to the integrity of your website. Activate this option to disable the creation of common usernames. If any weak usernames already exist, we’ll prompt you to provide new, stronger alternatives.\u003C\u002Fp>\n\u003Ch4>Limit Login Attempts\u003C\u002Fh4>\n\u003Cp>Maintain control over unauthorized access attempts with Limit Login Attempts. Set a specific threshold for the number of login failures users can endure before consequences arise. After reaching the limit, the IP address associated with the unsuccessful login attempts will be blocked for one hour. Persistent failures will result in longer restrictions, starting with 24 hours and escalating to a week.\u003C\u002Fp>\n\u003Ch3>ACTIVITY MONITORING\u003C\u002Fh3>\n\u003Cp>Monitor your website and login page for unauthorized visitors and brute force attempts to prevent malicious actions\u003C\u002Fp>\n\u003Ch4>Activity Log\u003C\u002Fh4>\n\u003Cp>The Activity Log page provides you with a comprehensive view of the activities performed by registered, unknown, and blocked visitors. It allows you to closely monitor any suspicious behavior and take appropriate actions in case of a compromised user, plugin, or hacking attempt. You can leverage the quick tools available to swiftly block future attempts.\u003C\u002Fp>\n\u003Ch4>Weekly Security Reports\u003C\u002Fh4>\n\u003Cp>Receive a weekly traffic summary for your website directly to your inbox. This \u003Cstrong>Weekly Security Report\u003C\u002Fstrong> compiles data on both bot and human traffic, along with details about blocked login and visit attempts to proactively monitor traffic and promptly identify suspicious activity.\u003C\u002Fp>\n\u003Ch3>POST-HACK ACTIONS\u003C\u002Fh3>\n\u003Cp>Take immediate measures to protect your website if you suspect a compromise and prevent further damage. Here, you’ll find convenient solutions to address the situation effectively:\u003C\u002Fp>\n\u003Ch4>Reinstall All Free Plugins\u003C\u002Fh4>\n\u003Cp>In the event of a hack, utilizing the Reinstall All Free Plugins feature can help mitigate potential harm. This action reinstalls all of your free plugins, reducing the likelihood of additional exploits or the reuse of malicious code.\u003C\u002Fp>\n\u003Ch4>Log Out All Users\u003C\u002Fh4>\n\u003Cp>To prevent any further unauthorized activities by users or attackers, you can choose to log out all users instantly using the Log Out All Users feature.\u003C\u002Fp>\n\u003Ch4>Force Password Reset\u003C\u002Fh4>\n\u003Cp>By enforcing a password reset, you can ensure that all users are prompted to change their passwords during their next login. This not only strengthens the security of their accounts but also immediately logs out all currently logged-in users.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 4.7\u003C\u002Fli>\n\u003Cli>PHP 7.0\u003C\u002Fli>\n\u003Cli>Working .htaccess file\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Data Collection\u003C\u002Fh3>\n\u003Cp>Collection of technical data is optional and is \u003Ca href=\"https:\u002F\u002Fwww.siteground.com\u002Fkb\u002Fwhat-information-wp-plugins-collect\" rel=\"nofollow ugc\">listed here\u003C\u002Fa>. This data is collected only for technical analysis, improvements and the possibility to contact the plugin user in case urgent issues need to be fixed (for example a critical security release that needs to be communicated to site owners). The plugin user can manage their preferences within the WP admin to control the collection of technical data. We advise opting in for this data collection, as it can enhance the plugin’s performance. You may find more information on data collection in our \u003Ca href=\"https:\u002F\u002Fwww.siteground.com\u002Fviewtos\u002Fsiteground_plugins_privacy_notice\" rel=\"nofollow ugc\">Plugins Privacy Notice\u003C\u002Fa>.\u003C\u002Fp>\n","Secure your WordPress site from brute-force attacks, threats, malware, and bots. Free to use and easy to set up.",1000000,31890492,153,"2026-01-15T09:21:00.000Z","6.9.4","4.7","7.0",[83,84,85,86,87],"firewall","login","malware-scanner","security","web-application-firewall","https:\u002F\u002Fsiteground.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsg-security.1.5.9.zip",86,5,"2025-11-30 00:00:00",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":103,"num_ratings":104,"last_updated":105,"tested_up_to":79,"requires_at_least":80,"requires_php":16,"tags":106,"homepage":109,"download_link":110,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":53},"block-bad-queries","BBQ Firewall – Fast & Powerful Firewall Security","20260205","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cblockquote>\n\u003Cp>🔥 Install, activate, and done!\u003Cbr \u002F>\n  🔥 Powerful protection from WP’s \u003Cstrong>fastest\u003C\u002Fstrong> firewall plugin.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fblock-bad-queries\u002F\" rel=\"nofollow ugc\">BBQ Firewall\u003C\u002Fa> is a lightweight, blazing-fast firewall plugin that protects your site against a wide range of threats. BBQ checks all incoming traffic and quietly blocks bad requests containing nasty stuff like \u003Ccode>eval(\u003C\u002Fcode>, \u003Ccode>base64_\u003C\u002Fcode>, and excessively long request-strings. This is a simple yet solid solution for sites that are unable to use a \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002F8g-firewall\u002F\" rel=\"nofollow ugc\">strong Apache\u002F.htaccess firewall\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>🔥 Adds a strong firewall to ANY WordPress site\u003Cbr \u002F>\n  🔥 Works with all WordPress plugins and themes\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Powerful Protection\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>BBQ protects your site against many threats:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>SQL injection attacks\u003C\u002Fli>\n\u003Cli>Executable file uploads\u003C\u002Fli>\n\u003Cli>Directory traversal attacks\u003C\u002Fli>\n\u003Cli>Unsafe character requests\u003C\u002Fli>\n\u003Cli>Excessively long requests\u003C\u002Fli>\n\u003Cli>PHP remote\u002Ffile execution\u003C\u002Fli>\n\u003Cli>XSS, XXE, and related attacks\u003C\u002Fli>\n\u003Cli>Protects against bad bots\u003C\u002Fli>\n\u003Cli>Protects against bad referrers\u003C\u002Fli>\n\u003Cli>Protects against bad POST content\u003C\u002Fli>\n\u003Cli>Protects against many other bad requests\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>🔥 Works great with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblackhole-bad-bots\u002F\" rel=\"ugc\">Blackhole for Bad Bots\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbanhammer\u002F\" rel=\"ugc\">Banhammer\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Awesome Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>BBQ provides all the best firewall features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Rated \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblock-bad-queries\u002F#reviews\" rel=\"ugc\">5 stars\u003C\u002Fa> at WordPress.org\u003C\u002Fli>\n\u003Cli>100% plug-&-play, zero configuration\u003C\u002Fli>\n\u003Cli>100% focused on security and performance\u003C\u002Fli>\n\u003Cli>Blocks a wide range of malicious URL requests\u003C\u002Fli>\n\u003Cli>Fastest Web Application Firewall (WAF) for WordPress\u003C\u002Fli>\n\u003Cli>Based on the \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002F7g-firewall\u002F\" rel=\"nofollow ugc\">7G\u003C\u002Fa>\u002F\u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002F8g-firewall\u002F\" rel=\"nofollow ugc\">8G Firewall\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Scans all incoming traffic and blocks bad requests\u003C\u002Fli>\n\u003Cli>Scans all types of requests: GET, POST, PUT, DELETE, etc.\u003C\u002Fli>\n\u003Cli>Protects against known bad bots and referrers\u003C\u002Fli>\n\u003Cli>Works silently behind the scenes to protect your site\u003C\u002Fli>\n\u003Cli>Hassle-free security plugin that’s easy to use\u003C\u002Fli>\n\u003Cli>Thoroughly tested, error-free performance\u003C\u002Fli>\n\u003Cli>Extremely low rate of false positives\u003C\u002Fli>\n\u003Cli>Compatible with other security plugins\u003C\u002Fli>\n\u003Cli>Regularly updated and “future proof”\u003C\u002Fli>\n\u003Cli>Firewall \u003C 10 kilobytes in size\u003C\u002Fli>\n\u003Cli>Lightweight, fast and flexible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>🔥 For advanced protection and features, check out \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro &raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Exclusive Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Customize firewall via plugin settings\u003C\u002Fli>\n\u003Cli>Easily add or remove firewall patterns\u003C\u002Fli>\n\u003Cli>Easily add Jeff Starr’s \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fultimate-ai-block-list\u002F\" rel=\"nofollow ugc\">AI Block List\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Send Email Alerts for blocked requests\u003C\u002Fli>\n\u003Cli>Quickly enable\u002Fdisable firewall rules\u003C\u002Fli>\n\u003Cli>Disable firewall for logged-in users\u003C\u002Fli>\n\u003Cli>Block excessively long URI requests\u003C\u002Fli>\n\u003Cli>Protect against XML-RPC exploits\u003C\u002Fli>\n\u003Cli>Block any individual IP address\u003C\u002Fli>\n\u003Cli>Block entire ranges of IP addresses\u003C\u002Fli>\n\u003Cli>Protect against user-ID phishing\u003C\u002Fli>\n\u003Cli>Redirect all blocked requests\u003C\u002Fli>\n\u003Cli>Display a custom “blocked” message\u003C\u002Fli>\n\u003Cli>Set your own response status code\u003C\u002Fli>\n\u003Cli>Complete inline documentation\u003C\u002Fli>\n\u003Cli>Statistics for blocked requests\u003C\u002Fli>\n\u003Cli>Tools to reset options and patterns\u003C\u002Fli>\n\u003Cli>Import and Export firewall patterns\u003C\u002Fli>\n\u003Cli>One-click pattern testing\u003C\u002Fli>\n\u003Cli>Whitelist IP addresses\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>..plus everything the free version can do and more.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>🔥 Learn more and \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">get BBQ Pro &raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin does not collect or store any user data. It does not set any cookies, and it does not connect to any third-party locations. Thus, this plugin does not affect user privacy in any way.\u003C\u002Fp>\n\u003Cp>BBQ Firewall is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>🔥 BBQ = Block Bad Queries\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thank you! 🙂\u003C\u002Fp>\n","The fastest firewall plugin for WordPress. Protect against a wide range of threats with minimal performance impact.",100000,3258210,98,156,"2026-02-05T20:29:00.000Z",[107,83,108,86,87],"bots","secure","https:\u002F\u002Fperishablepress.com\u002Fblock-bad-queries\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblock-bad-queries.20260205.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":66,"num_ratings":121,"last_updated":122,"tested_up_to":79,"requires_at_least":123,"requires_php":124,"tags":125,"homepage":131,"download_link":132,"security_score":133,"vuln_count":134,"unpatched_count":11,"last_vuln_date":135,"fetched_at":53},"super-progressive-web-apps","Super Progressive Web Apps","2.2.42","SuperPWA","https:\u002F\u002Fprofiles.wordpress.org\u002Fsuperpwa\u002F","\u003Cp>Progressive Web Apps (PWA) is a new technology that combines the best of mobile web and the best of mobile apps to create a superior mobile web experience. They are installed on the phone like a normal app (web app) and can be accessed from the home screen.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002F\" rel=\"nofollow ugc\">Home\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Help\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdocs\u002F#pro-doc\" rel=\"nofollow ugc\">Premium version Features\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Users can come back to your website by launching the app from their home screen and interact with your website through an app-like interface. Your return visitors will experience almost-instant loading times and enjoy the great performance benefits of your PWA!\u003C\u002Fp>\n\u003Cp>Super Progressive Web Apps makes it easy for you to convert your WordPress website into a Progressive Web App instantly!\u003C\u002Fp>\n\u003Cp>Once SuperPWA is installed, users browsing your website from a supported mobile device will see a “Add To Home Screen” notice (from the bottom of the screen) and will be able to ‘install your website’ on the home screen of their device. Every page visited is stored locally on their device and will be available to read even when they are offline!\u003C\u002Fp>\n\u003Cp>SuperPWA is easy to configure, it takes less than a minute to set-up your Progressive Web App! SuperPWA does a clean uninstall, by removing every database entry and file that it creates. In fact, none of the default settings are saved to the database until you manually save it the first time. Go ahead and give it a try.\u003C\u002Fp>\n\u003Cp>And the best part? If you ever get stuck, we are here to watch your back! \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsuper-progressive-web-apps\" rel=\"ugc\">Open a support\u003C\u002Fa> ticket if you have a question or need a feature. We are super excited to hear your feedback and we want to genuinely help you build the best Progressive Web App for your WordPress website!\u003C\u002Fp>\n\u003Ch4>Quick Demo?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Open up \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002F?utm_source=wordpress.org&utm_medium=description-demo\" rel=\"nofollow ugc\">SuperPWA.com\u003C\u002Fa> in a supported device. \u003C\u002Fli>\n\u003Cli>Add the website to your home screen either from the Add to Home Screen prompt (Chrome for Android) or from the browser menu. \u003C\u002Fli>\n\u003Cli>Open the app from your home screen and you will see the splash screen. \u003C\u002Fli>\n\u003Cli>Turn off your data and wifi to go offline and open up the app. You will still be able to see the app and browse the pages you have already visited. \u003C\u002Fli>\n\u003Cli>Browse to a page that you haven’t visited before. The offline page will be displayed. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Thank You PWA Enthusiasts!\u003C\u002Fh4>\n\u003Cp>We are humbled by the feedback from the community. Thanks to everyone who believed in us and tried our plugin. Your feedback has been invaluable and we have learned a lot from your experience. Thank you for your love and support and we hope to return the love by striving to bring you the best ever Progressive Web Apps plugin for WordPress!\u003C\u002Fp>\n\u003Ch3>What’s in the box\u003C\u002Fh3>\n\u003Cp>Here are the current features of Super Progressive Web Apps:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generate a manifest for your website and add it to the head of your website.\u003C\u002Fli>\n\u003Cli>Set the application icon for your Progressive Web App. \u003C\u002Fli>\n\u003Cli>Set the background color for the splash screen of your Progressive Web App. \u003C\u002Fli>\n\u003Cli>Your website will show the “Add to home screen” notice when accessed in a supported browser.\u003C\u002Fli>\n\u003Cli>Aggressive caching of pages using CacheStorage API.\u003C\u002Fli>\n\u003Cli>Pages once cached are served even if the user is offline. \u003C\u002Fli>\n\u003Cli>Set custom offline page: Select the page you want the user to see when a page that isn’t in the cache is accessed and the user is offline.\u003C\u002Fli>\n\u003Cli>New in version 1.2: Support for theme-color meta property. Change the color of browser address bar of Chrome, Firefox OS and Opera to match your website colors. \u003C\u002Fli>\n\u003Cli>New in version 1.2: Now you can edit the Application Name and Application Short name.\u003C\u002Fli>\n\u003Cli>New in version 1.2: Set the start page of your PWA.\u003C\u002Fli>\n\u003Cli>New in version 1.2: Set Accelerated Mobile Pages (AMP) version of the start page. Supported plugins: AMP for WordPress, AMP for WP, Better AMP, AMP Supremacy, WP AMP.\u003C\u002Fli>\n\u003Cli>New in version 1.3: Added support for high-quality splash screen. You can now set the 512×512 icon for the splash screen of your Progressive Web App.\u003C\u002Fli>\n\u003Cli>New in version 1.3: Super Progressive Web Apps now accounts for content updates and will update the cache as you update the website. \u003C\u002Fli>\n\u003Cli>New in version 1.3: Improved in-browser service worker update handling.\u003C\u002Fli>\n\u003Cli>New in version 1.4: You can now set the default orientation of your PWA. Choose from “any” (Follow Device Orientation), “Portrait” and “Landscape”.\u003C\u002Fli>\n\u003Cli>New in version 1.4: You can now set the theme_color property in the manifest.\u003C\u002Fli>\n\u003Cli>New in version 1.5: OneSignal integration for Push notifications.\u003C\u002Fli>\n\u003Cli>New in version 1.6: WordPress Multisite Network compatibility. \u003C\u002Fli>\n\u003Cli>New in version 1.7: Add-Ons for SuperPWA is here! Ships with \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Faddons\u002Futm-tracking\u002F?utm_source=wordpress.org&utm_medium=description\" rel=\"nofollow ugc\">UTM Tracking Add-On\u003C\u002Fa> to track visits coming from your PWA.\u003C\u002Fli>\n\u003Cli>New in version 1.8: Compatibility issues with OneSignal are now resolved! \u003C\u002Fli>\n\u003Cli>New in version 1.8: New Add-On: \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Faddons\u002Fapple-touch-icons\u002F?utm_source=wordpress.org&utm_medium=description\" rel=\"nofollow ugc\">Apple Touch Icons\u003C\u002Fa> that sets your app icons as Apple Touch Icons. \u003C\u002Fli>\n\u003Cli>New in version 2.0: SuperPWA is now compatible with WordPress installed in a sub-folder. \u003C\u002Fli>\n\u003Cli>New in version 2.0: You can now set \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdoc\u002Fweb-app-manifest-display-modes\u002F?utm_source=wordpress.org&utm_medium=description\" rel=\"nofollow ugc\">display property\u003C\u002Fa> from SuperPWA settings.\u003C\u002Fli>\n\u003Cli>New in version 2.1.1: SuperPWA now supports Maskable Icons.\u003C\u002Fli>\n\u003Cli>New in version 2.1.15: SuperPWA now supports Monochrome Icon.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fchangelog\u002F\" rel=\"nofollow ugc\">Full changelog\u003C\u002Fa> \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Upcoming features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Offline Indicator Notice.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>PRO Version\u003C\u002Fstrong> support additional \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">advance feature\u003C\u002Fa>\u003Cbr \u002F>\n* Call To Action (CTA) \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdoc\u002Fcall-to-action-cta-add-on-for-superpwa\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>\u003Cbr \u002F>\n* Android APK APP Generator \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdoc\u002Fandroid-apk-app-generator-add-on-for-superpwa\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>\u003Cbr \u002F>\n* Data Analytics \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdoc\u002Fdata-analytics-add-on-for-superpwa\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>\u003Cbr \u002F>\n* Pre-Loader \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdocs\u002Farticle\u002Fpreloader-add-on-for-superpwa\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>\u003Cbr \u002F>\n* App Shortcuts \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdocs\u002Farticle\u002Fapp-shortcuts-add-on-for-superpwa\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>\u003Cbr \u002F>\n* QR Code Generator \u003Ca href=\"https:\u002F\u002Fsuperpwa.com\u002Fdocs\u002Farticle\u002Fqr-code-generator-add-on-for-superpwa\u002F\" rel=\"nofollow ugc\">More Info\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Progressive Web App Minimum Requirements\u003C\u002Fh3>\n\u003Cp>Progressive Web Apps require that your WordPress website is served from a secure origin i.e. your website should be HTTPS and not HTTP. If your website isn’t HTTPS, please contact your host about it. You can also \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsuper-progressive-web-apps\" rel=\"ugc\">ask us\u003C\u002Fa> if you need help.\u003C\u002Fp>\n\u003Ch3>Device and Browser Support For PWA\u003C\u002Fh3>\n\u003Cp>Progressive web apps need browsers that support manifests and service workers. Currently Google Chrome (version 57+), Chrome for Android (62), Mozilla Firefox (57), Firefox for Android (58) are the major browsers that support PWA.\u003C\u002Fp>\n\u003Cp>The list is fast growing and is likely to be supported in most major browsers by the end of this year.\u003C\u002Fp>\n\u003Ch3>How To Convert Your WordPress Website Into A Progressive Web App\u003C\u002Fh3>\n\u003Ch4>WordPress Installation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Visit WordPress Admin > Plugins > Add New\u003C\u002Fli>\n\u003Cli>Search for ‘Super Progressive Web Apps’\u003C\u002Fli>\n\u003Cli>Click “Install Now” and then “Activate” Super Progressive Web Apps\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>To install manually:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Upload super-progressive-web-apps folder to the \u002Fwp-content\u002Fplugins\u002F directory on your server\u003C\u002Fli>\n\u003Cli>Go to WordPress Admin > Plugins\u003C\u002Fli>\n\u003Cli>Activate Super Progressive Web Apps plugin from the list.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Customizing Your Progressive Web App\u003C\u002Fh4>\n\u003Cp>Your Progressive Web App should be ready to test with the default settings on activation. You can customize it further and make it truly your own.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Go to WordPress Admin > SuperPWA\u003C\u002Fli>\n\u003Cli>Set a Background Color for the splash screen to be shown when your PWA is opened on a mobile device.\u003C\u002Fli>\n\u003Cli>Set the Application Icon. This will be the icon of your PWA when it is added to the homescreen in a mobile device. The icon must be a PNG image and exactly 192 x 192 pixels in size.\u003C\u002Fli>\n\u003Cli>Set the Offline Page. This page will be displayed if the user is offline and the page he requested is not cached already. Ideally you should create a dedicated WordPress page and set it here. Within the page you create, you could add a note that reads, “It looks like you are offline and the page you requested is not available right now. Please check back again once you are online.”. \u003C\u002Fli>\n\u003Cli>Click “Save Settings”.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Testing Your Progressive Web App\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Open a supported browser in a supported device (for eg: Chrome for Android (62 or higher) in an Android Phone)\u003C\u002Fli>\n\u003Cli>Enter your website and wait till it fully loads\u003C\u002Fli>\n\u003Cli>You should see a pop-up that has your Application Icon and a button that reads “ADD TO HOME SCREEN”.\u003C\u002Fli>\n\u003Cli>Click on it and your PWA will be added to your home screen. Wait for the install to complete. \u003C\u002Fli>\n\u003Cli>Go to your home screen and open your PWA. Browse into a few pages if you like. Close the App.\u003C\u002Fli>\n\u003Cli>Disconnect from the internet and now open your PWA again. You should be able to see all the pages that you previously browsed. \u003C\u002Fli>\n\u003Cli>Try visiting a page that you did not visit before. You should see the page you set as your “Offline Page” in the settings of SuperPWA. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Troubleshooting Your Progressive Web App\u003C\u002Fh4>\n\u003Cp>Uh, oh. Your PWA did not work as expected? You do not see the “Add to Home Screen” notice?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Make sure your website has a SSL certificate installed. i.e. your website should be https instead of http (as in https:\u002F\u002Fyour-domain.com).\u003C\u002Fli>\n\u003Cli>Make sure you are using a supported device and a supported browser. Refer to the “Device and Browser Support For PWA” list above.\u003C\u002Fli>\n\u003Cli>Make sure your Application Icon and Splash Screen Icon’s are of PNG format and 192px X 192px and 512px X 512px in size respectively. \u003C\u002Fli>\n\u003Cli>Clear the browser cache and try again. In Chrome for Android, go to Settings > Privacy > “Clear browsing data”.\u003C\u002Fli>\n\u003Cli>If the application icon does not update after first install, delete the PWA from your phone, clear browser cache and install again. (We are working on making it better.) \u003C\u002Fli>\n\u003Cli>Create a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsuper-progressive-web-apps\" rel=\"ugc\">new support ticket\u003C\u002Fa> and share a link to your website. We will take a look and figure it out for you.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Feature Requests, Issues, Pull Requests\u003C\u002Fh3>\n\u003Cp>Here is our repository on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FSuperPWA\u002FSuper-Progressive-Web-Apps\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. Send us your pull requests, feature requests or issues, if any.\u003C\u002Fp>\n\u003Ch3>About us\u003C\u002Fh3>\n\u003Cp>We are a duo who got excited about the idea. Our mission is simple: Help you build an awesome PWA that your users would want to have on their home screen.\u003C\u002Fp>\n\u003Cp>When we first heard about PWA we wanted to learn everything about it. We have spent countless hours learning and wants to share it with the world.\u003C\u002Fp>\n\u003Cp>Please give us your constructive feedback and support.\u003C\u002Fp>\n","SuperPWA helps you convert your WordPress website into a Progressive Web App instantly.",50000,2278059,224,"2026-02-09T14:37:00.000Z","3.6.0","5.3",[126,127,128,129,130],"add-to-homescreen","android-app","chrome-app","progressive-web-apps","pwa","https:\u002F\u002Fsuperpwa.com\u002F?utm_source=superpwa-plugin&utm_medium=plugin-uri","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsuper-progressive-web-apps.2.2.42.zip",99,2,"2023-11-22 00:00:00",{"attackSurface":137,"codeSignals":153,"taintFlows":163,"riskAssessment":164,"analyzedAt":172},{"hooks":138,"ajaxHandlers":145,"restRoutes":146,"shortcodes":147,"cronEvents":151,"entryPointCount":152,"unprotectedCount":11},[139],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","wp_enqueue_scripts","woposr_enqueue_scripts","wopo-sound-recorder.php",21,[],[],[148],{"tag":4,"callback":149,"file":143,"line":150},"wopo_sound_recorder_shortcode",38,[],1,{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":162},[],{"prepared":11,"raw":11,"locations":156},[],{"escaped":152,"rawEcho":152,"locations":158},[159],{"file":143,"line":160,"context":161},43,"raw output",[],[],{"summary":165,"deductions":166},"The \"wopo-sound-recorder\" v1.0.0 plugin exhibits a generally good security posture based on the provided static analysis.  The absence of any detected dangerous functions, external HTTP requests, file operations, or raw SQL queries is a positive indicator.  Furthermore, the plugin's vulnerability history is clean, with no recorded CVEs, suggesting a diligent approach to security or a lack of past exploitable issues.  However, there are areas for improvement that introduce minor risks.\n\nThe primary concern stems from the presence of a shortcode, which represents a potential entry point into the application. While the static analysis indicates zero unprotected entry points, the lack of explicit mention of capability checks or nonce checks on the shortcode's execution is a notable omission.  Additionally, only 50% of the output escaping is properly handled, leaving a risk of cross-site scripting (XSS) vulnerabilities if sensitive data is rendered without adequate sanitization. The absence of taint analysis results means that potential data flow issues cannot be fully assessed.\n\nIn conclusion, the plugin is not inherently insecure, and its clean vulnerability history is commendable. However, the potential for XSS through unescaped output and the need for clearer security checks on the shortcode's functionality prevent it from achieving a perfect security score. Addressing these specific points would significantly bolster the plugin's overall security.",[167,169],{"reason":168,"points":91},"Unescaped output detected",{"reason":170,"points":171},"Shortcode present without clear auth\u002Fnonce checks",3,"2026-03-17T06:03:11.866Z",{"wat":174,"direct":185},{"assetPaths":175,"generatorPatterns":179,"scriptPaths":180,"versionParams":181},[176,177,178],"\u002Fwp-content\u002Fplugins\u002Fwopo-sound-recorder\u002Fassets\u002Fcss\u002FXP.css","\u002Fwp-content\u002Fplugins\u002Fwopo-sound-recorder\u002Fassets\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Fwopo-sound-recorder\u002Fassets\u002Fjs\u002Fmain.js",[],[178],[182,183,184],"wopo-sound-recorder\u002Fassets\u002Fcss\u002FXP.css?ver=","wopo-sound-recorder\u002Fassets\u002Fcss\u002Fmain.css?ver=","wopo-sound-recorder\u002Fassets\u002Fjs\u002Fmain.js?ver=",{"cssClasses":186,"htmlComments":195,"htmlAttributes":196,"restEndpoints":199,"jsGlobals":200,"shortcodeOutput":202},[187,188,189,190,191,192,193,194],"wopo_sound_recorder_window","title-bar","title-bar-text","title-bar-controls","btn-minimize","btn-maximize","btn-close","window-body",[],[197,198],"id=\"wopo_sound_recorder_window\"","id=\"wopo_sound_recorder\"",[],[201],"wopoSolitaire",[203,204,205,206,207,208,209,210,210,211,212,210,210],"\u003Cdiv id=\"wopo_sound_recorder_window\" class=\"window\">","\u003Cdiv class=\"title-bar\">","\u003Cdiv class=\"title-bar-text\">WoPo Sound Recorder\u003C\u002Fdiv>","\u003Cdiv class=\"title-bar-controls\">","\u003Cbutton class=\"btn-minimize\" aria-label=\"Minimize\">\u003C\u002Fbutton>","\u003Cbutton class=\"btn-maximize\" aria-label=\"Maximize\">\u003C\u002Fbutton>","\u003Cbutton class=\"btn-close\" aria-label=\"Close\">\u003C\u002Fbutton>","\u003C\u002Fdiv>","\u003Cdiv class=\"window-body\">","\u003Ciframe id=\"wopo_sound_recorder\">\u003C\u002Fiframe>"]