[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fIizUubpst5kpJUurIK1ZtOq_laYvbgBT5wQazHcu1KU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":36,"analysis":122,"fingerprints":175},"wordcycle","WordCycle","1.1","eswhite","https:\u002F\u002Fprofiles.wordpress.org\u002Feswhite\u002F","\u003Cp>WordCycle is a WordPress plugin that acts as a wrapper for the popular \u003Ca href=\"http:\u002F\u002Fmalsup.com\u002Fjquery\u002Fcycle\u002F\" rel=\"nofollow ugc\">jQuery Cycle Plugin\u003C\u002Fa> by Mike Alsup. Use the [slideshow] shortcode to insert a jQuery Cycle slideshow into your WordPress post or page.\u003C\u002Fp>\n\u003Cp>No JavaScript necessary! Customize the slideshow using the shortcode options and by modifying your theme’s stylesheet.  The plugin also adds a custom template tag wordcycle_slideshow().\u003C\u002Fp>\n\u003Cp>WordCycle is developed by \u003Ca href=\"http:\u002F\u002Fblog.estherswhite.net\" rel=\"nofollow ugc\">Esther S White\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Usage and Examples\u003C\u002Fh3>\n\u003Cp>Uploaded images are called attachments in the WordPresss database. If WordCycle is installed, you can use the [slideshow] shortcode to create a slideshow of all the attachments associated with a post. You can also use the custom template tag wordcycle_slideshow()  in your WordPress template files.\u003C\u002Fp>\n\u003Cp>The slideshow advances automatically and is minimally styled. The slideshow uses the Link, Title, and Caption attributes of the WordPress Image Uploader\u002FGallery, as well as the gallery sorting options.\u003C\u002Fp>\n\u003Cp>To add the slideshow to a post, insert this code:  [slideshow]\u003C\u002Fp>\n\u003Cp>More examples available on the plugin website.\u003C\u002Fp>\n\u003Ch3>Options & Defaults\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>id            \u002F\u002F post id: #, current (default)  \u003C\u002Fli>\n\u003Cli>order         \u002F\u002F slide order: ASC (default), DESC, RAND  \u003C\u002Fli>\n\u003Cli>orderby       \u002F\u002F slide order by: menu_order ID (default), see list in codex: https:\u002F\u002Fcodex.wordpress.org\u002FTemplate_Tags\u002Fget_posts  \u003C\u002Fli>\n\u003Cli>size          \u002F\u002F image size: thumbnail, small, medium (default), large, full-size  \u003C\u002Fli>\n\u003Cli>speed         \u002F\u002F effect speed: slow (default), normal, fast  \u003C\u002Fli>\n\u003Cli>fx            \u002F\u002F slideshow effect (view the \u003Ca href=\"http:\u002F\u002Fmalsup.com\u002Fjquery\u002Fcycle\u002Fbrowser.html\" rel=\"nofollow ugc\">jQuery Cycle Plugin Effects Browser\u003C\u002Fa> for a complete list)  \u003C\u002Fli>\n\u003Cli>timeout       \u002F\u002F time on each slide: miliseconds: 8000 (default)  \u003C\u002Fli>\n\u003Cli>pause         \u002F\u002F pause on mouse-over: 0 (default) or 1\u003C\u002Fli>\n\u003Cli>next          \u002F\u002F selector of element to use as click trigger for next slide : null (default) or DOM element ID\u003C\u002Fli>\n\u003Cli>prev          \u002F\u002F selector of element to use as click trigger for previous slide : null (default) or DOM element ID\u003C\u002Fli>\n\u003Cli>include       \u002F\u002F include image by ID\u003C\u002Fli>\n\u003Cli>exclude       \u002F\u002F exclude image by ID\u003C\u002Fli>\n\u003Cli>link          \u002F\u002F image link: file, attachment\u003C\u002Fli>\n\u003Cli>align         \u002F\u002F slideshow position: left, right, none (default)  \u003C\u002Fli>\n\u003Cli>float (deprecated)            \u002F\u002F slideshow position: left, right, none (default)  \u003C\u002Fli>\n\u003C\u002Ful>\n","WordCycle is a WordPress plugin that acts as a wrapper for the popular jQuery Cycle Plugin by Mike Alsup.",10,4964,20,1,"2010-10-28T14:25:00.000Z","3.0.5","2.5","",[20,21,22,23,24],"gallery","images","javascript","jquery","slideshow","http:\u002F\u002Fblog.estherswhite.net\u002Fwordcycle","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwordcycle.1.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},30,84,"2026-04-04T16:24:04.730Z",[37,54,70,84,103],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":13,"downloaded":45,"rating":46,"num_ratings":14,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":18,"tags":50,"homepage":52,"download_link":53,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"jquery-googleslides","jQuery googleslides","1.3","brady.holt","https:\u002F\u002Fprofiles.wordpress.org\u002Fbradyholt\u002F","\u003Cp>jquery.googleslides is a simply jQuery plugin that displays your Google Photos, including Picasa and Google+ albums.  Visit the \u003Ca href=\"http:\u002F\u002Fbradyholt.github.com\u002Fjquery-googleslides\" rel=\"nofollow ugc\">jquery-googleslides project site\u003C\u002Fa> for more information.\u003C\u002Fp>\n","Integrates the googleslides jQuery plugin to display your Google Photos, including Picasa and Google+ albums.",3836,100,"2012-06-15T20:59:00.000Z","3.3.2","2.0.2",[20,21,23,51,24],"pictures","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fjquery-googleslides\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjquery-googleslides.1.3.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":11,"downloaded":62,"rating":28,"num_ratings":28,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":18,"tags":66,"homepage":68,"download_link":69,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"galleria-javascript-gallery3-slideshow","Galleria Javascript Gallery3 Slideshow","1.2","WP CMS Ninja","https:\u002F\u002Fprofiles.wordpress.org\u002Fbilliardgreg\u002F","\u003Cp>Galleria Javascript Slideshow (http:\u002F\u002Fgalleria.io\u002F) that is fed from an external Menalto Gallery3 (http:\u002F\u002Fgalleryproject.org\u002F) album rss feed.  Creates a one page javascript slideshow with autoplay with time being able to be set via slidespeed or set to false for no autoplay.  Other settings able to be set through shortcode call.  Includes all galleria javascript files needed.  [g3gs albumnum=”81″ slidespeed=”3000″ preload=”2″ showinfo=”false” imagecrop=”false” transition=”fade” clicknext=”true” pauseoninteraction=”true” backgroundcolor=”#fff” gallerypath=”\u002Fg3\u002F”]\u003C\u002Fp>\n","The Galleria Javascript Slideshow fed from Menalto Gallery3 Album.",2750,"2015-09-28T17:49:00.000Z","4.3.34","3.5",[20,67,21,22,24],"image","http:\u002F\u002Fwww.gregwhitehead.us\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgalleria-javascript-gallery3-slideshow.zip",{"slug":71,"name":72,"version":57,"author":73,"author_profile":74,"description":75,"short_description":76,"active_installs":11,"downloaded":77,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":78,"requires_at_least":79,"requires_php":18,"tags":80,"homepage":81,"download_link":82,"security_score":46,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":83},"jelly","Jelly: A Simple Responsive Slideshow","Lumne","https:\u002F\u002Fprofiles.wordpress.org\u002Flumne\u002F","\u003Cp>Jelly is a simple, \u003Cem>responsive\u003C\u002Fem>, WordPress slideshow. It is minimalistic in style, lightweight, and easy to use. Jelly fills the horizontal space available and sets the height based on the first image displayed.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>Jelly comes equipped with several practical features that make it easy-to-use, flexible, and the right choice for your WordPress website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Image slides\u003C\u002Fli>\n\u003Cli>Responsive\u003C\u002Fli>\n\u003Cli>Minimalistic and light weight\u003C\u002Fli>\n\u003Cli>Easy installation\u003C\u002Fli>\n\u003Cli>Intuitive user interface\u003C\u002Fli>\n\u003Cli>Multiple display methods (shortcode in a post, or hard-coded in your template)\u003C\u002Fli>\n\u003Cli>Adjustable slide pause and transition speed\u003C\u002Fli>\n\u003Cli>No limit to how many images your Jelly slideshow can hold\u003C\u002Fli>\n\u003C\u002Ful>\n","Jelly is a simple, responsive, WordPress slideshow.",1877,"5.8.13","3.0.1",[20,67,21,22,23],"http:\u002F\u002Flumne.net\u002Fplugins\u002Fjelly","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjelly.1.2.zip","2026-03-15T14:44:11.924Z",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":95,"last_updated":96,"tested_up_to":97,"requires_at_least":98,"requires_php":18,"tags":99,"homepage":101,"download_link":102,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-cycle","WP-Cycle","0.1.13","Nathan Rice","https:\u002F\u002Fprofiles.wordpress.org\u002Fnathanrice\u002F","\u003Cp>The WP-Cycle plugin allows you to upload images from your computer, which will then be used to generate a jQuery Cycle Plugin slideshow of the images.\u003C\u002Fp>\n\u003Cp>Each image can also be given a URL which, when the image is active in the slideshow, will be used as an anchor wrapper around the image, turning the image into a link to the URL you specified.  The slideshow is set to pause when the user hovers over the slideshow images, giving them ample time to click the link.\u003C\u002Fp>\n\u003Cp>Images can also be deleted via the plugins Administration page.\u003C\u002Fp>\n","This plugin creates an image slideshow in your theme, using the jQuery Cycle plugin. You can upload\u002Fdelete images via the administration panel, and di &hellip;",3000,235406,72,12,"2012-08-15T03:09:00.000Z","3.4.2","3.0",[21,100,24],"jquery-cycle","http:\u002F\u002Fwww.nathanrice.net\u002Fplugins\u002Fwp-cycle\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-cycle.0.1.13.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":113,"num_ratings":114,"last_updated":115,"tested_up_to":18,"requires_at_least":116,"requires_php":18,"tags":117,"homepage":120,"download_link":121,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"cleaner-gallery","Cleaner Gallery","1.1.0","Justin Tadlock","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreenshady\u002F","\u003Cp>This plugin was written to take care of the invalid HTML that WordPress produces when using the \u003Ccode>[gallery]\u003C\u002Fcode> shortcode.\u003C\u002Fp>\n\u003Cp>It does a bit more than that though.  It will integrate with many Lightbox-type scripts and allow you to do much cooler things with your galleries.  Plus, it has a couple of extra options that you can play around with.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Uses HTML5 \u003Ccode>\u003Cfig>\u003C\u002Fcode> and \u003Ccode>\u003Cfigcaption>\u003C\u002Fcode> elements.\u003C\u002Fli>\n\u003Cli>Integrates with \u003Ca href=\"http:\u002F\u002Fschema.org\" rel=\"nofollow ugc\">Schema.org microdata\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Uses the \u003Ccode>aria-describedby\u003C\u002Fcode> attribute to make images + captions more accessible to users with disabilities.\u003C\u002Fli>\n\u003Cli>Validates the invalid code that WordPress spits out.\u003C\u002Fli>\n\u003Cli>Several options on how you want your gallery images.\u003C\u002Fli>\n\u003Cli>Allows multiple galleries in a single post.\u003C\u002Fli>\n\u003Cli>Ability to set the number of images shown in each gallery.\u003C\u002Fli>\n\u003Cli>Ability to exclude or include any images from your gallery.\u003C\u002Fli>\n\u003Cli>Doesn’t load any extra CSS or JavaScript unless you choose to do so.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Integrates with 18 different Lightbox-type scripts\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.huddletogether.com\u002Fprojects\u002Flightbox2\u002F\" rel=\"nofollow ugc\">Lightbox 2\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.digitalia.be\u002Fsoftware\u002Fslimbox\" rel=\"nofollow ugc\">Slimbox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.digitalia.be\u002Fsoftware\u002Fslimbox2\" rel=\"nofollow ugc\">Slimbox 2\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fjquery.com\u002Fdemo\u002Fthickbox\u002F\" rel=\"nofollow ugc\">Thickbox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fdolem.com\u002Flytebox\u002F\" rel=\"nofollow ugc\">Lytebox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Forangoo.com\u002Flabs\u002FGreyBox\u002F\" rel=\"nofollow ugc\">Greybox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.nickstakenburg.com\u002Fprojects\u002Flightview\u002F\" rel=\"nofollow ugc\">Lightview\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.balupton.com\u002Fsandbox\u002Fjquery_lightbox\u002F\" rel=\"nofollow ugc\">jQuery Lightbox Plugin\u003C\u002Fa> (balupton edition)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fleandrovieira.com\u002Fprojects\u002Fjquery\u002Flightbox\u002F\" rel=\"nofollow ugc\">jQuery Lightbox Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.laptoptips.ca\u002Fprojects\u002Fwp-shutter-reloaded\u002F\" rel=\"nofollow ugc\">Shutter Reloaded\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fmjijackson.com\u002Fshadowbox\u002Findex.html\" rel=\"nofollow ugc\">Shadowbox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ffancy.klade.lv\" rel=\"nofollow ugc\">FancyBox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fgithub.com\u002Fkrewenki\u002Fjquery-lightbox\u002Ftree\u002Fmaster\" rel=\"nofollow ugc\">jQuery Lightbox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.stickmanlabs.com\u002Flightwindow\" rel=\"nofollow ugc\">LightWindow\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.cabel.name\u002F2008\u002F02\u002Ffancyzoom-10.html\" rel=\"nofollow ugc\">FancyZoom\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Frandomous.com\u002Ffloatbox\u002Fhome\" rel=\"nofollow ugc\">Floatbox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fcolorpowered.com\u002Fcolorbox\" rel=\"nofollow ugc\">Colorbox\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.no-margin-for-errors.com\u002Fprojects\u002Fprettyphoto-jquery-lightbox-clone\" rel=\"nofollow ugc\">prettyPhoto\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Professional Support\u003C\u002Fh3>\n\u003Cp>If you need professional plugin support from me, the plugin author, you can access the support forums at \u003Ca href=\"http:\u002F\u002Fthemehybrid.com\u002Fsupport\" rel=\"nofollow ugc\">Theme Hybrid\u003C\u002Fa>, which is a professional WordPress help\u002Fsupport site where I handle support for all my plugins and themes for a community of 40,000+ users (and growing).\u003C\u002Fp>\n\u003Ch3>Plugin Development\u003C\u002Fh3>\n\u003Cp>If you’re a theme author, plugin author, or just a code hobbyist, you can follow the development of this plugin on it’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjustintadlock\u002Fcleaner-gallery\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>Yes, I do accept donations.  If you want to buy me a beer or whatever, you can do so from my \u003Ca href=\"http:\u002F\u002Fthemehybrid.com\u002Fdonate\" rel=\"nofollow ugc\">donations page\u003C\u002Fa>.  I appreciate all donations, no matter the size.  Further development of this plugin is not contingent on donations, but they are always a nice incentive.\u003C\u002Fp>\n","A cleaner WordPress [gallery] that integrates with multiple Lightbox-type scripts.",2000,216255,96,23,"2017-11-28T16:13:00.000Z","3.9",[20,21,23,118,119],"lightbox","slimbox","http:\u002F\u002Fthemehybrid.com\u002Fplugins\u002Fcleaner-gallery","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcleaner-gallery.1.1.0.zip",{"attackSurface":123,"codeSignals":146,"taintFlows":162,"riskAssessment":163,"analyzedAt":174},{"hooks":124,"ajaxHandlers":139,"restRoutes":140,"shortcodes":141,"cronEvents":145,"entryPointCount":14,"unprotectedCount":28},[125,131,135,137],{"type":126,"name":127,"callback":128,"file":129,"line":130},"action","wp_head","add_cycle","wordcycle.php",28,{"type":126,"name":132,"callback":133,"file":129,"line":134},"wp_footer","wordcycle_scripts",29,{"type":126,"name":127,"callback":128,"priority":14,"file":129,"line":136},172,{"type":126,"name":132,"callback":133,"priority":14,"file":129,"line":138},173,[],[],[142],{"tag":24,"callback":143,"file":129,"line":144},"shortcode_cycle",176,[],{"dangerousFunctions":147,"sqlUsage":148,"outputEscaping":150,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":161},[],{"prepared":28,"raw":28,"locations":149},[],{"escaped":151,"rawEcho":152,"locations":153},2,3,[154,157,159],{"file":129,"line":155,"context":156},31,"raw output",{"file":129,"line":158,"context":156},39,{"file":129,"line":160,"context":156},48,[],[],{"summary":164,"deductions":165},"The \"wordcycle\" plugin v1.1 exhibits a generally strong security posture based on the static analysis. The absence of AJAX handlers, REST API routes, cron events, and file operations significantly limits its attack surface. Crucially, all SQL queries are prepared, and there are no identified dangerous functions or external HTTP requests, which are excellent indicators of secure coding practices in these areas.  The lack of any recorded vulnerabilities or CVEs in its history further suggests a mature and stable codebase.\n\nHowever, a notable concern is the output escaping. With 40% of outputs properly escaped, there's a 60% chance that some outputs might be unescaped, potentially leading to Cross-Site Scripting (XSS) vulnerabilities if user-controlled data is displayed without proper sanitization. Additionally, the complete absence of nonce checks and capability checks across all entry points is a significant weakness. While the current attack surface is minimal (one shortcode), any future expansion or modification of these entry points without implementing proper authorization and nonce validation will introduce critical security risks.  The lack of taint analysis data is also a gap; while it indicates no *found* issues, it doesn't guarantee the absence of such vulnerabilities.\n\nIn conclusion, \"wordcycle\" v1.1 is off to a good start with its minimal attack surface and secure handling of core functionalities like SQL. The primary areas for immediate improvement are ensuring all outputs are properly escaped and implementing robust nonce and capability checks for all entry points, especially the shortcode. The plugin's clean vulnerability history is a positive sign, but vigilance in the identified areas is crucial for maintaining this record.",[166,169,172],{"reason":167,"points":168},"Unescaped output (60% of outputs)",5,{"reason":170,"points":171},"No nonce checks implemented",7,{"reason":173,"points":171},"No capability checks implemented","2026-03-17T00:01:22.493Z",{"wat":176,"direct":181},{"assetPaths":177,"generatorPatterns":178,"scriptPaths":179,"versionParams":180},[],[],[],[],{"cssClasses":182,"htmlComments":183,"htmlAttributes":184,"restEndpoints":185,"jsGlobals":186,"shortcodeOutput":187},[],[],[],[],[],[]]