[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fFSVtiPYcO_dQsS7ZH176kyb7YLcQsnkF-PKyvhCziEw":3,"$fgWbM07ygVH7lR3ItL8XhezswB0jS7SFxGjseXEiSZFE":333,"$fhXEBEjYTzugB7jvGfWhmlH3EgHenBrkkFzummcylFIQ":337},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":36,"analysis":139,"fingerprints":301},"wp-adposts","WP AdPosts by Kader Bouyakoub","1.3.0","Kader Bouyakoub","https:\u002F\u002Fprofiles.wordpress.org\u002Fbkader\u002F","\u003Cp>WP AdPosts plugin allows you to create ads using codes or images and provides views and clicks counters, as well as locations management. You can even use the provided \u003Cstrong>shortcode\u003C\u002Fstrong> to insert ads into posts and pages.\u003C\u002Fp>\n\u003Ch4>Manage Ads\u003C\u002Fh4>\n\u003Cp>You have two ways of creating ads:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>By uploading featured images only and provided ads links.\u003C\u002Fli>\n\u003Cli>By pasting ads codes (JavaScript) or full HTML.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong>: If you use full HTML, it is better to enter your ads links into the “Ad Link” field.\u003C\u002Fp>\n\u003Cp>In order to display an ad on your front-end, you can use the provided php function on your theme’s files like so:\u003C\u002Fp>\n\u003Cp>Location here stands for the created location’s \u003Cstrong>slug\u003C\u002Fstrong>. So if you created a \u003Cstrong>Header\u003C\u002Fstrong> location, it may have the \u003Cstrong>header\u003C\u002Fstrong> slug, so you do:\n    \u003C\u002Fp>\n\u003Cp>WP AdPosts enabled shortcodes on text widgets, so you can as well use a text widget in which you can use this provided shortcode like so:\u003Cbr \u002F>\n    [wp-adposts location=”header”]\u003C\u002Fp>\n\u003Cp>Using the location, as an argument for the function or an attribute for the shortcode, will display a single randomly picked ad to which it was assigned.\u003C\u002Fp>\n\u003Cp>As of version \u003Cstrong>1.3.0\u003C\u002Fstrong>, it is possible to display a specific ad by its ID, passed to the php function in your theme’s files like so:\u003C\u002Fp>\n\u003Cp>Or used as shortcode attributes like the example below:\u003Cbr \u002F>\n    [wp-adposts ad=”123″]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>THINGS YOU SHOULD KNOW\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>To display an ad by its ID, make sure to assign a location to it in order to display it with the selected dimensions. Ads with no locations assigned will not be displayed.\u003C\u002Fli>\n\u003Cli>Priority is to ad ID. So if you use both attributes in the shortcode, the \u003Cstrong>ad\u003C\u002Fstrong> will be used. If the ad is not found, even if the location exists and has ads assign to it, nothing will be displayed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Manage Locations\u003C\u002Fh4>\n\u003Cp>They are much more like “sizes” limitations. A location can have a specified ads sizes so that ads will be contained in them. For instance, if a location has 728 pixles by 90 pixels (728×90), anything that is beyond that is simply hidden.\u003C\u002Fp>\n\u003Ch4>Views and Clicks Counters\u003C\u002Fh4>\n\u003Cp>You will see on ads management page views and clicks counters. These are useful to keep an eye on your ads.\u003C\u002Fp>\n","Easy ads creation and management using images or codes. display your ads anywhere, automatically or using shortcodes, with views and clicks counters.",10,1128,0,"2018-03-06T16:31:00.000Z","4.9.29","4.6","5.2.4",[19,20,21,22,4],"ads","banner","widget","wordpress-com","https:\u002F\u002Fgo.ianhub.net\u002F2FUtrOF","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-adposts.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"bkader",1,30,84,"2026-05-19T20:58:15.025Z",[37,58,75,95,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"banner-upload","Banner Upload","1.6","M A Vinoth Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fvinoth06\u002F","\u003Cp>Easy way to display the different size of banner advertisements in WordPress using widgets\u003C\u002Fp>\n\u003Cp>Through this plugin admin can,\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Upload the banner ads through widget.\u003C\u002Fli>\n\u003Cli>Specify the banner ads width and height size using px.\u003C\u002Fli>\n\u003Cli>Create multiple banner ads using widgets.\u003C\u002Fli>\n\u003Cli>Specific the link for that advertisement, so that when users click the banner, the link will be opened in new window.\u003C\u002Fli>\n\u003Cli>Add the custom title for their widget.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Fbanner-upload-wordpress-plugin\" rel=\"nofollow ugc\">For Support\u003C\u002Fa>\u003C\u002Fp>\n","Easy way to display the different size of banner advertisements in WordPress using widgets",500,34455,100,2,"2017-03-14T08:24:00.000Z","4.7.33","4.3","",[19,54,20,55,21],"advertisement","banner-ads","http:\u002F\u002Fbuffercode.com\u002Fproject\u002Fbanner-upload\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbanner-upload.1.6.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":13,"num_ratings":13,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":70,"tags":71,"homepage":72,"download_link":73,"security_score":74,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"a-ads","AADS","2.1","uix642","https:\u002F\u002Fprofiles.wordpress.org\u002Fuix642\u002F","\u003Cp>This plugin allows you to easily integrate https:\u002F\u002Faads.com\u002F banner advertisement into your website using WordPress Blocks or legacy widgets.\u003Cbr \u002F>\nIt’s as simple as drag and drop.\u003C\u002Fp>\n","This plugin allows you to easily integrate https:\u002F\u002Faads.com\u002F banner advertisement into your website.",20,3479,"2024-08-09T11:28:00.000Z","6.6.5","5.2",[19,20,21],"https:\u002F\u002Faads.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fa-ads.2.1.zip",92,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":11,"downloaded":83,"rating":13,"num_ratings":13,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":52,"tags":87,"homepage":92,"download_link":93,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":94},"go-ads-widget","Go Ads widget","1.0","goresponsive","https:\u002F\u002Fprofiles.wordpress.org\u002Fgoresponsive\u002F","\u003Cp>This widget accommodates different sizes of image ads. It supports nearly 10 sizes of image ads. The sizes it supports are – 125\u003Cem>125, 120\u003C\u002Fem>60, 120\u003Cem>240, 120\u003C\u002Fem>600, 120\u003Cem>90, 300\u003C\u002Fem>100, 160\u003Cem>600, 300\u003C\u002Fem>600, 300\u003Cem>250, 250\u003C\u002Fem>250.\u003C\u002Fp>\n\u003Cp>Demo: http:\u002F\u002Fonion.goresponsive.in\u002F\u003C\u002Fp>\n\u003Cp>\u003Cstrong>documentation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fgoresponsive.in\u002Fads-widget\u002F\u003C\u002Fp>\n","Simple plugin for displaying different sizes of image ads and adsense ads.",2383,"2014-08-16T12:08:00.000Z","3.9.40","3.0",[88,89,90,91],"ad-banner-widget","ads-widget","adsense-ads-display-widget","image-ads","http:\u002F\u002Fgoresponsive.in","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgo-ads-widget.zip","2026-04-06T09:54:40.288Z",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":52,"tags":110,"homepage":114,"download_link":115,"security_score":116,"vuln_count":48,"unpatched_count":13,"last_vuln_date":117,"fetched_at":27},"image-widget","Image Widget","4.4.11","StellarWP","https:\u002F\u002Fprofiles.wordpress.org\u002Fstellarwp\u002F","\u003Cp>Image Widget is a simple plugin that uses the native WordPress media manager to add image widgets to your site.\u003C\u002Fp>\n\u003Ch4>Image Widget Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Responsive\u003C\u002Fli>\n\u003Cli>MU Compatible\u003C\u002Fli>\n\u003Cli>Handles image resizing and alignment\u003C\u002Fli>\n\u003Cli>Link the image\u003C\u002Fli>\n\u003Cli>Add title and description\u003C\u002Fli>\n\u003Cli>Versatile – all fields are optional\u003C\u002Fli>\n\u003Cli>Upload, link to external image, or select an image from your media collection\u003C\u002Fli>\n\u003Cli>Customize the look & feel with filter hooks or theme overrides\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Quality You Can Trust\u003C\u002Fh4>\n\u003Cp>Image Widget is developed and maintained by \u003Ca href=\"https:\u002F\u002Fevnt.is\u002F1aor\" rel=\"nofollow ugc\">The Events Calendar\u003C\u002Fa>, the same folks behind \u003Ca href=\"https:\u002F\u002Fevnt.is\u002F19me\" rel=\"nofollow ugc\">The Events Calendar, Event Tickets, and a full suite of premium plugins\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin is actively supported by our team and contributions from community members. If you see a question in the forum you can help with or have a great idea and want to code it up or submit a patch, that would be awesome! Not only will we shower you with praise and thanks, it’s also a good way to get to know us and lead into options for paid work if you freelance.\u003C\u002Fp>\n\u003Ch4>Pull Requests & Translations\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthe-events-calendar\u002Fimage-widget\" rel=\"nofollow ugc\">Check us out on GitHub\u003C\u002Fa> to pull request changes.\u003C\u002Fp>\n\u003Cp>Translations can be submitted \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fimage-widget\" rel=\"nofollow ugc\">here on WordPress.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>The built in template can be overridden by files within your template.\u003C\u002Fp>\n\u003Ch4>Default vs. Custom Templates\u003C\u002Fh4>\n\u003Cp>The Image Widget comes with a default template for the widget output. If you would like to alter the widget display code, create a new folder called “image-widget” in your template directory and copy over the “views\u002Fwidget.php” file.\u003C\u002Fp>\n\u003Cp>Edit the new file to your hearts content. Please do not edit the one in the plugin folder as that will cause conflicts when you update the plugin to the latest release.\u003C\u002Fp>\n\u003Cp>New in 3.2: You may now also use the “sp_template_image-widget_widget.php” filter to override the default template behavior for .php template files. Eg: if you wanted widget.php to reside in a folder called my-custom-templates\u002F and wanted it to be called my-custom-name.php:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter('sp_template_image-widget_widget.php', 'my_template_filter');\nfunction my_template_filter($template) {\n    return get_template_directory() . '\u002Fmy-custom-templates\u002Fmy-custom-name.php';\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Filters\u003C\u002Fh4>\n\u003Cp>There are a number of filters in the code that will allow you to override data as you see fit. The best way to learn what filters are available is always by simply searching the code for ‘apply_filters’. But all the same, here are a few of the more essential filters:\u003C\u002Fp>\n\u003Cp>\u003Cem>widget_title\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>This is actually a pretty typical filter in widgets and is applied to the widget title.\u003C\u002Fp>\n\u003Cp>\u003Cem>widget_text\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Another very typical widget filter that is applied to the description body text. This filter also takes 2 additional arguments for $args and $instance so that you can learn more about the specific widget instance in the process of filtering the content.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_attachment_id\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the attachment id of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_url\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the url of the image displayed in the widget.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003Cbr \u002F>\nTHIS IS DEPRECATED AND WILL EVENTUALLY BE DELETED\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_width\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the display width of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_height\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the display height of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_maxwidth\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the inline max-width style of the image. Hint: override this to use this in responsive designs 🙂\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003Cbr \u002F>\nReturn null to remove this css from the image output (defaults to ‘100%’).\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_maxheight\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the inline max-height style of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003Cbr \u002F>\nReturn null to remove this css from the image output (defaults to null)\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_size\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the selected image ‘size’ corresponding to WordPress registered sizes.\u003Cbr \u002F>\nIf this is set to ‘tribe_image_widget_custom’ then the width and height are used instead.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_align\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the display alignment of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_alt\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the alt text of the image.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_link\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the url that the image links to.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_link_target\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters the link target of the image link.\u003Cbr \u002F>\nAccepts additional $args and $instance arguments.\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_image_attributes\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters a list of image attributes used in the image output. Similar to ‘wp_get_attachment_image_attributes’\u003Cbr \u002F>\nAccepts $instance arguments\u003C\u002Fp>\n\u003Cp>\u003Cem>image_widget_link_attributes\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Filters a list of attributes used in the image link. Similar to ‘wp_get_attachment_image_attributes’\u003Cbr \u002F>\nAccepts $instance arguments\u003C\u002Fp>\n\u003Ch4>Have You Supported the Image Widget?\u003C\u002Fh4>\n\u003Cp>If so, then THANK YOU! Also, feel free to add this line to your wp-config.php file to prevent the image widget from displaying a message after upgrades.\u003C\u002Fp>\n\u003Cp>define( ‘I_HAVE_SUPPORTED_THE_IMAGE_WIDGET’, true );\u003C\u002Fp>\n\u003Cp>For more info on the philosophy here, check out our \u003Ca href=\"http:\u002F\u002Ftri.be\u002Fdefine-i-have-donated-true\u002F\" rel=\"nofollow ugc\">blog post\u003C\u002Fa>\u003C\u002Fp>\n","A simple image widget that uses the native WordPress media manager to add image widgets to your site.",100000,4624436,98,287,"2024-11-20T20:44:00.000Z","6.7.5","3.5",[111,20,112,113,21],"ad","image","sidebar","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimage-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-widget.4.4.11.zip",90,"2026-03-17 00:00:00",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":128,"num_ratings":129,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":133,"tags":134,"homepage":137,"download_link":138,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"q2w3-fixed-widget","Fixed Widget and Sticky Elements for WordPress","6.2.3","monetizemore","https:\u002F\u002Fprofiles.wordpress.org\u002Fmonetizemore\u002F","\u003Cp>Use Fixed Widget to create sticky widgets, sticky blocks, and other elements that stay in the visible screen area when a user scrolls the page up or down.\u003C\u002Fp>\n\u003Cp>Sticky widgets are more visible than unfixed widgets and therefore have a significantly higher click-through rate.\u003C\u002Fp>\n\u003Cp>That’s why this option is worthwhile for ads or other elements that visitors should interact with. Meanwhile, Google also allows the integration of \u003Ca href=\"https:\u002F\u002Fwpadvancedads.com\u002Fgoogle-adsense-sticky-ads\u002F\" rel=\"nofollow ugc\">sticky AdSense ads\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpadvancedads.com\u002Ffixed-widget-wordpress\u002F\" rel=\"nofollow ugc\">Manual and demo\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>Fixed Widget is completely free of charge.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Sticky Widgets\u003C\u002Fstrong> Use the Fixed Widget option on any widget and blocks in the sidebar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sticky Elements\u003C\u002Fstrong> Choose any element on your site and make it sticky\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Margin Top\u003C\u002Fstrong> allows you to stop sticky elements to cover floating menu bars\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Margin Bottom\u003C\u002Fstrong> pushes sticky elements up before they reach a certain distance towards the bottom window\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Stop Elements\u003C\u002Fstrong> push sticky elements up when they are scrolling into view\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Stop Blocks\u003C\u002Fstrong> defines blocks in your sidebar that push fixed blocks out of the page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Minimum Screen Width\u003C\u002Fstrong> and \u003Cstrong>Minimum Screen Height\u003C\u002Fstrong> allow you to disable sticky behavior on small screens\u003C\u002Fli>\n\u003Cli>Written in plain JavaScript for better performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cp>Theme requirements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>wp_head()\u003C\u002Fcode> and \u003Ccode>wp_footer()\u003C\u002Fcode> functions in \u003Ccode>header.php\u003C\u002Fcode> and \u003Ccode>footer.php\u003C\u002Fcode> files\u003C\u002Fli>\n\u003Cli>JavaScript errors could break sticky widgets\u003C\u002Fli>\n\u003C\u002Ful>\n","More attention and a higher ad performance with fixed sticky widgets.",90000,2293806,94,261,"2023-03-30T07:15:00.000Z","6.2.9","5.0","7.2",[19,135,113,136,21],"fixed-widget","sticky-widget","https:\u002F\u002Fwpadvancedads.com\u002Ffixed-widget-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fq2w3-fixed-widget.6.2.3.zip",{"attackSurface":140,"codeSignals":233,"taintFlows":267,"riskAssessment":285,"analyzedAt":300},{"hooks":141,"ajaxHandlers":218,"restRoutes":226,"shortcodes":227,"cronEvents":231,"entryPointCount":232,"unprotectedCount":48},[142,148,152,157,161,165,169,173,176,180,184,188,192,196,200,204,207,211,214],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","init","register_ads_and_locations","wp-adposts.php",166,{"type":143,"name":149,"callback":150,"file":146,"line":151},"admin_menu","settings",190,{"type":153,"name":154,"callback":155,"file":146,"line":156},"filter","widget_text","do_shortcode",290,{"type":143,"name":158,"callback":159,"file":146,"line":160},"admin_init","settings_form",453,{"type":153,"name":162,"callback":163,"file":146,"line":164},"manage_edit-wpap_ad_columns","ads_table_columns",756,{"type":153,"name":166,"callback":167,"priority":11,"file":146,"line":168},"manage_wpap_ad_posts_custom_column","ads_table_content",759,{"type":153,"name":170,"callback":171,"file":146,"line":172},"manage_edit-wpap_ad_sortable_columns","ads_table_sortable",762,{"type":143,"name":158,"callback":174,"file":146,"line":175},"ad_link_meta_box",765,{"type":143,"name":177,"callback":178,"file":146,"line":179},"save_post","ad_link_save",766,{"type":143,"name":181,"callback":182,"file":146,"line":183},"wpap_location_add_form_fields","locations_add_fields",970,{"type":143,"name":185,"callback":186,"file":146,"line":187},"wpap_location_edit_form_fields","locations_edit_fields",973,{"type":143,"name":189,"callback":190,"file":146,"line":191},"created_wpap_location","locations_add_form",976,{"type":143,"name":193,"callback":194,"file":146,"line":195},"edited_wpap_location","locations_edit_form",979,{"type":153,"name":197,"callback":198,"file":146,"line":199},"manage_edit-wpap_location_columns","locations_table_column",982,{"type":153,"name":201,"callback":202,"priority":11,"file":146,"line":203},"manage_wpap_location_custom_column","locations_table_content",983,{"type":143,"name":149,"callback":205,"file":146,"line":206},"remove_locations_meta_box",986,{"type":143,"name":208,"callback":209,"file":146,"line":210},"add_meta_boxes","add_locations_meta_box",987,{"type":143,"name":177,"callback":212,"file":146,"line":213},"ad_location_save",990,{"type":153,"name":215,"callback":216,"file":146,"line":217},"the_content","insert_posts_ad",1457,[219,224],{"action":220,"nopriv":221,"callback":220,"hasNonce":222,"hasCapCheck":222,"file":146,"line":223},"ad_click",true,false,1576,{"action":220,"nopriv":222,"callback":220,"hasNonce":222,"hasCapCheck":222,"file":146,"line":225},1577,[],[228],{"tag":4,"callback":229,"file":146,"line":230},"shortcode",175,[],3,{"dangerousFunctions":234,"sqlUsage":235,"outputEscaping":237,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":266},[],{"prepared":13,"raw":13,"locations":236},[],{"escaped":238,"rawEcho":239,"locations":240},62,15,[241,244,246,247,248,249,251,252,254,256,258,259,261,262,264],{"file":146,"line":242,"context":243},370,"raw output",{"file":146,"line":245,"context":243},506,{"file":146,"line":245,"context":243},{"file":146,"line":245,"context":243},{"file":146,"line":245,"context":243},{"file":146,"line":250,"context":243},519,{"file":146,"line":250,"context":243},{"file":146,"line":253,"context":243},522,{"file":146,"line":255,"context":243},923,{"file":146,"line":257,"context":243},1012,{"file":146,"line":257,"context":243},{"file":146,"line":260,"context":243},1038,{"file":146,"line":260,"context":243},{"file":146,"line":263,"context":243},1144,{"file":146,"line":265,"context":243},1153,[],[268],{"entryPoint":269,"graph":270,"unsanitizedCount":32,"severity":284},"\u003Cwp-adposts> (wp-adposts.php:0)",{"nodes":271,"edges":282},[272,277],{"id":273,"type":274,"label":275,"file":146,"line":276},"n0","source","$_POST",1088,{"id":278,"type":279,"label":280,"file":146,"line":265,"wp_function":281},"n1","sink","echo() [XSS]","echo",[283],{"from":273,"to":278,"sanitized":222},"low",{"summary":286,"deductions":287},"The wp-adposts plugin v1.3.0 exhibits a mixed security posture.  On the positive side, the plugin demonstrates good practices regarding SQL queries, exclusively using prepared statements, and a high percentage of output escaping, which mitigates common cross-site scripting (XSS) vulnerabilities. The absence of known CVEs and a clean vulnerability history are also positive indicators, suggesting a generally well-maintained codebase. However, significant security concerns arise from its attack surface. The plugin exposes two AJAX handlers without authentication checks, creating a clear entry point for unauthorized actions or information disclosure. This, coupled with the absence of any nonce checks, further exacerbates the risk associated with these unprotected AJAX endpoints. The taint analysis, while showing no critical or high severity flows, did identify one flow with unsanitized paths, which, when combined with the unprotected AJAX handlers, could potentially lead to file system manipulation or path traversal if exploited. The lack of capability checks on any entry points is also a notable weakness.",[288,290,292,295,298],{"reason":289,"points":11},"AJAX handlers without authentication checks",{"reason":291,"points":11},"Missing nonce checks on AJAX",{"reason":293,"points":294},"Flow with unsanitized paths (taint analysis)",7,{"reason":296,"points":297},"No capability checks on entry points",5,{"reason":299,"points":48},"Partially unescaped output","2026-04-16T12:42:03.228Z",{"wat":302,"direct":315},{"assetPaths":303,"generatorPatterns":308,"scriptPaths":309,"versionParams":310},[304,305,306,307],"\u002Fwp-content\u002Fplugins\u002Fwp-adposts\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fwp-adposts\u002Fjs\u002Ffrontend.js","\u002Fwp-content\u002Fplugins\u002Fwp-adposts\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fwp-adposts\u002Fcss\u002Ffrontend.css",[],[304,305],[311,312,313,314],"wp-adposts\u002Fjs\u002Fadmin.js?ver=","wp-adposts\u002Fjs\u002Ffrontend.js?ver=","wp-adposts\u002Fcss\u002Fadmin.css?ver=","wp-adposts\u002Fcss\u002Ffrontend.css?ver=",{"cssClasses":316,"htmlComments":325,"htmlAttributes":326,"restEndpoints":328,"jsGlobals":329,"shortcodeOutput":331},[317,318,319,320,321,322,323,324],"wpap_ad_wrapper","wpap_ad_title","wpap_ad_counter","wpap_ad_clicks","wpap_ad_views","wpap_location_wrapper","wpap_location_title","wpap_location_ads",[],[327],"data-ad-id",[],[330],"wpAdPosts",[332,4],"[wp-adposts",{"error":221,"url":334,"statusCode":335,"statusMessage":336,"message":336},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwp-adposts\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":13,"versions":338},[]]