[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f86SehZzP5IU3byz_nBQsoBVgH1xAsTIrEAHAT2WyAYY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":64,"crawl_stats":38,"alternatives":72,"analysis":177,"fingerprints":346},"wp-dynamic-keywords-injector","WP Dynamic Keywords Injector","2.3.27","Seerox","https:\u002F\u002Fprofiles.wordpress.org\u002Fmugheeshafeez\u002F","\u003Cp>WP Dynamic Keywords Injector inserts the keyword from browser’s address bar, if not given in URL then the spintax will be placed and if both not found then the default keyword will be placed. Also this plugin will change the title tag and page title if they are given in browser’s address bar.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F4DMTdlvIisY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>This will allow users to insert dynamic keywords not only in page title, page content but also in meta title for the landing pages. Used to be promoted on adwards.\u003Cbr \u002F>\nThis functionality has been implemented through shortcode given below is a sample shortcode.\u003C\u002Fp>\n\u003Cp>[seerox_wpdki_dyn_keywords default=\"These are default keywords. Test1, Test2\" spintax=\"{Text|to|Spin}\"]\u003C\u002Fp>\n\u003Cp>To put the default value please change the \"default\" attribute value of shortcode.\u003Cbr \u002F>\nTo add spintax please change value of \"spintax\" attribute.\u003C\u002Fp>\n\u003Cp>To inject keywords from URL, please use \"dyn_keyword\" query string parameter from browser’s address bar. e.g http:\u002F\u002Fexample.tld\u002Fsample-page\u002F?dyn_keyword=your_desired_keywords\u003C\u002Fp>\n\u003Cp>To inject page title from URL, please use \"page_title\" query string parameter. sample link is given below.\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.tld\u002Fsample-page\u002F?page_title=your_desired_page_title\u003C\u002Fp>\n\u003Cp>To change meta title from URL, please use \"title\" query string parameter. sample link is given below.\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.tld\u002Fsample-page\u002F?title=your_desired_meta_title\u003C\u002Fp>\n\u003Cp>Please Note: These all query string parameters can be used with combinations as well. The sample link is given below.\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.tld\u002Fsample-page\u002F?dyn_keyword=your_desired_keywords&page_title=your_desired_page_title&title=your_desired_meta_title\u003C\u002Fp>\n\u003Cp>WPDKI providing you ability to define search keyword \"search_keyword\" in Page URL as parameter which you can then use in meta title, page\u002Fpost title and content as \"SEARCH_KEYWORD\". An example is given below for your better understanding.\u003C\u002Fp>\n\u003Cp>WPDKI brings a new feature, Whitelisting Keywords functionality for Title and Page Title. In this feature admin can control to show Replace Keywords in Title and Page Title. If this functionality is turned on Plugin will allow to display only Keywords which are whitelisted by admin. If this functionality is turned off then those keywords will show in Title and Page Title which you put in Page URL as parameter.If this functionality is turned on and no keyword is define in Whitelist Keyword box then Default Title and Page Title will Display.\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fexample.tld\u002Fsample-page\u002F?search_keyword=Search+Keyword\u003Cbr \u002F>\nThis keyword can be use in title, page_title and in default value of dyn_keyword shortcode like.\u003Cbr \u002F>\nhttp:\u002F\u002Fexample.tld\u002Fsample-page\u002F?title=Its+SEARCH_KEYWORD+title&page_title=SEARCH_KEYWORD+Heading&search_keyword=Search+Keyword\u003C\u002Fp>\n\u003Cp>[seerox_wpdki_dyn_keywords default=\"This SEARCH_KEYWORD is Draft.\"]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Ftastewp.com\u002Fnew?pre-installed-plugin-slug=wp-dynamic-keywords-injector&redirect=admin.php%3Fpage%3Dseerox_wpdki_settings&ni=true\" rel=\"nofollow ugc\">Click here\u003C\u002Fa>\u003C\u002Fstrong> to play with it\u003C\u002Fp>\n\u003Ch4>PRO\u003C\u002Fh4>\n\u003Cp>WP Dynamic Keywords Injector plugin is also available in a professional version which includes more functionality, and more flexibility!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Unlimited Landing Pages\u003C\u002Fli>\n\u003Cli>Unlimited Multiple Sub Keywords\u003C\u002Fli>\n\u003Cli>Interface to Manage Keywords\u003C\u002Fli>\n\u003Cli>Perfect Quality Scores\u003C\u002Fli>\n\u003Cli>Dynamic Images\u003C\u002Fli>\n\u003Cli>Dynamic Videos\u003C\u002Fli>\n\u003Cli>Dynamic Spintax\u003C\u002Fli>\n\u003Cli>Keyword Groups\u003C\u002Fli>\n\u003Cli>HTML enabled Keyword Fields\u003C\u002Fli>\n\u003Cli>IFrame Support\u003C\u002Fli>\n\u003Cli>WP Shortcodes Support\u003C\u002Fli>\n\u003Cli>Generate Dynamic Links\u003C\u002Fli>\n\u003Cli>Download all possible Links\u003C\u002Fli>\n\u003Cli>Import and Export Keywords\u003C\u002Fli>\n\u003Cli>Relevant Posts Links list ShortCode\u003C\u002Fli>\n\u003Cli>Relevant Random Post Link ShortCode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpdki.com\u002F\" rel=\"nofollow ugc\">Upgrade to Pro\u003C\u002Fa>\u003C\u002Fp>\n","WP Dynamic Keywords Injector inserts dynamic keywords, spintax, page title and title tag.",1000,35875,100,5,"2026-01-07T11:05:00.000Z","6.9.4","3.8","",[20,21,22,23,24],"dynamic","injector","insertion","keywords","title","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-dynamic-keywords-injector\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-dynamic-keywords-injector.2.3.27.zip",99,2,0,"2024-04-15 00:00:00","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2024-32528","wp-dynamic-keywords-injector-reflected-cross-site-scripting","WP Dynamic Keywords Injector \u003C= 2.3.21 - Reflected Cross-Site Scripting","The WP Dynamic Keywords Injector plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including, 2.3.21 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=2.3.21","2.3.22","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-04-25 13:55:01",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F992f9f08-82c1-4bbd-bbd2-543ad8affe53?source=api-prod",11,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":60,"references":61,"days_to_patch":63},"CVE-2022-47141","wp-dynamic-keywords-injector-cross-site-request-forgery","WP Dynamic Keywords Injector \u003C= 2.3.15 - Cross-Site Request Forgery","The WP Dynamic Keywords Injector plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.15. This is due to missing or incorrect nonce validation on the seerox_wpdki_settings_content  function. This makes it possible for unauthenticated attackers to update plugin options via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=2.3.15","2.3.16",5.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:L","Cross-Site Request Forgery (CSRF)","2023-02-20 00:00:00","2024-01-22 19:56:02",[62],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff5b00784-9120-403d-9788-3cd3c3c020aa?source=api-prod",337,{"slug":65,"display_name":7,"profile_url":8,"plugin_count":66,"total_installs":67,"avg_security_score":68,"avg_patch_time_days":69,"trust_score":70,"computed_at":71},"mugheeshafeez",4,1120,91,174,73,"2026-04-05T02:50:46.912Z",[73,98,118,136,157],{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":16,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":94,"download_link":95,"security_score":68,"vuln_count":96,"unpatched_count":29,"last_vuln_date":97,"fetched_at":31},"cds-simple-seo","Simple SEO","2.0.33","David Cole","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoleds\u002F","\u003Cul>\n\u003Cli>Nonce Security!\u003C\u002Fli>\n\u003Cli>Generates META tags automatically.\u003C\u002Fli>\n\u003Cli>Works out-of-the-box. Just install!\u003C\u002Fli>\n\u003Cli>You can override any title and set any META description and any META keywords you want!\u003C\u002Fli>\n\u003Cli>Google Analytic 4!\u003C\u002Fli>\n\u003Cli>Google Webmaster Tools!\u003C\u002Fli>\n\u003Cli>Bing verification & Yandex verification!\u003C\u002Fli>\n\u003Cli>Twitter and Facebook customization!\u003C\u002Fli>\n\u003Cli>Quickedit SEO titles and descriptions!\u003C\u002Fli>\n\u003Cli>Import Yoast SEO data!\u003C\u002Fli>\n\u003Cli>Import Rank Math SEO data!\u003C\u002Fli>\n\u003Cli>Import All In One SEO data!\u003C\u002Fli>\n\u003Cli>Sitemaps!\u003C\u002Fli>\n\u003Cli>Supports custom post types!\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows the modification of META titles, descriptions and keywords for all pages and posts. Also allows for default setting for of META title, descript &hellip;",10000,181226,94,31,"2025-12-01T15:14:00.000Z","4.6.2","7.4",[89,90,91,92,93],"mera-description","meta","meta-keywords","meta-title","seo","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcds-simple-seo\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcds-simple-seo.zip",6,"2025-09-23 00:00:00",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":18,"tags":113,"homepage":115,"download_link":116,"security_score":117,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"simple-seo-by-falbar","Simple SEO by falbar","1.1","Anton Kuliashou","https:\u002F\u002Fprofiles.wordpress.org\u002Fakbsit\u002F","\u003Cp>\u003Cstrong>Simple SEO by falbar\u003C\u002Fstrong> adds basic meta data on the page (title, description, keywords). For WooCommerce you will need to install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-seo-woo-by-falbar\u002F\" rel=\"ugc\">Simple SEO Woo by falbar\u003C\u002Fa>.\u003C\u002Fp>\n","This plugin extends the standard SEO WordPress features.",200,4281,86,3,"2017-07-21T08:24:00.000Z","4.8.28","4.4.2",[114,23,93,24],"description","http:\u002F\u002Ffalbar.ru\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-seo-by-falbar.zip",85,{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":13,"downloaded":126,"rating":127,"num_ratings":28,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":134,"download_link":135,"security_score":117,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-custom-category-meta","WP Custom Category Meta","1.1.0","Musilek","https:\u002F\u002Fprofiles.wordpress.org\u002Fmusilek\u002F","\u003Cp>Allow you to add custom meta tags and title for category.\u003Cbr \u002F>\nIn next version will be added other seo plugins support.\u003C\u002Fp>\n","Allow you to add custom meta tags and title for category.",4836,90,"2014-04-18T03:26:00.000Z","3.9.40","3.5.1",[132,133,114,23,24],"category","category-title","http:\u002F\u002Fmusilda.cz\u002Fwp-custom-category-meta\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-custom-category-meta.zip",{"slug":137,"name":138,"version":139,"author":140,"author_profile":141,"description":142,"short_description":143,"active_installs":144,"downloaded":145,"rating":13,"num_ratings":146,"last_updated":147,"tested_up_to":148,"requires_at_least":149,"requires_php":150,"tags":151,"homepage":154,"download_link":155,"security_score":127,"vuln_count":109,"unpatched_count":29,"last_vuln_date":156,"fetched_at":31},"dynamic-url-seo","Dynamic URL SEO","1.2","brainvireinfo","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainvireinfo\u002F","\u003Cp>Dynamic URL SEO plugin provides you the facility to add Meta title, keywords and description for those URLs which are generating dynamically in your website.\u003C\u002Fp>\n\u003Cp>Nowadays SEO is the most important part of a website for marketing. Sometimes to achieve the batter functionality on our website we need to write custom code and in few cases, we are not able to add the meta title, keywords  and description to dynamic pages\u002Fposts\u002Fcustom post types using SEO plugins like Yoast SEO, All in One SEO etc.\u003C\u002Fp>\n\u003Cp>At that time using Dynamic URL SEO plugin you can add all the meta details like title, keywords,  description, robots. Also by using Dynamic URL SEO, you can update schema for the website, organization, local business and many more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What is Schema markup?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Schema markup is code (semantic vocabulary) that you put on your website to help the search engines return more informative results for users.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why are Schemas Important?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Schemas allow search engines and other applications to better understand entities, relationships and actions. Schema.org is actually sponsored by the world’s leading search engines, Google, Microsoft, Yahoo and Yandex. If you’re in the search business or run a website and are interested in improving your organic search performance, schema should be peaking your interest.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Schema Key Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to use, with minimal settings.\u003C\u002Fli>\n\u003Cli>Valid markup, test it in Google Structured Data Testing Tool.\u003C\u002Fli>\n\u003Cli>Output JSON-LD format, the most recommended by Google.\u003C\u002Fli>\n\u003Cli>Supported Google\u002FSchema Markups\n\u003Cul>\n\u003Cli>WebSite Markup\u003C\u002Fli>\n\u003Cli>Organization Markup\u003C\u002Fli>\n\u003Cli>Local Business Markup\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin is used to add meta title, keywords and description for dynamic URLs which are not available in database.",70,3012,1,"2024-12-05T12:59:00.000Z","6.7.5","6.2","5.2.4",[23,152,153,93,24],"meta-tags","metadata","https:\u002F\u002Fbrainvire.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdynamic-url-seo.1.2.zip","2025-02-03 00:00:00",{"slug":158,"name":159,"version":160,"author":161,"author_profile":162,"description":163,"short_description":164,"active_installs":144,"downloaded":165,"rating":29,"num_ratings":29,"last_updated":166,"tested_up_to":167,"requires_at_least":168,"requires_php":87,"tags":169,"homepage":175,"download_link":176,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"simple-current-date-time","Simple Current Date Time","2.0.1","inforeole","https:\u002F\u002Fprofiles.wordpress.org\u002Finforeole\u002F","\u003Cp>“Simple Current Date Time” is a lightweight and straightforward WordPress plugin designed to effortlessly display dynamic date and time information on your website.  It leverages WordPress’s built-in date\u002Ftime formatting, ensuring that the output is \u003Cstrong>automatically localized\u003C\u002Fstrong> according to your site’s language settings.  This makes it an ideal “date and time plugin for WordPress” for multilingual websites or any site needing accurate, localized date displays.\u003C\u002Fp>\n\u003Cp>A key feature is its ability to parse these shortcodes not only in your post\u002Fpage content but also directly within your \u003Cstrong>H1 headings and, importantly, in your SEO metatitles\u003C\u002Fstrong> (the \u003Ccode>\u003Ctitle>\u003C\u002Fcode> tag of your pages).  This can be useful for creating dynamic, always-current titles.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Main Shortcodes (English):\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>[simpcuda_current_year]\u003C\u002Fcode>\u003Cbr \u002F>\n* \u003Ccode>[simpcuda_current_month_year]\u003C\u002Fcode>\u003Cbr \u002F>\n* \u003Ccode>[simpcuda_current_date_time]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>French Aliases Also Available:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>[simpcuda_annee]\u003C\u002Fcode> (for \u003Ccode>[simpcuda_current_year]\u003C\u002Fcode>)\u003Cbr \u002F>\n* \u003Ccode>[simpcuda_mois_annee]\u003C\u002Fcode> (for \u003Ccode>[simpcuda_current_month_year]\u003C\u002Fcode>)\u003Cbr \u002F>\n* \u003Ccode>[simpcuda_date_heure_courante]\u003C\u002Fcode> (for \u003Ccode>[simpcuda_current_date_time]\u003C\u002Fcode>)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why choose this plugin?\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Simplicity:\u003C\u002Fstrong> No complex settings.  Just install, activate, and use the shortcodes.\u003Cbr \u002F>\n* \u003Cstrong>Localized:\u003C\u002Fstrong> Automatically uses your WordPress date and time settings, respecting your chosen language and format.  Perfect for international sites.\u003Cbr \u002F>\n* \u003Cstrong>Lightweight:\u003C\u002Fstrong> Minimal code, ensuring no performance impact on your site.\u003Cbr \u002F>\n* \u003Cstrong>SEO Friendly:\u003C\u002Fstrong> Use dynamic dates in your titles and meta titles easily.\u003Cbr \u002F>\n* \u003Cstrong>Bilingual Shortcodes:\u003C\u002Fstrong> Use English shortcodes or their French aliases for convenience.\u003C\u002Fp>\n\u003Cp>For more information, full documentation, and support, please visit \u003Ca href=\"https:\u002F\u002Finforeole.fr\u002Fsimple-current-date-time-wordpress-plugin\u002F\" rel=\"nofollow ugc\">our plugin page on Inforeole.fr\u003C\u002Fa>.\u003C\u002Fp>\n","Simple plugin for current, localized dates & times via shortcodes.  Use in content, H1 & SEO titles.  Lightweight.",365,"2025-06-08T09:17:00.000Z","6.8.5","5.0",[170,171,172,173,174],"date","dynamic-title","localized-date","shortcode","time","https:\u002F\u002Finforeole.fr\u002Fsimple-current-date-time-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-current-date-time.2.0.1.zip",{"attackSurface":178,"codeSignals":252,"taintFlows":275,"riskAssessment":333,"analyzedAt":345},{"hooks":179,"ajaxHandlers":234,"restRoutes":246,"shortcodes":247,"cronEvents":251,"entryPointCount":66,"unprotectedCount":29},[180,186,191,195,200,204,207,210,214,218,222,226,230],{"type":181,"name":182,"callback":183,"file":184,"line":185},"action","admin_print_styles","srx_sidebar_popup_scripts","wp-dynamic-keywords-injector.php",18,{"type":187,"name":188,"callback":189,"priority":146,"file":184,"line":190},"filter","the_title","seerox_wpdki_dynamic_title",158,{"type":187,"name":192,"callback":193,"priority":146,"file":184,"line":194},"pre_get_document_title","seerox_wpdki_change_the_title",192,{"type":187,"name":196,"callback":197,"priority":198,"file":184,"line":199},"the_content","seerox_wpdki_update_body_link",10,202,{"type":187,"name":201,"callback":202,"priority":146,"file":184,"line":203},"aioseop_title","seerox_wpdki_enable_title_shortcode",351,{"type":187,"name":205,"callback":202,"file":184,"line":206},"wpseo_title",352,{"type":187,"name":208,"callback":202,"file":184,"line":209},"rank_math\u002Ffrontend\u002Ftitle",353,{"type":187,"name":211,"callback":212,"file":184,"line":213},"aioseo_description","srx_aioseo_filter_description",369,{"type":187,"name":215,"callback":216,"priority":198,"file":184,"line":217},"rank_math\u002Ffrontend\u002Fdescription","closure",380,{"type":181,"name":219,"callback":220,"file":184,"line":221},"wp_head","seerox_wpdki_rel_canonical",394,{"type":187,"name":223,"callback":224,"file":184,"line":225},"wpseo_canonical","__return_false",402,{"type":181,"name":227,"callback":228,"file":184,"line":229},"admin_menu","seerox_wpdki_settings_menu",438,{"type":181,"name":231,"callback":232,"file":184,"line":233},"admin_footer","srx_wpdki_ft_areq_js",512,[235,241,242],{"action":236,"nopriv":237,"callback":238,"hasNonce":239,"hasCapCheck":237,"file":184,"line":240},"srx_add_popup_option",false,"srx_add_popup_option_fun",true,30,{"action":236,"nopriv":239,"callback":238,"hasNonce":239,"hasCapCheck":237,"file":184,"line":84},{"action":243,"nopriv":237,"callback":244,"hasNonce":239,"hasCapCheck":237,"file":184,"line":245},"srx_wpdki_ft_req","srx_wpdki_ft_req_ws",548,[],[248],{"tag":249,"callback":250,"file":184,"line":70},"seerox_wpdki_dyn_keywords","seerox_wpdki_insert_dynamic_keywords",[],{"dangerousFunctions":253,"sqlUsage":254,"outputEscaping":256,"fileOperations":29,"externalRequests":146,"nonceChecks":109,"capabilityChecks":29,"bundledLibraries":271},[],{"prepared":29,"raw":29,"locations":255},[],{"escaped":257,"rawEcho":14,"locations":258},17,[259,263,265,267,269],{"file":260,"line":261,"context":262},"sidebar.php",159,"raw output",{"file":184,"line":264,"context":262},426,{"file":184,"line":266,"context":262},520,{"file":184,"line":268,"context":262},530,{"file":184,"line":270,"context":262},564,[272],{"name":273,"version":38,"knownCves":274},"jQuery",[],[276,292,306,315],{"entryPoint":277,"graph":278,"unsanitizedCount":146,"severity":41},"seerox_wpdki_rel_canonical (wp-dynamic-keywords-injector.php:396)",{"nodes":279,"edges":290},[280,285],{"id":281,"type":282,"label":283,"file":184,"line":284},"n0","source","$_SERVER",420,{"id":286,"type":287,"label":288,"file":184,"line":264,"wp_function":289},"n1","sink","echo() [XSS]","echo",[291],{"from":281,"to":286,"sanitized":237},{"entryPoint":293,"graph":294,"unsanitizedCount":29,"severity":305},"seerox_wpdki_settings_content (wp-dynamic-keywords-injector.php:451)",{"nodes":295,"edges":303},[296,299],{"id":281,"type":282,"label":297,"file":184,"line":298},"$_POST",492,{"id":286,"type":287,"label":300,"file":184,"line":301,"wp_function":302},"update_option() [Settings Manipulation]",493,"update_option",[304],{"from":281,"to":286,"sanitized":239},"low",{"entryPoint":307,"graph":308,"unsanitizedCount":29,"severity":305},"srx_wpdki_ft_req_ws (wp-dynamic-keywords-injector.php:549)",{"nodes":309,"edges":313},[310,312],{"id":281,"type":282,"label":297,"file":184,"line":311},559,{"id":286,"type":287,"label":288,"file":184,"line":270,"wp_function":289},[314],{"from":281,"to":286,"sanitized":239},{"entryPoint":316,"graph":317,"unsanitizedCount":29,"severity":305},"\u003Cwp-dynamic-keywords-injector> (wp-dynamic-keywords-injector.php:0)",{"nodes":318,"edges":329},[319,320,321,323,325,327],{"id":281,"type":282,"label":283,"file":184,"line":284},{"id":286,"type":287,"label":288,"file":184,"line":264,"wp_function":289},{"id":322,"type":282,"label":297,"file":184,"line":298},"n2",{"id":324,"type":287,"label":300,"file":184,"line":301,"wp_function":302},"n3",{"id":326,"type":282,"label":297,"file":184,"line":311},"n4",{"id":328,"type":287,"label":288,"file":184,"line":270,"wp_function":289},"n5",[330,331,332],{"from":281,"to":286,"sanitized":239},{"from":322,"to":324,"sanitized":239},{"from":326,"to":328,"sanitized":239},{"summary":334,"deductions":335},"The \"wp-dynamic-keywords-injector\" plugin v2.3.27 demonstrates a generally strong security posture with several positive indicators. The absence of unpatched CVEs, raw SQL queries, and critical or high severity taint flows is commendable.  The plugin also employs nonce checks on its AJAX handlers, which is a good practice for preventing CSRF attacks. The majority of output is properly escaped, mitigating XSS risks.\n\nHowever, there are areas of concern. The presence of one flow with an unsanitized path, even if not flagged as critical or high, warrants investigation as it could potentially lead to security vulnerabilities if not properly handled.  Furthermore, the lack of capability checks on AJAX handlers is a significant weakness. While nonces prevent unauthorized *users* from triggering actions, they do not prevent *logged-in* users with insufficient privileges from doing so.  The plugin's vulnerability history, which includes medium severity XSS and CSRF vulnerabilities, suggests a past tendency towards these types of issues, highlighting the importance of continued vigilance.\n\nIn conclusion, while the plugin has made strides in security with its current version, the lack of capability checks on AJAX handlers and the presence of a potentially unsanitized path represent notable risks. The past vulnerability history also suggests that a thorough review of input validation and output escaping, particularly concerning user-controllable data, is still crucial.",[336,339,341,343],{"reason":337,"points":338},"AJAX handlers lack capability checks",8,{"reason":340,"points":14},"Flow with unsanitized path identified",{"reason":342,"points":96},"Past medium severity vulnerabilities (XSS, CSRF)",{"reason":344,"points":109},"Some output not properly escaped","2026-03-16T19:01:19.218Z",{"wat":347,"direct":355},{"assetPaths":348,"generatorPatterns":351,"scriptPaths":352,"versionParams":353},[349,350],"\u002Fwp-content\u002Fplugins\u002Fwp-dynamic-keywords-injector\u002Fjs\u002Fjquery.magnific-popup.min.js","\u002Fwp-content\u002Fplugins\u002Fwp-dynamic-keywords-injector\u002Fcss\u002Fmagnific-popup.min.css",[],[349],[354],"wp-dynamic-keywords-injector\u002Fstyle.css?ver=",{"cssClasses":356,"htmlComments":358,"htmlAttributes":359,"restEndpoints":362,"jsGlobals":363,"shortcodeOutput":365},[357],"seerox-wpdki",[],[360,361],"data-srx-popup-id","data-srx-title",[],[364,236],"srx_popup_open",[366,367],"[seerox_wpdki_dyn_keywords]","[seerox_wpdki_dyn_keywords spintax="]