[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fumui0gBKSDlndj6JrgS39QCePHQX3j01UrTD_0m-6Ig":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":135,"fingerprints":313},"wp-jtweets","WP-jTweets","1.1.5","Aaron Reimann","https:\u002F\u002Fprofiles.wordpress.org\u002Fareimann\u002F","\u003Cp>A Widget that uses jQuery (if you want) and Twitter to fade in and display a user’s tweets one at a time, then fades into the next.  You can set the amount of tweets and how long they stay before they fade into the next tweet.  The tweets are in an infinite loop.  It only uses the jQuery library that comes with WP.  It is simple, but if you know CSS you can make it look very very nice.\u003C\u002Fp>\n\u003Ch4>Twitter API 1.1 Keys and Tokens\u003C\u002Fh4>\n\u003Cp>You now have to go to \u003Ca href=\"https:\u002F\u002Fdev.twitter.com\u002Fapps\u002F\" rel=\"nofollow ugc\">Twitter’s Dev Section\u003C\u002Fa> and create an “app”.  Please don’t be terrified by this.  It takes 5 minutes.  The hardest part is copying and pasting the keys once they are created 🙂\u003C\u002Fp>\n\u003Col>\n\u003Cli>Go here and login with your Twitter account: https:\u002F\u002Fdev.twitter.com\u002Fapps\u002F\u003C\u002Fli>\n\u003Cli>Click ‘Create New Application’\u003C\u002Fli>\n\u003Cli>Give it a name like “WP-Jweets for YourDomainName”\u003C\u002Fli>\n\u003Cli>Give it a description like “This is so I can show my tweets”\u003C\u002Fli>\n\u003Cli>The “Website” field can be the domain name the tweets are going on\u003C\u002Fli>\n\u003Cli>The “Callback URL” can be empty\u003C\u002Fli>\n\u003Cli>Accept the agreement\u003C\u002Fli>\n\u003Cli>Next, click on “Create My Access Token”\u003C\u002Fli>\n\u003Cli>Create your token, you will need the following: Consumer key, Consumer secret, Access token and Access token\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Server\u003C\u002Fh4>\n\u003Cp>Your server must have cURL enabled, it is required by the Twitter OAuth library (Thanks goes out to https:\u002F\u002Fgithub.com\u002Fabraham\u002Ftwitteroauth)\u003C\u002Fp>\n","A widget that uses jQuery and Twitter to display a user's tweets (or can just list the updates).  Works with the Twitter API 1.1",10,4813,0,"2021-02-26T17:12:00.000Z","5.7.0","3.2","",[19,20,21,22,23],"feed","json","rotate","tweets","twitter","http:\u002F\u002Faaronreimann.com\u002Fplugins\u002Fwp-jtweets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-jtweets.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"areimann",4,10040,30,84,"2026-04-05T02:27:08.069Z",[38,58,82,99,119],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":17,"tags":53,"homepage":56,"download_link":57,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"display-tweets-php","Display Tweets","1.0.3","MatthewRuddy","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatthewruddy\u002F","\u003Cp>Display Tweets is a very simple and easy to use Twitter feed plugin. It allows you to display your tweets using the shortcode, PHP function or widget. It’s completely future proof and makes authenticated requests to the Twitter v1.1 REST API, ensuring that your tweets don’t disappear when the old Twitter API is shutdown (soon).\u003C\u002Fp>\n\u003Cp>For more information, \u003Ca href=\"http:\u002F\u002Fmatthewruddy.com\u002Fdisplay-tweets-plugin\u002F\" rel=\"nofollow ugc\">check out my blog\u003C\u002Fa>. For usage information, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdisplay-tweets-php\u002Finstallation\u002F\" rel=\"ugc\">click here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You can also contribute to the plugin yourself on Github \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMatthewRuddy\u002Fdisplaytweets\" rel=\"nofollow ugc\">. Don’t be shy, get involved!\u003C\u002Fa>\u003C\u002Fp>\n","Display Tweets is an easy to use, future proof Twitter feed plugin that uses PHP to make requests to the v1.1 Twitter REST API.",1000,51171,100,14,"2017-11-28T17:30:00.000Z","3.6.1","3.5",[19,54,55,22,23],"mentions","retweets","http:\u002F\u002Fmatthewruddy.com\u002Fdisplay-tweets-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisplay-tweets-php.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":17,"tags":73,"homepage":77,"download_link":78,"security_score":79,"vuln_count":80,"unpatched_count":80,"last_vuln_date":81,"fetched_at":28},"wp-twitter-feed","Peadig's Twitter Feed: Embedded Timeline WordPress Plugin","2.2","Alex Moss","https:\u002F\u002Fprofiles.wordpress.org\u002Falexmoss\u002F","\u003Cp>The WordPress Twitter Feed Plugin lets you simply output any user’s tweets into your WordPress page, template or sidebar! You can customise the username, number of tweets, and style of ouput.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002Fwp-twitter-feed\u002F\" rel=\"nofollow ugc\">Twitter Embedded Timeline\u003C\u002Fa> WordPress Plugin homepage.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002Fwp-twitter-feed-pro\u002F\" rel=\"nofollow ugc\">Twitter Feed PRO\u003C\u002Fa> – this plugin outputs tweet using flat HTML and supports Twitter’s API v1.1.\u003C\u002Fli>\n\u003Cli>More \u003Ca href=\"http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple Twitter feed that outputs your latest tweets in HTML into any post, page, template or sidebar widget. Customisable and easy to install!",600,161765,62,7,"2018-04-04T22:46:00.000Z","3.7.41","2.7",[74,22,23,75,76],"seo","twitter-feed","twitter-updates","http:\u002F\u002Fpeadig.com\u002Fwordpress-plugins\u002Fwp-twitter-feed\u002F?utm_source=WordPress&utm_medium=Admin&utm_campaign=Twitter%2BFeed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-twitter-feed.2.2.zip",63,1,"2010-12-07 00:00:00",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":48,"num_ratings":80,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":17,"tags":95,"homepage":17,"download_link":98,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"ultimate-twitter-feeds","Ultimate Twitter Feeds","0.1","Milap","https:\u002F\u002Fprofiles.wordpress.org\u002Fmilap\u002F","\u003Cp>Ultimate Twitter Feeds is one of the best Lightweight plugin to display Twitter feeds (Tweets) on your website. It fetches feeds from Twitter Profile, Twitter User List and single Tweet. It provides additional configuration options like Height, Width, Language and Theme.\u003C\u002Fp>\n\u003Cp>An inside look:\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F8gxE5CPLiJM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Why should you choose Ultimate Twitter Feeds among the many other plugins?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Light weight & easy to configure.\u003C\u002Fli>\n\u003Cli>Configuration options like show Tweets from Twitter User Profile, User List and Single Tweet.\u003C\u002Fli>\n\u003Cli>Supports Light and Dark theme.\u003C\u002Fli>\n\u003Cli>Additional options like Width, Height and Language.\u003C\u002Fli>\n\u003Cli>Shortcode support (In Next Release)\u003C\u002Fli>\n\u003Cli>Fast & helpful support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cp>The following plugins are recommended for users:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffacebook-pagelike-widget\u002F\" rel=\"ugc\">Facebook Page Feeds Widget\u003C\u002Fa> by Milap – With Facebook Page Feeds Widget, you can display your Facebook Page feeds on your website quickly.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy Notices\u003C\u002Fh4>\n\u003Cp>With the default configuration, this plugin, in itself, does not:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>use cookies.\u003C\u002Fli>\n\u003Cli>track users by stealth.\u003C\u002Fli>\n\u003Cli>write any user personal data to the database.\u003C\u002Fli>\n\u003Cli>send any data to external servers.\u003C\u002Fli>\n\u003C\u002Ful>\n","Ultimate Twitter Feeds allows you to display customizable Twitter Tweets from any user timeline,  any user Twitter List and single Tweet on your websi &hellip;",400,5646,"2021-08-23T10:05:00.000Z","5.8.13","3.4",[96,22,23,75,97],"custom-twitter-feed","twitter-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-twitter-feeds.0.1.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":48,"downloaded":107,"rating":48,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":17,"tags":112,"homepage":117,"download_link":118,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"import-tweets-as-posts","Import Tweets as Posts","3.0","Chandan Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fchandanonline4u\u002F","\u003Cp>“Import Tweets as Posts” plugin allows to easily import tweets from user’s timeline or search query. It has also flexibility to import tweets as custom post type “tweet”. Other settings that user can specify are tweet import interval time, number of tweets to import, Category,  Text before tweet post title. There is also options to exclude retweets and replies from user’s twitter timeline.\u003C\u002Fp>\n\u003Cp>Released under the terms of the GNU GPL, version 2.\u003Cbr \u002F>\nhttp:\u002F\u002Fwww.fsf.org\u002Flicensing\u002Flicenses\u002Fgpl.html\u003C\u002Fp>\n\u003Cp>NO WARRANTY.\u003Cbr \u002F>\nCopyright (c) 2015 Chandan Kumar\u003C\u002Fp>\n","\"Import Tweets as Posts\" plugin allows to easily import tweets from user's timeline or search query. It has also flexibility to import  &hellip;",12269,8,"2015-11-25T09:14:00.000Z","4.3.34","2.8.6",[113,100,114,115,116],"import-tweets","posts","tweets-to-posts","twitter-feeds","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fimport-tweets-as-posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimport-tweets-as-posts.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":48,"downloaded":127,"rating":128,"num_ratings":129,"last_updated":130,"tested_up_to":110,"requires_at_least":52,"requires_php":17,"tags":131,"homepage":133,"download_link":134,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"timeline-twitter-feed","Timeline Twitter Feed","1.3","ezraverheijen","https:\u002F\u002Fprofiles.wordpress.org\u002Fezraverheijen\u002F","\u003Cp>Timeline Twitter Feed let’s you output your timeline feed and multiple hashtags into your WordPress site as flat HTML.\u003Cbr \u002F>\nThe output is customizable on nearly every aspect. With or without profile pictures, tweet date, usernames before tweets, hashtags and usernames as links etc. etc.\u003Cbr \u002F>\nCSS styling can be added\u002Foverwrited via your theme’s stylesheet or in the Timeline Twitter Feed settings screen.\u003Cbr \u002F>\nThere is also a widget to easily add a Twitter feed to your header, sidebar or footer, if your theme supports it.\u003C\u002Fp>\n\u003Cp>If you have any issues using Timeline Twitter Feed, find a bug or have an idea to make the plugin even better then please \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fezraverheijen\u002Ftimeline-twitter-feed\" rel=\"nofollow ugc\">help to improve Timeline Twitter Feed\u003C\u002Fa>.\u003Cbr \u002F>\nIf you don’t report it, I can’t fix it!\u003C\u002Fp>\n","Output timeline feeds and multiple hashtags into your WordPress site as flat HTML.",14010,70,2,"2015-09-04T14:00:00.000Z",[19,132,22,23,75],"tweet","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftimeline-twitter-feed\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftimeline-twitter-feed.1.3.zip",{"attackSurface":136,"codeSignals":152,"taintFlows":297,"riskAssessment":298,"analyzedAt":312},{"hooks":137,"ajaxHandlers":148,"restRoutes":149,"shortcodes":150,"cronEvents":151,"entryPointCount":13,"unprotectedCount":13},[138,144],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","wp_enqueue_scripts","jtweets_enqueue_scripts","index.php",36,{"type":139,"name":145,"callback":146,"file":142,"line":147},"widgets_init","jtweets_widget_init",41,[],[],[],[],{"dangerousFunctions":153,"sqlUsage":154,"outputEscaping":156,"fileOperations":80,"externalRequests":80,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":296},[],{"prepared":13,"raw":13,"locations":155},[],{"escaped":157,"rawEcho":158,"locations":159},33,69,[160,163,165,167,169,171,173,175,177,179,181,183,185,187,189,191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,259,261,263,265,267,269,271,273,275,277,279,281,282,284,286,288,290,292,293,295],{"file":161,"line":143,"context":162},"class_widget.php","raw output",{"file":161,"line":164,"context":162},37,{"file":161,"line":166,"context":162},59,{"file":161,"line":168,"context":162},92,{"file":161,"line":170,"context":162},95,{"file":161,"line":172,"context":162},96,{"file":161,"line":174,"context":162},101,{"file":161,"line":176,"context":162},104,{"file":161,"line":178,"context":162},105,{"file":161,"line":180,"context":162},106,{"file":161,"line":182,"context":162},112,{"file":161,"line":184,"context":162},115,{"file":161,"line":186,"context":162},116,{"file":161,"line":188,"context":162},117,{"file":161,"line":190,"context":162},122,{"file":161,"line":192,"context":162},125,{"file":161,"line":194,"context":162},126,{"file":161,"line":196,"context":162},127,{"file":161,"line":198,"context":162},132,{"file":161,"line":200,"context":162},135,{"file":161,"line":202,"context":162},136,{"file":161,"line":204,"context":162},137,{"file":161,"line":206,"context":162},142,{"file":161,"line":208,"context":162},145,{"file":161,"line":210,"context":162},146,{"file":161,"line":212,"context":162},147,{"file":161,"line":214,"context":162},154,{"file":161,"line":216,"context":162},156,{"file":161,"line":218,"context":162},157,{"file":161,"line":220,"context":162},160,{"file":161,"line":222,"context":162},162,{"file":161,"line":224,"context":162},168,{"file":161,"line":226,"context":162},170,{"file":161,"line":228,"context":162},171,{"file":161,"line":230,"context":162},172,{"file":161,"line":232,"context":162},178,{"file":161,"line":234,"context":162},181,{"file":161,"line":236,"context":162},182,{"file":161,"line":238,"context":162},190,{"file":161,"line":240,"context":162},193,{"file":161,"line":242,"context":162},194,{"file":161,"line":244,"context":162},201,{"file":161,"line":246,"context":162},204,{"file":161,"line":248,"context":162},205,{"file":161,"line":250,"context":162},214,{"file":161,"line":252,"context":162},217,{"file":161,"line":254,"context":162},218,{"file":161,"line":256,"context":162},225,{"file":161,"line":258,"context":162},227,{"file":161,"line":260,"context":162},228,{"file":161,"line":262,"context":162},229,{"file":161,"line":264,"context":162},235,{"file":161,"line":266,"context":162},236,{"file":161,"line":268,"context":162},237,{"file":161,"line":270,"context":162},245,{"file":161,"line":272,"context":162},248,{"file":161,"line":274,"context":162},249,{"file":161,"line":276,"context":162},250,{"file":142,"line":278,"context":162},88,{"file":142,"line":280,"context":162},90,{"file":142,"line":172,"context":162},{"file":142,"line":283,"context":162},98,{"file":142,"line":285,"context":162},108,{"file":142,"line":287,"context":162},109,{"file":142,"line":289,"context":162},113,{"file":142,"line":291,"context":162},114,{"file":142,"line":188,"context":162},{"file":142,"line":294,"context":162},131,{"file":142,"line":198,"context":162},[],[],{"summary":299,"deductions":300},"The wp-jtweets plugin v1.1.5 exhibits a generally good security posture based on the static analysis. The absence of known CVEs, combined with the fact that all SQL queries use prepared statements, suggests a proactive approach to security and a clean history.  The plugin also appears to have a very limited attack surface with zero identified entry points like AJAX handlers, REST API routes, or shortcodes. However, a significant concern is the low percentage (32%) of properly escaped output. This indicates a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, where user-supplied data could be injected and executed in the browser. Furthermore, the plugin performs file operations and makes external HTTP requests without any observable capability checks or nonce checks, which could potentially be exploited if these operations involve user-controlled data or are triggered in an unauthorized manner. The lack of any taint analysis results suggests either no data flows were analyzed or none were found to be problematic, but this should not overshadow the identified output escaping and authorization concerns.",[301,303,306,308,310],{"reason":302,"points":108},"Low output escaping percentage (32%)",{"reason":304,"points":305},"File operations without capability checks",3,{"reason":307,"points":305},"External HTTP requests without capability checks",{"reason":309,"points":305},"File operations without nonce checks",{"reason":311,"points":305},"External HTTP requests without nonce checks","2026-03-17T00:18:33.555Z",{"wat":314,"direct":323},{"assetPaths":315,"generatorPatterns":318,"scriptPaths":319,"versionParams":320},[316,317],"\u002Fwp-content\u002Fplugins\u002Fwp-jtweets\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwp-jtweets\u002Fjs\u002Fjtweets.js",[],[317],[321,322],"wp-jtweets\u002Fstyle.css?ver=","wp-jtweets\u002Fjs\u002Fjtweets.js?ver=",{"cssClasses":324,"htmlComments":329,"htmlAttributes":330,"restEndpoints":332,"jsGlobals":333,"shortcodeOutput":334},[325,326,327,328],"jtweets-feed","jtweets-avatar-block","jtweets-avatar-block-1","jtweets-avatar-block-2",[],[331],"data-rotatetime",[],[],[]]