[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbF6Low_GtqGNdEVM6Hr8Lj8eE9ne1pvv-2KC0XiyPzw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":58,"fingerprints":138},"wp-listings-custom-search-form","IMPress Listings Custom Search Widget","1.5.2","Anil Meena","https:\u002F\u002Fprofiles.wordpress.org\u002Faniloxzin\u002F","\u003Cp>It is an add-on of IMPress Listings plugin which allow to create custom search widget for real estate listing management system. Designed to work with any theme using built-in templates. There is also a IMPress default search form shortcode with this plugin.\u003C\u002Fp>\n\u003Cp>First you have to install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-listings\u002F\" rel=\"ugc\">IMPress Listings\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>You can put [wlsf_search_form] on any page to display IMPress listing default search form using shortcode. You can add any listing taxonomy as well as shortcode attribute to get specific search options only.\u003C\u002Fp>\n\u003Cp>For example if you want to display search form using only status taxonomy then use [wlsf_search_form status]. You can add an number of taxonomies slug seperated by comma to get their value in search form using shortcode like [wlsf_search_form status property-types locations].\u003C\u002Fp>\n","It is an add-on of IMPress Listings plugin which allow to create custom search widget for real estate listing management system.",60,5418,100,2,"2024-03-27T15:35:00.000Z","5.9.13","4.2","",[20,21,22,23],"impress-listing-addon","impress-listings","wp-listing","wp-listing-addon","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-listings-custom-search-form.1.5.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":25,"computed_at":36},"aniloxzin",3,160,87,30,"2026-04-04T00:43:48.278Z",[38],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":26,"num_ratings":26,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":56,"download_link":57,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"sirve","Sirve – Simple Directory Listing","1.1.0","HasThemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fhasthemes\u002F","\u003Cp>Sirve – WordPress Listing Plugin\u003C\u002Fp>\n\u003Cp>Sirve is a handy WordPress listing plugin that allows you to create your own service listing in a professional way on your website. It can come in real handy in terms of creating listings of services or products and is well-suited for service providers, products, or any other type of product\u002Fservice that needs to be marketed and sold. It’s convenient and easy to use!\u003C\u002Fp>\n\u003Cp>With Sirve, it only takes just a while to set up an eye-catching service or product listings page through the tons of intuitive and user-friendly features it provides. Here you will get 4 archive page styles. This listing plugin for WordPress has a pagination option and AJAX features to make your site’s navigation easier. You can choose whether or not you want the post detail\u002Fpage details to appear, simply by enabling or disabling Post detail Page \u002Fdetail options. The shortcode can be inserted in the post editor as well, so that’s another option for you.\u003C\u002Fp>\n\u003Cp>With the Sirve listing WordPress plugin, you can make your posts sticky. This is useful for when you want a particular post to feature first, giving it more visibility since putting one specific piece of post on top of others gives it extra exposure.\u003C\u002Fp>\n\u003Cp>On top of that, Sirve provides you with an intuitive settings panel. Therefore you can manage a lot of things such as selecting the number of words you want to show in the grid, the number of lists on a page, etc. Besides, you can choose whether to show your list in ascending or descending order and also choose whether your post order is to be shown based on various attributes like ID, title, date, random order, etc.\u003C\u002Fp>\n\u003Cp>Sirve contains two buttons and it gives you complete control over the look and feel of your listing pages, allowing you to change the text color, hover color, background color, background header color, border color, and other aspects of the buttons.\u003C\u002Fp>\n\u003Cp>So, in a word, if you’re looking for a simple yet user-friendly plugin that will adorn your listing page, look no further than this great option.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fast loading speed.\u003C\u002Fli>\n\u003Cli>Ajax Search and pagination Options.\u003C\u002Fli>\n\u003Cli>Enable \u002F Disable Post Detail Page Options.\u003C\u002Fli>\n\u003Cli>Shortcode insertion option from the post editor. \u003C\u002Fli>\n\u003Cli>Post Sticky Options.\u003C\u002Fli>\n\u003Cli>Intuitive settings panel.\u003C\u002Fli>\n\u003Cli>Single listings Style\u003C\u002Fli>\n\u003Cli>4 Archive Page styles.\u003C\u002Fli>\n\u003Cli>Support gutenberg editor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Available Shortcodes\u003C\u002Fh3>\n\u003Cp>Have a look at the shortcodes by which you can use various features this WordPress listing plugin offers:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>To Show Single listing\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>[sirve id=\"sirve Post ID\" style=\"1\"]\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>To Show Archive Page\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>[sirve_page]\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>To Show Event Page\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>[sirve event=\"Event Name\"]\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>To Show Tags Page\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>[sirve tags=\"Tags slug Ex: tag1,tag2,tag3,tag4\" exclude_menu=\"tag2,tag4\"]\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>The common structure of the shortcode\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>[sirve_page order=\"DESC, ASC\" orderby=\"ID, title, date, modified, parent, rand\"]\u003C\u002Fpre>\n\u003Cp>sirve_page order – Indicates whether the ‘orderby’ parameter should be in ascending or descending order.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>ASC- Indicates the order from lowest to highest value.\u003C\u002Fli>\n\u003Cli>DESC- Indicates the order from highest to the lowest value. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>orderby: Order the results by various parameters. Those parameters are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>title: Use this parameter to order results by title. \u003C\u002Fli>\n\u003Cli>ID: Use it to order the results by post ID.\u003C\u002Fli>\n\u003Cli>date: This parameter is to be used to order the results by date. \u003C\u002Fli>\n\u003Cli>modified: Use it if you want to order the results by last modified date. \u003C\u002Fli>\n\u003Cli>parent: Use this parameter to order results by parent ID.\u003C\u002Fli>\n\u003Cli>rand: Use this parameter for random order.\u003C\u002Fli>\n\u003C\u002Ful>\n","Create listings of services or products smoothly with tons of customization options. Manage your product and service listings in a professional way!",20,2050,"2025-12-04T04:56:00.000Z","6.9.4","5.0",[52,53,54,39,55],"listings","reviews","service","wp-listings","https:\u002F\u002Fhasthemes.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsirve.1.1.0.zip",{"attackSurface":59,"codeSignals":104,"taintFlows":128,"riskAssessment":129,"analyzedAt":137},{"hooks":60,"ajaxHandlers":95,"restRoutes":96,"shortcodes":97,"cronEvents":102,"entryPointCount":103,"unprotectedCount":26},[61,67,72,76,80,82,86,91],{"type":62,"name":63,"callback":64,"file":65,"line":66},"action","widgets_init","wp_listings_custom_search_register_widgets","wp-listings-custom-search-form.php",124,{"type":62,"name":68,"callback":69,"priority":70,"file":65,"line":71},"wp_enqueue_scripts","wp_listings_custom_search_scripts",10,125,{"type":62,"name":73,"callback":74,"file":65,"line":75},"admin_notices","wlcsw_plugin_notice",158,{"type":62,"name":77,"callback":78,"file":65,"line":79},"admin_init","wlcsw_has_wp_listings_plugin",168,{"type":62,"name":73,"callback":74,"file":65,"line":81},171,{"type":62,"name":83,"callback":84,"file":65,"line":85},"plugins_loaded","wlcsw_load_textdomain",185,{"type":87,"name":88,"callback":89,"priority":70,"file":65,"line":90},"filter","in_widget_form","wlcsw_add_inline_widget_option",200,{"type":87,"name":92,"callback":93,"priority":70,"file":65,"line":94},"widget_update_callback","wlcsw_save_inline_widget_option",212,[],[],[98],{"tag":99,"callback":100,"file":101,"line":14},"wlsf_search_form","wlsf_search_form_func","wp-listings-search-form-shortcode.php",[],1,{"dangerousFunctions":105,"sqlUsage":106,"outputEscaping":108,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":14,"bundledLibraries":127},[],{"prepared":26,"raw":26,"locations":107},[],{"escaped":109,"rawEcho":110,"locations":111},5,7,[112,115,117,119,121,123,125],{"file":65,"line":113,"context":114},38,"raw output",{"file":101,"line":116,"context":114},26,{"file":101,"line":118,"context":114},27,{"file":101,"line":120,"context":114},29,{"file":101,"line":122,"context":114},42,{"file":101,"line":124,"context":114},43,{"file":101,"line":126,"context":114},45,[],[],{"summary":130,"deductions":131},"The wp-listings-custom-search-form plugin version 1.5.2 demonstrates a generally good security posture, with several positive indicators. The absence of known vulnerabilities, critical taint flows, and dangerous functions is a strong sign of developer diligence regarding common security pitfalls.  The plugin also adheres to good practices by using prepared statements for all SQL queries and performing capability checks on some code paths. However, a notable concern is the relatively low percentage of properly escaped output (42%). This indicates a potential risk for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not consistently sanitized before being displayed to users.  The lack of nonce checks on its single shortcode, while not an immediate critical risk due to the absence of unprotected entry points in this specific analysis, could be a weakness if the shortcode's functionality were to involve sensitive actions in future versions or if the analysis missed certain contexts.\n\nOverall, the plugin's security is strong due to its clean vulnerability history and secure handling of SQL. The primary area for improvement lies in ensuring all output is properly escaped to mitigate XSS risks. The vulnerability history, or lack thereof, suggests a mature and well-maintained codebase, which is a significant strength. The absence of AJAX handlers and REST API routes without authentication checks further solidifies its secure design in this regard.  The presence of one shortcode as the sole entry point is manageable, but the lack of explicit nonce checks on it warrants attention to ensure no unforeseen vulnerabilities are introduced through it.",[132,135],{"reason":133,"points":134},"Low output escaping percentage",8,{"reason":136,"points":32},"No nonce checks on shortcode","2026-03-16T21:46:41.877Z",{"wat":139,"direct":146},{"assetPaths":140,"generatorPatterns":142,"scriptPaths":143,"versionParams":144},[141],"\u002Fwp-content\u002Fplugins\u002Fwp-listings-custom-search-form\u002Fcss\u002Fwlcsf-style.css",[],[],[145],"wp-listings-custom-search-form\u002Fcss\u002Fwlcsf-style.css?ver=",{"cssClasses":147,"htmlComments":157,"htmlAttributes":158,"restEndpoints":160,"jsGlobals":161,"shortcodeOutput":162},[148,149,150,151,152,153,154,155,156],"listings-search","wp-listings-custom-search","wlcsw_inline_wrapper","wlcsw_inline_property","wlcsw_inline_options","wlcsw_inline_btn","Property-Types","general-link","Counties",[],[159],"id=\"customsearchform\"",[],[],[]]