[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9i006_py6hTg3HEBTYPykMDRaRhYYu2tKid7LGZdLqU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":7,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":136,"fingerprints":325},"wp-partner","WP-Partner","1.2.1","","https:\u002F\u002Fprofiles.wordpress.org\u002Fmantus667\u002F","\u003Cp>This plugin is used to create a page on your web site that will contain a list of all link categories that you have defined inside of the Links section of the WordPress administration, along with all links defined in these categories. The user can select a sub-set of categories to be displayed.\u003Cbr \u002F>\nIt also contains a configuration page, to be able to configure all outputs.\u003Cbr \u002F>\nIt is a very slim plugin.\u003C\u002Fp>\n","The purpose of this plugin is to add the ability to output a list of link categories and a complete list of links with notes and descriptions.",10,4305,0,"2010-08-22T16:54:00.000Z","3.0.5","2.8",[18,19,20,21],"library","link","list","page","http:\u002F\u002Fwww.angelofagony.de.vu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-partner.1.2.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":29,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"mantus667",1,30,84,"2026-04-03T21:28:36.161Z",[35,56,75,95,112],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":10,"active_installs":42,"downloaded":43,"rating":44,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":7,"tags":49,"homepage":51,"download_link":52,"security_score":53,"vuln_count":54,"unpatched_count":30,"last_vuln_date":55,"fetched_at":26},"link-library","Link Library","7.8.7","Yannick Lefebvre","https:\u002F\u002Fprofiles.wordpress.org\u002Fjackdewey\u002F","\u003Cp>This plugin is used to be able to create a page on your web site that will contain a list of all of the link categories that you have defined inside of the Links section of the WordPress administration, along with all links defined in these categories. The user can select a sub-set of categories to be displayed or not displayed. Link Library also offers a mode where only one category is shown at a time, using AJAX or HTML Get queries to load other categories based on user input. It can display a search box and find results based on queries. It can also display a form to accept user submissions and allow the site administrator to moderate them before listing the new entries. Finally, it can generate an RSS feed for your link collection so that people can be aware of additions to your link library.\u003C\u002Fp>\n\u003Cp>You can try it out in a temporary copy of WordPress \u003Ca href=\"https:\u002F\u002Fdemo.tastewp.com\u002Flink-library\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For links that carry RSS feed information, Link Library can display a preview of the latest feed items inline with the all links or in a separate preview window.\u003C\u002Fp>\n\u003Cp>This plugin uses the filter method to add contents to the pages. It also contains a configuration page under the admin tools to be able to configure all outputs. This page allows for an unlimited number of different configurations to be created to display links on different pages of a WordPress site.\u003C\u002Fp>\n\u003Cp>For screenshots showing how to achieve these results, check out my \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fylefebvre\u002Flink-library\u002Fwiki\" rel=\"nofollow ugc\">site\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>All pages are generated using different configurations all managed by Link Library. Link Library is compatible with the \u003Ca href=\"https:\u002F\u002Fen-ca.wordpress.org\u002Fplugins\u002Fsimple-custom-post-order\u002F\" rel=\"nofollow ugc\">Simple Custom Post Order\u003C\u002Fa> plugin to define category and link ordering.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Flink-library\u002Fother_notes\u002F\" rel=\"ugc\">Changelog\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Flink-library\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n",10000,2373667,94,97,"2026-02-15T19:47:00.000Z","6.9.4","4.4",[50,18,19,20,21],"directory","https:\u002F\u002Fylefebvre.github.io\u002Fwordpress-plugins\u002Flink-library\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flink-library.7.8.7.zip",67,19,"2025-12-24 00:00:00",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":47,"requires_at_least":69,"requires_php":7,"tags":70,"homepage":73,"download_link":74,"security_score":66,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"vk-link-target-controller","VK Link Target Controller","1.8.0.1","Vektor,Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fvektor-inc\u002F","\u003Ch4>Plugin presentation\u003C\u002Fh4>\n\u003Cp>VK Link Target Controller enables to redirect your visitors to another page than the post content when they click on the post title that displays on the Recent Posts list or the Archives Page.\u003C\u002Fp>\n\u003Ch4>Example of use\u003C\u002Fh4>\n\u003Cp>Let’s say you have a new product for sale on eBay or Etsy.\u003Cbr \u002F>\nYou find it annoying to write a complete post entry on your blog (or WordPress powered website) to explain you have a new product to sell there and would like your visitors to access directly the product page.\u003C\u002Fp>\n\u003Cp>With VK Link Target Controller your visitors will access directly that product page when clicking on the post title.\u003Cbr \u002F>\nFast redirection to the product you want to sell!.\u003C\u002Fp>\n\u003Ch4>GitHub repository\u003C\u002Fh4>\n\u003Cp>VK Link Target Controller official repository on GitHub.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkurudrive\u002Fvk-link-target-controller\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fkurudrive\u002Fvk-link-target-controller\u003C\u002Fa>\u003Cbr \u002F>\nLatest plugin version is always on GitHub.\u003C\u002Fp>\n","Redirect your visitors to another page than the post content when they click on the post title.",30000,253504,100,2,"2026-02-19T09:04:00.000Z","5.3",[19,20,21,71,72],"recent-posts","redirection","https:\u002F\u002Fgithub.com\u002Fvektor-inc\u002Fvk-link-target-controller","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvk-link-target-controller.1.8.0.1.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":66,"downloaded":83,"rating":66,"num_ratings":67,"last_updated":84,"tested_up_to":85,"requires_at_least":69,"requires_php":86,"tags":87,"homepage":7,"download_link":92,"security_score":93,"vuln_count":30,"unpatched_count":13,"last_vuln_date":94,"fetched_at":26},"list-children","List Children","2.2.0","Andy Stratton","https:\u002F\u002Fprofiles.wordpress.org\u002Ftheandystratton\u002F","\u003Cp>Use an HTML comment to list links of the current page’s children or siblings.\u003C\u002Fp>\n\u003Cp>Common usage is for content sites utilizing WordPress as a simple CMS. Some content hierarchies call for an Overview page followed by multiple subpages, for example, a Services page.\u003C\u002Fp>\n\u003Cp>Use the following shortcodes to list children and or siblings of the current page:\u003C\u002Fp>\n\u003Cp>Alphabetical listing of current page’s children:\u003C\u002Fp>\n\u003Cp>[list_children sort_column=”page_title” sort_order=”asc”]\u003C\u002Fp>\n\u003Cp>List of current page’s siblings, ordered by menu order (descending):\u003C\u002Fp>\n\u003Cp>[list_siblings sort_column=”menu_order” sort_order=”desc”]\u003C\u002Fp>\n\u003Cp>You can use a majority of the attributes from the wp_list_pages() call: https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fwp_list_pages\u003C\u002Fp>\n\u003Cp>\u003Cem>The following will no longer work (deprecated):\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cul>\u003Cbr \u002F>\n\u003C!–list_children()–>\u003Cbr \u002F>\n\u003C\u002Ful>\u003C\u002Fp>\n","Use an HTML comment to list links of the current page's children or siblings.",6348,"2025-04-29T23:00:00.000Z","6.4.8","8.0",[88,89,90,91],"list-pages","nagivation","permalinks","subnavigation","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flist-children.zip",99,"2025-04-30 00:00:00",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":11,"downloaded":103,"rating":13,"num_ratings":13,"last_updated":104,"tested_up_to":105,"requires_at_least":16,"requires_php":7,"tags":106,"homepage":110,"download_link":111,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"delink-pages","Delink Pages","1.1","scripty","https:\u002F\u002Fprofiles.wordpress.org\u002Fscripty\u002F","\u003Cp>This plugin will allow you to specify certain pages to not be linked when \u003Ccode>wp_list_pages()\u003C\u002Fcode> is used in a theme. You might want to do this if you want a header for a series of subpages, but don’t specifically want that header to be a real page itself.\u003C\u002Fp>\n","This plugin will allow you to specify certain pages to not be linked when wp_list_pages() is used in a theme.",2270,"2009-10-21T02:39:00.000Z","2.8.5",[107,108,109],"pages","unlink","wp_list_pages","http:\u002F\u002Fwww.scriptygoddess.com\u002Farchives\u002F2009\u002F10\u002F07\u002Fdelink-pages-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdelink-pages.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":122,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":7,"tags":127,"homepage":133,"download_link":134,"security_score":66,"vuln_count":30,"unpatched_count":13,"last_vuln_date":135,"fetched_at":26},"wp-sitemap-page","WP Sitemap Page","1.9.5","Tony Archambeau","https:\u002F\u002Fprofiles.wordpress.org\u002Ffunnycat\u002F","\u003Cp>An easy way to \u003Cstrong>add a sitemap\u003C\u002Fstrong> on one of your pages becomes reality thanks to this WordPress plugin. Just use the shortcode [wp_sitemap_page] on any of your pages. This will automatically generate a sitemap of all your pages and posts.\u003C\u002Fp>\n\u003Cp>Be carefull, this plugin do not generate an XML sitemap. It only allow you to list all your pages and posts on a single page. This is a sitemap for human not for search engines bots.\u003C\u002Fp>\n\u003Ch4>Why this plugin is useful?\u003C\u002Fh4>\n\u003Cp>Such a sitemap is useful for many reasons:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Easy navigation\u003C\u002Fstrong> for the users. They can find easily pages or previous posts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Improve the SEO\u003C\u002Fstrong> of a website\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Current features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display all pages, posts and categories\u003C\u002Fli>\n\u003Cli>Display the Custom Post Type (such as: “event”, “book” …)\u003C\u002Fli>\n\u003Cli>Display the taxonomies\u003C\u002Fli>\n\u003Cli>Display only one kind of content using the attribute “only”, like \u003Ccode>[wp_sitemap_page only=\"page\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Easy to use\u003C\u002Fli>\n\u003Cli>Possibility to customize the way it will be displayed through the admin panel\u003C\u002Fli>\n\u003Cli>Possibility to exclude some pages or some Custom Post Type (CPT)\u003C\u002Fli>\n\u003Cli>Posts and categories displayed hierarchically\u003C\u002Fli>\n\u003Cli>Has CSS class to customize it if you want\u003C\u002Fli>\n\u003Cli>Available in multi-languages (cf. English, French, Russian, Italian, Spanish, Dutch, Czech, Persian …). You can add your own translation if you want\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Want a WordPress developer? Want to add a translation? Feel free to \u003Ca href=\"http:\u002F\u002Fen.tonyarchambeau.com\u002Fcontact.html\" rel=\"nofollow ugc\">contact me\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>How to uninstall WP Sitemap Page\u003C\u002Fh3>\n\u003Cp>To uninstall WP Sitemap Page, you just have to de-activate the plugin from the plugins list.\u003C\u002Fp>\n","Add a sitemap on any of your page using the simple shortcode [wp_sitemap_page]. Improve the SEO and navigation of your website.",300000,3403865,96,205,"2025-04-15T20:10:00.000Z","6.8.5","3.0",[128,129,130,131,132],"generator","html-sitemap","page-list","site-map","sitemap","http:\u002F\u002Ftonyarchambeau.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-sitemap-page.zip","2021-09-07 00:00:00",{"attackSurface":137,"codeSignals":177,"taintFlows":234,"riskAssessment":315,"analyzedAt":324},{"hooks":138,"ajaxHandlers":166,"restRoutes":167,"shortcodes":168,"cronEvents":176,"entryPointCount":67,"unprotectedCount":13},[139,145,149,153,157,161],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","admin_menu","installMenue","wp-partner.php",36,{"type":140,"name":146,"callback":147,"file":143,"line":148},"wp_head","header_scripts",37,{"type":140,"name":150,"callback":151,"file":143,"line":152},"admin_init","wp_partner_admin_init",38,{"type":140,"name":154,"callback":155,"file":143,"line":156},"wp_dashboard_setup","dashboard_setup",40,{"type":140,"name":158,"callback":159,"file":143,"line":160},"admin_post_save_wp_partner_general","on_save_changes",44,{"type":162,"name":163,"callback":164,"priority":11,"file":143,"line":165},"filter","screen_layout_columns","on_screen_layout_columns",46,[],[],[169,172],{"tag":4,"callback":170,"file":143,"line":171},"shortcode",41,{"tag":173,"callback":174,"file":143,"line":175},"wp-partner_rform","shortcode_form",42,[],{"dangerousFunctions":178,"sqlUsage":179,"outputEscaping":182,"fileOperations":13,"externalRequests":13,"nonceChecks":30,"capabilityChecks":30,"bundledLibraries":233},[],{"prepared":180,"raw":13,"locations":181},8,[],{"escaped":13,"rawEcho":183,"locations":184},23,[185,189,191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231],{"file":186,"line":187,"context":188},"save-request.php",52,"raw output",{"file":143,"line":190,"context":188},198,{"file":143,"line":192,"context":188},247,{"file":143,"line":194,"context":188},256,{"file":143,"line":196,"context":188},257,{"file":143,"line":198,"context":188},292,{"file":143,"line":200,"context":188},302,{"file":143,"line":202,"context":188},307,{"file":143,"line":204,"context":188},309,{"file":143,"line":206,"context":188},311,{"file":143,"line":208,"context":188},318,{"file":143,"line":210,"context":188},321,{"file":143,"line":212,"context":188},324,{"file":143,"line":214,"context":188},327,{"file":143,"line":216,"context":188},331,{"file":143,"line":218,"context":188},381,{"file":143,"line":220,"context":188},389,{"file":143,"line":222,"context":188},412,{"file":143,"line":224,"context":188},457,{"file":143,"line":226,"context":188},458,{"file":143,"line":228,"context":188},464,{"file":143,"line":230,"context":188},465,{"file":143,"line":232,"context":188},513,[],[235,252,295,306],{"entryPoint":236,"graph":237,"unsanitizedCount":13,"severity":251},"on_save_changes (wp-partner.php:80)",{"nodes":238,"edges":248},[239,243],{"id":240,"type":241,"label":242,"file":143,"line":45},"n0","source","$_POST['_wp_http_referer']",{"id":244,"type":245,"label":246,"file":143,"line":45,"wp_function":247},"n1","sink","wp_redirect() [Open Redirect]","wp_redirect",[249],{"from":240,"to":244,"sanitized":250},true,"low",{"entryPoint":253,"graph":254,"unsanitizedCount":13,"severity":251},"\u003Cwp-partner> (wp-partner.php:0)",{"nodes":255,"edges":289},[256,257,258,262,267,270,275,277,282,285],{"id":240,"type":241,"label":242,"file":143,"line":45},{"id":244,"type":245,"label":246,"file":143,"line":45,"wp_function":247},{"id":259,"type":241,"label":260,"file":143,"line":261},"n2","$_GET (x3)",129,{"id":263,"type":245,"label":264,"file":143,"line":265,"wp_function":266},"n3","query() [SQLi]",130,"query",{"id":268,"type":241,"label":269,"file":143,"line":261},"n4","$_GET (x2)",{"id":271,"type":245,"label":272,"file":143,"line":273,"wp_function":274},"n5","get_results() [SQLi]",144,"get_results",{"id":276,"type":241,"label":269,"file":143,"line":261},"n6",{"id":278,"type":245,"label":279,"file":143,"line":280,"wp_function":281},"n7","get_var() [SQLi]",193,"get_var",{"id":283,"type":241,"label":284,"file":143,"line":261},"n8","$_GET (x5)",{"id":286,"type":245,"label":287,"file":143,"line":190,"wp_function":288},"n9","echo() [XSS]","echo",[290,291,292,293,294],{"from":240,"to":244,"sanitized":250},{"from":259,"to":263,"sanitized":250},{"from":268,"to":271,"sanitized":250},{"from":276,"to":278,"sanitized":250},{"from":283,"to":286,"sanitized":250},{"entryPoint":296,"graph":297,"unsanitizedCount":30,"severity":305},"\u003Csave-request> (save-request.php:0)",{"nodes":298,"edges":302},[299,301],{"id":240,"type":241,"label":300,"file":186,"line":175},"$_POST",{"id":244,"type":245,"label":264,"file":186,"line":160,"wp_function":266},[303],{"from":240,"to":244,"sanitized":304},false,"high",{"entryPoint":307,"graph":308,"unsanitizedCount":30,"severity":305},"deleteLink (wp-partner.php:125)",{"nodes":309,"edges":313},[310,312],{"id":240,"type":241,"label":311,"file":143,"line":261},"$_GET",{"id":244,"type":245,"label":264,"file":143,"line":265,"wp_function":266},[314],{"from":240,"to":244,"sanitized":304},{"summary":316,"deductions":317},"The \"wp-partner\" plugin v1.2.1 exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for its SQL queries and includes both nonce and capability checks, which are fundamental security mechanisms. The absence of known vulnerabilities in its history also suggests a relatively stable and well-maintained codebase.\n\nHowever, a significant concern arises from the static analysis, specifically the \"Output escaping\" metric. With 0% of the 23 identified outputs properly escaped, this indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is displayed without proper sanitization could be manipulated by attackers to inject malicious scripts. Furthermore, the taint analysis reveals two \"flows with unsanitized paths\" classified as high severity. While not explicitly defined as vulnerabilities, these flows represent potential pathways for malicious data to be processed in an insecure manner, which could be exploited in conjunction with the lack of output escaping.\n\nIn conclusion, while the plugin benefits from secure database interaction and basic authorization checks, the widespread lack of output escaping and the presence of high-severity unsanitized data flows are critical security weaknesses. These issues significantly increase the risk of XSS and other injection-related attacks. Addressing these output escaping and taint flow concerns should be the highest priority to improve the plugin's overall security.",[318,321],{"reason":319,"points":320},"All outputs are unescaped",15,{"reason":322,"points":323},"Two high severity unsanitized taint flows",12,"2026-03-17T01:04:24.030Z",{"wat":326,"direct":334},{"assetPaths":327,"generatorPatterns":329,"scriptPaths":330,"versionParams":331},[328],"\u002Fwp-content\u002Fplugins\u002Fwp-partner\u002Fstylesheet.css",[],[],[332,333],"wp-partner\u002Fstylesheet.css?ver=","wp-partner-plugin",{"cssClasses":335,"htmlComments":336,"htmlAttributes":337,"restEndpoints":338,"jsGlobals":339,"shortcodeOutput":340},[],[],[],[],[],[341,342],"[wp-partner]","[wp-partner_rform]"]