[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZqb1e3sh87DsjrNRV6GcIKGzs_zHCUGVe9TeEx0sM68":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":48,"crawl_stats":37,"alternatives":56,"analysis":162,"fingerprints":312},"wp-spid-italia","WP SPID Italia","2.13.1","Marco Milesi","https:\u002F\u002Fprofiles.wordpress.org\u002Fmilmor\u002F","\u003Cp>Plugin WordPress per l’interfacciamento con il Sistema Pubblico di Identità Digitale (SPID)\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fw5Z5EBG1R1M?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>GitHub: https:\u002F\u002Fgithub.com\u002FWPGov\u002Fwp-spid-italia\u003C\u002Fli>\n\u003Cli>WP.org: https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-spid-italia\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fi2eTL_Q2xfM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Copyright © 2017-2026 \u003Cstrong>Marco Milesi\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.marcomilesi.com\" rel=\"nofollow ugc\">www.marcomilesi.com\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.wpgov.it\" rel=\"nofollow ugc\">www.wpgov.it\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Ringraziamenti\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Christian Ghellere, Andrea Smith\u003C\u002Fstrong>: attività di software testing\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Paolo Bozzo\u003C\u002Fstrong>: sviluppo libreria Drupal-PASW\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Nadia Caprotti\u003C\u002Fstrong>: condivisione know-how Drupal-PASW\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comune di Firenze\u003C\u002Fstrong>: sviluppo libreria SimpleSaml riadattata da Paolo\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Porte Aperte sul Web\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Sponsor\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Italian Linux Society\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n","SPID - Sistema Pubblico di Identità Digitale",100,15735,84,5,"2025-12-05T15:02:00.000Z","7.0","4.8","",[20,21,22,23,24],"identita","italia","pubblico","sistema","spid","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-spid-italia.2.13.1.zip",99,1,0,"2025-01-10 19:04:34","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2024-11758","wp-spid-italia-authenticated-contributor-stored-cross-site-scripting","WP SPID Italia \u003C= 2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting","The WP SPID Italia plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions up to, and including, 2.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.9","2.12","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-02-13 22:14:07",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F0cdadbf2-8b5d-4018-8cee-0d0fb07696f9?source=api-prod",34,{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":52,"avg_patch_time_days":53,"trust_score":54,"computed_at":55},"milmor",13,12590,97,280,77,"2026-04-04T08:14:29.252Z",[57,78,102,125,145],{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":11,"num_ratings":27,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":16,"tags":70,"homepage":76,"download_link":77,"security_score":11,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"spider-analyser","Spider Analyser – WordPress搜索引擎蜘蛛分析插件","2.1.3","wbolt.com","https:\u002F\u002Fprofiles.wordpress.org\u002Fwbolt\u002F","\u003Cp>Spider Analyser是一款用于跟踪WordPress网站各种搜索引擎蜘蛛爬行日志的插件，并进行详细的蜘蛛爬行数据统计、蜘蛛行为分析、蜘蛛爬取分析及伪蜘蛛拦截等。\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Spider Analyser Pro\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>这是Spider Analyser的免费版本，包括蜘蛛概况、蜘蛛日志、蜘蛛列表（蜘蛛清单）、访问路径等大部分功能。如需使用到蜘蛛IP段、伪蜘蛛判断、蜘蛛拦截及蜘蛛文章爬取分析等功能，则需要升级到Pro版本！ \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fspider-analyser?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"Spider Analyser Pro\" rel=\"friend nofollow ugc\">点击了解及购买Spider Analyser Pro版本!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>功能包括：\u003C\u002Fp>\n\u003Ch3>1.蜘蛛概况\u003C\u002Fh3>\n\u003Cp>支持查看网站日常各大搜索引擎蜘蛛来访的数据；\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>今日蜘蛛\u003C\u002Fstrong>\u003Cbr \u002F>\n方便站长快速了解当日、昨日及30天平均的来访蜘蛛数、爬取URL数及平均爬取URL数。\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>趋势图\u003C\u002Fstrong>\u003Cbr \u002F>\n支持按今天、昨天、最近7天及最近30天查看蜘蛛数、爬取URLs总量、响应状态码及热门蜘蛛爬取链接数走势折线图，并可查看上一周期数据，以作对比分析。\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Top10蜘蛛\u003C\u002Fstrong>\u003Cbr \u002F>\n支持按今天、昨天、最近7天及最近30天查看Top10蜘蛛的爬取URL数及占比相关数据。\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Top10蜘蛛爬取URL\u003C\u002Fstrong>\u003Cbr \u002F>\n支持按今天、昨天、最近7天及最近30天查看Top10蜘蛛爬取URL的爬取次数及占比，方便站长对热门蜘蛛爬取页面URL进行分析。\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Top10热门文章\u003C\u002Fstrong>\u003Cbr \u002F>\n按今天、昨天、最近7天及最近30天查看Top10热门文章，以便于站长分析热门文章蜘蛛爬取情况以进一步优化文章页SEO。\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.蜘蛛日志\u003C\u002Fh3>\n\u003Cp>支持按今天、最近7天及最近30天查看蜘蛛日志，包括蜘蛛访问时间、状态码、访问链接、蜘蛛IP及蜘蛛名称等参数。\u003C\u002Fp>\n\u003Cp>并且支持按蜘蛛名称、状态码及时间进行筛选日志；以及可通过访问URL、蜘蛛IP搜索蜘蛛日志。支持单个或者批量忽略\u002F拦截日志对应蜘蛛。\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.应重点关注301\u002F302，及404状态码主流搜索引擎（如百度、谷歌和必应）蜘蛛日志。\u003Cbr \u002F>\n  2.蜘蛛日志分析工作，请查阅\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fhow-to-analyze-spider-log.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"蜘蛛日志分析教程\" rel=\"friend nofollow ugc\">详细教程\u003C\u002Fa>。\u003Cbr \u002F>\n  3.301\u002F302状态码内部链接，尽可能修改为最终目标链接。\u003Cbr \u002F>\n  4.404状态码内部链接，应修复或重定向为正确链接。\u003Cbr \u002F>\n  5.重定向可安装\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fsst?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"Smart SEO Tool插件\" rel=\"friend nofollow ugc\">Smart SEO Tool插件\u003C\u002Fa>实现或\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002F301-redirects.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"WordPress 301重定向\" rel=\"friend nofollow ugc\">手动配置\u003C\u002Fa>。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>3.蜘蛛列表\u003C\u002Fh3>\n\u003Cp>蜘蛛列表包含蜘蛛清单、蜘蛛IP段、疑似伪蜘蛛及蜘蛛拦截四部分的功能，其中：\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>蜘蛛清单\u003C\u002Fstrong>\u003Cbr \u002F>\n列表包括蜘蛛名称、蜘蛛类型、蜘蛛地址、最近来访时间、爬取URLs及占比情况等数据，支持按蜘蛛名称、蜘蛛类型及时间段筛选查询；并且支持单个或者批量忽略或者拦截指定蜘蛛。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.蜘蛛清单数据引自\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools-spider?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"蜘蛛查询工具\" rel=\"friend nofollow ugc\">蜘蛛查询工具\u003C\u002Fa>。\u003Cbr \u002F>\n  2.部分不常见蜘蛛尤其是伪蜘蛛，可能类型显示为未知。但站长切勿以此为标准判别该蜘蛛是否为伪蜘蛛。\u003Cbr \u002F>\n  3.对于无需记录的蜘蛛爬虫，应该选择忽略或者拦截，避免浪费服务器资源。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cul>\n\u003Cli>\u003Cstrong>蜘蛛IP段\u003C\u002Fstrong>\u003Cbr \u002F>\n在该列表可以查看不同蜘蛛对应IP段及其占比情况，支持按蜘蛛名、时间进行筛选查询。且支持单个或者批量拦截蜘蛛IP段。注：蜘蛛IP段拦截属于泛拦截，应审慎操作。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.IP段拦截前，请确保该IP段蜘蛛均是不需要统计的，若要取消拦截，请通过蜘蛛拦截列表取消。\u003Cbr \u002F>\n  2.Pro版本用户可以考虑直接启用智能拦截，则无需执行手动拦截操作。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cul>\n\u003Cli>\u003Cstrong>疑似伪蜘蛛\u003C\u002Fstrong>\u003Cbr \u002F>\n协作站长快速发现疑似伪蜘蛛名称及IP地址，便于快速对伪蜘蛛执行单个或者批量拦截操作。站长应该积极对伪蜘蛛进行拦截操作，避免伪蜘蛛的频繁爬取导致服务器性能下降。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.疑似伪蜘蛛数据参考\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools-spider?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"蜘蛛查询工具\" rel=\"friend nofollow ugc\">蜘蛛查询工具\u003C\u002Fa>，仅供参考。\u003Cbr \u002F>\n  2.如果您的网站启用了全站CDN（如Cloudflare），真实蜘蛛也可能被判断为伪蜘蛛。全站CDN站点应结合CDN路线IP进一步判断蜘蛛的真伪。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cul>\n\u003Cli>\u003Cstrong>蜘蛛拦截\u003C\u002Fstrong>\u003Cbr \u002F>\n蜘蛛拦截列表用于站长管理蜘蛛拦截清单，支持站长按名称、IP\u002FIP段或者名称+IP\u002FIP段对蜘蛛进行拦截操作。该拦截列表也支持对拦截动作反操作，即可单个或者批量移除拦截。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.开启智能拦截前，需确定未采用全站CDN，否则可能误判拦截真实蜘蛛。\u003Cbr \u002F>\n  2.部分伪蜘蛛可能会伪装成真实蜘蛛名称，对于伪蜘蛛拦截请使用IP拦截方式。\u003Cbr \u002F>\n  3.按蜘蛛名称拦截，需准确填写蜘蛛名称，区分大小写，否则可能会拦截失败。\u003Cbr \u002F>\n  4.蜘蛛拦截仅对前端页面爬取蜘蛛有效，对后端数据爬取蜘蛛无效。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>4.访问路径\u003C\u002Fh3>\n\u003Cp>支持按今天、最近7天及最近30天查看蜘蛛访问路径（爬取页面URL）具体信息列表，包括URL、URL类型、爬取次数及占比情况等数据。\u003C\u002Fp>\n\u003Cp>并且支持按蜘蛛名称、类型、状态、时间、访问URL及蜘蛛IP进行筛选查询。同时，站长还可以快速查看各类型的访问路径的蜘蛛爬取占比饼状分布图。\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.重点关注主流搜索引擎对文章页及\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fwordpress-sitemap.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"WordPress Sitemap\" rel=\"friend nofollow ugc\">Sitemap\u003C\u002Fa>的访问爬取。\u003Cbr \u002F>\n  2.持续更新发布高质量文章内容，以吸引搜索引擎爬取。\u003Cbr \u002F>\n  3.安装\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fsst?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"Smart SEO Tool插件\" rel=\"friend nofollow ugc\">Smart SEO Tool插件\u003C\u002Fa>或其他类似插件，通过sitemap生成配置剔除不重要链接类型。\u003Cbr \u002F>\n  4.对于主流搜索引擎高频次爬取文章页，应该适当地\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Finternal-links-optimization.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"内部链接建设\" rel=\"friend nofollow ugc\">添加内部链接\u003C\u002Fa>。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>5.文章爬取\u003C\u002Fh3>\n\u003Cp>此功能模块是为了方便站长按蜘蛛名称、不同状态的文章类型及时间，快速了解网站文章蜘蛛访问量、出链数及入链数。站长再根据这几个指标，对文章进行内链布局处理，提升蜘蛛爬取频率，从而提升网站收录量。\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.蜘蛛访问量直接体现搜索引擎对URL的嗅觉，蜘蛛访问频率越高，URL被收录索引几率越大。\u003Cbr \u002F>\n  2.蜘蛛访问量频率低且未收录文章，可以尝试\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Frepublishing-content.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"内容重建\" rel=\"friend nofollow ugc\">内容重建\u003C\u002Fa>及\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Finternal-links-optimization.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"WordPress内部链接\" rel=\"friend nofollow ugc\">增加入链数\u003C\u002Fa>。\u003Cbr \u002F>\n  3.尽可能降低文章指向其他网站的链接数，又或者\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fwhat-is-nofollow.html?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"nofollow属性\" rel=\"friend nofollow ugc\">外链增加nofollow属性\u003C\u002Fa>。\u003Cbr \u002F>\n  4.收录状态数据通过\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fbsl?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"搜索引擎推送插件\" rel=\"friend nofollow ugc\">搜索引擎推送插件\u003C\u002Fa>引入，建议站长结合这两插件做好链接推送和爬虫分析工作。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>6.插件设置\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>记录管理\u003C\u002Fstrong>-支持自定义蜘蛛类型及设置蜘蛛记录状态。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.如无需统计某一蜘蛛，可以通过操作修改该蜘蛛状态为忽略即可。\u003Cbr \u002F>\n  2.对于一些非必要蜘蛛，应直接拦截，节省服务器资源。\u003Cbr \u002F>\n  3.此列表的占比计算范围：最近7天的蜘蛛数据。\u003Cbr \u002F>\n  4.蜘蛛名称及类型数据引自\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools-spider?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"蜘蛛查询工具\" rel=\"friend nofollow ugc\">蜘蛛查询工具\u003C\u002Fa>。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cul>\n\u003Cli>\u003Cstrong>链接自定义\u003C\u002Fstrong>-允许通过设置链接规则来区分蜘蛛爬取URL链接类型，支持添加自定义或者修改新增现有链接类型的规则。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.支持通配符形式链接规则，如 \u003Ccode>\u002Fmp-api\u002F*\u003C\u002Fcode>\u003Cbr \u002F>\n  2.如有不同于预设的链接类型，可以通过添加自定义来新增；否则建议在预设类型基础上修改新增。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cul>\n\u003Cli>\u003Cstrong>日志设置\u003C\u002Fstrong>-支持设置插件日志保留时间周期（最近30天、最近3个月、最近6个月、最近1年或永久），日志备份及删除和自定义蜘蛛。\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>ℹ️ \u003Cstrong>Tips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>1.日志保留周期可根据自身实际情况选择，一般保留30天即可。如数据量非常大，改为近7天亦可。\u003Cbr \u002F>\n  2.日志更新方式需写入数据库，为保证服务器性能，可考虑每小时（默认）甚至每天更新。\u003Cbr \u002F>\n  3.如蜘蛛日志数据量非常庞大，建议备份日志并删除，忽略及拦截不必要的蜘蛛。\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>Spider Analyser插件非常适合站长作为网站SEO优化的辅助工具，通过数据统计深入了解更大搜索引擎蜘蛛爬取页面URL的行为习惯。WordPress站长可以利用该插件，并结合\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fsst?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"WordPress网站SEO优化插件\" rel=\"friend nofollow ugc\">WordPress网站SEO优化插件\u003C\u002Fa>、\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fbsl?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"百度推送插件\" rel=\"friend nofollow ugc\">百度推送插件\u003C\u002Fa>和\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fskt?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"关键词推荐插件\" rel=\"friend nofollow ugc\">关键词推荐插件\u003C\u002Fa>，对WordPress网站内容的搜索引擎收录及排名优化可以做到事半功倍的效果！\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Spider Analyser插件的蜘蛛爬虫数据引自\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools-spider?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"蜘蛛爬虫在线查询\" rel=\"friend nofollow ugc\">蜘蛛爬虫查询在线工具\u003C\u002Fa>。该工具整合了1600+蜘蛛爬虫数据，涵盖的类型包括搜索引擎、营销、快照、监控、信息流、链接检测、爬虫、工具、速度检测和漏洞\u002F病毒扫描等。\u003C\u002Fp>\n\u003Cp>您也可以使用该在线工具在线，通过蜘蛛名称、IP地址和用户代理字符串，来查询蜘蛛的详细信息及判断蜘蛛爬虫的真伪！\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>其他WP插件\u003C\u002Fh3>\n\u003Cp>Spider Analyser是一款专门为WordPress开发的\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\u002Fspider-analyser?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"Spider Analyser插件\" rel=\"friend nofollow ugc\">搜索引擎蜘蛛分析插件\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>闪电博（\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002F?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"闪电博官网\" rel=\"friend nofollow ugc\">wbolt.com\u003C\u002Fa>）专注于原创\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fthemes\" title=\"WordPress主题\" rel=\"friend nofollow ugc\">WordPress主题\u003C\u002Fa>和\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Fplugins\" title=\"WordPress插件\" rel=\"friend nofollow ugc\">WordPress插件\u003C\u002Fa>开发，为中文博客提供更多优质和符合国内需求的主题和插件。\u003C\u002Fp>\n\u003Cp>除了Spider Analyser插件外，目前我们还开发了以下WordPress插件：\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbaidu-submit-link\u002F\" rel=\"ugc\">多合一搜索自动推送管理插件-历史下载安装数190,000+\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsmart-keywords-tool\u002F\" rel=\"ugc\">热门关键词推荐插件-最佳关键词布局插件\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimgspider\u002F\" rel=\"ugc\">IMGspider-轻量外链图片采集插件\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsmart-seo-tool\u002F\" rel=\"ugc\">Smart SEO Tool-高效便捷的WP搜索引擎优化插件\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmagicpost\u002F\" rel=\"ugc\">MagicPost – WordPress文章管理功能增强插件\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpturbo\u002F\" rel=\"ugc\">WPTurbo -WordPress性能优化插件\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-vk\u002F\" rel=\"ugc\">WP VK-WordPress知识付费插件\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fonline-contact-widget\u002F\" rel=\"ugc\">Online Contact Widget-多合一在线客服插件\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>更多主题和插件，请访问\u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002F?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" title=\"闪电博官网\" rel=\"friend nofollow ugc\">wbolt.com\u003C\u002Fa>!\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>如果你在WordPress主题和插件上有更多的需求，也希望您可以向我们提出意见建议，我们将会记录下来并根据实际情况，推出更多符合大家需求的主题和插件。\u003C\u002Fp>\n\u003Ch3>WordPress资源\u003C\u002Fh3>\n\u003Cp>由于我们是WordPress重度爱好者，在WordPress主题插件开发之余，我们还独立开发了一系列的在线工具及分享大量的WordPress教程，供国内的WordPress粉丝和站长使用和学习，其中包括：\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Flearn?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">WordPress学院\u003C\u002Fa>:\u003C\u002Fstrong> 这里将整合全面的WordPress知识和教程，帮助您深入了解WordPress的方方面面，包括基础、开发、优化、电商及SEO等。WordPress大师之路，从这里开始。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Fkeyword-finder?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">关键词查找工具\u003C\u002Fa>:\u003C\u002Fstrong> 选择符合搜索用户需求的关键词进行内容编辑，更有机会获得更好的搜索引擎排名及自然流量。使用我们的关键词查找工具，以获取主流搜索引擎推荐关键词。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Fwp-fixer?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">WordPress错误查找\u003C\u002Fa>:\u003C\u002Fstrong> 我们搜集了大部分WordPress最为常见的错误及对应的解决方案。您只需要在下方输入所遭遇的错误关键词或错误码，即可找到对应的处理办法。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Fseo-toolbox?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">SEO工具箱\u003C\u002Fa>:\u003C\u002Fstrong> 收集整理国内外诸如链接建设、关键词研究、内容优化等不同类型的SEO工具。善用工具，往往可以达到事半功倍的效果。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>5. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Fseo-topic?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">SEO优化中心\u003C\u002Fa>:\u003C\u002Fstrong> 无论您是 SEO 初学者，还是想学习高级SEO 策略，这都是您的 SEO 知识中心。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>6. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Fspider-tool?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">蜘蛛查询工具\u003C\u002Fa>:\u003C\u002Fstrong> 网站每日都可能会有大量的蜘蛛爬虫访问，或者搜索引擎爬虫，或者安全扫描，或者SEO检测……满目琳琅。借助我们的蜘蛛爬虫检测工具，让一切假蜘蛛爬虫无处遁形！\u003C\u002Fp>\n\u003Cp>\u003Cstrong>7. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Fwp-codex?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">WP开发宝典\u003C\u002Fa>:\u003C\u002Fstrong> WordPress作为全球市场份额最大CMS，也为众多企业官网、个人博客及电商网站的首选。使用我们的开发宝典，快速了解其函数、过滤器及动作等作用和写法。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>8. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Frobots-tester?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">robots.txt测试工具\u003C\u002Fa>:\u003C\u002Fstrong> 标准规范的robots.txt能够正确指引搜索引擎蜘蛛爬取网站内容。反之，可能让蜘蛛晕头转向。借助我们的robots.txt检测工具，校正您所写的规则。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>9. \u003Ca href=\"https:\u002F\u002Fwww.wbolt.com\u002Ftools\u002Ftheme-detector?utm_source=wp&utm_medium=link&utm_campaign=spider-analyser\" rel=\"nofollow ugc\">WordPress主题检测器\u003C\u002Fa>:\u003C\u002Fstrong> 有时候，看到一个您为之着迷的WordPress网站。甚是想知道它背后的主题。查看源代码定可以找到蛛丝马迹，又或者使用我们的小工具，一键查明。\u003C\u002Fp>\n","Spider Analyser是一款用于跟踪WordPress网站各种搜索引擎蜘蛛爬行日志的插件，并进行详细的蜘蛛爬行数据统计、蜘蛛行为分析、蜘蛛爬取分析及伪蜘蛛拦截等。",4000,128050,"2025-06-09T03:00:00.000Z","6.8.5","5.6",[71,72,73,74,75],"baiduspider","bingbot","crawler","googlebot","spider","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fspider-analyser\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspider-analyser.2.1.3.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":69,"requires_php":92,"tags":93,"homepage":99,"download_link":100,"security_score":101,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"3b-meteo","3B Meteo","1.1.0","Andrea Pernici","https:\u002F\u002Fprofiles.wordpress.org\u002Fandreapernici\u002F","\u003Cp>Permette di aggiungere i widget meteo per le previsioni del tempo sul tuo sito in vari formati.\u003Cbr \u002F>\nI widget sono personalizzabili nei colori e possono essere inseriti nei post, nelle pagine e nelle sidebar.\u003C\u002Fp>\n\u003Cp>I widget meteo disponibili sono in tre versioni, Old, Classic e Flex.\u003Cbr \u002F>\nOld per mantenere retro compatibilità ha anche la versione WordPress Widget e Shortcode oltre al blocco dedicato, più sotto trovi i parametri da usare nello shortcode.\u003Cbr \u002F>\nClassic ha solo la versione blocco dedicato.\u003Cbr \u002F>\nOld e Classic utilizzano ancora la tecnologia iFrame html per mostrare i dati meteo.\u003C\u002Fp>\n\u003Cp>La versione blocco della tipologia Old, Classic e Flex è configurabile tramite i settings forniti dal nuovo editor a blocchi.\u003C\u002Fp>\n\u003Cp>Il nuovo formato flex invece è solo disponibile come blocco, questo nuovo formato viene fornito con numerose\u003Cbr \u002F>\npossibilità di personalizzazione, stile, colore e tanto altro.\u003C\u002Fp>\n\u003Cp>Una volta selezionato nell’editor se è la prima volta che si installa si dovrà procedere alla registrazione di\u003Cbr \u002F>\nuna API key direttamente dall’interfaccia del blocco seguendo la procedura guidata in due passaggi, nulla di complesso.\u003Cbr \u002F>\nEffettuata la registrazione tramite il blocco verrà inviata una mail, che sarà da conservare, con la chiave da inserire\u003Cbr \u002F>\nnell’interfaccia del blocco per terminare l’autenticazione e ricevere le informazioni meteo.\u003Cbr \u002F>\nFinita la registrazione si potrà utilizzare il blocco in tutte le sue funzionalità senza limiti.\u003C\u002Fp>\n\u003Ch3>Come utilizzare lo shortcode per la tipologia Old\u003C\u002Fh3>\n\u003Cp>Tramite gli shortcodes è possibile inserire all’interno dei vostri post o delle vostre pagine i widget meteo semplicemente inserendo il codice [nomeshortcode].\u003Cbr \u002F>\nSono disponibili 14 shortcode che oltre ad essere elenca qui sono anche nelle anteprime di esempio dei vari widget:\u003C\u002Fp>\n\u003Cp>Previsioni meteo località Compatti\u003Cbr \u002F>\nTi consente di visualizzare il tempo per la tua località, in forma compatta.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-a1]\u003C\u002Fstrong> – 1 giorno: Previsioni del giorno in corso per località in formato compatto\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-a2]\u003C\u002Fstrong> – 6 giorni: Previsioni a 6 giorni per la tua località in formato compatto.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-a3]\u003C\u002Fstrong> – 7 Giorni: Previsioni della settimana per località in formato compatto.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Previsioni meteo località Dati in diretta e Tutte le località\u003Cbr \u002F>\nTi consente di visualizzare il tempo in atto per la tua località, in forma compatta, o le previsioni a sei giorni per tutte le località.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-b1]\u003C\u002Fstrong> – Dati in diretta: Gli ultimi dati rilevati dalle centraline meteo della tua località.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-b2]\u003C\u002Fstrong> – Tutte le località: Previsioni a sei giorni per località, in formato esteso con campo di ricerca.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Previsioni meteo località Estese\u003Cbr \u002F>\nTi consente di visualizzare, in formato esteso, le previsioni del tempo per la tua località.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-c1]\u003C\u002Fstrong> – 7 giorni: Previsioni della settimana per località, divise per quattro fascie giornaliere.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-c2]\u003C\u002Fstrong> – Orario: Previsioni della settimana per località, con dettaglio orario.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Previsioni meteo regionali\u003Cbr \u002F>\nTi consente di visualizzare le previsioni del tempo per la tua regione.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-d1]\u003C\u002Fstrong> – Compatto: Previsioni del giorno in corso nella tua regione, in formato compatto.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-d2]\u003C\u002Fstrong> – 7 giorni: Previsioni della settimana nella tua regione, in formato esteso.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Previsioni meteo località marine\u003Cbr \u002F>\nTi consente di visualizzare le previsioni marine per la tua località.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-e1]\u003C\u002Fstrong> – 1 giorno: Previsioni marine del giorno in corso nella tua località, in formato compatto.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-e2]\u003C\u002Fstrong> – 7 giorni: Previsioni marine della settimana nella tua località, in formato esteso.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Previsioni meteo regionali marine\u003Cbr \u002F>\nTi consente di visualizzare le previsioni marine per la tua regione.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-f1]\u003C\u002Fstrong> – 7 giorni: Previsioni marine della settimana nella tua regione, in formato esteso.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Previsioni meteo neve\u003Cbr \u002F>\nTi consente di visualizzare il bollettino neve per la tua località.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>[trebi-g1]\u003C\u002Fstrong> – 1 giorno: Bollettino neve del giorno in corso nella tua località, in formato compatto.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>[trebi-g2]\u003C\u002Fstrong> – 7 giorni: Bollettino neve a 7 giorni nella tua località, in formato esteso.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>E’ inoltre possibile utilizzare gli shortcode anche all’interno del widget di testo di default di WordPress.\u003C\u002Fp>\n\u003Cp>Gli shortcodes possono anche essere personalizzati utilizzando i seguenti parametri:\u003C\u002Fp>\n\u003Cp>Esempio località:\u003Cbr \u002F>\n[nomeshortcode loc=”codice località” c1=”ffffff” c2=”ffffff” c3=”cccccc” b1=”3b3b3b” b2=”000000″ b3=”000000″]\u003C\u002Fp>\n\u003Cp>Esempio regione:\u003Cbr \u002F>\n[nomeshortcode idreg=”codice regione” c1=”ffffff” c2=”ffffff” c3=”cccccc” b1=”3b3b3b” b2=”000000″ b3=”000000″]\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>idreg\u003C\u002Fstrong> = codice regione | loc=codice localita\u003C\u002Fli>\n\u003Cli>\u003Cstrong>c1,2,3\u003C\u002Fstrong> = sono i colori dei caratteri nei widget – in formato ‘FFFFFF’\u003C\u002Fli>\n\u003Cli>\u003Cstrong>b1,2,3\u003C\u002Fstrong> = sono i colori degli sfondi – in formato ‘FFFFFF’\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>I codici Regione e Località li puoi trovare nella pagina dedicata al plugin nel pannello admin di WordPress una volta attivato.\u003Cbr \u002F>\nI codici Regione e Località \u003Cem>servono solo\u003C\u002Fem> per gli shortcode Old e Classic\u003C\u002Fp>\n\u003Cp>Maggiori informazioni:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Piu’ informazioni sul \u003Ca href=\"http:\u002F\u002Fwww.andreapernici.com\u002Fwordpress\u002F3bmeteo\u002F\" rel=\"nofollow ugc\">Plugin 3B Meteo\u003C\u002Fa>, dove e’ possibile vedere l’evoluzione del plugin e lo sviluppo.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.3bmeteo.com\u002Fwidgets\u002Fwordpress\" rel=\"nofollow ugc\">Meteo Italia\u003C\u002Fa> sul sito 3B Meteo.\u003C\u002Fli>\n\u003Cli>Dati \u003Ca href=\"http:\u002F\u002Fwww.3bmeteo.com\u002F\" rel=\"nofollow ugc\">meteo Italia\u003C\u002Fa> forniti da 3B Meteo.\u003C\u002Fli>\n\u003C\u002Ful>\n","Permette di aggiungere i widget meteo per le previsioni del tempo sul tuo sito in vari formati.",1000,42902,60,2,"2024-01-13T14:58:00.000Z","6.4.8","7.2",[94,95,96,97,98],"meteo","meteo-italia","meteo-sul-sito","previsioni-del-tempo","previsioni-meteo","https:\u002F\u002Fandreapernici.com\u002Fwordpress\u002F3bmeteo\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002F3b-meteo.1.1.0.zip",85,{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":112,"num_ratings":113,"last_updated":114,"tested_up_to":68,"requires_at_least":115,"requires_php":116,"tags":117,"homepage":123,"download_link":124,"security_score":11,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"campi-moduli-italiani","Campi Moduli Italiani","2.3.2","Giuseppe","https:\u002F\u002Fprofiles.wordpress.org\u002Fmociofiletto\u002F","\u003Cp>This plugin creates form tags for Contact Form 7 and form fields for WPForms.\u003C\u002Fp>\n\u003Ch4>Contact Form 7\u003C\u002Fh4>\n\u003Cp>4 form-tags (and corresponding mail-tags) are available in this version:\u003Cbr \u002F>\n* [comune]: creates a series of select for the selection of an Italian municipality\u003Cbr \u002F>\n* [cf]: creates a field for entering the Italian tax code of a natural person\u003Cbr \u002F>\n* [stato]: creates the ability to select a country\u003Cbr \u002F>\n* [formsign]: creates the possibility to digitally sign the e-mails sent with a private key attributed to each individual form\u003C\u002Fp>\n\u003Ch4>WPForms\u003C\u002Fh4>\n\u003Cp>2 fields types are available:\u003Cbr \u002F>\n* Cascade selection of an Italian municipality (returning Istat’s municipality code as value)\u003Cbr \u002F>\n* A field to select a state (returning Istat’s country code as value)\u003C\u002Fp>\n\u003Ch3>Data used\u003C\u002Fh3>\n\u003Cp>At the time of activation, the plugin downloads the data it uses from the Istat and from the Italian Revenue Agency websites. This data can be updated from the administration console.\u003Cbr \u002F>\nDownloading and entering data into the database takes several minutes: be patient during the activation phase.\u003Cbr \u002F>\nThe selection of the municipalities was created starting from the code of https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fregione-provincia-comune\u002F\u003C\u002Fp>\n\u003Cp>This plugin uses data made available by ISTAT and the Agenzia delle entrate (Italian revenue agency).\u003Cbr \u002F>\nIn particular, data made available at these URLs are acquired and stored:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fwww.istat.it\u002Fit\u002Farchivio\u002F6789\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fwww.istat.it\u002Fit\u002Farchivio\u002F6747\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fwww1.agenziaentrate.gov.it\u002Fservizi\u002Fcodici\u002Fricerca\u002FVisualizzaTabella.php?ArcName=00T4\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The data published on the ISTAT website are covered by a Creative Commons license – Attribution (CC-by) (https:\u002F\u002Fcreativecommons.org\u002Flicenses\u002Fby\u002F3.0\u002Fit\u002F), as indicated here: https:\u002F\u002Fwww.istat.it\u002Fit\u002Fnote-legali\u003Cbr \u002F>\nThe data taken from the website of the Agenzia delle entrate are in the public domain and constitute a public database made available to allow tax compliance and, more generally, to allow the identification of physical persons with the Italian public administrations, through the personal fiscal code.\u003Cbr \u002F>\nThe data are managed by the Ufficio Archivio of the Agenzia delle entrate.\u003Cbr \u002F>\nBy Italian law (art. 52 d.lgs. 82\u002F2005) all data, that are not personal data, published by an Italian administration without an explicit license are open data (CC0).\u003Cbr \u002F>\nThis plugin uses the data taken from the website of the Agenzia delle entrate exclusively for the purpose of carrying out a formal regularity check of the pesonal tax code.\u003Cbr \u002F>\nThis plugin does not include any links on the external pages of the website on which it is used, neither to the Agenzia delle entrate’s site nor to the ISTAT’s website; in particular, no kind of direct link is made, nor of deep linking.\u003C\u002Fp>\n\u003Ch3>How to use form tags in Contact Form 7\u003C\u002Fh3>\n\u003Cp>[comune]\u003Cbr \u002F>\n    [comune] has a manager in the CF7 form creation area that allows you to set various options.\u003Cbr \u002F>\nIn particular, it is possible to set the “kind” attribute to “tutti” (all); “attuali” (current), “evidenza_cessati” (evidence ceased). In the first and third cases, in different ways, both the currently existing municipalities and those previously closed are proposed (useful, for example, to allow the selection of the municipality of birth). In the “attuali” mode, however, only the selection of the currently existing municipalities is allowed (useful to allow the selection of the Municipality of residence \u002F domicile).\u003Cbr \u002F>\nIt is also possible to set the “comu_details” option, to show an icon after the select cascade that allows the display of a modal table with the statistical details of the territorial unit.\u003Cbr \u002F>\nThe value returned by the group is always the ISTAT code of the selected municipality. The corresponding mail-tag converts this value into the name of the municipality followed by the indication of the automotive code of the province.\u003Cbr \u002F>\nFrom version 1.1.1 hidden fields are also populated with the strings corresponding to the denomination of the region, province and municipality selected, useful for being used in plugins that directly capture the data transmitted by the form (such as “Send PDF for Contact Form 7” )\u003Cbr \u002F>\nThe cascade of select can also be used outside of CF7, using the [comune] shortcode (options similar to those of the form tag for Contact Form 7).\u003C\u002Fp>\n\u003Cp>Starting from version 2.2.0 there is a new filters’ builder for the field [comune] useful for creating fields that allow the selection of a customizable list of municipalities.\u003Cbr \u002F>\nFilters can be used both for CF7 tag, and for WPForms field, and for the shortcode ‘comune’.\u003Cbr \u002F>\nA short youtube video illustrates how to use filters and the filters’ builder.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FseycOunfikk?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>[cf]\u003Cbr \u002F>\n    [cf] has a manager in the CF7 form creation area that allows you to set the various options.\u003Cbr \u002F>\nIn particular, it is possible to set various validation options allowing you to find the correspondence of the tax code with other fields of the form.\u003Cbr \u002F>\nSpecifically, it is possible to verify that the tax code corresponds with the foreign state of birth (selected by means of a select [stato]), the Italian municipality of birth (selected by means of a cascade of select [comune]), gender (indicating the name of a form field that returns “M” or “F”), the date of birth. If multiple fields are used to select the date of birth, one for the day, one for the month and one for the year, it is possible to find the correspondence of the tax code with these values.\u003C\u002Fp>\n\u003Cp>[stato]\u003Cbr \u002F>\n    [stato] has a manager in the CF7 form creation area that allows you to set various options.\u003Cbr \u002F>\nIn particular, it is possible to set the selection of only the currently existing states (“only_current” option) and it is possible to set the “use_continent” option to have the select values divided by continent. The field always returns the ISTAT code of the foreign state (code 100 for Italy). The ISTAT code is the type of data expected by [cf], for the verification of the tax code.\u003C\u002Fp>\n\u003Cp>[formsign]\u003Cbr \u002F>\n    [formsign] NOW (v. 2.2.1) has a manager in the CF7 form creation area.\u003Cbr \u002F>\nTo use it, simply insert the tag followed by the field name in your own form: for example [formsign firmadigitale]. This tag will create a hidden field in the form with attribute name = “firmadigitale” and no value.\u003Cbr \u002F>\nTo use the code, it is also necessary to insert the [firmadigitale] mail-tag in the email or emails that the form sends (it is recommended at the end of the email).\u003Cbr \u002F>\nIn this way, in the email body it will be written a two-lines sequence containing:\u003Cbr \u002F>\nan md5 hash of the data transmitted with the module (not of the content of any attached files)\u003Cbr \u002F>\na digital signature of the hash.\u003Cbr \u002F>\nIf you use html email, you can style the output using a wp option named: “gcmi-forsign-css” with a css as value.\u003Cbr \u002F>\nThe signature is affixed by generating a pair of RSA keys, attributed to each form.\u003Cbr \u002F>\nBy checking the hash and the signature, it will be possible to verify that the emails have actually been sent by the form and that the data transmitted by the user correspond to what has been registered.\u003Cbr \u002F>\nTo facilitate data feedback, it is preferable to use “Flamingo” for archiving sent messages. In fact, in the Flamingo admin screen, a specific box is created that allows feedback of the hash and the digital signature entered in the email.\u003Cbr \u002F>\nThe system is useful in the event that through the form it is expected to receive applications for registration or applications etc… and avoids disputes regarding the data that the candidates claim to have sent and what is recorded by the system in Flamingo.\u003C\u002Fp>\n\u003Ch3>Code\u003C\u002Fh3>\n\u003Cp>Want to check the code? \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMocioF\u002Fcampi-moduli-italiani\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002FMocioF\u002Fcampi-moduli-italiani\u003C\u002Fa>\u003C\u002Fp>\n","Plugin to create useful fields for Italian sites, to be used in the forms produced with Contact Form 7 and WPForms.",500,13874,94,6,"2025-10-27T21:26:00.000Z","5.9","7.4",[118,119,120,121,122],"codice-fiscale","comuni-italiani","contact-form-7","firma-digitale","wpforms","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcampi-moduli-italiani\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcampi-moduli-italiani.2.3.2.zip",{"slug":126,"name":127,"version":128,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":133,"downloaded":134,"rating":11,"num_ratings":27,"last_updated":135,"tested_up_to":68,"requires_at_least":136,"requires_php":116,"tags":137,"homepage":143,"download_link":144,"security_score":11,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"bot-traffic-shield","Bot Traffic Shield – Block Bad Bots and Stop AI Bots Crawlers","1.0.4","Delower Hossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdelower\u002F","\u003Cp>In the age of AI, your valuable website content is a prime target for data crawlers from large tech companies. \u003Cstrong>Bot Traffic Shield\u003C\u002Fstrong> is your first line of defense against content theft and unauthorized scraping.\u003C\u002Fp>\n\u003Cp>This lightweight yet powerful plugin identifies and blocks a wide range of AI bots and data scrapers before they can access and harvest your content, protecting your intellectual property while reducing unnecessary server load.\u003C\u002Fp>\n\u003Ch3>🛡️ Why You Need Bot Traffic Shield\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Protect Your Content\u003C\u002Fstrong> – Stop AI companies from training their models on your hard work\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reduce Server Load\u003C\u002Fstrong> – Block unwanted traffic that wastes your bandwidth and resources\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SEO-Safe Blocking\u003C\u002Fstrong> – Only blocks harmful bots; legitimate search engines like Google and Bing remain unaffected\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Take Control\u003C\u002Fstrong> – Decide who can and cannot access your valuable content\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>✨ Key Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Real-Time Bot Blocking\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Actively blocks bots by their User-Agent on every page request\u003Cbr \u002F>\n*   Immediate protection with zero configuration needed\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Comprehensive Default Blocklist\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Pre-configured list of 20+ known AI crawlers and scrapers\u003Cbr \u002F>\n*   Includes ChatGPT-User, Google-Extended, GPTBot, CCBot, Bytespider, Amazonbot, Applebot, and more\u003Cbr \u002F>\n*   Regularly updated with new bot signatures\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Advanced Logging & Analytics\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Track every blocked bot attempt with detailed logs\u003Cbr \u002F>\n*   View bot name, IP address, user agent, and timestamp\u003Cbr \u002F>\n*   \u003Cstrong>Pagination system\u003C\u002Fstrong> – Browse through logs easily (20 entries per page)\u003Cbr \u002F>\n*   Running statistics showing total blocked requests\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CSV Export Capability\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Export your block logs to CSV format\u003Cbr \u002F>\n*   Filter exports by date range (7 days, 30 days, or all time)\u003Cbr \u002F>\n*   Perfect for analysis, reporting, or compliance\u003C\u002Fp>\n\u003Cp>\u003Cstrong>robots.txt Integration\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Automatically adds \u003Ccode>Disallow\u003C\u002Fcode> rules to your virtual robots.txt\u003Cbr \u002F>\n*   Provides an additional layer of protection for well-behaved bots\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Fully Customizable\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Add your own custom User-Agent strings to block\u003Cbr \u002F>\n*   Simple textarea interface – one bot per line\u003Cbr \u002F>\n*   Enable\u002Fdisable logging with a single toggle\u003Cbr \u002F>\n*   Master on\u002Foff switch for all blocking features\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Modern, Intuitive Interface\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Beautiful, clean admin UI with tabbed navigation\u003Cbr \u002F>\n*   Modern toggle switches and card-based design\u003Cbr \u002F>\n*   Mobile-responsive admin panel\u003Cbr \u002F>\n*   No learning curve – start protecting immediately\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Lightweight & Performance-Optimized\u003C\u002Fstrong>\u003Cbr \u002F>\n*   Minimal impact on site speed\u003Cbr \u002F>\n*   Efficient code that runs before page load\u003Cbr \u002F>\n*   No external API calls or database queries on frontend\u003C\u002Fp>\n\u003Ch3>🎯 Who Is This Plugin For?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Content Creators\u003C\u002Fstrong> – Protect your articles, tutorials, and creative work\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bloggers\u003C\u002Fstrong> – Keep your unique content from being scraped\u003C\u002Fli>\n\u003Cli>\u003Cstrong>News Sites\u003C\u002Fstrong> – Prevent unauthorized content aggregation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>E-commerce\u003C\u002Fstrong> – Protect product descriptions and pricing data\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Any WordPress Site\u003C\u002Fstrong> – That values their content and server resources\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 How It Works\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install and activate the plugin\u003C\u002Fli>\n\u003Cli>Bot Traffic Shield immediately starts blocking known bad bots\u003C\u002Fli>\n\u003Cli>Monitor blocked attempts in the logs\u003C\u002Fli>\n\u003Cli>Add custom bots to block as needed\u003C\u002Fli>\n\u003Cli>Export logs for analysis or record-keeping\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>No complicated setup. No API keys. No subscriptions.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>🔒 Privacy & Security\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>All data stays on your server\u003C\u002Fli>\n\u003Cli>No external services or third-party dependencies\u003C\u002Fli>\n\u003Cli>GDPR compliant – you control all logged data\u003C\u002Fli>\n\u003Cli>Logs can be cleared at any time by disabling logging\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📊 Perfect For\u003C\u002Fh3>\n\u003Cp>✅ Reducing bandwidth costs\u003Cbr \u002F>\n✅ Protecting original content\u003Cbr \u002F>\n✅ Improving server performance\u003Cbr \u002F>\n✅ Maintaining competitive advantage\u003Cbr \u002F>\n✅ Preventing AI training on your data\u003C\u002Fp>\n\u003Cp>Stop letting AI companies profit from your hard work. Install Bot Traffic Shield and take back control of your content today!\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Bot Traffic Shield logs the following information when a bot is blocked (if logging is enabled):\u003Cbr \u002F>\n*   User-Agent string\u003Cbr \u002F>\n*   IP address\u003Cbr \u002F>\n*   Request timestamp\u003Cbr \u002F>\n*   Requested URL\u003C\u002Fp>\n\u003Cp>All data is stored locally in your WordPress database. No information is sent to external servers. You can disable logging or clear logs at any time from the plugin settings.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, feature requests, or bug reports:\u003Cbr \u002F>\n*   Visit our website: \u003Ca href=\"https:\u002F\u002Fmonarchwp.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fmonarchwp.com\u002F\u003C\u002Fa>\u003Cbr \u002F>\n*   Email: info@monarchwp.com\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Ca href=\"https:\u002F\u002Fmonarchwp.com\u002F\" rel=\"nofollow ugc\">MonarchWP\u003C\u002Fa>\u003C\u002Fp>\n","A powerful and user-friendly plugin to block AI crawlers and malicious data scraper bots, protecting your content and server resources.",200,1052,"2025-11-26T04:55:00.000Z","6.0",[138,139,140,141,142],"ai-spider","bad-bots","block-bots","fail2ban","stop-bots","https:\u002F\u002Fmonarchwp.com\u002Fbot-traffic-shield","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbot-traffic-shield.1.0.4.zip",{"slug":146,"name":147,"version":148,"author":149,"author_profile":150,"description":151,"short_description":152,"active_installs":133,"downloaded":153,"rating":11,"num_ratings":27,"last_updated":154,"tested_up_to":68,"requires_at_least":155,"requires_php":116,"tags":156,"homepage":160,"download_link":161,"security_score":11,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"inpost-italy","InPost Italy","1.2.1","inpostitaly","https:\u002F\u002Fprofiles.wordpress.org\u002Finpostitaly\u002F","\u003Cp>InPost per WooCommerce ha contribuito a migliorare l’integrazione e la collaborazione con le azienda che utilizzano WordPress, facilitando la gestione delle spedizioni e delle etichette.\u003C\u002Fp>\n\u003Cp>Quali sono i vantaggi dell’installazione del plugin?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Accesso a tutti i servizi, descrizioni e branding di InPost;\u003C\u002Fli>\n\u003Cli>Mappa al Checkout aggiornata con Locker e Punti di Ritiro;\u003C\u002Fli>\n\u003Cli>Creazione Spedizioni e controllo Tracking;\u003C\u002Fli>\n\u003Cli>Generazione delle etichette di spedizione.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Dopo aver installato il plug-in, è necessario configurare la modalità di consegna InPost a seconda del servizio stipulato in fase contrattuale.\u003C\u002Fp>\n\u003Cp>La documentazione completa e le istruzioni di installazione del plugin sono reperibili all’indirizzo:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fdevelopers.inpost.it\u002F#tag\u002FWoocommerce\" rel=\"nofollow ugc\">Documentazione InPost per WooCommerce\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Se hai domande o problemi relativi al plugin, contattaci tramite la mail\u003Cbr \u002F>\n\u003Cstrong>integrations@inpost.it\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Utilizzo di API di terze parti o servizi esterni\u003C\u002Fh3>\n\u003Cp>Per utilizzare il plugin, è necessaria una chiave API per l’ambiente di \u003Ca href=\"https:\u002F\u002Fapi-shipx-it.easypack24.net\" rel=\"nofollow ugc\">produzione\u003C\u002Fa> o di test \u003Ca href=\"https:\u002F\u002Fstage-api-shipx-it.easypack24.net\" rel=\"nofollow ugc\">sandbox\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>I servizi utilizzati all’interno del geowidget sono:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Fmaps\u002Fdir\u002F\" rel=\"nofollow ugc\">Google Maps\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.openstreetmap.org\" rel=\"nofollow ugc\">Openstreetmap\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgeowidget.easypack24.net\" rel=\"nofollow ugc\">API of geowidget\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>È possibile visualizzare i documenti \u003Ca href=\"https:\u002F\u002Finpost.it\u002Fpolitica-sulla-riservatezza\" rel=\"nofollow ugc\">Politica sulla privacy\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Finpost.it\u002Fsites\u002Fdefault\u002Ffiles\u002F2022-08\u002F20220901_Originali_InPost-T_C-ITA_vle-Cassala.pdf\" rel=\"nofollow ugc\">Termini e condizioni\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Finpost.it\u002Fcompliance\" rel=\"nofollow ugc\">Compliance\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Using of a 3rd Party APIs or external services (ENG)\u003C\u002Fh3>\n\u003Cp>An API key in \u003Ca href=\"https:\u002F\u002Fapi-shipx-it.easypack24.net\" rel=\"nofollow ugc\">production\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fstage-api-shipx-it.easypack24.net\" rel=\"nofollow ugc\">sanbox\u003C\u002Fa> mode is required for the plugin to work.\u003C\u002Fp>\n\u003Cp>Services used for geowidget:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Fmaps\u002Fdir\u002F\" rel=\"nofollow ugc\">Google Maps\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.openstreetmap.org\" rel=\"nofollow ugc\">Openstreetmap\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgeowidget.easypack24.net\" rel=\"nofollow ugc\">API of geowidget\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can read the \u003Ca href=\"https:\u002F\u002Finpost.it\u002Fpolitica-sulla-riservatezza\" rel=\"nofollow ugc\">Privacy policy\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Finpost.it\u002Fsites\u002Fdefault\u002Ffiles\u002F2022-08\u002F20220901_Originali_InPost-T_C-ITA_vle-Cassala.pdf\" rel=\"nofollow ugc\">Terms of use\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Finpost.it\u002Fcompliance\" rel=\"nofollow ugc\">Compliance\u003C\u002Fa>.\u003C\u002Fp>\n","Permetti ai tuoi clienti di scegliere InPost come corriere in fase di check-out e selezionare il punto di ritiro InPost più comodo attraverso il nostr &hellip;",2943,"2025-09-22T08:41:00.000Z","5.3",[157,158,159,21],"armadietto-per-pacchi","etichetta","inpost","https:\u002F\u002Finpost.it\u002Fsoluzioni-le-aziende","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finpost-italy.1.2.1.zip",{"attackSurface":163,"codeSignals":227,"taintFlows":262,"riskAssessment":298,"analyzedAt":311},{"hooks":164,"ajaxHandlers":221,"restRoutes":222,"shortcodes":223,"cronEvents":226,"entryPointCount":27,"unprotectedCount":28},[165,170,173,176,178,183,186,190,193,196,200,202,205,209,211,213,215,218],{"type":166,"name":167,"callback":168,"priority":28,"file":169,"line":89},"action","show_user_profile","spid_user_profile_fields","user.php",{"type":166,"name":171,"callback":168,"priority":28,"file":169,"line":172},"edit_user_profile",3,{"type":166,"name":174,"callback":175,"file":169,"line":14},"personal_options_update","spid_user_profile_fields_update",{"type":166,"name":177,"callback":175,"file":169,"line":113},"edit_user_profile_update",{"type":166,"name":179,"callback":180,"file":181,"line":182},"admin_menu","closure","wp-spid-italia.php",14,{"type":166,"name":184,"callback":180,"file":181,"line":185},"admin_init",23,{"type":187,"name":188,"callback":180,"file":181,"line":189},"filter","wp_login_errors",38,{"type":166,"name":191,"callback":180,"file":181,"line":192},"init",47,{"type":166,"name":194,"callback":180,"file":181,"line":195},"login_form",81,{"type":187,"name":197,"callback":180,"priority":198,"file":181,"line":199},"logout_url",10,143,{"type":166,"name":191,"callback":180,"file":181,"line":201},178,{"type":187,"name":203,"callback":180,"file":181,"line":204},"login_message",186,{"type":187,"name":206,"callback":207,"file":181,"line":208},"login_errors","spid_errors",212,{"type":187,"name":206,"callback":180,"file":181,"line":210},237,{"type":187,"name":206,"callback":180,"file":181,"line":212},299,{"type":187,"name":206,"callback":180,"file":181,"line":214},305,{"type":166,"name":216,"callback":180,"file":181,"line":217},"wp_enqueue_scripts",361,{"type":166,"name":219,"callback":180,"priority":27,"file":181,"line":220},"login_enqueue_scripts",366,[],[],[224],{"tag":225,"callback":180,"file":181,"line":88},"spid_login_button",[],{"dangerousFunctions":228,"sqlUsage":229,"outputEscaping":231,"fileOperations":89,"externalRequests":28,"nonceChecks":28,"capabilityChecks":27,"bundledLibraries":261},[],{"prepared":28,"raw":28,"locations":230},[],{"escaped":232,"rawEcho":233,"locations":234},20,12,[235,239,241,243,245,247,249,251,253,255,257,259],{"file":236,"line":237,"context":238},"admin\\settings.php",26,"raw output",{"file":236,"line":240,"context":238},36,{"file":236,"line":242,"context":238},157,{"file":236,"line":244,"context":238},159,{"file":236,"line":246,"context":238},160,{"file":236,"line":248,"context":238},162,{"file":250,"line":54,"context":238},"admin\\welcome.php",{"file":181,"line":252,"context":238},55,{"file":181,"line":254,"context":238},121,{"file":181,"line":256,"context":238},137,{"file":181,"line":258,"context":238},207,{"file":181,"line":260,"context":238},226,[],[263,280],{"entryPoint":264,"graph":265,"unsanitizedCount":27,"severity":40},"spid_handle (wp-spid-italia.php:188)",{"nodes":266,"edges":277},[267,272],{"id":268,"type":269,"label":270,"file":181,"line":271},"n0","source","$_POST",222,{"id":273,"type":274,"label":275,"file":181,"line":260,"wp_function":276},"n1","sink","echo() [XSS]","echo",[278],{"from":268,"to":273,"sanitized":279},false,{"entryPoint":281,"graph":282,"unsanitizedCount":27,"severity":297},"\u003Cwp-spid-italia> (wp-spid-italia.php:0)",{"nodes":283,"edges":293},[284,287,289,291],{"id":268,"type":269,"label":285,"file":181,"line":286},"$_COOKIE (x2)",96,{"id":273,"type":274,"label":275,"file":181,"line":288,"wp_function":276},104,{"id":290,"type":269,"label":270,"file":181,"line":271},"n2",{"id":292,"type":274,"label":275,"file":181,"line":260,"wp_function":276},"n3",[294,296],{"from":268,"to":273,"sanitized":295},true,{"from":290,"to":292,"sanitized":279},"low",{"summary":299,"deductions":300},"The wp-spid-italia plugin v2.13.1 exhibits a mixed security posture. On the positive side, it demonstrates good practices with all SQL queries using prepared statements and a single capability check in place. There are no AJAX handlers or REST API routes exposed without authorization, and no external HTTP requests are made. The absence of critical or high severity taint flows, along with a relatively small attack surface primarily consisting of a single shortcode, are also encouraging signs.\n\nHowever, there are notable concerns. The plugin has a history of one known medium severity Cross-Site Scripting (XSS) vulnerability, though it is currently patched. The static analysis reveals that 63% of output escaping is properly done, meaning a significant portion (37%) is not. Additionally, two out of two analyzed taint flows involve unsanitized paths, which is a strong indicator of potential injection vulnerabilities, even though they are not classified as critical or high severity in this analysis. The lack of nonce checks on the single shortcode is also a concern, as it leaves this entry point potentially vulnerable to replay attacks.\n\nIn conclusion, while the plugin shows some good security foundations, the presence of unsanitized paths in taint flows, incomplete output escaping, and the absence of nonce checks on its shortcode present tangible risks. The past XSS vulnerability, even if patched, highlights the potential for such issues. Developers should prioritize addressing the output escaping and implementing nonce checks to strengthen its security.",[301,304,306,309],{"reason":302,"points":303},"Unsanitized paths in taint flows (2\u002F2)",15,{"reason":305,"points":198},"Improper output escaping (37%)",{"reason":307,"points":308},"No nonce checks on shortcode",7,{"reason":310,"points":14},"Past medium severity CVE (XSS)","2026-03-16T20:32:38.105Z",{"wat":313,"direct":324},{"assetPaths":314,"generatorPatterns":318,"scriptPaths":319,"versionParams":320},[315,316,317],"\u002Fwp-content\u002Fplugins\u002Fwp-spid-italia\u002Fcss\u002Flogin.css","\u002Fwp-content\u002Fplugins\u002Fwp-spid-italia\u002Fcss\u002Fspid-login.css","\u002Fwp-content\u002Fplugins\u002Fwp-spid-italia\u002Fjs\u002Fspid-login.js",[],[317],[321,322,323],"wp-spid-italia\u002Fcss\u002Flogin.css?ver=","wp-spid-italia\u002Fcss\u002Fspid-login.css?ver=","wp-spid-italia\u002Fjs\u002Fspid-login.js?ver=",{"cssClasses":325,"htmlComments":333,"htmlAttributes":334,"restEndpoints":336,"jsGlobals":337,"shortcodeOutput":340},[326,327,328,329,330,331,332],"spid-sso-wrap","spid-sso-wrap__user","spid-sso-wrap__action","spid-sso-wrap__inner","spid-sso-or","spid-sso-toggle","wpcom",[],[335],"data-spid-idp-list",[],[338,339],"spid_get_idp_list","spid_get_loginform_button",[341],"[spid_login_button]"]