[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f52li5pJU1GLZsTlBWw3r2gbZ8kFbZGJ0TDruG1AX43c":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":129,"fingerprints":216},"wp-spotify","WP-Spotify","2.0","NEOLiNES","https:\u002F\u002Fprofiles.wordpress.org\u002Fneolines\u002F","\u003Cp>Link Spotify tracks to your posts and pages using uri-based shortcodes.\u003C\u002Fp>\n\u003Cp>Ex.\u003Cbr \u002F>\n[spotify:track:2lBpN5CZ3zLyVIPejUhN6Y]\u003C\u002Fp>\n\u003Cp>Attention!\u003Cbr \u002F>\nAt this moment you can NOT link albums, playlists or artists, just tracks.\u003C\u002Fp>\n","Link Spotify tracks to your posts and pages. Including widget.",30,8480,0,"2012-02-06T20:36:00.000Z","3.3.2","2.0.2","",[19,20,21,22,23],"music","post","song","spotify","widget","http:\u002F\u002Fhermanssondavid.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-spotify.2.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":11,"trust_score":33,"computed_at":34},"neolines",1,84,"2026-04-05T02:44:42.878Z",[36,59,79,95,113],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"liza-spotify-widget-for-elementor","Liza Widget For Spotify and Elementor","3.0","Ruthless WP","https:\u002F\u002Fprofiles.wordpress.org\u002Ffallentroj\u002F","\u003Cp>\u003Cstrong>Liza Widget For Spotify and Elementor\u003C\u002Fstrong> is the first use to goand easy to use \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Felementor\u002F\" rel=\"ugc\">Elementor Page Builder\u003C\u002Fa> Spotify Widget. Our goal is to provide you with the Functional Elementor Widget That can be easly used, Add Spotify Music Without writing the Single Line of Code. Liza Spotify Widget helps users to use Spotify API on their websites easily without any headaches. If you like Liza Spotify Widget, Please review us on the wordpress.org as it will help us develop better Functionality for the Spotify Widget.\u003Cbr \u002F>\nAs of New update of the plugin, we added Spotify Profile widget which allows you to share your Spotify profile with realtime stats, as well as improved our embed plugin and made it easier to share and embed tracks from Spotify directly to your website! New Settings page has been added which allows you to authorise with your Spotify profile and integrate easier with its API.\u003C\u002Fp>\n\u003Cp>Follow new tutorial linked below as well as write on plugin forum if you have any questions!\u003C\u002Fp>\n\u003Cp>Linking Spotify Account correctly is essential for plugin to work properly, with new updated version of plugin, you can directly search and embed tracks and artists inside the elementor editor.\u003C\u002Fp>\n\u003Cp>With love, Rutheless WP\u002FNikusha Sirbiladze\u003C\u002Fp>\n\u003Cp>\u003Cem>See tutorials Below\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fyoutu.be\u002FHbL8ERGBquk?si=8ErHDMorbyG8iAPK\" rel=\"nofollow ugc\">\u003Cstrong>How to setup the Spotify API?\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to external services to enable specific features and functionalities. Below is the list of external services used, the data shared, and relevant legal documentation:\u003C\u002Fp>\n\u003Ch3>Freemius\u003C\u002Fh3>\n\u003Cp>This plugin integrates with the Freemius platform to manage licensing, plugin updates, analytics, and user feedback.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>What is sent\u003C\u002Fstrong>: When the plugin is installed or updated, it sends information such as the website URL, WordPress version, plugin version, PHP version, and potentially the user’s email address (only if explicitly provided during activation).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>When\u003C\u002Fstrong>: Data is sent during plugin activation, updates, deactivation, or when a user opts into Freemius insights.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Why\u003C\u002Fstrong>: It is required for license management, plugin updates, and collecting usage analytics if the user opts in.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Service Provider\u003C\u002Fstrong>: Freemius, Inc.\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffreemius.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Freemius Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffreemius.com\u002Fprivacy\u002F\" rel=\"nofollow ugc\">Freemius Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Spotify API\u003C\u002Fh3>\n\u003Cp>This plugin uses the Spotify API to fetch and display music, playlists, albums, or artist information within the Elementor widget.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>What is sent\u003C\u002Fstrong>: Requests sent to the Spotify API may include search queries, artist IDs, playlist IDs, and other music-related identifiers. No personal user data is sent unless the user connects their Spotify account for additional features.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>When\u003C\u002Fstrong>: Data is sent whenever the widget makes a request to display or update Spotify content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Why\u003C\u002Fstrong>: It is necessary to retrieve and display Spotify music content dynamically inside the widget.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Service Provider\u003C\u002Fstrong>: Spotify AB\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdeveloper.spotify.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Spotify Developer Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.spotify.com\u002Flegal\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Spotify Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Spotify Widget, Spotify, Easy to use Spotify widget.",1000,28434,80,8,"2025-06-14T12:19:00.000Z","6.8.5","5.2","7.0",[53,19,22,54,55],"elementor","spotify-embed","widgets-for-elementor","https:\u002F\u002Fruthlesswp.com\u002Fspotify","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fliza-spotify-widget-for-elementor.3.0.zip",100,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":77,"download_link":78,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"spotify-master","TechGasp Music Master","5.1.4","TechGasp","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechgasp\u002F","\u003Cp>How cool would it be to have your favourite Spotify musics, playlists and albums fully integrated with your wordpress website?! We did it with the usual TechGasp high quality, now your can show off your spotify stuff inside the comfort of your WordPress.\u003C\u002Fp>\n\u003Cp>Spotify Master for WordPress allows you to display in your template widget areas musics, playlists and albums of the cool and “booming” music network Spotify. Once again, this is an error free extension that makes no use of javascript. Coded in html5 you will have fast page load times and no conflicts.\u003C\u002Fp>\n\u003Cp>Works great inside your pages and posts with our shortcode framework. Read more below and check screenshots page.\u003C\u002Fp>\n\u003Cp>Both the widget and the shortcode framework are fully mobile responsive, a must for any professional website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>spotify music for wordpress\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>IMPORTANT: Errors and conflicts free. NO JAVASCRIPT or AJAX\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>LITE Version Contains\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Display, change or hide Widget Title\u003C\u002Fli>\n\u003Cli>Spotify Buttons Widget (Connect to Profile Button)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>ADVANCED Version Contains\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Display, change or hide Widget Title\u003C\u002Fli>\n\u003Cli>Fully Mobile Responsive\u003C\u002Fli>\n\u003Cli>Spotify Buttons Widget (Connect to Profile Button)\u003C\u002Fli>\n\u003Cli>Spotify Basic Player Widget (Fast page load times, designed for Single Musics)\u003C\u002Fli>\n\u003Cli>Spotify Advanced Player Widget (Single Musics, Playlists, Albums)\u003C\u002Fli>\n\u003Cli>Spotify Discography Widget (Playable Artist Discography)\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Spotify Dashboard Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>TechGasp Shortcode Framework v5\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>Universal Shortcode for all pages and posts, same Shortcode applies to all pages and posts. Option to Automatically add the shortcode to all pages and posts or manually add the pre-built shortcode individually per page or post. Option to automatically only show the shortcode in Posts and not Pages. Option to Automatically show the shortcode After the Title or After the Content.\u003C\u002Fli>\n\u003Cli>Individual Shortcode for each page or post, individual customized shortcode per page or post\u003C\u002Fli>\n\u003Cli>Shortcodes allow you to professionally display your plugin inside pages and posts maintaining fast page load times and excellent Google SEO\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.techgasp.com\u002Fspotify-master\u002F\" rel=\"nofollow ugc\">Advanced Version Link\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>ONLINE DEMO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Right of the page, sidebar widget\u003C\u002Fli>\n\u003Cli>Inside the post. With shortcode framework v5\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.techgasp.com\u002Fspotify-master\u002F\" rel=\"nofollow ugc\">Demo Link\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>More High Quality Plugins?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>For professional wordpress websites\u003C\u002Fli>\n\u003Cli>Tested for fast page load times and SEO\u003C\u002Fli>\n\u003Cli>Errors and conflicts free. NO JAVASCRIPT or AJAX\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.techgasp.com\u002Fbuy-all-techgasp-wordpress-plugins\u002F\" rel=\"nofollow ugc\">Click Here\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","TechGasp Music Master allows you to display in your wordpress website musics, playlists and albums of the cool and \"booming\" music network Spotify.",500,81135,56,25,"2021-03-11T10:54:00.000Z","5.7.15","3.5",[19,75,22,76,23],"shortcode","techgasp","https:\u002F\u002Fwordpress.techgasp.com\u002Fspotify-master\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspotify-master.5.1.4.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":13,"num_ratings":13,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":17,"tags":92,"homepage":93,"download_link":94,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"spotify-follow-button-widget","Spotify Follow Widget","1.0","drsounds","https:\u002F\u002Fprofiles.wordpress.org\u002Fdrsounds\u002F","\u003Cp>A wordpress plugin allowing you to add spotify follow buttons as widgets on the sites\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>The spotify play widget in the widget customizer is to my spotify artist page, and is not a preview.\u003C\u002Fp>\n","A wordpress plugin allowing you to add spotify follow buttons as widgets on the sites",40,2633,"2014-01-11T06:26:00.000Z","3.4.2","3.0.1",[19,22,23],"http:\u002F\u002Fwww.dr-sounds.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspotify-follow-button-widget.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":58,"num_ratings":32,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":17,"tags":108,"homepage":111,"download_link":112,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"play-video-of-song","Play Video of Song","2.01","dlozano","https:\u002F\u002Fprofiles.wordpress.org\u002Fdlozano\u002F","\u003Cp>Este plugin te permitira tener un boton en la parte lateral de tu web el cual muestra un reproductor de video de musica. Aprovecha la API de GOODFIDELITY para administrar contenido relevante.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>En un boton tienes una web site.\u003C\u002Fli>\n\u003Cli>Mira y escucha videos musicales.\u003C\u002Fli>\n\u003Cli>Selecciona tus artistas favoritos.\u003C\u002Fli>\n\u003Cli>No modifica ni altera tu tema.\u003C\u002Fli>\n\u003Cli>No ocupa espacio.\u003C\u002Fli>\n\u003Cli>Mejora la experiencia de tus usuarios.\u003C\u002Fli>\n\u003Cli>Utiliza Ajax para cargar la pagina\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>Una demo del plugin lo encontraras en http:\u002F\u002Fbumbablog.com\u003C\u002Fp>\n","Este plugin permite tener un reproductor de audio y video en la parte lateral de tu web site el cual aparece y desaparece sin alterar tu tema.",10,5164,"2013-06-28T18:49:00.000Z","3.5.2","3.4",[109,110,19,21,23],"bar","control","http:\u002F\u002Fbumbablog.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplay-video-of-song.2.01.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":103,"downloaded":121,"rating":13,"num_ratings":13,"last_updated":122,"tested_up_to":123,"requires_at_least":39,"requires_php":17,"tags":124,"homepage":127,"download_link":128,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"recent-lastfm-tracks","Recent LastFm Tracks","1.2.3","snnooze","https:\u002F\u002Fprofiles.wordpress.org\u002Fsnnooze\u002F","\u003Cp>This simple widget includes your LastFm recent tracks into the sidebar.\u003C\u002Fp>\n\u003Cp>Enter your username and number of songs you want to show and it’s ok.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is free for everyone! Since it’s released under the GPL, you can use it free of charge on your personal or commercial blog.\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>English, French.\u003C\u002Fp>\n","This simple widget includes your LastFm recent tracks into the sidebar.",9783,"2014-01-05T13:42:00.000Z","3.7.41",[125,19,21,126,23],"lastfm","tracks","http:\u002F\u002Fwww.fabricelaffont.fr\u002F2012\u002F09\u002F24\u002Frecent-lastfm-tracks-mise-a-jour\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecent-lastfm-tracks.1.2.3.zip",{"attackSurface":130,"codeSignals":157,"taintFlows":202,"riskAssessment":203,"analyzedAt":215},{"hooks":131,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":156,"entryPointCount":13,"unprotectedCount":13},[132,138,143,147,150],{"type":133,"name":134,"callback":135,"file":136,"line":137},"filter","the_content","checkForSong","wp-spotify.class.php",21,{"type":139,"name":140,"callback":141,"file":136,"line":142},"action","wp_head","addstylesheet",22,{"type":139,"name":144,"callback":145,"file":136,"line":146},"wp_insert_post","check",23,{"type":139,"name":148,"callback":145,"file":136,"line":149},"wp_update_post",24,{"type":139,"name":151,"callback":152,"file":136,"line":70},"plugins_loaded","install",[],[],[],[],{"dangerousFunctions":158,"sqlUsage":159,"outputEscaping":176,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":201},[],{"prepared":32,"raw":160,"locations":161},7,[162,165,166,168,170,172,174],{"file":136,"line":163,"context":164},55,"$wpdb->query() with variable interpolation",{"file":136,"line":69,"context":164},{"file":136,"line":167,"context":164},57,{"file":136,"line":169,"context":164},58,{"file":136,"line":171,"context":164},59,{"file":136,"line":173,"context":164},60,{"file":136,"line":175,"context":164},61,{"escaped":13,"rawEcho":177,"locations":178},13,[179,181,183,185,186,187,189,190,191,193,195,197,199],{"file":136,"line":11,"context":180},"raw output",{"file":136,"line":182,"context":180},230,{"file":136,"line":184,"context":180},232,{"file":136,"line":184,"context":180},{"file":136,"line":184,"context":180},{"file":136,"line":188,"context":180},235,{"file":136,"line":188,"context":180},{"file":136,"line":188,"context":180},{"file":136,"line":192,"context":180},240,{"file":136,"line":194,"context":180},243,{"file":136,"line":196,"context":180},256,{"file":136,"line":198,"context":180},257,{"file":136,"line":200,"context":180},258,[],[],{"summary":204,"deductions":205},"The \"wp-spotify\" v2.0 plugin exhibits a generally positive security posture based on the provided static analysis and vulnerability history.  The lack of any recorded CVEs, critical taint flows, or dangerous functions is a strong indicator of a well-maintained and secure codebase.  Furthermore, the absence of a significant attack surface through AJAX handlers, REST API routes, shortcodes, or cron events reduces the potential for external exploitation.\n\nHowever, there are notable areas for improvement. A significant concern is the complete lack of output escaping, meaning any data displayed by the plugin is not sanitized, opening the door for Cross-Site Scripting (XSS) vulnerabilities.  The use of raw SQL queries without prepared statements, while not inherently critical given the limited number, introduces a risk of SQL injection if the data used in these queries is not meticulously validated.  The absence of nonce checks and capability checks also means that actions performed by the plugin might not be adequately protected against unauthorized execution.\n\nIn conclusion, while \"wp-spotify\" v2.0 benefits from a clean vulnerability history and a minimal attack surface, the critical shortcomings in output escaping and the presence of raw SQL queries represent significant security weaknesses. Addressing these issues is crucial to strengthening the plugin's overall security and preventing potential attacks.",[206,208,211,213],{"reason":207,"points":47},"No output escaping detected",{"reason":209,"points":210},"SQL queries not using prepared statements",5,{"reason":212,"points":210},"No nonce checks",{"reason":214,"points":210},"No capability checks","2026-03-16T22:27:14.973Z",{"wat":217,"direct":223},{"assetPaths":218,"generatorPatterns":220,"scriptPaths":221,"versionParams":222},[219],"\u002Fwp-content\u002Fplugins\u002Fwp-spotify\u002Fwp-spotify.style.css",[],[],[],{"cssClasses":224,"htmlComments":228,"htmlAttributes":229,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":234},[22,225,226,227],"track","share","tracktitle",[],[230,231],"ondblclick","onmouseup",[],[],[235],"\u003Cdiv class=\"spotify\">\u003Cul>"]