[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhjSTp_m0ZHGSeYnH9kAXi6dSaV5JFohq_ngKQJsBXOM":3},{"slug":4,"name":4,"version":5,"author":6,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":6,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":122,"fingerprints":287},"wp2flickr","0.15","","https:\u002F\u002Fprofiles.wordpress.org\u002Ffsimo\u002F","\u003Cp>Uploads photos from WordPress posts to Flickr.\u003Cbr \u002F>\nIt works with standard WordPress media and with YAPB plugin (recomended).\u003Cbr \u002F>\nPerfect for photoblogging.\u003C\u002Fp>\n\u003Ch4>Typical usage\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Anytime you publish a new post it will be uploaded to flickr.\u003C\u002Fli>\n\u003C\u002Ful>\n","Uploads photos from WordPress posts to Flickr. It works with standard Wordpress media and with YAPB plugin (recomended).",10,3768,20,3,"2014-12-15T16:49:00.000Z","3.9.40","3.8",[18,19,20,21,22],"images","photo-blog","photo-blogging","photoblog","yapb","http:\u002F\u002Fwp2flickr.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp2flickr.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":31,"profile_url":7,"plugin_count":13,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"fsimo",30,84,"2026-04-04T20:41:45.254Z",[36,49,74,94,109],{"slug":37,"name":37,"version":38,"author":6,"author_profile":7,"description":39,"short_description":40,"active_installs":10,"downloaded":41,"rating":26,"num_ratings":26,"last_updated":42,"tested_up_to":43,"requires_at_least":44,"requires_php":6,"tags":45,"homepage":6,"download_link":48,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"yapb-queue","1.0.7","\u003Cp>Schedule YAPB images from a directory with an interval of time.\u003Cbr \u002F>\nRead iptcs set the title, body and tags.\u003Cbr \u002F>\nPerfect for photoblogging.\u003C\u002Fp>\n\u003Ch4>Typical usage\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Edit your photos in your favorite editor (Lightroom, Aperture, etc.)\u003C\u002Fli>\n\u003Cli>Be sure to edit your IPTC data\u003C\u002Fli>\n\u003Cli>Upload your image with any FTP client to \u002Fwp-content\u002Fuploads\u002Fyapq-queue\u003C\u002Fli>\n\u003Cli>Goto ‘Post’ section and you will see an ‘YAPB queue’ option\u003C\u002Fli>\n\u003Cli>Enter the start date and the period of time between post\u003C\u002Fli>\n\u003Cli>‘Process queue’… 🙂\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Based on “YAPB Bulk Uploader” http:\u002F\u002Fjoost.reuzel.nl\u002Fabout\u002Fplugins\u002F\u003C\u002Fp>\n","Schedule YAPB images from a directory with an interval of time.",3810,"2013-04-09T12:57:00.000Z","3.5.2","2.5",[19,21,46,47,22],"queue","schedule","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyapb-queue.1.0.7.zip",{"slug":50,"name":51,"version":52,"author":53,"author_profile":54,"description":55,"short_description":56,"active_installs":57,"downloaded":58,"rating":59,"num_ratings":60,"last_updated":61,"tested_up_to":62,"requires_at_least":63,"requires_php":6,"tags":64,"homepage":69,"download_link":70,"security_score":71,"vuln_count":72,"unpatched_count":72,"last_vuln_date":73,"fetched_at":28},"import-external-attachments","Import external attachments","1.5.12","ryanpcmcquen","https:\u002F\u002Fprofiles.wordpress.org\u002Fryanpcmcquen\u002F","\u003Cp>Makes local copies of all the linked images and pdfs in a post, adding them as gallery attachments.\u003C\u002Fp>\n\u003Cp>Source & support:\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fgithub.com\u002Fryanpcmcquen\u002Fimport-external-attachments\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>This plugin is based on the work done in the “Import External Images” plugin by MartyThornley.\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fgithub.com\u002FMartyThornley\u003C\u002Fp>\n\u003Cp>HTTPS support added by IvanDoomer:\u003Cbr \u002F>\nhttps:\u002F\u002Fgithub.com\u002FIvanDoomer\u003C\u002Fp>\n\u003Cp>PDF support added by bengreeley:\u003Cbr \u002F>\nhttps:\u002F\u002Fgithub.com\u002Fbengreeley\u003C\u002Fp>\n\u003Cp>Most of the JavaScript was rewritten from the original plugin, to reduce the\u003Cbr \u002F>\nnumber of global variables.\u003C\u002Fp>\n","Makes local copies of all the linked images and pdfs in a post, adding them as gallery attachments.",2000,24175,86,26,"2017-02-24T14:39:00.000Z","4.4.34","3.2",[65,66,18,67,68],"attachments","gallery","photo","photobloggers","https:\u002F\u002Fgithub.com\u002Fryanpcmcquen\u002Fimport-external-attachments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimport-external-attachments.zip",41,2,"2025-12-14 00:00:00",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":6,"tags":89,"homepage":92,"download_link":93,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"sidebar-photoblog","Sidebar Photoblog","2.06","Hassan1","https:\u002F\u002Fprofiles.wordpress.org\u002Fhassan1\u002F","\u003Cp>There are several photo blog plug-in for WordPress. Most of them assume that you are a professional photographer who makes lots of money via his\u002Fher camera.\u003C\u002Fp>\n\u003Cp>Sidebar Photo blog does not use lots of server resources and doesn’t have any confusing options.  It uses WordPress functions to get maximum compatibility and flexibility.\u003C\u002Fp>\n\u003Cp>New Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli> Slideshow\u003C\u002Fli>\n\u003Cli> Ability to show random photos\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Sidebar Photo blog is simple, light and easy to use. It also has some nice effects, a simple slideshow, ability to show random photos and an archive page for your pictures.\u003C\u002Fp>\n\u003Cp>To learn how to add your photos please see \u003Ca href=\"http:\u002F\u002Fwpwave.com\u002Fplugins\u002Fsidebar-photoblog\u002F\" rel=\"nofollow ugc\">plugin URL\u003C\u002Fa>. It’s easy!\u003C\u002Fp>\n\u003Cp>Languages:\u003Cbr \u002F>\n    Persian by     \u003Ca href=\"http:\u002F\u002Fcyberia.ir\" rel=\"nofollow ugc\">Cyberia\u003C\u002Fa>\u003Cbr \u002F>\n    Russian by     \u003Ca href=\"http:\u002F\u002Fwww.fatcow.com\" rel=\"nofollow ugc\">Fatcow\u003C\u002Fa>\u003Cbr \u002F>\n    French by      \u003Ca href=\"http:\u002F\u002Fwww.wolforg.eu\" rel=\"nofollow ugc\">Wolforg\u003C\u002Fa>\u003Cbr \u002F>\n    Turkish by     \u003Ca href=\"http:\u002F\u002Fwww.dmry.net\" rel=\"nofollow ugc\">Hakan Demiray\u003C\u002Fa>\u003Cbr \u002F>\n        Belorussian by \u003Ca href=\"http:\u002F\u002Fantsar.info\" rel=\"nofollow ugc\">ilyuha\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>To add your own language contact us.\u003C\u002Fp>\n","An easy to use photoblog plugin helps you to share your daily photos on your sidebar. With slideshow, photo archive, nice effects and ability to show  &hellip;",70,45006,80,1,"2010-03-21T17:39:00.000Z","2.9.2","2.7",[90,18,67,21,91],"image","widget","http:\u002F\u002Fwpwave.com\u002Fplugins\u002Fsidebar-photoblog\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsidebar-photoblog.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":10,"downloaded":102,"rating":26,"num_ratings":26,"last_updated":103,"tested_up_to":104,"requires_at_least":6,"requires_php":6,"tags":105,"homepage":107,"download_link":108,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"photoblog-image-fixer","PhotoBlog Image Fixer","1.4","MartyThornley","https:\u002F\u002Fprofiles.wordpress.org\u002Fmartythornley\u002F","\u003Cp>PhotoBlog Image Fixer allows better image sizing and removes those ugly squished images when you accidently upload a larger image.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Removes the inline height dimension added by the WordPress content filter.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Adds class names to the automatically generated p tags that wrap each image as well as the image itself.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Adds a quick line of CSS to the page making images in a p tag have a max-width of 100% of the containing element\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","PhotoBlog Image Fixer allows better image sizing ensuring that the largest possible image is 100% of the post area, without extending past the edges.",3002,"2014-10-17T23:39:00.000Z","4.0.38",[106,18,21],"image-p-tags-autop","http:\u002F\u002Fphotographyblogsites.com\u002Fresources\u002Fwordpress-plugins\u002Fphotoblog-image-fixer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphotoblog-image-fixer.zip",{"slug":110,"name":110,"version":111,"author":6,"author_profile":7,"description":112,"short_description":113,"active_installs":10,"downloaded":114,"rating":26,"num_ratings":26,"last_updated":115,"tested_up_to":104,"requires_at_least":116,"requires_php":6,"tags":117,"homepage":6,"download_link":121,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"yapb-geotag","1.0.1","\u003Cp>Extract GPS data from Yet another photoblog plugin images and creates meta data for Geotag plugin.\u003Cbr \u002F>\nGeotag plugin is a great geotaggin solution, but it doesn’t read exifs from YAPB images.\u003Cbr \u002F>\nThis plugin reads GPS data when you edit the post, and adds the metadata as if you entered in the Geotag fields.\u003C\u002Fp>\n\u003Ch4>Requriments\u003C\u002Fh4>\n\u003Cp>You need\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fyet-another-photoblog\u002F\" rel=\"ugc\">Yet another photoblog plugin\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgeotag\u002F\" rel=\"ugc\">Geotag plugin\u003C\u002Fa>\u003C\u002Fp>\n","Extract GPS data from Yet another photoblog plugin images and creates meta data for Geotag plugin.",2862,"2014-12-17T08:58:00.000Z","3.0.0",[118,119,120,21,22],"exif","geotag","gps","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyapb-geotag.zip",{"attackSurface":123,"codeSignals":148,"taintFlows":197,"riskAssessment":273,"analyzedAt":286},{"hooks":124,"ajaxHandlers":144,"restRoutes":145,"shortcodes":146,"cronEvents":147,"entryPointCount":26,"unprotectedCount":26},[125,132,136,140],{"type":126,"name":127,"callback":128,"priority":129,"file":130,"line":131},"action","publish_post","w2f_publish",100,"wp2flickr.php",32,{"type":126,"name":133,"callback":134,"file":130,"line":135},"activate_wp2flickr\u002Fwp2flickr.php","w2f_install",172,{"type":126,"name":137,"callback":138,"file":130,"line":139},"deactivate_wp2flickr\u002Fwp2flickr.php","w2f_uninstall",173,{"type":126,"name":141,"callback":142,"file":130,"line":143},"admin_menu","w2f_admin_menu",225,[],[],[],[],{"dangerousFunctions":149,"sqlUsage":150,"outputEscaping":155,"fileOperations":194,"externalRequests":195,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":196},[],{"prepared":13,"raw":85,"locations":151},[152],{"file":130,"line":153,"context":154},190,"$wpdb->get_var() with variable interpolation",{"escaped":26,"rawEcho":156,"locations":157},17,[158,162,164,165,167,169,172,174,176,178,180,182,184,186,188,190,192],{"file":159,"line":160,"context":161},"phpFlickr-3.1\\example.php",23,"raw output",{"file":159,"line":163,"context":161},24,{"file":159,"line":60,"context":161},{"file":159,"line":166,"context":161},27,{"file":168,"line":156,"context":161},"phpFlickr-3.1\\getToken.php",{"file":170,"line":171,"context":161},"phpFlickr-3.1\\phpFlickr.php",189,{"file":130,"line":173,"context":161},250,{"file":130,"line":175,"context":161},258,{"file":130,"line":177,"context":161},266,{"file":130,"line":179,"context":161},273,{"file":130,"line":181,"context":161},280,{"file":130,"line":183,"context":161},286,{"file":130,"line":185,"context":161},292,{"file":130,"line":187,"context":161},300,{"file":130,"line":189,"context":161},312,{"file":130,"line":191,"context":161},321,{"file":130,"line":193,"context":161},336,7,4,[],[198,215,250],{"entryPoint":199,"graph":200,"unsanitizedCount":72,"severity":214},"w2f_options_page (wp2flickr.php:233)",{"nodes":201,"edges":211},[202,206],{"id":203,"type":204,"label":205,"file":130,"line":175},"n0","source","$_SERVER['REQUEST_URI'] (x2)",{"id":207,"type":208,"label":209,"file":130,"line":175,"wp_function":210},"n1","sink","echo() [XSS]","echo",[212],{"from":203,"to":207,"sanitized":213},false,"medium",{"entryPoint":216,"graph":217,"unsanitizedCount":194,"severity":249},"w2f_updateOptions (wp2flickr.php:357)",{"nodes":218,"edges":244},[219,222,225,229,232,236,238,242],{"id":203,"type":204,"label":220,"file":130,"line":221},"$_REQUEST['form_w2f_token']",358,{"id":207,"type":208,"label":223,"file":130,"line":221,"wp_function":224},"update_option() [Settings Manipulation]","update_option",{"id":226,"type":204,"label":227,"file":130,"line":228},"n2","$_REQUEST (x4)",359,{"id":230,"type":208,"label":223,"file":130,"line":231,"wp_function":224},"n3",360,{"id":233,"type":204,"label":234,"file":130,"line":235},"n4","$_REQUEST['form_w2f_sets']",365,{"id":237,"type":208,"label":223,"file":130,"line":235,"wp_function":224},"n5",{"id":239,"type":204,"label":240,"file":130,"line":241},"n6","$_REQUEST['form_w2f_groups']",366,{"id":243,"type":208,"label":223,"file":130,"line":241,"wp_function":224},"n7",[245,246,247,248],{"from":203,"to":207,"sanitized":213},{"from":226,"to":230,"sanitized":213},{"from":233,"to":237,"sanitized":213},{"from":239,"to":243,"sanitized":213},"low",{"entryPoint":251,"graph":252,"unsanitizedCount":272,"severity":249},"\u003Cwp2flickr> (wp2flickr.php:0)",{"nodes":253,"edges":266},[254,255,256,257,258,259,260,261,262,264],{"id":203,"type":204,"label":205,"file":130,"line":175},{"id":207,"type":208,"label":209,"file":130,"line":175,"wp_function":210},{"id":226,"type":204,"label":220,"file":130,"line":221},{"id":230,"type":208,"label":223,"file":130,"line":221,"wp_function":224},{"id":233,"type":204,"label":227,"file":130,"line":228},{"id":237,"type":208,"label":223,"file":130,"line":231,"wp_function":224},{"id":239,"type":204,"label":234,"file":130,"line":235},{"id":243,"type":208,"label":223,"file":130,"line":235,"wp_function":224},{"id":263,"type":204,"label":240,"file":130,"line":241},"n8",{"id":265,"type":208,"label":223,"file":130,"line":241,"wp_function":224},"n9",[267,268,269,270,271],{"from":203,"to":207,"sanitized":213},{"from":226,"to":230,"sanitized":213},{"from":233,"to":237,"sanitized":213},{"from":239,"to":243,"sanitized":213},{"from":263,"to":265,"sanitized":213},9,{"summary":274,"deductions":275},"The wp2flickr plugin version 0.15 exhibits a concerning security posture despite having no known CVEs or bundled libraries.  The static analysis reveals significant weaknesses, most notably a complete lack of output escaping across all 17 identified outputs. This means any data processed by the plugin and displayed to users could potentially be vulnerable to cross-site scripting (XSS) attacks. Furthermore, the taint analysis indicates three flows with unsanitized paths, though these are not classified as critical or high severity. The absence of any capability or nonce checks on the identified entry points is also a major red flag, suggesting that many operations might be accessible to unauthenticated users or users with insufficient privileges.  While the plugin has no recorded vulnerability history and a low number of SQL queries that are mostly prepared, the widespread lack of output escaping and the presence of unsanitized path flows are substantial security concerns that outweigh the positive aspects.",[276,278,281,284],{"reason":277,"points":10},"0% of output escaping",{"reason":279,"points":280},"3 flows with unsanitized paths",6,{"reason":282,"points":283},"0 capability checks",5,{"reason":285,"points":283},"0 nonce checks","2026-03-17T01:18:02.292Z",{"wat":288,"direct":294},{"assetPaths":289,"generatorPatterns":291,"scriptPaths":292,"versionParams":293},[290],"\u002Fwp-content\u002Fplugins\u002Fwp2flickr\u002FgetToken.php",[],[],[],{"cssClasses":295,"htmlComments":296,"htmlAttributes":297,"restEndpoints":298,"jsGlobals":299,"shortcodeOutput":300},[],[],[],[],[],[]]