[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f2lM8AKpvOn0Q40l-dyV8maj7crRO1Wnn24Uex4F_r0I":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":133,"fingerprints":273},"wpciteulike","wpCiteULike","0.7.1","mattfunk","https:\u002F\u002Fprofiles.wordpress.org\u002Fmattfunk\u002F","\u003Cp>If you would like to embed your bibliography from CiteULike into your WordPress blog, then wpciteulike is the easiest solution for you.\u003C\u002Fp>\n\u003Cp>wpciteulike enables to add bibtex entries formatted as HTML in WordPress pages and posts. The input data comes directly from CiteULike.org, so you don’t have to maintain your bibliography at multiple locations and sites. The output is HTML and all the entries are formatted by default using the IEEE style (changeable). Several links such as the Bibtex source file, a RIS version, and links to the PDF, HTML, or RTF versions are also available from the HTML.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>embed as many bibliographies as you want from citeulike.org, just provide the user name and the rest is taken care of\u003C\u002Fli>\n\u003Cli>automatic HTML generation and caching for faster page loads\u003C\u002Fli>\n\u003Cli>easy inclusion in wordpress pages\u002Fposts by means of a dedicated tag\u003C\u002Fli>\n\u003Cli>access the single bibtex entry source code via citeulike.org\u003C\u002Fli>\n\u003Cli>expose URL and DOI of each document (if provided)\u003C\u002Fli>\n\u003Cli>automatic linking of files that have been added on citeulike.org\u003C\u002Fli>\n\u003Cli>settings page for easy configuration\u003C\u002Fli>\n\u003Cli>filter citeulike bib entries by author\u003C\u002Fli>\n\u003Cli>link to single citations on the page by adding “#citationID” to the URL\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The wpciteulike plugin has been developed and tested under WordPress 2.9 and 3.0 and is being used with WordPress 3.0.\u003C\u002Fp>\n\u003Ch3>A brief example\u003C\u002Fh3>\n\u003Cp>When writing a page\u002Fpost, you can use the tag [citeulike] as follows:\u003C\u002Fp>\n\u003Cp>This is my whole list of publications: [citeulike user=]\u003C\u002Fp>\n\u003Cp>If you want to filter the type of items, you can use one of the attributes allow, deny and key as follows:\u003C\u002Fp>\n\u003Cp>This is my list of journal articles:\u003Cbr \u002F>\n[citeulike user= allow=article]\u003C\u002Fp>\n\u003Cp>This is my list of journal articles by author name (e.g. ‘Doe:J’, ‘Smith:W’):\u003Cbr \u002F>\n[citeulike user= author= allow=article]\u003C\u002Fp>\n\u003Cp>This is my list of conference articles and technical reports:\u003Cbr \u002F>\n[citeulike user= allow=inproceedings,techreport]\u003C\u002Fp>\n\u003Cp>This is the rest of my publications:\u003Cbr \u002F>\n[citeulike user= deny=article,inproceedings,techreport]\u003C\u002Fp>\n","wpciteulike enables to add a bibliography maintained with CiteULike formatted as HTML to wordpress pages and posts. The input data is the bibtex meta  &hellip;",10,2174,0,"2011-07-19T20:57:00.000Z","3.0.5","2.8","",[19,20,21],"bibtex","citeulike","formatting","http:\u002F\u002Fwww.mathias-funk.com\u002Fprojects\u002Fwpciteulike","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpciteulike.0.7.2.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},1,30,84,"2026-04-04T13:56:57.807Z",[34,47,72,94,114],{"slug":35,"name":35,"version":36,"author":17,"author_profile":37,"description":38,"short_description":39,"active_installs":11,"downloaded":40,"rating":13,"num_ratings":13,"last_updated":41,"tested_up_to":42,"requires_at_least":43,"requires_php":17,"tags":44,"homepage":45,"download_link":46,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"bib3html","0.9.4","https:\u002F\u002Fprofiles.wordpress.org\u002Falexurus\u002F","\u003Cp>If you need to maintain a bibliography in bibtex format and also write a Web page to publish the list of your publications, then bib3html is the right solution for you.\u003C\u002Fp>\n\u003Cp>bib3html is a refined fork from bib2html written by tango. It enables to add bibtex entries formatted as HTML in wordpress pages and posts. The input data is a local or remote bibtex file and the output is HTML.\u003Cbr \u002F>\nThe entries are formatted by default using the IEEE style. Bibtex source file and a link to the publication are also available from the HTML.\u003Cbr \u002F>\nIn order to reduce site loading the generated HTML Contents are cached in the cache directory for a defined time. If the cached HTML is out of date it gets reloaded automatically.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>input data directly from the bibtex text file\u003C\u002Fli>\n\u003Cli>source files can be URL\u003C\u002Fli>\n\u003Cli>automatic HTML generation\u003C\u002Fli>\n\u003Cli>template and cache usage\u003C\u002Fli>\n\u003Cli>easy inclusion in wordpress pages\u002Fposts by means of a dedicated tag\u003C\u002Fli>\n\u003Cli>possibility of filtering the bibtex entries based on their type (e.g. “allow”, “deny”)\u003C\u002Fli>\n\u003Cli>possibility to access the single bibtex entry source code to enable copy&paste (toggle-enabled visualization)\u003C\u002Fli>\n\u003Cli>expose URL of each document (if network-reachable)\u003C\u002Fli>\n\u003Cli>possibility of editing the bibtex file directly from the wordpress administration page\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The bib3html plugin has been developed and tested under WordPress 3.2.0\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Cp>When writing a page\u002Fpost, you can use the tag [bibtex] as follows:\u003C\u002Fp>\n\u003Cp>This is tango’s whole list of publications: [bibtex file=”mypub.bib”]\u003Cbr \u002F>\nIf you want to filter the type of bibtex items, you can use one of the attributes allow, deny and key as follows:\u003C\u002Fp>\n\u003Cp>This is tango’s list of journal articles:\u003Cbr \u002F>\n[bibtex file=”mypub.bib” allow=”article”]\u003C\u002Fp>\n\u003Cp>This is tango’s list of conference articles and technical reports:\u003Cbr \u002F>\n[bibtex file=”mypub.bib” allow=”inproceedings,techreport”]\u003C\u002Fp>\n\u003Cp>This is the rest of tango’s publications:\u003Cbr \u002F>\n[bibtex file=”mypub.bib” deny=”article,inproceedings,techreport”]\u003C\u002Fp>\n\u003Cp>This is tango’s latest conference paper:\u003Cbr \u002F>\n[bibtex file=”mypub.bib” key=”CGW2006″]\u003C\u002Fp>\n\u003Cp>This is tango’s bibliography maintained at citeulike.org\u003Cbr \u002F>\n[bibtex file=”http:\u002F\u002Fwww.citeulike.org\u002Fbibtex\u002Fuser\u002Fusername”]\u003C\u002Fp>\n\u003Cp>This is tango’s bibliography maintained at bibsonomy.org\u003Cbr \u002F>\n[bibtex file=”http:\u002F\u002Fbibsonomy.org\u002Fbib\u002Fuser\u002Fusername?items=1000″]\u003C\u002Fp>\n","bib3html is a refined fork from bib2html written by tango. It enables to add bibtex entries formatted as HTML in wordpress pages and posts.",2024,"2011-07-15T13:22:00.000Z","3.2.1","1.5",[19,21],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbib3html\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbib3html.zip",{"slug":48,"name":49,"version":50,"author":51,"author_profile":52,"description":53,"short_description":54,"active_installs":55,"downloaded":56,"rating":57,"num_ratings":58,"last_updated":59,"tested_up_to":60,"requires_at_least":61,"requires_php":62,"tags":63,"homepage":68,"download_link":69,"security_score":70,"vuln_count":29,"unpatched_count":13,"last_vuln_date":71,"fetched_at":26},"tinymce-advanced","Advanced Editor Tools","5.9.2","Andrew Ozz","https:\u002F\u002Fprofiles.wordpress.org\u002Fazaozz\u002F","\u003Cp>Advanced Editor Tools (previously TinyMCE Advanced) introduces a “Classic Paragraph” block for the block editor (Gutenberg).\u003Cbr \u002F>\nIf you are not quite ready to switch to the block editor, or have plugins that cannot be used there (yet), using the Classic Paragraph block is your best option. It lets you to continue to use the familiar TinyMCE editor for most tasks, and at the same time gives you full access to all blocks and new features in the block editor.\u003C\u002Fp>\n\u003Cp>Version 5.5 continues to improve and enhance the new features introduced in version 5.0 of the plugin. It includes an improved “Clear Formatting” button, several advanced settings for tables, and importing and exporting of the settings to a file.\u003C\u002Fp>\n\u003Cp>If you want to continue to use the previous (“classic”) editor in WordPress 5.0 and newer, this plugin has an option to replace the new editor with the previous one. If you prefer to have access to both editors side by side or to allow your users to switch editors, it would be better to install the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor plugin\u003C\u002Fa>. Advanced Editor Tools is fully compatible with the classic editor plugin and similar plugins that restore use of the previous WordPress editor.\u003C\u002Fp>\n\u003Cp>As always this plugin will let you add, remove and arrange the buttons that are shown on the Visual Editor toolbar in the Classic Paragraph and Classic blocks in the block editor, and in the classic editor (when enabled by a plugin). There you can configure up to four rows of buttons including Font Sizes, Font Family, text and background colors, tables, etc.\u003C\u002Fp>\n\u003Cp>It includes 15 plugins for \u003Ca href=\"https:\u002F\u002Fwww.tiny.cloud\u002F\" rel=\"nofollow ugc\">TinyMCE\u003C\u002Fa> that are automatically enabled or disabled depending on the buttons you have chosen.\u003Cbr \u002F>\nIn addition this plugin adds options for keeping the paragraph tags in text mode and importing the CSS classes from the theme’s editor-style.css.\u003C\u002Fp>\n\u003Ch4>Some of the features added by this plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>“Classic Paragraph” block that can be used instead of or together with the standard Paragraph block.\u003C\u002Fli>\n\u003Cli>An option to set the Classic Paragraph or Classic block as the default block in the block editor.\u003C\u002Fli>\n\u003Cli>Supports converting of most default blocks to classic paragraphs, and from classic paragraphs back to the default blocks.\u003C\u002Fli>\n\u003Cli>Support for creating and editing tables in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>More options when inserting lists in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>Search and Replace in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>Ability to set Font Family and Font Sizes in the Classic blocks and the classic editor.\u003C\u002Fli>\n\u003Cli>And many others.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy\u003C\u002Fh4>\n\u003Cp>Advanced Editor Tools does not collect or store any user related data. It does not set cookies, and it does not connect to any third-party websites. It only uses functionality that is available in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002F\" rel=\"ugc\">WordPress\u003C\u002Fa>, and in the \u003Ca href=\"https:\u002F\u002Ftinymce.com\u002F\" rel=\"nofollow ugc\">TinyMCE editor\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>In that terms Advanced Editor Tools does not affect your website’s user privacy in any way.\u003C\u002Fp>\n","Extends and enhances the block editor (Gutenberg) and the classic editor (TinyMCE).",2000000,35126516,90,351,"2025-12-08T15:02:00.000Z","6.9.4","5.9","5.6",[64,65,66,21,67],"block-editor","classic-editor","editor","gutenberg","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftinymce-advanced\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftinymce-advanced.5.9.2.zip",100,"2014-09-08 00:00:00",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":17,"tags":87,"homepage":92,"download_link":93,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"advanced-excerpt","Advanced Excerpt","4.4.1","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Cp>This plugin adds several improvements to WordPress’ default way of creating excerpts.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Keeps HTML markup in the excerpt (and you get to choose which tags are included)\u003C\u002Fli>\n\u003Cli>Trims the excerpt to a given length using either character count or word count\u003C\u002Fli>\n\u003Cli>Only the ‘real’ text is counted (HTML is ignored but kept)\u003C\u002Fli>\n\u003Cli>Customizes the excerpt length and the ellipsis character that are used\u003C\u002Fli>\n\u003Cli>Completes the last word or sentence in an excerpt (no weird cuts)\u003C\u002Fli>\n\u003Cli>Adds a \u003Cem>read-more\u003C\u002Fem> link to the text\u003C\u002Fli>\n\u003Cli>Ignores custom excerpts and use the generated one instead\u003C\u002Fli>\n\u003Cli>Theme developers can use \u003Ccode>the_advanced_excerpt()\u003C\u002Fcode> for even more control (see the FAQ)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Most of the above features are optional and\u002For can be customized by the user or theme developer.\u003C\u002Fp>\n\u003Cp>Banner image credit – \u003Ca href=\"https:\u002F\u002Fwww.flickr.com\u002Fphotos\u002Fchillihead\u002F\" rel=\"nofollow ugc\">chillihead\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Original plugin author – \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fbasvd\" rel=\"nofollow ugc\">basvd\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Useful Resources\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwhat-is-wordpress\u002F\" rel=\"friend nofollow ugc\">What is WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwordpress-themes\" rel=\"friend nofollow ugc\">Fee Themes\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Ffancythemes.com\u002Fwordpress-plugins\u002F\" rel=\"friend nofollow ugc\">plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Control the appearance of WordPress post excerpts",80000,1542295,86,101,"2024-01-19T20:32:00.000Z","6.4.8","3.2",[88,89,21,90,91],"content","excerpt","post","post-excerpt","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-excerpt\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-excerpt.4.4.1.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":104,"num_ratings":105,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":17,"tags":109,"homepage":17,"download_link":113,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"advanced-image-styles","Advanced Image Styles","0.4.1","Gregory Cornelius","https:\u002F\u002Fprofiles.wordpress.org\u002Fgcorne\u002F","\u003Cp>Adjust an image’s margins and border with ease in the Visual editor.\u003C\u002Fp>\n","Adjust an image's margins and border with ease in the Visual editor.",10000,149877,92,65,"2018-02-10T15:01:00.000Z","4.7.32","3.9",[66,21,110,111,112],"image","photo","tinymce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-image-styles.0.4.1.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":102,"downloaded":122,"rating":82,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":16,"requires_php":17,"tags":126,"homepage":131,"download_link":132,"security_score":104,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"raw-html","Raw HTML","1.6.4","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>Lets you disable automatic formatting like smart quotes and automatic paragraph creation, and use raw HTML\u002FJS\u002FCSS code in your posts without WordPress messing it up.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>With this plugin, you can wrap any part of your post in [raw]…[\u002Fraw] tags to prevent WordPress from converting newlines to HTML paragraphs, replacing apostrophes with typographic quotes and so on. This is very useful if you need to add a CSS block or JavaScript to your post.\u003C\u002Fp>\n\u003Cp>RawHTML will also add new checkboxes to the “Edit Post” screen that let you disable certain WP filters on a per-post basis. This way you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable wptexturize (the function that creates smart quotes and other typographic characters).\u003C\u002Fli>\n\u003Cli>Disable automatic paragraph creation.\u003C\u002Fli>\n\u003Cli>Disable image smilies. \u003C\u002Fli>\n\u003Cli>Disable convert_chars (the function that converts ampersands to HTML entities and “fixes” some Unicode characters).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The free version only supports editing posts in the Text tab (called “HTML” in older WordPress versions). \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">Get the Pro version\u003C\u002Fa> if you want to be able to switch between Text and the Visual editor without WordPress messing up your content.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Compatibility\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin doesn’t fully support the Gutenberg editor. As of WordPress 5.0, some Raw HTML features will only work if you use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To prevent a part of your post or page from being filtered by WordPress, switch to the Text\u002FHTML editor and wrap it in \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> or \u003Ccode>\u003C!--raw-->...\u003C!--\u002Fraw-->\u003C\u002Fcode> tags. These two versions work exactly the same, except that the latter won’t be visible to your visitors even if you deactivate Raw HTML.\u003C\u002Fp>\n\u003Cp>\u003Cem>Example :\u003C\u002Fem>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw]\nThis \n\nis \n\na \"test\"!\n[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In this case, the tags will prevent WordPress from inserting paragraph breaks between “This”, “is” and “a “test””, as well as ensure that the double quotes arround “test” are not converted to typographic (curly) quotes.\u003C\u002Fp>\n\u003Cp>To avoid problems, only edit posts that contain your custom code in Text\u002FHTML mode. If you’d like to be able to also use the Visual editor, \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">get the Pro version\u003C\u002Fa>. It will make the code betwen [raw] tags appear as a read-only placeholder when viewed in Visual mode, ensuring WordPress doesn’t change it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Combining shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, shortcodes that are inside [raw] tags will not work. They will just show up as plain text. To enable shortcodes, add the \u003Ccode>shortcodes=1\u003C\u002Fcode> attribute to the tag:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw shortcodes=1]This [shortcode] will be run.[\u002Fraw]\n\n[raw]This [shortcode] won't work.[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Preserving \u003Ccode>[raw]\u003C\u002Fcode> code in excerpts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, the plugin will automatically remove any code that’s inside \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> tags from post excerpts. You can prevent that by adding the following line to \u003Ccode>wp-config.php\u003C\u002Fcode>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define('RAW_HTML_KEEP_RAW_IN_EXCERPTS', true);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This will ensure that the plugin doesn’t strip \u003Ccode>[raw]\u003C\u002Fcode> blocks from automatically generated excerpts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Some features of Raw HTML will only work for users who have the “unfiltered_html” capability. In a normal WordPress install that includes the Editor and Administrator roles. In a Multisite install, only the Super Admin has this capability by default.\u003C\u002Fp>\n","Lets you use raw HTML or any other code in your posts. You can also disable smart quotes and other automatic formatting on a per-post basis.",586247,33,"2024-11-11T15:00:00.000Z","6.7.5",[127,21,128,129,130],"css","html","javascript","posts","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2007\u002F12\u002F13\u002Fraw-html-in-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraw-html.1.6.4.zip",{"attackSurface":134,"codeSignals":162,"taintFlows":254,"riskAssessment":255,"analyzedAt":272},{"hooks":135,"ajaxHandlers":158,"restRoutes":159,"shortcodes":160,"cronEvents":161,"entryPointCount":13,"unprotectedCount":13},[136,142,146,150,153,155,156,157],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","wp_head","wpciteulike_header","trunk\\wpciteulike.php",48,{"type":143,"name":144,"callback":4,"priority":29,"file":140,"line":145},"filter","the_content",49,{"type":137,"name":147,"callback":148,"file":140,"line":149},"admin_menu","wpciteulike_register_settings",50,{"type":137,"name":147,"callback":151,"file":140,"line":152},"wpciteulike_add_options",51,{"type":137,"name":138,"callback":139,"file":154,"line":141},"wpciteulike.php",{"type":143,"name":144,"callback":4,"priority":29,"file":154,"line":145},{"type":137,"name":147,"callback":148,"file":154,"line":149},{"type":137,"name":147,"callback":151,"file":154,"line":152},[],[],[],[],{"dangerousFunctions":163,"sqlUsage":195,"outputEscaping":197,"fileOperations":251,"externalRequests":252,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":253},[164,169,172,176,179,183,186,188,189,191,192,194],{"fn":165,"file":166,"line":167,"context":168},"unserialize","OSBiB\\create\\PREVIEWSTYLE.php",59,"$style= unserialize(stripslashes(urldecode($this->vars['style'])));",{"fn":165,"file":166,"line":170,"context":171},78,"$rewriteCreator = unserialize(stripslashes(urldecode($this->vars['rewriteCreator'])));",{"fn":165,"file":173,"line":174,"context":175},"OSBiB\\format\\BIBSTYLE.php",73,"$styleCommon = unserialize(base64_decode($this->session->getVar(\"style_common\")));",{"fn":165,"file":173,"line":177,"context":178},75,"$styleTypes = unserialize(base64_decode($this->session->getVar(\"style_types\")));",{"fn":165,"file":180,"line":181,"context":182},"OSBiB\\format\\CITESTYLE.php",71,"$citation = unserialize(base64_decode($this->session->getVar(\"cite_citation\")));",{"fn":165,"file":180,"line":184,"context":185},72,"$footnote = unserialize(base64_decode($this->session->getVar(\"cite_footnote\")));",{"fn":165,"file":187,"line":167,"context":168},"trunk\\OSBiB\\create\\PREVIEWSTYLE.php",{"fn":165,"file":187,"line":170,"context":171},{"fn":165,"file":190,"line":174,"context":175},"trunk\\OSBiB\\format\\BIBSTYLE.php",{"fn":165,"file":190,"line":177,"context":178},{"fn":165,"file":193,"line":181,"context":182},"trunk\\OSBiB\\format\\CITESTYLE.php",{"fn":165,"file":193,"line":184,"context":185},{"prepared":13,"raw":13,"locations":196},[],{"escaped":13,"rawEcho":198,"locations":199},26,[200,204,206,208,210,212,214,215,218,220,222,224,227,229,232,234,236,237,238,240,241,243,244,245,246,249],{"file":201,"line":202,"context":203},"options.php",87,"raw output",{"file":201,"line":205,"context":203},116,{"file":207,"line":123,"context":203},"OSBiB\\create\\CLOSE.php",{"file":207,"line":209,"context":203},34,{"file":207,"line":211,"context":203},35,{"file":213,"line":123,"context":203},"OSBiB\\create\\CLOSEPOPUP.php",{"file":213,"line":209,"context":203},{"file":216,"line":217,"context":203},"OSBiB\\format\\TESTOSBIB.php",379,{"file":216,"line":219,"context":203},388,{"file":216,"line":221,"context":203},411,{"file":216,"line":223,"context":203},413,{"file":225,"line":226,"context":203},"process.php",225,{"file":225,"line":228,"context":203},489,{"file":230,"line":231,"context":203},"trunk\\options.php",105,{"file":230,"line":233,"context":203},167,{"file":235,"line":123,"context":203},"trunk\\OSBiB\\create\\CLOSE.php",{"file":235,"line":209,"context":203},{"file":235,"line":211,"context":203},{"file":239,"line":123,"context":203},"trunk\\OSBiB\\create\\CLOSEPOPUP.php",{"file":239,"line":209,"context":203},{"file":242,"line":217,"context":203},"trunk\\OSBiB\\format\\TESTOSBIB.php",{"file":242,"line":219,"context":203},{"file":242,"line":221,"context":203},{"file":242,"line":223,"context":203},{"file":247,"line":248,"context":203},"trunk\\process.php",240,{"file":247,"line":250,"context":203},542,40,2,[],[],{"summary":256,"deductions":257},"The wpciteulike v0.7.1 plugin exhibits a mixed security posture.  While it has a very small attack surface with no apparent AJAX handlers, REST API routes, shortcodes, or cron events, and all SQL queries utilize prepared statements, there are significant concerns. The most alarming finding is the presence of 12 instances of the 'unserialize' function, which is a known vector for remote code execution if used with untrusted input.  Compounding this is the complete absence of output escaping for all 26 identified outputs, meaning any data outputted by the plugin is vulnerable to cross-site scripting (XSS) attacks.  Furthermore, the plugin lacks any nonce or capability checks, leaving its entry points (though currently zero) unprotected if they were to emerge.  The vulnerability history is clean, with no recorded CVEs, which is positive but could also indicate a lack of rigorous security auditing or that past vulnerabilities were patched thoroughly.  However, the static analysis reveals a high risk due to the combination of dangerous function usage without proper sanitization and universally unescaped output. The lack of any taint flows analyzed is also a weakness, as it implies a limited scope of security testing.",[258,261,264,267,269],{"reason":259,"points":260},"12 instances of 'unserialize' function used",15,{"reason":262,"points":263},"0% of outputs properly escaped",8,{"reason":265,"points":266},"No nonce checks implemented",5,{"reason":268,"points":266},"No capability checks implemented",{"reason":270,"points":271},"Limited or no taint analysis performed",3,"2026-03-17T05:40:38.459Z",{"wat":274,"direct":283},{"assetPaths":275,"generatorPatterns":278,"scriptPaths":279,"versionParams":280},[276,277],"\u002Fwp-content\u002Fplugins\u002Fwpciteulike\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwpciteulike\u002Fjs\u002Fwpciteulike.js",[],[],[281,282],"wpciteulike\u002Fcss\u002Fstyle.css?ver=","wpciteulike\u002Fjs\u002Fwpciteulike.js?ver=",{"cssClasses":284,"htmlComments":286,"htmlAttributes":289,"restEndpoints":291,"jsGlobals":292,"shortcodeOutput":293},[285],"citeulike-widget",[287,288],"\u003C!-- wpciteulike_start -->","\u003C!-- wpciteulike_end -->",[290],"data-citeulike-target",[],[5,4],[294,295],"[citeulike]","[citeulike-widget]"]