[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_Hz8SpINPoqMBLkDG1mzfkiX1XUwcVboxufutgKXPAo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":14,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":47,"crawl_stats":36,"alternatives":50,"analysis":156,"fingerprints":204},"wxsync","WxSync-标准云微信公众号文章免费采集-任意公众号自动采集付费购买","2.8.2","cnfang","https:\u002F\u002Fprofiles.wordpress.org\u002Fcnfang\u002F","\u003Cp>微信公众号文章,任意公众号自动采集付费购买,手动采集服务永久免费,付费地址是:http:\u002F\u002Fstd.cloud,插件设置面板将自动提示最新版本,会自动请求第三方服务器地址:http:\u002F\u002Fstd.cloud\u002Fweb\u002Fver\u003C\u002Fp>\n","标准云微信公众号文章采集与自动同步插件,手动采集永久免费,自动同步采集可按月收费",500,30061,100,1,"2025-03-19T08:12:00.000Z","6.3.8","",[19,20,21,22,23],"%e5%85%8d%e8%b4%b9","%e5%85%ac%e4%bc%97%e5%8f%b7%e6%96%87%e7%ab%a0%e9%87%87%e9%9b%86","%e5%be%ae%e4%bf%a1%e5%85%ac%e4%bc%97%e5%8f%b7","%e5%be%ae%e4%bf%a1%e5%85%ac%e4%bc%97%e5%8f%b7%e9%87%87%e9%9b%86","%e6%95%b0%e6%8d%ae%e9%87%87%e9%9b%86","http:\u002F\u002Fstd.cloud","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwxsync.2.8.2.zip",92,0,"2023-08-09 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2023-39988","wxsync-authenticated-contributor-stored-cross-site-scripting","WxSync \u003C= 2.8.0 - Authenticated (Contributor+) Stored Cross-Site Scripting","The WxSync plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.8.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.8.0","2.8.1","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-03-18 19:17:01",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc85c13ed-6981-4062-8aca-800721b28b88?source=api-prod",588,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":46,"trust_score":48,"computed_at":49},73,"2026-04-04T21:08:40.170Z",[51,78,99,120,139],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":73,"download_link":74,"security_score":75,"vuln_count":76,"unpatched_count":27,"last_vuln_date":77,"fetched_at":29},"fat-rat-collect","胖鼠采集(Fat Rat Collect)","2.7.5","KitePig","https:\u002F\u002Fprofiles.wordpress.org\u002Ffbtopcn\u002F","\u003Cp>胖鼠采集(\u003Ca href=\"https:\u002F\u002Fwww.fatrat.cn\" rel=\"nofollow ugc\">Fat Rat Collect\u003C\u002Fa>) 是一款能够帮助你网站自动化的采集工具. 开源作品, 支持采集所有网站列表及详情页面 它拥有微信、简书、知乎、列表、历史、详情、等多种采集方式、还有自动采集, 自动发布, 自动打标签, 等许多黑科技功能, 一次创建规则, 后续省心省力. 还有许多演示例子，一键可用。如: 微信、简书、知乎、御龙在天、寻仙、虎扑等许多例子、快去享受吧!\u003C\u002Fp>\n\u003Ch4>神奇之处\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>微信公众号文章采集 – 强大的Jquery可以处理各种版权信息, 纵享丝滑.\u003C\u002Fli>\n\u003Cli>简书文章采集 – 强大的Jquery可以处理内容各种图片, 柔顺到底.\u003C\u002Fli>\n\u003Cli>知乎问答采集 – 强大的Jquery可以处理各种你不想要的东西, 一键爽歪歪.\u003C\u002Fli>\n\u003Cli>(独家主打) 列表采集，历史采集 \u003Ca href=\"https:\u002F\u002Fwww.fatrat.cn\u002Fdocs\u002Fv2\u002Flist-paging-collection\" rel=\"nofollow ugc\">视频文字教程\u003C\u002Fa>– 只需轻轻一点. 数不清的文章就来了.\u003C\u002Fli>\n\u003Cli>(独家主打) 详情页面文章采集 – 任何网站十秒搞定\u003C\u002Fli>\n\u003Cli>(独家主打) \u003Ca href=\"https:\u002F\u002Fwww.fatrat.cn\u002Fdocs\u002Fv2\u002Flist-paging-collection\" rel=\"nofollow ugc\">分页爬取\u003C\u002Fa> – 历史数据, 也不放过. 一网打尽\u003C\u002Fli>\n\u003Cli>(胖鼠主打) 自动采集 – 一键启动不放过每一份数据.\u003C\u002Fli>\n\u003Cli>(胖鼠主打) 自动发布 – 您省心省力好帮手.\u003C\u002Fli>\n\u003Cli>(独家主打) 调试模式 – 新建规则好帮手, 采集结果好伙伴.\u003C\u002Fli>\n\u003Cli>(独家主打) 体验例子 – 一键体验胖鼠.\u003C\u002Fli>\n\u003Cli>(主打主打) 文章自动添加, \u003Ca href=\"https:\u002F\u002Fwww.fatrat.cn\u002Fdocs\u002Fv2\u002Fdynamic-content\" rel=\"nofollow ugc\">动态内容\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.fatrat.cn\u002Fdocs\u002Fv2\u002Fauto-tags\" rel=\"nofollow ugc\">自动标签\u003C\u002Fa>, 标签内链, 优化SEO.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 文章滤重 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 自动特色图片 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 采集图片加入媒体库 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 数据处理 – 完美支持Html Jquery\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 内容关键字过滤替换 伪原创 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 自定义采集任何可见网站 – 完美支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 自定义文章图片链接类型 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 内容详情页数据分页采集 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 关键词随机插入, 可指定关键词或A标签关键词随机插入文章正文中 – 支持.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 图片本地下载, 支持使用其他插件上传(阿里云OSS、又拍云云存储, 七牛对象存储), 并可突破图片防盗链.\u003C\u002Fli>\n\u003Cli>(胖鼠采集) 相比其它采集器如: 火车头、神箭手、后羿、八爪鱼、以及一些伪原创采集工具, 胖鼠采集简单易用, 功能强大，是您建站的好帮手\u003C\u002Fli>\n\u003Cli>(重磅重磅) 胖鼠采集完全基于Wordpress, 安装即用, 开源作品\u003C\u002Fli>\n\u003Cli>(声明声明) 如你的PHP版本小于PHP71, 请移步胖鼠采集的Github下载使用胖鼠v5版本 分支名: based_php_5.6, 不再更新v5版本，不推荐\u003C\u002Fli>\n\u003Cli>(声明声明) 胖鼠采集初衷为参考学习交流; 请大家遵纪守法. 抵制违法犯罪.\u003C\u002Fli>\n\u003Cli>(声明声明) 胖鼠采集开源可供您查阅代码, 或者二次开发使用供您使用, 但不可修改源码后用于商业行为.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>胖鼠采集系统架构\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>系统分为五大块.\u003C\u002Fli>\n\u003Cli>① 采集中心, 配置各种特色配置来采集数据.\u003C\u002Fli>\n\u003Cli>② 配置中心, 为采集中心提供采集规则.\u003C\u002Fli>\n\u003Cli>③ 数据桶,   数据管理中心 此模块控制采集数据.\u003C\u002Fli>\n\u003Cli>④ Debugging, 此模块用于大家调试规则.\u003C\u002Fli>\n\u003Cli>⑤ 胖鼠工具箱, 此模块是胖鼠特色小功能.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>使用谨记\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>采集是一件极其消耗系统资源的事情，尤其是图片下载。\u003C\u002Fli>\n\u003Cli>新鼠友, 可一键体验例子. 例子运行正确, 那就专心写规则吧.\u003C\u002Fli>\n\u003Cli>本工具仅供学习参考, 作者不承担任何风险.\u003C\u002Fli>\n\u003C\u002Ful>\n","胖鼠采集(Fat Rat Collect) 是一款能够帮助你网站自动化的采集工具. 支持采集、微信、简书、知乎、自定义列表页、自定义详情页面、还有许多特色功能、 还可一键采集历史文章, 一键设置自动采集, 自动发布, 为您节省精力, 快来体验一下吧!",1000,71965,94,46,"2025-10-30T08:23:00.000Z","6.7.5","4.6","7.2",[68,69,70,71,72],"%e7%9f%a5%e4%b9%8e%e9%87%87%e9%9b%86","%e9%87%87%e9%9b%86","%e5%88%97%e8%a1%a8%e9%87%87%e9%9b%86","%e5%be%ae%e4%bf%a1%e5%85%ac%e4%bc%97%e5%8f%b7%e6%96%87%e7%ab%a0%e9%87%87%e9%9b%86","%e6%89%b9%e9%87%8f%e9%87%87%e9%9b%86","https:\u002F\u002Fwww.fatrat.cn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffat-rat-collect.zip",99,2,"2024-11-12 13:26:04",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":27,"num_ratings":27,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":96,"download_link":97,"security_score":98,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"icollect","爱采集数据采集和发布插件","1.0.0","devenc","https:\u002F\u002Fprofiles.wordpress.org\u002Fdevenc\u002F","\u003Cp>简单易用，点点鼠标抓取数据，不需要写任何代码就能轻松抓取数据，老板再也不用逼我学 python 爬虫了。几分钟就能抓取数据，采集从未如此轻松。\u003C\u002Fp>\n\u003Cp>可见即可得,采集结果实时展示。可视化采集过程，看到什么就采集什么。\u003C\u002Fp>\n\u003Cp>功能强大,支持图片、视频抓取，延迟加载数据页面，滚动翻页，存储过程，更多高级功能等你来发现。\u003C\u002Fp>\n","爱采集(http:\u002F\u002Ficollect.net.cn)是一个超易用，强大的网页数据采集和发布软件",20,4776,"2020-09-04T02:20:00.000Z","5.4.19","4.7","7.0",[93,69,21,94,95],"%e7%88%b1%e9%87%87%e9%9b%86","%e6%96%87%e7%ab%a0%e9%87%87%e9%9b%86","%e4%bb%8a%e6%97%a5%e5%a4%b4%e6%9d%a1","http:\u002F\u002Fwww.icollect.net.cn\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ficollect.zip",85,{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":59,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":116,"download_link":117,"security_score":118,"vuln_count":76,"unpatched_count":27,"last_vuln_date":119,"fetched_at":29},"keydatas","简数采集器","2.6.4","zhengdon","https:\u002F\u002Fprofiles.wordpress.org\u002Fzhengdon\u002F","\u003Cp>简数(\u003Ca href=\"http:\u002F\u002Fwww.keydatas.com?utm_source=wordpress\" rel=\"nofollow ugc\">keydatas.com\u003C\u002Fa>)是一个通用、简单、智能、在线的网页数据采集器，主要功能特性：\u003Cbr \u002F>\n1.采集不需安装软件，不用研究网页源代码，在线选取、点击，保存，就可以实现采集；\u003Cbr \u002F>\n2.支持按关键词采集，输入关键词即可采集；\u003Cbr \u002F>\n3.智能识别数据和规则，包括：列表页、翻页和详情页（标题、正文、作者、时间等）；\u003Cbr \u002F>\n4.定时自动采集更新；\u003Cbr \u002F>\n5.图片支持下载到（阿里云OSS、七牛对象存储、腾讯云COS、又拍云）；\u003Cbr \u002F>\n6.支持对接多种AI大模型API，轻松进行内容生成创作。AI支持：DeepSeek、百度文心一言、Kimi、豆包、通义千问、5118、讯飞星火大模型等。\u003Cbr \u002F>\n7.相比其它采集器，简数采集器更加简单易用，功能同样强大，且没有繁杂的流程；\u003Cbr \u002F>\n8.其它相关：火车头、八爪鱼、后羿；\u003Cbr \u002F>\n9.realation: caiji,seo,mip,keyword,description,jianshu,weixin,wechat,robot,spider,jinritoutiao,taobaoke,aliyun,qiniu,tengxunyun,baidu,huochetou,houyicaiji,shenjian,CSDN,cnblogs,zhihu,jianshu,wenzhang,gongzhonghao,locoy,bazhuayu,shenjianshou,wpspider,WP-AutoPost(WP-AutoBlog),WP-Jpost,5118,QQWorld.\u003Cbr \u002F>\n10.SEO Plugin,huochetou,google XML sitemap,WP Baidu Map,baiduxzh,Sitemap,baidu-submit-link,AutoTags,Github.\u003Cbr \u002F>\nautospider,fanyi,Translate,LightSNS,collect\u003Cbr \u002F>\n11.wordpress插件推荐：百度熊掌号,百度推送,WordPress HTTPS (SSL),wp encrypt,really simple ssl,WPJAM-Basic,wp-super-cache,WP Rocket,All-in-One SEO Pack,login LockDown,Comments Link Redirect,Add Post URL,BackWPup,DX-auto-publish,Link Manager,No Category Parents,Platinum SEO Pack,WP Keyword Link,Yet Another Related Posts Plugin,Fix image width,Role Manager,Search & Replace,WordPress Database Backup,WP-PostViews,WP PHP widget,Baidu Sitemap Generator,DB Cache Reloaded Fix + Hyper Cache,SEO Friendly Images,BackWPup,Simple URLs,Redirection.\u003C\u002Fp>\n","简数采集器不仅提供网页文章全自动采集、定时采集等基本功能，还创新实现了智能识别和鼠标可视化点选生成采集规则(不用手写规则)、书签一键采集等特色功能，大幅提升了采集配置效率。",88985,86,6,"2025-11-21T11:01:00.000Z","6.8.5","4.1","5.2",[115,69,23,94],"%e7%ae%80%e6%95%b0","http:\u002F\u002Fwww.keydatas.com\u002Fcaiji\u002Fwordpress-cms-caiji","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkeydatas.zip",93,"2025-11-20 19:31:53",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":13,"num_ratings":109,"last_updated":130,"tested_up_to":64,"requires_at_least":131,"requires_php":91,"tags":132,"homepage":137,"download_link":138,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"wp-weixin","WP Weixin","1.3.18","Alexandre Froger","https:\u002F\u002Fprofiles.wordpress.org\u002Ffrogerme\u002F","\u003Cp>WP Weixin provides integration between WordPress and WeChat. Register or authenticate users automatically in WeChat browser, use WeChat to create an account or authenticate on computers by scanning a QR code with WeChat, share posts in WeChat Moments and conversations or extend the plugin for more features!\u003C\u002Fp>\n\u003Ch3>Important notes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Requires a \u003Ca href=\"https:\u002F\u002Fmp.weixin.qq.com\" rel=\"nofollow ugc\">China Mainland WeChat Official Account\u003C\u002Fa> (Subscription or Service – Service is required if used with companion plugins dealing with payments).\u003C\u002Fli>\n\u003Cli>A domain used by WordPress \u003Cstrong>must\u003C\u002Fstrong> be \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-registering-a-domain-in-the-official-accounts-backend\" rel=\"nofollow ugc\">registered in an Official Account’s backend\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>The plugin itself does not require programming knowledge, and provides really useful functionalities out of the box. Where it really shines though is when used by developers to extend its functionalities (mainly through the pre-initialised JS SDK, the WeChat Responder, and various provided \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-functions\" rel=\"nofollow ugc\">functions\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-actions\" rel=\"nofollow ugc\">actions\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-filters\" rel=\"nofollow ugc\">filters\u003C\u002Fa>).\u003C\u002Fli>\n\u003Cli>Make sure to read the “TROUBLESHOOT, FEATURE REQUESTS AND 3RD PARTY INTEGRATION” section below and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md\" rel=\"nofollow ugc\">the full documentation\u003C\u002Fa> before contacting the author.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Overview\u003C\u002Fh3>\n\u003Cp>This plugin adds the following major features to WordPress:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>WP Weixin settings page:\u003C\u002Fstrong> configure the plugin with an Official Account (or as many as you want in multisite) in English or Chinese out of the box, with instructions for each option.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WeChat Authentication:\u003C\u002Fstrong> automatically create and authenticate users in WordPress in the WeChat browser, or allow users to scan a QR code with WeChat when using classic browsers (social login).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WeChat Account Binding:\u003C\u002Fstrong> let users bind\u002Funbind their existing WordPress account with their WeChat account. Integrated with WooCommerce and Ultimate Member account pages, and may be integrated with any membership\u002Faccount\u002Fprofile plugin easily.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WeChat Share:\u003C\u002Fstrong> Share posts and pages on Moments or Send to chat, in a pretty way. Triggers JavaScript events for developers on success and failure.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Force WeChat mobile:\u003C\u002Fstrong> to prevent users from browsing the website outside of the WeChat browser. If accessed with a classic browser, the page displays a QR code.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Force following the Official Account:\u003C\u002Fstrong> to harvest WeChat followers, forcing users to follow the Official Account before accessing the content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Users screen override:\u003C\u002Fstrong> to display WeChat names and WeChat avatars if they exist, instead of the default values in the user screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP Weixin QR code generator:\u003C\u002Fstrong> to create custom codes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Menu integration:\u003C\u002Fstrong> allows to set the Official Account menus in WordPress when the WeChat Responder is enabled.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Welcome message:\u003C\u002Fstrong> sends a welcome message in WeChat when a user follows the Official Account ; allows to do so with WordPress when the WeChat Responder is enabled.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developers – WeChat Responder:\u003C\u002Fstrong> for developers to receive and respond to calls made by WeChat’s API.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developers – WeChat JS_SDK:\u003C\u002Fstrong> the \u003Ccode>wx\u003C\u002Fcode> JavaScript global variable is pre-configured with a signed package to leverage the JavaScript SDK of WeChat in WordPress themes more easily.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Compatible with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce-multilingual\u002F\" rel=\"ugc\">WooCommerce Multilingual\u003C\u002Fa>, \u003Ca href=\"http:\u002F\u002Fwpml.org\u002F\" rel=\"nofollow ugc\">WPML\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-member\u002F\" rel=\"ugc\">Ultimate Member\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FCreate_A_Network\" rel=\"nofollow ugc\">WordPress Multisite\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-object-cache-considerations\" rel=\"nofollow ugc\">many caching plugins\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Companion Plugins\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoo-wechatpay\" rel=\"ugc\">Woo WeChatPay\u003C\u002Fa>: a payment gateway for WooCommerce.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-weixin-pay\" rel=\"ugc\">WP Weixin Pay\u003C\u002Fa>: an extension to enable money transfers to an Official Account.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-weixin-broadcast\u002F\" rel=\"ugc\">WP Weixin Broadcast\u003C\u002Fa>: broadcast WordPress posts to WeChat followers, directly from WordPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Developers are encouraged to build plugins and themes integrated with WeChat with WP Weixin as a core, leveraging its publicly available \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-functions\" rel=\"nofollow ugc\">functions\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-actions\" rel=\"nofollow ugc\">actions\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-filters\" rel=\"nofollow ugc\">filters\u003C\u002Fa>, or directly \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-wechat-sdk\" rel=\"nofollow ugc\">make use of the provided SDK\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cem>If you wish to see your plugin added to this list, please \u003Ca href=\"https:\u002F\u002Ffroger.me\u002Fwp-content\u002Fuploads\u002F2018\u002F04\u002Fwechat-qr.png\" rel=\"nofollow ugc\">contact the author\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>Advanced – Multisite\u003C\u002Fh3>\n\u003Cp>WP Weixin supports multisite installs of WordPress, wether using domain\u002Fsubdomains or subdirectories. It can even support multiple Official Accounts, provided the proper filters are implemented. For more information, see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-multisite-settings\" rel=\"nofollow ugc\">a more extensive description of the multisite settings\u003C\u002Fa>, and the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fblob\u002Fmaster\u002FREADME.md#user-content-multisite\" rel=\"nofollow ugc\">Multisite section of the documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Unlike some plugins (commercial, obfuscated, and with dubious security standards), WP Weixin does not and will not rely on a crossdomain script dumped at the root of WordPress, but prefers to leverage the standard WordPress functions, actions and filters.\u003C\u002Fp>\n\u003Ch3>Troubleshoot, feature requests and 3rd party integration\u003C\u002Fh3>\n\u003Cp>Unlike most WeChat integration plugins, WP Weixin and its companion plugins published by the same author are provided for free.\u003C\u002Fp>\n\u003Cp>WP Weixin is regularly updated, and bug reports are welcome, preferably on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin\u002Fissues\" rel=\"nofollow ugc\">Github\u003C\u002Fa>. Each bug report will be addressed in a timely manner, but issues reported on WordPress may take significantly longer to receive a response.\u003C\u002Fp>\n\u003Cp>WP Weixin and all the companion plugins have been tested with the latest version of WordPress – in case of issue, please ensure you are able to reproduce it with a default installation of WordPress, Storefront theme if WooCommerce is active, and any of the aforementioned supported plugins if used before reporting a bug.\u003C\u002Fp>\n\u003Cp>Feature requests (such as “it would be nice to have XYZ”) or 3rd party integration requests (such as “it is not working with XYZ plugin” or “it is not working with my theme”) for WP Weixin and all its companion plugins will be considered only after receiving a red envelope (红包) of a minimum RMB 500 on WeChat (guarantee of best effort, no guarantee of result).\u003C\u002Fp>\n\u003Cp>To add the author on WeChat, click \u003Ca href=\"https:\u002F\u002Ffroger.me\u002Fwp-content\u002Fuploads\u002F2018\u002F04\u002Fwechat-qr.png\" rel=\"nofollow ugc\">here\u003C\u002Fa>, scan the WeChat QR code, and add “WP Weixin” as a comment in your contact request.\u003C\u002Fp>\n","WordPress WeChat integration",400,19189,"2025-03-10T11:40:00.000Z","4.9.5",[133,134,135,21,136],"wechat","wechat-share","%e5%be%ae%e4%bf%a1","%e5%be%ae%e4%bf%a1%e5%88%86%e4%ba%ab","https:\u002F\u002Fgithub.com\u002Ffroger-me\u002Fwp-weixin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-weixin.1.3.18.zip",{"slug":140,"name":141,"version":142,"author":143,"author_profile":144,"description":145,"short_description":146,"active_installs":13,"downloaded":147,"rating":27,"num_ratings":27,"last_updated":148,"tested_up_to":111,"requires_at_least":149,"requires_php":150,"tags":151,"homepage":154,"download_link":155,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"import-articles-from-wechat","导入微信文章 (Import Articles from WeChat)","1.8.6","Y阳胜S君","https:\u002F\u002Fprofiles.wordpress.org\u002Fxiaozhai001\u002F","\u003Cp>Have you ever wanted to back up or share a great article from WeChat to your own WordPress site? “Import Articles from WeChat” makes it incredibly easy.\u003C\u002Fp>\n\u003Cp>Just paste the article’s URL, and this plugin will automatically fetch:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Title\u003C\u002Fstrong> and \u003Cstrong>Publish Date\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Full Content\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Featured Image\u003C\u002Fstrong> (set automatically)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>All inline images\u003C\u002Fstrong> (downloaded to your media library)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin simulates a real browser’s behavior, including handling cookies, to reliably fetch images that are usually protected by anti-hotlinking measures. All content will be safely saved as a draft post, ready for you to edit and publish.\u003C\u002Fp>\n\u003Cp>[中文描述]\u003C\u002Fp>\n\u003Cp>您是否曾想过将一篇精彩的微信文章备份或分享到自己的 WordPress 网站上？“导入微信文章”插件让这一切变得无比简单。\u003C\u002Fp>\n\u003Cp>您只需粘贴文章的链接，点击导入，插件便会自动抓取：\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>文章标题\u003C\u002Fstrong>和\u003Cstrong>原始发布时间\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>完整的正文内容\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>封面图\u003C\u002Fstrong> (自动设为特色图片)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>文章内的所有图片\u003C\u002Fstrong> (自动下载到您的媒体库)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>本插件通过模拟真实浏览器的行为（包含Cookie处理），能够可靠地抓取通常受防盗链保护的图片，确保导入内容的完整性。所有内容都会被安全地存为一篇草稿，方便您后续编辑和发布。\u003C\u002Fp>\n","A simple yet powerful tool to import articles from WeChat Official Accounts into your WordPress site, including all content and images.",1225,"2025-11-12T06:21:00.000Z","5.0","7.4",[69,133,152,21,153],"%e5%af%bc%e5%85%a5","%e5%be%ae%e4%bf%a1%e5%85%ac%e4%bc%97%e5%8f%b7%e6%96%87%e7%ab%a0","https:\u002F\u002Fanjir.top\u002F?p=100","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimport-articles-from-wechat.1.8.6.zip",{"attackSurface":157,"codeSignals":178,"taintFlows":197,"riskAssessment":198,"analyzedAt":203},{"hooks":158,"ajaxHandlers":174,"restRoutes":175,"shortcodes":176,"cronEvents":177,"entryPointCount":27,"unprotectedCount":27},[159,165,168],{"type":160,"name":161,"callback":162,"file":163,"line":164},"action","admin_menu","wxsync_admin_menu","wxsync.php",18,{"type":160,"name":166,"callback":167,"file":163,"line":86},"init","wxsync_onrequest",{"type":169,"name":170,"callback":171,"priority":172,"file":163,"line":173},"filter","post_link","link_format_url",10,21,[],[],[],[],{"dangerousFunctions":179,"sqlUsage":180,"outputEscaping":183,"fileOperations":195,"externalRequests":185,"nonceChecks":185,"capabilityChecks":195,"bundledLibraries":196},[],{"prepared":181,"raw":27,"locations":182},31,[],{"escaped":184,"rawEcho":185,"locations":186},89,3,[187,191,193],{"file":188,"line":189,"context":190},"simple_html_dom.php",164,"raw output",{"file":188,"line":192,"context":190},169,{"file":188,"line":194,"context":190},229,7,[],[],{"summary":199,"deductions":200},"The plugin \"wxsync\" v2.8.2 demonstrates strong security practices in its code analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events without authentication checks significantly limits the potential attack surface. The plugin also excels in its use of prepared statements for all SQL queries, proper output escaping for nearly all outputs, and the presence of nonce and capability checks, indicating a focus on preventing common web vulnerabilities. The lack of identified dangerous functions and unsanitized taint flows further reinforces its generally secure coding posture.\n\nHowever, the plugin's vulnerability history introduces a notable concern. While there are no currently unpatched vulnerabilities, the presence of one medium-severity Cross-site Scripting (XSS) vulnerability reported in August 2023 suggests that such issues have occurred in the past. This indicates a potential for sensitive data to be exposed or manipulated if inputs are not adequately sanitized, even if current code appears robust. The file operations and external HTTP requests, though not explicitly flagged as problematic in the static analysis, represent areas that always warrant careful review in the context of potential vulnerabilities.\n\nIn conclusion, \"wxsync\" v2.8.2 exhibits a commendable security foundation with its secure coding practices evident in the static analysis. The primary area for continued vigilance lies in its past XSS vulnerability, which, despite being patched, highlights the need for ongoing security audits and adherence to strict input validation and output encoding standards. The low overall attack surface and strong internal security measures are significant strengths, but the historical vulnerability warrants a cautious approach to its deployment.",[201],{"reason":202,"points":172},"Medium severity XSS vulnerability in history","2026-03-16T19:36:45.925Z",{"wat":205,"direct":211},{"assetPaths":206,"generatorPatterns":208,"scriptPaths":209,"versionParams":210},[207],"\u002Fwp-content\u002Fplugins\u002Fwxsync\u002Flibs\u002Fwxsync.css",[],[],[],{"cssClasses":212,"htmlComments":213,"htmlAttributes":214,"restEndpoints":223,"jsGlobals":224,"shortcodeOutput":231},[],[],[215,216,217,218,219,220,221,222],"wxsync_pageurl","wxsync_tab","wxsync_nonce_field","wxsync_manual_action","wxsync_setsourcetxt","wxsync_settoken","wxsync_token","wxsync_autoproxyset_token",[],[225,226,227,216,228,229,230],"wxsync_ver","wxsync_code","wxsync_act_finish","wxsync_error","wxsync_pageurl_open","wxsync_article_att_ids",[]]