[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjuABPnI0cdYteLmXFR31psJava0kKBoAIxJexT94SrY":3,"$fb-jrBneBgv5zCXkgli17rrjmMgtAlJW09iYeFZAfbXc":214,"$fr2XIMHI1j49KN-vENVZdSbGS8OqJy1-KMcr4Vl4UC6o":219},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":39,"analysis":124,"fingerprints":183},"admin-keys","Admin Keys","1.4.0","joesat","https:\u002F\u002Fprofiles.wordpress.org\u002Fjoesat\u002F","\u003Cp>Use the WordPress admin with keyboard shortcuts instead of relying on your mouse for everything. The plugin utilizes Mousetrap for handling key bindings. The shortcuts included cover basic WordPress admin navigation and actions.\u003C\u002Fp>\n","Admin Keys provide intuitive WordPress admin keyboard shortcuts for accessibility and efficiency",10,2395,100,1,"2015-05-18T02:47:00.000Z","4.2.39","3.9.3","",[20,21,22,23,24],"admin","admin-bar","hotkeys","sidebar","toggle","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadmin-keys\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-keys.1.4.0.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},3,210,30,84,"2026-05-20T04:11:21.795Z",[40,59,76,93,109],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":16,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":57,"download_link":58,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"admin-bar-toggle","Admin Bar Toggle","1.4.1","jamesckemp","https:\u002F\u002Fprofiles.wordpress.org\u002Fjamesckemp\u002F","\u003Cp>Admin Bar toggle adds a toggle switch to show\u002Fhide the admin bar on the front-end. This is much less intrusive, but still allows you to use all the useful features of the admin bar.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Hides the admin bar on the front-end by default. This is much less intrusive.\u003C\u002Fli>\n\u003Cli>Adds a small toggle button in the top right to activate the admin bar.\u003C\u002Fli>\n\u003Cli>Toggle remains in place to hide it again.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>This plugin assumes that the admin bar is active, and hasn’t been disabled in your user profile\u003C\u002Fstrong>\u003C\u002Fp>\n","Hides the admin bar on the front-end by default, and adds a toggle to activate it.",400,18601,98,18,"2015-08-17T15:34:00.000Z","3.8",[20,21,55,24,56],"jquery","ui","http:\u002F\u002Fwww.jckemp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-bar-toggle.1.4.1.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":11,"downloaded":67,"rating":13,"num_ratings":34,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":18,"download_link":75,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"sbl-admin-bar","SBL Admin Bar","1.0","Steven Lienhard","https:\u002F\u002Fprofiles.wordpress.org\u002Flienhard\u002F","\u003Cp>Is the Admin Bar in the way while designing the site?  Enter control-shift-a while logged into the front end of the site to toggle the admin bar on\u002Foff.  You will see a temporary dialog confirming if the admin bar is on or off.  Refresh the page to see the result.\u003C\u002Fp>\n\u003Cp>You can enable or disable this feature by user role from the admin under Settings => SBL Admin Bar\u003C\u002Fp>\n","SBL Admin Bar allows you to dynamically turn the Admin Bar on\u002Foff using the hotkeys CONTROL-SHIFT-A. Can be enabled and disabled by user role.",927,"2020-12-12T20:34:00.000Z","5.6.17","4.3",[21,72,73,22,74],"adminbar","hotkey","toolbar","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsbl-admin-bar.1.0.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":28,"num_ratings":28,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":18,"tags":88,"homepage":90,"download_link":91,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":92},"toggle-admin-bar","Toggle Admin Bar","1.0.2","wycks","https:\u002F\u002Fprofiles.wordpress.org\u002Fwycks\u002F","\u003Cp>Sometimes the admin bar is in the way. This toggles it out of view and back in when needed on click.\u003C\u002Fp>\n\u003Cp>Notes :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Only works if admin bar is showing\u003C\u002Fli>\n\u003Cli>Can customize arrow image that shows the admin bar by replacing arrow-slide.png in the plugin folder.\u003C\u002Fli>\n\u003C\u002Ful>\n","Toggles the admin bar from view by adding \"Hide Me\" to the Admin menu.",2968,"2013-03-15T17:08:00.000Z","3.5.2","3.2",[21,89,24],"hide-admin-bar","http:\u002F\u002Fwww.wpsecure.net\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftoggle-admin-bar.zip","2026-04-06T09:54:40.288Z",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":11,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":18,"download_link":108,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"toggle-hide-show-admin-bar","Toggle Hide\u002FShow Admin Bar","1.1.3","Jorge del Campo Andrade","https:\u002F\u002Fprofiles.wordpress.org\u002Fjorgedelcampo\u002F","\u003Cp>A simple and customizable real-time toggle button to hide\u002Fshow admin bar in front-end.\u003C\u002Fp>\n","A simple and customizable real-time toggle button to hide\u002Fshow admin bar in front-end.",971,"2026-01-28T20:11:00.000Z","6.9.4","5.0","7.4",[21,24,107],"visibility","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftoggle-hide-show-admin-bar.1.1.3.zip",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":28,"downloaded":117,"rating":28,"num_ratings":28,"last_updated":118,"tested_up_to":103,"requires_at_least":119,"requires_php":18,"tags":120,"homepage":122,"download_link":123,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"lightweight-admin-toolbar-toggle","Lightweight Admin Toolbar Toggle","1.0.0","aldibudimanputra","https:\u002F\u002Fprofiles.wordpress.org\u002Faldibudimanputra\u002F","\u003Cp>Lightweight Admin Toolbar Toggle allows Administrators to toggle the WordPress admin bar on\u002Foff from the frontend. The admin bar floats over content without pushing the page layout, providing a seamless experience.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Toggle admin bar visibility with a floating button\u003C\u002Fli>\n\u003Cli>Admin bar floats over content – no layout shift\u003C\u002Fli>\n\u003Cli>Only visible to Administrators\u003C\u002Fli>\n\u003Cli>Compatible with popular page builders (Elementor, Divi, Astra, etc.)\u003C\u002Fli>\n\u003Cli>Fixes sticky header issues caused by admin bar detection\u003C\u002Fli>\n\u003Cli>Glassmorphism styled toggle button\u003C\u002Fli>\n\u003Cli>Remembers visibility state during session\u003C\u002Fli>\n\u003C\u002Ful>\n","A plugin to toggle the WordPress admin bar and make it float without taking up page space. Only visible to Administrators.",91,"2026-03-28T13:15:00.000Z","4.6",[20,21,121,24,74],"hide","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadmin-toolbar-toggle\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightweight-admin-toolbar-toggle.1.0.0.zip",{"attackSurface":125,"codeSignals":163,"taintFlows":173,"riskAssessment":174,"analyzedAt":182},{"hooks":126,"ajaxHandlers":159,"restRoutes":160,"shortcodes":161,"cronEvents":162,"entryPointCount":28,"unprotectedCount":28},[127,132,135,138,141,145,151,157],{"type":128,"name":129,"callback":129,"file":130,"line":131},"action","init","admin-keys.php",29,{"type":128,"name":133,"callback":134,"file":130,"line":36},"wp_head","get_header",{"type":128,"name":136,"callback":134,"file":130,"line":137},"admin_head",33,{"type":128,"name":129,"callback":139,"file":130,"line":140},"set_help_tab",34,{"type":128,"name":142,"callback":143,"file":130,"line":144},"admin_footer","add_modal",35,{"type":146,"name":147,"callback":148,"priority":149,"file":130,"line":150},"filter","admin_footer_text","add_modal_link",999,36,{"type":128,"name":152,"callback":153,"priority":154,"file":155,"line":156},"in_admin_header","add_tabs",20,"tmpl\\help-tab.php",76,{"type":128,"name":152,"callback":129,"file":155,"line":158},109,[],[],[],[],{"dangerousFunctions":164,"sqlUsage":165,"outputEscaping":167,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":14,"bundledLibraries":172},[],{"prepared":28,"raw":28,"locations":166},[],{"escaped":28,"rawEcho":14,"locations":168},[169],{"file":130,"line":170,"context":171},69,"raw output",[],[],{"summary":175,"deductions":176},"The admin-keys v1.4.0 plugin exhibits a generally strong security posture based on the static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the potential attack surface. Furthermore, the code signals indicate a responsible approach to database interactions, with 100% of SQL queries utilizing prepared statements. The presence of capability checks also suggests an attempt to enforce user permissions.\n\nHowever, a critical concern arises from the output escaping. With 100% of outputs being unescaped, this presents a significant risk of Cross-Site Scripting (XSS) vulnerabilities. Any data rendered to the user interface that originates from an untrusted source, or is manipulated in any way before display, could potentially be exploited. The lack of nonces on any entry points, while not directly exploitable due to the absence of such entry points, is a missed opportunity for robust security practices if entry points were ever introduced.\n\nThe vulnerability history is clean, with no recorded CVEs, which is a positive indicator. This suggests that the plugin has either not been a target of significant exploitation or has been well-maintained in the past. Overall, while the plugin has a low attack surface and good database practices, the lack of output escaping is a severe weakness that requires immediate attention.",[177,180],{"reason":178,"points":179},"100% of outputs unescaped",8,{"reason":181,"points":34},"No nonce checks on potential entry points","2026-03-17T01:02:45.751Z",{"wat":184,"direct":197},{"assetPaths":185,"generatorPatterns":190,"scriptPaths":191,"versionParams":192},[186,187,188,189],"\u002Fwp-content\u002Fplugins\u002Fadmin-keys\u002Fassets\u002Fjs\u002Fmousetrap.min.js","\u002Fwp-content\u002Fplugins\u002Fadmin-keys\u002Fassets\u002Fjs\u002Fmousetrap-global-bind.min.js","\u002Fwp-content\u002Fplugins\u002Fadmin-keys\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fadmin-keys\u002Fassets\u002Fcss\u002Fadmin.css",[],[186,187,188],[193,194,195,196],"mousetrap.min.js?ver=","mousetrap-global-bind.min.js?ver=","admin.js?ver=","admin.css?ver=",{"cssClasses":198,"htmlComments":204,"htmlAttributes":205,"restEndpoints":209,"jsGlobals":210,"shortcodeOutput":213},[199,200,201,202,203],"admin-keys-modal","admin-keys-modal-trigger","columns","column","inside",[],[206,207,208],"id=\"admin-keys-modal-trigger\"","href=\"#TB_inline?width=600&height=550&inlineId=admin-keys-modal\"","class=\"thickbox\"",[],[211,212],"akSiteUrl","akAdminUrl",[],{"error":215,"url":216,"statusCode":217,"statusMessage":218,"message":218},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fadmin-keys\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":220,"versions":221},4,[222,228,235,242],{"version":6,"download_url":26,"svn_tag_url":223,"released_at":29,"has_diff":224,"diff_files_changed":225,"diff_lines":29,"trac_diff_url":226,"vulnerabilities":227,"is_current":215},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadmin-keys\u002Ftags\u002F1.4.0\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fadmin-keys%2Ftags%2F1.3.0&new_path=%2Fadmin-keys%2Ftags%2F1.4.0",[],{"version":229,"download_url":230,"svn_tag_url":231,"released_at":29,"has_diff":224,"diff_files_changed":232,"diff_lines":29,"trac_diff_url":233,"vulnerabilities":234,"is_current":224},"1.3.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-keys.1.3.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadmin-keys\u002Ftags\u002F1.3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fadmin-keys%2Ftags%2F1.1.0&new_path=%2Fadmin-keys%2Ftags%2F1.3.0",[],{"version":236,"download_url":237,"svn_tag_url":238,"released_at":29,"has_diff":224,"diff_files_changed":239,"diff_lines":29,"trac_diff_url":240,"vulnerabilities":241,"is_current":224},"1.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-keys.1.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadmin-keys\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fadmin-keys%2Ftags%2F1.0.0&new_path=%2Fadmin-keys%2Ftags%2F1.1.0",[],{"version":112,"download_url":243,"svn_tag_url":244,"released_at":29,"has_diff":224,"diff_files_changed":245,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":246,"is_current":224},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-keys.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadmin-keys\u002Ftags\u002F1.0.0\u002F",[],[]]