[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fD4ABAb-YkDCH45ConhZhzFkseKb58s01M6RnviKGXj0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":139,"fingerprints":222},"clicky-popular-posts-widget","Clicky Popular Posts Widget","1.2.0","Konstantin Obenland","https:\u002F\u002Fprofiles.wordpress.org\u002Fobenland\u002F","\u003Cp>This Plugin provides you with a sidebar widget to display your most popular posts.\u003C\u002Fp>\n\u003Cp>It requires a \u003Ca href=\"http:\u002F\u002Fgetclicky.com\u002F\" title=\"Clicky Website\" rel=\"nofollow ugc\">Clicky account\u003C\u002Fa> as it uses the Clicky API to determine popularity.\u003Cbr \u002F>\nSupports all public post types, per default: posts, pages and attachments.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>I will be more than happy to update the plugin with new locales, as soon as I receive them!\u003Cbr \u002F>\nCurrently available in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003C\u002Ful>\n","Display your most popular posts, pages etc. based on your Clicky stats in your sidebar.",10,6884,0,"2014-09-04T15:43:00.000Z","4.0.38","3.0","",[19,20,21,22,23],"clicky","google","seo","sidebar","widget","http:\u002F\u002Fen.obenland.it\u002Fclicky-popular-posts-widget\u002F#utm_source=wordpress&utm_medium=plugin&utm_campaign=clicky-popular-posts-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclicky-popular-posts-widget.1.2.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"obenland",13,22900,93,30,89,"2026-04-04T05:54:51.308Z",[39,62,85,103,122],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":16,"requires_php":17,"tags":53,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":60,"last_vuln_date":61,"fetched_at":28},"ad-widget","Ad Widget for WordPress","2.20.1","Broadstreet","https:\u002F\u002Fprofiles.wordpress.org\u002Fbroadstreetads\u002F","\u003Cp>This is the easiest way to place ads in your WordPress site. Just drag a widget\u003Cbr \u002F>\nto the sidebar, upload, an ad, and save.\u003C\u002Fp>\n\u003Cp>Watch a short video demo: \u003Ca href=\"https:\u002F\u002Fyoutu.be\u002FE9CC3ZWOaLU\" rel=\"nofollow ugc\">https:\u002F\u002Fyoutu.be\u002FE9CC3ZWOaLU\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Note: If you have an adblocker installed, it will prevent this widget (and parts of WordPress) from working properly.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Extremely intuitive for beginners\u003C\u002Fli>\n\u003Cli>No clunky ad management interface\u003C\u002Fli>\n\u003Cli>Easily place image banner ads\u003C\u002Fli>\n\u003Cli>Easily place Google ad tags and other ad code\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you like Ad Widget and you’re selling ads, you might like our new \u003Ca href=\"http:\u002F\u002Fbroadstreetads.com\u002Fad-platform\u002Fad-formats\u002F\" rel=\"nofollow ugc\">ad formats for publishers\u003Cbr \u002F>\nand salespeople\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You will not find an easier way to run ads on your website!\u003C\u002Fp>\n\u003Ch3>Demo\u003C\u002Fh3>\n\u003Cp>Watch a short video demo: \u003Ca href=\"https:\u002F\u002Fyoutu.be\u002FE9CC3ZWOaLU\" rel=\"nofollow ugc\">https:\u002F\u002Fyoutu.be\u002FE9CC3ZWOaLU\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Troubleshooting\u003C\u002Fh3>\n\u003Cp>The Ad Widget is a very simple plugin. If you are having trouble\u003Cbr \u002F>\nloading ads on your site, please make sure that:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You do not have an ad blocker installed (you would be amazed how often this happens). Disable it and refresh the page a few times to see if the ad appears.\u003C\u002Fli>\n\u003Cli>You don’t have CSS in your theme which is hiding images (rare, but it happens)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you have any other trouble, email kenny@broadstreetads.com – try to avoid\u003Cbr \u002F>\nthe WordPress support forums because they’re awful.\u003C\u002Fp>\n","Easily upload ad images and ad code to your sidebar. For those that don't need or want a complicated ad management system.",2000,310623,86,16,"2025-09-25T15:37:00.000Z","6.8.5",[54,20,22,55,23],"ad","tag","https:\u002F\u002Fgithub.com\u002Fbroadstreetads\u002Fwordpress-ad-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fad-widget.2.20.1.zip",73,2,1,"2024-04-26 00:00:00",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":47,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":82,"download_link":83,"security_score":84,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"search-engine-insights","Search Engine Insights for Google Search Console","2.6.5","Alin Marcu","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeconf\u002F","\u003Ch3>Google Search Console site verification\u003C\u002Fh3>\n\u003Cp>Search Engine Insights adds your website to Google Search Console and helps you verify site ownership:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Detects your default WordPress Site URL and gives you the option to add it to Search Console. \u003C\u002Fli>\n\u003Cli>Automatically insert Google Search Console metatag to verify site ownership.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>View Google Search Console stats on your WordPress dashboard\u003C\u002Fh3>\n\u003Cp>Search Engine Insights will help you understand your site’s search engine traffic and performance, by displaying key stats in a widget, on your WordPress dashboard.\u003C\u002Fp>\n\u003Cp>In addition to a set of general Search Console reports, per Page and Post statistics will allow further segmentation of your search engine data, providing search engine insights for your web pages.\u003C\u002Fp>\n\u003Ch4>Google Search Console stats on your admin dashboard\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Four reports with overview stats about Impressions, Clicks, Position and Click Through Rate \u003C\u002Fli>\n\u003Cli>Location statistics with insights about your search engine performance by country   \u003C\u002Fli>\n\u003Cli>Page stats which will show you how your web pages are performing\u003C\u002Fli>\n\u003Cli>Keywords report useful for your keywords research and strategy on search engines\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>In-depth Google Search Console stats for your web pages\u003C\u002Fh4>\n\u003Cp>Individual reports for each web page on your site with per page details as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Impressions and Clicks stats\u003C\u002Fli>\n\u003Cli>Position and Click Through Rate reports\u003C\u002Fli>\n\u003Cli>Location, Pages, and Keywords statistics\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In addition, you can control who can view specific search console reports by setting permissions based on user roles.\u003C\u002Fp>\n\u003Ch4>Further reading\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclicky-analytics\u002F\" rel=\"ugc\">Clicky Analytics\u003C\u002Fa> – An easy to use and cookie-free analytics service for website tracking.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fanalytics-insights\u002F\" rel=\"ugc\">Analytics Insights\u003C\u002Fa> – Connects Google Analytics with your WordPress site.\u003C\u002Fli>\n\u003C\u002Ful>\n","Verify site ownership on Google Search Console! Analyze the Google Search Console stats, to see your site's performance on Google Search.",83459,80,4,"2026-01-04T10:48:00.000Z","6.9.4","3.5","5.6",[78,79,80,81,21],"google-search-console","search-console","search-console-dashboard","search-console-widget","https:\u002F\u002Fdeconf.com\u002Fsearch-engine-insights\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-engine-insights.2.6.5.zip",100,{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":84,"num_ratings":59,"last_updated":95,"tested_up_to":96,"requires_at_least":97,"requires_php":17,"tags":98,"homepage":101,"download_link":102,"security_score":84,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"top-commentators-widget","Top Commentators Widget","1.7","Lorna Timbah","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebgrrrl\u002F","\u003Cp>This plugin creates a widget to show the top commentators in your WP site. Always go back to the Widget settings after each version update to Save your settings. Demo can be found at http:\u002F\u002Fdemo.webgrrrl.net\u003C\u002Fp>\n\u003Cp>The Top Commentators Widget plugin is adapted from Show Top Commentators plugin at Personal Financial Advice, this widget is easier to manage via the control form (no need to edit the PHP file); additional options are also available to make it more flexible. Read the FAQ section on how to customize the widget. Read the Changelog as well as http:\u002F\u002Fwebgrrrl.net\u002Ftags\u002Ftcw for the latest news on this widget.\u003C\u002Fp>\n\u003Cp>This widget is extensively tested with the following settings: Google Chrome 13.0.782.215 m, PHP 5.2.13, Apache 2.2.15 (Win32), MySQL 5.0.51a, WordPress 3.2.1. Further testing and bug report on this widget is greatly welcomed and appreciated.\u003C\u002Fp>\n","Adds a sidebar widget to show the top commentators in your WP site. Demo: http:\u002F\u002Fdemo.webgrrrl.net",200,156008,"2025-12-20T13:00:00.000Z","6.6.5","2.8",[99,100,21,22,23],"comments","gravatar","http:\u002F\u002Fwebgrrrl.net\u002Farchives\u002Fmy-top-commentators-widget-quick-dirty.htm","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftop-commentators-widget.1.7.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":84,"downloaded":111,"rating":112,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":16,"requires_php":17,"tags":116,"homepage":118,"download_link":119,"security_score":120,"vuln_count":60,"unpatched_count":60,"last_vuln_date":121,"fetched_at":28},"search-google","Search by Google","1.9","webvitaly","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebvitaly\u002F","\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fwordpress\u002Fplugins\u002Fsearch-google\u002F\" title=\"Search by Google\" rel=\"nofollow ugc\">Search by Google\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fdonate\u002F\" title=\"Donate\" rel=\"nofollow ugc\">Donate\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fwordpress\u002Fplugins\u002F\" title=\"WordPress plugins\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>“Search by Google” plugin adds Google search form widget. It helps user to search on site using Google.\u003C\u002Fp>\n\u003Ch4>Widget options:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>“Title” (title of the widget);\u003C\u002Fli>\n\u003Cli>“Submit button text” (if left blank than “Google search” text will be used);\u003C\u002Fli>\n\u003Cli>“Search on site” (if left blank than Google will search on current site);\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Useful:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpage-list\u002F\" title=\"list of pages with shortcodes\" rel=\"ugc\">“Page-list” – show list of pages with shortcodes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fiframe\u002F\" title=\"embed content\" rel=\"ugc\">“Iframe” – embed content\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fweb-profile.net\u002Fwordpress\u002Fplugins\u002F\" title=\"WordPress Pro plugins\" rel=\"nofollow ugc\">WordPress Pro plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Search by Google widget.",29317,96,9,"2020-09-05T15:27:00.000Z","5.5.18",[20,117,22,23],"search","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch-google\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-google.1.9.zip",63,"2025-09-05 00:00:00",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":13,"num_ratings":13,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":17,"tags":135,"homepage":137,"download_link":138,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"amikelive-adsense-widget","Amikelive Adsense Widget","0.5","mikaelfs","https:\u002F\u002Fprofiles.wordpress.org\u002Fmikaelfs\u002F","\u003Cp>Amikelive Adsense Widget was originally Google Adsense Sidebar Widget accessible at \u003Ca href=\"http:\u002F\u002Ftech.amikelive.com\" title=\"Amikelive Tech\" rel=\"nofollow ugc\">Amikelive Tech\u003C\u002Fa>\u003Cbr \u002F>\nthat has been rewritten to comply with WordPress 2.8 coding style.\u003C\u002Fp>\n\u003Cp>WordPress users who want to display Google Adsense on the sidebar or widget area of their blogs without much hassle can use this plugin.\u003Cbr \u002F>\nOnly by configuring the plugin through the widget interface, everything is ready to rock and you will just wait for some ad revenue to flow\u003Cbr \u002F>\ninto your wallet.\u003C\u002Fp>\n\u003Cp>This plugin is licensed under GPLv2.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>If you want to report some malfunction of the plugin or contribute some ideas or features to be included in future releases, you\u003Cbr \u002F>\ncan post it at \u003Ca href=\"http:\u002F\u002Ftech.amikelive.com\u002Fnode-365\u002Fsidebar-adsense-widget-is-now-on-wordpress\u002F\" title=\"Amikelive Adsense Support Thread\" rel=\"nofollow ugc\">Amikelive Adsense Support Thread\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Other questions related to the installations will be better posted at WordPress forum since other users might have the solution for\u003Cbr \u002F>\nyour problem.\u003C\u002Fp>\n","This plugin enables Google adsense display on the sidebar or widget area only by activating and configuring the widget.",90,24684,"2010-07-05T14:53:00.000Z","3.0.5","2.8.0",[136,20,22,23],"adsense","http:\u002F\u002Ftech.amikelive.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Famikelive-adsense-widget.zip",{"attackSurface":140,"codeSignals":152,"taintFlows":207,"riskAssessment":208,"analyzedAt":221},{"hooks":141,"ajaxHandlers":148,"restRoutes":149,"shortcodes":150,"cronEvents":151,"entryPointCount":13,"unprotectedCount":13},[142],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","widgets_init","Clicky_Popular_Posts_Widget_Init","clicky-popular-posts-widget.php",285,[],[],[],[],{"dangerousFunctions":153,"sqlUsage":154,"outputEscaping":156,"fileOperations":13,"externalRequests":60,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":206},[],{"prepared":13,"raw":13,"locations":155},[],{"escaped":157,"rawEcho":158,"locations":159},18,26,[160,163,165,167,169,171,173,175,176,178,180,181,183,185,186,188,190,191,193,194,196,197,199,201,203,204],{"file":146,"line":161,"context":162},99,"raw output",{"file":146,"line":164,"context":162},116,{"file":146,"line":166,"context":162},121,{"file":146,"line":168,"context":162},127,{"file":146,"line":170,"context":162},132,{"file":146,"line":172,"context":162},202,{"file":146,"line":174,"context":162},203,{"file":146,"line":174,"context":162},{"file":146,"line":177,"context":162},207,{"file":146,"line":179,"context":162},208,{"file":146,"line":179,"context":162},{"file":146,"line":182,"context":162},212,{"file":146,"line":184,"context":162},213,{"file":146,"line":184,"context":162},{"file":146,"line":187,"context":162},217,{"file":146,"line":189,"context":162},218,{"file":146,"line":189,"context":162},{"file":146,"line":192,"context":162},225,{"file":146,"line":192,"context":162},{"file":146,"line":195,"context":162},226,{"file":146,"line":195,"context":162},{"file":146,"line":198,"context":162},228,{"file":146,"line":200,"context":162},234,{"file":146,"line":202,"context":162},235,{"file":146,"line":202,"context":162},{"file":146,"line":205,"context":162},238,[],[],{"summary":209,"deductions":210},"The \"clicky-popular-posts-widget\" plugin v1.2.0 presents a generally positive security posture based on the static analysis. The absence of any identified entry points like AJAX handlers, REST API routes, shortcodes, or cron events significantly reduces the potential attack surface. Furthermore, the code signals show no dangerous functions, no raw SQL queries, and no file operations, all of which are strong indicators of secure coding practices. The fact that all SQL queries use prepared statements is particularly commendable.\n\nHowever, a significant concern arises from the low percentage of properly escaped output (41%). This suggests a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data or data from external sources may be rendered directly in the browser without sufficient sanitization. The plugin also performs an external HTTP request, which, while not inherently insecure, could become a vector for issues if the external resource is compromised or malicious. The lack of nonce checks and capability checks on potential, albeit currently non-existent, entry points, and the absence of taint analysis data, mean that the full extent of potential risks, especially regarding XSS, cannot be definitively assessed without deeper code inspection.\n\nThe vulnerability history is remarkably clean, with no known CVEs recorded for this plugin. This is a strong positive signal, indicating a history of responsible development and maintenance. The absence of past vulnerabilities, combined with the generally good static analysis results (excluding output escaping), suggests that the developers are likely aware of security best practices. Nevertheless, the high proportion of unescaped output remains a critical weakness that could lead to severe security incidents.",[211,214,216,219],{"reason":212,"points":213},"Low output escaping percentage (41%)",8,{"reason":215,"points":59},"External HTTP request present",{"reason":217,"points":218},"No nonce checks found",5,{"reason":220,"points":218},"No capability checks found","2026-03-16T23:59:46.727Z",{"wat":223,"direct":228},{"assetPaths":224,"generatorPatterns":225,"scriptPaths":226,"versionParams":227},[],[],[],[],{"cssClasses":229,"htmlComments":230,"htmlAttributes":232,"restEndpoints":235,"jsGlobals":236,"shortcodeOutput":237},[4],[231],"\u003C!-- \u003C?php echo $top_posts->get_error_message(); ?> -->",[233,234],"id=\"clicky-popular-posts-widget\"","name=\"clicky-popular-posts-widget\"",[],[],[]]