[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0-ZTKCK6WMQ6sCEQCWYkVYdD32mzBRsoq3TbAqkPQ1k":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":137,"fingerprints":324},"collaborate-notes","Collaborate Notes","1.0.4","glennkarlsen","https:\u002F\u002Fprofiles.wordpress.org\u002Fglennkarlsen\u002F","\u003Cp>This plugin allows you to create, share and set reminder for notes and tasks.\u003C\u002Fp>\n\u003Cp>Collaborate Notes aims to make it easier, especially for the client, to notify and collaborate with the webmaster\u002Fadmin without using email.\u003C\u002Fp>\n\u003Cp>Inspired by Google Keep.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add\u002Fedit\u002Fdelete\u002Fcomplete notes\u003C\u002Fli>\n\u003Cli>Set own reminder for notes, sending reminder through email\u003C\u002Fli>\n\u003Cli>Assigne notes to multiple users\u003C\u002Fli>\n\u003Cli>Assigned user will be notified by email\u003C\u002Fli>\n\u003Cli>Mark notes as completed. Similar to a to-do list\u003C\u002Fli>\n\u003Cli>Choose if you want to notify assigned users after editing note\u003C\u002Fli>\n\u003Cli>Log will display last edit by user and time\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Coming soon\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Media upload connected to the WordPress Media Upload.\u003C\u002Fli>\n\u003C\u002Ful>\n","Lightweight notes and tasks management. Share important notes and tasks with your webmaster, clients and users.",10,3098,94,3,"2014-12-06T18:17:00.000Z","4.0.38","3.6","",[20,21,22,23],"admin","list","to-do-list","to-do","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcollaborate-notes","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcollaborate-notes.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},1,30,84,"2026-04-04T22:20:31.127Z",[37,58,83,101,122],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":27,"downloaded":45,"rating":27,"num_ratings":27,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":55,"download_link":56,"security_score":57,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"noteflow","NoteFlow – Smart Notes Manager for WordPress Admin","1.6.0","Ankit Panchal","https:\u002F\u002Fprofiles.wordpress.org\u002Fankitmaru\u002F","\u003Cp>\u003Cstrong>NoteFlow\u003C\u002Fstrong> is a lightweight and powerful notes management plugin designed for WordPress administrators. Whether you need to jot down quick reminders, manage tasks, or organize ideas, NoteFlow makes it easy to create, organize, and manage your notes directly from your WordPress dashboard.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Simple and intuitive note creation\u003C\u002Fli>\n\u003Cli>Rich text editor with formatting options\u003C\u002Fli>\n\u003Cli>Pin important notes to the top\u003C\u002Fli>\n\u003Cli>Quick search functionality\u003C\u002Fli>\n\u003Cli>Color-coding for better organization\u003C\u002Fli>\n\u003Cli>Clean and user-friendly interface\u003C\u002Fli>\n\u003Cli>Responsive design\u003C\u002Fli>\n\u003Cli>Lightweight and optimized performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Content ideas and drafts\u003C\u002Fli>\n\u003Cli>Task management\u003C\u002Fli>\n\u003Cli>Quick reminders\u003C\u002Fli>\n\u003Cli>Team communications\u003C\u002Fli>\n\u003Cli>Project notes\u003C\u002Fli>\n\u003Cli>Editorial calendars\u003C\u002Fli>\n\u003Cli>Bug tracking\u003C\u002Fli>\n\u003Cli>Feature requests\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>NoteFlow does not collect any personal data. All notes are stored locally in your WordPress database, ensuring full compliance with GDPR and other privacy regulations.\u003C\u002Fp>\n","A simple and efficient notes manager for WordPress admin dashboard. Create, organize, and manage your notes directly from WordPress.",675,"2026-02-24T07:22:00.000Z","6.9.4","5.2","7.2",[51,52,53,54,22],"admin-notes","dashboard-notes","notes","task-management","https:\u002F\u002Fpluginstack.dev","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnoteflow.1.6.0.zip",100,{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":57,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":78,"download_link":79,"security_score":80,"vuln_count":81,"unpatched_count":27,"last_vuln_date":82,"fetched_at":29},"wp-todo","WP To Do","2.1.7","Md Delower Hossain","https:\u002F\u002Fprofiles.wordpress.org\u002Fdelower186\u002F","\u003Cp>\u003Cstrong>WP To Do\u003C\u002Fstrong> is a full-featured \u003Cstrong>to-do list\u003C\u002Fstrong> and \u003Cstrong>task management\u003C\u002Fstrong> plugin for WordPress that helps you stay organized, manage priorities, and boost productivity — all from your WordPress dashboard.\u003C\u002Fp>\n\u003Cp>Perfect for individuals, teams, and businesses, WP To Do lets you easily create, organize, and track your \u003Cstrong>tasks\u003C\u002Fstrong>, \u003Cstrong>checklists\u003C\u002Fstrong>, and \u003Cstrong>office memos\u003C\u002Fstrong> in one place. Whether you’re planning daily work, managing projects, or tracking milestones, WP To Do brings simple yet powerful \u003Cstrong>to do management\u003C\u002Fstrong> directly into your site.\u003C\u002Fp>\n\u003Cp>Stay productive, meet deadlines, and manage your workflow seamlessly — without leaving WordPress.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>✅ \u003Cstrong>Powerful Task Management\u003C\u002Fstrong>\u003Cbr \u002F>\n– Create and manage unlimited \u003Cstrong>to-do lists\u003C\u002Fstrong> and \u003Cstrong>tasks\u003C\u002Fstrong>\u003Cbr \u002F>\n– Assign priorities (Critical, High, Normal, Low)\u003Cbr \u002F>\n– Define statuses (Not Started, In Progress, In Review, Completed)\u003Cbr \u002F>\n– Add deadlines to ensure on-time completion\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Visual Workflow Tools\u003C\u002Fstrong>\u003Cbr \u002F>\n– Interactive \u003Cstrong>Kanban Board\u003C\u002Fstrong> for drag-and-drop task organization\u003Cbr \u002F>\n– \u003Cstrong>FullCalendar\u003C\u002Fstrong> integration for scheduling and timeline view\u003Cbr \u002F>\n– Track milestones and progress visually\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Collaboration & Productivity\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add comments for better team communication\u003Cbr \u002F>\n– Use color-coded tasks for quick identification\u003Cbr \u002F>\n– Manage \u003Cstrong>checklists\u003C\u002Fstrong> and \u003Cstrong>office memos\u003C\u002Fstrong> in one unified dashboard\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>User-Friendly Interface\u003C\u002Fstrong>\u003Cbr \u002F>\n– Clean, responsive design integrated into the WordPress admin\u003Cbr \u002F>\n– Lightweight, fast, and easy to use\u003C\u002Fp>\n\u003Ch3>Why Choose WP To do?\u003C\u002Fh3>\n\u003Cp>Whether you’re managing personal tasks, planning your team’s projects, or keeping track of important office notes, \u003Cstrong>WP-Todo\u003C\u002Fstrong> makes \u003Cstrong>to-do management\u003C\u002Fstrong> simple, efficient, and visually intuitive. Turn your WordPress dashboard into a productivity hub and never miss a deadline again.\u003C\u002Fp>\n\u003Ch3>Detailed Walkthrough\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fd6pcudlgMP4?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>This may have bugs and lack of many features. If you want to contribute on this project, you are more than welcome. Please fork the repository from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdelower186\u002Fwp-todo\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Custom Development & Feature Requests\u003C\u002Fh3>\n\u003Cp>Need a custom feature or want to enhance Project Manager to fit your workflow?\u003Cbr \u002F>\nI provide custom WordPress plugin development, feature requests, and tailored solutions to make your project management seamless.\u003C\u002Fp>\n\u003Ch4>Contact for Custom Development\u003C\u002Fh4>\n\u003Cp>🌐 Website: \u003Ca href=\"https:\u002F\u002Fsandalia.com.bd\u002Fapps\" rel=\"nofollow ugc\">https:\u002F\u002Fsandalia.com.bd\u002Fapps\u003C\u002Fa>\u003Cbr \u002F>\n💼 Upwork (Delower): \u003Ca href=\"https:\u002F\u002Fwww.upwork.com\u002Ffreelancers\u002Fdelower\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.upwork.com\u002Ffreelancers\u002Fdelower\u003C\u002Fa>\u003Cbr \u002F>\n💼 Linkedin (Delower): \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fin\u002Fdelower186\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.linkedin.com\u002Fin\u002Fdelower186\u002F\u003C\u002Fa>\u003Cbr \u002F>\n💼 Linkedin (Sandalia): \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Fsandalia-apps\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Fsandalia-apps\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Do You need any Data Scraping Services? Try\u003C\u002Fh4>\n\u003Cp>🌐 Marketplace: \u003Ca href=\"https:\u002F\u002Fapify.com\u002Fsandaliaapps\" rel=\"nofollow ugc\">https:\u002F\u002Fapify.com\u002Fsandaliaapps\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Try My Other Plugins\u003C\u002Fh3>\n\u003Ch4>Project Manager Pro\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fproject-manager-pro\u002F\" rel=\"ugc\">Project Manager Pro\u003C\u002Fa> is a lightweight and easy-to-use plugin that allows you to create, manage, and track projects and tasks directly within WordPress.\u003C\u002Fp>\n\u003Ch4>LLMs.txt Sitemap Manager\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fllms-txt-sitemap-manager\u002F\" rel=\"ugc\">LLMs.txt Sitemap Manager\u003C\u002Fa> automatically generates an \u003Cstrong>LLMs.txt file\u003C\u002Fstrong> — a structured, lightweight list of important public URLs from your site — specifically designed for \u003Cstrong>Large Language Models (LLMs)\u003C\u002Fstrong> like ChatGPT, Perplexity, Claude, and other AI systems.\u003C\u002Fp>\n","WP-Todo: Smart To-Do List & Task Management Plugin for WordPress",13874,74,6,"2025-10-31T17:20:00.000Z","6.8.5","6.4","7.2.24",[74,75,76,22,77],"checklist","projects","tasks","to-do-management","https:\u002F\u002Fsandalia.com.bd\u002Fapps\u002Fview_project.php?slug=wp-todo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-todo.2.1.7.zip",97,7,"2024-08-28 00:00:00",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":13,"num_ratings":81,"last_updated":93,"tested_up_to":47,"requires_at_least":94,"requires_php":18,"tags":95,"homepage":99,"download_link":100,"security_score":57,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"posts-to-do-list","Posts To-Do List","1.4.4","Stefano","https:\u002F\u002Fprofiles.wordpress.org\u002Fste_95\u002F","\u003Cp>Most people who run a multi-author blog need to tell their writers what post they should write. And so administrators send emails with a URL of the post source, the keyword for the post, any notes accompanying that. And sometimes a user notices a post that is worth writing and he wants to tell the other writers, so they have to email the administrator who will tell the other users and everyone will kill themselves in the end. The Posts To-Do List plugin allows you to get rid of that rigmarole.\u003C\u002Fp>\n\u003Cp>By a convenient box in the posts editing page, \u003Cstrong>everyone will be able to share the posts they think are worth writing. You have this little box, where you put the URL of the page where you read that great post, and the plugin will fetch the title by itself. You will then be able to change the retrieved title, suggest a keyword and add other notes, set a priority and assign the post to some user of the blog.\u003C\u002Fstrong> And if you want to leave everything blank but the title field, leaving a suggestion that anyone can catch and deepen… well, you can!\u003C\u002Fp>\n\u003Cp>No more emails to tell “You do this and that, use this keyword and don’t forget that…”. Everything can be down inside WordPress. Not only by the administrator, but by any logged in user.\u003C\u002Fp>\n\u003Cp>You, as the administrator, want everything in the power of your hand? No problem, you can \u003Cstrong>decide what user roles can add new posts to the to-do list and what user roles can delete already added items.\u003C\u002Fstrong> You want your users to stick to the post you assigned to them? You can hide the posts you have assigned to other users from their view. From a \u003Cstrong>simple stats page\u003C\u002Fstrong> it will be immediately clear how many posts you have already assigned and how many of them are still to do, so that it will be easy to understand how much your writers have done and how many posts you have still to assign. Almost every action is powered by AJAX, so that no page reloads are needed and you do not even notice it is happening, it just works.\u003C\u002Fp>\n","Share post ideas with writers, suggest them writing topics and keep track of the posts ideas with a to-do list.",60,10971,"2025-12-06T05:07:00.000Z","3.0",[96,97,98,22],"multi-author","post-management","posts","https:\u002F\u002Fwww.thecrowned.org\u002Fwordpress-plugin-posts-to-do-list","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fposts-to-do-list.1.4.5.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":33,"downloaded":109,"rating":110,"num_ratings":14,"last_updated":111,"tested_up_to":70,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":118,"download_link":119,"security_score":120,"vuln_count":32,"unpatched_count":27,"last_vuln_date":121,"fetched_at":29},"time-tracker","Time Tracker","3.2.0","Amy","https:\u002F\u002Fprofiles.wordpress.org\u002Fgermanpearls\u002F","\u003Cp>Time Tracker enables you to manage your to do lists, time worked, billable time, recurring tasks, and projects. Track your clients, projects, tasks, time, and billing information on private pages of your own website.  Don’t worry about us looking at or seeling your data as you’ll maintain your data within your own WordPress database.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cp>This plugin is an add-on and \u003Cstrong>requires either Contact Form 7 or WP Forms\u003C\u002Fstrong> plugin to work properly.\u003C\u002Fp>\n\u003Cp>One of these form plugins must be installed and activated before installing Time Tracker.\u003C\u002Fp>\n\u003Cp>Time Tracker is in no way affiliated with Contact Form 7 or WP Forms.\u003C\u002Fp>\n\u003Ch4>Time Tracker Features\u003C\u002Fh4>\n\u003Cp>Time Tracker is a freelancer’s time management tool. It keeps track of:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Clients including contact information, separate bill-to information, and how the client found you\u003C\u002Fli>\n\u003Cli>Projects and their related tasks\u003C\u002Fli>\n\u003Cli>Recurring weekly, monthly, or yearly tasks; Tasks will automatically be added to your to do list based on your chosen frequency\u003C\u002Fli>\n\u003Cli>To do list with open items, due dates, time budget, and task status\u003C\u002Fli>\n\u003Cli>Time worked including work notes and billing details\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Time Tracker helps to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>manage your open to do list, prioritizing items by due date\u003C\u002Fli>\n\u003Cli>track time spent on each task, as compared to budgeted time\u003C\u002Fli>\n\u003Cli>track which time has been billed\u003C\u002Fli>\n\u003Cli>monitor time billed vs time worked\u003C\u002Fli>\n\u003Cli>keep a log of work notes related to each task\u003C\u002Fli>\n\u003Cli>manage third party (or white label) work by organizing work by “bill to”\u003C\u002Fli>\n\u003Cli>monitor weekly and monthly time to compare against goals\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Time Tracker pages and data can be viewed by all website Editors and Administrators.\u003C\u002Fp>\n","Time Tracker enables freelancers to clients, projects, tasks (including recurring), time, billing info and more on private pages of their website.",12371,86,"2025-09-10T11:47:00.000Z","5.3","7.0",[115,116,117,102,22],"billing-hours","freelancer-tools","time-management","https:\u002F\u002Fwww.logicallytech.com\u002Fservices\u002Fwordpress-plugins\u002Ftime-tracker\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftime-tracker.3.2.0.zip",98,"2025-09-10 22:20:07",{"slug":22,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":33,"downloaded":129,"rating":57,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":18,"tags":134,"homepage":135,"download_link":136,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"To Do List","2.0","gwycon","https:\u002F\u002Fprofiles.wordpress.org\u002Fgwycon\u002F","\u003Cp>Update: As of May 2012 the To Do List Plugin has undergone a complete rewrite and is now fully compatible with the latest version of WordPress (3.4).\u003C\u002Fp>\n\u003Cp>Maintain an active to-do list for every registered user on your site! Each list is unique and is automatically displayed for the currently logged in user via the WordPress dashboard.\u003C\u002Fp>\n\u003Cp>Administrators have direct access to ALL to-do lists.\u003C\u002Fp>\n\u003Cp>Please rate the Plugin if you find it useful, thanks.\u003C\u002Fp>\n\u003Cp>See our \u003Ca href=\"http:\u002F\u002Fwww.presscoders.com\" rel=\"nofollow ugc\">site\u003C\u002Fa> for more Plugins and themes.\u003C\u002Fp>\n","Finally, a simple way to keep track of important tasks and activities! Every registered user can maintain an individual to-do list using the built-in  &hellip;",12465,2,"2012-05-22T16:33:00.000Z","3.4.2","2.7",[20,21,76,23],"http:\u002F\u002Fwww.presscoders.com\u002Fto-do-list\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fto-do-list.2.0.zip",{"attackSurface":138,"codeSignals":209,"taintFlows":268,"riskAssessment":305,"analyzedAt":323},{"hooks":139,"ajaxHandlers":167,"restRoutes":199,"shortcodes":200,"cronEvents":201,"entryPointCount":11,"unprotectedCount":11},[140,145,150,154,158,161,164],{"type":141,"name":142,"callback":143,"file":144,"line":80},"action","plugins_loaded","collaborate_notes_update_db_check","collaborate-notes.php",{"type":146,"name":147,"callback":148,"file":144,"line":149},"filter","wp_mail_content_type","closure",131,{"type":141,"name":151,"callback":152,"priority":32,"file":144,"line":153},"send_reminder_event","send_reminders",135,{"type":141,"name":147,"callback":155,"file":156,"line":157},"anonymous","includes\\class-collaborate-notes.php",32,{"type":141,"name":159,"callback":155,"file":156,"line":160},"admin_enqueue_scripts",34,{"type":141,"name":162,"callback":155,"file":156,"line":163},"admin_bar_menu",35,{"type":141,"name":165,"callback":155,"file":156,"line":166},"admin_footer",37,[168,172,175,178,181,184,187,190,193,196],{"action":169,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":171},"get_user_list",false,39,{"action":173,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":174},"get_all_notes",40,{"action":176,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":177},"add_note",41,{"action":179,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":180},"delete_note",42,{"action":182,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":183},"update_note",43,{"action":185,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":186},"get_correct_userlist",44,{"action":188,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":189},"notify_users",45,{"action":191,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":192},"add_reminder",47,{"action":194,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":195},"update_reminder",48,{"action":197,"nopriv":170,"callback":155,"hasNonce":170,"hasCapCheck":170,"file":156,"line":198},"delete_reminder",49,[],[],[202,205,207],{"hook":151,"callback":151,"file":203,"line":204},"admin\\class-collaborate-notes-admin.php",471,{"hook":151,"callback":151,"file":203,"line":206},674,{"hook":151,"callback":151,"file":203,"line":208},694,{"dangerousFunctions":210,"sqlUsage":211,"outputEscaping":252,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":267},[],{"prepared":27,"raw":212,"locations":213},18,[214,217,219,221,224,226,228,230,232,235,237,239,241,243,245,246,248,250],{"file":203,"line":215,"context":216},146,"$wpdb->get_results() with variable interpolation",{"file":203,"line":218,"context":216},177,{"file":203,"line":220,"context":216},178,{"file":203,"line":222,"context":223},253,"$wpdb->get_row() with variable interpolation",{"file":203,"line":225,"context":216},282,{"file":203,"line":227,"context":216},284,{"file":203,"line":229,"context":216},400,{"file":203,"line":231,"context":216},423,{"file":203,"line":233,"context":234},545,"$wpdb->get_var() with variable interpolation",{"file":203,"line":236,"context":234},613,{"file":203,"line":238,"context":223},634,{"file":203,"line":240,"context":234},635,{"file":203,"line":242,"context":234},713,{"file":144,"line":26,"context":244},"$wpdb->query() with variable interpolation",{"file":144,"line":110,"context":244},{"file":144,"line":247,"context":234},117,{"file":144,"line":249,"context":234},118,{"file":156,"line":251,"context":216},72,{"escaped":253,"rawEcho":254,"locations":255},8,5,[256,259,261,263,265],{"file":203,"line":257,"context":258},160,"raw output",{"file":203,"line":260,"context":258},271,{"file":203,"line":262,"context":258},356,{"file":203,"line":264,"context":258},486,{"file":203,"line":266,"context":258},624,[],[269,286,295],{"entryPoint":270,"graph":271,"unsanitizedCount":32,"severity":285},"add_note_callback (admin\\class-collaborate-notes-admin.php:368)",{"nodes":272,"edges":283},[273,278],{"id":274,"type":275,"label":276,"file":203,"line":277},"n0","source","$_POST",482,{"id":279,"type":280,"label":281,"file":203,"line":264,"wp_function":282},"n1","sink","echo() [XSS]","echo",[284],{"from":274,"to":279,"sanitized":170},"medium",{"entryPoint":287,"graph":288,"unsanitizedCount":32,"severity":285},"update_note_callback (admin\\class-collaborate-notes-admin.php:540)",{"nodes":289,"edges":293},[290,292],{"id":274,"type":275,"label":276,"file":203,"line":291},619,{"id":279,"type":280,"label":281,"file":203,"line":266,"wp_function":282},[294],{"from":274,"to":279,"sanitized":170},{"entryPoint":296,"graph":297,"unsanitizedCount":130,"severity":304},"\u003Cclass-collaborate-notes-admin> (admin\\class-collaborate-notes-admin.php:0)",{"nodes":298,"edges":302},[299,301],{"id":274,"type":275,"label":300,"file":203,"line":277},"$_POST (x2)",{"id":279,"type":280,"label":281,"file":203,"line":264,"wp_function":282},[303],{"from":274,"to":279,"sanitized":170},"low",{"summary":306,"deductions":307},"The \"collaborate-notes\" plugin, version 1.0.4, exhibits a concerning security posture primarily due to a significant number of unprotected AJAX handlers. With 10 out of 10 AJAX handlers lacking authentication checks, this presents a substantial attack surface. Any user, authenticated or not, could potentially trigger these handlers, leading to unintended actions or data exposure. The lack of nonce checks further exacerbates this risk, making it easier for attackers to forge requests.  While the plugin has no known CVEs and demonstrates good practices in avoiding dangerous functions, file operations, and external HTTP requests, these strengths are overshadowed by the fundamental security flaws in its entry point handling. The taint analysis, although limited in scope with only 3 flows, found unsanitized paths which is a red flag. The complete absence of capability checks on AJAX handlers is a major weakness.  Overall, the plugin has several critical security weaknesses that need immediate attention. The lack of known vulnerabilities in its history might be due to its obscurity or limited usage, rather than inherent security strength, given the glaring issues identified in the code analysis.",[308,310,312,315,318,320],{"reason":309,"points":11},"10 unprotected AJAX handlers",{"reason":311,"points":11},"No nonce checks on AJAX",{"reason":313,"points":314},"100% of SQL queries un-prepared",20,{"reason":316,"points":317},"3 flows with unsanitized paths",9,{"reason":319,"points":11},"No capability checks on AJAX",{"reason":321,"points":322},"38% of outputs not properly escaped",4,"2026-03-17T00:32:30.996Z",{"wat":325,"direct":358},{"assetPaths":326,"generatorPatterns":341,"scriptPaths":342,"versionParams":343},[327,328,329,330,331,332,333,334,335,336,337,338,339,340],"\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Fcollaborate-notes-admin.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Fbootstrap.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Fbootstrap-theme.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Fchosen.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Ffont-awesome.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Fdatepicker3.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fcss\u002Fjquery.timepicker.css","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Fcollaborate-notes-admin.js","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Fchosen.jquery.js","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Ftooltip.js","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Falert.js","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Fbootstrap-datepicker.js","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Fjquery.timepicker.js","\u002Fwp-content\u002Fplugins\u002Fcollaborate-notes\u002Fadmin\u002Fjs\u002Fmoment.js",[],[],[344,345,346,347,348,349,350,351,352,353,354,355,356,357],"collaborate-notes\u002Fadmin\u002Fcss\u002Fcollaborate-notes-admin.css?ver=","collaborate-notes\u002Fadmin\u002Fcss\u002Fbootstrap.css?ver=","collaborate-notes\u002Fadmin\u002Fcss\u002Fbootstrap-theme.css?ver=","collaborate-notes\u002Fadmin\u002Fcss\u002Fchosen.css?ver=","collaborate-notes\u002Fadmin\u002Fcss\u002Ffont-awesome.css?ver=","collaborate-notes\u002Fadmin\u002Fcss\u002Fdatepicker3.css?ver=","collaborate-notes\u002Fadmin\u002Fcss\u002Fjquery.timepicker.css?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Fcollaborate-notes-admin.js?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Fchosen.jquery.js?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Ftooltip.js?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Falert.js?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Fbootstrap-datepicker.js?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Fjquery.timepicker.js?ver=","collaborate-notes\u002Fadmin\u002Fjs\u002Fmoment.js?ver=",{"cssClasses":359,"htmlComments":360,"htmlAttributes":361,"restEndpoints":367,"jsGlobals":378,"shortcodeOutput":380},[],[],[362,363,364,365,366,363],"data-target=\"#add-note\"","data-toggle=\"modal\"","data-target=\"#edit-note\"","data-target=\"#delete-note\"","data-note_id\"",[368,369,370,371,372,373,374,375,376,377],"\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fuserlist","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fallnotes","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fgetnotes","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Faddnote","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fupdatenote","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fdeletenote","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fgetnote","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fgetreminders","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Faddreminder","\u002Fwp-json\u002Fcollaborate-notes\u002Fv1\u002Fdeletereminder",[379],"var collaborateNotesAdmin",[]]