[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGpzvD65HN-FYL3mgIu1O-n1WeR9Cnju5MjQ0zKc6aLA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":20,"download_link":21,"security_score":22,"vuln_count":23,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":43,"crawl_stats":33,"alternatives":50,"analysis":51,"fingerprints":153},"current-age","Current Age Plugin","1.7","WP CMS Ninja","https:\u002F\u002Fprofiles.wordpress.org\u002Fbilliardgreg\u002F","\u003Cp>This plugin allows you to show current age using the shortcode [showcurrentage month=”1″ day=”1″ year=”2000″ template=”1″] in the content area and dynamically updates based on current date. Default template is number one if none is specified.\u003C\u002Fp>\n\u003Cp>Templates:\u003C\u002Fp>\n\u003Cp>Number 1: This template just outputs the number of years.\u003Cbr \u002F>\nNumber 2: This template outputs the number of years with matching language.\u003Cbr \u002F>\nNumber 3: This template outputs the number of months with matching language.\u003Cbr \u002F>\nNumber 4: This template outputs the number of months and days with matching language.\u003Cbr \u002F>\nNumber 5: This template outputs the number of weeks and days with matching language.\u003Cbr \u002F>\nNumber 6: This template outputs the number of years, weeks and days with matching language.\u003Cbr \u002F>\nNumber 7: This template outputs the number of months and weeks with matching language\u003Cbr \u002F>\nNumber 8: This template outputs the number of days with matching language\u003Cbr \u002F>\nNumber 9: This template outputs the number of years, months and days with matching language\u003C\u002Fp>\n","This plugin shows the current age based upon date passed through shortcode . Language and template capable.",60,4109,100,6,"2025-09-29T17:57:00.000Z","6.8.5","3.0.1","",[],"http:\u002F\u002Fwww.gregwhitehead.us\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcurrent-age.zip",99,1,0,"2025-09-22 00:00:00","2026-03-15T15:16:48.613Z",[28],{"id":29,"url_slug":30,"title":31,"description":32,"plugin_slug":4,"theme_slug":33,"affected_versions":34,"patched_in_version":6,"severity":35,"cvss_score":36,"cvss_vector":37,"vuln_type":38,"published_date":25,"updated_date":39,"references":40,"days_to_patch":42},"CVE-2025-58687","current-age-plugin-cross-site-request-forgery","Current Age Plugin \u003C= 1.6 - Cross-Site Request Forgery","The Current Age Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.6","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-09-30 12:57:04",[41],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fdb753659-d132-4822-8d89-821ba0b7fba1?source=api-prod",9,{"slug":44,"display_name":7,"profile_url":8,"plugin_count":45,"total_installs":46,"avg_security_score":47,"avg_patch_time_days":42,"trust_score":48,"computed_at":49},"billiardgreg",4,680,89,86,"2026-04-04T18:00:23.852Z",[],{"attackSurface":52,"codeSignals":86,"taintFlows":104,"riskAssessment":143,"analyzedAt":152},{"hooks":53,"ajaxHandlers":78,"restRoutes":79,"shortcodes":80,"cronEvents":85,"entryPointCount":23,"unprotectedCount":24},[54,60,64,69,74],{"type":55,"name":56,"callback":57,"file":58,"line":59},"action","admin_menu","register_currentage_submenu_page","currentage.php",26,{"type":55,"name":61,"callback":62,"file":58,"line":63},"init","currentage_init",171,{"type":65,"name":66,"callback":67,"file":58,"line":68},"filter","widget_text","do_shortcode",176,{"type":55,"name":70,"callback":71,"file":72,"line":73},"admin_post_currentage_save_settings","currentage_save_settings","functions.php",39,{"type":55,"name":75,"callback":76,"file":72,"line":77},"admin_post_currentage_language_process","currentage_save_language_process",49,[],[],[81],{"tag":82,"callback":83,"file":58,"line":84},"showcurrentage","showCurrentAge",169,[],{"dangerousFunctions":87,"sqlUsage":88,"outputEscaping":90,"fileOperations":24,"externalRequests":24,"nonceChecks":102,"capabilityChecks":24,"bundledLibraries":103},[],{"prepared":24,"raw":24,"locations":89},[],{"escaped":91,"rawEcho":92,"locations":93},21,3,[94,98,100],{"file":95,"line":96,"context":97},"currentage_admin.php",74,"raw output",{"file":95,"line":99,"context":97},76,{"file":95,"line":101,"context":97},109,2,[],[105,124,134],{"entryPoint":106,"graph":107,"unsanitizedCount":24,"severity":123},"currentage_save_settings (functions.php:40)",{"nodes":108,"edges":120},[109,114],{"id":110,"type":111,"label":112,"file":72,"line":113},"n0","source","$_POST",42,{"id":115,"type":116,"label":117,"file":72,"line":118,"wp_function":119},"n1","sink","update_option() [Settings Manipulation]",43,"update_option",[121],{"from":110,"to":115,"sanitized":122},true,"low",{"entryPoint":125,"graph":126,"unsanitizedCount":24,"severity":123},"currentage_save_language_process (functions.php:50)",{"nodes":127,"edges":132},[128,130],{"id":110,"type":111,"label":112,"file":72,"line":129},52,{"id":115,"type":116,"label":117,"file":72,"line":131,"wp_function":119},53,[133],{"from":110,"to":115,"sanitized":122},{"entryPoint":135,"graph":136,"unsanitizedCount":24,"severity":123},"\u003Cfunctions> (functions.php:0)",{"nodes":137,"edges":141},[138,140],{"id":110,"type":111,"label":139,"file":72,"line":113},"$_POST (x2)",{"id":115,"type":116,"label":117,"file":72,"line":118,"wp_function":119},[142],{"from":110,"to":115,"sanitized":122},{"summary":144,"deductions":145},"The 'current-age' plugin v1.7 exhibits a generally good security posture based on the static analysis. The absence of dangerous functions, SQL injection vulnerabilities, file operations, and external HTTP requests is commendable. The plugin also demonstrates good practices with its extensive use of prepared statements for SQL queries and a high percentage of properly escaped output. The presence of nonce checks and a clean taint analysis further contributes to its security.  However, the lack of capability checks for its single shortcode is a potential area of concern, as this represents an unprotected entry point into the plugin's functionality. The vulnerability history reveals one medium-severity Cross-Site Request Forgery (CSRF) vulnerability in the past. While there are no currently unpatched vulnerabilities, this historical pattern suggests that CSRF might be an area that requires ongoing vigilance and potentially more robust handling in future updates. Overall, the plugin is relatively secure, but the absence of capability checks on the shortcode warrants attention to mitigate any potential misuse.",[146,149],{"reason":147,"points":148},"Missing capability checks on shortcode",8,{"reason":150,"points":151},"One past medium severity CSRF vulnerability",10,"2026-03-16T21:40:33.825Z",{"wat":154,"direct":159},{"assetPaths":155,"generatorPatterns":156,"scriptPaths":157,"versionParams":158},[],[],[],[],{"cssClasses":160,"htmlComments":161,"htmlAttributes":162,"restEndpoints":163,"jsGlobals":164,"shortcodeOutput":165},[],[],[],[],[],[166,167,168,169,170,171,172,173,174,175,176,177,178,179,180,181],"[showcurrentage]","[showcurrentage month=\"1\"]","[showcurrentage day=\"1\"]","[showcurrentage year=\"2000\"]","[showcurrentage template=\"1\"]","[showcurrentage month=\"1\" day=\"1\"]","[showcurrentage month=\"1\" year=\"2000\"]","[showcurrentage month=\"1\" template=\"1\"]","[showcurrentage day=\"1\" year=\"2000\"]","[showcurrentage day=\"1\" template=\"1\"]","[showcurrentage year=\"2000\" template=\"1\"]","[showcurrentage month=\"1\" day=\"1\" year=\"2000\"]","[showcurrentage month=\"1\" day=\"1\" template=\"1\"]","[showcurrentage month=\"1\" year=\"2000\" template=\"1\"]","[showcurrentage day=\"1\" year=\"2000\" template=\"1\"]","[showcurrentage month=\"1\" day=\"1\" year=\"2000\" template=\"1\"]"]