[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fvSO0NStxFRhFgRZHItiSEApta5jWW4qPl4UO081oF5o":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":137,"fingerprints":232},"dashboard-option-menu-customize","Dashboard Option Menu Customize","1.1.1","gqevu6bsiz","https:\u002F\u002Fprofiles.wordpress.org\u002Fgqevu6bsiz\u002F","\u003Cp>Hide the options and help.\u003Cbr \u002F>\nChange the display to a different user role.\u003C\u002Fp>\n\u003Ch3>日本語でのご説明\u003C\u002Fh3>\n\u003Cp>このプラグインは、ダッシュボードの表示オプションとお知らせのタブを\u003Cbr \u002F>\nユーザーの権限別に非表示にすることができるプラグインです。\u003C\u002Fp>\n","Customization options and help",10,6496,0,"2013-05-16T05:10:00.000Z","3.5.2","3.4.2","",[19,20,21,22,23],"admin","dashboard","menu","option","options","http:\u002F\u002Fgqevu6bsiz.chicappa.jp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdashboard-option-menu-customize.1.1.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":11,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},46850,87,183,70,"2026-04-04T07:07:15.822Z",[37,53,74,94,112],{"slug":38,"name":39,"version":40,"author":7,"author_profile":8,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":17,"tags":50,"homepage":51,"download_link":52,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"screen-options-and-help-show-customize","Screen Options and Help Show Customize","1.3.3","\u003Cp>Set display options and getting help, and set the default page for almost all.\u003Cbr \u002F>\nFurther change the display for each user role.\u003Cbr \u002F>\nWith Multisite Supported.\u003C\u002Fp>\n\u003Ch3>日本語でのご説明\u003C\u002Fh3>\n\u003Cp>このプラグインは、表示オプションとヘルプタブの非表示設定ができます。\u003Cbr \u002F>\nダッシュボード以外にも、投稿やカテゴリ、固定ページなどの\u003Cbr \u002F>\nページの表示オプションとヘルプの表示設定が可能です。\u003C\u002Fp>\n","Customization of the Screen options and Help.",100,13117,94,3,"2015-05-13T13:33:00.000Z","4.2.39","3.7.3",[19,20,21,22,23],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fscreen-options-and-help-show-customize\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscreen-options-and-help-show-customize.1.3.3.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":34,"downloaded":61,"rating":62,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":72,"download_link":73,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"restore-columns","Restore Columns","1.00","Flector","https:\u002F\u002Fprofiles.wordpress.org\u002Fflector\u002F","\u003Cp>In WordPress 3.8, the setting that controlled the number of displayed columns was removed from the «\u003Cstrong>Screen Options\u003C\u002Fstrong>» section of the Dashboard. From now on, WordPress decides how many columns it should display depending on the size of the browser window. This is convenient for mobile use, but not for a web browser maximized to the entire size of a 22-27 inch monitor, since WordPress always shows 4 columns in this case – even if only 2 widgets are shown.\u003C\u002Fp>\n\u003Cp>This plugin restores the possibility to control the «\u003Cstrong>Number of Columns\u003C\u002Fstrong>» parameter in the «\u003Cstrong>Screen Options\u003C\u002Fstrong>» section of the Dashboard.\u003C\u002Fp>\n\u003Cp>PS Please note that WordPress doesn’t allow you to select more than 2 columns if your browser window is not maximized.\u003C\u002Fp>\n\u003Cp>If you liked my plugin, please \u003Cstrong>rate\u003C\u002Fstrong> it.\u003C\u002Fp>\n","The plugin restores the possibility to select the number of columns displayed on the dashboard.",3153,96,4,"2020-04-02T16:10:00.000Z","5.4.19","3.8","5.3",[19,20,69,70,71],"dashboard-columns","screen-layout","screen-options","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frestore-columns\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestore-columns.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":13,"num_ratings":13,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":92,"download_link":93,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"sticky-postbox","Sticky Postbox","1.3.0","Enrico Sorcinelli","https:\u002F\u002Fprofiles.wordpress.org\u002Fenricosorcinelli\u002F","\u003Cp>\u003Cstrong>Sticky Postbox\u003C\u002Fstrong> is a piece of code written few years ago as exercise to learn how WordPress handles administration meta boxes’s availables statuses (closed, hidden and sortings).\u003C\u002Fp>\n\u003Cp>This very lightweight plugin adds the \u003Cem>sticky\u003C\u002Fem> feature to administration meta boxes allowing them to be sticky at top right corner of the browser window.\u003C\u002Fp>\n\u003Cp>Only one meta box can be sticky at once, so a new sticky meta box unstick the current one (if there is one).\u003C\u002Fp>\n\u003Ch3>Basic Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Per-user settings.\u003C\u002Fli>\n\u003Cli>Multisite support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>Once the plugin is installed and activated you can sticky administration meta boxes using sticky icon (it appears on the top right corner of each box).\u003C\u002Fp>\n\u003Ch3>API\u003C\u002Fh3>\n\u003Ch4>Constants\u003C\u002Fh4>\n\u003Cp>You can use define following constants in your \u003Cem>wp-config.php\u003C\u002Fem> file.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>STICKY_POSTBOX_DEBUG\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Turn on debug messages (also \u003Ccode>WP_DEBUG\u003C\u002Fcode> has to be \u003Ccode>true\u003C\u002Fcode>).\u003Cbr \u002F>\nDefault to \u003Ccode>false\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>STICKY_POSTBOX_GLOBAL_OPTIONS\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In a Multisite installation, allows to shares user’s sticky meta boxes settings across all his sites. For example, if you sticky \u003Cem>Publish\u003C\u002Fem> box in editing Pages in a specific site, it will be sticky on all Pages of all sites.\u003Cbr \u002F>\nDefault to \u003Ccode>false\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>STICKY_POSTBOX_AUTOENABLE\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default if the plugin has been activated, it starts automatically.\u003Cbr \u002F>\nDefine to \u003Ccode>false\u003C\u002Fcode> if you want to init it manually, for example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002F\u002F Activate manually the plugin once all plugin have been loaded.\nadd_action( 'plugins_loaded', function() {\n    \\Sticky_Postbox::get_instance( \n        array(\n            'debug'          => WP_DEBUG,\n            'global_options' => false,\n        )\n    );\n} );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Hooks\u003C\u002Fh4>\n\u003Cp>Currently the plugin doesn’t have actions or filters.\u003C\u002Fp>\n","Add sticky feature to administration meta boxes.",20,1176,"2022-07-13T15:38:00.000Z","6.0.11","4.4","5.2.4",[89,20,23,90,91],"administration","post","sticky","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsticky-postbox","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsticky-postbox.1.3.0.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":11,"downloaded":102,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":103,"requires_at_least":104,"requires_php":17,"tags":105,"homepage":109,"download_link":110,"security_score":43,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":111},"easy-wp-admin-customizer","Easy WP Admin Customizer","0.1.1","Vinicius Lourenco","https:\u002F\u002Fprofiles.wordpress.org\u002Fviniciuslourenco\u002F","\u003Cp>Now you have a quickly and simple way to clean your admin area and create your own custom widget box.\u003C\u002Fp>\n\u003Cp>It’s also a great way to keep your branding or logo in the admin dashboards of the site that you have created.\u003C\u002Fp>\n\u003Cp>Developed by a brazilian developer, to the whole world! o\u002F\u003C\u002Fp>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>https:\u002F\u002Fgithub.com\u002FViLourenco\u002FEasyWPAdminCustomizer\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Easy WP Admin Customizer is free software: you can redistribute it and\u002For modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.\u003C\u002Fp>\n\u003Cp>Easy WP Admin Customizer is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License along with Easy WP Admin Customizer. If not, see \u003Ca href=\"http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\u003C\u002Fa>.\u003C\u002Fp>\n","Faster and simple way to clean and customize your admin dashboard!",2022,"4.0.38","3.0",[19,106,107,108,23],"cleaning-dashboard","custom-widget","customizer","http:\u002F\u002Fblog.vilourenco.com.br","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-wp-admin-customizer.zip","2026-03-15T10:48:56.248Z",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":122,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":132,"download_link":133,"security_score":134,"vuln_count":135,"unpatched_count":13,"last_vuln_date":136,"fetched_at":28},"redux-framework","Redux Framework","4.5.10","David Anderson \u002F Team Updraft","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidanderson\u002F","\u003Cp>Redux was built by developers for developers. We save you months if not years in your development time. Everything we do is to help innovation in the industry.\u003C\u002Fp>\n\u003Ch4>♥️ What the Plugin does?\u003C\u002Fh4>\n\u003Cp>Redux is a simple, genuinely extensible, and fully responsive options framework for WordPress themes and plugins. Built on the WordPress Settings API; Redux supports many field types, custom error handling, custom fields & validation types, and import\u002Fexport functionality.\u003C\u002Fp>\n\u003Cp>But what does Redux actually DO? We don’t believe that theme and plugin developers should have to reinvent the wheel every time they start work on a project. Redux simplifies the development cycle by providing a streamlined, extensible framework for developers to build on. Through a simple, well-documented config file, third-party developers can build out an options panel limited only by their imagination in a fraction of the time it would take to build from the ground up!\u003C\u002Fp>\n\u003Ch4>🚀 What fields does Redux offer?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Accordion\u003C\u002Fli>\n\u003Cli>ACE Editor\u003C\u002Fli>\n\u003Cli>Background\u003C\u002Fli>\n\u003Cli>Border\u003C\u002Fli>\n\u003Cli>Box Shadow\u003C\u002Fli>\n\u003Cli>Button Set\u003C\u002Fli>\n\u003Cli>Checkbox \u002F Multi-Check\u003C\u002Fli>\n\u003Cli>Color (WordPress Native)\u003C\u002Fli>\n\u003Cli>Color Gradient\u003C\u002Fli>\n\u003Cli>Color Palette\u003C\u002Fli>\n\u003Cli>Color RGBA\u003C\u002Fli>\n\u003Cli>Color Scheme\u003C\u002Fli>\n\u003Cli>Content\u003C\u002Fli>\n\u003Cli>Custom Fonts\u003C\u002Fli>\n\u003Cli>Customizer\u003C\u002Fli>\n\u003Cli>Date\u003C\u002Fli>\n\u003Cli>Date\u002FTime\u003C\u002Fli>\n\u003Cli>Dimensions (Height\u002FWidth)\u003C\u002Fli>\n\u003Cli>Divide (Divider)\u003C\u002Fli>\n\u003Cli>Editor (WordPress Native)\u003C\u002Fli>\n\u003Cli>Gallery (WordPress Native)\u003C\u002Fli>\n\u003Cli>Google Maps\u003C\u002Fli>\n\u003Cli>Icon Select\u003C\u002Fli>\n\u003Cli>Image Select (Patterns\u002FPresets)\u003C\u002Fli>\n\u003Cli>Import\u002FExport\u003C\u002Fli>\n\u003Cli>Info (Header\u002FNotice)\u003C\u002Fli>\n\u003Cli>JS Button\u003C\u002Fli>\n\u003Cli>Link Color\u003C\u002Fli>\n\u003Cli>Media (WordPress Native)\u003C\u002Fli>\n\u003Cli>Metaboxes\u003C\u002Fli>\n\u003Cli>Multi Media\u003C\u002Fli>\n\u003Cli>Multi-Text\u003C\u002Fli>\n\u003Cli>Palette\u003C\u002Fli>\n\u003Cli>Password\u003C\u002Fli>\n\u003Cli>Radio (w\u002F WordPress Data)\u003C\u002Fli>\n\u003Cli>Raw (HTML\u002FPHP\u002FMarkDown)\u003C\u002Fli>\n\u003Cli>Repeater\u003C\u002Fli>\n\u003Cli>Section (Indent and Group Fields)\u003C\u002Fli>\n\u003Cli>Select (Select\u002FMulti-Select w\u002F Select2 & WordPress Data)\u003C\u002Fli>\n\u003Cli>Select Image\u003C\u002Fli>\n\u003Cli>Slider (Drag a Handle)\u003C\u002Fli>\n\u003Cli>Slides (Multiple Images, Titles, and Descriptions)\u003C\u002Fli>\n\u003Cli>Social Profiles\u003C\u002Fli>\n\u003Cli>Sortable (Drag\u002FDrop Checkbox\u002FInput Fields)\u003C\u002Fli>\n\u003Cli>Sorter (Drag\u002FDrop Manager – Works great for content blocks)\u003C\u002Fli>\n\u003Cli>Spacing (Margin\u002FPadding\u002FAbsolute)\u003C\u002Fli>\n\u003Cli>Spinner\u003C\u002Fli>\n\u003Cli>Switch\u003C\u002Fli>\n\u003Cli>Tabbed\u003C\u002Fli>\n\u003Cli>Taxonomy Metaboxes\u003C\u002Fli>\n\u003Cli>Text\u003C\u002Fli>\n\u003Cli>Textarea\u003C\u002Fli>\n\u003Cli>Typography\u003C\u002Fli>\n\u003Cli>User Profile Metaboxes\u003C\u002Fli>\n\u003Cp> * The most advanced typography module complete with preview, Google fonts, and auto-css output!\u003C\u002Fp>\n\u003Cli>User Profile Metaboxes\u003C\u002Fli>\n\u003Cli>Widget Areas (Classic Widgets only)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🎉Additional Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Full value escaping\u003C\u002Fli>\n\u003Cli>Required – Link visibility from parent fields. Set this to affect the visibility of the field on the parent’s value. Fully nested with multiple required parents possible.\u003C\u002Fli>\n\u003Cli>Output CSS Automatically – Redux generates CSS and the appropriate Google Fonts stylesheets for you on select fields. You need to only specify the CSS selector to apply the CSS to (limited to certain fields).\u003C\u002Fli>\n\u003Cli>Compiler integration! A custom hook runs when any fields with the argument `compile => true` are changed.\u003C\u002Fli>\n\u003Cli>Field validation and sanitization\u003C\u002Fli>\n\u003Cli>Field and section disabling\u003C\u002Fli>\n\u003Cli>Oh, and did we mention a fully integrated Google Fonts setup that will make you so happy you’ll want to cry?\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>👍 BE A CONTRIBUTOR\u003C\u002Fh4>\n\u003Cp>If you want to help with translations, \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fredux-framework\" rel=\"nofollow ugc\">go to the Translation Portal at translate.wordpress.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You can also contribute code via our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002F\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>. Be sure to use our develop branch to submit pull requests.\u003C\u002Fp>\n\u003Ch4>📝 Documentation and Support\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>We have extremely extensive docs. Please visit [https:\u002F\u002Fdevs.redux.io\u002F](https:\u002F\u002Fdevs.redux.io). If that doesn’t solve your issue, search [the issue tracker on GitHub](https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002Fissues). If you can’t locate any topics that pertain to your particular problem, [post a new issue](https:\u002F\u002Fgithub.com\u002Freduxframework\u002Fredux-framework\u002Fissues\u002Fnew) for it. Before you submit an issue, please read [our contributing requirements](https:\u002F\u002Fgithub.com\u002Fredux-framework\u002Fredux-framework\u002Fblob\u002Fmaster\u002FCONTRIBUTING.md). We build on the dev version and push it to WordPress.org when we confirm Redux is stable and ready for release.\u003C\u002Fli>\n\u003Cli>If you have additional questions, reach out to us at support@redux.io\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>⚡ Like the Redux Plugin?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Follow us on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Freduxframework\" rel=\"nofollow ugc\">Facebook 💬\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rate us 5 ⭐ stars\u003C\u002Fstrong> on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fredux-framework\u002Freviews\u002F?filter=5\u002F#new-post\" rel=\"ugc\">WordPress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Follow us on Twitter 🐦: \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Freduxframework\" rel=\"nofollow ugc\">@ReduxFramework\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🔐 Privacy\u003C\u002Fh4>\n\u003Cp>Redux does not interact with end users on your website. If a product is using Redux, the option panel will cease to function without Redux.\u003C\u002Fp>\n\u003Cp>For more details on our privacy policy: \u003Ca href=\"https:\u002F\u002Fredux.io\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fredux.io\u002Fprivacy\u003C\u002Fa>\u003Cbr \u002F>\nFor more details on our terms and conditions: \u003Ca href=\"https:\u002F\u002Fredux.io\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fredux.io\u002Fterms\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>NOTE: Redux is not intended to be used on its own. It requires a config file provided by a third-party theme or plugin developer to actually do anything cool!\u003C\u002Fp>\n","Redux is a simple, truly extensible, and fully responsive options framework for WordPress themes and plugins. It ships with an integrated demo.",1000000,31507478,88,272,"2026-01-07T21:08:00.000Z","6.9.4","5.0","7.4",[19,23,129,130,131],"options-framework","plugin-options","theme-options","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fredux-framework","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fredux-framework.4.5.10.zip",89,6,"2025-12-12 00:00:00",{"attackSurface":138,"codeSignals":167,"taintFlows":194,"riskAssessment":223,"analyzedAt":231},{"hooks":139,"ajaxHandlers":163,"restRoutes":164,"shortcodes":165,"cronEvents":166,"entryPointCount":13,"unprotectedCount":13},[140,146,151,155,159],{"type":141,"name":142,"callback":143,"priority":11,"file":144,"line":145},"filter","plugin_action_links","dashboard_option_menu_customize_plugin_setting","dashboard-option-menu-customize.php",40,{"type":147,"name":148,"callback":149,"file":144,"line":150},"action","admin_menu","dashboard_option_menu_customize_add_menu",55,{"type":141,"name":152,"callback":153,"file":144,"line":154},"admin_footer_text","dashboard_option_menu_customize_admin_footer_text",62,{"type":147,"name":156,"callback":157,"file":144,"line":158},"screen_options_show_screen","dashboard_option_menu_customize_screen_option_add",293,{"type":147,"name":160,"callback":161,"file":144,"line":162},"admin_head","dashboard_option_menu_customize_show",301,[],[],[],[],{"dangerousFunctions":168,"sqlUsage":169,"outputEscaping":171,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":193},[],{"prepared":13,"raw":13,"locations":170},[],{"escaped":13,"rawEcho":172,"locations":173},11,[174,177,179,181,183,184,186,188,190,191,192],{"file":144,"line":175,"context":176},104,"raw output",{"file":144,"line":178,"context":176},108,{"file":144,"line":180,"context":176},118,{"file":144,"line":182,"context":176},125,{"file":144,"line":182,"context":176},{"file":144,"line":185,"context":176},134,{"file":144,"line":187,"context":176},137,{"file":144,"line":189,"context":176},143,{"file":144,"line":189,"context":176},{"file":144,"line":189,"context":176},{"file":144,"line":189,"context":176},[],[195,215],{"entryPoint":196,"graph":197,"unsanitizedCount":213,"severity":214},"dashboard_option_menu_customize_setting (dashboard-option-menu-customize.php:60)",{"nodes":198,"edges":210},[199,204],{"id":200,"type":201,"label":202,"file":144,"line":203},"n0","source","$_POST",78,{"id":205,"type":206,"label":207,"file":144,"line":208,"wp_function":209},"n1","sink","update_option() [Settings Manipulation]",92,"update_option",[211],{"from":200,"to":205,"sanitized":212},false,1,"low",{"entryPoint":216,"graph":217,"unsanitizedCount":213,"severity":214},"\u003Cdashboard-option-menu-customize> (dashboard-option-menu-customize.php:0)",{"nodes":218,"edges":221},[219,220],{"id":200,"type":201,"label":202,"file":144,"line":203},{"id":205,"type":206,"label":207,"file":144,"line":208,"wp_function":209},[222],{"from":200,"to":205,"sanitized":212},{"summary":224,"deductions":225},"The 'dashboard-option-menu-customize' v1.1.1 plugin exhibits a mixed security posture. On the positive side, the plugin reports zero AJAX handlers, REST API routes, shortcodes, and cron events, resulting in a very small attack surface.  Furthermore, there are no known vulnerabilities (CVEs) associated with this plugin, and all SQL queries appear to use prepared statements, which is excellent practice for preventing SQL injection.\n\nHowever, significant concerns arise from the static analysis. The most alarming finding is that 100% of the 11 identified output points are not properly escaped. This creates a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, where malicious scripts could be injected and executed in the browser of users viewing the dashboard. Additionally, the taint analysis revealed two flows with unsanitized paths, indicating potential issues with how file paths or other sensitive data are handled. While these are not classified as critical or high severity in the provided data, the presence of unsanitized paths is a significant security weakness that needs attention.\n\nThe absence of any recorded vulnerabilities in the history is a positive sign, suggesting the plugin may have been developed with security in mind or has not yet been widely targeted. Nevertheless, the unescaped output and unsanitized paths present immediate and tangible risks that outweigh the clean vulnerability history. The plugin needs urgent attention to address the XSS and path sanitization issues to improve its overall security.",[226,229],{"reason":227,"points":228},"Output not properly escaped",5,{"reason":230,"points":63},"Flows with unsanitized paths","2026-03-17T00:18:14.430Z",{"wat":233,"direct":238},{"assetPaths":234,"generatorPatterns":235,"scriptPaths":236,"versionParams":237},[],[],[],[],{"cssClasses":239,"htmlComments":243,"htmlAttributes":244,"restEndpoints":247,"jsGlobals":248,"shortcodeOutput":249},[240,241,242],"columns-2","postbox-container","stuffbox",[],[245,246],"name=\"update[]\"","name=\"sett\"",[],[],[]]