[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fvdXGcJkXHDDBkzstsVzCtUHlSNR31P1TsWIeQXO0jD8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":61,"crawl_stats":38,"alternatives":65,"analysis":161,"fingerprints":253},"dashboard-to-do-list","Dashboard To-Do List","1.3.2","Andrew","https:\u002F\u002Fprofiles.wordpress.org\u002Farapps92\u002F","\u003Cp>Are you a web designer or developer? Or are you creating a plugin or a theme? Are you finding hard to keep track of your tasks or your notepad is just untidy?\u003C\u002Fp>\n\u003Cp>Add this useful tool to your WordPress website, create a to-do list from within the main Admin Dashboard and display it on your website.\u003C\u002Fp>\n\u003Cp>Keep your list in one place and specific to your website\u002Fproject.\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easily edit your To-Do list from the Admin Dashboard.\u003C\u002Fli>\n\u003Cli>Allow Editors to view and edit the dashboard To-Do list widget as well as Administrators.\u003C\u002Fli>\n\u003Cli>Display the To-Do list as a floating widget on the frontend of your website.\u003C\u002Fli>\n\u003Cli>Choose the position of the floating widget.\u003C\u002Fli>\n\u003Cli>Restrict the visibility of the floating widget to logged in Administrators and\u002For Editors only.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Simply install and activate the plugin, open your Admin Dashboard and write your list.\u003C\u002Fp>\n","A dashboard to-do list widget with the option to show the to-do list on the website. This is a great tool for web developers building a new website.",1000,21915,100,8,"2025-12-08T11:23:00.000Z","6.9.4","4.0","5.6",[20,21,22,23,24],"dashboard-widget","tasks","to-do","todo","todo-list","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdashboard-to-do-list.1.3.2.zip",99,2,0,"2024-06-06 00:00:00","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2024-35723","dashboard-to-do-list-missing-authorization-via-ardtdwwidgetsetup","Dashboard To-Do List \u003C= 1.2.0 - Missing Authorization via ardtdw_widgetsetup()","The Dashboard To-Do List plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ardtdw_widgetsetup() function in versions up to, and including, 1.2.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to edit widget data.",null,"\u003C=1.2.0","1.3.0","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2024-06-12 12:52:04",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F074d995e-42cc-42f0-bdbe-de181180b511?source=api-prod",7,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":6,"severity":41,"cvss_score":42,"cvss_vector":55,"vuln_type":56,"published_date":57,"updated_date":58,"references":59,"days_to_patch":48},"CVE-2024-31376","dashboard-to-do-list-cross-site-request-forgery-via-ardtdwwidgetupdate","Dashboard To-Do List \u003C= 1.3.1 - Cross-Site Request Forgery via ardtdw_widgetupdate()","The Dashboard To-Do List plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the ardtdw_widgetupdate()function. This makes it possible for unauthenticated attackers to update widgets via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=1.3.1","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2024-04-10 00:00:00","2024-04-16 14:21:49",[60],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ffbc8cc43-8509-44e5-bd16-367eca02c24e?source=api-prod",{"slug":62,"display_name":7,"profile_url":8,"plugin_count":63,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":48,"trust_score":27,"computed_at":64},"arapps92",1,"2026-04-04T07:07:30.117Z",[66,85,106,123,145],{"slug":67,"name":68,"version":69,"author":70,"author_profile":71,"description":72,"short_description":73,"active_installs":74,"downloaded":75,"rating":76,"num_ratings":77,"last_updated":78,"tested_up_to":16,"requires_at_least":79,"requires_php":80,"tags":81,"homepage":25,"download_link":84,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"sortable-dashboard-to-do-list","Sortable Dashboard To-Do List","2.4.1","JFG Media","https:\u002F\u002Fprofiles.wordpress.org\u002Fjfgmedia\u002F","\u003Cp>The plugin adds a sortable to-do list to your WP dashboard. This can be useful for developers, or even for content writers. With the possibility to assign tasks to other users, it’s like having your own mini Trello directly on your dashboard!\u003C\u002Fp>\n\u003Ch3>Task Assignment\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\nTo-do list items can be assigned to other users\n\u003C\u002Fli>\n\u003Cli>\nUsers with assigned tasks can easily see by whom they were assigned, and easily flag them as completed\n\u003C\u002Fli>\n\u003Cli>\nUsers who assign tasks can easily see which users have completed them, and which still haven’t\n\u003C\u002Fli>\n\u003Cli>\nUsers who assign tasks can decide if they want assigned users to be able to edit the task description\n\u003C\u002Fli>\n\u003Cli>\nAssignment ability depends on the current user role\n\u003C\u002Fli>\n\u003Cli>\nBy default:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\nAdministrators can assign tasks to all users with the “edit_posts” capability\n\u003C\u002Fli>\n\u003Cli>\nEditors can assign tasks to editors, contributors, and authors\n\u003C\u002Fli>\n\u003Cli>\nOther user roles can only assign tasks to other users with the same role\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\nThis feature is currently not activated for multisite setups\n\u003C\u002Fli>\n\u003Cli>\n4 WP filters to provide further control on assignment rights\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Item Creation\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\nTo-do list item creation, edition and deletion via ajax. No page reload.\n\u003C\u002Fli>\n\u003Cli>\nTo-do items are timestamped. You’ll never forget when they were created, or when you last edited them.\n\u003C\u002Fli>\n\u003Cli>\nThe list is individual. Each user has their own list.\n\u003C\u002Fli>\n\u003Cli>\nFor multisite, it’s one list per user and per site.\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Front-end Display\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\nOption to display the to-do list on the website (for the current logged-in user only).\n\u003C\u002Fli>\n\u003Cli>\nWebsite list can be collapsed and expanded. But website items can currently NOT be edited or sorted.\n\u003C\u002Fli>\n\u003Cli>\nWebsite list remembers its last display state (showed or collapsed)\n\u003C\u002Fli>\n\u003Cli>\nWebsite list remembers the size, position and state of opened to-do items\n\u003C\u002Fli>\n\u003Cli>\nWebsite list can be displayed on the left or right side of the window\n\u003C\u002Fli>\n\u003Cli>\nPossibility to decide to not show some to-do items on the website.\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WP Filters\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Manage assignment rights:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>“sdtdl_users_not_allowed_to_assign” to prevent some users to be able to assign items, by returning an array of user IDs: \u003Ccode>add_filter('sdtdl_users_not_allowed_to_assign',function(){return ['3','6','8'];})\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>“sdtdl_[user_role]_can_assign_to” to allow a specific user role to assign items to other roles, by returning an array of roles: \u003Ccode>add_filter('sdtdl_editor_can_assign_to',function(){return ['administrator','editor'];})\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>“sdtdl_[user_role]_cannot_assign_to_users” to prevent specific roles from assigning tasks to specific users, by returning an array of user IDs: \u003Ccode>add_filter('sdtdl_[user_role]_cannot_assign_to_users',function($current_user_id){return ['2','4'];})\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>“sdtdl_never_assign_task_to_users” to prevent specific users from ever being assigned any tasks, by returning an array of user IDs: \u003Ccode>add_filter('sdtdl_never_assign_task_to_users',function(){return ['1'];})\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>Administrators can assign tasks to all user roles with the “edit_posts” capability, but this can also be altered with the previous 3 filters.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Manage list creation rights:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, users with the “edit_posts” capability can create a to-do-list\u003C\u002Fp>\n\u003Cp>“sdtdl_min_user_capability” to override this minimum capability: \u003Ccode>add_filter('sdtdl_min_user_capability',function(){return 'publish_posts';})\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Manage day count for task highlighting:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, tasks will be considered as “aging” 7 days after their creation, and as “old” 14 days after their creation\u003C\u002Fp>\n\u003Cp>“sdtdl_aging_tasks_min_days” to override the amount of days for aging tasks, by returning an integer: \u003Ccode>add_filter('sdtdl_aging_tasks_min_days',function($current_user_id){return 10;})\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>“sdtdl_old_tasks_min_days” to override the amount of days for old tasks, by returning an integer: \u003Ccode>add_filter('sdtdl_old_tasks_min_days',function($current_user_id){return 20;})\u003C\u002Fcode>\u003C\u002Fp>\n","Adds a sortable to-do list widget to your WP dashboard. Useful for developers, content writers, and team tasks. Easily assign tasks to other users.",80,3563,90,4,"2025-11-30T07:20:00.000Z","5.0","7.4.0",[20,82,83,22,24],"task","task-management","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsortable-dashboard-to-do-list.2.4.1.zip",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":25,"tags":100,"homepage":103,"download_link":104,"security_score":105,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"todo-lists-for-membership-sites","To Do List Member","1.5","Trent Jessee","https:\u002F\u002Fprofiles.wordpress.org\u002Ftjessee\u002F","\u003Cp>To Do List Member adds todo lists and tasks using custom taxonomy and post type to your blog.\u003C\u002Fp>\n\u003Cp>The site admin creates the todo lists and each user can track their own progress.\u003C\u002Fp>\n\u003Cp>Todo lists and progress bars are inserted into any post or page using shortcodes.\u003C\u002Fp>\n\u003Cp>The plugin adds two buttons to the visual editor, one to insert a todo list and one to insert a progress bar.\u003C\u002Fp>\n\u003Cp>Screenshots and a more detailed description can be found here: http:\u002F\u002Fwww.watchmanadvisors.com\u002Fto-do-list-member-wordpress-plugin\u002F\u003C\u002Fp>\n","To Do List Member adds todolists and tasks using custom taxonomy and post type to your blog.",10,8519,64,9,"2018-11-28T08:43:00.000Z","4.9.29","3.0.1",[101,102,21,22,24],"checklist","checklists","http:\u002F\u002Fwww.watchmanadvisors.com\u002Fto-do-list-member-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftodo-lists-for-membership-sites.1.6.zip",85,{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":29,"downloaded":114,"rating":29,"num_ratings":29,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":118,"tags":119,"homepage":25,"download_link":121,"security_score":122,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"ze-to-do-list","ZE To Do List","0.1.0","wanzhenen","https:\u002F\u002Fprofiles.wordpress.org\u002Fwanzhenen\u002F","\u003Cp>Allow logged in users to create to do list.\u003C\u002Fp>\n","ZE To Do List.",562,"2024-11-19T01:56:00.000Z","6.7.5","6.6","7.2",[21,120,22,23,24],"to-do-list","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fze-to-do-list.0.1.0.zip",92,{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":13,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":137,"tags":138,"homepage":142,"download_link":143,"security_score":13,"vuln_count":63,"unpatched_count":29,"last_vuln_date":144,"fetched_at":31},"bp-user-to-do-list","Todo for BuddyPress & BuddyBoss","3.5.1","wbcomdesigns","https:\u002F\u002Fprofiles.wordpress.org\u002Fwbcomdesigns\u002F","\u003Cp>\u003Cstrong>Todo for BuddyPress & BuddyBoss\u003C\u002Fstrong> is a complete task management solution designed specifically for BuddyPress and BuddyBoss communities. Whether you’re running an online course platform, membership site, corporate intranet, or social network, this plugin empowers your members to stay organized and productive.\u003C\u002Fp>\n\u003Ch4>Why Choose This Plugin?\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>For Community Managers:\u003C\u002Fstrong>\u003Cbr \u002F>\nKeep your members engaged and accountable with structured task management. Track group progress, monitor completion rates, and ensure everyone stays on track with their commitments.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For Members:\u003C\u002Fstrong>\u003Cbr \u002F>\nNever miss a deadline again. Create personal todos, receive timely reminders, and manage group assignments all from your profile. Export tasks to CSV for offline tracking.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For Developers:\u003C\u002Fstrong>\u003Cbr \u002F>\nExtend functionality with comprehensive hooks and filters. Full documentation included for easy customization and integration with other plugins.\u003C\u002Fp>\n\u003Ch4>Core Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Personal Task Management\u003C\u002Fstrong>\u003Cbr \u002F>\n* Create unlimited personal todos with rich text descriptions\u003Cbr \u002F>\n* Set due dates with automatic reminders via email and BuddyPress notifications\u003Cbr \u002F>\n* Organize tasks by custom categories\u003Cbr \u002F>\n* Mark tasks complete with timestamp tracking\u003Cbr \u002F>\n* Export todo lists to CSV format for reporting\u003Cbr \u002F>\n* Visual priority indicators (Critical, High, Normal)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Group Collaboration\u003C\u002Fstrong>\u003Cbr \u002F>\n* Group admins and moderators can assign tasks to members\u003Cbr \u002F>\n* Assign to all members or select specific individuals\u003Cbr \u002F>\n* Each member gets their own copy to manage independently\u003Cbr \u002F>\n* Track who completed tasks and when\u003Cbr \u002F>\n* Seamless integration with BuddyPress group navigation\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Advanced Group Reporting\u003C\u002Fstrong>\u003Cbr \u002F>\n* Real-time completion statistics and progress tracking\u003Cbr \u002F>\n* Visual member progress grid with avatars and status badges\u003Cbr \u002F>\n* Filter by completion status (All, Completed, Pending)\u003Cbr \u002F>\n* Task-specific view to see who completed individual assignments\u003Cbr \u002F>\n* Overall group progress with percentage indicators\u003Cbr \u002F>\n* Pagination for large groups with hundreds of members\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Site Admin Features\u003C\u002Fstrong>\u003Cbr \u002F>\n* Read-only access to all group tasks for oversight\u003Cbr \u002F>\n* View tasks in groups you’re not a member of\u003Cbr \u002F>\n* Comprehensive settings panel with granular controls\u003Cbr \u002F>\n* Customizable labels and menu slugs\u003Cbr \u002F>\n* User permission management\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Automated Data Retention\u003C\u002Fstrong>\u003Cbr \u002F>\n* Keep your database clean with automatic cleanup of old completed tasks\u003Cbr \u002F>\n* Configurable retention periods from 30 days to never\u003Cbr \u002F>\n* Separate settings for group and personal todos\u003Cbr \u002F>\n* Choose between trash or permanent deletion\u003Cbr \u002F>\n* Manual cleanup option with email notifications to admins\u003Cbr \u002F>\n* Daily automated cleanup via WP-Cron\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Smart Notifications\u003C\u002Fstrong>\u003Cbr \u002F>\n* BuddyPress native email system integration\u003Cbr \u002F>\n* Customizable email templates from WordPress admin\u003Cbr \u002F>\n* Members control their own notification preferences\u003Cbr \u002F>\n* Automatic reminders before due dates\u003Cbr \u002F>\n* Group assignment notifications\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Developer-Friendly\u003C\u002Fstrong>\u003Cbr \u002F>\n* 15+ action hooks for extending functionality\u003Cbr \u002F>\n* 10+ filter hooks for customization\u003Cbr \u002F>\n* Complete template hierarchy for theme overrides\u003Cbr \u002F>\n* Comprehensive developer documentation included\u003Cbr \u002F>\n* REST API ready structure\u003Cbr \u002F>\n* Translation ready with POT file\u003C\u002Fp>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Online Learning Communities – Assign homework and track student progress\u003C\u002Fli>\n\u003Cli>Membership Sites – Keep members engaged with structured tasks\u003C\u002Fli>\n\u003Cli>Corporate Intranets – Team collaboration and project management\u003C\u002Fli>\n\u003Cli>Social Networks – Personal productivity within your community\u003C\u002Fli>\n\u003Cli>Non-Profit Organizations – Volunteer task coordination\u003C\u002Fli>\n\u003Cli>Co-Working Spaces – Shared goals and accountability\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Premium Support\u003C\u002Fh4>\n\u003Cp>Our dedicated support team is ready to help you get the most out of this plugin. Whether you need help with setup, customization, or troubleshooting, we’re here to assist.\u003C\u002Fp>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>Comprehensive guides included in the plugin directory:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>USER-GUIDE.md\u003C\u002Fstrong> – Complete walkthrough of all features, settings, and usage instructions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>DEVELOPER-GUIDE.md\u003C\u002Fstrong> – Technical documentation with hooks, filters, database structure, and code examples\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Live Demo\u003C\u002Fh4>\n\u003Cp>See the plugin in action before installing. Visit our demo site to explore all features with sample data.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English (default)\u003C\u002Fli>\n\u003Cli>French – Credits to Jean Pierre Michaud\u003C\u002Fli>\n\u003Cli>Ready for translation in your language with included POT file\u003C\u002Fli>\n\u003Cli>RTL language support included\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fdownloads\u002Fbuddypress-user-todo-list\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdemos.wbcomdesigns.com\u002Fwbcomplugins\u002F\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fhelpdesk\u002Farticle-categories\u002Fbp-user-todo-list\u002F\" rel=\"nofollow ugc\">Documentation & Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwbcomdesigns\u002Fbuddypress-user-todo-list\u002F\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwbcomdesigns.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Request Features\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>BuddyPress 12.0 and higher (backwards compatible with older versions)\u003C\u002Fli>\n\u003Cli>BuddyBoss Platform (all versions)\u003C\u002Fli>\n\u003Cli>WordPress 6.5 and higher\u003C\u002Fli>\n\u003Cli>PHP 7.4 and higher (8.0+ recommended)\u003C\u002Fli>\n\u003Cli>Tested with popular themes: BuddyX, Reign, Youzify, and more\u003C\u002Fli>\n\u003Cli>Full support for both classic and block editor\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What’s New in 3.5.0\u003C\u002Fh4>\n\u003Cp>This major update brings enterprise-level features including group overview reporting, automated data retention, enhanced performance with caching, and full BuddyPress 12.0+ compatibility while maintaining backwards compatibility with older versions and BuddyBoss.\u003C\u002Fp>\n","Transform your BuddyPress or BuddyBoss community into a powerful task management platform. Members can create personal todos, collaborate on group tas &hellip;",20230,74,6,"2025-10-26T09:45:00.000Z","6.8.5","6.5","7.4",[139,140,141,83,24],"buddypress","group-tasks","productivity","https:\u002F\u002Fwbcomdesigns.com\u002Fcontact\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-user-to-do-list.3.5.1.zip","2022-04-13 00:00:00",{"slug":146,"name":147,"version":148,"author":149,"author_profile":150,"description":151,"short_description":152,"active_installs":93,"downloaded":153,"rating":76,"num_ratings":28,"last_updated":154,"tested_up_to":155,"requires_at_least":156,"requires_php":25,"tags":157,"homepage":159,"download_link":160,"security_score":105,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"simple-todo-list","Simple Todo List","1.0.1","ggwicz","https:\u002F\u002Fprofiles.wordpress.org\u002Fggwicz\u002F","\u003Cp>Simple Todo List is a widget for your WordPress dashboard that lets you keep track of todos in a simple, intuitive list.\u003C\u002Fp>\n\u003Cp>\u003Cem>Features\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple AJAX interface in one self-contained Dashboard widget.\u003C\u002Fli>\n\u003Cli>Simple Markdown-style formatting enabled; use * or _ for italic text, and ** for bold text.\u003C\u002Fli>\n\u003Cli>Coming soon: live inline-editing.\u003C\u002Fli>\n\u003Cli>Coming soon: simple drag and drop reordering.\u003C\u002Fli>\n\u003Cli>Coming soon: code improvements.\u003C\u002Fli>\n\u003C\u002Ful>\n","The missing todo list dashboard widget for WordPress.",1909,"2015-10-03T17:52:00.000Z","4.3.34","4.3.1",[158,141,21,23,24],"ideas","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-todo-list","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-todo-list.1.0.1.zip",{"attackSurface":162,"codeSignals":190,"taintFlows":203,"riskAssessment":242,"analyzedAt":252},{"hooks":163,"ajaxHandlers":186,"restRoutes":187,"shortcodes":188,"cronEvents":189,"entryPointCount":29,"unprotectedCount":29},[164,169,173,178,182],{"type":165,"name":166,"callback":167,"file":168,"line":93},"action","wp_dashboard_setup","ardtdw_widgetsetup","admin\\todo-widget.php",{"type":165,"name":170,"callback":171,"file":168,"line":172},"wp_footer","ardtdw_widgethtml",131,{"type":165,"name":174,"callback":175,"file":176,"line":177},"plugins_loaded","dashboard_to_do_list_load_plugin_textdomain","tdlw.php",33,{"type":165,"name":179,"callback":180,"file":176,"line":181},"wp_enqueue_scripts","ardtdw_widget_scripts",41,{"type":165,"name":183,"callback":184,"file":176,"line":185},"admin_enqueue_scripts","ardtdw_widget_scripts_admin",50,[],[],[],[],{"dangerousFunctions":191,"sqlUsage":192,"outputEscaping":194,"fileOperations":29,"externalRequests":29,"nonceChecks":63,"capabilityChecks":14,"bundledLibraries":202},[],{"prepared":29,"raw":29,"locations":193},[],{"escaped":93,"rawEcho":28,"locations":195},[196,199],{"file":168,"line":197,"context":198},98,"raw output",{"file":200,"line":201,"context":198},"public\\todo-widget-html.php",23,[],[204,231],{"entryPoint":205,"graph":206,"unsanitizedCount":29,"severity":230},"ardtdw_widgetupdate (admin\\todo-widget.php:14)",{"nodes":207,"edges":226},[208,213,219,223],{"id":209,"type":210,"label":211,"file":168,"line":212},"n0","source","$_POST['ardtdw-textarea']",21,{"id":214,"type":215,"label":216,"file":168,"line":217,"wp_function":218},"n1","sink","update_option() [Settings Manipulation]",19,"update_option",{"id":220,"type":210,"label":221,"file":168,"line":222},"n2","$_POST (x4)",40,{"id":224,"type":215,"label":216,"file":168,"line":225,"wp_function":218},"n3",66,[227,229],{"from":209,"to":214,"sanitized":228},true,{"from":220,"to":224,"sanitized":228},"low",{"entryPoint":232,"graph":233,"unsanitizedCount":29,"severity":230},"\u003Ctodo-widget> (admin\\todo-widget.php:0)",{"nodes":234,"edges":239},[235,236,237,238],{"id":209,"type":210,"label":211,"file":168,"line":212},{"id":214,"type":215,"label":216,"file":168,"line":217,"wp_function":218},{"id":220,"type":210,"label":221,"file":168,"line":222},{"id":224,"type":215,"label":216,"file":168,"line":225,"wp_function":218},[240,241],{"from":209,"to":214,"sanitized":228},{"from":220,"to":224,"sanitized":228},{"summary":243,"deductions":244},"The static analysis of the \"dashboard-to-do-list\" plugin v1.3.2 indicates a generally good security posture with no identified critical or high severity code signals, taint flows, or immediate attack vectors.\n\nThe code analysis shows strong adherence to secure coding practices, with 100% of SQL queries using prepared statements and a high percentage of output being properly escaped (83%). The presence of nonce and capability checks further strengthens its defenses against common web vulnerabilities. The limited attack surface, with zero identified entry points, is a positive sign. However, the taint analysis, while showing no critical or high severity unsanitized paths, only analyzed two flows, which might not be exhaustive.\n\nThe vulnerability history reveals two past medium severity CVEs, both related to Missing Authorization and Cross-Site Request Forgery (CSRF). The fact that none are currently unpatched is reassuring. The recurring nature of these vulnerability types suggests a potential recurring weakness in how user actions are authorized or protected against CSRF, even if current code has addressed past issues. The most recent vulnerability was quite recent, indicating ongoing vigilance is necessary. Overall, the plugin exhibits strengths in secure coding fundamentals but past incidents warrant continued careful review of authorization and CSRF prevention mechanisms.",[245,247,250],{"reason":246,"points":93},"Past medium severity CVEs (2)",{"reason":248,"points":249},"Potential recurring CSRF\u002FAuthorization issues",5,{"reason":251,"points":28},"Limited taint flow analysis scope","2026-03-16T18:46:30.233Z",{"wat":254,"direct":263},{"assetPaths":255,"generatorPatterns":258,"scriptPaths":259,"versionParams":260},[256,257],"\u002Fwp-content\u002Fplugins\u002Fdashboard-to-do-list\u002Fadmin\u002Fassets\u002Fwidgets.css","\u002Fwp-content\u002Fplugins\u002Fdashboard-to-do-list\u002Fpublic\u002Fassets\u002Ftodo-widget.css",[],[],[261,262],"dashboard-to-do-list\u002Fpublic\u002Fassets\u002Ftodo-widget.css?ver=","dashboard-to-do-list\u002Fadmin\u002Fassets\u002Fwidgets.css?ver=",{"cssClasses":264,"htmlComments":269,"htmlAttributes":270,"restEndpoints":278,"jsGlobals":279,"shortcodeOutput":280},[265,266,267,268],"ardtdw-message","ardtdw-error","ardtdw-updated","field-comment",[],[271,272,273,274,275,276,277],"ardtdw-checkbox","ardtdw-checkbox-editor","ardtdw-checkbox-admineditor","ardtdw-textarea","ardtdw-position","ardtdw-save","ardtdw-confirm",[],[],[]]