[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4XAGTt8r2zOLQsoySWqESA9mvxVjPh8x_TxJj7Db6g8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":138,"fingerprints":176},"debug-bar-post-meta","Debug Bar Post Meta","0.5.8","Jake Spurlock","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhyisjake\u002F","\u003Cp>This plugin will show you what post meta is attached to the main post.\u003C\u002Fp>\n","Adds a post meta panel for displaying all of the post meta.",40,6026,100,1,"2020-08-18T23:31:00.000Z","5.5.18","3.4","",[20,21,22],"debug","template","trace","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdebug-bar-template-trace\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdebug-bar-post-meta.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"whyisjake",8,180,93,30,89,"2026-04-05T01:34:31.663Z",[39,62,82,101,119],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":18,"download_link":58,"security_score":59,"vuln_count":60,"unpatched_count":26,"last_vuln_date":61,"fetched_at":28},"which-template-file","which template file","5.2.0","gilles66","https:\u002F\u002Fprofiles.wordpress.org\u002Fgilles66\u002F","\u003Cp>Need to know which template is used by WordPress to display your pages in the front office ?\u003Cbr \u002F>\nThis plugin simply does this.\u003C\u002Fp>\n\u003Cp>Show the name of the php file of your theme used to display the current page.Need to know which template is used by WordPress to display your pages in the front office ?\u003Cbr \u002F>\nThis plugin simply does this.\u003C\u002Fp>\n\u003Cp>Efficient and very easy to install, it will show you in the admin bar the name of the php file currently used to display the current page.\u003Cbr \u002F>\nThe color of the text is different regarding the origin of the template(the theme, a parent theme, or a plugin)\u003Cbr \u002F>\n(icon author :http:\u002F\u002Fwww.megaicons.net\u002Ficonspack-1096\u002F45043\u002F)\u003C\u002Fp>\n","Show the name of the php file of your theme used to display the current page.",4000,54446,4,"2025-02-02T14:14:00.000Z","6.7.5","3.3.0","5.6",[55,20,21,56,57],"adminbar","toolbar","tpl","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhich-template-file.5.2.0.zip",91,2,"2023-11-29 00:00:00",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":13,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":18,"tags":76,"homepage":79,"download_link":80,"security_score":81,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"what-template","What Template","0.1","Brian Alexander","https:\u002F\u002Fprofiles.wordpress.org\u002Fironprogrammer\u002F","\u003Cp>Adds the current page’s template name to the admin bar.\u003C\u002Fp>\n\u003Cp>Because this plugin reveals potentially sensitive information about the active theme, it is recommended for development environments only, and should not be enabled on a production site.\u003C\u002Fp>\n","Adds the current page's template name to the admin bar.",1000,22245,3,"2024-07-19T20:49:00.000Z","6.6.5","3.1",[77,20,78,21],"admin-bar","development","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwhat-template\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhat-template.0.1.2.zip",92,{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":13,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":18,"tags":96,"homepage":99,"download_link":100,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"what-template-am-i-using","What Template Am I Using","0.2.0","webdeveric","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebdeveric\u002F","\u003Cp>This plugin is intended for theme developers to use. It shows the current template being used to render the page, current post type, and much more.\u003C\u002Fp>\n\u003Cp>The info is only displayed for users that have the edit_theme_options capability.\u003C\u002Fp>\n\u003Cp>Information displayed:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Current template\u003C\u002Fli>\n\u003Cli>General Information (post type, are you on the front page, etc.)\u003C\u002Fli>\n\u003Cli>Additional files used. For example, header.php or footer.php\u003C\u002Fli>\n\u003Cli>What sidebars are being used and what widgets are in them.\u003C\u002Fli>\n\u003Cli>List of enqueued scripts and styles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>This plugin is intended for use by theme developers and it requires a standards compliant browser. This plugin will not work in IE8 or below.\u003C\u002Fstrong>\u003C\u002Fp>\n","This plugin is intended for theme developers to use. It shows the current template being used to render the page, current post type, and much more.",9190,96,13,"2015-12-08T05:17:00.000Z","4.4.0","3.1.0",[20,97,21,98],"server-information","theme-development","http:\u002F\u002Fphplug.in\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhat-template-am-i-using.0.2.0.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":11,"downloaded":109,"rating":13,"num_ratings":72,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":18,"tags":113,"homepage":117,"download_link":118,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"dp-debug-menu","DP Debug Menu","1.0.1","Dan-Lucian Stefancu","https:\u002F\u002Fprofiles.wordpress.org\u002Fde-ce\u002F","\u003Cp>A fast\u002Fsmall debugger integrated into the WordPress Admin Bar, made for identifying the template used for displaying current page.\u003C\u002Fp>\n\u003Cp>It was built for fast debugging old projects or other people’s work.\u003C\u002Fp>\n\u003Cp>It adds some other  potentially useful informations in the dropdown list:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>the current theme (useful for child themes)\u003C\u002Fli>\n\u003Cli>total queries on current page\u003C\u002Fli>\n\u003Cli>execution time\u003C\u002Fli>\n\u003C\u002Ful>\n","Quickly shows the template used for current page, number of queries, and execution time for PHP code.",3621,"2021-02-10T11:13:00.000Z","5.6.17","3.0",[20,114,115,116,21],"debugger","menu","queries","https:\u002F\u002Fdreamproduction.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdp-debug-menu.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":35,"downloaded":127,"rating":13,"num_ratings":14,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":136,"download_link":137,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"simple-debug-info-panel","Simple Debug Info Panel","1.0.2","Senff - a11n","https:\u002F\u002Fprofiles.wordpress.org\u002Fsenff\u002F","\u003Ch4>Summary\u003C\u002Fh4>\n\u003Cp>Simple Debug Info Panel for WordPress will enable you to instantly see some “under-the-hood” debugging info for your site. With one click (or none at all), you can see which template is being used, what the post\u002Fpage ID is, the current screen\u002Fviewport size, any categories a post is assigned to, and some more.\u003C\u002Fp>\n\u003Cp>Every item’s visibility can be turned on or off, so you have complete control over what will be shown in the infobox.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Shows template information\u003C\u002Fstrong>: see which template is being used for any page you’re looking at.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Shows post\u002Fpage ID\u003C\u002Fstrong>: gives you the internal WordPress ID of the current post\u002Fpage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories\u002Ftags\u003C\u002Fstrong>: shows relevant categories and tags of the post\u002Fpage (if they are not displayed on the page itself).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Screensize indicator\u003C\u002Fstrong>: shows the viewport size, updates in real time (so you can figure out why styles within a certain media query are applied or not).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Turn on\u002Foff which information you want to see\u003C\u002Fstrong>: you can choose whatever you want the infobox to show. \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Positioning of box\u003C\u002Fstrong>: choose placement of the box from 4 options (top left, top right, bottom left, bottom right)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Default shows or hides\u003C\u002Fstrong>: choose whether infobox should be open or closed\u002Fminimized by default\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Only-mode\u003C\u002Fstrong>: make infobox only visible on the front end to users logged in with admin rights.\u003C\u002Fli>\n\u003C\u002Ful>\n","Simple Debug Info Panel shows a little box on your site with helpful debugging info for developers: post\u002Fpage ID, which template is being used, etc.",3394,"2026-01-14T01:00:00.000Z","6.9.4","3.6",[20,132,133,134,135],"info","panel","simple","templates","http:\u002F\u002Fwww.senff.com\u002Fplugins\u002Fsimple-debug-info-panel","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-debug-info-panel.1.0.2.zip",{"attackSurface":139,"codeSignals":151,"taintFlows":163,"riskAssessment":164,"analyzedAt":175},{"hooks":140,"ajaxHandlers":147,"restRoutes":148,"shortcodes":149,"cronEvents":150,"entryPointCount":26,"unprotectedCount":26},[141],{"type":142,"name":143,"callback":144,"file":145,"line":146},"action","debug_bar_panels","debug_bar_post_meta","debug-bar-post-meta.php",21,[],[],[],[],{"dangerousFunctions":152,"sqlUsage":158,"outputEscaping":160,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":162},[153],{"fn":154,"file":155,"line":156,"context":157},"unserialize","class-debug-bar-post-meta.php",45,"$vals .= print_r( unserialize( $value ), true ); \u002F\u002F phpcs:ignore",{"prepared":26,"raw":26,"locations":159},[],{"escaped":72,"rawEcho":26,"locations":161},[],[],[],{"summary":165,"deductions":166},"The \"debug-bar-post-meta\" plugin, at version 0.5.8, exhibits a generally positive security posture with no recorded vulnerabilities or known CVEs. The static analysis indicates a clean codebase regarding SQL injection and output escaping, with all SQL queries utilizing prepared statements and all outputs being properly escaped.  Furthermore, the plugin does not engage in file operations or external HTTP requests, and its attack surface is reported as zero, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed without authentication.  This suggests a thoughtful approach to secure development by the plugin authors.\n\nHowever, a notable concern is the presence of the `unserialize()` function. While the static analysis did not detect any taint flows indicating this function is currently being exploited, its use is inherently risky as it can lead to Remote Code Execution (RCE) if untrusted data is passed to it.  The absence of capability checks and nonce checks, though not directly tied to current reported vulnerabilities, is also a potential weakness that could be exploited in conjunction with other vulnerabilities or in future plugin versions.  The lack of recorded vulnerabilities is a strength, but the potential risk from `unserialize()` and the absence of certain security controls prevent a perfect score.\n\nIn conclusion, \"debug-bar-post-meta\" v0.5.8 appears to be a securely coded plugin for its intended purpose, with a strong emphasis on preventing common web vulnerabilities. The absence of historical vulnerabilities further bolsters confidence. The primary area for improvement and potential risk lies in the use of `unserialize()` and the general lack of explicit authentication and authorization checks on its (albeit small) entry points, which could be exploited under different circumstances.",[167,170,173],{"reason":168,"points":169},"Use of unserialize() function",15,{"reason":171,"points":172},"No capability checks implemented",5,{"reason":174,"points":172},"No nonce checks implemented","2026-03-16T22:20:01.646Z",{"wat":177,"direct":184},{"assetPaths":178,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[179],"\u002Fwp-content\u002Fplugins\u002Fdebug-bar-post-meta\u002Fcss\u002Fdebug-bar-post-meta.css",[],[],[183],"debug-bar-post-meta-css?ver=0.5.8",{"cssClasses":185,"htmlComments":187,"htmlAttributes":188,"restEndpoints":189,"jsGlobals":190,"shortcodeOutput":191},[186,4],"template-trace",[],[],[],[],[]]