[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7f9lBI1v_CX9-NdjcLUybU9xNl4p-jlb6kIXklUbbK8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":136,"fingerprints":191},"drafts-dropdown","Drafts Dropdown","2.0","Crowd Favorite","https:\u002F\u002Fprofiles.wordpress.org\u002Fcrowdfavorite\u002F","\u003Cp>Wish you had quicker access to your draft posts and pages? Tired of having to click Edit \u002F Drafts to get there? Problem solved – the Drafts Dropdown plugin gives you links to all of your drafts on \u003Cem>every\u003C\u002Fem> screen through a handy tab.\u003C\u002Fp>\n\u003Ch3>Developers\u003C\u002Fh3>\n\u003Cp>This plugin is now actively developed in GitHub. Fork it and contribute:\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fgithub.com\u002Fcrowdfavorite\u002Fwp-drafts-dropdown\u003C\u002Fp>\n","Adds a Drafts tab to the admin bar so that you can quickly access your draft blog posts.",20,11084,100,1,"","6.0.11","3.2",[19,20,21,22,23],"access","admin","draft","drafts","post","http:\u002F\u002Fcrowdfavorite.com\u002Fwordpress\u002Fplugins\u002Fdrafts-dropdown\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdrafts-dropdown.2.0.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"crowdfavorite",7,2070,87,30,85,"2026-04-05T00:59:53.078Z",[39,61,78,101,119],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":15,"tags":53,"homepage":58,"download_link":59,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"post-status-menu-items","Post Status Menu Items","1.5.0","mrwweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fmrwweb\u002F","\u003Cp>This plugin is useful for people who regularly use all or most of the post statuses with Posts, Pages, or Custom Post Types. Post Status Menu Items does the following:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Show each post status and number of posts with that status (e.g. “Drafts (7)”) in each post type’s admin menu.\u003C\u002Fli>\n\u003Cli>Show the number of Posts with each post status in the “Right Now” \u002F “At a Glance” admin Dashboard Widget.\u003C\u002Fli>\n\u003Cli>Show post status icons with each status at the top of admin post list pages.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Options give control over which post statuses are displayed and in which menus those statuses are displayed. Post statuses in the “Right Now” \u002F “At a Glance” admin Dashboard widget can also be turned off.\u003C\u002Fp>\n\u003Cp>Screenshots of all features and settings are available on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-status-menu-items\u002Fscreenshots\u002F\" rel=\"ugc\">the Screenshots page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Plugin settings available on \u003Cstrong>Settings > Writing\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Statuses with 0 posts are never displayed.\u003C\u002Fli>\n\u003Cli>Posts are the only post type for which the post status menu items are enabled by default.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin works with custom statuses created by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fedit-flow\u002F\" rel=\"ugc\">Edit Flow\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Farchived-post-status\u002F\" rel=\"ugc\">Archived Post Status\u003C\u002Fa>, \u003Ca href=\"http:\u002F\u002Fwww.advancedcustomfields.com\u002Fresources\u002Fsynchronized-json\u002F\" rel=\"nofollow ugc\">Advanced Custom Field PRO “Sync Available” status\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-page-ordering\u002F\" rel=\"ugc\">Simple Page Ordering\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002Fregister_post_status\" rel=\"nofollow ugc\">\u003Ccode>register_post_status()\u003C\u002Fcode>\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Other Plugins by MRWweb\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffeature-a-page-widget\u002F\" rel=\"ugc\">Feature a Page Widget\u003C\u002Fa> – Shows a summary of any Page in any sidebar.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmrw-web-design-simple-tinymce\u002F\" rel=\"ugc\">MRW Web Design Simple TinyMCE\u003C\u002Fa> – A compact page editor to encourage good formatting.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-type-archive-descriptions\u002F\" rel=\"ugc\">Post Type Archive Description\u003C\u002Fa> – Enables an editable description for a post type to display at the top of the post type archive page.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhawaiian-characters\u002F\" rel=\"ugc\">Hawaiian Characters\u003C\u002Fa> – Adds the correct characters with diacriticals to the WordPress editor Character Map for Hawaiian\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds post status links–e.g. \"Draft\" (7)–to post type admin menus and a few other nice goodies.",200,10990,6,"2018-12-05T16:47:00.000Z","5.0.25","3.8",[54,22,55,56,57],"admin-menu","post-status","post-statuses","wp-admin","https:\u002F\u002FMRWweb.com\u002Fwordpress-post-status-menu-item-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-status-menu-items.1.5.0.zip","2026-03-15T15:16:48.613Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":26,"num_ratings":26,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":15,"tags":74,"homepage":76,"download_link":77,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"published-post-shortcut","Published Post Shortcut","1.0","tamantit","https:\u002F\u002Fprofiles.wordpress.org\u002Ftamantit\u002F","\u003Cp>Description: Adds a link to published items under the Posts, Pages, and other custom post type sections in the admin menu.\u003Cbr \u002F>\nLinks: \u003Ca href=\"http:\u002F\u002Fwww.nonsolopiccante.it\u002Fpublished-post-shortcut\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fwww.nonsolopiccante.it\u002F\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n","Description: Adds a link to published items under the Posts, Pages, and other custom post type sections in the admin menu.",10,1829,"2011-12-09T20:40:00.000Z","3.3.2","3.1",[20,21,22,75,23],"menu","http:\u002F\u002Fwww.nonsolopiccante.it\u002Fpublished-post-shortcut\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublished-post-shortcut.1.0.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":99,"download_link":100,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"public-post-preview","Public Post Preview","3.1.0","Dominik Schilling","https:\u002F\u002Fprofiles.wordpress.org\u002Focean90\u002F","\u003Cp>Share a link to anonymous users to preview a draft of a post (or any other public post type) before it is published.\u003C\u002Fp>\n\u003Cp>Have you ever been writing a post with the help of someone who does not have access to your site and needed to give them the ability to preview it before publishing? This plugin takes care of that by generating an URL with an expiring nonce that can be given out for public preview.\u003C\u002Fp>\n\u003Cp>\u003Cem>Previously this plugin was maintained by \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsivel\u002F\" rel=\"nofollow ugc\">Matt Martz\u003C\u002Fa> and was an idea of \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fjdingman\u002F\" rel=\"nofollow ugc\">Jonathan Dingman\u003C\u002Fa>. Photo by \u003Ca href=\"https:\u002F\u002Funsplash.com\u002Fphotos\u002Fopened-book-on-grass-during-daytime-bhBONc07WsI\" rel=\"nofollow ugc\">Annelies Geneyn\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>To enable a public post preview check the box in the document settings. In the classic editor it’s in the “Publish” meta box.\u003C\u002Fli>\n\u003Cli>The link will be displayed if the checkbox is checked, you can copy and share the link with your friends.\u003C\u002Fli>\n\u003Cli>To disable a preview uncheck the box again.\u003C\u002Fli>\n\u003C\u002Ful>\n","Allow anonymous users to preview a draft of a post before it is published.",100000,1584582,90,79,"2026-03-01T16:13:00.000Z","7.0","6.6","8.0",[95,22,96,97,98],"anonymous","posts","preview","public","https:\u002F\u002Fgithub.com\u002Focean90\u002Fpublic-post-preview","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpublic-post-preview.3.1.0.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":114,"requires_at_least":115,"requires_php":15,"tags":116,"homepage":117,"download_link":118,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"shareadraft","Share a Draft","1.5","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>Drafts in WordPress are visible for the author and blog administrators. In many cases, however, you want\u003Cbr \u002F>\nto share a draft with your friends or colleagues for either review or approval.\u003C\u002Fp>\n\u003Cp>Share a Draft allows you to create a unique link to a draft for a limited time and send it to whoever you want.\u003C\u002Fp>\n","Share private preview links to your drafts",3000,64283,74,11,"2021-04-07T17:39:00.000Z","5.8.13","4.0",[21,22,23,96],"http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fshareadraft\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshareadraft.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":13,"num_ratings":32,"last_updated":129,"tested_up_to":130,"requires_at_least":131,"requires_php":15,"tags":132,"homepage":134,"download_link":135,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"quick-drafts-access","Quick Drafts Access","2.4","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>By default in WordPress, accessing the drafts listing of any given post type (including posts and pages) in the admin requires multiple clicks. Then filtering the drafts listing by a particular user (generally to view only your drafts) additionally requires some non-obvious manual URL hacking.\u003C\u002Fp>\n\u003Cp>This plugin allows you one click access to all drafts, as well as to just your drafts, of each post type via the main admin menu.\u003C\u002Fp>\n\u003Cp>In addition, the plugin provides a count of the number of current drafts for that post type in the link (i.e. the link could read “All Drafts (3)” to indicate there are three drafts for that post type, and “My Drafts (1)” to indicate you only have one draft for that post type).\u003C\u002Fp>\n\u003Cp>When the user is responsible for all of the drafts of a given post type (and the “My Drafts” link is not disabled via a hook) then only the “My Drafts” links will appear. It would be redundant to show both the “All Drafts” and “My Drafts” links in this situation. This behavior also ensures only one link is present for single-author blogs.\u003C\u002Fp>\n\u003Cp>Also, the draft link(s) only appear for users who have the capability to edit posts of that post type.\u003C\u002Fp>\n\u003Cp>The plugin hides the two types of draft links when no related drafts for that post type are present. See the Filters section for how to override this behavior. Filters are also provided to disable the plugin from ever showing the “All Drafts” or the “My Drafts” links.\u003C\u002Fp>\n\u003Cp>On admin listings of only draft posts, this plugin also adds a dropdown above the table that allows for the listing to be filtered by the selected draft author. (Only users who actually have a draft post are included in the dropdown.)\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fquick-drafts-access\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fquick-drafts-access\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fquick-drafts-access\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Developer Documentation\u003C\u002Fh3>\n\u003Cp>Developer documentation can be found in \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Fquick-drafts-access\u002Fblob\u002Fmaster\u002FDEVELOPER-DOCS.md\" rel=\"nofollow ugc\">DEVELOPER-DOCS.md\u003C\u002Fa>. That documentation covers the numerous hooks provided by the plugin. Those hooks are listed below to provide an overview of what’s available.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>c2c_quick_drafts_access_post_types\u003C\u002Fcode> : Customize the list of post_types for which the draft links will be shown\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_quick_drafts_access_show_all_drafts_menu_link\u003C\u002Fcode> : Customize whether the ‘All Drafts’ link will appear at all for a post type.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_quick_drafts_access_show_my_drafts_menu_link\u003C\u002Fcode> : Customize whether the ‘My Drafts’ link will appear at all for a post type.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_quick_drafts_access_show_if_empty\u003C\u002Fcode> : Customize whether the ‘All Drafts’ and\u002For ‘My Drafts’ links will appear for a post type \u003Cem>when that post type currently has no drafts\u003C\u002Fem>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>c2c_quick_drafts_access_disable_filter_dropdown\u003C\u002Fcode> : removal of the ‘Drafts By’ dropdown from drafts post list table.\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds links to 'All Drafts' and 'My Drafts' under Posts, Pages, and other custom post type sections in the admin menu.",400,20053,"2025-04-14T21:19:00.000Z","6.8.5","4.6",[20,21,22,75,133],"shortcut","https:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fquick-drafts-access\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquick-drafts-access.2.4.zip",{"attackSurface":137,"codeSignals":167,"taintFlows":183,"riskAssessment":184,"analyzedAt":190},{"hooks":138,"ajaxHandlers":157,"restRoutes":164,"shortcodes":165,"cronEvents":166,"entryPointCount":14,"unprotectedCount":26},[139,145,150,153],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","admin_footer","cfdd_footer","drafts-dropdown.php",219,{"type":140,"name":146,"callback":147,"priority":148,"file":143,"line":149},"admin_bar_menu","cfdd_admin_bar_menu_drafts",45,222,{"type":140,"name":151,"callback":142,"file":143,"line":152},"wp_footer",226,{"type":140,"name":154,"callback":155,"file":143,"line":156},"init","cfdd_init",229,[158],{"action":159,"nopriv":160,"callback":161,"hasNonce":160,"hasCapCheck":162,"file":143,"line":163},"cfdd_drafts_list",false,"cfdd_ajax_drafts_list",true,75,[],[],[],{"dangerousFunctions":168,"sqlUsage":169,"outputEscaping":171,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":173,"bundledLibraries":182},[],{"prepared":26,"raw":26,"locations":170},[],{"escaped":172,"rawEcho":173,"locations":174},2,3,[175,178,180],{"file":143,"line":176,"context":177},72,"raw output",{"file":143,"line":179,"context":177},99,{"file":143,"line":181,"context":177},144,[],[],{"summary":185,"deductions":186},"The 'drafts-dropdown' plugin version 2.0 exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, SQL injection vulnerabilities (all queries use prepared statements), file operations, and external HTTP requests are all positive indicators. The plugin also correctly utilizes capability checks and has no recorded vulnerabilities, suggesting a history of secure development. However, there are areas for improvement that introduce a low level of risk.\n\nThe primary concern lies in the output escaping, where only 40% of the outputs are properly escaped. This indicates a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is being rendered without adequate sanitization. While the attack surface is small and appears to be protected by capability checks (as no unprotected entry points were found), the insufficient output escaping remains a notable weakness. The lack of any recorded vulnerabilities is a good sign, but it does not negate the risks identified in the current code analysis.\n\nIn conclusion, the 'drafts-dropdown' plugin is relatively secure due to its limited attack surface and absence of critical code flaws. The strengths are in its adherence to secure coding practices for database interactions and the lack of known historical vulnerabilities. The main weakness is the partial implementation of output escaping, which introduces a potential for XSS. Addressing this would significantly enhance the plugin's security.",[187],{"reason":188,"points":189},"Insufficient output escaping",8,"2026-03-16T22:42:17.558Z",{"wat":192,"direct":198},{"assetPaths":193,"generatorPatterns":195,"scriptPaths":196,"versionParams":197},[194],"\u002Fwp-content\u002Fplugins\u002Fdrafts-dropdown\u002Fdrafts-dropdown.php",[],[],[],{"cssClasses":199,"htmlComments":205,"htmlAttributes":206,"restEndpoints":215,"jsGlobals":217,"shortcodeOutput":218},[200,201,202,203,204],"cfdd_drafts","cfdd_drafts_wrap","cfdd_content","cfdd_col","cfdd_clear",[],[207,208,209,210,211,212,213,214],"id=\"cfdd_drafts\"","id=\"cfdd_drafts_wrap\"","class=\"cfdd_content\"","id=\"cfdd_col_1\"","id=\"cfdd_col_2\"","id=\"cfdd_col_3\"","class=\"cfdd_clear\"","class=\"cfdd_col\"",[216],"\u002Fwp-json\u002Fwp\u002Fv2\u002Fposts?status=draft",[159],[]]