[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fSWIBIN3o4tqtxy2paBs6ZfW5uoCbk7BKbTADISKnwmY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":21,"download_link":22,"security_score":23,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":36,"fingerprints":133},"easy-options-page","Easy Options Page","1.5","jokiruiz","https:\u002F\u002Fprofiles.wordpress.org\u002Fjokioki\u002F","\u003Cp>Create Options Pages in less than 2 minutes! Specify the \u003Cstrong>Title\u003C\u002Fstrong> of the page, the \u003Cstrong>icon\u003C\u002Fstrong>, and the \u003Cstrong>options\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Select the icon for your page from a list of icons, all of them prepared and optimized for > 3.8 wordpress admin panel.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For the options you can specify text string or image. (more options are coming in next updates!)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>We also provide \\”short-codes\\” to use the options inside your posts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Do you use WordPress admin with an iPad? Don´t worry, this plugin is fully adapted for tablets and smartphones.\u003C\u002Fp>\n\u003Cp>\u003Cem>Thank you for downloading! your feedback is well appreciated!\u003C\u002Fem>\u003C\u002Fp>\n","Create a WordPress Options Page out of the box. Specify the options (images or text) and use them even inside posts using short-codes",70,3915,96,6,"2015-11-02T15:18:00.000Z","3.9.40","3.0.1","",[20],"options-pages-option-page-shortcode-easy","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-options-page","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-options-page.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":23,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"jokioki",5,780,30,84,"2026-04-04T11:05:50.782Z",[],{"attackSurface":37,"codeSignals":68,"taintFlows":120,"riskAssessment":121,"analyzedAt":132},{"hooks":38,"ajaxHandlers":59,"restRoutes":60,"shortcodes":61,"cronEvents":66,"entryPointCount":67,"unprotectedCount":24},[39,45,49,53,56],{"type":40,"name":41,"callback":42,"file":43,"line":44},"action","admin_menu","create_theme_options_page","easy-options-page.php",24,{"type":40,"name":46,"callback":47,"file":43,"line":48},"admin_init","register_and_build_fields",291,{"type":40,"name":50,"callback":51,"file":43,"line":52},"admin_enqueue_scripts","easy_options_scripts",312,{"type":40,"name":41,"callback":54,"file":43,"line":55},"create_user_easy_options_page",319,{"type":40,"name":46,"callback":57,"file":43,"line":58},"register_user_easy_mysettings",324,[],[],[62],{"tag":63,"callback":64,"file":43,"line":65},"easy_options","easy_options_short_func",426,[],1,{"dangerousFunctions":69,"sqlUsage":70,"outputEscaping":72,"fileOperations":24,"externalRequests":24,"nonceChecks":24,"capabilityChecks":24,"bundledLibraries":119},[],{"prepared":24,"raw":24,"locations":71},[],{"escaped":24,"rawEcho":73,"locations":74},23,[75,78,80,82,84,85,87,89,90,92,94,96,98,100,102,104,106,108,110,112,114,115,117],{"file":43,"line":76,"context":77},120,"raw output",{"file":43,"line":79,"context":77},171,{"file":43,"line":81,"context":77},173,{"file":43,"line":83,"context":77},198,{"file":43,"line":83,"context":77},{"file":43,"line":86,"context":77},200,{"file":43,"line":88,"context":77},205,{"file":43,"line":88,"context":77},{"file":43,"line":91,"context":77},213,{"file":43,"line":93,"context":77},362,{"file":43,"line":95,"context":77},366,{"file":43,"line":97,"context":77},383,{"file":43,"line":99,"context":77},384,{"file":43,"line":101,"context":77},387,{"file":43,"line":103,"context":77},388,{"file":43,"line":105,"context":77},389,{"file":43,"line":107,"context":77},390,{"file":43,"line":109,"context":77},396,{"file":43,"line":111,"context":77},397,{"file":43,"line":113,"context":77},400,{"file":43,"line":113,"context":77},{"file":43,"line":116,"context":77},401,{"file":43,"line":118,"context":77},404,[],[],{"summary":122,"deductions":123},"The 'easy-options-page' v1.5 plugin exhibits a mixed security posture.  On the positive side, the absence of known CVEs and recorded vulnerabilities in its history suggests a generally stable development.  The static analysis also shows no direct use of dangerous functions, no file operations, no external HTTP requests, and all SQL queries are properly prepared. This indicates good practices in several sensitive areas.\n\nHowever, significant concerns arise from the code analysis. The most prominent issue is that 100% of the output is not properly escaped, which presents a high risk of Cross-Site Scripting (XSS) vulnerabilities.  Furthermore, the complete lack of nonce checks and capability checks on the identified entry points (shortcodes) means that any user, regardless of their role or authorization, could potentially trigger actions or display sensitive information if the shortcode is designed to do so.  While the attack surface is small and the taint analysis found no issues, the lack of output escaping and authorization controls on the shortcode are critical oversights.\n\nIn conclusion, while the plugin has a clean vulnerability history and avoids certain risky coding patterns, the unescaped output and lack of proper authorization checks on its shortcode represent substantial security weaknesses. These issues could allow attackers to inject malicious scripts or manipulate plugin functionality. Users of this plugin should be aware of these potential risks.",[124,127,130],{"reason":125,"points":126},"100% of outputs are not properly escaped",15,{"reason":128,"points":129},"No nonce checks on entry points",8,{"reason":131,"points":129},"No capability checks on entry points","2026-03-16T21:31:52.456Z",{"wat":134,"direct":139},{"assetPaths":135,"generatorPatterns":136,"scriptPaths":137,"versionParams":138},[],[],[],[],{"cssClasses":140,"htmlComments":147,"htmlAttributes":148,"restEndpoints":150,"jsGlobals":151,"shortcodeOutput":152},[141,142,143,144,145,146],"easy-wysiwyg-style-head","easy-more","easy-plugins-box","easy-bottom","border","nopadding",[],[149],"easy_option_name",[],[],[]]