[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhqdjQTQrJwE8k_DY0XgjGIEJ-qynIs1vnY91-rSfxHA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":129,"fingerprints":196},"easyweather-widget","EasyWeather widget","1.0","myselfko","https:\u002F\u002Fprofiles.wordpress.org\u002Fmyselfko\u002F","\u003Cp>Simple and lightweight widget for displaying weather data and forecast from Weather Underground (www.wunderground.com).\u003C\u002Fp>\n\u003Cp>Plugin saves a local copy of data for faster and more optimal running.\u003Cbr \u002F>\nYou need a Wunderground API key, which you can get here http:\u002F\u002Fwww.wunderground.com\u002Fweather\u002Fapi\u002F.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cli>simple and lightweight\u003C\u002Fli>\n\u003Cli>multilanguage (currently supported: english, german, italian, slovene)\u003C\u002Fli>\n\u003Cli>easy for translating\u003C\u002Fli>\n\u003Cli>metric and imperial units\u003C\u002Fli>\n\u003Cli>user can define own refreshing interval in minutes\u003C\u002Fli>\n\u003Cli>no need for own weather icons, plugin automatically download them from Wunderground\u003C\u002Fli>\n","Simple and lightweight widget for displaying weather data and forecast from Weather Underground (www.wunderground.com).",20,3407,0,"2012-12-15T10:08:00.000Z","3.5.2","3.0.1","",[19,20,21,22,23],"lightweight","simple","underground","vreme","weather","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Feasyweather-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasyweather-widget.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-04T13:56:49.096Z",[36,57,76,94,112],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":17,"tags":51,"homepage":55,"download_link":56,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wunderground","Weather Underground","2.1.3","Zack Katz","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatzwebdesign\u002F","\u003Ch3>Wunderground is the best WordPress weather site.\u003C\u002Fh3>\n\u003Cp>Wunderground.com has the most accurate and in-depth weather information. They’re also not evil corporate giants, and are weather geeks, which is nice. This plugin uses the Wunderground API for its accurate forecasts.\u003C\u002Fp>\n\u003Ch3>If you want a great-looking weather forecast, use this plugin.\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>This is the best-looking weather forecast plugin for WordPress.\u003C\u002Fstrong> It looks great on many different templates out of the box, including the default WP theme.\u003C\u002Fp>\n\u003Ch3>For more information, visit the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkatzwebservices\u002FWunderground#setting-up-the-plugin\" rel=\"nofollow ugc\">plugin information page\u003C\u002Fa>\u003C\u002Fh3>\n\u003Cp>Learn about setting up the plugin, how to configure the shortcode, template overrides and more on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkatzwebservices\u002FWunderground#setting-up-the-plugin\" rel=\"nofollow ugc\">plugin info page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>About Weather Underground\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>Weather Underground has challenged the conventions around how weather information is shared with the public since 1993. We’re immensely proud of the unique products that our community and meteorologists have created to improve people’s access to meaningful weather data from around the globe. As the Internet’s 1st weather service, we consider ourselves pioneers within our field and we’re constantly seeking new data sets and the next technologies that will help us share more data with more people.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cem>Weather Underground is a registered trademark of The Weather Channel, LLC. both in the United States and internationally. The Weather Underground Logo is a trademark of Weather Underground, LLC.\u003C\u002Fem>\u003C\u002Fp>\n","Get accurate and beautiful weather forecasts powered by Wunderground.com",4000,271977,74,50,"2017-11-28T09:26:00.000Z","4.5.33","3.6",[23,52,53,54,37],"weather-underground","weather-com","weatherbug","https:\u002F\u002Fgithub.com\u002Fkatzwebservices\u002FWunderground#setting-up-the-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwunderground.zip",{"slug":58,"name":59,"version":60,"author":58,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":17,"tags":71,"homepage":74,"download_link":75,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wettervorhersage","Wettervorhersage","1.0.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fwettervorhersage\u002F","\u003Cp>Wettervorhersage widget is a free weather forecasting widget for your beautiful wordpress website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Supported in German and English\u003C\u002Fli>\n\u003Cli>The widget is responsive, perfect for mobile and desktop.\u003C\u002Fli>\n\u003Cli>Widget style like background and color can be customized\u003C\u002Fli>\n\u003Cli>No development skills are needed\u003C\u002Fli>\n\u003Cli>High performance and lightweight code\u003C\u002Fli>\n\u003Cli>SEO friendly\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>** For special customization requests please contact this mail -> wettervorhersage@wetter2.com\u003C\u002Fp>\n\u003Cp>The Wettervorhersage plugin is relying on a 3rd party as a service, the widget is using weather services provided by wetter2.com.\u003Cbr \u002F>\n* Service provider link – https:\u002F\u002Fwww.wetter2.com\u003Cbr \u002F>\n* Service provider terms of use link – https:\u002F\u002Fwww.wetter2.com\u002Fterms\u003Cbr \u002F>\n* Service privacy policy link – https:\u002F\u002Fwww.wetter2.com\u002Fprivacy\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","Get the new and amazing weather forecast widget, select location and colors, responsive widget.",2000,15606,100,4,"2024-02-29T18:38:00.000Z","6.4.8","4.0.1",[72,22,23,73,58],"klima","wetter","https:\u002F\u002Fwww.wetter2.com\u002Fwidgets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwettervorhersage.zip",{"slug":77,"name":78,"version":6,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":17,"download_link":92,"security_score":66,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":93},"danielme-weather","Danielme Weather Widget","danielme85","https:\u002F\u002Fprofiles.wordpress.org\u002Fdanielme85\u002F","\u003Cp>A WordPress widget that shows weather information based on SimpleWeather.js and WeatherIcons css.\u003C\u002Fp>\n","A Wordpress widget that shows weather information based on SimpleWeather.js and WeatherIcons css.",10,1816,"4.8.28","4.7","5.4",[89,23,90,91],"simpleweather","weathericons","widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdanielme-weather.1.1.zip","2026-03-15T10:48:56.248Z",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":83,"downloaded":102,"rating":103,"num_ratings":104,"last_updated":105,"tested_up_to":49,"requires_at_least":106,"requires_php":17,"tags":107,"homepage":17,"download_link":111,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"easy-maintenance","Easy Maintenance","1.1.5","Mitch","https:\u002F\u002Fprofiles.wordpress.org\u002Flowest\u002F","\u003Cp>The most lightweight WordPress solution for quick maintenances. This plugin adds a maintenance option to your settings menu.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The admin bar maintenance button will become red to indicate that you have maintenance mode enabled so you’ll never forget to turn it off\u003C\u002Fli>\n\u003Cli>Customize your own page – after that, you will be able to set it as your maintenance page\u003C\u002Fli>\n\u003Cli>Administrators will still have access to the front-end of the website while the website is under maintenance\u003C\u002Fli>\n\u003Cli>Lightweight, healthy code and very compact: that’s what makes this plugin so awesome!\u003C\u002Fli>\n\u003Cli>Auto Disable (optional); Automatically turn off maintenance mode at the chosen date: you can also put the \u003Ccode>easy-maintenance\u003C\u002Fcode> shortcode in one of your pages to display the Auto Disable date to your visitors\u003C\u002Fli>\n\u003Cli>Support for Genesis Framework and Contact Form 7: You are able to add a contact form to your maintenance page\u003C\u002Fli>\n\u003Cli>This plugin will automatically use the style of your theme\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>No premium versions, no advertisements or hidden credits. This plugin will always stay lightweight and there won’t be any unnecessary code and\u002For features added.\u003C\u002Fp>\n\u003Cp>I appreciate your review!\u003C\u002Fp>\n","The most lightweight WordPress solution for quick maintenances.",2851,94,3,"2016-07-18T11:22:00.000Z","2.9",[19,108,109,110,20],"maintenance","maintenance-mode","pages","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-maintenance.zip",{"slug":113,"name":114,"version":6,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":83,"downloaded":119,"rating":66,"num_ratings":120,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":124,"tags":125,"homepage":127,"download_link":128,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"lightweight-slider","Lightweight Slider","Zen777","https:\u002F\u002Fprofiles.wordpress.org\u002Fmarkbanf\u002F","\u003Cp>Lightweight Slider is a \u003Cstrong>free\u003C\u002Fstrong> and extremely lightweight responsive image slider which uses custom post types and featured images. An easy to use settings page allows full control over slide height, delay between slides, transition duration and animation type.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flightweight-slider.markbanf.co.uk\u002F\" rel=\"nofollow ugc\">Lightweight Slider Plugin Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Extremely lightweight (less than 25kb!)\u003C\u002Fli>\n\u003Cli>Easy set up using custom post types and featured images\u003C\u002Fli>\n\u003Cli>Optional pagination and navigation controls\u003C\u002Fli>\n\u003Cli>Adjustable delay and transition time between slides\u003C\u002Fli>\n\u003Cli>Choose between fade or slide animation\u003C\u002Fli>\n\u003Cli>Fully responsive\u003C\u002Fli>\n\u003Cli>Semantic, minimal HTML\u003C\u002Fli>\n\u003Cli>No external resources loaded\u003C\u002Fli>\n\u003Cli>Simple to modify (plugin consists of only three main files)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Limitations\u003C\u002Fh4>\n\u003Cp>In order to keep this plugin as lightweight as possible it was necessary to make some compromises during development.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>This slider only works with images\u003C\u002Fli>\n\u003Cli>You can only create one set of slides per website\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Donations\u003C\u002Fh3>\n","Lightweight image slider.",1247,2,"2020-02-06T13:36:00.000Z","5.3.21","3.1","7.2",[126,19,20],"image-slider","https:\u002F\u002Fslider.markbanf.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightweight-slider.zip",{"attackSurface":130,"codeSignals":142,"taintFlows":182,"riskAssessment":183,"analyzedAt":195},{"hooks":131,"ajaxHandlers":138,"restRoutes":139,"shortcodes":140,"cronEvents":141,"entryPointCount":13,"unprotectedCount":13},[132],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","widgets_init","anonymous","weather.php",11,[],[],[],[],{"dangerousFunctions":143,"sqlUsage":147,"outputEscaping":149,"fileOperations":180,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":181},[144],{"fn":145,"file":136,"line":137,"context":146},"create_function","add_action('widgets_init', create_function('', 'register_widget(\"EasyWeather_Widget\");'));",{"prepared":13,"raw":13,"locations":148},[],{"escaped":150,"rawEcho":11,"locations":151},8,[152,155,157,158,159,161,162,163,165,166,167,169,170,171,173,174,175,176,178,179],{"file":136,"line":153,"context":154},141,"raw output",{"file":136,"line":156,"context":154},183,{"file":136,"line":156,"context":154},{"file":136,"line":156,"context":154},{"file":136,"line":160,"context":154},184,{"file":136,"line":160,"context":154},{"file":136,"line":160,"context":154},{"file":136,"line":164,"context":154},185,{"file":136,"line":164,"context":154},{"file":136,"line":164,"context":154},{"file":136,"line":168,"context":154},186,{"file":136,"line":168,"context":154},{"file":136,"line":168,"context":154},{"file":136,"line":172,"context":154},187,{"file":136,"line":172,"context":154},{"file":136,"line":172,"context":154},{"file":136,"line":172,"context":154},{"file":136,"line":177,"context":154},188,{"file":136,"line":177,"context":154},{"file":136,"line":177,"context":154},6,[],[],{"summary":184,"deductions":185},"The Easyweather Widget plugin v1.0 exhibits a mixed security posture.  On one hand, the absence of known CVEs and a clean taint analysis suggest a historically low impact from severe vulnerabilities. The use of prepared statements for all SQL queries is a significant strength, mitigating common SQL injection risks.  However, several concerning practices are present in the static analysis. The plugin utilizes the `create_function` PHP construct, which is deprecated and can be a source of security issues if not handled with extreme care, especially in how user-supplied data might influence its execution.  Furthermore, a very low percentage of output is properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities, where malicious code could be injected into the front-end of a WordPress site. The lack of any capability checks or nonce checks, combined with a seemingly zero attack surface in terms of entry points, is unusual and might imply the plugin's functionality is very limited or relies entirely on other mechanisms for security, which is not ideal.  The historical lack of vulnerabilities is positive, but the current code analysis reveals significant weaknesses that require immediate attention, particularly concerning output escaping and the use of `create_function`.",[186,188,191,193],{"reason":187,"points":83},"Use of deprecated 'create_function'",{"reason":189,"points":190},"Low percentage of properly escaped output",15,{"reason":192,"points":83},"No nonce checks on entry points",{"reason":194,"points":83},"No capability checks on entry points","2026-03-16T23:09:44.705Z",{"wat":197,"direct":204},{"assetPaths":198,"generatorPatterns":201,"scriptPaths":202,"versionParams":203},[199,200],"\u002Fwp-content\u002Fplugins\u002Feasyweather-widget\u002Ficons\u002F","\u002Fwp-content\u002Fplugins\u002Feasyweather-widget\u002Fweather-data-.php",[],[],[],{"cssClasses":205,"htmlComments":206,"htmlAttributes":207,"restEndpoints":208,"jsGlobals":209,"shortcodeOutput":210},[],[],[],[],[],[211,212,213,214,215,216,216,217,218,218,219,220,220,221,222,222,223],"\u003Ctable style=\"border-width: 0px\" width=\"100%\">\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\u003Ctd colspan=\"3\" style=\"text-align: center; font-size:20px\">\u003Cb>","\u003C\u002Fb>\u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\u003Ctd colspan=\"3\" style=\"font-size:10px; text-align: center\">","\u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\u003Ctd style=\"text-align: center; vertical-align: middle; font-size: 25px; font-weight: bold\">","\u003C\u002Ftd>\n\t\t\t\t\t\u003Ctd colspan=\"2\">\u003Ccenter>\u003Cimg src=\"","\" \u002F>\u003C\u002Fcenter>\u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\t\u003Ctd style=\"text-align: center;\">\u003Cb>","\u003C\u002Fb>\u003C\u002Ftd>\n\t\t\t\t\t\t\u003Ctd style=\"text-align: center;\">\u003Cb>","\u003C\u002Fb>\u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\t\u003Ctd>\u003Ccenter>\u003Cimg src=\"","\" \u002F>\u003C\u002Fcenter>\u003C\u002Ftd>\n\t\t\t\t\t\t\u003Ctd>\u003Ccenter>\u003Cimg src=\"","\" \u002F>\u003C\u002Fcenter>\u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\t\u003Ctd style=\"text-align: center; font-size: 12px;\">","\u003C\u002Ftd>\n\t\t\t\t\t\t\u003Ctd style=\"text-align: center; font-size: 12px;\">","\u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003Ctr>\n\t\t\t\t\t\t\u003Ctd style=\"text-align: center; font-size: 12px;\">"," \u003C\u002Ftd>\n\t\t\t\t\t\t\u003Ctd style=\"text-align: center; font-size: 12px;\">"," \u003C\u002Ftd>\n\t\t\t\t\u003C\u002Ftr>\n\t\t\t\t\u003C\u002Ftable>"]