[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fK-Vh2dOvW_qMwJMc0mIahdsRXQ1zrG9KtN6oTl184Mc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":130,"fingerprints":195},"github-user-repo-widget","GitHub User Repo Widget","1.0.0","Jared Atchison","https:\u002F\u002Fprofiles.wordpress.org\u002Fjaredatch\u002F","\u003Cp>A simple widget that will show a list of repos for a specified GitHub user. Optionally can display a GitHub follow badge as well.\u003C\u002Fp>\n","A simple widget that will show a list of repos for a specified GitHub user.",10,5287,0,"2012-09-24T22:51:00.000Z","3.5.2","3.4","",[19,20,21],"github","widget","widget-only","https:\u002F\u002Fgithub.com\u002Fjaredatch\u002Fgithub-user-repo-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgithub-user-repo-widget.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"jaredatch",8,53210,87,1,91,"2026-04-04T06:33:35.926Z",[37,58,75,95,112],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":56,"download_link":57,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"restrict-widgets","Restrict Widgets","1.3.1","dFactory","https:\u002F\u002Fprofiles.wordpress.org\u002Fdfactory\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.dfactory.eu\u002Fplugins\u002Frestrict-widgets\u002F\" rel=\"nofollow ugc\">Restrict Widgets\u003C\u002Fa> is all in one solution for widget management in WordPress. It lets you easily control the pages that each widget will appear on and avoid creating multiple sidebars and duplicating widgets. You can also set who can manage widgets, which sidebars and widgets will be available to selected users, which widget options will be available and how it will be displayed.\u003C\u002Fp>\n\u003Cp>By default, Hide widget on selected is enabled with no options selected, so all current widgets will continue to display on all pages.\u003C\u002Fp>\n\u003Cp>For more information, check out plugin page at \u003Ca href=\"http:\u002F\u002Fwww.dfactory.eu\u002F\" rel=\"nofollow ugc\">dFactory\u003C\u002Fa> or plugin \u003Ca href=\"http:\u002F\u002Fwww.dfactory.eu\u002Fsupport\u002Fforum\u002Frestrict-widgets\u002F\" rel=\"nofollow ugc\">support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Hide or display each widget on selected pages, posts, categories, custom taxonomies, custom post types, single posts, archives, special pages, for logged in or logged out users, current language, mobile device and so on\u003C\u002Fli>\n\u003Cli>Select which user roles are restricted to manage widgets\u003C\u002Fli>\n\u003Cli>Select which sidebars will be restricted to admins only\u003C\u002Fli>\n\u003Cli>Select which widgets will be restricted to admins only\u003C\u002Fli>\n\u003Cli>Select which widget options will be restricted to admins only\u003C\u002Fli>\n\u003Cli>Choose to display or not widget options as groups\u003C\u002Fli>\n\u003Cli>Option to modify the is_active_sidebar() function to use Restrict Widgets display settings\u003C\u002Fli>\n\u003Cli>Multisite compatible\u003C\u002Fli>\n\u003Cli>WPML compatible\u003C\u002Fli>\n\u003Cli>Polylang compatible\u003C\u002Fli>\n\u003Cli>.pot file for translations included\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Chinese – by Changmeng Hu\u003C\u002Fli>\n\u003Cli>Czech – by Martin Kucera\u003C\u002Fli>\n\u003Cli>German – by \u003Ca href=\"http:\u002F\u002Fapart-webdesign.de\u002F\" rel=\"nofollow ugc\">Angelika Reisiger\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Hebrew – by \u003Ca href=\"http:\u002F\u002Fatar4u.com\u002F\" rel=\"nofollow ugc\">Ahrale Shrem\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian – by \u003Ca href=\"http:\u002F\u002Fsododesign.it\u002F\" rel=\"nofollow ugc\">Davide Pante\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Polish – by Bartosz Arendt\u003C\u002Fli>\n\u003C\u002Ful>\n","All in one widgets and sidebars management in WordPress. Allows you to hide or display widgets on specified pages and restrict access for users.",4000,132717,96,36,"2017-11-28T12:16:00.000Z","4.7.32","4.0",[53,54,20,21,55],"cms","conditional-tags","widgets","http:\u002F\u002Fwww.dfactory.eu\u002Fplugins\u002Frestrict-widgets\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-widgets.1.3.1.zip",{"slug":59,"name":60,"version":61,"author":41,"author_profile":42,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":17,"tags":71,"homepage":73,"download_link":74,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"widget-icon","Widget Icon","1.1.3","\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.dfactory.eu\u002Fplugins\u002Fwidget-icon\u002F\" rel=\"nofollow ugc\">Widget Icon\u003C\u002Fa> enhances your website with 640+ beautiful icons from \u003Ca href=\"http:\u002F\u002Ffortawesome.github.io\u002FFont-Awesome\u002F\" rel=\"nofollow ugc\">Font Awesome\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Faristeides.com\u002Felusive-iconfont\u002F\" rel=\"nofollow ugc\">Elusive\u003C\u002Fa> font libraries designed for Twitter Bootstrap. You just select a font library, select an icon and display it in any widget on your WordPress site.\u003C\u002Fp>\n\u003Cp>For more information, check out plugin page at \u003Ca href=\"http:\u002F\u002Fwww.dfactory.eu\u002F\" rel=\"nofollow ugc\">dFactory\u003C\u002Fa> or plugin \u003Ca href=\"http:\u002F\u002Fwww.dfactory.eu\u002Fsupport\u002Fforum\u002Fwidget-icon\u002F\" rel=\"nofollow ugc\">support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Works out-of-the-box with every widget and theme.\u003C\u002Fli>\n\u003Cli>Select from 640+ beautiful icons\u003C\u002Fli>\n\u003Cli>Select from Font Awesome and Elusive icon libraries\u003C\u002Fli>\n\u003Cli>Select icon position\u003C\u002Fli>\n\u003Cli>Set icon padding in pixels or percentage\u003C\u002Fli>\n\u003Cli>Select icon vertical allignment (top, bottom, middle etc.)\u003C\u002Fli>\n\u003Cli>Select icon size (standard, large, x2, x3, x4)\u003C\u002Fli>\n\u003Cli>Automatically use color from widget title or set it manually with color-picker\u003C\u002Fli>\n\u003Cli>.pot file for translations included\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also use these icons anywhere in your theme.\u003C\u002Fp>\n\u003Ch4>For Elusive icons\u003C\u002Fh4>\n\u003Cp>Syntax: \u003Ccode>\u003Ci class=\"elusive icon-adjust\">\u003C\u002Fi>\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch4>For Font Awesome icons\u003C\u002Fh4>\n\u003Cp>Syntax: \u003Ccode>\u003Ci class=\"font-awesome icon-adjust\">\u003C\u002Fi>\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch4>Translations:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Chinese – by xiaoyaole\u003C\u002Fli>\n\u003Cli>German – by Matthias Siebler\u003C\u002Fli>\n\u003Cli>Polish – by Bartosz Arendt\u003C\u002Fli>\n\u003C\u002Ful>\n","Enhance your website with 640+ icons designed for Twitter Bootstrap. Just select an icon and display it in any widget on your WordPress site.",700,24488,98,13,"2013-12-09T15:21:00.000Z","3.7.41","3.3",[72,20,59,21,55],"icon","http:\u002F\u002Fwww.dfactory.eu\u002Fplugins\u002Fwidget-icon\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwidget-icon.1.1.3.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":51,"requires_php":17,"tags":89,"homepage":93,"download_link":94,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"display-authors-widget","Display Authors Widget","1.1.1","Sami Keijonen","https:\u002F\u002Fprofiles.wordpress.org\u002Fsamikeijonen\u002F","\u003Cp>This plugin register a widget to display authors by role in a sidebar. You can choose whether to display author post count, biography or gravatar.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Go to Appearance >> Widgets. There you can find widget called Display Authors Widget. There are some settings in a widget.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Title: Set whatever title you want, or leave it blank to disable the title.\u003C\u002Fli>\n\u003Cli>Role: Choose which role authors you want to display.\u003C\u002Fli>\n\u003Cli>Display Post Count?: This displays the number of posts the author have published. This will only be shown if there are at least one post by author. The format\u003Cbr \u002F>\nis Author name ($number). \u003C\u002Fli>\n\u003Cli>Display Author Bio?: If checked, this will display the author’s bio as set in their WordPress profile page.\u003C\u002Fli>\n\u003Cli>Display Author Gravatar?: If checked, this will display the author’s gravatar.\u003C\u002Fli>\n\u003Cli>Gravatar Size: This is the size of the gravatar image in pixels. Do not write px or pixels in this field. If you want gravatar size to be 50px, then write “50” in this field.\u003C\u002Fli>\n\u003Cli>Gravatar Alignment: Choose whether you want to display gravatar on the left, right or no alignment at all.\u003C\u002Fli>\n\u003Cli>Limit: This will allow you to set the number of authors that are displayed in the widget.\u003C\u002Fli>\n\u003C\u002Ful>\n","Display authors by role.",100,16608,88,5,"2015-07-04T07:31:00.000Z","4.3.34",[90,91,92,20,21],"author","authors","multi","https:\u002F\u002Ffoxland.fi\u002Fdownloads\u002Fdisplay-authors-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisplay-authors-widget.1.1.1.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":83,"num_ratings":33,"last_updated":105,"tested_up_to":69,"requires_at_least":106,"requires_php":17,"tags":107,"homepage":110,"download_link":111,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"optimized-dropdown-menus","Optimized Dropdown Menus","1.2.2","Maor Chasen","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaor\u002F","\u003Cp>By using Optimized Dropdown Menus Widget, you’ll be able to create dropdown menus that are searchable or “spiderable” by search engine bots.\u003C\u002Fp>\n\u003Ch4>So how does it work?\u003C\u002Fh4>\n\u003Cp>Basically, it works like this:\u003C\u002Fp>\n\u003Cp>The menu’s markup code is being printed as an ordinary nested menu. e.g.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cul>\n    \u003Cli>\u003Ca href=\"http:\u002F\u002Fexample.com\u002Fpage\">Some Random Page\u003C\u002Fa>\u003C\u002Fli>\n    \u003Cli>\u003Ca href=\"http:\u002F\u002Fexample.com\u002Fpage-another\">Another Page\u003C\u002Fa>\u003C\u002Fli>\n    \u003Cli>\u003Ca href=\"http:\u002F\u002Fexample.com\u002Fyao\">Yet Another One\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Since most browsers support JavaScript, using the widget, the markup would be translated into something like this\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cselect>\n    \u003Coption value=\"http:\u002F\u002Fexample.com\u002Fpage\">Some Random Page\u003C\u002Foption>\n    ...\n    \u003Coption value=\"http:\u002F\u002Fexample.com\u002Fpage\">Something else\u003C\u002Foption>\n\u003C\u002Fselect>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The tricky part here is, that search engines do not usually interpret JavaScript, all they will be able to scan is the nested menu. That way they will reach out for those pages, and most probably will crawl those pages as well.\u003C\u002Fp>\n\u003Cp>ODM also supports a range of per-widget settings:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Control whether links will be open in new window or in the same window\u003C\u002Fli>\n\u003Cli>Choose to use HTML5\u002FXHTML markup for the menu\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features set for the next versions\u003C\u002Fh4>\n\u003Cp>Soon there will be an option for developers to use the same functionality via the code. e.g.\n    \u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Currently, these translations are available:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Spanish (es_ES) – in courtesy of \u003Ca href=\"http:\u002F\u002Ffirstsiteguide.com\u002F\" rel=\"nofollow ugc\">Ognjen Djuraskovic\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Serbian (sr_RS) – in courtesy of \u003Ca href=\"http:\u002F\u002Ffirstsiteguide.com\u002F\" rel=\"nofollow ugc\">Ognjen Djuraskovic\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Create \"spiderable\" drop-down menus that every search engine will scan!",70,8853,"2014-04-21T08:01:00.000Z","3.0",[108,109,20,21],"menu","seo","http:\u002F\u002Fmaorchasen.com\u002Fplugins\u002Foptimized-dropdown-menus\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foptimized-dropdown-menus.1.2.2.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":11,"downloaded":120,"rating":13,"num_ratings":13,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":17,"tags":124,"homepage":128,"download_link":129,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"bns-chesscom-badge","BNS Chess.com Badge","0.8","Edward Caissie","https:\u002F\u002Fprofiles.wordpress.org\u002Fcais\u002F","\u003Cp>Chess.com “badge” that dynamically displays, in a widget area or with a shortcode, the user’s current rating with direct links to Chess.com\u003Cbr \u002F>\n* Copyright 2010-2015  Edward Caissie  (email : edward.caissie@gmail.com)\u003C\u002Fp>\n\u003Cp>This program is free software; you can redistribute it and\u002For modify\u003Cbr \u002F>\n  it under the terms of the GNU General Public License version 2,\u003Cbr \u002F>\n  as published by the Free Software Foundation.\u003C\u002Fp>\n\u003Cp>You may NOT assume that you can use any other version of the GPL.\u003C\u002Fp>\n\u003Cp>This program is distributed in the hope that it will be useful,\u003Cbr \u002F>\n  but WITHOUT ANY WARRANTY; without even the implied warranty of\u003Cbr \u002F>\n  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\u003Cbr \u002F>\n  GNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License\u003Cbr \u002F>\n  along with this program; if not, write to the Free Software\u003Cbr \u002F>\n  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA\u003C\u002Fp>\n\u003Cp>The license for this software can also likely be found here:\u003Cbr \u002F>\n  http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003C\u002Fp>\n","Dynamically displays a Chess.com user's current rating.",3582,"2016-04-10T17:53:00.000Z","4.5.33","3.6",[125,126,127,21],"chess-com","dynamic-ratings","shortcode","http:\u002F\u002Fbuynowshop.com\u002Fplugins\u002Fbns-chesscom-badge","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbns-chesscom-badge.0.8.zip",{"attackSurface":131,"codeSignals":143,"taintFlows":181,"riskAssessment":182,"analyzedAt":194},{"hooks":132,"ajaxHandlers":139,"restRoutes":140,"shortcodes":141,"cronEvents":142,"entryPointCount":13,"unprotectedCount":13},[133],{"type":134,"name":135,"callback":136,"file":137,"line":138},"action","widgets_init","anonymous","github-repos-widget.php",191,[],[],[],[],{"dangerousFunctions":144,"sqlUsage":148,"outputEscaping":150,"fileOperations":13,"externalRequests":33,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":180},[145],{"fn":146,"file":137,"line":138,"context":147},"create_function","add_action( 'widgets_init', create_function( '', \"register_widget('ja_github_repo_Widget');\" ) );",{"prepared":13,"raw":13,"locations":149},[],{"escaped":151,"rawEcho":152,"locations":153},6,14,[154,157,159,161,163,165,167,169,170,172,174,175,177,178],{"file":137,"line":155,"context":156},89,"raw output",{"file":137,"line":158,"context":156},92,{"file":137,"line":160,"context":156},131,{"file":137,"line":162,"context":156},139,{"file":137,"line":164,"context":156},142,{"file":137,"line":166,"context":156},177,{"file":137,"line":168,"context":156},178,{"file":137,"line":168,"context":156},{"file":137,"line":171,"context":156},181,{"file":137,"line":173,"context":156},182,{"file":137,"line":173,"context":156},{"file":137,"line":176,"context":156},185,{"file":137,"line":176,"context":156},{"file":137,"line":179,"context":156},186,[],[],{"summary":183,"deductions":184},"The 'github-user-repo-widget' v1.0.0 plugin exhibits a mixed security posture.  On the positive side, the absence of known CVEs and a clean vulnerability history suggest a historically stable plugin. The code analysis also shows good practices in SQL query handling, with 100% using prepared statements, and no file operations or external HTTP requests are directly performed by the plugin itself.  However, there are significant areas of concern. The use of the `create_function` is a critical security anti-pattern, as it can lead to arbitrary code execution if user input is not meticulously sanitized before being passed to it. Furthermore, only 30% of output is properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities, especially given the lack of robust capability checks and nonce checks on potential entry points, even though the reported attack surface is currently zero. The lack of taint analysis data is also a gap, preventing a full understanding of how data flows within the plugin.",[185,188,190,192],{"reason":186,"points":187},"Use of dangerous function create_function",15,{"reason":189,"points":151},"Low percentage of properly escaped output (30%)",{"reason":191,"points":86},"No nonce checks",{"reason":193,"points":86},"No capability checks","2026-03-17T01:05:31.588Z",{"wat":196,"direct":201},{"assetPaths":197,"generatorPatterns":198,"scriptPaths":199,"versionParams":200},[],[],[],[],{"cssClasses":202,"htmlComments":204,"htmlAttributes":205,"restEndpoints":207,"jsGlobals":208,"shortcodeOutput":209},[203],"guthub-repo-widget",[],[206],"data-id_base=\"ja-github\"",[],[],[]]