[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpjUXxTwfiuLYD32hUBn-sYqk89ylEdg51C7t-amVYd8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":121,"fingerprints":165},"inhouse-tutorials-rss-feed-dashboard-widget","InHouse Tutorials RSS Feed Dashboard Widget","0.3","InHouse","https:\u002F\u002Fprofiles.wordpress.org\u002Finhouse\u002F","\u003Cp>InHouse Tutorials RSS Dashboard Widget was published so we could provide quick tips for sites we build. The plugin adds a dashboard widget  which is a simple RSS feed of a series of helpful tutorials.\u003C\u002Fp>\n","InHouse Tutorials RSS Dashboard Widget was published so we could provide quick tips for sites we build. The plugin adds a dashboard widget  which is a …",10,1578,0,"2015-12-08T20:37:00.000Z","4.3.34","3.0.1","",[19,20,21,22],"dashboard","rss","tutorials","widget","http:\u002F\u002Fuseinhouse.com\u002Ffor-our-clients\u002Ftutorials\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finhouse-tutorials-rss-feed-dashboard-widget.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"inhouse",1,30,84,"2026-04-04T23:36:36.332Z",[36,60,79,96,112],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":31,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":17,"tags":50,"homepage":56,"download_link":57,"security_score":58,"vuln_count":31,"unpatched_count":13,"last_vuln_date":59,"fetched_at":27},"admin-dashboard-rss-feed","Admin Dashboard RSS Feed","3.8","wsxplugindev","https:\u002F\u002Fprofiles.wordpress.org\u002Fwsxplugindev\u002F","\u003Cp>Are you a web design company looking to broadcast your company’s latest news in your client’s Admin Dashboard? This plugin helps to show your latest news in the WordPress Admin Dashboard via an RSS feed.\u003C\u002Fp>\n\u003Cp>This plugin is very simple to install and configure. After successful install and activation. just provide this info and you are set:\u003C\u002Fp>\n\u003Cp>Your company name:\u003Cbr \u002F>\nYour company logo:\u003Cbr \u002F>\nYour website:\u003Cbr \u002F>\nYour company RSS feed URL:\u003Cbr \u002F>\nSet the number of items to show:\u003C\u002Fp>\n\u003Cp>Keep your client abreast of what’s happening.\u003C\u002Fp>\n\u003Ch3>Short Description\u003C\u002Fh3>\n\u003Cp>This plugin shows latest news in the WordPress Admin Dashboard from the RSS feed URL that you provide.\u003C\u002Fp>\n","Admin Dashboard RSS Feed displays company news in the WordPress Admin Dashboard using an RSS feed. It provides quick access to the latest updates.",500,20334,100,"2025-04-25T08:47:00.000Z","6.8.5","4.7.5",[51,52,53,54,55],"admin-widget","admin-rss-feed","rss-feed","show-rss-feed","wordpress-admin-dashboard","https:\u002F\u002Fwww.webstix.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-dashboard-rss-feed.zip",99,"2024-07-11 00:00:00",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":13,"num_ratings":13,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":77,"download_link":78,"security_score":46,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"periscopio","Periscopio","1.0.0","Fernando Tellado","https:\u002F\u002Fprofiles.wordpress.org\u002Ffernandot\u002F","\u003Cp>Periscopio lets you replace the default “WordPress Events and News” dashboard widget with a fully customizable version that displays news from RSS feeds and events from the WordPress.org API.\u003C\u002Fp>\n\u003Cp>Perfect for agencies, developers, and site owners who want to display relevant news sources on the WordPress dashboard instead of the default WordPress.org news.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Replace or complement the default WordPress news widget\u003C\u002Fli>\n\u003Cli>Customizable widget title\u003C\u002Fli>\n\u003Cli>Events section with WordPress community events and editable location\u003C\u002Fli>\n\u003Cli>News section with aggregated RSS feeds sorted by date\u003C\u002Fli>\n\u003Cli>Add unlimited RSS feeds with URL validation before adding\u003C\u002Fli>\n\u003Cli>Configure items per feed and maximum total items displayed\u003C\u002Fli>\n\u003Cli>Configurable footer links for both events and news sections\u003C\u002Fli>\n\u003Cli>Automatic feed caching with configurable duration\u003C\u002Fli>\n\u003Cli>Fully translatable (all URLs are translatable for locale support)\u003C\u002Fli>\n\u003Cli>Clean, native WordPress admin styling\u003C\u002Fli>\n\u003Cli>Two-column settings page with meta box layout\u003C\u002Fli>\n\u003Cli>Cache management tools\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Default Feeds\u003C\u002Fh4>\n\u003Cp>The plugin comes pre-configured with these feeds (you can change them):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WordPress News (wordpress.org)\u003C\u002Fli>\n\u003Cli>Matt Mullenweg’s blog (ma.tt)\u003C\u002Fli>\n\u003Cli>Make WordPress Project\u003C\u002Fli>\n\u003Cli>WordPress España News\u003C\u002Fli>\n\u003Cli>AyudaWP\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the following external services:\u003C\u002Fp>\n\u003Ch4>WordPress.org Events API\u003C\u002Fh4>\n\u003Cp>This plugin uses the WordPress.org Events API to retrieve WordPress community events (meetups, WordCamps) near the user’s location. The user’s configured location and locale are sent to the API when the dashboard widget is loaded or when the location is updated in the settings page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Service: \u003Ca href=\"https:\u002F\u002Fapi.wordpress.org\u002Fevents\u002F1.0\u002F\" rel=\"nofollow ugc\">WordPress.org Events API\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Data sent: city\u002Flocation name, user locale, and timezone\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\" rel=\"ugc\">WordPress.org Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>RSS feeds\u003C\u002Fh4>\n\u003Cp>This plugin fetches RSS feeds from URLs configured by the site administrator. By default it includes feeds from wordpress.org, ma.tt, make.wordpress.org, and ayudawp.com, but administrators can add, remove, or change feeds in the settings page. Feed content is cached locally for the configured cache duration.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: standard HTTP requests to the configured feed URLs\u003C\u002Fli>\n\u003Cli>No personal user data is transmitted to the feed providers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Need help or have suggestions?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fservicios.ayudawp.com\" rel=\"nofollow ugc\">Official website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fperiscopio\u002F\" rel=\"ugc\">WordPress support forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002FAyudaWordPressES\" rel=\"nofollow ugc\">YouTube channel\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fayudawp.com\" rel=\"nofollow ugc\">Documentation and tutorials\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Love the plugin? Please leave us a 5-star review and help spread the word!\u003C\u002Fp>\n\u003Ch3>About AyudaWP\u003C\u002Fh3>\n\u003Cp>We are specialists in WordPress security, SEO, and performance optimization plugins. We create tools that solve real problems for WordPress site owners while maintaining the highest coding standards and accessibility requirements.\u003C\u002Fp>\n","Replace the default WordPress News widget with your own customizable RSS feeds and events.",20,156,"2026-03-06T12:29:00.000Z","6.9.4","5.0","7.4",[19,75,76,20,22],"feeds","news","https:\u002F\u002Fservicios.ayudawp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fperiscopio.1.0.0.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":11,"downloaded":87,"rating":13,"num_ratings":13,"last_updated":88,"tested_up_to":89,"requires_at_least":89,"requires_php":17,"tags":90,"homepage":94,"download_link":95,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"dashboard-technorati-reactions-extended","Dashboard: Technorati Reactions Extended","2.1.1","Ricardo Gonzalez","https:\u002F\u002Fprofiles.wordpress.org\u002Frickgc\u002F","\u003Cp>WordPress 2.7 introduces a widgetized dashboard featuring the latest posts and WordPress news.\u003C\u002Fp>\n\u003Cp>This plugin creates a new widget for that dashboard that lists out the latest technorati reactions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Only for WordPress 2.7\u003C\u002Fstrong>\u003C\u002Fp>\n","Widget for the WordPress +2.7 dashboard to display the latest technorati reactions.",3667,"2009-02-02T15:43:00.000Z","2.7",[19,91,20,92,93],"dashboard-widget","technorati-reactions","widgets","http:\u002F\u002Frick.jinlabs.com\u002Fcode\u002Fdashboard-technorati-reactions-extended","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdashboard-technorati-reactions-extended.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":11,"downloaded":104,"rating":13,"num_ratings":13,"last_updated":105,"tested_up_to":106,"requires_at_least":16,"requires_php":17,"tags":107,"homepage":110,"download_link":111,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"nova-dashboard-widget-bbc-news-politics","Nova Dashboard Widget – BBC News – Politics","1.0","Conor Lyons","https:\u002F\u002Fprofiles.wordpress.org\u002Fspike2828\u002F","\u003Cp>Welcome to the Nova Digital Media Dashboard Widget Plugin\u003C\u002Fp>\n\u003Cp>This plugin Adds the RSS Feed of BBC News Politics\u003C\u002Fp>\n\u003Ch3>Looking To Add All The BBC RSS Feeds To Your Dashboard?\u003C\u002Fh3>\n\u003Cp>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnova-dashboard-widget-bbc-news\u002F\" rel=\"ugc\">Look No Further\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Big Thanks to some of \u003Ca href=\"http:\u002F\u002Fwww.novadigitalmedia.com\" rel=\"nofollow ugc\">The Best local marketing experts In Essex\u003C\u002Fa> \u003Ca href=\"http:\u002F\u002Fwww.novadigitalmedia.com\" rel=\"nofollow ugc\">Nova Digital Media\u003C\u002Fa>\u003C\u002Fp>\n","The Nova Dashboard widget adds the BBC News Politics rss feed to your Dashboard",1674,"2013-10-12T10:48:00.000Z","3.6.1",[108,91,109,20,53],"bbc-news","nova-dashboard-widget","http:\u002F\u002Fwww.novadigitalmedia.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnova-dashboard-widget-bbc-news-politics.zip",{"slug":113,"name":114,"version":99,"author":100,"author_profile":101,"description":115,"short_description":116,"active_installs":11,"downloaded":117,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":106,"requires_at_least":16,"requires_php":17,"tags":118,"homepage":110,"download_link":119,"security_score":46,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":120},"nova-dashboard-widget-bbc-news-technology","Nova Dashboard Widget – BBC News – Technology","\u003Cp>Welcome to the Nova Digital Media Dashboard Widget Plugin\u003C\u002Fp>\n\u003Cp>This plugin Adds the RSS Feed of BBC News Technology\u003C\u002Fp>\n\u003Ch3>Looking To Add All The BBC RSS Feeds To Your Dashboard?\u003C\u002Fh3>\n\u003Cp>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnova-dashboard-widget-bbc-news\u002F\" rel=\"ugc\">Look No Further\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Big Thanks to some of \u003Ca href=\"http:\u002F\u002Fwww.novadigitalmedia.com\" rel=\"nofollow ugc\">The Best local marketing experts In Essex\u003C\u002Fa> \u003Ca href=\"http:\u002F\u002Fwww.novadigitalmedia.com\" rel=\"nofollow ugc\">Nova Digital Media\u003C\u002Fa>\u003C\u002Fp>\n","The Nova Dashboard widget adds the BBC News Technology rss feed to your Dashboard",1830,[108,91,109,20,53],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnova-dashboard-widget-bbc-news-technology.zip","2026-03-15T10:48:56.248Z",{"attackSurface":122,"codeSignals":139,"taintFlows":153,"riskAssessment":154,"analyzedAt":164},{"hooks":123,"ajaxHandlers":135,"restRoutes":136,"shortcodes":137,"cronEvents":138,"entryPointCount":13,"unprotectedCount":13},[124,130],{"type":125,"name":126,"callback":127,"file":128,"line":129},"filter","wp_feed_cache_transient_lifetime","anonymous","inhouse-tutorials-dashboard-widget.php",59,{"type":131,"name":132,"callback":133,"file":128,"line":134},"action","wp_dashboard_setup","add_dashboard_widget",61,[],[],[],[],{"dangerousFunctions":140,"sqlUsage":144,"outputEscaping":146,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":31,"bundledLibraries":152},[141],{"fn":142,"file":128,"line":129,"context":143},"create_function","add_filter('wp_feed_cache_transient_lifetime',create_function('$a', 'return 1200;'));",{"prepared":13,"raw":13,"locations":145},[],{"escaped":147,"rawEcho":31,"locations":148},2,[149],{"file":128,"line":150,"context":151},47,"raw output",[],[],{"summary":155,"deductions":156},"The \"inhouse-tutorials-rss-feed-dashboard-widget\" plugin version 0.3 exhibits a generally good security posture based on the provided static analysis. There are no identified CVEs in its history, suggesting a history of responsible development or a lack of significant past vulnerabilities. The absence of AJAX handlers, REST API routes, shortcodes, and cron events with open entry points is commendable, as is the exclusive use of prepared statements for SQL queries. The code also demonstrates some attention to output escaping and capability checks. \n\nHowever, the presence of the `create_function` is a significant concern. This function is deprecated and can be a source of security vulnerabilities, especially when used in conjunction with user-controlled input, although the taint analysis did not reveal any explicit flows. The limited output escaping (67% properly escaped) also leaves room for potential cross-site scripting (XSS) vulnerabilities if the unescaped outputs are exposed to user-controlled data. The complete lack of taint analysis flows, while seemingly positive, might also indicate an incomplete analysis or a very simple plugin that doesn't process user input in complex ways.\n\nIn conclusion, while the plugin avoids many common pitfalls like unpatched CVEs and insecure SQL queries, the use of `create_function` and the incomplete output escaping present moderate risks. The absence of vulnerability history is a positive sign, but developers should still prioritize modern coding practices and thorough input\u002Foutput sanitization to ensure robust security.",[157,159,162],{"reason":158,"points":11},"Use of deprecated and potentially unsafe function `create_function`",{"reason":160,"points":161},"Incomplete output escaping (67% proper)",5,{"reason":163,"points":147},"No nonce checks on potential entry points (though none identified)","2026-03-17T00:16:20.472Z",{"wat":166,"direct":173},{"assetPaths":167,"generatorPatterns":169,"scriptPaths":170,"versionParams":171},[168],"\u002Fwp-content\u002Fplugins\u002Finhouse-tutorials-rss-feed-dashboard-widget\u002Fstyle.css",[],[],[172],"inhouse-tutorials-rss-feed-dashboard-widget\u002Fstyle.css?ver=0.3",{"cssClasses":174,"htmlComments":177,"htmlAttributes":178,"restEndpoints":179,"jsGlobals":180,"shortcodeOutput":181},[175,176],"rsswidget","rsswidgetmore",[],[],[],[],[]]