[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ftiak8cbEUzf3DRsrhKK62JWWCYSKc8yYFrU3NMi7PEU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":132,"fingerprints":176},"multiple-editors","Multiple Editors","0.1.2","Kaspars","https:\u002F\u002Fprofiles.wordpress.org\u002Fkasparsd\u002F","\u003Cp>Plugin adds a meta box to every post, page and custom post type where users with editor capabilities can promote other users (with author or contributor capabilities, by default) as editors of that post.\u003C\u002Fp>\n\u003Cp>Plugin provides the following filters:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>custom_editors_enable_roles\u003C\u002Fcode> — Specify an array of user roles which should be allowed to be promoted as editors of specific posts and pages. The default is: \u003Ccode>array( 'contributor', 'author' )\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>A plugin by \u003Ca href=\"http:\u002F\u002Fmetronet.no\" rel=\"nofollow ugc\">Metronet\u003C\u002Fa>.\u003C\u002Fp>\n","Allow multiple editors and contributors per post or page. Also enable contributors and authors to upload files and add new pages by default.",10,1896,0,"2014-04-06T14:36:00.000Z","3.7.41","3.1","",[19,20,21,22,23],"author","authors","contributor","edit","permissions","https:\u002F\u002Fgithub.com\u002Fkasparsd\u002Feditor-permissions","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultiple-editors.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"kasparsd",5,50280,88,30,86,"2026-04-04T17:24:16.438Z",[39,60,79,94,116],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":11,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":17,"tags":53,"homepage":58,"download_link":59,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"bbpress-top-contributors","bbPress Top Contributors","0.1","Eduardo Leoni","https:\u002F\u002Fprofiles.wordpress.org\u002Feduardo-leoni\u002F","\u003Cp>Shortcode to show the authors that have posted more\u003C\u002Fp>\n","Shortcode to show the authors that have posted more",1689,100,1,"2014-11-24T14:14:00.000Z","4.0.38","3.5.1",[20,54,55,56,57],"bbpress","contributors","popular","topics","http:\u002F\u002Fwww.eduardoleoni.com.br","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbbpress-top-contributors.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":11,"downloaded":68,"rating":48,"num_ratings":69,"last_updated":17,"tested_up_to":70,"requires_at_least":71,"requires_php":17,"tags":72,"homepage":76,"download_link":77,"security_score":48,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":78},"recent-contributors-widget","Recent Contributors Widget","1.2","Dave Clements","https:\u002F\u002Fprofiles.wordpress.org\u002Fthewanderingbrit\u002F","\u003Cp>\u003Cstrong>Like this plugin?\u003C\u002Fstrong> Consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Frecent-contributors-widget\" title=\"Review Recent Contributors Widget\" rel=\"ugc\">leaving a quick review\u003C\u002Fa> or writing about how you’ve used it on your site – \u003Ca href=\"https:\u002F\u002Fwww.theukedge.com\u002Fcontact\u002F?utm_source=wordpress.org&utm_medium=plugin&utm_campaign=contact\" title=\"Contact Dave\" rel=\"nofollow ugc\">send me a link\u003C\u002Fa> to that write up if you do.\u003C\u002Fp>\n\u003Cp>This plugin is maintained on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftheukedge\u002Frecent-contributors-widget\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>, so feel free to use the repository for reporting issues, submitting feature requests and submitting pull requests.\u003C\u002Fp>\n\u003Cp>This widget displays a list of all of the users that have written content on your site recently, where you can specify the point in time after which you want to consider posts for inclusion in the widget.\u003C\u002Fp>\n\u003Cp>The widget options are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Title – set the widget title (or don’t show one)\u003C\u002Fli>\n\u003Cli>Since when – You can either use dynamic, or static date strings to decide how recently content had to be published to be included in the widget. Use strings like 12\u002F31\u002F09, 30 days ago, Monday, -2 weeks. See \u003Ca href=\"http:\u002F\u002Fphp.net\u002Fmanual\u002Fen\u002Ffunction.strtotime.php\" rel=\"nofollow ugc\">strtotime\u003C\u002Fa> for more information on dynamic time strings.\u003C\u002Fli>\n\u003Cli>Link destination – Set whether the author’s name should point to their list of posts, their website, or nowhere.\u003C\u002Fli>\n\u003Cli>Display post count – Decide whether to show how many posts the user has written in the specified time period.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>I also run \u003Ca href=\"http:\u002F\u002Fwww.doitwithwp.com\u002F?utm_source=wordpress.org&utm_medium=plugin&utm_campaign=my-other-sites\" title=\"WordPress Tutorials\" rel=\"nofollow ugc\">Do It With WordPress\u003C\u002Fa>, which has an array of tutorials for managing, modifying and maintaining your WordPress sites, as well as \u003Ca href=\"https:\u002F\u002Fwww.thewpbutler.com\u002F?utm_source=wordpress.org&utm_medium=plugin&utm_campaign=wordpress-services\" title=\"WordPress Maintenance Services\" rel=\"nofollow ugc\">The WP Butler\u003C\u002Fa>, a service for keeping your site maintained, backed up, updated and secure.\u003C\u002Fp>\n","This widget shows a list of all of the users that have written content on your site, since a static or dynamic time specified by you.",2189,2,"5.2.24","3.7",[20,55,73,74,75],"month","recent","widget","https:\u002F\u002Fgithub.com\u002Ftheukedge\u002Frecent-contributors-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecent-contributors-widget.1.2.zip","2026-03-15T10:48:56.248Z",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":11,"downloaded":87,"rating":48,"num_ratings":49,"last_updated":88,"tested_up_to":15,"requires_at_least":89,"requires_php":17,"tags":90,"homepage":17,"download_link":93,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"restrict-contributors-from-scheduled-posts","Restrict Contributors from Scheduled Posts","1.1","Johnathon Williams","https:\u002F\u002Fprofiles.wordpress.org\u002Foddjar\u002F","\u003Cp>This plugin removes the ability for contributors to view or edit scheduled posts. It works by removing scheduled posts from the contributor’s list of posts in the posts admin list.\u003C\u002Fp>\n","Restricts contributors from viewing or editing their posts after the posts are scheduled to publish.",1703,"2013-11-20T23:53:00.000Z","3.0.1",[55,91,23,92],"editor","roles","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-contributors-from-scheduled-posts.1.1.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":11,"downloaded":102,"rating":48,"num_ratings":49,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":17,"tags":106,"homepage":112,"download_link":113,"security_score":114,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":115},"wp-mechanic","WP Mechanic","1.6.9","Fahad Mahmood","https:\u002F\u002Fprofiles.wordpress.org\u002Ffahadmahmood\u002F","\u003Cul>\n\u003Cli>\n\u003Cp>Author: \u003Ca href=\"http:\u002F\u002Fwww.androidbubbles.com\u002Fcontact\" rel=\"nofollow ugc\">Fahad Mahmood\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Project URI: \u003Ca href=\"https:\u002F\u002Fandroidbubble.com\u002Fblog\u002Fwordpress\u002Fplugins\u002Fwordpress-mechanic\" rel=\"nofollow ugc\">https:\u002F\u002Fandroidbubble.com\u002Fblog\u002Fwordpress\u002Fplugins\u002Fwordpress-mechanic\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>w3 Existence: \u003Ca href=\"https:\u002F\u002Fwpmechanic.wordpress.com\u002F2014\u002F09\u002F25\u002Fwordpress-mechanic-around-the-world\" rel=\"nofollow ugc\">https:\u002F\u002Fwpmechanic.wordpress.com\u002F2014\u002F09\u002F25\u002Fwordpress-mechanic-around-the-world\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>License: GPL 3. See License below for copyright jots and tittles.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>WordPress Mechanic is a combination of FAQ feeds, malware scanner, deprecated functions scanner and many other useful utilities. You don’t need to google every small issue, just browse with your WordPress mechanic or ask a new question if you are tired of searching and still not getting the desired answer. You are welcome to query anything, WordPress mechanic will provide you the ultimate support. This plugin will bridge the gap for developer who don’t have time to go to community sites and search for questions to answer. They will see the questions on their dashboard and will reply to you. You can appreciate them through the same way, every answer will have a donate link of relevant user. That can be anyone, either a developer or any WordPress geek. By this both users and developers will save their time. The idea behind this plugin is to speedup the learning process. People will ask anything without hesitation either a newbie thing. But we will moderate questions and answers because we are here to deliver the value so quality matters.\u003C\u002Fp>\n\u003Cp>Important!\u003C\u002Fp>\n\u003Cp>1- You can ask questions to WordPress experts.\u003C\u002Fp>\n\u003Cp>2- You can learn WordPress in better way without hesitation.\u003C\u002Fp>\n\u003Cp>3- If you are a WordPress expert, then you can reply to the answers and put your donate link in specific field. If user will love your support, you might be appreciated.\u003C\u002Fp>\n\u003Cp>4- WordPress Mechanic API is in testing phase as beta version so that will be launched soon. But still questions can be asked and a no. of WordPress experts are available to help you on your dashboard.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>The WordPress Mechanic plugin is copyright © 2010-2020 by Fahad Mahmood. It uses custom code written by Fahad Mahmood or taken from open discussion forum(s) according to the terms of the [GNU General Public License][]. This program is free software; you can redistribute it and\u002For modify it under the terms of the [GNU General Public License][] as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. GNU General Public License]: http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003C\u002Fp>\n","WP Mechanic is a combination of WordPress and Android Playstore Applications. Experience a set of hybrid software applications.",4526,"2024-11-04T12:34:00.000Z","6.6.5","3.0",[107,108,109,110,111],"hybrid-application","users-list-and-users-roles","users-profiles-like-administrators-authors-and-contributors","woocommerce-customers","wordpress-and-android-users","http:\u002F\u002Fandroidbubble.com\u002Fblog\u002Fwordpress-mechanic","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mechanic.1.6.9.zip",92,"2026-03-15T14:54:45.397Z",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":11,"downloaded":124,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":125,"requires_at_least":126,"requires_php":17,"tags":127,"homepage":17,"download_link":131,"security_score":48,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":78},"wpi-multiple-contributors","Wpi Multiple Contributors","1.0","prajakta ghole","https:\u002F\u002Fprofiles.wordpress.org\u002Fprajakta-ghole\u002F","\u003Cp>On Admin side :\u003C\u002Fp>\n\u003Cp>1.It provides a metabox labelled ‘Contributor’, which contains list of all authors on post-editor page.\u003C\u002Fp>\n\u003Cp>2.User (Admin\u002FEditor\u002FAuthor) can tick one or more authors from the list by checking the checkbox.\u003C\u002Fp>\n\u003Cp>On Front end :\u003C\u002Fp>\n\u003Cp>1.It provides a contibutor box below the post content where contributor names with their Gravatars are shown.\u003C\u002Fp>\n\u003Cp>2.The link to respective ‘author’ page will also be there.\u003C\u002Fp>\n","This plugin facilitates in assigning and displaying more than one author on a post.",1251,"4.4.34","4.4.1",[128,129,130],"co-authors","multiple-contributors","post-co-authors","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpi-multiple-contributors.zip",{"attackSurface":133,"codeSignals":162,"taintFlows":169,"riskAssessment":170,"analyzedAt":175},{"hooks":134,"ajaxHandlers":158,"restRoutes":159,"shortcodes":160,"cronEvents":161,"entryPointCount":13,"unprotectedCount":13},[135,141,145,149,152],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","init","maybe_init_editor_caps","multiple-editors.php",39,{"type":136,"name":142,"callback":143,"file":139,"line":144},"plugins_loaded","init_i18n",40,{"type":136,"name":146,"callback":147,"file":139,"line":148},"add_meta_boxes","custom_editor_metabox_init",43,{"type":136,"name":150,"callback":150,"file":139,"line":151},"save_post",44,{"type":153,"name":154,"callback":155,"priority":156,"file":139,"line":157},"filter","user_has_cap","maybe_custom_editor_cap",15,68,[],[],[],[],{"dangerousFunctions":163,"sqlUsage":164,"outputEscaping":166,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":69,"bundledLibraries":168},[],{"prepared":13,"raw":13,"locations":165},[],{"escaped":69,"rawEcho":13,"locations":167},[],[],[],{"summary":171,"deductions":172},"Based on the provided static analysis and vulnerability history, the 'multiple-editors' plugin v0.1.2 exhibits a strong security posture. The absence of any identified dangerous functions, file operations, external HTTP requests, and the exclusive use of prepared statements for SQL queries are excellent indicators of secure coding practices.  Furthermore, all identified output operations are properly escaped, and the analysis reports zero taint flows, meaning there are no apparent vulnerabilities related to unsanitized data processing. The plugin also demonstrates good security hygiene by incorporating capability checks, though the lack of nonce checks is a notable omission.\n\nThe vulnerability history is also clean, with no recorded CVEs, indicating a lack of known security flaws in previous versions or the absence of discovery. This, combined with the clean static analysis, suggests a low-risk plugin. However, the complete absence of entry points like AJAX handlers, REST API routes, or shortcodes, while generally reducing attack surface, could also imply limited functionality or a very specific use case. The key area for improvement lies in the absence of nonce checks, which is a standard WordPress security mechanism for preventing CSRF attacks, especially if any entry points were to be introduced in future versions.\n\nIn conclusion, 'multiple-editors' v0.1.2 appears to be a highly secure plugin based on the data provided, with no immediate critical or high-risk vulnerabilities identified. Its strengths lie in its clean code and lack of known vulnerabilities. The primary weakness, albeit a potential one depending on future development, is the absence of nonce checks.  While the current attack surface is zero, future expansions of functionality should incorporate these checks to maintain this high level of security.",[173],{"reason":174,"points":32},"No nonce checks implemented","2026-03-17T01:07:18.464Z",{"wat":177,"direct":182},{"assetPaths":178,"generatorPatterns":179,"scriptPaths":180,"versionParams":181},[],[],[],[],{"cssClasses":183,"htmlComments":184,"htmlAttributes":185,"restEndpoints":188,"jsGlobals":189,"shortcodeOutput":190},[],[],[186,187],"name=\"custom_editors[]\"","id=\"custom_editors\"",[],[],[191,192,193],"\u003Clabel>\u003Cinput type=\"checkbox\" name=\"custom_editors[]\"","checked( in_array( $user->ID, $editors )","\u003Cdiv id=\"custom_editors\">\u003Cul>"]