[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fVffFWYKq_IkmXaoTvKeC62zLgGhgt9xDdRF621VIb9w":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":9,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":139,"fingerprints":195},"one-post-widget","One post widget","1.0","Janar","https:\u002F\u002Fprofiles.wordpress.org\u002Ficeincube\u002F","","Show recent post in widget area so the widget title\u002Fcontent itself is given post title and contents. You can choose queue which post to show from recent posts or just give specific ID.",10,1977,0,"2012-06-12T22:03:00.000Z","3.3.2","3.3",[18,19,20,21,22],"content","page","post","sidebar","widget","http:\u002F\u002Feagerfish.eu\u002Fwordpress-plugin-one-post-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fone-post-widget.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"iceincube",2,20,93,30,89,"2026-04-04T06:22:04.968Z",[38,63,82,102,120],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":9,"tags":53,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":13,"last_vuln_date":62,"fetched_at":27},"widgets-on-pages","Widgets on Pages","1.9.0","toddhalfpenny","https:\u002F\u002Fprofiles.wordpress.org\u002Ftoddhalfpenny\u002F","\u003Cp>The easiest, and highest rated way to Add Widgets to Posts and\u002For Pages. Create unlimited dynamic sidebars (widget areas) and insert these into a WordPress post or page.\u003C\u002Fp>\n\u003Cp>Create as many widget areas (Turbo Sidebars) from the settings menu, and these can be used multiple times.\u003C\u002Fp>\n\u003Cp>Each sidebar can be called independently by a shortcode, and you can call more than one per post\u002Fpage.\u003C\u002Fp>\n\u003Cp>Sidebars can be included in the post\u002Fpage by using a shortcode like the following, where \u003Ccode>x\u003C\u002Fcode> is the name of the sidebar.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[widgets_on_pages id=x]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cblockquote>\n\u003Cp>With the \u003Ca href=\"https:\u002F\u002Fdatamad.co.uk\u002Fwordpress-plugins\u002Fwidgets-on-pages\u002F\" rel=\"nofollow ugc\">PRO\u003C\u002Fa> version the widgets can be inserted simply with clicks-not-code using a wizard in the visual editor. This version also includes layout options to easily set the widgets in columns\u002Fgrid presentation.\u003C\u002Fp>\n\u003Cp>Pro version also supports the configurable option to automatically add widgets to all your posts and\u002For pages. Choose the layout options and whether to add the sidebar and widgets before or after the content. Ideal for adding lists of related posts to the end of every post. Each post and page can also be individually excluded from the auto-inclsion of the widgets.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdatamad.co.uk\u002Fwordpress-plugins\u002Fwidgets-on-pages\u002F\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa> key features\u003Cbr \u002F>\n  * Responsive Horizontal\u002FColumn\u002FGrid layout\u003Cbr \u002F>\n  * Auto insert in Header, Content, or Footer\u003Cbr \u002F>\n  * Priority Support\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Basic In-Content Instructions\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create a Turbo Sidebar, these are your special widget containers\u003C\u002Fli>\n\u003Cli>Add widgets to the Turbo Sidebar in the same way as you do for normal sidebars\u003C\u002Fli>\n\u003Cli>If using the visual editor use the Add Turbo Sidebar button to add the Shortcode into your post or page where you’d like it to appear.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The sidebars can also be added to any theme, using template tags. This is an ace way to add widgets\u002Fsidebars to a theme’s header and footer (or any other part of a theme).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Demo Video\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fw2LfCihCqRI?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Current Features Include\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Highest Rating – 122 5* Reviews\u003C\u002Fli>\n\u003Cli>No Coding needed\u003C\u002Fli>\n\u003Cli>Create unlimited sidebars\u003C\u002Fli>\n\u003Cli>Place them in posts\u002Fpages\u002Fcustom post types\u003C\u002Fli>\n\u003Cli>Add to themes using template tags\u003C\u002Fli>\n\u003Cli>Works with ALL widgets and themes (let us know if you have an issue)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Recent Reviews\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>∗ ∗ ∗ ∗ ∗\u003C\u002Fstrong>  Just purchased PRO version and well worth the money. – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fextremely-useful-plugin-19\u002F\" rel=\"ugc\">@artmuns\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>∗ ∗ ∗ ∗ ∗\u003C\u002Fstrong> Works as advertised + timely response to support request – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fworks-as-advertised-timely-response-to-support-request\u002F\" rel=\"ugc\">@3cstudio\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>∗ ∗ ∗ ∗ ∗\u003C\u002Fstrong> Saving me HOURS of work – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fsaving-me-hours-of-work\u002F\" rel=\"ugc\">@andynick\u003C\u002Fa>\u003C\u002Fp>\n","The easiest and highest rated way to Add Widgets or Sidebars to Posts and Pages using Visual editor,  shortcodes or template tags.",20000,670202,94,161,"2024-11-13T11:11:00.000Z","6.7.0","2.8",[54,21,55,56,57],"pages","widgets","widgets-in-page","widgets-in-post","https:\u002F\u002Fdatamad.co.uk\u002Fwordpress-plugins\u002Fwidgets-on-pages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwidgets-on-pages.zip",92,1,"2023-01-17 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":73,"num_ratings":74,"last_updated":75,"tested_up_to":76,"requires_at_least":77,"requires_php":9,"tags":78,"homepage":80,"download_link":81,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"disable-author-pages","Disable Author Pages","0.11","Frank Neumann-Staude","https:\u002F\u002Fprofiles.wordpress.org\u002Ffstaude\u002F","\u003Cp>Disable the author pages ( \u002Fauthor=? ) in wordpress and redirect the user to another page.\u003C\u002Fp>\n","Disable the author pages",6000,50618,98,17,"2017-11-28T17:13:00.000Z","4.7.32","3.0",[19,20,79,21,55],"shortcode","https:\u002F\u002Fstaude.net\u002Fwordpress\u002Fplugins\u002Fdisable-author-pages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-author-pages.0.11.zip",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":9,"tags":97,"homepage":100,"download_link":101,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"feature-a-page-widget","Feature A Page Widget","2.2.0","mrwweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fmrwweb\u002F","\u003Cp>Feature A Page Widget provides a “just works” solution for showcasing a Page, Post, or custom post type in any widget area (aka sidebar). It leverages core WordPress features, a \u003Cem>simple\u003C\u002Fem> set of options, and a sleek UI for selecting one of three widget layouts.\u003C\u002Fp>\n\u003Ch4>How to Use the Widget\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin.\u003C\u002Fli>\n\u003Cli>Edit the page you want to feature.\u003C\u002Fli>\n\u003Cli>Fill out the \u003Ca href=\"http:\u002F\u002Fen.support.wordpress.com\u002Fsplitting-content\u002Fexcerpts\u002F#creating-excerpts\" rel=\"nofollow ugc\">Excerpt\u003C\u002Fa> and select a \u003Ca href=\"http:\u002F\u002Fen.support.wordpress.com\u002Ffeatured-images\u002F#setting-a-featured-image\" rel=\"nofollow ugc\">Featured Image\u003C\u002Fa> on that page.\u003C\u002Fli>\n\u003Cli>Go to Appearance > Widgets or Customize > Widgets.\u003C\u002Fli>\n\u003Cli>Add an instance of the “Feature a Page Widget” to the widget area (Sidebar, Footer, etc.) of your choosing.\u003C\u002Fli>\n\u003Cli>Select the page, choose a layout, and optionally give the widget a title.\u003C\u002Fli>\n\u003Cli>Save the widget!\u003C\u002Fli>\n\u003Cli>Admire your handiwork.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>This plugin enables Featured Images (aka “Post Thumbnails”) and Excerpts for Pages and Posts (by default) with the ability to support custom post types. If you don’t see one or both of those fields, they may be hidden in the “Screen Options” (top-right corner) while editing a Page or Post.\u003C\u002Fp>\n\u003Ch4>Important Note: Image Sizes\u003C\u002Fh4>\n\u003Cp>This plugin creates multiple custom image sizes. If you use images that were uploaded to the  media library before you installed this plugin, you may need to use a plugin like \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fregenerate-thumbnails\u002F\" rel=\"ugc\">Regenerate Thumbnails\u003C\u002Fa> to create the correctly-sized images.\u003C\u002Fp>\n\u003Ch4>Customizing the Widget\u003C\u002Fh4>\n\u003Cp>There are multiple ways to modify the widget based on your needs:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Prewritten CSS selectors in \u003Ccode>\u002Fcss\u002Ffpw_starter_styles.css\u003C\u002Fcode> to help you get started with custom CSS styles in a child theme or the Custom CSS Customizer field\u003C\u002Fli>\n\u003Cli>Three default overridable templates and the ability to create custom templates\u003C\u002Fli>\n\u003Cli>Eight filters to modify most parts of the widget output (Title, Read More, Image sizes, etc.)\u003C\u002Fli>\n\u003Cli>Interested in commissioning a custom layout just for your site? \u003Ca href=\"https:\u002F\u002Fmrwweb.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Get in touch.\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>See \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffeature-a-page-widget\u002Ffaq\u002F\" rel=\"ugc\">the FAQs\u003C\u002Fa> for links to code snippets with inline documentation.\u003C\u002Fp>\n\u003Ch4>Like the Plugin?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Ffeature-a-page-widget\" rel=\"ugc\">We love 5-star ratings!\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.paypal.me\u002Frootwiley\" rel=\"nofollow ugc\">Donations accepted\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Available Languages\u003C\u002Fh4>\n\u003Cp>Please \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Ffeature-a-page-widget\" rel=\"nofollow ugc\">help translate Feature A Page Widget\u003C\u002Fa>. Users have contributed translations in the following languages:\u003C\u002Fp>\n\u003Cp>English (default), German (\u003Ccode>de_DE\u003C\u002Fcode>), Serbian (\u003Ccode>sr_RS\u003C\u002Fcode>), Polish (\u003Ccode>pl_PL\u003C\u002Fcode>), Spanish (\u003Ccode>es_ES\u003C\u002Fcode>), Italian (\u003Ccode>it_IT\u003C\u002Fcode>), Dutch (\u003Ccode>nl_NL\u003C\u002Fcode>)\u003C\u002Fp>\n\u003Ch4>Other Plugins by @MRWweb\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmrw-web-design-simple-tinymce\u002F\" rel=\"ugc\">MRW Web Design Simple TinyMCE\u003C\u002Fa> – Get rid of bad and obscure TinyMCE buttons. Move the rest to a single top row. Comes with a bit of help for adding custom CSS classes too.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-status-menu-items\u002F\" rel=\"ugc\">Post Status Menu Items\u003C\u002Fa> – Adds post status links–e.g. “Draft” (7)–to post type admin menus.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-type-archive-descriptions\u002F\" rel=\"ugc\">Post Type Archive Description\u003C\u002Fa> – Enables an editable description for a post type to display at the top of the post type archive page.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhawaiian-characters\u002F\" rel=\"ugc\">Hawaiian Characters\u003C\u002Fa> – Adds the correct characters with diacriticals to the WordPress editor Character Map for Hawaiian\u003C\u002Fli>\n\u003C\u002Ful>\n","A widget to display an attractive summary of any page in any widget area.",3000,165965,100,29,"2020-08-12T18:51:00.000Z","5.5.18","3.9",[98,99,21,22,55],"featured-page","featured-post","http:\u002F\u002Fmrwweb.com\u002Fwordpress-plugins\u002Ffeature-a-page-widget\u002Fversion-2-documentation\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeature-a-page-widget.2.2.0.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":9,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":11,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":9,"tags":115,"homepage":118,"download_link":119,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"per-page-sidebars","Per Page Sidebars","2.0.3","Brian Layman","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrianlayman\u002F","The Per Page Sidebars (PPS) plugin allows blog administrators to create a unique sidebar for each Page. No template editing is required.",1000,67740,84,"2018-03-14T19:32:00.000Z","4.9.29","3.1",[54,116,117,55],"posts","sidebars","http:\u002F\u002FTheCodeCave.com\u002Fplugins\u002Fper-page-sidebars","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fper-page-sidebars.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":77,"requires_php":9,"tags":134,"homepage":135,"download_link":136,"security_score":137,"vuln_count":61,"unpatched_count":61,"last_vuln_date":138,"fetched_at":27},"query-posts","Query Posts","0.3.2","Justin Tadlock","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreenshady\u002F","\u003Cp>The \u003Cem>Query Posts\u003C\u002Fem> widget was written to allow users that don’t know their way around PHP to easily show posts in any way they’d like.  It’s like having a cool WordPress developer as a friend ready to do your bidding.  Seriously.\u003C\u002Fp>\n\u003Cp>The widget has over 40 options to choose from.  You can list posts by category, tag, custom taxonomies, author, date, time, name, or anything you can imagine.  You can choose to show the full content, excerpts, or even a simple list.  You can order the posts in all sorts of ways.  Oh, and you can even show pages.\u003C\u002Fp>\n\u003Cp>This is the widget that keeps users out of the code and gives them the ability to display items on their site how they want.\u003C\u002Fp>\n","A WordPress widget that gives you unlimited control over showing posts and pages.",900,78613,74,3,"2017-11-28T21:28:00.000Z","3.0.5",[19,54,116,21,22],"http:\u002F\u002Fjustintadlock.com\u002Farchives\u002F2009\u002F03\u002F15\u002Fquery-posts-widget-wordpress-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquery-posts.0.3.2.zip",63,"2025-09-28 00:00:00",{"attackSurface":140,"codeSignals":153,"taintFlows":182,"riskAssessment":183,"analyzedAt":194},{"hooks":141,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":13,"unprotectedCount":13},[142],{"type":143,"name":144,"callback":145,"priority":146,"file":147,"line":148},"action","init","initOnePostWidget",11,"one-post-widget.php",33,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":181},[],{"prepared":13,"raw":13,"locations":156},[],{"escaped":13,"rawEcho":158,"locations":159},12,[160,163,164,165,167,169,170,171,173,175,177,179],{"file":147,"line":161,"context":162},121,"raw output",{"file":147,"line":161,"context":162},{"file":147,"line":161,"context":162},{"file":147,"line":166,"context":162},122,{"file":147,"line":168,"context":162},124,{"file":147,"line":168,"context":162},{"file":147,"line":168,"context":162},{"file":147,"line":172,"context":162},125,{"file":147,"line":174,"context":162},178,{"file":147,"line":176,"context":162},179,{"file":147,"line":178,"context":162},180,{"file":147,"line":180,"context":162},181,[],[],{"summary":184,"deductions":185},"The one-post-widget plugin, version 1.0, exhibits a mixed security posture. On the positive side, there are no reported CVEs in its history, and the static analysis reveals a complete absence of dangerous functions, file operations, external HTTP requests, and SQL queries that do not use prepared statements. This suggests a good foundation in avoiding common, high-impact vulnerabilities.\n\nHowever, significant concerns arise from the output escaping. With 100% of its 12 output operations being unescaped, this plugin presents a considerable risk of Cross-Site Scripting (XSS) vulnerabilities. Any data displayed by the widget that originates from user input or external sources could be maliciously crafted to execute arbitrary JavaScript in the user's browser. Furthermore, the complete lack of nonce and capability checks across all entry points, while currently presenting no direct attack vectors due to a zero attack surface, indicates a concerning lack of security hygiene. If any entry points were introduced or discovered in future versions, they would be immediately unprotected.\n\nIn conclusion, while the plugin has avoided known vulnerabilities and dangerous code patterns thus far, the unescaped output is a critical flaw that demands immediate attention. The absence of basic security checks like nonces and capability checks points to a potential for future vulnerabilities if the plugin evolves or if its existing, albeit currently dormant, entry points are exploited. The plugin's strengths lie in its foundational security practices regarding SQL and dangerous functions, but its weaknesses in output sanitization and authorization are substantial risks.",[186,189,192],{"reason":187,"points":188},"Unescaped output",8,{"reason":190,"points":191},"Missing nonce checks",5,{"reason":193,"points":191},"Missing capability checks","2026-03-17T01:04:29.019Z",{"wat":196,"direct":201},{"assetPaths":197,"generatorPatterns":198,"scriptPaths":199,"versionParams":200},[],[],[],[],{"cssClasses":202,"htmlComments":203,"htmlAttributes":204,"restEndpoints":210,"jsGlobals":211,"shortcodeOutput":212},[],[],[205,206,207,208,209],"name=\"one_post_widget_queue_\"","id=\"one_post_widget_queue_\"","name=\"one_post_widget_pid_\"","id=\"one_post_widget_pid_\"","id=\"one_post_widget_save_values\"",[],[],[]]