[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3pkBGbujUltbyZzxjRZSGUZR96prHpeneyGQD7rscnY":3,"$fm_6HSX87WQv8iBdP7szJXJ9KnpXB_Cn0PhvEUupaiT0":236,"$fvDpcwOCFVgs9LBIKR9iExq6belmC63jfUhnfVicQgyY":241},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":40,"analysis":145,"fingerprints":203},"opinion-system-note-avis-demo","Opinion System note & avis Demo","1.2.2","Amaury RAMBAUD","https:\u002F\u002Fprofiles.wordpress.org\u002Fklushep\u002F","\u003Cp>Ajouter la note globale et un récapitulatif de vos avis Opinion System avec le shortcode [opinion_system_note_avis] ou grâce à un widget.\u003C\u002Fp>\n\u003Cp>Ceci est la version de démonstration du plugin, pour acheter la version complète du plugin rendez-vous sur la page https:\u002F\u002Fwww.amauryrambaud.fr\u002Fplugin-opinion-system-note-avis\u002F\u003Cbr \u002F>\nDans la version complète du plugin il existe également 2 autres shortcodes \u002F widgets pour afficher la liste des témoignages client directement sur votre site WordPress.\u003Cbr \u002F>\nIl est également possible de filtrer les notes et les commentaires par numéro adhérent (company_id) et de rajouter une limite au nombre de commentaires à afficher.\u003C\u002Fp>\n\u003Cp>Le plugin est responsive et existe en 2 couleurs : bleu et blanc.\u003C\u002Fp>\n","Ajouter la note globale et un récapitulatif de vos avis Opinion System avec le shortcode [opinion_system_note_avis] ou grâce à un widget.",20,2515,100,1,"2025-06-16T13:37:00.000Z","6.8.5","5.0","5.4",[20,21,22,23,24],"api","avis","note","opinion-system","simple","https:\u002F\u002Fwww.amauryrambaud.fr\u002Fplugin-opinion-system-note-avis\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopinion-system-note-avis-demo.zip",0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"klushep",2,120,96,30,91,"2026-05-20T08:06:30.219Z",[41,65,87,111,127],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":13,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":17,"requires_php":54,"tags":55,"homepage":61,"download_link":62,"security_score":63,"vuln_count":14,"unpatched_count":27,"last_vuln_date":64,"fetched_at":29},"adminpad","AdminPad","2.6","Iftekhar Bhuiyan","https:\u002F\u002Fprofiles.wordpress.org\u002Fiftekharbhuiyan\u002F","\u003Cp>AdminPad allows WP site admin (only) to write down simple note from WP dashboard using simple widget. Deleting this plugin will also delete data saved by this plugin on your database.\u003C\u002Fp>\n\u003Cp>Features:\u003Cbr \u002F>\n* Light weight plugin.\u003Cbr \u002F>\n* Simple user interface.\u003C\u002Fp>\n","AdminPad is a simple note taker for site administrator only.",900,19273,6,"2025-12-09T21:22:00.000Z","6.9.4","8.0",[56,57,58,59,60],"admin-note","note-taker","notepad","simple-note","site-administrator","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadminpad\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadminpad.2.6.zip",99,"2022-09-29 00:00:00",{"slug":66,"name":67,"version":68,"author":69,"author_profile":70,"description":71,"short_description":72,"active_installs":73,"downloaded":74,"rating":13,"num_ratings":75,"last_updated":76,"tested_up_to":16,"requires_at_least":77,"requires_php":78,"tags":79,"homepage":84,"download_link":85,"security_score":86,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-logged-in-only","Logged-in-only","2.1.4","Drivingralle","https:\u002F\u002Fprofiles.wordpress.org\u002Fdrivingralle\u002F","\u003Cp>Only logged-in users can view the frontend, backend or content of the REST API if this plugin is activated. The password reset process on wp-login keeps on working.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>No options\u002Fsettings\u003C\u002Fli>\n\u003Cli>No by-pass\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Compatibility\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage as MU-Plugin\u003C\u002Fh3>\n\u003Cp>This plugin is very simple and can also be used as a must-use plugin. That way no admin of a website can deactivate the plugin, making sure the requirement of just authenticated  users is ensured.\u003Cbr \u002F>\n! No automatic updates are made for mu plugins\u003C\u002Fp>\n","A Plugin to lock down the whole site to prevent public access.",700,21676,7,"2025-05-08T16:15:00.000Z","3.0.1","5.3",[80,81,82,24,83],"authentication","login","rest-api","user","https:\u002F\u002Fgithub.com\u002Freimersjan\u002Fwp-logged-in-only","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-logged-in-only.2.1.4.zip",92,{"slug":88,"name":89,"version":90,"author":91,"author_profile":92,"description":93,"short_description":94,"active_installs":95,"downloaded":96,"rating":97,"num_ratings":98,"last_updated":99,"tested_up_to":100,"requires_at_least":101,"requires_php":102,"tags":103,"homepage":107,"download_link":108,"security_score":109,"vuln_count":14,"unpatched_count":27,"last_vuln_date":110,"fetched_at":29},"simple-dropbox-upload-form","Simple Dropbox Upload","1.8.8.2","hiphopsmurf","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiphopsmurf\u002F","\u003Cp>This plugin lets you insert an upload form on your pages or in a post so visitors can upload files to your Dropbox account.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 3.3.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 5.0 or higher\u003C\u002Fli>\n\u003Cli>The wp-content\u002Fuploads directory needs to be writable by the plugin.  This is likely already the case as WordPress stores your media and various other uploads here.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to Site Admin > Simple Dropbox\u003C\u002Fli>\n\u003Cli>(Optional)Enter the folder path you would like to save the files to on Dropbox.\u003C\u002Fli>\n\u003Cli>(Optional) Change the temporary path for files uploaded to your server before being uploaded to Dropbox.\u003C\u002Fli>\n\u003Cli>(Required) Enter the file extensions without periods for the files you want to allow users to upload separated by one space.\u003C\u002Fli>\n\u003Cli>(Optional) Enter a message you want displayed after the user uploads a file.\u003C\u002Fli>\n\u003Cli>(Optional) Choose a color for the message you want displayed after the user uploads a file.\u003C\u002Fli>\n\u003Cli>Choose whether or not to display upload form again after the first file has been uploaded to Dropbox.\u003C\u002Fli>\n\u003Cli>Choose whether or not to delete the file located on your server after it has been uploaded to Dropbox.\u003C\u002Fli>\n\u003Cli>Click Save options.\u003C\u002Fli>\n\u003Cli>If you have already authorized this plugin to use your Dropbox account you can skip to step 17\u003C\u002Fli>\n\u003Cli>Click the Authorize button at the bottom of the screen.\u003C\u002Fli>\n\u003Cli>Click Continue to be taken to Dropbox.\u003C\u002Fli>\n\u003Cli>Once at Dropbox Click the Allow button so this plugin can link with your Dropbox account.\u003C\u002Fli>\n\u003Cli>Go to Site Admin > Simple Dropbox\u003C\u002Fli>\n\u003Cli>Click the Confirm button located at the bottom of the page to confirm your Dropbox account.\u003C\u002Fli>\n\u003Cli>You should see the email address used with your Dropbox account. If you don’t, Reset your settings and start over.\u003C\u002Fli>\n\u003Cli>Click Finish.\u003C\u002Fli>\n\u003Cli>Create a Page, Post or Widget to insert the shortcode into.\u003C\u002Fli>\n\u003Cli>Insert \u003Cstrong>[simple-wp-dropbox]\u003C\u002Fstrong> where you would like the form to display.\u003C\u002Fli>\n\u003Cli>Click Save or Publish.\u003C\u002Fli>\n\u003Cli>Visit the location to confirm everything is working properly.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>To-do list\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Multiple file upload\u003C\u002Fli>\n\u003Cli>Add ability to append uploaders username to file name\u002Ffolder path\u003C\u002Fli>\n\u003Cli>Add ability to control file upload size\u003C\u002Fli>\n\u003Cli>Add ability to limit the number of submissions per user\u002Fday\u003C\u002Fli>\n\u003Cli>Restyle admin interface (Done|)\u003C\u002Fli>\n\u003Cli>Change database structure (Done|)\u003C\u002Fli>\n\u003C\u002Ful>\n","Inserts an upload form for visitors to upload files to you Dropbox account without the need of a Dropbox developer account.",200,38670,82,13,"2013-09-18T20:09:00.000Z","3.5.2","3.3.0","",[20,104,105,24,106],"dropbox","integration","upload","http:\u002F\u002Fcdsincdesign.com\u002Fsimple-dropbox-upload-form\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-dropbox-upload-form.1.8.8.2.zip",83,"2013-09-14 00:00:00",{"slug":112,"name":113,"version":114,"author":91,"author_profile":92,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":27,"num_ratings":27,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":102,"tags":122,"homepage":124,"download_link":125,"security_score":126,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"simple-sugarsync-upload","Simple Sugarsync Upload","1.2.0","\u003Cp>This plugin lets you insert an upload form in a page, post or widget so visitors can upload files to your SugarSync account. No need to signup for a developer account.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 3.2.1 or higher\u003C\u002Fli>\n\u003Cli>PHP 5.0 or higher\u003C\u002Fli>\n\u003Cli>CURL must be enabled\u003C\u002Fli>\n\u003Cli>The wp-content\u002Fuploads directory needs to be writable by the plugin.  This is likely already the case as WordPress stores your media and various other uploads here.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to Site Admin > Settings > Simple SugarSync\u003C\u002Fli>\n\u003Cli>(Optional)Enter the folder path you would like to save the files to on SugarSync.\u003C\u002Fli>\n\u003Cli>(Optional) Change the temporary path for files uploaded to your server before being uploaded to SugarSync.\u003C\u002Fli>\n\u003Cli>(Required) Enter the file extensions without periods for the files you want to allow users to upload separated by one space.\u003C\u002Fli>\n\u003Cli>(Optional) Enter a message you want displayed after the user uploads a file.\u003C\u002Fli>\n\u003Cli>Choose whether or not to display upload form again after the first file has been uploaded to SugarSync.\u003C\u002Fli>\n\u003Cli>Choose whether or not to delete the file located on your server after it has been uploaded to SugarSync.\u003C\u002Fli>\n\u003Cli>Click Save options.\u003C\u002Fli>\n\u003Cli>Create a Page, Post or Widget to insert the shortcode into.\u003C\u002Fli>\n\u003Cli>Insert \u003Cstrong>[simple-wp-sugarsync]\u003C\u002Fstrong> where you would like the form to display.\u003C\u002Fli>\n\u003Cli>Click Save or Publish.\u003C\u002Fli>\n\u003Cli>Visit the location to confirm everything is working properly.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>To-do list\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add ability to append uploaders username to file name\u002Ffolder path\u003C\u002Fli>\n\u003Cli>Add ability to control file upload size\u003C\u002Fli>\n\u003Cli>Add ability to limit the number of submissions per user\u002Fday\u003C\u002Fli>\n\u003Cli>Restyle admin interface\u003C\u002Fli>\n\u003C\u002Ful>\n","Inserts an upload form for visitors to upload files to you SugarSync account without the need of a SugarSync developer account.",10,2972,"2012-05-10T14:18:00.000Z","3.3.2","3.2.1",[20,105,24,123,106],"sugarsync","http:\u002F\u002Fcdsincdesign.com\u002Fsimple-sugarsync-upload\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-sugarsync-upload.1.2.0.zip",85,{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":27,"downloaded":135,"rating":27,"num_ratings":27,"last_updated":136,"tested_up_to":53,"requires_at_least":137,"requires_php":138,"tags":139,"homepage":102,"download_link":143,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":144},"puti-content-core","Puti Content Core","1.1.0","KSI Inc. (sakakibara)","https:\u002F\u002Fprofiles.wordpress.org\u002Fsakakibara-t\u002F","\u003Cp>Puti Content Core is a lightweight plugin designed to help you use your WordPress installation as a powerful Headless CMS backend for static websites (HTML\u002FJS).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Content Delivery:\u003C\u002Fstrong> Provides a public REST API endpoint to deliver published post content.\u003Cbr \u002F>\n* \u003Cstrong>Easy Integration:\u003C\u002Fstrong> Generates a simple HTML tag for easy copy-paste integration into static site.\u003Cbr \u002F>\n* \u003Cstrong>Custom Post Type Focus:\u003C\u002Fstrong> Designed to work exclusively with its custom post type (\u003Ccode>puticoco_article\u003C\u002Fcode>) to ensure stability and avoid conflicts with existing blog content.\u003C\u002Fp>\n\u003Cp>This core plugin offers the essential functionality. For advanced security features (IP\u002FDomain restriction, detailed access logs), consider our premium managed service, Puti Content Updater.\u003C\u002Fp>\n","A simple REST API plugin to embed content snippets from WordPress onto any external static website using JavaScript.",258,"2026-02-09T00:58:00.000Z","5.8","7.4",[140,141,142,82,24],"content","external-content","headless","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fputi-content-core.1.1.0.zip","2026-04-06T09:54:40.288Z",{"attackSurface":146,"codeSignals":176,"taintFlows":191,"riskAssessment":192,"analyzedAt":202},{"hooks":147,"ajaxHandlers":169,"restRoutes":170,"shortcodes":171,"cronEvents":175,"entryPointCount":14,"unprotectedCount":27},[148,154,157,161,165],{"type":149,"name":150,"callback":151,"file":152,"line":153},"action","wp_enqueue_scripts","opinion_system_note_avis_scripts","opinion_system_note_avis_plugin_demo.php",28,{"type":149,"name":155,"callback":156,"file":152,"line":37},"admin_enqueue_scripts","opinion_system_note_avis_admin_scripts",{"type":149,"name":158,"callback":159,"file":152,"line":160},"admin_menu","opinion_system_note_avis_menu",31,{"type":149,"name":162,"callback":163,"file":152,"line":164},"admin_init","update_opinion_system_note_avis_settings",32,{"type":149,"name":166,"callback":167,"file":152,"line":168},"widgets_init","opinion_system_note_avis_register_widget",108,[],[],[172],{"tag":173,"callback":173,"file":152,"line":174},"opinion_system_note_avis",102,[],{"dangerousFunctions":177,"sqlUsage":178,"outputEscaping":180,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":190},[],{"prepared":27,"raw":27,"locations":179},[],{"escaped":98,"rawEcho":181,"locations":182},3,[183,186,188],{"file":152,"line":184,"context":185},124,"raw output",{"file":152,"line":187,"context":185},127,{"file":152,"line":189,"context":185},130,[],[],{"summary":193,"deductions":194},"The plugin \"opinion-system-note-avis-demo\" v1.2.2 demonstrates a generally good security posture based on the provided static analysis. It lacks any identified dangerous functions, file operations, or external HTTP requests, and all SQL queries are properly prepared.  The high percentage of properly escaped output is also a positive sign.  However, the analysis does highlight some areas for concern.  The presence of a shortcode as an entry point, without any explicit mention of nonce or capability checks associated with it, raises a potential flag.  While the total attack surface is low and no unprotected entry points were found, the lack of explicit security checks on the shortcode warrants careful consideration.\n\nThe vulnerability history is exceptionally clean, with no recorded CVEs. This suggests either the plugin has not been a target of extensive security research or it has historically been well-maintained and secured.  This absence of known vulnerabilities is a significant strength.  Despite the clean history, the static analysis's indicators of potential weaknesses, particularly around the shortcode, mean that the plugin is not entirely without risk.  A balanced conclusion is that the plugin is likely secure for its current version, but the lack of explicit security mechanisms on its sole identified entry point (the shortcode) represents a minor, albeit unexploited, weakness that could be strengthened.",[195,198,200],{"reason":196,"points":197},"Shortcode without explicit auth checks indicated",5,{"reason":199,"points":75},"No nonce checks observed",{"reason":201,"points":75},"No capability checks observed","2026-03-17T05:38:38.926Z",{"wat":204,"direct":211},{"assetPaths":205,"generatorPatterns":208,"scriptPaths":209,"versionParams":210},[206,207],"\u002Fwp-content\u002Fplugins\u002Fopinion-system-note-avis-demo\u002Fopinion_system_note_avis.css","\u002Fwp-content\u002Fplugins\u002Fopinion-system-note-avis-demo\u002Fopinion_system_note_avis_blanc.css",[],[],[],{"cssClasses":212,"htmlComments":228,"htmlAttributes":229,"restEndpoints":231,"jsGlobals":232,"shortcodeOutput":234},[213,214,215,216,217,218,219,220,221,222,223,224,225,226,227],"opinion-system-plugin","company-rating","stars-container","os-logo","stars","numbers","small_number","comma","text","rating-box-container","rating-box-cell","rating-box","rating-box-icon","rating-label","last",[],[230],"data-widget-id",[],[233],"opinion_system_note_avis_widget_domain",[235],"[opinion_system_note_avis]",{"error":237,"url":238,"statusCode":239,"statusMessage":240,"message":240},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fopinion-system-note-avis-demo\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":181,"versions":242},[243,251,258],{"version":244,"download_url":245,"svn_tag_url":246,"released_at":28,"has_diff":247,"diff_files_changed":248,"diff_lines":28,"trac_diff_url":249,"vulnerabilities":250,"is_current":247},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopinion-system-note-avis-demo.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fopinion-system-note-avis-demo\u002Ftags\u002F1.2\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fopinion-system-note-avis-demo%2Ftags%2F1.1&new_path=%2Fopinion-system-note-avis-demo%2Ftags%2F1.2",[],{"version":252,"download_url":253,"svn_tag_url":254,"released_at":28,"has_diff":247,"diff_files_changed":255,"diff_lines":28,"trac_diff_url":256,"vulnerabilities":257,"is_current":247},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopinion-system-note-avis-demo.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fopinion-system-note-avis-demo\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fopinion-system-note-avis-demo%2Ftags%2F1.0&new_path=%2Fopinion-system-note-avis-demo%2Ftags%2F1.1",[],{"version":259,"download_url":260,"svn_tag_url":261,"released_at":28,"has_diff":247,"diff_files_changed":262,"diff_lines":28,"trac_diff_url":28,"vulnerabilities":263,"is_current":247},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fopinion-system-note-avis-demo.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fopinion-system-note-avis-demo\u002Ftags\u002F1.0\u002F",[],[]]