[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8dzDxOoIH6zVhmObV7_KWS6Xi14_m-nPAGC8xSelxEY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":17,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":35,"analysis":123,"fingerprints":330},"pagelog","Pagelog","1.8","Jacob N. Breetvelt","https:\u002F\u002Fprofiles.wordpress.org\u002Fopajaap\u002F","\u003Cp>This plugin registers and displays statistics of the usage of selected wp posts\u002Fpages. A simple shortcode on the page causes the useage of the page to be registered.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Place shortcode [pagelog] at the end of a page, and its usage will be registered. Login name (if logged in), ip address, date\u002Ftime are saved in a db table.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The menu item Tools -> Pagelog enables you to configure the behaviour and displays the statistics.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>About and Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Pagelog is written and maintained by J.N. Breetvelt, ( http:\u002F\u002Fwww.opajaap.nl\u002F ) a.k.a. OpaJaap\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin registers and displays statistics of the usage of selected wp posts\u002Fpages.",10,2540,0,"2025-05-10T09:06:00.000Z","6.8.5","2.1","",[19,20,21],"admin-tool","logging","page","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpagelog.1.8.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"opajaap",6,10340,96,1147,76,"2026-04-04T18:38:22.261Z",[36,53,73,91,108],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":23,"num_ratings":45,"last_updated":46,"tested_up_to":15,"requires_at_least":47,"requires_php":17,"tags":48,"homepage":17,"download_link":52,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"redirect-404-to-homepage-with-logging","Redirect 404 to Homepage (with Logging)","1.6.2","Project 404","https:\u002F\u002Fprofiles.wordpress.org\u002Ftimus\u002F","\u003Cp>A lightweight plugin that redirects all 404 errors to the homepage while logging the requested URL, visitor IP, and referrer for admin review.\u003C\u002Fp>\n","Redirects 404 errors to the homepage and logs the details for review.",287,1,"2025-05-25T11:07:00.000Z","5.0",[49,50,20,51],"404","homepage","redirect","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fredirect-404-to-homepage-with-logging.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":11,"downloaded":61,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":62,"requires_at_least":63,"requires_php":17,"tags":64,"homepage":70,"download_link":71,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":72},"twitterpad","TwitterPad","1.3.3","mhawksey","https:\u002F\u002Fprofiles.wordpress.org\u002Fmhawksey\u002F","\u003Cp>TwitterPad is an automatic RSS-to-page\u002Fpost plugin designed to integrate with \u003Ca href=\"http:\u002F\u002Ftwitter.com\" rel=\"nofollow ugc\">twitter\u003C\u002Fa>. This plugin allows the user to add a number of custom search strings from \u003Ca href=\"http:\u002F\u002Fsearch.twitter.com\" rel=\"nofollow ugc\">search.twitter.com\u003C\u002Fa> specifying which page (or a new post) new tweets should be added to.\u003C\u002Fp>\n\u003Cp>For example, using ‘from:{yourtwittername} #tp’ I can collect all of my tweets which have been tagged #tp. You are also not just limited to collecting your own tweets, any search string will work.\u003C\u002Fp>\n\u003Cp>The plugin was designed to automatically collect tweets I wanted to save for future reference (a tweet pad) and the page you collect tweets to doesn’t have to be public. The plugin allows you to update any page in your blog, even if it is private.\u003C\u002Fp>\n\u003Cp>Tweets are by default automatically collected once a day the newest appears to the top of the page. There is an option to update more often if required. \u003Ca href=\"http:\u002F\u002Fwww.rsc-ne-scotland.org.uk\u002Fmashe\u002Fgooglewavetips\u002F\" rel=\"nofollow ugc\">Here is an example of TwitterPad in use\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NEW\u003C\u002Fstrong> – TwitterPad v1.3 now has the option of digesting tweets as a new post.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NEW\u003C\u002Fstrong> – TwitterPad v1.3.1 now has the option of manipulating twitter RSS feeds with other services like Yahoo Pipes.\u003C\u002Fp>\n\u003Cp>Tweet feature requests with the #twpadreq\u003C\u002Fp>\n","TwitterPad allows twitter users to automatically collect tweets using custom search strings which are added to a specified page or as a new blog post",3199,"2.9.2","2.5",[65,66,67,68,69],"aggregation","autoblogging","pages","rss","twitter","http:\u002F\u002Fwww.rsc-ne-scotland.org.uk\u002Fmashe\u002Ftwitterpad-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitterpad.1.3.3.zip","2026-03-15T10:48:56.248Z",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":13,"downloaded":81,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":82,"requires_at_least":47,"requires_php":83,"tags":84,"homepage":89,"download_link":90,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":72},"logaction","LogAction – Activity Logs for Admin","1.0.0","Sylvanus","https:\u002F\u002Fprofiles.wordpress.org\u002Fgblessylva\u002F","\u003Cp>\u003Cstrong>LogAction – Activity Logs for Admin\u003C\u002Fstrong> is a powerful WordPress plugin that provides a detailed activity logging system for your website. It tracks user actions, changes, and events, allowing site administrators to monitor activity, enhance security, and improve user experience. With an intuitive interface and customizable features, LogAction makes managing your site’s activity a breeze.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Tracks user logins, post updates, plugin activations, and more.\u003C\u002Fli>\n\u003Cli>View logs in an intuitive interface.\u003C\u002Fli>\n\u003Cli>Export logs to CSV for offline analysis or reporting.\u003C\u002Fli>\n\u003Cli>Customize logging preferences to suit your site’s needs.\u003C\u002Fli>\n\u003Cli>Filter logs by date and actions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is essential for administrators aiming to monitor activity, troubleshoot issues, and enhance their site’s security posture.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Ensure your PHP version is at least 7.4 for optimal performance.\u003C\u002Fli>\n\u003Cli>Compatible with the latest WordPress version.\u003C\u002Fli>\n\u003C\u002Ful>\n","Track and log WordPress activities to monitor and improve your site's security and administrative tasks.",377,"6.7.5","7.4",[85,86,20,87,88],"activity-log","admin-tools","security","wordpress","https:\u002F\u002Fgithub.com\u002Fgblessylva\u002FLogAction\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogaction.1.0.0.zip",{"slug":92,"name":93,"version":76,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":13,"downloaded":98,"rating":23,"num_ratings":45,"last_updated":99,"tested_up_to":15,"requires_at_least":100,"requires_php":17,"tags":101,"homepage":106,"download_link":107,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25},"multi-level-page-creator","Multi-Level Page Creator","Ready Steady Websites","https:\u002F\u002Fprofiles.wordpress.org\u002Freadysteadywebsites\u002F","\u003Cp>This plugin enables you to quickly generate multiple page, including nested child pages (1 deep), by entering a simple line-by-line structure. You can also automatically create a custom menu and assign page ownership to a specific admin user.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create multiple pages using a quick form\u003C\u002Fli>\n\u003Cli>Support for parent-child relationships\u003C\u002Fli>\n\u003Cli>Automatically generate a WordPress custom menu\u003C\u002Fli>\n\u003Cli>Optionally assign all pages to a chosen admin\u003C\u002Fli>\n\u003Cli>Simple, clean interface for site admins\u003C\u002Fli>\n\u003C\u002Ful>\n","Create multiple parent and child pages at once using a simple admin form. Automatically generate a menu and assign pages to a selected administrator.",320,"2025-06-10T11:58:00.000Z","6.0",[86,102,103,104,105],"bulk-pages","custom-menu","page-creation","user-assignment","https:\u002F\u002Freadysteadywebsites.com\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmulti-level-page-creator.1.0.0.zip",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":13,"downloaded":116,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":82,"requires_at_least":47,"requires_php":83,"tags":117,"homepage":17,"download_link":122,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":72},"quick-id-viewer","Quick ID Viewer","1.1.0","Huzaifa Al Mesbah","https:\u002F\u002Fprofiles.wordpress.org\u002Fhuzaifaalmesbah\u002F","\u003Cp>\u003Cstrong>Quick ID Viewer\u003C\u002Fstrong> is an essential WordPress utility that adds a convenient way to view and copy post, page, and taxonomy term IDs directly from your WordPress admin panel. Designed specifically for developers, site builders, and content managers who frequently need to reference content IDs for templates, shortcodes, or custom development.\u003C\u002Fp>\n\u003Cp>This lightweight plugin displays IDs directly in your admin lists with a one-click copy feature to streamline your workflow. Stop wasting time searching for IDs in the database or opening post edit screens – now you can access any content ID instantly.\u003C\u002Fp>\n\u003Ch4>How to Use\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>For Post Type IDs:\u003C\u002Fstrong>\u003Cbr \u002F>\n1. After activation and configuration, navigate to Posts, Pages, or any enabled custom post type in your admin panel\u003Cbr \u002F>\n2. You’ll see IDs displayed at the beginning of each row in the list view\u003Cbr \u002F>\n3. Simply click on any ID to instantly copy it to your clipboard\u003Cbr \u002F>\n4. Use the copied ID in your templates, shortcodes, or wherever needed\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For Taxonomy Term IDs:\u003C\u002Fstrong>\u003Cbr \u002F>\n1. Navigate to any taxonomy list (like Categories, Tags, or custom taxonomies)\u003Cbr \u002F>\n2. Term IDs will be prominently displayed for each term\u003Cbr \u002F>\n3. Click on any term ID to copy it with a single click\u003Cbr \u002F>\n4. Use the term ID for development or content management tasks\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Instant ID Display\u003C\u002Fstrong> – View post, page, and custom post type IDs directly in admin list views\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomy Term ID Support\u003C\u002Fstrong> – View category, tag, and custom taxonomy term IDs in taxonomy list views\u003C\u002Fli>\n\u003Cli>\u003Cstrong>One-Click Copy\u003C\u002Fstrong> – Copy any ID to clipboard with a single click (no selecting or right-clicking)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Support\u003C\u002Fstrong> – Works with all post types including custom post types\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Complete Taxonomy Coverage\u003C\u002Fstrong> – Supports all taxonomies including custom taxonomies\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fully Customizable\u003C\u002Fstrong> – Enable\u002Fdisable for specific post types and taxonomies\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Modern UI\u003C\u002Fstrong> – Clean, intuitive card-based settings interface\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance Optimized\u003C\u002Fstrong> – Lightweight with minimal impact on admin loading times\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer-Friendly\u003C\u002Fstrong> – Perfect tool for WordPress developers and site builders\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Public Impact\u003C\u002Fstrong> – Only affects admin area with no frontend changes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Zero Configuration\u003C\u002Fstrong> – Works immediately after activation (with default settings)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Use Cases\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Theme Development\u003C\u002Fstrong> – Quickly reference post and term IDs when building custom templates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugin Configuration\u003C\u002Fstrong> – Easily find and use IDs when setting up plugins that require specific content IDs\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Management\u003C\u002Fstrong> – Reference IDs when organizing or managing large amounts of content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Shortcode Implementation\u003C\u002Fstrong> – Find IDs to use in shortcodes without digging through the database\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Queries\u003C\u002Fstrong> – Grab specific post or term IDs for WP_Query or get_terms() functions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Debugging\u003C\u002Fstrong> – Quickly identify content by ID when troubleshooting\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Client Instructions\u003C\u002Fstrong> – Easily provide clients with exact content IDs for specific operations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>API Integration\u003C\u002Fstrong> – Reference correct content IDs when building custom API endpoints\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pro Tip\u003C\u002Fh4>\n\u003Cp>Enable Quick ID Viewer only for the post types and taxonomies you regularly work with to keep your admin interface clean and efficient. The plugin settings page makes it easy to customize exactly where IDs appear.\u003C\u002Fp>\n\u003Ch3>Check out our other Plugins\u003C\u002Fh3>\n\u003Cp>Enhance your WordPress site with our other powerful plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsmart-password-protect\u002F\" rel=\"ugc\">Smart Password Protect\u003C\u002Fa>\u003C\u002Fstrong> – Secure your WordPress site with password protection and IP whitelisting.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fredirect-after-logout\u002F\" rel=\"ugc\">Redirect After Logout\u003C\u002Fa>\u003C\u002Fstrong> – Redirect users to a custom page after logging out for enhanced user experience.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Faccess-defender\u002F\" rel=\"ugc\">Access Defender\u003C\u002Fa>\u003C\u002Fstrong> – Advanced security plugin to protect your WordPress site from unauthorized access and malicious attacks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontributors-gallery\u002F\" rel=\"ugc\">Contributors Gallery\u003C\u002Fa>\u003C\u002Fstrong> – Showcase your WordPress contributors in a beautiful and customizable gallery layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fproduct-spotlight-badge\u002F\" rel=\"ugc\">Product Spotlight Badge\u003C\u002Fa>\u003C\u002Fstrong> – Highlight your WooCommerce products with eye-catching badges to boost sales.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support queries, feature requests, and bug reports, please use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fquick-id-viewer\u002F\" rel=\"ugc\">WordPress.org support forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For priority support and custom development inquiries, please contact us through our website.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Quick ID Viewer does not collect, store, or share any personal data. It operates entirely within your WordPress admin panel.\u003C\u002Fp>\n","Quickly view and copy post, page, custom post type, and taxonomy term IDs directly from the WordPress admin list view with a single click.",688,[86,118,119,120,121],"page-id","post-id","show-id","utility","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquick-id-viewer.1.1.0.zip",{"attackSurface":124,"codeSignals":147,"taintFlows":238,"riskAssessment":321,"analyzedAt":329},{"hooks":125,"ajaxHandlers":140,"restRoutes":141,"shortcodes":142,"cronEvents":146,"entryPointCount":45,"unprotectedCount":13},[126,132,136],{"type":127,"name":128,"callback":129,"file":130,"line":131},"action","admin_menu","pagelog_add_admin","pagelog.php",44,{"type":127,"name":133,"callback":134,"file":130,"line":135},"wp_enqueue_scripts","pagelog_add_scripts",54,{"type":127,"name":137,"callback":138,"file":130,"line":139},"init","pagelog_load_language",60,[],[],[143],{"tag":4,"callback":144,"file":130,"line":145},"pagelog_shortcode_handler",456,[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":190,"fileOperations":13,"externalRequests":13,"nonceChecks":45,"capabilityChecks":45,"bundledLibraries":237},[],{"prepared":150,"raw":151,"locations":152},18,17,[153,156,158,161,163,165,168,170,172,174,176,178,180,182,184,186,188],{"file":130,"line":154,"context":155},118,"$wpdb->get_results() with variable interpolation",{"file":130,"line":157,"context":155},135,{"file":130,"line":159,"context":160},269,"$wpdb->get_col() with variable interpolation",{"file":130,"line":162,"context":160},274,{"file":130,"line":164,"context":155},283,{"file":130,"line":166,"context":167},368,"$wpdb->get_var() with variable interpolation",{"file":130,"line":169,"context":167},505,{"file":130,"line":171,"context":167},511,{"file":130,"line":173,"context":167},608,{"file":130,"line":175,"context":155},615,{"file":130,"line":177,"context":155},662,{"file":130,"line":179,"context":155},743,{"file":130,"line":181,"context":160},807,{"file":130,"line":183,"context":155},814,{"file":130,"line":185,"context":167},915,{"file":130,"line":187,"context":167},943,{"file":130,"line":189,"context":167},950,{"escaped":191,"rawEcho":192,"locations":193},49,21,[194,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235],{"file":130,"line":195,"context":196},229,"raw output",{"file":130,"line":198,"context":196},242,{"file":130,"line":200,"context":196},252,{"file":130,"line":202,"context":196},525,{"file":130,"line":204,"context":196},545,{"file":130,"line":206,"context":196},548,{"file":130,"line":208,"context":196},554,{"file":130,"line":210,"context":196},561,{"file":130,"line":212,"context":196},569,{"file":130,"line":214,"context":196},632,{"file":130,"line":216,"context":196},641,{"file":130,"line":218,"context":196},645,{"file":130,"line":220,"context":196},697,{"file":130,"line":222,"context":196},767,{"file":130,"line":224,"context":196},838,{"file":130,"line":226,"context":196},921,{"file":130,"line":228,"context":196},989,{"file":130,"line":230,"context":196},995,{"file":130,"line":232,"context":196},1003,{"file":130,"line":234,"context":196},1117,{"file":130,"line":236,"context":196},1121,[],[239,273,292],{"entryPoint":240,"graph":241,"unsanitizedCount":13,"severity":272},"pagelog_proc (pagelog.php:63)",{"nodes":242,"edges":267},[243,248,254,258,262,264],{"id":244,"type":245,"label":246,"file":130,"line":247},"n0","source","$_POST (x5)",74,{"id":249,"type":250,"label":251,"file":130,"line":252,"wp_function":253},"n1","sink","update_option() [Settings Manipulation]",75,"update_option",{"id":255,"type":245,"label":256,"file":130,"line":257},"n2","$_GET",222,{"id":259,"type":250,"label":260,"file":130,"line":195,"wp_function":261},"n3","echo() [XSS]","echo",{"id":263,"type":245,"label":256,"file":130,"line":257},"n4",{"id":265,"type":250,"label":251,"file":130,"line":266,"wp_function":253},"n5",387,[268,270,271],{"from":244,"to":249,"sanitized":269},true,{"from":255,"to":259,"sanitized":269},{"from":263,"to":265,"sanitized":269},"low",{"entryPoint":274,"graph":275,"unsanitizedCount":13,"severity":272},"pagelog_shortcode_handler (pagelog.php:391)",{"nodes":276,"edges":289},[277,280,284,285],{"id":244,"type":245,"label":278,"file":130,"line":279},"$_SERVER",405,{"id":249,"type":250,"label":281,"file":130,"line":282,"wp_function":283},"query() [SQLi]",418,"query",{"id":255,"type":245,"label":278,"file":130,"line":279},{"id":259,"type":250,"label":286,"file":130,"line":287,"wp_function":288},"get_var() [SQLi]",445,"get_var",[290,291],{"from":244,"to":249,"sanitized":269},{"from":255,"to":259,"sanitized":269},{"entryPoint":293,"graph":294,"unsanitizedCount":13,"severity":272},"\u003Cpagelog> (pagelog.php:0)",{"nodes":295,"edges":314},[296,297,298,299,300,301,302,304,306,308,310,312],{"id":244,"type":245,"label":246,"file":130,"line":247},{"id":249,"type":250,"label":251,"file":130,"line":252,"wp_function":253},{"id":255,"type":245,"label":256,"file":130,"line":257},{"id":259,"type":250,"label":260,"file":130,"line":195,"wp_function":261},{"id":263,"type":245,"label":256,"file":130,"line":257},{"id":265,"type":250,"label":251,"file":130,"line":266,"wp_function":253},{"id":303,"type":245,"label":278,"file":130,"line":279},"n6",{"id":305,"type":250,"label":281,"file":130,"line":282,"wp_function":283},"n7",{"id":307,"type":245,"label":278,"file":130,"line":279},"n8",{"id":309,"type":250,"label":286,"file":130,"line":287,"wp_function":288},"n9",{"id":311,"type":245,"label":278,"file":130,"line":279},"n10",{"id":313,"type":250,"label":260,"file":130,"line":220,"wp_function":261},"n11",[315,316,317,318,319,320],{"from":244,"to":249,"sanitized":269},{"from":255,"to":259,"sanitized":269},{"from":263,"to":265,"sanitized":269},{"from":303,"to":305,"sanitized":269},{"from":307,"to":309,"sanitized":269},{"from":311,"to":313,"sanitized":269},{"summary":322,"deductions":323},"The pagelog plugin v1.8 demonstrates a generally strong security posture, with no known vulnerabilities or critical security issues identified in static analysis or vulnerability history. The plugin employs good security practices such as utilizing prepared statements for a significant portion of its SQL queries and properly escaping output in a majority of cases. The presence of nonce and capability checks also contributes positively to its security. The limited attack surface, consisting of a single shortcode with no immediately apparent unprotected entry points, further enhances its security profile.  However, the static analysis indicates that 49% of SQL queries are not using prepared statements, which presents a potential risk for SQL injection if user input is not rigorously sanitized. Additionally, 30% of output is not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if user-controllable data is displayed without adequate sanitization. While the vulnerability history is clean, these code-level risks should not be overlooked. The plugin's strengths lie in its minimal attack surface and proactive checks, but vigilance is required regarding the unescaped outputs and raw SQL queries.",[324,327],{"reason":325,"points":326},"SQL queries not using prepared statements",5,{"reason":328,"points":326},"Output not properly escaped","2026-03-17T01:35:46.529Z",{"wat":331,"direct":336},{"assetPaths":332,"generatorPatterns":333,"scriptPaths":334,"versionParams":335},[],[],[],[],{"cssClasses":337,"htmlComments":339,"htmlAttributes":340,"restEndpoints":348,"jsGlobals":349,"shortcodeOutput":350},[338],"tabs",[],[341,342,343,344,345,346,347],"id=\"label1\"","id=\"label2\"","id=\"label3\"","id=\"label4\"","id=\"label5\"","id=\"label6\"","id=\"label7\"",[],[],[351],"[pagelog]"]