[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$foVTT9Cme2ie5lJbRPn0he4JQw9xVKezNREtkLiyTZN8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":121,"fingerprints":176},"personalized-chuck-norris-joke-widget","Personalized Chuck Norris Jokes Widget","0.7.1","maarten.decat","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaartendecat\u002F","\u003Cp>This plugin adds a small WordPress widget that shows a random personalized Chuck Norris joke on your blog, starring yourself.\u003Cbr \u002F>\nThese jokes are taken from a database on icndb.com.\u003Cbr \u002F>\nFor regular Chuck Norris jokes, please refer to the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fchuck-norris-joke-widget\u002F\" title=\"Chuck Norris Jokes Widget\" rel=\"ugc\">Chuck Norris Jokes Widget\u003C\u002Fa>.\u003C\u002Fp>\n","Shows a random personalized Chuck Norris joke on your blog, starring yourself. For regular Chuck Norris jokes, please refer to the Chuck Norris Jokes  &hellip;",10,2679,0,"2015-08-20T18:44:00.000Z","4.3.34","2.8","",[19,20,21,22,23],"chuck-norris","fun","jokes","sidebar","widget","http:\u002F\u002Fwww.icndb.com\u002Fon-your-website\u002Fwordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersonalized-chuck-norris-joke-widget.0.7.1.zip",85,null,"2026-03-15T14:54:45.397Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"maartendecat",2,20,30,84,"2026-04-04T22:54:00.714Z",[38,49,67,78,94],{"slug":39,"name":40,"version":6,"author":7,"author_profile":8,"description":41,"short_description":42,"active_installs":11,"downloaded":43,"rating":13,"num_ratings":13,"last_updated":44,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":45,"homepage":46,"download_link":47,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":48},"chuck-norris-joke-widget","Chuck Norris Jokes Widget","\u003Cp>This plugin adds a small WordPress widget that shows a random Chuck Norris joke on your blog.\u003Cbr \u002F>\nThese jokes are taken from a database on icndb.com.\u003Cbr \u002F>\nFor personalized Chuck Norris jokes starring yourself, please refer to the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fpersonalized-chuck-norris-joke-widget\u002F\" title=\"Personalized Chuck Norris Jokes Widget\" rel=\"ugc\">Personalized Chuck Norris Jokes Widget\u003C\u002Fa>.\u003C\u002Fp>\n","Shows a random Chuck Norris joke on your blog. For personalized Chuck Norris jokes starring yourself, please refer to the Personalized Chuck Norris Jo &hellip;",3386,"2015-08-20T18:45:00.000Z",[19,20,21,22,23],"http:\u002F\u002Fmaartendecat.be\u002Fchuck-norris-jokes-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchuck-norris-joke-widget.0.7.1.zip","2026-03-15T15:16:48.613Z",{"slug":50,"name":51,"version":52,"author":53,"author_profile":54,"description":55,"short_description":56,"active_installs":11,"downloaded":57,"rating":33,"num_ratings":58,"last_updated":59,"tested_up_to":60,"requires_at_least":61,"requires_php":17,"tags":62,"homepage":65,"download_link":66,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":48},"funny-photos","Funny Photos","2.9","PResponsive","https:\u002F\u002Fprofiles.wordpress.org\u002Fallis741\u002F","\u003Cp>Plugin “Funny Photos” displays Funny photos on your blog.\u003Cbr \u002F>\nThere are over 5,000 photos.\u003Cbr \u002F>\nAdd Funny Photos to your sidebar on your blog using  a widget.\u003Cbr \u002F>\nPhotos are saved on our database, so you don’t need to have space for all that information.\u003C\u002Fp>\n","Plugin \"Funny Photos\" displays Best photos of the day and Funny photos on your blog. There are over 5,000 photos.",7582,1,"2015-02-28T18:18:00.000Z","4.1.42","3.0",[63,50,64,21,23],"funny-jokes","funny-video","http:\u002F\u002Fwww.premiumresponsive.com\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffunny-photos.zip",{"slug":68,"name":69,"version":61,"author":53,"author_profile":54,"description":70,"short_description":71,"active_installs":11,"downloaded":72,"rating":13,"num_ratings":13,"last_updated":73,"tested_up_to":60,"requires_at_least":61,"requires_php":17,"tags":74,"homepage":65,"download_link":77,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":48},"joke-of-the-day","Joke of the Day","\u003Cp>Plugin “Joke of the Day” displays categorized jokes on your blog. There are over 40,000 jokes in 40 categories. Jokes are saved on our database, so you don’t need to have space for all that information.\u003C\u002Fp>\n","Plugin \"Joke of the Day\" displays jokes on your blog. There are over 40,000 jokes in 40 categories.",10249,"2015-02-28T18:10:00.000Z",[75,64,76,21,23],"funny","joke","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjoke-of-the-day.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":11,"downloaded":86,"rating":13,"num_ratings":13,"last_updated":17,"tested_up_to":87,"requires_at_least":88,"requires_php":17,"tags":89,"homepage":90,"download_link":91,"security_score":92,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":93},"joke-of-the-day-advanced","Joke of the Day Advanced","1.2","Andy","https:\u002F\u002Fprofiles.wordpress.org\u002Fandycorm\u002F","\u003Cp>Places a Joke of the Day widget on your WordPress blog. Features include the ability to only show jokes containing a particular keyword, a switch between ‘clean’ or ‘dirty’ jokes, as well as an option to change the current joke early if you get tired of it. Jokes are loaded via ajax from \u003Ca href=\"http:\u002F\u002Fwww.joke-db.com\u002F\" rel=\"nofollow ugc\">The Internet Joke Database\u003C\u002Fa>, so your page will never be slowed due to loading jokes.\u003C\u002Fp>\n","Freshen up your WordPress site with a new joke every day.",4004,"3.4.2","2.0.2",[75,63,76,21,23],"http:\u002F\u002Fwww.joke-db.com\u002Fwidgets\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjoke-of-the-day-advanced.zip",100,"2026-03-15T10:48:56.248Z",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":11,"downloaded":102,"rating":92,"num_ratings":58,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":17,"tags":106,"homepage":119,"download_link":120,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":48},"quote-of-the-day-tellmequotes","Quote of The Day by TellmeQuotes","1.6","vivekmoyal","https:\u002F\u002Fprofiles.wordpress.org\u002Fvivekmoyal\u002F","\u003Cp>This plugin lets you add a Quote of the Day widget to your WordPress page. Put the widget and famous quotations will automatically appear on your page, every day!\u003C\u002Fp>\n\u003Cp>Our database having topic feeds contain family-friendly quotes by famous authors that are funny, inspirational, motivational and wise.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.tellmequotes.com\" rel=\"nofollow ugc\">TellmeQuotes\u003C\u002Fa> is the one of the web’s largest quotation site, and with our huge collection of quotes, you can expect a fresh Quote of the Day.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>*Widget allows you to place a Quote of the Day sidebar on your page *Widget adapts to the theme of your page\u003C\u002Fp>\n","This plugin lets you add a Quote of the Day widget to your WordPress site.",1374,"2016-07-05T10:41:00.000Z","4.5.33","3.0.1",[107,108,75,109,110,111,112,113,114,115,116,22,117,23,118],"art","famous-quotes","inspirational","love","motivational","nature","quotations","quote","quote-of-the-day","quotes","tellmequotes","wishes","http:\u002F\u002Fwww.tellmequotes.com\u002Flink\u002Fwordpress_plugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquote-of-the-day-tellmequotes.zip",{"attackSurface":122,"codeSignals":134,"taintFlows":163,"riskAssessment":164,"analyzedAt":175},{"hooks":123,"ajaxHandlers":130,"restRoutes":131,"shortcodes":132,"cronEvents":133,"entryPointCount":13,"unprotectedCount":13},[124],{"type":125,"name":126,"callback":127,"file":128,"line":129},"action","widgets_init","load_PersonalizedChuckNorrisJokeWidget","personalized-chuck-norris-joke-widget.php",26,[],[],[],[],{"dangerousFunctions":135,"sqlUsage":136,"outputEscaping":138,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":162},[],{"prepared":13,"raw":13,"locations":137},[],{"escaped":13,"rawEcho":139,"locations":140},12,[141,144,146,148,150,152,154,155,156,158,160,161],{"file":128,"line":142,"context":143},64,"raw output",{"file":128,"line":145,"context":143},78,{"file":128,"line":147,"context":143},79,{"file":128,"line":149,"context":143},86,{"file":128,"line":151,"context":143},115,{"file":128,"line":153,"context":143},116,{"file":128,"line":153,"context":143},{"file":128,"line":153,"context":143},{"file":128,"line":157,"context":143},121,{"file":128,"line":159,"context":143},122,{"file":128,"line":159,"context":143},{"file":128,"line":159,"context":143},[],[],{"summary":165,"deductions":166},"The \"personalized-chuck-norris-joke-widget\" plugin v0.7.1 demonstrates a generally good security posture based on the provided static analysis and vulnerability history. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a zero attack surface.  Furthermore, the code signals indicate no dangerous functions, no raw SQL queries (all are prepared), and no file operations or external HTTP requests.  The absence of known CVEs and historical vulnerabilities further strengthens its security profile.\n\nHowever, a significant concern arises from the output escaping. With 12 total outputs and 0% properly escaped, this presents a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic content displayed by the widget that is not rigorously sanitized on input could be exploited. The lack of capability checks and nonce checks, while not immediately exploitable due to the limited attack surface, means that if any entry points were to be introduced in future versions, they would be immediately vulnerable without proper authorization or CSRF protection.\n\nIn conclusion, while the plugin has a clean vulnerability history and avoids common pitfalls like raw SQL, the critical flaw in output escaping represents a severe and readily exploitable security weakness. The absence of proper authorization checks also indicates a potential for future vulnerabilities if the plugin's functionality expands. Addressing the output escaping is paramount for securing this plugin.",[167,170,173],{"reason":168,"points":169},"No output escaping",15,{"reason":171,"points":172},"No capability checks",5,{"reason":174,"points":172},"No nonce checks","2026-03-16T23:38:37.451Z",{"wat":177,"direct":183},{"assetPaths":178,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[179],"\u002Fwp-content\u002Fplugins\u002Fpersonalized-chuck-norris-joke-widget\u002Fjquery.icndb.min.js",[],[179],[],{"cssClasses":184,"htmlComments":186,"htmlAttributes":188,"restEndpoints":190,"jsGlobals":191,"shortcodeOutput":193},[185],"personalized-chuck-norris-jokes",[187],"\u003C!-- Personalized Chuck Norris Joke Widget plugin -->",[189],"id=\"personalized-chuck-norris-joke-widget\"",[],[192],"jQuery.icndb",[]]