[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fyvtcVrkQC-_SpL_W4TWrAnfgR37P2PwtMo78i-7hRzY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":132,"fingerprints":216},"php-snippets-for-theme-designer","php snippet for theme designers","5.0","水野史土","https:\u002F\u002Fprofiles.wordpress.org\u002Founziw\u002F","\u003Cp>This plugin diplays a is_page()\u002Fis_category()\u002Fis_tag() snippet for page\u002Fcategory\u002Ftag list. You can go to the page\u002Fcategory\u002Ftag list in the admin area, and you can copy one (and paste it to a theme file).\u003C\u002Fp>\n","PHP Snippets for Theme Designer",10,3067,100,1,"2020-01-08T21:56:00.000Z","5.3.21","3.7","",[20,21,22,23],"admin","category","dashboard","php","http:\u002F\u002Fplugin.php-web.net\u002Fwp\u002Ftema-dezaina-no-tame-no-phpsunipetto","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphp-snippets-for-theme-designer.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"ounziw",11,8370,86,30,84,"2026-04-04T14:16:21.250Z",[40,63,81,97,110],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":35,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":59,"download_link":60,"security_score":61,"vuln_count":14,"unpatched_count":27,"last_vuln_date":62,"fetched_at":29},"error-log-monitor","Error Log Monitor","1.7.12","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>This plugin adds a Dashboard widget that displays the latest messages from your PHP error log. It can also send you email notifications about newly logged errors.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically detects error log location.\u003C\u002Fli>\n\u003Cli>Explains how to configure PHP error logging if it’s not enabled yet.\u003C\u002Fli>\n\u003Cli>The number of displayed log entries is configurable.\u003C\u002Fli>\n\u003Cli>Sends you email notifications about logged errors (optional).\u003C\u002Fli>\n\u003Cli>Configurable email address and frequency.\u003C\u002Fli>\n\u003Cli>You can easily clear the log file.\u003C\u002Fli>\n\u003Cli>The dashboard widget is only visible to administrators.\u003C\u002Fli>\n\u003Cli>Optimized to work well even with very large log files.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Once you’ve installed the plugin, go to the Dashboard and enable the “PHP Error Log” widget through the “Screen Options” panel. The widget should automatically display the last 20 lines from your PHP error log. If you see an error message like “Error logging is disabled” instead, follow the displayed instructions to configure error logging.\u003C\u002Fp>\n\u003Cp>Email notifications are disabled by default. To enable them, click the “Configure” link in the top-right corner of the widget and enter your email address in the “Periodically email logged errors to:” box. If desired, you can also change email frequency by selecting the minimum time interval between emails from the “How often to send email” drop-down.\u003C\u002Fp>\n","Adds a Dashboard widget that displays the latest messages from your PHP error log. It can also send logged errors to email.",20000,631204,48,"2025-10-01T15:12:00.000Z","6.8.5","4.5","7.4",[20,56,57,58,23],"administration","dashboard-widget","error-reporting","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2012\u002F07\u002F25\u002Ferror-log-monitor-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ferror-log-monitor.1.7.12.zip",99,"2019-02-25 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":13,"num_ratings":14,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":18,"download_link":80,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"php-version","PHP Version","1.0.7","mazedulislam27","https:\u002F\u002Fprofiles.wordpress.org\u002Fmazedulislam27\u002F","\u003Cp>“PHP version” is very simple and lightweight plugin that will help you for showing up the current PHP version in WordPress dashboard.\u003C\u002Fp>\n\u003Cp>If you satisfied with this plugin, please \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fphp-version\" rel=\"ugc\">\u003Cstrong>rate\u003C\u002Fstrong>\u003C\u002Fa> it. Your rate will encourage to do better in the future.\u003C\u002Fp>\n","You can able to see the current PHP version in WordPress admin dashboard widget.",4000,35155,"2025-12-09T21:06:00.000Z","6.9.0","4.0","5.6.0",[20,22,64,78,79],"server","version","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphp-version.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":13,"num_ratings":14,"last_updated":91,"tested_up_to":52,"requires_at_least":92,"requires_php":18,"tags":93,"homepage":95,"download_link":96,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-php-version-display","WP PHP Version Display","2.0","Arul Prasad J","https:\u002F\u002Fprofiles.wordpress.org\u002Farulprasadj\u002F","\u003Cp>This is a lightweight WordPress plugin that displays the current running PHP\u002FMySQL version inside “At a Glance” admin dashboard widget.\u003C\u002Fp>\n\u003Cp>Plugin uses standard actions and filters only. (No jQuery used)\u003C\u002Fp>\n\u003Cp>If you love this plugin, \u003Ca href=\"https:\u002F\u002Fpaypal.me\u002Farulprasadj?locale.x=en_GB\" rel=\"nofollow ugc\">buy me a cup of coffee\u003C\u002Fa>\u003C\u002Fp>\n","Displays the current running PHP\u002FMySQL version inside \"At a Glance\" admin dashboard widget.",3000,20171,"2025-04-25T13:28:00.000Z","3.0",[20,22,23,78,94],"support","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-php-version-display\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-php-version-display.2.0.zip",{"slug":98,"name":99,"version":100,"author":7,"author_profile":8,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":13,"num_ratings":14,"last_updated":18,"tested_up_to":105,"requires_at_least":92,"requires_php":18,"tags":106,"homepage":107,"download_link":108,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":109},"select-category-to-post","Select Category to Post","2.3","\u003Cp>This plugin shows the list of the categories of your blog. When you click one of the categories, you will jump to post-new.php, where the category you clicked is selected.\u003C\u002Fp>\n\u003Cp>Usually you go to post-new.php and write a post, then you select the category of the new post. This flow may result in publishing without selecting any category. In such cases, the post is categorized as ‘Uncategorized’ and you have to select a category after publishing.\u003C\u002Fp>\n\u003Cp>This plugin solves this problem. You can select one category before writing a post, no more unwanted Uncategorized.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fplugin.php-web.net\u002Fwp\u002Fcategory-select\" rel=\"nofollow ugc\">Japanese description\u003C\u002Fa> is also available.\u003C\u002Fp>\n","Category names are shown on your dashboard with a hyperlink, and when you click one, you will go to post-new.php, with the category already selected.",40,3966,"3.3.2",[20,21,22],"http:\u002F\u002Founziw.com\u002F2010\u002F11\u002F08\u002Fselectcategory-to-post\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fselect-category-to-post.zip","2026-03-15T10:48:56.248Z",{"slug":111,"name":112,"version":113,"author":44,"author_profile":45,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":54,"tags":123,"homepage":127,"download_link":128,"security_score":129,"vuln_count":130,"unpatched_count":27,"last_vuln_date":131,"fetched_at":29},"admin-menu-editor","Admin Menu Editor","1.15","\u003Cp>Admin Menu Editor lets you manually edit the Dashboard menu. You can reorder the menus, show\u002Fhide specific items, change permissions, and more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change menu titles, URLs, icons, CSS classes and so on.\u003C\u002Fli>\n\u003Cli>Organize menu items via drag & drop.\u003C\u002Fli>\n\u003Cli>Change menu permissions by setting the required capability or role.\u003C\u002Fli>\n\u003Cli>Move a menu item to a different submenu. \u003C\u002Fli>\n\u003Cli>Create custom menus that point to any part of the Dashboard or an external URL.\u003C\u002Fli>\n\u003Cli>Hide\u002Fshow any menu or menu item. A hidden menu is invisible to all users, including administrators.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The \u003Ca href=\"http:\u002F\u002Fw-shadow.com\u002FAdminMenuEditor\u002F\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa> lets you set per-role menu permissions, hide a menu from everyone except a specific user, export your admin menu, drag items between menu levels, make menus open in a new window and more. \u003Ca href=\"http:\u002F\u002Famedemo.com\u002Fwpdemo\u002Fdemo.php\" rel=\"nofollow ugc\">Try online demo\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Additional Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Despite the name, this plugin is not limited to just editing the admin menu. You can also:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create login redirects and logout redirects.\u003C\u002Fli>\n\u003Cli>Allow\u002Fdeny access to specific posts based on user roles.\u003C\u002Fli>\n\u003Cli>Hide plugins on the \u003Cem>Plugins -> Installed Plugins\u003C\u002Fem> page from other users.\u003C\u002Fli>\n\u003Cli>Edit the display name, description, and other plugin details shown on the \u003Cem>Plugins -> Installed Plugins\u003C\u002Fem> page (e.g. for white-labelling).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugin provides a few utility shortcodes. These are mainly intended to help with creating login\u002Flogout redirects, but you can also use them in posts and pages.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>[ame-wp-admin]\u003C\u002Fcode> – URL of the WordPress dashboard (with a trailing slash).\u003C\u002Fli>\n\u003Cli>\u003Ccode>[ame-home-url]\u003C\u002Fcode> – Site URL. Usually, this is the same as the URL in the “Site Address” field in \u003Cem>Settings -> General\u003C\u002Fem>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>[ame-user-info field=\"...\"]\u003C\u002Fcode> – Information about the logged-in user. Parameters:\n\u003Cul>\n\u003Cli>\u003Ccode>field\u003C\u002Fcode> – The part of user profile to display. Supported fields include: \u003Ccode>ID\u003C\u002Fcode>, \u003Ccode>user_login\u003C\u002Fcode>, \u003Ccode>display_name\u003C\u002Fcode>, \u003Ccode>locale\u003C\u002Fcode>, \u003Ccode>user_nicename\u003C\u002Fcode>, \u003Ccode>user_url\u003C\u002Fcode>, and so on.\u003C\u002Fli>\n\u003Cli>\u003Ccode>placeholder\u003C\u002Fcode> – Optional. Text that will be shown if the visitor is not logged in.\u003C\u002Fli>\n\u003Cli>\u003Ccode>encoding\u003C\u002Fcode> – Optional. How to encode or escape the output. This is useful if you want to use the shortcode in your own HTML or JS code. Supported values: \u003Ccode>auto\u003C\u002Fcode> (default), \u003Ccode>html\u003C\u002Fcode>, \u003Ccode>attr\u003C\u002Fcode>, \u003Ccode>js\u003C\u002Fcode>, \u003Ccode>none\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If you delete any of the default menus they will reappear after saving. This is by design. To get rid of a menu for good, either hide it or change it’s access permissions.\u003C\u002Fli>\n\u003Cli>In the free version, it’s not possible to give a role access to a menu item that it couldn’t see before. You can only restrict menu access further.\u003C\u002Fli>\n\u003Cli>In case of emergency, you can reset the menu configuration back to the default by going to http:\u002F\u002Fexample.com\u002Fwp-admin\u002F?reset_admin_menu=1 (replace example.com with your site URL). You must be logged in as an Administrator to do this.\u003C\u002Fli>\n\u003C\u002Ful>\n","Lets you edit the WordPress admin menu. You can re-order, hide or rename menus, add custom menus and more.",400000,7768111,92,311,"2026-02-20T11:36:00.000Z","6.9.4","5.9",[20,22,124,125,126],"menu","security","wpmu","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2008\u002F12\u002F20\u002Fadmin-menu-editor-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-menu-editor.1.15.zip",96,3,"2026-03-10 00:00:00",{"attackSurface":133,"codeSignals":180,"taintFlows":206,"riskAssessment":207,"analyzedAt":215},{"hooks":134,"ajaxHandlers":176,"restRoutes":177,"shortcodes":178,"cronEvents":179,"entryPointCount":27,"unprotectedCount":27},[135,141,146,151,154,158,161,165,168,172],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","admin_menu","psftd_add_page","js_css.php",12,{"type":136,"name":142,"callback":143,"file":144,"line":145},"admin_init","psftd_i18n","phpsnippet.php",16,{"type":147,"name":148,"callback":149,"file":144,"line":150},"filter","manage_pages_columns","psftd_add_snippet_column",51,{"type":147,"name":152,"callback":149,"file":144,"line":153},"manage_posts_columns",52,{"type":147,"name":155,"callback":156,"file":144,"line":157},"manage_edit-category_columns","psftd_add_categories_snippet_column",59,{"type":147,"name":159,"callback":156,"file":144,"line":160},"manage_edit-post_tag_columns",60,{"type":136,"name":162,"callback":163,"priority":11,"file":144,"line":164},"manage_pages_custom_column","psftd_add_snippet_text",76,{"type":136,"name":166,"callback":167,"priority":11,"file":144,"line":118},"manage_posts_custom_column","psftd_add_post_snippet_text",{"type":147,"name":169,"callback":170,"priority":11,"file":144,"line":171},"manage_category_custom_column","psftd_add_categories_snippet_text",105,{"type":147,"name":173,"callback":174,"priority":11,"file":144,"line":175},"manage_post_tag_custom_column","psftd_add_post_tag_snippet_text",118,[],[],[],[],{"dangerousFunctions":181,"sqlUsage":182,"outputEscaping":184,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":14,"bundledLibraries":205},[],{"prepared":27,"raw":27,"locations":183},[],{"escaped":185,"rawEcho":186,"locations":187},9,8,[188,191,193,195,197,199,201,203],{"file":139,"line":189,"context":190},28,"raw output",{"file":139,"line":192,"context":190},34,{"file":144,"line":194,"context":190},67,{"file":144,"line":196,"context":190},72,{"file":144,"line":198,"context":190},83,{"file":144,"line":200,"context":190},88,{"file":144,"line":202,"context":190},102,{"file":144,"line":204,"context":190},115,[],[],{"summary":208,"deductions":209},"The static analysis of the 'php-snippets-for-theme-designer' v5.0 plugin reveals a generally positive security posture. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. The code also demonstrates good practices by using prepared statements for all SQL queries and performing at least one capability check. Taint analysis shows no identified critical or high severity flows, indicating a lack of exploitable data injection vulnerabilities based on this analysis.\n\nHowever, there are areas for improvement. The relatively low percentage of properly escaped output (53%) suggests a potential risk of Cross-Site Scripting (XSS) vulnerabilities if untrusted data is directly outputted without sufficient sanitization. While the plugin has no recorded vulnerabilities, its limited historical data means this cannot be definitively stated as a pattern of consistently secure development. The absence of nonce checks, especially if any entry points were to be introduced in the future, could also present a risk. Overall, the plugin appears to have a low risk profile due to its limited attack surface and secure data handling practices for SQL, but the output escaping requires attention.",[210,212],{"reason":211,"points":186},"Low percentage of properly escaped output",{"reason":213,"points":214},"No nonce checks observed",5,"2026-03-17T00:55:05.117Z",{"wat":217,"direct":225},{"assetPaths":218,"generatorPatterns":221,"scriptPaths":222,"versionParams":224},[219,220],"\u002Fwp-content\u002Fplugins\u002Fphp-snippets-for-theme-designer\u002Fcss\u002F","\u002Fwp-content\u002Fplugins\u002Fphp-snippets-for-theme-designer\u002Fjs\u002F",[],[223],"\u002Fwp-content\u002Fplugins\u002Fphp-snippets-for-theme-designer\u002Fjs\u002Fjs_css.php",[],{"cssClasses":226,"htmlComments":227,"htmlAttributes":228,"restEndpoints":229,"jsGlobals":230,"shortcodeOutput":231},[],[],[],[],[],[232,233,234,235,236,237],"\u003Ctextarea readonly rows=\"3\" cols=\"30\" onclick=\"this.focus();this.select()\">","&lt;?php if ( is_page ( '","&lt;?php endif; \u002F\u002F is_page( '","&lt;?php echo esc_url( get_permalink ( '","&lt;?php echo esc_url( get_category_link ( '","&lt;?php echo esc_url( get_tag_link ( '"]