[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fztzkhf_UTfp32H4l9D-QZPQsvy0TrYlRbu79zoNIJbs":3,"$fdJkfNOalf1XgKKmwx6M1ReiG9ennGbvzBbDBMN40PRU":198,"$fvSA8zAqB29bvjrJY8f6-Fki809pzSFljqJlGX2HjYzU":203},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":39,"analysis":139,"fingerprints":167},"plugins-admin-bar","Plugins Admin Bar – WordPress Plugin Adding Plugin Link To WP Admin Bar Sub Menu","1.5","Russell Aaron","https:\u002F\u002Fprofiles.wordpress.org\u002Fgeekstreetwp\u002F","\u003Cp>Plugins are amazing tools in the WordPress ecosystem. Every WordPress site has at least one plugins installed\u002Factivated. Yet there is no quick link to installed plugins. Plugins Admin Bar fixes this.\u003C\u002Fp>\n\u003Cp>WordPress has the WP Admin Bar at the top of every site. On the front end of the site, you’ll see the name of your site as a link to \u002Fwp-admin\u002F. Under the Site Name, there is a sub-menu with quick links to the Dashboard, Themes, Widgets, and Menus.\u003C\u002Fp>\n\u003Ch4>How It Works on a Single Install\u003C\u002Fh4>\n\u003Cp>Install the plugin and click activate. In the WP Admin Bar, at the top of your WordPress Site, hover your mouse on the +New Menu Item.\u003Cbr \u002F>\nInside is a list of the new things you can add to your site. You’ll notice a menu item called “PLugins”. Click to add a new plugin, or you can hover over the Plugins menu item and add a new plugin from the Popular, Recommended, and Favorites list.\u003C\u002Fp>\n\u003Cp>In the WP Admin Bar, find the menu item with the Site Title. It has a house icon to the left. Hover over the Site Title menu item and you’ll now see “Plugins” included in this list as well. From here, you’ll be able to see Active and Inactive plugins.\u003C\u002Fp>\n\u003Ch4>How It Works on a Multisite Install\u003C\u002Fh4>\n\u003Cp>If you’re a super admin (you can manage the entire site):\u003C\u002Fp>\n\u003Cp>Install the plugin and click activate. In the WP Admin Bar, at the top of your WordPress Site, hover your mouse on the +New Menu Item.\u003Cbr \u002F>\nInside is a list of the new things you can add to your site. You’ll notice a menu item called “PLugins”. Click to add a new plugin to the network, or you can hover over the Plugins menu item and add a new Popular, Recommended, and Favorites plugin to the network.\u003C\u002Fp>\n\u003Cp>You’ll see two new menu items under the Site Title menu item in the WP Admin Bar.\u003Cbr \u002F>\n“Network Plugins” & “Plugins” now appear under the Site Title. Under the “Network Plugins” menu item, you can see all of the Network Active, Inactive and Must use plugins. Under the “Plugins” menu item, you can see the Active and Inactive for each sub-site on the network.\u003C\u002Fp>\n\u003Cp>If you are an admin of a sub-site (you can only activate\u002Fdeactive plugins):\u003Cbr \u002F>\nYou will only see the “Plugins” menu item under the Site Title. You’ll only be able to see the Active and Inactive plugins on your sub-site. Remember, only a super admin can add a plugin.\u003C\u002Fp>\n\u003Cp>With Plugins Admin Bar, you’ll never have to click 4 or 5 times just to view or install or a new plugin, ever again.\u003C\u002Fp>\n","Plugins Admin Bar is a free WordPress Plugin that adds quick links to the WordPress Admin Bar, under the site name menu, for plugins and network plugi …",10,2066,100,1,"2017-12-15T22:54:00.000Z","4.9.29","4.1","",[20,21,22],"admin","plugins","wp-admin-bar","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fplugins-admin-bar\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-admin-bar.1.5.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"geekstreetwp",3,50,90,30,87,"2026-05-20T10:29:40.654Z",[40,61,83,102,121],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":18,"tags":55,"homepage":59,"download_link":60,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"wpcore","WPCore Plugin Manager","1.9.2","stueynet","https:\u002F\u002Fprofiles.wordpress.org\u002Fstueynet\u002F","\u003Cp>WPCore is a tool that allows you to manage collections of WordPress plugins and then quickly install them on any WordPress site. You can generate your collections at https:\u002F\u002Fwpcore.com and then import them to your WordPress site by copying and pasting your unique collection key in WordPress.\u003C\u002Fp>\n","Create plugin collections and install them in one click on any WordPress site.",10000,169202,96,32,"2025-05-20T17:15:00.000Z","6.8.5","3.5",[20,56,57,58,21],"administration","install","installation","https:\u002F\u002Fwpcore.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpcore.1.9.2.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":50,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":18,"tags":75,"homepage":79,"download_link":80,"security_score":81,"vuln_count":14,"unpatched_count":14,"last_vuln_date":82,"fetched_at":28},"hide-plugins","Hide Plugins","1.0.4","ThemeBoy","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeboy\u002F","\u003Cp>Hide Plugins is a light-weight plugin that gives a single admin user the ability to hide plugins prevent them from being activated, deactivated, or deleted by clients and other users, including administrators. By activating Hide Plugins, you will be able to see all plugins and a toggle to hide each plugin from other users on the Plugins page. Hide Plugins will always remain hidden.\u003C\u002Fp>\n\u003Cp>Note that the dropdown on the Edit Plugins page will not be affected, since it does not have a filter to hook into. Hidden plugins will remain active, so traces of the plugin in areas other than the Plugins page (like options pages in the admin menu) will still be visible. If you also want to hide menus, we recommend using \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadmin-menu-editor\u002F\" rel=\"ugc\">Admin Menu Editor\u003C\u002Fa>.\u003C\u002Fp>\n","Hide installed plugins from clients and other admin users.",1000,19345,9,"2016-04-22T14:32:00.000Z","4.5.33","3.0",[20,76,77,78,21],"dashboard","hidden","hide","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhide-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-plugins.1.0.4.zip",63,"2025-12-31 00:00:00",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":69,"downloaded":91,"rating":13,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":100,"download_link":101,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"plugin-report","Plugin Report","2.2.2","Torsten Landsiedel","https:\u002F\u002Fprofiles.wordpress.org\u002Fzodiac1978\u002F","\u003Cp>A WordPress plugin that provides detailed information about currently installed plugins.\u003C\u002Fp>\n\u003Ch3>Plugin Report will allow you to:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Spot plugins that are no longer maintained.\u003C\u002Fli>\n\u003Cli>Get a quick overview of the “plugin health” of your site.\u003C\u002Fli>\n\u003Cli>Provide clients with a detailed report, right from their own dashboard, or as CSV spreadsheet.\u003C\u002Fli>\n\u003Cli>Find plugins that are no longer active on multisite installs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Thanks to Roy Tanck for trusting me to adopt this great plugin. Hartelijk bedankt!\u003C\u002Fp>\n\u003Cp>Special thanks go to \u003Ca href=\"http:\u002F\u002Ftristen.ca\u002F\" rel=\"nofollow ugc\">Tristen Forsythe Brown\u003C\u002Fa> for the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftristen\u002Ftablesort\" rel=\"nofollow ugc\">tablesort JavaScript library\u003C\u002Fa> licensed under the MIT License.\u003C\u002Fp>\n","A WordPress plugin that provides detailed information about currently installed plugins.",26636,14,"2026-01-18T12:46:00.000Z","6.9.4","4.6","5.6",[20,98,99,21],"multisite","plugin-info","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fplugin-report\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugin-report.2.2.2.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":13,"num_ratings":112,"last_updated":113,"tested_up_to":114,"requires_at_least":115,"requires_php":18,"tags":116,"homepage":118,"download_link":119,"security_score":120,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"plugins-load-order","Plugins Load Order","1.2.2","Jose Barrera Mayoral","https:\u002F\u002Fprofiles.wordpress.org\u002Fchespir\u002F","\u003Cp>This plugin allows you to change the order in which plugins will be loaded by WordPress.\u003C\u002Fp>\n\u003Cp>It shows you a simple drag-and-drop interface to set this order.\u003C\u002Fp>\n\u003Cp>If you are plugin developer, I encourage you to use actions and hooks so that you will not need this plugin at all, but if you are managing your own blog and you face to the problem a plugin depends on other one, then this is the plugin you need.\u003C\u002Fp>\n","Allows you to change the order in which plugins will be loaded by Wordpress",500,11905,4,"2025-02-03T08:07:00.000Z","6.7.5","2.5",[20,117,21],"manage","http:\u002F\u002Fjosebarreramayoral.es\u002Fen\u002Fmy-plugin\u002Fplugins-load-order-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-load-order.zip",92,{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":131,"num_ratings":71,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":18,"tags":135,"homepage":137,"download_link":138,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"install-profiles","WP Install Profiles","3.4.1","rockgod100","https:\u002F\u002Fprofiles.wordpress.org\u002Frockgod100\u002F","\u003Cp>Save time setting up new sites by automatically downloading groups of plugins. Add new plugins by adding the slug from the plugin’s url in the WordPress plugin directory. For instance, the plugin “All In One SEO Pack” is listed here: \u003Ccode>https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fall-in-one-seo-pack\u002F\u003C\u002Fcode>. Add “All In One SEO Pack” to an installation profile by adding \u003Ccode>all-in-one-seo-pack\u003C\u002Fcode> in the plugins field (one plugin per line).\u003C\u002Fp>\n\u003Cp>WP Install Profiles (WPIP) allows users to define groups of plugins, called profiles. Once a profile has been entered, WPIP calls to the WordPress Plugin Directory, downloads the plugin files and unzips them to the site’s plugins folder. Additionally, WPIP saves the profile in a downloadable format, so you can upload it to your next site and download the same plugins with a single click.\u003C\u002Fp>\n\u003Cp>Store your profiles online at http:\u002F\u002Fplugins.ancillaryfactory.com and import them easily into all of your WordPress installs. \u003Ca href=\"http:\u002F\u002Fplugins.ancillaryfactory.com\" rel=\"nofollow ugc\">Learn more and create an account\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>See Install Profiles in action: \u003Ca href=\"http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=W-mBhPA1XGA\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=W-mBhPA1XGA\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Troubleshooting\u003C\u002Fh3>\n\u003Ch4>Required PHP libraries\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>SimpleXML\u003C\u002Fli>\n\u003Cli>ZipArchive\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>These libraries are installed by default on most shared hosting accounts, but they may need to be installed manually if your site is hosted by certain providers, including Media Temple.\u003C\u002Fp>\n\u003Ch4>File Permissions\u003C\u002Fh4>\n\u003Cp>If you are unable to save or import profiles, you may need to set \u003Ccode>wp-content\u002Fplugins\u002Finstall-profiles\u002Fprofiles\u003C\u002Fcode> to 777.\u003C\u002Fp>\n","Download custom collections of plugins automatically from the WordPress plugin directory.",400,20256,72,"2013-05-22T01:17:00.000Z","3.6.1","3.1",[20,56,58,21,136],"wp","http:\u002F\u002Fplugins.ancillaryfactory.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finstall-profiles.zip",{"attackSurface":140,"codeSignals":152,"taintFlows":159,"riskAssessment":160,"analyzedAt":166},{"hooks":141,"ajaxHandlers":148,"restRoutes":149,"shortcodes":150,"cronEvents":151,"entryPointCount":26,"unprotectedCount":26},[142],{"type":143,"name":144,"callback":145,"priority":146,"file":147,"line":92},"action","admin_bar_menu","plugins_admin_bar_links",999,"plugins-admin-bar.php",[],[],[],[],{"dangerousFunctions":153,"sqlUsage":154,"outputEscaping":156,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":33,"bundledLibraries":158},[],{"prepared":26,"raw":26,"locations":155},[],{"escaped":131,"rawEcho":26,"locations":157},[],[],[],{"summary":161,"deductions":162},"The \"plugins-admin-bar\" v1.5 plugin exhibits a strong security posture based on the provided static analysis. There are no identified entry points such as AJAX handlers, REST API routes, shortcodes, or cron events that are unprotected, indicating a well-secured attack surface. The code also demonstrates excellent practices with 100% of SQL queries using prepared statements and all output being properly escaped, effectively mitigating common vulnerabilities like SQL injection and cross-site scripting (XSS). The absence of dangerous functions, file operations, and external HTTP requests further strengthens its security. The presence of capability checks, even without nonces on entry points (which are also absent), suggests an intention to control access to features.\n\nThe taint analysis shows zero flows with unsanitized paths, which is highly reassuring. Furthermore, the plugin has a clean vulnerability history with no recorded CVEs, indicating a lack of past exploitable issues. This combination of robust code practices and a spotless history suggests a mature and secure plugin. The only area that might warrant minor attention is the complete absence of nonce checks. While there are no unprotected entry points and capability checks are in place, the inclusion of nonces would provide an additional layer of defense against potential CSRF attacks, especially if functionality were to be added in the future that manipulates data.\n\nIn conclusion, \"plugins-admin-bar\" v1.5 appears to be a very secure plugin. Its strengths lie in its minimal attack surface, secure coding practices regarding SQL and output handling, and a complete lack of past vulnerabilities. The absence of nonces is a minor observation in the context of its current secure state and limited entry points, but it is a good practice to consider for future development.",[163],{"reason":164,"points":165},"Missing nonce checks on potential entry points",5,"2026-04-16T12:38:13.850Z",{"wat":168,"direct":174},{"assetPaths":169,"generatorPatterns":171,"scriptPaths":172,"versionParams":173},[170],"\u002Fwp-content\u002Fplugins\u002Fplugins-admin-bar\u002F",[],[],[],{"cssClasses":175,"htmlComments":189,"htmlAttributes":190,"restEndpoints":195,"jsGlobals":196,"shortcodeOutput":197},[176,177,178,179,180,181,182,183,184,21,185,186,187,188],"add-a-new-plugin-network-plugins","upload-a-new-plugin-network-plugins","network-plugins","network-plugins-add-popular","network-plugins-add-recommended","network-plugins-add-favorites","network-plugins-active","network-plugins-inactive","network-plugins-mustuse","active-plugins","inactive-plugins","network-single-admin-plugins","network-single-admin-plugins-active",[],[191,192,193,194],"title","href","parent","meta",[],[],[],{"error":199,"url":200,"statusCode":201,"statusMessage":202,"message":202},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fplugins-admin-bar\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":165,"versions":204},[205,211,218,225,232],{"version":6,"download_url":24,"svn_tag_url":206,"released_at":27,"has_diff":207,"diff_files_changed":208,"diff_lines":27,"trac_diff_url":209,"vulnerabilities":210,"is_current":199},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fplugins-admin-bar\u002Ftags\u002F1.5\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fplugins-admin-bar%2Ftags%2F1.4&new_path=%2Fplugins-admin-bar%2Ftags%2F1.5",[],{"version":212,"download_url":213,"svn_tag_url":214,"released_at":27,"has_diff":207,"diff_files_changed":215,"diff_lines":27,"trac_diff_url":216,"vulnerabilities":217,"is_current":207},"1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-admin-bar.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fplugins-admin-bar\u002Ftags\u002F1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fplugins-admin-bar%2Ftags%2F1.3&new_path=%2Fplugins-admin-bar%2Ftags%2F1.4",[],{"version":219,"download_url":220,"svn_tag_url":221,"released_at":27,"has_diff":207,"diff_files_changed":222,"diff_lines":27,"trac_diff_url":223,"vulnerabilities":224,"is_current":207},"1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-admin-bar.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fplugins-admin-bar\u002Ftags\u002F1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fplugins-admin-bar%2Ftags%2F1.2&new_path=%2Fplugins-admin-bar%2Ftags%2F1.3",[],{"version":226,"download_url":227,"svn_tag_url":228,"released_at":27,"has_diff":207,"diff_files_changed":229,"diff_lines":27,"trac_diff_url":230,"vulnerabilities":231,"is_current":207},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-admin-bar.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fplugins-admin-bar\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fplugins-admin-bar%2Ftags%2F1.1&new_path=%2Fplugins-admin-bar%2Ftags%2F1.2",[],{"version":233,"download_url":234,"svn_tag_url":235,"released_at":27,"has_diff":207,"diff_files_changed":236,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":237,"is_current":207},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-admin-bar.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fplugins-admin-bar\u002Ftags\u002F1.1\u002F",[],[]]