[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwoiw7w9RX1-ZOVm3DqVcUTuIKan72kFtqF9f6A7AeiA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":56,"fingerprints":174},"post-timer","Post Timer","5.0","AddWeb Solution","https:\u002F\u002Fprofiles.wordpress.org\u002Faddweb-solution-pvt-ltd\u002F","\u003Cp>Post Timer is a simple and easy-to-use WordPress plugin designed to display a timer popup on selected posts, pages, or custom post types when a user adds or edits content.\u003C\u002Fp>\n\u003Cp>With this plugin, you can:\u003Cbr \u002F>\nā€“ Customize the timer popup color and placement (e.g., top-left, top-right, bottom-left, bottom-right, left, right).\u003Cbr \u002F>\nā€“ Show the timer popup on specific posts, pages, or custom post types during the add\u002Fedit process.\u003C\u002Fp>\n","Simple and easy-to-use WP plugin that displays a timer popup on selected posts, pages, or custom post types when a user adds or edits content.",10,3312,100,4,"2024-12-06T08:36:00.000Z","6.7.5","6.0","",[20,4,21],"custom-post-timer","timer-popup","http:\u002F\u002Fwww.addwebsolution.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-timer.5.0.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"addweb-solution-pvt-ltd",6,80,91,30,88,"2026-04-04T04:15:16.913Z",[38],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":25,"downloaded":46,"rating":25,"num_ratings":25,"last_updated":18,"tested_up_to":16,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":53,"download_link":54,"security_score":13,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":55},"post-display-timer","Post Display Timer","1.0.1","shibjeedanuwar","https:\u002F\u002Fprofiles.wordpress.org\u002Fshibjeedanuwar\u002F","\u003Cp>Post Display Timer is a powerful WordPress plugin that allows you to control how long visitors spend reading each post on your website. Perfect for research studies, timed reading exercises, or controlled content presentation.\u003C\u002Fp>\n\u003Ch3>šŸ”„ Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Set custom timer duration for posts\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable countdown display\u003C\u002Fli>\n\u003Cli>Optional start button for user control\u003C\u002Fli>\n\u003Cli>Set number of posts to display\u003C\u002Fli>\n\u003Cli>Random post order option\u003C\u002Fli>\n\u003Cli>Completion code generation\u003C\u002Fli>\n\u003Cli>Multiple tab prevention\u003C\u002Fli>\n\u003Cli>Custom post URL support\u003C\u002Fli>\n\u003Cli>Mobile-friendly and responsive\u003C\u002Fli>\n\u003C\u002Ful>\n","Display posts with a countdown timer and control how long visitors view each post before proceeding to the next one.",398,"6.3","7.4",[50,51,39,4,52],"content-management","content-timer","timed-content","https:\u002F\u002Fgithub.com\u002Fshibjeedanuwar\u002Fpost-display-timer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-display-timer.1.0.1.zip","2026-03-15T10:48:56.248Z",{"attackSurface":57,"codeSignals":120,"taintFlows":130,"riskAssessment":170,"analyzedAt":173},{"hooks":58,"ajaxHandlers":116,"restRoutes":117,"shortcodes":118,"cronEvents":119,"entryPointCount":25,"unprotectedCount":25},[59,65,69,73,78,81,86,89,93,96,99,102,105,108,110,112,114],{"type":60,"name":61,"callback":62,"file":63,"line":64},"action","admin_menu","addweb_pt_addmenu_page","includes\\admin.php",25,{"type":60,"name":66,"callback":67,"file":63,"line":68},"admin_init","addweb_pt_register_settings",26,{"type":60,"name":70,"callback":71,"file":63,"line":72},"admin_enqueue_scripts","addweb_pt_admin_style_and_js",27,{"type":60,"name":74,"callback":75,"file":76,"line":77},"admin_head","addweb_pt_timer_clock","includes\\timer.php",32,{"type":60,"name":74,"callback":79,"file":76,"line":80},"addweb_pt_head_styles",33,{"type":82,"name":83,"callback":84,"file":76,"line":85},"filter","admin_footer","addweb_pt_get_timer_popup",34,{"type":60,"name":83,"callback":87,"file":76,"line":88},"addweb_pt_footer_scripts",35,{"type":60,"name":61,"callback":90,"file":91,"line":92},"addweb_pt_plugin_admin_menu","post_timer_class.php",125,{"type":60,"name":70,"callback":94,"file":91,"line":95},"addweb_pt_enqueue_admin_styles",130,{"type":60,"name":70,"callback":97,"file":91,"line":98},"addweb_pt_enqueue_admin_scripts",131,{"type":60,"name":66,"callback":100,"file":91,"line":101},"addweb_pt_load_timer_popup",132,{"type":60,"name":70,"callback":103,"file":91,"line":104},"addweb_pt_enqueue_styles",141,{"type":60,"name":70,"callback":106,"file":91,"line":107},"addweb_pt_enqueue_scripts",158,{"type":60,"name":74,"callback":79,"file":91,"line":109},159,{"type":60,"name":74,"callback":75,"file":91,"line":111},160,{"type":82,"name":83,"callback":84,"file":91,"line":113},161,{"type":60,"name":83,"callback":87,"file":91,"line":115},162,[],[],[],[],{"dangerousFunctions":121,"sqlUsage":122,"outputEscaping":124,"fileOperations":25,"externalRequests":25,"nonceChecks":127,"capabilityChecks":128,"bundledLibraries":129},[],{"prepared":25,"raw":25,"locations":123},[],{"escaped":125,"rawEcho":25,"locations":126},97,[],2,1,[],[131,159],{"entryPoint":132,"graph":133,"unsanitizedCount":25,"severity":158},"addweb_pt_timer_popup_options (post_timer_class.php:213)",{"nodes":134,"edges":154},[135,140,146,150],{"id":136,"type":137,"label":138,"file":91,"line":139},"n0","source","$_POST (x5)",229,{"id":141,"type":142,"label":143,"file":91,"line":144,"wp_function":145},"n1","sink","update_option() [Settings Manipulation]",233,"update_option",{"id":147,"type":137,"label":148,"file":91,"line":149},"n2","$_GET['page']",305,{"id":151,"type":142,"label":152,"file":91,"line":149,"wp_function":153},"n3","echo() [XSS]","echo",[155,157],{"from":136,"to":141,"sanitized":156},true,{"from":147,"to":151,"sanitized":156},"low",{"entryPoint":160,"graph":161,"unsanitizedCount":25,"severity":158},"\u003Cpost_timer_class> (post_timer_class.php:0)",{"nodes":162,"edges":167},[163,164,165,166],{"id":136,"type":137,"label":138,"file":91,"line":139},{"id":141,"type":142,"label":143,"file":91,"line":144,"wp_function":145},{"id":147,"type":137,"label":148,"file":91,"line":149},{"id":151,"type":142,"label":152,"file":91,"line":149,"wp_function":153},[168,169],{"from":136,"to":141,"sanitized":156},{"from":147,"to":151,"sanitized":156},{"summary":171,"deductions":172},"The post-timer v5.0 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. Furthermore, the complete absence of unsanitized taint flows and the 100% proper output escaping indicate a robust approach to preventing common web vulnerabilities like XSS and SQL injection. The presence of nonce and capability checks, even with a limited attack surface, suggests an awareness of WordPress security best practices for authentication and authorization.\n\nWhile the static analysis reveals a remarkably clean codebase with no identified vulnerabilities or exploitable entry points, the limited scope of the static analysis (2 taint flows analyzed) means that it's possible for vulnerabilities to exist outside of this limited scope, though the absence of known CVEs history is a very positive indicator. The plugin's history shows no recorded vulnerabilities, which, combined with the clean code analysis, suggests a mature and well-maintained security profile. However, it's important to note that static analysis has its limitations, and thorough dynamic testing would provide a more comprehensive assurance.\n\nIn conclusion, post-timer v5.0 appears to be a secure plugin with excellent coding practices. Its strength lies in its proactive approach to sanitization, output escaping, and use of WordPress security features. The lack of historical vulnerabilities further solidifies its good security standing. The only potential area for improvement, though not a current risk based on the data, would be to ensure the attack surface remains minimal and well-protected as the plugin evolves. Overall, the plugin presents a very low risk.",[],"2026-03-17T01:00:17.690Z",{"wat":175,"direct":186},{"assetPaths":176,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[177,178,179],"\u002Fwp-content\u002Fplugins\u002Fpost-timer\u002Fassets\u002Fcss\u002Fpost-timer-popup.css","\u002Fwp-content\u002Fplugins\u002Fpost-timer\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fpost-timer\u002Fassets\u002Fcss\u002Fjquery-ui.min.css",[],[178],[183,184,185],"post-timer-style?ver=","post-timer-admin-script?ver=","post-timer-jquery-ui-css?ver=",{"cssClasses":187,"htmlComments":193,"htmlAttributes":194,"restEndpoints":195,"jsGlobals":196,"shortcodeOutput":199},[188,189,190,191,192],"addweb-pt-timer-popup","popup-wrap","popup-header","popup-title","timer-clock",[],[],[],[197,198],"ADDWEBPT_POST_TIMER","ADDWEBPT_TIMER",[]]