[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuZtmvotL6vnk5ywmInj6OIFEYX68iA45T-Sraf_PJWg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":36,"analysis":69,"fingerprints":116},"preview-site-link","Preview Site for WordPress Admin","1.0","samratshamim","https:\u002F\u002Fprofiles.wordpress.org\u002Fsamratshamim\u002F","\u003Cp>This plugin will display a preview site link at admin panel of your WordPress site. Whenever you want to view your site from the admin panel you don’t have to point your mouse over the left top \u002F right top corner, you will be able to find a preview site link at the top center of your admin dashboard in every page. If you feel any problem with this plugin feel free to contact with the developer \u003Ca href=\"mailto:samratshamim@yahoo.com?Subject=Hello%20SamratShamim\" rel=\"nofollow ugc\">\u003Cbr \u002F>\nShaikh Shamim Reza\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Feature\u003C\u002Fh4>\n\u003Cp>This plugin will display a preview site link at admin panel of your WordPress site.\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Developed by \u003Ca href=\"http:\u002F\u002Fsamratshamim.freeiz.com\u002F\" rel=\"nofollow ugc\">Shaikh Shamim Reza\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Plugin Powered by \u003Ca href=\"http:\u002F\u002Fsamratshamim.freeiz.com\u002F\" title=\"SamratShamim\" rel=\"nofollow ugc\">SamratShamim\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Preview site for WordPress Admin",10,1760,100,1,"2013-01-20T20:01:00.000Z","3.5.2","2.8","",[20,21,22,23,24],"preview-site","preview-site-admin","preview-site-wordpress-admin","visit-site","visit-site-link","http:\u002F\u002Fdeveloper.hossst.com\u002Fwordpress\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpreview-site-link.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},30,84,"2026-04-04T21:17:04.850Z",[37,52],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":11,"downloaded":45,"rating":28,"num_ratings":28,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":18,"tags":49,"homepage":50,"download_link":51,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"visit-site-settings","Visit Site Settings","2.0.1","rayholt","https:\u002F\u002Fprofiles.wordpress.org\u002Frayholt\u002F","\u003Cp>This plugin enables the administrative dashboard’s “Visit Site” link to open in a new window through added visit site setting in personal options.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>When a new user is registered they are generally taken to the Profile page where they can choose their settings under Personal Options. For currently registered users you must go into your profile and change the visit site setting under Personal Options.\u003C\u002Fp>\n","This plugin enables the administrative dashboard's \"Visit Site\" link to open in a new window through added visit site setting in person …",2358,"2010-03-08T19:51:00.000Z","2.9.2","2.0.2",[23],"http:\u002F\u002Fholtis.com\u002Fvisit-site-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvisit-site-settings.zip",{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":28,"downloaded":60,"rating":28,"num_ratings":28,"last_updated":61,"tested_up_to":62,"requires_at_least":63,"requires_php":18,"tags":64,"homepage":67,"download_link":68,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"visit-site-from-customizer","Visit Site from Customizer","1.0.0","Rushi Jagani","https:\u002F\u002Fprofiles.wordpress.org\u002Frushijagani\u002F","\u003Cp>Visit Site from Customizer plugin adds the link to Visit Site into the custmoizer\u003C\u002Fp>\n","Visit Site from customizer interface.",1054,"2017-10-09T04:52:00.000Z","4.8.28","4.4",[65,66,53],"any-theme","customizer","https:\u002F\u002Frushijagani.wordpress.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvisit-site-from-customizer.zip",{"attackSurface":70,"codeSignals":90,"taintFlows":103,"riskAssessment":104,"analyzedAt":115},{"hooks":71,"ajaxHandlers":86,"restRoutes":87,"shortcodes":88,"cronEvents":89,"entryPointCount":28,"unprotectedCount":28},[72,78,82],{"type":73,"name":74,"callback":75,"file":76,"line":77},"action","wp_head","bnt","preview-site-for-wordpress-admin.php",41,{"type":73,"name":79,"callback":80,"file":76,"line":81},"admin_head","add_css",42,{"type":73,"name":83,"callback":84,"file":76,"line":85},"admin_notices","preview_site",43,[],[],[],[],{"dangerousFunctions":91,"sqlUsage":92,"outputEscaping":94,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":102},[],{"prepared":28,"raw":28,"locations":93},[],{"escaped":28,"rawEcho":95,"locations":96},2,[97,100],{"file":76,"line":98,"context":99},16,"raw output",{"file":76,"line":101,"context":99},38,[],[],{"summary":105,"deductions":106},"The \"preview-site-link\" v1.0 plugin exhibits a strong security posture regarding its attack surface and SQL injection vulnerabilities, as evidenced by the absence of AJAX handlers, REST API routes, shortcodes, and cron events. The code also demonstrates good practice by exclusively using prepared statements for its SQL queries, which is a significant mitigation against SQL injection risks. The lack of file operations and external HTTP requests further reduces potential attack vectors.\n\nHowever, a notable concern is the complete lack of output escaping. With two outputs analyzed and 0% properly escaped, this presents a significant risk for cross-site scripting (XSS) vulnerabilities. Any user-supplied data that is displayed on the front-end without proper sanitization can be exploited by attackers. Additionally, the absence of nonce and capability checks, while not directly tied to a revealed attack surface in this analysis, is a critical weakness for any plugin that might interact with user actions or sensitive data in the future.\n\nThe plugin's vulnerability history is clean, with no known CVEs. This, combined with the lack of critical taint analysis findings, suggests that at present, there are no publicly known or discoverable critical security flaws. However, the absence of past vulnerabilities can sometimes indicate a small user base or limited historical analysis, rather than an inherently secure plugin, especially in light of the identified output escaping and authorization weaknesses.",[107,110,113],{"reason":108,"points":109},"0% output escaping",8,{"reason":111,"points":112},"No nonce checks",5,{"reason":114,"points":112},"No capability checks","2026-03-17T01:24:32.333Z",{"wat":117,"direct":123},{"assetPaths":118,"generatorPatterns":119,"scriptPaths":121,"versionParams":122},[],[120],"preview-site-for-wordpress-admin-v1.0",[],[],{"cssClasses":124,"htmlComments":126,"htmlAttributes":127,"restEndpoints":128,"jsGlobals":129,"shortcodeOutput":130},[125],"main",[],[],[],[],[131],"\u003Ca id='main' href='"]