[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8NrNR2-ds_v7Tca7IwE4gp_rXiIKzOliLLW9Rusu_T4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":57,"analysis":157,"fingerprints":1331},"pta-volunteer-sign-up-sheets","Volunteer Sign Up Sheets","5.5.9","DBAR Productions","https:\u002F\u002Fprofiles.wordpress.org\u002Fdbar-productions\u002F","\u003Cp>\u003Cstrong>IMPORTANT!! This wordpress.org version is NO LONGER SUPPORTED!\u003C\u002Fstrong>\u003Cbr \u002F>\nThe wordpress.org SVN repo was corrupted in February 2025, and I was locked out from releasing updates for more than 6 months.\u003Cbr \u002F>\nI have moved the plugin, which remains free, to my own server, as well as making it publicly available on GitHub, and am using my own updater system for automatic updates. It’s much easier to maintain and update on my own server using GitHub than it is with the wordpress.org SVN system.\u003Cbr \u002F>\nPlease visit the following link for more info and to download the latest stable version.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PLEASE DO NOT USE THE SUPPORT FORUM FOR FEATURE REQUESTS!!\u003C\u002Fstrong>\u003Cbr \u002F>\nYou may submit new features here:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fsupport\u002Fforum\u002Ffeature-requests\u002Fpta-volunteer-sign-up-sheet-feature-requests\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fsupport\u002Fforum\u002Ffeature-requests\u002Fpta-volunteer-sign-up-sheet-feature-requests\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PLEASE READ THE DOCUMENTATION BEFORE POSTING SUPPORT REQUESTS\u003C\u002Fstrong>\u003Cbr \u002F>\nRead the documentation here:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fdocs\u002Fpta-volunteer-sign-up-sheets-documentation\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fdocs\u002Fpta-volunteer-sign-up-sheets-documentation\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>An alternative to sites like Signup Genius for your events, this plugin lets you keep your signup sheets on your own site. Easily create and manage sign up sheets for your school, organization, business, or anything else where people need to sign up.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Version 5.0 add a new Validation option to validate signups via an email code, and to validate a user so that they can view and clear their signups without having to login to a WordPress user account. A validation form is also provided to allow validation at any time. See the documentation for more information.\u003C\u002Fli>\n\u003Cli>Version 4.6 adds HTML format emails, as well as per sheet options for recipients of signup confirmation and clear emails, along with a mobile CSS option to collapse the tables to a single column format for smaller screens, and many other new features and settings.\u003C\u002Fli>\n\u003Cli>Version 3.6 adds the ability to Reschedule a sheet to new date and times, copy a sheet with new dates and times, or create multiple copies of a sheet at specified day intervals. These new functions allow optionally copying the signups, and have a new email template to notify those signups of the new dates and times.\u003C\u002Fli>\n\u003Cli>User Signups List block, or [pta_user_signups] shortcode, allows you to show a list of the current validated\u002Flogged-in user’s signups on any page (with clear links, if allowed).\u003C\u002Fli>\n\u003Cli>Integrates with the GDPR privacy functions of WordPress 4.9.6.\u003C\u002Fli>\n\u003Cli>Extensive hooks and filters that make it easy to extend or modify functionality\u003C\u002Fli>\n\u003Cli>Supports the calendar display extension: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-calendar-display\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-calendar-display\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Create custom fields that can be used for sheets, tasks, or signup forms, with the Custom Fields extension: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-custom-fields\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-custom-fields\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Customize public side text and layout options with the Customizer extension: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Group, or categorize, sheets\u002Fevents with the Groups extension, which can also import groups from the WP Groups and BuddyPress plugins: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheet-groups\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheet-groups\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Specify any type of sheet as a “No Signup Event”. This allows you to create non-volunteer events for display only (no signup links or available spots will be shown). You can still create tasks\u002Fitems with dates, start and end times for these sheets, which could be useful for showing the schedule\u002Fagenda for an event, but you won’t be able to specify quantity or other normal task options. This is useful for a combination volunteer sign-up and event calendar type of list\u002Fdisplay, especially when used with the Calendar Display extension.\u003C\u002Fli>\n\u003Cli>Signups are shown on the Admin side using jQuery DataTables for easy sorting\u002Ffiltering\u002Fsearching, showing\u002Fhiding columns, and organizing your signup data for quick and easy export to Excel, CSV, PDF, or Print.\u003C\u002Fli>\n\u003Cli>You can optionally enter a description for each task (in addition to the main content area for the whole sheet) that will be shown above the task signup table for each task (when not empty)\u003C\u002Fli>\n\u003Cli>The ability to allow duplicate signups on a per task basis, changing the label for the item details form field on a per task\u002Fitem basis, as well as allowing volunteers to specify quantities on a per task\u002Fitem basis.\u003C\u002Fli>\n\u003Cli>Easily create volunteer sign-up sheets with multiple tasks\u002Fitems for each\u003C\u002Fli>\n\u003Cli>Supports Single, Recurring, Ongoing, or Multi-Day Events\u003C\u002Fli>\n\u003Cli>All Sheets can be hidden from the public (visible only to logged in users)\u003C\u002Fli>\n\u003Cli>No volunteer contact info is shown to the public (emails and phone are always hidden). Default public view shows only first name and last name for filled spots, but you can optionally show the full name, and there is also an option to simply show “Filled” for filled spots.\u003C\u002Fli>\n\u003Cli>Hidden spambot field helps prevent automatic spambot form submissions\u003C\u002Fli>\n\u003Cli>Up to 2 automatic reminder emails can be set up at individually specified intervals for each sheet (e.g., 7 days and 1 day before event)\u003C\u002Fli>\n\u003Cli>Block\u002FWidget to show upcoming events that need volunteers in page sidebars\u003C\u002Fli>\n\u003Cli>Individual sheets can be set to hidden until you are ready to have people sign up (useful for testing individual sheets)\u003C\u002Fli>\n\u003Cli>Test Mode for entire volunteer system, which displays a message of your choosing to the public while you test the system\u003C\u002Fli>\n\u003Cli>“manage_signup_sheets” capability so you can set up other users who can create and manage sign-up sheets without giving them full admin level access.\u003C\u002Fli>\n\u003Cli>Integration with the PTA Member Directory & Contact Form plugin to quickly specify contacts for each sign-up sheet, linked to the contact form with the proper recipient already selected. https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpta-member-directory\u002F\u003C\u002Fli>\n\u003Cli>WordPress Multisite compatibility\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>More Details:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>With this plugin you can define four different types of events:  Single, Recurring, Multi-Day, or Ongoing events. Single events are for events that take place on just a single date. Recurring events are events that happen more than once (such as a weekly function), but have the same needs for each date. Multi-Day events are events that are spread across more than one day, but have different needs for each day. Ongoing events do not have any dates associated with them, but are for committees or helpers that are needed on an ongoing basis.\u003C\u002Fp>\n\u003Cp>For each of these types of events, you can create as many tasks or items as needed. For each of these tasks\u002Fitems, you can specify how many items or people are needed, a description, a start and end time, the date (for multi-day events), and whether or not item details are needed (for example, if you want the volunteer to enter the type of dish they are bringing for a luncheon), and optionally enable quantities. The order of tasks\u002Fitems can easily be sorted by drag and drop.\u003C\u002Fp>\n\u003Cp>Sheets can also be specified as a “No Sign Up” event, which can be useful for general organization events and meetings, especially when used in conjunction with the Calendar Display extension: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-calendar-display\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-calendar-display\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Each sign-up sheet can be set to visible or hidden, so that you can create sign-up sheets ahead of time, but only make them visible to the public when you are ready for them to start signing up. There is also a test mode which will only show sign-up sheets on the public side to admin users or those who you give the “manage_signup_sheets” capability. Everyone else will see a message of your choosing while you are in test mode. When not in test mode, admins and users with the “manage_signup_sheets” capability can still view hidden sheets on the public side (for testing those sheets without putting the whole system into test mode).\u003C\u002Fp>\n\u003Cp>In the settings, you can choose to require that users be logged in, or validated (version 5.0), to view and\u002For sign-up for any volunteer sign-up sheets, and pick the message they will see if they are not logged in. Even if you keep the sheets open to the public, you can choose which personal info to show, or simply show “Filled” for filled slots.\u003C\u002Fp>\n\u003Cp>There is also a hidden spambot field to prevent signup form submission from spambots.\u003C\u002Fp>\n\u003Cp>If a user is logged in when they sign up, the system will keep track of the user ID, and on the main volunteer sign-ups page, they will also see a list of items\u002Ftasks that they have signed up for, and it will give them a link to clear each sign up if they need to cancel or reschedule. If they are not logged in when they sign up, but they use the same email as a registered user, that sign-up will be linked to that user’s account. You can also use the shortcode [pta_user_signups] to show the list of the current user’s signups on any page (along with clear links, if allowed).\u003C\u002Fp>\n\u003Cp>The Validation system added in version 5.0 now allows a way to validate signups and users via email, without forcing them to have WordPress user accounts. Validated users can view their signups, and can clear their signups (if enabled). You can also require that signups be validated first if the user signing up is not current validated or signed in to a user account. Unvalidated signups will be automatically deleted after a set amount of time that you can define.\u003C\u002Fp>\n\u003Cp>Admin users can add\u002Fedit signups from the View Signups page in the admin dashboard, or they can use the “live search” option on the front end sign up form to search for volunteers in either the plugin’s signups table, the WordPress users table, or both. If the admin then selects a volunteer, they can sign up that volunteer, and the signup will be assigned to that user’s account (if your volunteers have user accounts).\u003C\u002Fp>\n\u003Cp>Use the Sign Up Sheets block, or the [pta_sign_up_sheet] shortcode, for a main sign-up sheet page that will show a list of all active (and non-hidden) sign-up sheets, showing the number of open volunteer slots with links to view each individual sheet. Individual sheets have links next to each open task\u002Fitem for signing up.  When signing up, if the user is already validated or logged in, their name and contact info will be pre-filled in the sign-up page form if that info exists in the user’s meta data or validation cookie. View the documentation for a full list of block\u002Fshortcode parameters.\u003C\u002Fp>\n\u003Cp>There is an Upcoming Event block, and sidebar widget, to show upcoming volunteer events and how many spots still need to be filled for each, linked to each individual sign-up sheet. You can choose whether to show Ongoing type events in the widget, and if they should be at the top or bottom of the list (since they don’t have dates associated with them).\u003C\u002Fp>\n\u003Cp>Admin users can view sign-ups for each sheet, and add, edit, or clear any spots with a simple link. Each sheet can also be exported to Excel, CSV, PDF, or Print formats. Admin side signups are displayed using the jQuery DataTables plugin, which allows sorting, filtering, searching, and showing\u002Fhiding columns, so you can arrange the data anyway you want before exporting or printing.\u003C\u002Fp>\n\u003Cp>Committee\u002FEvent contact info can be entered for each sheet, or, if you are using the PTA Member Directory plugin, you can select one of the positions from the directory as the contact. When a user signs up, a confirmation email is sent to the user as well as a notification email to the contacts for that event (can be optionally disabled).\u003C\u002Fp>\n\u003Cp>Automatic Email reminders can be set for each sign-up sheet. You can specify the number of days before the event to send the reminder emails, and there can be two sets of reminders for each sheet (for example, first reminder can be sent 7 days before the event, and the second reminder can be sent the day before the event). You can set an hourly limit for reminder emails in case your hosting account limits the number of outgoing emails per hour.\u003C\u002Fp>\n\u003Cp>Simple to use custom email templates for all of the emails sent by the plugin.\u003C\u002Fp>\n\u003Cp>Admin can use an Email Volunteers form page to quickly send an email to all volunteers for a specific sheet, or to all volunteers.\u003C\u002Fp>\n\u003Cp>Sheets and tasks\u002Fsignups can be shown via tables, or via table-style divs. CSS can be optionally disabled so that you can more easily style the displays the way you wish. The Customizer Extension has extensive styling options that also appear in the WordPress Customizer panel, plus it allows you to create custom layout templates that can be assigned on a per sheet basis. \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Custom Fields can be added to sheets, tasks, or sign-up forms (for collecting additional info from volunteers at signup, or displaying addition info for sheets\u002Ftasks, such as Location) via the Custom Fields extension: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-custom-fields\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-custom-fields\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Text displayed on the public side, such as columns headers, can be modified, along with additional layout options, and custom layout templates, with the Customizer extension: \u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Much more! Read the documentation for all the current features.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Available Extensions:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fvolunteer-sign-up-sheets-waitlists\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Waitlists\u003C\u002Fa> – Never turn away willing volunteers again. Automatically manage waitlists when tasks fill up and automatically sign-up or notify people when spots open. Perfect for classes, events, and any sign-up sheet where demand exceeds capacity.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-customizer\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Customizer\u003C\u002Fa> – Edit all public facing text displays. Customize the styling of sheet\u002Ftask list tables. Create custom Layout Templates that can be assigned on a per sheet basis, to display only the columns you want in the order that you want them. Create custom emails for any email type that can be assigned on a per sheet basis, and much more!\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-custom-fields\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Custom Fields\u003C\u002Fa> – Create custom fields that can be used to display additional info for sheets and\u002For tasks, and can also be used to collect (and optionally display) additional information from users when they sign up for a task\u002Fitem.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-calendar-display\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Calendar Display\u003C\u002Fa> – Display your events and signups in one or more custom calendars, with a variety of display options.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheet-groups\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Groups\u003C\u002Fa> – Organize your sign-up sheets by Groups, or Categories. Can also import groups from BuddyPress and the WordPress Groups extension.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fvolunteer-sign-up-sheets-mailchimp\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Mailchimp\u003C\u002Fa> – Connects to your Mailchimp mailing list and adds a checkbox to the sign-up form where they can opt-in\u002Fopt-out of your mailing list.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fvolunteer-sign-up-sheets-automated-and-conditional-emails\u002F\" rel=\"nofollow ugc\">Volunteer Sign Up Sheets Automated and Conditional Emails\u003C\u002Fa> – Allows you to set up triggers and conditions to automatically send out emails to predefined lists. Can be used for things like a weekly summary of upcoming events. Can also be used to replace most of the built-in emails with custom HTML formatted emails.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily create and manage sign-up sheets for activities and events, while protecting the privacy of the volunteers' personal information.",1000,161097,98,42,"2025-08-14T15:48:00.000Z","6.8.5","6.0","7.4",[20,21,22,23,24],"events","sign-up","signup","volunteer","volunteers","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpta-volunteer-sign-up-sheets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpta-volunteer-sign-up-sheets.5.5.9.zip",99,1,0,"2025-05-27 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-3704","volunteer-sign-up-sheets-authenticated-admin-stored-cross-site-scripting","Volunteer Sign Up Sheets \u003C= 5.5.4 - Authenticated (Admin+) Stored Cross-site Scripting","The Volunteer Sign Up Sheets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 5.5.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled. Please note the patched version is only available from the plugin author's Github Repository: https:\u002F\u002Fgithub.com\u002Fdbarproductions\u002Fpta-volunteer-sign-up-sheets\u002Ftags.",null,"\u003C=5.5.4","5.5.5","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-05-30 20:33:28",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbb88a0e9-b282-454c-8ac8-c54f5d8d6121?source=api-prod",4,{"slug":50,"display_name":7,"profile_url":8,"plugin_count":51,"total_installs":52,"avg_security_score":53,"avg_patch_time_days":54,"trust_score":55,"computed_at":56},"dbar-productions",5,1580,90,13,87,"2026-04-04T04:32:42.507Z",[58,76,97,118,139],{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":29,"downloaded":66,"rating":29,"num_ratings":29,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":73,"download_link":74,"security_score":75,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"sign-up-list","Sign-up List","1.0.0","robinlopulalan","https:\u002F\u002Fprofiles.wordpress.org\u002Frobinlopulalan\u002F","\u003Cp>This plugin let’s you add a sign-up list (sign up sheet) to your web site. It supports one concurrent list which can be published on as many posts and pages as you like.\u003C\u002Fp>\n\u003Cp>You can choose how many people can sign up (max 200). The list will show how many spaces are left and will automatically close when full.\u003C\u002Fp>\n\u003Cp>Choose who can sign up:\u003Cbr \u002F>\n– anyone (CAPTCHA protected)\u003Cbr \u002F>\n– people who have been provided a special link\u003Cbr \u002F>\n– people who are on the invitation list (email address)\u003C\u002Fp>\n\u003Cp>Choose what is publicly on display of people that signed up:\u003Cbr \u002F>\n– First name\u003Cbr \u002F>\n– Full name\u003Cbr \u002F>\n– Nothing\u003C\u002Fp>\n\u003Cp>When someone signs up, the plugin will store name, email address and one custom text field.\u003Cbr \u002F>\nThe list can be exported to CSV so you can follow up to the people on the list by email.\u003Cbr \u002F>\nList entries can be managed in the WordPress admin interface.\u003C\u002Fp>\n\u003Cp>If applicable, the invitation list can also be managed via the admin interface.\u003Cbr \u002F>\nInvitees can be added one by one or in bulk as a long list of email addresses.\u003C\u002Fp>\n\u003Cp>Choose the styling:\u003Cbr \u002F>\n– Minimal styling, leaving it up to the theme to take care of the looks.\u003Cbr \u002F>\n– Neutral styling, with some borders, numbering and dotted lines.\u003C\u002Fp>\n\u003Cp>The plugin provides two blocks for the blocks editor that can be found in the Widgets section.\u003Cbr \u002F>\n– Sign-up List Entries – displays the current entries.\u003Cbr \u002F>\n– Sign-up List Form – displays the sign-up form for new entries.\u003C\u002Fp>\n\u003Cp>There are corresponding shortcodes for web sites that do not use the block editor (yet).\u003Cbr \u002F>\nThe shortcodes are:\u003Cbr \u002F>\n– [sul_entries ] – displays the current entries.\u003Cbr \u002F>\n– [sul_sign_up ] – displays the sign-up form for new entries.\u003C\u002Fp>\n\u003Cp>The plugin supports the built-in privacy tools of WordPress:\u003Cbr \u002F>\n– Export Personal Data\u003Cbr \u002F>\n– Erase Personal Data\u003C\u002Fp>\n","Publish a sign-up list to rally up volunteers, event guests, participants and the likes. Show people who's on the list and let them sign up.",765,"2024-04-12T14:29:00.000Z","6.5.8","5.8","7.3",[21,22,72,23,24],"signups","https:\u002F\u002Fwordpress.org\u002Fsign-up-list","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsign-up-list.1.0.0.zip",92,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":89,"tags":90,"homepage":92,"download_link":93,"security_score":94,"vuln_count":95,"unpatched_count":29,"last_vuln_date":96,"fetched_at":31},"sign-up-sheets","Sign-up Sheets","2.3.4","Fetch Designs","https:\u002F\u002Fprofiles.wordpress.org\u002Ffetchdesigns\u002F","\u003Cp>Sign-up Sheets helps you organize sign-ups, events, shifts, and other scheduled tasks directly in WordPress. It offers a flexible way to coordinate people, time slots, and responsibilities without relying on a third-party service.\u003C\u002Fp>\n\u003Cp>The free version of Sign-up Sheets includes core tools for building and managing sign-up sheets on your site:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add, edit, and clear sign-up spots as needed\u003C\u002Fli>\n\u003Cli>Copy a sheet or task to speed up setup\u003C\u002Fli>\n\u003Cli>Send confirmation emails after sign-up\u003C\u002Fli>\n\u003Cli>Let logged-in users view all of their sign-ups on one page with the \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fdoc\u002Fuser_sign_ups-shortcode\u002F\" rel=\"nofollow ugc\">\u003Ccode>[user_sign_ups]\u003C\u002Fcode> shortcode\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Create an unlimited number of sign-up sheets and spots\u003C\u002Fli>\n\u003Cli>Enable optional reCAPTCHA protection\u003C\u002Fli>\n\u003Cli>Export sign-up data for one sheet or all sheets to CSV\u003C\u002Fli>\n\u003Cli>Support WordPress \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fdoc\u002Fgdpr-sign-up-sheets-wordpress-plugin\u002F\" rel=\"nofollow ugc\">GDPR privacy features for your sign-up sheets\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Built with accessibility in mind based on \u003Ca href=\"https:\u002F\u002Fwww.w3.org\u002FWAI\u002Fstandards-guidelines\u002F\" rel=\"nofollow ugc\">WCAG Guidelines\u003C\u002Fa>. If you run into any accessibility issues, \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fcontact\" rel=\"nofollow ugc\">please report them\u003C\u002Fa> to help make the plugin more inclusive for all users.\u003C\u002Fli>\n\u003Cli>See the \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fsign-up-sheets-wordpress-plugin\u002F\" rel=\"nofollow ugc\">full list of Sign-up Sheets features\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The Pro version of Sign-up Sheets adds advanced tools for more complex scheduling and form needs:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fdoc\u002Fcustom-fields\u002F\" rel=\"nofollow ugc\">custom task fields and custom sign-up form fields\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Send optional reminder emails before an event\u003C\u002Fli>\n\u003Cli>Customize confirmation and reminder emails per sheet\u003C\u002Fli>\n\u003Cli>Assign \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fdoc\u002Fsheet-categories\u002F\" rel=\"nofollow ugc\">categories to sign-up sheets\u003C\u002Fa> and display current sheets for a specific category\u003C\u002Fli>\n\u003Cli>Let logged-in users edit their own sign-ups\u003C\u002Fli>\n\u003Cli>Enable Spot Locking to hold a spot for 3 minutes while a user completes the sign-up form\u003C\u002Fli>\n\u003Cli>Use \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fdoc\u002Fcompact-semi-compact-standard-display-modes\u002F\" rel=\"nofollow ugc\">Compact and Semi-Compact display modes\u003C\u002Fa> to condense tasks with many spots into a single line\u003C\u002Fli>\n\u003Cli>Set sign-up limits per task\u003C\u002Fli>\n\u003Cli>See the \u003Ca href=\"https:\u002F\u002Fwww.fetchdesigns.com\u002Fsign-up-sheets-wordpress-plugin\u002F\" rel=\"nofollow ugc\">full list of Sign-up Sheets features\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Sign-up Sheets is used for church and nonprofit volunteer opportunities, school and PTO\u002FPTA events, club sign-ups, meeting room reservations, photographer time slots, peronal gatherings, and more. It is a practical alternative to monthly paid services like SignUpGenius while keeping your sign-ups on your own WordPress site.\u003C\u002Fp>\n","Create online sign-up sheets for volunteers, events, and group scheduling.",63230,96,16,"2026-03-14T16:18:00.000Z","6.9.4","5.5",[91,21,22,23],"non-profit","https:\u002F\u002Fwww.fetchdesigns.com\u002Fsign-up-sheets-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsign-up-sheets.2.3.4.zip",91,9,"2025-09-23 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":11,"downloaded":105,"rating":85,"num_ratings":106,"last_updated":107,"tested_up_to":88,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":114,"download_link":115,"security_score":13,"vuln_count":116,"unpatched_count":29,"last_vuln_date":117,"fetched_at":31},"wired-impact-volunteer-management","Wired Impact Volunteer Management","2.8.1","Wired Impact","https:\u002F\u002Fprofiles.wordpress.org\u002Fwiredimpact\u002F","\u003Cp>A simple, free way to keep track of your nonprofit’s volunteers and opportunities.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How can the Wired Impact Volunteer Management plugin help your nonprofit?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Post one-time and flexible volunteer opportunities on your website –\u003C\u002Fstrong> Promote volunteer opportunities on any page of your website using a simple block.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Volunteers can sign up directly on your website –\u003C\u002Fstrong> Make volunteering even easier for your supporters by giving them the option to sign up for an opportunity directly on your website. A confirmation email will be sent to you and the volunteer once they sign up.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Control the number of signups available for opportunities –\u003C\u002Fstrong> Only need 10 people to help out at an event? Set a cap on the number of people who can sign up. Want as many volunteers as you can get? No problem. You don’t have to set a limit.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Send reminder emails anytime –\u003C\u002Fstrong> Schedule an automated reminder email a few days in advance or send a one-off email with last-minute details.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Volunteer profiles that track participation and more –\u003C\u002Fstrong> Keep track of all of your volunteers’ involvement. See what they’ve helped out with in the past, future opportunities they’re signed up for, how long they’ve been volunteering and notes that will help you stay organized.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Thanks to \u003Ca href=\"http:\u002F\u002Fwww.habitatebsv.org\u002F\" rel=\"nofollow ugc\">Habitat for Humanity East Bay\u002FSilicon Valley\u003C\u002Fa> for being an awesome organization and letting us use the photo above.\u003C\u002Fem>\u003C\u002Fp>\n","A free, easy way to manage your nonprofit's volunteers.",58396,24,"2026-01-21T19:34:00.000Z","6.3","5.2.4",[111,112,113,23,24],"non-profits","nonprofits","not-for-profit","https:\u002F\u002Fwiredimpact.com\u002Fwordpress-plugins-for-nonprofits\u002Fvolunteer-management\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwired-impact-volunteer-management.2.8.1.zip",2,"2026-01-24 00:00:00",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":128,"num_ratings":116,"last_updated":129,"tested_up_to":16,"requires_at_least":130,"requires_php":131,"tags":132,"homepage":131,"download_link":135,"security_score":136,"vuln_count":137,"unpatched_count":29,"last_vuln_date":138,"fetched_at":31},"wp-action-network","Action Network","1.8.2","Concerted Action","https:\u002F\u002Fprofiles.wordpress.org\u002Fconcertedaction\u002F","\u003Cp>A free WordPress plugin for the \u003Ca href=\"https:\u002F\u002Factionnetwork.org\" rel=\"nofollow ugc\">Action Network\u003C\u002Fa> online organizing tools maintained by \u003Ca href=\"http:\u002F\u002Fconcertedaction.consulting\u002F\" rel=\"nofollow ugc\">Concerted Action\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create a WordPress shortcode or widget from any Action Network embed code.\u003C\u002Fli>\n\u003Cli>Manage your saved embed codes using the WordPress backend. Supports sorting by title, type and last modified date, and provides a search function.\u003C\u002Fli>\n\u003Cli>Modify Action Network’s default “thank you for your support” and “help us by using sharing tools” messages, and control which sharing options (social, email & embed codes) are displayed, using shortcode options or widget controls.\u003C\u002Fli>\n\u003Cli>Use \u003Ccode>[actionnetwork_list]\u003C\u002Fcode> shortcode or Action Network List widget to show a list of current actions.\u003C\u002Fli>\n\u003Cli>Use \u003Ccode>[actionnetwork_calendar]\u003C\u002Fcode> shortcode or Action Network Calendar widget to show a list of upcoming events. Optionally outputs upcoming events in JSON. Development of this feature was supported by \u003Ca href=\"http:\u002F\u002Fwww.thepeopleslobbyusa.org\u002F\" rel=\"nofollow ugc\">The People’s Lobby\u003C\u002Fa> – if you like it, please consider \u003Ca href=\"https:\u002F\u002Factionnetwork.org\u002Ffundraising\u002Fdonate-to-the-peoples-lobby\" rel=\"nofollow ugc\">making a donation to them\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>If you are an \u003Ca href=\"https:\u002F\u002Factionnetwork.org\u002Fpartnerships\" rel=\"nofollow ugc\">Action Network Partner\u003C\u002Fa>, use your API key to sync all of your actions from Action Network to WordPress.\u003C\u002Fli>\n\u003Cli>Create signup widgets which allow visitors to your site to sign up for your email list \u003Cem>without\u003C\u002Fem> using Action Network javascript embeds. This allows you to place a signup form on every page (for example in the sidebar), and still load Action Network embed codes for actions on particular pages (since Action Network’s scripts will only load one embed code per page).  This feature does require the API key, so you have to be an \u003Ca href=\"https:\u002F\u002Factionnetwork.org\u002Fpartnerships\" rel=\"nofollow ugc\">Action Network Partner\u003C\u002Fa> to use it.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Detailed specs for shortcode attributes, widget options, etc. are available on the Help menu for the Action Network page on the backend.\u003C\u002Fp>\n","Provides Action Network (actionnetwork.org) action embed codes as shortcodes and a calendar and signup widget",400,13080,100,"2025-11-18T18:03:00.000Z","4.6","",[133,20,134,22],"action-network","online-organizing","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-action-network.zip",97,3,"2025-01-08 22:09:53",{"slug":140,"name":141,"version":142,"author":7,"author_profile":8,"description":143,"short_description":144,"active_installs":145,"downloaded":146,"rating":29,"num_ratings":29,"last_updated":147,"tested_up_to":148,"requires_at_least":149,"requires_php":131,"tags":150,"homepage":154,"download_link":155,"security_score":156,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"pta-shortcodes","PTA Shortcodes","1.5.0","\u003Cp>Easily generate shortcodes for the PTA plugins from Stephen Sherrard Plugins. Adds a PTA Shortcode generator button to the TinyMCE “classic editor” on page\u002Fpost edit screens.\u003C\u002Fp>\n\u003Cp>Generates shortcodes for the PTA Volunteer Sign Up Sheets plugin and the PTA Member Directory and Contact Form plugin, both of which are also free plugins on WordPress.org:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002F\" rel=\"ugc\">PTA Volunteer Sign Up Sheets\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpta-member-directory\u002F\" rel=\"ugc\">PTA Member Directory and Contact Form\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Also supports the Groups and Calendar Display extension for the PTA Volunteer Sign Up Sheets plugin:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheet-groups\u002F\" rel=\"nofollow ugc\">PTA Volunteer Sign Up Sheets Groups\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fstephensherrardplugins.com\u002Fplugins\u002Fpta-volunteer-sign-up-sheets-calendar-display\u002F\" rel=\"nofollow ugc\">PTA Volunteer Sign Up Sheets Calendar Display\u003C\u002Fa>\u003C\u002Fp>\n","Easily generate shortcodes for the PTA plugins from Stephen Sherrard Plugins. Adds a PTA Shortcode generator button to the TinyMCE \"classic edito &hellip;",200,15521,"2020-09-20T21:09:00.000Z","5.5.18","3.9",[151,152,153,21,23],"pta","shortcode-generator","shortcodes","https:\u002F\u002Fstephensherrardplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpta-shortcodes.zip",85,{"attackSurface":158,"codeSignals":291,"taintFlows":1011,"riskAssessment":1316,"analyzedAt":1330},{"hooks":159,"ajaxHandlers":263,"restRoutes":274,"shortcodes":275,"cronEvents":288,"entryPointCount":51,"unprotectedCount":29},[160,165,169,175,179,184,189,193,196,201,202,207,209,213,216,219,223,227,231,233,235,237,240,243,246,250,254,258,261],{"type":161,"name":162,"callback":162,"file":163,"line":164},"action","admin_menu","classes\\class-pta_sus_admin.php",32,{"type":161,"name":166,"callback":167,"file":163,"line":168},"admin_enqueue_scripts","add_sheet_admin_scripts",33,{"type":170,"name":171,"callback":172,"priority":173,"file":163,"line":174},"filter","set-screen-option","set_screen",10,36,{"type":170,"name":176,"callback":177,"priority":173,"file":163,"line":178},"option_page_capability_pta_volunteer_sus_main_options","pta_settings_permissions",114,{"type":161,"name":180,"callback":181,"file":182,"line":183},"admin_init","register_options","classes\\class-pta_sus_options.php",20,{"type":170,"name":185,"callback":186,"priority":173,"file":187,"line":188},"pta_sus_validate_signup","extension_validate_signup_form_fields","classes\\class-pta_sus_public.php",151,{"type":170,"name":190,"callback":191,"priority":173,"file":187,"line":192},"pta_sus_add_signup","extension_add_signup",152,{"type":161,"name":194,"callback":194,"priority":51,"file":195,"line":86},"init","classes\\class-pta_sus_template_tags_helper.php",{"type":161,"name":197,"callback":198,"file":199,"line":200},"pta_sus_customizer_init","register_text_filters","classes\\class-pta_sus_text_registry.php",7,{"type":161,"name":194,"callback":194,"priority":51,"file":199,"line":54},{"type":161,"name":203,"callback":204,"file":205,"line":206},"pta_sus_cron_job","cron_functions","pta-volunteer-sign-up-sheets.php",68,{"type":161,"name":194,"callback":194,"file":205,"line":208},70,{"type":161,"name":210,"callback":211,"file":205,"line":212},"plugins_loaded","public_init",71,{"type":161,"name":210,"callback":214,"file":205,"line":215},"setup_translation",72,{"type":161,"name":194,"callback":217,"file":205,"line":218},"block_assets",74,{"type":161,"name":220,"callback":221,"file":205,"line":222},"widgets_init","register_sus_widget",76,{"type":161,"name":224,"callback":225,"priority":173,"file":205,"line":226},"wpmu_new_blog","new_blog",78,{"type":161,"name":228,"callback":229,"priority":28,"file":205,"line":230},"wp_enqueue_scripts","register_scripts",80,{"type":161,"name":166,"callback":229,"priority":28,"file":205,"line":232},81,{"type":161,"name":194,"callback":234,"file":205,"line":55},"init_admin_hooks",{"type":161,"name":194,"callback":194,"file":205,"line":236},93,{"type":161,"name":228,"callback":238,"file":205,"line":239},"add_css_and_js_to_frontend",94,{"type":161,"name":210,"callback":241,"priority":51,"file":205,"line":242},"pta_sus_load_plugin_components",873,{"type":161,"name":210,"callback":244,"priority":173,"file":205,"line":245},"init_hooks",878,{"type":161,"name":210,"callback":247,"priority":248,"file":205,"line":249},"closure",15,881,{"type":170,"name":251,"callback":252,"file":205,"line":253},"wp_privacy_personal_data_exporters","pta_sus_register_exporters",917,{"type":170,"name":255,"callback":256,"file":205,"line":257},"wp_privacy_personal_data_erasers","pta_sus_plugin_register_erasers",955,{"type":161,"name":259,"callback":247,"file":205,"line":260},"admin_notices",995,{"type":161,"name":180,"callback":247,"file":205,"line":262},1010,[264,270],{"action":265,"nopriv":266,"callback":267,"hasNonce":268,"hasCapCheck":266,"file":163,"line":269},"pta_sus_get_user_data",false,"get_user_data",true,34,{"action":271,"nopriv":266,"callback":272,"hasNonce":268,"hasCapCheck":266,"file":163,"line":273},"pta_sus_user_search","user_search",35,[],[276,280,284],{"tag":277,"callback":278,"file":187,"line":279},"pta_sign_up_sheet","display_sheet",118,{"tag":281,"callback":282,"file":187,"line":283},"pta_user_signups","process_user_signups_shortcode",119,{"tag":285,"callback":286,"file":187,"line":287},"pta_validation_form","process_validation_form_shortcode",120,[289],{"hook":203,"callback":203,"file":205,"line":290},721,{"dangerousFunctions":292,"sqlUsage":293,"outputEscaping":303,"fileOperations":137,"externalRequests":29,"nonceChecks":1004,"capabilityChecks":1005,"bundledLibraries":1006},[],{"prepared":294,"raw":116,"locations":295},79,[296,300],{"file":297,"line":298,"context":299},"classes\\data.php",542,"$wpdb->get_results() with variable interpolation",{"file":205,"line":301,"context":302},592,"$wpdb->get_col() with variable interpolation",{"escaped":304,"rawEcho":305,"locations":306},627,372,[307,311,313,314,317,318,320,322,324,326,328,330,332,334,336,338,340,342,344,346,348,350,352,354,356,358,360,362,364,366,368,370,372,374,376,378,380,382,384,386,388,390,392,394,396,398,400,402,404,406,408,410,411,413,415,417,419,421,423,425,427,429,431,433,435,437,439,441,443,444,446,448,450,452,454,456,458,460,462,464,466,468,470,472,474,476,478,480,482,484,486,488,490,492,494,496,498,500,502,504,506,508,510,512,514,516,518,520,522,524,526,528,530,532,534,536,538,540,542,544,546,548,550,552,555,557,559,560,562,564,566,568,570,572,574,576,578,580,582,584,586,588,590,592,594,596,598,599,601,603,605,607,609,611,612,614,615,617,619,621,622,623,625,627,629,631,633,635,636,638,640,642,644,646,648,649,651,653,655,657,659,661,663,665,667,669,671,673,675,677,679,681,682,684,686,688,690,692,694,696,698,700,702,704,705,707,709,711,712,714,716,718,719,720,722,724,726,728,730,732,734,736,738,740,742,744,746,748,750,751,753,755,757,759,761,763,765,767,769,771,773,775,777,779,781,783,785,787,789,791,793,795,797,799,801,803,805,807,809,811,813,815,817,819,821,823,825,827,829,831,833,835,837,839,841,843,845,847,849,851,853,855,857,859,861,863,865,867,869,871,873,875,877,879,882,883,885,886,887,889,891,893,896,898,899,901,903,905,907,908,910,911,912,914,916,917,919,921,922,924,926,927,929,931,932,935,937,938,940,942,944,946,948,950,952,953,955,956,957,958,959,960,961,962,963,964,965,966,968,970,972,974,975,976,977,978,980,981,982,983,985,986,987,988,989,990,992,994,996,998,1001,1002],{"file":308,"line":309,"context":310},"classes\\admin-email-volunteers-html.php",18,"raw output",{"file":308,"line":312,"context":310},64,{"file":308,"line":230,"context":310},{"file":315,"line":316,"context":310},"classes\\admin-view-all-signups-html.php",12,{"file":315,"line":128,"context":310},{"file":319,"line":239,"context":310},"classes\\admin-view-signups-html.php",{"file":163,"line":321,"context":310},254,{"file":163,"line":323,"context":310},269,{"file":163,"line":325,"context":310},270,{"file":163,"line":327,"context":310},271,{"file":163,"line":329,"context":310},272,{"file":163,"line":331,"context":310},273,{"file":163,"line":333,"context":310},275,{"file":163,"line":335,"context":310},276,{"file":163,"line":337,"context":310},277,{"file":163,"line":339,"context":310},278,{"file":163,"line":341,"context":310},280,{"file":163,"line":343,"context":310},281,{"file":163,"line":345,"context":310},282,{"file":163,"line":347,"context":310},283,{"file":163,"line":349,"context":310},285,{"file":163,"line":351,"context":310},286,{"file":163,"line":353,"context":310},287,{"file":163,"line":355,"context":310},288,{"file":163,"line":357,"context":310},290,{"file":163,"line":359,"context":310},291,{"file":163,"line":361,"context":310},300,{"file":163,"line":363,"context":310},314,{"file":163,"line":365,"context":310},326,{"file":163,"line":367,"context":310},380,{"file":163,"line":369,"context":310},393,{"file":163,"line":371,"context":310},418,{"file":163,"line":373,"context":310},450,{"file":163,"line":375,"context":310},466,{"file":163,"line":377,"context":310},475,{"file":163,"line":379,"context":310},487,{"file":163,"line":381,"context":310},510,{"file":163,"line":383,"context":310},516,{"file":163,"line":385,"context":310},521,{"file":163,"line":387,"context":310},526,{"file":163,"line":389,"context":310},534,{"file":163,"line":391,"context":310},539,{"file":163,"line":393,"context":310},547,{"file":163,"line":395,"context":310},555,{"file":163,"line":397,"context":310},559,{"file":163,"line":399,"context":310},563,{"file":163,"line":401,"context":310},686,{"file":163,"line":403,"context":310},692,{"file":163,"line":405,"context":310},697,{"file":163,"line":407,"context":310},709,{"file":163,"line":409,"context":310},715,{"file":163,"line":290,"context":310},{"file":163,"line":412,"context":310},757,{"file":163,"line":414,"context":310},759,{"file":163,"line":416,"context":310},820,{"file":163,"line":418,"context":310},822,{"file":163,"line":420,"context":310},826,{"file":163,"line":422,"context":310},828,{"file":163,"line":424,"context":310},833,{"file":163,"line":426,"context":310},835,{"file":163,"line":428,"context":310},840,{"file":163,"line":430,"context":310},842,{"file":163,"line":432,"context":310},846,{"file":163,"line":434,"context":310},849,{"file":163,"line":436,"context":310},854,{"file":163,"line":438,"context":310},860,{"file":163,"line":440,"context":310},865,{"file":163,"line":442,"context":310},872,{"file":163,"line":245,"context":310},{"file":163,"line":445,"context":310},884,{"file":163,"line":447,"context":310},889,{"file":163,"line":449,"context":310},897,{"file":163,"line":451,"context":310},899,{"file":163,"line":453,"context":310},908,{"file":163,"line":455,"context":310},934,{"file":163,"line":457,"context":310},980,{"file":163,"line":459,"context":310},984,{"file":163,"line":461,"context":310},985,{"file":163,"line":463,"context":310},1020,{"file":163,"line":465,"context":310},1023,{"file":163,"line":467,"context":310},1030,{"file":163,"line":469,"context":310},1035,{"file":163,"line":471,"context":310},1068,{"file":163,"line":473,"context":310},1073,{"file":163,"line":475,"context":310},1084,{"file":163,"line":477,"context":310},1120,{"file":163,"line":479,"context":310},1122,{"file":163,"line":481,"context":310},1163,{"file":163,"line":483,"context":310},1262,{"file":163,"line":485,"context":310},1274,{"file":163,"line":487,"context":310},1294,{"file":163,"line":489,"context":310},1297,{"file":163,"line":491,"context":310},1300,{"file":163,"line":493,"context":310},1351,{"file":163,"line":495,"context":310},1359,{"file":163,"line":497,"context":310},1369,{"file":163,"line":499,"context":310},1407,{"file":163,"line":501,"context":310},1411,{"file":163,"line":503,"context":310},1415,{"file":163,"line":505,"context":310},1417,{"file":163,"line":507,"context":310},1421,{"file":163,"line":509,"context":310},1426,{"file":163,"line":511,"context":310},1429,{"file":163,"line":513,"context":310},1516,{"file":163,"line":515,"context":310},1526,{"file":163,"line":517,"context":310},1529,{"file":163,"line":519,"context":310},1539,{"file":163,"line":521,"context":310},1546,{"file":163,"line":523,"context":310},1558,{"file":163,"line":525,"context":310},1577,{"file":163,"line":527,"context":310},1587,{"file":163,"line":529,"context":310},1595,{"file":163,"line":531,"context":310},1596,{"file":163,"line":533,"context":310},1597,{"file":163,"line":535,"context":310},1607,{"file":163,"line":537,"context":310},1613,{"file":163,"line":539,"context":310},1616,{"file":163,"line":541,"context":310},1622,{"file":163,"line":543,"context":310},1629,{"file":163,"line":545,"context":310},1645,{"file":163,"line":547,"context":310},1653,{"file":163,"line":549,"context":310},1669,{"file":163,"line":551,"context":310},1679,{"file":553,"line":554,"context":310},"classes\\class-pta_sus_messages.php",66,{"file":182,"line":556,"context":310},37,{"file":182,"line":558,"context":310},41,{"file":182,"line":14,"context":310},{"file":182,"line":561,"context":310},43,{"file":182,"line":563,"context":310},44,{"file":182,"line":565,"context":310},83,{"file":182,"line":567,"context":310},379,{"file":182,"line":569,"context":310},383,{"file":182,"line":571,"context":310},387,{"file":182,"line":573,"context":310},388,{"file":182,"line":575,"context":310},392,{"file":182,"line":577,"context":310},395,{"file":182,"line":579,"context":310},396,{"file":182,"line":581,"context":310},409,{"file":182,"line":583,"context":310},421,{"file":182,"line":585,"context":310},433,{"file":182,"line":587,"context":310},445,{"file":182,"line":589,"context":310},462,{"file":182,"line":591,"context":310},467,{"file":182,"line":593,"context":310},472,{"file":182,"line":595,"context":310},477,{"file":182,"line":597,"context":310},482,{"file":182,"line":379,"context":310},{"file":182,"line":600,"context":310},492,{"file":182,"line":602,"context":310},497,{"file":182,"line":604,"context":310},502,{"file":182,"line":606,"context":310},507,{"file":182,"line":608,"context":310},512,{"file":182,"line":610,"context":310},517,{"file":182,"line":385,"context":310},{"file":182,"line":613,"context":310},522,{"file":182,"line":387,"context":310},{"file":182,"line":616,"context":310},527,{"file":182,"line":618,"context":310},532,{"file":182,"line":620,"context":310},537,{"file":182,"line":298,"context":310},{"file":182,"line":393,"context":310},{"file":182,"line":624,"context":310},548,{"file":182,"line":626,"context":310},552,{"file":182,"line":628,"context":310},553,{"file":182,"line":630,"context":310},557,{"file":182,"line":632,"context":310},558,{"file":182,"line":634,"context":310},562,{"file":182,"line":399,"context":310},{"file":182,"line":637,"context":310},567,{"file":182,"line":639,"context":310},568,{"file":182,"line":641,"context":310},579,{"file":182,"line":643,"context":310},591,{"file":182,"line":645,"context":310},603,{"file":182,"line":647,"context":310},615,{"file":182,"line":304,"context":310},{"file":182,"line":650,"context":310},639,{"file":182,"line":652,"context":310},652,{"file":182,"line":654,"context":310},654,{"file":182,"line":656,"context":310},665,{"file":182,"line":658,"context":310},667,{"file":182,"line":660,"context":310},678,{"file":182,"line":662,"context":310},680,{"file":182,"line":664,"context":310},691,{"file":182,"line":666,"context":310},693,{"file":182,"line":668,"context":310},704,{"file":182,"line":670,"context":310},706,{"file":182,"line":672,"context":310},717,{"file":182,"line":674,"context":310},719,{"file":182,"line":676,"context":310},729,{"file":182,"line":678,"context":310},741,{"file":182,"line":680,"context":310},753,{"file":182,"line":66,"context":310},{"file":182,"line":683,"context":310},777,{"file":182,"line":685,"context":310},789,{"file":182,"line":687,"context":310},791,{"file":182,"line":689,"context":310},801,{"file":182,"line":691,"context":310},803,{"file":182,"line":693,"context":310},813,{"file":182,"line":695,"context":310},815,{"file":182,"line":697,"context":310},825,{"file":182,"line":699,"context":310},827,{"file":182,"line":701,"context":310},837,{"file":182,"line":703,"context":310},839,{"file":182,"line":434,"context":310},{"file":182,"line":706,"context":310},851,{"file":182,"line":708,"context":310},861,{"file":182,"line":710,"context":310},863,{"file":182,"line":242,"context":310},{"file":182,"line":713,"context":310},875,{"file":182,"line":715,"context":310},885,{"file":182,"line":717,"context":310},887,{"file":182,"line":449,"context":310},{"file":182,"line":451,"context":310},{"file":182,"line":721,"context":310},909,{"file":182,"line":723,"context":310},911,{"file":182,"line":725,"context":310},921,{"file":182,"line":727,"context":310},923,{"file":182,"line":729,"context":310},933,{"file":182,"line":731,"context":310},935,{"file":182,"line":733,"context":310},945,{"file":182,"line":735,"context":310},947,{"file":182,"line":737,"context":310},957,{"file":182,"line":739,"context":310},959,{"file":182,"line":741,"context":310},969,{"file":182,"line":743,"context":310},971,{"file":182,"line":745,"context":310},981,{"file":182,"line":747,"context":310},983,{"file":182,"line":749,"context":310},993,{"file":182,"line":260,"context":310},{"file":182,"line":752,"context":310},1005,{"file":182,"line":754,"context":310},1007,{"file":182,"line":756,"context":310},1017,{"file":182,"line":758,"context":310},1019,{"file":182,"line":760,"context":310},1029,{"file":182,"line":762,"context":310},1031,{"file":182,"line":764,"context":310},1041,{"file":182,"line":766,"context":310},1043,{"file":182,"line":768,"context":310},1053,{"file":182,"line":770,"context":310},1055,{"file":182,"line":772,"context":310},1065,{"file":182,"line":774,"context":310},1067,{"file":182,"line":776,"context":310},1078,{"file":182,"line":778,"context":310},1080,{"file":182,"line":780,"context":310},1091,{"file":182,"line":782,"context":310},1093,{"file":182,"line":784,"context":310},1104,{"file":182,"line":786,"context":310},1106,{"file":182,"line":788,"context":310},1117,{"file":182,"line":790,"context":310},1119,{"file":182,"line":792,"context":310},1130,{"file":182,"line":794,"context":310},1132,{"file":182,"line":796,"context":310},1142,{"file":182,"line":798,"context":310},1144,{"file":182,"line":800,"context":310},1154,{"file":182,"line":802,"context":310},1156,{"file":182,"line":804,"context":310},1166,{"file":182,"line":806,"context":310},1168,{"file":182,"line":808,"context":310},1178,{"file":182,"line":810,"context":310},1180,{"file":182,"line":812,"context":310},1190,{"file":182,"line":814,"context":310},1192,{"file":182,"line":816,"context":310},1202,{"file":182,"line":818,"context":310},1204,{"file":182,"line":820,"context":310},1214,{"file":182,"line":822,"context":310},1216,{"file":182,"line":824,"context":310},1228,{"file":182,"line":826,"context":310},1229,{"file":182,"line":828,"context":310},1240,{"file":182,"line":830,"context":310},1241,{"file":182,"line":832,"context":310},1253,{"file":182,"line":834,"context":310},1254,{"file":182,"line":836,"context":310},1265,{"file":182,"line":838,"context":310},1266,{"file":182,"line":840,"context":310},1267,{"file":182,"line":842,"context":310},1278,{"file":182,"line":844,"context":310},1279,{"file":182,"line":846,"context":310},1290,{"file":182,"line":848,"context":310},1291,{"file":182,"line":850,"context":310},1292,{"file":182,"line":852,"context":310},1293,{"file":182,"line":854,"context":310},1304,{"file":182,"line":856,"context":310},1305,{"file":182,"line":858,"context":310},1306,{"file":182,"line":860,"context":310},1307,{"file":182,"line":862,"context":310},1312,{"file":182,"line":864,"context":310},1317,{"file":195,"line":866,"context":310},168,{"file":195,"line":868,"context":310},174,{"file":195,"line":870,"context":310},176,{"file":195,"line":872,"context":310},180,{"file":195,"line":874,"context":310},182,{"file":195,"line":876,"context":310},183,{"file":195,"line":878,"context":310},184,{"file":880,"line":881,"context":310},"classes\\list-table.php",268,{"file":880,"line":327,"context":310},{"file":880,"line":884,"context":310},279,{"file":880,"line":345,"context":310},{"file":880,"line":357,"context":310},{"file":880,"line":888,"context":310},293,{"file":880,"line":890,"context":310},301,{"file":880,"line":892,"context":310},304,{"file":894,"line":895,"context":310},"classes\\widget.php",82,{"file":894,"line":897,"context":310},84,{"file":894,"line":178,"context":310},{"file":894,"line":900,"context":310},121,{"file":894,"line":902,"context":310},128,{"file":894,"line":904,"context":310},146,{"file":894,"line":906,"context":310},147,{"file":894,"line":906,"context":310},{"file":894,"line":909,"context":310},150,{"file":894,"line":188,"context":310},{"file":894,"line":188,"context":310},{"file":894,"line":913,"context":310},154,{"file":894,"line":915,"context":310},155,{"file":894,"line":915,"context":310},{"file":894,"line":918,"context":310},162,{"file":894,"line":920,"context":310},163,{"file":894,"line":920,"context":310},{"file":894,"line":923,"context":310},171,{"file":894,"line":925,"context":310},172,{"file":894,"line":925,"context":310},{"file":894,"line":928,"context":310},178,{"file":894,"line":930,"context":310},179,{"file":894,"line":930,"context":310},{"file":933,"line":934,"context":310},"pta-sus-global-functions.php",366,{"file":205,"line":936,"context":310},1004,{"file":205,"line":752,"context":310},{"file":205,"line":939,"context":310},1006,{"file":941,"line":309,"context":310},"views\\admin-add-edit-signup-form.php",{"file":941,"line":943,"context":310},25,{"file":941,"line":945,"context":310},38,{"file":941,"line":947,"context":310},116,{"file":941,"line":949,"context":310},130,{"file":951,"line":54,"context":310},"views\\admin-task-form-html.php",{"file":951,"line":183,"context":310},{"file":951,"line":954,"context":310},28,{"file":951,"line":273,"context":310},{"file":951,"line":174,"context":310},{"file":951,"line":174,"context":310},{"file":951,"line":945,"context":310},{"file":951,"line":945,"context":310},{"file":951,"line":558,"context":310},{"file":951,"line":558,"context":310},{"file":951,"line":561,"context":310},{"file":951,"line":561,"context":310},{"file":951,"line":563,"context":310},{"file":951,"line":563,"context":310},{"file":951,"line":967,"context":310},48,{"file":951,"line":969,"context":310},49,{"file":951,"line":971,"context":310},54,{"file":951,"line":973,"context":310},55,{"file":951,"line":973,"context":310},{"file":951,"line":973,"context":310},{"file":951,"line":312,"context":310},{"file":951,"line":312,"context":310},{"file":951,"line":979,"context":310},73,{"file":951,"line":979,"context":310},{"file":951,"line":895,"context":310},{"file":951,"line":895,"context":310},{"file":951,"line":984,"context":310},88,{"file":951,"line":984,"context":310},{"file":951,"line":236,"context":310},{"file":951,"line":236,"context":310},{"file":951,"line":85,"context":310},{"file":951,"line":85,"context":310},{"file":951,"line":991,"context":310},108,{"file":951,"line":993,"context":310},109,{"file":995,"line":173,"context":310},"views\\sheets-view-divs-row-html.php",{"file":997,"line":173,"context":310},"views\\sheets-view-table-row-html.php",{"file":999,"line":1000,"context":310},"views\\task-view-header-html.php",11,{"file":999,"line":86,"context":310},{"file":999,"line":1003,"context":310},19,23,30,[1007],{"name":1008,"version":1009,"knownCves":1010},"DataTables","1.11.5",[],[1012,1029,1047,1058,1074,1083,1094,1123,1133,1150,1160,1189,1229,1244,1298],{"entryPoint":1013,"graph":1014,"unsanitizedCount":28,"severity":41},"pta_clean_redirect (pta-sus-global-functions.php:384)",{"nodes":1015,"edges":1027},[1016,1021],{"id":1017,"type":1018,"label":1019,"file":933,"line":1020},"n0","source","$_GET",413,{"id":1022,"type":1023,"label":1024,"file":933,"line":1025,"wp_function":1026},"n1","sink","wp_redirect() [Open Redirect]",417,"wp_redirect",[1028],{"from":1017,"to":1022,"sanitized":266},{"entryPoint":1030,"graph":1031,"unsanitizedCount":28,"severity":1046},"\u003Cadmin-email-volunteers-html> (classes\\admin-email-volunteers-html.php:0)",{"nodes":1032,"edges":1043},[1033,1035,1038,1041],{"id":1017,"type":1018,"label":1034,"file":308,"line":173},"$_POST (x3)",{"id":1022,"type":1023,"label":1036,"file":308,"line":945,"wp_function":1037},"echo() [XSS]","echo",{"id":1039,"type":1018,"label":1040,"file":308,"line":54},"n2","$_POST",{"id":1042,"type":1023,"label":1036,"file":308,"line":312,"wp_function":1037},"n3",[1044,1045],{"from":1017,"to":1022,"sanitized":268},{"from":1039,"to":1042,"sanitized":266},"low",{"entryPoint":1048,"graph":1049,"unsanitizedCount":29,"severity":1046},"\u003Cadmin-move-html> (classes\\admin-move-html.php:0)",{"nodes":1050,"edges":1056},[1051,1054],{"id":1017,"type":1018,"label":1052,"file":1053,"line":54},"$_REQUEST (x2)","classes\\admin-move-html.php",{"id":1022,"type":1023,"label":1036,"file":1053,"line":1055,"wp_function":1037},21,[1057],{"from":1017,"to":1022,"sanitized":268},{"entryPoint":1059,"graph":1060,"unsanitizedCount":29,"severity":1046},"maybe_validate_volunteer (classes\\class-pta_sus_public.php:155)",{"nodes":1061,"edges":1071},[1062,1064,1067],{"id":1017,"type":1018,"label":1019,"file":187,"line":1063},181,{"id":1022,"type":1065,"label":1066,"file":187,"line":1063},"transform","→ pta_validate_code()",{"id":1039,"type":1023,"label":1068,"file":933,"line":1069,"wp_function":1070},"get_row() [SQLi]",322,"get_row",[1072,1073],{"from":1017,"to":1022,"sanitized":266},{"from":1022,"to":1039,"sanitized":268},{"entryPoint":1075,"graph":1076,"unsanitizedCount":29,"severity":1046},"pta_get_validated_user_info (pta-sus-global-functions.php:124)",{"nodes":1077,"edges":1081},[1078,1079],{"id":1017,"type":1018,"label":1019,"file":933,"line":906},{"id":1022,"type":1023,"label":1068,"file":933,"line":1080,"wp_function":1070},153,[1082],{"from":1017,"to":1022,"sanitized":268},{"entryPoint":1084,"graph":1085,"unsanitizedCount":29,"severity":1046},"pta_is_user_validated (pta-sus-global-functions.php:238)",{"nodes":1086,"edges":1091},[1087,1089,1090],{"id":1017,"type":1018,"label":1019,"file":933,"line":1088},255,{"id":1022,"type":1065,"label":1066,"file":933,"line":1088},{"id":1039,"type":1023,"label":1068,"file":933,"line":1069,"wp_function":1070},[1092,1093],{"from":1017,"to":1022,"sanitized":266},{"from":1022,"to":1039,"sanitized":268},{"entryPoint":1095,"graph":1096,"unsanitizedCount":29,"severity":1046},"\u003Cpta-sus-global-functions> (pta-sus-global-functions.php:0)",{"nodes":1097,"edges":1117},[1098,1100,1101,1103,1107,1109,1111,1113,1115],{"id":1017,"type":1018,"label":1099,"file":933,"line":906},"$_GET (x2)",{"id":1022,"type":1023,"label":1068,"file":933,"line":1080,"wp_function":1070},{"id":1039,"type":1018,"label":1019,"file":933,"line":1102},253,{"id":1042,"type":1023,"label":1104,"file":933,"line":1105,"wp_function":1106},"get_var() [SQLi]",338,"get_var",{"id":1108,"type":1018,"label":1019,"file":933,"line":1020},"n4",{"id":1110,"type":1023,"label":1024,"file":933,"line":1025,"wp_function":1026},"n5",{"id":1112,"type":1018,"label":1019,"file":933,"line":1088},"n6",{"id":1114,"type":1065,"label":1066,"file":933,"line":1088},"n7",{"id":1116,"type":1023,"label":1068,"file":933,"line":1069,"wp_function":1070},"n8",[1118,1119,1120,1121,1122],{"from":1017,"to":1022,"sanitized":268},{"from":1039,"to":1042,"sanitized":268},{"from":1108,"to":1110,"sanitized":268},{"from":1112,"to":1114,"sanitized":266},{"from":1114,"to":1116,"sanitized":268},{"entryPoint":1124,"graph":1125,"unsanitizedCount":29,"severity":1046},"\u003Cadmin-add-edit-signup-form> (views\\admin-add-edit-signup-form.php:0)",{"nodes":1126,"edges":1131},[1127,1130],{"id":1017,"type":1018,"label":1128,"file":941,"line":1129},"$_REQUEST (x8)",6,{"id":1022,"type":1023,"label":1036,"file":941,"line":173,"wp_function":1037},[1132],{"from":1017,"to":1022,"sanitized":268},{"entryPoint":1134,"graph":1135,"unsanitizedCount":28,"severity":1149},"live_search (classes\\class-pta-sus-ajax.php:36)",{"nodes":1136,"edges":1146},[1137,1140,1142],{"id":1017,"type":1018,"label":1040,"file":1138,"line":1139},"classes\\class-pta-sus-ajax.php",52,{"id":1022,"type":1065,"label":1141,"file":1138,"line":1139},"→ get_signups2()",{"id":1039,"type":1023,"label":1143,"file":297,"line":1144,"wp_function":1145},"get_results() [SQLi]",432,"get_results",[1147,1148],{"from":1017,"to":1022,"sanitized":266},{"from":1022,"to":1039,"sanitized":266},"high",{"entryPoint":1151,"graph":1152,"unsanitizedCount":28,"severity":1149},"\u003Cclass-pta-sus-ajax> (classes\\class-pta-sus-ajax.php:0)",{"nodes":1153,"edges":1157},[1154,1155,1156],{"id":1017,"type":1018,"label":1040,"file":1138,"line":1139},{"id":1022,"type":1065,"label":1141,"file":1138,"line":1139},{"id":1039,"type":1023,"label":1143,"file":297,"line":1144,"wp_function":1145},[1158,1159],{"from":1017,"to":1022,"sanitized":266},{"from":1022,"to":1039,"sanitized":266},{"entryPoint":1161,"graph":1162,"unsanitizedCount":28,"severity":1149},"admin_sheet_page (classes\\class-pta_sus_admin.php:737)",{"nodes":1163,"edges":1183},[1164,1166,1167,1170,1171,1174,1175,1177,1179],{"id":1017,"type":1018,"label":1165,"file":163,"line":412},"$_GET['signup_id']",{"id":1022,"type":1023,"label":1036,"file":163,"line":412,"wp_function":1037},{"id":1039,"type":1018,"label":1168,"file":163,"line":1169},"$_GET (x3)",816,{"id":1042,"type":1023,"label":1036,"file":163,"line":430,"wp_function":1037},{"id":1108,"type":1018,"label":1172,"file":163,"line":1173},"$_REQUEST",876,{"id":1110,"type":1023,"label":1036,"file":163,"line":447,"wp_function":1037},{"id":1112,"type":1018,"label":1019,"file":163,"line":1176},845,{"id":1114,"type":1065,"label":1178,"file":163,"line":1176},"→ toggle_visibility()",{"id":1116,"type":1023,"label":1180,"file":297,"line":1181,"wp_function":1182},"query() [SQLi]",299,"query",[1184,1185,1186,1187,1188],{"from":1017,"to":1022,"sanitized":268},{"from":1039,"to":1042,"sanitized":268},{"from":1108,"to":1110,"sanitized":268},{"from":1112,"to":1114,"sanitized":266},{"from":1114,"to":1116,"sanitized":266},{"entryPoint":1190,"graph":1191,"unsanitizedCount":137,"severity":1149},"admin_modify_sheet_page (classes\\class-pta_sus_admin.php:954)",{"nodes":1192,"edges":1220},[1193,1195,1196,1198,1199,1201,1203,1205,1207,1209,1212,1215,1218],{"id":1017,"type":1018,"label":1034,"file":163,"line":1194},997,{"id":1022,"type":1023,"label":1036,"file":163,"line":477,"wp_function":1037},{"id":1039,"type":1018,"label":1099,"file":163,"line":1197},1414,{"id":1042,"type":1023,"label":1036,"file":163,"line":503,"wp_function":1037},{"id":1108,"type":1018,"label":1040,"file":163,"line":1200},982,{"id":1110,"type":1065,"label":1202,"file":163,"line":1200},"→ move_tasks()",{"id":1112,"type":1023,"label":1180,"file":297,"line":1204,"wp_function":1182},399,{"id":1114,"type":1018,"label":1040,"file":163,"line":1206},1310,{"id":1116,"type":1065,"label":1208,"file":163,"line":1206},"→ check_duplicate_sheet()",{"id":1210,"type":1023,"label":1104,"file":297,"line":1211,"wp_function":1106},"n9",204,{"id":1213,"type":1018,"label":1040,"file":163,"line":1214},"n10",1412,{"id":1216,"type":1065,"label":1217,"file":163,"line":1214},"n11","→ display_sheet_form()",{"id":1219,"type":1023,"label":1036,"file":163,"line":515,"wp_function":1037},"n12",[1221,1222,1223,1224,1225,1226,1227,1228],{"from":1017,"to":1022,"sanitized":268},{"from":1039,"to":1042,"sanitized":268},{"from":1108,"to":1110,"sanitized":266},{"from":1110,"to":1112,"sanitized":266},{"from":1114,"to":1116,"sanitized":266},{"from":1116,"to":1210,"sanitized":266},{"from":1213,"to":1216,"sanitized":266},{"from":1216,"to":1219,"sanitized":266},{"entryPoint":1230,"graph":1231,"unsanitizedCount":28,"severity":1149},"send_volunteer_emails (classes\\class-pta_sus_admin.php:1709)",{"nodes":1232,"edges":1241},[1233,1235,1237],{"id":1017,"type":1018,"label":1040,"file":163,"line":1234},1752,{"id":1022,"type":1065,"label":1236,"file":163,"line":1234},"→ get_volunteer_emails()",{"id":1039,"type":1023,"label":1238,"file":297,"line":1239,"wp_function":1240},"get_col() [SQLi]",479,"get_col",[1242,1243],{"from":1017,"to":1022,"sanitized":266},{"from":1022,"to":1039,"sanitized":266},{"entryPoint":1245,"graph":1246,"unsanitizedCount":51,"severity":1149},"\u003Cclass-pta_sus_admin> (classes\\class-pta_sus_admin.php:0)",{"nodes":1247,"edges":1283},[1248,1249,1250,1252,1253,1255,1256,1257,1258,1259,1260,1261,1262,1263,1265,1267,1269,1271,1273,1275,1277,1279,1281],{"id":1017,"type":1018,"label":1165,"file":163,"line":412},{"id":1022,"type":1023,"label":1036,"file":163,"line":412,"wp_function":1037},{"id":1039,"type":1018,"label":1251,"file":163,"line":1169},"$_GET (x6)",{"id":1042,"type":1023,"label":1036,"file":163,"line":430,"wp_function":1037},{"id":1108,"type":1018,"label":1254,"file":163,"line":1173},"$_REQUEST (x3)",{"id":1110,"type":1023,"label":1036,"file":163,"line":447,"wp_function":1037},{"id":1112,"type":1018,"label":1034,"file":163,"line":1194},{"id":1114,"type":1023,"label":1036,"file":163,"line":477,"wp_function":1037},{"id":1116,"type":1018,"label":1019,"file":163,"line":1176},{"id":1210,"type":1065,"label":1178,"file":163,"line":1176},{"id":1213,"type":1023,"label":1180,"file":297,"line":1181,"wp_function":1182},{"id":1216,"type":1018,"label":1040,"file":163,"line":1200},{"id":1219,"type":1065,"label":1202,"file":163,"line":1200},{"id":1264,"type":1023,"label":1180,"file":297,"line":1204,"wp_function":1182},"n13",{"id":1266,"type":1018,"label":1040,"file":163,"line":1206},"n14",{"id":1268,"type":1065,"label":1208,"file":163,"line":1206},"n15",{"id":1270,"type":1023,"label":1104,"file":297,"line":1211,"wp_function":1106},"n16",{"id":1272,"type":1018,"label":1040,"file":163,"line":1214},"n17",{"id":1274,"type":1065,"label":1217,"file":163,"line":1214},"n18",{"id":1276,"type":1023,"label":1036,"file":163,"line":515,"wp_function":1037},"n19",{"id":1278,"type":1018,"label":1040,"file":163,"line":1234},"n20",{"id":1280,"type":1065,"label":1236,"file":163,"line":1234},"n21",{"id":1282,"type":1023,"label":1238,"file":297,"line":1239,"wp_function":1240},"n22",[1284,1285,1286,1287,1288,1289,1290,1291,1292,1293,1294,1295,1296,1297],{"from":1017,"to":1022,"sanitized":268},{"from":1039,"to":1042,"sanitized":268},{"from":1108,"to":1110,"sanitized":268},{"from":1112,"to":1114,"sanitized":268},{"from":1116,"to":1210,"sanitized":266},{"from":1210,"to":1213,"sanitized":266},{"from":1216,"to":1219,"sanitized":266},{"from":1219,"to":1264,"sanitized":266},{"from":1266,"to":1268,"sanitized":266},{"from":1268,"to":1270,"sanitized":266},{"from":1272,"to":1274,"sanitized":266},{"from":1274,"to":1276,"sanitized":266},{"from":1278,"to":1280,"sanitized":266},{"from":1280,"to":1282,"sanitized":266},{"entryPoint":1299,"graph":1300,"unsanitizedCount":116,"severity":1149},"\u003Cclass-pta_sus_public> (classes\\class-pta_sus_public.php:0)",{"nodes":1301,"edges":1311},[1302,1303,1304,1305,1308,1310],{"id":1017,"type":1018,"label":1019,"file":187,"line":1063},{"id":1022,"type":1065,"label":1066,"file":187,"line":1063},{"id":1039,"type":1023,"label":1068,"file":933,"line":1069,"wp_function":1070},{"id":1042,"type":1018,"label":1306,"file":187,"line":1307},"$_POST (x2)",560,{"id":1108,"type":1065,"label":1309,"file":187,"line":1307},"→ get_sheet_signup_count()",{"id":1110,"type":1023,"label":1143,"file":297,"line":652,"wp_function":1145},[1312,1313,1314,1315],{"from":1017,"to":1022,"sanitized":266},{"from":1022,"to":1039,"sanitized":268},{"from":1042,"to":1108,"sanitized":266},{"from":1108,"to":1110,"sanitized":266},{"summary":1317,"deductions":1318},"The \"pta-volunteer-sign-up-sheets\" plugin, version 5.5.9, presents a mixed security posture. On the positive side, it demonstrates good practices with a high percentage of SQL queries using prepared statements and robust nonce and capability checks.  There are no explicitly identified dangerous functions, and the plugin has a low number of file operations and no external HTTP requests, reducing common attack vectors.  However, concerns arise from the taint analysis, which reveals a significant number of flows with unsanitized paths, including seven classified as high severity. This suggests potential vulnerabilities where user input might not be adequately handled before being processed or outputted.  The vulnerability history indicates a past medium-severity Cross-Site Scripting (XSS) vulnerability, and while currently unpatched CVEs are zero, the presence of past XSS issues alongside high-severity taint flows warrants careful attention.\n\nOverall, while the plugin employs several strong security measures, the high number of unsanitized taint flows is a critical area of concern. This could expose the application to various injection-based attacks if not meticulously reviewed and mitigated.  The historical XSS vulnerability further underscores the need for vigilance in input sanitization and output escaping. The plugin's strengths in prepared statements and authorization checks are commendable, but they are overshadowed by the potential risks identified in the taint analysis.",[1319,1321,1323,1326,1328],{"reason":1320,"points":248},"High severity unsanitized taint flows detected",{"reason":1322,"points":173},"Medium severity CVE history (XSS)",{"reason":1324,"points":1325},"Significant number of unsanitized paths in taint flows",8,{"reason":1327,"points":51},"Output escaping not properly handled in 37% of cases",{"reason":1329,"points":48},"Bundled outdated DataTables library (v1.11.5)","2026-03-16T18:48:23.067Z",{"wat":1332,"direct":1350},{"assetPaths":1333,"generatorPatterns":1341,"scriptPaths":1342,"versionParams":1345},[1334,1335,1336,1337,1338,1339,1340],"\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fcss\u002Fjquery.datepick.css","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fcss\u002Fjquery.autocomplete.min.css","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fjs\u002Fjquery.plugin.min.js","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fjs\u002Fjquery.datepick.min.js","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fjs\u002Ffrontend.min.js","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fdatatables\u002Fdatatables.min.css","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fdatatables\u002Fdatatables.min.js",[],[1343,1344],"https:\u002F\u002Fcdn.jsdelivr.net\u002Fnpm\u002Fselect2\u002Fdist\u002Fjs\u002Fselect2.min.js","https:\u002F\u002Fcdn.jsdelivr.net\u002Fnpm\u002Fselect2\u002Fdist\u002Fcss\u002Fselect2.min.css",[1346,1347,1348,1349],"\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fjs\u002Fjquery.datepick.min.js?ver=","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fassets\u002Fjs\u002Ffrontend.min.js?ver=","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fdatatables\u002Fdatatables.min.css?ver=","\u002Fwp-content\u002Fplugins\u002Fpta-volunteer-sign-up-sheets\u002Fdatatables\u002Fdatatables.min.js?ver=",{"cssClasses":1351,"htmlComments":1354,"htmlAttributes":1355,"restEndpoints":1358,"jsGlobals":1359,"shortcodeOutput":1361},[1352,1353],"pta_sus_date_picker","pta_sus_signup_button",[],[1356,1357],"data-task-id","data-date",[],[1360],"ptaSUS",[]]