[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fvswU9CVYEaDcmHd1jxsM6Cmu1Ko54YDV4NVD72sFHh0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":139,"fingerprints":205},"real-accessability","Real Accessability","1.0","REALMEDIA.IL","https:\u002F\u002Fprofiles.wordpress.org\u002Frealmediail\u002F","\u003Cp>Real Accessability plugin adds very easy to use & intuitive accessability toolbar to your website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Real Accessability Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Increase font\u002Ftext size\u003C\u002Fli>\n\u003Cli>Decrease font\u002Ftext size\u003C\u002Fli>\n\u003Cli>Turn Black&White view\u003C\u002Fli>\n\u003Cli>Invert website colors\u003C\u002Fli>\n\u003Cli>Highlight all links with underline\u003C\u002Fli>\n\u003Cli>Use more readable font (Arial)\u003C\u002Fli>\n\u003Cli>Remove target attribute\u003C\u002Fli>\n\u003Cli>Add role=”link” to links\u003C\u002Fli>\n\u003Cli>RTL & LTR Support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Available languages:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Hebrew\u003C\u002Fli>\n\u003C\u002Ful>\n","Real Accessability plugin adds custom accessability such as font resizer, color inverse, black & white view and much more",2000,12928,98,7,"2016-09-27T13:40:00.000Z","4.3.34","3.0.1","",[20,21,22,23,24],"accessability","grayscale","text-decrease","text-increase","toolbar","https:\u002F\u002Frealmedia.co.il","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freal-accessability.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"realmediail",1,30,84,"2026-04-04T06:04:05.075Z",[39,59,79,102,121],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":57,"download_link":58,"security_score":49,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"show-current-template","Show Current Template","0.5.4","JOTAKI, Taisuke","https:\u002F\u002Fprofiles.wordpress.org\u002Ftai\u002F","\u003Cp>A WordPress plugin which shows the current template file name, the current theme name and included template files’ name in the tool bar. If you like this plugin, \u003Ca href=\"https:\u002F\u002Fwp.tekapo.com\u002Fis-my-plugin-useful\u002F\" rel=\"nofollow ugc\">you can buy me a coffee! 😉\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Inspired by (and big thanks to):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fgist.github.com\u002Fgatespace\u002F4482529\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fwordpress.org\u002Fplugins\u002Freveal-template\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n","A WordPress plugin which shows the current template file name, the current theme name and included template files' name in the tool bar.",100000,1251329,100,71,"2026-01-17T04:18:00.000Z","6.9.4","5.9","7.4",[56,24],"template","https:\u002F\u002Fwp.tekapo.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-current-template.0.5.4.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":13,"num_ratings":69,"last_updated":70,"tested_up_to":52,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":77,"download_link":78,"security_score":49,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"what-the-file","What The File","1.6.1","Barry Kooij","https:\u002F\u002Fprofiles.wordpress.org\u002Fbarrykooij\u002F","\u003Cp>What The File adds an option to your toolbar showing what file and template parts are used to display the page you’re currently viewing.\u003C\u002Fp>\n\u003Cp>You can click the file name to directly edit it through the theme editor, though I don’t recommend this for bigger changes.\u003C\u002Fp>\n\u003Cp>What The File supports BuddyPress and Roots Theme based themes.\u003C\u002Fp>\n\u003Cp>More information can be found \u003Ca href=\"http:\u002F\u002Fwww.barrykooij.com\u002Fwhat-the-file\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Looking for a great related posts plugin for WordPress?\u003C\u002Fh4>\n\u003Cp>Another plugin I’ve built, that I’m very proud of is Related Posts for WordPress. Related Posts for WordPress offers you the ability to link related posts to each other with just 1 click! And it’s 100% free! \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-for-wp\u002F\" rel=\"ugc\">Check it out on the WordPress repository.\u003C\u002Fa>\u003C\u002Fp>\n","What The File is the best tool to find out what template parts are used to display the page you're currently viewing!",40000,585647,882,"2026-02-19T17:21:00.000Z","3.1","5.3",[74,75,56,76,24],"development","file","template-editing","http:\u002F\u002Fwww.barrykooij.com\u002Fwhat-the-file\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhat-the-file.1.6.1.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":52,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":99,"download_link":100,"security_score":49,"vuln_count":34,"unpatched_count":28,"last_vuln_date":101,"fetched_at":30},"hide-admin-bar-based-on-user-roles","Hide Admin Bar Based on User Roles","7.1.0","Ankit Panchal","https:\u002F\u002Fprofiles.wordpress.org\u002Fankitmaru\u002F","\u003Cp>\u003Cstrong>Hide Admin Bar Based On User Roles\u003C\u002Fstrong> gives you complete control over who sees the WordPress toolbar.\u003C\u002Fp>\n\u003Cp>Whether you are running a membership site, a WooCommerce store, or simply want a cleaner frontend for your subscribers, this plugin lets you hide the admin bar with precision — by role, capability, device, page, or time. Stop exposing backend links to users who don’t need them.\u003C\u002Fp>\n\u003Cp>The plugin is lightweight, developer-friendly, and works immediately upon activation — no configuration required to get started.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F25WBldgArAk?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F_BAwxGVnKNY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Simple but great plugin. 🙂\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fsimple-but-great-plugin-12\u002F\" rel=\"ugc\">wptoolsdev\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Works flawlessly! 🙂\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fworks-flawlessly-129\u002F\" rel=\"ugc\">thebrazeneye\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>🚀 Key Features (Free)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Hide for All Users:\u003C\u002Fstrong> Completely remove the admin bar from the frontend for everyone.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hide for Guests:\u003C\u002Fstrong> Ensure non-logged-in visitors never see the toolbar.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role-Based Hiding:\u003C\u002Fstrong> Select specific roles (e.g., Subscriber, Customer, Editor) to hide the bar for.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Capability-Based Hiding:\u003C\u002Fstrong> Hide the bar based on WordPress capabilities (e.g., hide for anyone who cannot \u003Ccode>manage_options\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight & Fast:\u003C\u002Fstrong> Zero bloat — no external requests, no database overhead on the frontend.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🏆 Premium Features (Pro)\u003C\u002Fh3>\n\u003Cp>Unlock advanced visibility logic with the \u003Ca href=\"https:\u002F\u002Fpluginstack.dev\u002Fplugins\u002Fhide-admin-bar-pro\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa>:\u003Cbr \u002F>\n* \u003Cstrong>Page-Based Targeting:\u003C\u002Fstrong> Show or hide the admin bar only on specific URLs, post types, or page templates.\u003Cbr \u002F>\n* \u003Cstrong>Device Detection:\u003C\u002Fstrong> Hide the toolbar on Mobile or Tablet to save screen space, while keeping it on Desktop.\u003Cbr \u002F>\n* \u003Cstrong>Per-User Overrides:\u003C\u002Fstrong> Manually force the admin bar to show or hide for individual user accounts.\u003Cbr \u002F>\n* \u003Cstrong>Time-Based Visibility:\u003C\u002Fstrong> Automatically hide the bar during specific hours of the day.\u003Cbr \u002F>\n* \u003Cstrong>Smart Redirects:\u003C\u002Fstrong> Redirect users to the homepage or a custom URL when they try to access the backend.\u003Cbr \u002F>\n* \u003Cstrong>Inactivity Auto-Hide:\u003C\u002Fstrong> Automatically slide the toolbar away after a configurable period of inactivity.\u003Cbr \u002F>\n* \u003Cstrong>Import \u002F Export Settings:\u003C\u002Fstrong> Back up and migrate your configuration across sites in one click.\u003C\u002Fp>\n\u003Ch3>You can check our other plugins:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimakit-for-wp\u002F\" rel=\"ugc\">All-in-One WordPress Toolkit for SEO, Security, Customization, and Performance\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flike-dislike-for-wp\u002F\" rel=\"ugc\">Like Dislike For WP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdisable-block-editor-fullscreen-mode\u002F\" rel=\"ugc\">Disable Block Editor FullScreen mode\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnoteflow\u002F\" rel=\"ugc\">NoteFlow – Smart Notes Manager for WordPress Admin\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n","Hide the WordPress Admin Bar for specific user roles, capabilities, devices, pages, or time windows. The ultimate toolbar control plugin for membershi &hellip;",20000,762894,78,20,"2026-02-24T15:00:00.000Z","5.5","5.6",[95,96,97,24,98],"admin-bar","admin-toolbar","hide-admin-bar","user-roles","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhide-admin-bar-based-on-user-roles\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-admin-bar-based-on-user-roles.7.1.0.zip","2022-02-21 00:00:00",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":112,"num_ratings":35,"last_updated":113,"tested_up_to":114,"requires_at_least":115,"requires_php":18,"tags":116,"homepage":18,"download_link":119,"security_score":120,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"hide-admin-bar-from-non-admins","Hide Admin Bar from Non-Admins","1.0.2","Andrew Lima","https:\u002F\u002Fprofiles.wordpress.org\u002Fandrewza\u002F","\u003Ch3>Install, activate, and you’re done.\u003C\u002Fh3>\n\u003Cp>This plugin hides the WordPress Toolbar (admin bar) for all visitors and users without the ‘administrator’ role. It’s a very simple plugin with no settings to configure.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use this plugin for sites with only one admin who needs access to the dashboard and the admin bar.\u003C\u002Fli>\n\u003Cli>This plugin is super lightweight, with just a few lines of code.\u003C\u002Fli>\n\u003Cli>If you need to show the toolbar for other user roles, use the filter \u003Ccode>habfna_show_admin_bar_roles\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is a tweak of the code by Yoast to hide the admin bar for non-admins only.\u003C\u002Fp>\n","Hides the WordPress toolbar (admin bar) for all non-admin users. Simple plugin with no settings to configure.",10000,237108,86,"2024-11-18T14:39:00.000Z","6.7.5","5.2",[95,117,118,24],"adminbar","dashboard","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-admin-bar-from-non-admins.1.0.2.zip",92,{"slug":122,"name":123,"version":6,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":49,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":71,"requires_php":18,"tags":133,"homepage":137,"download_link":138,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"hide-admin-toolbar","Hide Admin Toolbar","Aftab Ali Muni","https:\u002F\u002Fprofiles.wordpress.org\u002Faftabmuni\u002F","\u003Cp>This plugin is used to hide admin toolbar from website. It will hide that bar when you are logged in and viewing the site.\u003C\u002Fp>\n","This plugin is used to hide admin toolbar from website. It will hide that bar when you are logged in and viewing the site.",8000,55411,4,"2023-11-26T07:19:00.000Z","6.4.8",[134,135,97,136],"disable-admin-bar","disable-admin-toolbar","remove-admin-bar-from-website","https:\u002F\u002Faftabmuni.wordpress.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-admin-toolbar.zip",{"attackSurface":140,"codeSignals":165,"taintFlows":179,"riskAssessment":197,"analyzedAt":204},{"hooks":141,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":164,"entryPointCount":28,"unprotectedCount":28},[142,148,152,157],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","plugins_loaded","my_plugin_load_plugin_textdomain","real-accessability.php",18,{"type":143,"name":149,"callback":150,"file":146,"line":151},"wp_enqueue_scripts","real_accessability_assets",25,{"type":153,"name":154,"callback":155,"file":146,"line":156},"filter","body_class","real_accessability_body_class",55,{"type":143,"name":158,"callback":159,"file":146,"line":160},"wp_footer","real_accessability_html",286,[],[],[],[],{"dangerousFunctions":166,"sqlUsage":167,"outputEscaping":169,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":178},[],{"prepared":28,"raw":28,"locations":168},[],{"escaped":28,"rawEcho":170,"locations":171},2,[172,175],{"file":146,"line":173,"context":174},70,"raw output",{"file":176,"line":177,"context":174},"support.php",3,[],[180],{"entryPoint":181,"graph":182,"unsanitizedCount":34,"severity":196},"\u003Csupport> (support.php:0)",{"nodes":183,"edges":193},[184,188],{"id":185,"type":186,"label":187,"file":176,"line":177},"n0","source","$_SERVER['SERVER_NAME']",{"id":189,"type":190,"label":191,"file":176,"line":177,"wp_function":192},"n1","sink","echo() [XSS]","echo",[194],{"from":185,"to":189,"sanitized":195},false,"low",{"summary":198,"deductions":199},"The \"real-accessability\" plugin v1.0 presents a mixed security posture.  On the positive side, it exhibits excellent adherence to secure coding practices regarding SQL queries, utilizing prepared statements exclusively, and shows no file operations or external HTTP requests. Furthermore, the absence of known CVEs and a clean vulnerability history are strong indicators of a well-maintained and secure plugin to date.\n\nHowever, the static analysis reveals significant concerns.  The most critical finding is that 100% of the two identified output operations are not properly escaped. This opens the plugin to potential Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into web pages viewed by users.  The taint analysis also indicates a flow with unsanitized paths, which, while not classified as critical or high severity in this instance, points to a potential area of weakness that could be exploited if the data source were to change or if the context of the unsanitized path were to become more sensitive.\n\nIn conclusion, while the plugin boasts a clean history and good practices in certain areas like database interactions, the critical deficiency in output escaping poses a significant immediate risk of XSS vulnerabilities. The unsanitized path flow, though currently low severity, warrants attention as a potential future exploit vector.  The lack of any capability or nonce checks, combined with the complete absence of an attack surface, makes it difficult to assess its protection against authenticated or unauthenticated threats, but the unescaped output is the most pressing concern.",[200,202],{"reason":201,"points":14},"Unescaped output detected",{"reason":203,"points":177},"Flow with unsanitized paths","2026-03-16T18:41:20.248Z",{"wat":206,"direct":215},{"assetPaths":207,"generatorPatterns":210,"scriptPaths":211,"versionParams":212},[208,209],"\u002Fwp-content\u002Fplugins\u002Freal-accessability\u002Freal-accessability.css","\u002Fwp-content\u002Fplugins\u002Freal-accessability\u002Freal-accessability.js",[],[209],[213,214],"real-accessability\u002Freal-accessability.css?ver=","real-accessability\u002Freal-accessability.js?ver=",{"cssClasses":216,"htmlComments":223,"htmlAttributes":226,"restEndpoints":242,"jsGlobals":243,"shortcodeOutput":246},[217,218,219,220,221,222],"real-accessability-body","real-accessability-linkHighlight","real-accessability-regularFont","real-accessability-loading","real-accessability-icon","real-accessability-effect",[224,225],"\u003C!-- Init Real Accessability Plugin -->","\u003C!-- \u002FEND -->",[227,228,229,230,231,232,233,234,235,236,237,238,239,240,241],"id=\"real-accessability\"","id=\"real-accessability-btn\"","id=\"real-accessability-biggerFont\"","id=\"real-accessability-smallerFont\"","id=\"real-accessability-grayscale\"","id=\"real-accessability-invert\"","id=\"real-accessability-linkHighlight\"","id=\"real-accessability-regularFont\"","id=\"real-accessability-reset\"","id=\"real-accessability-player\"","id=\"btnAccPlay\"","id=\"btnAccPause\"","id=\"btnAccStop\"","id=\"btnAccSupport\"","id=\"real-accessability-copyright\"",[],[244,245],"window.accPlayerStatus","responsiveVoice.voiceSupport",[]]