[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmOfWggUPc5HDaktmrYYIdIsW3hhzybObdnL8EWxTCt4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":112,"fingerprints":165},"ripple-themes-toolset","Ripple Themes Toolset","1.0.7","Ripplethemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fripplethemes\u002F","\u003Cp>An easy plugin to import dummy data for themes by Ripple Themes using \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-import\u002F\" rel=\"ugc\">Advanced Import\u003C\u002Fa>. The plugin also adds additional functionalities to the theme from the Ripple Themes.\u003C\u002Fp>\n","Import Dummy data for themes developed by Ripple Themes.",200,8786,0,"2021-04-01T06:42:00.000Z","5.5.18","4.6","5.6",[19,20,21],"advanced-import","demo-data","one-click-demo-import","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fripple-themes-toolset.1.0.7.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"ripplethemes",1,30,84,"2026-04-04T04:23:14.563Z",[35,51,67,84,99],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":13,"num_ratings":13,"last_updated":45,"tested_up_to":46,"requires_at_least":16,"requires_php":16,"tags":47,"homepage":22,"download_link":49,"security_score":50,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"keon-toolset","Keon Toolset","2.4.5","keonthemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fkeonthemes\u002F","\u003Cp>A demo importer plugin that makes importing starter sites effortless for building your website!\u003C\u002Fp>\n\u003Ch3>Images License\u003C\u002Fh3>\n\u003Cp>https:\u002F\u002Fpxhere.com\u002Fen\u002Flicense [CCO License]\u003C\u002Fp>\n","Import dummy data for themes developed by Keon Themes.",30000,1490109,"2026-01-07T05:31:00.000Z","6.9.4",[20,48,21],"demo-data-importer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkeon-toolset.2.4.5.zip",100,{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":13,"num_ratings":13,"last_updated":61,"tested_up_to":62,"requires_at_least":63,"requires_php":17,"tags":64,"homepage":22,"download_link":65,"security_score":66,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"cyclone-demo-importer","Cyclone Demo Importer","2.9.60","Cyclone Themes","https:\u002F\u002Fprofiles.wordpress.org\u002Fcyclonetheme\u002F","\u003Cp>A easy plugin to import dummy data for themes by Cyclone Themes.\u003C\u002Fp>\n","Import Dummy data for themes developed by Cyclone Themes.",10000,537787,"2024-06-18T09:59:00.000Z","6.5.8","4.9",[20,21],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcyclone-demo-importer.2.9.60.zip",92,{"slug":68,"name":69,"version":70,"author":71,"author_profile":72,"description":73,"short_description":74,"active_installs":75,"downloaded":76,"rating":13,"num_ratings":13,"last_updated":77,"tested_up_to":46,"requires_at_least":78,"requires_php":79,"tags":80,"homepage":22,"download_link":83,"security_score":50,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"blockskit","Blockskit","1.2.2","BlockskitDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fblockskitdev\u002F","\u003Cp>An easy plugin to import starter sites and add different effects to the image.\u003C\u002Fp>\n","An easy plugin to import starter sites and add different effects to the image.",8000,88023,"2025-12-21T10:23:00.000Z","5.9","7.4.9",[81,20,48,82,21],"block","image-block","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblockskit.1.2.2.zip",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":13,"num_ratings":13,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":16,"tags":97,"homepage":22,"download_link":98,"security_score":66,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"candid-advanced-toolset","Candid Advanced Toolset","1.1.0","candidthemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fcandidthemes\u002F","\u003Cp>A easy plugin to import dummy data for themes by Candid Themes.\u003C\u002Fp>\n\u003Ch3>Images License\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>All the images used on the plugins are GPL compatible\u003C\u002Fli>\n\u003C\u002Ful>\n","Import Dummy data for themes developed by Candid Themes.",1000,45719,"2025-03-10T10:20:00.000Z","6.7.5","6.3",[20,21],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcandid-advanced-toolset.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":92,"downloaded":107,"rating":13,"num_ratings":13,"last_updated":108,"tested_up_to":109,"requires_at_least":16,"requires_php":16,"tags":110,"homepage":22,"download_link":111,"security_score":66,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"kortez-toolset","Kortez Toolset","1.1.2","kortezthemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fkortezthemes\u002F","\u003Cp>A easy plugin to import dummy data for themes by Kortez Themes.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Kortez Toolset is inspired by Keon Toolset. Some of the codes used in this plugin are used from Keon Toolset as they are under GPL license.\u003C\u002Fp>\n\u003Ch3>Images License\u003C\u002Fh3>\n\u003Cp>https:\u002F\u002Fpxhere.com\u002Fen\u002Flicense [CCO License]\u003C\u002Fp>\n","Import dummy data for themes developed by Kortez Themes.",19408,"2024-09-06T13:09:00.000Z","6.4.8",[20,48,21],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkortez-toolset.zip",{"attackSurface":113,"codeSignals":148,"taintFlows":157,"riskAssessment":158,"analyzedAt":164},{"hooks":114,"ajaxHandlers":139,"restRoutes":145,"shortcodes":146,"cronEvents":147,"entryPointCount":30,"unprotectedCount":30},[115,122,126,130,133],{"type":116,"name":117,"callback":118,"priority":119,"file":120,"line":121},"filter","advanced_import_demo_lists","add_demo_lists",10,"inc\\init.php",45,{"type":116,"name":123,"callback":124,"priority":119,"file":120,"line":125},"admin_menu","import_menu",46,{"type":116,"name":127,"callback":128,"priority":119,"file":120,"line":129},"admin_enqueue_scripts","enqueue_styles",48,{"type":116,"name":127,"callback":131,"priority":119,"file":120,"line":132},"enqueue_scripts",49,{"type":134,"name":135,"callback":136,"priority":137,"file":120,"line":138},"action","advanced_import_replace_term_ids","replace_term_ids",20,52,[140],{"action":141,"nopriv":142,"callback":143,"hasNonce":142,"hasCapCheck":142,"file":120,"line":144},"ripplethemes_toolset_getting_started",false,"install_advanced_import",47,[],[],[],{"dangerousFunctions":149,"sqlUsage":150,"outputEscaping":152,"fileOperations":13,"externalRequests":13,"nonceChecks":30,"capabilityChecks":155,"bundledLibraries":156},[],{"prepared":13,"raw":13,"locations":151},[],{"escaped":153,"rawEcho":13,"locations":154},5,[],3,[],[],{"summary":159,"deductions":160},"The plugin \"ripple-themes-toolset\" v1.0.7 exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, all SQL queries using prepared statements, and 100% proper output escaping are significant positive indicators. Furthermore, the plugin demonstrates good practice by implementing nonce checks and capability checks on its entry points, and it has no recorded vulnerability history, suggesting a history of secure development. \n\nHowever, there is a notable concern regarding the attack surface. The analysis reveals one AJAX handler that lacks authentication checks. While no critical or high severity taint flows were identified, this unprotected AJAX endpoint represents a direct entry point that could potentially be exploited if it performs sensitive operations or handles user-supplied data without proper validation. The lack of taint analysis data for the plugin means we cannot definitively rule out potential vulnerabilities that might not be caught by static function analysis alone. \n\nIn conclusion, while the plugin shows many strengths in secure coding practices and has a clean vulnerability history, the single unprotected AJAX handler is a significant weakness that requires immediate attention. This specific issue introduces a tangible risk that needs to be mitigated. Addressing this unprotected entry point will greatly improve the plugin's overall security.",[161],{"reason":162,"points":163},"AJAX handler without authentication check",8,"2026-03-16T20:29:15.690Z",{"wat":166,"direct":175},{"assetPaths":167,"generatorPatterns":170,"scriptPaths":171,"versionParams":172},[168,169],"\u002Fwp-content\u002Fplugins\u002Fripple-themes-toolset\u002Fassets\u002Fripplethemes-toolset.css","\u002Fwp-content\u002Fplugins\u002Fripple-themes-toolset\u002Fassets\u002Fripplethemes-toolset.js",[],[169],[173,174],"ripple-themes-toolset\u002Fassets\u002Fripplethemes-toolset.css?ver=","ripple-themes-toolset\u002Fassets\u002Fripplethemes-toolset.js?ver=",{"cssClasses":176,"htmlComments":182,"htmlAttributes":183,"restEndpoints":186,"jsGlobals":187,"shortcodeOutput":189},[177,178,179,180,181],"ads-container","ads-screenshot","ads-notice","plugin-install-notice","ads-gsm-btn",[],[184,185],"data-name","data-slug",[],[188],"ripplethemes_toolset",[]]