[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3Ns5iHE4lVKDBURbr9J_tG99tNFkCMgwhAgNe4uRMWI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":116,"fingerprints":163},"scheduled-posts-dashboad-widget","Scheduled Posts Dashboad Widget","0.3","Frank Neumann-Staude","https:\u002F\u002Fprofiles.wordpress.org\u002Ffstaude\u002F","\u003Cp>English:\u003C\u002Fp>\n\u003Cp>This plugin implements a new widget to use in the dashboard.\u003Cbr \u002F>\nThe widget shows the scheduled posts.\u003C\u002Fp>\n\u003Cp>If they have more translations for this plugin, please send email to frank@staude.net, I will then install.\u003C\u002Fp>\n\u003Cp>Entrys in the changelog with numbers means the ticket id on\u003Cbr \u002F>\nhttp:\u002F\u002Fbugs.staude.net\u003C\u002Fp>\n\u003Cp>Deutsch:\u003C\u002Fp>\n\u003Cp>Dieses Plugin stellt ein Widget für das Dashbord bereit, das die Beiträge anzeigt, die in der Zukunft automatisch veröffentlicht werden.\u003C\u002Fp>\n\u003Cp>Wenn sie weitere Übersetzungen für dieses Plugin haben, bitte per E-Mail an frank@staude.net schicken, ich werde sie dann einbauen.\u003C\u002Fp>\n\u003Cp>Einträge im changelog mit Zahlen verweisen auf die Ticket ID auf http:\u002F\u002Fbugs.staude.net\u003C\u002Fp>\n","The dashboard widget shows the schedued posts",10,1818,0,"2014-09-15T20:42:00.000Z","4.0.38","3.0","",[19,20,21,22],"dashboard","posts","schedule","widgets","http:\u002F\u002Fstaude.net\u002Fwordpress\u002Fplugins\u002FScheduledPostsDashboardWidget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscheduled-posts-dashboad-widget.0.3.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"fstaude",11,8250,30,84,"2026-04-04T07:15:09.435Z",[37,54,74,90,103],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":48,"requires_php":17,"tags":49,"homepage":52,"download_link":53,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"dashboard-recent-posts-extended","Dashboard: Recent Posts Extended","2.0","Ricardo Gonzalez","https:\u002F\u002Fprofiles.wordpress.org\u002Frickgc\u002F","\u003Cp>WordPress 2.5 introduces a widgetized dashboard featuring the latest posts and WordPress news.\u003C\u002Fp>\n\u003Cp>This plugin creates a new widget for that dashboard that lists out the latest posts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>See Also:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdashboard-widget-manager\u002F\" rel=\"ugc\">Dashboard Widget Manager\u003C\u002Fa>\u003C\u002Fp>\n","Widget for the WordPress 2.7+ dashboard to display the latest posts.",20,4768,"2009-01-30T23:47:00.000Z","2.7",[19,50,51,22],"dashboard-widget","recent-posts","http:\u002F\u002Frick.jinlabs.com\u002Fcode\u002Fdashboard-recent-posts-extended","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdashboard-recent-posts-extended.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":11,"downloaded":62,"rating":13,"num_ratings":13,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":71,"download_link":72,"security_score":73,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"future-monitor","Future Monitor","1.0.2","EdwardBock","https:\u002F\u002Fprofiles.wordpress.org\u002Fedwardbock\u002F","\u003Cp>Dashboard Widget for planned posts. Safety-net for planned posts.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","Dashboard Widget for planned posts. Safety-net for planned posts.",1745,"2026-02-18T20:13:00.000Z","6.4.8","4.0","8.0",[19,68,69,70],"planned-posts","schedule-visualization","widget","https:\u002F\u002Fgithub.com\u002Fpalasthotel\u002Ffuture-monitor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffuture-monitor.1.0.2.zip",100,{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":11,"downloaded":82,"rating":13,"num_ratings":13,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":17,"tags":86,"homepage":88,"download_link":89,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"pendig-reviews-dashboard-widget","Pendig Reviews Dashboard Widget","1.0.3.1","brandt-net","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrandt-net\u002F","\u003Cp>The Widget shows a list of pending reviews of posts and pages (you can hide the page entrys from the list).\u003Cbr \u002F>\nAlso in the configuration part of the widget you can set how many pending entrys you would like to display or hide the date or author information.\u003Cbr \u002F>\nThis Plugin is  inspirational from the plugin \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdashboard-pending-review\u002F\" rel=\"ugc\">Dashboard: Pending Review\u003C\u002Fa>.\u003Cbr \u002F>\nThx to Viper007Bond.\u003C\u002Fp>\n","Widget for the WordPress 2.7+ dashboard to display the current pending reviews.",6127,"2013-12-15T12:00:00.000Z","3.8.0","2.7.0",[19,50,87,20,22],"pending-reviews","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fpendig-reviews-dashboard-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpendig-reviews-dashboard-widget.1.0.3.1.zip",{"slug":91,"name":92,"version":93,"author":7,"author_profile":8,"description":94,"short_description":95,"active_installs":11,"downloaded":96,"rating":13,"num_ratings":13,"last_updated":97,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":98,"homepage":101,"download_link":102,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"scheduled-jobs-dashboard-widget","Scheduled Jobs Dashboad Widget","0.5","\u003Cp>English:\u003C\u002Fp>\n\u003Cp>This plugin implements a new widget to use in the dashboard.\u003Cbr \u002F>\nThe widget shows the next jobs from the wordpress scheduler.\u003C\u002Fp>\n\u003Cp>If they have more translations for this plugin, please send email to frank@staude.net, I will then install.\u003C\u002Fp>\n\u003Cp>Entrys in the changelog with numbers means the ticket id on\u003Cbr \u002F>\nhttp:\u002F\u002Fbugs.staude.net\u003C\u002Fp>\n\u003Cp>Deutsch:\u003C\u002Fp>\n\u003Cp>Dieses Plugin stellt ein Widget für das Dashbord bereit, das die nächsten Aufträge des in WordPress eingebauten Cron anzeigt.\u003C\u002Fp>\n\u003Cp>Wenn sie weitere Übersetzungen für dieses Plugin haben, bitte per E-Mail an frank@staude.net schicken, ich werde sie dann einbauen.\u003C\u002Fp>\n\u003Cp>Einträge im changelog mit Zahlen verweisen auf die Ticket ID auf http:\u002F\u002Fbugs.staude.net\u003C\u002Fp>\n","The dashboard widget shows the next jobs from the wordpress scheduler.",2328,"2014-09-17T06:26:00.000Z",[99,19,100,21,22],"cron","jobs","http:\u002F\u002Fstaude.net\u002Fwordpress\u002Fplugins\u002FScheduledJobsDashboardWidget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscheduled-jobs-dashboard-widget.0.5.zip",{"slug":104,"name":105,"version":106,"author":7,"author_profile":8,"description":107,"short_description":108,"active_installs":11,"downloaded":109,"rating":13,"num_ratings":13,"last_updated":110,"tested_up_to":111,"requires_at_least":16,"requires_php":17,"tags":112,"homepage":114,"download_link":115,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"sticky-posts-dashboard-widget","Sticky Posts Dashboard Widget","0.1","\u003Cp>English:\u003C\u002Fp>\n\u003Cp>This plugin implements a new widget to use in the dashboard.\u003Cbr \u002F>\nThe widget shows the sticky posts.\u003C\u002Fp>\n\u003Cp>If they have more translations for this plugin, please send email to frank@staude.net, I will then install.\u003C\u002Fp>\n\u003Cp>Entrys in the changelog with numbers means the ticket id on\u003Cbr \u002F>\nhttp:\u002F\u002Fbugs.staude.net\u003C\u002Fp>\n\u003Cp>Deutsch:\u003C\u002Fp>\n\u003Cp>Dieses Plugin stellt ein Widget für das Dashbord bereit, das die Beiträge anzeigt, die die option “Oben behalten” gesetzt haben.\u003C\u002Fp>\n\u003Cp>Wenn sie weitere Übersetzungen für dieses Plugin haben, bitte per E-Mail an frank@staude.net schicken, ich werde sie dann einbauen.\u003C\u002Fp>\n\u003Cp>Einträge im changelog mit Zahlen verweisen auf die Ticket ID auf http:\u002F\u002Fbugs.staude.net\u003C\u002Fp>\n","The dashboard widget shows the sticky posts",1513,"2014-10-29T09:23:00.000Z","4.5.33",[19,20,113,22],"sticky","http:\u002F\u002Fstaude.net\u002Fwordpress\u002Fplugins\u002FStickyPostDashboardWidget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsticky-posts-dashboard-widget.0.1.zip",{"attackSurface":117,"codeSignals":136,"taintFlows":150,"riskAssessment":151,"analyzedAt":162},{"hooks":118,"ajaxHandlers":132,"restRoutes":133,"shortcodes":134,"cronEvents":135,"entryPointCount":13,"unprotectedCount":13},[119,125,129],{"type":120,"name":121,"callback":122,"file":123,"line":124},"action","wp_dashboard_setup","registerWidget","class-scheduled-posts-dashboard-widget.php",26,{"type":120,"name":126,"callback":127,"file":123,"line":128},"plugins_loaded","load_translations",27,{"type":120,"name":130,"callback":130,"file":123,"line":131},"dashboard_glance_items",31,[],[],[],[],{"dangerousFunctions":137,"sqlUsage":138,"outputEscaping":140,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":149},[],{"prepared":13,"raw":13,"locations":139},[],{"escaped":141,"rawEcho":142,"locations":143},1,2,[144,147],{"file":123,"line":145,"context":146},72,"raw output",{"file":123,"line":148,"context":146},129,[],[],{"summary":152,"deductions":153},"The \"scheduled-posts-dashboad-widget\" plugin v0.3 exhibits a generally positive security posture based on the provided static analysis.  The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events suggests a very limited attack surface. Furthermore, the plugin avoids dangerous functions, file operations, and external HTTP requests, which are common vectors for vulnerabilities.  The fact that all observed SQL queries utilize prepared statements is a strong indicator of good database security practices.\n\nHowever, there are notable areas for concern. The plugin has a concerningly low percentage (33%) of properly escaped outputs. This means that approximately two-thirds of the plugin's outputs are not being properly sanitized, leaving it vulnerable to Cross-Site Scripting (XSS) attacks where user-supplied data could be injected into the page.  The lack of any identified capability checks or nonce checks, even though the attack surface is currently minimal, means that if new entry points are introduced in the future, they might be unprotected. The vulnerability history is clean, but this can also indicate a lack of prior scrutiny or testing, rather than guaranteed ongoing security.\n\nIn conclusion, while the plugin currently has no known vulnerabilities and a minimal attack surface, the high percentage of unescaped output represents a significant and immediate risk. The absence of capability and nonce checks also introduces potential future risks if the plugin's functionality expands. Addressing the output escaping issue should be the highest priority.",[154,157,160],{"reason":155,"points":156},"Significant portion of outputs not properly escaped",8,{"reason":158,"points":159},"No capability checks present",5,{"reason":161,"points":159},"No nonce checks present","2026-03-17T01:44:01.592Z",{"wat":164,"direct":177},{"assetPaths":165,"generatorPatterns":170,"scriptPaths":171,"versionParams":172},[166,167,168,169],"\u002Fwp-content\u002Fplugins\u002Fscheduled-posts-dashboard-widget\u002Fcss\u002Fjquery.tablesorter.pager.css","\u002Fwp-content\u002Fplugins\u002Fscheduled-posts-dashboard-widget\u002Fcss\u002Fscheduled-posts.css","\u002Fwp-content\u002Fplugins\u002Fscheduled-posts-dashboard-widget\u002Fjs\u002Fjquery.tablesorter.min.js","\u002Fwp-content\u002Fplugins\u002Fscheduled-posts-dashboard-widget\u002Fjs\u002Fjquery.tablesorter.pager.js",[],[168,169],[173,174,175,176],"scheduled-posts-dashboard-widget\u002Fcss\u002Fjquery.tablesorter.pager.css?ver=","scheduled-posts-dashboard-widget\u002Fcss\u002Fscheduled-posts.css?ver=","scheduled-posts-dashboard-widget\u002Fjs\u002Fjquery.tablesorter.min.js?ver=","scheduled-posts-dashboard-widget\u002Fjs\u002Fjquery.tablesorter.pager.js?ver=",{"cssClasses":178,"htmlComments":181,"htmlAttributes":182,"restEndpoints":184,"jsGlobals":185,"shortcodeOutput":187},[179,180],"scheduledposts","scheduledpost",[],[183],"data-code",[],[186],"jQuery",[]]