[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fPl-NB6eeD-VAei65_-LhJI0W07Y6Df2JUh7kRNPlggI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":131,"fingerprints":193},"server-monitor","Server Monitor","0.2.1","vendocrat","https:\u002F\u002Fprofiles.wordpress.org\u002Fvendocrat\u002F","\u003Cp>Our Server Monitor plugin adds thre simple widgets to your WordPress Dashboard displaying general info about your server, PHP, your database and your WordPress installation.\u003C\u002Fp>\n\u003Cp>We’ve kept the plugin as simple as possible and therefore made no settings available. But, as not all of you may need all of the information made available via this handy plugin, we’ve splitted it into three widgets. And as you know, you can simply hide them from the Options tab in your WordPress dashboard! Just click “Options” on the top right corner of your browser window and untick the widgets you don’t need.\u003C\u002Fp>\n\u003Cp>Oh, and for the speed junkies (like us), all data will be stored and served via a transient. This way the plugin will have no impact on your dashboard loading time!\u003C\u002Fp>\n\u003Cp>Widget #1: \u003Cstrong>General\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Host Name\u003C\u002Fli>\n\u003Cli>Server IP\u003C\u002Fli>\n\u003Cli>Server Path\u003C\u002Fli>\n\u003Cli>Server Load\u003C\u002Fli>\n\u003Cli>Uptime\u003C\u002Fli>\n\u003Cli>Server Info (Software)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Widget #2: \u003Cstrong>PHP & Database\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PHP Version\u003C\u002Fli>\n\u003Cli>PHP Post Max Size\u003C\u002Fli>\n\u003Cli>PHP Time Limit\u003C\u002Fli>\n\u003Cli>PHP Max Input Vars\u003C\u002Fli>\n\u003Cli>MySQL Version\u003C\u002Fli>\n\u003Cli>Database Size\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Widget #3: \u003Cstrong>System Status\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WordPress Version\u003C\u002Fli>\n\u003Cli>Multisite?\u003C\u002Fli>\n\u003Cli>Active Plugins\u003C\u002Fli>\n\u003Cli>Memory Limit\u003C\u002Fli>\n\u003Cli>Max Upload Size\u003C\u002Fli>\n\u003Cli>Debug Mode\u003C\u002Fli>\n\u003Cli>Language\u003C\u002Fli>\n\u003Cli>Timezone\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Contributions\u003C\u002Fh4>\n\u003Cp>Contributions are warmly welcome via \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fvendocrat\u002FWordPress-Server-Monitor\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Translations included:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Italian\u003C\u002Fli>\n\u003Cli>Greek (thanks to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Fsamourkasidis\" rel=\"ugc\">Anestis Samourkasidis\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All our plugins are fully localized\u002Ftranslateable by default and include a .pot-file! Please contact us via \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fvendocrat\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa> or hit us on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fvendocrat\u002FWordPress-Server-Monitor\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>, if you have a translation you want to contribute!\u003C\u002Fp>\n\u003Ch4>We’d love to hear from you!\u003C\u002Fh4>\n\u003Cp>Follow us on \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fvendocrat\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>, like us on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fvendocrat\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>, circle us on \u003Ca href=\"https:\u002F\u002Fplus.google.com\u002F+vendocrat\" rel=\"nofollow ugc\">Google+\u003C\u002Fa> or fork us on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fvendocrat\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>!\u003C\u002Fp>\n","Adds three simple widgets to your WordPress Dashboard displaying fundamental info about your server and installation.",100,6222,5,"2014-12-20T21:12:00.000Z","4.1.42","3.5","",[19,20,21,4,22],"administration","monitoring","server","server-monitoring","http:\u002F\u002Fvendocr.at\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fserver-monitor.0.2.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-04T11:26:17.822Z",[36,56,73,93,111],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":11,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":17,"tags":50,"homepage":54,"download_link":55,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"go-newrelic","Gigaom New Relic","0.3","Casey Bisson","https:\u002F\u002Fprofiles.wordpress.org\u002Fmisterbisson\u002F","\u003Cp>Supports both \u003Ca href=\"http:\u002F\u002Fnewrelic.com\" rel=\"nofollow ugc\">New Relic\u003C\u002Fa> APM and Browser monitoring to give a clear picture of how your site performs both on the server and in the browser.\u003C\u002Fp>\n\u003Ch4>Application Performance Monitoring (APM)\u003C\u002Fh4>\n\u003Cp>Automatically detects if the \u003Ca href=\"https:\u002F\u002Fdocs.newrelic.com\u002Fdocs\u002Fagents\u002Fphp-agent\u002Fgetting-started\u002Fnew-relic-php\" rel=\"nofollow ugc\">APM extensions\u003C\u002Fa> are installed on the server. If so, the plugin will start reporting into the New Relic account associated with the \u003Ca href=\"https:\u002F\u002Fdocs.newrelic.com\u002Fdocs\u002Fagents\u002Fphp-agent\u002Fgetting-started\u002Fnew-relic-php#license_key\" rel=\"nofollow ugc\">license key used when installing the extension\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>There’s no UI, but the plugin automatically sets the app name and other configuration values ideally for each request. The app name is based on the blog’s name. User-facing and dashboard activity are reported as separate apps so you can set different QoS and alert settings for each. Even  cron and admin-ajax activity are separated out for individual tracking.\u003C\u002Fp>\n\u003Cp>Each blog in a multi-site installation is tracked separately, using the name of the blog as the app name.\u003C\u002Fp>\n\u003Ch4>Browser monitoring (RUM)\u003C\u002Fh4>\n\u003Cp>Real user monitoring (browser monitoring) is automatically enabled if the APM extension is active, but in situations where the APM extension can’t be used, the plugin can still be used to track browser performance.\u003C\u002Fp>\n\u003Cp>This mode requires some configuration:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Get \u003Ca href=\"https:\u002F\u002Fdocs.newrelic.com\u002Fdocs\u002Fbrowser\u002Fnew-relic-browser\u002Finstallation-configuration\u002Fadding-apps-new-relic-browser#copy-paste-app\" rel=\"nofollow ugc\">the tracking JavaScript from New Relic\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Go to your WordPress dashboard -> Settings -> New Relic Settings and paste in the JavaScript\u003C\u002Fli>\n\u003Cli>Go to the New Relic dashboard to see your site reporting performance data!\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>The plugin extracts the configuration details from the JS and inserts them with a clean copy of the JS on each page (this cannot be used to inject arbitrary JS into the page).\u003C\u002Fp>\n\u003Cp>Due to limitations of the Browser monitoring service\u002FAPI, Browser-only monitoring does not include all the data or separate reporting of activity in separate apps as APM does.\u003C\u002Fp>\n\u003Ch4>In the WordPress.org plugin repo\u003C\u002Fh4>\n\u003Cp>Here: https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgo-newrelic\u002F\u003C\u002Fp>\n\u003Ch4>Fork me!\u003C\u002Fh4>\n\u003Cp>This plugin is on Github: https:\u002F\u002Fgithub.com\u002FgigaOM\u002Fgo-newrelic\u003C\u002Fp>\n","Configures New Relic to better track performance, errors, and uptime of WordPress sites, including multisite",50,12171,4,"2014-11-04T14:34:00.000Z","4.0.38","3.5.1",[20,51,52,22,53],"newrelic","performance-monitoring","telemetry","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgo-newrelic\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgo-newrelic.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":32,"downloaded":64,"rating":26,"num_ratings":26,"last_updated":65,"tested_up_to":66,"requires_at_least":17,"requires_php":67,"tags":68,"homepage":17,"download_link":72,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"server-info-wp","Server Info WP","2.1","Tyler","https:\u002F\u002Fprofiles.wordpress.org\u002Ftylerthedude\u002F","\u003Cp>Take the hassle out of server administration with Server Info WP. This simple plugin will add three dashboard widgets to easily allow you to monitor your server. These widgets will display important information about your server such as CPU usage, PHP memory usage, and other necessities needed for properly running your server.\u003C\u002Fp>\n","Easily monitor your server by watching your server usage and resources with three widgets.",2468,"2020-04-17T01:00:00.000Z","5.4.19","5.3",[69,70,4,22,71],"server-info","server-information","server-usage","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fserver-info-wp.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":11,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":17,"download_link":92,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"my-website-is-online-uptime-monitoring","Uptime Monitoring for WordPress – My Website is Online","1.0.1","santerref","https:\u002F\u002Fprofiles.wordpress.org\u002Fsanterref\u002F","\u003Cp>This plugin simplifies how you can add for you by giving you a configuration page to put the code.\u003C\u002Fp>\n\u003Cp>Once installed, a new REST API route will be created to output the code: wp-json\u002Fmywebsiteisonline\u002Fv1\u002Fverify\u003C\u002Fp>\n\u003Cp>Trusted by developers from all around the world.\u003C\u002Fp>\n\u003Ch4>My Website is Online features\u003C\u002Fh4>\n\u003Cp>Receive a notification as soon as a problem is detected on your website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>1-minute checks\u003C\u002Fli>\n\u003Cli>Unlimited monitors\u003C\u002Fli>\n\u003Cli>SMS alerts\u003C\u002Fli>\n\u003Cli>Unlimited email alerts\u003C\u002Fli>\n\u003Cli>HTTP headers and status\u003C\u002Fli>\n\u003Cli>Response time monitoring (TTFB)\u003C\u002Fli>\n\u003Cli>SSL certificate checks\u003C\u002Fli>\n\u003Cli>Multi-factor authentication\u003C\u002Fli>\n\u003Cli>12 months log retention\u003C\u002Fli>\n\u003Cli>Multiple email recipients\u003C\u002Fli>\n\u003Cli>Domain expiration monitoring\u003C\u002Fli>\n\u003Cli>Google Web Risk\u003C\u002Fli>\n\u003Cli>DNS records monitoring\u003C\u002Fli>\n\u003Cli>Slack integration\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>To learn more about My Website is Online visit: \u003Ca href=\"https:\u002F\u002Fmywebsiteisonline.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fmywebsiteisonline.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n","My Website is Online is a Web service that monitors your website every minute to check if it's down. Don’t let downtimes impact your business.",600,7371,2,"2023-07-27T03:53:00.000Z","6.0.11","5.0","7.0",[20,21,89,90,91],"sms","speed","uptime","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-website-is-online-uptime-monitoring.1.0.1.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":11,"downloaded":101,"rating":102,"num_ratings":46,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":17,"tags":106,"homepage":17,"download_link":110,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"ressources","Ressources","1.0.3","NOUS Open Usefull & Simple","https:\u002F\u002Fprofiles.wordpress.org\u002Fagencenous\u002F","\u003Cp>Not tested on non linux hosted sites !\u003C\u002Fp>\n\u003Cp>WordPress monitoring, displays for the super admin, the server ressources on the (network) dashboard\u003C\u002Fp>\n\u003Cul>\n\u003Cli>hostname and distro\u003C\u002Fli>\n\u003Cli>size of the wp-content directory\u003C\u002Fli>\n\u003Cli>available memory\u003C\u002Fli>\n\u003Cli>space used on linux partitions\u003C\u002Fli>\n\u003Cli>process running on the servers\u003C\u002Fli>\n\u003C\u002Ful>\n","Monitoring the server resources with dashboard widgets",5653,80,"2025-12-04T13:03:00.000Z","6.9.4","4.6",[107,108,20,109,21],"load-average","memory","performances","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fressources.1.0.3.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":32,"downloaded":119,"rating":120,"num_ratings":46,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":17,"tags":124,"homepage":129,"download_link":130,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"hosting-monitor","Hosting Monitor","0.7.5","Mike Bijon","https:\u002F\u002Fprofiles.wordpress.org\u002Fmbijon\u002F","\u003Cp>Hosting Monitor is an easy, visual way to track how much disk and database storage your WordPress site uses. Let users upload-away and keep an eye on storage without logging in to your hosting control panel or SSH.\u003C\u002Fp>\n\u003Ch4>Compatibility Notes\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Works on both shared hosting plans and dedicated servers\u003C\u002Fli>\n\u003Cli>Supports all Linux web servers and Apache on Windows. Windows IIS not currently supported\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Coming Soon\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Email alerts so you don’t need to check constantly\u003C\u002Fli>\n\u003Cli>Windows IIS support\u003C\u002Fli>\n\u003Cli>Bandwidth tracking\u003C\u002Fli>\n\u003C\u002Ful>\n","Track how much disk and database space WordPress is using.",9347,86,"2014-04-24T06:53:00.000Z","3.9.40","3.0",[125,4,126,127,128],"disk-space","shared-hosting","visual-tracking","web-space","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fhosting-monitor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhosting-monitor.zip",{"attackSurface":132,"codeSignals":152,"taintFlows":178,"riskAssessment":179,"analyzedAt":192},{"hooks":133,"ajaxHandlers":148,"restRoutes":149,"shortcodes":150,"cronEvents":151,"entryPointCount":26,"unprotectedCount":26},[134,140,144],{"type":135,"name":136,"callback":137,"file":138,"line":139},"action","plugins_loaded","load_plugin_textdomain","classes\\class-server-monitor.php",58,{"type":135,"name":141,"callback":142,"file":138,"line":143},"wp_dashboard_setup","add_dashboard_widgets",61,{"type":135,"name":145,"callback":146,"file":138,"line":147},"admin_head","custom_styles",64,[],[],[],[],{"dangerousFunctions":153,"sqlUsage":161,"outputEscaping":164,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":177},[154,158],{"fn":155,"file":138,"line":156,"context":157},"exec",223,"$uptime = exec('uptime');",{"fn":155,"file":138,"line":159,"context":160},332,"$data['name']    = trim(exec('hostname'));",{"prepared":162,"raw":26,"locations":163},21,[],{"escaped":83,"rawEcho":13,"locations":165},[166,169,171,173,175],{"file":138,"line":167,"context":168},182,"raw output",{"file":138,"line":170,"context":168},206,{"file":138,"line":172,"context":168},255,{"file":138,"line":174,"context":168},283,{"file":138,"line":176,"context":168},311,[],[],{"summary":180,"deductions":181},"The 'server-monitor' v0.2.1 plugin exhibits a mixed security posture.  On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and having no recorded vulnerabilities (CVEs) or detected taint flows. This suggests a generally careful development approach and a lack of publicly known exploitable flaws. The absence of shortcodes, cron events, and exposed AJAX\u002FREST API endpoints also limits the overall attack surface. \n\nHowever, significant concerns arise from the static analysis. The presence of the 'exec' function, a notoriously dangerous function, without any apparent safeguards like nonce checks or capability checks is a major red flag. Furthermore, only 29% of output is properly escaped, indicating a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. The complete lack of nonce and capability checks across all entry points, combined with the use of 'exec', creates a scenario where an attacker could potentially execute arbitrary commands on the server if they can trigger the code containing 'exec'.\n\nWhile the plugin has a clean vulnerability history and utilizes prepared statements, the identified issues with 'exec' and output escaping present immediate and critical security risks. The lack of protective measures around these risky code constructs outweighs the positive aspects. A balanced conclusion is that while the plugin has avoided known vulnerabilities and implements secure data handling for SQL, its failure to properly secure critical functions like 'exec' and sanitize output leaves it highly susceptible to exploitation.",[182,185,188,190],{"reason":183,"points":184},"Dangerous function 'exec' without auth checks",18,{"reason":186,"points":187},"Low output escaping (29% proper)",7,{"reason":189,"points":13},"Missing nonce checks",{"reason":191,"points":13},"Missing capability checks","2026-03-16T20:47:41.234Z",{"wat":194,"direct":199},{"assetPaths":195,"generatorPatterns":196,"scriptPaths":197,"versionParams":198},[],[],[],[],{"cssClasses":200,"htmlComments":201,"htmlAttributes":203,"restEndpoints":204,"jsGlobals":205,"shortcodeOutput":206},[],[202],"E fatto!",[],[],[],[]]