[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fVK_svMhulwIHGuO6meKbmA_dMOF3BZa7VZEdTS-VNPY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":35,"fingerprints":174},"simple-post-counter-display","Display Simple Post View Count","1.0.0","AIS Technolabs","https:\u002F\u002Fprofiles.wordpress.org\u002Fais262technolabs\u002F","\u003Cp>Display Simple Post View Count allows you to display how many times a post, page or custom post type had been viewed with this simple, fast and easy to use plugin.\u003C\u002Fp>\n\u003Cp>In count display to configure settings, navigate to \u003Cstrong>[ WordPress Admin -> Settings -> SPCD Options ]\u003C\u002Fstrong>, where you can see three options:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Add css for counter display\u003C\u002Fli>\n\u003Cli>Add display text with count text\u003C\u002Fli>\n\u003Cli>Post views display position\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>You will get an option to select post types for which post views will be counted and displayed.\u003C\u002Fli>\n\u003Cli>Used different methods of collecting post views data: PHP, Javascript, Fast AJAX and REST API for greater flexibility\u003C\u002Fli>\n\u003Cli>Capability to query posts according to its views count\u003C\u002Fli>\n\u003Cli>Count display shortcode\u003C\u002Fli>\n\u003Cli>Dashboard post views stats widget\u003C\u002Fli>\n\u003Cli>Option to select post types for which post views will be counted and displayed.\u003C\u002Fli>\n\u003Cli>Post views display position, automatic or manual via shortcode\u003C\u002Fli>\n\u003Cli>W3 Cache\u002FWP SuperCache compatible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Example Display shortcode:\u003C\u002Fh4>\n\u003Cpre>[spcd_display]\u003C\u002Fpre>\n\u003Ch4>NOTE\u003C\u002Fh4>\n\u003Cp>We have this plugin compatible gutenberg.\u003C\u002Fp>\n","Simple Post Counter Display plugin will display post count.",10,956,0,"2020-04-30T05:50:00.000Z","5.4.19","5.4","",[19,20,21,4],"custom-post-count-display","display-view-count-of-post","posts-view-count","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-post-counter-display\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-post-counter-display.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"ais262technolabs",1,30,84,"2026-04-04T15:21:40.199Z",[],{"attackSurface":36,"codeSignals":88,"taintFlows":129,"riskAssessment":157,"analyzedAt":173},{"hooks":37,"ajaxHandlers":76,"restRoutes":81,"shortcodes":82,"cronEvents":86,"entryPointCount":87,"unprotectedCount":30},[38,44,49,53,56,60,63,67,71],{"type":39,"name":40,"callback":41,"file":42,"line":43},"action","admin_enqueue_scripts","spcd_ev_load_custom_wp_admin_style","simple-post-counter-display.php",28,{"type":39,"name":45,"callback":46,"file":47,"line":48},"wp_head","spcd_update_count","spcd-function.php",3,{"type":39,"name":50,"callback":51,"file":47,"line":52},"admin_menu","spcd_register_submenu_page",64,{"type":39,"name":45,"callback":54,"file":47,"line":55},"spcd_frontheader_css",230,{"type":39,"name":57,"callback":58,"file":47,"line":59},"admin_notices","spcd_admin_notice__success",250,{"type":39,"name":57,"callback":61,"file":47,"line":62},"spcd_my_error_notice",269,{"type":39,"name":64,"callback":65,"file":47,"line":66},"activated_plugin","spcd_add_option_default_value",287,{"type":39,"name":68,"callback":69,"file":47,"line":70},"widgets_init","spcd_load_widget",296,{"type":72,"name":73,"callback":74,"file":47,"line":75},"filter","the_content","spcd_output_shortcode_position",384,[77],{"action":78,"nopriv":79,"callback":78,"hasNonce":79,"hasCapCheck":79,"file":47,"line":80},"spcd_save_option",false,194,[],[83],{"tag":84,"callback":84,"file":47,"line":85},"spcd_display",60,[],2,{"dangerousFunctions":89,"sqlUsage":90,"outputEscaping":92,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":128},[],{"prepared":13,"raw":13,"locations":91},[],{"escaped":93,"rawEcho":94,"locations":95},8,17,[96,99,101,103,104,106,108,110,112,114,116,118,120,122,123,125,127],{"file":47,"line":97,"context":98},94,"raw output",{"file":47,"line":100,"context":98},98,{"file":47,"line":102,"context":98},146,{"file":47,"line":102,"context":98},{"file":47,"line":105,"context":98},171,{"file":47,"line":107,"context":98},226,{"file":47,"line":109,"context":98},322,{"file":47,"line":111,"context":98},324,{"file":47,"line":113,"context":98},327,{"file":47,"line":115,"context":98},328,{"file":47,"line":117,"context":98},329,{"file":47,"line":119,"context":98},345,{"file":47,"line":121,"context":98},346,{"file":47,"line":121,"context":98},{"file":47,"line":124,"context":98},349,{"file":47,"line":126,"context":98},350,{"file":47,"line":126,"context":98},[],[130,149],{"entryPoint":131,"graph":132,"unsanitizedCount":147,"severity":148},"spcd_save_option (spcd-function.php:195)",{"nodes":133,"edges":145},[134,139],{"id":135,"type":136,"label":137,"file":47,"line":138},"n0","source","$_POST (x4)",201,{"id":140,"type":141,"label":142,"file":47,"line":143,"wp_function":144},"n1","sink","update_option() [Settings Manipulation]",202,"update_option",[146],{"from":135,"to":140,"sanitized":79},4,"low",{"entryPoint":150,"graph":151,"unsanitizedCount":147,"severity":148},"\u003Cspcd-function> (spcd-function.php:0)",{"nodes":152,"edges":155},[153,154],{"id":135,"type":136,"label":137,"file":47,"line":138},{"id":140,"type":141,"label":142,"file":47,"line":143,"wp_function":144},[156],{"from":135,"to":140,"sanitized":79},{"summary":158,"deductions":159},"The 'simple-post-counter-display' plugin v1.0.0 exhibits a mixed security posture. While it avoids dangerous functions, raw SQL, and external HTTP requests, significant concerns arise from its attack surface and output sanitization. The presence of one unprotected AJAX handler represents a clear entry point for potential attacks, especially when combined with a low rate of proper output escaping. Taint analysis, although limited, did reveal flows with unsanitized paths, which, coupled with the lack of proper input validation suggested by the unprotected AJAX handler and zero capability checks, could be leveraged to inject malicious data if specific conditions are met.\n\nThe plugin's vulnerability history is notably clean, with no recorded CVEs. This absence of past vulnerabilities is a positive indicator, suggesting either careful development or limited exposure. However, the static analysis findings, particularly the unprotected AJAX handler and poor output escaping, represent inherent weaknesses that could be exploited regardless of past vulnerability history. The plugin has strengths in its avoidance of common risky practices like raw SQL queries, but the identified attack surface and sanitization issues are significant enough to warrant caution.",[160,163,166,169,171],{"reason":161,"points":162},"Unprotected AJAX handler",7,{"reason":164,"points":165},"Low output escaping rate",6,{"reason":167,"points":168},"Unsanitized paths in taint flows",5,{"reason":170,"points":168},"No capability checks",{"reason":172,"points":168},"No nonce checks on AJAX","2026-03-17T00:42:36.802Z",{"wat":175,"direct":182},{"assetPaths":176,"generatorPatterns":178,"scriptPaths":179,"versionParams":180},[177],"\u002Fwp-content\u002Fplugins\u002Fsimple-post-counter-display\u002Fcss\u002Fstyle.css",[],[],[181],"simple-post-counter-display\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":183,"htmlComments":189,"htmlAttributes":190,"restEndpoints":193,"jsGlobals":195,"shortcodeOutput":201},[184,185,186,187,188],"spcd_count_dis","cls_","can_you_dvc","position_show_hide","position_pvd",[],[191,192],"data-form_submit","data-action",[194],"\u002Fwp-json\u002Fadmin-ajax.php",[196,197,198,199,200],"spcd_frontend_css","spcd_count_text","spcd_can_you_dvc","spcd_position_pvd","spcd_post_type",[202,203,204],"\u003Cdiv class=\"cls_"," spcd_count_dis\">","\u003Cspan>"]