[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fSuylyFIrfwQzUBqA6a2o0q0cWbhYtDLXMRUupqNTi9I":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":140,"fingerprints":217},"sortable-sticky-posts","Sortable Sticky Posts","1.0","Aaron Brazell","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechnosailor\u002F","\u003Cp>Adds a new admin settings section to the Settings > Reading table. Drag and drop Sticky Posts in the order you want them considered by WordPress. (Note: You still have to set posts as sticky on the post edit screen for sticky posts to show up)\u003C\u002Fp>\n","Adds drag and drop Sticky Post sorting to the Settings > Reading Page. WordPress likes to store Stickies in order they were stickied.",30,2523,60,2,"2013-05-01T02:31:00.000Z","3.6.1","3.5.1","",[20,21,22],"posts","stickies","sticky","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsortable-sticky-posts.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":13,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"technosailor",4,89,4008,71,"2026-04-04T15:19:28.083Z",[37,63,80,103,123],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":25,"last_vuln_date":62,"fetched_at":27},"ultimate-posts-widget","Ultimate Posts Widget","2.3.2","cl272","https:\u002F\u002Fprofiles.wordpress.org\u002Fcl272\u002F","\u003Cp>\u003Cstrong>Try it out on your free dummy site: Click here => \u003Ca href=\"https:\u002F\u002Fdemo.tastewp.com\u002Fultimate-posts-widget\" rel=\"nofollow ugc\">https:\u002F\u002Ftastewp.com\u002Fplugins\u002Fultimate-posts-widget\u003C\u002Fa>.\u003C\u002Fstrong>\u003Cbr \u002F>\n(this trick works for all plugins in the WP repo – just replace “wordpress” with “tastewp” in the URL)\u003C\u002Fp>\n\u003Cp>UPDATE: Plugin ownership changed for this plugin. We are currently evaluating possible enhancements for it. Stay tuned! If you have any suggestions yourself, please let us know in the Support Forum.\u003C\u002Fp>\n\u003Cp>Note: This is a \u003Cstrong>classic widget\u003C\u002Fstrong> type, in order for it to work on the latest version of WordPress you will need \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-widgets\u002F\" rel=\"ugc\">Classic Widgets\u003C\u002Fa> plugin installed on your site.\u003C\u002Fp>\n\u003Cp>The ultimate widget for displaying posts, custom post types or sticky posts with an array of options to customize the display.\u003C\u002Fp>\n\u003Cp>Designed for both the average user and developer, Ultimate Posts Widgets aims to provide flexibility and ease of use for displaying any kinds of posts within your widget areas. An array of widget options are available as well as hooks, filters and custom templates for more advanced customization.\u003C\u002Fp>\n\u003Ch4>Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Filter by categories\u003C\u002Fli>\n\u003Cli>Filter by current category\u003C\u002Fli>\n\u003Cli>Filter by tags\u003C\u002Fli>\n\u003Cli>Filter by current tag\u003C\u002Fli>\n\u003Cli>Filter by custom post types\u003C\u002Fli>\n\u003Cli>Filter by sticky posts\u003C\u002Fli>\n\u003Cli>Select number of posts to display\u003C\u002Fli>\n\u003Cli>Display title\u003C\u002Fli>\n\u003Cli>Display publish date\u002Ftime with custom format options\u003C\u002Fli>\n\u003Cli>Display post author and link\u003C\u002Fli>\n\u003Cli>Display post comment count\u003C\u002Fli>\n\u003Cli>Display excerpt or full content\u003C\u002Fli>\n\u003Cli>Display read more link with custom label\u003C\u002Fli>\n\u003Cli>Display featured image and at any size\u003C\u002Fli>\n\u003Cli>Display post categories\u003C\u002Fli>\n\u003Cli>Display post tags\u003C\u002Fli>\n\u003Cli>Display custom fields\u003C\u002Fli>\n\u003Cli>Add text or HTML before and after posts list\u003C\u002Fli>\n\u003Cli>Add CSS class to widget\u003C\u002Fli>\n\u003Cli>Add widget title link\u003C\u002Fli>\n\u003Cli>Change excerpt length (in words)\u003C\u002Fli>\n\u003Cli>Order by date, title, number of comments, random or a custom field\u003C\u002Fli>\n\u003Cli>Exclude current post from the list\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-posts-widget\u002Ffaq\u002F\" rel=\"ugc\">FAQ tab\u003C\u002Fa> for documentation on custom templates, hooks, common issues, and more.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>For help please ask in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fultimate-posts-widget\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Enjoy this plugin? \u003Ca href=\"https:\u002F\u002Fsellcodes.com\u002F5U4SICyc\" rel=\"nofollow ugc\">Send a tip to support development\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin is part of the Inisev product family – \u003Ca href=\"https:\u002F\u002Finisev.com\" rel=\"nofollow ugc\">check out our other products\u003C\u002Fa>.\u003C\u002Fp>\n","The ultimate widget for displaying posts, custom post types or sticky posts with an array of options.",10000,492332,90,55,"2024-07-17T01:21:00.000Z","6.6.5","3.5",[53,54,55,56,57],"custom-post-types","featured-image","recent-posts","sticky-posts","widget","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-posts-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-posts-widget.2.3.2.zip",92,1,"2024-02-13 00:00:00",{"slug":64,"name":65,"version":6,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":14,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":18,"tags":76,"homepage":18,"download_link":79,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"expire-sticky-posts","Expire Sticky Posts","Andy von Dohren","https:\u002F\u002Fprofiles.wordpress.org\u002Favondohren\u002F","\u003Cp>A simple plugin that allows you to set an expiration date on posts. Once a post is expired, it will no longer be sticky.\u003C\u002Fp>\n\u003Cp>Have you found a bug or have a suggestion or improvement you’d like to submit? This plugin is available on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Favondohren\u002FExpire-Sticky-Posts\" rel=\"nofollow ugc\">Github\u003C\u002Fa> and pull requests are welcome!\u003C\u002Fp>\n","A simple plugin that allows you to set an expiration date on posts. Once a post is expired, it will no longer be sticky.",1000,14012,100,"2014-12-20T00:00:00.000Z","4.0.38","3.6",[77,78,20,22],"expiration","expire","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexpire-sticky-posts.1.0.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":72,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":18,"tags":94,"homepage":100,"download_link":101,"security_score":24,"vuln_count":61,"unpatched_count":25,"last_vuln_date":102,"fetched_at":27},"swifty-bar","Swifty Bar, sticky bar by WPGens","1.2.11","Goran87","https:\u002F\u002Fprofiles.wordpress.org\u002Fgoran87\u002F","\u003Cp>\u003Cstrong>Boost your user engagement!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>As featured on \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fplugins\u002Fhow-to-boost-user-engagement-with-swifty-bar-for-wordpress\u002F\" rel=\"nofollow ugc\">wpbegginer\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Fresources\u002F10-awesome-new-and-free-plugins-released-on-wordpress-org-in-2015\" rel=\"nofollow ugc\">elegantthemes\u003C\u002Fa> as top10 plugins of 2015, and on product hunt as product of the day.\u003C\u002Fp>\n\u003Cp>Swifty bar will adds sticky bar at the bottom of post that shows category, post title, author, time needed to read article, share buttons together with share count, and previous\u002Fnext post links. This plugin can easily replace your social share buttons while giving readers better experience with much more options. Its fast, coded with best practice, super light and will not slow down your site.\u003C\u002Fp>\n\u003Cp>Check out demo \u003Ca href=\"http:\u002F\u002Fitsgoran.com\u002Fwp\u002Fteaching-civil-rights-without-a-textbook\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Major features in Swifty Bar include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shows current post category, post title and authors first and last name.\u003C\u002Fli>\n\u003Cli>Shows estimated time that is needed for visitor to read your article.\u003C\u002Fli>\n\u003Cli>Share buttons for most popular social networks (new ones comming soon).\u003C\u002Fli>\n\u003Cli>Number of Comments and click to scroll to comment form.\u003C\u002Fli>\n\u003Cli>Previous\u002FNext Post Links with nice preview on hover.\u003C\u002Fli>\n\u003Cli>Super light, clean code that will not slow down your site.\u003C\u002Fli>\n\u003Cli>Admin Panel to customize each module.\u003C\u002Fli>\n\u003Cli>Supports custom post types.\u003C\u002Fli>\n\u003Cli>Multiple colors and two type of icons\u003C\u002Fli>\n\u003Cli>Share counter\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Share Count in 1.2!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>We introduced share count in latest version of swifty bar. We are saving share counts inside WP Transients to keep things fast and fetching new shares once user clicks on any of the share icons, if no clicks have been made, share will refresh once daily, that way site is doing minimal requests to the share APIs which boosts its speed by ALOT.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Check out my other plugins on \u003Ca href=\"http:\u002F\u002Fwpgens.com\" rel=\"nofollow ugc\">wpgens.com\u003C\u002Fa> and subscribe to get notified once new cool plugins are out – one email per plugin\u002Fmonth\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you have any suggestions\u002Ffeedback to improve Swifty Bar, please get in touch with me via email goranefbl@gmail.com .\u003C\u002Fp>\n","Adds sticky bar at the bottom of post that shows category,post title, author, time needed to read article, share buttons and previous\u002Fnext post links",400,34027,48,"2023-09-10T12:23:00.000Z","6.3.8","3.0",[95,96,97,98,99],"footer-bar","previous-next-posts","share-buttons","sticky-bar","time-to-read","http:\u002F\u002Fwpgens.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fswifty-bar.1.2.11.zip","2023-09-05 00:00:00",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":90,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":18,"tags":117,"homepage":121,"download_link":122,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"content-scheduler","Content Scheduler","2.0.5","Paul Kaiser","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreakingid\u002F","\u003Cp>Content Scheduler lets you control when content automatically expires, what to do with that content when it expires, and optionally provide notification to site contributors when the content expired.\u003C\u002Fp>\n\u003Ch4>Expiration Options\u003C\u002Fh4>\n\u003Cp>You control what happens upon expiration, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change status to Pending, Draft, or Private\u003C\u002Fli>\n\u003Cli>Add custom text to beginning or end of Post title\u003C\u002Fli>\n\u003Cli>Unstick  sticky Posts\u003C\u002Fli>\n\u003Cli>Change Categories\u003C\u002Fli>\n\u003Cli>Add and remove Tags\u003C\u002Fli>\n\u003Cli>Move to the Trash\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Notification Options\u003C\u002Fh4>\n\u003Cp>Content Scheduler can also notify you:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>When expiration occurs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This reminder helps you keep content fresh, providing a reminder that content is out of date and needs updated or replaced. Content Scheduler lets you use notification tools without making any changes to content upon expiration, if you’d like.\u003C\u002Fp>\n","Schedule content to automatically expire and change at a certain time, and notify people of expiration.",200,30319,8,"2014-12-26T16:01:00.000Z","4.1.0","2.9",[78,118,119,120,22],"expire-posts","expiring","scheduling","http:\u002F\u002Fpaulekaiser.com\u002Fwordpress-plugins\u002Fcontent-scheduler\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-scheduler.2.0.5.zip",{"slug":124,"name":125,"version":6,"author":126,"author_profile":127,"description":128,"short_description":69,"active_installs":72,"downloaded":129,"rating":130,"num_ratings":61,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":134,"tags":135,"homepage":138,"download_link":139,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"sticky-posts-expire","Sticky Posts Expire","Mubeen Khan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmubeenkhan\u002F","\u003Cp>A simple plugin that allows you to set an expiration date on posts. Once a post is expired, it will no longer be sticky.\u003C\u002Fp>\n",2314,80,"2022-12-28T12:33:00.000Z","5.8.13","3.3","7.0",[77,20,22,136,137],"sticky-post","sticky-post-expiration","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsticky-posts-expire\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsticky-posts-expire.zip",{"attackSurface":141,"codeSignals":170,"taintFlows":182,"riskAssessment":208,"analyzedAt":216},{"hooks":142,"ajaxHandlers":160,"restRoutes":167,"shortcodes":168,"cronEvents":169,"entryPointCount":61,"unprotectedCount":25},[143,149,153,157],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","admin_init","stickies_options","wp-sortable-stickies.php",19,{"type":144,"name":150,"callback":151,"file":147,"line":152},"admin_enqueue_scripts","admin_enq_js",20,{"type":144,"name":154,"callback":155,"file":147,"line":156},"admin_head","admin_css",21,{"type":144,"name":154,"callback":158,"file":147,"line":159},"admin_js",22,[161],{"action":162,"nopriv":163,"callback":164,"hasNonce":165,"hasCapCheck":163,"file":147,"line":166},"dr-sort-stickies",false,"dr_sort_stickies",true,23,[],[],[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":25,"externalRequests":25,"nonceChecks":61,"capabilityChecks":25,"bundledLibraries":181},[],{"prepared":25,"raw":25,"locations":173},[],{"escaped":25,"rawEcho":14,"locations":175},[176,179],{"file":147,"line":177,"context":178},61,"raw output",{"file":147,"line":180,"context":178},138,[],[183,200],{"entryPoint":184,"graph":185,"unsanitizedCount":25,"severity":199},"dr_sort_stickies (wp-sortable-stickies.php:108)",{"nodes":186,"edges":197},[187,192],{"id":188,"type":189,"label":190,"file":147,"line":191},"n0","source","$_POST['stickies']",111,{"id":193,"type":194,"label":195,"file":147,"line":191,"wp_function":196},"n1","sink","update_option() [Settings Manipulation]","update_option",[198],{"from":188,"to":193,"sanitized":165},"low",{"entryPoint":201,"graph":202,"unsanitizedCount":25,"severity":199},"\u003Cwp-sortable-stickies> (wp-sortable-stickies.php:0)",{"nodes":203,"edges":206},[204,205],{"id":188,"type":189,"label":190,"file":147,"line":191},{"id":193,"type":194,"label":195,"file":147,"line":191,"wp_function":196},[207],{"from":188,"to":193,"sanitized":165},{"summary":209,"deductions":210},"The sortable-sticky-posts plugin version 1.0 presents a generally good security posture with several strengths. The absence of known vulnerabilities (CVEs) and a clean vulnerability history are positive indicators. Furthermore, the code analysis reveals no dangerous functions, external HTTP requests, or file operations, and all SQL queries utilize prepared statements, which are excellent security practices.\n\nHowever, there are notable areas of concern. The plugin has a total of 1 entry point which is an AJAX handler, and it has no capability checks. While a nonce check is present for this handler, the lack of capability checks means that any authenticated user, regardless of their role or permissions, could potentially interact with this AJAX endpoint, leading to unintended actions or information exposure. The most significant weakness identified is the output escaping; none of the identified outputs are properly escaped. This could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is reflected directly in the output without sanitization.\n\nIn conclusion, while the plugin avoids common pitfalls like SQL injection and lacks a history of critical flaws, the absence of capability checks on its sole AJAX endpoint and the complete lack of output escaping are significant weaknesses that require immediate attention. The presence of a nonce check is a partial mitigation, but XSS remains a substantial risk.",[211,213],{"reason":212,"points":113},"AJAX handler without capability checks",{"reason":214,"points":215},"Outputs are not properly escaped",7,"2026-03-16T22:38:23.220Z",{"wat":218,"direct":224},{"assetPaths":219,"generatorPatterns":221,"scriptPaths":222,"versionParams":223},[220],"\u002Fwp-content\u002Fplugins\u002Fsortable-sticky-posts\u002Fsortable-sticky-posts.php",[],[],[],{"cssClasses":225,"htmlComments":228,"htmlAttributes":229,"restEndpoints":231,"jsGlobals":232,"shortcodeOutput":234},[226,227],"dr-sticky-list","dr-sticky-sorter-container",[],[230],"data-postid",[],[233],"ajaxurl",[]]