[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZSDxZsx7PWSG6aYXpmbovVhwZT8Mix12ivo68iOn6eQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":5,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":12,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":18,"download_link":19,"security_score":20,"vuln_count":12,"unpatched_count":12,"last_vuln_date":21,"fetched_at":22,"vulnerabilities":23,"developer":24,"crawl_stats":21,"alternatives":32,"analysis":33,"fingerprints":138},"spirit-liturgicky-kalendar","Spirit Liturgický kalendár","1.4","Matej Podstrelenec","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatejpodstrelenec\u002F","\u003Cp>Spirit Liturgický kalendár\u003C\u002Fp>\n\u003Ch3>SK\u003C\u002Fh3>\n\u003Cp>Liturgický kalendár podľa stránky lc.kbs.sk.\u003Cbr \u002F>\nObsahuje widget a gutenberg block, ktoré zobrazia aktuálny aleluja verš a názov dnešného dňa spolu s odkazom na oficiálnu stránku liturgického kalendára.\u003C\u002Fp>\n\u003Ch3>EN\u003C\u002Fh3>\n\u003Cp>This plugin displays daily readings from Holy Bible.\u003Cbr \u002F>\nIt fetches data from Slovak web site of Catholic church in Slovakia (lc.kbs.sk).\u003Cbr \u002F>\nTherefore it is localized only in Slovak language.\u003C\u002Fp>\n",10,1143,0,"2026-03-05T15:34:00.000Z","6.9.4","3.5","5.2.4",[],"https:\u002F\u002Fthespirit.studio\u002Fthe-spirit-lit-kalendar\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspirit-liturgicky-kalendar.1.4.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":25,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":27,"avg_security_score":28,"avg_patch_time_days":29,"trust_score":30,"computed_at":31},"matejpodstrelenec",5,530,89,30,86,"2026-04-04T12:30:12.268Z",[],{"attackSurface":34,"codeSignals":85,"taintFlows":126,"riskAssessment":127,"analyzedAt":137},{"hooks":35,"ajaxHandlers":79,"restRoutes":80,"shortcodes":81,"cronEvents":82,"entryPointCount":12,"unprotectedCount":12},[36,42,45,49,52,56,60,65,68,72,76],{"type":37,"name":38,"callback":39,"file":40,"line":41},"action","init","tsslk_admin_init","admin\\admin.php",9,{"type":37,"name":43,"callback":44,"file":40,"line":10},"admin_init","tsslk_register_settings",{"type":37,"name":46,"callback":47,"file":40,"line":48},"admin_enqueue_scripts","tsslk_admin_enqueue_styles",11,{"type":37,"name":46,"callback":50,"file":40,"line":51},"tsslk_admin_enqueue_scripts",12,{"type":37,"name":53,"callback":54,"file":40,"line":55},"admin_menu","tsslk_admin_menu",17,{"type":37,"name":57,"callback":57,"file":58,"line":59},"tsslk_fetchLitKalendarData","includes\\lc_kbs_api.php",3,{"type":37,"name":61,"callback":62,"file":63,"line":64},"widgets_init","tsslk_register_lit_kalendar_widget","includes\\widget.php",4,{"type":37,"name":38,"callback":66,"file":67,"line":51},"spirit_lit_kalendar_lk_block_block_init","lk-block\\lk-block.php",{"type":37,"name":69,"callback":70,"priority":10,"file":71,"line":30},"upgrader_process_complete","tsslk_update_completed","spirit-lit-kalendar.php",{"type":37,"name":73,"callback":74,"file":71,"line":75},"wp_enqueue_scripts","tsslk_enqueue_styles",106,{"type":37,"name":73,"callback":77,"file":71,"line":78},"tsslk_load_dynamic_style",109,[],[],[],[83],{"hook":57,"callback":57,"file":71,"line":84},64,{"dangerousFunctions":86,"sqlUsage":87,"outputEscaping":90,"fileOperations":12,"externalRequests":88,"nonceChecks":12,"capabilityChecks":12,"bundledLibraries":125},[],{"prepared":88,"raw":12,"locations":89},1,[],{"escaped":10,"rawEcho":55,"locations":91},[92,95,97,99,100,102,104,106,108,110,113,114,116,117,119,121,123],{"file":40,"line":93,"context":94},123,"raw output",{"file":40,"line":96,"context":94},128,{"file":40,"line":98,"context":94},142,{"file":40,"line":98,"context":94},{"file":40,"line":101,"context":94},152,{"file":40,"line":103,"context":94},157,{"file":40,"line":105,"context":94},164,{"file":40,"line":107,"context":94},169,{"file":40,"line":109,"context":94},174,{"file":111,"line":112,"context":94},"includes\\functions.php",88,{"file":111,"line":112,"context":94},{"file":111,"line":115,"context":94},95,{"file":111,"line":115,"context":94},{"file":111,"line":118,"context":94},108,{"file":111,"line":120,"context":94},110,{"file":111,"line":122,"context":94},115,{"file":111,"line":124,"context":94},122,[],[],{"summary":128,"deductions":129},"The spirit-liturgicky-kalendar plugin v1.4 exhibits a generally positive security posture, with no recorded vulnerabilities or critical code signals indicating immediate threats. The absence of dangerous functions, raw SQL queries, and file operations suggests a cautious approach to sensitive operations. The use of prepared statements for the single SQL query is a strong security practice.  However, the analysis reveals significant areas for improvement.  A concerningly low 37% of outputs are properly escaped, potentially exposing the plugin to cross-site scripting (XSS) vulnerabilities. Furthermore, the complete lack of nonce and capability checks on any entry points, including a cron event, presents a substantial risk. This means that these entry points can be triggered by unauthenticated or unauthorized users, opening the door for various attacks. The plugin's history of no vulnerabilities could indicate either genuine good security or simply a lack of thorough historical auditing and potential for undiscovered issues. While the plugin avoids common pitfalls, the identified weaknesses in output escaping and access control require immediate attention to mitigate potential security risks.",[130,133,135],{"reason":131,"points":132},"Low percentage of properly escaped output",8,{"reason":134,"points":10},"No nonce checks on entry points",{"reason":136,"points":10},"No capability checks on entry points","2026-03-16T23:46:40.223Z",{"wat":139,"direct":150},{"assetPaths":140,"generatorPatterns":144,"scriptPaths":145,"versionParams":146},[141,142,143],"\u002Fwp-content\u002Fplugins\u002Fspirit-liturgicky-kalendar\u002Fcss\u002Fspirit-lit-kalendar.css","\u002Fwp-content\u002Fplugins\u002Fspirit-liturgicky-kalendar\u002Fcss\u002Fspirit-lit-kalendar-admin.css","\u002Fwp-content\u002Fplugins\u002Fspirit-liturgicky-kalendar\u002Fjs\u002Fspirit-lit-kalendar-admin.js",[],[143],[147,148,149],"spirit-lit-kalendar\u002Fcss\u002Fspirit-lit-kalendar.css?ver=","spirit-lit-kalendar\u002Fcss\u002Fspirit-lit-kalendar-admin.css?ver=","spirit-lit-kalendar\u002Fjs\u002Fspirit-lit-kalendar-admin.js?ver=",{"cssClasses":151,"htmlComments":154,"htmlAttributes":161,"restEndpoints":180,"jsGlobals":181,"shortcodeOutput":182},[152,153],"tsslk_button_block","tsslk_custom_css_block",[155,156,157,158,159,160,160,160],"\u003C!-- Show button to lc.kbs.sk -->","\u003C!-- Show icon button to lc.kbs.sk -->","\u003C!-- Custom CSS -->","\u003C!-- Button settings -->","\u003C!-- Font settings -->","\u003C!-- Button Text -->",[162,163,164,165,166,167,168,169,170,171,172,173,174,175,176,177,178,179],"id=\"tsslk_options_ShowButton\"","name=\"tsslk_options[ShowButton]\"","id=\"tsslk_options_ShowIconInButton\"","name=\"tsslk_options[ShowIconInButton]\"","id=\"tsslk_options_CustomCSS\"","name=\"tsslk_options[CustomCSS]\"","id=\"tsslk_options_ButtonColor\"","name=\"tsslk_options[ButtonColor]\"","id=\"tsslk_options_ButtonHoverColor\"","name=\"tsslk_options[ButtonHoverColor]\"","id=\"tsslk_options_VerseFontFamily\"","name=\"tsslk_options[VerseFontFamily]\"","id=\"tsslk_options_VerseFontWeight\"","name=\"tsslk_options[VerseFontWeight]\"","id=\"tsslk_options_VerseFontItalic\"","name=\"tsslk_options[VerseFontItalic]\"","id=\"tsslk_options_VerseFontSize\"","name=\"tsslk_options[VerseFontSize]\"",[],[],[]]