[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fFNcB7mRST46I4f_zFKTgfVl_6gMJrXG4Ehe7E_iqvk0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":60,"fingerprints":208},"static-block","Static Block","2.2","MohammadTanzilurRahman","https:\u002F\u002Fprofiles.wordpress.org\u002Fmohammadtanzilurrahman\u002F","\u003Cp>Sometimes we need to show the same content\u002Fsection in several pages. And when we want to change this content\u002Fsection, we need to change this in all those different places.\u003C\u002Fp>\n\u003Cp>This plugin can do this easily. You create a static block using this plugin and show this in several pages, posts and custom posts by shortcodes and widgets section.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Easy to customize.\u003C\u002Fli>\n\u003Cli>Use any shortcode in Static Block Section.\u003C\u002Fli>\n\u003Cli>Add Static Block in any page very easily.\u003C\u002Fli>\n\u003Cli>Also show Static Block featured image.\u003C\u002Fli>\n\u003Cli>Static Block Widget to showcase your static block content\u002Fthumbnail anywhere you want.\u003C\u002Fli>\n\u003Cli>Shortcode for pages\u002Fposts editor to show your static block content- [static_block_content id=”static_block_id”].\u003C\u002Fli>\n\u003Cli>Shortcode for pages\u002Fposts editor to show your static block featured image- [static_block_thumbnail id=”static_block_id”]\u003C\u002Fli>\n\u003Cli>Set time schedule of block.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support & Customizations\u003C\u002Fh3>\n\u003Cp>If you have any question or if you need any assistance regarding the customization regarding the plugin, feel free to contact us.\u003Cbr \u002F>\nIf you find any bugs in our plugin, let us know.\u003Cbr \u002F>\nAlso, don’t forget to rate us! Your valuable feedback will help us to make this plugin more improve.\u003C\u002Fp>\n","Create Static Block\u002FContent which is use in posts, page, themes, custom posts, widgets.",2000,17657,92,5,"2021-03-10T18:47:00.000Z","5.7.15","3.8","",[20,4,21,22],"block-content","static-block-content","wordpress-block-content","http:\u002F\u002Ftanzilur.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstatic-block.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":25,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"mohammadtanzilurrahman",2,2100,30,84,"2026-04-05T18:38:04.756Z",[38],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":26,"downloaded":46,"rating":26,"num_ratings":26,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":18,"download_link":56,"security_score":57,"vuln_count":58,"unpatched_count":26,"last_vuln_date":59,"fetched_at":28},"contentlock","ContentLock","1.0.6","Adam Solymosi","https:\u002F\u002Fprofiles.wordpress.org\u002Fadamfalcon\u002F","\u003Ch3>EMAIL-BASED VERIFICATION ✔️\u003C\u002Fh3>\n\u003Cp>ContentLock is a simple solution for setting \u003Cstrong>email-based access to your Pages, Posts, or Custom Post Types\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Do you want to provide quick access to someone (or a whole group) via email only, \u003Cstrong>without requiring any kind of registration\u003C\u002Fstrong>?\u003C\u002Fp>\n\u003Cp>Here is your plugin!\u003C\u002Fp>\n\u003Ch3>SECURE ACCESS TO YOUR CONTENT 🔑\u003C\u002Fh3>\n\u003Cp>ContentLock offers a solution that is independent of WordPress users and the registration system, allowing you to grant access to content that is hidden from other visitors.\u003C\u002Fp>\n\u003Cp>Compatible with popular page builders, editors and plugins: Gutenberg, Classic Editor, Elementor, Divi, etc.\u003C\u002Fp>\n\u003Ch3>FEATURES 🚀\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create groups for standalone email lists\u003C\u002Fli>\n\u003Cli>Set access for multiple groups simultaneously\u003C\u002Fli>\n\u003Cli>Import emails from a CSV file\u003C\u002Fli>\n\u003Cli>Unlock content with an email verification code\u003C\u002Fli>\n\u003C\u002Ful>\n","Secure access to your content (Pages, Posts, or Custom Post Types) with ContentLock's email-based two-step verification!",1600,"2025-03-24T20:50:00.000Z","6.7.5","6.2","7.0",[52,20,53,54,55],"2fa","content-protect","locker","two-step-authentication","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontentlock.1.0.6.zip",90,3,"2024-06-21 00:00:00",{"attackSurface":61,"codeSignals":118,"taintFlows":201,"riskAssessment":202,"analyzedAt":207},{"hooks":62,"ajaxHandlers":108,"restRoutes":109,"shortcodes":110,"cronEvents":117,"entryPointCount":32,"unprotectedCount":26},[63,69,73,77,81,85,90,94,99,103],{"type":64,"name":65,"callback":66,"file":67,"line":68},"action","init","static_block_init","static-block.php",63,{"type":64,"name":70,"callback":71,"file":67,"line":72},"admin_head","wpds_custom_admin_post_css",65,{"type":64,"name":74,"callback":75,"file":67,"line":76},"admin_menu","my_remove_meta_boxes",77,{"type":64,"name":78,"callback":79,"file":67,"line":80},"save_post","static_block_meta_save",209,{"type":64,"name":82,"callback":83,"file":67,"line":84},"admin_init","static_block_meta_init",211,{"type":86,"name":87,"callback":88,"file":67,"line":89},"filter","manage_edit-static-block_columns","static_block_columns",216,{"type":64,"name":91,"callback":92,"file":67,"line":93},"manage_static-block_posts_custom_column","static_block_add_columns",217,{"type":86,"name":95,"callback":96,"priority":97,"file":67,"line":98},"media_buttons","media_button",31,318,{"type":64,"name":100,"callback":101,"file":67,"line":102},"admin_footer","static_block",319,{"type":64,"name":104,"callback":105,"file":106,"line":107},"widgets_init","static_block_load_widget","widget.php",137,[],[],[111,114],{"tag":112,"callback":112,"file":67,"line":113},"static_block_content",277,{"tag":115,"callback":115,"file":67,"line":116},"static_block_thumbnail",316,[],{"dangerousFunctions":119,"sqlUsage":120,"outputEscaping":122,"fileOperations":26,"externalRequests":26,"nonceChecks":198,"capabilityChecks":199,"bundledLibraries":200},[],{"prepared":26,"raw":26,"locations":121},[],{"escaped":123,"rawEcho":124,"locations":125},10,43,[126,128,130,132,134,136,137,138,140,141,142,144,146,147,148,150,151,152,154,156,158,160,162,164,166,168,170,172,174,176,178,180,182,183,184,185,187,189,190,192,194,195,197],{"file":67,"line":57,"context":127},"raw output",{"file":67,"line":129,"context":127},94,{"file":67,"line":131,"context":127},98,{"file":67,"line":133,"context":127},121,{"file":67,"line":135,"context":127},131,{"file":67,"line":135,"context":127},{"file":67,"line":135,"context":127},{"file":67,"line":139,"context":127},144,{"file":67,"line":139,"context":127},{"file":67,"line":139,"context":127},{"file":67,"line":143,"context":127},152,{"file":67,"line":145,"context":127},162,{"file":67,"line":145,"context":127},{"file":67,"line":145,"context":127},{"file":67,"line":149,"context":127},175,{"file":67,"line":149,"context":127},{"file":67,"line":149,"context":127},{"file":67,"line":153,"context":127},232,{"file":67,"line":155,"context":127},235,{"file":67,"line":157,"context":127},270,{"file":67,"line":159,"context":127},309,{"file":67,"line":161,"context":127},342,{"file":67,"line":163,"context":127},425,{"file":106,"line":165,"context":127},22,{"file":106,"line":167,"context":127},24,{"file":106,"line":169,"context":127},26,{"file":106,"line":171,"context":127},29,{"file":106,"line":173,"context":127},32,{"file":106,"line":175,"context":127},35,{"file":106,"line":177,"context":127},61,{"file":106,"line":179,"context":127},81,{"file":106,"line":181,"context":127},82,{"file":106,"line":181,"context":127},{"file":106,"line":35,"context":127},{"file":106,"line":35,"context":127},{"file":106,"line":186,"context":127},96,{"file":106,"line":188,"context":127},97,{"file":106,"line":188,"context":127},{"file":106,"line":191,"context":127},105,{"file":106,"line":193,"context":127},106,{"file":106,"line":193,"context":127},{"file":106,"line":196,"context":127},114,{"file":106,"line":196,"context":127},1,6,[],[],{"summary":203,"deductions":204},"The \"static-block\" plugin v2.2 exhibits a generally strong security posture based on the provided static analysis. It correctly utilizes prepared statements for all SQL queries and includes nonce and capability checks, indicating an awareness of common WordPress security best practices. The absence of dangerous functions, file operations, and external HTTP requests further bolsters its security. The vulnerability history is clean, with no recorded CVEs, which suggests a history of secure development or effective patching if vulnerabilities did arise.\n\nHowever, a notable concern is the low percentage of properly escaped output. With 19% of 53 outputs being properly escaped, there's a significant risk of Cross-Site Scripting (XSS) vulnerabilities. While the taint analysis shows no flows with unsanitized paths, the lack of robust output sanitization could still allow for XSS to be injected through user-controllable data that is later displayed without proper encoding. The limited attack surface (two shortcodes) is a positive, but the lack of specific details on what these shortcodes do makes a definitive assessment challenging.\n\nIn conclusion, while the \"static-block\" plugin has a solid foundation in terms of SQL, auth checks, and a clean vulnerability history, the high proportion of unescaped output is a significant weakness that requires immediate attention. Addressing this would elevate the plugin's security significantly. The current findings indicate a plugin that is largely secure in its core functionality but has a critical area for improvement regarding output sanitization.",[205],{"reason":206,"points":199},"Low percentage of properly escaped output","2026-03-16T18:40:19.301Z",{"wat":209,"direct":216},{"assetPaths":210,"generatorPatterns":212,"scriptPaths":213,"versionParams":215},[211],"\u002Fwp-content\u002Fplugins\u002Fstatic-block\u002F",[],[214],"\u002Fwp-content\u002Fplugins\u002Fstatic-block\u002Fwidget.php",[],{"cssClasses":217,"htmlComments":220,"htmlAttributes":221,"restEndpoints":228,"jsGlobals":230,"shortcodeOutput":231},[218,219],"portfolio_meta_control","full-text",[],[222,223,224,225,226,227],"name=\"tr_start_date\"","name=\"tr_start_date_hour\"","name=\"tr_start_date_minute\"","name=\"tr_end_date\"","name=\"tr_end_date_hour\"","name=\"tr_end_date_minute\"",[229],"\u002Fwp-json\u002Fwp\u002Fv2\u002Fstatic-block",[],[232,233],"[static_block_content id=\"","[static_block_thumbnail id=\""]