[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBAG4tkDvAfDbSapr4zuDUK6jGVoiORZgD6gTjhC1OVc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":135,"fingerprints":189},"tavakal-disk-monitoring","Tavakal – Disk monitoring","1.0.0","tavakal4devs","https:\u002F\u002Fprofiles.wordpress.org\u002Ftavakal4devs\u002F","\u003Cp>This is useful when you run your wordpress site on VPS and you don’t want to use any external paid monitoring services\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch4>Tavakal – Disk monitoring Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Set emails to receive messages about low space\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Set the minimum space before alarming.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Important Notice\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin requires cron jobs enabled to work\u003C\u002Fp>\n","Free light plugin to monitor the free disk space, and notification system when running out of space.",0,716,"2022-02-12T09:27:00.000Z","5.9.13","4.0","5.6",[18,19,20,21],"alarm","check-free-space","disk","free-space","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftavakal-disk-monitoring.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},2,30,84,"2026-04-04T04:37:30.400Z",[34,57,77,96,117],{"slug":35,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":44,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":15,"requires_php":22,"tags":48,"homepage":54,"download_link":55,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"disk-usage-sunburst","Disk Usage Sunburst","1.1.8","RAIDBOXES","https:\u002F\u002Fprofiles.wordpress.org\u002Fraidboxes\u002F","\u003Cp>This plugin (\u003Ccode>Tools\u003C\u002Fcode> -> \u003Ccode>Disk Usage\u003C\u002Fcode>) shows all files of your WordPress installation at once. These are displayed in a so\u003Cbr \u002F>\ncalled “Sunburst Chart”. Each arc of the chart is either a directory or a file. Move your mouse over an arc to see the size\u003Cbr \u002F>\nof the file or directory. The bigger the arc is the bigger is the file\u002Fdirectory.\u003C\u002Fp>\n\u003Cp>Very useful to determine the biggest files in your WordPress installation!\u003C\u002Fp>\n\u003Cp>Click on an arc to zoom in, and click in the circle to zoom out again.\u003C\u002Fp>\n\u003Cp>Questions? Drop us a mail: wp-dev (at) \u003Ca href=\"http:\u002F\u002Fraidboxes.de\" rel=\"nofollow ugc\">raidboxes.de\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Thanks\u003C\u002Fh3>\n\u003Cp>Thanks to Mike Bostock for his great “d3js”:  http:\u002F\u002Fd3js.org\u003C\u002Fp>\n\u003Cp>Thanks to Mike Bostock for his awesome “Zoomable Sunburst” implementation: http:\u002F\u002Fbl.ocks.org\u002Fmbostock\u002F4348373\u003C\u002Fp>\n\u003Cp>Thanks to Jeffrey Sambells for his “Human Readable File Size with PHP”: http:\u002F\u002Fjeffreysambells.com\u002F2012\u002F10\u002F25\u002Fhuman-readable-filesize-php\u003C\u002Fp>\n","Visualize and drill down the disk usage of your whole WordPress installation. Find and identify big files immediately!",9000,114073,96,36,"2026-01-13T13:42:00.000Z","6.9.4",[49,50,51,52,53],"big-files","disk-consumption","disk-space","disk-usage","file-consumption","https:\u002F\u002Fraidboxes.io\u002Fen\u002Fdisk-usage-sunburst-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisk-usage-sunburst.zip",100,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":22,"tags":72,"homepage":74,"download_link":75,"security_score":76,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"my-simple-space","My Simple Space","1.2.9","idowebwork","https:\u002F\u002Fprofiles.wordpress.org\u002Fmannweb\u002F","\u003Cp>Display the total size space usage as well:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>wp-content total size\u003C\u002Fli>\n\u003Cli>wp-content\u002Fplugins size\u003C\u002Fli>\n\u003Cli>wp-content\u002Fthemes size\u003C\u002Fli>\n\u003Cli>wp-content\u002Fuploads size\u003C\u002Fli>\n\u003Cli>database size\u003C\u002Fli>\n\u003Cli>Total available memory \u002F used memory\u003C\u002Fli>\n\u003Cli>PHP Version and OS (32\u002F64 bit)\u003C\u002Fli>\n\u003C\u002Ful>\n","Disk Space, Database and Memory Usage in the dashboard.",8000,69269,88,10,"2024-09-16T17:31:00.000Z","6.6.5","4.6.0",[73,51],"database-size","https:\u002F\u002Fidoweb.work\u002Fresources\u002Fplugins-themes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-simple-space.1.2.9.zip",92,{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":56,"num_ratings":68,"last_updated":87,"tested_up_to":47,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":94,"download_link":95,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"disk-usage-insights","Disk Usage Insights","1.10","Marcel Gleis","https:\u002F\u002Fprofiles.wordpress.org\u002Fmgleis\u002F","\u003Cp>Find large files and large folders in no time. This plugin scans your whole WordPress installation, counts all files and folders, sums up the sizes and outputs useful statistics to find unwanted large objects in your system.\u003C\u002Fp>\n","Find large files and folders in no time! Hunt down the TOP 10 files and folders with the most disk usage.",1000,7558,"2025-12-15T10:55:00.000Z","5.0","7.4",[52,91,92,93],"file-size","large-files","large-folders","https:\u002F\u002Fgithub.com\u002Fmgleis\u002Fdisk-usage-insights","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisk-usage-insights.1.10.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":85,"downloaded":104,"rating":105,"num_ratings":29,"last_updated":106,"tested_up_to":47,"requires_at_least":107,"requires_php":89,"tags":108,"homepage":113,"download_link":114,"security_score":115,"vuln_count":29,"unpatched_count":11,"last_vuln_date":116,"fetched_at":26},"get-url-cron","Cron Setup and Monitor – Get URL Cron","1.5.4","berkux","https:\u002F\u002Fprofiles.wordpress.org\u002Fberkux\u002F","\u003Cp>Effortlessly define and manage cron jobs with execution URLs and WP-Shortcodes. The plugin monitors cron jobs, retries failed executions as needed, and sends status updates via email.\u003C\u002Fp>\n\u003Cp>With “Cron Setup and Monitor – Get URL Cron” you can:\u003Cbr \u002F>\n* Add, edit, and delete cron jobs to request HTTP URLs or WordPress shortcodes at defined times with various intervals.\u003Cbr \u002F>\n* Verify the retrieved result by checking for a required string or JSON field to ensure the HTTP URL or shortcode request was successful.\u003Cbr \u002F>\n* Retry the HTTP URL or shortcode request multiple times in case of failures.\u003Cbr \u002F>\n*  Display all cron jobs in the WordPress installation, including those independent of this plugin.\u003Cbr \u002F>\n* Manually execute cron jobs.\u003Cbr \u002F>\n* Log requests and show OK or FAIL status: The first log entry records what should happen (“try”). The second log entry shows the success of the request.\u003Cbr \u002F>\n* Send emails for each HTTP URL or shortcode request, including the start of the attempt and the result of the request.\u003Cbr \u002F>\n* Option to send emails only on failure.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Go to ‘Basic Settings’ in the plugin menu to set basic settings (like E-Mailadress for Statusmessages) \u003C\u002Fli>\n\u003Cli>Go to ‘Set CronJobs’ to manage the cron events: Set URL or WordPress-Shortcode, interval, startdate etc.\u003C\u002Fli>\n\u003Cli>Store the defined CronJobs\u003C\u002Fli>\n\u003Cli>Manually execute a Cronjob by clicking on “execute job”\u003C\u002Fli>\n\u003Cli>Check plugin-menu ‘Show CronJobs’: There the scheduled CronJobs “geturlcron_event-” should be listed \u003C\u002Fli>\n\u003Cli>Check plugin-menu ‘Show Logs’: There should be at least one entry for the “try”. And if the CronJob has been finished a entry for the result (“FAIL” or “OK”)\u003C\u002Fli>\n\u003Cli>If a E-Mailadress is defined, two E-Mails are sent for trying and result.\u003C\u002Fli>\n\u003C\u002Fol>\n","Manage cron jobs, monitor tasks, retry failures, and send email updates",29956,60,"2025-12-04T20:52:00.000Z","3.0",[18,109,110,111,112],"check","cron","monitor","scheduler","https:\u002F\u002Fjson-content-importer.com\u002Fgeturlcron","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fget-url-cron.1.5.4.zip",99,"2023-02-15 00:00:00",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":56,"num_ratings":29,"last_updated":127,"tested_up_to":128,"requires_at_least":22,"requires_php":22,"tags":129,"homepage":22,"download_link":134,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"my-server-info","MyServerInfo – Memory Usage, PHP Version, Memory Limit, Execution Time, CPU Usage, Disk Usage","1.5.1","Anton","https:\u002F\u002Fprofiles.wordpress.org\u002Fantonphp\u002F","\u003Cp>My Server Info is a lightweight plugin that displays key server and site information in your WordPress admin panel. It shows details like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PHP Version\u003C\u002Fli>\n\u003Cli>MySQL Version\u003C\u002Fli>\n\u003Cli>WordPress Memory Limit\u003C\u002Fli>\n\u003Cli>PHP Execution Time\u003C\u002Fli>\n\u003Cli>PHP Max Input Vars\u003C\u002Fli>\n\u003Cli>PHP post_max_size\u003C\u002Fli>\n\u003Cli>PHP upload_max_filesize\u003C\u002Fli>\n\u003Cli>Site IP Address\u003C\u002Fli>\n\u003Cli>Site Time and Timezone\u003C\u002Fli>\n\u003Cli>CPU Usage (Average over 1 minute)\u003C\u002Fli>\n\u003Cli>Disk Usage\u003C\u002Fli>\n\u003Cli>Memory Usage\u003C\u002Fli>\n\u003Cli>Server Uptime\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>PHP Version\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP Version indicates the current PHP version running on your server. WordPress relies on PHP for its core functionality, and using a supported version (7.4 or higher) ensures better performance, security, and compatibility with themes and plugins.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>MySQL Version\u003C\u002Fstrong>\u003Cbr \u002F>\nMySQL Version shows the version of the MySQL database your WordPress site is using. A compatible MySQL version (5.7 or higher) is essential for efficient data management, faster queries, and overall site stability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Memory Limit\u003C\u002Fstrong>\u003Cbr \u002F>\nWordPress Memory Limit defines the maximum amount of memory allocated for WordPress operations. A higher memory limit (256M or more) allows for smoother performance, especially when using resource-intensive plugins or handling large websites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP Execution Time\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP Execution Time sets the maximum time a PHP script is allowed to run. Increasing this limit (300 seconds or more) helps prevent timeout errors during lengthy operations, such as bulk uploads or complex plugin processes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP Max Input Vars\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP Max Input Vars specifies the maximum number of input variables your server can handle. Setting this to a higher value (3000 or more) ensures that large forms, like those in theme or plugin settings, function correctly without data loss.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP post_max_size\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP post_max_size determines the maximum size of data that can be submitted via POST requests. Setting this to at least 64M allows for uploading larger files through forms, such as media uploads or bulk data submissions, without encountering size limitations.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP upload_max_filesize\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP upload_max_filesize defines the maximum size of an individual file that can be uploaded through PHP. A higher limit (64M or more) is important for WordPress sites that handle large media files, plugins, or theme uploads, ensuring users can upload necessary files without restrictions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Site IP Address\u003C\u002Fstrong>\u003Cbr \u002F>\nSite IP Address displays your website’s public IP address. Knowing your site’s IP is useful for configuring DNS settings, troubleshooting connectivity issues, and enhancing site security through access controls.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Site Time and Timezone\u003C\u002Fstrong>\u003Cbr \u002F>\nSite Time and Timezone reflect the current date, time, and timezone configured in your WordPress settings. Accurate time settings are crucial for scheduling posts, managing cron jobs, and ensuring consistency across your site’s content and activities.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CPU Usage (Average over 1 minute)\u003C\u002Fstrong>\u003Cbr \u002F>\nCPU Usage provides an approximate percentage of CPU utilization averaged over the past minute. This helps in monitoring server performance and identifying potential issues related to high CPU load.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Disk Usage\u003C\u002Fstrong>\u003Cbr \u002F>\nDisk Usage shows the percentage of disk space used on your server. Monitoring disk usage helps in managing storage resources effectively and preventing issues related to insufficient disk space.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Admin Bar Integration\u003C\u002Fstrong>\u003Cbr \u002F>\nUnder each progress bar, administrators can select checkboxes to add specific parameters to the WordPress admin bar. The available options are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Memory Usage:\u003C\u002Fstrong> Displays as \u003Ccode>MEM: X%\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CPU Usage:\u003C\u002Fstrong> Displays as \u003Ccode>AVG CPU: Y%\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Disk Usage:\u003C\u002Fstrong> Displays as \u003Ccode>Disk: Z%\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This feature allows quick access to essential server metrics directly from the admin bar, enhancing monitoring efficiency.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Server Uptime\u003C\u002Fstrong>\u003Cbr \u002F>\nDisplays the server’s uptime by reading the \u002Fproc\u002Fuptime file on Linux systems and formatting it into days, hours, minutes, and seconds. On unsupported systems (e.g., Windows), it will show “Unavailable”.\u003C\u002Fp>\n","Displays Usage (CPU , Disk, Memory), PHP and MySQL Version, WP Memory Limit, PHP Execution Time, Max Input Vars, IP Address, Uptime, Timezone.",700,5023,"2025-11-18T11:03:00.000Z","6.8.5",[130,52,131,132,133],"cpu-usage","memory","memory-limit","php-version","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-server-info.1.5.1.zip",{"attackSurface":136,"codeSignals":169,"taintFlows":177,"riskAssessment":178,"analyzedAt":188},{"hooks":137,"ajaxHandlers":164,"restRoutes":165,"shortcodes":166,"cronEvents":167,"entryPointCount":11,"unprotectedCount":11},[138,144,149,153,156,160],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","admin_init","add_option_section","includes\\DiskMonitoring.php",21,{"type":145,"name":146,"callback":147,"file":142,"line":148},"filter","cron_schedules","cron_add_one_hour",23,{"type":139,"name":150,"callback":151,"file":142,"line":152},"wp_dashboard_setup","disk_monitoring_widget",25,{"type":139,"name":154,"callback":154,"file":142,"line":155},"check_disk_space",27,{"type":139,"name":157,"callback":158,"priority":68,"file":142,"line":159},"update_option_tavakal_disk_monitoring_send_notification_to","save_send_notification_to",33,{"type":139,"name":161,"callback":162,"priority":68,"file":142,"line":163},"update_option_tavakal_alert_at_size","save_tavakal_alert_at_size",34,[],[],[],[168],{"hook":154,"callback":154,"file":142,"line":30},{"dangerousFunctions":170,"sqlUsage":171,"outputEscaping":173,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":176},[],{"prepared":11,"raw":11,"locations":172},[],{"escaped":174,"rawEcho":11,"locations":175},11,[],[],[],{"summary":179,"deductions":180},"The tavakal-disk-monitoring plugin v1.0.0 exhibits a generally good security posture based on the provided static analysis. There are no identified dangerous functions, all SQL queries utilize prepared statements, and all output is properly escaped. Furthermore, the plugin does not perform file operations or external HTTP requests, and the taint analysis shows no concerning flows. The absence of any recorded vulnerabilities in its history is also a positive indicator. \n\nHowever, a significant concern arises from the complete lack of capability checks and nonce checks across all entry points. While the attack surface appears limited with no directly exposed AJAX handlers, REST API routes, or shortcodes without authentication, the single cron event is not explicitly protected by capability checks. This means that an attacker could potentially trigger the cron event without proper authorization, which could lead to unintended consequences depending on its functionality. \n\nIn conclusion, while the plugin demonstrates strong coding practices in several key areas, the lack of robust access control, particularly for the cron event, presents a notable weakness. The absence of historical vulnerabilities is encouraging, but it does not negate the risks associated with the current lack of proper authorization checks. Future versions should prioritize implementing capability checks for all actions, especially scheduled tasks.",[181,184,186],{"reason":182,"points":183},"Missing capability checks on cron events",15,{"reason":185,"points":68},"Missing nonce checks on AJAX handlers",{"reason":187,"points":68},"Missing permission callbacks on REST API routes","2026-03-17T06:14:51.750Z",{"wat":190,"direct":197},{"assetPaths":191,"generatorPatterns":192,"scriptPaths":193,"versionParams":194},[],[],[],[195,196],"tavakal-disk-monitoring\u002Fstyle.css?ver=","tavakal-disk-monitoring\u002Fscript.js?ver=",{"cssClasses":198,"htmlComments":199,"htmlAttributes":200,"restEndpoints":201,"jsGlobals":202,"shortcodeOutput":203},[],[],[],[],[],[]]