[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbQjJn3gBub4a7SU6gAKTtXUMyQ907Cc_-IMH1Oxq6JQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":132,"fingerprints":192},"themeable-sticky-posts","Themeable Sticky Posts","1.0","Ben Huson","https:\u002F\u002Fprofiles.wordpress.org\u002Fhusobj\u002F","\u003Cp>More details to follow with the next release.\u003C\u002Fp>\n\u003Ch3>1.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>First release.\u003C\u002Fli>\n\u003C\u002Ful>\n","A widget to display featured sticky posts. The built-in template displays a simple list of links, or you can create a template file in your theme for  &hellip;",10,2631,0,"2010-08-02T19:21:00.000Z","3.0.5","3.0","",[19,20,21,22,23],"featured","posts","sticky","theme","widgets","http:\u002F\u002Fwww.benhuson.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthemeable-sticky-posts.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"husobj",16,20750,2,90,"2026-04-04T11:21:21.796Z",[38,63,83,100,113],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":35,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":13,"last_vuln_date":62,"fetched_at":28},"ultimate-posts-widget","Ultimate Posts Widget","2.3.2","cl272","https:\u002F\u002Fprofiles.wordpress.org\u002Fcl272\u002F","\u003Cp>\u003Cstrong>Try it out on your free dummy site: Click here => \u003Ca href=\"https:\u002F\u002Fdemo.tastewp.com\u002Fultimate-posts-widget\" rel=\"nofollow ugc\">https:\u002F\u002Ftastewp.com\u002Fplugins\u002Fultimate-posts-widget\u003C\u002Fa>.\u003C\u002Fstrong>\u003Cbr \u002F>\n(this trick works for all plugins in the WP repo – just replace “wordpress” with “tastewp” in the URL)\u003C\u002Fp>\n\u003Cp>UPDATE: Plugin ownership changed for this plugin. We are currently evaluating possible enhancements for it. Stay tuned! If you have any suggestions yourself, please let us know in the Support Forum.\u003C\u002Fp>\n\u003Cp>Note: This is a \u003Cstrong>classic widget\u003C\u002Fstrong> type, in order for it to work on the latest version of WordPress you will need \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-widgets\u002F\" rel=\"ugc\">Classic Widgets\u003C\u002Fa> plugin installed on your site.\u003C\u002Fp>\n\u003Cp>The ultimate widget for displaying posts, custom post types or sticky posts with an array of options to customize the display.\u003C\u002Fp>\n\u003Cp>Designed for both the average user and developer, Ultimate Posts Widgets aims to provide flexibility and ease of use for displaying any kinds of posts within your widget areas. An array of widget options are available as well as hooks, filters and custom templates for more advanced customization.\u003C\u002Fp>\n\u003Ch4>Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Filter by categories\u003C\u002Fli>\n\u003Cli>Filter by current category\u003C\u002Fli>\n\u003Cli>Filter by tags\u003C\u002Fli>\n\u003Cli>Filter by current tag\u003C\u002Fli>\n\u003Cli>Filter by custom post types\u003C\u002Fli>\n\u003Cli>Filter by sticky posts\u003C\u002Fli>\n\u003Cli>Select number of posts to display\u003C\u002Fli>\n\u003Cli>Display title\u003C\u002Fli>\n\u003Cli>Display publish date\u002Ftime with custom format options\u003C\u002Fli>\n\u003Cli>Display post author and link\u003C\u002Fli>\n\u003Cli>Display post comment count\u003C\u002Fli>\n\u003Cli>Display excerpt or full content\u003C\u002Fli>\n\u003Cli>Display read more link with custom label\u003C\u002Fli>\n\u003Cli>Display featured image and at any size\u003C\u002Fli>\n\u003Cli>Display post categories\u003C\u002Fli>\n\u003Cli>Display post tags\u003C\u002Fli>\n\u003Cli>Display custom fields\u003C\u002Fli>\n\u003Cli>Add text or HTML before and after posts list\u003C\u002Fli>\n\u003Cli>Add CSS class to widget\u003C\u002Fli>\n\u003Cli>Add widget title link\u003C\u002Fli>\n\u003Cli>Change excerpt length (in words)\u003C\u002Fli>\n\u003Cli>Order by date, title, number of comments, random or a custom field\u003C\u002Fli>\n\u003Cli>Exclude current post from the list\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-posts-widget\u002Ffaq\u002F\" rel=\"ugc\">FAQ tab\u003C\u002Fa> for documentation on custom templates, hooks, common issues, and more.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>For help please ask in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fultimate-posts-widget\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Enjoy this plugin? \u003Ca href=\"https:\u002F\u002Fsellcodes.com\u002F5U4SICyc\" rel=\"nofollow ugc\">Send a tip to support development\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin is part of the Inisev product family – \u003Ca href=\"https:\u002F\u002Finisev.com\" rel=\"nofollow ugc\">check out our other products\u003C\u002Fa>.\u003C\u002Fp>\n","The ultimate widget for displaying posts, custom post types or sticky posts with an array of options.",10000,492332,55,"2024-07-17T01:21:00.000Z","6.6.5","3.5",[53,54,55,56,57],"custom-post-types","featured-image","recent-posts","sticky-posts","widget","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-posts-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-posts-widget.2.3.2.zip",92,1,"2024-02-13 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":13,"num_ratings":13,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":17,"download_link":81,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"daddy-plus","Daddy Plus","1.0.31","Themes Daddy","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemesdaddy\u002F","\u003Cp>This Daddy Plus plugin is created for Themes Daddy.\u003Cbr \u002F>\nThe plugin add custom frontpage sections for Themes Daddy and it will allow you full customizer settings for the theme front page sections.\u003Cbr \u002F>\nThe plugin options are user-friendly and you can use this plugin for Themes Daddy WordPress theme.\u003C\u002Fp>\n","Daddy Plus is a useful plugin for WordPress theme by Themes Daddy.",9000,110207,"2026-02-26T08:40:00.000Z","6.9.4","4.6","5.6",[78,19,79,80,23],"admin","frontpage","themepage","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdaddy-plus.1.0.31.zip",100,{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":82,"num_ratings":34,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":95,"tags":96,"homepage":98,"download_link":99,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wpfrank-companion","WPFrank Companion","0.3.2","FARAZFRANK","https:\u002F\u002Fprofiles.wordpress.org\u002Ffarazfrank\u002F","\u003Cp>This is companion plugin is created for WP Frank themes.\u003Cbr \u002F>\nThe plugin add custom frontpage sections for WP Frank themes and it will allow you full customizer settings for the theme front page sections.\u003Cbr \u002F>\nThe plugin options are user-friendly and you can use this plugin for BusinessExpo WordPress theme.\u003C\u002Fp>\n\u003Ch3>EXTERNAL RESOURCES\u003C\u002Fh3>\n\u003Ch3>Architect Designs Child Theme\u003C\u002Fh3>\n\u003Ch3>Slider\u003C\u002Fh3>\n\u003Cp>Image for theme Slider 1 image, PxHere\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fpxhere.com\u002Fen\u002Fphoto\u002F1186885\u003Cbr \u002F>\nSource: https:\u002F\u002Fpxhere.com\u002F\u003C\u002Fp>\n\u003Cp>Image for theme Slider 2 image, Clayton Bunn\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fwww.pexels.com\u002Fphoto\u002Fbrown-and-white-wooden-house-near-green-trees-5524166\u002F\u003Cbr \u002F>\nSource: https:\u002F\u002Fwww.pexels.com\u003C\u002Fp>\n\u003Cp>Image for theme Slider 3 image, PxHere\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fpxhere.com\u002Fen\u002Fphoto\u002F945400\u003Cbr \u002F>\nSource: https:\u002F\u002Fpxhere.com\u002F\u003C\u002Fp>\n\u003Ch3>Service\u003C\u002Fh3>\n\u003Cp>Image for theme Service 1 image, PxHere\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fpxhere.com\u002Fen\u002Fphoto\u002F574621\u003Cbr \u002F>\nSource: https:\u002F\u002Fpxhere.com\u002F\u003C\u002Fp>\n\u003Cp>Image for theme Service 2 image, PxHere\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fpxhere.com\u002Fen\u002Fphoto\u002F1084688\u003Cbr \u002F>\nSource: https:\u002F\u002Fpxhere.com\u002F\u003C\u002Fp>\n\u003Cp>Image for theme Service 3 image, PxHere\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fpxhere.com\u002Fen\u002Fphoto\u002F1574475\u003Cbr \u002F>\nSource: https:\u002F\u002Fpxhere.com\u002F\u003C\u002Fp>\n\u003Ch3>Testimonial\u003C\u002Fh3>\n\u003Cp>Image for theme Testimonial image, PxHere\u003Cbr \u002F>\nLicense: Creative Commons CC0 license.\u003Cbr \u002F>\nLicense URI: https:\u002F\u002Fpxhere.com\u002Fen\u002Fphoto\u002F945399\u003Cbr \u002F>\nSource: https:\u002F\u002Fpxhere.com\u002F\u003C\u002Fp>\n","WPFrank Companion is a companion plugin for WP Frank themes.",2000,64674,"2025-10-06T06:21:00.000Z","6.8.5","4.0",[78,19,79,97,23],"theme-page","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpfrank-companion","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpfrank-companion.0.3.2.zip",{"slug":101,"name":102,"version":103,"author":87,"author_profile":88,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":13,"num_ratings":13,"last_updated":108,"tested_up_to":94,"requires_at_least":17,"requires_php":109,"tags":110,"homepage":111,"download_link":112,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"avantex-companion","Avantex Companion","0.2.5","\u003Cp>This is companion plugin is created for Avantex themes.\u003Cbr \u002F>\nThe plugin add custom frontpage sections for Avantex themes and it will allow you full customizer settings for the theme front page sections.\u003Cbr \u002F>\nThe plugin options are user-friendly and you can use this plugin for all avantex child themes also.\u003C\u002Fp>\n\u003Cp>Have any queries?\u003C\u002Fp>\n","tested up to 6.8 License: GPLv3 or later License URI: http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.html Avantex Companion is a companion plugin for Avantex the &hellip;",1000,27707,"2025-08-21T10:29:00.000Z","7.4",[78,19,79,97,23],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Favantex-companion","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Favantex-companion.0.2.5.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":106,"downloaded":121,"rating":13,"num_ratings":13,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":125,"tags":126,"homepage":130,"download_link":131,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"widget-box-lite","Widget Box Lite","1.0.0","Romik84","https:\u002F\u002Fprofiles.wordpress.org\u002Fromik84\u002F","\u003Cp>The \u003Ca href=\"https:\u002F\u002Ftheme4press.com\u002Fwidget-box\u002F\" rel=\"nofollow ugc\">Widget Box Lite\u003C\u002Fa> plugin comes with a great bunch of widgets designed especially for \u003Ca href=\"https:\u002F\u002Ftheme4press.com\u002F\" rel=\"nofollow ugc\">Theme4Press\u003C\u002Fa> themes users to utilize their websites with extra features. The plugin has now included the following widgets:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fposts-slider-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Posts Slider\u003C\u002Fstrong>\u003C\u002Fa> – display posts of your choice in any widget area, set its speed, posts categories, and much more\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Frecent-posts-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Recent Posts\u003C\u002Fstrong>\u003C\u002Fa> – with this widget you can display posts from any category, set their titles and excerpts, and other options\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fsocial-media-links-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Social Media Links\u003C\u002Fstrong>\u003C\u002Fa> – if you need to add your social media links, use this widget to show Facebook, Twitter links, and more\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fbanner-ads-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Banner Ads\u003C\u002Fstrong>\u003C\u002Fa> – upload an image banner and display it instantly with few options in the widget area\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fcontact-info-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Contact Info\u003C\u002Fstrong>\u003C\u002Fa> – contact info widget lets you display your address, phone, fax, or an email address\u003C\u002Fp>\n\u003Ch3>Premium Version Features\u003C\u002Fh3>\n\u003Ch4>The premium version of this plugin add even more settings to the existing free widgets and bring some extra new ones to add a lot of great features. It unlocks the following features:\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Posts Slider\u003C\u002Fstrong> – you can select up to 4 items per slide (multi-item slide), 30 posts per widget, change the display order, select multiple post categories, include only sticky posts, hide post titles, hide post meta, customize the post excerpts and more links, custom image sizes, 3 slider content layouts, link slides to the posts, modify the font size of titles and contents, options to set arrows, indicators and animation style\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Recent Posts\u003C\u002Fstrong> – set up to 3 columns of posts, 30 posts per widget, change the display order, select multiple post categories, include only sticky posts, hide post titles, hide post meta, customize the post excerpts and more links, custom image sizes, up to 4 post layouts, enable thumbnail shadow and animation effects, borders, and colors, modify the font size of titles and contents, enable border-radius and boxed style of the posts\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Social Media Links\u003C\u002Fstrong> – up to 25 social media links + 5 custom ones (Font Awesome icons), change the position of the tooltip, icons boxed styles and custom colors, extra media links – Google+, Dribbble, LinkedIn, Blogger, Tumblr, Reddit, Yahoo!, DeviantArt, Vimeo, YouTube, Pinterest, Digg, Flickr, Forrst, Myspace, Skype, Instagram, VK, PayPal, Dropbox, SoundCloud\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Banner Ads\u003C\u002Fstrong> – you can add up to 10 banners per widget, up to 5 columns layout (great for smaller banner sizes), select display order – default or random (unique banner rotating), banner spacing, enable tooltip to display the banner titles, shadow and hover animation effects, border and rounded styles\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Contact Info\u003C\u002Fstrong> – enable\u002Fdisable the item labels, set the font size, enable\u002Fdisable the item icons, icons background color, and rounded style, extra items – mobile number and website\u003C\u002Fp>\n\u003Ch3>Extra Premium Widgets\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fcontact-form-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Contact Form\u003C\u002Fstrong>\u003C\u002Fa> – an ajax contact form which will let visitors of your website contact you quickly and simply, protected with the Google reCAPTCHA verification, available fields – company name, name, email, phone, address, subject, message\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Ffacebook-page-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Facebook Page\u003C\u002Fstrong>\u003C\u002Fa> – the Facebook Page widget shows your fan page with many useful options like custom width and height, custom tabs – timeline, messages, and events, you can select header size, show or hide friend’s faces, hide cover photo, add your APP ID for statistics\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fflickr-photos-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Flickr Photos\u003C\u002Fstrong>\u003C\u002Fa> – show your Flickr photostream, add your Flickr ID, API key, you can set image sizes, spacing, number of photos (up to 30 per widget) and columns (up to 5), enable tooltips, borders, hover and shadow effects, rounded image styles\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fgoogle-map-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Google Map\u003C\u002Fstrong>\u003C\u002Fa> – the Google Map widget will help you to display a location, for example of your office. Many settings are available, like adding multiple addresses, setting the size of the map, map types, zoom level, enabling\u002Fdisabling the map pin, controls, and tooltip\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Finstagram-photos-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Instagram Photos\u003C\u002Fstrong>\u003C\u002Fa> – display any photos of Instagram, all it’s up to you. Many predefined styles, effects, you can add up to 30 photos per widget, up to 5 columns layout, photo spacing, custom photo sizes, enable tooltip to display the photo titles, shadow and hover animation effects, border and rounded styles\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Fportfolio-catalog-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Portfolio Catalog\u003C\u002Fstrong>\u003C\u002Fa> – your portfolio work can be shown in the widget area with a clean minimal layout. You can add up to 30 items per widget, up to 5 columns layout, image spacing, custom image sizes, enable tooltip, shadow and hover animation effects, border and rounded styles\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.theme4press.com\u002Fwidget-box\u002Ftwitter-tweets-widget\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Twitter Tweets\u003C\u002Fstrong>\u003C\u002Fa> – recent tweets can be automatically shown on any predefined widget area on your page. This widget lets you add your Twitter username, API Keys, up to 30 tweets per widget, display your image, enable border or light background style\u003C\u002Fp>\n","A toolbox of great widgets for your daily blogging. Display recent posts, social links, and much more. Designed for Theme4Press themes",14222,"2023-08-12T09:04:00.000Z","6.3.8","4.7","7.0",[127,55,128,129,23],"posts-slider","social-media-links","theme4press","https:\u002F\u002Ftheme4press.com\u002Fwidget-box\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwidget-box-lite.zip",{"attackSurface":133,"codeSignals":144,"taintFlows":177,"riskAssessment":178,"analyzedAt":191},{"hooks":134,"ajaxHandlers":140,"restRoutes":141,"shortcodes":142,"cronEvents":143,"entryPointCount":13,"unprotectedCount":13},[135],{"type":136,"name":137,"callback":138,"file":139,"line":32},"action","widgets_init","anonymous","themeable-sticky-posts.php",[],[],[],[],{"dangerousFunctions":145,"sqlUsage":149,"outputEscaping":151,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":176},[146],{"fn":147,"file":139,"line":32,"context":148},"create_function","add_action( 'widgets_init', create_function( '', 'return register_widget(\"Themeable_Sticky_Posts_Wid",{"prepared":13,"raw":13,"locations":150},[],{"escaped":61,"rawEcho":152,"locations":153},12,[154,158,160,162,164,166,168,169,170,172,174,175],{"file":155,"line":156,"context":157},"templates\\list.php",3,"raw output",{"file":139,"line":159,"context":157},48,{"file":139,"line":161,"context":157},53,{"file":139,"line":163,"context":157},86,{"file":139,"line":165,"context":157},118,{"file":139,"line":167,"context":157},119,{"file":139,"line":167,"context":157},{"file":139,"line":167,"context":157},{"file":139,"line":171,"context":157},120,{"file":139,"line":173,"context":157},121,{"file":139,"line":173,"context":157},{"file":139,"line":173,"context":157},[],[],{"summary":179,"deductions":180},"The \"themeable-sticky-posts\" v1.0 plugin presents a mixed security posture. On the positive side, the plugin has no recorded vulnerabilities in its history, and the static analysis shows a lack of direct attack surface through AJAX, REST API, shortcodes, or cron events. Furthermore, all SQL queries are properly prepared, and there are no file operations or external HTTP requests, which are common vectors for exploitation.\n\nHowever, significant concerns are raised by the code signals. The presence of the `create_function` PHP construct is a major red flag, as it is deprecated and can be a source of security vulnerabilities, particularly if user input is involved in its creation, though taint analysis did not reveal any immediate flows. A more concerning finding is the extremely low percentage of properly escaped output (8%). This indicates a high likelihood of Cross-Site Scripting (XSS) vulnerabilities, where untrusted data displayed in the WordPress admin or frontend could be manipulated to execute malicious scripts.\n\nGiven the absence of documented vulnerabilities and the secure handling of SQL and network operations, the plugin appears to have a foundational level of security. Nevertheless, the poor output escaping and the use of `create_function` represent critical weaknesses that could be exploited. The lack of any documented vulnerabilities in its history might suggest either a very limited user base, diligent security practices in its development that were not fully reflected in the code analysis, or simply a lack of targeted discovery of its weaknesses. The primary actionable concern is the output escaping, which requires immediate attention to prevent potential XSS attacks.",[181,184,187,189],{"reason":182,"points":183},"Poor output escaping (8% proper)",15,{"reason":185,"points":186},"Use of dangerous function: create_function",5,{"reason":188,"points":186},"Missing nonce checks",{"reason":190,"points":186},"Missing capability checks","2026-03-17T01:26:12.914Z",{"wat":193,"direct":202},{"assetPaths":194,"generatorPatterns":197,"scriptPaths":198,"versionParams":199},[195,196],"\u002Fwp-content\u002Fplugins\u002Fthemeable-sticky-posts\u002Fwidget.css","\u002Fwp-content\u002Fplugins\u002Fthemeable-sticky-posts\u002Fwidget.js",[],[196],[200,201],"themeable-sticky-posts\u002Fwidget.css?ver=","themeable-sticky-posts\u002Fwidget.js?ver=",{"cssClasses":203,"htmlComments":205,"htmlAttributes":206,"restEndpoints":208,"jsGlobals":209,"shortcodeOutput":210},[204],"widget_themeable_sticky_posts",[],[207],"id=\"themeable-sticky-posts-admin-panel\"",[],[],[]]