[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f38-KYqW7E23v7O6lkTrCHAY453H6TxYPnnJplN4Sspg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":124,"fingerprints":305},"top-commentators-widget","Top Commentators Widget","1.7","Lorna Timbah","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebgrrrl\u002F","\u003Cp>This plugin creates a widget to show the top commentators in your WP site. Always go back to the Widget settings after each version update to Save your settings. Demo can be found at http:\u002F\u002Fdemo.webgrrrl.net\u003C\u002Fp>\n\u003Cp>The Top Commentators Widget plugin is adapted from Show Top Commentators plugin at Personal Financial Advice, this widget is easier to manage via the control form (no need to edit the PHP file); additional options are also available to make it more flexible. Read the FAQ section on how to customize the widget. Read the Changelog as well as http:\u002F\u002Fwebgrrrl.net\u002Ftags\u002Ftcw for the latest news on this widget.\u003C\u002Fp>\n\u003Cp>This widget is extensively tested with the following settings: Google Chrome 13.0.782.215 m, PHP 5.2.13, Apache 2.2.15 (Win32), MySQL 5.0.51a, WordPress 3.2.1. Further testing and bug report on this widget is greatly welcomed and appreciated.\u003C\u002Fp>\n","Adds a sidebar widget to show the top commentators in your WP site. Demo: http:\u002F\u002Fdemo.webgrrrl.net",200,156008,100,2,"2025-12-20T13:00:00.000Z","6.6.5","2.8","",[20,21,22,23,24],"comments","gravatar","seo","sidebar","widget","http:\u002F\u002Fwebgrrrl.net\u002Farchives\u002Fmy-top-commentators-widget-quick-dirty.htm","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftop-commentators-widget.1.7.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":13,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"webgrrrl",1,30,94,"2026-04-04T02:13:59.813Z",[38,56,73,92,110],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":33,"last_updated":49,"tested_up_to":50,"requires_at_least":17,"requires_php":18,"tags":51,"homepage":53,"download_link":54,"security_score":55,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"most-popular-posts","Most Popular Posts","1.6.2","wesg","https:\u002F\u002Fprofiles.wordpress.org\u002Fwesg\u002F","\u003Cp>Most Popular Posts is a basic widget for your sidebar that creates a list of links to the top posts on your blog according to the number of comments on the post. You can customize many aspects of the plugin to fit in your blog.\u003C\u002Fp>\n\u003Cp>Updates include including and excluding categories, reverse the order of comments and incorporation of WordPress widget standards.\u003C\u002Fp>\n\u003Cp>For a complete list of the changes from each version, please visit \u003Ca href=\"http:\u002F\u002Fwww.wesg.ca\u002F2008\u002F08\u002Fwordpress-widget-most-popular\u002F#changelog\" rel=\"nofollow ugc\">the plugin homepage\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For examples and tips on using the plugin, please check \u003Ca href=\"http:\u002F\u002Fwww.wesg.ca\u002F2008\u002F08\u002Fwordpress-widget-most-popular\u002F#examples\" rel=\"nofollow ugc\">the examples\u003C\u002Fa> on the plugin homepage.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Used exclusively as a widget at the current time.\u003C\u002Fp>\n","This is a very simple widget that displays a link to the top commented posts on your blog.",300,51094,40,"2013-02-14T04:23:00.000Z","3.5.2",[20,52,23,24],"most-popular","http:\u002F\u002Fwww.wesg.ca\u002F2008\u002F08\u002Fwordpress-widget-most-popular\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmost-popular-posts.1.6.2.zip",85,{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":13,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":18,"download_link":72,"security_score":55,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"disqus-recent-comments-widget","Disqus Recent Comments Widget","1.2","Andrew Bartel","https:\u002F\u002Fprofiles.wordpress.org\u002Fandrew-bartel\u002F","\u003Cp>The Disqus Recent Comments Widget plugin will create a configurable widget that will allow you to display comments in any widgetized area of your theme like sidebars and footers.\u003C\u002Fp>\n\u003Cp>You can customize the comment length and date format, filter users and choose from three different markup templates, among other things.  The plugin has full support for custom markup defined with register_sidebars() and should integrate smoothly with most themes in the wp.org repository.\u003C\u002Fp>\n\u003Cp>We try to be very proactive and responsive with support.  So, if you have any issues, please post in the support forums and we’ll do our best to resolve your issue promptly.\u003C\u002Fp>\n\u003Cp>You can follow development here: https:\u002F\u002Fgithub.com\u002Fandrewbartel\u002FDisqus_Recent_Comments\u003C\u002Fp>\n","Disqus has dropped support for their recent comments widget.  This plugin creates a configurable widget that will display your latest Disqus comments.",25099,86,7,"2014-09-22T01:54:00.000Z","4.0.38","3.4.1",[20,71,23,24],"disqus","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisqus-recent-comments-widget.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":13,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":18,"tested_up_to":84,"requires_at_least":85,"requires_php":18,"tags":86,"homepage":89,"download_link":90,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":91},"os-emi-calculator","EMI Calculator","1.0","vkt005","https:\u002F\u002Fprofiles.wordpress.org\u002Fvkt005\u002F","\u003Cp>Use EMI calculator as shortcode in post content or widget area without editing your theme files\u003C\u002Fp>\n\u003Cp>USAGE:\u003Cbr \u002F>\nUse [emicalc format=”full”][\u002Femicalc] OR [emicalc format=”sidebar”][\u002Femicalc] shortcode in your post content to show the EMI calculator without editing your theme files\u003Cbr \u002F>\nEXAMPLE:\u003Cbr \u002F>\n[emicalc format=”full”][\u002Femicalc] OR\u003Cbr \u002F>\nOR\u003Cbr \u002F>\n[emicalc format=”sidebar”][\u002Femicalc]\u003C\u002Fp>\n","Use EMI calculator as shortcode in post content or widget area without editing your theme files",7269,74,3,"3.7.41","2.0.5",[87,20,88,23,24],"calculator","match","http:\u002F\u002Fopensum.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fos-emi-calculator.zip","2026-03-15T10:48:56.248Z",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":83,"last_updated":103,"tested_up_to":84,"requires_at_least":104,"requires_php":18,"tags":105,"homepage":108,"download_link":109,"security_score":55,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"ff-tab-widget","FF Tab Widget","1.1","Kharis Sulistiyono","https:\u002F\u002Fprofiles.wordpress.org\u002Fkharisblank\u002F","\u003Cp>FF Tab Widget is a great solution for you to display different contents in a single widget. You can display popular posts, recent posts, recent commets, and tags in an animated tabs.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to install, just drag the widget into your widgetized sidebar.\u003C\u002Fli>\n\u003Cli>Has widget options: Label name, limit tab content and show\u002Fhide tab item.\u003C\u002Fli>\n\u003Cli>Uses jQuery Tabs \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FamazingSurge\u002Fjquery-tabs\" rel=\"nofollow ugc\">script\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’d like to contribute to the plugin you can find it on \u003Ca href=\"http:\u002F\u002Fgithub.com\u002Fkharissulistiyo\u002FFF-Tab-Widget\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>FF doesn’t stand for anything.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.kharissulistiyono.com\u002Fff-tab-widget-pro\u002F\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Simply go to Appearance > Widgets and drag “FF Tab Widget” instance to the sidebar of your choice. Within the widget are several options where you can show\u002Fhide tab item and specifify the content limit. See the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fff-tab-widget\u002Fscreenshots\" rel=\"ugc\">screenshots\u003C\u002Fa> for more details.\u003C\u002Fp>\n\u003Ch4>Tabs Widget Style\u003C\u002Fh4>\n\u003Cp>The tab widget style tested on “Twenty Twelve” theme (see the plugin screenshot). It may look different on other themes. You can adjust its style by modifying CSS file (fftw.css) inside the plugin folder. To make developers easy to make modification I also profide the LESS file (fftw.less).\u003C\u002Fp>\n\u003Cp>If you do not have time to make your tabs widget looks beautiful on your theme, you can \u003Ca href=\"mailto:kharisblank@gmail.com\" rel=\"nofollow ugc\">contact me\u003C\u002Fa> for plugin customization service.\u003C\u002Fp>\n\u003Cp>Contact this \u003Ca href=\"http:\u002F\u002Fkharissulistiyo.com\" rel=\"nofollow ugc\">plugin author\u003C\u002Fa>.\u003C\u002Fp>\n","Display popular posts, recent posts, recent commets, and tags in an animated tabs in a single widget.",80,7765,46,"2014-01-09T17:16:00.000Z","3.0",[20,106,23,107,24],"posts","tags","https:\u002F\u002Fgithub.com\u002Fkharissulistiyo\u002FFF-Tab-Widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fff-tab-widget.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":48,"downloaded":118,"rating":13,"num_ratings":33,"last_updated":119,"tested_up_to":120,"requires_at_least":104,"requires_php":18,"tags":121,"homepage":18,"download_link":123,"security_score":55,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"simple-top-commenters","Simple Top Commenters","1.5.2","mrengy","https:\u002F\u002Fprofiles.wordpress.org\u002Fmrengy\u002F","\u003Cp>A sidebar widget that displays a list of top commenters across a site, showing the number of comments for each. Inspired by and extended from the Top Commentators Widget by WebGrrrl.\u003C\u002Fp>\n\u003Ch3>Supported Languages:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>English\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Slovene: Thanks to Mitja Mihelič: mitja.mihelic@arnes.si http:\u002F\u002Fwww.linkedin.com\u002Fin\u002Fmmihelic\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Romanian: Thanks to Alexander Ovsov: \u003Ca href=\"http:\u002F\u002Fwebhostinggeeks.com\u002F\" rel=\"nofollow ugc\">Web Hosting Geeks\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Ukranian: Thanks to Michael Yunat: \u003Ca href=\"http:\u002F\u002Fgetvoip.com\u002Fblog\" rel=\"nofollow ugc\">http:\u002F\u002Fgetvoip.com\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Options:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>“Title”: customizable title that is displayed in the sidebar for this widget.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>“Define Commenters by”: choose whether to define an individual by email address or by name entered in the comment form\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>“Commenters to Exclude”: a list of people to exclude from the count. Can enter names and\u002For email addresses here. Separate each with a comma.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>“# of Commenters to List”: determines the number of top commenters to list.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>“Show ‘comments’ Label?”: If checked, a top commenter will appear as “mike: 10 comments”. If unchecked, he\u002Fshe will appear simply as “mike: 10”.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","A sidebar widget that displays a list of top commenters across a site, showing the number of comments for each.",7108,"2017-10-01T19:57:00.000Z","4.8.28",[20,122,23,24],"counter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-top-commenters.zip",{"attackSurface":125,"codeSignals":137,"taintFlows":289,"riskAssessment":290,"analyzedAt":304},{"hooks":126,"ajaxHandlers":133,"restRoutes":134,"shortcodes":135,"cronEvents":136,"entryPointCount":27,"unprotectedCount":27},[127],{"type":128,"name":129,"callback":130,"file":131,"line":132},"action","widgets_init","topcomm_load_widgets","top-commentators-widget.php",17,[],[],[],[],{"dangerousFunctions":138,"sqlUsage":139,"outputEscaping":147,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":288},[],{"prepared":27,"raw":14,"locations":140},[141,144],{"file":131,"line":142,"context":143},144,"$wpdb->get_results() with variable interpolation",{"file":131,"line":145,"context":146},163,"$wpdb->get_var() with variable interpolation",{"escaped":27,"rawEcho":148,"locations":149},87,[150,153,155,157,159,160,161,163,165,166,167,169,171,172,173,175,177,178,179,181,183,184,186,187,189,191,192,193,195,197,198,199,201,203,204,205,207,209,210,211,213,215,216,217,219,221,222,224,226,227,229,231,232,234,236,237,239,241,242,244,246,247,249,251,252,254,256,257,259,261,262,264,266,267,269,270,271,273,275,276,277,279,281,282,283,285,287],{"file":131,"line":151,"context":152},225,"raw output",{"file":131,"line":154,"context":152},228,{"file":131,"line":156,"context":152},278,{"file":131,"line":158,"context":152},279,{"file":131,"line":158,"context":152},{"file":131,"line":158,"context":152},{"file":131,"line":162,"context":152},282,{"file":131,"line":164,"context":152},283,{"file":131,"line":164,"context":152},{"file":131,"line":164,"context":152},{"file":131,"line":168,"context":152},287,{"file":131,"line":170,"context":152},288,{"file":131,"line":170,"context":152},{"file":131,"line":170,"context":152},{"file":131,"line":174,"context":152},291,{"file":131,"line":176,"context":152},292,{"file":131,"line":176,"context":152},{"file":131,"line":176,"context":152},{"file":131,"line":180,"context":152},296,{"file":131,"line":182,"context":152},297,{"file":131,"line":182,"context":152},{"file":131,"line":185,"context":152},305,{"file":131,"line":185,"context":152},{"file":131,"line":188,"context":152},314,{"file":131,"line":190,"context":152},315,{"file":131,"line":190,"context":152},{"file":131,"line":190,"context":152},{"file":131,"line":194,"context":152},319,{"file":131,"line":196,"context":152},320,{"file":131,"line":196,"context":152},{"file":131,"line":196,"context":152},{"file":131,"line":200,"context":152},324,{"file":131,"line":202,"context":152},325,{"file":131,"line":202,"context":152},{"file":131,"line":202,"context":152},{"file":131,"line":206,"context":152},328,{"file":131,"line":208,"context":152},329,{"file":131,"line":208,"context":152},{"file":131,"line":208,"context":152},{"file":131,"line":212,"context":152},333,{"file":131,"line":214,"context":152},334,{"file":131,"line":214,"context":152},{"file":131,"line":214,"context":152},{"file":131,"line":218,"context":152},338,{"file":131,"line":220,"context":152},339,{"file":131,"line":220,"context":152},{"file":131,"line":223,"context":152},345,{"file":131,"line":225,"context":152},346,{"file":131,"line":225,"context":152},{"file":131,"line":228,"context":152},352,{"file":131,"line":230,"context":152},353,{"file":131,"line":230,"context":152},{"file":131,"line":233,"context":152},359,{"file":131,"line":235,"context":152},360,{"file":131,"line":235,"context":152},{"file":131,"line":238,"context":152},366,{"file":131,"line":240,"context":152},367,{"file":131,"line":240,"context":152},{"file":131,"line":243,"context":152},373,{"file":131,"line":245,"context":152},374,{"file":131,"line":245,"context":152},{"file":131,"line":248,"context":152},380,{"file":131,"line":250,"context":152},381,{"file":131,"line":250,"context":152},{"file":131,"line":253,"context":152},387,{"file":131,"line":255,"context":152},388,{"file":131,"line":255,"context":152},{"file":131,"line":258,"context":152},394,{"file":131,"line":260,"context":152},395,{"file":131,"line":260,"context":152},{"file":131,"line":263,"context":152},401,{"file":131,"line":265,"context":152},402,{"file":131,"line":265,"context":152},{"file":131,"line":268,"context":152},412,{"file":131,"line":268,"context":152},{"file":131,"line":268,"context":152},{"file":131,"line":272,"context":152},415,{"file":131,"line":274,"context":152},416,{"file":131,"line":274,"context":152},{"file":131,"line":274,"context":152},{"file":131,"line":278,"context":152},420,{"file":131,"line":280,"context":152},421,{"file":131,"line":280,"context":152},{"file":131,"line":280,"context":152},{"file":131,"line":284,"context":152},424,{"file":131,"line":286,"context":152},425,{"file":131,"line":286,"context":152},[],[],{"summary":291,"deductions":292},"The 'top-commentators-widget' v1.7 plugin exhibits several concerning security practices despite a clean vulnerability history. The static analysis reveals a complete lack of input validation and output sanitization. All identified SQL queries are performed without prepared statements, introducing a significant risk of SQL injection vulnerabilities. Furthermore, a substantial 87 output points are present with a 0% proper escaping rate, indicating a high probability of Cross-Site Scripting (XSS) vulnerabilities. The absence of nonce and capability checks on any potential entry points, coupled with no observed taint flows that would flag immediate critical issues, paints a picture of a plugin that, while historically unexploited, has critical flaws in its implementation that leave it vulnerable. The clean vulnerability history may be due to the plugin's obscurity or a lack of thorough security audits in the past. Despite the lack of known CVEs, the identified coding deficiencies represent a tangible security risk.",[293,296,299,302],{"reason":294,"points":295},"SQL queries without prepared statements",10,{"reason":297,"points":298},"All output points unescaped (high XSS risk)",15,{"reason":300,"points":301},"No nonce checks on potential entry points",5,{"reason":303,"points":301},"No capability checks on potential entry points","2026-03-16T20:10:44.631Z",{"wat":306,"direct":315},{"assetPaths":307,"generatorPatterns":310,"scriptPaths":311,"versionParams":312},[308,309],"\u002Fwp-content\u002Fplugins\u002Ftop-commentators-widget\u002Ftop-commentators-widget.css","\u002Fwp-content\u002Fplugins\u002Ftop-commentators-widget\u002Ftop-commentators-widget.js",[],[309],[313,314],"top-commentators-widget\u002Ftop-commentators-widget.css?ver=","top-commentators-widget\u002Ftop-commentators-widget.js?ver=",{"cssClasses":316,"htmlComments":320,"htmlAttributes":321,"restEndpoints":322,"jsGlobals":323,"shortcodeOutput":324},[317,318,319],"topcomm","tcwAward","tcwGravatar",[],[],[],[],[]]