[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f1jWs310P-JZhZQHHfdimEnmBs4UqnQr0KBt8de0WYro":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":135,"fingerprints":177},"vestacp-dashboard-widget","VestaCP\u002FmyVesta Dashboard Widget","1.4","Sully","https:\u002F\u002Fprofiles.wordpress.org\u002Fss88_uk\u002F","\u003Cp>A simple plugin that shows the following stats from your VestaCP account:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disk Usage\u003C\u002Fli>\n\u003Cli>Bandwidth Usage\u003C\u002Fli>\n\u003Cli>Database Usage\u003C\u002Fli>\n\u003Cli>Web Domain Usage\u003C\u002Fli>\n\u003Cli>Mail Account Usage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>To generate an API key, first login to the server as root and run the command:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002Fusr\u002Flocal\u002Fvesta\u002Fbin\u002Fv-generate-api-key\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Adds a widget to the Dashboard showing your VestaCP\u002FmyVesta accounts details. Requires an API key from the control panel.",10,2073,100,2,"2024-10-31T14:58:00.000Z","6.7.5","3.0.0","",[20,21,22,23,24],"disk-stats","disk-usage","myvesta","vesta","vestacp","https:\u002F\u002Fblog.ss88.us\u002Fvestacp-dashboard-widget-for-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvestacp-dashboard-widget.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"ss88_uk",6,17510,98,5,99,"2026-04-04T16:49:19.171Z",[41,58,79,98,116],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":51,"num_ratings":14,"last_updated":52,"tested_up_to":16,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":18,"download_link":57,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"diskhero","DiskHero","1.1","WPOrbit Support","https:\u002F\u002Fprofiles.wordpress.org\u002Fkaushik07\u002F","\u003Cp>DiskHero is a very simple disk statistics plugin. It will show you the storage space occupied by different folders under your current WordPress installation.\u003C\u002Fp>\n\u003Cp>Please note that the stats page may take time to load up for sites with a lot of files. But the plugin does not affect the speed of any other pages on your backend or frontend.\u003C\u002Fp>\n","Simple disk stats plugin.",20,1249,60,"2024-12-01T19:34:00.000Z","1.0","5.6",[56,20,21],"disk-space","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdiskhero.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":77,"download_link":78,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"disk-usage-sunburst","Disk Usage Sunburst","1.1.8","RAIDBOXES","https:\u002F\u002Fprofiles.wordpress.org\u002Fraidboxes\u002F","\u003Cp>This plugin (\u003Ccode>Tools\u003C\u002Fcode> -> \u003Ccode>Disk Usage\u003C\u002Fcode>) shows all files of your WordPress installation at once. These are displayed in a so\u003Cbr \u002F>\ncalled “Sunburst Chart”. Each arc of the chart is either a directory or a file. Move your mouse over an arc to see the size\u003Cbr \u002F>\nof the file or directory. The bigger the arc is the bigger is the file\u002Fdirectory.\u003C\u002Fp>\n\u003Cp>Very useful to determine the biggest files in your WordPress installation!\u003C\u002Fp>\n\u003Cp>Click on an arc to zoom in, and click in the circle to zoom out again.\u003C\u002Fp>\n\u003Cp>Questions? Drop us a mail: wp-dev (at) \u003Ca href=\"http:\u002F\u002Fraidboxes.de\" rel=\"nofollow ugc\">raidboxes.de\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Thanks\u003C\u002Fh3>\n\u003Cp>Thanks to Mike Bostock for his great “d3js”:  http:\u002F\u002Fd3js.org\u003C\u002Fp>\n\u003Cp>Thanks to Mike Bostock for his awesome “Zoomable Sunburst” implementation: http:\u002F\u002Fbl.ocks.org\u002Fmbostock\u002F4348373\u003C\u002Fp>\n\u003Cp>Thanks to Jeffrey Sambells for his “Human Readable File Size with PHP”: http:\u002F\u002Fjeffreysambells.com\u002F2012\u002F10\u002F25\u002Fhuman-readable-filesize-php\u003C\u002Fp>\n","Visualize and drill down the disk usage of your whole WordPress installation. Find and identify big files immediately!",9000,114073,96,36,"2026-01-13T13:42:00.000Z","6.9.4","4.0",[74,75,56,21,76],"big-files","disk-consumption","file-consumption","https:\u002F\u002Fraidboxes.io\u002Fen\u002Fdisk-usage-sunburst-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisk-usage-sunburst.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":13,"num_ratings":11,"last_updated":89,"tested_up_to":71,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":96,"download_link":97,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"disk-usage-insights","Disk Usage Insights","1.10","Marcel Gleis","https:\u002F\u002Fprofiles.wordpress.org\u002Fmgleis\u002F","\u003Cp>Find large files and large folders in no time. This plugin scans your whole WordPress installation, counts all files and folders, sums up the sizes and outputs useful statistics to find unwanted large objects in your system.\u003C\u002Fp>\n","Find large files and folders in no time! Hunt down the TOP 10 files and folders with the most disk usage.",1000,7558,"2025-12-15T10:55:00.000Z","5.0","7.4",[21,93,94,95],"file-size","large-files","large-folders","https:\u002F\u002Fgithub.com\u002Fmgleis\u002Fdisk-usage-insights","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisk-usage-insights.1.10.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":13,"num_ratings":14,"last_updated":108,"tested_up_to":109,"requires_at_least":18,"requires_php":18,"tags":110,"homepage":18,"download_link":115,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"my-server-info","MyServerInfo – Memory Usage, PHP Version, Memory Limit, Execution Time, CPU Usage, Disk Usage","1.5.1","Anton","https:\u002F\u002Fprofiles.wordpress.org\u002Fantonphp\u002F","\u003Cp>My Server Info is a lightweight plugin that displays key server and site information in your WordPress admin panel. It shows details like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PHP Version\u003C\u002Fli>\n\u003Cli>MySQL Version\u003C\u002Fli>\n\u003Cli>WordPress Memory Limit\u003C\u002Fli>\n\u003Cli>PHP Execution Time\u003C\u002Fli>\n\u003Cli>PHP Max Input Vars\u003C\u002Fli>\n\u003Cli>PHP post_max_size\u003C\u002Fli>\n\u003Cli>PHP upload_max_filesize\u003C\u002Fli>\n\u003Cli>Site IP Address\u003C\u002Fli>\n\u003Cli>Site Time and Timezone\u003C\u002Fli>\n\u003Cli>CPU Usage (Average over 1 minute)\u003C\u002Fli>\n\u003Cli>Disk Usage\u003C\u002Fli>\n\u003Cli>Memory Usage\u003C\u002Fli>\n\u003Cli>Server Uptime\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>PHP Version\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP Version indicates the current PHP version running on your server. WordPress relies on PHP for its core functionality, and using a supported version (7.4 or higher) ensures better performance, security, and compatibility with themes and plugins.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>MySQL Version\u003C\u002Fstrong>\u003Cbr \u002F>\nMySQL Version shows the version of the MySQL database your WordPress site is using. A compatible MySQL version (5.7 or higher) is essential for efficient data management, faster queries, and overall site stability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Memory Limit\u003C\u002Fstrong>\u003Cbr \u002F>\nWordPress Memory Limit defines the maximum amount of memory allocated for WordPress operations. A higher memory limit (256M or more) allows for smoother performance, especially when using resource-intensive plugins or handling large websites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP Execution Time\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP Execution Time sets the maximum time a PHP script is allowed to run. Increasing this limit (300 seconds or more) helps prevent timeout errors during lengthy operations, such as bulk uploads or complex plugin processes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP Max Input Vars\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP Max Input Vars specifies the maximum number of input variables your server can handle. Setting this to a higher value (3000 or more) ensures that large forms, like those in theme or plugin settings, function correctly without data loss.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP post_max_size\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP post_max_size determines the maximum size of data that can be submitted via POST requests. Setting this to at least 64M allows for uploading larger files through forms, such as media uploads or bulk data submissions, without encountering size limitations.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PHP upload_max_filesize\u003C\u002Fstrong>\u003Cbr \u002F>\nPHP upload_max_filesize defines the maximum size of an individual file that can be uploaded through PHP. A higher limit (64M or more) is important for WordPress sites that handle large media files, plugins, or theme uploads, ensuring users can upload necessary files without restrictions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Site IP Address\u003C\u002Fstrong>\u003Cbr \u002F>\nSite IP Address displays your website’s public IP address. Knowing your site’s IP is useful for configuring DNS settings, troubleshooting connectivity issues, and enhancing site security through access controls.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Site Time and Timezone\u003C\u002Fstrong>\u003Cbr \u002F>\nSite Time and Timezone reflect the current date, time, and timezone configured in your WordPress settings. Accurate time settings are crucial for scheduling posts, managing cron jobs, and ensuring consistency across your site’s content and activities.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CPU Usage (Average over 1 minute)\u003C\u002Fstrong>\u003Cbr \u002F>\nCPU Usage provides an approximate percentage of CPU utilization averaged over the past minute. This helps in monitoring server performance and identifying potential issues related to high CPU load.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Disk Usage\u003C\u002Fstrong>\u003Cbr \u002F>\nDisk Usage shows the percentage of disk space used on your server. Monitoring disk usage helps in managing storage resources effectively and preventing issues related to insufficient disk space.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Admin Bar Integration\u003C\u002Fstrong>\u003Cbr \u002F>\nUnder each progress bar, administrators can select checkboxes to add specific parameters to the WordPress admin bar. The available options are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Memory Usage:\u003C\u002Fstrong> Displays as \u003Ccode>MEM: X%\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CPU Usage:\u003C\u002Fstrong> Displays as \u003Ccode>AVG CPU: Y%\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Disk Usage:\u003C\u002Fstrong> Displays as \u003Ccode>Disk: Z%\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This feature allows quick access to essential server metrics directly from the admin bar, enhancing monitoring efficiency.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Server Uptime\u003C\u002Fstrong>\u003Cbr \u002F>\nDisplays the server’s uptime by reading the \u002Fproc\u002Fuptime file on Linux systems and formatting it into days, hours, minutes, and seconds. On unsupported systems (e.g., Windows), it will show “Unavailable”.\u003C\u002Fp>\n","Displays Usage (CPU , Disk, Memory), PHP and MySQL Version, WP Memory Limit, PHP Execution Time, Max Input Vars, IP Address, Uptime, Timezone.",700,5023,"2025-11-18T11:03:00.000Z","6.8.5",[111,21,112,113,114],"cpu-usage","memory","memory-limit","php-version","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-server-info.1.5.1.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":13,"downloaded":124,"rating":28,"num_ratings":28,"last_updated":125,"tested_up_to":126,"requires_at_least":127,"requires_php":128,"tags":129,"homepage":132,"download_link":133,"security_score":134,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"servermonitor","ServerMonitor","0.3.6","Francis Smith","https:\u002F\u002Fprofiles.wordpress.org\u002Ffs1995\u002F","\u003Cp>View your PHP error log, CPU and RAM usage, and view disk space all in one location. This is a new plugin under development. Currently it does not do terribly much, but we are constantly working on adding new and useful features.\u003C\u002Fp>\n\u003Cp>Why use this plugin instead of the many others? ServerMonitor does not use PHP’s shell_exec, which is disabled by many web hosts for security concerns. Currently this plugin only supports Linux servers. Windows Server support is planned, but is a low priority.\u003C\u002Fp>\n\u003Cp>For any bug reports or suggestions, let me know in the plugins support forum.\u003C\u002Fp>\n","A simple plugin to view server resource usage (ram, cpu, disk), check your PHP error log, and more.",2419,"2018-04-07T08:22:00.000Z","4.9.29","3.4","5.1.3",[56,21,112,130,131],"server-info","system-monitor","https:\u002F\u002Fgithub.com\u002Ffs1995\u002Fservermonitor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fservermonitor.zip",85,{"attackSurface":136,"codeSignals":154,"taintFlows":170,"riskAssessment":171,"analyzedAt":176},{"hooks":137,"ajaxHandlers":144,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":153,"unprotectedCount":28},[138],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","wp_dashboard_setup","ss88_add_vestacp_widget","widget.php",70,[145],{"action":146,"nopriv":147,"callback":146,"hasNonce":148,"hasCapCheck":147,"file":142,"line":149},"ss88_vestacp_widget_ajax",false,true,110,[],[],[],1,{"dangerousFunctions":155,"sqlUsage":156,"outputEscaping":158,"fileOperations":28,"externalRequests":153,"nonceChecks":153,"capabilityChecks":28,"bundledLibraries":169},[],{"prepared":28,"raw":28,"locations":157},[],{"escaped":37,"rawEcho":159,"locations":160},4,[161,164,166,167],{"file":142,"line":162,"context":163},34,"raw output",{"file":142,"line":165,"context":163},40,{"file":142,"line":38,"context":163},{"file":142,"line":168,"context":163},104,[],[],{"summary":172,"deductions":173},"The 'vestacp-dashboard-widget' v1.4 plugin exhibits a generally good security posture based on the provided static analysis. The absence of direct SQL queries and the use of prepared statements are excellent practices. Similarly, the lack of file operations and external HTTP requests, along with no recorded vulnerabilities or CVEs, suggests a well-maintained and secure codebase. The plugin also benefits from proper nonce checks and a limited attack surface, with all identified entry points appearing to be protected.\n\nHowever, a significant concern arises from the output escaping. With only 56% of outputs properly escaped, there is a notable risk of Cross-Site Scripting (XSS) vulnerabilities. This means that data displayed by the plugin might not be adequately sanitized, potentially allowing attackers to inject malicious scripts into the user's browser.\n\nIn conclusion, while the plugin is strong in areas like SQL security and attack surface management, the insufficient output escaping is a critical weakness that needs immediate attention. Addressing this could significantly improve its overall security profile and mitigate potential XSS risks.",[174],{"reason":175,"points":34},"Insufficient output escaping","2026-03-17T00:41:18.744Z",{"wat":178,"direct":187},{"assetPaths":179,"generatorPatterns":182,"scriptPaths":183,"versionParams":184},[180,181],"\u002Fwp-content\u002Fplugins\u002Fvestacp-dashboard-widget\u002Fcss.css","\u002Fwp-content\u002Fplugins\u002Fvestacp-dashboard-widget\u002Fjs.js",[],[181],[185,186],"vestacp-dashboard-widget\u002Fcss.css?ver=","vestacp-dashboard-widget\u002Fjs.js?ver=",{"cssClasses":188,"htmlComments":200,"htmlAttributes":201,"restEndpoints":203,"jsGlobals":204,"shortcodeOutput":205},[189,190,191,192,193,194,195,196,197,198,199],"ss88_vw_formdiv","ss88_vw_keys","ss88_spinner","double-bounce1","double-bounce2","ss88_vw_form","bar-main-container","bar-wrap","bar-percentage","bar-container","bar",[],[202],"data-percentage",[],[],[]]