[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0RZaJr52tWLSjoTRWFBEPpYeydjgrhK0eq_px0YaaCU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":48,"crawl_stats":38,"alternatives":55,"analysis":142,"fingerprints":220},"wb-sticky-notes","Sticky Notes for WP Dashboard","1.2.5","Web Builder 143","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebbuilder143\u002F","\u003Cp>Need a simple way to stay organized inside your WordPress admin area? \u003Cstrong>Sticky Notes for WP Dashboard\u003C\u002Fstrong> lets you add customizable sticky notes right to your dashboard—just like the ones on your desk, but smarter.\u003C\u002Fp>\n\u003Cp>Use it to jot down reminders, create to-do lists, or leave quick notes for other users. Each note can be styled, resized, and moved around to fit the way you work. Whether you’re managing a personal site or running a team, Sticky Notes makes it easy to keep important information front and center.\u003C\u002Fp>\n\u003Ch3>Why you’ll love Sticky Notes for WP Dashboard:\u003C\u002Fh3>\n\u003Cp>– Create as many sticky notes as you need, anywhere in the admin dashboard\u003Cbr \u002F>\n– Change colors, fonts, and themes to match your style\u003Cbr \u002F>\n– Drag and drop notes to position them exactly where you want\u003Cbr \u002F>\n– Show or hide notes with one click\u003Cbr \u002F>\n– Duplicate, archive, and organize notes easily\u003Cbr \u002F>\n– Control who can access notes with user role restrictions\u003Cbr \u002F>\n– Option to hide notes on specific admin pages for a cleaner view\u003C\u002Fp>\n\u003Cp>With an intuitive interface and zero setup required, Sticky Notes for WP Dashboard is a must-have productivity tool for any WP site owner.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Create sticky notes directly on your WP admin dashboard  \u003C\u002Fli>\n\u003Cli>Easy-to-use interface for quick note management  \u003C\u002Fli>\n\u003Cli>Customize notes with themes, colors, and fonts  \u003C\u002Fli>\n\u003Cli>Resizable and movable notes for better organization  \u003C\u002Fli>\n\u003Cli>Hide or show notes globally with one click  \u003C\u002Fli>\n\u003Cli>Duplicate notes with a single click  \u003C\u002Fli>\n\u003Cli>Archive notes for future reference  \u003C\u002Fli>\n\u003Cli>Disable sticky notes on specific admin pages  \u003C\u002Fli>\n\u003Cli>Limit note access by user roles\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Our Other Free Plugins\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwb-custom-product-tabs-for-woocommerce\u002F\" rel=\"ugc\">Custom Product Tabs for WooCommerce\u003C\u002Fa>  \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwb-mail-logger\u002F\" rel=\"ugc\">WB Mail Logger\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n","Create sticky notes in your WP admin for reminders and to-dos. Restrict notes by user roles and disable them on specific pages.",1000,16123,100,6,"2026-01-19T15:14:00.000Z","6.9.4","3.5.0","5.6",[20,21,22,23,24],"admin-notes","dashboard-notes","notes","reminders","sticky-notes","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwb-sticky-notes.1.2.5.zip",99,1,0,"2025-12-31 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2025-62087","sticky-notes-for-wp-dashboard-missing-authorization","Sticky Notes for WP Dashboard \u003C= 1.2.4 - Missing Authorization","The Sticky Notes for WP Dashboard plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 1.2.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform an unauthorized action.",null,"\u003C=1.2.4","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2026-02-25 14:39:44",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F240f05b0-876d-449c-ade0-118b1e3ab206?source=api-prod",57,{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":27,"avg_patch_time_days":52,"trust_score":53,"computed_at":54},"webbuilder143",3,11010,39,87,"2026-04-04T00:38:41.089Z",[56,72,92,109,126],{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":29,"downloaded":64,"rating":29,"num_ratings":29,"last_updated":65,"tested_up_to":16,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":25,"download_link":71,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"plugmint-draggable-notes","Plugmint – Draggable Admin Notes","1.0.0","MD.Ridwan","https:\u002F\u002Fprofiles.wordpress.org\u002Fridwan25\u002F","\u003Cp>Plugmint – Draggable Admin Notes lets you create and organize custom notes directly inside the WordPress admin dashboard.\u003Cbr \u002F>\nEach note is fully draggable and can include simple checklists for task management.\u003Cbr \u002F>\nNote items can be draggable from one note to another note.\u003Cbr \u002F>\nCheckmark them after compliting the task.\u003C\u002Fp>\n\u003Cp>Perfect for site managers, content editors, and teams who want a simple way to keep reminders and to-dos inside the admin panel.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create unlimited notes\u003C\u002Fli>\n\u003Cli>Drag and drop notes anywhere on the dashboard\u003C\u002Fli>\n\u003Cli>Add checklist items inside notes\u003C\u002Fli>\n\u003Cli>Checklist items are also draggable and can be moved from one note to another note\u003C\u002Fli>\n\u003Cli>Choose note colors for better organization\u003C\u002Fli>\n\u003Cli>Show\u002Fhide notes by user (optional)\u003C\u002Fli>\n\u003Cli>Lightweight — no external libraries except jQuery UI\u003C\u002Fli>\n\u003Cli>Fully responsive and compatible with all admin themes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin does not store data outside your website and does not communicate with external servers.\u003C\u002Fp>\n","Create draggable admin notes with checklists inside your WordPress dashboard. Easily organize important tasks or reminders.",112,"2026-01-13T19:29:00.000Z","5.5","7.4",[20,21,24,69,70],"todo-list","wp-admin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugmint-draggable-notes.1.0.0.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":13,"num_ratings":28,"last_updated":82,"tested_up_to":83,"requires_at_least":84,"requires_php":85,"tags":86,"homepage":89,"download_link":90,"security_score":91,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"a-note-above-wp-dashboard-notes","A Note Above – WP Dashboard Notes","2.0.2","brownbrowniebrownerson","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrownbrowniebrownerson\u002F","\u003Cp>A Note Above allows you to save notes on your WP Admin Dashboard. After installing A Note Above a widget will be added to your Dashboard. Add as many notes as you would like. Share your notes by role or keep a note to yourself.\u003Cbr \u002F>\nEach note is collapsed. Simply click on the title of your note to reveal the notes contents.\u003C\u002Fp>\n","A WordPress Note taking system to live on your WP Admin dashboard.",50,1998,"2023-11-12T00:57:00.000Z","6.4.8","5.0","7.0",[20,21,22,87,88],"user-notes","wp-notes","https:\u002F\u002Fjoshbrown-designs.com\u002Fa-note-above\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fa-note-above-wp-dashboard-notes.2.0.2.zip",85,{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":29,"num_ratings":29,"last_updated":102,"tested_up_to":103,"requires_at_least":18,"requires_php":67,"tags":104,"homepage":107,"download_link":108,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"t4p-dashboard-notes","T4P Dashboard Notes","1.0.4","sebastiantrainers4professionals","https:\u002F\u002Fprofiles.wordpress.org\u002Fsebastiantrainers4professionals\u002F","\u003Cp>\u003Cstrong>T4P Dashboard Notes\u003C\u002Fstrong> lets you create beautiful, formatted notes directly on your WordPress dashboard.\u003C\u002Fp>\n\u003Cp>Ideal for:\u003Cbr \u002F>\n– Quick reminders for yourself or your team\u003Cbr \u002F>\n– Instructions for editors or clients\u003Cbr \u002F>\n– Internal documentation and workflow notes\u003Cbr \u002F>\n– Onboarding checklists\u003Cbr \u002F>\n– Sticky notes for tasks, ideas, and drafts\u003C\u002Fp>\n\u003Ch3>✨ Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Add unlimited dashboard notes\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Colored note backgrounds\u003C\u002Fstrong> for visual organization\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rich text editor\u003C\u002Fstrong> with headings, lists, links, bold\u002Fitalic formatting\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom note titles\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Drag & drop positioning\u003C\u002Fstrong> of widgets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fast “Add Note” button\u003C\u002Fstrong> directly on the dashboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Edit, View, and Delete\u003C\u002Fstrong> actions directly on the note\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight & clean\u003C\u002Fstrong> – no unnecessary scripts or settings\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for agencies, site managers, editors, and anyone who wants to keep important information visible on the dashboard.\u003C\u002Fp>\n","Add colored, formatted dashboard notes with titles and drag-and-drop widgets for internal admin documentation and reminders.",10,155,"2025-11-26T14:17:00.000Z","6.8.5",[20,105,106,22,24],"dashboard","documentation","https:\u002F\u002Ftrainers4professionals.de\u002Fservices-sebastian-wlodarczyk\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ft4p-dashboard-notes.1.0.4.zip",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":29,"downloaded":117,"rating":29,"num_ratings":29,"last_updated":118,"tested_up_to":16,"requires_at_least":119,"requires_php":120,"tags":121,"homepage":124,"download_link":125,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"noteflow","NoteFlow – Smart Notes Manager for WordPress Admin","1.6.0","Ankit Panchal","https:\u002F\u002Fprofiles.wordpress.org\u002Fankitmaru\u002F","\u003Cp>\u003Cstrong>NoteFlow\u003C\u002Fstrong> is a lightweight and powerful notes management plugin designed for WordPress administrators. Whether you need to jot down quick reminders, manage tasks, or organize ideas, NoteFlow makes it easy to create, organize, and manage your notes directly from your WordPress dashboard.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Simple and intuitive note creation\u003C\u002Fli>\n\u003Cli>Rich text editor with formatting options\u003C\u002Fli>\n\u003Cli>Pin important notes to the top\u003C\u002Fli>\n\u003Cli>Quick search functionality\u003C\u002Fli>\n\u003Cli>Color-coding for better organization\u003C\u002Fli>\n\u003Cli>Clean and user-friendly interface\u003C\u002Fli>\n\u003Cli>Responsive design\u003C\u002Fli>\n\u003Cli>Lightweight and optimized performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Content ideas and drafts\u003C\u002Fli>\n\u003Cli>Task management\u003C\u002Fli>\n\u003Cli>Quick reminders\u003C\u002Fli>\n\u003Cli>Team communications\u003C\u002Fli>\n\u003Cli>Project notes\u003C\u002Fli>\n\u003Cli>Editorial calendars\u003C\u002Fli>\n\u003Cli>Bug tracking\u003C\u002Fli>\n\u003Cli>Feature requests\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>NoteFlow does not collect any personal data. All notes are stored locally in your WordPress database, ensuring full compliance with GDPR and other privacy regulations.\u003C\u002Fp>\n","A simple and efficient notes manager for WordPress admin dashboard. Create, organize, and manage your notes directly from WordPress.",675,"2026-02-24T07:22:00.000Z","5.2","7.2",[20,21,22,122,123],"task-management","to-do-list","https:\u002F\u002Fpluginstack.dev","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnoteflow.1.6.0.zip",{"slug":127,"name":128,"version":59,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":29,"downloaded":133,"rating":29,"num_ratings":29,"last_updated":134,"tested_up_to":135,"requires_at_least":84,"requires_php":67,"tags":136,"homepage":139,"download_link":140,"security_score":141,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"ultimate-sticky-notes","Ultimate Sticky Notes","Broadway Infotech","https:\u002F\u002Fprofiles.wordpress.org\u002Fbroadwayinfotech\u002F","\u003Cp>This plugin offers a convenient and customizable way to jot down ideas, reminders, or tasks, seamlessly integrating into your admin dashboard.\u003C\u002Fp>\n\u003Cp>Major features in Sticky Notes include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The plugin’s user-friendly interface seamlessly integrates into your admin dashboard, making it easy to create, organize, and manage your notes.\u003C\u002Fli>\n\u003Cli>Move, resize, and stick your notes anywhere on the screen. They’ll stay put until you move or minimize them using the sticky note button.\u003C\u002Fli>\n\u003Cli>Users can often customize the appearance of their notes, including color, size, font, and background.\u003C\u002Fli>\n\u003Cli>Seamless integration with your admin dashboard for direct note access.\u003C\u002Fli>\n\u003C\u002Ful>\n","The Ultimate Sticky Notes plugin offers the create, organize, and customize notes on your admin panel.",600,"2024-11-14T09:30:00.000Z","6.6.5",[22,137,24,138],"reminders-notes","tasks-notes","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultimate-sticky-notes","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-sticky-notes.1.0.0.zip",92,{"attackSurface":143,"codeSignals":189,"taintFlows":210,"riskAssessment":211,"analyzedAt":219},{"hooks":144,"ajaxHandlers":175,"restRoutes":185,"shortcodes":186,"cronEvents":187,"entryPointCount":188,"unprotectedCount":28},[145,151,156,159,162,165,167,170],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","admin_footer","add_content","admin\\classes\\class-wb-sticky-notes-feedback.php",21,{"type":146,"name":152,"callback":153,"file":154,"line":155},"plugins_loaded","anonymous","includes\\class-wb-sticky-notes.php",170,{"type":146,"name":157,"callback":153,"file":154,"line":158},"admin_menu",194,{"type":146,"name":160,"callback":153,"file":154,"line":161},"admin_bar_menu",200,{"type":146,"name":163,"callback":153,"file":154,"line":164},"admin_enqueue_scripts",217,{"type":146,"name":163,"callback":153,"file":154,"line":166},218,{"type":146,"name":168,"callback":153,"file":154,"line":169},"admin_init",226,{"type":146,"name":171,"callback":172,"file":173,"line":174},"init","run_wb_sticky_notes","wb-sticky-notes.php",79,[176,182],{"action":177,"nopriv":178,"callback":179,"hasNonce":180,"hasCapCheck":178,"file":149,"line":181},"wb_stn_submit_feedback",false,"submit_feedback",true,22,{"action":183,"nopriv":178,"callback":153,"hasNonce":178,"hasCapCheck":178,"file":154,"line":184},"wb_stn",181,[],[],[],2,{"dangerousFunctions":190,"sqlUsage":191,"outputEscaping":196,"fileOperations":29,"externalRequests":28,"nonceChecks":50,"capabilityChecks":188,"bundledLibraries":206},[],{"prepared":14,"raw":28,"locations":192},[193],{"file":194,"line":52,"context":195},"includes\\class-wb-sticky-notes-activator.php","$wpdb->get_col() with variable interpolation",{"escaped":197,"rawEcho":188,"locations":198},110,[199,203],{"file":200,"line":201,"context":202},"admin\\partials\\_settings_page.php",16,"raw output",{"file":204,"line":205,"context":202},"includes\\class-wb-sticky-notes-ajax.php",71,[207],{"name":208,"version":38,"knownCves":209},"Select2",[],[],{"summary":212,"deductions":213},"The wb-sticky-notes plugin v1.2.5 exhibits a mixed security posture. On the positive side, it demonstrates good practices in handling SQL queries and output escaping, with a high percentage of both using prepared statements and proper escaping, respectively. The absence of file operations and external HTTP requests is also a strength. However, there are significant concerns related to its attack surface. The presence of two AJAX handlers, one of which lacks authentication checks, is a critical vulnerability point.  While taint analysis found no immediate critical or high-severity issues, the unchecked AJAX endpoint provides a clear entry point for potential exploitation.\n\nThe vulnerability history reveals one known medium-severity CVE, specifically related to missing authorization. This pattern, combined with the static analysis finding an unprotected AJAX handler, suggests a recurring weakness in how the plugin handles user permissions and access control. The fact that this CVE is not currently unpatched is a positive sign, indicating the developer has addressed past issues. Nevertheless, the uncovered static analysis findings and historical trends necessitate caution. The plugin has a generally good foundation in core security practices but requires immediate attention to its authorization mechanisms for exposed entry points to mitigate identified risks.",[214,217],{"reason":215,"points":216},"Unprotected AJAX handler",8,{"reason":218,"points":216},"One medium severity CVE historically","2026-03-16T19:09:07.094Z",{"wat":221,"direct":234},{"assetPaths":222,"generatorPatterns":227,"scriptPaths":228,"versionParams":229},[223,224,225,226],"\u002Fwp-content\u002Fplugins\u002Fwb-sticky-notes\u002Fadmin\u002Fcss\u002Fwb-sticky-notes-admin.css","\u002Fwp-content\u002Fplugins\u002Fwb-sticky-notes\u002Fadmin\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fwb-sticky-notes\u002Fadmin\u002Fjs\u002Fwb-sticky-notes-admin.js","\u002Fwp-content\u002Fplugins\u002Fwb-sticky-notes\u002Fadmin\u002Fjs\u002Fselect2.min.js",[],[],[230,231,232,233],"wb-sticky-notes\u002Fadmin\u002Fcss\u002Fwb-sticky-notes-admin.css?ver=","wb-sticky-notes\u002Fadmin\u002Fcss\u002Fselect2.min.css?ver=","wb-sticky-notes\u002Fadmin\u002Fjs\u002Fwb-sticky-notes-admin.js?ver=","wb-sticky-notes\u002Fadmin\u002Fjs\u002Fselect2.min.js?ver=",{"cssClasses":235,"htmlComments":238,"htmlAttributes":239,"restEndpoints":241,"jsGlobals":242,"shortcodeOutput":244},[236,237],"wb_stn_new","wb_stn_toggle",[],[240],"data-wb-stn-plugin-url",[],[243],"wb_stn_data",[]]