[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJ3TRVTSETdDmQ7bNvqVKbHeCKbSXchrR-ieiIreGRDY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":39,"fingerprints":138},"wp-admin-cache","WP Admin Cache","0.2.7","Grf Studio","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrfstudio\u002F","\u003Cp>This lightweight plugin caches the most visited pages in the admin area; it uses ajax to prefetch the pages and stores them on the server for each user.\u003C\u002Fp>\n\u003Cp>The cache is useful for sites with many installed plugins, which often make the administrative section very slow, especially in the case of woocommerce with many displayed products.\u003C\u002Fp>\n","The first cache plugin for the WordPress admin area.",300,8234,94,11,"2020-06-13T13:33:00.000Z","5.4.19","4.6","5.6",[20,21,22,23,24],"admin-cache","admin-performance","admin-speed","slow-admin","woocommerce-performance","https:\u002F\u002Fwww.wpadmincache.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-admin-cache.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"grfstudio",1,30,84,"2026-04-04T09:18:28.645Z",[],{"attackSurface":40,"codeSignals":81,"taintFlows":127,"riskAssessment":128,"analyzedAt":137},{"hooks":41,"ajaxHandlers":77,"restRoutes":78,"shortcodes":79,"cronEvents":80,"entryPointCount":28,"unprotectedCount":28},[42,49,53,57,60,63,66,70,74],{"type":43,"name":44,"callback":45,"priority":46,"file":47,"line":48},"action","activated_plugin","detect_plugin_activation",10,"index.php",29,{"type":43,"name":50,"callback":51,"file":47,"line":52},"admin_menu","init",42,{"type":43,"name":54,"callback":55,"file":47,"line":56},"admin_print_footer_scripts","writeScripts",43,{"type":43,"name":44,"callback":58,"file":47,"line":59},"purgeCache",95,{"type":43,"name":61,"callback":58,"file":47,"line":62},"deactivated_plugin",96,{"type":43,"name":64,"callback":58,"file":47,"line":65},"wp_insert_post",97,{"type":67,"name":68,"callback":68,"priority":46,"file":47,"line":69},"filter","widget_update_callback",98,{"type":43,"name":71,"callback":72,"priority":46,"file":47,"line":73},"upgrader_process_complete","upgrader_callback",99,{"type":43,"name":75,"callback":58,"file":47,"line":76},"admin_init",103,[],[],[],[],{"dangerousFunctions":82,"sqlUsage":83,"outputEscaping":85,"fileOperations":28,"externalRequests":28,"nonceChecks":34,"capabilityChecks":28,"bundledLibraries":126},[],{"prepared":28,"raw":28,"locations":84},[],{"escaped":86,"rawEcho":87,"locations":88},7,19,[89,92,94,96,98,101,103,104,106,108,110,112,113,114,116,118,120,122,124],{"file":47,"line":90,"context":91},69,"raw output",{"file":47,"line":93,"context":91},148,{"file":47,"line":95,"context":91},152,{"file":47,"line":97,"context":91},154,{"file":99,"line":100,"context":91},"settings.php",38,{"file":99,"line":102,"context":91},41,{"file":99,"line":56,"context":91},{"file":99,"line":105,"context":91},44,{"file":99,"line":107,"context":91},45,{"file":99,"line":109,"context":91},53,{"file":99,"line":111,"context":91},58,{"file":99,"line":111,"context":91},{"file":99,"line":111,"context":91},{"file":99,"line":115,"context":91},59,{"file":99,"line":117,"context":91},60,{"file":99,"line":119,"context":91},63,{"file":99,"line":121,"context":91},66,{"file":99,"line":123,"context":91},68,{"file":99,"line":125,"context":91},70,[],[],{"summary":129,"deductions":130},"The wp-admin-cache plugin version 0.2.7 exhibits a strong security posture in several key areas. Notably, it has no recorded vulnerabilities (CVEs) and a clean vulnerability history, suggesting a history of secure development. The code analysis reveals a commendably small attack surface with zero entry points requiring authentication, and no dangerous functions, file operations, or external HTTP requests. The plugin also diligently uses prepared statements for all its SQL queries and includes nonce checks, which are positive indicators of secure coding practices. However, a significant concern arises from the low percentage of properly escaped output (27%). This indicates a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled with sufficient care before being displayed to users. While taint analysis showed no issues, the lack of comprehensive output escaping is a weakness that could be exploited. The absence of capability checks in the provided data is also a point of mild concern, as it suggests that actions performed by the plugin might not be properly restricted based on user roles, though with zero entry points, this risk is currently mitigated.",[131,134],{"reason":132,"points":133},"Low percentage of properly escaped output",6,{"reason":135,"points":136},"Absence of capability checks",2,"2026-03-16T20:03:00.011Z",{"wat":139,"direct":148},{"assetPaths":140,"generatorPatterns":143,"scriptPaths":144,"versionParams":145},[141,142],"\u002Fwp-content\u002Fplugins\u002Fwp-admin-cache\u002Findex.js","\u002Fwp-content\u002Fplugins\u002Fwp-admin-cache\u002Findex.css",[],[141],[146,147],"wp-admin-cache\u002Findex.js?ver=","wp-admin-cache\u002Findex.css?ver=",{"cssClasses":149,"htmlComments":151,"htmlAttributes":153,"restEndpoints":154,"jsGlobals":155,"shortcodeOutput":157},[150],"wp-admin-cache-label",[152],"\u003C!--wp-admin-cached:([0-9]+)-->",[],[],[156],"wp_admin_cache_prefetch",[]]