[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbOvaxd2x4r5IoGu9kM5YZHhpClphdaui4BNDK22QvUs":3,"$fTS-WiJ9r-k3JM--JBAqBNmGuaNPmCjCpx_3jNel92bE":605,"$fGBkQWbkd30UbBu-AA6tgYGvgZmvTNOoBuG2rXW1Q2EU":609},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":20,"download_link":21,"security_score":22,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24,"discovery_status":25,"vulnerabilities":26,"developer":27,"crawl_stats":23,"alternatives":34,"analysis":50,"fingerprints":583},"wp-assistant","WP Assistant","0.4.3","ishihara takashi","https:\u002F\u002Fprofiles.wordpress.org\u002Fishihara-takashi\u002F","\u003Cp>\u003Cstrong>Caution\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin requires PHP 5.3 or later.\u003C\u002Fp>\n\u003Cp>I was tired or customize the functions.php of the theme in the same plugin to install every time.\u003Cbr \u002F>\nTo which functionality needs to be minimal, often, though it together if you do. From the idea and made this plugin.\u003C\u002Fp>\n\u003Cp>This plugin functionality itself is not much, minimum required features are stuffed one plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Basic settings\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable xml-rpc.\u003C\u002Fli>\n\u003Cli>Disable author page.\u003C\u002Fli>\n\u003Cli>Disable wp generator tag.\u003C\u002Fli>\n\u003Cli>Enhance feed links.\u003C\u002Fli>\n\u003Cli>Enhance short link.\u003C\u002Fli>\n\u003Cli>Disable wpautop.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Original Dashboard Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Database optimization\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Ace Editor\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Breadcrumbs\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Admin Menu Editor\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Admin Bar Template\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Admin Post Navigation\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Other Tools\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Inform to the github repository for the following if you request something or fix.\u003C\u002Fp>\n\u003Cp>[Github] (https:\u002F\u002Fgithub.com\u002F1shiharaT\u002Fwp-assistant\u002F)\u003C\u002Fp>\n","Caution",40,2995,0,"2016-04-05T02:22:00.000Z","4.4.34","4.4.1","",[19],"option-framework","http:\u002F\u002Fgrow-group.jp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.4.3.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":22,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"ishihara-takashi",2,50,30,84,"2026-05-20T08:59:04.147Z",[35],{"slug":36,"name":37,"version":38,"author":7,"author_profile":8,"description":39,"short_description":40,"active_installs":41,"downloaded":42,"rating":13,"num_ratings":13,"last_updated":43,"tested_up_to":44,"requires_at_least":45,"requires_php":17,"tags":46,"homepage":48,"download_link":49,"security_score":22,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24},"extend-theme-cusotomizer","Extend Theme Customizer","1.0","\u003Cp>It is a plugin that allows you to set the theme customizer from json file.\u003C\u002Fp>\n\u003Cp>Features Area:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>text\u003C\u002Fli>\n\u003Cli>textarea\u003C\u002Fli>\n\u003Cli>text-editor\u003C\u002Fli>\n\u003Cli>color\u003C\u002Fli>\n\u003Cli>image\u003C\u002Fli>\n\u003Cli>layout-picker\u003C\u002Fli>\n\u003Cli>date-picker\u003C\u002Fli>\n\u003Cli>category-dropdown\u003C\u002Fli>\n\u003Cli>google-font\u003C\u002Fli>\n\u003Cli>menu-dropdown\u003C\u002Fli>\n\u003Cli>post-dropdown\u003C\u002Fli>\n\u003Cli>post-type-dropdown\u003C\u002Fli>\n\u003Cli>taxonomy-dropdown\u003C\u002Fli>\n\u003Cli>user-dropdown\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See example setting file :\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgist.githubusercontent.com\u002F1shiharaT\u002Fd3cdfc7e956cb718800b\u002Fraw\u002F501e70ce293f6ba097e429a5ce37aa6fc66a300a\u002Ftheme-customizer-setting.json\" rel=\"nofollow ugc\">Example Json File\u003C\u002Fa>\u003C\u002Fp>\n","It is a plugin that allows you to set the theme customizer from json file.",10,1755,"2014-07-18T01:55:00.000Z","3.9.40","3.9",[19,47],"theme-customizer","https:\u002F\u002Fgithub.com\u002F1shiharaT\u002Fextend-theme-customizer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fextend-theme-cusotomizer.zip",{"attackSurface":51,"codeSignals":313,"taintFlows":471,"riskAssessment":570,"analyzedAt":582},{"hooks":52,"ajaxHandlers":294,"restRoutes":305,"shortcodes":306,"cronEvents":311,"entryPointCount":312,"unprotectedCount":13},[53,59,63,67,71,74,76,80,82,85,88,90,94,99,103,107,110,113,116,118,121,124,127,130,134,138,141,146,149,153,157,160,163,167,169,173,175,178,181,185,188,191,194,196,198,200,203,205,206,209,211,213,215,217,219,220,222,224,226,228,230,233,236,240,244,246,249,253,255,258,261,264,266,267,269,271,272,273,276,280,283,286,288,292],{"type":54,"name":55,"callback":56,"priority":41,"file":57,"line":58},"action","wp_enqueue_scripts","enqueue_scripts","inc\\fields\\media.php",20,{"type":54,"name":60,"callback":61,"file":62,"line":31},"admin_init","register_setting","inc\\settings.php",{"type":54,"name":64,"callback":65,"file":62,"line":66},"admin_menu","add_admin_menu",31,{"type":54,"name":60,"callback":68,"priority":69,"file":62,"line":70},"set_settings",99,32,{"type":54,"name":72,"callback":72,"file":62,"line":73},"admin_enqueue_scripts",34,{"type":54,"name":72,"callback":56,"priority":41,"file":75,"line":58},"modules\\aceEditor\\aceEditor.php",{"type":54,"name":60,"callback":77,"priority":41,"file":78,"line":79},"add_settings","modules\\activation\\activation.php",23,{"type":54,"name":60,"callback":77,"priority":41,"file":81,"line":31},"modules\\admin\\admin.php",{"type":54,"name":83,"callback":84,"priority":41,"file":81,"line":70},"load_template","log_template_load",{"type":54,"name":86,"callback":84,"priority":41,"file":81,"line":87},"template_include",33,{"type":54,"name":89,"callback":84,"priority":41,"file":81,"line":73},"locate_template",{"type":54,"name":91,"callback":92,"file":81,"line":93},"wp","init",46,{"type":95,"name":96,"callback":97,"file":81,"line":98},"filter","wp_calculate_image_srcset","__return_false",299,{"type":54,"name":100,"callback":101,"priority":29,"file":81,"line":102},"wp_head","feed_links",350,{"type":54,"name":100,"callback":104,"priority":105,"file":81,"line":106},"feed_links_extra",3,351,{"type":54,"name":100,"callback":108,"file":81,"line":109},"rsd_link",352,{"type":54,"name":100,"callback":111,"file":81,"line":112},"wp_generator",368,{"type":54,"name":55,"callback":114,"priority":41,"file":81,"line":115},"closure",447,{"type":95,"name":100,"callback":114,"file":81,"line":117},467,{"type":95,"name":119,"callback":114,"priority":13,"file":81,"line":120},"xmlrpc_methods",480,{"type":95,"name":122,"callback":114,"priority":13,"file":81,"line":123},"wp_headers",489,{"type":54,"name":125,"callback":114,"file":81,"line":126},"template_redirect",512,{"type":95,"name":128,"callback":114,"priority":41,"file":81,"line":129},"author_link",548,{"type":95,"name":131,"callback":132,"file":81,"line":133},"pre_site_transient_update_core","__return_zero",567,{"type":95,"name":135,"callback":136,"file":81,"line":137},"pre_site_transient_update_plugins","anonymous",573,{"type":95,"name":139,"callback":136,"file":81,"line":140},"pre_site_transient_update_themes",577,{"type":54,"name":142,"callback":143,"priority":144,"file":81,"line":145},"admin_bar_menu","admin_bar_template",9999,593,{"type":54,"name":60,"callback":147,"file":81,"line":148},"__construct",656,{"type":95,"name":150,"callback":151,"file":81,"line":152},"tiny_mce_plugins","disable_emojis_tinymce",728,{"type":54,"name":154,"callback":155,"file":156,"line":73},"load-post.php","register_post_page_hooks","modules\\adminPostNav\\adminPostNav.php",{"type":54,"name":72,"callback":158,"file":156,"line":159},"add_css",49,{"type":54,"name":161,"callback":162,"file":156,"line":30},"admin_print_footer_scripts","add_js",{"type":54,"name":164,"callback":165,"priority":41,"file":156,"line":166},"do_meta_boxes","do_meta_box",51,{"type":54,"name":60,"callback":77,"file":168,"line":93},"modules\\breadcrumb\\breadcrumb.php",{"type":54,"name":170,"callback":77,"priority":41,"file":171,"line":172},"wpa_settings_fields_after","modules\\cache\\cache.php",27,{"type":54,"name":92,"callback":92,"priority":13,"file":171,"line":174},29,{"type":54,"name":176,"callback":177,"file":171,"line":73},"delete_post","delete_post_cache",{"type":54,"name":179,"callback":177,"file":171,"line":180},"post_updated",35,{"type":54,"name":182,"callback":183,"file":171,"line":184},"wp_set_comment_status","delete_comment_cache",36,{"type":54,"name":186,"callback":183,"file":171,"line":187},"wp_insert_comment",37,{"type":54,"name":189,"callback":183,"file":171,"line":190},"trash_comment",38,{"type":54,"name":192,"callback":183,"file":171,"line":193},"spam_comment",39,{"type":54,"name":195,"callback":183,"file":171,"line":11},"edit_comment",{"type":54,"name":55,"callback":114,"file":197,"line":11},"modules\\cf7AjaxZip\\cf7AjaxZip.php",{"type":54,"name":100,"callback":114,"file":197,"line":199},44,{"type":54,"name":83,"callback":84,"priority":41,"file":201,"line":202},"modules\\cleanup\\cleanup.php",47,{"type":54,"name":86,"callback":84,"priority":41,"file":201,"line":204},48,{"type":54,"name":89,"callback":84,"priority":41,"file":201,"line":159},{"type":54,"name":207,"callback":114,"file":201,"line":208},"wp_print_scripts",182,{"type":54,"name":55,"callback":114,"priority":41,"file":201,"line":210},200,{"type":95,"name":119,"callback":114,"priority":41,"file":201,"line":212},218,{"type":95,"name":122,"callback":114,"priority":41,"file":201,"line":214},227,{"type":54,"name":125,"callback":114,"file":201,"line":216},245,{"type":95,"name":128,"callback":114,"priority":41,"file":201,"line":218},281,{"type":54,"name":55,"callback":114,"priority":69,"file":201,"line":98},{"type":95,"name":131,"callback":132,"file":201,"line":221},318,{"type":95,"name":135,"callback":136,"file":201,"line":223},324,{"type":95,"name":139,"callback":136,"file":201,"line":225},328,{"type":54,"name":142,"callback":143,"priority":144,"file":201,"line":227},344,{"type":54,"name":60,"callback":92,"file":201,"line":229},402,{"type":54,"name":60,"callback":77,"priority":41,"file":231,"line":232},"modules\\customizeAdmin\\customizeAdmin.php",19,{"type":54,"name":234,"callback":235,"priority":41,"file":231,"line":58},"admin_head","change_admin_bar_logo",{"type":54,"name":237,"callback":238,"file":231,"line":239},"login_enqueue_scripts","change_login_panel",21,{"type":95,"name":241,"callback":242,"priority":41,"file":231,"line":243},"admin_footer_text","change_footer_text",22,{"type":54,"name":60,"callback":77,"priority":41,"file":245,"line":58},"modules\\dashboard\\dashboard.php",{"type":54,"name":247,"callback":248,"file":245,"line":79},"wp_dashboard_setup","add_dashboard_widgets",{"type":54,"name":250,"callback":251,"file":245,"line":252},"load-index.php","hide_welcome_panel",24,{"type":54,"name":60,"callback":77,"file":254,"line":184},"modules\\menuEditor\\menuEditor.php",{"type":54,"name":256,"callback":257,"priority":41,"file":254,"line":187},"admin_print_scripts","scripts",{"type":54,"name":256,"callback":259,"priority":260,"file":254,"line":193},"enhanced",999,{"type":54,"name":60,"callback":77,"file":262,"line":263},"modules\\optimize\\optimize.php",25,{"type":54,"name":60,"callback":77,"priority":41,"file":265,"line":174},"modules\\originalCss\\originalCss.php",{"type":54,"name":91,"callback":92,"file":265,"line":187},{"type":95,"name":100,"callback":268,"file":265,"line":93},"render",{"type":54,"name":60,"callback":77,"priority":41,"file":270,"line":174},"modules\\originalJs\\originalJs.php",{"type":54,"name":91,"callback":92,"file":270,"line":187},{"type":95,"name":100,"callback":268,"file":270,"line":93},{"type":54,"name":64,"callback":274,"file":275,"line":263},"add_meta_box","modules\\templateEditor\\templateEditor.php",{"type":54,"name":277,"callback":278,"file":275,"line":279},"save_post","template_save_data",28,{"type":95,"name":281,"callback":282,"file":275,"line":31},"manage_pages_columns","template_editor_head",{"type":54,"name":284,"callback":285,"priority":41,"file":275,"line":66},"manage_pages_custom_column","template_editor_content",{"type":54,"name":60,"callback":77,"file":287,"line":232},"modules\\tools\\tools.php",{"type":54,"name":289,"callback":290,"file":291,"line":166},"plugins_loaded","load_textdomain","wp-assistant.php",{"type":54,"name":289,"callback":54,"file":291,"line":293},58,[295,299,302],{"action":296,"nopriv":297,"callback":296,"hasNonce":298,"hasCapCheck":297,"file":62,"line":180},"update_wpaupports_option",false,true,{"action":300,"nopriv":297,"callback":300,"hasNonce":298,"hasCapCheck":297,"file":262,"line":301},"run_optimize",26,{"action":303,"nopriv":297,"callback":304,"hasNonce":298,"hasCapCheck":297,"file":287,"line":58},"wpa_option_import","option_import",[],[307],{"tag":308,"callback":309,"file":168,"line":310},"wpa_breadcrumb","shortcode",45,[],4,{"dangerousFunctions":314,"sqlUsage":326,"outputEscaping":333,"fileOperations":469,"externalRequests":13,"nonceChecks":312,"capabilityChecks":105,"bundledLibraries":470},[315,318,320,321,322],{"fn":316,"file":81,"line":137,"context":317},"create_function","add_filter( 'pre_site_transient_update_plugins', create_function( '$a', \"return null;\" ) );",{"fn":316,"file":81,"line":140,"context":319},"add_filter( 'pre_site_transient_update_themes', create_function( '$a', \"return null;\" ) );",{"fn":316,"file":201,"line":223,"context":317},{"fn":316,"file":201,"line":225,"context":319},{"fn":323,"file":291,"line":324,"context":325},"unserialize",93,"$defaults = unserialize( 'a:23:{s:23:\"modules_list_cf7AjaxZip\";s:1:\"0\";s:23:\"modules_list_menuEditor",{"prepared":252,"raw":29,"locations":327},[328,331],{"file":171,"line":329,"context":330},241,"$wpdb->query() with variable interpolation",{"file":171,"line":332,"context":330},298,{"escaped":334,"rawEcho":22,"locations":335},52,[336,340,341,343,344,345,346,348,349,350,351,352,354,355,356,357,359,360,361,362,363,365,366,368,370,372,374,376,377,378,380,381,382,385,387,388,389,390,392,394,395,396,398,400,402,403,404,406,408,410,412,414,416,417,418,419,420,422,424,425,426,427,429,431,433,435,437,439,441,443,445,446,448,449,451,452,454,456,457,459,461,463,465,466,468],{"file":337,"line":338,"context":339},"inc\\fields\\checkbox.php",41,"raw output",{"file":337,"line":338,"context":339},{"file":342,"line":199,"context":339},"inc\\fields\\editor.php",{"file":57,"line":66,"context":339},{"file":57,"line":66,"context":339},{"file":57,"line":66,"context":339},{"file":347,"line":184,"context":339},"inc\\fields\\radiobox.php",{"file":347,"line":184,"context":339},{"file":347,"line":184,"context":339},{"file":347,"line":187,"context":339},{"file":347,"line":187,"context":339},{"file":353,"line":87,"context":339},"inc\\fields\\selectbox.php",{"file":353,"line":87,"context":339},{"file":353,"line":187,"context":339},{"file":353,"line":190,"context":339},{"file":358,"line":11,"context":339},"inc\\fields\\source.php",{"file":358,"line":11,"context":339},{"file":358,"line":11,"context":339},{"file":358,"line":11,"context":339},{"file":358,"line":11,"context":339},{"file":358,"line":364,"context":339},43,{"file":358,"line":166,"context":339},{"file":358,"line":367,"context":339},54,{"file":358,"line":369,"context":339},61,{"file":358,"line":371,"context":339},75,{"file":358,"line":373,"context":339},76,{"file":375,"line":301,"context":339},"inc\\fields\\text.php",{"file":375,"line":301,"context":339},{"file":375,"line":301,"context":339},{"file":379,"line":301,"context":339},"inc\\fields\\textarea.php",{"file":379,"line":301,"context":339},{"file":379,"line":301,"context":339},{"file":383,"line":384,"context":339},"inc\\helper.php",59,{"file":383,"line":386,"context":339},60,{"file":383,"line":386,"context":339},{"file":383,"line":386,"context":339},{"file":383,"line":369,"context":339},{"file":383,"line":391,"context":339},62,{"file":383,"line":393,"context":339},64,{"file":383,"line":393,"context":339},{"file":383,"line":393,"context":339},{"file":383,"line":397,"context":339},65,{"file":383,"line":399,"context":339},66,{"file":383,"line":401,"context":339},83,{"file":383,"line":32,"context":339},{"file":383,"line":32,"context":339},{"file":383,"line":405,"context":339},190,{"file":62,"line":407,"context":339},279,{"file":62,"line":409,"context":339},439,{"file":62,"line":411,"context":339},441,{"file":62,"line":413,"context":339},444,{"file":415,"line":252,"context":339},"inc\\views\\options.php",{"file":415,"line":66,"context":339},{"file":415,"line":180,"context":339},{"file":415,"line":180,"context":339},{"file":415,"line":310,"context":339},{"file":81,"line":421,"context":339},468,{"file":423,"line":243,"context":339},"modules\\admin\\views\\options.php",{"file":423,"line":301,"context":339},{"file":423,"line":301,"context":339},{"file":423,"line":190,"context":339},{"file":156,"line":428,"context":339},126,{"file":168,"line":430,"context":339},121,{"file":171,"line":432,"context":339},180,{"file":231,"line":434,"context":339},111,{"file":231,"line":436,"context":339},112,{"file":245,"line":438,"context":339},67,{"file":254,"line":440,"context":339},140,{"file":262,"line":442,"context":339},101,{"file":262,"line":444,"context":339},174,{"file":262,"line":208,"context":339},{"file":265,"line":447,"context":339},87,{"file":270,"line":324,"context":339},{"file":275,"line":450,"context":339},74,{"file":275,"line":373,"context":339},{"file":275,"line":453,"context":339},78,{"file":275,"line":455,"context":339},82,{"file":275,"line":32,"context":339},{"file":275,"line":458,"context":339},86,{"file":275,"line":460,"context":339},94,{"file":275,"line":462,"context":339},125,{"file":287,"line":464,"context":339},42,{"file":287,"line":464,"context":339},{"file":287,"line":467,"context":339},56,{"file":287,"line":371,"context":339},9,[],[472,490,498,511,519,545],{"entryPoint":473,"graph":474,"unsanitizedCount":13,"severity":489},"template_save_data (modules\\templateEditor\\templateEditor.php:149)",{"nodes":475,"edges":487},[476,481],{"id":477,"type":478,"label":479,"file":275,"line":480},"n0","source","$_POST",173,{"id":482,"type":483,"label":484,"file":275,"line":485,"wp_function":486},"n1","sink","fopen() [File Access]",177,"fopen",[488],{"from":477,"to":482,"sanitized":298},"low",{"entryPoint":491,"graph":492,"unsanitizedCount":13,"severity":489},"\u003CtemplateEditor> (modules\\templateEditor\\templateEditor.php:0)",{"nodes":493,"edges":496},[494,495],{"id":477,"type":478,"label":479,"file":275,"line":480},{"id":482,"type":483,"label":484,"file":275,"line":485,"wp_function":486},[497],{"from":477,"to":482,"sanitized":298},{"entryPoint":499,"graph":500,"unsanitizedCount":13,"severity":489},"option_import (modules\\tools\\tools.php:93)",{"nodes":501,"edges":509},[502,505],{"id":477,"type":478,"label":503,"file":287,"line":504},"$_REQUEST",95,{"id":482,"type":483,"label":506,"file":287,"line":507,"wp_function":508},"update_option() [Settings Manipulation]",106,"update_option",[510],{"from":477,"to":482,"sanitized":298},{"entryPoint":512,"graph":513,"unsanitizedCount":13,"severity":489},"\u003Ctools> (modules\\tools\\tools.php:0)",{"nodes":514,"edges":517},[515,516],{"id":477,"type":478,"label":503,"file":287,"line":504},{"id":482,"type":483,"label":506,"file":287,"line":507,"wp_function":508},[518],{"from":477,"to":482,"sanitized":298},{"entryPoint":520,"graph":521,"unsanitizedCount":29,"severity":544},"init (modules\\cache\\cache.php:139)",{"nodes":522,"edges":540},[523,526,529,531,535],{"id":477,"type":478,"label":524,"file":171,"line":525},"$_SERVER",141,{"id":482,"type":483,"label":527,"file":171,"line":432,"wp_function":528},"echo() [XSS]","echo",{"id":530,"type":478,"label":524,"file":171,"line":485},"n2",{"id":532,"type":533,"label":534,"file":171,"line":485},"n3","transform","→ get_cache()",{"id":536,"type":483,"label":537,"file":171,"line":538,"wp_function":539},"n4","get_row() [SQLi]",257,"get_row",[541,542,543],{"from":477,"to":482,"sanitized":297},{"from":530,"to":532,"sanitized":297},{"from":532,"to":536,"sanitized":297},"high",{"entryPoint":546,"graph":547,"unsanitizedCount":312,"severity":544},"\u003Ccache> (modules\\cache\\cache.php:0)",{"nodes":548,"edges":564},[549,550,551,552,555,556,558,560,562],{"id":477,"type":478,"label":524,"file":171,"line":525},{"id":482,"type":483,"label":527,"file":171,"line":432,"wp_function":528},{"id":530,"type":478,"label":524,"file":171,"line":525},{"id":532,"type":483,"label":553,"file":171,"line":329,"wp_function":554},"query() [SQLi]","query",{"id":536,"type":478,"label":524,"file":171,"line":525},{"id":557,"type":483,"label":537,"file":171,"line":538,"wp_function":539},"n5",{"id":559,"type":478,"label":524,"file":171,"line":485},"n6",{"id":561,"type":533,"label":534,"file":171,"line":485},"n7",{"id":563,"type":483,"label":537,"file":171,"line":538,"wp_function":539},"n8",[565,566,567,568,569],{"from":477,"to":482,"sanitized":297},{"from":530,"to":532,"sanitized":297},{"from":536,"to":557,"sanitized":297},{"from":559,"to":561,"sanitized":297},{"from":561,"to":563,"sanitized":297},{"summary":571,"deductions":572},"The 'wp-assistant' plugin v0.4.3 exhibits a mixed security posture. On one hand, the plugin demonstrates good security practices with 92% of SQL queries using prepared statements, robust nonce checks (4 total), and capability checks (3 total). Furthermore, the absence of any known CVEs or past vulnerabilities is a positive indicator of diligent development. However, several areas raise concerns. The presence of dangerous functions like 'create_function' and 'unserialize' is a significant red flag, as these can be exploited if user input is not meticulously handled. The taint analysis revealing two flows with unsanitized paths, classified as high severity, directly points to potential vulnerabilities where untrusted data could be processed insecurely. Additionally, only 38% of output escaping suggests a substantial risk of Cross-Site Scripting (XSS) vulnerabilities.\n\nWhile the plugin boasts a seemingly secure attack surface with all entry points protected by authentication, the identified high-severity taint flows and the low output escaping rate are critical weaknesses. The lack of past vulnerabilities could indicate either a historically secure plugin or a lack of thorough historical auditing. The combination of dangerous function usage and unsanitized taint paths suggests that while the plugin's entry points might be secured, the internal handling of data within these points requires significant attention. The low output escaping is a systemic issue that needs immediate remediation to prevent common web attacks.",[573,576,579],{"reason":574,"points":575},"High severity unsanitized taint flows",15,{"reason":577,"points":578},"Low output escaping rate (38%)",8,{"reason":580,"points":581},"Presence of dangerous functions (create_function, unserialize)",7,"2026-03-16T22:11:23.524Z",{"wat":584,"direct":597},{"assetPaths":585,"generatorPatterns":588,"scriptPaths":589,"versionParams":594},[586,587],"\u002Fwp-content\u002Fplugins\u002Fwp-assistant\u002Fmodules\u002FaceEditor\u002Fassets\u002Faceinit.js","\u002Fwp-content\u002Fplugins\u002Fwp-assistant\u002Fmodules\u002FaceEditor\u002Fassets\u002Face-editor-style.css",[],[590,591,592,593],"\u002F\u002Fcdnjs.cloudflare.com\u002Fajax\u002Flibs\u002Face\u002F1.1.9\u002Face.js","\u002F\u002Fnightwing.github.io\u002Femmet-core\u002Femmet.js","\u002F\u002Fcdnjs.cloudflare.com\u002Fajax\u002Flibs\u002Face\u002F1.1.9\u002Fext-emmet.js","\u002F\u002Fcdnjs.cloudflare.com\u002Fajax\u002Flibs\u002Face\u002F1.1.9\u002Fext-language_tools.js",[595,596],"wp-assistant\u002Fmodules\u002FaceEditor\u002Fassets\u002Faceinit.js?ver=","wp-assistant\u002Fmodules\u002FaceEditor\u002Fassets\u002Face-editor-style.css?ver=",{"cssClasses":598,"htmlComments":599,"htmlAttributes":600,"restEndpoints":601,"jsGlobals":602,"shortcodeOutput":604},[],[],[],[],[603],"window.Ace",[],{"error":298,"url":606,"statusCode":607,"statusMessage":608,"message":608},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwp-assistant\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":252,"versions":610},[611,616,623,630,637,644,651,658,665,672,679,686,693,700,707,714,721,728,735,742,749,756,763,770],{"version":6,"download_url":21,"svn_tag_url":612,"released_at":23,"has_diff":297,"diff_files_changed":613,"diff_lines":23,"trac_diff_url":614,"vulnerabilities":615,"is_current":298},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.4.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.4.2&new_path=%2Fwp-assistant%2Ftags%2F0.4.3",[],{"version":617,"download_url":618,"svn_tag_url":619,"released_at":23,"has_diff":297,"diff_files_changed":620,"diff_lines":23,"trac_diff_url":621,"vulnerabilities":622,"is_current":297},"0.4.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.4.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.4.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.4.1&new_path=%2Fwp-assistant%2Ftags%2F0.4.2",[],{"version":624,"download_url":625,"svn_tag_url":626,"released_at":23,"has_diff":297,"diff_files_changed":627,"diff_lines":23,"trac_diff_url":628,"vulnerabilities":629,"is_current":297},"0.4.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.4.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.4.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.4.0&new_path=%2Fwp-assistant%2Ftags%2F0.4.1",[],{"version":631,"download_url":632,"svn_tag_url":633,"released_at":23,"has_diff":297,"diff_files_changed":634,"diff_lines":23,"trac_diff_url":635,"vulnerabilities":636,"is_current":297},"0.4.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.4.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.4.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.3.3&new_path=%2Fwp-assistant%2Ftags%2F0.4.0",[],{"version":638,"download_url":639,"svn_tag_url":640,"released_at":23,"has_diff":297,"diff_files_changed":641,"diff_lines":23,"trac_diff_url":642,"vulnerabilities":643,"is_current":297},"0.3.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.3.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.3.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.3.2&new_path=%2Fwp-assistant%2Ftags%2F0.3.3",[],{"version":645,"download_url":646,"svn_tag_url":647,"released_at":23,"has_diff":297,"diff_files_changed":648,"diff_lines":23,"trac_diff_url":649,"vulnerabilities":650,"is_current":297},"0.3.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.3.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.3.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.3.1&new_path=%2Fwp-assistant%2Ftags%2F0.3.2",[],{"version":652,"download_url":653,"svn_tag_url":654,"released_at":23,"has_diff":297,"diff_files_changed":655,"diff_lines":23,"trac_diff_url":656,"vulnerabilities":657,"is_current":297},"0.3.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.3.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.3.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.3.0&new_path=%2Fwp-assistant%2Ftags%2F0.3.1",[],{"version":659,"download_url":660,"svn_tag_url":661,"released_at":23,"has_diff":297,"diff_files_changed":662,"diff_lines":23,"trac_diff_url":663,"vulnerabilities":664,"is_current":297},"0.3.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.3.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.9&new_path=%2Fwp-assistant%2Ftags%2F0.3.0",[],{"version":666,"download_url":667,"svn_tag_url":668,"released_at":23,"has_diff":297,"diff_files_changed":669,"diff_lines":23,"trac_diff_url":670,"vulnerabilities":671,"is_current":297},"0.2.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.8&new_path=%2Fwp-assistant%2Ftags%2F0.2.9",[],{"version":673,"download_url":674,"svn_tag_url":675,"released_at":23,"has_diff":297,"diff_files_changed":676,"diff_lines":23,"trac_diff_url":677,"vulnerabilities":678,"is_current":297},"0.2.8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.7&new_path=%2Fwp-assistant%2Ftags%2F0.2.8",[],{"version":680,"download_url":681,"svn_tag_url":682,"released_at":23,"has_diff":297,"diff_files_changed":683,"diff_lines":23,"trac_diff_url":684,"vulnerabilities":685,"is_current":297},"0.2.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.5&new_path=%2Fwp-assistant%2Ftags%2F0.2.7",[],{"version":687,"download_url":688,"svn_tag_url":689,"released_at":23,"has_diff":297,"diff_files_changed":690,"diff_lines":23,"trac_diff_url":691,"vulnerabilities":692,"is_current":297},"0.2.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.4&new_path=%2Fwp-assistant%2Ftags%2F0.2.5",[],{"version":694,"download_url":695,"svn_tag_url":696,"released_at":23,"has_diff":297,"diff_files_changed":697,"diff_lines":23,"trac_diff_url":698,"vulnerabilities":699,"is_current":297},"0.2.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.3&new_path=%2Fwp-assistant%2Ftags%2F0.2.4",[],{"version":701,"download_url":702,"svn_tag_url":703,"released_at":23,"has_diff":297,"diff_files_changed":704,"diff_lines":23,"trac_diff_url":705,"vulnerabilities":706,"is_current":297},"0.2.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.2&new_path=%2Fwp-assistant%2Ftags%2F0.2.3",[],{"version":708,"download_url":709,"svn_tag_url":710,"released_at":23,"has_diff":297,"diff_files_changed":711,"diff_lines":23,"trac_diff_url":712,"vulnerabilities":713,"is_current":297},"0.2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.1&new_path=%2Fwp-assistant%2Ftags%2F0.2.2",[],{"version":715,"download_url":716,"svn_tag_url":717,"released_at":23,"has_diff":297,"diff_files_changed":718,"diff_lines":23,"trac_diff_url":719,"vulnerabilities":720,"is_current":297},"0.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.&new_path=%2Fwp-assistant%2Ftags%2F0.2.1",[],{"version":722,"download_url":723,"svn_tag_url":724,"released_at":23,"has_diff":297,"diff_files_changed":725,"diff_lines":23,"trac_diff_url":726,"vulnerabilities":727,"is_current":297},"0.2.","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2..zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.2.0&new_path=%2Fwp-assistant%2Ftags%2F0.2.",[],{"version":729,"download_url":730,"svn_tag_url":731,"released_at":23,"has_diff":297,"diff_files_changed":732,"diff_lines":23,"trac_diff_url":733,"vulnerabilities":734,"is_current":297},"0.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.1.9&new_path=%2Fwp-assistant%2Ftags%2F0.2.0",[],{"version":736,"download_url":737,"svn_tag_url":738,"released_at":23,"has_diff":297,"diff_files_changed":739,"diff_lines":23,"trac_diff_url":740,"vulnerabilities":741,"is_current":297},"0.1.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.1.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.1.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.1.8&new_path=%2Fwp-assistant%2Ftags%2F0.1.9",[],{"version":743,"download_url":744,"svn_tag_url":745,"released_at":23,"has_diff":297,"diff_files_changed":746,"diff_lines":23,"trac_diff_url":747,"vulnerabilities":748,"is_current":297},"0.1.8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.1.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.1.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.1.7&new_path=%2Fwp-assistant%2Ftags%2F0.1.8",[],{"version":750,"download_url":751,"svn_tag_url":752,"released_at":23,"has_diff":297,"diff_files_changed":753,"diff_lines":23,"trac_diff_url":754,"vulnerabilities":755,"is_current":297},"0.1.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.1.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.1.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.1.6&new_path=%2Fwp-assistant%2Ftags%2F0.1.7",[],{"version":757,"download_url":758,"svn_tag_url":759,"released_at":23,"has_diff":297,"diff_files_changed":760,"diff_lines":23,"trac_diff_url":761,"vulnerabilities":762,"is_current":297},"0.1.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.1.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.1.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.1.5&new_path=%2Fwp-assistant%2Ftags%2F0.1.6",[],{"version":764,"download_url":765,"svn_tag_url":766,"released_at":23,"has_diff":297,"diff_files_changed":767,"diff_lines":23,"trac_diff_url":768,"vulnerabilities":769,"is_current":297},"0.1.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.1.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.1.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-assistant%2Ftags%2F0.1.2&new_path=%2Fwp-assistant%2Ftags%2F0.1.5",[],{"version":771,"download_url":772,"svn_tag_url":773,"released_at":23,"has_diff":297,"diff_files_changed":774,"diff_lines":23,"trac_diff_url":23,"vulnerabilities":775,"is_current":297},"0.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-assistant.0.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-assistant\u002Ftags\u002F0.1.2\u002F",[],[]]