[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxMsV9ar1ryU_duVaXaZEQ1HBd5IYMi4BeFNepz77YBk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":134,"fingerprints":189},"wp-excerpt-settings","WP Excerpt Settings","1.1.2","Yslo","https:\u002F\u002Fprofiles.wordpress.org\u002Fyslo\u002F","\u003Cp>Allows you the ability to set Excerpt through Settings panel.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Set text to symbolize the excerpt end\u003C\u002Fli>\n\u003Cli>Set words length used by automatic excerpt\u003C\u002Fli>\n\u003Cli>Use default WordPress behaviors\u003C\u002Fli>\n\u003Cli>Excerpt settings added on Reading Settings (Settings > Reading)\u003C\u002Fli>\n\u003Cli>Contextual Help\u003C\u002Fli>\n\u003Cli>Translation MO\u002FPO files\u003C\u002Fli>\n\u003Cli>Desactivate restore default WordPress behavior\u003C\u002Fli>\n\u003Cli>Uninstall restore default WordPress behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress Excerpt through UI (User Interface).",200,8475,100,2,"2017-12-20T22:37:00.000Z","4.9.29","3.0","",[20,21,22,23,24],"admin","automatic","core","theme","updates","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-excerpt-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-excerpt-settings.1.1.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"yslo",6,3300,30,84,"2026-04-04T21:36:09.842Z",[40,56,77,96,113],{"slug":41,"name":42,"version":43,"author":7,"author_profile":8,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":16,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":54,"download_link":55,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-updates-settings","WP Updates Settings","1.1.4","\u003Cp>Allows you the ability to set Updates and Automatic Background Updates through Settings panel.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Show\u002Fhide Updates notification\u003C\u002Fli>\n\u003Cli>Use default WordPress behaviors\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Updates capabilities to Administrator users\u003C\u002Fli>\n\u003Cli>Set Major Core Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Minor Core Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Plugin Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Theme Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Translation files Automatic Background Updates\u003C\u002Fli>\n\u003Cli>Set Auto Core Update Notification emails.\u003C\u002Fli>\n\u003Cli>Add Updates panel (Settings > Updates)\u003C\u002Fli>\n\u003Cli>Contextual Help\u003C\u002Fli>\n\u003Cli>Translation MO\u002FPO files\u003C\u002Fli>\n\u003Cli>Multisite\u003C\u002Fli>\n\u003Cli>Desactivate restore default WordPress behavior\u003C\u002Fli>\n\u003Cli>Uninstall restore default WordPress behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n","Configure WordPress updates settings through UI (User Interface).",1000,21138,88,5,"2017-12-20T22:09:00.000Z","3.7",[20,21,53,22,24],"background","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-updates-settings\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-updates-settings.1.1.4.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":13,"downloaded":64,"rating":28,"num_ratings":28,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":75,"download_link":76,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"auto-update","Auto Update","1.0.2","Valeriu Tihai","https:\u002F\u002Fprofiles.wordpress.org\u002Fvaleriutihai\u002F","\u003Cp>Auto Update is built for site owners who want WordPress to stay current without logging in to run updates manually.\u003C\u002Fp>\n\u003Cp>It keeps WordPress core, plugins, and themes updated automatically, which helps reduce maintenance work, apply security fixes sooner, and keep the site closer to the latest stable releases.\u003C\u002Fp>\n\u003Cp>Once activated, it enables both minor and major core updates and allows installed plugins and themes to update in the background.\u003C\u002Fp>\n\u003Cp>There is no settings page. Activate the plugin and let WordPress handle updates automatically.\u003C\u002Fp>\n","Keeps WordPress core, plugins, and themes updated automatically to reduce manual maintenance and improve security.",3683,"2026-03-14T02:42:00.000Z","6.9.4","5.8","7.4",[70,71,72,73,74],"automatic-updates","background-updates","core-updates","plugin-updates","theme-updates","https:\u002F\u002Fstylishwp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-update.1.0.2.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":13,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":18,"tags":91,"homepage":94,"download_link":95,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"l7-automatic-updates","L7 Automatic Updates","2.0.0","Jeff","https:\u002F\u002Fprofiles.wordpress.org\u002Fjeffreysmattson\u002F","\u003Cp>A simple plugin that gives you the flexibility to set whether you want individual plugins to update or not.  This is something I find very useful on many of my sites.  Some plugins have been edited by previous Developers and they cannot be updated.  Other plugins on the same site still need to be updated.  You can set this to update the ones that can be updated automatically and don’t need specific attention.\u003C\u002Fp>\n\u003Cp>Choose whether you want the updater to update even though you are using a version control system such as SVN or git.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Users can set automatic updates:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>For Major WordPress Releases\u003C\u002Fli>\n\u003Cli>For Minor WordPress Releases\u003C\u002Fli>\n\u003Cli>For Themes\u003C\u002Fli>\n\u003Cli>For All Plugins\u003C\u002Fli>\n\u003Cli>For Individual Plugins\u003C\u002Fli>\n\u003Cli>Change notification email address.\u003C\u002Fli>\n\u003C\u002Ful>\n","Set individual plugins, major and minor WordPress releases, themes and all plugins to automatically update.",10,1885,1,"2017-09-02T03:51:00.000Z","4.8.28","3.8.2",[21,22,92,93,24],"plugins","themes","http:\u002F\u002Flayer7web.com\u002Fprojects\u002Fl7-automatic-updates","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fl7-automatic-updates.zip",{"slug":97,"name":98,"version":59,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":51,"requires_php":18,"tags":109,"homepage":111,"download_link":112,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"automatic-updater","Advanced Automatic Updates","Gary Pendergast","https:\u002F\u002Fprofiles.wordpress.org\u002Fpento\u002F","\u003Cp>Advanced Automatic Updates adds extra options to WordPress’ built-in Automatic Updates feature. On top of security updates, it also supports installing major releases, plugins, themes, or even regular SVN checkouts!\u003C\u002Fp>\n\u003Cp>If you’re working on a WordPress Multisite install, it will properly restrict the options page to your Network Admin.\u003C\u002Fp>\n\u003Cp>While this will be useful for the vast majority of sites, please exercise caution, particularly if you have any custom themes or plugins running on your site.\u003C\u002Fp>\n","Adds extra options to WordPress' built-in Automatic Updates feature.",30000,255107,94,61,"2021-06-04T00:46:00.000Z","5.0.25",[22,92,110,93,24],"stable","http:\u002F\u002Fpento.net\u002Fprojects\u002Fautomatic-updater-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautomatic-updater.1.0.2.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":123,"num_ratings":124,"last_updated":125,"tested_up_to":66,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":132,"download_link":133,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"disable-updates","Disable Updates for WordPress Core, Plugins and Themes","1.4.2","Johan van der Wijk","https:\u002F\u002Fprofiles.wordpress.org\u002Fvanderwijk\u002F","\u003Cp>This plugin disables all WordPress updates (core, plugins and themes). This can be useful if you have multiple environments such as a live and staging server and you don’t want your users to use the update functionality.\u003C\u002Fp>\n\u003Cp>This plugin not only disables the update mechanism for the core, plugins and themes, but it also removes the update menu item from the left navigation menu in the admin dashboard.\u003C\u002Fp>\n","Disables the WordPress update checking and notification system for all core, plugin and theme updates.",10000,108696,96,4,"2025-12-01T15:45:00.000Z","4.6","5.6",[129,114,130,131,24],"core-update","plugin-update","theme-update","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdisable-updates\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-updates.1.4.2.zip",{"attackSurface":135,"codeSignals":165,"taintFlows":181,"riskAssessment":182,"analyzedAt":188},{"hooks":136,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":164,"entryPointCount":28,"unprotectedCount":28},[137,143,148,153,156],{"type":138,"name":139,"callback":140,"file":141,"line":142},"filter","excerpt_more","wp_excerpt_more","wp-excerpt-settings.php",33,{"type":138,"name":144,"callback":145,"priority":146,"file":141,"line":147},"excerpt_length","wp_excerpt_length",999,34,{"type":149,"name":150,"callback":151,"file":141,"line":152},"action","admin_init","wp_excerpt_settings_admin_init",36,{"type":138,"name":154,"callback":155,"priority":85,"file":141,"line":37},"plugin_action_links","add_action_link",{"type":149,"name":157,"callback":158,"priority":159,"file":141,"line":160},"load-options-reading.php","wp_excerpt_settings_add_help_tab",20,92,[],[],[],[],{"dangerousFunctions":166,"sqlUsage":167,"outputEscaping":169,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":180},[],{"prepared":28,"raw":28,"locations":168},[],{"escaped":49,"rawEcho":124,"locations":170},[171,174,176,178],{"file":141,"line":172,"context":173},105,"raw output",{"file":141,"line":175,"context":173},106,{"file":141,"line":177,"context":173},114,{"file":141,"line":179,"context":173},115,[],[],{"summary":183,"deductions":184},"The \"wp-excerpt-settings\" plugin version 1.1.2 exhibits a strong security posture based on the provided static analysis. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a zero attack surface, which is a significant positive. Furthermore, the code signals indicate a complete absence of dangerous functions and file operations. All SQL queries are properly prepared, and there are no external HTTP requests. This lack of common vulnerability vectors is commendable.\n\nHowever, a notable concern arises from the output escaping analysis. With 9 total outputs and only 56% properly escaped, there's a significant risk of cross-site scripting (XSS) vulnerabilities. If user-supplied data is being outputted without sufficient sanitization, an attacker could potentially inject malicious scripts. The absence of nonce checks and capability checks, while not immediately alarming given the zero attack surface, could become a concern if the plugin's functionality were to expand or if new entry points were introduced in future versions without proper authorization.\n\nThe vulnerability history is also a positive indicator, with zero known CVEs and no recorded vulnerabilities. This suggests a history of secure development or a lack of discovered flaws. In conclusion, while the plugin benefits from a minimal attack surface and a clean vulnerability history, the significant portion of unescaped output represents a clear and present risk that needs to be addressed.",[185],{"reason":186,"points":187},"Significant portion of output not properly escaped",8,"2026-03-16T20:18:06.297Z",{"wat":190,"direct":196},{"assetPaths":191,"generatorPatterns":193,"scriptPaths":194,"versionParams":195},[192],"\u002Fwp-content\u002Fplugins\u002Fwp-excerpt-settings\u002Flanguages",[],[],[],{"cssClasses":197,"htmlComments":198,"htmlAttributes":199,"restEndpoints":202,"jsGlobals":203,"shortcodeOutput":204},[],[],[200,201],"name=\"wp_excerpt_options[excerpt_more]\"","name=\"wp_excerpt_options[excerpt_length]\"",[],[],[]]