[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNkNQv--oMA-CyixKVsAMlJEAze9a4rOpIjJLUKwydzE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":21,"download_link":22,"security_score":11,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":35,"analysis":142,"fingerprints":196},"wp-hide-category","WP Hide Category","1.0.7","Arefly","https:\u002F\u002Fprofiles.wordpress.org\u002Feflyjason\u002F","\u003Cp>Do not want to show specific category in your blog?\u003C\u002Fp>\n\u003Cp>Use this plugin now!\u003C\u002Fp>\n\u003Cp>This plugin can hide specific category in your blog’s page.\u003C\u002Fp>\n\u003Ch4>Translators\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Brazilian Portuguese (pt_BR) – \u003Ca href=\"http:\u002F\u002Ftrabalharonline.com\u002F\" rel=\"nofollow ugc\">Diogo Gomes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>European Portuguese (pt_PT) – \u003Ca href=\"http:\u002F\u002Ftrabalharonline.com\u002F\" rel=\"nofollow ugc\">Diogo Gomes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Chinese, Simplified (zh_CN) – \u003Ca href=\"http:\u002F\u002Fwww.arefly.com\u002F\" rel=\"nofollow ugc\">Arefly\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Chinese, Traditional (zh_TW) – \u003Ca href=\"http:\u002F\u002Fwww.arefly.com\" rel=\"nofollow ugc\">Arefly\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_US) – \u003Ca href=\"http:\u002F\u002Fwww.arefly.com\" rel=\"nofollow ugc\">Arefly\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you have created your own language pack, or have an update of an existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">gettext PO and MO files\u003C\u002Fa> to \u003Ca href=\"http:\u002F\u002Fwww.arefly.com\u002Fabout\u002F\" rel=\"nofollow ugc\">Arefly\u003C\u002Fa> so that I can bundle it into WP Hide Category. You can download the latest \u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-hide-category\u002Ftrunk\u002Flang\u002Fwp-hide-category.pot\" rel=\"nofollow ugc\">POT file\u003C\u002Fa>.\u003C\u002Fp>\n","Hide specific category in your blog.",100,13593,52,7,"","3.7.41","3.0",[19,20],"category","hide","http:\u002F\u002Fwww.arefly.com\u002Fwordpress-index-hide-category\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-hide-category.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"eflyjason",24,1690,88,30,86,"2026-04-04T14:12:33.499Z",[36,63,85,108,125],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":15,"tags":51,"homepage":57,"download_link":58,"security_score":59,"vuln_count":60,"unpatched_count":23,"last_vuln_date":61,"fetched_at":62},"ultimate-category-excluder","Ultimate Category Excluder","1.7","Marios Alexandrou","https:\u002F\u002Fprofiles.wordpress.org\u002Fmarios-alexandrou\u002F","\u003Cp>Ultimate Category Excluder, abbreviated as UCE, is a WordPress plugin that allows you to quickly and easily exclude categories from your front page, archives, feeds, and searches. Just select which categories you want to be excluded, and UCE does all the work for you!\u003C\u002Fp>\n","Ultimate Category Excluder allows you to quickly and easily exclude categories from your front page, archives, feeds, and search results.",50000,549023,84,77,"2025-12-29T14:20:00.000Z","6.9.4","5.0",[52,53,54,55,56],"exclude-categories","exclude-category","hidden-category","hide-categories","hide-category","http:\u002F\u002Finfolific.com\u002Ftechnology\u002Fsoftware-worth-using\u002Fultimate-category-excluder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-category-excluder.zip",99,1,"2020-01-08 00:00:00","2026-03-15T15:16:48.613Z",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":73,"num_ratings":74,"last_updated":75,"tested_up_to":49,"requires_at_least":76,"requires_php":77,"tags":78,"homepage":83,"download_link":84,"security_score":11,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":62},"hide-cart-functions","Hide Cart Functions","1.2.16","artiosmedia","https:\u002F\u002Fprofiles.wordpress.org\u002Fartiosmedia\u002F","\u003Cp>Several plugins offer the ability to edit the shopping cart functions on the page, including hiding the price, “Add to Cart” button, quantity selector, and product options dropdown, but not often in one plugin. Additionally, none of the available plugins or snippets allow a custom message to appear in any format, including embedded graphics, nor do they allow any combination of hidden shopping cart elements on the same WooCommerce website.\u003C\u002Fp>\n\u003Cp>At least not until now! \u003Cstrong>Hide Cart Functions\u003C\u002Fstrong> gives a WooCommerce website complete control over each user’s side shop’s functionality while allowing users to create multiple rules to apply to various categories or products within the same system.\u003C\u002Fp>\n\u003Cp>Take your shopping page edits one step further; a user can also enter IDs or classes to hide custom elements. This additional provision enables users to customize third-party plugin functions beyond WooCommerce options or adjust those provided by themes with WooCommerce templates. This extra level of customization may yield unexpected results; therefore, use it at your own discretion and thoroughly test it. We cannot resolve any conflicts resulting from the use of this field.\u003C\u002Fp>\n\u003Ch4>How to Find a Product ID\u003C\u002Fh4>\n\u003Cp>Open your WordPress dashboard and click on Pages > All Pages. Then, select the page for which you need to find the ID. Once the page has opened, you need to look at the URL in your web browser’s address bar. Here, you will find the page ID number displayed in the page URL, immediately after ?post=.\u003C\u002Fp>\n\u003Ch4>Plugin Limitation\u003C\u002Fh4>\n\u003Cp>As a disclaimer to this plugin’s capabilities, it is not possible to create a rule to customize the cart functions for any individual Variable Post ID found within a variable product post. The plugin can only modify the tasks of a Product ID or Category ID due to WooCommerce’s inherent limits, not because of the plugin.\u003C\u002Fp>\n\u003Ch4>As of version 1.0.4\u003C\u002Fh4>\n\u003Cp>A requested setting has been added to each rule that allows you to apply it to Guest Users only or Logged-In users only, but not both at once, which would cause a conflict. Leave both unchecked to apply to all users.\u003C\u002Fp>\n\u003Ch4>As of version 1.0.5\u003C\u002Fh4>\n\u003Cp>Search and select for products with a 3-letter minimum length was added to ease selecting products for which the rule applies. This addition works in conjunction with the Product ID field, allowing you to use one, both, or neither at the same time.\u003C\u002Fp>\n\u003Ch4>As of version 1.2.16\u003C\u002Fh4>\n\u003Cp>New Store-Wide Settings section added with two security options to combat carding attacks. Carding is when bots use your WooCommerce checkout to test stolen credit card numbers by posting directly to checkout endpoints, bypassing any hidden buttons. “Cripple Bots” requires a valid cart session before checkout, blocking direct POST attacks while allowing real customers to shop normally. “Disable Purchases” completely blocks all code-activated purchases as a temporary nuclear option during active attacks. Both settings apply globally and are independent of individual product rules.\u003C\u002Fp>\n\u003Cp>Also added “Show Login Button” option which displays a login button in place of the hidden Add to Cart button for guest users. Works with “Guests Only” to encourage visitors to log in to see prices and make purchases. Includes customizable button text and configurable return URL (Current Product Page, Shop Page, Home Page, or My Account Page) so customers return to where they were browsing after logging in.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>All text strings use WordPress translation functions. Includes complete translations for English, Spanish, French, German, Portuguese, Dutch, Polish, Finnish, and Russian. Any edits to the PO files or additional languages are welcome.\u003C\u002Fp>\n\u003Ch4>Donations\u003C\u002Fh4>\n\u003Cp>If this free effort assists you, please consider making a small donation from the main plugin page, found on the lower right. All funds assist orphans in destitution.\u003C\u002Fp>\n\u003Ch3>Technical Details for Release 1.2.16\u003C\u002Fh3>\n\u003Cp>Load time: 0.409 s; Memory usage: 59.62 MiB\u003Cbr \u002F>\nPHP up to tested version: 8.4.17\u003Cbr \u002F>\nMySQL up to tested version: 8.4.8\u003Cbr \u002F>\nMariaDB up to tested version: 12.1.2\u003Cbr \u002F>\ncURL up to tested version: 8.18.0, OpenSSL\u002F3.6.1\u003Cbr \u002F>\nPHP 7.4, 8.0, 8.1, 8.2, 8.3, and 8.4 compliant. Not tested on 8.5 yet.\u003C\u002Fp>\n\u003Ch3>Using in Multisite Installation\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Extract the zip file contents in the wp-content\u002Fmu-plugins\u002F directory of your WordPress installation. (This is not created by default. You must create it in the wp-content folder.) The ‘mu’ does not stand for multi-user as it did for WPMU, it stands for ‘must-use’ as any code placed in that folder will run without needing to be activated.\u003C\u002Fli>\n\u003Cli>Follow the plugin setting panel in the WordPress settings menu.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Privacy & Data\u003C\u002Fh3>\n\u003Cp>This plugin operates entirely on your server with no external services, APIs, or data transmission. All rule settings are stored locally in your WordPress database (wp_options table). No visitor data is collected, tracked, or shared beyond standard WordPress and WooCommerce functionality.\u003C\u002Fp>\n\u003Cp>The Cripple Bots security feature uses WooCommerce’s built-in session system to validate that customers added items to their cart before checkout. No additional cookies are created. Blocked bot attempts are logged to WooCommerce’s standard log system (wc-logs) for security monitoring, including the IP address of the blocked request.\u003C\u002Fp>\n\u003Cp>The Show Login Button feature redirects guests to the standard WordPress\u002FWooCommerce login page with a return URL parameter – no tracking is involved.\u003C\u002Fp>\n\u003Cp>Complete deletion of all plugin settings is available by enabling “Delete Data on Uninstall” in Store-Wide Settings before uninstalling.\u003C\u002Fp>\n","Hide the product's price, add-to-cart button, quantity, and options on any product and order. Inject an optional message.",3000,43017,98,12,"2026-02-04T00:15:00.000Z","5.8","7.4",[79,56,80,81,82],"hide-add-to-cart","hide-option","hide-price","hide-quantity","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhide-cart-functions","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-cart-functions.1.2.16.zip",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":33,"num_ratings":95,"last_updated":96,"tested_up_to":97,"requires_at_least":98,"requires_php":99,"tags":100,"homepage":104,"download_link":105,"security_score":73,"vuln_count":106,"unpatched_count":23,"last_vuln_date":107,"fetched_at":62},"hide-category-by-user-role-for-woocommerce","Hide Category by User Role for WooCommerce","2.3.2","ThemeSupport","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemesupport\u002F","\u003Cp>This plugin allows you to easily hide WooCommerce categories based on User Role.\u003C\u002Fp>\n\u003Cp>You can also choose to redirect users to a URL or display a custom message when they attempt to access a hidden category or its related products.\u003C\u002Fp>\n\u003Cp>This plugin has been tested with the most recognized user role management plugins. However, if you notice any bugs, please \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fhide-category-by-user-role-for-woocommerce\u002F\" rel=\"ugc\">contact us\u003C\u002Fa>.\u003C\u002Fp>\n","This plugin allows you to easily hide WooCommerce categories based on User Role.",300,5077,6,"2025-11-25T18:30:00.000Z","6.8.5","6.5","8.2",[19,20,101,102,103],"products","user-role","woocommerce","https:\u002F\u002Fthemesupport.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-category-by-user-role-for-woocommerce.2.3.2.zip",2,"2025-11-26 17:45:34",{"slug":55,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":117,"num_ratings":95,"last_updated":118,"tested_up_to":119,"requires_at_least":120,"requires_php":15,"tags":121,"homepage":122,"download_link":123,"security_score":124,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":62},"Hide Categories","1.2","Eduardo","https:\u002F\u002Fprofiles.wordpress.org\u002Fthedi\u002F","\u003Cp>Hide one o more categories when you use the_category tag or wp_list_categories tag. No exclude post, but only hide a category name in template view.\u003Cbr \u002F>\nExample?\u003Cbr \u002F>\nYou use a category called “featured” in your template but you don’t want it see? Use Hide Categories\u003C\u002Fp>\n\u003Cp>Thanks to \u003Ca href=\"http:\u002F\u002Fwww.infocube.it\" title=\"sviluppo software\" rel=\"nofollow ugc\">infocube\u003C\u002Fa> for the plugin’s idea\u003C\u002Fp>\n","Hide one o more categories when you use the_category tag or wp_list_categories tag. No exclude post, but only hide a category name in template view.",200,22171,74,"2011-03-28T10:21:00.000Z","2.8.4","2.8",[19,20,55],"http:\u002F\u002Fwww.thedeveloperinside.com\u002Fresources\u002Fhide-categories\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-categories.zip",85,{"slug":126,"name":127,"version":128,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":32,"downloaded":133,"rating":23,"num_ratings":23,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":137,"tags":138,"homepage":15,"download_link":141,"security_score":124,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":62},"hide-out-of-stock-by-category","Hide Out Of Stock By Category","1.0","nerdywp","https:\u002F\u002Fprofiles.wordpress.org\u002Fnerdywp\u002F","\u003Cp>This plugin will let you hide out of stock products in WooCommerce but only for certain categories. WooCommerce currently lets you either hide all out of stock products or none. This expands on that and lets you choose a category to hide when out of stock.\u003C\u002Fp>\n\u003Cp>You might want to use this to keep newer products on your website eventhough they’re out of stock. Hiding the older, out of stock WooCommerce products would remove some clutter.\u003C\u002Fp>\n","An easy and simple way to hide products in WooCommerce by category when they're out of stock",1523,"2020-04-15T13:47:00.000Z","5.4.19","5.1","5.6",[19,139,20,140,103],"ecommerce","out-of-stock","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-out-of-stock-by-category.1.0.zip",{"attackSurface":143,"codeSignals":168,"taintFlows":184,"riskAssessment":185,"analyzedAt":195},{"hooks":144,"ajaxHandlers":164,"restRoutes":165,"shortcodes":166,"cronEvents":167,"entryPointCount":23,"unprotectedCount":23},[145,151,155,160],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","admin_init","wp_hide_category_register_settings","options.php",8,{"type":146,"name":152,"callback":153,"file":149,"line":154},"admin_menu","wp_hide_category_register_options_page",13,{"type":146,"name":156,"callback":157,"file":158,"line":159},"plugins_loaded","wp_hide_category_load_plugin_textdomain","wp-hide-category.php",42,{"type":146,"name":161,"callback":162,"file":158,"line":163},"pre_get_posts","wp_hide_category",71,[],[],[],[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":23,"externalRequests":23,"nonceChecks":23,"capabilityChecks":23,"bundledLibraries":183},[],{"prepared":23,"raw":23,"locations":171},[],{"escaped":60,"rawEcho":95,"locations":173},[174,177,178,179,180,181],{"file":149,"line":175,"context":176},28,"raw output",{"file":149,"line":175,"context":176},{"file":149,"line":175,"context":176},{"file":149,"line":175,"context":176},{"file":149,"line":175,"context":176},{"file":149,"line":182,"context":176},64,[],[],{"summary":186,"deductions":187},"The \"wp-hide-category\" plugin version 1.0.7 presents a mixed security posture. On the positive side, the static analysis reveals no obvious attack surface through AJAX, REST API, shortcodes, or cron events.  Furthermore, there are no reported critical vulnerabilities in its history, and the code itself shows no dangerous functions, no raw SQL queries (all prepared statements), no file operations, no external HTTP requests, and no bundled libraries. This suggests a diligent effort to avoid common plugin security pitfalls.\n\nHowever, significant concerns arise from the lack of security checks and insufficient output escaping.  The complete absence of nonce checks and capability checks, coupled with a very low output escaping rate (14%), indicates potential weaknesses.  While the static analysis didn't identify specific taint flows or direct SQL injection vectors, the lack of proper authorization checks on entry points (even though the attack surface is currently zero) and the widespread lack of output sanitization mean that if any new functionality is added or if existing functionality is exposed through future updates, vulnerabilities could easily be introduced or exploited. The vulnerability history being clean is a good sign, but it doesn't negate the inherent risks identified in the current code's implementation.\n\nIn conclusion, while \"wp-hide-category\" v1.0.7 has a clean vulnerability record and avoids many common security risks, the lack of nonce and capability checks, along with poor output escaping, represents a considerable risk.  The plugin has a strong foundation in avoiding direct code execution and insecure database interactions, but its current implementation is not robust against potential privilege escalation or cross-site scripting (XSS) vulnerabilities if any user-controllable data is processed without proper sanitization or authorization.",[188,191,193],{"reason":189,"points":190},"No nonce checks present",10,{"reason":192,"points":190},"No capability checks present",{"reason":194,"points":95},"Low output escaping rate (14%)","2026-03-16T20:31:56.132Z",{"wat":197,"direct":202},{"assetPaths":198,"generatorPatterns":199,"scriptPaths":200,"versionParams":201},[],[],[],[],{"cssClasses":203,"htmlComments":204,"htmlAttributes":205,"restEndpoints":206,"jsGlobals":207,"shortcodeOutput":208},[],[],[],[],[],[]]