[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4yGajfWSFBdqMMl6h7XI_dheRE00_VHbEvYJMTiWMzQ":3,"$fVDxhWSYtWbtuV3svLMk5z1PdHBTjB9qh1trFFL90gwY":231,"$fIfCunls2OG0TQAGietnepd2r9CgW42Uw8Gct4HCf8c4":236},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":38,"analysis":139,"fingerprints":215},"wp-markerboard","WP Makerboard","1","Daniel","https:\u002F\u002Fprofiles.wordpress.org\u002Fwarll\u002F","\u003Cp>Provides a “Marker board” widget for visitors to play with. When a user’s mouse moves over the widget marker will be drawn on the surface.\u003C\u002Fp>\n\u003Cp>The widget has four options, line color, line width, box width, and box height. Unfortunately html canvas requires explicit dimensions, the default dimensions for Markerboard are 150px by 150px.\u003C\u002Fp>\n","Provides a \"Marker board\" widget for visitors to play with.",10,1969,0,"2011-06-10T17:06:00.000Z","3.2.1","2.8","",[19,20,21,22,23],"canvas","graffiti","html5","marker","widget","http:\u002F\u002Fdanieru.com\u002F2011\u002F06\u002F09\u002Fwp-markerboard-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-markerboard.1.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"warll",2,20,30,84,"2026-05-20T06:55:21.300Z",[39,57,78,103,119],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":13,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":55,"download_link":56,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-tagcanvas","WP-TagCanvas","1.3.1","harryxuchn","https:\u002F\u002Fprofiles.wordpress.org\u002Fharryxuchn\u002F","\u003Cp>Get a 3D Tag cloud by TagCanvas(http:\u002F\u002Fwww.goat1000.com\u002Ftagcanvas.php).TagCanvas is a Javascript class which will draw and animate a HTML5 canvas based tag cloud. It support three shape:sphere, hcylinder for a cylinder that starts off horizontal and vcylinder for a cylinder that starts off vertical. Based on TagCanvas version 1.12.\u003C\u002Fp>\n","WP-TagCanvas is a plugin using Javascript class which will draw and animate a HTML5 canvas based tag cloud. It support three shape",40,6422,"2012-01-02T07:29:00.000Z","3.3.2","2.9",[53,19,21,54,23],"3d","tag-cloud","http:\u002F\u002Fharryxu.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-tagcanvas.1.3.1.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":11,"last_updated":68,"tested_up_to":69,"requires_at_least":16,"requires_php":17,"tags":70,"homepage":76,"download_link":77,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"local-time-clock","Local Time Clock","1.3","enclick","https:\u002F\u002Fprofiles.wordpress.org\u002Fenclick\u002F","\u003Cp>Display a clock on your sidebar set automatically to your location’s timezone. Select from a choice of clocks, colors and sizes.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>A wide range of analog and digital clocks. See screenshots tab or designs shown in \u003Ca href=\"http:\u002F\u002Flocaltimes.info\u002Fgetwidget\u002F\" title=\"Clock Widget Designs\" rel=\"nofollow ugc\">localtimes.info\u002Fgetwidget\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Choice of size, colors of text, border and background,\u003C\u002Fli>\n\u003Cli>Automatic adjustment of daylight saving time from the \u003Ca href=\"http:\u002F\u002Flocaltimes.info\" title=\"Local Times round the world\" rel=\"nofollow ugc\">localtimes.info\u003C\u002Fa> servers\u003C\u002Fli>\n\u003Cli>HTML5 responsive plugin, detects device and serves flash, html5, javascript progressively\u003C\u002Fli>\n\u003Cli>Easy addition of multiple clocks\u003C\u002Fli>\n\u003C\u002Ful>\n","Display a clock on your sidebar set automatically to your location's timezone. Select from a choice of clocks, colors and sizes.",1000,117067,62,"2024-05-14T16:21:00.000Z","6.5.8",[71,72,73,74,75],"clock","clock-widget","flash-clock","html5-clock","mobile-clock","https:\u002F\u002Flocaltimes.info\u002Fwordpress-clock-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flocal-time-clock.1.3.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":65,"downloaded":86,"rating":87,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":99,"download_link":100,"security_score":87,"vuln_count":101,"unpatched_count":13,"last_vuln_date":102,"fetched_at":28},"off-canvas-sidebars","Off-Canvas Sidebars & Menus (Slidebars)","0.5.9","Jory Hogeveen","https:\u002F\u002Fprofiles.wordpress.org\u002Fkeraweb\u002F","\u003Cp>This plugin will add various options to implement off-canvas sidebars in your WordPress theme based on the Slidebars jQuery plugin.\u003C\u002Fp>\n\u003Ch4>Overview \u002F Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add off-canvas sidebars to the left, right, top and bottom of your website.\u003C\u002Fli>\n\u003Cli>Use sidebar areas (widget-ready areas), menu locations or \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002FActions-&-Filters\" rel=\"nofollow ugc\">custom hooks\u003C\u002Fa> to place content into the off-canvas sidebars.\u003C\u002Fli>\n\u003Cli>You can add control buttons with a widget, menu item, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002FShortcodes\" rel=\"nofollow ugc\">shortcode\u003C\u002Fa> or with \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002FTheme-setup\" rel=\"nofollow ugc\">custom code\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Various customisation options and settings available in the Appearances menu.\u003C\u002Fli>\n\u003Cli>Extensive API for \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002FPHP-API\" rel=\"nofollow ugc\">PHP\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002FJavaScript-API\" rel=\"nofollow ugc\">JS\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Compatibility (IMPORTANT!)\u003C\u002Fh4>\n\u003Cp>The structure of your theme is of great importance for this plugin. Please read the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002FTheme-setup\" rel=\"nofollow ugc\">installation guide\u003C\u002Fa> carefully!!\u003C\u002Fp>\n\u003Cp>This plugin should work with most themes and plugins although I can’t be sure for all use-cases. Also note that at this point it’s still a 0.x version…\u003Cbr \u002F>\nIf the plugin does not work for your theme, please let me know through the support and add a plugins and themes list and I will take a look!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Fixed elements (like sticky menu’s)\u003C\u002Fstrong>\u003Cbr \u002F>\nThere are known issues with fixed elements and Slidebars. \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\u002Ffixed-elements\" rel=\"nofollow ugc\">Wiki\u003C\u002Fa>\u003Cbr \u002F>\nI’ve created two possible solutions for this:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Legacy CSS solution. Use basic CSS2 positioning instead of CSS3 transform with hardware acceleration.\u003C\u002Fli>\n\u003Cli>JavaScript solution. It is slower but still allows the use of hardware acceleration for animations.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>It’s not working! \u002F I found a bug!\u003C\u002Fh4>\n\u003Cp>Please let me know through \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Foff-canvas-sidebars\" rel=\"ugc\">support\u003C\u002Fa> and add a plugins and themes list! 🙂\u003Cbr \u002F>\nOr \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fissues\" rel=\"nofollow ugc\">submit an issue here on GitHub\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Slidebars jQuery plugin by \u003Ca href=\"https:\u002F\u002Fwww.adchsm.com\u002Fslidebars\u002F\" title=\"Adam\" rel=\"nofollow ugc\">Adam\u003C\u002Fa>, thank you for this great plugin!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>You can find me here:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002F\" title=\"GitHub\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.keraweb.nl\u002F\" title=\"Keraweb\" rel=\"nofollow ugc\">Keraweb\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fnl.linkedin.com\u002Fin\u002Fjoryhogeveen\" title=\"LinkedIn profile\" rel=\"nofollow ugc\">LinkedIn\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Actions | Filters | API\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoryHogeveen\u002Foff-canvas-sidebars\u002Fwiki\" rel=\"nofollow ugc\">See Wiki on GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Slidebars jQuery plugin by \u003Ca href=\"https:\u002F\u002Fwww.adchsm.com\u002Fslidebars\u002F\" title=\"Adam\" rel=\"nofollow ugc\">Adam\u003C\u002Fa>, thank you for this great plugin!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Ideas?\u003C\u002Fh4>\n\u003Cp>Please let me know through the support page!\u003C\u002Fp>\n","Add off-canvas sidebars (Slidebars) containing widgets, menus or other content using the Slidebars jQuery plugin.",35159,96,38,"2026-02-02T21:18:00.000Z","6.8.5","4.1","5.4",[94,95,96,97,98],"menus","off-canvas","sidebars","slidebars","widgets","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Foff-canvas-sidebars\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foff-canvas-sidebars.0.5.9.zip",4,"2025-08-24 00:00:00",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":111,"num_ratings":101,"last_updated":113,"tested_up_to":50,"requires_at_least":16,"requires_php":17,"tags":114,"homepage":117,"download_link":118,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"tag-cloud-canvas","Tag Cloud Canvas","0.1.0","Javier López Úbeda","https:\u002F\u002Fprofiles.wordpress.org\u002Fnoknok\u002F","\u003Cp>This widget add a tag cloud 3d to your sidebar.\u003C\u002Fp>\n\u003Cp>Based on the jquery plugin tagcanvas.js from http:\u002F\u002Fwww.goat1000.com\u002F.\u003C\u002Fp>\n","This widget add a tag cloud 3d to your sidebar.",100,9658,"2012-04-23T01:06:00.000Z",[115,21,116,23],"cloud","tags","https:\u002F\u002Fgithub.com\u002Fnoknokstdio\u002Ftag-cloud-canvas","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftag-cloud-canvas.0.1.0.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":33,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":17,"tags":133,"homepage":137,"download_link":138,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"canvas-nestjs","Canvas-Nest.js","1.0.1","wzwahl36","https:\u002F\u002Fprofiles.wordpress.org\u002Fwzwahl36\u002F","\u003Cp>canvas-nest.js是github上一个很炫酷的开源项目，项目使用不到2kb的Javascript代码构造一个很炫酷的网页背景效果，项目地址为：https:\u002F\u002Fgithub.com\u002FaTool-org\u002Fcanvas-nest.js\u003C\u002Fp>\n\u003Cp>本wordpress插件是利用上述项目完成的另外一个开源项目（https:\u002F\u002Fgithub.com\u002FaTool-org\u002Fcanvas-nest-for-wp），这个项目是一个wordpress插件，并且发布到wordpress.org官网上。\u003C\u002Fp>\n\u003Cp>项目代码简单，并且开源，更多信息可以访问：http:\u002F\u002Fwww.atool.org\u002F 。\u003C\u002Fp>\n","[正版]A wordpress plugin for canvas-nest.js | 一个很炫酷网页背景效果（canvas-nest.js）的wordpress插件。",90,10772,80,"2016-01-25T14:22:00.000Z","4.4.34","3.0.1",[19,134,21,135,136],"github","nest","particle","https:\u002F\u002Fgithub.com\u002FaTool-org\u002Fcanvas-nest-for-wp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcanvas-nestjs.1.0.1.zip",{"attackSurface":140,"codeSignals":152,"taintFlows":199,"riskAssessment":200,"analyzedAt":214},{"hooks":141,"ajaxHandlers":148,"restRoutes":149,"shortcodes":150,"cronEvents":151,"entryPointCount":13,"unprotectedCount":13},[142],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","widgets_init","anonymous","wp_markerboard.php",71,[],[],[],[],{"dangerousFunctions":153,"sqlUsage":157,"outputEscaping":159,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":198},[154],{"fn":155,"file":146,"line":147,"context":156},"create_function","add_action( 'widgets_init', create_function('', 'return register_widget(\"wpMarkerboard\");') );",{"prepared":13,"raw":13,"locations":158},[],{"escaped":13,"rawEcho":160,"locations":161},22,[162,165,167,168,169,171,172,173,174,176,178,179,180,182,184,185,186,188,190,192,194,196],{"file":146,"line":163,"context":164},26,"raw output",{"file":146,"line":166,"context":164},27,{"file":146,"line":166,"context":164},{"file":146,"line":166,"context":164},{"file":146,"line":170,"context":164},29,{"file":146,"line":35,"context":164},{"file":146,"line":35,"context":164},{"file":146,"line":35,"context":164},{"file":146,"line":175,"context":164},32,{"file":146,"line":177,"context":164},33,{"file":146,"line":177,"context":164},{"file":146,"line":177,"context":164},{"file":146,"line":181,"context":164},35,{"file":146,"line":183,"context":164},36,{"file":146,"line":183,"context":164},{"file":146,"line":183,"context":164},{"file":146,"line":187,"context":164},54,{"file":146,"line":189,"context":164},61,{"file":146,"line":191,"context":164},63,{"file":146,"line":193,"context":164},64,{"file":146,"line":195,"context":164},66,{"file":146,"line":197,"context":164},68,[],[],{"summary":201,"deductions":202},"The \"wp-markerboard\" v1 plugin exhibits a mixed security posture.  On one hand, it boasts a remarkably small attack surface with no discernible entry points like AJAX handlers, REST API routes, or shortcodes, and importantly, no unprotected ones. The absence of external HTTP requests and file operations also reduces potential vectors. Furthermore, all SQL queries are correctly implemented using prepared statements, which is a significant strength. However, there are notable concerns within the code. The use of `create_function` is a critical security anti-pattern that can lead to code injection vulnerabilities if user input is ever indirectly passed to it, though the static analysis did not find direct taint flows.  A major weakness is that 100% of the output is not properly escaped, meaning any dynamic content displayed to users could be susceptible to Cross-Site Scripting (XSS) attacks.  The plugin's vulnerability history is clean, with no recorded CVEs, which is positive but doesn't negate the risks identified in the code analysis. In conclusion, while the plugin has a limited attack surface and good SQL practices, the lack of output escaping and the presence of `create_function` introduce significant risks that need to be addressed.",[203,206,209,212],{"reason":204,"points":205},"100% of output not properly escaped",8,{"reason":207,"points":208},"Use of dangerous function: create_function",7,{"reason":210,"points":211},"0 nonce checks found",5,{"reason":213,"points":211},"0 capability checks found","2026-04-16T12:51:49.168Z",{"wat":216,"direct":222},{"assetPaths":217,"generatorPatterns":219,"scriptPaths":220,"versionParams":221},[218],"\u002Fwp-content\u002Fplugins\u002Fwp-markerboard\u002Fjquery.markerboard.js",[],[218],[],{"cssClasses":223,"htmlComments":225,"htmlAttributes":226,"restEndpoints":227,"jsGlobals":228,"shortcodeOutput":230},[224],"wp_markerboard",[],[],[],[229],"jQuery",[],{"error":232,"url":233,"statusCode":234,"statusMessage":235,"message":235},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwp-markerboard\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":237,"versions":238},1,[239],{"version":6,"download_url":25,"svn_tag_url":240,"released_at":27,"has_diff":241,"diff_files_changed":242,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":243,"is_current":232},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-markerboard\u002Ftags\u002F1\u002F",false,[],[]]