[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_dKlYoarTjlo1wctfFcXw3PatoYYt8eHYzGAC2VURIw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":9,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":99,"fingerprints":276},"wp-responsive-demo-switch-bar","WP Responsive Demo Switch Bar","1.0","themeidol","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeidol\u002F","","Adds a WP Responsive Demo Switch Bar to the bottom of your site to allow users to switch the theme preview for its responsiveness",10,2678,74,3,"2016-09-29T07:18:00.000Z","4.7.32","3.0",[19,20,21,22,23],"demo-bar","demo-bar-plugin","responsive-bar","responsive-test-tool","theme-demo-bar","http:\u002F\u002Fthemeidol.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-responsive-demo-switch-bar.1.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":32,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},130,30,84,"2026-04-05T02:32:16.581Z",[37,62,81],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":9,"download_link":58,"security_score":59,"vuln_count":48,"unpatched_count":60,"last_vuln_date":61,"fetched_at":29},"dn-footer-contacts","Footer Contacts D","1.8.1","digireturn","https:\u002F\u002Fprofiles.wordpress.org\u002Fdigireturn\u002F","\u003Cp>\u003Cstrong>Show fixed buttons on bottom screen\u003C\u002Fstrong>.\u003Cbr \u002F>\n* NEWS (november 2024): Added animated hover effects for buttons\u003C\u002Fp>\n\u003Cp>To allow visitors a quick and easy way for contact you by “Call to Action”, located on the bottom of the screen. This plugin allows you to track and evaluate the effectiveness of a site by measuring visitors’ clicks. By combining the statistics of the buttons (call to action) with the statistics of visits of other tools, it will be easier to study new strategies to increase conversions. The buttons are easily customizable for different site themes and they open a link in a new window.\u003C\u002Fp>\n\u003Cp>Compatibility with firefox, chrome, safari, opera and edge\u003C\u002Fp>\n\u003Ch4>Available options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>target option (open in same\u002Fnew tab)\u003C\u002Fli>\n\u003Cli>buttons shape option  (square, top rounded, left wave and right wave)\u003C\u002Fli>\n\u003Cli>buttons spacing option (none, 1px, 2px or 5px)\u003C\u002Fli>\n\u003Cli>start animation option (fade, slide up, slide left and slide right)\u003C\u002Fli>\n\u003Cli>alignment buttons (center, left or right)\u003C\u002Fli>\n\u003Cli>display customization (icons only, text only, or both)\u003C\u002Fli>\n\u003Cli>size of buttons (very small, small, normal, big, very big)\u003C\u002Fli>\n\u003Cli>type of bar (full screen background, background only on buttons or completely transparent background)\u003C\u002Fli>\n\u003Cli>customization of background and text colors (including hover colors and transparent option)\u003C\u002Fli>\n\u003Cli>icon format in svg\u003C\u002Fli>\n\u003Cli>color customization for each individual button\u003C\u002Fli>\n\u003Cli>compatibility with FontAwesome (installed separately) and related button and instructions for adding the icon\u003C\u002Fli>\n\u003Cli>new shape added: rounded edges (in the icon-only view the button becomes a circle)\u003C\u002Fli>\n\u003Cli>replaced the preset icons with svg that are colored like the text\u003C\u002Fli>\n\u003Cli>custom color selection has popup support with color palette UI\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Available preset buttons\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WhatsApp button for quickly sending a message\u003C\u002Fli>\n\u003Cli>Phone button to call immediately\u003C\u002Fli>\n\u003Cli>Email button to write and send mail\u003C\u002Fli>\n\u003Cli>Map button to activate the Google navigator and provide information on how to reach the office\u003C\u002Fli>\n\u003Cli>Skype button\u003C\u002Fli>\n\u003Cli>Facebook button\u003C\u002Fli>\n\u003Cli>Instagram button\u003C\u002Fli>\n\u003Cli>Youtube button\u003C\u002Fli>\n\u003Cli>LinkedIn button\u003C\u002Fli>\n\u003Cli>TikTok button\u003C\u002Fli>\n\u003Cli>Twitter button\u003C\u002Fli>\n\u003Cli>Download button\u003C\u002Fli>\n\u003Cli>External link button\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Statistics\u003C\u002Fh4>\n\u003Cp>Statistics to monitor clicks (call to action):\u003Cbr \u002F>\n* total number of clicks per day, month and year\u003Cbr \u002F>\n* daily, monthly and annual chicks number for each button\u003C\u002Fp>\n","Elegant and customizable buttons bar with \"Call to Action\" for Whatsapp, map address, phone, email, download and custom button.",200,7974,100,2,"2025-12-20T14:08:00.000Z","6.7.5","5.0","5.6",[54,55,56,57,21],"call-to-action","contact-button","fixed-bar","float-buttons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdn-footer-contacts.1.8.1.zip",78,1,"2025-04-01 00:00:00",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":47,"downloaded":70,"rating":47,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":9,"tags":75,"homepage":79,"download_link":80,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"peanut-butter-bar-smooth-version","Peanut Butter Bar (smooth version)","1.2.1","andrewcouch","https:\u002F\u002Fprofiles.wordpress.org\u002Fandrewcouch\u002F","\u003Cp>A Peanut Butter Bar is all of the good stuff that sticks to the roof of your site.\u003C\u002Fp>\n\u003Cp>The plugin allows you to attach sticky bars to the roof of your site that stays visible no matter how far a user scrolls.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Track clicks using Google Analytics Events using the Analytics you already use in your blog.  \u003C\u002Fli>\n\u003Cli>Plugin runs within your WordPress install. No external servers to deal with.\u003C\u002Fli>\n\u003Cli>Close button state persists through a user’s session without cookies.    \u003C\u002Fli>\n\u003Cli>Responsive and mobile friendly.  \u003C\u002Fli>\n\u003Cli>Choose from a range of tasty colors. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This is the Smooth version of Peanut Butter Bar. It supports a single site-wide bar. The Crunchy (paid) version has more bits including multiple bars and attaching bars to specific posts\u002Fpages and categories. Learn more at \u003Ca href=\"http:\u002F\u002Fpeanutbutterplugin.com\" rel=\"nofollow ugc\">peanutbutterplugin.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Check out this \u003Ca href=\"http:\u002F\u002Fpeanutbutterplugin.com\u002Fhelp-topics\u002Ffilters-and-hooks-in-pbb-smooth\u002F\" rel=\"nofollow ugc\">blog post\u003C\u002Fa> for the supported filters and actions in PBB Smooth.\u003C\u002Fp>\n\u003Ch3>Readme Generator\u003C\u002Fh3>\n\u003Cp>This Readme file was generated using \u003Ca href='http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fwp-readme' rel=\"nofollow ugc\">wp-readme\u003C\u002Fa>, which generates readme files for WordPress Plugins.\u003C\u002Fp>\n","Peanut Butter Bar allows you to attach sticky bars to the roof of your site that stays visible no matter how far a user scrolls.",8075,9,"2016-04-04T09:39:00.000Z","4.5.33","3.8",[76,56,21,77,78],"alert-bar","sticky-bar","sticky-bar-bottom","http:\u002F\u002Fpeanutbutterplugin.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpeanut-butter-bar-smooth-version.zip",{"slug":82,"name":83,"version":6,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":27,"downloaded":88,"rating":27,"num_ratings":27,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":9,"tags":92,"homepage":97,"download_link":98,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"cp-demo-switcher","Theme Demo Switcher and Page Switch Bar","CodePassenger","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodepassenger\u002F","\u003Ch4>Overview\u003C\u002Fh4>\n\u003Cp>This Theme Demo Switcher Plugin is for showing theme demo and internal demo pages to vistors. Customers can see all of your theme demo from one place when customers visits one of your demo site.\u003C\u002Fp>\n\u003Cp>CP Demo Switch Bar is easy to use and not required detailed documentation for use it. It can be used in any WordPress Theme. It features responsive testing tool, purchase button, iframe remove button, Theme Switch, Page Switch, Custom Logo, etc.\u003C\u002Fp>\n","Showcase your product demo to your website beautifully into one place using CP Theme Demo Switch Bar. No coding required.",1285,"2018-09-22T06:56:00.000Z","4.9.29","4.5",[19,93,94,95,96],"demo-switch-bar","demo-switcher","page-switch-bar","responsive-demo-bar","https:\u002F\u002Fcodepassenger.com\u002Fwp\u002Fdemo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcp-demo-switcher.1.0.zip",{"attackSurface":100,"codeSignals":169,"taintFlows":247,"riskAssessment":266,"analyzedAt":275},{"hooks":101,"ajaxHandlers":165,"restRoutes":166,"shortcodes":167,"cronEvents":168,"entryPointCount":27,"unprotectedCount":27},[102,108,111,115,120,124,128,133,137,141,144,148,152,157,161],{"type":103,"name":104,"callback":105,"file":106,"line":107},"action","admin_init","wpdemobar_init","wp-demobar.php",149,{"type":103,"name":104,"callback":109,"file":106,"line":110},"wpdemobar_register_settings",152,{"type":103,"name":112,"callback":113,"file":106,"line":114},"admin_menu","wpdemobar_add_menu_item",155,{"type":103,"name":116,"callback":117,"priority":118,"file":106,"line":119},"init","wpdemobar_register_post_types",25,161,{"type":103,"name":121,"callback":122,"file":106,"line":123},"add_meta_boxes","wpdemobar_add_meta_boxes",163,{"type":103,"name":125,"callback":126,"priority":11,"file":106,"line":127},"save_post","wpdemobar_save_meta_boxes",164,{"type":129,"name":130,"callback":131,"file":106,"line":132},"filter","manage_demosites_posts_columns","wpdemobar_custom_column_head",167,{"type":103,"name":134,"callback":135,"priority":11,"file":106,"line":136},"manage_demosites_posts_custom_column","wpdemobar_custom_column_content",168,{"type":103,"name":138,"callback":139,"file":106,"line":140},"admin_head-post.php","wpdemobar_hide_publishing_actions",171,{"type":103,"name":142,"callback":139,"file":106,"line":143},"admin_head-post-new.php",172,{"type":129,"name":145,"callback":146,"priority":11,"file":106,"line":147},"post_row_actions","wpdemobar_customize_row_actions",175,{"type":129,"name":149,"callback":150,"file":106,"line":151},"post_updated_messages","wpdemobar_updated_messages",178,{"type":129,"name":153,"callback":154,"priority":155,"file":106,"line":156},"template_include","wpdemobar_custom_template",99,181,{"type":103,"name":158,"callback":159,"file":106,"line":160},"admin_enqueue_scripts","wpdemobar_admin_assets",184,{"type":103,"name":162,"callback":163,"file":106,"line":164},"plugins_loaded","wpdemobar_load_textdomain",186,[],[],[],[],{"dangerousFunctions":170,"sqlUsage":171,"outputEscaping":173,"fileOperations":27,"externalRequests":27,"nonceChecks":60,"capabilityChecks":48,"bundledLibraries":246},[],{"prepared":27,"raw":27,"locations":172},[],{"escaped":174,"rawEcho":175,"locations":176},57,38,[177,181,182,183,185,187,188,189,191,193,195,197,199,201,203,205,207,208,210,211,213,214,216,217,219,221,223,225,226,228,230,232,234,236,238,240,242,244],{"file":178,"line":179,"context":180},"views\\layout\\redirect.php",15,"raw output",{"file":178,"line":179,"context":180},{"file":178,"line":179,"context":180},{"file":184,"line":13,"context":180},"views\\layout\\themesdemo.php",{"file":184,"line":186,"context":180},75,{"file":184,"line":47,"context":180},{"file":184,"line":47,"context":180},{"file":184,"line":190,"context":180},102,{"file":184,"line":192,"context":180},109,{"file":184,"line":194,"context":180},116,{"file":184,"line":196,"context":180},131,{"file":184,"line":198,"context":180},132,{"file":184,"line":200,"context":180},133,{"file":184,"line":202,"context":180},134,{"file":184,"line":204,"context":180},135,{"file":184,"line":206,"context":180},142,{"file":184,"line":206,"context":180},{"file":184,"line":209,"context":180},143,{"file":184,"line":209,"context":180},{"file":184,"line":212,"context":180},144,{"file":184,"line":212,"context":180},{"file":184,"line":215,"context":180},154,{"file":184,"line":114,"context":180},{"file":184,"line":218,"context":180},159,{"file":184,"line":220,"context":180},160,{"file":184,"line":222,"context":180},165,{"file":184,"line":224,"context":180},166,{"file":184,"line":224,"context":180},{"file":184,"line":227,"context":180},174,{"file":106,"line":229,"context":180},450,{"file":106,"line":231,"context":180},577,{"file":106,"line":233,"context":180},643,{"file":106,"line":235,"context":180},735,{"file":106,"line":237,"context":180},738,{"file":106,"line":239,"context":180},741,{"file":106,"line":241,"context":180},751,{"file":106,"line":243,"context":180},760,{"file":106,"line":245,"context":180},872,[],[248],{"entryPoint":249,"graph":250,"unsanitizedCount":60,"severity":265},"\u003Cthemesdemo> (views\\layout\\themesdemo.php:0)",{"nodes":251,"edges":262},[252,257],{"id":253,"type":254,"label":255,"file":184,"line":256},"n0","source","$_SERVER",4,{"id":258,"type":259,"label":260,"file":184,"line":179,"wp_function":261},"n1","sink","header() [Header Injection]","header",[263],{"from":253,"to":258,"sanitized":264},false,"medium",{"summary":267,"deductions":268},"The wp-responsive-demo-switch-bar plugin, version 1.0, demonstrates a generally strong security posture in its static analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points significantly limits the plugin's attack surface. The code also shows good practices with all SQL queries utilizing prepared statements, a robust use of nonce and capability checks, and no file operations or external HTTP requests, which are common vectors for vulnerabilities.  However, a notable concern is the relatively low percentage of properly escaped output (60%). While the taint analysis shows only one flow analyzed and no critical or high-severity unsanitized paths, this single flow with an unsanitized path, combined with the unescaped output, could potentially lead to cross-site scripting (XSS) vulnerabilities if that flow involves user-supplied data that is later outputted without proper sanitization. The plugin's vulnerability history is clean, with no recorded CVEs, which is a positive indicator of its stability and the developers' security awareness.  Overall, the plugin is well-secured in terms of attack vectors and data handling, but the output escaping is an area that warrants attention to further harden its security.",[269,272],{"reason":270,"points":271},"Low percentage of properly escaped output",5,{"reason":273,"points":274},"Taint flow with unsanitized path identified",7,"2026-03-17T00:10:59.811Z",{"wat":277,"direct":286},{"assetPaths":278,"generatorPatterns":281,"scriptPaths":282,"versionParams":283},[279,280],"\u002Fwp-content\u002Fplugins\u002Fwp-responsive-demo-switch-bar\u002Fassets\u002Fcss\u002Foption.css","\u002Fwp-content\u002Fplugins\u002Fwp-responsive-demo-switch-bar\u002Fassets\u002Fjs\u002Fwp-responsive-demo-switch-bar.js",[],[280],[284,285],"wp-responsive-demo-switch-bar\u002Fstyle.css?ver=","wp-responsive-demo-switch-bar\u002Fwpdemobar.js?ver=",{"cssClasses":287,"htmlComments":289,"htmlAttributes":291,"restEndpoints":293,"jsGlobals":294,"shortcodeOutput":297},[4,288],"wpdemobar-wrapper",[290],"\u003C!-- WP Responsive Demo Switch Bar Plugin -->",[292],"data-plugin-name=\"wp-responsive-demo-switch-bar\"",[],[295,296],"wpdemobar_settings","wpdemobar_object",[]]