[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$feD6TBJNTwLN8-VRnnN0-NjA_yrQhjQp6dQNdNC6nCT0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":128,"fingerprints":173},"wp-sheridan-password-generator","WP Sheridan Password Generator","1.02","sheridaninternet","https:\u002F\u002Fprofiles.wordpress.org\u002Fsheridaninternet\u002F","\u003Cp>This plugin allows you to embed a secure random password generator on any page using shortcodes. The\u003Cbr \u002F>\ngenerated passwords secure and difficult to guess.\u003C\u002Fp>\n","This plugin allows you to embed a secure random password generator on any page using shortcodes. The",10,1413,0,"","3.5.2","3.4",[18,19,20,21,22],"generator","password","password-generator","passwords","secure-random-password-generator","http:\u002F\u002Fwww.sheridaninternet.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-sheridan-password-generator.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},1,30,94,"2026-04-04T09:53:46.230Z",[35,55,72,90,108],{"slug":20,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":25,"num_ratings":44,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":14,"tags":48,"homepage":51,"download_link":52,"security_score":53,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":54},"Password Generator","1.7","Outerbridge","https:\u002F\u002Fprofiles.wordpress.org\u002Fouterbridge\u002F","\u003Cp>Password Generator is a plugin written by Outerbridge which adds a widget to WordPress which generates various length random passwords (with or without special characters).\u003C\u002Fp>\n","Password Generator is a plugin which adds a widget to WordPress which generates various length random passwords (with or without special characters).",90,4633,2,"2022-09-01T16:48:00.000Z","6.0.11","4.7",[20,49,50],"special-characters","strong-password","https:\u002F\u002Fouterbridge.co.uk\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpassword-generator.zip",85,"2026-03-15T15:16:48.613Z",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":11,"downloaded":63,"rating":13,"num_ratings":13,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":14,"tags":67,"homepage":70,"download_link":71,"security_score":53,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":54},"lx-password-generator","LX Password Generator","1.0.2","lx6g","https:\u002F\u002Fprofiles.wordpress.org\u002Flx6g\u002F","\u003Cp>You can choose from upper and lower letters, digits and special characters to make your new hardcore passwords impossible to break.\u003Cbr \u002F>\nAnd yes, all the passwords are generated only within client’s browser session and are not saved anywhere on the server side,\u003Cbr \u002F>\nso it is absolutely safe to use in real world.\u003C\u002Fp>\n\u003Cp>You can also specify the following attributes to tune the form’s appearance:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>length=4..64\u003C\u002Fcode> specifies the default length of a password. Allowed values range from 4 to 64.  \u003C\u002Fli>\n\u003Cli>\u003Ccode>upper=1\u003C\u002Fcode> enables upper-case letters option. Activated by default.\u003C\u002Fli>\n\u003Cli>\u003Ccode>lower=1\u003C\u002Fcode> enables lower-case letters option. Activated by default.\u003C\u002Fli>\n\u003Cli>\u003Ccode>digits=1\u003C\u002Fcode> enables digits option. Activated by default.\u003C\u002Fli>\n\u003Cli>\u003Ccode>special=1\u003C\u002Fcode> enables special characters \u003Ccode>,.:;_=\u003C\u002Fcode> option. Disabled by default. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Plugin’s Official Site\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Flx6g.com\" rel=\"nofollow ugc\">Alex Granovsky Blog\u003C\u002Fa>\u003C\u002Fp>\n","LX Password Generator is simple yet nifty password generation form to be placed in any page or post you like.",2514,"2015-11-10T16:56:00.000Z","3.0.5","2.5",[18,68,19,20,69],"page","post","http:\u002F\u002Flx6g.com\u002F2011\u002F01\u002Fpassgen-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flx-password-generator.1.0.2.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":11,"downloaded":80,"rating":13,"num_ratings":13,"last_updated":81,"tested_up_to":82,"requires_at_least":83,"requires_php":84,"tags":85,"homepage":88,"download_link":89,"security_score":53,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":54},"secure-password-generator","Secure Password Generator","1.0.1","oakcreekdev","https:\u002F\u002Fprofiles.wordpress.org\u002Foakcreekdev\u002F","\u003Cp>Secure Password Generator is a plugin written by Oak Creek Development that allows you to add a secure password generator to your WordPress website. Just place the shortcode: [secure_pw_gen][\u002Fsecure_pw_gen] on any page.\u003C\u002Fp>\n\u003Cp>This can be a great way to encourage your users within your organization to start using secure random passwords for everything. It is easy and convenient to keep a pinned tab open on your public or internal website.\u003C\u002Fp>\n","Adds a secure password generator to your WordPress website.",2575,"2023-03-04T05:30:00.000Z","6.1.10","5.1","7.1",[20,86,87,49,50],"secure-password","security","https:\u002F\u002Fwww.oakcreekdev.com\u002Ftools\u002Fsecure-password-generator\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsecure-password-generator.1.0.1.zip",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":11,"downloaded":98,"rating":25,"num_ratings":99,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":103,"tags":104,"homepage":14,"download_link":107,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":54},"strong-password-maker","Strong Password generator widget","1.0","vaibhav31gangrade","https:\u002F\u002Fprofiles.wordpress.org\u002Fvaibhav31gangrade\u002F","\u003Cp>A Plugin for generating random pasword with numbers only ,characters only ,special characters only and with all of them together.\u003C\u002Fp>\n\u003Ch3>How to Use\u003C\u002Fh3>\n\u003Cp>After Installing visit widget section password generator widget will be visibled there just drag and drop and you are ready to use. .\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cp>It can run on any wordpress version.\u003C\u002Fp>\n","A Plugin for generating random pasword with numbers only ,characters only ,special characters only and with all of them together.",1114,5,"2025-09-27T05:04:00.000Z","6.8.5","4.6","5.2.4",[20,105,106],"random-password-generator","strong-password-generator-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstrong-password-maker.zip",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":42,"num_ratings":118,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":14,"tags":122,"homepage":126,"download_link":127,"security_score":53,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":54},"wc-password-strength-settings","Password Strength Settings for WooCommerce","3.0.1","Danny Santoro","https:\u002F\u002Fprofiles.wordpress.org\u002Fdanielsantoro\u002F","\u003Cp>Help secure your WooCommerce site by enforcing stronger passwords and taking additional control of your strength requirements.\u003C\u002Fp>\n\u003Ch3>What does this plugin do?\u003C\u002Fh3>\n\u003Cp>WooCommerce has an integrated Password Strength Meter which forces users to use strong passwords. Sometimes this isn’t desirable – with this plugin, you can choose between five password levels ranging from “Anything Goes” to “Strong Passwords Only”. In addition, you can modify the colors and appearance of these custom messages, as well as modify or remove the password hint. For details on how the password strength is determined, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FDanielSantoro\u002Fwc-password-strength-settings\u002Fwiki\u002FHow-Password-Strength-is-Determined\" rel=\"nofollow ugc\">please read the documentation here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>What’s New?\u003C\u002Fh4>\n\u003Cp>Version 3.0.0 is a bit of a rewrite to bring the plugin up to modern coding standards. Functionality should not be impacted, but if it is, please reach out on the support forums.\u003C\u002Fp>\n\u003Cp>Version 3.0.1 is simply a hotfix declaring compatibility with WooCommerce HPOS. Since this plugin doesn’t touch anything with the orders or order metadata, it shouldn’t be impacted at all. \u003Cem>However\u003C\u002Fem>, if you notice any issues then please reach out via the contact form on my website.\u003C\u002Fp>\n\u003Ch4>Notes\u003C\u002Fh4>\n\u003Cp>While this does allow for user accounts to have weaker passwords, it’s a good idea to still encourage strong password use – \u003Cem>especially\u003C\u002Fem> for administrators!\u003C\u002Fp>\n\u003Ch4>Planned Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Option to remove “- Please enter a stronger password.” that is added by WordPress.\u003C\u002Fli>\n\u003Cli>Nothing else at the moment, but let me know if you have any ideas.\u003C\u002Fli>\n\u003C\u002Ful>\n","Help secure your WooCommerce site by enforcing stronger passwords and taking additional control of your strength requirements.",10000,176985,24,"2023-10-11T20:51:00.000Z","6.3.8","5.8",[123,21,87,124,125],"accounts","users","woocommerce","https:\u002F\u002Fdanielsantoro.com\u002Fproject\u002Fwoocommerce-password-strength-settings-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-password-strength-settings.zip",{"attackSurface":129,"codeSignals":145,"taintFlows":157,"riskAssessment":158,"analyzedAt":172},{"hooks":130,"ajaxHandlers":137,"restRoutes":138,"shortcodes":139,"cronEvents":144,"entryPointCount":30,"unprotectedCount":13},[131],{"type":132,"name":133,"callback":134,"file":135,"line":136},"filter","widget_text","do_shortcode","wp-sheridan-password-generator.php",58,[],[],[140],{"tag":141,"callback":142,"file":135,"line":143},"password_generator","shortcode",57,[],{"dangerousFunctions":146,"sqlUsage":147,"outputEscaping":149,"fileOperations":30,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":156},[],{"prepared":13,"raw":13,"locations":148},[],{"escaped":150,"rawEcho":30,"locations":151},4,[152],{"file":153,"line":154,"context":155},"classes\\class.password.php",382,"raw output",[],[],{"summary":159,"deductions":160},"The \"wp-sheridan-password-generator\" plugin v1.02 exhibits a generally good security posture based on the provided static analysis. The absence of any known vulnerabilities in its history is a positive indicator. Furthermore, the plugin demonstrates strong adherence to secure coding practices by utilizing prepared statements for all SQL queries and properly escaping a high percentage of its output. The limited attack surface, consisting of only one shortcode, and the lack of external HTTP requests and cron events further contribute to its security. \n\nHowever, there are notable areas of concern. The most significant is the complete lack of nonce and capability checks across all its entry points. This means that the shortcode, and any potential future AJAX or REST API endpoints, are accessible and executable by any authenticated user, regardless of their role or permissions. While taint analysis found no issues, this lack of authorization checks opens the door to potential Cross-Site Request Forgery (CSRF) attacks or unauthorized functionality execution if the shortcode were to perform sensitive actions. The presence of a file operation without specific details on its purpose or sanitization also warrants caution, though the static analysis did not flag it as an issue.\n\nIn conclusion, while the plugin benefits from secure data handling (prepared statements, output escaping) and a minimal attack surface, the complete absence of nonce and capability checks represents a significant security weakness. This oversight needs to be addressed to prevent potential unauthorized actions and privilege escalation scenarios. The vulnerability history is clean, which is a strength, but the code analysis reveals a critical oversight in access control.",[161,163,165,167,170],{"reason":162,"points":11},"Missing nonce checks on all entry points",{"reason":164,"points":11},"Missing capability checks on all entry points",{"reason":166,"points":99},"One entry point (shortcode) without authorization checks",{"reason":168,"points":169},"One file operation without detailed context or sanitization flags",3,{"reason":171,"points":150},"Unescaped output (20% of total outputs)","2026-03-16T23:18:11.134Z",{"wat":174,"direct":180},{"assetPaths":175,"generatorPatterns":177,"scriptPaths":178,"versionParams":179},[176],"\u002Fwp-content\u002Fplugins\u002Fwp-sheridan-password-generator\u002Fhtml\u002Fform.html",[],[],[],{"cssClasses":181,"htmlComments":182,"htmlAttributes":183,"restEndpoints":184,"jsGlobals":185,"shortcodeOutput":186},[],[],[],[],[],[187,188,189,190,191,192],"\u003Cp>We have successfully created the password(s), please keep a copy in a safe place as they can not be recreated. \u003C\u002Fp>\n\u003Cdiv id=\"passwordList\">\u003Ctable style=\"display: block; width: 100%; padding: 5px;\">\n\u003Ctr style=\"font-weight: bold\">\u003Ctd style=\"padding: 5px;\">Passwords\u003C\u002Ftd>","\u003Ctd style=\"padding: 5px\">Phonetic Pronunciation\u003C\u002Ftd>\n\u003C\u002Ftr>","\u003Ctr>\n\u003Ctd style=\"padding: 5px; \">","\u003C\u002Ftd>","\u003Ctd style=\"padding: 5px; padding-left: 15px;\">","\u003C\u002Ftd>\n\u003C\u002Ftr>"]