[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6ayjZqFNBQHJInkcVuNzYmDxaiZ7LGBVPa4NLk8otdo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":14,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":34,"analysis":129,"fingerprints":385},"wp-shortcut-link","wp shortcut link and advertisement baner","1.2.0","behzadrohizadeh","https:\u002F\u002Fprofiles.wordpress.org\u002Fbehzadrohizadeh\u002F","\u003Cp>An plugin  to create a shortcut link to direct your users to a specific page ,category page ,specific link\u003C\u002Fp>\n","An plugin  to create a shortcut link and advertisement baner",10,1293,0,"","5.2.24","3.0.1",[18,19,20,21],"advertisement","baner","link","shortcut","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-shortcut-link.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},5,190,89,30,86,"2026-04-04T16:09:44.381Z",[35,59,78,95,113],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":23,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":56,"download_link":57,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":58},"dashboard-quick-link-widget","Dashboard quick links widget","1.6.0","Hem Thapa","https:\u002F\u002Fprofiles.wordpress.org\u002Fhemthapa\u002F","\u003Cp>A lightweight plugin to allows admins to create an admin dashboard widget with frequently accessed links for quick access.\u003C\u002Fp>\n\u003Cp>I originally developed this plugin after spending hours creating client\u002Fuser documentation for every WordPress project. Instead of writing step-by-step navigation documentation, I used this plugin to organise all necessary links on the single widget for non-technical users. As a developer, I also use this script myself to organise frequently accessed links for quick access.\u003C\u002Fp>\n\u003Ch4>Links format\u003C\u002Fh4>\n\u003Cp>Each link should be entered in a separate line in the following format\u003Cbr \u002F>\n(the fourth parameter, i.e. font awesome icon class is optional)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>Link text|Button link|Button text|font-awesome icon class\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Examples\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>Post blog|\u002Fwp-admin\u002Fpost-new.php|Post blog\nPost blog|\u002Fwp-admin\u002Fpost-new.php|Post blog|fa fa-cog\nPost blog|\u002Fwp-admin\u002Fpost-new.php newtab|Post blog|fa fa-cog`\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If you have any feedback or queries please contact me at \u003Ca href=\"http:\u002F\u002Fhemthapa.com?ref=wp_dqlw\"hemthapa.com\"\" rel=\"nofollow ugc\">hemthapa.com\u003C\u002Fa>\u003C\u002Fp>\n","A lightweight plugin to allows admins to create a admin dashboard widget with frequently accessed links for quick access.",700,8592,8,"2026-01-23T07:08:00.000Z","6.9.4","3.0","7.3",[51,52,53,54,55],"admin","dashboard","links","shortcut-widget","widget","http:\u002F\u002Fwww.hemthapa.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdashboard-quick-link-widget.1.6.0.zip","2026-03-15T15:16:48.613Z",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":13,"num_ratings":13,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":14,"tags":72,"homepage":75,"download_link":76,"security_score":77,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":58},"simple-image-link","BlogWell's Simple Image Link Widget","2.2.2","Martyn Davis","https:\u002F\u002Fprofiles.wordpress.org\u002Fmartynalandavis\u002F","\u003Cp>So you want to put an ad or an image in your sidebar. And you want it to link to another site. And you want to do it easily, without having to muck about with the code in the text widget.\u003C\u002Fp>\n\u003Cp>While there are many WordPress plugins that offer sophisticated image\u002Fad management, there are not many that offer a simple solution.\u003C\u002Fp>\n\u003Cp>Simple Image Link lets you easily add images to your sidebar, be they advertisements, buttons of support or buttons of protest without the need for any HTML.\u003C\u002Fp>\n\u003Cp>It even displays its name in the widget header within the dashboard allowing you to easily see which simple image link widget is which.\u003C\u002Fp>\n","A widget which allows you to add an image with a link to your sidebar.",400,41692,"2009-10-01T03:26:00.000Z","2.8.4","2.8",[18,73,20,74,55],"image","sponsorship","http:\u002F\u002Fblog-well.com\u002Fdownloads\u002Fwordpress-image-link-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-image-link.2.2.2.zip",85,{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":11,"downloaded":86,"rating":13,"num_ratings":13,"last_updated":87,"tested_up_to":88,"requires_at_least":88,"requires_php":14,"tags":89,"homepage":93,"download_link":94,"security_score":77,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":58},"boss-banner-ad","Boss Banner Ad","1.2","kaser","https:\u002F\u002Fprofiles.wordpress.org\u002Fkaser\u002F","\u003Cp>This pluging simply allows you to link an image together with out the knowledge of html and simply be able to put the code where ever you want your image to show up.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>you can use it in a widget area\u003C\u002Fli>\n\u003Cli>you can use it in any area that accepts shortcodes\u003C\u002Fli>\n\u003Cli>you can even put it right into the template file itself!\u003C\u002Fli>\n\u003C\u002Ful>\n","Put A Banner image any where you want with ease!",4203,"2013-07-19T00:30:00.000Z","3.5.2",[18,90,91,92,55],"banner","image-link","post","http:\u002F\u002Fwww.CSSBoss.com\u002Fboss_banner_ad","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fboss-banner-ad.1.2.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":11,"downloaded":103,"rating":13,"num_ratings":13,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":14,"tags":107,"homepage":110,"download_link":111,"security_score":77,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":112},"plugins-site-menu-link","Plugins Site Menu Link","1.1.0","Sébastien Dumont","https:\u002F\u002Fprofiles.wordpress.org\u002Fsebd86\u002F","\u003Cp>This is an extremely simple plugin that just adds a link to the Plugins management page to the site’s toolbar admin menu, creating a nice little shortcut to plugins.php when on the front end of your site.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Use the WordPress.org forums for community support. If you spot a bug, you can of course log it on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fseb86\u002FPlugins-Site-Menu-Link\" rel=\"nofollow ugc\">Github\u003C\u002Fa> instead where I can act upon it more efficiently.\u003C\u002Fp>\n\u003Ch4>Please Leave a Review\u003C\u002Fh4>\n\u003Cp>Your ratings make a big difference. If you like Plugins Site Menu Link, please consider spending a minute or two \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fplugins-site-menu-link\u002Freviews\u002F?rate=5#postform\" rel=\"ugc\">leaving a review\u003C\u002Fa> and tell me what you think about the plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>More information\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Other \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsebd86\u002F\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa> by \u003Ca href=\"https:\u002F\u002Fsebastiendumont.com\u002F\" rel=\"nofollow ugc\">Sébastien Dumont\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contact Sébastien on Twitter: \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fsebd86\" rel=\"nofollow ugc\">@sebd86\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>If you’re a developer yourself, follow or contribute to the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fseb86\u002FPlugins-Site-Menu-Link\" rel=\"nofollow ugc\">Plugins Site Menu Link plugin on GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds a link to the Plugins management page to the site's toolbar admin menu.",1693,"2017-11-16T19:03:00.000Z","4.9.29","3.8",[108,21,109],"admin-link","site-menu","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fplugins-site-menu-link\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fplugins-site-menu-link.1.1.0.zip","2026-03-15T14:54:45.397Z",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":11,"downloaded":121,"rating":13,"num_ratings":13,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":14,"tags":125,"homepage":127,"download_link":128,"security_score":77,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":58},"tiny-link","Tiny Link","0.1","Brajeshwar","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrajeshwar\u002F","\u003Cp>Get an alternate \u003Ca href=\"http:\u002F\u002Ftinyurl.com\u002F\" rel=\"nofollow ugc\">TinyURL\u003C\u002Fa> link for your article or post permalink.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>NA\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Cp>NA\u003C\u002Fp>\n","Get an alternate TinyURL link for your article or post permalink.",3934,"2007-09-07T15:51:00.000Z","2.3","2.0.0",[20,21,126],"tinyurl","http:\u002F\u002Fwww.brajeshwar.com\u002F2007\u002Ftiny-link-a-wordpress-plugin-to-create-a-tinyurl-for-your-articles\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftiny-link.0.1.zip",{"attackSurface":130,"codeSignals":195,"taintFlows":259,"riskAssessment":371,"analyzedAt":384},{"hooks":131,"ajaxHandlers":171,"restRoutes":189,"shortcodes":190,"cronEvents":194,"entryPointCount":182,"unprotectedCount":176},[132,138,142,147,150,154,158,162,166],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","wp_enqueue_scripts","vbtab_js_and_css2","client.php",2,{"type":133,"name":139,"callback":140,"file":136,"line":141},"wp_footer","wpshout_action_example",3,{"type":133,"name":143,"callback":144,"file":145,"line":146},"admin_menu","wpslab_Admin_menue","menueadmin.php",9,{"type":133,"name":148,"callback":149,"file":145,"line":11},"admin_enqueue_scripts","wpslab_admin_scripts",{"type":133,"name":151,"callback":152,"file":145,"line":153},"wp_loaded","wpslab_redirect_function",12,{"type":133,"name":134,"callback":155,"file":156,"line":157},"wpslab_wp_scripts","shortcode.php",6,{"type":133,"name":159,"callback":160,"file":161,"line":45},"enqueue_block_editor_assets","wpslab_loadMyBlock","wp-block.php",{"type":163,"name":164,"callback":165,"priority":11,"file":161,"line":146},"filter","block_categories","wpslab_block_categories",{"type":133,"name":167,"callback":168,"file":169,"line":170},"plugins_loaded","wpslab_localization_init_textdomain","wp-shortcut-link-advertisement.php",21,[172,177,179,180,183,186],{"action":173,"nopriv":174,"callback":173,"hasNonce":175,"hasCapCheck":174,"file":136,"line":176},"save_wpslab_dataclient",false,true,4,{"action":178,"nopriv":174,"callback":178,"hasNonce":174,"hasCapCheck":174,"file":136,"line":28},"wpslab_get_list_cat_client",{"action":178,"nopriv":175,"callback":178,"hasNonce":174,"hasCapCheck":174,"file":136,"line":157},{"action":181,"nopriv":174,"callback":181,"hasNonce":175,"hasCapCheck":174,"file":136,"line":182},"remove_wpslab_dataclient",7,{"action":184,"nopriv":174,"callback":184,"hasNonce":174,"hasCapCheck":174,"file":145,"line":185},"save_wpslab_data",11,{"action":187,"nopriv":174,"callback":187,"hasNonce":174,"hasCapCheck":174,"file":145,"line":188},"save_wpslab_get_list_cat",13,[],[191],{"tag":192,"callback":193,"file":156,"line":182},"wpslab","wpslab_shortcode",[],{"dangerousFunctions":196,"sqlUsage":197,"outputEscaping":226,"fileOperations":13,"externalRequests":13,"nonceChecks":137,"capabilityChecks":257,"bundledLibraries":258},[],{"prepared":13,"raw":188,"locations":198},[199,202,204,206,208,210,211,213,215,217,219,222,224],{"file":136,"line":200,"context":201},28,"$wpdb->get_results() with variable interpolation",{"file":136,"line":203,"context":201},29,{"file":136,"line":205,"context":201},47,{"file":145,"line":207,"context":201},41,{"file":145,"line":209,"context":201},61,{"file":145,"line":30,"context":201},{"file":145,"line":212,"context":201},95,{"file":145,"line":214,"context":201},160,{"file":156,"line":216,"context":201},19,{"file":169,"line":207,"context":218},"$wpdb->get_var() with variable interpolation",{"file":169,"line":220,"context":221},43,"$wpdb->query() with variable interpolation",{"file":169,"line":223,"context":218},55,{"file":169,"line":225,"context":221},57,{"escaped":11,"rawEcho":227,"locations":228},15,[229,231,233,235,237,239,241,243,245,247,249,251,252,254,255],{"file":136,"line":188,"context":230},"raw output",{"file":136,"line":232,"context":230},20,{"file":136,"line":234,"context":230},33,{"file":136,"line":236,"context":230},42,{"file":136,"line":238,"context":230},58,{"file":145,"line":240,"context":230},44,{"file":145,"line":242,"context":230},69,{"file":145,"line":244,"context":230},129,{"file":145,"line":246,"context":230},130,{"file":145,"line":248,"context":230},131,{"file":145,"line":250,"context":230},134,{"file":145,"line":250,"context":230},{"file":145,"line":253,"context":230},136,{"file":145,"line":253,"context":230},{"file":145,"line":256,"context":230},163,1,[],[260,278,291,300,309,327,340],{"entryPoint":261,"graph":262,"unsanitizedCount":257,"severity":277},"wpslab_redirect_function (menueadmin.php:15)",{"nodes":263,"edges":275},[264,269],{"id":265,"type":266,"label":267,"file":145,"line":268},"n0","source","$_SERVER",31,{"id":270,"type":271,"label":272,"file":145,"line":273,"wp_function":274},"n1","sink","wp_redirect() [Open Redirect]",32,"wp_redirect",[276],{"from":265,"to":270,"sanitized":174},"medium",{"entryPoint":279,"graph":280,"unsanitizedCount":13,"severity":290},"\u003Cclient> (client.php:0)",{"nodes":281,"edges":288},[282,285],{"id":265,"type":266,"label":283,"file":136,"line":284},"$_POST",27,{"id":270,"type":271,"label":286,"file":136,"line":203,"wp_function":287},"get_results() [SQLi]","get_results",[289],{"from":265,"to":270,"sanitized":175},"low",{"entryPoint":292,"graph":293,"unsanitizedCount":257,"severity":299},"wpslab_get_list_cat_client (client.php:23)",{"nodes":294,"edges":297},[295,296],{"id":265,"type":266,"label":283,"file":136,"line":284},{"id":270,"type":271,"label":286,"file":136,"line":203,"wp_function":287},[298],{"from":265,"to":270,"sanitized":174},"high",{"entryPoint":301,"graph":302,"unsanitizedCount":257,"severity":299},"save_wpslab_data (menueadmin.php:47)",{"nodes":303,"edges":307},[304,306],{"id":265,"type":266,"label":283,"file":145,"line":305},50,{"id":270,"type":271,"label":286,"file":145,"line":209,"wp_function":287},[308],{"from":265,"to":270,"sanitized":174},{"entryPoint":310,"graph":311,"unsanitizedCount":141,"severity":299},"wpslab_all_cat (menueadmin.php:85)",{"nodes":312,"edges":324},[313,315,316,320],{"id":265,"type":266,"label":314,"file":145,"line":30},"$_GET['delete']",{"id":270,"type":271,"label":286,"file":145,"line":30,"wp_function":287},{"id":317,"type":266,"label":318,"file":145,"line":319},"n2","$_SERVER (x2)",97,{"id":321,"type":271,"label":322,"file":145,"line":250,"wp_function":323},"n3","echo() [XSS]","echo",[325,326],{"from":265,"to":270,"sanitized":174},{"from":317,"to":321,"sanitized":174},{"entryPoint":328,"graph":329,"unsanitizedCount":137,"severity":299},"wpslab_add_new (menueadmin.php:155)",{"nodes":330,"edges":337},[331,334,335,336],{"id":265,"type":266,"label":332,"file":145,"line":333},"$_GET",159,{"id":270,"type":271,"label":286,"file":145,"line":214,"wp_function":287},{"id":317,"type":266,"label":332,"file":145,"line":333},{"id":321,"type":271,"label":322,"file":145,"line":256,"wp_function":323},[338,339],{"from":265,"to":270,"sanitized":174},{"from":317,"to":321,"sanitized":174},{"entryPoint":341,"graph":342,"unsanitizedCount":182,"severity":299},"\u003Cmenueadmin> (menueadmin.php:0)",{"nodes":343,"edges":364},[344,345,346,347,348,350,352,354,356,358,360,362],{"id":265,"type":266,"label":267,"file":145,"line":268},{"id":270,"type":271,"label":272,"file":145,"line":273,"wp_function":274},{"id":317,"type":266,"label":283,"file":145,"line":305},{"id":321,"type":271,"label":286,"file":145,"line":209,"wp_function":287},{"id":349,"type":266,"label":314,"file":145,"line":30},"n4",{"id":351,"type":271,"label":286,"file":145,"line":30,"wp_function":287},"n5",{"id":353,"type":266,"label":318,"file":145,"line":319},"n6",{"id":355,"type":271,"label":322,"file":145,"line":250,"wp_function":323},"n7",{"id":357,"type":266,"label":332,"file":145,"line":333},"n8",{"id":359,"type":271,"label":286,"file":145,"line":214,"wp_function":287},"n9",{"id":361,"type":266,"label":332,"file":145,"line":333},"n10",{"id":363,"type":271,"label":322,"file":145,"line":256,"wp_function":323},"n11",[365,366,367,368,369,370],{"from":265,"to":270,"sanitized":174},{"from":317,"to":321,"sanitized":174},{"from":349,"to":351,"sanitized":174},{"from":353,"to":355,"sanitized":174},{"from":357,"to":359,"sanitized":174},{"from":361,"to":363,"sanitized":174},{"summary":372,"deductions":373},"The wp-shortcut-link plugin v1.2.0 exhibits a concerning security posture primarily due to its significant number of unprotected entry points and a lack of prepared statements for its SQL queries.  With 4 out of 7 total entry points lacking authentication checks, this plugin presents a substantial attack surface that could be exploited by unauthenticated users.  The taint analysis further exacerbates this concern, revealing 5 high-severity flows with unsanitized paths, strongly suggesting potential for code injection or data manipulation vulnerabilities.  While the plugin has no known CVEs, this historical lack of reported issues does not negate the immediate risks identified in the static and taint analysis. The absence of dangerous function calls and file operations is a positive sign, but it is overshadowed by the critical need for proper input validation and authorization mechanisms.",[374,376,378,380,382],{"reason":375,"points":11},"Unprotected AJAX handlers",{"reason":377,"points":11},"SQL queries without prepared statements",{"reason":379,"points":227},"High severity taint flows with unsanitized paths",{"reason":381,"points":28},"Low output escaping coverage",{"reason":383,"points":28},"Limited capability checks","2026-03-16T23:16:12.381Z",{"wat":386,"direct":394},{"assetPaths":387,"generatorPatterns":391,"scriptPaths":392,"versionParams":393},[388,389,390],"\u002Fwp-content\u002Fplugins\u002Fwp-shortcut-link\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwp-shortcut-link\u002Fjs\u002Fclient.js","\u002Fwp-content\u002Fplugins\u002Fwp-shortcut-link\u002Fjs\u002Fwpslab.js",[],[389,390],[],{"cssClasses":395,"htmlComments":397,"htmlAttributes":398,"restEndpoints":402,"jsGlobals":410,"shortcodeOutput":412},[396],"wpslabdata",[],[399,400,401],"data-url","edit","nonce",[403,404,405,406,407,408,409],"\u002Fwp-json\u002Fwp\u002Fv2\u002Fposts","\u002Fwp-json\u002Fwp\u002Fv2\u002Fpages","\u002Fwp-json\u002Fwp\u002Fv2\u002Fmedia","\u002Fwp-json\u002Fwp\u002Fv2\u002Fcategories","\u002Fwp-json\u002Fwp\u002Fv2\u002Ftags","\u002Fwp-json\u002Fwp\u002Fv2\u002Fusers","\u002Fwp-json\u002Fwp\u002Fv2\u002Fcomments",[411],"the_in_url",[413,414,415,416],"\u003Cdiv class=\"wpslabdata"," data-url=\""," edit=\""," nonce=\""]