[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhCJfv41Fx2kdIwhp7ryKgNd-fy38pcbLw69NjM0cq0g":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":123,"fingerprints":256},"wp-statistics-and-analytics","WP Statistics and Analytics","0.0.3","klickonit","https:\u002F\u002Fprofiles.wordpress.org\u002Fklickonit\u002F","\u003Cp>WP Statistics and Analytics is a simple plugin which, once enabled, will keep you update with page, post and user statistics with continuous updates to you page content delivered by shortcode.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Page, Post and User numebrs avaialble on any page … Just user the shortcode ‘[Klick-SA-View]’\u003C\u002Fli>\n\u003Cli>Shortcode page coninuously updated every 10 seconds … no need to refresh the page\u003C\u002Fli>\n\u003Cli>Page, Post and User numebrs avaialble right in the admin panel\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Statistics and Analytics is a simple plugin which, once enabled, will keep you update with page, post and user statistics with continuous updates t &hellip;",10,1165,0,"2017-12-05T02:54:00.000Z","4.9.29","3.8","5.4",[19,20,21,22,23],"continuous-updates","page","post","short-code","users","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-statistics-and-analytics.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},17,130,88,30,86,"2026-04-04T03:52:15.759Z",[38,61,80,97,113],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":24,"tags":53,"homepage":59,"download_link":60,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"empty-wp-blog-or-website","Empty WP Blog\u002FWebsite","1.1","Anoop M C","https:\u002F\u002Fprofiles.wordpress.org\u002Fanoopmmc\u002F","\u003Cp>One click solution for make your blog\u002Fwebsite empty. Delete all your posts, pages, media(images,videos,etc) , tags and categories.\u003C\u002Fp>\n","One click solution for make your blog\u002Fwebsite empty. Delete all your posts, pages, media(images,videos,etc) , tags and categories.",60,13792,56,4,"2015-05-08T15:41:00.000Z","4.2.39","2.0.2",[54,55,56,57,58],"delete-posts","delete-users","empty-pages","empty-tags","empty-wp","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fempty-wp-blog-or-website","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fempty-wp-blog-or-website.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":15,"requires_at_least":74,"requires_php":24,"tags":75,"homepage":78,"download_link":79,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"end-page-slide-box","End Page Slide Box","1.0.1","GraphicEdit","https:\u002F\u002Fprofiles.wordpress.org\u002Fgraphicedit\u002F","\u003Cp>End Page Slide Box is to have an element in the page when you hit the bottom of an article that triggers Slide Box to appear and displaying related article.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fgraphicedit.com\u002F\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n","End Page Slide Box is to have an element in the page last paragraph that triggers End Page Slide Box to appear.",40,6284,90,2,"2018-03-24T15:30:00.000Z","4.9.4",[20,76,21,77,22],"pages","posts","http:\u002F\u002Fgraphicedit.com\u002Fblog\u002Fplugin\u002Fend-page-slide-box\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fend-page-slide-box.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":11,"downloaded":88,"rating":13,"num_ratings":13,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":24,"tags":92,"homepage":95,"download_link":96,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"custom-post-type-privacy","Custom Post Type Privacy","0.3","kimedia","https:\u002F\u002Fprofiles.wordpress.org\u002Fkimedia\u002F","\u003Cp>This is a simple plugin to allow for restricting access to content.\u003C\u002Fp>\n\u003Cp>Users may be members of multiple groups. Multiple groups and multiple individual users may be allowed to view each\u003Cbr \u002F>\npost. Overlaps are ignored — if the user is a member of any group that is allowed to view the post, that user will\u003Cbr \u002F>\nbe able to view it.\u003C\u002Fp>\n","Stable Tag 0.3 Custom Post Type Privacy allows WordPress authors to grant access to users and groups of users across all posts, pages and custom post &hellip;",3603,"2012-05-08T14:46:00.000Z","3.3.4","3.0",[93,94,76,77,23],"bbpress","custom-post-types","http:\u002F\u002Fwww.ki-media.co.uk\u002Fwordpress\u002Fcustom-post-type-privacy\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-post-type-privacy.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":11,"downloaded":105,"rating":13,"num_ratings":13,"last_updated":24,"tested_up_to":106,"requires_at_least":107,"requires_php":24,"tags":108,"homepage":24,"download_link":110,"security_score":111,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":112},"ghostwriter","GhostWriter","1.0","Floate Design","https:\u002F\u002Fprofiles.wordpress.org\u002Ffloatedesign\u002F","\u003Cp>Ghostwriter overrides WordPress’s author pages and feeds to emulate the full functionality provided to WordPress users. Ghostwriter was developed by Floate in Melbourne. Just north of the river.\u003C\u002Fp>\n\u003Ch3>When to use Ghostwriter\u003C\u002Fh3>\n\u003Cp>Ghostwriter is best used for a blog written by multiple staff members but with a single person performing data entry.\u003C\u002Fp>\n\u003Cp>Ghostwriter works when the writing and approval process operates outside of the WordPress dashboard. If approval is done within the dashboard, setting up users as contributors may be better.\u003C\u002Fp>\n\u003Ch3>Copyright And Warranty\u003C\u002Fh3>\n\u003Cp>Copyright © 2012 Floate Design Partners\u003C\u002Fp>\n\u003Cp>This software is provided for free, as is, under the GPL v2\u003C\u002Fp>\n","Ghostwriter overrides WordPress’s author pages and feeds to emulate the full functionality provided to WordPress users.",1657,"3.4.2","3.3.2",[109,76,77,23],"authors","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fghostwriter.1.0.zip",100,"2026-03-15T10:48:56.248Z",{"slug":114,"name":115,"version":64,"author":65,"author_profile":66,"description":116,"short_description":117,"active_installs":11,"downloaded":118,"rating":13,"num_ratings":13,"last_updated":119,"tested_up_to":15,"requires_at_least":74,"requires_php":24,"tags":120,"homepage":121,"download_link":122,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"github-badge","GitHub Badge","\u003Cp>This plug-in allows you to create and place a GitHub css3 badge to your webpage on wordpress. With the help of this plug-in you create a css3 badge for your users or followers helping them to follow your GitHub account. This plug-in is very useful for GitHub users, for users who would like to promote his\u002Fher GitHub on WordPress.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fgraphicedit.com\u002F\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n","This plug-in allows you to create and place a GitHub css3 badge to your webpage on wordpress. With the help of this plug-in you create a css3 badge fo &hellip;",1778,"2018-03-24T15:31:00.000Z",[20,76,21,77,22],"http:\u002F\u002Fgraphicedit.com\u002Fblog\u002Fplugin\u002Fgithub-badge\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgithub-badge.zip",{"attackSurface":124,"codeSignals":166,"taintFlows":249,"riskAssessment":250,"analyzedAt":255},{"hooks":125,"ajaxHandlers":152,"restRoutes":159,"shortcodes":160,"cronEvents":165,"entryPointCount":72,"unprotectedCount":13},[126,132,137,141,144,148],{"type":127,"name":128,"callback":129,"file":130,"line":131},"action","all_admin_notices","show_admin_dashboard_notice","includes\\class-klick-sa-dashboard.php",43,{"type":127,"name":133,"callback":134,"file":135,"line":136},"admin_menu","init_dashboard","wp-statistics-and-analytics.php",64,{"type":127,"name":138,"callback":139,"file":135,"line":140},"plugins_loaded","setup_translation",66,{"type":127,"name":138,"callback":142,"file":135,"line":143},"setup_loggers",68,{"type":127,"name":145,"callback":146,"file":135,"line":147},"wp_footer","klick_sa_ui_scripts",70,{"type":127,"name":149,"callback":150,"file":135,"line":151},"wp_head","klick_sa_ui_css",72,[153],{"action":154,"nopriv":155,"callback":156,"hasNonce":157,"hasCapCheck":155,"file":135,"line":158},"klick_sa_ajax",false,"klick_sa_ajax_handler",true,62,[],[161],{"tag":162,"callback":163,"file":135,"line":164},"Klick-SA-View","klick_sa_view",179,[],{"dangerousFunctions":167,"sqlUsage":168,"outputEscaping":170,"fileOperations":13,"externalRequests":13,"nonceChecks":247,"capabilityChecks":72,"bundledLibraries":248},[],{"prepared":13,"raw":13,"locations":169},[],{"escaped":171,"rawEcho":172,"locations":173},5,46,[174,177,179,181,184,186,188,189,191,193,195,197,199,200,202,204,207,208,210,211,212,214,216,218,219,221,222,223,224,226,227,228,229,230,232,234,236,237,238,239,240,241,242,243,244,245],{"file":130,"line":175,"context":176},124,"raw output",{"file":130,"line":178,"context":176},207,{"file":130,"line":180,"context":176},209,{"file":182,"line":183,"context":176},"templates\\klick-sa-tab-information.php",14,{"file":182,"line":185,"context":176},15,{"file":182,"line":187,"context":176},16,{"file":182,"line":31,"context":176},{"file":182,"line":190,"context":176},26,{"file":182,"line":192,"context":176},27,{"file":182,"line":194,"context":176},28,{"file":182,"line":196,"context":176},29,{"file":182,"line":198,"context":176},38,{"file":182,"line":69,"context":176},{"file":182,"line":201,"context":176},41,{"file":182,"line":203,"context":176},49,{"file":205,"line":206,"context":176},"templates\\klick-sa-tab-our-other-plugins.php",25,{"file":205,"line":190,"context":176},{"file":209,"line":185,"context":176},"templates\\klick-sa-tabs-header.php",{"file":209,"line":185,"context":176},{"file":209,"line":185,"context":176},{"file":209,"line":213,"context":176},20,{"file":215,"line":49,"context":176},"templates\\notices-templates\\horizontal-notice.php",{"file":215,"line":217,"context":176},9,{"file":215,"line":185,"context":176},{"file":215,"line":220,"context":176},19,{"file":215,"line":220,"context":176},{"file":215,"line":220,"context":176},{"file":215,"line":220,"context":176},{"file":215,"line":225,"context":176},21,{"file":215,"line":225,"context":176},{"file":215,"line":225,"context":176},{"file":215,"line":225,"context":176},{"file":215,"line":194,"context":176},{"file":231,"line":49,"context":176},"templates\\notices-templates\\main-dashboard-notices.php",{"file":231,"line":233,"context":176},7,{"file":231,"line":235,"context":176},13,{"file":231,"line":31,"context":176},{"file":231,"line":31,"context":176},{"file":231,"line":31,"context":176},{"file":231,"line":31,"context":176},{"file":231,"line":220,"context":176},{"file":231,"line":220,"context":176},{"file":231,"line":220,"context":176},{"file":231,"line":220,"context":176},{"file":231,"line":190,"context":176},{"file":135,"line":246,"context":176},258,1,[],[],{"summary":251,"deductions":252},"The plugin \"wp-statistics-and-analytics\" v0.0.3 exhibits a generally strong security posture based on the provided static analysis.  It demonstrates good practices by avoiding dangerous functions, performing all SQL queries using prepared statements, and incorporating nonce and capability checks on its entry points. The absence of file operations and external HTTP requests further limits its attack surface in those areas.  Furthermore, the plugin has no recorded vulnerability history, indicating a lack of publicly known security flaws and suggesting a potentially well-maintained codebase.\n\nHowever, a significant concern arises from the low percentage of properly escaped output. With only 10% of 51 outputs being properly escaped, there is a high probability of cross-site scripting (XSS) vulnerabilities. Although taint analysis showed no specific unsanitized paths, the general lack of output escaping is a substantial risk that could be exploited if malicious data reaches these output points. The limited number of entry points (2) and the absence of unprotected ones are positive, but the output escaping issue overshadows this otherwise positive assessment.\n\nIn conclusion, while the plugin has strengths in its handling of SQL, its use of nonces and capabilities, and its clean vulnerability history, the severe lack of output escaping represents a critical weakness. This makes it susceptible to XSS attacks, which can have significant security implications. Developers should prioritize addressing the output escaping issues to improve the overall security of the plugin.",[253],{"reason":254,"points":185},"Low percentage of properly escaped output","2026-03-17T00:25:14.085Z",{"wat":257,"direct":268},{"assetPaths":258,"generatorPatterns":259,"scriptPaths":260,"versionParams":264},[],[],[261,262,263],"\u002Fwp-content\u002Fplugins\u002Fwp-statistics-and-analytics\u002Fjs\u002Fklick-sa-dashboard.js","\u002Fwp-content\u002Fplugins\u002Fwp-statistics-and-analytics\u002Fjs\u002Fklick-sa-main.js","\u002Fwp-content\u002Fplugins\u002Fwp-statistics-and-analytics\u002Fjs\u002Fklick-sa-frontend.js",[265,266,267],"wp-statistics-and-analytics\u002Fjs\u002Fklick-sa-dashboard.js?ver=","wp-statistics-and-analytics\u002Fjs\u002Fklick-sa-main.js?ver=","wp-statistics-and-analytics\u002Fjs\u002Fklick-sa-frontend.js?ver=",{"cssClasses":269,"htmlComments":277,"htmlAttributes":284,"restEndpoints":288,"jsGlobals":289,"shortcodeOutput":291},[270,271,272,273,274,275,276],"klick-sa-data-container","klick-sa-overlay","loading-image","klick-sa-post","klick-sa-data","klick-sa-inner-data","klick-sa-page",[278,279,280,281,282,283],"This plugin developed by klick-on-it.com","Copyright 2017 klick on it (http:\u002F\u002Fklick-on-it.com)","This program is free software; you can redistribute it and\u002For modify","This program is distributed in the hope that it will be useful,","You should have received a copy of the GNU General Public License","No direct access allowed",[285,286,287],"data-ajax-url","data-nonce","data-subaction",[],[290],"klick_sa_ajax_obj",[292,293,294,295,296,297],"\u003Cdiv class=\"klick-sa-data-container\">","\u003Cdiv class=\"klick-sa-overlay\">","\u003Cimg class=\"loading-image\" src=\"","\" alt=\"Loading..\" \u002F>","\u003Cdiv class=\"klick-sa-post klick-sa-data\">\u003Cdiv class=\"klick-sa-inner-data\">\u003C\u002Fdiv>\u003C\u002Fdiv>","\u003Cdiv class=\"klick-sa-page klick-sa-data\">\u003Cdiv class=\"klick-sa-inner-data\">\u003C\u002Fdiv>\u003C\u002Fdiv>"]