[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fFQqWohMavRkLdiOrw8eSJX2pBT58IzdEyDXis4Z8EDo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":128,"fingerprints":196},"wp-whoami","WP-Whoami","0.4","Dennis Ploetner","https:\u002F\u002Fprofiles.wordpress.org\u002Frealloc\u002F","\u003Cp>Just another widget to show a photo, a bio and some social media links with nice webfont-icons\u003C\u002Fp>\n\u003Cp>The plugin is using the JustVector Social Icons Font created by \u003Ca href=\"http:\u002F\u002Fwww.alexpeattie.com\u002Fprojects\u002Fjustvector_font\u002F\" rel=\"nofollow ugc\">Alex Peattie\u003C\u002Fa>.\u003C\u002Fp>\n","Just another widget to show a photo, a bio and some social media links with nice webfont-icons",10,2600,0,"","4.3.34","3.1",[18,19,20,21],"author","bio","social-media","widget","http:\u002F\u002Flloc.de\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-whoami.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"realloc",4,4220,30,94,"2026-04-04T05:55:11.121Z",[36,58,77,98,111],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":13,"num_ratings":13,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":55,"download_link":56,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":57},"rs-author-info-box","RS Author Info Box","2.2.0","RS WP THEMES","https:\u002F\u002Fprofiles.wordpress.org\u002Frswpthemes\u002F","\u003Cp>RS Author Info Box is a functional WordPress plugin designed to easily display professional author profiles within your website’s sidebar or widget-ready areas. This simple tool empowers website administrators to build trust and connect with readers by giving a face and brief introduction to the content creators.\u003C\u002Fp>\n\u003Cp>Key features include:\u003Cbr \u002F>\n* Display author name and professional title.\u003Cbr \u002F>\n* Include a short biographical description.\u003Cbr \u002F>\n* Upload an author profile picture and banner image seamlessly via the WordPress media library.\u003Cbr \u002F>\n* Add common social media profiles (Facebook, Twitter, Instagram, LinkedIn, Pinterest, Goodreads, Wattpad).\u003Cbr \u002F>\n* Option to hide the widget conditionally to suit your theme layouts.\u003C\u002Fp>\n\u003Cp>Lightweight and flexible, it simply requires adding the widget to your targeted widget area and configuring the straightforward form.\u003C\u002Fp>\n","A simple and lightweight widget to display an author's name, profile image, short description, and social media links in any sidebar or widget area.",2000,28013,"2026-03-04T04:39:00.000Z","6.7.5","4.9","7.4",[51,52,53,54],"about-me-widget","author-profile","author-widget","bio-widget","https:\u002F\u002Frswpthemes.com\u002Fhow-to-add-about-me-widget-on-wordpress-step-by-step-guide\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frs-author-info-box.2.2.0.zip","2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":24,"downloaded":66,"rating":24,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":14,"tags":71,"homepage":74,"download_link":75,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":57},"wp-author-profile-widget","WP Author Profile Widget","1.0","B.M. Rafiul Alam","https:\u002F\u002Fprofiles.wordpress.org\u002Frafiul17\u002F","\u003Cul>\n\u003Cli>Shows author gravatar, name, website, description and social icons\u003C\u002Fli>\n\u003Cli>Fully customizable to match your theme design (style, color, size and text options)\u003C\u002Fli>\n\u003Cli>Nice looking on desktop, laptop, tablet or mobile phones\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Settings\u002FCustomize\u003C\u002Fh3>\n\u003Cp>You can find Profile Setting  and Customize option below plugin list after installation.\u003C\u002Fp>\n","Add WP Author Profile Widget with easy way.",7333,1,"2024-10-19T16:32:00.000Z","6.6.5","5.0",[18,19,72,73,21],"biography","profile","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-author-profile-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-author-profile-widget.zip",92,{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":24,"num_ratings":67,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":14,"tags":90,"homepage":95,"download_link":96,"security_score":97,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":57},"about-the-author-advanced","About the Author Advanced","0.2.3","Dan","https:\u002F\u002Fprofiles.wordpress.org\u002Fdz203comcom\u002F","\u003Cp>This plugin creates a sidebar widget which displays information about the author of a post or page.\u003C\u002Fp>\n\u003Cp>\u003Cem>Configurable settings include:\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Adds contact fields to the user settings page including phone number, facebook, twitter and linkedin \u003C\u002Fli>\n\u003Cli>Toggle user fields to display including email address, website, bio, phone, company and social media links\u003C\u002Fli>\n\u003Cli>Configurable gravatar image display\u003C\u002Fli>\n\u003Cli>Display widget on posts, pages or both\u003C\u002Fli>\n\u003Cli>Text labels for various fields\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin creates a sidebar widget which displays the post\u002Fpage author's information.",50,14239,"2012-09-14T17:28:00.000Z","3.4.2","3.0",[91,18,92,93,94],"about-the-author","author-bio","author-bio-widget","author-info","http:\u002F\u002Fwww.drzdigital.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fabout-the-author-advanced.0.2.3.zip",85,{"slug":93,"name":99,"version":61,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":85,"downloaded":104,"rating":13,"num_ratings":13,"last_updated":105,"tested_up_to":106,"requires_at_least":89,"requires_php":14,"tags":107,"homepage":109,"download_link":110,"security_score":97,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":57},"Author Bio Widget","ray.viljoen","https:\u002F\u002Fprofiles.wordpress.org\u002Frayviljoen\u002F","\u003Cp>The Author Bio Widget displays some basic information about the author of the page or post being viewed.\u003C\u002Fp>\n\u003Cp>The bio includes the author’s gravatar, nickname and bio information as set in the user profile.\u003Cbr \u002F>\nThe author’s name will also link to the main blogroll filtered by content from the same author.\u003C\u002Fp>\n\u003Cp>The widget settings include a custom title and a size option for the gravatar ( profile picture ).\u003C\u002Fp>\n\u003Cp>Developed by \u003Ca href=\"http:\u002F\u002Fwww.catn.com\" rel=\"nofollow ugc\">PHP Hosting Experts CatN\u003C\u002Fa>\u003C\u002Fp>\n","A simple sidebar widget to display page or post author's bio and link through to other content from the author.",14138,"2011-04-27T16:24:00.000Z","3.1.4",[18,92,73,108,21],"user-profile","http:\u002F\u002Fcatn.com\u002Fcommunity\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauthor-bio-widget.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":24,"num_ratings":67,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":14,"tags":124,"homepage":126,"download_link":127,"security_score":97,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":57},"short-bio-widget","Short Bio Widget","1.2","Nasir Ahmed","https:\u002F\u002Fprofiles.wordpress.org\u002Fnasirahmed\u002F","\u003Cp>Its a widget that collects your short biography and show into wordpress sidebar area. User can add gravatar, name, short personal details, all common social links with icons.\u003C\u002Fp>\n","Its a widget that collects your short biography and show into wordpress sidebar area. User can add gravatar, name, short personal details, all common  …",40,3411,"2016-03-27T04:13:00.000Z","4.4.34","3.0.1",[18,19,72,125,21],"contact","http:\u002F\u002Fnasirahmed.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshort-bio-widget.zip",{"attackSurface":129,"codeSignals":154,"taintFlows":180,"riskAssessment":181,"analyzedAt":195},{"hooks":130,"ajaxHandlers":150,"restRoutes":151,"shortcodes":152,"cronEvents":153,"entryPointCount":13,"unprotectedCount":13},[131,137,142,146],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","widgets_init","anonymous","whoami.php",80,{"type":138,"name":139,"callback":140,"priority":11,"file":135,"line":141},"filter","user_contactmethods","add",87,{"type":132,"name":143,"callback":144,"file":135,"line":145},"admin_init","Whoami_Admin::instance",124,{"type":132,"name":147,"callback":148,"file":135,"line":149},"wp_enqueue_scripts","css",132,[],[],[],[],{"dangerousFunctions":155,"sqlUsage":159,"outputEscaping":161,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":179},[156],{"fn":157,"file":135,"line":136,"context":158},"create_function","add_action( 'widgets_init', create_function( '', 'return register_widget( \"Whoami_Widget\" );' ) );",{"prepared":13,"raw":13,"locations":160},[],{"escaped":67,"rawEcho":162,"locations":163},7,[164,167,169,171,173,175,177],{"file":135,"line":165,"context":166},69,"raw output",{"file":135,"line":168,"context":166},71,{"file":135,"line":170,"context":166},72,{"file":135,"line":172,"context":166},73,{"file":135,"line":174,"context":166},75,{"file":135,"line":176,"context":166},76,{"file":135,"line":178,"context":166},219,[],[],{"summary":182,"deductions":183},"The wp-whoami v0.4 plugin presents a mixed security picture. On one hand, the static analysis indicates a very small attack surface, with no identified AJAX handlers, REST API routes, shortcodes, or cron events that are directly exposed or lack authentication checks. Furthermore, all SQL queries are correctly implemented using prepared statements, and there are no file operations or external HTTP requests, which significantly reduces common attack vectors. The absence of known vulnerabilities in its history is also a positive sign.\n\nHowever, significant concerns arise from the code analysis. The presence of the `create_function` is a critical security anti-pattern in PHP, as it can lead to arbitrary code execution if its arguments are not rigorously sanitized. Additionally, the extremely low percentage (13%) of properly escaped outputs indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the site's output.\n\nGiven the absence of known CVEs, the plugin appears to have been relatively stable. However, the identified code signals, particularly `create_function` and the poor output escaping, represent substantial security weaknesses that could be exploited by attackers. The plugin's strengths lie in its limited attack surface and secure database interactions, but these are overshadowed by the potential for code execution and XSS due to insecure coding practices.",[184,187,190,193],{"reason":185,"points":186},"Use of dangerous function 'create_function'",15,{"reason":188,"points":189},"Low percentage of properly escaped outputs",8,{"reason":191,"points":192},"Missing nonce checks",5,{"reason":194,"points":192},"Missing capability checks","2026-03-16T23:21:59.694Z",{"wat":197,"direct":203},{"assetPaths":198,"generatorPatterns":200,"scriptPaths":201,"versionParams":202},[199],"\u002Fwp-content\u002Fplugins\u002Fwp-whoami\u002Fcss\u002Fstyle.css",[],[],[],{"cssClasses":204,"htmlComments":206,"htmlAttributes":207,"restEndpoints":209,"jsGlobals":210,"shortcodeOutput":211},[205],"socialicons",[],[208],"rel=\"me\"",[],[],[]]