[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6HcA5-TcAWokq1B7wuie1-9yhn7SgtJiFU6B5M_knGw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":48,"crawl_stats":38,"alternatives":56,"analysis":160,"fingerprints":244},"zephyr-modern-admin-theme","Zephyr Admin Theme","1.5.0","Dylan James","https:\u002F\u002Fprofiles.wordpress.org\u002Fdylanjkotze\u002F","\u003Cp>Zephyr Admin Theme allows you to transform your WordPress dashboard and make it look more modern and beautiful. It also includes custom colors selection, beautiful predefined themes, a dark and light mode, login screen customization and much more!\u003C\u002Fp>\n\u003Ch4>Core Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Spice up your Dashboard\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Update the look and feel of your dashboard and make it look modern.\u003C\u002Fli>\n\u003Cli>Zephyr Admin Theme offers you many options and transforms your dashboard into a beautiful and modern design, to change it up a bit and look forward to using the dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Customization\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>There are many customization options to change the color and look of all the elements, including:\u003C\u002Fli>\n\u003Cli>Complete color selection\u003C\u002Fli>\n\u003Cli>A variety of predefined custom themes to choose from\u003C\u002Fli>\n\u003Cli>Login screen customization and custom login screen\u003C\u002Fli>\n\u003Cli>Set custom login screen logo, or hide the logo altogether\u003C\u002Fli>\n\u003Cli>Create, select and save your own theme templates to reuse in the future\u003C\u002Fli>\n\u003Cli>Custom fonts and font selection\u003C\u002Fli>\n\u003Cli>Custom WordPress dashboard logo\u003C\u002Fli>\n\u003Cli>Set custom login redirection URL\u003C\u002Fli>\n\u003Cli>Plus much more. Give it a whirl and see if you like it 🙂\u003C\u002Fli>\n\u003C\u002Ful>\n","Zephyr Admin Theme gives you the power to transform your WordPress dashboard into a more modern and beautiful dashboard, with custom colors, predefine &hellip;",200,8792,100,4,"2025-01-07T13:00:00.000Z","6.1.10","4.0","5.2.4",[20,21,22,23,24],"admin","admin-theme","dashboard","modern","theme","https:\u002F\u002Fzephyr-one.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzephyr-modern-admin-theme.zip",91,1,0,"2025-01-07 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2025-22814","zephyr-admin-theme-cross-site-request-forgery-to-stored-cross-site-scripting","Zephyr Admin Theme \u003C= 1.4.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting","The Zephyr Admin Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.1. This is due to missing or incorrect nonce validation on the zat_check_save_settings() function. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.4.1","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-01-14 14:54:40",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8e809215-8b20-4a36-acd9-d16cf4a55bc5?source=api-prod",8,{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":52,"avg_patch_time_days":53,"trust_score":54,"computed_at":55},"dylanjkotze",2,1200,87,155,70,"2026-04-05T01:55:09.416Z",[57,78,102,122,141],{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":47,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":75,"download_link":76,"security_score":77,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wpredesigned-beautiful-custom-admin-theme","WpRedesigned – Beautiful Custom Admin Theme","1.0","wpmagg","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpmagg\u002F","\u003Cp>Beautify your WordPress admin 🙂 No settings just activate and enjoy a fresh WordPress admin experience!\u003C\u002Fp>\n","Beautify your WordPress admin :)",2000,7726,88,"2019-06-07T19:06:00.000Z","5.2.24","4.6","",[20,21,73,74],"cstom-dashboard","custom-admin","http:\u002F\u002Fwpmagg.com\u002Fportfolio\u002Fwpredesigned-beautiful-custom-admin-theme\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpredesigned-beautiful-custom-admin-theme.zip",85,{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":97,"download_link":98,"security_score":99,"vuln_count":100,"unpatched_count":29,"last_vuln_date":101,"fetched_at":31},"dark-mode","Markdown Editor (Formerly Dark Mode)","4.2.1","azizultex","https:\u002F\u002Fprofiles.wordpress.org\u002Fazizultex\u002F","\u003Cp>If you want to quickly edit content in WordPress without thinking about blocks, Markdown Editor  is the choice for you! Get an immersive, peaceful and natural writing experience with the coolest editor – Markdown Editor.\u003Cbr \u002F>\nWhether you are a Markdown fan or newbie as a Markdown writer, you will love Markdown Editor. This is the simplest plugin for a developer to write content in WordPress.\u003C\u002Fp>\n\u003Cp>Using technology at night time can have a negative effect on your eyesight.\u003Cbr \u002F>\nMarkdown Editor will also darken the colors of your admin dashboard making it easier for you to work at night.\u003C\u002Fp>\n\u003Cp>Use Markdown Editor plugin to create a stunning dark version for your WordPress admin dashboard. Dark Mode works automatically as per their preferred operating system preference.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FPqIX-aOTO6c?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Markdown Editor (Formerly Dark Mode) Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Typography Settings\u003C\u002Fstrong> – You can change the typography of your editor screen, using four different fonts, and controls for font size, line height, line width, and paragraph spacing.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ready-made Color Schema\u003C\u002Fstrong> – Quickly choose your favourite color from the ready-made color schema available in Markdown. Highlight and edit your content the way you want.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Syntax Shortcuts\u003C\u002Fstrong> – A Markdown cheat sheet is available for you which shows other keyboard shortcuts for heading, formatting and the interface.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Emoji Supported\u003C\u002Fstrong> – You can make your content more interactive and attractive with emojis. Markdown Editor supports all types of emojis in your write up.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Colors\u003C\u002Fstrong> – You can customize the background text and color as you want with the custom color feature of our Markdown Editor. Pick the color schema of your preference and make it yours!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Makes it easy and fast\u003C\u002Fstrong> – formatting in WordPress without thinking about the blocks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dark Mode Switch\u003C\u002Fstrong> – You can toggle between the dark and light mode using the admin bar dark mode switch menu anytime.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto Match OS Theme\u003C\u002Fstrong> – Automatically shows Darkmode if the OS preferred theme is dark.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remember Dark Mode\u003C\u002Fstrong> – The dark mode remains saved once you activated the dark mode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How to use?\u003C\u002Fh4>\n\u003Cp>After activating the plugin, a new row action \u003Cstrong>Edit (Markdown)\u003C\u002Fstrong> will be added  in the post\u002F page table row actions.\u003Cbr \u002F>\nFor editing any page\u002F post with the markdown editor, you need to click the \u003Cstrong>Edit (Markdown)\u003C\u002Fstrong> button in the post\u002F page row actions.\u003Cbr \u002F>\nThen you will redirect to the Markdown editor and can start editing with the markdown syntax.\u003Cbr \u002F>\nYou can find the Markdown editor shortcuts by clicking the keyboard icon at the right-bottom side of the editor.\u003C\u002Fp>\n\u003Cp>You can see a Dark mode switch added to the admin bar menu.\u003Cbr \u002F>\nYou can toggle between the dark and light mode by using that switch any time.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin does not connect to any third-party or external services.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Markdown Editor uses \u003Ca href=\"https:\u002F\u002Fappsero.com\" rel=\"nofollow ugc\">Appsero\u003C\u002Fa> SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements.\u003C\u002Fp>\n\u003Cp>Appsero SDK \u003Cstrong>does not gather any data by default.\u003C\u002Fstrong> The SDK only starts gathering basic telemetry data \u003Cstrong>when a user allows it via the admin notice\u003C\u002Fstrong>. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n\u003Cp>Integrating Appsero SDK \u003Cstrong>DOES NOT IMMEDIATELY\u003C\u002Fstrong> start gathering data, \u003Cstrong>without confirmation from users in any case.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fappsero.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Appsero collects and uses this data\u003C\u002Fa>.\u003C\u002Fp>\n","Quickly edit content in your WordPress site by getting an immersive, peaceful and natural writing experience with the coolest editor.",1000,116443,66,84,"2025-12-09T09:19:00.000Z","6.9.4","6.2","7.4",[21,79,22,95,96],"editor","markdown","https:\u002F\u002Fwppool.dev\u002Fwp-markdown-editor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdark-mode.4.2.1.zip",99,3,"2022-12-16 00:00:00",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":11,"downloaded":110,"rating":13,"num_ratings":100,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":71,"tags":114,"homepage":119,"download_link":120,"security_score":121,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-clean-admin-theme","Clean WP Admin Theme – Simple design","1.0.3","Jose Vega","https:\u002F\u002Fprofiles.wordpress.org\u002Fjosevega\u002F","\u003Cp>Beautiful design for WP Admin, you can use this plugin to simplify the looks. The WP Admin will look very clean and simple.\u003C\u002Fp>\n\u003Cp>You can install the plugin and it works automatically.\u003C\u002Fp>\n\u003Cp>If you don´t like the main color, you can change it in Settings > General options.\u003C\u002Fp>\n\u003Ch4>Multisite compatible.\u003C\u002Fh4>\n\u003Cp>If you define a constant in wp-config.php, the setting will be applied to all sites automatically and the options field won´t be displayed: \u003Ccode>define('WPCAT_MAIN_COLOR', '#000');\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch4>Recommended plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WP Sheet Editor is a free plugin that allows you to edit WordPress posts, pages, and WooCommerce products using a spreadsheet.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-sheet-editor-bulk-spreadsheet-editor-for-posts-and-pages\u002F\" rel=\"ugc\">Download “wp sheet editor” plugin\u003C\u002Fa>\u003C\u002Fp>\n","Beautiful design for WP Admin, Clean Admin Theme for wp-admin.",8364,"2024-05-21T01:03:00.000Z","6.5.8","3.6",[21,115,116,117,118],"flat-admin-theme","modern-admin-theme","white-label","wordpress-admin-theme","https:\u002F\u002Fwpfrontendadmin.com\u002F?utm_source=wp-admin&utm_medium=plugins-list&utm_campaign=clean-admin-theme","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-clean-admin-theme.1.0.3.zip",92,{"slug":123,"name":124,"version":60,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":29,"num_ratings":29,"last_updated":131,"tested_up_to":132,"requires_at_least":17,"requires_php":133,"tags":134,"homepage":139,"download_link":140,"security_score":77,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"minimal-dashboard-by-wss","Minimal Dashboard by WSS","shubhwadekar","https:\u002F\u002Fprofiles.wordpress.org\u002Fshubhwadekar\u002F","\u003Cp>A simple, clean, light weight and minimal Dashboard theme. Works with all major plugins such as Woocommerce, Yoast SEO and many more.\u003C\u002Fp>\n","A simple, clean, light weight and minimal Dashboard theme. Works with all major plugins such as Woocommerce, Yoast SEO and many more.",50,1812,"2022-09-28T12:54:00.000Z","6.0.11","5.4",[135,136,21,137,138],"admin-clean-theme","admin-light-theme","clean-dashboard","minimal-dashboard","https:\u002F\u002Fwww.weswitched.studio\u002Fminimal-dashboard-by-WSS","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fminimal-dashboard-by-wss.zip",{"slug":142,"name":143,"version":144,"author":145,"author_profile":146,"description":147,"short_description":148,"active_installs":149,"downloaded":150,"rating":151,"num_ratings":14,"last_updated":152,"tested_up_to":153,"requires_at_least":154,"requires_php":71,"tags":155,"homepage":158,"download_link":159,"security_score":77,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"cream6-admin-theme","Cream6 Admin Theme","0.1","SimonEbeling","https:\u002F\u002Fprofiles.wordpress.org\u002Fsimonebeling\u002F","\u003Cp>A user-friendly admin theme. Responsive as far as CSS can manage on the core.\u003C\u002Fp>\n","A user-friendly admin theme. Responsive as far as CSS can manage on the core.",10,7331,80,"2013-11-02T12:38:00.000Z","3.7.41","3.5",[21,156,157,22],"administration","administration-theme","http:\u002F\u002Fsimonebeling.se","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcream6-admin-theme.zip",{"attackSurface":161,"codeSignals":194,"taintFlows":234,"riskAssessment":235,"analyzedAt":243},{"hooks":162,"ajaxHandlers":190,"restRoutes":191,"shortcodes":192,"cronEvents":193,"entryPointCount":29,"unprotectedCount":29},[163,169,172,176,182,186],{"type":164,"name":165,"callback":166,"file":167,"line":168},"action","plugins_loaded","zephyr_admin_theme_init","zephyr-admin-theme.php",46,{"type":164,"name":170,"callback":171,"file":167,"line":129},"admin_enqueue_scripts","zat_enqueue_admin_scripts",{"type":164,"name":173,"callback":174,"file":167,"line":175},"admin_menu","zat_theme_pages",56,{"type":177,"name":178,"callback":179,"priority":180,"file":167,"line":181},"filter","login_redirect","zat_login_redirect",999,442,{"type":164,"name":183,"callback":184,"file":167,"line":185},"login_head","zat_login_styles",449,{"type":164,"name":187,"callback":188,"file":167,"line":189},"wp_before_admin_bar_render","zat_custom_dashboard_logo",661,[],[],[],[],{"dangerousFunctions":195,"sqlUsage":196,"outputEscaping":198,"fileOperations":29,"externalRequests":29,"nonceChecks":28,"capabilityChecks":29,"bundledLibraries":233},[],{"prepared":29,"raw":29,"locations":197},[],{"escaped":199,"rawEcho":200,"locations":201},17,20,[202,206,208,209,210,211,212,213,214,215,217,218,220,221,223,225,226,227,229,231],{"file":203,"line":204,"context":205},"pages\\settings.php",21,"raw output",{"file":203,"line":207,"context":205},26,{"file":203,"line":207,"context":205},{"file":203,"line":207,"context":205},{"file":203,"line":207,"context":205},{"file":203,"line":207,"context":205},{"file":203,"line":207,"context":205},{"file":203,"line":207,"context":205},{"file":203,"line":207,"context":205},{"file":203,"line":216,"context":205},27,{"file":203,"line":216,"context":205},{"file":203,"line":219,"context":205},28,{"file":203,"line":219,"context":205},{"file":203,"line":222,"context":205},30,{"file":203,"line":224,"context":205},65,{"file":203,"line":224,"context":205},{"file":203,"line":121,"context":205},{"file":203,"line":228,"context":205},107,{"file":167,"line":230,"context":205},446,{"file":167,"line":232,"context":205},657,[],[],{"summary":236,"deductions":237},"The static analysis of zephyr-modern-admin-theme v1.5.0 reveals a generally positive security posture regarding its attack surface and fundamental coding practices.  The plugin has no identified AJAX handlers, REST API routes, shortcodes, or cron events that could be exploited as entry points.  Furthermore, all SQL queries are correctly prepared, and there are no dangerous function calls or file operations to indicate malicious intent. The presence of a nonce check is also a good sign of security awareness.  However, a significant concern arises from the code signals: only 46% of output is properly escaped, suggesting a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled with sufficient sanitization before being displayed. The vulnerability history, while showing no currently unpatched CVEs, indicates a past medium-severity vulnerability, specifically CSRF, which warrants continued vigilance.",[238,240],{"reason":239,"points":47},"Insufficient output escaping",{"reason":241,"points":242},"Past medium severity vulnerability",5,"2026-03-16T20:10:17.305Z",{"wat":245,"direct":256},{"assetPaths":246,"generatorPatterns":250,"scriptPaths":251,"versionParams":252},[247,248,249],"\u002Fwp-content\u002Fplugins\u002Fzephyr-modern-admin-theme\u002Fassets\u002Fcss\u002Fzephyr-admin-theme.css","\u002Fwp-content\u002Fplugins\u002Fzephyr-modern-admin-theme\u002Fassets\u002Fcss\u002Fzephyr-dark-theme.css","\u002Fwp-content\u002Fplugins\u002Fzephyr-modern-admin-theme\u002Fassets\u002Fjs\u002Fzephyr-admin-theme.js",[],[249],[253,254,255],"zephyr-admin-theme\u002Fassets\u002Fcss\u002Fzephyr-admin-theme.css?ver=","zephyr-admin-theme\u002Fassets\u002Fcss\u002Fzephyr-dark-theme.css?ver=","zephyr-admin-theme\u002Fassets\u002Fjs\u002Fzephyr-admin-theme.js?ver=",{"cssClasses":257,"htmlComments":260,"htmlAttributes":261,"restEndpoints":265,"jsGlobals":266,"shortcodeOutput":268},[258,259],"zephyr-admin-theme-styles","zephyr-admin-theme-dark-styles",[],[262,263,264],"data-plugin-name=\"Zephyr Admin Theme\"","data-plugin-uri=\"https:\u002F\u002Fzephyr-one.com\"","data-plugin-version=\"1.5.0\"",[],[267],"zat_localized",[]]