Account Manager for WooCommerce Security & Risk Analysis

The "account-manager-woocommerce" v2.1.2 plugin exhibits a concerning security posture, primarily due to its unprotected entry points and a history of vulnerabilities. The static analysis reveals a significant attack surface with 3 AJAX handlers, all lacking authentication checks. This, combined with only 7 nonce checks across the codebase, creates a substantial risk of unauthorized actions being performed by unauthenticated users. While the plugin has a moderate number of SQL queries (76), only 18% use prepared statements, which is a weakness. However, the proper escaping of 70% of outputs and the absence of file operations and external HTTP requests are positive indicators of secure coding practices in those areas.

The plugin's vulnerability history is a major red flag, with one known medium-severity CVE that remains unpatched. The common vulnerability type of "Missing Authorization" found in past issues directly correlates with the current static analysis findings of unprotected AJAX handlers. This pattern suggests a recurring issue with how the plugin handles user permissions and access control. While the plugin demonstrates some good practices like proper output escaping and the bundling of a library like Select2 (though its security implications are not detailed here), the prevalent lack of authorization checks on critical entry points and the existing unpatched vulnerability significantly elevate the risk. The 3 unsanitized paths in taint analysis, although not classified as critical or high severity, warrant further investigation to understand their potential impact. Overall, the plugin presents a medium to high risk due to the combination of an exposed attack surface, a history of authorization flaws, and an unpatched vulnerability.