[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmM4d9ag6b3O3zf71Gh3Rq4mwpRcOH0g-7MqrOhYXAyA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":19,"download_link":20,"security_score":21,"vuln_count":11,"unpatched_count":11,"last_vuln_date":22,"fetched_at":23,"vulnerabilities":24,"developer":25,"crawl_stats":22,"alternatives":31,"analysis":32,"fingerprints":148},"aspl-advance-report-for-woocommerce","ASPL Advance Report for Woocommerce","1.1.0","acespritech","https:\u002F\u002Fprofiles.wordpress.org\u002Facespritech\u002F","\u003Cp>Features:-\u003Cbr \u002F>\n1) Display today’s total earnings by date.\u003Cbr \u002F>\n2) Displays Top Products and Top Five Category.\u003Cbr \u002F>\n3) Shows the visitor count.\u003Cbr \u002F>\n4) Shows the number of Coupons and Payment Gateway.\u003Cbr \u002F>\n5) Display total amount of refund and count number of it.\u003Cbr \u002F>\n6) Shows total amount of sales, taxt and average sales per order.\u003Cbr \u002F>\n7) It display count of total product ,order and total register customers.\u003Cbr \u002F>\n8) It graphically present:\u003Cbr \u002F>\n    1) This month sales by date,\u003Cbr \u002F>\n    2) Weekly gross,\u003Cbr \u002F>\n    3) last two month gross,\u003Cbr \u002F>\n    4) Last six month gross,\u003Cbr \u002F>\n    5) Order count by country,\u003Cbr \u002F>\n    6) Top five ctegories order count,\u003Cbr \u002F>\n    7) Payment gateway and\u003Cbr \u002F>\n    8) Existing-New customer.\u003C\u002Fp>\n","Woocommerce Advance Report plugin shows you all sales and order  information in one report dashboard in very easy to understand graph view format .",0,951,"","5.3.21","5.1","5.2",[18],"woocommerce-advance-report","https:\u002F\u002Facespritech.com\u002Fservices\u002Fwordpress-extensions\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faspl-advance-report-for-woocommerce.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":27,"avg_security_score":28,"avg_patch_time_days":27,"trust_score":29,"computed_at":30},9,30,93,89,"2026-04-04T12:28:45.071Z",[],{"attackSurface":33,"codeSignals":61,"taintFlows":87,"riskAssessment":135,"analyzedAt":147},{"hooks":34,"ajaxHandlers":57,"restRoutes":58,"shortcodes":59,"cronEvents":60,"entryPointCount":11,"unprotectedCount":11},[35,41,45,49,53],{"type":36,"name":37,"callback":38,"file":39,"line":40},"action","init","war_log_user","WooCommerce-advance-report.php",22,{"type":36,"name":42,"callback":43,"file":39,"line":44},"wp_enqueue_scripts","war_register_script",55,{"type":36,"name":46,"callback":47,"file":39,"line":48},"admin_enqueue_scripts","war_script_admin",56,{"type":36,"name":50,"callback":51,"file":39,"line":52},"admin_notices","war_woo_not_installed",60,{"type":36,"name":54,"callback":55,"file":39,"line":56},"admin_menu","war_add_menu",62,[],[],[],[],{"dangerousFunctions":62,"sqlUsage":63,"outputEscaping":75,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":86},[],{"prepared":64,"raw":65,"locations":66},8,2,[67,71],{"file":68,"line":69,"context":70},"include\\dashboard.php",913,"$wpdb->get_results() with variable interpolation",{"file":72,"line":73,"context":74},"include\\war_db.php",11,"$wpdb->get_var() with variable interpolation",{"escaped":76,"rawEcho":77,"locations":78},71,3,[79,82,84],{"file":68,"line":80,"context":81},930,"raw output",{"file":68,"line":83,"context":81},932,{"file":68,"line":85,"context":81},934,[],[88,122],{"entryPoint":89,"graph":90,"unsanitizedCount":65,"severity":121},"war_log_user (WooCommerce-advance-report.php:24)",{"nodes":91,"edges":116},[92,97,103,107,111],{"id":93,"type":94,"label":95,"file":39,"line":96},"n0","source","$_SERVER",32,{"id":98,"type":99,"label":100,"file":39,"line":101,"wp_function":102},"n1","sink","get_results() [SQLi]",33,"get_results",{"id":104,"type":94,"label":105,"file":39,"line":106},"n2","$_SERVER['REMOTE_ADDR']",26,{"id":108,"type":109,"label":110,"file":39,"line":106},"n3","transform","→ war_check_ip_exist()",{"id":112,"type":99,"label":113,"file":39,"line":114,"wp_function":115},"n4","get_var() [SQLi]",46,"get_var",[117,119,120],{"from":93,"to":98,"sanitized":118},false,{"from":104,"to":108,"sanitized":118},{"from":108,"to":112,"sanitized":118},"high",{"entryPoint":123,"graph":124,"unsanitizedCount":65,"severity":121},"\u003CWooCommerce-advance-report> (WooCommerce-advance-report.php:0)",{"nodes":125,"edges":131},[126,127,128,129,130],{"id":93,"type":94,"label":95,"file":39,"line":96},{"id":98,"type":99,"label":100,"file":39,"line":101,"wp_function":102},{"id":104,"type":94,"label":105,"file":39,"line":106},{"id":108,"type":109,"label":110,"file":39,"line":106},{"id":112,"type":99,"label":113,"file":39,"line":114,"wp_function":115},[132,133,134],{"from":93,"to":98,"sanitized":118},{"from":104,"to":108,"sanitized":118},{"from":108,"to":112,"sanitized":118},{"summary":136,"deductions":137},"The security posture of the aspl-advance-report-for-woocommerce plugin version 1.1.0 appears to be mixed, with some strong security practices evident but also significant areas for concern.\n\nOn the positive side, the plugin demonstrates good output escaping practices, with 96% of outputs being properly escaped, and a high percentage (80%) of SQL queries utilizing prepared statements. There are no reported CVEs, indicating a history of responsible security. However, the static analysis reveals two critical taint flows with unsanitized paths. While the specific impact isn't detailed, unsanitized paths in taint flows can often lead to injection vulnerabilities such as Cross-Site Scripting (XSS) or SQL Injection if not handled correctly. The absence of nonce checks and capability checks across all entry points is a significant concern, as it suggests that all actions, including those potentially modifying data or accessing sensitive information, might be exploitable by unauthenticated or unauthorized users.\n\nOverall, the plugin has a solid foundation in terms of output handling and SQL query safety. However, the presence of critical taint flows and the complete lack of authorization checks on any entry points are serious weaknesses that could expose the site to significant risks. The absence of any recorded vulnerabilities could be due to a lack of rigorous auditing or a true lack of exploitable flaws, but the identified taint flows warrant immediate attention and remediation.",[138,141,142,145],{"reason":139,"points":140},"Critical taint flow with unsanitized path",15,{"reason":139,"points":140},{"reason":143,"points":144},"Missing nonce checks",10,{"reason":146,"points":144},"Missing capability checks","2026-03-17T05:57:44.995Z",{"wat":149,"direct":168},{"assetPaths":150,"generatorPatterns":158,"scriptPaths":159,"versionParams":160},[151,152,153,154,155,156,157],"\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fcss\u002Fbootstrap.min.css","\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fcss\u002Ffont-awesome.min.css","\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fjs\u002Fcustom.js","\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fjs\u002FChart.js","\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fjs\u002Fgchart_loader.js","\u002Fwp-content\u002Fplugins\u002Faspl-advance-report-for-woocommerce\u002Fjs\u002Ffontawesome.min.js",[],[154,155,156,157],[161,162,163,164,165,166,167],"aspl-advance-report-for-woocommerce\u002Fcss\u002Fstyle.css?ver=","aspl-advance-report-for-woocommerce\u002Fcss\u002Fbootstrap.min.css?ver=","aspl-advance-report-for-woocommerce\u002Fcss\u002Ffont-awesome.min.css?ver=","aspl-advance-report-for-woocommerce\u002Fjs\u002Fcustom.js?ver=","aspl-advance-report-for-woocommerce\u002Fjs\u002FChart.js?ver=","aspl-advance-report-for-woocommerce\u002Fjs\u002Fgchart_loader.js?ver=","aspl-advance-report-for-woocommerce\u002Fjs\u002Ffontawesome.min.js?ver=",{"cssClasses":169,"htmlComments":176,"htmlAttributes":183,"restEndpoints":186,"jsGlobals":187,"shortcodeOutput":188},[170,171,172,173,174,175],"advance-report","first-section","block","light-blue","static_contant","static_img",[177,178,179,180,181,182],"\u003C!-- First Section....... -->","\u003C!-- Sales -->","\u003C!-- End Sales -->","\u003C!-- Orders -->","\u003C!-- End Orders -->","\u003C!-- Average sales per order -->",[184,185],"data-par_id","data-col_id",[],[],[]]