[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fES25B3spXZ4pIf4oaDiZh8QWzjlJWkRqFc905d0F_1E":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":6,"requires_php":15,"tags":16,"homepage":20,"download_link":21,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":33,"analysis":34,"fingerprints":93},"bg-map","BG Map","1.1.1","seosbg","https:\u002F\u002Fprofiles.wordpress.org\u002Fseosbg\u002F","\u003Cul>\n\u003Cli>Powerful plugin for creating an interactive map of Bulgaria.\u003C\u002Fli>\n\u003Cli>Map of Bulgaria with 28 clickable provinces.\u003C\u002Fli>\n\u003Cli>Include with shortcode and display the map on your WordPress website in any widget, post and page.\u003C\u002Fli>\n\u003Cli>Suitable for news sites, real estate sites, and all types of local businesses.\u003C\u002Fli>\n\u003C\u002Ful>\n","Bulgaria Map plugin for creating an interactive map of Bulgaria.",0,1196,"2022-11-15T00:31:00.000Z","6.1.10","7.0",[4,17,18,19],"interactive-map-of-bulgaria","map-bulgaria","map-bulgarien","https:\u002F\u002Fwp-maps.com\u002Fmap-of-bulgaria-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbg-map.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":29,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},74,10250,95,1,97,"2026-04-04T10:01:52.202Z",[],{"attackSurface":35,"codeSignals":72,"taintFlows":80,"riskAssessment":81,"analyzedAt":92},{"hooks":36,"ajaxHandlers":63,"restRoutes":64,"shortcodes":65,"cronEvents":71,"entryPointCount":30,"unprotectedCount":11},[37,43,47,51,55,59],{"type":38,"name":39,"callback":40,"file":41,"line":42},"action","init","bg_map_language_load_lite","bg-map.php",43,{"type":38,"name":44,"callback":45,"file":41,"line":46},"admin_enqueue_scripts","bg_map_admin_scripts_lite",53,{"type":38,"name":48,"callback":49,"file":41,"line":50},"wp_enqueue_scripts","bg_map_scripts_lite",58,{"type":38,"name":52,"callback":53,"file":41,"line":54},"admin_menu","bg_map_add_pages",64,{"type":38,"name":56,"callback":57,"file":41,"line":58},"admin_init","bg_map_register_settingphoto",68,{"type":38,"name":60,"callback":61,"file":41,"line":62},"admin_head","bg_map_register_my_setting_lite",292,[],[],[66],{"tag":67,"callback":68,"file":69,"line":70},"bg_map_lite","bg_map_bg_map_lite","include\\shortcode-bg_map.php",5,[],{"dangerousFunctions":73,"sqlUsage":74,"outputEscaping":76,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":79},[],{"prepared":11,"raw":11,"locations":75},[],{"escaped":77,"rawEcho":11,"locations":78},112,[],[],[],{"summary":82,"deductions":83},"Based on the provided static analysis and vulnerability history, the \"bg-map\" plugin v1.1.1 appears to have a strong security posture. The code analysis reveals an absence of dangerous functions, all SQL queries utilize prepared statements, and all output is properly escaped. Furthermore, there are no indications of file operations, external HTTP requests, or any known vulnerability history. This suggests a conscientious development approach with a focus on core security practices. \n\nHowever, there are a few areas that warrant attention. The complete lack of nonce checks and capability checks, coupled with the presence of a shortcode, indicates potential for vulnerabilities if user-supplied data is not handled with extreme care within the shortcode's execution. While taint analysis shows no issues, this is based on zero flows being analyzed, which itself is a limitation. The absence of known CVEs is positive but does not guarantee future security if the identified gaps are not addressed.\n\nIn conclusion, while the plugin demonstrates good practices in areas like SQL and output escaping, the absence of authentication checks on its entry points (shortcodes) presents a theoretical risk. The zero taint flow analysis is not a definitive positive, but rather an area where more rigorous analysis would be beneficial. The plugin's current state suggests low immediate risk but highlights areas for improvement to enhance its overall security resilience.",[84,86,88,90],{"reason":85,"points":70},"No nonce checks implemented",{"reason":87,"points":70},"No capability checks implemented",{"reason":89,"points":70},"Shortcode exists without auth checks",{"reason":91,"points":70},"Taint analysis not performed (zero flows)","2026-03-17T06:16:51.785Z",{"wat":94,"direct":102},{"assetPaths":95,"generatorPatterns":99,"scriptPaths":100,"versionParams":101},[96,97,98],"\u002Fwp-content\u002Fplugins\u002Fbg-map\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fbg-map\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fbg-map\u002Fcss\u002Fstyle.css",[],[97],[],{"cssClasses":103,"htmlComments":111,"htmlAttributes":112,"restEndpoints":129,"jsGlobals":130,"shortcodeOutput":131},[104,105,106,107,108,109,110],"admin-fg-bg_map","table-options","s-fg_bg_map-options","table-slide","s-fg_bg_map-num","tab-color","reg-title",[],[113,114,115,116,117,118,119,120,121,122,123,124,125,126,127,128],"id=\"admin-fg-bg_map\"","id=\"loading\"","class=\"dent clear\"","name=\"link_1\"","name=\"link_2\"","name=\"link_3\"","name=\"link_4\"","name=\"link_5\"","name=\"link_6\"","name=\"link_7\"","name=\"link_8\"","name=\"link_9\"","name=\"link_10\"","name=\"link_11\"","name=\"link_12\"","name=\"link_13\"",[],[],[132],"[bg_map_lite]"]