[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fc8qO7pTyLHv6Xf5iBR5WbtaIcKGDYgR-sWq3FFKBk0Q":3,"$f6hhzRSPWt8EDqBsTrrWJLvClXaF_L0aNFn2A7iA80lg":464,"$f-FYuAEWsvv1N3R-0OSZnx7YB1AmzS0Rb5VPX9T3C-0I":468},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":14,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":49,"crawl_stats":37,"alternatives":55,"analysis":163,"fingerprints":449},"billplz-for-contact-form-7","Billplz Addon for Contact Form 7","1.2.1","Alvind","https:\u002F\u002Fprofiles.wordpress.org\u002Falvindcaesar\u002F","\u003Cp>This is a gateway extension for Contact Form 7 plugin to use Billplz Payment Gateway.\u003C\u002Fp>\n\u003Cp>Payments are processed offsite at \u003Ca href=\"https:\u002F\u002Fbillplz.com\" rel=\"nofollow ugc\">Billplz\u003C\u002Fa> and the customer will be redirected back to your site after completing the payment.\u003C\u002Fp>\n","Integrates Billplz with Contact Form 7. Start accepting payment with Contact Form 7 & Billplz today.",0,1744,100,1,"2025-07-14T02:26:00.000Z","6.8.5","5.5","7.4",[20,21,22,23,24],"e-commerce","payment-forms","payment-gateway","product","subscription","https:\u002F\u002Fgithub.com\u002Falvindcaesar\u002Fbillplz-for-cf7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-contact-form-7.1.2.1.zip",99,"2025-08-13 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":6,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46,"patch_diff_files":47,"patch_trac_url":37,"research_status":37,"research_verified":48,"research_rounds_completed":11,"research_plan":37,"research_summary":37,"research_vulnerable_code":37,"research_fix_diff":37,"research_exploit_outline":37,"research_model_used":37,"research_started_at":37,"research_completed_at":37,"research_error":37,"poc_status":37,"poc_video_id":37,"poc_summary":37,"poc_steps":37,"poc_tested_at":37,"poc_wp_version":37,"poc_php_version":37,"poc_playwright_script":37,"poc_exploit_code":37,"poc_has_trace":48,"poc_model_used":37,"poc_verification_depth":37},"CVE-2025-31007","billplz-addon-for-contact-form-7-reflected-cross-site-scripting","Billplz Addon for Contact Form 7 \u003C= 1.2.0 - Reflected Cross-Site Scripting","The Billplz Addon for Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including, 1.2.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.2.0","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-08-18 20:47:32",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F0854a9d9-3da2-443b-ad2b-ef3136407be3?source=api-prod",6,[],false,{"slug":50,"display_name":7,"profile_url":8,"plugin_count":46,"total_installs":51,"avg_security_score":52,"avg_patch_time_days":46,"trust_score":53,"computed_at":54},"alvindcaesar",130,87,91,"2026-05-20T07:22:48.559Z",[56,72,99,118,139],{"slug":57,"name":58,"version":59,"author":7,"author_profile":8,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":11,"num_ratings":11,"last_updated":64,"tested_up_to":65,"requires_at_least":17,"requires_php":66,"tags":67,"homepage":68,"download_link":69,"security_score":70,"vuln_count":11,"unpatched_count":11,"last_vuln_date":37,"fetched_at":71},"billplz-for-wpsmartpay","FPX Payment for WPSmartPay (Billplz)","1.0.5","\u003Cp>This is a gateway extension for WPSmartPay plugin to use Billplz Payment Gateway.\u003C\u002Fp>\n\u003Cp>Payments are processed offsite at \u003Ca href=\"https:\u002F\u002Fbillplz.com\" rel=\"nofollow ugc\">Billplz\u003C\u002Fa> and the customer will be redirected back to your site after completing the payment.\u003C\u002Fp>\n\u003Cp>⚡ In addition to this free plugin, an extension for more Malaysia’s payment gateway (Toyyibpay, Bizappay and more) can be purchased here: \u003Ca href=\"https:\u002F\u002Fwpkartel.com\u002Ffpx-payment-for-wpsmartpay\u002F\" rel=\"nofollow ugc\">FPX Payment for WPSmartPay\u003C\u002Fa>\u003C\u002Fp>\n","Accept payment in WPSmartPay by using Billplz.",10,1773,"2024-01-06T08:23:00.000Z","6.4.8","7.0",[20,21,22,23,24],"https:\u002F\u002Fwpkartel.com\u002Ffpx-payment-for-wpsmartpay","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-wpsmartpay.1.0.5.zip",85,"2026-04-06T09:54:40.288Z",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":94,"download_link":95,"security_score":96,"vuln_count":97,"unpatched_count":11,"last_vuln_date":98,"fetched_at":29},"woo-product-filter","Product Filter for WooCommerce by WBW","3.1.6","WBW Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoobewoo\u002F","\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fplugins\u002Fwoocommerce-filter\u002F?utm_source=wordpress&utm_medium=description&utm_campaign=filter\" title=\"WooCommerce Product Filter plugin\" rel=\"nofollow ugc\">WooCommerce Product Filter plugin\u003C\u002Fa>  enhances your store by allowing customers to refine their searches by price, categories, tags, taxonomy, attributes and more.\u003C\u002Fp>\n\u003Cp>It’s fully customizable and 100% compatible with Elementor, giving you full control over filtering options.\u003C\u002Fp>\n\u003Ch4>WooCommerce Product Filter Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Ffeature\u002Ffilters-by-price-price-range-sort-categories-tags-and-attributes?utm_source=wordpress&utm_medium=criteria&utm_campaign=filter\" title=\"Comprehensive Filtering\" rel=\"nofollow ugc\">Comprehensive Filtering\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nlet customers filter products by: Price, Price range, Categories, Tags, Author, Featured, On Sale, In Stock, Rating, Search by text**, Attribute filters.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fplugins\u002Fwoocommerce-filter\u002F?utm_source=wordpress&utm_medium=description&utm_campaign=filter\" title=\"Main example\" rel=\"nofollow ugc\">Flexible Display Options\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\npresent the filters in various formats to suit your storefront’s design and user preferences. Options include: radio button list (single select) dropdown (single select), checkbox list (multi-select)** and icons** for attribute filters (colour, size, rating).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Ffeature\u002Fajax-live-search?utm_source=wordpress&utm_medium=ajax&utm_campaign=filter\" title=\"AJAX live search\" rel=\"nofollow ugc\">AJAX live search\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nEnable instant results without page reloads for a faster shopping  with AJAX live search. AJAX search provides instant filtering results without the need to reload the page. This feature can be configured to activate immediately after a user selects their desired filter options and clicks the filter button, making product searches faster and more intuitive.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fdocumentation\u002Felementor-compatibility\u002F\" title=\"Elementor Compatibility\" rel=\"nofollow ugc\">Elementor Integration\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nWooCommerce Product Filter compatible with Elementor. Seamlessly create and customize filters using Elementor’s interface.\u003Cbr \u002F>\nAll features of the WooCommerce Product Filter by WBW are accessible within the Elementor tab, providing a streamlined workflow for page building.\u003C\u002Fp>\n\u003Cp>To help you get started, there’s a comprehensive video tutorial available that guides you through the process of setting up the WooCommerce Product Filter by WBW, ensuring you can make the most of its features to improve your online store’s functionality and user experience.\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F5uFBMl5OLW0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Product filters are the key things that allow your customers to view the products in a particular way and easily find the necessary items.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fdocumentation\u002Fproduct-filter-statistics\u002F\" title=\"Analytics\" rel=\"nofollow ugc\">Statistics\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nProduct Filter by WBW comes with a detailed filter statistics section to make it easier to collect, analyze data and subsequently support global business growth. Gather information about filtering and searching for products by your buyer and convert them into business solutions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fdocumentation\u002Fwoocommerce-filter-main-settings\u002F\" title=\"Main Settings\" rel=\"nofollow ugc\">Live preview\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nWith Live Preview, the results will appear in the panel right at the moment you make changes to settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Variety of options for sorting products\u003C\u002Fstrong>\u003Cbr \u002F>\nThe product search plugin for WooCommerce allows sorting your products by popularity, rating, price, newness, alphabetical ascender, or descender.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Ffeature\u002Fcustomize-and-set-up?utm_source=wordpress&utm_medium=easytosetup&utm_campaign=filter\" title=\"Easy to customize and set up\" rel=\"nofollow ugc\">Create new product filters in a few clicks\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nEasy to customize and set up. Just add a filter to every page using a widget or shortcodes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fdocumentation\u002Fwoocommerce-filter-main-settings\u002F#a\" title=\"Price filter\" rel=\"nofollow ugc\">Price filter design\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nVariation of skins: default, flat, big, modern, sharp, round, square. Custom setting for its design: color, symbol position, currency code or symbol, input fields.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Automatic price range settings with fixed step values\u003C\u002Fstrong>\u003Cbr \u002F>\nAdjust them manually and specify the exact value of every step as well.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fdocumentation\u002Fshow-count-option\u002F\" title=\"Show Count\" rel=\"nofollow ugc\">Show Count\u003C\u002Fa> and Recount products by selected filter\u003C\u002Fstrong>\u003Cbr \u002F>\nRecount the products by selected filters and display the exact number of products matching the filter results.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Ffeature\u002Flooks-and-works-great-on-all-devices?utm_source=wordpress&utm_medium=responsive&utm_campaign=filter\" title=\"Looks and works great on all devices\" rel=\"nofollow ugc\">Fully responsive\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nThe filter looks and works properly on different devices particularly mobile phones and tablets as well as desktops and laptops.\u003C\u002Fp>\n\u003Ch4>Support and suggestions for WooCommerce Product Filter Plugin\u003C\u002Fh4>\n\u003Cp>Ask your questions in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwoo-product-filter\u002F\" rel=\"ugc\">support forum\u003C\u002Fa>, or \u003Ca href=\"https:\u002F\u002Fwoobewoo.com\u002Fcontact-us\u002F\" rel=\"nofollow ugc\">contact us directly\u003C\u002Fa>\u003C\u002Fp>\n","Filter products by categories, attributes, prices, and more. Elementor Compatibility. Shoppers easily find products with WooCommerce Product Filter",60000,2742726,96,322,"2026-04-09T20:15:00.000Z","6.9.4","3.4.0","",[89,90,91,92,93],"e-commerce-filter","product-filter","shop-filter","woocommerce-filter","woocommerce-product-filter","https:\u002F\u002Fwoobewoo.com\u002Fproduct\u002Fwoocommerce-filter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-product-filter.3.1.6.zip",88,9,"2026-04-13 00:00:00",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":11,"num_ratings":11,"last_updated":109,"tested_up_to":85,"requires_at_least":110,"requires_php":66,"tags":111,"homepage":116,"download_link":117,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":37,"fetched_at":29},"wcboost-wishlist","WCBoost – Wishlist","1.3.0","WCBoost","https:\u002F\u002Fprofiles.wordpress.org\u002Fwcboost\u002F","\u003Cp>Wishlist is a key feature in e-commerce websites. These websites benefit from increased conversion rates, optimized revenues, and simplified consumer buying processes.\u003C\u002Fp>\n\u003Cp>According to studies, the majority of website visitors don’t typically buy anything on their first visit. They frequently become perplexed by several products. A nice (and pertinent) solution for them is a wishlist. Users are able to add their favorite products to a list. For a store with a lot of options, this will make it simpler for users to make the decision. They can also quickly locate their preferred products when making subsequent purchases.\u003C\u002Fp>\n\u003Cp>Users can also utilize wishlists to recommend their favorite goods to family members and friends. This is beneficial for your website. This will encourage more orders from customers who share the same interests on your website. Or assume that you will receive more orders that are gifts from your customers to one another on special occasions (such as birthdays, Christmas, etc.).\u003C\u002Fp>\n\u003Cp>For sellers, understanding client preferences and issues also makes it simpler for store owners to cater to customers, which helps to boost online revenue for sellers.\u003C\u002Fp>\n\u003Cp>Based on the fundamental API of WooCommerce, this plugin was created, ensuring compatibility, performance, and security. Because the plugin has been tested with the most widely used themes and is guaranteed not to interfere with the user experience, we also recognize the value of integrating with themes.\u003C\u002Fp>\n\u003Ch3>Main features of the plugin\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Enable users to add items to wishlists.\u003C\u002Fli>\n\u003Cli>Can be restricted to only allowing users who are signed in to do so, while also encouraging visitors to register accounts so they can utilize the wishlist feature.\u003C\u002Fli>\n\u003Cli>Give the list a name (for logged in users)\u003C\u002Fli>\n\u003Cli>Add a wishlist description (for logged in users)\u003C\u002Fli>\n\u003Cli>Wishlist privacy settings (Full privacy control)\u003C\u002Fli>\n\u003Cli>Post wishlists on social media websites\u003C\u002Fli>\n\u003Cli>Email friends to share a wishlist\u003C\u002Fli>\n\u003Cli>Supports adding variations to the wishlist for all product styles\u003C\u002Fli>\n\u003Cli>Customize the wishlist page and buttons in an easy-to-understand manner.\u003C\u002Fli>\n\u003Cli>Friendly with SEO and caching plugins.\u003C\u002Fli>\n\u003Cli>Works with all themes. By using basic styles of WooCommerce, this plugin doesn’t break the design of your theme.\u003C\u002Fli>\n\u003C\u002Ful>\n","WCBoost - Wishlist lets shoppers create wishlists for later purchases, reminding them of desired items, driving repeat visits and boost sales.",40000,320376,"2026-04-07T07:45:00.000Z","4.5",[20,112,113,114,115],"products","wishlist","woocommerce","woocommerce-wishlist","https:\u002F\u002Fwcboost.com\u002Fplugin\u002Fwoocommerce-wishlist\u002F?utm_source=wp-plugins&utm_campaign=plugin-uri&utm_medium=wp-dash","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwcboost-wishlist.1.3.0.zip",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":128,"num_ratings":129,"last_updated":130,"tested_up_to":66,"requires_at_least":131,"requires_php":132,"tags":133,"homepage":137,"download_link":138,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":37,"fetched_at":29},"woo-authorize-net-gateway-aim","Pledged Plugins Secure Gateway for Authorize.net and WooCommerce","6.1.26","mohsin.id","https:\u002F\u002Fprofiles.wordpress.org\u002Fmohsinoffline\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.authorize.net\u002F\" rel=\"nofollow ugc\">Authorize.net\u003C\u002Fa> Payment Gateway for \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002F\" rel=\"nofollow ugc\">WooCommerce\u003C\u002Fa> allows you to accept credit cards payments into your Authorize.net merchant account from all over the world on your websites.\u003C\u002Fp>\n\u003Cp>WooCommerce is one of the oldest and most powerful e-commerce solutions for WordPress. This platform is very widely supported in the WordPress community which makes it easy for even an entry level e-commerce entrepreneur to learn to use and modify.\u003C\u002Fp>\n\u003Ch4>FREE Pro Version Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Easy Install\u003C\u002Fstrong>: Like all Pledged Plugins add-ons, this plugin installs with one click. After installing, you will have only a few fields to fill out before you are ready to accept credit cards on your store.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Credit Card Processing\u003C\u002Fstrong>: Uses \u003Ca href=\"https:\u002F\u002Fdeveloper.authorize.net\u002Fapi\u002Freference\u002Ffeatures\u002Facceptjs.html\" rel=\"nofollow ugc\">Accept.js\u003C\u002Fa> library to send secure payment data directly to Authorize.net to reduce the PCI scope.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Refund via Dashboard\u003C\u002Fstrong>: Process full or partial refunds, directly from your WordPress dashboard! No need to search order in your Authorize.net account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Authorize Now, Capture Later\u003C\u002Fstrong>: Optionally choose only to authorize transactions, and capture at a later date.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Restrict Card Types\u003C\u002Fstrong>: Optionally choose to restrict certain card types and the plugin will hide its icon and provide a proper error message on checkout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Gateway Receipts\u003C\u002Fstrong>: Optionally choose to send receipts from your Authorize.net merchant account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logging\u003C\u002Fstrong>: Enable logging so you can debug issues that arise if any.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Ch4>Enterprise Version Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Process Subscriptions:\u003C\u002Fstrong>  Use with  \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa>  extension to \u003Cstrong>create and manage products with recurring payments\u003C\u002Fstrong>  — payments that will give you residual revenue you can track and count on.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Setup Pre-Orders:\u003C\u002Fstrong>  Use with  \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-pre-orders\u002F\" rel=\"nofollow ugc\">WooCommerce Pre-Orders\u003C\u002Fa>  extension so customers can order products before they’re available by submitting their card details. The card is then automatically charged when the pre-order is available.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pay via Saved Cards:\u003C\u002Fstrong> Enable option to use saved card details on the gateway servers for quicker checkout. No sensitive card data is stored on the website!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ACH Payments:\u003C\u002Fstrong> Fully supports eCheck payments via ACH network.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>One Click Upsells:\u003C\u002Fstrong> Compatible with \u003Ca href=\"https:\u002F\u002Ffunnelkit.com\u002Fwoocommerce-one-click-upsells-upstroke\u002F\" rel=\"nofollow ugc\">FunnelKit (formerly WooFunnels) One Click Upsells\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpledgedplugins.com\u002Fproducts\u002Fauthorize-net-payment-gateway-woocommerce\u002F\" rel=\"nofollow ugc\">Click here\u003C\u002Fa> for Pricing details.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Active  \u003Ca href=\"https:\u002F\u002Fwww.authorize.net\u002F\" rel=\"nofollow ugc\">Authorize.net\u003C\u002Fa>  account – Sign up for a sandbox account  \u003Ca href=\"https:\u002F\u002Fdeveloper.authorize.net\u002Fhello_world\u002Fsandbox.html\" rel=\"nofollow ugc\">here\u003C\u002Fa>  if you need to test.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>WooCommerce\u003C\u002Fstrong>\u003C\u002Fa>  version 3.3 or later.\u003C\u002Fli>\n\u003Cli>A valid SSL certificate is required to ensure your customer credit card details are safe and make your site PCI DSS compliant. This plugin does not store the customer credit card numbers or sensitive information on your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Extend, Contribute, Integrate\u003C\u002Fh4>\n\u003Cp>Visit the \u003Ca href=\"https:\u002F\u002Fpledgedplugins.com\u002Fproducts\u002Fauthorize-net-payment-gateway-woocommerce\u002F\" rel=\"nofollow ugc\">plugin page\u003C\u002Fa> for more details. Contributors are welcome to send pull requests via \u003Ca href=\"https:\u002F\u002Fbitbucket.org\u002Fpledged\u002Fwc-authorize.net-pro\u002F\" rel=\"nofollow ugc\">Bitbucket repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For custom payment gateway integration with your WordPress website, please \u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fsupport\u002Fcustom-payment-gateway-integration\u002F\" rel=\"nofollow ugc\">contact us here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Disclaimer\u003C\u002Fh4>\n\u003Cp>This plugin is not affiliated with or supported by Authorize.net, WooCommerce.com or Automattic. All logos and trademarks are the property of their respective owners.\u003C\u002Fp>\n","Authorize.net payment gateway integration for WooCommerce to accept credit cards directly on WordPress e-commerce websites.",10000,410745,98,33,"2026-04-15T00:04:00.000Z","4.4","5.6",[134,22,135,136,114],"authorize-net","pci","subscriptions","https:\u002F\u002Fpledgedplugins.com\u002Fproducts\u002Fauthorize-net-payment-gateway-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-authorize-net-gateway-aim.6.1.26.zip",{"slug":140,"name":141,"version":142,"author":143,"author_profile":144,"description":145,"short_description":146,"active_installs":147,"downloaded":148,"rating":149,"num_ratings":150,"last_updated":151,"tested_up_to":66,"requires_at_least":152,"requires_php":132,"tags":153,"homepage":159,"download_link":160,"security_score":161,"vuln_count":97,"unpatched_count":11,"last_vuln_date":162,"fetched_at":29},"woocommerce-exporter","Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers","2.7.8","Josh Kohlbach","https:\u002F\u002Fprofiles.wordpress.org\u002Fjkohlbach\u002F","\u003Ch4>The Best WooCommerce Export Plugin – Products, Orders, Subscriptions, Users, and More!\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fvisser.com.au\u002F\" rel=\"nofollow ugc\">Get Premium\u003C\u002Fa> (Scheduled exports + more features) | \u003Ca href=\"https:\u002F\u002Fvisser.com.au\u002Fdocumentation\u002Fstore-exporter-deluxe\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Export WooCommerce Products, Orders, Categories, Tags, Users and other store details into Excel spreadsheets that suit your store requirements.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Simply click Quick Export to produce concise, ready to use Excel spreadshseets.\u003C\u002Fp>\n\u003Cp>Screen-loads of export fields, filters and options are available to customise each export type, with native export integration for 125+ WooCommerce Plugins.\u003C\u002Fp>\n\u003Cp>This WooCommerce export Plugin maintains compatibility with the latest WooCommerce release through regular Plugin updates, we also proudly maintain compatibility with legacy releases of WooCommerce.\u003C\u002Fp>\n\u003Cp>Supported since 2012 Store Exporter for WooCommerce is maintained by an active community of store owners and developers providing feature suggestions and feedback.\u003C\u002Fp>\n\u003Ch4>WooCommerce export types\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Export Products\u003C\u002Fli>\n\u003Cli>Export Categories\u003C\u002Fli>\n\u003Cli>Export Tags\u003C\u002Fli>\n\u003Cli>Export Brands (*)\u003C\u002Fli>\n\u003Cli>Export Orders\u003C\u002Fli>\n\u003Cli>Export Customers (*)\u003C\u002Fli>\n\u003Cli>Export Users\u003C\u002Fli>\n\u003Cli>Export Coupons (*)\u003C\u002Fli>\n\u003Cli>Export Subscriptions (*)\u003C\u002Fli>\n\u003Cli>Export Product Vendors (*)\u003C\u002Fli>\n\u003Cli>Export Bookings (*)\u003C\u002Fli>\n\u003Cli>Export Commissions (*)\u003C\u002Fli>\n\u003Cli>Export Shipping Classes (*)\u003C\u002Fli>\n\u003Cli>Export Attributes (*)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WooCommerce export features\u003C\u002Fh4>\n\u003Cp>🔸 Toggle and save export fields\u003Cbr \u002F>\n🔸 Field label editor (\u003Cem>)\u003Cbr \u002F>\n🔸 Scheduled exports (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Export templates (\u003Cem>)\u003Cbr \u002F>\n🔸 Compatible with WordPress Multisite\u003Cbr \u002F>\n🔸 Compatible with WPML (WordPress Multilingual) (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Compatible with WP-CLI (\u003Cem>)\u003Cbr \u002F>\n🔸 Export to CSV file\u003Cbr \u002F>\n🔸 Export to TSV file (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Export to Excel 2007 (XLS) file (\u003Cem>)\u003Cbr \u002F>\n🔸 Export to Excel 2013 (XLSX) file (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Export to XML file (\u003Cem>)\u003Cbr \u002F>\n🔸 Export to RSS file (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Export to WordPress Media\u003Cbr \u002F>\n🔸 Export to e-mail addresses (\u003Cem>)\u003Cbr \u002F>\n🔸 Export to fixed filename (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Export to remote FTP\u002FFTPS\u002FSFTP (\u003Cem>)\u003Cbr \u002F>\n🔸 Export to remote POST (\u003C\u002Fem>)\u003Cbr \u002F>\n🔸 Supports external CRON (\u003Cem>)\u003Cbr \u002F>\n🔸 WP-CLI support (\u003C\u002Fem>)\u003C\u002Fp>\n\u003Ch4>See our WooCommerce export Plugin in action\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FxYeP2eDEOM4?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>(Thanks to Martha Waugh!)\u003C\u002Fp>\n\u003Ch4>WooCommerce export filters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Export Products by Product Category\u002FTag\u003C\u002Fli>\n\u003Cli>Export Products by Product Status\u003C\u002Fli>\n\u003Cli>Export Products by Type including Variations\u003C\u002Fli>\n\u003Cli>Export Products by Stock Status\u002FQuantity\u003C\u002Fli>\n\u003Cli>Export Products by Featured\u003C\u002Fli>\n\u003Cli>Export Products by Date Modified\u003C\u002Fli>\n\u003Cli>Export Orders by Order Date\u003C\u002Fli>\n\u003Cli>Export Orders by Order Status (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Customer (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Billing\u002FShipping Country (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Product (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Product Category\u002FTag\u002FBrand (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Order ID\u002FInvoice Number (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Payment Gateway\u002FShipping Method (*)\u003C\u002Fli>\n\u003Cli>Export Orders by Coupon Code (*)\u003C\u002Fli>\n\u003Cli>Export Customers by Order Status (*)\u003C\u002Fli>\n\u003Cli>Export Customers by User Role (*)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>(*) Requires the Pro upgrade to enable additional store export functionality.\u003C\u002Fp>\n\u003Ch4>Native export integration with 125+ WooCommerce Plugins\u003C\u002Fh4>\n\u003Cp>Just a few of the features unlocked in the \u003Ca href=\"https:\u002F\u002Fvisser.com.au\u002Fplugins\u002Fstore-exporter-deluxe\u002F?platform=wc\" rel=\"nofollow ugc\">Pro upgrade of Store Exporter\u003C\u002Fa> include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Export All in One SEO Pack\u003C\u002Fli>\n\u003Cli>Export Advanced Google Product Feed\u003C\u002Fli>\n\u003Cli>Export Product Addons\u003C\u002Fli>\n\u003Cli>Export Sequential Order Number Pro\u003C\u002Fli>\n\u003Cli>Export Checkout Manager\u003C\u002Fli>\n\u003Cli>Export Checkout Manager Pro\u003C\u002Fli>\n\u003Cli>Export Checkout Field Editor\u003C\u002Fli>\n\u003Cli>Export Cost of Goods\u003C\u002Fli>\n\u003Cli>Export Per-Product Shipping\u003C\u002Fli>\n\u003Cli>Export Print Invoice & Delivery Note\u003C\u002Fli>\n\u003Cli>Export Local Pickups Plus\u003C\u002Fli>\n\u003Cli>Export WooCommerce Subscriptions\u003C\u002Fli>\n\u003Cli>Export Checkout Field Manager\u003C\u002Fli>\n\u003Cli>Export Currency Switcher\u003C\u002Fli>\n\u003Cli>Export WooCommerce PDF Invoices & Packing Slips\u003C\u002Fli>\n\u003Cli>Export WooCommerce Checkout Add-ons\u003C\u002Fli>\n\u003Cli>Export Product Vendors\u003C\u002Fli>\n\u003Cli>Export WooCommerce Jetpack\u003C\u002Fli>\n\u003Cli>Import fields for Product Importer Deluxe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>… and many more free and Premium extensions for WooCommerce and WordPress.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fvisser.com.au\u002Fplugins\u002Fwoocommerce-export\u002F\" rel=\"nofollow ugc\">For more information visit our site.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Happy exporting! 🙂\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Open WooCommerce > Store Export from the WordPress Administration\u003C\u002Fli>\n\u003Cli>Select the Export tab on the Store Exporter screen\u003C\u002Fli>\n\u003Cli>Select which export type and WooCommerce details you would like to export\u003C\u002Fli>\n\u003Cli>Click Export\u003C\u002Fli>\n\u003Cli>Download archived copies of previous exports from the Archives tab\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Done!\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>If you have any problems, questions or suggestions please create a topic here on the Store Exporter dedicated forum.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwoocommerce-exporter\" rel=\"ugc\">Store Exporter on w.org\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Disclaimer\u003C\u002Fh3>\n\u003Cp>It is not responsible for any harm or wrong doing this Plugin may cause. Users are fully responsible for their own use. This Plugin is to be used WITHOUT warranty.\u003C\u002Fp>\n","Export WooCommerce products, orders, customers, categories, tags, subscriptions & more into formatted files like CSV, XML, Excel 2007, XLS, XLSX.",7000,664681,82,166,"2026-03-05T04:31:00.000Z","5.4",[154,155,156,157,158],"csv-excel-export","export-orders","export-products","export-subscriptions","woocommerce-export","https:\u002F\u002Fvisser.com.au\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-exporter.2.7.8.zip",89,"2025-07-15 00:00:00",{"attackSurface":164,"codeSignals":246,"taintFlows":306,"riskAssessment":431,"analyzedAt":448},{"hooks":165,"ajaxHandlers":238,"restRoutes":239,"shortcodes":240,"cronEvents":245,"entryPointCount":14,"unprotectedCount":11},[166,172,179,184,188,193,195,199,204,209,212,215,219,222,226,229,233,235],{"type":167,"name":168,"callback":169,"priority":62,"file":170,"line":171},"filter","plugin_action_links","links","app\u002FAdmin\u002FActionLink.php",21,{"type":173,"name":174,"callback":175,"priority":176,"file":177,"line":178},"action","admin_bar_menu","menu",999,"app\u002FAdmin\u002FBarMenu.php",20,{"type":173,"name":180,"callback":181,"file":182,"line":183},"admin_enqueue_scripts","scripts","app\u002FAdmin\u002FEnqueueScripts.php",11,{"type":173,"name":185,"callback":186,"file":187,"line":171},"admin_menu","add_menu","app\u002FAdmin\u002FMenu.php",{"type":173,"name":189,"callback":190,"file":191,"line":192},"admin_notices","anonymous","app\u002FAdmin\u002FPaymentTable.php",149,{"type":173,"name":189,"callback":190,"file":191,"line":194},162,{"type":173,"name":189,"callback":196,"file":197,"line":198},"closure","app\u002FInit.php",38,{"type":173,"name":200,"callback":201,"file":202,"line":203},"admin_footer","_js_vars","app\u002FLib\u002FWP_List_Table.php",159,{"type":173,"name":205,"callback":206,"file":207,"line":208},"init","redirect","app\u002FPayment\u002FCallbackHandler.php",18,{"type":173,"name":205,"callback":210,"file":207,"line":211},"callback",19,{"type":173,"name":213,"callback":214,"file":207,"line":178},"bcf7_payment_success","send_email",{"type":173,"name":216,"callback":217,"file":218,"line":178},"wpcf7_before_send_mail","process_data","app\u002FPayment\u002FFormSubmission.php",{"type":167,"name":220,"callback":221,"file":218,"line":171},"wpcf7_load_js","__return_false",{"type":173,"name":223,"callback":205,"file":224,"line":225},"admin_init","app\u002FSettings\u002FAPI.php",14,{"type":173,"name":223,"callback":205,"file":227,"line":228},"app\u002FSettings\u002FEmail.php",16,{"type":167,"name":230,"callback":231,"file":227,"line":232},"pre_update_option_bcf7_email_settings","update_email_permission",17,{"type":173,"name":223,"callback":205,"file":234,"line":228},"app\u002FSettings\u002FGeneral.php",{"type":173,"name":189,"callback":236,"file":237,"line":228},"credentials_check","app\u002FSettings\u002FValidation.php",[],[],[241],{"tag":242,"callback":243,"file":244,"line":232},"bcf7_payment_confirmation","redirect_callback","app\u002FPayment\u002FProcessRedirect.php",[],{"dangerousFunctions":247,"sqlUsage":248,"outputEscaping":250,"fileOperations":14,"externalRequests":14,"nonceChecks":11,"capabilityChecks":14,"bundledLibraries":305},[],{"prepared":225,"raw":11,"locations":249},[],{"escaped":251,"rawEcho":252,"locations":253},74,25,[254,257,259,261,263,265,267,269,271,273,275,277,279,281,283,285,287,289,291,293,295,297,299,301,303],{"file":197,"line":255,"context":256},39,"raw output",{"file":202,"line":258,"context":256},364,{"file":202,"line":260,"context":256},413,{"file":202,"line":262,"context":256},463,{"file":202,"line":264,"context":256},464,{"file":202,"line":266,"context":256},465,{"file":202,"line":268,"context":256},470,{"file":202,"line":270,"context":256},861,{"file":202,"line":272,"context":256},1115,{"file":202,"line":274,"context":256},1132,{"file":202,"line":276,"context":256},1141,{"file":202,"line":278,"context":256},1217,{"file":202,"line":280,"context":256},1290,{"file":202,"line":282,"context":256},1293,{"file":202,"line":284,"context":256},1301,{"file":202,"line":286,"context":256},1302,{"file":202,"line":288,"context":256},1303,{"file":202,"line":290,"context":256},1306,{"file":202,"line":292,"context":256},1307,{"file":202,"line":294,"context":256},1308,{"file":227,"line":296,"context":256},90,{"file":234,"line":298,"context":256},93,{"file":237,"line":300,"context":256},22,{"file":237,"line":302,"context":256},28,{"file":304,"line":129,"context":256},"app\u002Fviews\u002Fpage-callback.php",[],[307,345,357,365,374,391,401],{"entryPoint":308,"graph":309,"unsanitizedCount":344,"severity":39},"search_box (app\u002FLib\u002FWP_List_Table.php:348)",{"nodes":310,"edges":339},[311,316,321,325,327,331,333,337],{"id":312,"type":313,"label":314,"file":202,"line":315},"n0","source","$_REQUEST['orderby']",355,{"id":317,"type":318,"label":319,"file":202,"line":315,"wp_function":320},"n1","sink","echo() [XSS]","echo",{"id":322,"type":313,"label":323,"file":202,"line":324},"n2","$_REQUEST['order']",357,{"id":326,"type":318,"label":319,"file":202,"line":324,"wp_function":320},"n3",{"id":328,"type":313,"label":329,"file":202,"line":330},"n4","$_REQUEST['post_mime_type']",359,{"id":332,"type":318,"label":319,"file":202,"line":330,"wp_function":320},"n5",{"id":334,"type":313,"label":335,"file":202,"line":336},"n6","$_REQUEST['detached']",361,{"id":338,"type":318,"label":319,"file":202,"line":336,"wp_function":320},"n7",[340,341,342,343],{"from":312,"to":317,"sanitized":48},{"from":322,"to":326,"sanitized":48},{"from":328,"to":332,"sanitized":48},{"from":334,"to":338,"sanitized":48},4,{"entryPoint":346,"graph":347,"unsanitizedCount":11,"severity":356},"redirect_callback (app\u002FPayment\u002FProcessRedirect.php:20)",{"nodes":348,"edges":353},[349,351],{"id":312,"type":313,"label":350,"file":244,"line":252},"$_GET (x2)",{"id":317,"type":318,"label":319,"file":244,"line":352,"wp_function":320},44,[354],{"from":312,"to":317,"sanitized":355},true,"low",{"entryPoint":358,"graph":359,"unsanitizedCount":11,"severity":356},"\u003CProcessRedirect> (app\u002FPayment\u002FProcessRedirect.php:0)",{"nodes":360,"edges":363},[361,362],{"id":312,"type":313,"label":350,"file":244,"line":252},{"id":317,"type":318,"label":319,"file":244,"line":352,"wp_function":320},[364],{"from":312,"to":317,"sanitized":355},{"entryPoint":366,"graph":367,"unsanitizedCount":14,"severity":356},"\u003Cpage-callback> (app\u002Fviews\u002Fpage-callback.php:0)",{"nodes":368,"edges":372},[369,371],{"id":312,"type":313,"label":370,"file":304,"line":302},"$_SERVER",{"id":317,"type":318,"label":319,"file":304,"line":129,"wp_function":320},[373],{"from":312,"to":317,"sanitized":48},{"entryPoint":375,"graph":376,"unsanitizedCount":14,"severity":390},"prepare_items (app\u002FAdmin\u002FPaymentTable.php:79)",{"nodes":377,"edges":387},[378,380,383],{"id":312,"type":313,"label":379,"file":191,"line":296},"$_GET",{"id":317,"type":381,"label":382,"file":191,"line":296},"transform","→ get_table_data()",{"id":322,"type":318,"label":384,"file":191,"line":385,"wp_function":386},"get_results() [SQLi]",35,"get_results",[388,389],{"from":312,"to":317,"sanitized":48},{"from":317,"to":322,"sanitized":48},"high",{"entryPoint":392,"graph":393,"unsanitizedCount":14,"severity":390},"\u003CPaymentTable> (app\u002FAdmin\u002FPaymentTable.php:0)",{"nodes":394,"edges":398},[395,396,397],{"id":312,"type":313,"label":379,"file":191,"line":296},{"id":317,"type":381,"label":382,"file":191,"line":296},{"id":322,"type":318,"label":384,"file":191,"line":385,"wp_function":386},[399,400],{"from":312,"to":317,"sanitized":48},{"from":317,"to":322,"sanitized":48},{"entryPoint":402,"graph":403,"unsanitizedCount":46,"severity":390},"\u003CWP_List_Table> (app\u002FLib\u002FWP_List_Table.php:0)",{"nodes":404,"edges":424},[405,406,407,408,409,410,411,412,413,416,418,420],{"id":312,"type":313,"label":314,"file":202,"line":315},{"id":317,"type":318,"label":319,"file":202,"line":315,"wp_function":320},{"id":322,"type":313,"label":323,"file":202,"line":324},{"id":326,"type":318,"label":319,"file":202,"line":324,"wp_function":320},{"id":328,"type":313,"label":329,"file":202,"line":330},{"id":332,"type":318,"label":319,"file":202,"line":330,"wp_function":320},{"id":334,"type":313,"label":335,"file":202,"line":336},{"id":338,"type":318,"label":319,"file":202,"line":336,"wp_function":320},{"id":414,"type":313,"label":370,"file":202,"line":415},"n8",1054,{"id":417,"type":318,"label":319,"file":202,"line":282,"wp_function":320},"n9",{"id":419,"type":313,"label":370,"file":202,"line":415},"n10",{"id":421,"type":318,"label":422,"file":202,"line":282,"wp_function":423},"n11","call_user_func() [RCE]","call_user_func",[425,426,427,428,429,430],{"from":312,"to":317,"sanitized":48},{"from":322,"to":326,"sanitized":48},{"from":328,"to":332,"sanitized":48},{"from":334,"to":338,"sanitized":48},{"from":414,"to":417,"sanitized":48},{"from":419,"to":421,"sanitized":48},{"summary":432,"deductions":433},"The \"billplz-for-contact-form-7\" plugin, in version 1.2.1, presents a mixed security posture. On the positive side, the plugin demonstrates good practices by consistently using prepared statements for all SQL queries and a high percentage of properly escaped output. It also shows a relatively small attack surface with only one shortcode identified, and no unprotected entry points. The vulnerability history, while showing a past medium severity XSS, has no currently unpatched CVEs, suggesting active maintenance and patching.\n\nHowever, several concerning signals emerge from the static analysis. The presence of three high-severity taint flows with unsanitized paths is a significant red flag, indicating potential injection vulnerabilities despite the absence of critical severity findings. The lack of nonce checks is also a notable weakness, especially if any of the identified entry points or file operations could be triggered maliciously without sufficient user authentication or validation. The single file operation and external HTTP request, without explicit mention of security checks, could also represent potential vectors if not handled carefully.\n\nOverall, while the plugin has strengths in its handling of SQL and output escaping, the high-severity taint flows and the absence of nonce checks are significant areas of concern that require further investigation and mitigation. The historical medium severity XSS suggests a recurring pattern that warrants vigilance.",[434,437,439,441,444,446],{"reason":435,"points":436},"High severity taint flows",15,{"reason":438,"points":62},"Unsanitized paths in taint flows",{"reason":440,"points":62},"Missing nonce checks",{"reason":442,"points":443},"Low output escaping coverage",5,{"reason":445,"points":443},"File operations without clear auth context",{"reason":447,"points":443},"External HTTP requests without clear auth context","2026-04-16T13:58:24.807Z",{"wat":450,"direct":457},{"assetPaths":451,"generatorPatterns":453,"scriptPaths":454,"versionParams":456},[452],"\u002Fwp-content\u002Fplugins\u002Fbillplz-for-contact-form-7\u002Fassets\u002Fjs\u002Fgeneral-settings.js",[],[455],"general-settings.js",[],{"cssClasses":458,"htmlComments":459,"htmlAttributes":460,"restEndpoints":461,"jsGlobals":462,"shortcodeOutput":463},[],[],[],[],[],[],{"error":355,"url":465,"statusCode":466,"statusMessage":467,"message":467},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fbillplz-for-contact-form-7\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":46,"versions":469},[470,475,483,491,499,507],{"version":6,"download_url":26,"svn_tag_url":471,"released_at":37,"has_diff":48,"diff_files_changed":472,"diff_lines":37,"trac_diff_url":473,"vulnerabilities":474,"is_current":355},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbillplz-for-contact-form-7\u002Ftags\u002F1.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.2&new_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.2.1",[],{"version":476,"download_url":477,"svn_tag_url":478,"released_at":37,"has_diff":48,"diff_files_changed":479,"diff_lines":37,"trac_diff_url":480,"vulnerabilities":481,"is_current":48},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-contact-form-7.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbillplz-for-contact-form-7\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.2.0&new_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.2",[482],{"id":33,"url_slug":34,"title":35,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":6},{"version":484,"download_url":485,"svn_tag_url":486,"released_at":37,"has_diff":48,"diff_files_changed":487,"diff_lines":37,"trac_diff_url":488,"vulnerabilities":489,"is_current":48},"1.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-contact-form-7.1.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbillplz-for-contact-form-7\u002Ftags\u002F1.2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.0.2&new_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.2.0",[490],{"id":33,"url_slug":34,"title":35,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":6},{"version":492,"download_url":493,"svn_tag_url":494,"released_at":37,"has_diff":48,"diff_files_changed":495,"diff_lines":37,"trac_diff_url":496,"vulnerabilities":497,"is_current":48},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-contact-form-7.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbillplz-for-contact-form-7\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.0.1&new_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.0.2",[498],{"id":33,"url_slug":34,"title":35,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":6},{"version":500,"download_url":501,"svn_tag_url":502,"released_at":37,"has_diff":48,"diff_files_changed":503,"diff_lines":37,"trac_diff_url":504,"vulnerabilities":505,"is_current":48},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-contact-form-7.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbillplz-for-contact-form-7\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.0.0&new_path=%2Fbillplz-for-contact-form-7%2Ftags%2F1.0.1",[506],{"id":33,"url_slug":34,"title":35,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":6},{"version":508,"download_url":509,"svn_tag_url":510,"released_at":37,"has_diff":48,"diff_files_changed":511,"diff_lines":37,"trac_diff_url":37,"vulnerabilities":512,"is_current":48},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbillplz-for-contact-form-7.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbillplz-for-contact-form-7\u002Ftags\u002F1.0.0\u002F",[],[513],{"id":33,"url_slug":34,"title":35,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":6}]