[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8z5eGR_23CxnKoo82aKZymP4bUuBymKbpOYEavThMyk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":14,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":75,"crawl_stats":37,"alternatives":83,"analysis":106,"fingerprints":1104},"binary-mlm-plan","Binary MLM Plan","5.1","LETSCMS MLM Software","https:\u002F\u002Fprofiles.wordpress.org\u002Fletscms\u002F","\u003Cp>Binary MLM is a network marketing model with ePins, where each member recruits two downlines, earning commissions based on referrals.\u003C\u002Fp>\n\u003Ch3>Paid Service\u003C\u002Fh3>\n\u003Cp>This plugin is free to use. If you need support then support charges will be $10\u002Fhour and customisation charges also $10\u002Fhour.\u003C\u002Fp>\n\u003Ch3>What is Binary MLM Plan Software ?\u003C\u002Fh3>\n\u003Cp>A Binary MLM Plan with E-Pin System Software combines the features of a Binary MLM compensation structure with an E-Pin system for enhanced security, sales management, and distributor enrollment processes.\u003C\u002Fp>\n\u003Cp>Binary MLM Plan: This refers to the compensation structure where distributors recruit and sponsor two other distributors, forming two legs or downlines. Commissions and bonuses are typically based on the sales and recruitment efforts within these legs.\u003C\u002Fp>\n\u003Cp>E-Pin System: E-Pins (Electronic Pins) are unique codes or tokens generated by the MLM software. These pins serve various purposes within a network marketing company:\u003C\u002Fp>\n\u003Cp>Enrollment: Distributors use E-Pins to enroll new members or distributors into the network, ensuring controlled and secure registration processes.\u003C\u002Fp>\n\u003Cp>Product Purchase: E-Pins can be used as a form of payment or authentication when purchasing products or packages within the MLM system.\u003C\u002Fp>\n\u003Cp>Security: E-Pins enhance security by acting as a verification mechanism during various transactions, preventing unauthorized access or fraudulent activities.\u003C\u002Fp>\n\u003Cp>Tracking and Management: The system allows administrators to track the usage and distribution of E-Pins, providing insights into sales and recruitment activities.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Ch3>Admin Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Payout Reports\u003C\u002Fli>\n\u003Cli>Report to show complete details of an individual payout\u003C\u002Fli>\n\u003Cli>Affiliate Comission\u003C\u002Fli>\n\u003Cli>Pair Commission\u003C\u002Fli>\n\u003Cli>Bonus Commission\u003C\u002Fli>\n\u003Cli>Admin access to mark a binary mlm user paid \u002F unpaid\u003C\u002Fli>\n\u003Cli>Specify base currency in the admin\u003C\u002Fli>\n\u003Cli>Specify eligibility criteria in the admin\u003C\u002Fli>\n\u003Cli>Configurartion of commission and bonus details in the admin\u003C\u002Fli>\n\u003Cli>Service Charges for payout\u003C\u002Fli>\n\u003Cli>Run payouts manually\u003C\u002Fli>\n\u003Cli>Payout Detail based on user in admin\u003C\u002Fli>\n\u003Cli>E-pin and E-pin Code generator\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Frontend Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Register a Binary MLM User from provided registration page.\u003C\u002Fli>\n\u003Cli>Register new Members using Genealogy\u003C\u002Fli>\n\u003Cli>New Join Network Page for non-Network Members\u003C\u002Fli>\n\u003Cli>Members can view full payout details in their account\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>All Pages\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Registration New User\u003C\u002Fli>\n\u003Cli>Join Network\u003C\u002Fli>\n\u003Cli>Downlines\u003C\u002Fli>\n\u003Cli>Account Detail\u003C\u002Fli>\n\u003Cli>payout Detail\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Run Payouts :-\u003C\u002Fh3>\n\u003Cp>To run Payout in the plugin, admin needs to be used the “Payout Run” tab in settings.\u003Cbr \u002F>\nwhere other sub tabs also available that is used to distribut pair commission, bonus commission.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch3>Our Premium with wordpress support –\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fbmp-pro-wordpress\u002F\" rel=\"nofollow ugc\">BMP – Binary MLM Plan with E-pIn System\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fbmp_pro_documentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fbmp.mlmforest.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fbinary-mlm-ecommerce\u002F\" rel=\"nofollow ugc\">BMW – Binary Mlm Plan with Woocommerce\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fbinary-mlm-woocommerce\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwpbmw.mlmforest.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Funilevel-mlm-plan-wordpress\u002F\" rel=\"nofollow ugc\">UMP – Unilevel MLm E-pin Plan\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Funilevel-mlm-plan-documentation\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fump.mlmforest.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Funilevel-mlm-woocommerce-wordpress\u002F\" rel=\"nofollow ugc\">UMW – Unilevel MLM Plan with WooCommerce\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Funilevel-woo-commerce-documentation\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fumw.mlmforest.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Ffmw-wordpress\u002F\" rel=\"nofollow ugc\">FMW – Force Matrix Mlm Woocommerce\u003C\u002Fa>  – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fforce-matrix-with-woocommerce\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwpfmw.mlmforest.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fmonoline-mlm-plan\u002F\" rel=\"nofollow ugc\">MMP – Monoline MLM Plan with E-Pin\u003C\u002Fa>  – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fmonoline-mlm-plans\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fmonoline.vxinfosystem.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fmonoline-mlm-woocommerce\u002F\" rel=\"nofollow ugc\">MMW – Monoline Mlm Plan with Woocommerce\u003C\u002Fa>  – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fmonoline-mlm-woocommerce\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fmonolinewoo.vxinfosystem.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fmonoline-mlm-woocommerce\u002F\" rel=\"nofollow ugc\">BPW – Board Mlm Plan Woocommerce\u003C\u002Fa>  – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fboard-mlm-plan-woocommerce\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fboardmlm.vxinfosystem.com\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Paid development in WordPress\u003C\u002Fh3>\n\u003Cp>We provide Plugin development and plugin customisation, Theme development and theme customisation as well. So anyone that need our Paid service can connect us as given information in Free Support Section\u003C\u002Fp>\n\u003Ch3>Our Costing Depen on service.\u003C\u002Fh3>\n\u003Cp>1 Hours  – 10 Hours work: 10 USD\u002FHour\u003Cbr \u002F>\n10 Hours to 100 Hours = 8 USD\u002Fhour\u003Cbr \u002F>\nMore than  100 hours = 6 USD\u002FHour\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Ch3>Free Supports\u003C\u002Fh3>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Please share your issues\u002Ffeedback with us, if you are facing any while using our plugin, at letscmsdev@gmail.com\u003C\u002Fp>\n\u003Cp>Mail: letscmsdev@gmail.com\u003Cbr \u002F>\nSkype: jks0586\u003Cbr \u002F>\nWhats App: +91-9717478599\u003Cbr \u002F>\nSupport: 24X7\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Ch3>Pro version Demo Link\u003C\u002Fh3>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Here’s a DEMO link to \u003Ca href=\"https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fbmp-pro-wordpress\u002F\" title=\"Binary MLM Plan with E-pin System Pro\" rel=\"nofollow ugc\">Binary Mlm Plan Pro Version\u003C\u002Fa> .\u003C\u002Fp>\n","Binary MLM is a network marketing model with ePins, where each member recruits two downlines, earning commissions based on referrals.",40,14097,74,3,"2025-12-13T07:01:00.000Z","6.9.4","6.0.2","8.0",[20,21,22,23,24],"binary-mlm-plugin","free-binary-mlm-plan-in-wordpress","free-binary-mlm-with-epin","mlm-plan","mlm-plan-in-wordpress","https:\u002F\u002Fwww.mlmtrees.com\u002Fproduct\u002Fbmp-pro-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbinary-mlm-plan.5.1.zip",71,1,"2025-10-16 20:57:56","2026-03-15T15:16:48.613Z",[32,46,61],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-11895","binary-mlm-plan-authenticated-subscriber-insecure-direct-object-reference","Binary MLM Plan \u003C= 5.0 - Authenticated (Subscriber+) Insecure Direct Object Reference","The Binary MLM Plan plugin for WordPress is vulnerable to insecure direct object reference in versions up to, and including, 5.0. This is due to the bmp_user_payout_detail_of_current_user() function selecting payout records solely by id without verifying ownership. This makes it possible for authenticated attackers with the bmp_user role (often subscribers) to view other members' payout summaries via direct requests to the \u002Fbmp-account-detail\u002F endpoint with a crafted payout-id parameter granted they can access the shortcode output.",null,"\u003C=5.0","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Authorization Bypass Through User-Controlled Key","2025-11-06 15:26:30",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fadba7d0c-29ca-49c5-ac75-bb79d62f6107?source=api-prod",{"id":47,"url_slug":48,"title":49,"description":50,"plugin_slug":4,"theme_slug":37,"affected_versions":51,"patched_in_version":52,"severity":39,"cvss_score":53,"cvss_vector":54,"vuln_type":55,"published_date":56,"updated_date":57,"references":58,"days_to_patch":60},"CVE-2025-10038","binary-mlm-plan-unauthenticated-limited-privilege-escalation","Binary MLM Plan \u003C= 3.0 - Unauthenticated Limited Privilege Escalation","The Binary MLM Plan plugin for WordPress is vulnerable to limited Privilege Escalation in all versions up to, and including, 3.0. This is due to bmp_user role granting all users with the manage_bmp capability by default upon registration through the plugin's form. This makes it possible for unauthenticated attackers to register and manage the plugin's settings.","\u003C=3.0","5.0",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:N","Incorrect Privilege Assignment","2025-10-14 20:04:50","2025-11-06 15:28:02",[59],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7951c8e4-b610-4cc4-ab27-4cfa78d72302?source=api-prod",23,{"id":62,"url_slug":63,"title":64,"description":65,"plugin_slug":4,"theme_slug":37,"affected_versions":51,"patched_in_version":52,"severity":66,"cvss_score":67,"cvss_vector":68,"vuln_type":69,"published_date":70,"updated_date":71,"references":72,"days_to_patch":74},"CVE-2025-47671","binary-mlm-plan-unauthenticated-sql-injection","Binary MLM Plan \u003C= 3.0 - Unauthenticated SQL Injection","The Binary MLM Plan plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","high",7.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2025-05-21 00:00:00","2025-11-06 15:20:01",[73],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbdcd9e73-ed37-4a5b-8dfa-6ef5cd6f47e2?source=api-prod",170,{"slug":76,"display_name":7,"profile_url":8,"plugin_count":77,"total_installs":78,"avg_security_score":79,"avg_patch_time_days":80,"trust_score":81,"computed_at":82},"letscms",5,80,94,241,75,"2026-04-05T17:34:14.154Z",[84],{"slug":85,"name":86,"version":87,"author":7,"author_profile":8,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":92,"num_ratings":93,"last_updated":94,"tested_up_to":16,"requires_at_least":95,"requires_php":18,"tags":96,"homepage":101,"download_link":102,"security_score":103,"vuln_count":28,"unpatched_count":104,"last_vuln_date":105,"fetched_at":30},"unilevel-mlm-plan","Unilevel MLM Plan","2.1","\u003Cp>Unilevel MLM Plan software has been design to help customers to make the high profit gain based on level.\u003C\u002Fp>\n\u003Ch3>About\u003C\u002Fh3>\n\u003Ch3>ADMIN FEATURES\u003C\u002Fh3>\n\u003Cp>First User Registrattion\u003Cbr \u002F>\nGeneral Settings\u003Cbr \u002F>\nePin generate Option\u003Cbr \u002F>\nePin Reports\u003C\u002Fp>\n\u003Ch3>FRONTEND FEATURES\u003C\u002Fh3>\n\u003Cp>Register a Unilevel MLM User from provided registration page.\u003Cbr \u002F>\nRegister new Members using Genealogy\u003Cbr \u002F>\nGenealogy view\u003C\u002Fp>\n\u003Cp>For more understand Plugin follow \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Funilevel-mlm-plan-documentation\u002F\" rel=\"nofollow ugc\">Unilevel MLM Plan Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch3>Our Premium with wordpress support –\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fmlmtrees.com\u002Fproduct\u002Fumw\" rel=\"nofollow ugc\">UMW – Unilevel MLm Woocommerce\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fplaylist?list=PLn9cGkS1zw3RTk_YZIWAhno7fGVnRKI9M\" rel=\"nofollow ugc\">Overview\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Funilevel-woo-commerce-documentation\u002F\" rel=\"nofollow ugc\">Guidelines\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fmlmtrees.com\u002Fproduct\u002Fbmw-wordpress\" rel=\"nofollow ugc\">BMW – Binary MLm Woocommerce\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fplaylist?list=PLn9cGkS1zw3QMCC-89p5zK39mPtfltkwq\" rel=\"nofollow ugc\">Overview\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fbinary-mlm-woocommerce\u002F\" rel=\"nofollow ugc\">Guidelines\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fmlmtrees.com\u002Fproduct\u002Fump-wordpress\" rel=\"nofollow ugc\">UMP – Unilevel MLm Plan\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fplaylist?list=PLn9cGkS1zw3QhCY1Ycsh2sJfHlZg7Mjee\" rel=\"nofollow ugc\">Overview\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Funilevel-mlm-plan-documentation\u002F\" rel=\"nofollow ugc\">Guidelines\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fmlmtrees.com\u002Fproduct\u002Fbmp-pro-wordpress\" rel=\"nofollow ugc\">BMP – Binary MLm Plan\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fplaylist?list=PLn9cGkS1zw3Q1ZMo94AT9_RP1IPxnirpb\" rel=\"nofollow ugc\">Overview\u003C\u002Fa> – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fbmp_pro_documentation\u002F\" rel=\"nofollow ugc\">Guidelines\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fmlmtrees.com\u002Fproduct\u002Ffmw-wordpress\" rel=\"nofollow ugc\">FMW – Force Matrix Woocommerce\u003C\u002Fa>  – \u003Ca href=\"https:\u002F\u002Fwww.letscms.com\u002Fforce-matrix-with-woocommerce\u002F\" rel=\"nofollow ugc\">Guidelines\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>\u003C\u002Fh3>\n\u003Ch3>Free Supports\u003C\u002Fh3>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Please share your issues\u002Ffeedback with us, if you are facing any while using our plugin, at letscmsdev@gmail.com\u003C\u002Fp>\n\u003Cp>Mail: letscmsdev@gmail.com\u003Cbr \u002F>\nSkype: jks0586\u003Cbr \u002F>\nWhats App: +91-9717478599\u003Cbr \u002F>\nSupport: 24X7\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Ch3>Pro Version\u003C\u002Fh3>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>For more features Please use Pro version \u003Ca href=\"http:\u002F\u002Fmlmtrees.com\u002Fproduct\u002Funilevel-mlm-plan-wordpress\u002F\" rel=\"nofollow ugc\">Unilevel MLM Plan Pro\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Ch3>Paid Supports\u003C\u002Fh3>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>We provide paid support for paid version.\u003Cbr \u002F>\nBased on work the cost vary.\u003Cbr \u002F>\nNormal customisation charges are 10 USD\u002FHour.\u003C\u002Fp>\n","Unilevel MLM Plan software has been design to help customers to make the high profit gain based on level.",10,10232,60,2,"2025-12-08T12:16:00.000Z","6.1",[97,98,99,85,100],"genealogy","mlm","network","unilevel-network","https:\u002F\u002Fletscms.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Funilevel-mlm-plan.2.1.zip",99,0,"2025-01-06 15:43:18",{"attackSurface":107,"codeSignals":261,"taintFlows":514,"riskAssessment":1089,"analyzedAt":1103},{"hooks":108,"ajaxHandlers":207,"restRoutes":246,"shortcodes":247,"cronEvents":260,"entryPointCount":229,"unprotectedCount":131},[109,115,118,123,127,132,138,143,146,150,154,158,162,166,170,174,177,181,185,189,193,197,201,205],{"type":110,"name":111,"callback":112,"file":113,"line":114},"action","admin_enqueue_scripts","admin_styles","includes\\admin\\class-bmp-admin-assets.php",21,{"type":110,"name":111,"callback":116,"file":113,"line":117},"admin_scripts",22,{"type":110,"name":119,"callback":119,"priority":120,"file":121,"line":122},"admin_menu",9,"includes\\admin\\class-bmp-admin-menus.php",19,{"type":110,"name":119,"callback":124,"priority":125,"file":121,"line":126},"settings_menu",50,20,{"type":110,"name":128,"callback":129,"file":130,"line":131},"init","includes","includes\\admin\\class-bmp-admin.php",14,{"type":133,"name":134,"callback":135,"priority":126,"file":136,"line":137},"filter","bmp_settings_tabs_array","add_settings_page","includes\\admin\\settings\\class-bmp-settings-page.php",36,{"type":110,"name":139,"callback":140,"file":141,"line":142},"bmp_check_downline_validate","bmp_user_check_validate_function","includes\\bmp-hooks.php",29,{"type":110,"name":144,"callback":140,"file":141,"line":145},"bmp_user_check_validate",30,{"type":110,"name":147,"callback":148,"file":141,"line":149},"bmp_user_payout_list","bmp_user_payout_list_function",31,{"type":110,"name":151,"callback":152,"file":141,"line":153},"bmp_user_account_detail","bmp_user_account_detail_function",32,{"type":110,"name":155,"callback":156,"file":141,"line":157},"bmp_user_downlines_list","bmp_user_downlines_list_function",33,{"type":110,"name":159,"callback":160,"file":141,"line":161},"bmp_user_check_payout","bmp_user_check_payout_function",34,{"type":110,"name":163,"callback":164,"priority":90,"file":141,"line":165},"bmp_user_payout_detail","bmp_user_payout_detail_function",35,{"type":110,"name":167,"callback":168,"file":141,"line":169},"wp_head","bmp_base_name_information",38,{"type":133,"name":171,"callback":172,"file":141,"line":173},"query_vars","bmp_add_query_vars",39,{"type":133,"name":175,"callback":176,"file":141,"line":11},"rewrite_rules_array","bmp_add_rewrite_rules",{"type":110,"name":178,"callback":179,"file":141,"line":180},"bmp_admin_payout_detail","bmp_admin_payout_detail_function",43,{"type":110,"name":182,"callback":183,"file":141,"line":184},"bmp_admin_bonus_details","bmp_admin_bonus_details_function",44,{"type":110,"name":186,"callback":187,"file":141,"line":188},"bmp_admin_user_account_detail","bmp_admin_user_account_detail_function",45,{"type":110,"name":190,"callback":191,"file":141,"line":192},"bmp_admin_user_downlines_list","bmp_admin_user_downlines_list_function",46,{"type":110,"name":194,"callback":195,"file":141,"line":196},"bmp_admin_user_payout_list","bmp_admn_user_payout_list_function",47,{"type":110,"name":198,"callback":199,"file":141,"line":200},"bmp_mlm_deactivate_hook","bmp_mlm_deactivate_function",48,{"type":110,"name":202,"callback":203,"file":141,"line":204},"bmp_frontend_script","bmp_frontend_script_function",49,{"type":110,"name":128,"callback":128,"priority":104,"file":206,"line":81},"includes\\class-bmp.php",[208,213,216,219,221,224,226,230,231,234,235,239,241,244],{"action":209,"nopriv":210,"callback":211,"hasNonce":210,"hasCapCheck":210,"file":141,"line":212},"bmp_user_register",false,"bmp_front_register_function",6,{"action":209,"nopriv":214,"callback":211,"hasNonce":210,"hasCapCheck":210,"file":141,"line":215},true,7,{"action":217,"nopriv":210,"callback":218,"hasNonce":210,"hasCapCheck":210,"file":141,"line":90},"bmp_username_exist","bmp_username_exist_function",{"action":217,"nopriv":214,"callback":218,"hasNonce":210,"hasCapCheck":210,"file":141,"line":220},11,{"action":222,"nopriv":210,"callback":223,"hasNonce":210,"hasCapCheck":210,"file":141,"line":131},"bmp_position_exist","bmp_position_exist_function",{"action":222,"nopriv":214,"callback":223,"hasNonce":210,"hasCapCheck":210,"file":141,"line":225},15,{"action":227,"nopriv":210,"callback":228,"hasNonce":210,"hasCapCheck":210,"file":141,"line":229},"bmp_email_exist","bmp_email_exist_function",18,{"action":227,"nopriv":214,"callback":228,"hasNonce":210,"hasCapCheck":210,"file":141,"line":122},{"action":232,"nopriv":210,"callback":233,"hasNonce":210,"hasCapCheck":210,"file":141,"line":117},"bmp_epin_exist","bmp_epin_exist_function",{"action":232,"nopriv":214,"callback":233,"hasNonce":210,"hasCapCheck":210,"file":141,"line":60},{"action":236,"nopriv":210,"callback":237,"hasNonce":210,"hasCapCheck":210,"file":141,"line":238},"bmp_password_validation","bmp_password_validation_function",26,{"action":236,"nopriv":214,"callback":237,"hasNonce":210,"hasCapCheck":210,"file":141,"line":240},27,{"action":242,"nopriv":210,"callback":243,"hasNonce":210,"hasCapCheck":210,"file":141,"line":137},"bmp_join_network","bmp_front_join_network_function",{"action":242,"nopriv":214,"callback":243,"hasNonce":210,"hasCapCheck":210,"file":141,"line":245},37,[],[248,252,255,257],{"tag":249,"callback":250,"file":251,"line":212},"bmp_register","closure","includes\\catalog\\class-bmp-template.php",{"tag":253,"callback":250,"file":251,"line":254},"join_network",13,{"tag":256,"callback":250,"file":251,"line":126},"bmp_genealogy",{"tag":258,"callback":250,"file":251,"line":259},"bmp_account_detail",28,[],{"dangerousFunctions":262,"sqlUsage":263,"outputEscaping":292,"fileOperations":104,"externalRequests":104,"nonceChecks":90,"capabilityChecks":93,"bundledLibraries":509},[],{"prepared":264,"raw":90,"locations":265},234,[266,270,273,275,279,281,283,285,288,291],{"file":267,"line":268,"context":269},"includes\\admin\\settings\\class-bmp-settings-general.php",280,"$wpdb->get_var() with variable interpolation",{"file":136,"line":271,"context":272},124,"$wpdb->get_results() with variable interpolation",{"file":274,"line":117,"context":269},"includes\\admin\\views\\html-admin-settings.php",{"file":276,"line":277,"context":278},"includes\\bmp-hook-functions.php",385,"$wpdb->query() with variable interpolation",{"file":276,"line":280,"context":278},982,{"file":276,"line":282,"context":272},991,{"file":276,"line":284,"context":272},997,{"file":276,"line":286,"context":287},2101,"$wpdb->get_row() with variable interpolation",{"file":289,"line":290,"context":278},"includes\\classs-bmp-uninstaller.php",25,{"file":289,"line":142,"context":278},{"escaped":293,"rawEcho":294,"locations":295},483,106,[296,299,301,303,305,307,309,311,313,315,317,319,321,323,325,327,329,331,333,335,337,339,341,343,345,347,349,351,353,355,357,359,361,363,365,367,369,371,373,375,377,379,381,383,385,387,389,391,393,395,397,399,401,403,405,407,409,411,413,415,417,419,421,423,425,427,429,431,433,435,437,439,441,443,445,447,449,451,453,455,457,459,461,463,465,467,469,471,473,475,477,479,481,483,485,487,489,491,493,495,497,499,501,503,505,507],{"file":276,"line":297,"context":298},853,"raw output",{"file":276,"line":300,"context":298},859,{"file":276,"line":302,"context":298},876,{"file":276,"line":304,"context":298},1011,{"file":276,"line":306,"context":298},1015,{"file":276,"line":308,"context":298},1016,{"file":276,"line":310,"context":298},1017,{"file":276,"line":312,"context":298},1018,{"file":276,"line":314,"context":298},1019,{"file":276,"line":316,"context":298},1020,{"file":276,"line":318,"context":298},1021,{"file":276,"line":320,"context":298},1022,{"file":276,"line":322,"context":298},1036,{"file":276,"line":324,"context":298},1057,{"file":276,"line":326,"context":298},1062,{"file":276,"line":328,"context":298},1063,{"file":276,"line":330,"context":298},1064,{"file":276,"line":332,"context":298},1080,{"file":276,"line":334,"context":298},1085,{"file":276,"line":336,"context":298},1086,{"file":276,"line":338,"context":298},1087,{"file":276,"line":340,"context":298},1119,{"file":276,"line":342,"context":298},1123,{"file":276,"line":344,"context":298},1127,{"file":276,"line":346,"context":298},1131,{"file":276,"line":348,"context":298},1135,{"file":276,"line":350,"context":298},1139,{"file":276,"line":352,"context":298},1143,{"file":276,"line":354,"context":298},1147,{"file":276,"line":356,"context":298},1151,{"file":276,"line":358,"context":298},1158,{"file":276,"line":360,"context":298},1162,{"file":276,"line":362,"context":298},1166,{"file":276,"line":364,"context":298},1170,{"file":276,"line":366,"context":298},1174,{"file":276,"line":368,"context":298},1178,{"file":276,"line":370,"context":298},1182,{"file":276,"line":372,"context":298},1201,{"file":276,"line":374,"context":298},1206,{"file":276,"line":376,"context":298},1207,{"file":276,"line":378,"context":298},1208,{"file":276,"line":380,"context":298},1224,{"file":276,"line":382,"context":298},1230,{"file":276,"line":384,"context":298},1231,{"file":276,"line":386,"context":298},1232,{"file":276,"line":388,"context":298},1261,{"file":276,"line":390,"context":298},1265,{"file":276,"line":392,"context":298},1269,{"file":276,"line":394,"context":298},1273,{"file":276,"line":396,"context":298},1277,{"file":276,"line":398,"context":298},1281,{"file":276,"line":400,"context":298},1285,{"file":276,"line":402,"context":298},1289,{"file":276,"line":404,"context":298},1293,{"file":276,"line":406,"context":298},1301,{"file":276,"line":408,"context":298},1305,{"file":276,"line":410,"context":298},1309,{"file":276,"line":412,"context":298},1313,{"file":276,"line":414,"context":298},1317,{"file":276,"line":416,"context":298},1321,{"file":276,"line":418,"context":298},1325,{"file":276,"line":420,"context":298},1354,{"file":276,"line":422,"context":298},1358,{"file":276,"line":424,"context":298},1359,{"file":276,"line":426,"context":298},1360,{"file":276,"line":428,"context":298},1361,{"file":276,"line":430,"context":298},1394,{"file":276,"line":432,"context":298},1400,{"file":276,"line":434,"context":298},1405,{"file":276,"line":436,"context":298},1409,{"file":276,"line":438,"context":298},1413,{"file":276,"line":440,"context":298},1417,{"file":276,"line":442,"context":298},1423,{"file":276,"line":444,"context":298},1445,{"file":276,"line":446,"context":298},1449,{"file":276,"line":448,"context":298},1450,{"file":276,"line":450,"context":298},1451,{"file":276,"line":452,"context":298},1452,{"file":276,"line":454,"context":298},1453,{"file":276,"line":456,"context":298},1454,{"file":276,"line":458,"context":298},1474,{"file":276,"line":460,"context":298},1478,{"file":276,"line":462,"context":298},1479,{"file":276,"line":464,"context":298},1480,{"file":276,"line":466,"context":298},1514,{"file":276,"line":468,"context":298},1518,{"file":276,"line":470,"context":298},1519,{"file":276,"line":472,"context":298},1520,{"file":276,"line":474,"context":298},1521,{"file":276,"line":476,"context":298},1522,{"file":276,"line":478,"context":298},1523,{"file":276,"line":480,"context":298},1524,{"file":276,"line":482,"context":298},1525,{"file":276,"line":484,"context":298},1538,{"file":276,"line":486,"context":298},1717,{"file":276,"line":488,"context":298},1831,{"file":276,"line":490,"context":298},1845,{"file":276,"line":492,"context":298},1861,{"file":276,"line":494,"context":298},1876,{"file":276,"line":496,"context":298},1900,{"file":276,"line":498,"context":298},1911,{"file":276,"line":500,"context":298},1933,{"file":276,"line":502,"context":298},1947,{"file":276,"line":504,"context":298},1961,{"file":276,"line":506,"context":298},1977,{"file":276,"line":508,"context":298},1991,[510],{"name":511,"version":512,"knownCves":513},"DataTables","1.11.5",[],[515,532,542,555,573,583,599,610,672,702,712,727,748,767,777,805,842,880],{"entryPoint":516,"graph":517,"unsanitizedCount":104,"severity":531},"\u003Chtml-admin-settings> (includes\\admin\\views\\html-admin-settings.php:0)",{"nodes":518,"edges":529},[519,524],{"id":520,"type":521,"label":522,"file":274,"line":523},"n0","source","$_GET (x2)",8,{"id":525,"type":526,"label":527,"file":274,"line":92,"wp_function":528},"n1","sink","echo() [XSS]","echo",[530],{"from":520,"to":525,"sanitized":214},"low",{"entryPoint":533,"graph":534,"unsanitizedCount":104,"severity":531},"bmp_user_payout_list_function (includes\\bmp-hook-functions.php:1502)",{"nodes":535,"edges":540},[536,539],{"id":520,"type":521,"label":537,"file":276,"line":538},"$_SERVER",1505,{"id":525,"type":526,"label":527,"file":276,"line":484,"wp_function":528},[541],{"from":520,"to":525,"sanitized":214},{"entryPoint":543,"graph":544,"unsanitizedCount":104,"severity":531},"bmp_username_exist_function (includes\\bmp-hook-functions.php:1836)",{"nodes":545,"edges":553},[546,549],{"id":520,"type":521,"label":547,"file":276,"line":548},"$_POST",1848,{"id":525,"type":526,"label":550,"file":276,"line":551,"wp_function":552},"get_row() [SQLi]",1849,"get_row",[554],{"from":520,"to":525,"sanitized":214},{"entryPoint":556,"graph":557,"unsanitizedCount":104,"severity":531},"bmp_position_exist_function (includes\\bmp-hook-functions.php:1867)",{"nodes":558,"edges":570},[559,561,565,567],{"id":520,"type":521,"label":547,"file":276,"line":560},1881,{"id":525,"type":526,"label":562,"file":276,"line":563,"wp_function":564},"get_var() [SQLi]",1883,"get_var",{"id":566,"type":521,"label":547,"file":276,"line":560},"n2",{"id":568,"type":526,"label":550,"file":276,"line":569,"wp_function":552},"n3",1886,[571,572],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":214},{"entryPoint":574,"graph":575,"unsanitizedCount":104,"severity":531},"bmp_epin_exist_function (includes\\bmp-hook-functions.php:1938)",{"nodes":576,"edges":581},[577,579],{"id":520,"type":521,"label":547,"file":276,"line":578},1950,{"id":525,"type":526,"label":562,"file":276,"line":580,"wp_function":564},1951,[582],{"from":520,"to":525,"sanitized":214},{"entryPoint":584,"graph":585,"unsanitizedCount":104,"severity":531},"getRegistrationForm (templates\\bmp-register.php:9)",{"nodes":586,"edges":596},[587,590,592,594],{"id":520,"type":521,"label":588,"file":589,"line":238},"$_GET","templates\\bmp-register.php",{"id":525,"type":526,"label":527,"file":589,"line":591,"wp_function":528},51,{"id":566,"type":521,"label":593,"file":589,"line":122},"$_REQUEST",{"id":568,"type":526,"label":527,"file":589,"line":595,"wp_function":528},137,[597,598],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":214},{"entryPoint":600,"graph":601,"unsanitizedCount":104,"severity":531},"\u003Cbmp-register> (templates\\bmp-register.php:0)",{"nodes":602,"edges":607},[603,604,605,606],{"id":520,"type":521,"label":588,"file":589,"line":238},{"id":525,"type":526,"label":527,"file":589,"line":591,"wp_function":528},{"id":566,"type":521,"label":593,"file":589,"line":122},{"id":568,"type":526,"label":527,"file":589,"line":595,"wp_function":528},[608,609],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":214},{"entryPoint":611,"graph":612,"unsanitizedCount":215,"severity":66},"save (includes\\admin\\settings\\class-bmp-settings-general.php:167)",{"nodes":613,"edges":661},[614,617,620,624,626,629,632,635,638,641,644,647,652,655,658],{"id":520,"type":521,"label":615,"file":267,"line":616},"$_POST (x3)",175,{"id":525,"type":618,"label":619,"file":267,"line":616},"transform","→ manageGeneral()",{"id":566,"type":526,"label":621,"file":267,"line":622,"wp_function":623},"update_option() [Settings Manipulation]",289,"update_option",{"id":568,"type":521,"label":547,"file":267,"line":625},180,{"id":627,"type":618,"label":628,"file":267,"line":625},"n4","→ managePayout()",{"id":630,"type":526,"label":621,"file":267,"line":631,"wp_function":623},"n5",355,{"id":633,"type":521,"label":547,"file":267,"line":634},"n6",182,{"id":636,"type":618,"label":637,"file":267,"line":634},"n7","→ manageEligibility()",{"id":639,"type":526,"label":621,"file":267,"line":640,"wp_function":623},"n8",300,{"id":642,"type":521,"label":547,"file":267,"line":643},"n9",186,{"id":645,"type":618,"label":646,"file":267,"line":643},"n10","→ manageEpin()",{"id":648,"type":526,"label":649,"file":267,"line":650,"wp_function":651},"n11","query() [SQLi]",334,"query",{"id":653,"type":521,"label":547,"file":267,"line":654},"n12",189,{"id":656,"type":618,"label":657,"file":267,"line":654},"n13","→ manageFirstUser()",{"id":659,"type":526,"label":649,"file":267,"line":660,"wp_function":651},"n14",258,[662,663,664,665,666,667,668,669,670,671],{"from":520,"to":525,"sanitized":210},{"from":525,"to":566,"sanitized":210},{"from":568,"to":627,"sanitized":210},{"from":627,"to":630,"sanitized":210},{"from":633,"to":636,"sanitized":210},{"from":636,"to":639,"sanitized":210},{"from":642,"to":645,"sanitized":210},{"from":645,"to":648,"sanitized":210},{"from":653,"to":656,"sanitized":210},{"from":656,"to":659,"sanitized":210},{"entryPoint":673,"graph":674,"unsanitizedCount":215,"severity":66},"\u003Cclass-bmp-settings-general> (includes\\admin\\settings\\class-bmp-settings-general.php:0)",{"nodes":675,"edges":691},[676,677,678,679,680,681,682,683,684,685,686,687,688,689,690],{"id":520,"type":521,"label":615,"file":267,"line":616},{"id":525,"type":618,"label":619,"file":267,"line":616},{"id":566,"type":526,"label":621,"file":267,"line":622,"wp_function":623},{"id":568,"type":521,"label":547,"file":267,"line":625},{"id":627,"type":618,"label":628,"file":267,"line":625},{"id":630,"type":526,"label":621,"file":267,"line":631,"wp_function":623},{"id":633,"type":521,"label":547,"file":267,"line":634},{"id":636,"type":618,"label":637,"file":267,"line":634},{"id":639,"type":526,"label":621,"file":267,"line":640,"wp_function":623},{"id":642,"type":521,"label":547,"file":267,"line":643},{"id":645,"type":618,"label":646,"file":267,"line":643},{"id":648,"type":526,"label":649,"file":267,"line":650,"wp_function":651},{"id":653,"type":521,"label":547,"file":267,"line":654},{"id":656,"type":618,"label":657,"file":267,"line":654},{"id":659,"type":526,"label":649,"file":267,"line":660,"wp_function":651},[692,693,694,695,696,697,698,699,700,701],{"from":520,"to":525,"sanitized":210},{"from":525,"to":566,"sanitized":210},{"from":568,"to":627,"sanitized":210},{"from":627,"to":630,"sanitized":210},{"from":633,"to":636,"sanitized":210},{"from":636,"to":639,"sanitized":210},{"from":642,"to":645,"sanitized":210},{"from":645,"to":648,"sanitized":210},{"from":653,"to":656,"sanitized":210},{"from":656,"to":659,"sanitized":210},{"entryPoint":703,"graph":704,"unsanitizedCount":28,"severity":66},"bmp_user_check_payout_function (includes\\bmp-hook-functions.php:865)",{"nodes":705,"edges":710},[706,708],{"id":520,"type":521,"label":588,"file":276,"line":707},869,{"id":525,"type":526,"label":562,"file":276,"line":709,"wp_function":564},873,[711],{"from":520,"to":525,"sanitized":210},{"entryPoint":713,"graph":714,"unsanitizedCount":28,"severity":66},"bmp_admn_user_payout_list_function (includes\\bmp-hook-functions.php:1004)",{"nodes":715,"edges":724},[716,718,720],{"id":520,"type":521,"label":588,"file":276,"line":717},1007,{"id":525,"type":618,"label":719,"file":276,"line":717},"→ bmp_admin_payout_list_of_current_user()",{"id":566,"type":526,"label":721,"file":276,"line":722,"wp_function":723},"get_results() [SQLi]",967,"get_results",[725,726],{"from":520,"to":525,"sanitized":210},{"from":525,"to":566,"sanitized":210},{"entryPoint":728,"graph":729,"unsanitizedCount":93,"severity":66},"bmp_admin_user_downlines_list_function (includes\\bmp-hook-functions.php:1048)",{"nodes":730,"edges":743},[731,733,735,737,739,741],{"id":520,"type":521,"label":588,"file":276,"line":732},1051,{"id":525,"type":618,"label":734,"file":276,"line":732},"→ bmp_admin_user_left_downlines_of_current_user()",{"id":566,"type":526,"label":721,"file":276,"line":736,"wp_function":723},942,{"id":568,"type":521,"label":588,"file":276,"line":738},1052,{"id":627,"type":618,"label":740,"file":276,"line":738},"→ bmp_admin_user_right_downlines_of_current_user()",{"id":630,"type":526,"label":721,"file":276,"line":742,"wp_function":723},955,[744,745,746,747],{"from":520,"to":525,"sanitized":210},{"from":525,"to":566,"sanitized":210},{"from":568,"to":627,"sanitized":210},{"from":627,"to":630,"sanitized":210},{"entryPoint":749,"graph":750,"unsanitizedCount":28,"severity":66},"bmp_admin_user_account_detail_function (includes\\bmp-hook-functions.php:1110)",{"nodes":751,"edges":763},[752,755,757,759,761],{"id":520,"type":521,"label":753,"file":276,"line":754},"$_GET (x13)",1112,{"id":525,"type":526,"label":527,"file":276,"line":756,"wp_function":528},1124,{"id":566,"type":521,"label":588,"file":276,"line":758},1114,{"id":568,"type":618,"label":760,"file":276,"line":758},"→ bmp_admin_user_my_total_earnings()",{"id":627,"type":526,"label":721,"file":276,"line":762,"wp_function":723},911,[764,765,766],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":210},{"from":568,"to":627,"sanitized":210},{"entryPoint":768,"graph":769,"unsanitizedCount":93,"severity":66},"bmp_admin_payout_detail_function (includes\\bmp-hook-functions.php:1337)",{"nodes":770,"edges":775},[771,773],{"id":520,"type":521,"label":522,"file":276,"line":772},1341,{"id":525,"type":526,"label":721,"file":276,"line":774,"wp_function":723},1342,[776],{"from":520,"to":525,"sanitized":210},{"entryPoint":778,"graph":779,"unsanitizedCount":14,"severity":66},"bmp_admin_bonus_details_function (includes\\bmp-hook-functions.php:1381)",{"nodes":780,"edges":798},[781,783,784,785,787,789,791,793,794,796],{"id":520,"type":521,"label":588,"file":276,"line":782},1385,{"id":525,"type":526,"label":527,"file":276,"line":430,"wp_function":528},{"id":566,"type":521,"label":522,"file":276,"line":782},{"id":568,"type":526,"label":527,"file":276,"line":786,"wp_function":528},1401,{"id":627,"type":521,"label":588,"file":276,"line":788},1390,{"id":630,"type":618,"label":790,"file":276,"line":788},"→ bmp_payout_summary_by_amount_payout()",{"id":633,"type":526,"label":550,"file":276,"line":792,"wp_function":552},613,{"id":636,"type":521,"label":588,"file":276,"line":430},{"id":639,"type":618,"label":795,"file":276,"line":430},"→ bmp_getUsernameByUserId()",{"id":642,"type":526,"label":562,"file":276,"line":797,"wp_function":564},263,[799,800,801,802,803,804],{"from":520,"to":525,"sanitized":210},{"from":566,"to":568,"sanitized":214},{"from":627,"to":630,"sanitized":210},{"from":630,"to":633,"sanitized":210},{"from":636,"to":639,"sanitized":210},{"from":639,"to":642,"sanitized":210},{"entryPoint":806,"graph":807,"unsanitizedCount":93,"severity":66},"bmp_front_register_function (includes\\bmp-hook-functions.php:1552)",{"nodes":808,"edges":834},[809,812,814,817,819,820,822,824,826,828,830,832],{"id":520,"type":521,"label":810,"file":276,"line":811},"$_POST (x2)",1568,{"id":525,"type":526,"label":562,"file":276,"line":813,"wp_function":564},1622,{"id":566,"type":521,"label":815,"file":276,"line":816},"$_POST (x7)",1564,{"id":568,"type":526,"label":649,"file":276,"line":818,"wp_function":651},1662,{"id":627,"type":521,"label":810,"file":276,"line":811},{"id":630,"type":526,"label":550,"file":276,"line":821,"wp_function":552},1679,{"id":633,"type":521,"label":547,"file":276,"line":823},1660,{"id":636,"type":618,"label":825,"file":276,"line":823},"→ bmp_get_user_key()",{"id":639,"type":526,"label":562,"file":276,"line":827,"wp_function":564},307,{"id":642,"type":521,"label":547,"file":276,"line":829},1705,{"id":645,"type":618,"label":831,"file":276,"line":829},"→ bmp_eligibility_check_for_commission()",{"id":648,"type":526,"label":562,"file":276,"line":833,"wp_function":564},160,[835,836,837,838,839,840,841],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":214},{"from":627,"to":630,"sanitized":214},{"from":633,"to":636,"sanitized":210},{"from":636,"to":639,"sanitized":210},{"from":642,"to":645,"sanitized":210},{"from":645,"to":648,"sanitized":210},{"entryPoint":843,"graph":844,"unsanitizedCount":14,"severity":66},"bmp_front_join_network_function (includes\\bmp-hook-functions.php:1722)",{"nodes":845,"edges":870},[846,848,850,851,853,854,856,858,860,862,864,865,866,868,869],{"id":520,"type":521,"label":547,"file":276,"line":847},1731,{"id":525,"type":526,"label":562,"file":276,"line":849,"wp_function":564},1767,{"id":566,"type":521,"label":815,"file":276,"line":847},{"id":568,"type":526,"label":649,"file":276,"line":852,"wp_function":651},1779,{"id":627,"type":521,"label":810,"file":276,"line":847},{"id":630,"type":526,"label":550,"file":276,"line":855,"wp_function":552},1798,{"id":633,"type":521,"label":547,"file":276,"line":857},1737,{"id":636,"type":618,"label":859,"file":276,"line":857},"→ bmp_epin_exist()",{"id":639,"type":526,"label":562,"file":276,"line":861,"wp_function":564},398,{"id":642,"type":521,"label":547,"file":276,"line":863},1759,{"id":645,"type":618,"label":825,"file":276,"line":863},{"id":648,"type":526,"label":562,"file":276,"line":827,"wp_function":564},{"id":653,"type":521,"label":547,"file":276,"line":867},1820,{"id":656,"type":618,"label":831,"file":276,"line":867},{"id":659,"type":526,"label":562,"file":276,"line":833,"wp_function":564},[871,872,873,874,875,876,877,878,879],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":214},{"from":627,"to":630,"sanitized":214},{"from":633,"to":636,"sanitized":210},{"from":636,"to":639,"sanitized":210},{"from":642,"to":645,"sanitized":210},{"from":645,"to":648,"sanitized":210},{"from":653,"to":656,"sanitized":210},{"from":656,"to":659,"sanitized":210},{"entryPoint":881,"graph":882,"unsanitizedCount":117,"severity":66},"\u003Cbmp-hook-functions> (includes\\bmp-hook-functions.php:0)",{"nodes":883,"edges":1044},[884,885,886,888,889,890,891,892,893,895,896,898,899,901,903,905,907,909,912,914,917,919,921,923,925,927,929,931,933,935,937,939,941,943,945,947,949,951,953,956,959,962,965,968,971,973,975,977,979,981,983,986,989,992,994,996,998,1001,1004,1007,1011,1014,1017,1020,1023,1026,1029,1032,1035,1038,1041],{"id":520,"type":521,"label":588,"file":276,"line":707},{"id":525,"type":526,"label":562,"file":276,"line":709,"wp_function":564},{"id":566,"type":521,"label":887,"file":276,"line":754},"$_GET (x29)",{"id":568,"type":526,"label":527,"file":276,"line":756,"wp_function":528},{"id":627,"type":521,"label":522,"file":276,"line":772},{"id":630,"type":526,"label":721,"file":276,"line":774,"wp_function":723},{"id":633,"type":521,"label":537,"file":276,"line":538},{"id":636,"type":526,"label":527,"file":276,"line":484,"wp_function":528},{"id":639,"type":521,"label":894,"file":276,"line":811},"$_POST (x5)",{"id":642,"type":526,"label":562,"file":276,"line":813,"wp_function":564},{"id":645,"type":521,"label":522,"file":276,"line":897},1344,{"id":648,"type":526,"label":649,"file":276,"line":818,"wp_function":651},{"id":653,"type":521,"label":900,"file":276,"line":811},"$_POST (x12)",{"id":656,"type":526,"label":649,"file":276,"line":902,"wp_function":651},1667,{"id":659,"type":521,"label":904,"file":276,"line":811},"$_POST (x6)",{"id":906,"type":526,"label":550,"file":276,"line":821,"wp_function":552},"n15",{"id":908,"type":521,"label":547,"file":276,"line":560},"n16",{"id":910,"type":526,"label":721,"file":276,"line":911,"wp_function":723},"n17",2014,{"id":913,"type":521,"label":588,"file":276,"line":897},"n18",{"id":915,"type":526,"label":550,"file":276,"line":916,"wp_function":552},"n19",2098,{"id":918,"type":521,"label":588,"file":276,"line":717},"n20",{"id":920,"type":618,"label":719,"file":276,"line":717},"n21",{"id":922,"type":526,"label":721,"file":276,"line":722,"wp_function":723},"n22",{"id":924,"type":521,"label":588,"file":276,"line":732},"n23",{"id":926,"type":618,"label":734,"file":276,"line":732},"n24",{"id":928,"type":526,"label":721,"file":276,"line":736,"wp_function":723},"n25",{"id":930,"type":521,"label":588,"file":276,"line":738},"n26",{"id":932,"type":618,"label":740,"file":276,"line":738},"n27",{"id":934,"type":526,"label":721,"file":276,"line":742,"wp_function":723},"n28",{"id":936,"type":521,"label":588,"file":276,"line":758},"n29",{"id":938,"type":618,"label":760,"file":276,"line":758},"n30",{"id":940,"type":526,"label":721,"file":276,"line":762,"wp_function":723},"n31",{"id":942,"type":521,"label":588,"file":276,"line":788},"n32",{"id":944,"type":618,"label":790,"file":276,"line":788},"n33",{"id":946,"type":526,"label":550,"file":276,"line":792,"wp_function":552},"n34",{"id":948,"type":521,"label":588,"file":276,"line":430},"n35",{"id":950,"type":618,"label":795,"file":276,"line":430},"n36",{"id":952,"type":526,"label":562,"file":276,"line":797,"wp_function":564},"n37",{"id":954,"type":521,"label":588,"file":276,"line":955},"n38",1440,{"id":957,"type":618,"label":958,"file":276,"line":955},"n39","→ bmp_user_payout_detail_of_current_user()",{"id":960,"type":526,"label":721,"file":276,"line":961,"wp_function":723},"n40",833,{"id":963,"type":521,"label":588,"file":276,"line":964},"n41",1441,{"id":966,"type":618,"label":967,"file":276,"line":964},"n42","→ bmp_user_referral_commission_data()",{"id":969,"type":526,"label":721,"file":276,"line":970,"wp_function":723},"n43",824,{"id":972,"type":521,"label":810,"file":276,"line":823},"n44",{"id":974,"type":618,"label":825,"file":276,"line":823},"n45",{"id":976,"type":526,"label":562,"file":276,"line":827,"wp_function":564},"n46",{"id":978,"type":521,"label":810,"file":276,"line":829},"n47",{"id":980,"type":618,"label":831,"file":276,"line":829},"n48",{"id":982,"type":526,"label":562,"file":276,"line":833,"wp_function":564},"n49",{"id":984,"type":521,"label":522,"file":276,"line":985},"n50",1706,{"id":987,"type":618,"label":988,"file":276,"line":985},"n51","→ bmp_insert_refferal_commision()",{"id":990,"type":526,"label":649,"file":276,"line":991,"wp_function":651},"n52",367,{"id":993,"type":521,"label":547,"file":276,"line":857},"n53",{"id":995,"type":618,"label":859,"file":276,"line":857},"n54",{"id":997,"type":526,"label":562,"file":276,"line":861,"wp_function":564},"n55",{"id":999,"type":521,"label":547,"file":276,"line":1000},"n56",2046,{"id":1002,"type":618,"label":1003,"file":276,"line":1000},"n57","→ bmp_level_based_childs()",{"id":1005,"type":526,"label":721,"file":276,"line":1006,"wp_function":723},"n58",1999,{"id":1008,"type":521,"label":1009,"file":276,"line":1010},"n59","$_GET (x3)",2106,{"id":1012,"type":618,"label":1013,"file":276,"line":1010},"n60","→ bmp_getUsername()",{"id":1015,"type":526,"label":562,"file":276,"line":1016,"wp_function":564},"n61",278,{"id":1018,"type":521,"label":588,"file":276,"line":1019},"n62",2113,{"id":1021,"type":618,"label":1022,"file":276,"line":1019},"n63","→ bmp_get_sum_commissionamount()",{"id":1024,"type":526,"label":562,"file":276,"line":1025,"wp_function":564},"n64",648,{"id":1027,"type":521,"label":588,"file":276,"line":1028},"n65",2115,{"id":1030,"type":618,"label":1031,"file":276,"line":1028},"n66","→ bmp_downlines()",{"id":1033,"type":526,"label":562,"file":276,"line":1034,"wp_function":564},"n67",2006,{"id":1036,"type":521,"label":588,"file":276,"line":1037},"n68",2122,{"id":1039,"type":618,"label":1040,"file":276,"line":1037},"n69","→ bmp_get_childs_data()",{"id":1042,"type":526,"label":721,"file":276,"line":1043,"wp_function":723},"n70",2131,[1045,1046,1047,1048,1049,1050,1051,1052,1053,1054,1055,1056,1057,1058,1059,1060,1061,1062,1063,1064,1065,1066,1067,1068,1069,1070,1071,1072,1073,1074,1075,1076,1077,1078,1079,1080,1081,1082,1083,1084,1085,1086,1087,1088],{"from":520,"to":525,"sanitized":214},{"from":566,"to":568,"sanitized":214},{"from":627,"to":630,"sanitized":214},{"from":633,"to":636,"sanitized":214},{"from":639,"to":642,"sanitized":214},{"from":645,"to":648,"sanitized":214},{"from":653,"to":656,"sanitized":214},{"from":659,"to":906,"sanitized":214},{"from":908,"to":910,"sanitized":214},{"from":913,"to":915,"sanitized":214},{"from":918,"to":920,"sanitized":210},{"from":920,"to":922,"sanitized":210},{"from":924,"to":926,"sanitized":210},{"from":926,"to":928,"sanitized":210},{"from":930,"to":932,"sanitized":210},{"from":932,"to":934,"sanitized":210},{"from":936,"to":938,"sanitized":210},{"from":938,"to":940,"sanitized":210},{"from":942,"to":944,"sanitized":210},{"from":944,"to":946,"sanitized":210},{"from":948,"to":950,"sanitized":210},{"from":950,"to":952,"sanitized":210},{"from":954,"to":957,"sanitized":210},{"from":957,"to":960,"sanitized":210},{"from":963,"to":966,"sanitized":210},{"from":966,"to":969,"sanitized":210},{"from":972,"to":974,"sanitized":210},{"from":974,"to":976,"sanitized":210},{"from":978,"to":980,"sanitized":210},{"from":980,"to":982,"sanitized":210},{"from":984,"to":987,"sanitized":210},{"from":987,"to":990,"sanitized":210},{"from":993,"to":995,"sanitized":210},{"from":995,"to":997,"sanitized":210},{"from":999,"to":1002,"sanitized":210},{"from":1002,"to":1005,"sanitized":210},{"from":1008,"to":1012,"sanitized":210},{"from":1012,"to":1015,"sanitized":210},{"from":1018,"to":1021,"sanitized":210},{"from":1021,"to":1024,"sanitized":210},{"from":1027,"to":1030,"sanitized":210},{"from":1030,"to":1033,"sanitized":210},{"from":1036,"to":1039,"sanitized":210},{"from":1039,"to":1042,"sanitized":210},{"summary":1090,"deductions":1091},"The \"binary-mlm-plan\" plugin v5.1 exhibits a mixed security posture. While it demonstrates good practices in SQL query sanitization (96% prepared statements) and output escaping (82%), significant concerns arise from its attack surface and taint analysis. A large portion of its AJAX handlers (14 out of 14) are exposed without authentication checks, presenting a substantial risk for unauthorized actions. The taint analysis reveals 11 high-severity flows with unsanitized paths, indicating potential vulnerabilities that could be exploited if user input is not properly validated before being used in sensitive operations. The plugin's vulnerability history, including one currently unpatched high-severity CVE and past issues like SQL injection and authorization bypass, further exacerbates these concerns. This history suggests a recurring pattern of security flaws that have not been fully remediated. The plugin's strengths lie in its careful handling of SQL queries and output, but the numerous unprotected entry points and critical taint flows, coupled with a history of vulnerabilities, paint a picture of a plugin that requires immediate attention to address its significant security weaknesses.",[1092,1094,1096,1098,1101],{"reason":1093,"points":90},"Unprotected AJAX handlers",{"reason":1095,"points":220},"High severity taint flows",{"reason":1097,"points":126},"Unpatched high severity CVE",{"reason":1099,"points":1100},"Bundled outdated library",4,{"reason":1102,"points":77},"Low capability check coverage","2026-03-16T22:16:54.313Z",{"wat":1105,"direct":1122},{"assetPaths":1106,"generatorPatterns":1119,"scriptPaths":1120,"versionParams":1121},[1107,1108,1109,1110,1111,1112,1113,1114,1115,1116,1117,1118],"\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fcss\u002Fadmin\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fcss\u002Fbootstrap.css","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Ffontawesome\u002Fcss\u002Fall.min.css","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fjs\u002Fadmin\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fjs\u002Fbootstrap.js","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Ffontawesome\u002Fjs\u002Fall.min.js","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fdatatable\u002Fdatatables.css","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fdatatable\u002Fdatatables.js","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fjs\u002FdataTable.js","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fjs\u002Fgenealogy\u002Fgenealogy.css","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fjs\u002Fgenealogy\u002Fgenealogy_boot.js","\u002Fwp-content\u002Fplugins\u002Fbinary-mlm-plan\u002Fassets\u002Fjs\u002Fgenealogy\u002Fgenealogy_main.js",[],[1110,1111,1112,1114,1115,1117,1118],[],{"cssClasses":1123,"htmlComments":1133,"htmlAttributes":1137,"restEndpoints":1143,"jsGlobals":1144,"shortcodeOutput":1146},[1124,1125,1126,1127,1128,1129,1130,1131,1132],"bmp_admin_styles","bmp_admin_bootstrap","bmp_fs_css","bmp_dataTable_css","bmp_dataTable_js","bmp_dataTable","bmp_admin_gene_css","bmp-genboot-js","bmp-gen-js",[1134,1135,1136],"\u003C!-- INSERT INTO PAYOUT TABLE -->","\u003C!-- BMP PRO Add new members -->","\u003C!-- BMP PRO Genealogy Tree -->",[1138,1139,1140,1141,1142],"data-bs-toggle","data-bs-target","data-bs-dismiss","data-bs-backdrop","data-bs-keyboard",[],[1145],"genealogy_data",[]]