[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_lsld3XZ2nVxBhaYbYtIvjjivkWOo5FGsQ9cA_cWFTs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":14,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":68,"crawl_stats":34,"alternatives":74,"analysis":172,"fingerprints":501},"bmi-adultkid-calculator","BMI Adult & Kid Calculator","1.2.2","Mortgage Calculator","https:\u002F\u002Fprofiles.wordpress.org\u002Frmcalculator\u002F","\u003Cp>The most complete free BMI calculator for WordPress with built-in translations and as the only plugin we include BMI calculation for adults and children based on the WHO BMI classification.\u003C\u002Fp>\n","We have developed a free Wordpress plugin with our BMI Calculator that you can use completely free of charge.",800,7859,100,2,"2024-07-31T13:24:00.000Z","6.5.8","4.8","5.6",[20,21],"bmi","health","https:\u002F\u002Fwww.calculator.io\u002Fbmi-calculator\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbmi-adultkid-calculator.1.2.2.zip",47,3,"2025-09-22 00:00:00","2026-03-15T15:16:48.613Z",[29,43,54],{"id":30,"url_slug":31,"title":32,"description":33,"plugin_slug":4,"theme_slug":34,"affected_versions":35,"patched_in_version":34,"severity":36,"cvss_score":37,"cvss_vector":38,"vuln_type":39,"published_date":26,"updated_date":40,"references":41,"days_to_patch":34},"CVE-2025-53469","bmi-adult-kid-calculator-authenticated-administrator-stored-cross-site-scripting","BMI Adult & Kid Calculator \u003C= 1.2.2 - Authenticated (Administrator+) Stored Cross-Site Scripting","The BMI Adult & Kid Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=1.2.2","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-09-26 14:02:08",[42],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa37f049d-e704-4139-b311-51acbd373df7?source=api-prod",{"id":44,"url_slug":45,"title":46,"description":47,"plugin_slug":4,"theme_slug":34,"affected_versions":35,"patched_in_version":34,"severity":36,"cvss_score":48,"cvss_vector":49,"vuln_type":39,"published_date":50,"updated_date":51,"references":52,"days_to_patch":34},"CVE-2025-47618","bmi-adult-kid-calculator-reflected-cross-site-scripting","BMI Adult & Kid Calculator \u003C= 1.2.2 - Reflected Cross-Site Scripting","The BMI Adult & Kid Calculator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2025-05-08 00:00:00","2025-05-13 14:04:16",[53],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fd6fcec03-4782-467a-ab8d-1c775ab40d3f?source=api-prod",{"id":55,"url_slug":56,"title":57,"description":58,"plugin_slug":4,"theme_slug":34,"affected_versions":59,"patched_in_version":6,"severity":36,"cvss_score":60,"cvss_vector":61,"vuln_type":62,"published_date":63,"updated_date":64,"references":65,"days_to_patch":67},"CVE-2024-32550","bmi-adult-kid-calculator-cross-site-request-forgery-to-cross-site-scripting","BMI Adult & Kid Calculator  \u003C= 1.2.1 - Cross-Site Request Forgery to Cross-Site Scripting","The BMI Adult & Kid Calculator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. This is due to missing or incorrect nonce validation on several AJAX functions. This makes it possible for unauthenticated attackers to inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=1.2.1",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2024-04-15 00:00:00","2024-04-23 13:44:05",[66],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fed494a5a-2edf-43c9-a88a-331448c4e6d7?source=api-prod",9,{"slug":69,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":70,"avg_security_score":71,"avg_patch_time_days":67,"trust_score":72,"computed_at":73},"rmcalculator",1800,70,73,"2026-04-04T02:31:08.353Z",[75,96,114,133,150],{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":13,"downloaded":83,"rating":13,"num_ratings":14,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":92,"download_link":93,"security_score":94,"vuln_count":95,"unpatched_count":95,"last_vuln_date":34,"fetched_at":27},"bmi-imc-calculator","BMI \u002F IMC Calculator","1.1","solokco","https:\u002F\u002Fprofiles.wordpress.org\u002Fsolokco\u002F","\u003Ch4>ENGLISH\u003C\u002Fh4>\n\u003Cp>This is a basic calculator that displays the users BMI (Body Mass Index) depending on their Height and Weight\u003C\u002Fp>\n\u003Cp>You can select to display the input options as\u003Cbr \u002F>\n* Metric (Centimeters and Kilograms)\u003Cbr \u002F>\n*Imperial (Inches and Pounds)\u003C\u002Fp>\n\u003Cp>It’s easy to configure different options from the wordpress panel\u003C\u002Fp>\n\u003Ch4>SPANISH\u003C\u002Fh4>\n\u003Cp>Esta es una calculadora sencilla que muestra el IMC (Indice de Masa Corporal) de los usuarios dependiendo de su Peso y Altura\u003C\u002Fp>\n\u003Cp>Puedes seleccionar mostrar el formulario en\u003Cbr \u002F>\n*Sistema métrico (Centímetros y Kilogramos)\u003Cbr \u002F>\n*Sistema imperial (Pulgadas y Libras)\u003C\u002Fp>\n\u003Cp>Fácil de configurar desde el panel de wordpress\u003C\u002Fp>\n","A simple calculator to show your users BMI (Body Mass Index)",9465,"2015-01-12T20:13:00.000Z","4.1.42","4.0","",[20,89,21,90,91],"calculator","imc","weight","http:\u002F\u002Festoesweb.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbmi-imc-calculator.zip",85,0,{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":95,"num_ratings":95,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":112,"download_link":113,"security_score":94,"vuln_count":95,"unpatched_count":95,"last_vuln_date":34,"fetched_at":27},"responsive-bmi-calculator","Responsive BMI Calculator","2.0","guelben","https:\u002F\u002Fprofiles.wordpress.org\u002Fguelben\u002F","\u003Cp>A BMI (Body Mass Index) calculator free and easy to use. It is responsive and adjusts to any size of screen. The user receives his BMI and medical advices according to the World Health Organization. You can insert it using a widget or a shortcode. You can customize its appearence at the settings page.\u003C\u002Fp>\n","A BMI (Body Mass Index) calculator, free, responsive and easy to use. The user receives his BMI and medical advices according to the World Health Orga &hellip;",50,3301,"2021-01-22T12:08:00.000Z","5.5.18","2.7","5.2.4",[20,111,89,21],"bmi-calculator","https:\u002F\u002Fgithub.com\u002Fmonkcoder81\u002FResponsive-BMI-calculator","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fresponsive-bmi-calculator.2.0.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":95,"num_ratings":95,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":130,"download_link":131,"security_score":132,"vuln_count":95,"unpatched_count":95,"last_vuln_date":34,"fetched_at":27},"simple-bmi-form","Simple BMI Form","1.0.15","Peter Lawrenson","https:\u002F\u002Fprofiles.wordpress.org\u002Florro\u002F","\u003Cp>Simple BMI calculator form. The visitor may select Imperial, US or Metric units. Works as a sidebar widget or in content using a shortcode. Translation ready.\u003C\u002Fp>\n","BMI calculator form. The visitor may select Imperial, US or Metric units.",40,2182,"2024-12-02T00:12:00.000Z","6.7.5","6.0","7.4",[20,21,129,91],"obesity","http:\u002F\u002Fwww.topcode.co.uk\u002Fdevelopments\u002Fsimple-bmi-form\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-bmi-form.1.0.15.zip",92,{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":95,"num_ratings":95,"last_updated":143,"tested_up_to":144,"requires_at_least":145,"requires_php":127,"tags":146,"homepage":148,"download_link":149,"security_score":13,"vuln_count":95,"unpatched_count":95,"last_vuln_date":34,"fetched_at":27},"fitcalc-bmi-calculator","FitCalc – BMI Calculator","1.0.7","Adnan Shahid","https:\u002F\u002Fprofiles.wordpress.org\u002Fadnanthemes\u002F","\u003Cp>FitCalc is a simple BMI calculator supporting Metric (cm, kg) and Imperial (ft\u002Fin, lbs) units. Accessible, responsive, translation ready.\u003C\u002Fp>\n","Lightweight BMI calculator with Metric and Imperial units. Use the shortcode [fitcalc_bmi].",20,233,"2025-08-20T21:13:00.000Z","6.8.5","5.2",[20,89,147,21,91],"fitness","https:\u002F\u002Fadnanthemes.com\u002Fplugins\u002Ffitcalc\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffitcalc-bmi-calculator.zip",{"slug":151,"name":152,"version":153,"author":154,"author_profile":155,"description":156,"short_description":157,"active_installs":158,"downloaded":159,"rating":160,"num_ratings":161,"last_updated":162,"tested_up_to":163,"requires_at_least":164,"requires_php":18,"tags":165,"homepage":166,"download_link":167,"security_score":168,"vuln_count":169,"unpatched_count":170,"last_vuln_date":171,"fetched_at":27},"health-check","Health Check & Troubleshooting","1.7.1","WordPress.org","https:\u002F\u002Fprofiles.wordpress.org\u002Fwordpressdotorg\u002F","\u003Cp>This plugin will perform a number of checks on your WordPress installation to detect common configuration errors and known issues, and also allows plugins and themes to add their own checks.\u003C\u002Fp>\n\u003Cp>The debug section, which allows you to gather information about your WordPress and server configuration that you may easily share with support representatives for themes, plugins or on the official WordPress.org support forums.\u003C\u002Fp>\n\u003Cp>Troubleshooting allows you to have a clean WordPress session, where all plugins are disabled, and a default theme is used, but only for your user until you disable it or log out.\u003C\u002Fp>\n\u003Cp>The Tools section allows you to check that WordPress files have not been tampered with, that emails can be sent, and if your plugins are compatible with any PHP version updates in the future.\u003C\u002Fp>\n\u003Cp>For a more extensive example of how to efficiently use the Health Check plugin, check out the \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fsupport\u002Fhandbook\u002Fappendix\u002Ftroubleshooting-using-the-health-check\u002F\" rel=\"nofollow ugc\">WordPress.org support team handbook page about this plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Feedback is welcome both through the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fhealth-check\" rel=\"ugc\">WordPress.org forums\u003C\u002Fa>, the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWordPress\u002Fhealth-check\" rel=\"nofollow ugc\">GitHub project page\u003C\u002Fa>, or on \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fchat\" rel=\"nofollow ugc\">Slack\u003C\u002Fa> in either \u003Ca href=\"https:\u002F\u002Fwordpress.slack.com\u002Fmessages\u002Fforums\u002F\" rel=\"nofollow ugc\">#forums\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fwordpress.slack.com\u002Fmessages\u002Fcore-site-health\u002F\" rel=\"nofollow ugc\">#core-site-health\u003C\u002Fa>.\u003C\u002Fp>\n","Health Check identifies common problems, and helps you troubleshoot plugin and theme conflicts.",300000,5255588,72,179,"2024-07-25T21:43:00.000Z","6.6.5","4.4",[151],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhealth-check\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhealth-check.1.7.1.zip",57,5,1,"2025-12-15 00:00:00",{"attackSurface":173,"codeSignals":214,"taintFlows":287,"riskAssessment":487,"analyzedAt":500},{"hooks":174,"ajaxHandlers":189,"restRoutes":204,"shortcodes":205,"cronEvents":212,"entryPointCount":213,"unprotectedCount":95},[175,181,185],{"type":176,"name":177,"callback":178,"file":179,"line":180},"action","admin_menu","BMIAKC_bmi_add_pagesUser","bmi-adultkid-calculator.php",3327,{"type":176,"name":182,"callback":183,"file":179,"line":184},"admin_enqueue_scripts","BMIAKC_admin_style",3785,{"type":176,"name":186,"callback":187,"file":179,"line":188},"wp_enqueue_scripts","BMIAKC_enqueue_style",3790,[190,195,198,201],{"action":191,"nopriv":192,"callback":191,"hasNonce":193,"hasCapCheck":193,"file":179,"line":194},"BMIAKC_delete_lang_bmi_calc",false,true,3044,{"action":196,"nopriv":192,"callback":196,"hasNonce":193,"hasCapCheck":193,"file":179,"line":197},"BMIAKC_edit_visual_bmi_calc",3130,{"action":199,"nopriv":192,"callback":199,"hasNonce":193,"hasCapCheck":193,"file":179,"line":200},"BMIAKC_edit_lang_bmi_calc",3168,{"action":202,"nopriv":192,"callback":202,"hasNonce":193,"hasCapCheck":193,"file":179,"line":203},"BMIAKC_save_new_bmi_lang",3280,[],[206,209],{"tag":207,"callback":207,"file":179,"line":208},"BMIAKC_adult_calc",969,{"tag":210,"callback":210,"file":179,"line":211},"BMIAKC_kid_calc",3043,[],6,{"dangerousFunctions":215,"sqlUsage":216,"outputEscaping":218,"fileOperations":95,"externalRequests":95,"nonceChecks":285,"capabilityChecks":285,"bundledLibraries":286},[],{"prepared":95,"raw":95,"locations":217},[],{"escaped":219,"rawEcho":220,"locations":221},1726,31,[222,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,259,261,263,265,267,269,271,273,275,277,279,281,283],{"file":179,"line":223,"context":224},62,"raw output",{"file":179,"line":226,"context":224},63,{"file":179,"line":228,"context":224},64,{"file":179,"line":230,"context":224},65,{"file":179,"line":232,"context":224},156,{"file":179,"line":234,"context":224},329,{"file":179,"line":236,"context":224},457,{"file":179,"line":238,"context":224},596,{"file":179,"line":240,"context":224},864,{"file":179,"line":242,"context":224},1507,{"file":179,"line":244,"context":224},1508,{"file":179,"line":246,"context":224},1509,{"file":179,"line":248,"context":224},1510,{"file":179,"line":250,"context":224},1587,{"file":179,"line":252,"context":224},1829,{"file":179,"line":254,"context":224},2059,{"file":179,"line":256,"context":224},2255,{"file":179,"line":258,"context":224},2630,{"file":179,"line":260,"context":224},2832,{"file":179,"line":262,"context":224},3528,{"file":179,"line":264,"context":224},3529,{"file":179,"line":266,"context":224},3530,{"file":179,"line":268,"context":224},3531,{"file":179,"line":270,"context":224},3662,{"file":179,"line":272,"context":224},3682,{"file":179,"line":274,"context":224},3693,{"file":179,"line":276,"context":224},3719,{"file":179,"line":278,"context":224},3721,{"file":179,"line":280,"context":224},3725,{"file":179,"line":282,"context":224},3727,{"file":179,"line":284,"context":224},3763,4,[],[288,355,408,421,432],{"entryPoint":289,"graph":290,"unsanitizedCount":95,"severity":354},"BMIAKC_adult_calc (bmi-adultkid-calculator.php:33)",{"nodes":291,"edges":345},[292,297,303,307,309,313,315,319,321,325,327,331,333,337,339,343],{"id":293,"type":294,"label":295,"file":179,"line":296},"n0","source","$_GET",49,{"id":298,"type":299,"label":300,"file":179,"line":301,"wp_function":302},"n1","sink","echo() [XSS]",396,"echo",{"id":304,"type":294,"label":305,"file":179,"line":306},"n2","$_GET['units']",938,{"id":308,"type":299,"label":300,"file":179,"line":306,"wp_function":302},"n3",{"id":310,"type":294,"label":311,"file":179,"line":312},"n4","$_GET['height'] (x3)",939,{"id":314,"type":299,"label":300,"file":179,"line":312,"wp_function":302},"n5",{"id":316,"type":294,"label":317,"file":179,"line":318},"n6","$_GET['weight'] (x3)",940,{"id":320,"type":299,"label":300,"file":179,"line":318,"wp_function":302},"n7",{"id":322,"type":294,"label":323,"file":179,"line":324},"n8","$_GET['ft']",946,{"id":326,"type":299,"label":300,"file":179,"line":324,"wp_function":302},"n9",{"id":328,"type":294,"label":329,"file":179,"line":330},"n10","$_GET['in']",947,{"id":332,"type":299,"label":300,"file":179,"line":330,"wp_function":302},"n11",{"id":334,"type":294,"label":335,"file":179,"line":336},"n12","$_GET['lb']",948,{"id":338,"type":299,"label":300,"file":179,"line":336,"wp_function":302},"n13",{"id":340,"type":294,"label":341,"file":179,"line":342},"n14","$_GET['st']",949,{"id":344,"type":299,"label":300,"file":179,"line":342,"wp_function":302},"n15",[346,347,348,349,350,351,352,353],{"from":293,"to":298,"sanitized":193},{"from":304,"to":308,"sanitized":193},{"from":310,"to":314,"sanitized":193},{"from":316,"to":320,"sanitized":193},{"from":322,"to":326,"sanitized":193},{"from":328,"to":332,"sanitized":193},{"from":334,"to":338,"sanitized":193},{"from":340,"to":344,"sanitized":193},"low",{"entryPoint":356,"graph":357,"unsanitizedCount":95,"severity":354},"BMIAKC_kid_calc (bmi-adultkid-calculator.php:971)",{"nodes":358,"edges":397},[359,362,364,367,368,371,372,374,375,377,378,380,381,383,384,386,387,390,392,395],{"id":293,"type":294,"label":360,"file":179,"line":361},"$_GET (x2)",989,{"id":298,"type":299,"label":300,"file":179,"line":363,"wp_function":302},1900,{"id":304,"type":294,"label":365,"file":179,"line":366},"$_GET['age'] (x2)",2987,{"id":308,"type":299,"label":300,"file":179,"line":366,"wp_function":302},{"id":310,"type":294,"label":369,"file":179,"line":370},"$_GET['month'] (x2)",2988,{"id":314,"type":299,"label":300,"file":179,"line":370,"wp_function":302},{"id":316,"type":294,"label":305,"file":179,"line":373},2994,{"id":320,"type":299,"label":300,"file":179,"line":373,"wp_function":302},{"id":322,"type":294,"label":311,"file":179,"line":376},2998,{"id":326,"type":299,"label":300,"file":179,"line":376,"wp_function":302},{"id":328,"type":294,"label":317,"file":179,"line":379},2999,{"id":332,"type":299,"label":300,"file":179,"line":379,"wp_function":302},{"id":334,"type":294,"label":323,"file":179,"line":382},3012,{"id":338,"type":299,"label":300,"file":179,"line":382,"wp_function":302},{"id":340,"type":294,"label":329,"file":179,"line":385},3013,{"id":344,"type":299,"label":300,"file":179,"line":385,"wp_function":302},{"id":388,"type":294,"label":335,"file":179,"line":389},"n16",3014,{"id":391,"type":299,"label":300,"file":179,"line":389,"wp_function":302},"n17",{"id":393,"type":294,"label":341,"file":179,"line":394},"n18",3015,{"id":396,"type":299,"label":300,"file":179,"line":394,"wp_function":302},"n19",[398,399,400,401,402,403,404,405,406,407],{"from":293,"to":298,"sanitized":193},{"from":304,"to":308,"sanitized":193},{"from":310,"to":314,"sanitized":193},{"from":316,"to":320,"sanitized":193},{"from":322,"to":326,"sanitized":193},{"from":328,"to":332,"sanitized":193},{"from":334,"to":338,"sanitized":193},{"from":340,"to":344,"sanitized":193},{"from":388,"to":391,"sanitized":193},{"from":393,"to":396,"sanitized":193},{"entryPoint":409,"graph":410,"unsanitizedCount":95,"severity":354},"BMIAKC_edit_visual_bmi_calc (bmi-adultkid-calculator.php:3131)",{"nodes":411,"edges":419},[412,415],{"id":293,"type":294,"label":413,"file":179,"line":414},"$_POST (x4)",3136,{"id":298,"type":299,"label":416,"file":179,"line":417,"wp_function":418},"update_option() [Settings Manipulation]",3140,"update_option",[420],{"from":293,"to":298,"sanitized":193},{"entryPoint":422,"graph":423,"unsanitizedCount":95,"severity":354},"BMIAKC_edit_lang_bmi_calc (bmi-adultkid-calculator.php:3169)",{"nodes":424,"edges":430},[425,428],{"id":293,"type":294,"label":426,"file":179,"line":427},"$_POST (x57)",3174,{"id":298,"type":299,"label":300,"file":179,"line":429,"wp_function":302},3177,[431],{"from":293,"to":298,"sanitized":193},{"entryPoint":433,"graph":434,"unsanitizedCount":95,"severity":354},"\u003Cbmi-adultkid-calculator> (bmi-adultkid-calculator.php:0)",{"nodes":435,"edges":474},[436,438,439,441,442,444,445,447,448,450,451,453,454,456,457,459,460,461,462,463,464,467,469,472],{"id":293,"type":294,"label":437,"file":179,"line":296},"$_GET (x3)",{"id":298,"type":299,"label":300,"file":179,"line":301,"wp_function":302},{"id":304,"type":294,"label":440,"file":179,"line":306},"$_GET['units'] (x2)",{"id":308,"type":299,"label":300,"file":179,"line":306,"wp_function":302},{"id":310,"type":294,"label":443,"file":179,"line":312},"$_GET['height'] (x6)",{"id":314,"type":299,"label":300,"file":179,"line":312,"wp_function":302},{"id":316,"type":294,"label":446,"file":179,"line":318},"$_GET['weight'] (x6)",{"id":320,"type":299,"label":300,"file":179,"line":318,"wp_function":302},{"id":322,"type":294,"label":449,"file":179,"line":324},"$_GET['ft'] (x2)",{"id":326,"type":299,"label":300,"file":179,"line":324,"wp_function":302},{"id":328,"type":294,"label":452,"file":179,"line":330},"$_GET['in'] (x2)",{"id":332,"type":299,"label":300,"file":179,"line":330,"wp_function":302},{"id":334,"type":294,"label":455,"file":179,"line":336},"$_GET['lb'] (x2)",{"id":338,"type":299,"label":300,"file":179,"line":336,"wp_function":302},{"id":340,"type":294,"label":458,"file":179,"line":342},"$_GET['st'] (x2)",{"id":344,"type":299,"label":300,"file":179,"line":342,"wp_function":302},{"id":388,"type":294,"label":365,"file":179,"line":366},{"id":391,"type":299,"label":300,"file":179,"line":366,"wp_function":302},{"id":393,"type":294,"label":369,"file":179,"line":370},{"id":396,"type":299,"label":300,"file":179,"line":370,"wp_function":302},{"id":465,"type":294,"label":466,"file":179,"line":414},"n20","$_POST (x6)",{"id":468,"type":299,"label":416,"file":179,"line":417,"wp_function":418},"n21",{"id":470,"type":294,"label":471,"file":179,"line":427},"n22","$_POST (x59)",{"id":473,"type":299,"label":300,"file":179,"line":429,"wp_function":302},"n23",[475,476,477,478,479,480,481,482,483,484,485,486],{"from":293,"to":298,"sanitized":193},{"from":304,"to":308,"sanitized":193},{"from":310,"to":314,"sanitized":193},{"from":316,"to":320,"sanitized":193},{"from":322,"to":326,"sanitized":193},{"from":328,"to":332,"sanitized":193},{"from":334,"to":338,"sanitized":193},{"from":340,"to":344,"sanitized":193},{"from":388,"to":391,"sanitized":193},{"from":393,"to":396,"sanitized":193},{"from":465,"to":468,"sanitized":193},{"from":470,"to":473,"sanitized":193},{"summary":488,"deductions":489},"The \"bmi-adultkid-calculator\" plugin v1.2.2 exhibits a mixed security posture. On the positive side, the static analysis reveals strong adherence to secure coding practices, with no dangerous functions, all SQL queries using prepared statements, and an exceptionally high rate of output escaping. The plugin also correctly implements nonce and capability checks on its AJAX handlers, and there are no identified critical or high severity taint flows. However, the plugin's vulnerability history is a significant concern. With three known CVEs, two of which remain unpatched, and common vulnerability types including Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF), this indicates a recurring pattern of security weaknesses. The most recent vulnerability being in late 2025 further suggests ongoing issues.\n\nWhile the current version's code appears to be cleaner than in the past, the history of exploitable vulnerabilities, particularly XSS and CSRF, suggests that developers may struggle with thoroughly sanitizing user inputs or correctly implementing security measures across all code paths. The presence of unpatched vulnerabilities, even if medium severity, represents a direct and actionable risk to WordPress sites running this plugin. Therefore, despite the improvements in static analysis findings for this specific version, the historical context strongly advises caution.",[490,492,495,498],{"reason":491,"points":141},"Two unpatched CVEs found",{"reason":493,"points":494},"Medium severity vulnerabilities in history (3 total)",15,{"reason":496,"points":497},"History of XSS vulnerabilities",10,{"reason":499,"points":497},"History of CSRF vulnerabilities","2026-03-16T19:17:06.889Z",{"wat":502,"direct":510},{"assetPaths":503,"generatorPatterns":505,"scriptPaths":506,"versionParams":507},[504],"\u002Fwp-content\u002Fplugins\u002Fbmi-adultkid-calculator\u002Fimages\u002Fbmiberegner.png",[],[],[508,509],"bmi-adultkid-calculator\u002Fstyle.css?ver=","bmi-adultkid-calculator\u002Fbmi-adultkid-calculator.php?ver=",{"cssClasses":511,"htmlComments":527,"htmlAttributes":529,"restEndpoints":534,"jsGlobals":535,"shortcodeOutput":536},[512,513,514,515,516,517,518,519,520,521,522,523,524,525,526],"calc_wrapper","calc_header","calc_header_left","calc_header_title","calc_header_desc","calc_header_right","custom_flex_calc_wrapper","calc_data","toggle-switch","toggle-switch-slider","imperial_inputs","metric_inputs","button-group","radio-label","switcher_color",[528],"\u003C!-- If this file is called directly, abort. -->",[530,531,532,533],"id=\"calc_wrapper\"","name=\"units_checkbox\"","for=\"metric\"","for=\"imperial\"",[],[],[537],"\u003Cdiv class=\"calc_wrapper\" id=\"calc_wrapper\">"]