[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0ROYN2jGtUushMjYEnxrKzfoEHxCTrPMttvQIWyKQNM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":63,"crawl_stats":38,"alternatives":71,"analysis":172,"fingerprints":686},"bot-for-telegram-on-woocommerce","Bot for Telegram on WooCommerce","1.2.9","Guru Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fguruteam\u002F","\u003Cp>Bot for Telegram on WooCommerce\u003C\u002Fp>\n\u003Cp>🎉 Great news! We’ve added the Pro plugin features to our free plugin! 🚀 The Pro plugin is no longer supported — all those awesome features are now available for free! 🎁 If you were using the Pro version, make sure to deactivate it. 🙌\u003C\u002Fp>\n\u003Cp>Many sites on WordPress use eCommerce with WooCommerce. Nowadays we have a lot of trading platforms apart from WebSite. And one of them is Telegram, currently growing into powerful chat system with channels and automatic notices from bots.\u003C\u002Fp>\n\u003Cp>🟢 \u003Ca href=\"https:\u002F\u002Ft.me\u002FGuruWCTGBot\" rel=\"nofollow ugc\">Bot demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>🟢 \u003Ca href=\"https:\u002F\u002Fwp-guruteam.com\u002Fwoocommerce-telegram\u002F\" rel=\"nofollow ugc\">About plugin\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin will give you an opportunity to sell products via Telegram. All you need is to create bot and add it in the WooCommerce settings.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FyKAPhXAwXZI?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Supported product types\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple\u003C\u002Fli>\n\u003Cli>Grouped\u003C\u002Fli>\n\u003Cli>Affiliate\u003C\u002Fli>\n\u003Cli>Variable\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatic registration with phone number\u003C\u002Fli>\n\u003Cli>Synchronized cart between Telegram and WooCommerce\u003C\u002Fli>\n\u003Cli>NEW!!! Telegram Login\u003C\u002Fli>\n\u003Cli>Product catalog based on WP Rest API\u003C\u002Fli>\n\u003Cli>Native integration in WooCommerce settings with option to translate Telegram buttons from WordPress admin dashboard\u003C\u002Fli>\n\u003Cli>Automatic notice on order status change\u003C\u002Fli>\n\u003Cli>WooCommerce categories\u003C\u002Fli>\n\u003Cli>Fast Checkout\u003C\u002Fli>\n\u003Cli>My account section\u003C\u002Fli>\n\u003Cli>My orders section\u003C\u002Fli>\n\u003Cli>Order notifications on status changed\u003C\u002Fli>\n\u003Cli>Notification when new users are registered\u003C\u002Fli>\n\u003Cli>Parse user location\u003C\u002Fli>\n\u003Cli>Sending messages to all users of the bot\u003C\u002Fli>\n\u003Cli>Select categories to display in the bot\u003C\u002Fli>\n\u003Cli>Search products\u003C\u002Fli>\n\u003Cli>Custom Buttons\u003C\u002Fli>\n\u003Cli>Checkout in telegram (without redirect to the website)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New!!!\u003C\u002Fstrong> Web App setting in custom keyboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New!!!\u003C\u002Fstrong> Resend WooCommerce emails to Telegram\u003C\u002Fli>\n\u003C\u002Ful>\n","Bot for Telegram on WooCommerce is a plugin that allows you to create a telegram online store based on your website with WooCommerce.",300,15417,84,12,"2025-05-31T07:28:00.000Z","6.8.5","5.3","7.0",[20,21,22,23,24],"telegram-bot","telegram-login","telegram-notifications","telegram-shop","woocommerce-telegram-addon","https:\u002F\u002Fwp-guruteam.com\u002Fwoocommerce-telegram\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbot-for-telegram-on-woocommerce.1.2.9.zip",74,2,1,"2025-05-19 00:00:00","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-48268","bot-for-telegram-on-woocommerce-missing-authorization","Bot for Telegram on WooCommerce \u003C= 1.2.6 - Missing Authorization","The Bot for Telegram on WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.2.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform an unauthorized action.",null,"\u003C=1.2.6","1.2.7","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-05-28 15:17:12",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F68d168fb-9f28-48b2-a054-d279d4cd21c3?source=api-prod",10,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":38,"severity":55,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":60,"references":61,"days_to_patch":38},"CVE-2024-9821","bot-for-telegram-on-woocommerce-authenticated-subscriber-telegram-bot-token-disclosure-to-authentication-bypass","Bot for Telegram on WooCommerce \u003C= 1.2.7 - Authenticated (Subscriber+) Telegram Bot Token Disclosure to Authentication Bypass","The Bot for Telegram on WooCommerce plugin for WordPress is vulnerable to sensitive information disclosure due to missing authorization checks on the 'stm_wpcfto_get_settings' AJAX action in all versions up to, and including, 1.2.7.  This makes it possible for authenticated attackers, with subscriber-level access and above, to view the Telegram Bot Token, a secret token used to control the bot, which can then be used to log in as any existing user on the site, such as an administrator, if they know the username, due to the Login with Telegram feature.","\u003C=1.2.7","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Exposure of Sensitive Information to an Unauthorized Actor","2024-10-11 00:00:00","2025-05-16 14:53:50",[62],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa662c904-ba2e-494c-a603-b22eeeddf43d?source=api-prod",{"slug":64,"display_name":7,"profile_url":8,"plugin_count":65,"total_installs":66,"avg_security_score":67,"avg_patch_time_days":68,"trust_score":69,"computed_at":70},"guruteam",3,400,91,11,88,"2026-04-03T21:33:32.831Z",[72,96,114,137,157],{"slug":73,"name":74,"version":75,"author":7,"author_profile":8,"description":76,"short_description":77,"active_installs":78,"downloaded":79,"rating":80,"num_ratings":81,"last_updated":82,"tested_up_to":83,"requires_at_least":84,"requires_php":85,"tags":86,"homepage":91,"download_link":92,"security_score":93,"vuln_count":29,"unpatched_count":94,"last_vuln_date":95,"fetched_at":31},"site-chat-on-telegram","Site Chat on Telegram","1.1.2","\u003Cp>Site Chat on Telegram is a powerful and convenient WordPress plugin that allows you to integrate a support chat on your website with Telegram. With this plugin, your customers can easily send messages through the chat widget on your site, and administrators and support staff can quickly and efficiently respond to them directly in Telegram.\u003C\u002Fp>\n\u003Ch4>New Feature: AI Integration with OpenAI\u003C\u002Fh4>\n\u003Cp>We’ve added a powerful new feature to our WordPress support chat plugin!\u003Cbr \u002F>\nNow you can integrate OpenAI into your Telegram support workflow:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Custom System Prompt\u003C\u002Fstrong> – Define how the AI should respond by adding your own system prompt.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content-Aware Responses\u003C\u002Fstrong> – Select specific posts from your site to provide the AI with context when answering.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Seamless Human Handoff\u003C\u002Fstrong> – Easily switch the chat from AI to a human admin whenever needed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Unified Workflow\u003C\u002Fstrong> – Customers write in the website chat, messages are sent to Telegram, and now the AI can assist with instant replies.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This gives you a flexible way to combine human support with AI-powered assistance, improving response time and customer experience.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Instant Notifications:\u003C\u002Fstrong> Receive notifications of new chat messages on your website directly in Telegram.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AI Integration with OpenAI:\u003C\u002Fstrong> automated replies using custom system prompts and selected WordPress posts, with the option to hand over the chat to a human.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Integration:\u003C\u002Fstrong> Installing and configuring the plugin takes just a few minutes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User-Friendly Interface:\u003C\u002Fstrong> Intuitive interface for configuring and managing the chat.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible customisation of the widget display:\u003C\u002Fstrong> Specify the pages and post types where the support chat should be displayed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic response at the first request:\u003C\u002Fstrong> Automatic response to the first user query, ensuring quicker engagement and a better user experience.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customization Options:\u003C\u002Fstrong> Personalize the chat widget with your own colors, manager’s avatar, and welcome message.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Working hours:\u003C\u002Fstrong> Specify the days and hours when you are available to respond to clients.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security:\u003C\u002Fstrong> All messages are transmitted using a secure connection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-replies:\u003C\u002Fstrong> Add a list of keywords, and when a match is found, the user will receive an automatic message.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Install and activate the Site Chat on Telegram plugin on your WordPress site.\u003C\u002Fli>\n\u003Cli>Set up the integration with your Telegram account by following simple instructions.\u003C\u002Fli>\n\u003Cli>Customize the chat widget by selecting your own colors, manager’s avatar, and welcome message.\u003C\u002Fli>\n\u003Cli>Select where the plugin will be active (entire site, post types, taxonomies, specific posts, etc.)\u003C\u002Fli>\n\u003Cli>Start receiving and responding to customer messages in real-time directly from Telegram.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Benefits of Use\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Improved Customer Support:\u003C\u002Fstrong> Quick responses to customer inquiries will enhance their satisfaction.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reduced Response Time:\u003C\u002Fstrong> Instant notifications and the ability to reply from anywhere via Telegram.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Increased Efficiency:\u003C\u002Fstrong> Centralized management of customer messages.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwp-guruteam.com\u002Fscot\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwp-guruteam.com\u002Fscot\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Try Site Chat on Telegram today and enhance your customer interactions!\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F-Gkqbs3gkbM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n","Integrate a support chat on your website with Telegram. Customers message via chat widget; admins reply in Telegram.",100,2473,92,5,"2026-02-10T09:46:00.000Z","6.9.4","6.2","7.4",[87,88,89,90,20],"ai-assistant","ai-chat-bot","chat","support-chat","https:\u002F\u002Fwp-guruteam.com\u002Fscot\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsite-chat-on-telegram.zip",98,0,"2025-07-07 00:00:00",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":78,"downloaded":104,"rating":13,"num_ratings":81,"last_updated":105,"tested_up_to":106,"requires_at_least":107,"requires_php":18,"tags":108,"homepage":111,"download_link":112,"security_score":113,"vuln_count":94,"unpatched_count":94,"last_vuln_date":38,"fetched_at":31},"wc-telegram-bot","Đẩy Thông Báo Woocommerce tới Telegram","1.0.1","Tám Tinh Tế","https:\u002F\u002Fprofiles.wordpress.org\u002Fcucki314\u002F","\u003Ch3>Plugin giúp đẩy thông báo đơn hàng Woocommerce qua Telegram BOT. Phát triển bởi \u003Ca href=\"https:\u002F\u002Ftamtinhte.vn\" rel=\"nofollow ugc\">Tám Tinh Tế\u003C\u002Fa>.\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Hướng dẫn sử dụng bằng video\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fb7ukshoILK4?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Các trạng thái hỗ trợ:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Gửi thông báo khi có đơn hàng mới.\u003C\u002Fli>\n\u003Cli>Gửi thông báo khi đơn hàng đã hoàn thành.\u003C\u002Fli>\n\u003Cli>Gửi thông báo khi hủy đơn hàng.\u003C\u002Fli>\n\u003Cli>Gửi thông báo khi hoàn tiền đơn hàng.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Có thể đẩy thông báo tới Telegram cá nhân hoặc Group.\u003C\u002Fp>\n\u003Ch3>Các dữ liệu tuỳ chỉnh:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Hiển thị Mã đơn hàng bằng: %%order_id%%\u003C\u002Fli>\n\u003Cli>Hiển thị Tên sản phẩm bằng: %%product_name%%\u003C\u002Fli>\n\u003Cli>Hiển thị Họ khách hàng bằng: %%first_name%%\u003C\u002Fli>\n\u003Cli>Hiển thị Tên khách hàng bằng: %%last_name%%\u003C\u002Fli>\n\u003Cli>Hiển thị Email bằng: %%billing_email%%\u003C\u002Fli>\n\u003Cli>Hiển thị Số điện thoại bằng: %%billing_phone%%\u003C\u002Fli>\n\u003Cli>Hiển thị Địa chỉ bằng: %%billing_address%%\u003C\u002Fli>\n\u003Cli>Hiển thị Phương thức thanh toán: %%payment_method%%\u003C\u002Fli>\n\u003Cli>Hiển thị Phương thức giao hàng: %%shipping_method%%\u003C\u002Fli>\n\u003Cli>Hiển thị Ngày đặt hàng bằng: %%created_date%%\u003C\u002Fli>\n\u003Cli>Hiển thị Ngày hoàn thành đơn hàng: %%completed_date%%\u003C\u002Fli>\n\u003Cli>Hiển thị Ghi chú của khách hàng: %%customer_note%%\u003C\u002Fli>\n\u003Cli>Hiển thị Tổng tiền bằng: %%total%%\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Cài đặt API\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Token BOT: Mở Telegram tìm BotFather, chat \u002Fnewbot để tạo BOT và lấy thông tin Token.\u003C\u002Fli>\n\u003Cli>ID Chat Telegram: Bạn có thể nhập nhiều ID chat, cách nhau bởi dấu phẩy (Cá nhân hoặc Group).\u003C\u002Fli>\n\u003C\u002Ful>\n","Đây là plugin giúp đẩy thông báo đơn hàng Woocommerce qua Telegram BOT. Phát triển bởi Tám Tinh Tế.",2087,"2021-05-01T01:11:00.000Z","5.7.15","5.0",[20,109,110],"woocommerce","woocommerce-to-telegram","https:\u002F\u002Ftamtinhte.vn\u002Fwc-telegram-bot","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-telegram-bot.zip",85,{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":124,"num_ratings":125,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":135,"download_link":136,"security_score":113,"vuln_count":94,"unpatched_count":94,"last_vuln_date":38,"fetched_at":31},"channeller-telegram-channel-administrator","Channeller – Telegram Channel Administrator","1.5.4","Websima","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebsima\u002F","\u003Cp>Bots are special Telegram accounts designed to handle messages automatically. Telegram introduced that bots can be used as channel admins so they can send messages to channels if the bot has been assigned as channel administrator.\u003C\u002Fp>\n\u003Cp>Channeller (Telegram Channel Admin) helps you to integrate Telegram bot and Telegram Channel to your WordPress site and send newsletter to channel members.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Send to Multiple Channels\u003C\u002Fli>\n\u003Cli>Log Activities\u003C\u002Fli>\n\u003Cli>Support Custom Post Types\u003C\u002Fli>\n\u003Cli>Send Url, short Url or Custom Message\u003C\u002Fli>\n\u003Cli>Send Photo to channel\u003C\u002Fli>\n\u003Cli>Ability to send featured image\u003C\u002Fli>\n\u003Cli>Ability to send post content\u003C\u002Fli>\n\u003Cli>Send Text and Photo Messages to Groups \u003C\u002Fli>\n\u003Cli>Supports Html Tags in Messages including a, b, strong, code, em and pre\u003C\u002Fli>\n\u003Cli>Send Images from other sites\u003C\u002Fli>\n\u003Cli>Send Video Files your WordPress site\u003C\u002Fli>\n\u003Cli>Send Audio Files from your WordPress site\u003C\u002Fli>\n\u003Cli>Set Default Settings for sending\u003C\u002Fli>\n\u003Cli>Send Inline Buttons to channel\u003C\u002Fli>\n\u003Cli>Send Messages as Future Posts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notice: add @Channeller_Bot robot to your group to get the Group ID, your bot should be one of the Group members for sending messages.\u003C\u002Fp>\n\u003Cp>how to create a new channel in Telegram (Persian): \u003Ca href=\"http:\u002F\u002Fwebsima.com\u002F%DA%A9%D8%A7%D9%86%D8%A7%D9%84-%D8%AA%D9%84%DA%AF%D8%B1%D8%A7%D9%85\u002F\" title=\"کانال تلگرام\" rel=\"nofollow ugc\">کانال تلگرام\u003C\u002Fa>\u003Cbr \u002F>\nChanneller Settings Help (Persian): \u003Ca href=\"http:\u002F\u002Fwebsima.com\u002Fchanneller\" title=\"Channeller Plugin\" rel=\"nofollow ugc\">Channeller Plugin\u003C\u002Fa>\u003C\u002Fp>\n","Send Text, Link, Photo, Video and Audio Files from Wordpress to Telegram Channels and Groups using bots.",40,21282,96,19,"2017-02-04T10:14:00.000Z","4.7.32","3.0.1","",[131,132,20,133,134],"telegram","telegram-api","telegram-channel","translate-ready","http:\u002F\u002Fwebsima.com\u002Fchanneller","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchanneller-telegram-channel-administrator.zip",{"slug":138,"name":139,"version":140,"author":141,"author_profile":142,"description":143,"short_description":144,"active_installs":48,"downloaded":145,"rating":146,"num_ratings":29,"last_updated":147,"tested_up_to":148,"requires_at_least":149,"requires_php":150,"tags":151,"homepage":155,"download_link":156,"security_score":78,"vuln_count":94,"unpatched_count":94,"last_vuln_date":38,"fetched_at":31},"chatbot-for-telegram","ChatBot for Telegram","0.9.8","QuantumCloud","https:\u002F\u002Fprofiles.wordpress.org\u002Fquantumcloud\u002F","\u003Ch4>ChatBot for Telegram\u003C\u002Fh4>\n\u003Cp>Create a Chat Bot for Telegram with the power of the WPBot. Supports Simple text Responses, conversational forms and more.\u003C\u002Fp>\n\u003Cp>ChatBot for Telegram is an Addon for \u003Cstrong>WPBot Free\u003C\u002Fstrong> version to create Telegram ChatBots. With this WPBot ChatBot addon you can utilize the installed WPBot on your WordPress site as a hub to respond to user questions and provide eMail, FAQ, Conversational Form support within the Telegram app.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchatbot\u002F\" rel=\"ugc\">Download WordPress ChatBot WPBot\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This ChatBot addon \u003Cstrong>extends\u003C\u002Fstrong> the WPBot plugin’s functionality and adds the ability for WPBot to chat with the users on Telegram.\u003C\u002Fp>\n\u003Cp>Optionally this Telegram ChatBot uses dialogflow API: https:\u002F\u002Fcloud.google.com\u002Fdialogflow\u002F\u003C\u002Fp>\n\u003Cp>However, user can enable or disable Dialogflow API from Chatbot settings.\u003C\u002Fp>\n\u003Cp>Terms of service: https:\u002F\u002Fcloud.google.com\u002Fdialogflow\u002Fdocs\u002Fterms-trial-edition\u003C\u002Fp>\n\u003Cp>The plugin can work well without connecting to DialogFlow utilizing all of the WPBot free version’s features.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u002F\u002F-> WPBot is an easy to use, Native, No coding required, AI ChatBot to provide Automated Live Chat Support. Use ChatBot to \u003Cstrong>answer user questions\u003C\u002Fstrong> and also \u003Cstrong>collect information\u003C\u002Fstrong> from the users using \u003Cstrong>conversational forms\u003C\u002Fstrong>. It can be also be powered by DialogFlow, OpenRouter or OpenAI ChatGPT or simply use the built-in features to provide Live support and collect user data. ++ Check out \u003Ca href=\"https:\u002F\u002Fwww.wpbot.pro\u002F\" rel=\"nofollow ugc\">the Best ChatBot for WordPress WPBot\u003C\u002Fa> Demo.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>ChatBot for Telegram Support, Bug Fix, Feature Request\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>We welcome your feedback and new feature requests for this chat bot! This is a new plugin and we want to improve this chatbot’s features based on your feedback and suggestions. *\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Let us know if you face any problem or need help with this chatbot from the comments section.\u003C\u002Fp>\n","Telegram ChatBot. Create a Chat Bot for Telegram with the power of the WPBot. Supports Simple text Responses, conversational forms and more",1483,20,"2025-07-04T09:48:00.000Z","5.8.13","4.6","5.6",[152,153,131,20,154],"bot-telegram","chatbot","telegram-chatbot","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchatbot-for-telegram\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchatbot-for-telegram.0.9.8.zip",{"slug":158,"name":159,"version":160,"author":118,"author_profile":119,"description":161,"short_description":162,"active_installs":48,"downloaded":163,"rating":69,"num_ratings":164,"last_updated":165,"tested_up_to":166,"requires_at_least":128,"requires_php":129,"tags":167,"homepage":170,"download_link":171,"security_score":113,"vuln_count":94,"unpatched_count":94,"last_vuln_date":38,"fetched_at":31},"teletter-telegram-newsletter","Teletter Telegram Newsletter","1.3","\u003Cp>Bots are special Telegram accounts designed to handle messages automatically. Users can interact with bots by sending them command messages in private or group chats.\u003C\u002Fp>\n\u003Cp>Teletter (Telegram Newsletter) helps you to integrate Telegram bot to your WordPress site and send newsletter to subscribers.\u003C\u002Fp>\n\u003Cp>first of all you have to \u003Ca href=\"https:\u002F\u002Fcore.telegram.org\u002Fbots#botfather\" rel=\"nofollow ugc\">Create a New Bot\u003C\u002Fa> and get your Token API, then install the plugin, configure settings and send newsletters to subscribers.\u003Cbr \u002F>\nPersian Tutorial : \u003Ca href=\"http:\u002F\u002Fwebsima.com\u002F%D8%B1%D8%A8%D8%A7%D8%AA-%D8%AA%D9%84%DA%AF%D8%B1%D8%A7%D9%85\u002F\" rel=\"nofollow ugc\">ربات تلگرام چیست\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Using getUpdates method, no need to https\u003C\u002Fli>\n\u003Cli>Add Subscribers automatic to your subscribers list \u003C\u002Fli>\n\u003Cli>Send newsletter by posting or updating new articles\u003C\u002Fli>\n\u003Cli>Sending options including: URL, custom message or both of them\u003C\u002Fli>\n\u003Cli>Limit number of new updates from Telegram API \u003C\u002Fli>\n\u003Cli>Set currency time for get new updates (Hourly, Twice a day,Daily)  \u003C\u002Fli>\n\u003Cli>Get Updates Manually\u003C\u002Fli>\n\u003Cli>Supporting Custom post types \u003C\u002Fli>\n\u003Cli>Showing de active users (unsubscribers)\u003C\u002Fli>\n\u003Cli>Translate Ready\u003C\u002Fli>\n\u003Cli>Send Newsletter to all users or active users\u003C\u002Fli>\n\u003Cli>Define admin users to send newsletter from your telegram account (Supporting Text or Image)\u003C\u002Fli>\n\u003Cli>Send Image with Captions to All Users from Admin panel\u003C\u002Fli>\n\u003Cli>Log all Messages Sent or Received on Admin panel\u003C\u002Fli>\n\u003Cli>Admin users receive new subscribers and unsubscribers alarm on their telegram account \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note: this plugin is not supporting Webhook method now, we are working on it.\u003Cbr \u002F>\nVersion 1.2 was Updated by using some codes from \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftelegram-bot\u002F\" rel=\"ugc\">Telegram Bot\u003C\u002Fa> Plugin.\u003C\u002Fp>\n\u003Cp>Visit Tutorials in Persian Language: \u003Ca href=\"http:\u002F\u002Fwebsima.com\u002Fteletter\" title=\"افزونه تلگرام\" rel=\"nofollow ugc\">افزونه تلگرام\u003C\u002Fa>\u003C\u002Fp>\n","Send Newsletter from Telegram Bot, user can subscribe to your site from Telegram Bot.",9938,9,"2015-12-30T12:15:00.000Z","4.4.34",[168,131,20,169,134],"newsletter","telegram-newsletter","http:\u002F\u002Fwebsima.com\u002Fteletter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fteletter-telegram-newsletter.zip",{"attackSurface":173,"codeSignals":507,"taintFlows":555,"riskAssessment":672,"analyzedAt":685},{"hooks":174,"ajaxHandlers":436,"restRoutes":475,"shortcodes":502,"cronEvents":506,"entryPointCount":246,"unprotectedCount":422},[175,180,183,185,189,194,197,200,203,206,209,212,217,221,224,227,230,233,237,239,243,247,251,255,259,262,266,271,275,279,282,285,287,291,294,298,302,305,307,310,315,319,322,325,327,328,330,333,335,339,342,345,347,349,351,355,357,359,361,364,366,369,373,376,380,382,386,389,392,395,396,400,402,406,408,412,415,418,423,427,429,431,433],{"type":176,"name":177,"callback":178,"file":179,"line":146},"action","init","closure","bot-for-telegram-on-woocommerce.php",{"type":176,"name":181,"callback":178,"file":179,"line":182},"admin_notices",37,{"type":176,"name":181,"callback":178,"file":179,"line":184},67,{"type":176,"name":186,"callback":187,"priority":146,"file":179,"line":188},"plugins_loaded","bftow_init",73,{"type":190,"name":191,"callback":192,"file":193,"line":164},"filter","bftow_message_delimiter","bftow_delimiter","includes\\BFTOW_Helpers.php",{"type":176,"name":177,"callback":195,"file":196,"line":48},"login","includes\\BFTOW_Login.php",{"type":176,"name":198,"callback":198,"priority":78,"file":196,"line":199},"login_form",165,{"type":176,"name":201,"callback":198,"priority":78,"file":196,"line":202},"register_form",168,{"type":176,"name":204,"callback":198,"priority":78,"file":196,"line":205},"woocommerce_login_form",171,{"type":176,"name":207,"callback":198,"priority":78,"file":196,"line":208},"woocommerce_register_form",174,{"type":176,"name":210,"callback":198,"priority":78,"file":196,"line":211},"woocommerce_after_checkout_registration_form",177,{"type":176,"name":213,"callback":214,"file":215,"line":216},"woocommerce_admin_order_data_after_billing_address","telegram_order_info","includes\\BFTOW_Orders.php",15,{"type":176,"name":218,"callback":219,"file":220,"line":164},"rest_api_init","register_route","includes\\BFTOW_Product.php",{"type":190,"name":222,"callback":223,"priority":48,"file":220,"line":68},"bftow_get_grouped_product","grouped_product",{"type":190,"name":225,"callback":226,"priority":48,"file":220,"line":14},"bftow_get_external_product","external_product",{"type":176,"name":177,"callback":178,"file":228,"line":229},"includes\\BFTOW_Products.php",14,{"type":190,"name":231,"callback":232,"priority":48,"file":228,"line":216},"bftow_get_products_filter","bftow_get_products",{"type":176,"name":177,"callback":234,"file":235,"line":236},"init_data","includes\\BFTOW_Telegram.php",41,{"type":176,"name":218,"callback":219,"file":235,"line":238},48,{"type":176,"name":240,"callback":241,"priority":48,"file":235,"line":242},"bftow_order_created","bftow_send_apply_order_msg",49,{"type":176,"name":177,"callback":244,"file":245,"line":246},"create_cart","includes\\BFTOW_WooCommerce.php",17,{"type":176,"name":248,"callback":249,"file":245,"line":250},"wp_loaded","fast_checkout",27,{"type":176,"name":252,"callback":253,"priority":48,"file":245,"line":254},"woocommerce_thankyou","redirect_to_bot",30,{"type":176,"name":256,"callback":257,"priority":78,"file":245,"line":258},"woocommerce_order_status_changed","status_changed",32,{"type":176,"name":181,"callback":178,"file":260,"line":261},"includes\\notices\\settings.php",23,{"type":190,"name":263,"callback":264,"priority":48,"file":265,"line":48},"bftow_get_variable_product","variable_product","includes\\product_api\\variable.php",{"type":176,"name":267,"callback":268,"file":269,"line":270},"admin_enqueue_scripts","bftow_enqueue_admin_ss","includes\\scripts_styles.php",24,{"type":176,"name":272,"callback":273,"file":269,"line":274},"wp_enqueue_scripts","bftow_enqueue_ss",25,{"type":176,"name":276,"callback":277,"file":278,"line":274},"wp_head","stm_wpcfto_wp_head","nuxy\\helpers\\helpers.php",{"type":176,"name":280,"callback":277,"file":278,"line":281},"admin_head",26,{"type":176,"name":280,"callback":283,"file":278,"line":284},"stm_wpcfto_nonces",52,{"type":176,"name":276,"callback":283,"file":278,"line":286},53,{"type":176,"name":288,"callback":289,"file":290,"line":229},"add_meta_boxes","wpcfto_register_meta_boxes","nuxy\\metaboxes\\metabox.php",{"type":176,"name":267,"callback":292,"file":290,"line":293},"wpcfto_scripts",16,{"type":176,"name":295,"callback":296,"priority":48,"file":290,"line":297},"save_post","wpcfto_save",18,{"type":190,"name":299,"callback":300,"priority":78,"file":290,"line":301},"safe_style_css","STM_Metaboxes::add_safe_style",22,{"type":176,"name":303,"callback":304,"priority":48,"file":290,"line":270},"admin_init","enqueue",{"type":176,"name":186,"callback":178,"file":306,"line":216},"nuxy\\NUXY.php",{"type":190,"name":308,"callback":178,"file":306,"line":309},"wpcfto_versions",57,{"type":176,"name":311,"callback":312,"priority":313,"file":314,"line":246},"admin_menu","settings_page",1000,"nuxy\\settings\\settings.php",{"type":190,"name":316,"callback":317,"file":314,"line":318},"wpcfto_enable_regenerate_fonts","stm_enable_regenerate_fonts",21,{"type":190,"name":320,"callback":321,"file":314,"line":301},"wpcfto_field_fonts_download_settings","fonts_download_settings_template",{"type":176,"name":323,"callback":324,"priority":122,"file":314,"line":274},"admin_bar_menu","admin_bar_button",{"type":176,"name":276,"callback":326,"file":314,"line":281},"admin_bar_styles",{"type":176,"name":280,"callback":326,"file":314,"line":250},{"type":176,"name":177,"callback":178,"file":314,"line":329},328,{"type":176,"name":267,"callback":331,"file":332,"line":229},"wpcfto_enqueue_taxonomy_ss","nuxy\\taxonomy_meta\\enqueue.php",{"type":176,"name":303,"callback":178,"file":334,"line":270},"nuxy\\taxonomy_meta\\metaboxes.php",{"type":190,"name":336,"callback":337,"file":338,"line":246},"stm_wpcfto_boxes","product_metabox","nuxy_settings\\main.php",{"type":190,"name":340,"callback":341,"file":338,"line":297},"stm_wpcfto_fields","product_settings",{"type":190,"name":343,"callback":344,"file":338,"line":125},"wpcfto_options_page_setup","telegram_settings",{"type":190,"name":346,"callback":178,"file":338,"line":146},"wpcfto_check_is_pro_field",{"type":190,"name":348,"callback":178,"file":338,"line":261},"wpcfto_field_bftow_webhook_activation",{"type":190,"name":350,"callback":178,"file":338,"line":281},"wpcfto_field_bftow_notification_channel_id",{"type":190,"name":352,"callback":353,"file":338,"line":354},"bftow_nuxy_messages_settings","pro_messages",29,{"type":176,"name":303,"callback":178,"file":338,"line":356},31,{"type":176,"name":186,"callback":178,"file":358,"line":356},"pro\\bot-for-telegram-on-woocommerce-pro.php",{"type":176,"name":181,"callback":178,"file":358,"line":360},38,{"type":176,"name":311,"callback":362,"file":363,"line":48},"add_page","pro\\includes\\alerts\\admin\\admin.php",{"type":176,"name":267,"callback":365,"file":363,"line":68},"admin_scripts",{"type":176,"name":303,"callback":367,"file":368,"line":14},"check_db","pro\\includes\\alerts\\db\\db.php",{"type":190,"name":370,"callback":371,"file":372,"line":281},"bftow_default_keyboard","add_button","pro\\includes\\BFTOW_PRO_Account.php",{"type":176,"name":374,"callback":375,"file":372,"line":250},"bftow_get_tg_data","show_account",{"type":190,"name":370,"callback":377,"priority":78,"file":378,"line":379},"add_buttons","pro\\includes\\BFTOW_PRO_Keyboard.php",8,{"type":176,"name":374,"callback":381,"file":378,"line":164},"show_answer",{"type":176,"name":383,"callback":384,"priority":48,"file":385,"line":379},"bftow_location_saved","location_saved","pro\\includes\\BFTOW_PRO_Location.php",{"type":176,"name":256,"callback":387,"priority":78,"file":388,"line":68},"order_status_changed","pro\\includes\\BFTOW_PRO_Notifications.php",{"type":176,"name":390,"callback":391,"priority":78,"file":388,"line":14},"bftow_update_user","user_updated",{"type":176,"name":374,"callback":393,"file":394,"line":297},"show_search_result","pro\\includes\\BFTOW_PRO_Search.php",{"type":190,"name":370,"callback":371,"file":394,"line":125},{"type":176,"name":397,"callback":398,"file":399,"line":48},"show_user_profile","extra_profile_fields","pro\\includes\\BFTOW_PRO_User_Settings.php",{"type":176,"name":401,"callback":398,"file":399,"line":68},"edit_user_profile",{"type":176,"name":403,"callback":404,"file":399,"line":405},"personal_options_update","update_profile",13,{"type":176,"name":407,"callback":404,"file":399,"line":229},"edit_user_profile_update",{"type":176,"name":409,"callback":410,"file":411,"line":379},"woocommerce_email_settings_before","add_field","pro\\includes\\BFTOW_PRO_Woo_Emails.php",{"type":176,"name":413,"callback":414,"file":411,"line":164},"woocommerce_update_options","save_settings",{"type":176,"name":416,"callback":417,"priority":48,"file":411,"line":48},"woocommerce_email_sent","email_sent",{"type":190,"name":419,"callback":420,"file":421,"line":422},"bftow_get_categories_args","get_categories","pro\\includes\\hooks\\BFTOW_PRO_Hooks.php",6,{"type":190,"name":424,"callback":425,"file":421,"line":426},"bftow_categories_keyboard","categories_keyboard",7,{"type":176,"name":218,"callback":219,"file":428,"line":318},"pro\\includes\\orders\\orders.php",{"type":176,"name":374,"callback":430,"file":428,"line":301},"show_orders",{"type":176,"name":374,"callback":432,"file":428,"line":261},"checkout",{"type":176,"name":218,"callback":434,"file":435,"line":65},"plugin_de_activation_rest_api_route","pro\\rest-api.php",[437,443,447,451,454,457,460,463,466,469,472],{"action":438,"nopriv":439,"callback":438,"hasNonce":440,"hasCapCheck":440,"file":441,"line":442},"bftow_action_with_rest_url",false,true,"includes\\functions.php",28,{"action":444,"nopriv":439,"callback":445,"hasNonce":440,"hasCapCheck":440,"file":446,"line":426},"wpcfto_upload_file","upload_file","nuxy\\helpers\\file_upload.php",{"action":448,"nopriv":439,"callback":449,"hasNonce":440,"hasCapCheck":440,"file":278,"line":450},"stm_wpcfto_get_settings","stm_wpcfto_get_settings_callback",55,{"action":452,"nopriv":439,"callback":452,"hasNonce":439,"hasCapCheck":440,"file":278,"line":453},"wpcfto_get_image_url",149,{"action":455,"nopriv":439,"callback":456,"hasNonce":439,"hasCapCheck":439,"file":290,"line":146},"wpcfto_search_posts","STM_Metaboxes::search_posts",{"action":458,"nopriv":439,"callback":459,"hasNonce":440,"hasCapCheck":440,"file":314,"line":297},"wpcfto_save_settings","stm_save_settings",{"action":461,"nopriv":439,"callback":462,"hasNonce":440,"hasCapCheck":440,"file":314,"line":125},"wpcfto_create_term","stm_create_term",{"action":464,"nopriv":439,"callback":465,"hasNonce":440,"hasCapCheck":440,"file":314,"line":146},"wpcfto_regenerate_fonts","stm_regenerate_fonts",{"action":467,"nopriv":439,"callback":468,"hasNonce":440,"hasCapCheck":440,"file":363,"line":405},"bftow_pro_create_new_record","create_record",{"action":470,"nopriv":439,"callback":471,"hasNonce":440,"hasCapCheck":440,"file":363,"line":229},"bftow_pro_send_single_bulk_message","send_message",{"action":473,"nopriv":439,"callback":474,"hasNonce":440,"hasCapCheck":440,"file":388,"line":405},"bftow_pro_action_get_channel_id","get_channel_id",[476,483,487,491,496],{"namespace":477,"route":478,"methods":479,"callback":481,"permissionCallback":482,"file":220,"line":125},"woo-telegram\u002Fv1","\u002Fproduct\u002F",[480],"GET","bftow_get_product","__return_true",{"namespace":477,"route":484,"methods":485,"callback":486,"permissionCallback":482,"file":235,"line":67},"\u002Fmain\u002F",[480],"get_tg_data",{"namespace":477,"route":488,"methods":489,"callback":490,"permissionCallback":482,"file":428,"line":442},"\u002Forders\u002F",[480],"get_orders",{"namespace":477,"route":492,"methods":493,"callback":494,"permissionCallback":482,"file":428,"line":495},"\u002Fcreate-order\u002F",[480],"create_order",34,{"namespace":497,"route":498,"methods":499,"callback":501,"permissionCallback":482,"file":435,"line":422},"license\u002Fv1","de-activate",[500],"post","deactivate_plugin",[503],{"tag":504,"callback":505,"file":196,"line":405},"bftow_login","login_template",[],{"dangerousFunctions":508,"sqlUsage":516,"outputEscaping":523,"fileOperations":293,"externalRequests":164,"nonceChecks":229,"capabilityChecks":216,"bundledLibraries":554},[509,513],{"fn":510,"file":278,"line":511,"context":512},"unserialize",116,"$value = unserialize( $value );",{"fn":510,"file":290,"line":514,"context":515},230,"$value = unserialize( $value ); \u002F\u002F phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.serialize_unse",{"prepared":65,"raw":28,"locations":517},[518,521],{"file":368,"line":519,"context":520},93,"$wpdb->get_results() with variable interpolation",{"file":368,"line":522,"context":520},101,{"escaped":524,"rawEcho":216,"locations":525},790,[526,529,532,534,536,537,538,539,541,543,545,546,548,551,552],{"file":527,"line":379,"context":528},"includes\\BFTOW_Settings_Tab.php","raw output",{"file":530,"line":531,"context":528},"includes\\notices\\disable_pro.php",4,{"file":278,"line":533,"context":528},47,{"file":535,"line":270,"context":528},"nuxy\\metaboxes\\fields\\image.php",{"file":535,"line":274,"context":528},{"file":535,"line":281,"context":528},{"file":535,"line":250,"context":528},{"file":540,"line":301,"context":528},"nuxy\\metaboxes\\fields\\number.php",{"file":542,"line":274,"context":528},"nuxy\\metaboxes\\fields\\repeater.php",{"file":544,"line":250,"context":528},"nuxy\\metaboxes\\fields\\text.php",{"file":544,"line":442,"context":528},{"file":547,"line":274,"context":528},"nuxy\\metaboxes\\fields\\textarea.php",{"file":549,"line":550,"context":528},"nuxy\\taxonomy_meta\\fields\\icon.php",39,{"file":411,"line":442,"context":528},{"file":553,"line":216,"context":528},"templates\\login.php",[],[556,572,580,592,600,613,624,637,647,655,664],{"entryPoint":557,"graph":558,"unsanitizedCount":94,"severity":571},"bftow_action_with_rest_url (includes\\functions.php:10)",{"nodes":559,"edges":569},[560,564],{"id":561,"type":562,"label":563,"file":441,"line":293},"n0","source","$_POST",{"id":565,"type":566,"label":567,"file":441,"line":125,"wp_function":568},"n1","sink","wp_remote_get() [SSRF]","wp_remote_get",[570],{"from":561,"to":565,"sanitized":440},"low",{"entryPoint":573,"graph":574,"unsanitizedCount":94,"severity":571},"\u003Cfunctions> (includes\\functions.php:0)",{"nodes":575,"edges":578},[576,577],{"id":561,"type":562,"label":563,"file":441,"line":293},{"id":565,"type":566,"label":567,"file":441,"line":125,"wp_function":568},[579],{"from":561,"to":565,"sanitized":440},{"entryPoint":581,"graph":582,"unsanitizedCount":94,"severity":571},"get_fields (nuxy\\metaboxes\\metabox.php:61)",{"nodes":583,"edges":590},[584,586],{"id":561,"type":562,"label":585,"file":290,"line":113},"$_POST (x2)",{"id":565,"type":566,"label":587,"file":290,"line":588,"wp_function":589},"call_user_func() [RCE]",89,"call_user_func",[591],{"from":561,"to":565,"sanitized":440},{"entryPoint":593,"graph":594,"unsanitizedCount":94,"severity":571},"\u003Cmetabox> (nuxy\\metaboxes\\metabox.php:0)",{"nodes":595,"edges":598},[596,597],{"id":561,"type":562,"label":585,"file":290,"line":113},{"id":565,"type":566,"label":587,"file":290,"line":588,"wp_function":589},[599],{"from":561,"to":565,"sanitized":440},{"entryPoint":601,"graph":602,"unsanitizedCount":94,"severity":571},"stm_save_settings (nuxy\\settings\\settings.php:184)",{"nodes":603,"edges":611},[604,607],{"id":561,"type":562,"label":605,"file":314,"line":606},"$_REQUEST",195,{"id":565,"type":566,"label":608,"file":314,"line":609,"wp_function":610},"update_option() [Settings Manipulation]",228,"update_option",[612],{"from":561,"to":565,"sanitized":440},{"entryPoint":614,"graph":615,"unsanitizedCount":94,"severity":571},"stm_regenerate_fonts (nuxy\\settings\\settings.php:235)",{"nodes":616,"edges":622},[617,620],{"id":561,"type":562,"label":618,"file":314,"line":619},"$_GET",242,{"id":565,"type":566,"label":608,"file":314,"line":621,"wp_function":610},260,[623],{"from":561,"to":565,"sanitized":440},{"entryPoint":625,"graph":626,"unsanitizedCount":94,"severity":571},"\u003Csettings> (nuxy\\settings\\settings.php:0)",{"nodes":627,"edges":634},[628,629,630,632],{"id":561,"type":562,"label":605,"file":314,"line":606},{"id":565,"type":566,"label":608,"file":314,"line":609,"wp_function":610},{"id":631,"type":562,"label":618,"file":314,"line":619},"n2",{"id":633,"type":566,"label":608,"file":314,"line":621,"wp_function":610},"n3",[635,636],{"from":561,"to":565,"sanitized":440},{"from":631,"to":633,"sanitized":440},{"entryPoint":638,"graph":639,"unsanitizedCount":94,"severity":571},"get_channel_id (pro\\includes\\BFTOW_PRO_Notifications.php:54)",{"nodes":640,"edges":645},[641,643],{"id":561,"type":562,"label":563,"file":388,"line":642},61,{"id":565,"type":566,"label":608,"file":388,"line":644,"wp_function":610},79,[646],{"from":561,"to":565,"sanitized":440},{"entryPoint":648,"graph":649,"unsanitizedCount":94,"severity":571},"\u003CBFTOW_PRO_Notifications> (pro\\includes\\BFTOW_PRO_Notifications.php:0)",{"nodes":650,"edges":653},[651,652],{"id":561,"type":562,"label":563,"file":388,"line":642},{"id":565,"type":566,"label":608,"file":388,"line":644,"wp_function":610},[654],{"from":561,"to":565,"sanitized":440},{"entryPoint":656,"graph":657,"unsanitizedCount":531,"severity":571},"save_settings (pro\\includes\\BFTOW_PRO_Woo_Emails.php:58)",{"nodes":658,"edges":662},[659,661],{"id":561,"type":562,"label":660,"file":411,"line":642},"$_POST (x4)",{"id":565,"type":566,"label":608,"file":411,"line":184,"wp_function":610},[663],{"from":561,"to":565,"sanitized":439},{"entryPoint":665,"graph":666,"unsanitizedCount":531,"severity":571},"\u003CBFTOW_PRO_Woo_Emails> (pro\\includes\\BFTOW_PRO_Woo_Emails.php:0)",{"nodes":667,"edges":670},[668,669],{"id":561,"type":562,"label":660,"file":411,"line":642},{"id":565,"type":566,"label":608,"file":411,"line":184,"wp_function":610},[671],{"from":561,"to":565,"sanitized":439},{"summary":673,"deductions":674},"The \"bot-for-telegram-on-woocommerce\" plugin version 1.2.9 presents a mixed security posture. While it demonstrates good practices with a high percentage of properly escaped output and a substantial number of nonce and capability checks, several critical concerns emerge from the static analysis. The presence of 11 AJAX handlers, with one lacking authentication checks, and 5 REST API routes without permission callbacks represent significant attack vectors. Furthermore, the use of the `unserialize` function twice is a dangerous practice that could lead to code injection if user-supplied data is unserialized. The plugin's vulnerability history is also a major red flag, with two known CVEs, one of which remains unpatched and is rated as high severity. The common vulnerability types, missing authorization and exposure of sensitive information, directly correlate with the findings in the static analysis.  The last vulnerability being in the future (2025-05-19) is highly unusual and suggests potential data integrity issues with the vulnerability history itself, but based on the provided data, it highlights a recent history of exploitable flaws.",[675,677,679,681,683],{"reason":676,"points":297},"Unpatched High Severity CVE",{"reason":678,"points":379},"AJAX handler without auth check",{"reason":680,"points":48},"REST API routes without permission callbacks",{"reason":682,"points":216},"Use of unserialize function",{"reason":684,"points":48},"Medium Severity CVE","2026-03-16T19:58:17.443Z",{"wat":687,"direct":696},{"assetPaths":688,"generatorPatterns":691,"scriptPaths":692,"versionParams":693},[689,690],"\u002Fwp-content\u002Fplugins\u002Fbot-for-telegram-on-woocommerce\u002Fassets\u002Fcss\u002Fstyles.css","\u002Fwp-content\u002Fplugins\u002Fbot-for-telegram-on-woocommerce\u002Fassets\u002Fjs\u002Flogin.js",[],[],[694,695],"bot-for-telegram-on-woocommerce\u002Fassets\u002Fcss\u002Fstyles.css?ver=","bot-for-telegram-on-woocommerce\u002Fassets\u002Fjs\u002Flogin.js?ver=",{"cssClasses":697,"htmlComments":698,"htmlAttributes":699,"restEndpoints":701,"jsGlobals":702,"shortcodeOutput":704},[],[],[700,504],"bftow_style",[],[703],"bftow_localize",[]]