[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fFiSo2VVU333sPTGdI3oyj-nWsRAOR9i73pwRkWLOcJw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":20,"download_link":21,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":32,"analysis":33,"fingerprints":847},"bzhy-feature-enhancements-for-woocommerce","Bzhy – Feature Enhancements for WooCommerce","1.1.1","Wayne Wang","https:\u002F\u002Fprofiles.wordpress.org\u002Fwangyysde\u002F","\u003Cp>Bzhy is a WordPress plugin for enhancing WooCommerce features.\u003Cbr \u002F>\nThis plugin is under continuous modular development. You can enable one or more\u003Cbr \u002F>\nmodules as needed to utilize their functionalities.\u003Cbr \u002F>\nWe have currently developed a discount module for the plugin.This module implements\u003Cbr \u002F>\ndynamic price discounts based on the number of items added to the user’s shopping cart.\u003Cbr \u002F>\nWe will continue to develop new modules to enhance WooCommerce functionality.\u003Cbr \u002F>\ncontinuously.\u003C\u002Fp>\n\u003Ch3>Screenshorts\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Dashboard of the plugin. You can enable or disable any module supported by this plugin on this page.\u003C\u002Fli>\n\u003Cli>Add discount rule.\u003C\u002Fli>\n\u003Cli>Discount rule list page. You can goto  edit,delete rule page or add policy page from this page\u003C\u002Fli>\n\u003Cli>Add discount policy page.\u003C\u002Fli>\n\u003C\u002Fol>\n","Bzhy is a WordPress plugin for enhancing WooCommerce features.This plugin is under continuous modular development.",0,154,"2026-01-11T03:23:00.000Z","6.9.4","6.2","7.2",[18,19],"dynamic-price-discounts","enhancing-woocommerce-features","https:\u002F\u002Fblog.bzhy.com\u002Fbzhy-feature-enhancements-for-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbzhy-feature-enhancements-for-woocommerce.1.1.1.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":27,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":22,"avg_patch_time_days":29,"trust_score":30,"computed_at":31},"wangyysde",1,30,94,"2026-04-04T07:49:27.524Z",[],{"attackSurface":34,"codeSignals":261,"taintFlows":372,"riskAssessment":836,"analyzedAt":846},{"hooks":35,"ajaxHandlers":226,"restRoutes":237,"shortcodes":247,"cronEvents":259,"entryPointCount":260,"unprotectedCount":11},[36,42,46,50,54,57,63,67,73,78,83,86,89,92,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,129,131,135,137,139,141,143,147,151,154,157,160,163,167,169,171,173,174,175,176,178,179,180,182,184,186,188,189,191,192,193,194,195,196,197,198,199,200,201,202,203,204,205,206,208,209,211,212,213,214,215,217,218,219,220,222,223,224,225],{"type":37,"name":38,"callback":39,"file":40,"line":41},"action","admin_enqueue_scripts","enqueue_scripts","admin\\src\\class_admin.php",21,{"type":37,"name":43,"callback":44,"file":40,"line":45},"init","enqueue_styles",22,{"type":37,"name":47,"callback":48,"file":40,"line":49},"admin_menu","hide_wordpress_update_msg",24,{"type":37,"name":51,"callback":52,"file":40,"line":53},"wp_loaded","remove_admin_notices",27,{"type":37,"name":47,"callback":55,"file":56,"line":49},"register_menus","admin\\src\\class_admin_menu.php",{"type":58,"name":59,"callback":60,"priority":61,"file":56,"line":62},"filter","admin_footer_text","get_admin_footer_text",99,69,{"type":58,"name":64,"callback":65,"priority":61,"file":56,"line":66},"update_footer","clear_footer_upgrade",70,{"type":58,"name":68,"callback":69,"priority":70,"file":71,"line":72},"option_active_plugins","bzhy_disable_plugins_as_need",9999,"common\\bzhy_must_use_for_module_gdpr.php",2,{"type":37,"name":74,"callback":75,"file":76,"line":77},"wp_enqueue_scripts","enqueue_frontend_assets","common\\class_bzhy.php",54,{"type":37,"name":79,"callback":80,"file":81,"line":82},"admin_init","do_updates","common\\class_bzhy_update.php",37,{"type":37,"name":43,"callback":39,"file":84,"line":85},"modules\\discount\\class_discount.php",53,{"type":37,"name":87,"callback":88,"priority":70,"file":84,"line":77},"woocommerce_before_calculate_totals","change_cart_item_price",{"type":37,"name":38,"callback":39,"file":90,"line":91},"modules\\discount\\class_discount_admin.php",73,{"type":37,"name":93,"callback":94,"file":90,"line":95},"admin_notices","check_if_woocommerce_missing",82,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":97},191,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":99},192,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":101},225,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":103},226,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":105},305,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":107},306,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":109},600,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":111},601,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":113},780,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":115},781,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":117},961,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":119},962,{"type":58,"name":59,"callback":60,"priority":61,"file":90,"line":121},1019,{"type":58,"name":64,"callback":65,"priority":61,"file":90,"line":123},1020,{"type":37,"name":125,"callback":126,"file":127,"line":128},"wp_footer","display_gdpr_cookie_consent","modules\\gdpr\\class_gdpr.php",46,{"type":37,"name":74,"callback":39,"file":127,"line":130},47,{"type":37,"name":38,"callback":132,"file":133,"line":134},"enqueue_admin_assets","modules\\gdpr\\class_gdpr_admin.php",33,{"type":58,"name":59,"callback":60,"priority":61,"file":133,"line":136},161,{"type":58,"name":64,"callback":65,"priority":61,"file":133,"line":138},162,{"type":58,"name":59,"callback":60,"priority":61,"file":133,"line":140},237,{"type":58,"name":64,"callback":65,"priority":61,"file":133,"line":142},238,{"type":37,"name":43,"callback":144,"file":145,"line":146},"register_block","modules\\kbs\\class_kbs.php",51,{"type":58,"name":148,"callback":149,"priority":61,"file":145,"line":150},"render_block","blocks_render",52,{"type":37,"name":152,"callback":153,"file":145,"line":85},"rest_api_init","register_rest_routes",{"type":37,"name":43,"callback":155,"file":145,"line":156},"register_cpt_bzhy_kbs",55,{"type":37,"name":38,"callback":132,"file":158,"line":159},"modules\\kbs\\class_kbs_admin.php",42,{"type":37,"name":79,"callback":161,"file":158,"line":162},"add_post_properties",43,{"type":37,"name":164,"callback":165,"file":158,"line":166},"save_post","update_post_properties",44,{"type":58,"name":59,"callback":60,"priority":61,"file":158,"line":168},158,{"type":58,"name":64,"callback":65,"priority":61,"file":158,"line":170},159,{"type":37,"name":38,"callback":39,"file":172,"line":41},"trunk\\admin\\src\\class_admin.php",{"type":37,"name":43,"callback":44,"file":172,"line":45},{"type":37,"name":47,"callback":48,"file":172,"line":49},{"type":37,"name":51,"callback":52,"file":172,"line":53},{"type":37,"name":47,"callback":55,"file":177,"line":49},"trunk\\admin\\src\\class_admin_menu.php",{"type":58,"name":59,"callback":60,"priority":61,"file":177,"line":62},{"type":58,"name":64,"callback":65,"priority":61,"file":177,"line":66},{"type":58,"name":68,"callback":69,"priority":70,"file":181,"line":72},"trunk\\common\\bzhy_must_use_for_module_gdpr.php",{"type":37,"name":74,"callback":75,"file":183,"line":77},"trunk\\common\\class_bzhy.php",{"type":37,"name":79,"callback":80,"file":185,"line":82},"trunk\\common\\class_bzhy_update.php",{"type":37,"name":43,"callback":39,"file":187,"line":85},"trunk\\modules\\discount\\class_discount.php",{"type":37,"name":87,"callback":88,"priority":70,"file":187,"line":77},{"type":37,"name":38,"callback":39,"file":190,"line":91},"trunk\\modules\\discount\\class_discount_admin.php",{"type":37,"name":93,"callback":94,"file":190,"line":95},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":97},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":99},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":101},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":103},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":105},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":107},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":109},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":111},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":113},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":115},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":117},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":119},{"type":58,"name":59,"callback":60,"priority":61,"file":190,"line":121},{"type":58,"name":64,"callback":65,"priority":61,"file":190,"line":123},{"type":37,"name":125,"callback":126,"file":207,"line":128},"trunk\\modules\\gdpr\\class_gdpr.php",{"type":37,"name":74,"callback":39,"file":207,"line":130},{"type":37,"name":38,"callback":132,"file":210,"line":134},"trunk\\modules\\gdpr\\class_gdpr_admin.php",{"type":58,"name":59,"callback":60,"priority":61,"file":210,"line":136},{"type":58,"name":64,"callback":65,"priority":61,"file":210,"line":138},{"type":58,"name":59,"callback":60,"priority":61,"file":210,"line":140},{"type":58,"name":64,"callback":65,"priority":61,"file":210,"line":142},{"type":37,"name":43,"callback":144,"file":216,"line":146},"trunk\\modules\\kbs\\class_kbs.php",{"type":58,"name":148,"callback":149,"priority":61,"file":216,"line":150},{"type":37,"name":152,"callback":153,"file":216,"line":85},{"type":37,"name":43,"callback":155,"file":216,"line":156},{"type":37,"name":38,"callback":132,"file":221,"line":159},"trunk\\modules\\kbs\\class_kbs_admin.php",{"type":37,"name":79,"callback":161,"file":221,"line":162},{"type":37,"name":164,"callback":165,"file":221,"line":166},{"type":58,"name":59,"callback":60,"priority":61,"file":221,"line":168},{"type":58,"name":64,"callback":65,"priority":61,"file":221,"line":170},[227,233,235,236],{"action":228,"nopriv":229,"callback":230,"hasNonce":231,"hasCapCheck":229,"file":127,"line":232},"bzhy_module_gdpr",false,"bzhy_set_cookie_consent",true,49,{"action":228,"nopriv":231,"callback":230,"hasNonce":231,"hasCapCheck":229,"file":127,"line":234},50,{"action":228,"nopriv":229,"callback":230,"hasNonce":231,"hasCapCheck":229,"file":207,"line":232},{"action":228,"nopriv":231,"callback":230,"hasNonce":231,"hasCapCheck":229,"file":207,"line":234},[238,245],{"namespace":239,"route":240,"methods":241,"callback":243,"permissionCallback":244,"file":145,"line":91},"bzhy\u002Fv1","\u002Fkb_cat",[242],"GET","api_kb_cat_list","closure",{"namespace":239,"route":240,"methods":246,"callback":243,"permissionCallback":244,"file":216,"line":91},[242],[248,252,256,258],{"tag":249,"callback":250,"file":251,"line":41},"bzhy_discount_price_list","shortcode_price_list","modules\\discount\\class_discount_shortcode.php",{"tag":253,"callback":254,"file":145,"line":255},"bzhy_kbs_categories_list","shortcode_categories_list",134,{"tag":249,"callback":250,"file":257,"line":41},"trunk\\modules\\discount\\class_discount_shortcode.php",{"tag":253,"callback":254,"file":216,"line":255},[],10,{"dangerousFunctions":262,"sqlUsage":263,"outputEscaping":266,"fileOperations":370,"externalRequests":11,"nonceChecks":45,"capabilityChecks":370,"bundledLibraries":371},[],{"prepared":264,"raw":11,"locations":265},224,[],{"escaped":267,"rawEcho":268,"locations":269},390,62,[270,274,276,278,280,282,284,286,288,290,292,294,296,299,300,302,304,306,308,310,312,314,316,318,320,323,326,328,330,331,333,335,337,338,339,340,341,342,343,344,345,346,347,348,350,351,352,353,354,355,356,357,358,359,360,361,363,365,366,367,368,369],{"file":271,"line":272,"context":273},"admin\\src\\class_list_table.php",323,"raw output",{"file":271,"line":275,"context":273},329,{"file":271,"line":277,"context":273},336,{"file":271,"line":279,"context":273},341,{"file":271,"line":281,"context":273},522,{"file":271,"line":283,"context":273},841,{"file":271,"line":285,"context":273},1033,{"file":271,"line":287,"context":273},1042,{"file":271,"line":289,"context":273},1043,{"file":271,"line":291,"context":273},1047,{"file":271,"line":293,"context":273},1067,{"file":271,"line":295,"context":273},1126,{"file":297,"line":298,"context":273},"modules\\gdpr\\template\\html-gdpr-cookiemanager.php",38,{"file":297,"line":61,"context":273},{"file":145,"line":301,"context":273},256,{"file":145,"line":303,"context":273},257,{"file":145,"line":305,"context":273},260,{"file":145,"line":307,"context":273},261,{"file":145,"line":309,"context":273},268,{"file":145,"line":311,"context":273},273,{"file":145,"line":313,"context":273},277,{"file":145,"line":315,"context":273},278,{"file":158,"line":317,"context":273},109,{"file":158,"line":319,"context":273},559,{"file":321,"line":322,"context":273},"modules\\kbs\\template\\category_additonal_fields.php",15,{"file":324,"line":325,"context":273},"modules\\kbs\\template\\html-kb-management.php",18,{"file":324,"line":327,"context":273},19,{"file":324,"line":329,"context":273},45,{"file":324,"line":91,"context":273},{"file":324,"line":332,"context":273},75,{"file":324,"line":334,"context":273},84,{"file":336,"line":272,"context":273},"trunk\\admin\\src\\class_list_table.php",{"file":336,"line":275,"context":273},{"file":336,"line":277,"context":273},{"file":336,"line":279,"context":273},{"file":336,"line":281,"context":273},{"file":336,"line":283,"context":273},{"file":336,"line":285,"context":273},{"file":336,"line":287,"context":273},{"file":336,"line":289,"context":273},{"file":336,"line":291,"context":273},{"file":336,"line":293,"context":273},{"file":336,"line":295,"context":273},{"file":349,"line":298,"context":273},"trunk\\modules\\gdpr\\template\\html-gdpr-cookiemanager.php",{"file":349,"line":61,"context":273},{"file":216,"line":301,"context":273},{"file":216,"line":303,"context":273},{"file":216,"line":305,"context":273},{"file":216,"line":307,"context":273},{"file":216,"line":309,"context":273},{"file":216,"line":311,"context":273},{"file":216,"line":313,"context":273},{"file":216,"line":315,"context":273},{"file":221,"line":317,"context":273},{"file":221,"line":319,"context":273},{"file":362,"line":322,"context":273},"trunk\\modules\\kbs\\template\\category_additonal_fields.php",{"file":364,"line":325,"context":273},"trunk\\modules\\kbs\\template\\html-kb-management.php",{"file":364,"line":327,"context":273},{"file":364,"line":329,"context":273},{"file":364,"line":91,"context":273},{"file":364,"line":332,"context":273},{"file":364,"line":334,"context":273},8,[],[373,399,410,427,450,465,475,491,502,513,524,538,549,557,568,579,589,604,614,624,643,654,664,694,702,710,718,726,734,745,753,761,774,782,790,812,820,828],{"entryPoint":374,"graph":375,"unsanitizedCount":11,"severity":398},"ajax_overview_turn_module (admin\\src\\class_admin.php:184)",{"nodes":376,"edges":395},[377,382,387,390],{"id":378,"type":379,"label":380,"file":40,"line":381},"n0","source","$_REQUEST",189,{"id":383,"type":384,"label":385,"file":40,"line":99,"wp_function":386},"n1","sink","get_results() [SQLi]","get_results",{"id":388,"type":379,"label":380,"file":40,"line":389},"n2",190,{"id":391,"type":384,"label":392,"file":40,"line":393,"wp_function":394},"n3","query() [SQLi]",217,"query",[396,397],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},"low",{"entryPoint":400,"graph":401,"unsanitizedCount":11,"severity":398},"\u003Cclass_admin> (admin\\src\\class_admin.php:0)",{"nodes":402,"edges":407},[403,404,405,406],{"id":378,"type":379,"label":380,"file":40,"line":381},{"id":383,"type":384,"label":385,"file":40,"line":99,"wp_function":386},{"id":388,"type":379,"label":380,"file":40,"line":389},{"id":391,"type":384,"label":392,"file":40,"line":393,"wp_function":394},[408,409],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":411,"graph":412,"unsanitizedCount":11,"severity":398},"\u003Cclass_list_table> (admin\\src\\class_list_table.php:0)",{"nodes":413,"edges":424},[414,417,419,420],{"id":378,"type":379,"label":415,"file":271,"line":416},"$_REQUEST (x2)",135,{"id":383,"type":384,"label":385,"file":271,"line":418,"wp_function":386},160,{"id":388,"type":379,"label":380,"file":271,"line":416},{"id":391,"type":384,"label":421,"file":271,"line":422,"wp_function":423},"get_var() [SQLi]",175,"get_var",[425,426],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":428,"graph":429,"unsanitizedCount":11,"severity":398},"bzhy_discount_rule_edit (modules\\discount\\class_discount_admin.php:264)",{"nodes":430,"edges":446},[431,432,436,438,440,443],{"id":378,"type":379,"label":380,"file":90,"line":309},{"id":383,"type":384,"label":433,"file":90,"line":434,"wp_function":435},"get_row() [SQLi]",269,"get_row",{"id":388,"type":379,"label":380,"file":90,"line":437},315,{"id":391,"type":384,"label":385,"file":90,"line":439,"wp_function":386},320,{"id":441,"type":379,"label":380,"file":90,"line":442},"n4",316,{"id":444,"type":384,"label":392,"file":90,"line":445,"wp_function":394},"n5",328,[447,448,449],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"from":441,"to":444,"sanitized":231},{"entryPoint":451,"graph":452,"unsanitizedCount":11,"severity":398},"action_assign_rule_to_catagory (modules\\discount\\class_discount_admin.php:558)",{"nodes":453,"edges":462},[454,456,458,460],{"id":378,"type":379,"label":380,"file":90,"line":455},573,{"id":383,"type":384,"label":433,"file":90,"line":457,"wp_function":435},574,{"id":388,"type":379,"label":380,"file":90,"line":459},616,{"id":391,"type":384,"label":385,"file":90,"line":461,"wp_function":386},623,[463,464],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":466,"graph":467,"unsanitizedCount":11,"severity":398},"\u003Cclass_gdpr_admin> (modules\\gdpr\\class_gdpr_admin.php:0)",{"nodes":468,"edges":473},[469,471],{"id":378,"type":379,"label":380,"file":133,"line":470},244,{"id":383,"type":384,"label":385,"file":133,"line":472,"wp_function":386},285,[474],{"from":378,"to":383,"sanitized":231},{"entryPoint":476,"graph":477,"unsanitizedCount":11,"severity":398},"\u003Cclass_kbs_admin> (modules\\kbs\\class_kbs_admin.php:0)",{"nodes":478,"edges":488},[479,482,484,486],{"id":378,"type":379,"label":480,"file":158,"line":481},"$_GET",198,{"id":383,"type":384,"label":385,"file":158,"line":483,"wp_function":386},215,{"id":388,"type":379,"label":380,"file":158,"line":485},411,{"id":391,"type":384,"label":392,"file":158,"line":487,"wp_function":394},427,[489,490],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":492,"graph":493,"unsanitizedCount":11,"severity":398},"ajax_overview_turn_module (trunk\\admin\\src\\class_admin.php:184)",{"nodes":494,"edges":499},[495,496,497,498],{"id":378,"type":379,"label":380,"file":172,"line":381},{"id":383,"type":384,"label":385,"file":172,"line":99,"wp_function":386},{"id":388,"type":379,"label":380,"file":172,"line":389},{"id":391,"type":384,"label":392,"file":172,"line":393,"wp_function":394},[500,501],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":503,"graph":504,"unsanitizedCount":11,"severity":398},"\u003Cclass_admin> (trunk\\admin\\src\\class_admin.php:0)",{"nodes":505,"edges":510},[506,507,508,509],{"id":378,"type":379,"label":380,"file":172,"line":381},{"id":383,"type":384,"label":385,"file":172,"line":99,"wp_function":386},{"id":388,"type":379,"label":380,"file":172,"line":389},{"id":391,"type":384,"label":392,"file":172,"line":393,"wp_function":394},[511,512],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":514,"graph":515,"unsanitizedCount":11,"severity":398},"\u003Cclass_list_table> (trunk\\admin\\src\\class_list_table.php:0)",{"nodes":516,"edges":521},[517,518,519,520],{"id":378,"type":379,"label":415,"file":336,"line":416},{"id":383,"type":384,"label":385,"file":336,"line":418,"wp_function":386},{"id":388,"type":379,"label":380,"file":336,"line":416},{"id":391,"type":384,"label":421,"file":336,"line":422,"wp_function":423},[522,523],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":525,"graph":526,"unsanitizedCount":11,"severity":398},"bzhy_discount_rule_edit (trunk\\modules\\discount\\class_discount_admin.php:264)",{"nodes":527,"edges":534},[528,529,530,531,532,533],{"id":378,"type":379,"label":380,"file":190,"line":309},{"id":383,"type":384,"label":433,"file":190,"line":434,"wp_function":435},{"id":388,"type":379,"label":380,"file":190,"line":437},{"id":391,"type":384,"label":385,"file":190,"line":439,"wp_function":386},{"id":441,"type":379,"label":380,"file":190,"line":442},{"id":444,"type":384,"label":392,"file":190,"line":445,"wp_function":394},[535,536,537],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"from":441,"to":444,"sanitized":231},{"entryPoint":539,"graph":540,"unsanitizedCount":11,"severity":398},"action_assign_rule_to_catagory (trunk\\modules\\discount\\class_discount_admin.php:558)",{"nodes":541,"edges":546},[542,543,544,545],{"id":378,"type":379,"label":380,"file":190,"line":455},{"id":383,"type":384,"label":433,"file":190,"line":457,"wp_function":435},{"id":388,"type":379,"label":380,"file":190,"line":459},{"id":391,"type":384,"label":385,"file":190,"line":461,"wp_function":386},[547,548],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":550,"graph":551,"unsanitizedCount":11,"severity":398},"\u003Cclass_gdpr_admin> (trunk\\modules\\gdpr\\class_gdpr_admin.php:0)",{"nodes":552,"edges":555},[553,554],{"id":378,"type":379,"label":380,"file":210,"line":470},{"id":383,"type":384,"label":385,"file":210,"line":472,"wp_function":386},[556],{"from":378,"to":383,"sanitized":231},{"entryPoint":558,"graph":559,"unsanitizedCount":11,"severity":398},"\u003Cclass_kbs_admin> (trunk\\modules\\kbs\\class_kbs_admin.php:0)",{"nodes":560,"edges":565},[561,562,563,564],{"id":378,"type":379,"label":480,"file":221,"line":481},{"id":383,"type":384,"label":385,"file":221,"line":483,"wp_function":386},{"id":388,"type":379,"label":380,"file":221,"line":485},{"id":391,"type":384,"label":392,"file":221,"line":487,"wp_function":394},[566,567],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"entryPoint":569,"graph":570,"unsanitizedCount":28,"severity":578},"valid_new_rule (modules\\discount\\class_discount_admin.php:442)",{"nodes":571,"edges":576},[572,574],{"id":378,"type":379,"label":380,"file":90,"line":573},445,{"id":383,"type":384,"label":385,"file":90,"line":575,"wp_function":386},454,[577],{"from":378,"to":383,"sanitized":229},"high",{"entryPoint":580,"graph":581,"unsanitizedCount":28,"severity":578},"valid_edit_rule (modules\\discount\\class_discount_admin.php:470)",{"nodes":582,"edges":587},[583,585],{"id":378,"type":379,"label":380,"file":90,"line":584},473,{"id":383,"type":384,"label":385,"file":90,"line":586,"wp_function":386},484,[588],{"from":378,"to":383,"sanitized":229},{"entryPoint":590,"graph":591,"unsanitizedCount":603,"severity":578},"del_rule (modules\\discount\\class_discount_admin.php:503)",{"nodes":592,"edges":600},[593,595,597,598],{"id":378,"type":379,"label":415,"file":90,"line":594},505,{"id":383,"type":384,"label":385,"file":90,"line":596,"wp_function":386},511,{"id":388,"type":379,"label":415,"file":90,"line":594},{"id":391,"type":384,"label":392,"file":90,"line":599,"wp_function":394},533,[601,602],{"from":378,"to":383,"sanitized":229},{"from":388,"to":391,"sanitized":229},4,{"entryPoint":605,"graph":606,"unsanitizedCount":72,"severity":578},"action_rule_assigned_list (modules\\discount\\class_discount_admin.php:680)",{"nodes":607,"edges":612},[608,610],{"id":378,"type":379,"label":415,"file":90,"line":609},682,{"id":383,"type":384,"label":385,"file":90,"line":611,"wp_function":386},684,[613],{"from":378,"to":383,"sanitized":229},{"entryPoint":615,"graph":616,"unsanitizedCount":28,"severity":578},"del_assoc (modules\\discount\\class_discount_admin.php:846)",{"nodes":617,"edges":622},[618,620],{"id":378,"type":379,"label":380,"file":90,"line":619},848,{"id":383,"type":384,"label":392,"file":90,"line":621,"wp_function":394},854,[623],{"from":378,"to":383,"sanitized":229},{"entryPoint":625,"graph":626,"unsanitizedCount":28,"severity":578},"add_policy (modules\\discount\\class_discount_admin.php:868)",{"nodes":627,"edges":639},[628,630,632,634,637],{"id":378,"type":379,"label":480,"file":90,"line":629},920,{"id":383,"type":384,"label":385,"file":90,"line":631,"wp_function":386},921,{"id":388,"type":379,"label":380,"file":90,"line":633},898,{"id":391,"type":635,"label":636,"file":90,"line":633},"transform","→ check_policy_scope_valid()",{"id":441,"type":384,"label":385,"file":190,"line":638,"wp_function":386},1108,[640,641,642],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":229},{"from":391,"to":441,"sanitized":229},{"entryPoint":644,"graph":645,"unsanitizedCount":72,"severity":578},"list_policy (modules\\discount\\class_discount_admin.php:968)",{"nodes":646,"edges":652},[647,650],{"id":378,"type":379,"label":648,"file":90,"line":649},"$_GET (x2)",971,{"id":383,"type":384,"label":385,"file":90,"line":651,"wp_function":386},972,[653],{"from":378,"to":383,"sanitized":229},{"entryPoint":655,"graph":656,"unsanitizedCount":28,"severity":578},"del_policy (modules\\discount\\class_discount_admin.php:1148)",{"nodes":657,"edges":662},[658,660],{"id":378,"type":379,"label":380,"file":90,"line":659},1150,{"id":383,"type":384,"label":392,"file":90,"line":661,"wp_function":394},1156,[663],{"from":378,"to":383,"sanitized":229},{"entryPoint":665,"graph":666,"unsanitizedCount":28,"severity":578},"\u003Cclass_discount_admin> (modules\\discount\\class_discount_admin.php:0)",{"nodes":667,"edges":687},[668,669,670,672,673,675,676,679,681,683,685],{"id":378,"type":379,"label":415,"file":90,"line":309},{"id":383,"type":384,"label":433,"file":90,"line":434,"wp_function":435},{"id":388,"type":379,"label":671,"file":90,"line":437},"$_REQUEST (x8)",{"id":391,"type":384,"label":385,"file":90,"line":439,"wp_function":386},{"id":441,"type":379,"label":674,"file":90,"line":442},"$_REQUEST (x5)",{"id":444,"type":384,"label":392,"file":90,"line":445,"wp_function":394},{"id":677,"type":379,"label":678,"file":90,"line":629},"n6","$_GET (x10)",{"id":680,"type":384,"label":385,"file":90,"line":631,"wp_function":386},"n7",{"id":682,"type":379,"label":380,"file":90,"line":633},"n8",{"id":684,"type":635,"label":636,"file":90,"line":633},"n9",{"id":686,"type":384,"label":385,"file":190,"line":638,"wp_function":386},"n10",[688,689,690,691,692,693],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"from":441,"to":444,"sanitized":231},{"from":677,"to":680,"sanitized":231},{"from":682,"to":684,"sanitized":229},{"from":684,"to":686,"sanitized":229},{"entryPoint":695,"graph":696,"unsanitizedCount":28,"severity":578},"scancookie (modules\\gdpr\\class_gdpr_admin.php:242)",{"nodes":697,"edges":700},[698,699],{"id":378,"type":379,"label":380,"file":133,"line":470},{"id":383,"type":384,"label":385,"file":133,"line":472,"wp_function":386},[701],{"from":378,"to":383,"sanitized":229},{"entryPoint":703,"graph":704,"unsanitizedCount":28,"severity":578},"section_kbManagement_form (modules\\kbs\\class_kbs_admin.php:195)",{"nodes":705,"edges":708},[706,707],{"id":378,"type":379,"label":480,"file":158,"line":481},{"id":383,"type":384,"label":385,"file":158,"line":483,"wp_function":386},[709],{"from":378,"to":383,"sanitized":229},{"entryPoint":711,"graph":712,"unsanitizedCount":28,"severity":578},"kb_bulk_action_handler (modules\\kbs\\class_kbs_admin.php:397)",{"nodes":713,"edges":716},[714,715],{"id":378,"type":379,"label":380,"file":158,"line":485},{"id":383,"type":384,"label":392,"file":158,"line":487,"wp_function":394},[717],{"from":378,"to":383,"sanitized":229},{"entryPoint":719,"graph":720,"unsanitizedCount":28,"severity":578},"valid_new_rule (trunk\\modules\\discount\\class_discount_admin.php:442)",{"nodes":721,"edges":724},[722,723],{"id":378,"type":379,"label":380,"file":190,"line":573},{"id":383,"type":384,"label":385,"file":190,"line":575,"wp_function":386},[725],{"from":378,"to":383,"sanitized":229},{"entryPoint":727,"graph":728,"unsanitizedCount":28,"severity":578},"valid_edit_rule (trunk\\modules\\discount\\class_discount_admin.php:470)",{"nodes":729,"edges":732},[730,731],{"id":378,"type":379,"label":380,"file":190,"line":584},{"id":383,"type":384,"label":385,"file":190,"line":586,"wp_function":386},[733],{"from":378,"to":383,"sanitized":229},{"entryPoint":735,"graph":736,"unsanitizedCount":603,"severity":578},"del_rule (trunk\\modules\\discount\\class_discount_admin.php:503)",{"nodes":737,"edges":742},[738,739,740,741],{"id":378,"type":379,"label":415,"file":190,"line":594},{"id":383,"type":384,"label":385,"file":190,"line":596,"wp_function":386},{"id":388,"type":379,"label":415,"file":190,"line":594},{"id":391,"type":384,"label":392,"file":190,"line":599,"wp_function":394},[743,744],{"from":378,"to":383,"sanitized":229},{"from":388,"to":391,"sanitized":229},{"entryPoint":746,"graph":747,"unsanitizedCount":72,"severity":578},"action_rule_assigned_list (trunk\\modules\\discount\\class_discount_admin.php:680)",{"nodes":748,"edges":751},[749,750],{"id":378,"type":379,"label":415,"file":190,"line":609},{"id":383,"type":384,"label":385,"file":190,"line":611,"wp_function":386},[752],{"from":378,"to":383,"sanitized":229},{"entryPoint":754,"graph":755,"unsanitizedCount":28,"severity":578},"del_assoc (trunk\\modules\\discount\\class_discount_admin.php:846)",{"nodes":756,"edges":759},[757,758],{"id":378,"type":379,"label":380,"file":190,"line":619},{"id":383,"type":384,"label":392,"file":190,"line":621,"wp_function":394},[760],{"from":378,"to":383,"sanitized":229},{"entryPoint":762,"graph":763,"unsanitizedCount":28,"severity":578},"add_policy (trunk\\modules\\discount\\class_discount_admin.php:868)",{"nodes":764,"edges":770},[765,766,767,768,769],{"id":378,"type":379,"label":480,"file":190,"line":629},{"id":383,"type":384,"label":385,"file":190,"line":631,"wp_function":386},{"id":388,"type":379,"label":380,"file":190,"line":633},{"id":391,"type":635,"label":636,"file":190,"line":633},{"id":441,"type":384,"label":385,"file":190,"line":638,"wp_function":386},[771,772,773],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":229},{"from":391,"to":441,"sanitized":229},{"entryPoint":775,"graph":776,"unsanitizedCount":72,"severity":578},"list_policy (trunk\\modules\\discount\\class_discount_admin.php:968)",{"nodes":777,"edges":780},[778,779],{"id":378,"type":379,"label":648,"file":190,"line":649},{"id":383,"type":384,"label":385,"file":190,"line":651,"wp_function":386},[781],{"from":378,"to":383,"sanitized":229},{"entryPoint":783,"graph":784,"unsanitizedCount":28,"severity":578},"del_policy (trunk\\modules\\discount\\class_discount_admin.php:1148)",{"nodes":785,"edges":788},[786,787],{"id":378,"type":379,"label":380,"file":190,"line":659},{"id":383,"type":384,"label":392,"file":190,"line":661,"wp_function":394},[789],{"from":378,"to":383,"sanitized":229},{"entryPoint":791,"graph":792,"unsanitizedCount":28,"severity":578},"\u003Cclass_discount_admin> (trunk\\modules\\discount\\class_discount_admin.php:0)",{"nodes":793,"edges":805},[794,795,796,797,798,799,800,801,802,803,804],{"id":378,"type":379,"label":415,"file":190,"line":309},{"id":383,"type":384,"label":433,"file":190,"line":434,"wp_function":435},{"id":388,"type":379,"label":671,"file":190,"line":437},{"id":391,"type":384,"label":385,"file":190,"line":439,"wp_function":386},{"id":441,"type":379,"label":674,"file":190,"line":442},{"id":444,"type":384,"label":392,"file":190,"line":445,"wp_function":394},{"id":677,"type":379,"label":678,"file":190,"line":629},{"id":680,"type":384,"label":385,"file":190,"line":631,"wp_function":386},{"id":682,"type":379,"label":380,"file":190,"line":633},{"id":684,"type":635,"label":636,"file":190,"line":633},{"id":686,"type":384,"label":385,"file":190,"line":638,"wp_function":386},[806,807,808,809,810,811],{"from":378,"to":383,"sanitized":231},{"from":388,"to":391,"sanitized":231},{"from":441,"to":444,"sanitized":231},{"from":677,"to":680,"sanitized":231},{"from":682,"to":684,"sanitized":229},{"from":684,"to":686,"sanitized":229},{"entryPoint":813,"graph":814,"unsanitizedCount":28,"severity":578},"scancookie (trunk\\modules\\gdpr\\class_gdpr_admin.php:242)",{"nodes":815,"edges":818},[816,817],{"id":378,"type":379,"label":380,"file":210,"line":470},{"id":383,"type":384,"label":385,"file":210,"line":472,"wp_function":386},[819],{"from":378,"to":383,"sanitized":229},{"entryPoint":821,"graph":822,"unsanitizedCount":28,"severity":578},"section_kbManagement_form (trunk\\modules\\kbs\\class_kbs_admin.php:195)",{"nodes":823,"edges":826},[824,825],{"id":378,"type":379,"label":480,"file":221,"line":481},{"id":383,"type":384,"label":385,"file":221,"line":483,"wp_function":386},[827],{"from":378,"to":383,"sanitized":229},{"entryPoint":829,"graph":830,"unsanitizedCount":28,"severity":578},"kb_bulk_action_handler (trunk\\modules\\kbs\\class_kbs_admin.php:397)",{"nodes":831,"edges":834},[832,833],{"id":378,"type":379,"label":380,"file":221,"line":485},{"id":383,"type":384,"label":392,"file":221,"line":487,"wp_function":394},[835],{"from":378,"to":383,"sanitized":229},{"summary":837,"deductions":838},"The plugin \"bzhy-feature-enhancements-for-woocommerce\" v1.2.2 exhibits a generally strong security posture due to its adherence to several best practices. Notably, all identified SQL queries utilize prepared statements, and a significant majority of output operations are properly escaped. The plugin also demonstrates a good awareness of WordPress security by implementing nonce and capability checks on many of its entry points, and its vulnerability history is clean, with no recorded CVEs. This suggests a proactive approach to security by the developers.\n\nHowever, the static analysis reveals a concerning pattern in the taint analysis. A significant number of flows (24 out of 38) were found with unsanitized paths, and critically, all of these are flagged as high severity. While the static analysis itself did not uncover exploitable vulnerabilities, these unsanitized path flows represent potential entry points for attackers if user-supplied data is not handled with extreme care before being used in file operations or other sensitive contexts. The presence of 8 file operations without further context on their sanitization or authorization is also a point of attention, especially in conjunction with the taint analysis results.\n\nIn conclusion, while the plugin's foundational security practices like prepared SQL statements and robust output escaping are commendable, the high number of high-severity unsanitized path flows in the taint analysis is a significant weakness that requires immediate investigation and remediation. The absence of a known vulnerability history is positive, but it does not negate the potential risks highlighted by the taint analysis. Addressing these unsanitized paths is crucial to ensure the plugin's overall security.",[839,841,844],{"reason":840,"points":322},"High severity unsanitized path flows",{"reason":842,"points":843},"24\u002F38 taint flows have unsanitized paths",12,{"reason":845,"points":72},"8 file operations","2026-03-17T06:51:09.875Z",{"wat":848,"direct":858},{"assetPaths":849,"generatorPatterns":852,"scriptPaths":853,"versionParams":855},[850,851],"\u002Fwp-content\u002Fplugins\u002Fbzhy-feature-enhancements-for-woocommerce\u002Fpublic\u002Fjs\u002Fbzhy_admin.js","\u002Fwp-content\u002Fplugins\u002Fbzhy-feature-enhancements-for-woocommerce\u002Fpublic\u002Fcss\u002Fbzhy_admin.css",[],[854],"wp-content\u002Fplugins\u002Fbzhy-feature-enhancements-for-woocommerce\u002Fpublic\u002Fjs\u002Fbzhy_admin.js",[856,857],"bzhy_admin.js?ver=","bzhy_admin.css?ver=",{"cssClasses":859,"htmlComments":862,"htmlAttributes":863,"restEndpoints":865,"jsGlobals":866,"shortcodeOutput":868},[860,861],"bzhy_admin_active","bzhy_admin_disactive",[],[864],"data-bzhy-type",[],[867],"bzhy_admin",[]]