[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBnBavc3z32CcB8Hcw4_tOlHnOCcEPxttFpaZImsRiM8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":58,"fingerprints":150},"camoo-cdn","CAMOO CDN","2.0.3","Camoo Sarl","https:\u002F\u002Fprofiles.wordpress.org\u002Fcamoo\u002F","\u003Cp>Camoo.Hosting Automatic Integration with CDN for websites. This plugin allows you to easily use CDN on your WordPress and accelerate website loading in any country, handling any load on your service. For optimal performance, CAMOO CDN requires WP Super Cache to be installed and activated on your WordPress site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Replace static links with CDN links\u003C\u002Fli>\n\u003C\u002Ful>\n","Camoo.Hosting Automatic Integration with CDN for WordPress websites.",60,2292,0,"2024-11-17T14:00:00.000Z","6.7.5","6.4.3","8.0",[19,20,21,22,23],"camoo-cdn-integration","camoo-hosting","hebergement-web-avec-cdn","managed-hosting-with-cdn","wordpress-caching","https:\u002F\u002Fgithub.com\u002Fcamoo\u002Fwp-camoo-cdn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcamoo-cdn.2.0.3.zip",92,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"camoo",4,310,96,30,91,"2026-04-04T14:10:31.619Z",[39],{"slug":40,"name":41,"version":42,"author":7,"author_profile":8,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":57,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"camoo-sso","CAMOO SSO","1.5.8","\u003Cp>Camoo.Hosting Single sign On for Managed WordPress sites,\u003Cbr \u002F>\nThis plugin allows signing in Camoo.Hosting users via SSO to your managed WordPress without having to remember any password of your website.\u003Cbr \u002F>\nPlease note that the user information and role mappings are updated each time the user logs in via SSO. If you do not want to sync the roles from your existing system to WordPress, you can disable the functionality via the settings page.\u003C\u002Fp>\n","Camoo.Hosting Single sign On for WordPress websites.",200,5821,"2025-12-31T09:54:00.000Z","6.9.4","5.6","7.4",[52,20,53,54],"camoo-sso-integration","hebergement-web-avec-sso","managed-hosting-with-sso","https:\u002F\u002Fgithub.com\u002Fcamoo\u002Fwp-camoo-sso","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcamoo-sso.1.5.8.zip",100,{"attackSurface":59,"codeSignals":121,"taintFlows":138,"riskAssessment":139,"analyzedAt":149},{"hooks":60,"ajaxHandlers":115,"restRoutes":116,"shortcodes":117,"cronEvents":118,"entryPointCount":13,"unprotectedCount":13},[61,67,72,77,81,84,89,93,97,101,104,107,111],{"type":62,"name":63,"callback":64,"file":65,"line":66},"filter","all_plugins","modifyPluginDescription","src\\Bootstrap.php",53,{"type":68,"name":69,"callback":70,"file":65,"line":71},"action","admin_notices","displaySyncMessages",54,{"type":62,"name":73,"callback":74,"priority":75,"file":65,"line":76},"posts_results","read",10,59,{"type":68,"name":78,"callback":79,"file":65,"line":80},"save_post","clear",62,{"type":68,"name":82,"callback":79,"file":65,"line":83},"deleted_post",63,{"type":68,"name":85,"callback":86,"file":87,"line":88},"admin_menu","appendMenuLink","src\\Cache\\Settings.php",24,{"type":68,"name":90,"callback":91,"file":87,"line":92},"admin_init","registerSettings",25,{"type":68,"name":94,"callback":95,"priority":75,"file":87,"line":96},"updated_option","onOptionUpdate",26,{"type":68,"name":69,"callback":98,"file":99,"line":100},"wp_super_cache_missing_notice","src\\Services\\Integration.php",20,{"type":68,"name":102,"callback":103,"file":99,"line":92},"plugins_loaded","init_actions",{"type":62,"name":105,"callback":106,"file":99,"line":66},"cron_schedules","addCustomCronSchedule",{"type":68,"name":108,"callback":109,"file":99,"line":110},"wp_camoo_cdn_cron_soon","sync",55,{"type":68,"name":90,"callback":112,"file":113,"line":114},"wpsc_admin_bar_delete_cache","src\\Services\\SyncFiles.php",44,[],[],[],[119],{"hook":108,"callback":108,"file":99,"line":120},81,{"dangerousFunctions":122,"sqlUsage":123,"outputEscaping":125,"fileOperations":13,"externalRequests":136,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":137},[],{"prepared":32,"raw":13,"locations":124},[],{"escaped":126,"rawEcho":32,"locations":127},14,[128,130,132,134],{"file":87,"line":34,"context":129},"raw output",{"file":87,"line":131,"context":129},107,{"file":87,"line":133,"context":129},117,{"file":87,"line":135,"context":129},124,1,[],[],{"summary":140,"deductions":141},"The \"camoo-cdn\" plugin version 2.0.3 demonstrates a generally good security posture based on the provided static analysis. The absence of any known CVEs, including critical or high severity ones, is a significant strength. Furthermore, the code shows no critical or high severity taint flows, and all detected SQL queries utilize prepared statements, indicating a mindful approach to preventing common web vulnerabilities. The plugin also avoids dangerous functions and file operations, further reducing its attack surface.\n\nHowever, there are areas for improvement. The lack of capability checks and nonce checks on any entry points (even though the entry point count is zero, any future addition would lack these) is a significant concern. While the current static analysis reports zero AJAX handlers, REST API routes, and shortcodes, the presence of a cron event without explicit capability checks means that its execution context could be exploited if triggered by an unauthenticated user or a lower-privileged role. Additionally, the output escaping is not fully comprehensive, with 22% of outputs potentially being unescaped, which could lead to cross-site scripting vulnerabilities in specific scenarios.\n\nIn conclusion, \"camoo-cdn\" v2.0.3 has a solid foundation with no immediately exploitable vulnerabilities identified in the static analysis and vulnerability history. The absence of known vulnerabilities is a positive indicator. Nevertheless, the omission of capability and nonce checks on potential future entry points, and the imperfect output escaping, represent security weaknesses that could be exploited or lead to vulnerabilities if the plugin evolves. Addressing these points would significantly enhance its overall security.",[142,144,146],{"reason":143,"points":75},"No capability checks found",{"reason":145,"points":75},"No nonce checks found",{"reason":147,"points":148},"22% of outputs not properly escaped",7,"2026-03-16T21:50:34.267Z",{"wat":151,"direct":164},{"assetPaths":152,"generatorPatterns":157,"scriptPaths":158,"versionParams":159},[153,154,155,156],"\u002Fwp-content\u002Fplugins\u002Fcamoo-cdn\u002Fpublic\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fcamoo-cdn\u002Fpublic\u002Fassets\u002Fcss\u002Ffrontend.css","\u002Fwp-content\u002Fplugins\u002Fcamoo-cdn\u002Fpublic\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fcamoo-cdn\u002Fpublic\u002Fassets\u002Fjs\u002Ffrontend.js",[],[155,156],[160,161,162,163],"camoo-cdn\u002Fpublic\u002Fassets\u002Fcss\u002Fadmin.css?ver=","camoo-cdn\u002Fpublic\u002Fassets\u002Fcss\u002Ffrontend.css?ver=","camoo-cdn\u002Fpublic\u002Fassets\u002Fjs\u002Fadmin.js?ver=","camoo-cdn\u002Fpublic\u002Fassets\u002Fjs\u002Ffrontend.js?ver=",{"cssClasses":165,"htmlComments":167,"htmlAttributes":168,"restEndpoints":169,"jsGlobals":170,"shortcodeOutput":172},[166],"camoo-cdn-settings-page",[],[],[],[171],"WP_CAMOO_CDN_SETTINGS",[]]