CBX User Online & Last Login Security & Risk Analysis

The cbxuseronline plugin version 1.3.5 presents a mixed security posture. While it demonstrates good practices by largely avoiding dangerous functions, file operations, and external HTTP requests, and shows a respectable percentage of properly escaped outputs and prepared SQL statements, there are significant areas of concern. The plugin has a notable attack surface, with 3 out of 4 entry points lacking authentication checks. The taint analysis reveals 2 critical severity flows with unsanitized paths, indicating potential for serious vulnerabilities like remote code execution or data compromise if these flows are exploitable. The absence of any recorded vulnerabilities in its history could suggest a lack of past targeting or successful mitigation, but it does not negate the risks identified in the static analysis. Overall, the plugin has strengths in code hygiene but weaknesses in access control and data sanitization at critical entry points.

The primary risks stem from the unprotected AJAX handlers and the identified taint flows. The fact that these flows are flagged as high severity and involve unsanitized paths means an attacker could potentially leverage them to execute arbitrary code or access sensitive data. The presence of unprotected AJAX endpoints further exacerbates this risk by allowing unauthenticated access to plugin functionalities, which could then be combined with the identified taint issues. While the plugin does implement nonce and capability checks on some entry points, the unprotected ones represent a significant oversight.