[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fdkbJ2uyPO6Htla0zwMUeV7a8hgl6TLUWhMUMwTNuZ6g":3,"$fbY3jho5oe7zRBqIuGmn2zQ__slphD7wYgdVqCImMeok":400,"$f9-x581KMP0iu-tnFKsMsOQuSF4BTzFcTZi2k30C3Ttg":404},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":37,"analysis":132,"fingerprints":372},"code-sample-contact-form","Code Sample Contact Form","1.0.0","Hung Truong","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodesampleinfo\u002F","\u003Cp>With CS Contact Form, you can create an manage multiple contact form. This plugin support customize form contact very easily. Moreover, the form support send mail, check validate, reCAPTCHA. The form is styled basic to display on Front-end.\u003C\u002Fp>\n\u003Ch3>Features of free version\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Easy install and use\u003C\u002Fli>\n\u003Cli>Allows you to easily create WordPress contact forms in just a few minutes without writing any code.\u003C\u002Fli>\n\u003Cli>Works perfectly with all versions of WordPress\u003C\u002Fli>\n\u003Cli>Fully Responsive\u003C\u002Fli>\n\u003Cli>Add Unlimited fields\u003C\u002Fli>\n\u003Cli>Required option for any field you need\u003C\u002Fli>\n\u003Cli>Easily move fields positions\u003C\u002Fli>\n\u003Cli>Option apply Google reCaptcha for your form\u003C\u002Fli>\n\u003Cli>Config Recipient email and receive mail from contact form.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features of Pro version\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>All features of free version\u003C\u002Fli>\n\u003Cli>There is a design template for contact page\u003C\u002Fli>\n\u003Cli>Ajax validate for form contact\u003C\u002Fli>\n\u003Cli>Allow you to save Client contact content to database and display in dashboard. If you don’t like that feature, you can turn off it\u003C\u002Fli>\n\u003Cli>You can add more information (Address, Phone, Email, Website) to display on contact page\u003C\u002Fli>\n\u003Cli>You can add Google Map and display on contact page.\u003C\u002Fli>\n\u003Cli>You can add and display social channel (YouTube, Facebook, Twitter, Instagram, Linkedin, Pinterest).\u003C\u002Fli>\n\u003Cli>You can add and display chat message (WhatsApp, Skyper)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Docs and support\u003C\u002Fh3>\n\u003Cp>You can find:\u003Cbr \u002F>\n– Guide use plugin form: http:\u002F\u002Fcodesamples.info\u002F\u003Cbr \u002F>\n– Report Bug: https:\u002F\u002Fgithub.com\u002FCodesampleinfo\u002Fcs_contact_form\u002Fissues\u003Cbr \u002F>\n– Our Fanpage: https:\u002F\u002Fwww.facebook.com\u002FtemplateHTML\u002F\u003C\u002Fp>\n\u003Cp>Visit our website http:\u002F\u002Fcodesamples.info\u002F, you maybe get more detailed information.\u003C\u002Fp>\n\u003Ch4>Privacy notices\u003C\u002Fh4>\n\u003Cp>With the default configuration, this plugin, in itself, does not:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Track users by stealth;\u003C\u002Fli>\n\u003Cli>Write any user personal data to the database;\u003C\u002Fli>\n\u003Cli>Send any data to external servers;\u003C\u002Fli>\n\u003Cli>Use cookies.\u003C\u002Fli>\n\u003C\u002Ful>\n","This is plugin to create simple contact form.",0,808,80,1,"2023-09-29T02:34:00.000Z","6.1.10","5.0","5.6",[20,21,22,23,24],"captcha","contact","contact-form","email","form","http:\u002F\u002Fcodesamples.info","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcode-sample-contact-form.zip",85,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"codesampleinfo",30,84,"2026-05-20T04:11:17.453Z",[38,55,75,95,109],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":34,"downloaded":46,"rating":13,"num_ratings":14,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":52,"download_link":53,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":54},"nino-contact-form","Nino contact form","1.0.2","ninotheme","https:\u002F\u002Fprofiles.wordpress.org\u002Fninotheme\u002F","\u003Cp>Nino Contact Form is a super lightweight plugin that easily create and add contact form to wordpress site. Using shortcode so it can be implemented on a page or a post. With 6 layout predefined, 3 form style and some other options, you will have the professional contact form.\u003C\u002Fp>\n\u003Cp>For more information, check out \u003Ca href=\"http:\u002F\u002Fninotheme.com\u002Fplugins\u002Fnino-contact-form\" rel=\"nofollow ugc\">ninotheme.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>6 form layout predefine.\u003C\u002Fli>\n\u003Cli>3 layout style.\u003C\u002Fli>\n\u003Cli>Security captcha to prevent spam.\u003C\u002Fli>\n\u003Cli>Using shortcode to add contact form to a page or post.\u003C\u002Fli>\n\u003Cli>Language customization for texts and labels.\u003C\u002Fli>\n\u003Cli>Add a contact box to the sidebar of your website.\u003C\u002Fli>\n\u003Cli>Easy to config\u003C\u002Fli>\n\u003C\u002Ful>\n","The easiest way to get contact form to your site.",4176,"2014-10-12T17:20:00.000Z","3.9.40","3.1","",[20,21,22,23,24],"http:\u002F\u002Fwww.ninotheme.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnino-contact-form.1.0.2.zip","2026-04-16T10:56:18.058Z",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":50,"tags":70,"homepage":73,"download_link":74,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":54},"lana-contact-form","Lana Contact Form","1.4.0","Lana Codes","https:\u002F\u002Fprofiles.wordpress.org\u002Flanacodes\u002F","\u003Cp>Easy to use bootstrap based contact form with captcha.\u003C\u002Fp>\n\u003Cp>The Lana Contact Form are developed primarily for Lana themes.\u003C\u002Fp>\n\u003Ch4>Video\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FJt62n4tq4R4?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>How to use with function:\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>\u003C?php\nif( function_exists( 'lana_contact_form' ) ) {\n    echo lana_contact_form();\n}\n?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Available shortcodes:\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>[lana_contact_form]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Customize view:\u003C\u002Fh4>\n\u003Cp>Copy the \u003Ccode>\u002Fwp-content\u002Fplugins\u002Flana-contact-form\u002Fview\u002Flana-contact-form.php\u003C\u002Fcode> file to \u003Ccode>\u002Fwp-content\u002Fthemes\u002F{your-theme}\u002Flana-contact-form\u002Flana-contact-form.php\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>Change the file in the theme folder.\u003C\u002Fp>\n\u003Ch4>Lana Codes\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flana.codes\u002Fproduct\u002Flana-contact-form\u002F\" rel=\"nofollow ugc\">Lana Contact Form\u003C\u002Fa>\u003C\u002Fp>\n","Easy to use contact form with captcha",20,3808,90,2,"2022-09-13T11:06:00.000Z","6.0.11","4.0",[71,20,22,72],"bootstrap-contact-form","email-message","https:\u002F\u002Flana.codes\u002Fproduct\u002Flana-contact-form\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flana-contact-form.1.4.0.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":14,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":50,"tags":89,"homepage":93,"download_link":94,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29},"freecontactformdotcom","FreeContactFormDotCom","1.2","freecontactform","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreecontactform\u002F","\u003Cp>Simple free contact form with text-based spam prevention.\u003C\u002Fp>\n\u003Cp>Configuration Options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Email the results (Email Address)\u003C\u002Fli>\n\u003Cli>Set the spam prevention (anti-spam) question (challenge)\u003C\u002Fli>\n\u003Cli>Set the expected spam prevention answer\u003C\u002Fli>\n\u003Cli>Set a custom thank you message to display after the form has been submitted \u003C\u002Fli>\n\u003Cli>Link to the Authors plugin page from the bottom of your form.\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple free contact form with text-based spam prevention.",10,4000,100,"2020-05-22T12:08:00.000Z","5.4.19","2.0.2",[90,20,22,91,92],"anti-spam","email-form","free-contact-form","http:\u002F\u002Fwww.freecontactform.com\u002Fwordpress-form.php","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffreecontactformdotcom.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":83,"downloaded":103,"rating":11,"num_ratings":11,"last_updated":104,"tested_up_to":50,"requires_at_least":105,"requires_php":50,"tags":106,"homepage":107,"download_link":108,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":29},"modern-i-infotech-contact-form","Modern-I Contact Form","0.1","moderni infotech","https:\u002F\u002Fprofiles.wordpress.org\u002Famitkukkar\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Fmoderni.in\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Modern-i Infotech\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>1) Moderni is an India based Open Source Web development and designing firm.\u003C\u002Fp>\n\u003Cp>2) We have special expertise in the CMS and Ecommerce solutions. Our inspiration behind all work is Deliverables of the high class and robust Product for Customer.\u003C\u002Fp>\n\u003Cp>3) Moderni provide full-cycle services in the areas of web-based enterprise solutions, web application, and portal development and e-Commerce solutions.\u003C\u002Fp>\n\u003Cp>4) Combining our solid business domain experience, technical expertise, profound knowledge of latest industry trends and quality-driven delivery model we offer progressive end-to-end web solutions.\u003C\u002Fp>\n\u003Ch4>Modern Contact Form Needs Your Support\u003C\u002Fh4>\n\u003Cp>We need support to connect with you.  is it any need to change or any other functionality you need?\u003C\u002Fp>\n\u003Cp>Its hard to continue development for this plugin without contributions like you.\u003C\u002Fp>\n\u003Cp>If you really happy with Modern Contact Form and find it useful, please donate on our site \u003Ca href=\"http:\u002F\u002Fmoderni.in\u002F\" rel=\"nofollow ugc\">\u003Cstrong>making a donation\u003C\u002Fstrong>\u003C\u002Fa> or you can check our blog on (http:\u002F\u002Fmoderni.in\u002Fmoderni-plugin) and give feedback to us.\u003Cbr \u002F>\nYour donation will help encourage and support the plugin’s continued development and better user support.\u003C\u002Fp>\n","Moderni contact form plugin gives a WP most flexible and usable contact form.WP-admin can use either captcha or simple  contact form.",2961,"2012-10-12T13:26:00.000Z","2.9",[20,21,22,23,24],"http:\u002F\u002Fmoderni.in","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmodern-i-infotech-contact-form.zip",{"slug":110,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":83,"downloaded":116,"rating":85,"num_ratings":14,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":50,"tags":120,"homepage":130,"download_link":131,"security_score":27,"vuln_count":11,"unpatched_count":11,"last_vuln_date":28,"fetched_at":54},"woo-shortcode-popup","20160706.1","jumbaeric","https:\u002F\u002Fprofiles.wordpress.org\u002Fjumbaeric\u002F","\u003Cp>This is a conversion rate optimization plugin that adds a call to action button on woocommerce product archives or product page that opens a popup window when clicked, the name of the button and the content(contact 7 shortcode, map shortcode etc) of the pop up window can be inserted in the admin settings area.\u003C\u002Fp>\n\u003Cp>This plugin requires you have woocommerce installed and activated.\u003C\u002Fp>\n\u003Cp>How to use it? Visit http:\u002F\u002Fitboxkenya.com\u002Fincrease-e-commerce-conversion-rate-woo-short-code-popup\u002F\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Current add-ons\u003C\u002Fstrong>\u003Cbr \u002F>\n* shortcode – Enter shortcode and its content will appear on the popup *  popup button text\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Coming soon\u003C\u002Fstrong>\u003Cbr \u002F>\n* (Got more ideas? Tell me!)\u003C\u002Fp>\n\u003Cp>If you have suggestions for a new add-on, feel free to email me at eric@itboxkenya.com. Want regular updates? Become a fan of my sites on Facebook! http:\u002F\u002Fwww.facebook.com\u002Fitboxkenya Or follow my sites on Twitter! http:\u002F\u002Ftwitter.com\u002Fitboxkenya\u003C\u002Fp>\n","Creates a popup button on woocommerce shop page",1694,"2016-08-28T07:05:00.000Z","4.4.34","3.7",[121,122,20,21,22,123,124,23,125,24,126,127,128,129],"ajax","akismet","contact-form-7","convertion-rate-optimization","feedback","map","popup","shortcode","woocommerce","http:\u002F\u002Fjuliwebconsultancy.com\u002Fwoo-shortcode-popup","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-shortcode-popup.zip",{"attackSurface":133,"codeSignals":169,"taintFlows":256,"riskAssessment":357,"analyzedAt":371},{"hooks":134,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":168,"entryPointCount":14,"unprotectedCount":11},[135,141,146,149,151,154,157,159],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","init","ob_start","admin\\controllers\\wp_codesample_contact_controller.php",54,{"type":136,"name":142,"callback":143,"file":144,"line":145},"plugins_loaded","anonymous","includes\\class-wp_codesample_contact.php",152,{"type":136,"name":147,"callback":143,"file":144,"line":148},"admin_enqueue_scripts",167,{"type":136,"name":147,"callback":143,"file":144,"line":150},168,{"type":136,"name":152,"callback":143,"file":144,"line":153},"admin_menu",169,{"type":136,"name":155,"callback":143,"file":144,"line":156},"wp_enqueue_scripts",184,{"type":136,"name":155,"callback":143,"file":144,"line":158},185,{"type":136,"name":137,"callback":138,"file":160,"line":140},"public\\controllers\\wp_codesample_contact-public-controller.php",[],[],[164],{"tag":165,"callback":166,"file":160,"line":167},"cs-contact","load_cs_contact_form",55,[],{"dangerousFunctions":170,"sqlUsage":185,"outputEscaping":187,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":255},[171,175,179,182],{"fn":172,"file":139,"line":173,"context":174},"unserialize",135,"$data = unserialize(get_option('cs_contact', true));",{"fn":172,"file":176,"line":177,"context":178},"admin\\views\\wp_codesample_contact-admin-edit.php",40,"$content = unserialize($contact->post_content);",{"fn":172,"file":160,"line":180,"context":181},89,"$fields = unserialize($data->post_content);",{"fn":172,"file":160,"line":183,"context":184},94,"$options = unserialize(get_option('cs_contact'));",{"prepared":11,"raw":11,"locations":186},[],{"escaped":188,"rawEcho":189,"locations":190},189,32,[191,195,197,200,202,204,207,209,212,214,216,218,219,221,223,224,227,229,231,233,234,235,237,240,242,244,246,247,248,250,251,252],{"file":192,"line":193,"context":194},"admin\\views\\parts\\custom-field.php",27,"raw output",{"file":176,"line":196,"context":194},44,{"file":198,"line":199,"context":194},"admin\\views\\wp_codesample_contact-admin-list.php",59,{"file":198,"line":201,"context":194},64,{"file":198,"line":203,"context":194},93,{"file":205,"line":206,"context":194},"admin\\views\\wp_codesample_contact-admin-setting.php",12,{"file":205,"line":208,"context":194},17,{"file":210,"line":211,"context":194},"admin\\views\\wp_codesample_contact-admin-support.php",6,{"file":210,"line":213,"context":194},15,{"file":210,"line":215,"context":194},24,{"file":210,"line":217,"context":194},33,{"file":210,"line":196,"context":194},{"file":220,"line":34,"context":194},"fields\\checkbox.php",{"file":220,"line":222,"context":194},38,{"file":220,"line":222,"context":194},{"file":225,"line":226,"context":194},"fields\\email.php",22,{"file":228,"line":208,"context":194},"fields\\number.php",{"file":228,"line":230,"context":194},21,{"file":232,"line":34,"context":194},"fields\\radio.php",{"file":232,"line":34,"context":194},{"file":232,"line":34,"context":194},{"file":232,"line":236,"context":194},31,{"file":238,"line":239,"context":194},"fields\\selectbox.php",25,{"file":238,"line":241,"context":194},28,{"file":243,"line":226,"context":194},"fields\\tel.php",{"file":245,"line":215,"context":194},"fields\\text.php",{"file":245,"line":215,"context":194},{"file":245,"line":215,"context":194},{"file":249,"line":215,"context":194},"fields\\url.php",{"file":249,"line":215,"context":194},{"file":249,"line":215,"context":194},{"file":253,"line":254,"context":194},"public\\views\\single_form\\cs_contact_form.php",5,[],[257,275,283,295,303,314,323,331,340,349],{"entryPoint":258,"graph":259,"unsanitizedCount":14,"severity":274},"load_cs_contact_form (public\\controllers\\wp_codesample_contact-public-controller.php:63)",{"nodes":260,"edges":271},[261,266],{"id":262,"type":263,"label":264,"file":160,"line":265},"n0","source","$_SERVER['HTTP_REFERER']",73,{"id":267,"type":268,"label":269,"file":160,"line":265,"wp_function":270},"n1","sink","header() [Header Injection]","header",[272],{"from":262,"to":267,"sanitized":273},false,"medium",{"entryPoint":276,"graph":277,"unsanitizedCount":14,"severity":274},"\u003Cwp_codesample_contact-public-controller> (public\\controllers\\wp_codesample_contact-public-controller.php:0)",{"nodes":278,"edges":281},[279,280],{"id":262,"type":263,"label":264,"file":160,"line":265},{"id":267,"type":268,"label":269,"file":160,"line":265,"wp_function":270},[282],{"from":262,"to":267,"sanitized":273},{"entryPoint":284,"graph":285,"unsanitizedCount":66,"severity":294},"\u003Cwp_codesample_contact-admin-list> (admin\\views\\wp_codesample_contact-admin-list.php:0)",{"nodes":286,"edges":292},[287,289],{"id":262,"type":263,"label":288,"file":198,"line":199},"$_GET[$message] (x2)",{"id":267,"type":268,"label":290,"file":198,"line":199,"wp_function":291},"echo() [XSS]","echo",[293],{"from":262,"to":267,"sanitized":273},"low",{"entryPoint":296,"graph":297,"unsanitizedCount":66,"severity":294},"\u003Cwp_codesample_contact-admin-setting> (admin\\views\\wp_codesample_contact-admin-setting.php:0)",{"nodes":298,"edges":301},[299,300],{"id":262,"type":263,"label":288,"file":205,"line":206},{"id":267,"type":268,"label":290,"file":205,"line":206,"wp_function":291},[302],{"from":262,"to":267,"sanitized":273},{"entryPoint":304,"graph":305,"unsanitizedCount":11,"severity":294},"\u003Cemail> (fields\\email.php:0)",{"nodes":306,"edges":311},[307,310],{"id":262,"type":263,"label":308,"file":225,"line":309},"$_POST",14,{"id":267,"type":268,"label":290,"file":225,"line":226,"wp_function":291},[312],{"from":262,"to":267,"sanitized":313},true,{"entryPoint":315,"graph":316,"unsanitizedCount":11,"severity":294},"\u003Cnumber> (fields\\number.php:0)",{"nodes":317,"edges":321},[318,320],{"id":262,"type":263,"label":308,"file":228,"line":319},13,{"id":267,"type":268,"label":290,"file":228,"line":230,"wp_function":291},[322],{"from":262,"to":267,"sanitized":313},{"entryPoint":324,"graph":325,"unsanitizedCount":11,"severity":294},"\u003Ctel> (fields\\tel.php:0)",{"nodes":326,"edges":329},[327,328],{"id":262,"type":263,"label":308,"file":243,"line":309},{"id":267,"type":268,"label":290,"file":243,"line":226,"wp_function":291},[330],{"from":262,"to":267,"sanitized":313},{"entryPoint":332,"graph":333,"unsanitizedCount":11,"severity":294},"\u003Ctext> (fields\\text.php:0)",{"nodes":334,"edges":338},[335,337],{"id":262,"type":263,"label":308,"file":245,"line":336},16,{"id":267,"type":268,"label":290,"file":245,"line":215,"wp_function":291},[339],{"from":262,"to":267,"sanitized":313},{"entryPoint":341,"graph":342,"unsanitizedCount":11,"severity":294},"\u003Ctextarea> (fields\\textarea.php:0)",{"nodes":343,"edges":347},[344,346],{"id":262,"type":263,"label":308,"file":345,"line":309},"fields\\textarea.php",{"id":267,"type":268,"label":290,"file":345,"line":226,"wp_function":291},[348],{"from":262,"to":267,"sanitized":313},{"entryPoint":350,"graph":351,"unsanitizedCount":11,"severity":294},"\u003Curl> (fields\\url.php:0)",{"nodes":352,"edges":355},[353,354],{"id":262,"type":263,"label":308,"file":249,"line":336},{"id":267,"type":268,"label":290,"file":249,"line":215,"wp_function":291},[356],{"from":262,"to":267,"sanitized":313},{"summary":358,"deductions":359},"The \"code-sample-contact-form\" plugin v1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and having a relatively small attack surface with no known CVEs. The absence of file operations and external HTTP requests is also a strength.\n\nHowever, several significant concerns are raised by the static analysis. The presence of the `unserialize` function, a known source of vulnerabilities if used with untrusted input, is a major red flag, especially with no evident capability or nonce checks around its usage. The taint analysis revealing flows with unsanitized paths, even if not reaching critical or high severity in this specific analysis, points to potential weaknesses where user-supplied data might not be adequately validated before being processed. The lack of nonce checks and capability checks on the identified shortcode entry point is also concerning, as it opens the door for potential unauthorized actions or information disclosure if the shortcode's functionality is sensitive.\n\nGiven the complete absence of historical vulnerability data, it's difficult to draw long-term conclusions. However, the current analysis highlights areas of potential risk that need attention. The plugin's strengths lie in its SQL handling and lack of external dependencies. Its weaknesses are primarily in the handling of potentially dangerous functions like `unserialize` and the lack of robust input validation and access control mechanisms around its entry points.",[360,362,364,366,368],{"reason":361,"points":213},"Dangerous function: unserialize used",{"reason":363,"points":83},"Taint flow with unsanitized paths",{"reason":365,"points":254},"No nonce checks",{"reason":367,"points":254},"No capability checks",{"reason":369,"points":370},"Output escaping below 100%",4,"2026-03-17T06:01:46.372Z",{"wat":373,"direct":382},{"assetPaths":374,"generatorPatterns":377,"scriptPaths":378,"versionParams":379},[375,376],"\u002Fwp-content\u002Fplugins\u002Fcode-sample-contact-form\u002Fassets\u002Fcss\u002Fwp_codesample_contact-admin.css","\u002Fwp-content\u002Fplugins\u002Fcode-sample-contact-form\u002Fassets\u002Fjs\u002Fwp_codesample_contact-admin.js",[],[376],[380,381],"wp_codesample_contact-admin.css?ver=","wp_codesample_contact-admin.js?ver=",{"cssClasses":383,"htmlComments":384,"htmlAttributes":393,"restEndpoints":396,"jsGlobals":397,"shortcodeOutput":399},[],[385,386,387,388,389,390,391,392],"\u003C!-- The admin-specific functionality of the plugin. -->","\u003C!-- This function is provided for demonstration purposes only. -->","\u003C!-- An instance of this class should be passed to the run() function -->","\u003C!-- defined in Wp_codesample_contact_Loader as all of the hooks are defined -->","\u003C!-- in that particular class. -->","\u003C!-- The Wp_codesample_contact_Loader will then create the relationship -->","\u003C!-- between the defined hooks and the functions defined in this -->","\u003C!-- class. -->",[394,395],"data-plugin-name=\"Wp_codesample_contact\"","data-plugin-version=\"1.0.0\"",[],[398],"window.Wp_codesample_contact_controller",[],{"error":313,"url":401,"statusCode":402,"statusMessage":403,"message":403},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcode-sample-contact-form\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":11,"versions":405},[]]