BoomDevs WordPress Coming Soon Plugin Security & Risk Analysis

The "coming-soon-by-boomdevs" plugin version 1.0.4 exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and a high percentage of properly escaped outputs, indicating an awareness of common web vulnerabilities. There are no identified dangerous functions or file operations, and no external HTTP requests are made, further reducing the attack surface in those areas. The presence of a nonce check is also a positive sign.

However, significant concerns arise from the static analysis of its attack surface. With two AJAX handlers, both are found to be unprotected and lack authentication checks. This creates a direct pathway for unauthenticated users to interact with plugin functionalities, potentially leading to unintended consequences or exploits. The absence of any taint analysis results is not necessarily a strength; it could indicate that the analysis was incomplete or that complex data flows were not thoroughly examined. The plugin's vulnerability history, specifically a medium severity CVE related to exposure of sensitive information that remains unpatched, is a critical red flag. This indicates a known weakness that malicious actors could exploit.

In conclusion, while the plugin incorporates some secure coding practices, the presence of two unprotected AJAX endpoints and a known, unpatched vulnerability for sensitive information exposure significantly elevate the risk. The lack of complete taint analysis results also leaves some uncertainty. Users should exercise extreme caution, and developers should prioritize patching the known CVE and implementing robust authentication and authorization for all AJAX endpoints.