[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4wZxYLNC02g7iBZebvdJ2tbUg0zQ1hCK5zBoibn4Qpg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":58,"fingerprints":212},"devvn-local-store","DevVN Local Store","1.1.0","Le Van Toan","https:\u002F\u002Fprofiles.wordpress.org\u002Flevantoan\u002F","\u003Cp>DevVN Local Store help you add stores and search store on google maps.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fdemo.devvn.com\u002Fplugins\u002Ffind-a-store\u002F\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Flevantoan.com\u002Ffind-a-local-store-by-devvn\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Pro version\u003C\u002Fh3>\n\u003Cp>Hiện tại Google Map API đang bị chặn ở VN nên việc tạo API rất khó khăn. Để giải quyết được vấn đề này mình đã viết bản pro không cần dùng tới Google Maps API mà vẫn đủ chức năng cần thiết nhé\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Flevantoan.com\u002Fsan-pham\u002Fplugin-danh-sach-dia-diem-local-store-pro\u002F\" rel=\"nofollow ugc\">Xem bản pro tại đây\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Used\u003C\u002Fh3>\n\u003Cp>Copy shortcode [devvn_local_stores] to view\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F28u49f2frZ0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n","DevVN Local Store help you add stores and search store on google maps.",2000,12704,100,5,"2024-05-27T02:30:00.000Z","6.5.8","4.3","",[20,21,22,23],"cua-hang","google-map-api","local-store","search-store","http:\u002F\u002Flevantoan.com\u002Ffind-a-local-store-by-devvn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdevvn-local-store.1.1.0.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"levantoan",8,43660,94,85,84,"2026-04-04T03:46:54.471Z",[40],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":13,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":56,"download_link":57,"security_score":36,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"really-simple-maps","Really Simple Maps","1.0","StavrosKen","https:\u002F\u002Fprofiles.wordpress.org\u002Fstavrosken\u002F","\u003Cp>Really Simple Maps is what its name says.\u003Cbr \u002F>\nThe easiest way to integrate google maps in your wordpress site.\u003Cbr \u002F>\nJust add the shortcode in any post or page and your map will be displayed immediately!\u003C\u002Fp>\n\u003Cp>This app is making calls to the Google Map Api V3 through an easy and user friendly way.\u003C\u002Fp>\n","The easiest way to integrate google maps in your wordpress site. Just add the shortcode in any post or page and your map will be displayed!",10,2179,2,"2014-12-16T20:23:00.000Z","4.1.42","3.3",[55],"maps-google-map-api-v3-shortcode","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Freally-simple-maps","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freally-simple-maps.zip",{"attackSurface":59,"codeSignals":151,"taintFlows":200,"riskAssessment":201,"analyzedAt":211},{"hooks":60,"ajaxHandlers":128,"restRoutes":143,"shortcodes":144,"cronEvents":149,"entryPointCount":14,"unprotectedCount":150},[61,67,70,73,78,81,86,90,94,97,101,105,108,111,115,118,121,124],{"type":62,"name":63,"callback":64,"file":65,"line":66},"action","plugins_loaded","init","devvn-local-store.php",34,{"type":62,"name":64,"callback":68,"priority":27,"file":65,"line":69},"cpt_local_store_func",90,{"type":62,"name":64,"callback":71,"priority":27,"file":65,"line":72},"local_category_func",91,{"type":74,"name":75,"callback":76,"file":65,"line":77},"filter","manage_edit-local-store_columns","dvls_localstore_edit_orders_columns",93,{"type":62,"name":79,"callback":80,"priority":48,"file":65,"line":35},"manage_local-store_posts_custom_column","dvls_localstore_manage_orders_columns",{"type":62,"name":82,"callback":83,"priority":84,"file":65,"line":85},"add_meta_boxes_local-store","remove_taxonomies_metaboxes",999,99,{"type":74,"name":87,"callback":87,"priority":88,"file":65,"line":89},"admin_footer_text",1,102,{"type":62,"name":91,"callback":92,"file":65,"line":93},"add_meta_boxes","local_store_meta_box",104,{"type":62,"name":95,"callback":95,"file":65,"line":96},"edit_form_after_title",105,{"type":62,"name":98,"callback":99,"file":65,"line":100},"save_post","dvls_save_meta_box_data",106,{"type":62,"name":102,"callback":103,"file":65,"line":104},"wp_enqueue_scripts","load_plugins_scripts",108,{"type":62,"name":106,"callback":106,"file":65,"line":107},"admin_enqueue_scripts",109,{"type":62,"name":109,"callback":109,"file":65,"line":110},"admin_menu",111,{"type":62,"name":112,"callback":113,"file":65,"line":114},"admin_init","dvls_register_mysettings",112,{"type":62,"name":98,"callback":116,"priority":48,"file":65,"line":117},"dvls_delete_all_transient",122,{"type":62,"name":119,"callback":116,"priority":48,"file":65,"line":120},"wp_insert_post",123,{"type":62,"name":122,"callback":116,"priority":48,"file":65,"line":123},"publish_post",124,{"type":62,"name":125,"callback":126,"file":65,"line":127},"admin_notices","dvls_admin_notice",126,[129,134,137,141],{"action":130,"nopriv":131,"callback":132,"hasNonce":131,"hasCapCheck":131,"file":65,"line":133},"dvls_load_localstores",false,"dvls_load_localstores_func",116,{"action":130,"nopriv":135,"callback":132,"hasNonce":131,"hasCapCheck":131,"file":65,"line":136},true,117,{"action":138,"nopriv":131,"callback":139,"hasNonce":131,"hasCapCheck":131,"file":65,"line":140},"dvls_loadlastest_store","dvls_loadlastest_store_func",119,{"action":138,"nopriv":135,"callback":139,"hasNonce":131,"hasCapCheck":131,"file":65,"line":142},120,[],[145],{"tag":146,"callback":147,"file":65,"line":148},"devvn_local_stores","devvn_local_stores_shortcode",114,[],4,{"dangerousFunctions":152,"sqlUsage":153,"outputEscaping":158,"fileOperations":27,"externalRequests":27,"nonceChecks":88,"capabilityChecks":50,"bundledLibraries":199},[],{"prepared":27,"raw":88,"locations":154},[155],{"file":65,"line":156,"context":157},594,"$wpdb->get_col() with variable interpolation",{"escaped":159,"rawEcho":160,"locations":161},73,19,[162,165,167,170,173,175,177,179,181,183,185,187,189,191,192,193,194,195,198],{"file":65,"line":163,"context":164},627,"raw output",{"file":65,"line":166,"context":164},650,{"file":168,"line":169,"context":164},"inc\\dvls-metabox.php",71,{"file":171,"line":172,"context":164},"inc\\dvls-optionpage.php",18,{"file":171,"line":174,"context":164},25,{"file":171,"line":176,"context":164},26,{"file":171,"line":178,"context":164},39,{"file":171,"line":180,"context":164},40,{"file":171,"line":182,"context":164},50,{"file":171,"line":184,"context":164},56,{"file":171,"line":186,"context":164},69,{"file":171,"line":188,"context":164},81,{"file":171,"line":190,"context":164},87,{"file":171,"line":77,"context":164},{"file":171,"line":85,"context":164},{"file":171,"line":96,"context":164},{"file":171,"line":110,"context":164},{"file":196,"line":197,"context":164},"inc\\dvls-shortcode.php",45,{"file":196,"line":197,"context":164},[],[],{"summary":202,"deductions":203},"The devvn-local-store plugin version 1.1.0 presents a mixed security posture. While the absence of known CVEs and no critical taint flows are positive indicators, significant concerns arise from its attack surface and handling of sensitive operations. A notable weakness is the presence of 4 unprotected AJAX handlers, which represent direct entry points for potential attackers.  Furthermore, the plugin exhibits poor SQL query hygiene, with 100% of its single SQL query lacking prepared statement usage, increasing the risk of SQL injection vulnerabilities.  Although a good percentage of output is properly escaped, the raw SQL and unprotected AJAX handlers remain significant risks.\n\nConsidering the vulnerability history, the plugin has a clean slate with no recorded CVEs. This, coupled with the lack of critical taint analysis findings, might suggest a generally well-developed codebase or a lack of exposure to sophisticated attacks. However, the presence of unprotected AJAX handlers and unparameterized SQL queries are fundamental security flaws that do not require complex exploit chains.  The plugin's strengths lie in its file operation, external HTTP request handling, and a decent rate of output escaping. However, the identified weaknesses in AJAX security and SQL practices warrant careful consideration, particularly for sites handling sensitive data.",[204,207,209],{"reason":205,"points":206},"Unprotected AJAX handlers",20,{"reason":208,"points":48},"Raw SQL without prepared statements",{"reason":210,"points":14},"Unescaped output detected","2026-03-16T18:39:58.630Z",{"wat":213,"direct":223},{"assetPaths":214,"generatorPatterns":217,"scriptPaths":218,"versionParams":220},[215,216],"\u002Fwp-content\u002Fplugins\u002Fdevvn-local-store\u002Fassets\u002Fcss\u002Fdevvn-localstore.css","\u002Fwp-content\u002Fplugins\u002Fdevvn-local-store\u002Fassets\u002Fjs\u002Fdevvn-localstore-jquery.js",[],[219],"https:\u002F\u002Fmaps.googleapis.com\u002Fmaps\u002Fapi\u002Fjs",[221,222],"devvn-local-store\u002Fassets\u002Fcss\u002Fdevvn-localstore.css?ver=","devvn-local-store\u002Fassets\u002Fjs\u002Fdevvn-localstore-jquery.js?ver=",{"cssClasses":224,"htmlComments":236,"htmlAttributes":237,"restEndpoints":242,"jsGlobals":243,"shortcodeOutput":245},[225,226,227,228,229,230,231,232,233,234,235],"devvn-localstore-wrapper","devvn-localstore-item","devvn-localstore-item-thumb","devvn-localstore-item-content","devvn-localstore-item-content-title","devvn-localstore-item-content-address","devvn-localstore-item-content-phone","devvn-localstore-item-content-email","devvn-localstore-item-content-hotline","devvn-localstore-item-content-open","devvn-localstore-item-content-directions",[],[238,239,240,241],"data-lat","data-lng","data-zoom","data-icon",[],[244],"dvls_data",[246],"[devvn_local_stores]"]