[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjXuxnJLrb00M15Be21kKfFtO_w-exWzn3IzBBh-kwpA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":13,"tags":16,"homepage":13,"download_link":22,"security_score":23,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":33,"analysis":34,"fingerprints":113},"doubledome-shopquick-preview","Popup Product Preview for Woocommerce","1.4","doubledome","https:\u002F\u002Fprofiles.wordpress.org\u002Fdoubledome\u002F","\u003Cp>The Popup Product Preview for Woocommerce plugin enhances user experience by allowing swift access to product details without the necessity of navigating to the full product page. With this WooCommerce quickview feature, customers can conveniently preview essential product information through a popup view, eliminating the need for extensive browsing. The WooCommerce Quick View functionality makes it easy to get a quickview of products. Moreover, the seamless integration of this product preview feature enables users to effortlessly add desired products to their cart directly from the preview product popup, streamlining the shopping process and fostering efficiency. This shop preview tool is a valuable asset for any WooCommerce store looking to enhance customer satisfaction.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PLUGIN FUNCTIONALITY\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>User-friendly interface\u003C\u002Fli>\n\u003Cli>Enables users to view product details swiftly without the need to open the full product page.\u003C\u002Fli>\n\u003Cli>Add to cart option within the preview popup\u003C\u002Fli>\n\u003Cli>Fully responsive for desktop and mobile usability\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Do you have questions or issues with Popup Product Preview for Woocommerce by DoubleDome Digital Marketing Setup? Please send an email to \u003Ca href=\"mailto:pluginsupport@doubledome.com?subject=DoubleDome%20ShopQuick%20Preview%20for%20Woocommerce%20Plugin%20Support:%20DoubleDome%20Digital%20Marketing\" rel=\"nofollow ugc\">pluginsupport@doubledome.com\u003C\u002Fa>.\u003C\u002Fp>\n","The Popup Product Preview for Woocommerce plugin enhances user experience by allowing swift access to product details without the necessity of navigat …",0,735,"","6.9.4","4.0",[17,18,19,20,21],"instant-product-view","popup-quick-view","product-preview-popup","quick-product-preview","woocommerce-popup-preview","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdoubledome-shopquick-preview.1.4.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":29,"avg_security_score":23,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},6,620,26,94,"2026-04-04T17:08:40.769Z",[],{"attackSurface":35,"codeSignals":69,"taintFlows":81,"riskAssessment":107,"analyzedAt":112},{"hooks":36,"ajaxHandlers":56,"restRoutes":65,"shortcodes":66,"cronEvents":67,"entryPointCount":68,"unprotectedCount":11},[37,43,47,52],{"type":38,"name":39,"callback":40,"file":41,"line":42},"action","plugins_loaded","doubledome_shopquick_preview_load_textdomain","doubledome-shopquick-preview.php",20,{"type":38,"name":44,"callback":45,"priority":23,"file":41,"line":46},"wp_enqueue_scripts","doubledome_shopquick_preview_enqueue_scripts",30,{"type":38,"name":48,"callback":49,"priority":50,"file":41,"line":51},"woocommerce_after_shop_loop_item","doubledome_shopquick_preview_add_button",15,38,{"type":38,"name":53,"callback":54,"file":41,"line":55},"wp_footer","doubledome_shopquick_preview_content",45,[57,63],{"action":58,"nopriv":59,"callback":60,"hasNonce":61,"hasCapCheck":59,"file":41,"line":62},"shopQuickPreview",false,"doubledome_shopquick_preview_ajax_handler",true,96,{"action":58,"nopriv":61,"callback":60,"hasNonce":61,"hasCapCheck":59,"file":41,"line":64},97,[],[],[],2,{"dangerousFunctions":70,"sqlUsage":71,"outputEscaping":73,"fileOperations":11,"externalRequests":11,"nonceChecks":75,"capabilityChecks":11,"bundledLibraries":80},[],{"prepared":11,"raw":11,"locations":72},[],{"escaped":74,"rawEcho":75,"locations":76},13,1,[77],{"file":41,"line":78,"context":79},83,"raw output",[],[82,99],{"entryPoint":83,"graph":84,"unsanitizedCount":11,"severity":98},"doubledome_shopquick_preview_ajax_handler (doubledome-shopquick-preview.php:48)",{"nodes":85,"edges":96},[86,91],{"id":87,"type":88,"label":89,"file":41,"line":90},"n0","source","$_POST",50,{"id":92,"type":93,"label":94,"file":41,"line":78,"wp_function":95},"n1","sink","echo() [XSS]","echo",[97],{"from":87,"to":92,"sanitized":61},"low",{"entryPoint":100,"graph":101,"unsanitizedCount":11,"severity":98},"\u003Cdoubledome-shopquick-preview> (doubledome-shopquick-preview.php:0)",{"nodes":102,"edges":105},[103,104],{"id":87,"type":88,"label":89,"file":41,"line":90},{"id":92,"type":93,"label":94,"file":41,"line":78,"wp_function":95},[106],{"from":87,"to":92,"sanitized":61},{"summary":108,"deductions":109},"The \"doubledome-shopquick-preview\" plugin, version 1.4, presents a generally strong security posture based on the provided static analysis. It demonstrates good practices by having no recorded vulnerabilities (CVEs) and actively uses prepared statements for all SQL queries. The absence of dangerous functions, file operations, and external HTTP requests further mitigates common attack vectors. The plugin also shows attention to output escaping and includes a nonce check for its entry points.  However, a notable concern is the complete lack of capability checks, which means that any user, regardless of their WordPress role, can potentially interact with the plugin's AJAX handlers. While the attack surface is small and all entry points are protected by nonce checks, the absence of role-based access control leaves a potential loophole for privilege escalation or unauthorized actions if the AJAX handlers perform sensitive operations. The vulnerability history being clean is a positive sign, suggesting responsible development, but it doesn't entirely negate the risks associated with missing capability checks. Overall, while the plugin is well-defended against common exploits like SQL injection and XSS, the lack of authorization checks on its AJAX endpoints represents a significant security weakness that needs to be addressed.",[110],{"reason":111,"points":50},"No capability checks on AJAX handlers","2026-03-17T05:54:32.834Z",{"wat":114,"direct":123},{"assetPaths":115,"generatorPatterns":118,"scriptPaths":119,"versionParams":120},[116,117],"\u002Fwp-content\u002Fplugins\u002Fdoubledome-shopquick-preview\u002Fjs\u002Fdoubledome-shopquick-preview.js","\u002Fwp-content\u002Fplugins\u002Fdoubledome-shopquick-preview\u002Fcss\u002Fdoubledome-shopquick-preview.css",[],[116],[121,122],"doubledome-shopquick-preview\u002Fjs\u002Fdoubledome-shopquick-preview.js?ver=1.0","doubledome-shopquick-preview\u002Fcss\u002Fdoubledome-shopquick-preview.css",{"cssClasses":124,"htmlComments":135,"htmlAttributes":136,"restEndpoints":139,"jsGlobals":140,"shortcodeOutput":142},[125,126,127,128,129,130,131,132,133,134],"doubledome_shopquick_preview_button","ddshopquickpopup_content","leftcol","rightcol","product-image","product-title","product-price","product-description","product-buttons","dd_shopquick_details",[],[137,138],"data-product-nonce","data-product-id",[],[141],"shopQuickPreviewAjax",[]]