Download Media Library Security & Risk Analysis

The "download-media-library" plugin v0.2.1 exhibits a concerning security posture, despite having no directly exploitable entry points identified in the static analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events without authentication checks is a positive sign. However, this limited attack surface also means fewer opportunities to assess its security controls in practice.

The code analysis reveals significant weaknesses, particularly in its handling of SQL queries, with 100% of them not using prepared statements, a major security risk that could lead to SQL injection vulnerabilities. Furthermore, only 33% of output is properly escaped, leaving room for cross-site scripting (XSS) attacks. The presence of two unsanitized path flows in the taint analysis, while not resulting in critical or high severity issues in this scan, indicates a potential for directory traversal or insecure file access, especially given the file operation functions present.

The plugin's vulnerability history is alarming. With one known high-severity CVE that remains unpatched, and its last vulnerability dated at the end of 2025, it strongly suggests a pattern of security flaws. The common vulnerability type being "Exposure of Sensitive Information to an Unauthorized Actor" directly correlates with the identified issues in output escaping and potentially file operations. While the current static analysis didn't find exploitable vulnerabilities, the historical data and code signals point to a plugin that has had and likely continues to have significant security weaknesses.