EDD Metrics Security & Risk Analysis

The "edd-metrics" plugin version 1.0 presents a significant security risk due to its unprotected AJAX handlers. The analysis reveals two AJAX entry points, both lacking any authentication or capability checks. This creates a wide-open attack surface, allowing any unauthenticated user to potentially interact with these handlers, leading to an unknown but potentially severe impact on the WordPress site. The lack of nonce checks further exacerbates this issue, making it easier for attackers to craft malicious requests.

The static analysis also highlights a critical concern regarding SQL queries. The plugin executes one SQL query, and 100% of them are not using prepared statements. This is a major vulnerability that could lead to SQL injection attacks, allowing attackers to manipulate or extract sensitive data from the database. While there is no recorded vulnerability history for this plugin, this does not guarantee its safety. The current state of the code, particularly the unprotected AJAX and raw SQL queries, suggests a disregard for fundamental WordPress security practices.

In conclusion, while the plugin does not bundle libraries or make external HTTP requests, the presence of unprotected AJAX handlers and raw SQL queries significantly outweighs these positive observations. The plugin's security posture is poor, and immediate attention is required to address these critical vulnerabilities to prevent potential exploitation.